last executing test programs: 4m16.136608339s ago: executing program 3 (id=4): r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB='^\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioprio_set$auto(0x1, 0x0, 0x0) mmap$auto(0x0, 0x9, 0xc00000073, 0x8b72, 0x1000000002, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) r2 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r2, 0x10f, 0x87, 0x0, 0x14) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000004c0)='/sys/bus/usb/drivers/ttusb-dec/new_id\x00', 0x100, 0x0) read$auto(0x3, 0x0, 0x7) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) bind$auto(0x3, 0xfffffffffffffffd, 0x0) mmap$auto(0x0, 0xe982, 0x2000000000df, 0xeb1, 0x401, 0x8000) sendto$auto(0x4, 0x0, 0xff, 0x6, 0x0, 0xe) tkill$auto(0x1, 0x7) keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x0, 0x0, 0x0, 0x48eafc79) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) close_range$auto(0x2, 0x8, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'batadv0\x00'}) r3 = open(&(0x7f0000000000)='./file0\x00', 0x105242, 0xe1d2b27bdc14aafd) flock$auto(r3, 0x1) r4 = socket(0xa, 0x2, 0x3a) r5 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='l\x00\''], 0x1ac}}, 0x2004c0c4) sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) setsockopt$auto(r4, 0x29, 0x14, 0x0, 0x56b) 4m14.541253936s ago: executing program 3 (id=8): unshare$auto(0x40000080) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) mmap$auto(0xfe, 0xffffffffffffff9a, 0x4, 0x1ff, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) epoll_create$auto(0x4) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0) socket(0x11, 0x80003, 0x300) socket(0x25, 0x1, 0x1) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/input/devices\x00', 0x4a040, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fd, 0x8, 0xd, 0x1, 0x948b, 0x2, 0x15f4da0b, 0x6, 0x80000000080, 0x1fffe000000000, 0x80000001, 0x5, 0x6d3c, 0x200000000000005, 0x2]}, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) mlock$auto(0x7c89, 0x47fff) 4m13.570691423s ago: executing program 32 (id=8): unshare$auto(0x40000080) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) mmap$auto(0xfe, 0xffffffffffffff9a, 0x4, 0x1ff, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) epoll_create$auto(0x4) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0) socket(0x11, 0x80003, 0x300) socket(0x25, 0x1, 0x1) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/input/devices\x00', 0x4a040, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fd, 0x8, 0xd, 0x1, 0x948b, 0x2, 0x15f4da0b, 0x6, 0x80000000080, 0x1fffe000000000, 0x80000001, 0x5, 0x6d3c, 0x200000000000005, 0x2]}, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) mlock$auto(0x7c89, 0x47fff) 2m39.523099452s ago: executing program 4 (id=186): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x4007, 0xb}) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/neigh/veth1_macvtap/locktime\x00', 0x103142, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/sctp/udp_port\x00', 0x202, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = socket(0x2, 0x1, 0x0) fcntl$auto(r1, 0x4, 0xa553) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @dev={0xac, 0x14, 0x14, 0xd}}, 0x6a) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x101, 0x0, 0x5, 0x9ad}, 0x5}, 0x5, 0x20000000) r2 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) semctl$auto(0x9, 0xc1b8, 0x4, 0x1) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/graphics/fbcon/cursor_blink\x00', 0xa001, 0x0) write$auto(r3, &(0x7f0000000140)='0\x81=\"\xad\xff\x8d\xf9P\x18\xa4\xb0\xb4\xd9\x82=\xe1P\x05\x00\xfb&\xe8\xbf\x901\a2\xa2X`\a\xf1y\xb3\"=', 0xd4d0) mmap$auto(0x2000000002, 0x20000002, 0xdf, 0x17, r0, 0x3) r4 = socket(0x29, 0x5, 0x0) syz_clone(0x40100100, &(0x7f0000000000), 0x0, 0x0, 0x0, 0x0) dup2$auto(r4, r4) prctl$auto(0x40, 0x1, 0x0, 0x2000000004, 0x20000000) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_SET_MULTICAST_TO_UNICAST(0xffffffffffffffff, 0x0, 0x40440) sendmsg$auto_NL80211_CMD_GET_STATION(r2, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xe3102, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) syz_genetlink_get_family_id$auto_ovs_datapath(0x0, 0xffffffffffffffff) fcntl$auto(0x3, 0x4, 0xa553) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x3ec0) 2m37.634656995s ago: executing program 4 (id=189): unshare$auto(0x40000080) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) madvise$auto(0x5, 0x7fffffffffffffff, 0x7) mmap$auto(0xfe, 0xffffffffffffff9a, 0x4, 0x1ff, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) epoll_create$auto(0x4) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0) socket(0x11, 0x80003, 0x300) socket(0x25, 0x1, 0x1) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/input/devices\x00', 0x4a040, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fd, 0x8, 0xd, 0x1, 0x948b, 0x2, 0x15f4da0b, 0x6, 0x80000000080, 0x1fffe000000000, 0x80000001, 0x5, 0x6d3c, 0x200000000000005, 0x2]}, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) mlock$auto(0x7c89, 0x47fff) 2m36.305296464s ago: executing program 4 (id=191): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x163742, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) mmap$auto(0x0, 0x282000b, 0x2, 0xeb1, 0xffffffffffffffff, 0x495ce92a) futex_wake$auto(0x0, 0x7, 0xffefffff, 0x12) sysfs$auto(0x3fe, 0x1, 0x82) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0xa0a01, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x88282, 0x0) write$auto(0x3, 0x0, 0xfffffded) 2m36.304451721s ago: executing program 1 (id=199): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x4007, 0xb}) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/neigh/veth1_macvtap/locktime\x00', 0x103142, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/sctp/udp_port\x00', 0x202, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = socket(0x2, 0x1, 0x0) fcntl$auto(r1, 0x4, 0xa553) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @dev={0xac, 0x14, 0x14, 0xd}}, 0x6a) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x101, 0x0, 0x5, 0x9ad}, 0x5}, 0x5, 0x20000000) r2 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) semctl$auto(0x9, 0xc1b8, 0x4, 0x1) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/graphics/fbcon/cursor_blink\x00', 0xa001, 0x0) write$auto(r3, &(0x7f0000000140)='0\x81=\"\xad\xff\x8d\xf9P\x18\xa4\xb0\xb4\xd9\x82=\xe1P\x05\x00\xfb&\xe8\xbf\x901\a2\xa2X`\a\xf1y\xb3\"=', 0xd4d0) mmap$auto(0x2000000002, 0x20000002, 0xdf, 0x17, r0, 0x3) r4 = socket(0x29, 0x5, 0x0) syz_clone(0x40100100, &(0x7f0000000000), 0x0, 0x0, 0x0, 0x0) dup2$auto(r4, r4) prctl$auto(0x40, 0x1, 0x0, 0x2000000004, 0x20000000) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_SET_MULTICAST_TO_UNICAST(0xffffffffffffffff, 0x0, 0x40440) sendmsg$auto_NL80211_CMD_GET_STATION(r2, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xe3102, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) syz_genetlink_get_family_id$auto_ovs_datapath(0x0, 0xffffffffffffffff) fcntl$auto(0x3, 0x4, 0xa553) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x3ec0) 2m35.60245072s ago: executing program 4 (id=192): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x4, 0x0) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = fcntl$auto_F_GETLEASE(r0, 0x401, 0xffffffffffffffff) syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) shmctl$auto_IPC_SET(0x7fa, 0x1, &(0x7f00000001c0)={{0xd2, 0xee00, 0xee01, 0xdb, 0x4, 0x10001, 0x2b}, 0x0, 0x80000000, 0x981, 0x213, @raw=0x5, @raw=0xe, 0x5, 0x0, &(0x7f0000000140), &(0x7f0000000300)="9c4276c90786f776dc051eeebb5d3086ee07831a77bb9dfa1f33aa01edeb1d039675c74c512d69e75285544ba7211f3da765485b059a0d"}) r3 = gettid() process_vm_readv$auto(r3, 0x0, 0x4, 0x0, 0x3, 0x0) capget$auto(0x0, &(0x7f00000004c0)={0x2, 0xe7c3}) gettid() sendmsg$auto_MACSEC_CMD_ADD_RXSC(r2, 0x0, 0x42080) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x101000, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="7201"], 0x1ac}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x1f00}, 0x40000) gettimeofday$auto(&(0x7f0000000000)={0x8, 0xd0}, &(0x7f0000000040)={0xec, 0xffff7fff}) madvise$auto(0x0, 0x2003f0, 0x15) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) socket$nl_generic(0x10, 0x3, 0x10) socket(0x26, 0x80805, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) pidfd_getfd$auto(0x3, 0x1, 0x100000000) bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r5, 0x7f, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92) bpf$auto(0x4, &(0x7f00000001c0)=@raw_tracepoint={0x5, r4, 0x0, 0x8000000000007}, 0x9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/zram0/max_comp_streams\x00', 0x121102, 0x0) 2m34.78810697s ago: executing program 4 (id=193): r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB='^\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioprio_set$auto(0x1, 0x0, 0x0) mmap$auto(0x0, 0x9, 0xc00000073, 0x8b72, 0x1000000002, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) r2 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r2, 0x10f, 0x87, 0x0, 0x14) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000004c0)='/sys/bus/usb/drivers/ttusb-dec/new_id\x00', 0x100, 0x0) read$auto(0x3, 0x0, 0x7) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) bind$auto(0x3, 0xfffffffffffffffd, 0x0) mmap$auto(0x0, 0xe982, 0x2000000000df, 0xeb1, 0x401, 0x8000) sendto$auto(0x4, 0x0, 0xff, 0x6, 0x0, 0xe) tkill$auto(0x1, 0x7) keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x0, 0x0, 0x0, 0x48eafc79) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) close_range$auto(0x2, 0x8, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'batadv0\x00'}) r3 = open(&(0x7f0000000000)='./file0\x00', 0x105242, 0xe1d2b27bdc14aafd) flock$auto(r3, 0x1) r4 = socket(0xa, 0x2, 0x3a) r5 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='l\x00\''], 0x1ac}}, 0x2004c0c4) sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) setsockopt$auto(r4, 0x29, 0x14, 0x0, 0x56b) 2m33.874996196s ago: executing program 1 (id=195): unshare$auto(0x40000080) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) mmap$auto(0xfe, 0xffffffffffffff9a, 0x4, 0x1ff, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) epoll_create$auto(0x4) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0) socket(0x11, 0x80003, 0x300) socket(0x25, 0x1, 0x1) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/input/devices\x00', 0x4a040, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fd, 0x8, 0xd, 0x1, 0x948b, 0x2, 0x15f4da0b, 0x6, 0x80000000080, 0x1fffe000000000, 0x80000001, 0x5, 0x6d3c, 0x200000000000005, 0x2]}, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) mlock$auto(0x7c89, 0x47fff) 2m32.820169176s ago: executing program 4 (id=197): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000a80)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x40000, 0x0) readv$auto(r0, &(0x7f0000000b40)={0x0, 0x6}, 0x4) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x6203, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0xd, 0x4, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$auto_WG_CMD_SET_DEVICE(r1, &(0x7f00000028c0)={0x0, 0x0, &(0x7f0000002880)={&(0x7f0000000040)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="210026bd7000fedbdf25010000001400020077673000000000000000000000000000060006004e200000e6cfbd135fc164888b36d8cbb0d0716f6fb0f002cea3bc7050ee8ecea7d52605d08646be267e7028c219171ea9811ec00563d3de8f0dfba1b561e0c3a571cd815a5497dc872cf571dd5bef5a48378e02340cf4f5624a8e4f4e5093199f2d95aa07da98c71a82c7cb7d98204dde8148f33b9a08c18d562d304dbe1e3fcbdadc51f6cbbd646c15ddda4d1f1232000000000000"], 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x80) mmap$auto(0x0, 0x4020009, 0x4689, 0xeb1, 0x401, 0x8000) socket(0xa, 0x2, 0x10100) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) setsockopt$auto(0x400000000000003, 0x29, 0x1c, 0x0, 0x56b) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x1, 0x7) mmap$auto(0x7f, 0x100000002020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020409, 0xa, 0xeb1, 0xffffffffffffffff, 0x8001) readv$auto(r0, 0x0, 0x3) fstat$auto(0x2, 0x0) clone$auto(0xb74b, 0xfffffffe, &(0x7f00000003c0)=0x99, 0x0, 0xc) fallocate$auto(0xffffffffffffffff, 0x208, 0x1, 0x69a9) ioctl$auto(0xc8, 0x401054d5, 0x0) readv$auto(0x3, 0x0, 0x6) close_range$auto(0x2, 0x8, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) 2m32.245036976s ago: executing program 33 (id=197): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000a80)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x40000, 0x0) readv$auto(r0, &(0x7f0000000b40)={0x0, 0x6}, 0x4) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x6203, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0xd, 0x4, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$auto_WG_CMD_SET_DEVICE(r1, &(0x7f00000028c0)={0x0, 0x0, &(0x7f0000002880)={&(0x7f0000000040)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="210026bd7000fedbdf25010000001400020077673000000000000000000000000000060006004e200000e6cfbd135fc164888b36d8cbb0d0716f6fb0f002cea3bc7050ee8ecea7d52605d08646be267e7028c219171ea9811ec00563d3de8f0dfba1b561e0c3a571cd815a5497dc872cf571dd5bef5a48378e02340cf4f5624a8e4f4e5093199f2d95aa07da98c71a82c7cb7d98204dde8148f33b9a08c18d562d304dbe1e3fcbdadc51f6cbbd646c15ddda4d1f1232000000000000"], 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x80) mmap$auto(0x0, 0x4020009, 0x4689, 0xeb1, 0x401, 0x8000) socket(0xa, 0x2, 0x10100) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) setsockopt$auto(0x400000000000003, 0x29, 0x1c, 0x0, 0x56b) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x1, 0x7) mmap$auto(0x7f, 0x100000002020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020409, 0xa, 0xeb1, 0xffffffffffffffff, 0x8001) readv$auto(r0, 0x0, 0x3) fstat$auto(0x2, 0x0) clone$auto(0xb74b, 0xfffffffe, &(0x7f00000003c0)=0x99, 0x0, 0xc) fallocate$auto(0xffffffffffffffff, 0x208, 0x1, 0x69a9) ioctl$auto(0xc8, 0x401054d5, 0x0) readv$auto(0x3, 0x0, 0x6) close_range$auto(0x2, 0x8, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) 2m30.511938737s ago: executing program 1 (id=202): iopl$auto(0x2) iopl$auto(0x1) socket(0x1f, 0x5, 0x5) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/wakeup/wakeup7/event_count\x00', 0x1c2580, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000080)=""/86, 0x56) mmap$auto(0x0, 0x40000a, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/rpc/use-gss-proxy\x00', 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r1, 0x0, 0x0) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000) close_range$auto(0x2, 0x8000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) ioctl$sock_SIOCGIFINDEX(r2, 0x40086602, &(0x7f0000000000)={'macvtap0\x00'}) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sda1\x00', 0x40, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) mmap$auto(0x3, 0x20009, 0x4000000000df, 0xeb3, 0x401, 0x8000) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x7}, 0xb22a, 0x2000000000400a, 0xfffffffffffffffd, 0x4, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0xdead, 0x804}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x2, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/au\xd7\x04\x0fj\b', 0xa3d9) set_mempolicy$auto(0x2, &(0x7f0000000000)=0x4, 0x8) socket(0x22, 0x1, 0x2000) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SYNC(r4, 0x5001, 0xfffffffffffffffc) 2m23.810950463s ago: executing program 1 (id=208): pread64$auto(0xffffffffffffffff, 0x0, 0x80, 0x6) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0) r0 = mq_open$auto(&(0x7f0000000000)='\\*\x82\xb6\xf5', 0x7c, 0x1000, 0x0) mq_timedsend$auto(r0, 0x0, 0x2000, 0x6, 0x0) ioctl$auto_FS_IOC_GET_ENCRYPTION_POLICY2(r0, 0x400c6615, &(0x7f0000000000)={0x7, 0x0, 0x51, 0x0, "ae7062e97b86a16d"}) r1 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x40400, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(r1, 0x40603d07, 0x0) msgget$auto(0xa, 0x77d9) msgrcv$auto(0x0, 0x0, 0xffc, 0x1, 0xb1) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000022c0)='/sys/devices/system/memory/memory10/removable\x00', 0x8500, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f00000000c0)=""/4096, 0x1000) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) msgctl$auto(0x0, 0x0, 0x0) ustat$auto(0x5, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x1, 0x0) socket(0x21, 0x2, 0x0) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp1\x00', 0x802, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptywf\x00', 0x20000, 0x0) ioctl$auto_TIOCGETD2(r4, 0x5424, &(0x7f00000000c0)) ioctl$auto_SNDCTL_DSP_SETTRIGGER(r3, 0x40045010, &(0x7f00000006c0)) ioctl$auto_SNDCTL_DSP_STEREO(r3, 0xc0045003, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r5 = openat$auto_cgwb_debug_stats_fops_(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/kernel/debug/bdi/1:15/wb_stats\x00', 0x40, 0x0) read$auto(r5, 0x0, 0x9e7) 2m22.826857201s ago: executing program 1 (id=209): r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB='^\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioprio_set$auto(0x1, 0x0, 0x0) mmap$auto(0x0, 0x9, 0xc00000073, 0x8b72, 0x1000000002, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) r2 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r2, 0x10f, 0x87, 0x0, 0x14) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000004c0)='/sys/bus/usb/drivers/ttusb-dec/new_id\x00', 0x100, 0x0) read$auto(0x3, 0x0, 0x7) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) bind$auto(0x3, 0xfffffffffffffffd, 0x0) mmap$auto(0x0, 0xe982, 0x2000000000df, 0xeb1, 0x401, 0x8000) sendto$auto(0x4, 0x0, 0xff, 0x6, 0x0, 0xe) tkill$auto(0x1, 0x7) keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x0, 0x0, 0x0, 0x48eafc79) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) close_range$auto(0x2, 0x8, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'batadv0\x00'}) r3 = open(&(0x7f0000000000)='./file0\x00', 0x105242, 0xe1d2b27bdc14aafd) flock$auto(r3, 0x1) r4 = socket(0xa, 0x2, 0x3a) r5 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='l\x00\''], 0x1ac}}, 0x2004c0c4) sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) setsockopt$auto(r4, 0x29, 0x14, 0x0, 0x56b) 2m21.559488351s ago: executing program 1 (id=212): unshare$auto(0x40000080) madvise$auto(0x5, 0x7fffffffffffffff, 0x7) mmap$auto(0xfe, 0xffffffffffffff9a, 0x4, 0x1ff, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) epoll_create$auto(0x4) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0) socket(0x11, 0x80003, 0x300) socket(0x25, 0x1, 0x1) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/input/devices\x00', 0x4a040, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fd, 0x8, 0xd, 0x1, 0x948b, 0x2, 0x15f4da0b, 0x6, 0x80000000080, 0x1fffe000000000, 0x80000001, 0x5, 0x6d3c, 0x200000000000005, 0x2]}, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) mlock$auto(0x7c89, 0x47fff) 2m21.378360429s ago: executing program 34 (id=212): unshare$auto(0x40000080) madvise$auto(0x5, 0x7fffffffffffffff, 0x7) mmap$auto(0xfe, 0xffffffffffffff9a, 0x4, 0x1ff, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) epoll_create$auto(0x4) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0) socket(0x11, 0x80003, 0x300) socket(0x25, 0x1, 0x1) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/input/devices\x00', 0x4a040, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fd, 0x8, 0xd, 0x1, 0x948b, 0x2, 0x15f4da0b, 0x6, 0x80000000080, 0x1fffe000000000, 0x80000001, 0x5, 0x6d3c, 0x200000000000005, 0x2]}, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) mlock$auto(0x7c89, 0x47fff) 12.88879294s ago: executing program 0 (id=612): mmap$auto(0x0, 0x20009, 0x120000000, 0x40000000000eb1, 0x401, 0x0) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) (async) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) (async) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) (async) sendmmsg$auto(0x3, 0x0, 0x9aa, 0x2) (async) r0 = fsopen$auto(&(0x7f0000000000)='nlctrl\x00', 0x3) mmap$auto(0x0, 0x800000009, 0x401, 0x8b72, 0x1000000002, 0x8004) (async) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async) mmap$auto(0x0, 0x2020009, 0x400000003, 0xeb1, 0xfffffffffffffffa, 0x9) (async) close_range$auto(0xffffffffffffffff, 0x8, 0x9154) r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) (async) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x1) mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x7ffe) (async) madvise$auto(0x80000001, 0xffffffffffff0001, 0x15) (async) r2 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0) read$auto_proc_pid_maps_operations_internal(r2, &(0x7f0000000980)=""/4098, 0x1002) (async) sendmsg$auto_NFSD_CMD_VERSION_GET(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x4000041}, 0x4000000) (async) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/scsi/device_info\x00', 0x8002, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) bind$auto(r0, &(0x7f0000000140)=@nl=@proc={0x10, 0x0, 0x25dfdbfc, 0x10080000}, 0x68) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram7\x00', 0x0, 0x0) (async) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) (async) write$auto(0x3, 0x0, 0xfffffdef) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) ioctl$auto(r3, 0x545c, r1) (async) sendmsg$auto_IEEE802154_START_REQ(r1, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0100a6bd7000fedbdf250d000000068000000700000008000200000000000000000073b0f507d8d671c607b9698b", @ANYRES32=0x0, @ANYBLOB="05002300080000000800140000c0000008000200", @ANYRES32=0x0, @ANYBLOB="0800140001000000"], 0x4c}, 0x1, 0x0, 0x0, 0x20004005}, 0x4000000) (async) ioctl$auto_TIOCMSET2(r4, 0x5418, &(0x7f0000000080)="7e86198e33") 12.546433257s ago: executing program 0 (id=623): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = getsockopt$auto(r0, 0x6, 0x23, 0x0, &(0x7f0000000100)=0x14) capget$auto(0x0, 0xfffffffffffffffe) clone$auto(0x3, 0x9, 0x0, 0x0, 0x10001) r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001c00)='/proc/zoneinfo\x00', 0x496d00, 0x0) r3 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r3, 0xc0606610, &(0x7f000000c380)={0x60, 0x4, 0x8001, 0x7fffffffefff, 0xfffffffffffffffe, 0x0, 0x0, 0x50b301a, 0x2000000000000002, 0x2c, 0x0, 0x2}) ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(r1, 0xc0305710, &(0x7f0000000040)={0x46e4, 0xffff, 0x81, 0x1, 0xffffffff, "d96ba2ae37713a5e0d368eed"}) read$auto(r2, &(0x7f0000001c40)='nl80211\x00', 0x100000000) socket(0xa, 0x5, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x101101, 0x40) getsockopt$auto(r3, 0x84, 0x8, 0x0, 0x0) 11.963106537s ago: executing program 0 (id=618): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) socket(0xa, 0x1, 0x84) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x801, 0x106) socket(0x1f, 0x800, 0xffffff01) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x80080, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x20000, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_INTERFACE(r2, &(0x7f0000000780)={0x0, 0xf0, &(0x7f0000000740)={&(0x7f0000000700)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB], 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x4000080) read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000e80)=""/215, 0xd7) recvmmsg$auto(0x3, 0x0, 0x687bcbd, 0x8, 0x0) shutdown$auto(0x200000003, 0x2) sysfs$auto(0x2, 0x1b, 0x0) socket(0x11, 0x2, 0x300) socket(0xa, 0x801, 0x106) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x244000, 0x0) bind$auto(0x4, 0x0, 0x0) socket(0x1a, 0x5, 0x1) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) 10.324578823s ago: executing program 0 (id=626): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) init_module$auto(0x0, 0xffff9, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.6/usb7/power/wakeup_active_count\x00') prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x8000000000000000, 0x1000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x28102, 0x0) lseek$auto(0x3, 0x7fffffffffffffff, 0x0) madvise$auto(0xfffffffffffffffd, 0x2000000080004001, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000380)='/proc/thread-self/net/dev\x00', 0x48141, 0x0) write$auto(r0, 0x0, 0x10000) capset$auto(0x0, &(0x7f0000000000)={0x3, 0x7, 0x8}) request_key$auto(&(0x7f0000000000)='*&*#{\x00', &(0x7f0000000040)='/*%\xb1C\\%\x00', &(0x7f0000000080)='X{b&$\x87/!.\xaf@*x)-\x00', 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/power/suspend_stats/failed_suspend\x00', 0x65c680, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000000c0)=""/255, 0xff) move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x30, 0x80000006, 0x4) r2 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x406, 0x5, 0x1ff, 0x7, 0x42, 0x4909b6f9, 0x1ffdf, 0x7, 0x200003, 0x2, 0xa121, 0x3, 0x7, 0x4, 0xb4, 0xa, 0x4, 0x10001, 0x80, 0x100000000, 0x0, 0x7, 0x2100, 0x200, 0x0, 0x84, [0x8, 0x0, 0x0, 0x50100000000000, 0x10000000000006, 0x2000, 0x0, 0x6, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffd, 0xffffffff, 0x20000000000, 0x5, 0x0, 0xffffffffffffbfff, 0xfffffffffffffffd, 0x1, 0x400, 0xffffffffffffffff, 0x4, 0xfffffffffffffffe, 0x9, 0x0, 0x0, 0xfffffffffffffff9, 0xc, 0x0, 0x8, 0x0, 0x6, 0x0, 0x88e, 0x8000000000008, 0xfffffffffffffffc, 0x9, 0xa38, 0x3, 0x3, 0x0, 0x8, 0x80000000ffff, 0x7]}, 0x7fffffffffffffff, 0xd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) madvise$auto(0x0, 0xffffffffffff0005, 0x19) socket$nl_generic(0x10, 0x3, 0x10) 8.987208804s ago: executing program 6 (id=630): openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fb0\x00', 0x2, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttynull\x00', 0x201, 0x0) openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000440), 0x20100, 0x0) (async) r0 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000440), 0x20100, 0x0) ioctl$auto_LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) write$auto(0x3, 0x0, 0x7fffffff) (async) write$auto(0x3, 0x0, 0x7fffffff) openat$auto_stat_fops_(0xffffffffffffff9c, &(0x7f0000000180)='/proc/stat\x00', 0x2, 0x0) read$auto(0x3, 0x0, 0x80) (async) read$auto(0x3, 0x0, 0x80) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x7, 0x1000000004, 0x9b72, 0x2, 0x100) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xc0000, 0x0) listxattrat$auto(0xffffffffffffffff, 0x0, 0x7ffffffe, &(0x7f0000000380)='\xdf^\xe2o\x87D\x10\xa0\x0e1\xb5B\xd6k]Yh\x99\xf4\xbcy.8\xcd\xf2I\xcc\xf5\xc7\xee\xb8\xea\xb7+\xd8K\xf1\x1aI\xe6(\x9f\xaeS\xf1\x199\x1fk\x01\xf36\xe1 \x1a+\xcd\xfc6\xc7W\xeaw7\x1b\xf4\x01\xebQ\n\x94{\xb5\xa7/\xa3\xa7\x16\x82\x1c\rEqd\xf7~\xba{\x8f7S\x82\xed\x8es\x02W\xdc\x16l\xee\xf1\xd9\x83\xc8', 0xe9) (async) listxattrat$auto(0xffffffffffffffff, 0x0, 0x7ffffffe, &(0x7f0000000380)='\xdf^\xe2o\x87D\x10\xa0\x0e1\xb5B\xd6k]Yh\x99\xf4\xbcy.8\xcd\xf2I\xcc\xf5\xc7\xee\xb8\xea\xb7+\xd8K\xf1\x1aI\xe6(\x9f\xaeS\xf1\x199\x1fk\x01\xf36\xe1 \x1a+\xcd\xfc6\xc7W\xeaw7\x1b\xf4\x01\xebQ\n\x94{\xb5\xa7/\xa3\xa7\x16\x82\x1c\rEqd\xf7~\xba{\x8f7S\x82\xed\x8es\x02W\xdc\x16l\xee\xf1\xd9\x83\xc8', 0xe9) statmount$auto(0x0, &(0x7f0000000480)={0x8, 0x1, 0x1, 0x3, 0xf, 0xb, 0x1ffde, 0xc, 0x4, 0x8000002, 0x9, 0x5, 0x5, 0x4, 0xb0, 0x7, 0x2, 0x3, 0x5, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000009, [0x0, 0x10000, 0x10000, 0x2, 0x0, 0xffffffffffffffff, 0x4000000000000, 0x0, 0x0, 0x6, 0x9, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x9, 0x4, 0x2, 0x1, 0x0, 0x800, 0x0, 0x0, 0x9, 0xfffffffffffffffd, 0xfffffffffffffffc, 0x2f7, 0xfffffffffffffffc, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffffd, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x1959de19, 0xfffffffffffffffc, 0xfffffffffffffffd]}, 0x1fe, 0x81) (async) statmount$auto(0x0, &(0x7f0000000480)={0x8, 0x1, 0x1, 0x3, 0xf, 0xb, 0x1ffde, 0xc, 0x4, 0x8000002, 0x9, 0x5, 0x5, 0x4, 0xb0, 0x7, 0x2, 0x3, 0x5, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000009, [0x0, 0x10000, 0x10000, 0x2, 0x0, 0xffffffffffffffff, 0x4000000000000, 0x0, 0x0, 0x6, 0x9, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x9, 0x4, 0x2, 0x1, 0x0, 0x800, 0x0, 0x0, 0x9, 0xfffffffffffffffd, 0xfffffffffffffffc, 0x2f7, 0xfffffffffffffffc, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffffd, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x1959de19, 0xfffffffffffffffc, 0xfffffffffffffffd]}, 0x1fe, 0x81) close_range$auto(0x0, 0xffffffffffffffff, 0x2) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x24048000}, 0xc0) ioctl$auto(0xffffffffffffffff, 0x13, 0xffffffffffffffff) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) (async) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x10, 0x2, 0x0) (async) r2 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x200002, 0x2, 0x800040eb1, 0x602, 0x300000000000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x1, 0x7) mmap$auto(0x0, 0x400005, 0x800000000000df, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) close$auto(r2) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x8, 0x2) (async) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x8, 0x2) syz_clone3(&(0x7f0000000400)={0x9840100, 0x0, 0x0, 0x0, {0x31}, 0x0, 0x0, 0x0, 0x0}, 0x58) 8.655010972s ago: executing program 0 (id=632): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) mmap$auto(0x0, 0x10000, 0x4000000000db, 0xeb1, 0x2, 0x8000) read$auto(r0, 0x0, 0x20) openat$auto_generic(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/x86/tlb_single_page_flush_ceiling\x00', 0x1, 0x0) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/self/statm\x00', 0x800, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) close_range$auto(0x0, 0x5, 0x0) pipe$auto(0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0x4048aec9, r1) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/wlan1/retrans_time_ms\x00', 0x414a82, 0x0) fchown$auto(0x0, 0x8000000000000000, 0x0) rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r3 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r4 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, r4, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ioctl$auto(0x3, 0xc0205647, 0x38) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000010}, 0x0) getcwd$auto(&(0x7f00000020c0)='&\x00', 0x4) setgroups$auto(0x3770, &(0x7f00000000c0)=0x7) sendmsg$auto_CTRL_CMD_GETPOLICY(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="07004587257b0000ca250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008800}, 0x10004010) ioctl$auto_TIOCMGET2(r3, 0x5415, &(0x7f0000000280)="7c2dc6334df908ff09ef37a1abbf6b27ecb80b6637da2d872e3a20bf076e6266e5eea2cd26a1d2d7424b90299e64587f8a2b5b3214e1b7eb2b545558f3e3ea7183cc52a27e623b1aa5ba58332c33bd26ec771444af08b80fee58514407a7c4e2406faf3b729a187a099c183f54ef9ec0d0db07b4ee63075dd697fb15ae88e6e3c2323a2a35c6301353c95b3cc2b7e811896329d823d054286228fcef32bf475e461c9e624e03eca1806e25c264b0a4a7d4fcbed8f6178b9203edfe883460e519925faa288a") sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB, @ANYBLOB="18"], 0x1ac}}, 0x40000) mkdirat$auto(r3, 0x0, 0x4) 7.34002804s ago: executing program 6 (id=636): socket(0x18, 0x800, 0x71) openat$auto_msft_opcode_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/bluetooth/hci5/msft_opcode\x00', 0x80040, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f0000000000)) r1 = openat$auto_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/stats\x00', 0x100, 0x0) bpf$auto(0x10, &(0x7f0000001700)=@query={@target_fd, 0x7, 0x1, 0x9, 0x7f, @prog_cnt=0x2, 0x0, 0xf, 0x8, 0x7, 0x1}, 0x63a) pread64$auto(r1, &(0x7f0000002f00)='@[}\x00', 0x2, 0x3) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000001bc0)={0x20, r4, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@HWSIM_ATTR_IFTYPE_SUPPORT={0x8, 0x17, 0x8}, @HWSIM_ATTR_SUPPORT_P2P_DEVICE={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x220000c1}, 0xc0) r5 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000002640), 0x0, 0x0) ioctl$auto_USB_RAW_IOCTL_INIT(r5, 0x41015500, &(0x7f0000000140)={"a7a018b09bb196a05739a38a73473b93f5452886bc599ef976c54a71a5ce72a9af15390e93a8760df83859e16320e8d0b1161f13d13afae66b1d900a4958396aa98d3504ca431aabab1964249251e57fa70517cc19b0e3974dc2a89edac932b8859c767780d65e849700", "e600d778751f5f9e03e1f2b96e39a8ac08de7e036d650e2184857e6b64f6a2c7fb08c6f5ce3828fb4e9498c076bef49c99c9cd91332e12b53664dc20fa879020fbd184b8d300c13be6e57970685ce029fb2385ae6e132c1c6adbcfbd873a3b925d397a08fb733e19ef5ec4f40b0b473c72efd18b8a9e9f3d12c5e44468922beb", 0x3}) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) adjtimex$auto(0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) shmdt$auto(0x0) syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000040), r2) ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, &(0x7f0000000080)="38ce8d988e7f79f2ee7d96e8acc5c5f06e052c45ed5b652d5254cd6d4113bb0beff3788da9c3f6a8d689372e09be1fde83f90bcd27228fffd9838513b456219bd9b0e720983a1d433cf924c068d9b1fcbbe01e792fae408fb5c489f34ae43e132047bcccf0480d3abc1cd12bf0fd2bb4ac493b9b618cdf3f6c666c51cd623aa1df50ad05f863c620b4aefb919f228189f0e19ac747b01ecc8a2da653cf725103025c736236217355526d5f3f034d5c12fa2e2c6739f46301765a1ecea59cb3eafbd32b101e9d6c8c138647ef2250c9b640560f63a95f27c1b5d862a6bcae35a2b1") landlock_create_ruleset$auto(&(0x7f0000000000)={0x7f, 0x7, 0x7}, 0x9, 0x100) r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) ioctl$auto_TIOCSTI2(r6, 0x5412, &(0x7f0000000000)) r7 = openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000d00), 0x48900, 0x0) read$auto_cachefiles_daemon_fops_internal(r7, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) memfd_secret$auto(0x72df6d71) 7.199553883s ago: executing program 5 (id=637): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = prctl$auto(0x38, 0x5, 0x4, 0x7, 0x7) r1 = io_uring_setup$auto(0xd, 0x0) r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), r1) sendmsg$auto_NL802154_CMD_SET_ACKREQ_DEFAULT(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x24, r2, 0x200, 0x70bd2a, 0x25dfdbfd, {}, [@NL802154_ATTR_CHANNEL={0x5, 0x8, 0x2}, @NL802154_ATTR_CHANNEL={0x5, 0x8, 0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x45}, 0x20004000) ppoll$auto(&(0x7f0000000000)={0xffffffffffffffff, 0x9b2, 0x1}, 0x2, 0x0, 0x0, 0x8) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/route\x00', 0x0, 0x0) timer_create$auto(0x3, 0x0, &(0x7f0000000140)=0x6) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x40001, 0x0) write$auto(r4, 0x0, 0xeffd) mmap$auto(0x0, 0x40009, 0xa, 0x9b72, 0x2, 0x28000) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/pagemap\x00', 0x121800, 0x0) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) socket(0x2, 0x5, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x14, 0x0, 0x8) mknod$auto(&(0x7f0000000080)=':,\x00', 0xcb, 0xfffffffa) execve$auto(&(0x7f0000000100)=':,\x00', 0x0, 0x0) mknod$auto(&(0x7f0000000b00)='X))\x00', 0x63c1, 0x7ff) mknod$auto(&(0x7f0000000340)='\xe1\x9eHU\x00', 0x67c1, 0x7fc) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) kexec_load$auto(0xff, 0x2, &(0x7f0000000080)={@buf=0x0, 0x2, 0x48000, 0x3000}, 0x4) r5 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f00000001c0), r3) sendmsg$auto_TIPC_NL_MON_GET(r0, &(0x7f0000001380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001340)={&(0x7f00000013c0)=ANY=[@ANYBLOB="d8100000", @ANYRES16=r5, @ANYBLOB="00022abd7000ffdbdf2512000000c11005804322cde2301ed9fb32fa0879c8899ae5e74996ba336c8a8cb5fe8c5aadef6e10c0ff936dd346a8b5ff3cad6c21548eb98ad4b0dc774e2ad6fe684ff80026602e02018fdf9e1f9da26e7f972c3e2aac050f057e1f0f9a45388d98db034edeb45318c3a934ef4361bf8bfaa68d655633fd052b301a575f5f046b566edb5a3cef4231c299d946334babac76a1fdcc7fd9c8296256208bcb00742b980431f8849ef77673203a8a234d0b4055d22c644d58bec10f6adfc9071c889fea819e5d915cd1ad261842a57c781a7214beb3595948d3c709f29e3e4012113ebfbfeb3b87bedc514a0d111de8577598cc39ee4e1e5680ea96178ec42d9f9f7e5c8a59181ea50a7d98654c5f4e31d1ca71e580f3b00fd68a21c9c7729fa644241f0e8712ab2c18ad00396b6a3fb22e626ef4653eb211754bffd5084dc7f72d6c884294e76b5621122a3e493e956cb9cbd266e557cf3cce49384d192d89b926ce1bde15e06f1226d62c396274f89d0bb31b78fe5bdfc420747283b64aa218d38319fd6fd02b2660a136453ffa4dc79789241fb1a9043513ed4078a5b406abf0d12fcbd6e3a4e470807518cd249ffdf16657b5e0ec6c94eb6a5051c34c1157db300ec6effecee76109ea6adfaba46615d6a11fd29bc29bd129c1de879d461c36155b7b4ef474256cee610088e9a34b4385c485468773f3090dd1656c3d3b2bd5a899abae5241b007380b7412b278030f0a86e3a945255013239c0b9ef814b90a3e6d710c0fc65c0d8841aeecaf6f7714d3a648c948d551e0596d1cfe5ed0a996e718614ce72a6ada6811730b2545ef24dc5f493806c40376761f685d731877af8421d61061865180f0171b7d380684ec21d694a69f7b54f96f6ce66ccfff855309407626edcaf0842007e056fcf357170f30861ec45fe5b0355213bd8d2523c5ffd81c20d8093338147c1f17c452a81970685b0a018faaf375fe9428676ad88b89415a03bea0c0acaf14844006add0e2d6d79b2c4531ccec8c3905c23f0aa8d26c447c7a0f8b05cd94c29a24bbe9f1c9acb75947cece3c4ece45818c53ea186edb89f57ecb256a697c2e0cef8f8a476c2a7ac510fbaaff7117a2ea3e19ce00a3f98b25403ba2f6fd3a3cdfb11b712f2b1ffc20ca66589923177ae0ed2dc280b5d39391835006b1a22a667f39e6b64542632106af6a3daa5571809f3739c5e46d8066b86256abcf800fdc6bc8aca4ea422069a2c9c1715ddba1b9de8d1ddf4ba80b2f5ea651cc9302f9a9d751ac822ee8c1fea5b5d8ff3f3b83f50f2d1df420c49f51c56d8a1a81f8db739c5253fadeee9865be73ef15d77c7062954da07d7876344e7e3c7a13b6801faf61092105758ba70240b6e283c0341f32cacfe31e8154fcd3476c586b926d23d279000f06a132f68bf6257e449ef20d0c684f2a66dac2f8788d3cecb23ebdc4e712a62b51db7ec69069e1eb5f11d5bacdf15800e666777af169c4dee30b095c818296e27fe4d744195dc002d6741fbe18c47df737a845879a4b153e8cc487841803ca907005057a59d918f64410bf738fd3bd75128beedb0fcf58f11a45e261e69251b03cd4eef46310fe87a6bff21d1a7a64dd65af28b09176b28f1d7fe51d50a68dfd94f31f4e54f8a67ca3aced7016a8362155181500224a8cdf43daa84cf70035730c18fc23e98acb328d91f81744d10f6bcba962106e7620fa4195c8948ce0cd532469994dc9f51eb7cf0d26ec061c3009a6587fcb1e282d80d307e13cff88c7c23b36918482f20bcb3d1cc7c03790072532cca00a13abcf2fb27db36f2d242ca2d37f4a2b53838fcc96a6b4bb590f7a1004dd65c021942881ab0cc0e93f0ef706d1c93c4f151daff5aacf98426143c1a08b52501bc1936c4c08a308e2593c7f67e90055fce0e219e47bdb92cd06a456b4a9dfe18f6fd8a43e61ae8ced807f6247bc7eb669a11fcb03f18c5c854c24ab20b0e0ce7a19a34ba07ea4f92ffccc96d60c91ce25d15cdc0a2940975f013ed3507e4ac7b2e0d849ad2d46d654ef4f8fec67987c3607d2b5ca89984b28ec2f3afa587a9963dc4be077010ea0d4830c7db4550dcaccb2373791571d3682721afdac9fcd75c9ab7047ea4bd107cfc457c8b2378f197d71d3002cc00e8bd64b2da6bbe2ffd6e34aef7c264d35f73a5c89e40104216406c9879be4062fee16047ac4aa1a4ab499a98ffea28216c5641c6331808690846700d876ab42e02bf3b30ff1168825c50f9682751a8718f36bbb6153c741bd48db12e712b1ebfbb1144aa967e641abf9cd8a1dcecc23389f7ae0acd0a89028a671f950c4045036695adfd88049ae34f8a7d365feae0efae8de07e2072b048725e7d8daa622149e6311f37ac4ce7e51196870e79b69cfb1c5af62c7ce445584c4208bf8cf8dbdedba6627acc5a17855738b0660c3cf106cf931ba3ddf77cf466efc73dad38736f42bbb4ee8e9e3637ebe5c4364c754113c3a8728001791a0be1bcac252ecea9638411d77fa791ecb4d8f3cc8feb24406695b82d781a0b3d4df22bf6e15220ab7454d3b0c6bf5afaa6732d37ce981dc79cfc37af6d2cee914b4977e8ec847cdafa802cb804d6cd8d8065ba28f2e5849b3231c2b7c7bd12c4c1aaa4701a14db3374fd92afcc3868694e2c85c86e117c42f9e6ade38774b3a668bd74c5119e96472d7f4f8895abdd485f5e8c70521d26f101020a868d7df5112ea830ec5825ba97ea73d4922c982927d54a3e67b4426afc51d81bc4d73e1adcfd34ef94b8acb1744627ecb54b97c7723361333f93037303c4adb3ae689f481202fbf15abd163b55c6df24555665e90579dc188a0bf7b522c2f232887e5bef67531a38fb8206ff195a89c37c4fc5095dc6770fba20bff1a316d8c316c06e7e0b64784970f7dc93cdc529147b1117bf82e6d42fe0b4f8d23185819d04889204abd7533e50ab37bd8f9b0513694f47e6db68a7e43eed5b2929eb678c62349ffa467f284cd76905b19583efa68592237b42c23fef4377ec89be92e8a35b4e0c48aa8f9e891e422c61ef31db46f59fd2166841b2581dc4fbc6b7b373c115bbbda43640a5de99f7ccd144f3c04d4b85aed6777d8fa19903b9de3c27112f9aa7590c350c62fb6ce8df612ab7632cb65b5592259c8a1d9161a56ee4fe4dc5e7824610c9fc9a80c84bd348767a5a4ba1366d3a2b618d6927aaa8071af444bfa275d9162187c85996247e190f18f4117a24bb33d488e9a147654893fa25a58feff9240a61aa087fcf47299bd07ebd4b3de31a860362ad28af7d34dd9a9d6834c8591884b3f9c6ab6d9dfd6c418441368b8326d83c97bd1774ad2078d1533377937ac861e2cd1544095dbc049cae0d3efc19c67caf1f72f4ccc29d46282b3c1d1e9fad60b944fe36c0a59887fe0366a96a1a9906ff1dacc647b65fe40edb797ab4127e6361b1c99b349241c6c147d03bd5ec893b34ac0aded18f8c681386c67804f8a873a822120fcbbdeeed4329b9b0ebc31fb25a61822b698e55225b016556b42b1efc0ae3015f2f3ff7ec9c644dc66b935f9e7028891ae2e572c4597874e0d91f2b7e58d39279b15d654fe18ec8e6dc3aaef0eb6bc6200de89f6a7ad724c8f8a84f882109787e69e426bcea12126acb87b0a64dd2dd4802c2ba3d507e225ba3dd3b3c88ff6407e5c5a88a9469b1cd9b3e321dfe800250b76543203f43c6d9b4d7728e2b56d0a8a97b9c39c36b16bfc76874162869dcdf74c95f6f2b7571140f6a97d1e11758e3eca9665b1b414fb73e365f30479d74eeebb987da0d8f907b220c1f44de425bfd717f73ef8f13eed2ba0c0959cc0995f8889fbb7bb238c4426065e6cfaa5ce8e237e73111ec032d4c1a3863eb35d8016587a8379d803bdd14fef80bba31e8eaa06d85e0346426585ae68641774dbd3b1f242b06bf9010355382194795ef15f72312bfc6c7c819c5b06677f5a2fbe8853b8d7b2ba166f2be539e3546e40d5e672318ed49ba21ddf3eb244e4a6524bb2709e00f530bbb27d7f9ed11a87a92e863a593e61b20a7bac9d3921107669e16688ba28ddcc37ee9295443744453a5c6e9a885257e42492355310e601b47071508181df21f866f78eb06a8fb62e5b030d99c269e552fddd8b0af0729f0ab449e400851217700f88386180056cb032a1e38d27ce925c95e5ec62bfe58e45bdc9b69c09aa1f84532c29b824d726dfc26e14daf4634a45819bf67c06c36e285ef1d41b5b4c53d594d28104bdbb7992d30240ec21b102035a0f6d5373f880efad7eebf3256cd79ff1fdda11c7d64e9a32907487fb165f1c807704c0b301b448c41e9f4d8a29f27da4e9e91cab90efb9dc51de840e97c686ecb20b3aa16ade791458f79c0a17e0fa4cb8734a816334a4558260a5649e7fbef7ff8fe439d4ca018a32bf3569b06ba64a92c9b92e2bd9f603a209029e917cdbe4247d0058ee2653fcf6bf6f781149fe9296dec5de94df84c407f83620c34aef9a871d3b68e5991b0b89d78ec6ed0cbb5ae0034647c3266799aa89625ce09bc1b7aaa4121464264c9933c6ee047c009551d15287b0370d70fa2bd34134c36ebbba0598252eac1989655f3c0c26895a3cfcd8ad3773af408d3ad38013e5f1b2048aa8cdf5e823ae7e0baa502fa7b92fa3dc5416207434edcdd4d23dc20b1daad0902feb06b1886beb5accf0fc10f6cd1a3f0cbc2bc6126eafed92adc2ddfd3b103dd7bdaabf32cfa2175d6736ff92119e8aaa845a2921268298a302fe75691b263db23d21b2e67ba980283452e7140a79c0fa54c805cd4e28f3eaa4f060661ce727e6eecf21ae8608b48cf5c1d9504b934b0f09b6e3ad5c6728e268f0fd4dadeb1c71d59009c33b32cf7678973615f406a11807bc0c836d434991c430cc27a01736077d3c6758398f480033448a3aacd2b04940e84958aa61a807cd4f415b6125278725626eb1eb7ee24aac552055bcd4b349b502b4e4da758c73f8fe760cdc571a87e39daa12b9f4d61fd40626fd61c18dc2094efa54d3e120ef3878fd3916c488c8b6d605027aaa978a6f476c2aa1fefdb9e710ddd7682d5a6fa6e4605a3c4fb53689c2ee353bcca1c2ae080f1ed3cfe2bfdc7b6538c4a2a5584988e802966badf7fdf753aa11d3008396286a4d080c2417c305f70180ad39f4af2f6946318af0c5bb08c9ba15124792372e1a52e4c1d11102996010676359931104599fd73846564aaa21c12670bf207f7208de47faa38fbb57f43e6890b5301bdc35b6d4ec0530fc4091d785f77509c72ee138ceeba900c0ac68404e3d325102d1d5071590f72d4999d670aca757677646608a5af3bc064c03f74e36b086db81cc186b44565bd1841ee84effe6ff6402beec82c837381dce2b61d079539f608131e6c1be186c31d51db221a16c15e6de3cf4fece6796db4f660d137374d56bcba30adae65c0495df15bcf761ce8d967ccd6eba973828626efc722fc275a021d693fac2235e77b0b4c49e14b7d04cf687f14217a672bfc318712c4178e6a63e46a145151e983c0f1d748e63ecdb7a29f1c02637607196adf0821b376903a4f455032c556321998ebbc1cc30b37fc0c1c910966a3e61e2cab174cc4744bf13c21ef4dc230585ace1b16e3d6fe7e8b8e98203f1402f95e75af8020edfff78e219fa2794fd20f6d198d0e25bef4802c92813dc21219b60a000e32c4633d7d589c05874930e767664919656c732800527ff72b8e20d71e66f628e90a156914978c494cfe68c99fe3eb65a35839a5fc253d2a50c6b92946e62ac1a1e0c007e00f62324bf2d2a280004006d00957427fc905b83b02181feae1971f5d7c0856f852a59dc2e3a76991e74a6ec0f701686b3cce7141b52231ffb4cf691474b200e511a628716a81f6fdfb756040ac653fd6421ff2446e1750921fa91d259d70949b2132dd5eb59dfc2051ede1b4443aaea8942e430299d6fe7a96fbe1d21dc6819ec4a23ca1f5aa263c2bd24f1470b1948147a78bff107d43230f2c352a296db2d6c7cf959e1b714003000fe8000000000000000000000000000bb000000feff63c376d1d8921356a37a1481238b9cab46f18e2204d9b1ea2896abf149dffc3ac0350c4fa91830414fd9573d1e0b6b2ad880e1fa7e6c5144448174a1824bcf8e3761e8887fc3f916a60ebd4f74f0e1f69eb1cfbbde0abe9fc16384"], 0x10d8}}, 0x40801) close_range$auto(0x2, 0x8000, 0x0) r6 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000200), 0x103400, 0x0) ioctl$auto_USB_RAW_IOCTL_EP_CLEAR_HALT(r6, 0x4004550e, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) madvise$auto(0x0, 0xffffffffffff0001, 0x15) 5.324358247s ago: executing program 5 (id=639): openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/wlan1/retrans_time_ms\x00', 0x414a82, 0x0) fchown$auto(0x0, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r1 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, r1, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ioctl$auto(0x3, 0xc0205647, 0x38) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000010}, 0x0) getcwd$auto(&(0x7f00000020c0)='&\x00', 0x4) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008800}, 0x10004010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB, @ANYBLOB="18"], 0x1ac}}, 0x40000) mkdirat$auto(r0, 0x0, 0x4) 5.279170886s ago: executing program 6 (id=640): r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x800, 0x0) mq_timedsend$auto(r0, &(0x7f0000000040)='/dev/snd/controlC2\x00', 0x7fffffff, 0x2, &(0x7f0000000080)={0x2, 0x2}) r1 = socket$auto(0x7, 0x6, 0x8) read$auto_snd_seq_f_ops_seq_clientmgr(r1, &(0x7f00000000c0)=""/208, 0xd0) r2 = syz_genetlink_get_family_id$auto_psample(&(0x7f0000000200), r1) sendmsg$auto_PSAMPLE_CMD_GET_GROUP(r1, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x14, r2, 0x5, 0x70bd27, 0x25dfdbfe, {}, ["", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x189ce3ba13745d51}, 0x0) r3 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000340), r1) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000380)={'pimreg1\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'pimreg0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000400)={'ip_vti0\x00', 0x0}) sendmsg$auto_MACSEC_CMD_ADD_RXSC(r1, &(0x7f0000000b80)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000b40)={&(0x7f0000000440)={0x6f0, r3, 0x100, 0x70bd29, 0x25dfdbfe, {}, [@MACSEC_ATTR_RXSC_CONFIG={0x160, 0x2, 0x0, 0x1, [@nested={0x111, 0x25, 0x0, 0x1, [@generic="eabc2da5a5b384ff44475006bc928eab5f729a6290a2d464836749f58d8887afdaa1f9672eab0405ce7818b7cd9db0", @generic="b7d0bcba1fc899a85cd6f7a40565e507a1296a3e9aa6c34e69e79b53d47623b46f08f5635436278718c2a2bfea00422bdb0beb19f461fe7e2acfd54a22ba8abfe14295427c5625b26c426fdff1fa1d730aca06213c5e2f7c609479e5ea85d0e0d70d81ca661e87bf425a667e1d17c5086a86559308b245b805265e38345c47ac6ec5077575a5438d866c98dd2a5e6bc127b48edc0381755471404bf6e850f87632d0b97c1646e0d194997fb79e6c1a7a8945041bd7ef8687145112e9925e78fc9c4c47f14d07c49957c77fe28e9c43ec8570dd92ae9b9676058bc94f80d7"]}, @nested={0x12, 0xf8, 0x0, 0x1, [@generic="cac8900164a8a1091a00", @nested={0x4, 0x8d}]}, @generic="0c98138ce09daa816c1701b9104aea13be29b1badceda5134ad110ddd29767e651c69b500f154a6c3eb2693e3de19bf12aa94af3"]}, @MACSEC_ATTR_SA_CONFIG={0x1e2, 0x3, 0x0, 0x1, [@nested={0x14c, 0xb3, 0x0, 0x1, [@nested={0x4, 0x4}, @typed={0x8, 0x65, 0x0, 0x0, @u32=0x81}, @typed={0x8, 0x6b, 0x0, 0x0, @uid=0xffffffffffffffff}, @generic="f07d90716f102f88f9d832b4a7d57f194b958894d3a1302f3f05e121f28f9add822605e8f7af3f730e3ba1eef96192b27c2e45753ffef98b3f58decde938e0f02601c616a94d4c6f6b32b8b15a8c0c868d13c5f80ca7e00c40bab5659504d7b827eb4d2768a358ca65fe323611d1f20048dd6f26b135238d189fef02e003737fd5b42ee739f5", @generic="cba25595a7dcf9b068640cce53243e0f1fc0550c027e", @nested={0x4, 0xbf}, @typed={0x93, 0xc3, 0x0, 0x0, @binary="1860e48e2af591b03936b3a0b81ed1c11ab234cb6922a1044a435a42a046804af80f10a31a76297d1f85c537cc272b00ec9c55431619ceb8c370a56702e55ae4e754bfa8b838866744aae84e04265bd277f55cceac8f8402e1580f710a72f270ed3bfe5d43fbed3e67b6c1af8d11deb9850e739e1ff7dc3e669964e3a46263177310d4ecf32527bfd938a034479564"}]}, @generic="f2a36746ba09795b615372cda46714f807fad28d03896a3c992e4ca41ee413d1572b8b4704efcf9cbc1499165ce6822f8703c2bac5f4b50682cabd0dcf3e5c1c5b8cb984f08c1d6ec10af15c005e00cd91442840a2b66cd067abebbdf2ad5c99f888ef71473e394427dbb79d7a7f42b904c3d029dad3f0807c71f22c86d3c521ba03fe44a11cc672cb35b2cf9f56a165d9fe"]}, @MACSEC_ATTR_IFINDEX={0x8, 0x1, r4}, @MACSEC_ATTR_IFINDEX={0x8, 0x1, r5}, @MACSEC_ATTR_SA_CONFIG={0x2d1, 0x3, 0x0, 0x1, [@nested={0x1db, 0x65, 0x0, 0x1, [@typed={0x8, 0x6b, 0x0, 0x0, @ipv4=@multicast1}, @nested={0x4, 0x5e}, @typed={0x8, 0xb9, 0x0, 0x0, @ipv4=@private=0xa010100}, @generic="807538fb37b5629f32da725af28441972b2df9767e2d72967894e4d62c788a8aea4c4bff580eea7720466716975c0c6cc86e528640d7a26b34adb14cece67edc2f22d4b74bdfe3c23a7ff1003b34b4000d0a15eb9c2794fd4cb3bb4a07356bbb30752415b1b98cda17d13c059ac214b073eca57257436170b1afdabf6ea6dd9cf241b6cfb09014ab050cae99018426a4098a921b89b4c89539d8b2728956bc12154c7e72f4eb4941d3af1da07176d75f1ec43fbe2d3310ba9db4b20e66ea15598d26e5ab9a7d285fd422ff748edccfcba648151d20ba38586bf478518c04f3774680401b61db83125038ee976cd0eaf7", @generic="39f43f5a3ff81995f03df441bc8f1596a1d5ab761c5fcb6095f2aae2a2b0282e70829ffa0d8780de99b6c5fc37f4fada89fb810ecaa6ea9e57c99c66c688479046ed9775a038d0d479f451e21adf668e4a627e3d3bd0185213b004598eb01c16fadf0ab91c626fc786653833f55400c88ce02f193865926dc5c46297bf2efd198b2aaac087aca5d4c570d75c42fd180a8a86289b8cfbf8b4c98e0b63f235089d9d52e018186dc0d2a24f0706f1611659d078a50f554fbdc93f90f717c604724cdd72c27c8d6a1352d30c42dd824adcb6ed1bc6"]}, @generic="48aa11f0112ba165ee5482ec30fefdd3640f5941bed2cfe9e242743b56af959517fed0292a152096bdc6b582c78c9d961ba8af9f17d73efa4830495a6269d1ce2f6aad3da3cf6d6be4551f167aaa46ad4c5e6c9b8ed8b7376fa4574ecdba3b21727bd6b00eecb9b0c2ca770417f7d62449b165297e4c125282a7ca566802e2c8ce148bb49a676d81fd0e39a19980b0180efef5da04e9184daf41a9ebf6d4c9b90ba7cf5f234d7647b952c692cc4a69993d4fed810b79fd72991421e1ce13bb6b227d4425b1509e4a622994cf3aac45a0af0de793150ac0e97d35a253985fc10dd6030714fb7701f6f80da35b080b08d074"]}, @MACSEC_ATTR_IFINDEX={0x8, 0x1, r6}, @MACSEC_ATTR_SA_CONFIG={0xac, 0x3, 0x0, 0x1, [@typed={0x4, 0x145}, @nested={0x9b, 0x88, 0x0, 0x1, [@generic="fe578bb363cb50ee589daad8ad1409211eecd311e575a887158206078832e42c0f0cf207cd6356966b2d59ebe70f157738b844c33b64887a08e90cb5f3387a1ed58a1c2912e4a3f5d8f1a8fdc242460bc72666f21c314e071b8c45dcc83c058e43f433a93e9051860791dde7c370fef320bd0fd01aca3109432c732a996cf915a3c2f0a1a503325a9aeda94f316cd56d7f7f07dfc359fd"]}, @typed={0x8, 0x6e, 0x0, 0x0, @ipv4=@multicast1}]}]}, 0x6f0}, 0x1, 0x0, 0x0, 0x40001}, 0x20008044) r7 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000c00), r1) sendmsg$auto_ETHTOOL_MSG_PLCA_GET_STATUS(r1, &(0x7f0000000d40)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000d00)={&(0x7f0000000c40)={0x8c, r7, 0x10, 0x70bd2b, 0x25dfdbfb, {}, [@ETHTOOL_A_PLCA_HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7c}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}]}, @ETHTOOL_A_PLCA_HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x761a}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x8}, @ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x4}]}, @ETHTOOL_A_PLCA_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xecd609f}]}]}, 0x8c}}, 0x4000000) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000d80), r1) mmap$auto(0x2, 0x0, 0x433, 0x11, r0, 0x7) r8 = epoll_create$auto(0xfffffff9) r9 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000e00), r1) sendmsg$auto_NL80211_CMD_NEW_INTERFACE(r8, &(0x7f0000000ec0)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x14, r9, 0x2, 0x70bd28, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x48814) r10 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_XFS_IOC_ALLOCSP(r8, 0x4030580a, &(0x7f0000000f40)={0x0, 0x81, 0x10, 0x5, 0x4, 0xffffffffffffffff}) msgctl$auto_MSG_STAT(0x8, 0xb, &(0x7f0000001000)={{0x5, 0xffffffffffffffff, 0xee01, 0xed5, 0xfffff84e, 0x81, 0xe542}, &(0x7f0000000f80)=0x8, &(0x7f0000000fc0)=0x8, 0x6, 0x8a9b, 0xfffffffffffffffd, 0xe99, 0x7f, 0xf000, 0x3, 0x8, @raw=0x1, @raw=0x3}) r13 = getsockopt$auto_SO_TXTIME(r8, 0x9, 0x3d, &(0x7f0000001080)='pimreg1\x00', &(0x7f00000010c0)=0x6) sendmsg$auto_NL80211_CMD_GET_REG(r10, &(0x7f0000001e80)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001e40)={&(0x7f0000001100)={0xd40, r9, 0x20, 0x70bd29, 0x25dfdbfd, {}, [@NL80211_ATTR_TXQ_MEMORY_LIMIT={0x8, 0x10b, 0x10000}, @NL80211_ATTR_PROBE_RESP={0x58f, 0x91, "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"}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x1}, @NL80211_ATTR_STA_PLINK_STATE={0x5, 0x74, 0x1}, @NL80211_ATTR_SCAN_FREQUENCIES={0x75c, 0x2c, 0x0, 0x1, [@nested={0xf2, 0xe4, 0x0, 0x1, [@generic="bbf670b449381ce55e7d0b2aa0729da047d81d5df4ffb56ec32436e0784a56938cafcea75315963cfff4782f57acd5b12fd2cd7e77527ff98a8be49299115d156a2c46e69e4388def683cace81e25cc3e87a5977ad637460dbea1c23cfbd07937542430054651d6cb03334c693b49df6f9852130bb2c5bc39f720fb201764b12ef8e8dab7e5bbb2d6c5382c6d9ae18bd1a96846241b0c1c3b83dfa97be91112cda4e28e0d804abafb7f1bada5bd521531c40217667626e11efed69182831", @typed={0x8, 0x100, 0x0, 0x0, @pid=r11}, @typed={0x7, 0x10b, 0x0, 0x0, @str='$$\x00'}, @typed={0x14, 0x4b, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @remote}}, @typed={0x8, 0xf, 0x0, 0x0, @u32=0x7}, @nested={0x4, 0xdf}]}, @nested={0x3be, 0x52, 0x0, 0x1, [@nested={0x4, 0xb3}, @generic="c7bcbf8d0993ee6b3deb65a52c3e71ee92ac031002d38709ceea83042b712a4046aea20b255229b63db28d117bbd421b8d6cf3c13c432072db13de39bbeede65316afefa7a7e369e9c9328810615d4cac1fce8d743579d60489828512913f3c10ebd312ee027dcd68cf529d896b9c9bc3565655b280446b91dd0fe1b2b5aa52aa650fdb98d67311aa21416959e9a30a9e28e808c74830bb727566868490971c7bc92ee741c632640a6e4bc197152a4fc347d8a8aaf1c77c9bcffa9cdd31194f30d81d5fc5372cbe2c336b27ff3cd44e1e8306fe44ca0ad7cb096c5fbd509310489446a22e30a5d226e4736ea2dfd3f1ca6e3", @generic="2f319d6a76fe20b347cd2539cfecadd9bcae473558614560ae4f921d672e5d2d506c0bc832eb1a13ef62a8cf0bf659a38f8256b122001a412a65a36f9e5a78bc5524f734b5050c0a054926ad277d50d6a770675979576618b271a934b34d5abe62f88f164af79ce2e2fff1ed91baf06bb899e1609dfd46bdd9472788a171cf24d9adfd074822849c352cd86e37dcb06e1793d3659c2cba4998ad28f180fe1676a7feb67ce4c4d75956d72a41a11f91b84fd1", @generic="5b131800fa2ca2176710c739a448b70d462a2b613f0d145daf7e2719295c3550ae7dcc7e2333dfdfef64bf8a7340afd6af5b41bce08ef853a55ef84fc8003a1bc42126e0d2f42637795dd7e762147a43c408b98681e99007dfd7c5f24e4e4738ee23d46ecf2902dacd0b501d92d49657d3eb89db705e03ce95287f58fc3c50ab2f6f5abcc22543d32675d6a800e32b49bbfee9e1c78723666369f0962545c0c825aff53e6858b7cd427e09ae287f9182f5a7389ea53865f34056edacce367b7bef24da54d1929df1a1bcc3f2c268cce4a128b7e8198ed52bac97214e8feab094599d42df51ba4561f819f48f8a6fe743d5e8a828fedf92ef7b7995ac469a49", @typed={0x8, 0xbd, 0x0, 0x0, @uid=r12}, @typed={0x8, 0x116, 0x0, 0x0, @u32=0x2}, @generic="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", @typed={0x8, 0x19, 0x0, 0x0, @ipv4=@empty}]}, @generic="69ec6f7c138d754ac75308e8717cc8aae1bd47c6ec677cf5afcb39cc8c8cb5abde5231c6e7349035bdd0c6a396084298d6f1bfd6624073c50a21ed4c2a74bc46cbe8c31ba3afef8f9a93ff118b068bc46697a30be3bccb2440bc7de8e48766dee6e38c3f523826d33637e6aac4b7d8d4651c9d7e7fbc00cb9eded7deeb03f55af1bcf777fd087657f1c5b9b0d052acd2fda76263ca12eea6681eb57886297bb94296de6f632d89c5fc88bb6b65f0c660e48bf2c666c4d1dea0f4ed19cd035d4037dea7d02dad20ed365e16e09683bffd1b457cb410df11ccee1d277b65c824c8d54644e922201e541708874e07b176", @generic="8be95d7a2f8b4fb3ad388086b14ca360658fda07fc2e7bccca1aec407b0e25c44af2337ba807d9bc91c4f3bf6dcd6c1625a9a2973e53152de7392197d58c729620ef1f76a7431886fe9a50681de89e4f7d8022cdee68cf8b54b8bb55d6ef2fc612c1890fa07da533b634a148c4749d5c5a07ad0b6146407b747346bc7a2e333d6bbc02f3cd7741dd919e412d1e6ed77a599a1e1d504c10eb24", @nested={0x119, 0x7, 0x0, 0x1, [@nested={0x4, 0xeb}, @typed={0x8, 0xcf, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0xb}}, @typed={0x4, 0x9d}, @typed={0x8, 0xe6, 0x0, 0x0, @fd=r13}, @generic="dc3569b34922127e47cade826ca211633cd32e7001ca155dad662890c1b73a23b966e5d66f3868e8b18529da81f622a14b3110f9037fdb95bb5fb68a469142c181da2bb54fbbdc9fad6ec1ea5e327ae9bf1e43e94d5179a5f5307da5ccaa79ed49182ca919ff54b5859bff68a5b1fa34c26e9cfc6d4440dc9e43254fff5968d0ad1b27b069f2a631e422466e29001011794700fffc685881650453f193298a47088127a784c6f45f9650bcdb92e25b6dfd384e950dbc9bdc00607d33efb9d2adc1ef9706ff346ee4d9ab16252ed0165cf3126834c24d4e0a341c04e8c8c9430be483dbafa01e98254710f8ccd65b45ca999a", @nested={0x4, 0x5}, @generic="140aa5e2e1cce3"]}]}, @NL80211_ATTR_TXQ_LIMIT={0x8, 0x10a, 0x1b3}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0x10, 0xe8, "319f9a1fa8391e3762afa14f"}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r4}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x3}]}, 0xd40}, 0x1, 0x0, 0x0, 0x24004818}, 0x10) r14 = syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000001f00), r10) sendmsg$auto_NCSI_CMD_PKG_INFO(r13, &(0x7f0000002200)={&(0x7f0000001ec0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000021c0)={&(0x7f0000001f40)={0x270, r14, 0x400, 0x70bd28, 0x25dfdbfb, {}, [@NCSI_ATTR_CHANNEL_MASK={0x8, 0x8, 0x8}, @NCSI_ATTR_PACKAGE_LIST={0x22c, 0x2, 0x0, 0x1, [@generic="45a3d190c46d6544dd177289cafab2e6c2", @nested={0x116, 0xdd, 0x0, 0x1, [@typed={0x8, 0x58, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0xc}}, @generic="1191d1665824aef1818c76f11ff7b5400b219c82c509ce0ff5127fe12f161d226b30efbaebd9f9131d03f9ca0b741baaf0d895117a8313f31981fe4cf3cd32cfdac0de55b22bfa56aa425a0c5a2419df2f77b117708351400c42195f495c934d6214a636fdbab498fe0494699d8adfbfc783c56f", @typed={0x8, 0x81, 0x0, 0x0, @fd}, @nested={0x4, 0x116}, @generic="569f7e27bf74420779586f4faf0f7bb392805909ebc34d543944eff7fd887479f80ed65e5d53112565de1bbd323ac8b5fe8e275fa2fad70c2b197824102767d65c3c9bb7e94d2dcf1f1ffaef7412c48b29724deb8f1922eadfdc7f173bc42f74545fb260e8acd98aa51411e9e63c3d0c228ba5f9d171a5b7ee8550832296858ad9d166548c06", @nested={0x4, 0xd7}]}, @typed={0x8, 0x3e, 0x0, 0x0, @pid=r11}, @typed={0x8, 0x66, 0x0, 0x0, @pid=r11}, @generic="5f5ef523ee5dea14fb8dc711a2e9665353122c20b8d818fcaf095f1d9a71b84510de4b2eb9d949d98ad97acaba59aa655b96badf935c34aeb251e4df8b7b96f38f1bcf252e23b4362e8fbeb68a6f15927a4645d1ef073e8c86c6688db95c0addd6ec1bea662a092ba5c0a28f5ff8742395d674b8d0b29bb1b23d820178321dbba3bcfb81d75aaad8e48231fb9d43605daead17cf476e3e5f0ec325a85032cd3dff55e3e4ea688b2e51af3c2adc53b2001c1cb509f119609f7e3272c330312dfd45b463fd0039d47e3d43693add67f6143bb4927b896251cdb77454eeb63507", @typed={0x8, 0x135, 0x0, 0x0, @uid=r12}, @typed={0x6, 0x113, 0x0, 0x0, @str='\xff\xff'}]}, @NCSI_ATTR_MULTI_FLAG={0x4}, @NCSI_ATTR_PACKAGE_ID={0x8, 0x3, 0x2}, @NCSI_ATTR_MULTI_FLAG={0x4}, @NCSI_ATTR_IFINDEX={0x8, 0x1, r6}, @NCSI_ATTR_CHANNEL_ID={0x8, 0x4, 0xf7c}, @NCSI_ATTR_CHANNEL_ID={0x8, 0x4, 0x6}]}, 0x270}, 0x1, 0x0, 0x0, 0x5}, 0x24004080) openat$auto_rb_simple_fops_trace(0xffffffffffffff9c, &(0x7f0000002240)='/sys/kernel/debug/tracing/tracing_on\x00', 0x430100, 0x0) setsockopt$auto_SO_SNDBUFFORCE(r10, 0x7, 0x20, &(0x7f0000002280)=',^&)]\x00', 0x1) ioctl$auto_SNDRV_PCM_IOCTL_STATUS642(r13, 0x80984120, &(0x7f00000022c0)={0x7, "e06c5fe1", 0x4, 0x7, 0x5, 0x9, 0x8, 0x4, 0x100000001, 0x3, 0x4c7a, 0x8, 0x4, 0x8, 0x4, 0x2, 0x80, 0xbf7, 0x604, "5493423c9d250a598f1c39b4cf9a80f83ed7e165"}) getsockopt$auto_SO_LOCK_FILTER(r0, 0x1, 0x2c, &(0x7f0000002380)='\x00', &(0x7f00000023c0)=0xb) poll$auto(&(0x7f0000002400)={0xffffffffffffffff, 0xf, 0x8}, 0x8, 0x101) 4.440346452s ago: executing program 6 (id=642): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) (async) r1 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0) ioctl$auto_CEC_S_MODE(r1, 0x40046109, &(0x7f0000000140)=0x12) (async) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) (async) timerfd_settime$auto(r0, 0x9, 0x0, &(0x7f0000000040)={{0xe, 0x400}, {0xfff, 0x7f}}) 4.434424171s ago: executing program 5 (id=650): socket(0x1e, 0x80000, 0x0) mmap$auto(0x0, 0x2020009, 0x80003, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x101, 0x0) r1 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64) fchdir$auto(r1) mkdir$auto(&(0x7f0000000480)='./cgroup\x00', 0x6) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup/cgroup.type\x00', 0x103042, 0x0) r3 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000040)='/proc/cpuinfo\x00', 0x244c00, 0x0) io_uring_setup$auto(0x4, &(0x7f0000000080)={0x5, 0x85, 0x81, 0x1b673474, 0x3, 0x6, r3, [0x3, 0x80000000, 0x8000000], {0x1ff, 0x0, 0x9, 0xf30, 0x0, 0x9, 0x7, 0x7, 0xffffffffffffff7c}, {0x400, 0x0, 0x34b, 0x0, 0x2, 0x7, 0x8, 0x7f, 0x2}}) rmdir$auto(&(0x7f0000000300)='./cgroup\x00') ioctl$auto_IOCTL_VM_SOCKETS_GET_LOCAL_CID(r0, 0x7b9, 0x0) ioctl$auto(r2, 0x1, r2) 4.107945127s ago: executing program 0 (id=643): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) mmap$auto(0x0, 0x402000c, 0xa, 0xeb1, 0x401, 0x8000) r1 = socket(0x2a, 0x2, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r2, 0x541c, r1) r3 = socket(0x2b, 0x1, 0x0) sendmmsg$auto(r3, 0x0, 0x5, 0x20000000) sendmsg$auto_NL80211_CMD_DISASSOCIATE(r3, 0x0, 0x1) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d) io_uring_setup$auto(0x81c5, 0x0) openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/config/target/dbroot\x00', 0x0, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x5, 0x20000000) r4 = openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000040), 0x2003, 0x0) ioctl$auto(r4, 0x6f2d, r4) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000) write$auto(0x3, 0x0, 0x100082) ioctl$auto_SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, &(0x7f0000000040)) write$auto(r0, &(0x7f0000000000)='+}\'.%&\x00', 0x5) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000) 4.107656108s ago: executing program 5 (id=644): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0) write$auto(r0, 0x0, 0x3f00) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x100200, 0x0) ioctl$auto_FITRIM4(r1, 0xc0185879, &(0x7f00000000c0)={0x8, 0x8, 0x3}) (async, rerun: 64) read$auto(r1, 0x0, 0x20) (async, rerun: 64) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) (async) r2 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32) r3 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000040), 0xffffffffffffffff) (rerun: 32) sendmsg$auto_GTP_CMD_NEWPDP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, r3, 0x1, 0x70bd27, 0x25dfdbfe, {}, [@GTPA_TID={0xc, 0x3, 0x8}, @GTPA_LINK={0x8, 0x1, 0x5}, @GTPA_VERSION={0x8}, @GTPA_FLOW={0x6, 0x6, 0x9}]}, 0x38}, 0x1, 0x0, 0x0, 0x20044850}, 0x40000) ioperm$auto(0x7, 0x6, 0x2) (async) sched_getattr$auto(0x0, &(0x7f0000003e00)={0x5, 0x80000001, 0x6, 0xa, 0x3, 0x535, 0x1000, 0x9, 0x5, 0xea50}, 0xeaf, 0x0) (async) msgrcv$auto(0x3, &(0x7f0000000040)={0x9, 0x1}, 0x3, 0xff, 0x2a5) (async) getpeername$auto(0x3, 0x0, 0x0) 4.011412686s ago: executing program 6 (id=645): set_mempolicy$auto(0x2, 0x0, 0x8) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x80002, 0x0) mmap$auto(0x0, 0x4020009, 0xdc, 0xeb1, 0x401, 0x8000) unshare$auto(0x800) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) futex$auto(0x0, 0x8d, 0x0, 0x0, 0x0, 0x100) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x40400, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8000, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x6c, 0x0, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@HSR_A_IF1_AGE={0x8, 0x3, 0x200}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x4}, @HSR_A_IFINDEX={0x8}, @HSR_A_NODE_ADDR_B={0xa}, @HSR_A_NODE_ADDR={0xa, 0x1, @broadcast}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_IF1_AGE={0x8, 0x3, 0x38}, @HSR_A_IFINDEX={0x8}, @HSR_A_NODE_ADDR={0xa}]}, 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) unshare$auto(0x8) write$auto(r0, &(0x7f0000000100)='/d-:\xe7J\x00'/23, 0x1eb07fd) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x1, 0x3, 0x1000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0xa) connect$auto(0x3, 0x0, 0x55) connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x4, @multicast2}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) io_uring_setup$auto(0x9e6, 0x0) sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x2000010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) 3.564453026s ago: executing program 35 (id=643): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) mmap$auto(0x0, 0x402000c, 0xa, 0xeb1, 0x401, 0x8000) r1 = socket(0x2a, 0x2, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r2, 0x541c, r1) r3 = socket(0x2b, 0x1, 0x0) sendmmsg$auto(r3, 0x0, 0x5, 0x20000000) sendmsg$auto_NL80211_CMD_DISASSOCIATE(r3, 0x0, 0x1) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d) io_uring_setup$auto(0x81c5, 0x0) openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/config/target/dbroot\x00', 0x0, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x5, 0x20000000) r4 = openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000040), 0x2003, 0x0) ioctl$auto(r4, 0x6f2d, r4) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000) write$auto(0x3, 0x0, 0x100082) ioctl$auto_SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, &(0x7f0000000040)) write$auto(r0, &(0x7f0000000000)='+}\'.%&\x00', 0x5) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000) 3.411630421s ago: executing program 2 (id=647): openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/wlan1/retrans_time_ms\x00', 0x414a82, 0x0) fchown$auto(0x0, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r1 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, r1, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ioctl$auto(0x3, 0xc0205647, 0x38) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000010}, 0x0) getcwd$auto(&(0x7f00000020c0)='&\x00', 0x4) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008800}, 0x10004010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB, @ANYBLOB="18"], 0x1ac}}, 0x40000) mkdirat$auto(r0, 0x0, 0x4) (fail_nth: 3) 2.936675218s ago: executing program 5 (id=648): socket(0x18, 0x800, 0x71) openat$auto_msft_opcode_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/bluetooth/hci5/msft_opcode\x00', 0x80040, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f0000000000)) r1 = openat$auto_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/stats\x00', 0x100, 0x0) bpf$auto(0x10, &(0x7f0000001700)=@query={@target_fd, 0x7, 0x1, 0x9, 0x7f, @prog_cnt=0x2, 0x0, 0xf, 0x8, 0x7, 0x1}, 0x63a) pread64$auto(r1, &(0x7f0000002f00)='@[}\x00', 0x2, 0x3) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000001bc0)={0x20, r4, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@HWSIM_ATTR_IFTYPE_SUPPORT={0x8, 0x17, 0x8}, @HWSIM_ATTR_SUPPORT_P2P_DEVICE={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x220000c1}, 0xc0) r5 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000002640), 0x0, 0x0) ioctl$auto_USB_RAW_IOCTL_INIT(r5, 0x41015500, &(0x7f0000000140)={"a7a018b09bb196a05739a38a73473b93f5452886bc599ef976c54a71a5ce72a9af15390e93a8760df83859e16320e8d0b1161f13d13afae66b1d900a4958396aa98d3504ca431aabab1964249251e57fa70517cc19b0e3974dc2a89edac932b8859c767780d65e849700", "e600d778751f5f9e03e1f2b96e39a8ac08de7e036d650e2184857e6b64f6a2c7fb08c6f5ce3828fb4e9498c076bef49c99c9cd91332e12b53664dc20fa879020fbd184b8d300c13be6e57970685ce029fb2385ae6e132c1c6adbcfbd873a3b925d397a08fb733e19ef5ec4f40b0b473c72efd18b8a9e9f3d12c5e44468922beb", 0x3}) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) adjtimex$auto(0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) shmdt$auto(0x0) syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000040), r2) ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, &(0x7f0000000080)="38ce8d988e7f79f2ee7d96e8acc5c5f06e052c45ed5b652d5254cd6d4113bb0beff3788da9c3f6a8d689372e09be1fde83f90bcd27228fffd9838513b456219bd9b0e720983a1d433cf924c068d9b1fcbbe01e792fae408fb5c489f34ae43e132047bcccf0480d3abc1cd12bf0fd2bb4ac493b9b618cdf3f6c666c51cd623aa1df50ad05f863c620b4aefb919f228189f0e19ac747b01ecc8a2da653cf725103025c736236217355526d5f3f034d5c12fa2e2c6739f46301765a1ecea59cb3eafbd32b101e9d6c8c138647ef2250c9b640560f63a95f27c1b5d862a6bcae35a2b1") landlock_create_ruleset$auto(&(0x7f0000000000)={0x7f, 0x7, 0x7}, 0x9, 0x100) r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) ioctl$auto_TIOCSTI2(r6, 0x5412, &(0x7f0000000000)) r7 = openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000d00), 0x48900, 0x0) read$auto_cachefiles_daemon_fops_internal(r7, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) memfd_secret$auto(0x72df6d71) 2.751037003s ago: executing program 6 (id=649): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) mmap$auto(0x0, 0x402000c, 0xa, 0xeb1, 0x401, 0x8000) r1 = socket(0x2a, 0x2, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r2, 0x541c, r1) r3 = socket(0x2b, 0x1, 0x0) sendmmsg$auto(r3, 0x0, 0x5, 0x20000000) sendmsg$auto_NL80211_CMD_DISASSOCIATE(r3, 0x0, 0x1) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d) io_uring_setup$auto(0x81c5, 0x0) openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/config/target/dbroot\x00', 0x0, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) r4 = socket(0x2, 0x1, 0x0) sendmmsg$auto(r4, 0x0, 0x5, 0x20000000) r5 = openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000040), 0x2003, 0x0) ioctl$auto(r5, 0x6f2d, r5) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000) write$auto(0x3, 0x0, 0x100082) ioctl$auto_SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, &(0x7f0000000040)) write$auto(r0, &(0x7f0000000000)='+}\'.%&\x00', 0x5) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000) 2.750280388s ago: executing program 2 (id=651): openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/wlan1/retrans_time_ms\x00', 0x414a82, 0x0) fchown$auto(0x0, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r1 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, r1, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ioctl$auto(0x3, 0xc0205647, 0x38) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000010}, 0x0) getcwd$auto(&(0x7f00000020c0)='&\x00', 0x4) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008800}, 0x10004010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB, @ANYBLOB="18"], 0x1ac}}, 0x40000) mkdirat$auto(r0, 0x0, 0x4) 2.308612401s ago: executing program 2 (id=652): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) (async) time$auto(&(0x7f00000001c0)=0x5) (async) listmount$auto(&(0x7f0000000100)={0x1f, @raw=0x81, 0x80000002, 0xfffffffffffffff4, 0x2}, 0x0, 0x80000f4240, 0x8000) (async) time$auto(&(0x7f0000000040)=0x7ff) 2.071459053s ago: executing program 2 (id=653): r0 = socket(0x1e, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x101, 0x0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) write$auto_qrtr_tun_ops_tun(r2, &(0x7f0000000300), 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) getsockopt$auto(0x4, 0x6, 0x1f, 0xfffffffffffffffc, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) write$auto(0x3, 0x0, 0xffd8) ioctl$auto_IOCTL_VM_SOCKETS_GET_LOCAL_CID(r1, 0x7b9, 0x0) r3 = syz_clone(0x18200000, &(0x7f0000000200)="5bbb3c00f572956f228823b0ac4e59cd974c29c402bdf5c4081d4367b2cdb2d75af303e3dc0bfa2d62db5087ce06b3d7200c4929b57a4cbc6dc69897c517848163d1cd0f0548bc802a909be2a5e25ef0c5116bf395adcc92759b04344eea18600fb6492802307edb43e9a3865c8a923ffc5d9a81c44d6e9a4d105726365e27d9f35485b5304ff2bd97f9b0c06b0860ec451dfd4d627db7275582cc86f5ef5dc6dda59b9a54e6eee7934978152e8a896169951972586bbf8a089736cc78cdc8998e191d4eb627f00ca51c25211395aaf6a0a78f673213a362a4216c13bdb41c593ab0b94950c3e67f682378d1c13796cdb987fd", 0xf3, &(0x7f0000000300), &(0x7f0000000340), &(0x7f0000000380)) r4 = fcntl$auto_F_GETSIG(r1, 0xb, r3) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0) sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="f2000000", @ANYRES16=r5, @ANYBLOB="000428bd7000fbdbdf251f00000004009300"], 0x18}, 0x1, 0x0, 0x0, 0x20004084}, 0x20000000) chmod$auto(0x0, 0x4) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x2000000000008000) socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000040)={0x0, 0x0, 0x38, 0xffffff01, 0x9, 0x9, 0x80000001, 0x7, 0x8, 0x5, 0x5, 0x9, 0x2, 0x8, 0x5, 0xf, 0xffffffffffffffff, 0x9, 0x10001, 0x5}, 0x800, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16, @ANYBLOB="1b0026bd7400fddbdf250300000004000800100003800c00098008"], 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="010600bd7000fbdbdf250a"], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x24048010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRES8=0x0, @ANYBLOB="18"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x700) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video33\x00', 0x80382, 0x0) socket(0x2, 0x1, 0x106) setsockopt$auto(0x3, 0x1, 0x3c, 0x0, 0x9) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f00000001c0), 0x288000, 0x0) 1.46987403s ago: executing program 2 (id=654): openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x84002, 0x0) socket(0x28, 0x1, 0x0) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) (async) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x400, 0x0) (async, rerun: 64) write$auto_ep0_operations_inode(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 64) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) r1 = socket(0xa, 0x2, 0x88) r2 = socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_fd=r0, r2, 0x4, 0x401, r1, @relative_id=0x13, 0xe600}, 0xf) (async) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r0, 0x0, 0x3}, 0xc) (async) ioctl$auto_USBDEVFS_DISCARDURB(r0, 0x550b, 0x0) (async) socket(0xa, 0x801, 0x84) write$auto(0xffffffffffffffff, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) unshare$auto(0x40000080) (async, rerun: 32) close_range$auto(0x2, 0x8, 0x0) (rerun: 32) openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0x109000, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="02002cbd7000fedbdf2502000000080003008000400008001d"], 0x24}, 0x1, 0x0, 0x0, 0x20008010}, 0x400d0) (async, rerun: 32) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async, rerun: 32) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14867850", @ANYRES16=0x0, @ANYBLOB="10002cbd7000fddbdf250a00000a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) (async) socket(0x10, 0x2, 0x0) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000300)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x9}, 0xd248}, 0xffffffff, 0xfffffffd) (async) openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000580)='/sys/kernel/debug/tracing/tracing_cpumask\x00', 0x8002, 0x0) mmap$auto(0xfffffffffffffffc, 0x3, 0x3, 0x15, 0xffffffffffffffff, 0x7fffffffffffffff) (async, rerun: 64) r3 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x109402, 0x0) (rerun: 64) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000180), 0xffffffffffffffff) (async) ioctl$auto_UBI_IOCDET(r3, 0x40046f41, 0x0) (async) clock_gettime$auto(0x3, &(0x7f0000000280)={0x3ff, 0x100}) 201.000794ms ago: executing program 5 (id=655): unshare$auto(0x40000080) madvise$auto(0x5, 0x7fffffffffffffff, 0x7) mmap$auto(0xfe, 0xffffffffffffff9a, 0x4, 0x1ff, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) epoll_create$auto(0x4) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0) socket(0x11, 0x80003, 0x300) socket(0x25, 0x1, 0x1) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/input/devices\x00', 0x4a040, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fd, 0x8, 0xd, 0x1, 0x948b, 0x2, 0x15f4da0b, 0x6, 0x80000000080, 0x1fffe000000000, 0x80000001, 0x3f, 0x6d3c, 0x200000000000005, 0x2]}, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) mlock$auto(0x7c89, 0x47fff) 0s ago: executing program 2 (id=656): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) mmap$auto(0x0, 0x402000c, 0xa, 0xeb1, 0x401, 0x8000) r1 = socket(0x2a, 0x2, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r2, 0x541c, r1) r3 = socket(0x2b, 0x1, 0x0) sendmmsg$auto(r3, 0x0, 0x5, 0x20000000) sendmsg$auto_NL80211_CMD_DISASSOCIATE(r3, 0x0, 0x1) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d) io_uring_setup$auto(0x81c5, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r4 = socket(0x2, 0x1, 0x0) sendmmsg$auto(r4, 0x0, 0x5, 0x20000000) r5 = openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000040), 0x2003, 0x0) ioctl$auto(r5, 0x6f2d, r5) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000) write$auto(0x3, 0x0, 0x100082) ioctl$auto_SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, &(0x7f0000000040)) write$auto(r0, &(0x7f0000000000)='+}\'.%&\x00', 0x5) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000) kernel console output (not intermixed with test programs): or+0x10/0x10 [ 126.921084][ T6394] ? __fget_files+0x1fc/0x3a0 [ 126.921133][ T6394] do_splice_direct+0x178/0x250 [ 126.921173][ T6394] ? __pfx_do_splice_direct+0x10/0x10 [ 126.921213][ T6394] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 126.921256][ T6394] ? rw_verify_area+0xcf/0x680 [ 126.921296][ T6394] do_sendfile+0xafb/0xe40 [ 126.921341][ T6394] ? __pfx_do_sendfile+0x10/0x10 [ 126.921382][ T6394] ? __fget_files+0x206/0x3a0 [ 126.921436][ T6394] __x64_sys_sendfile64+0x1da/0x220 [ 126.921465][ T6394] ? ksys_write+0x1ba/0x250 [ 126.921507][ T6394] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 126.921548][ T6394] do_syscall_64+0xcd/0x250 [ 126.921592][ T6394] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.921636][ T6394] RIP: 0033:0x7f3a3198d169 [ 126.921659][ T6394] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 126.921689][ T6394] RSP: 002b:00007f3a32799038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 126.921716][ T6394] RAX: ffffffffffffffda RBX: 00007f3a31ba5fa0 RCX: 00007f3a3198d169 [ 126.921735][ T6394] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004 [ 126.921752][ T6394] RBP: 00007f3a32799090 R08: 0000000000000000 R09: 0000000000000000 [ 126.921769][ T6394] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001 [ 126.921786][ T6394] R13: 0000000000000000 R14: 00007f3a31ba5fa0 R15: 00007ffde88eced8 [ 126.921829][ T6394] [ 127.827411][ T6397] netlink: 4 bytes leftover after parsing attributes in process `syz.0.61'. [ 128.579240][ T29] audit: type=1800 audit(6035368441.241:3): pid=6419 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.65" name="discovery_nqn" dev="configfs" ino=9741 res=0 errno=0 [ 132.229659][ T6493] program syz.4.73 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 132.415948][ T6498] cougar: G6 mapped to space [ 133.759284][ T6513] netlink: 4 bytes leftover after parsing attributes in process `syz.4.75'. [ 134.240480][ T6502] QAT: Stopping all acceleration devices. [ 138.304089][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 138.316151][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 138.524208][ T6586] program syz.0.85 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 138.725150][ T6592] cougar: G6 mapped to space [ 139.969191][ T6597] netlink: 4 bytes leftover after parsing attributes in process `syz.1.87'. [ 142.217652][ T6604] QAT: Stopping all acceleration devices. [ 142.775468][ T6621] FAULT_INJECTION: forcing a failure. [ 142.775468][ T6621] name failslab, interval 1, probability 0, space 0, times 0 [ 142.818495][ T6621] CPU: 0 UID: 0 PID: 6621 Comm: syz.2.93 Not tainted 6.14.0-rc4-syzkaller #0 [ 142.818536][ T6621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 142.818554][ T6621] Call Trace: [ 142.818564][ T6621] [ 142.818575][ T6621] dump_stack_lvl+0x16c/0x1f0 [ 142.818623][ T6621] should_fail_ex+0x50a/0x650 [ 142.818687][ T6621] ? fs_reclaim_acquire+0xae/0x150 [ 142.818731][ T6621] should_failslab+0xc2/0x120 [ 142.818760][ T6621] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 142.818811][ T6621] ? ext4_init_io_end+0x24/0x170 [ 142.818847][ T6621] ext4_init_io_end+0x24/0x170 [ 142.818877][ T6621] ext4_do_writepages+0x93e/0x32d0 [ 142.818926][ T6621] ? is_bpf_text_address+0x30/0x1a0 [ 142.818973][ T6621] ? __pfx___lock_acquire+0x10/0x10 [ 142.819037][ T6621] ? __pfx_ext4_do_writepages+0x10/0x10 [ 142.819089][ T6621] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 142.819125][ T6621] ? do_writepages+0x1b3/0x820 [ 142.819163][ T6621] ? ext4_writepages+0x303/0x730 [ 142.819196][ T6621] ext4_writepages+0x303/0x730 [ 142.819228][ T6621] ? __lock_acquire+0x15a9/0x3c40 [ 142.819262][ T6621] ? __pfx_ext4_writepages+0x10/0x10 [ 142.819307][ T6621] ? __pfx___lock_acquire+0x10/0x10 [ 142.819340][ T6621] ? __pfx_mark_lock+0x10/0x10 [ 142.819374][ T6621] ? stack_depot_save_flags+0x28/0x9c0 [ 142.819429][ T6621] ? __pfx_ext4_writepages+0x10/0x10 [ 142.819469][ T6621] do_writepages+0x1b3/0x820 [ 142.819501][ T6621] ? __pfx_do_writepages+0x10/0x10 [ 142.819527][ T6621] ? wbc_attach_fdatawrite_inode+0x13a/0x190 [ 142.819559][ T6621] ? __pfx_lock_release+0x10/0x10 [ 142.819599][ T6621] ? do_raw_spin_lock+0x12d/0x2c0 [ 142.819650][ T6621] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 142.819682][ T6621] ? lock_acquire+0x2f/0xb0 [ 142.819726][ T6621] ? wbc_attach_fdatawrite_inode+0x24/0x190 [ 142.819765][ T6621] ? do_raw_spin_unlock+0x172/0x230 [ 142.819804][ T6621] filemap_fdatawrite_wbc+0x104/0x160 [ 142.819839][ T6621] __filemap_fdatawrite_range+0xb3/0xf0 [ 142.819882][ T6621] ? __pfx___filemap_fdatawrite_range+0x10/0x10 [ 142.819970][ T6621] ? find_held_lock+0x2d/0x110 [ 142.820011][ T6621] ? ext4_fallocate+0x139/0x3950 [ 142.820064][ T6621] filemap_write_and_wait_range+0xa3/0x130 [ 142.820108][ T6621] ext4_punch_hole+0x194/0x10d0 [ 142.820169][ T6621] ext4_fallocate+0x9b7/0x3950 [ 142.820220][ T6621] ? rcu_is_watching+0x12/0xc0 [ 142.820254][ T6621] ? trace_lock_acquire+0x14e/0x1f0 [ 142.820290][ T6621] ? madvise_vma_behavior+0x1ae3/0x1de0 [ 142.820333][ T6621] ? __pfx_ext4_fallocate+0x10/0x10 [ 142.820393][ T6621] vfs_fallocate+0x60d/0x10d0 [ 142.820446][ T6621] ? __pfx_vfs_fallocate+0x10/0x10 [ 142.820495][ T6621] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 142.820553][ T6621] madvise_vma_behavior+0x1ae3/0x1de0 [ 142.820593][ T6621] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 142.820629][ T6621] ? find_vma_prev+0xdb/0x160 [ 142.820678][ T6621] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 142.820712][ T6621] ? find_vma+0xc0/0x140 [ 142.820750][ T6621] ? __pfx_find_vma+0x10/0x10 [ 142.820787][ T6621] ? __pfx_rwsem_read_trylock+0x10/0x10 [ 142.820837][ T6621] ? do_madvise+0x2b3/0x7c0 [ 142.820876][ T6621] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 142.820910][ T6621] madvise_walk_vmas+0x1cf/0x2c0 [ 142.820945][ T6621] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 142.820990][ T6621] do_madvise+0x366/0x7c0 [ 142.821029][ T6621] ? __pfx_do_madvise+0x10/0x10 [ 142.821064][ T6621] ? native_tss_update_io_bitmap+0x3cc/0x730 [ 142.821121][ T6621] ? rcu_is_watching+0x12/0xc0 [ 142.821161][ T6621] __x64_sys_madvise+0xa9/0x110 [ 142.821196][ T6621] ? lockdep_hardirqs_on+0x7c/0x110 [ 142.821235][ T6621] do_syscall_64+0xcd/0x250 [ 142.821278][ T6621] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 142.821321][ T6621] RIP: 0033:0x7f7362d8d169 [ 142.821345][ T6621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 142.821376][ T6621] RSP: 002b:00007f7363b3c038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 142.821419][ T6621] RAX: ffffffffffffffda RBX: 00007f7362fa5fa0 RCX: 00007f7362d8d169 [ 142.821440][ T6621] RDX: 0000000000000009 RSI: ffffffffffff0001 RDI: 0000000000000000 [ 142.821458][ T6621] RBP: 00007f7362e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 142.821477][ T6621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 142.821495][ T6621] R13: 0000000000000000 R14: 00007f7362fa5fa0 R15: 00007ffcd8020e38 [ 142.821536][ T6621] [ 143.347072][ T6616] input: f as /devices/virtual/input/input6 [ 147.813550][ T6654] netlink: 4 bytes leftover after parsing attributes in process `syz.2.99'. [ 149.997902][ T6663] QAT: Stopping all acceleration devices. [ 150.796230][ T6682] input: f as /devices/virtual/input/input7 [ 152.170903][ T5147] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 152.170947][ T5147] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 152.186199][ T5147] Bluetooth: hci3: adv larger than maximum supported [ 152.186256][ T5147] Bluetooth: hci3: Unknown advertising packet type: 0x20 [ 152.195395][ T5147] Bluetooth: hci3: Unknown advertising packet type: 0x35 [ 152.203277][ T5147] Bluetooth: hci3: Unknown advertising packet type: 0x20 [ 152.210663][ T5147] Bluetooth: hci3: Unknown advertising packet type: 0x20 [ 152.218006][ T5147] Bluetooth: hci3: Unknown advertising packet type: 0x20 [ 152.227880][ T5147] Bluetooth: hci3: Unknown advertising packet type: 0x20 [ 152.804332][ T6720] netlink: 338 bytes leftover after parsing attributes in process `syz.4.112'. [ 154.410788][ T6735] zswap: compressor not available [ 154.822027][ T6747] sock: sock_timestamping_bind_phc: sock not bind to device [ 156.146869][ T6752] netlink: 28 bytes leftover after parsing attributes in process `syz.4.120'. [ 156.936511][ T6772] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 156.942890][ T6772] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 156.949657][ T6772] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 156.956219][ T6772] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 158.279799][ T5147] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 158.279846][ T5147] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 158.294924][ T5147] Bluetooth: hci2: adv larger than maximum supported [ 158.294992][ T5147] Bluetooth: hci2: Unknown advertising packet type: 0x20 [ 158.302181][ T5147] Bluetooth: hci2: Unknown advertising packet type: 0x36 [ 158.309538][ T5147] Bluetooth: hci2: Unknown advertising packet type: 0x20 [ 158.316690][ T5147] Bluetooth: hci2: Unknown advertising packet type: 0x20 [ 158.324676][ T5147] Bluetooth: hci2: Unknown advertising packet type: 0x20 [ 158.332014][ T5147] Bluetooth: hci2: Unknown advertising packet type: 0x30 [ 158.952114][ T6793] zswap: compressor not available [ 159.016434][ T5147] Bluetooth: hci0: command 0x041b tx timeout [ 159.016458][ T5845] Bluetooth: hci3: command 0x0c1a tx timeout [ 159.016507][ T5845] Bluetooth: hci1: command 0x0c1a tx timeout [ 159.022565][ T55] Bluetooth: hci2: command 0x0c1a tx timeout [ 159.041034][ T6798] netlink: 338 bytes leftover after parsing attributes in process `syz.2.129'. [ 160.147591][ T6820] sock: sock_timestamping_bind_phc: sock not bind to device [ 162.182547][ T6832] netlink: 28 bytes leftover after parsing attributes in process `syz.2.134'. [ 164.226988][ T6859] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 164.233235][ T6859] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 164.267467][ T6859] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 164.326669][ T6859] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 164.404806][ T5851] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 164.404854][ T5851] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 164.426081][ T5851] Bluetooth: hci1: adv larger than maximum supported [ 164.426152][ T5851] Bluetooth: hci1: Unknown advertising packet type: 0x20 [ 164.433215][ T5851] Bluetooth: hci1: Unknown advertising packet type: 0x37 [ 164.446132][ T5851] Bluetooth: hci1: Unknown advertising packet type: 0x20 [ 164.454553][ T5851] Bluetooth: hci1: Unknown advertising packet type: 0x20 [ 164.461830][ T5851] Bluetooth: hci1: Unknown advertising packet type: 0x20 [ 164.468991][ T5851] Bluetooth: hci1: adv larger than maximum supported [ 165.430997][ T6874] zswap: compressor not available [ 166.301559][ T5851] Bluetooth: hci3: command 0x0c1a tx timeout [ 166.301622][ T55] Bluetooth: hci1: command 0x0c1a tx timeout [ 166.311441][ T5851] Bluetooth: hci2: command 0x0c1a tx timeout [ 166.376264][ T5851] Bluetooth: hci0: command 0x041b tx timeout [ 167.080388][ T6901] netlink: 28 bytes leftover after parsing attributes in process `syz.1.144'. [ 168.681877][ T6923] netlink: 'syz.0.147': attribute type 27 has an invalid length. [ 168.706235][ T6923] netlink: 334 bytes leftover after parsing attributes in process `syz.0.147'. [ 169.899609][ T6928] vivid-003: ================= START STATUS ================= [ 170.000497][ T6928] vivid-003: Radio HW Seek Mode: Bounded [ 170.207196][ T6928] vivid-003: Radio Programmable HW Seek: false [ 170.281754][ T6928] vivid-003: RDS Rx I/O Mode: Block I/O [ 170.323405][ T6928] vivid-003: Generate RBDS Instead of RDS: false [ 170.345600][ T6928] vivid-003: RDS Reception: true [ 170.354294][ T6928] vivid-003: RDS Program Type: 0 inactive [ 170.482524][ T6928] vivid-003: RDS PS Name: inactive [ 170.491440][ T6928] vivid-003: RDS Radio Text: inactive [ 170.503756][ T6928] vivid-003: RDS Traffic Announcement: false inactive [ 170.511869][ T6928] vivid-003: RDS Traffic Program: false inactive [ 170.523711][ T6928] vivid-003: RDS Music: false inactive [ 170.552533][ T6928] vivid-003: ================== END STATUS ================== [ 171.209359][ T6940] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 171.257890][ T6940] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 171.321860][ T6940] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 171.328532][ T6940] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 173.101569][ T5851] Bluetooth: hci2: command 0x0c1a tx timeout syzkaller syzkaller login: [ 173.336364][ T5851] Bluetooth: hci0: command 0x041b tx timeout [ 173.342458][ T5851] Bluetooth: hci3: command 0x0c1a tx timeout [ 173.346203][ T55] Bluetooth: hci1: command 0x0c1a tx timeout [ 175.676966][ T6982] netlink: 'syz.1.162': attribute type 27 has an invalid length. [ 175.684900][ T6982] netlink: 334 bytes leftover after parsing attributes in process `syz.1.162'. [ 178.516383][ T7002] FAULT_INJECTION: forcing a failure. [ 178.516383][ T7002] name failslab, interval 1, probability 0, space 0, times 0 [ 178.530985][ T7002] CPU: 1 UID: 0 PID: 7002 Comm: syz.1.175 Not tainted 6.14.0-rc4-syzkaller #0 [ 178.531022][ T7002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 178.531039][ T7002] Call Trace: [ 178.531048][ T7002] [ 178.531058][ T7002] dump_stack_lvl+0x16c/0x1f0 [ 178.531101][ T7002] should_fail_ex+0x50a/0x650 [ 178.531144][ T7002] ? fs_reclaim_acquire+0xae/0x150 [ 178.531185][ T7002] should_failslab+0xc2/0x120 [ 178.531211][ T7002] __kmalloc_node_track_caller_noprof+0xcf/0x510 [ 178.531257][ T7002] ? lockdep_hardirqs_on+0x7c/0x110 [ 178.531289][ T7002] ? fib_notifier_ops_register+0x32/0x270 [ 178.531332][ T7002] kmemdup_noprof+0x29/0x60 [ 178.531366][ T7002] fib_notifier_ops_register+0x32/0x270 [ 178.531406][ T7002] fib4_notifier_init+0x4f/0xd0 [ 178.531437][ T7002] fib_net_init+0xc0/0x3d0 [ 178.531470][ T7002] ? __pfx_fib_net_init+0x10/0x10 [ 178.531505][ T7002] ? do_init_timer+0xc9/0x110 [ 178.531539][ T7002] ? devinet_init_net+0x5c1/0x900 [ 178.531578][ T7002] ? __pfx_fib_net_init+0x10/0x10 [ 178.531609][ T7002] ops_init+0x1df/0x5f0 [ 178.531653][ T7002] setup_net+0x21f/0x860 [ 178.531695][ T7002] ? __pfx_setup_net+0x10/0x10 [ 178.531733][ T7002] ? down_read_killable+0xcc/0x380 [ 178.531770][ T7002] ? __pfx_down_read_killable+0x10/0x10 [ 178.531806][ T7002] ? __raw_spin_lock_init+0x3a/0x110 [ 178.531851][ T7002] ? debug_mutex_init+0x37/0x70 [ 178.531883][ T7002] copy_net_ns+0x2a6/0x5f0 [ 178.531921][ T7002] create_new_namespaces+0x3ea/0xad0 [ 178.531976][ T7002] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 178.532023][ T7002] ksys_unshare+0x45d/0xa40 [ 178.532051][ T7002] ? __pfx_ksys_unshare+0x10/0x10 [ 178.532077][ T7002] ? xfd_validate_state+0x5d/0x180 [ 178.532126][ T7002] __x64_sys_unshare+0x31/0x40 [ 178.532153][ T7002] do_syscall_64+0xcd/0x250 [ 178.532190][ T7002] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 178.532227][ T7002] RIP: 0033:0x7f3a3198d169 [ 178.532249][ T7002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 178.532276][ T7002] RSP: 002b:00007f3a32778038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 178.532301][ T7002] RAX: ffffffffffffffda RBX: 00007f3a31ba6080 RCX: 00007f3a3198d169 [ 178.532319][ T7002] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 178.532336][ T7002] RBP: 00007f3a31a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 178.532352][ T7002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 178.532367][ T7002] R13: 0000000000000000 R14: 00007f3a31ba6080 R15: 00007ffde88eced8 [ 178.532401][ T7002] [ 179.325309][ T7008] vivid-003: ================= START STATUS ================= [ 179.336284][ T7008] vivid-003: Radio HW Seek Mode: Bounded [ 179.342020][ T7008] vivid-003: Radio Programmable HW Seek: false [ 179.354282][ T7008] vivid-003: RDS Rx I/O Mode: Block I/O [ 179.508639][ T7008] vivid-003: Generate RBDS Instead of RDS: false [ 179.515117][ T7008] vivid-003: RDS Reception: true [ 179.717640][ T7008] vivid-003: RDS Program Type: 0 inactive [ 179.723522][ T7008] vivid-003: RDS PS Name: inactive [ 180.005596][ T7008] vivid-003: RDS Radio Text: inactive [ 180.046479][ T7008] vivid-003: RDS Traffic Announcement: false inactive [ 180.053368][ T7008] vivid-003: RDS Traffic Program: false inactive [ 180.231474][ T7008] vivid-003: RDS Music: false inactive [ 180.238469][ T7008] vivid-003: ================== END STATUS ================== syzkaller syzkaller login: [ 184.841017][ T7051] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 184.866388][ T7051] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 184.872564][ T7051] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 184.918185][ T7051] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 185.907569][ T55] Bluetooth: hci2: command 0x0c1a tx timeout [ 186.625538][ T7083] netlink: 8 bytes leftover after parsing attributes in process `syz.4.179'. [ 186.936358][ T55] Bluetooth: hci0: command 0x041b tx timeout [ 186.943762][ T5147] Bluetooth: hci3: command 0x0c1a tx timeout [ 186.943785][ T5851] Bluetooth: hci1: command 0x0c1a tx timeout [ 191.982753][ T7138] netlink: 342 bytes leftover after parsing attributes in process `syz.0.190'. [ 193.377827][ T29] audit: type=1800 audit(6035368506.041:4): pid=7159 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.201" name="dbroot" dev="configfs" ino=14785 res=0 errno=0 [ 196.043024][ T5851] Bluetooth: hci3: Malformed LE Event: 0x1d [ 196.150376][ T2919] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 196.289250][ T7187] Invalid ELF header magic: != ELF [ 196.599266][ T2919] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 196.938388][ T2919] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 197.102939][ T55] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 197.113768][ T55] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 197.122180][ T55] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 197.141192][ T55] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 197.151202][ T2919] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 197.162075][ T55] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 197.176598][ T55] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 197.187225][ T7189] netlink: 28 bytes leftover after parsing attributes in process `syz.0.207'. [ 197.401755][ T7189] geneve1: entered allmulticast mode [ 197.828744][ T7191] chnl_net:caif_netlink_parms(): no params data found [ 198.049111][ T2919] bridge_slave_1: left allmulticast mode [ 198.054829][ T2919] bridge_slave_1: left promiscuous mode [ 198.092587][ T2919] bridge0: port 2(bridge_slave_1) entered disabled state [ 198.210882][ T7198] Console: switching to colour VGA+ 80x25 [ 198.317904][ T2919] bridge_slave_0: left allmulticast mode [ 198.317982][ T2919] bridge_slave_0: left promiscuous mode [ 198.318179][ T2919] bridge0: port 1(bridge_slave_0) entered disabled state [ 199.018645][ T7206] FAULT_INJECTION: forcing a failure. [ 199.018645][ T7206] name failslab, interval 1, probability 0, space 0, times 0 [ 199.076270][ T7206] CPU: 0 UID: 0 PID: 7206 Comm: syz.0.203 Not tainted 6.14.0-rc4-syzkaller #0 [ 199.076308][ T7206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 199.076324][ T7206] Call Trace: [ 199.076331][ T7206] [ 199.076346][ T7206] dump_stack_lvl+0x16c/0x1f0 [ 199.076387][ T7206] should_fail_ex+0x50a/0x650 [ 199.076431][ T7206] ? fs_reclaim_acquire+0xae/0x150 [ 199.076470][ T7206] should_failslab+0xc2/0x120 [ 199.076505][ T7206] __kmalloc_node_noprof+0xd1/0x510 [ 199.076550][ T7206] ? security_capable+0x250/0x260 [ 199.076596][ T7206] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 199.076637][ T7206] ? ns_capable_noaudit+0x87/0x110 [ 199.076682][ T7206] __kvmalloc_node_noprof+0xad/0x1a0 [ 199.076723][ T7206] proc_sys_call_handler+0x2a8/0x5a0 [ 199.076771][ T7206] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 199.076818][ T7206] ? trace_kmalloc+0x2d/0xd0 [ 199.076852][ T7206] ? __kmalloc_noprof+0x23b/0x510 [ 199.076902][ T7206] copy_splice_read+0x61d/0xb80 [ 199.076945][ T7206] ? __pfx_copy_splice_read+0x10/0x10 [ 199.076986][ T7206] ? __pfx_register_lock_class+0x10/0x10 [ 199.077041][ T7206] ? __pfx_copy_splice_read+0x10/0x10 [ 199.077076][ T7206] do_splice_read+0x282/0x370 [ 199.077116][ T7206] splice_direct_to_actor+0x2a4/0xa40 [ 199.077157][ T7206] ? __pfx_direct_splice_actor+0x10/0x10 [ 199.077201][ T7206] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 199.077243][ T7206] ? __fget_files+0x1fc/0x3a0 [ 199.077287][ T7206] do_splice_direct+0x178/0x250 [ 199.077345][ T7206] ? __pfx_do_splice_direct+0x10/0x10 [ 199.077385][ T7206] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 199.077428][ T7206] ? rw_verify_area+0xcf/0x680 [ 199.077468][ T7206] do_sendfile+0xafb/0xe40 [ 199.077521][ T7206] ? __pfx_do_sendfile+0x10/0x10 [ 199.077561][ T7206] ? __fget_files+0x206/0x3a0 [ 199.077611][ T7206] __x64_sys_sendfile64+0x1da/0x220 [ 199.077638][ T7206] ? ksys_write+0x1ba/0x250 [ 199.077678][ T7206] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 199.077718][ T7206] do_syscall_64+0xcd/0x250 [ 199.077761][ T7206] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 199.077803][ T7206] RIP: 0033:0x7f651db8d169 [ 199.077825][ T7206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 199.077852][ T7206] RSP: 002b:00007f651e923038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 199.077879][ T7206] RAX: ffffffffffffffda RBX: 00007f651dda5fa0 RCX: 00007f651db8d169 [ 199.077898][ T7206] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004 [ 199.077914][ T7206] RBP: 00007f651e923090 R08: 0000000000000000 R09: 0000000000000000 [ 199.077931][ T7206] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001 [ 199.077947][ T7206] R13: 0000000000000000 R14: 00007f651dda5fa0 R15: 00007ffe6f5df548 [ 199.077982][ T7206] [ 199.506283][ T55] Bluetooth: hci0: command tx timeout [ 199.750375][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.756890][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 200.499524][ T2919] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 200.520234][ T2919] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 200.553983][ T2919] bond0 (unregistering): Released all slaves [ 200.874395][ T7208] netlink: 217 bytes leftover after parsing attributes in process `syz.0.204'. [ 201.097772][ T7191] bridge0: port 1(bridge_slave_0) entered blocking state [ 201.105091][ T7191] bridge0: port 1(bridge_slave_0) entered disabled state [ 201.130979][ T7191] bridge_slave_0: entered allmulticast mode [ 201.144442][ T7191] bridge_slave_0: entered promiscuous mode [ 201.334202][ T7191] bridge0: port 2(bridge_slave_1) entered blocking state [ 201.354463][ T7191] bridge0: port 2(bridge_slave_1) entered disabled state [ 201.374923][ T7191] bridge_slave_1: entered allmulticast mode [ 201.378038][ T29] audit: type=1800 audit(6035368514.031:5): pid=7215 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.205" name="dbroot" dev="configfs" ino=15066 res=0 errno=0 [ 201.401556][ T7191] bridge_slave_1: entered promiscuous mode [ 201.577573][ T55] Bluetooth: hci0: command tx timeout [ 201.678946][ T7191] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 201.818814][ T7191] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 202.165492][ T7191] team0: Port device team_slave_0 added [ 202.299170][ T7191] team0: Port device team_slave_1 added [ 202.397725][ T2919] hsr_slave_0: left promiscuous mode [ 202.409960][ T2919] hsr_slave_1: left promiscuous mode [ 202.426602][ T2919] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 202.434088][ T2919] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 202.460895][ T2919] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 202.469223][ T2919] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 202.513934][ T2919] veth1_macvtap: left promiscuous mode [ 202.536279][ T2919] veth0_macvtap: left promiscuous mode [ 202.541976][ T2919] veth1_vlan: left promiscuous mode [ 202.556775][ T2919] veth0_vlan: left promiscuous mode [ 203.666316][ T55] Bluetooth: hci0: command tx timeout [ 203.691230][ T2919] team0 (unregistering): Port device team_slave_1 removed [ 203.765653][ T2919] team0 (unregistering): Port device team_slave_0 removed [ 204.385015][ T7191] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 204.404407][ T7191] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 204.433983][ T7191] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 204.502748][ T7191] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 204.510046][ T7191] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 204.544319][ T7191] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 204.645160][ T7191] hsr_slave_0: entered promiscuous mode [ 204.667462][ T7191] hsr_slave_1: entered promiscuous mode [ 204.676805][ T7191] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 204.684587][ T7191] Cannot create hsr debugfs directory [ 205.066882][ T7241] FAULT_INJECTION: forcing a failure. [ 205.066882][ T7241] name failslab, interval 1, probability 0, space 0, times 0 [ 205.116186][ T7241] CPU: 0 UID: 7 PID: 7241 Comm: syz.0.214 Not tainted 6.14.0-rc4-syzkaller #0 [ 205.116225][ T7241] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 205.116243][ T7241] Call Trace: [ 205.116253][ T7241] [ 205.116265][ T7241] dump_stack_lvl+0x16c/0x1f0 [ 205.116312][ T7241] should_fail_ex+0x50a/0x650 [ 205.116365][ T7241] ? fs_reclaim_acquire+0xae/0x150 [ 205.116408][ T7241] should_failslab+0xc2/0x120 [ 205.116444][ T7241] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 205.116494][ T7241] ? alloc_empty_file+0x73/0x1e0 [ 205.116533][ T7241] alloc_empty_file+0x73/0x1e0 [ 205.116567][ T7241] alloc_file_pseudo+0x13b/0x230 [ 205.116602][ T7241] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 205.116639][ T7241] ? __raw_spin_lock_init+0x3a/0x110 [ 205.116697][ T7241] create_pipe_files+0x364/0x930 [ 205.116752][ T7241] do_pipe2+0xb0/0x1d0 [ 205.116802][ T7241] ? __pfx_do_pipe2+0x10/0x10 [ 205.116849][ T7241] ? xfd_validate_state+0x5d/0x180 [ 205.116905][ T7241] __x64_sys_pipe2+0x54/0x80 [ 205.116956][ T7241] do_syscall_64+0xcd/0x250 [ 205.116998][ T7241] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 205.117042][ T7241] RIP: 0033:0x7f651db8d169 [ 205.117066][ T7241] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 205.117104][ T7241] RSP: 002b:00007f651e923038 EFLAGS: 00000246 ORIG_RAX: 0000000000000125 [ 205.117134][ T7241] RAX: ffffffffffffffda RBX: 00007f651dda5fa0 RCX: 00007f651db8d169 [ 205.117153][ T7241] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 0000000000000000 [ 205.117170][ T7241] RBP: 00007f651dc0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 205.117188][ T7241] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 205.117205][ T7241] R13: 0000000000000000 R14: 00007f651dda5fa0 R15: 00007ffe6f5df548 [ 205.117241][ T7241] [ 205.432212][ T7248] netlink: 342 bytes leftover after parsing attributes in process `syz.2.206'. [ 205.746972][ T55] Bluetooth: hci0: command tx timeout [ 206.063159][ T7191] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 206.152412][ T7191] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 206.212018][ T7191] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 206.245090][ T7261] sctp: Failed to create the SCTP UDP tunneling v4 sock [ 206.410254][ T7191] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 206.490070][ T29] audit: type=1326 audit(6035368519.151:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7262 comm="syz.0.211" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f651db8d169 code=0x0 [ 206.505087][ T55] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 206.511643][ T55] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 206.527169][ T55] Bluetooth: hci3: Unknown advertising packet type: 0x7f [ 206.527241][ T55] Bluetooth: hci3: Malformed LE Event: 0x0d [ 206.566764][ T55] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 206.566804][ T55] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 206.581679][ T55] Bluetooth: hci3: Unknown advertising packet type: 0x7f [ 206.581749][ T55] Bluetooth: hci3: Malformed LE Event: 0x0d [ 206.611847][ T29] audit: type=1326 audit(6035368519.271:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7262 comm="syz.0.211" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f651db8d169 code=0x0 [ 206.651895][ T7233] FAULT_INJECTION: forcing a failure. [ 206.651895][ T7233] name failslab, interval 1, probability 0, space 0, times 0 [ 206.674354][ T7233] CPU: 1 UID: 0 PID: 7233 Comm: syz.2.206 Not tainted 6.14.0-rc4-syzkaller #0 [ 206.674398][ T7233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 206.674417][ T7233] Call Trace: [ 206.674427][ T7233] [ 206.674440][ T7233] dump_stack_lvl+0x16c/0x1f0 [ 206.674486][ T7233] should_fail_ex+0x50a/0x650 [ 206.674536][ T7233] ? fs_reclaim_acquire+0xae/0x150 [ 206.674582][ T7233] should_failslab+0xc2/0x120 [ 206.674613][ T7233] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 206.674665][ T7233] ? __kernfs_new_node+0xd3/0x890 [ 206.674716][ T7233] __kernfs_new_node+0xd3/0x890 [ 206.674765][ T7233] ? __pfx___kernfs_new_node+0x10/0x10 [ 206.674810][ T7233] ? __pfx_lock_release+0x10/0x10 [ 206.674856][ T7233] ? kernfs_add_one+0x39d/0x520 [ 206.674919][ T7233] ? up_write+0x1b2/0x520 [ 206.674976][ T7233] kernfs_new_node+0x186/0x240 [ 206.675033][ T7233] __kernfs_create_file+0x53/0x350 [ 206.675074][ T7233] sysfs_add_file_mode_ns+0x1ff/0x3b0 [ 206.675126][ T7233] internal_create_group+0x56c/0xf10 [ 206.675182][ T7233] ? __pfx_internal_create_group+0x10/0x10 [ 206.675234][ T7233] ? kernfs_create_link+0x1bd/0x240 [ 206.675288][ T7233] internal_create_groups+0x9d/0x150 [ 206.675340][ T7233] device_add+0x6d3/0x1a70 [ 206.675390][ T7233] ? __pfx_device_add+0x10/0x10 [ 206.675438][ T7233] ? __init_waitqueue_head+0xca/0x150 [ 206.675488][ T7233] netdev_register_kobject+0x183/0x3a0 [ 206.675543][ T7233] register_netdevice+0x147b/0x1eb0 [ 206.675602][ T7233] ? __pfx_register_netdevice+0x10/0x10 [ 206.675665][ T7233] __ip_tunnel_create+0x4aa/0x690 [ 206.675708][ T7233] ? __pfx___ip_tunnel_create+0x10/0x10 [ 206.675752][ T7233] ? read_word_at_a_time+0xe/0x20 [ 206.675811][ T7233] ip_tunnel_init_net+0x22a/0x790 [ 206.675858][ T7233] ? __pfx_ip_tunnel_init_net+0x10/0x10 [ 206.675910][ T7233] ? __kmalloc_noprof+0x23b/0x510 [ 206.675966][ T7233] ? __pfx_ipgre_tap_init_net+0x10/0x10 [ 206.676000][ T7233] ops_init+0x1df/0x5f0 [ 206.676051][ T7233] setup_net+0x21f/0x860 [ 206.676102][ T7233] ? __pfx_setup_net+0x10/0x10 [ 206.676149][ T7233] ? down_read_killable+0xcc/0x380 [ 206.676195][ T7233] ? __pfx_down_read_killable+0x10/0x10 [ 206.676238][ T7233] ? __raw_spin_lock_init+0x3a/0x110 [ 206.676303][ T7233] ? debug_mutex_init+0x37/0x70 [ 206.676342][ T7233] copy_net_ns+0x2a6/0x5f0 [ 206.676376][ T7233] create_new_namespaces+0x3ea/0xad0 [ 206.676438][ T7233] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 206.676508][ T7233] ksys_unshare+0x45d/0xa40 [ 206.676541][ T7233] ? __pfx_ksys_unshare+0x10/0x10 [ 206.676572][ T7233] ? xfd_validate_state+0x5d/0x180 [ 206.676630][ T7233] __x64_sys_unshare+0x31/0x40 [ 206.676662][ T7233] do_syscall_64+0xcd/0x250 [ 206.676704][ T7233] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 206.676749][ T7233] RIP: 0033:0x7f7362d8d169 [ 206.676773][ T7233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 206.676803][ T7233] RSP: 002b:00007f7363b3c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 206.676832][ T7233] RAX: ffffffffffffffda RBX: 00007f7362fa5fa0 RCX: 00007f7362d8d169 [ 206.676851][ T7233] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 206.676869][ T7233] RBP: 00007f7362e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 206.676886][ T7233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 206.676903][ T7233] R13: 0000000000000000 R14: 00007f7362fa5fa0 R15: 00007ffcd8020e38 [ 206.676942][ T7233] [ 207.650473][ T2919] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 207.698495][ T5851] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 207.740680][ T5851] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 207.748981][ T5851] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 207.773489][ T5851] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 207.781313][ T5851] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 207.790792][ T5851] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 207.863191][ T2919] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 207.999651][ T2919] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 208.113509][ T2919] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 208.218697][ T7191] 8021q: adding VLAN 0 to HW filter on device bond0 [ 208.353687][ T7191] 8021q: adding VLAN 0 to HW filter on device team0 [ 208.374089][ T53] bridge0: port 1(bridge_slave_0) entered blocking state [ 208.381287][ T53] bridge0: port 1(bridge_slave_0) entered forwarding state [ 208.501566][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 208.508786][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 208.681197][ T2919] bridge_slave_1: left allmulticast mode [ 208.688464][ T2919] bridge_slave_1: left promiscuous mode [ 208.694396][ T2919] bridge0: port 2(bridge_slave_1) entered disabled state [ 208.705943][ T2919] bridge_slave_0: left allmulticast mode [ 208.712123][ T2919] bridge_slave_0: left promiscuous mode [ 208.718548][ T2919] bridge0: port 1(bridge_slave_0) entered disabled state [ 208.828178][ T7307] FAULT_INJECTION: forcing a failure. [ 208.828178][ T7307] name failslab, interval 1, probability 0, space 0, times 0 [ 208.841291][ T7307] CPU: 1 UID: 0 PID: 7307 Comm: syz.2.217 Not tainted 6.14.0-rc4-syzkaller #0 [ 208.841327][ T7307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 208.841345][ T7307] Call Trace: [ 208.841354][ T7307] [ 208.841364][ T7307] dump_stack_lvl+0x16c/0x1f0 [ 208.841406][ T7307] should_fail_ex+0x50a/0x650 [ 208.841453][ T7307] ? fs_reclaim_acquire+0xae/0x150 [ 208.841496][ T7307] should_failslab+0xc2/0x120 [ 208.841526][ T7307] __kmalloc_node_noprof+0xd1/0x510 [ 208.841573][ T7307] ? security_capable+0x250/0x260 [ 208.841621][ T7307] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 208.841662][ T7307] ? ns_capable_noaudit+0x87/0x110 [ 208.841709][ T7307] __kvmalloc_node_noprof+0xad/0x1a0 [ 208.841752][ T7307] proc_sys_call_handler+0x2a8/0x5a0 [ 208.841801][ T7307] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 208.841850][ T7307] ? trace_kmalloc+0x2d/0xd0 [ 208.841883][ T7307] ? __kmalloc_noprof+0x23b/0x510 [ 208.841958][ T7307] copy_splice_read+0x61d/0xb80 [ 208.842005][ T7307] ? __pfx_copy_splice_read+0x10/0x10 [ 208.842050][ T7307] ? __pfx_register_lock_class+0x10/0x10 [ 208.842110][ T7307] ? __pfx_copy_splice_read+0x10/0x10 [ 208.842148][ T7307] do_splice_read+0x282/0x370 [ 208.842191][ T7307] splice_direct_to_actor+0x2a4/0xa40 [ 208.842234][ T7307] ? __pfx_direct_splice_actor+0x10/0x10 [ 208.842283][ T7307] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 208.842326][ T7307] ? __fget_files+0x1fc/0x3a0 [ 208.842372][ T7307] do_splice_direct+0x178/0x250 [ 208.842412][ T7307] ? __pfx_do_splice_direct+0x10/0x10 [ 208.842452][ T7307] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 208.842498][ T7307] ? rw_verify_area+0xcf/0x680 [ 208.842538][ T7307] do_sendfile+0xafb/0xe40 [ 208.842583][ T7307] ? __pfx_do_sendfile+0x10/0x10 [ 208.842621][ T7307] ? __fget_files+0x206/0x3a0 [ 208.842665][ T7307] __x64_sys_sendfile64+0x1da/0x220 [ 208.842692][ T7307] ? ksys_write+0x1ba/0x250 [ 208.842731][ T7307] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 208.842771][ T7307] do_syscall_64+0xcd/0x250 [ 208.842812][ T7307] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 208.842854][ T7307] RIP: 0033:0x7f7362d8d169 [ 208.842877][ T7307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 208.842910][ T7307] RSP: 002b:00007f7363b3c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 208.842937][ T7307] RAX: ffffffffffffffda RBX: 00007f7362fa5fa0 RCX: 00007f7362d8d169 [ 208.842954][ T7307] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004 [ 208.842969][ T7307] RBP: 00007f7363b3c090 R08: 0000000000000000 R09: 0000000000000000 [ 208.842985][ T7307] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001 [ 208.843001][ T7307] R13: 0000000000000000 R14: 00007f7362fa5fa0 R15: 00007ffcd8020e38 [ 208.843035][ T7307] [ 209.614240][ T2919] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 209.655510][ T2919] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 209.667417][ T2919] bond0 (unregistering): Released all slaves [ 209.831227][ T55] Bluetooth: hci1: command tx timeout [ 209.875462][ T7276] chnl_net:caif_netlink_parms(): no params data found [ 210.466824][ T7191] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 210.474112][ T7276] bridge0: port 1(bridge_slave_0) entered blocking state [ 210.484564][ T7276] bridge0: port 1(bridge_slave_0) entered disabled state [ 210.506626][ T7276] bridge_slave_0: entered allmulticast mode [ 210.516706][ T7276] bridge_slave_0: entered promiscuous mode [ 210.601976][ T7276] bridge0: port 2(bridge_slave_1) entered blocking state [ 210.609745][ T7276] bridge0: port 2(bridge_slave_1) entered disabled state [ 210.626262][ T7276] bridge_slave_1: entered allmulticast mode [ 210.633566][ T7276] bridge_slave_1: entered promiscuous mode [ 210.771070][ T7276] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 210.844913][ T2919] hsr_slave_0: left promiscuous mode [ 210.865544][ T2919] hsr_slave_1: left promiscuous mode [ 210.879242][ T2919] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 210.896114][ T2919] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 210.908125][ T2919] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 210.915584][ T2919] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 210.938316][ T2919] veth1_macvtap: left promiscuous mode [ 210.943872][ T2919] veth0_macvtap: left promiscuous mode [ 210.952246][ T2919] veth1_vlan: left promiscuous mode [ 210.958577][ T2919] veth0_vlan: left promiscuous mode [ 211.395487][ T2919] team0 (unregistering): Port device team_slave_1 removed [ 211.451392][ T2919] team0 (unregistering): Port device team_slave_0 removed [ 211.853614][ T7276] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 211.897016][ T55] Bluetooth: hci1: command tx timeout [ 211.931685][ T7276] team0: Port device team_slave_0 added [ 211.958819][ T7276] team0: Port device team_slave_1 added [ 212.023685][ T7276] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 212.039214][ T7276] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 212.072057][ T7276] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 212.095038][ T7276] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 212.102709][ T7276] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 212.147422][ T7276] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 212.213299][ T7276] hsr_slave_0: entered promiscuous mode [ 212.220528][ T7276] hsr_slave_1: entered promiscuous mode [ 212.227859][ T7276] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 212.235869][ T7276] Cannot create hsr debugfs directory [ 212.334184][ T7191] veth0_vlan: entered promiscuous mode [ 212.363760][ T7191] veth1_vlan: entered promiscuous mode [ 212.551704][ T7191] veth0_macvtap: entered promiscuous mode [ 212.570688][ T7191] veth1_macvtap: entered promiscuous mode [ 212.609105][ T7191] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 212.633508][ T7191] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 212.645783][ T7191] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 212.657156][ T7191] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 212.668792][ T7191] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 212.679989][ T7191] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 212.691779][ T7191] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 212.711244][ T7191] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 212.722268][ T7191] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 212.738425][ T7191] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 212.813691][ T7191] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 212.823795][ T7191] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 212.833849][ T7191] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 212.850272][ T7191] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 212.959491][ T7276] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 212.978865][ T7276] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 212.997983][ T7276] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 213.054043][ T7276] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 213.112081][ T2919] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 213.135375][ T2919] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 213.174284][ T3511] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 213.206419][ T3511] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 213.372794][ T7276] 8021q: adding VLAN 0 to HW filter on device bond0 [ 213.433087][ T7276] 8021q: adding VLAN 0 to HW filter on device team0 [ 213.477747][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 213.484879][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 213.552433][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 213.559858][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 213.980506][ T55] Bluetooth: hci1: command tx timeout [ 214.527524][ T7276] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 214.758407][ T7406] netlink: 28 bytes leftover after parsing attributes in process `syz.5.198'. [ 215.092653][ T7276] veth0_vlan: entered promiscuous mode [ 215.132663][ T7276] veth1_vlan: entered promiscuous mode [ 215.238458][ T7276] veth0_macvtap: entered promiscuous mode [ 215.262510][ T7276] veth1_macvtap: entered promiscuous mode [ 215.300470][ T7276] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 215.356060][ T7276] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 215.365944][ T7276] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 215.406413][ T7276] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 215.432949][ T7276] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 215.462580][ T7276] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 215.480422][ T7276] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 215.523528][ T7276] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 215.543515][ T7276] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 215.561454][ T7276] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 215.575271][ T7276] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 215.592138][ T7276] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 215.617222][ T7276] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 215.634208][ T7276] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 215.685481][ T7276] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 215.703692][ T7276] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 215.714428][ T7276] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 215.730947][ T7276] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 216.035374][ T82] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 216.056619][ T55] Bluetooth: hci1: command tx timeout [ 216.062759][ T82] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 216.189056][ T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 216.217565][ T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 216.895293][ T7456] FAULT_INJECTION: forcing a failure. [ 216.895293][ T7456] name failslab, interval 1, probability 0, space 0, times 0 [ 216.934071][ T7456] CPU: 0 UID: 0 PID: 7456 Comm: syz.0.224 Not tainted 6.14.0-rc4-syzkaller #0 [ 216.934108][ T7456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 216.934125][ T7456] Call Trace: [ 216.934134][ T7456] [ 216.934145][ T7456] dump_stack_lvl+0x16c/0x1f0 [ 216.934190][ T7456] should_fail_ex+0x50a/0x650 [ 216.934238][ T7456] ? fs_reclaim_acquire+0xae/0x150 [ 216.934281][ T7456] should_failslab+0xc2/0x120 [ 216.934312][ T7456] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 216.934359][ T7456] ? lockdep_init_map_type+0x16d/0x7d0 [ 216.934406][ T7456] ? security_inode_alloc+0x3b/0x2b0 [ 216.934448][ T7456] security_inode_alloc+0x3b/0x2b0 [ 216.934484][ T7456] inode_init_always_gfp+0xce4/0x1030 [ 216.934547][ T7456] alloc_inode+0x82/0x230 [ 216.934577][ T7456] sock_alloc+0x40/0x280 [ 216.934625][ T7456] __sock_create+0xc1/0x8d0 [ 216.934662][ T7456] ? __pfx_stack_trace_save+0x10/0x10 [ 216.934701][ T7456] udp_sock_create4+0xa7/0x450 [ 216.934738][ T7456] ? __pfx_udp_sock_create4+0x10/0x10 [ 216.934782][ T7456] ? __do_proc_dointvec+0x5ec/0xb30 [ 216.934829][ T7456] sctp_udp_sock_start+0x10b/0x4b0 [ 216.934869][ T7456] ? __pfx_sctp_udp_sock_start+0x10/0x10 [ 216.934935][ T7456] ? proc_dointvec+0x55/0x70 [ 216.934980][ T7456] proc_sctp_do_udp_port+0x380/0x450 [ 216.935023][ T7456] ? __pfx_proc_sctp_do_udp_port+0x10/0x10 [ 216.935066][ T7456] ? __virt_addr_valid+0x1a4/0x590 [ 216.935109][ T7456] ? __virt_addr_valid+0x5e/0x590 [ 216.935142][ T7456] ? __phys_addr_symbol+0x30/0x80 [ 216.935173][ T7456] ? __check_object_size+0x488/0x710 [ 216.935210][ T7456] proc_sys_call_handler+0x3c6/0x5a0 [ 216.935261][ T7456] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 216.935316][ T7456] ? splice_from_pipe_next+0x1f8/0x5d0 [ 216.935367][ T7456] iter_file_splice_write+0x90f/0x10b0 [ 216.935431][ T7456] ? __pfx_iter_file_splice_write+0x10/0x10 [ 216.935489][ T7456] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 216.935550][ T7456] ? splice_direct_to_actor+0x346/0xa40 [ 216.935596][ T7456] ? __pfx_iter_file_splice_write+0x10/0x10 [ 216.935644][ T7456] direct_splice_actor+0x18f/0x6c0 [ 216.935691][ T7456] splice_direct_to_actor+0x346/0xa40 [ 216.935736][ T7456] ? __pfx_direct_splice_actor+0x10/0x10 [ 216.935788][ T7456] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 216.935833][ T7456] ? __fget_files+0x1fc/0x3a0 [ 216.935883][ T7456] do_splice_direct+0x178/0x250 [ 216.935926][ T7456] ? __pfx_do_splice_direct+0x10/0x10 [ 216.935967][ T7456] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 216.936013][ T7456] ? rw_verify_area+0xcf/0x680 [ 216.936054][ T7456] do_sendfile+0xafb/0xe40 [ 216.936103][ T7456] ? __pfx_do_sendfile+0x10/0x10 [ 216.936145][ T7456] ? __fget_files+0x206/0x3a0 [ 216.936198][ T7456] __x64_sys_sendfile64+0x1da/0x220 [ 216.936226][ T7456] ? ksys_write+0x1ba/0x250 [ 216.936266][ T7456] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 216.936307][ T7456] do_syscall_64+0xcd/0x250 [ 216.936349][ T7456] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 216.936392][ T7456] RIP: 0033:0x7f651db8d169 [ 216.936416][ T7456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 216.936445][ T7456] RSP: 002b:00007f651e923038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 216.936474][ T7456] RAX: ffffffffffffffda RBX: 00007f651dda5fa0 RCX: 00007f651db8d169 [ 216.936493][ T7456] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004 [ 216.936510][ T7456] RBP: 00007f651e923090 R08: 0000000000000000 R09: 0000000000000000 [ 216.936535][ T7456] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001 [ 216.936552][ T7456] R13: 0000000000000000 R14: 00007f651dda5fa0 R15: 00007ffe6f5df548 [ 216.936591][ T7456] [ 217.324679][ T7442] zswap: compressor not available [ 217.418773][ T7456] socket: no more sockets [ 217.423452][ T7456] sctp: Failed to create the SCTP UDP tunneling v4 sock [ 217.557565][ T7450] netlink: 342 bytes leftover after parsing attributes in process `syz.5.222'. [ 218.223947][ T7450] FAULT_INJECTION: forcing a failure. [ 218.223947][ T7450] name failslab, interval 1, probability 0, space 0, times 0 [ 218.269588][ T7450] CPU: 1 UID: 0 PID: 7450 Comm: syz.5.222 Not tainted 6.14.0-rc4-syzkaller #0 [ 218.269624][ T7450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 218.269640][ T7450] Call Trace: [ 218.269648][ T7450] [ 218.269658][ T7450] dump_stack_lvl+0x16c/0x1f0 [ 218.269699][ T7450] should_fail_ex+0x50a/0x650 [ 218.269740][ T7450] ? fs_reclaim_acquire+0xae/0x150 [ 218.269778][ T7450] should_failslab+0xc2/0x120 [ 218.269804][ T7450] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 218.269848][ T7450] ? __kernfs_new_node+0xd3/0x890 [ 218.269888][ T7450] __kernfs_new_node+0xd3/0x890 [ 218.269928][ T7450] ? __pfx___kernfs_new_node+0x10/0x10 [ 218.269964][ T7450] ? __pfx_lock_release+0x10/0x10 [ 218.270001][ T7450] ? kernfs_add_one+0x39d/0x520 [ 218.270051][ T7450] ? up_write+0x1b2/0x520 [ 218.270098][ T7450] kernfs_new_node+0x186/0x240 [ 218.270144][ T7450] __kernfs_create_file+0x53/0x350 [ 218.270177][ T7450] sysfs_add_file_mode_ns+0x1ff/0x3b0 [ 218.270231][ T7450] internal_create_group+0x56c/0xf10 [ 218.270278][ T7450] ? __pfx_internal_create_group+0x10/0x10 [ 218.270317][ T7450] ? sysfs_create_dir_ns+0x14d/0x2b0 [ 218.270352][ T7450] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 218.270387][ T7450] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 218.270416][ T7450] internal_create_groups+0x9d/0x150 [ 218.270456][ T7450] kobject_add_internal+0x317/0x990 [ 218.270509][ T7450] kobject_init_and_add+0x11c/0x190 [ 218.270558][ T7450] ? __pfx_kobject_init_and_add+0x10/0x10 [ 218.270604][ T7450] ? ops_init+0x1df/0x5f0 [ 218.270651][ T7450] ? unshare_nsproxy_namespaces+0xc0/0x1f0 [ 218.270704][ T7450] ? ksys_unshare+0x45d/0xa40 [ 218.270735][ T7450] ? __x64_sys_unshare+0x31/0x40 [ 218.270766][ T7450] ? do_syscall_64+0xcd/0x250 [ 218.270805][ T7450] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 218.270863][ T7450] netdev_queue_update_kobjects+0x29c/0x5b0 [ 218.270923][ T7450] netdev_register_kobject+0x28c/0x3a0 [ 218.270971][ T7450] register_netdevice+0x147b/0x1eb0 [ 218.271026][ T7450] ? __pfx_register_netdevice+0x10/0x10 [ 218.271086][ T7450] __ip_tunnel_create+0x4aa/0x690 [ 218.271127][ T7450] ? __pfx___ip_tunnel_create+0x10/0x10 [ 218.271177][ T7450] ip_tunnel_init_net+0x22a/0x790 [ 218.271228][ T7450] ? __pfx_ip_tunnel_init_net+0x10/0x10 [ 218.271280][ T7450] ? __kmalloc_noprof+0x23b/0x510 [ 218.271334][ T7450] ? __pfx_ipgre_init_net+0x10/0x10 [ 218.271367][ T7450] ops_init+0x1df/0x5f0 [ 218.271420][ T7450] setup_net+0x21f/0x860 [ 218.271470][ T7450] ? __pfx_setup_net+0x10/0x10 [ 218.271517][ T7450] ? down_read_killable+0xcc/0x380 [ 218.271563][ T7450] ? __pfx_down_read_killable+0x10/0x10 [ 218.271606][ T7450] ? __raw_spin_lock_init+0x3a/0x110 [ 218.271661][ T7450] ? debug_mutex_init+0x37/0x70 [ 218.271700][ T7450] copy_net_ns+0x2a6/0x5f0 [ 218.271735][ T7450] create_new_namespaces+0x3ea/0xad0 [ 218.271796][ T7450] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 218.271852][ T7450] ksys_unshare+0x45d/0xa40 [ 218.271921][ T7450] ? __pfx_ksys_unshare+0x10/0x10 [ 218.271948][ T7450] ? xfd_validate_state+0x5d/0x180 [ 218.271997][ T7450] __x64_sys_unshare+0x31/0x40 [ 218.272026][ T7450] do_syscall_64+0xcd/0x250 [ 218.272067][ T7450] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 218.272111][ T7450] RIP: 0033:0x7f5f6ed8d169 [ 218.272135][ T7450] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 218.272167][ T7450] RSP: 002b:00007f5f6fc7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 218.272195][ T7450] RAX: ffffffffffffffda RBX: 00007f5f6efa6080 RCX: 00007f5f6ed8d169 [ 218.272223][ T7450] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 218.272241][ T7450] RBP: 00007f5f6ee0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 218.272260][ T7450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 218.272278][ T7450] R13: 0000000000000000 R14: 00007f5f6efa6080 R15: 00007ffd3eb14988 [ 218.272317][ T7450] [ 218.273322][ T7450] kobject: kobject_add_internal failed for tx-0 (error: -12 parent: queues) [ 219.683202][ T7503] FAULT_INJECTION: forcing a failure. [ 219.683202][ T7503] name failslab, interval 1, probability 0, space 0, times 0 [ 219.766289][ T7503] CPU: 1 UID: 0 PID: 7503 Comm: syz.2.237 Not tainted 6.14.0-rc4-syzkaller #0 [ 219.766329][ T7503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 219.766346][ T7503] Call Trace: [ 219.766355][ T7503] [ 219.766367][ T7503] dump_stack_lvl+0x16c/0x1f0 [ 219.766419][ T7503] should_fail_ex+0x50a/0x650 [ 219.766467][ T7503] ? fs_reclaim_acquire+0xae/0x150 [ 219.766510][ T7503] should_failslab+0xc2/0x120 [ 219.766540][ T7503] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 219.766590][ T7503] ? sk_prot_alloc+0x60/0x2a0 [ 219.766627][ T7503] sk_prot_alloc+0x60/0x2a0 [ 219.766660][ T7503] sk_alloc+0x36/0xb90 [ 219.766703][ T7503] inet_create+0x3a1/0x10a0 [ 219.766750][ T7503] ? inet_create+0x90/0x10a0 [ 219.766801][ T7503] __sock_create+0x335/0x8d0 [ 219.766841][ T7503] udp_sock_create4+0xa7/0x450 [ 219.766878][ T7503] ? __pfx_udp_sock_create4+0x10/0x10 [ 219.766923][ T7503] ? __do_proc_dointvec+0x5ec/0xb30 [ 219.766970][ T7503] sctp_udp_sock_start+0x10b/0x4b0 [ 219.767011][ T7503] ? __pfx_sctp_udp_sock_start+0x10/0x10 [ 219.767076][ T7503] ? proc_dointvec+0x55/0x70 [ 219.767120][ T7503] proc_sctp_do_udp_port+0x380/0x450 [ 219.767164][ T7503] ? __pfx_proc_sctp_do_udp_port+0x10/0x10 [ 219.767205][ T7503] ? __virt_addr_valid+0x1a4/0x590 [ 219.767243][ T7503] ? __virt_addr_valid+0x5e/0x590 [ 219.767275][ T7503] ? __phys_addr_symbol+0x30/0x80 [ 219.767305][ T7503] ? __check_object_size+0x488/0x710 [ 219.767346][ T7503] proc_sys_call_handler+0x3c6/0x5a0 [ 219.767401][ T7503] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 219.767457][ T7503] ? splice_from_pipe_next+0x1f8/0x5d0 [ 219.767506][ T7503] iter_file_splice_write+0x90f/0x10b0 [ 219.767566][ T7503] ? __pfx_iter_file_splice_write+0x10/0x10 [ 219.767623][ T7503] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 219.767675][ T7503] ? splice_direct_to_actor+0x346/0xa40 [ 219.767720][ T7503] ? __pfx_iter_file_splice_write+0x10/0x10 [ 219.767764][ T7503] direct_splice_actor+0x18f/0x6c0 [ 219.767810][ T7503] splice_direct_to_actor+0x346/0xa40 [ 219.767854][ T7503] ? __pfx_direct_splice_actor+0x10/0x10 [ 219.767905][ T7503] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 219.767950][ T7503] ? __fget_files+0x1fc/0x3a0 [ 219.767997][ T7503] do_splice_direct+0x178/0x250 [ 219.768036][ T7503] ? __pfx_do_splice_direct+0x10/0x10 [ 219.768077][ T7503] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 219.768122][ T7503] ? rw_verify_area+0xcf/0x680 [ 219.768162][ T7503] do_sendfile+0xafb/0xe40 [ 219.768209][ T7503] ? __pfx_do_sendfile+0x10/0x10 [ 219.768250][ T7503] ? __fget_files+0x206/0x3a0 [ 219.768302][ T7503] __x64_sys_sendfile64+0x1da/0x220 [ 219.768329][ T7503] ? ksys_write+0x1ba/0x250 [ 219.768381][ T7503] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 219.768426][ T7503] do_syscall_64+0xcd/0x250 [ 219.768466][ T7503] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 219.768526][ T7503] RIP: 0033:0x7f7362d8d169 [ 219.768549][ T7503] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 219.768577][ T7503] RSP: 002b:00007f7363b3c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 219.768605][ T7503] RAX: ffffffffffffffda RBX: 00007f7362fa5fa0 RCX: 00007f7362d8d169 [ 219.768624][ T7503] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004 [ 219.768640][ T7503] RBP: 00007f7363b3c090 R08: 0000000000000000 R09: 0000000000000000 [ 219.768657][ T7503] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002 [ 219.768674][ T7503] R13: 0000000000000000 R14: 00007f7362fa5fa0 R15: 00007ffcd8020e38 [ 219.768711][ T7503] [ 220.198512][ T7503] sctp: Failed to create the SCTP UDP tunneling v4 sock [ 224.239017][ T7571] FAULT_INJECTION: forcing a failure. [ 224.239017][ T7571] name failslab, interval 1, probability 0, space 0, times 0 [ 224.294219][ T7571] CPU: 0 UID: 0 PID: 7571 Comm: syz.2.246 Not tainted 6.14.0-rc4-syzkaller #0 [ 224.294257][ T7571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 224.294275][ T7571] Call Trace: [ 224.294284][ T7571] [ 224.294295][ T7571] dump_stack_lvl+0x16c/0x1f0 [ 224.294340][ T7571] should_fail_ex+0x50a/0x650 [ 224.294387][ T7571] ? fs_reclaim_acquire+0xae/0x150 [ 224.294428][ T7571] ? lsm_blob_alloc+0x68/0x90 [ 224.294473][ T7571] should_failslab+0xc2/0x120 [ 224.294503][ T7571] __kmalloc_noprof+0xcb/0x510 [ 224.294558][ T7571] lsm_blob_alloc+0x68/0x90 [ 224.294605][ T7571] security_sk_alloc+0x30/0x270 [ 224.294638][ T7571] sk_prot_alloc+0xfb/0x2a0 [ 224.294672][ T7571] sk_alloc+0x36/0xb90 [ 224.294715][ T7571] inet_create+0x3a1/0x10a0 [ 224.294763][ T7571] ? inet_create+0x90/0x10a0 [ 224.294814][ T7571] __sock_create+0x335/0x8d0 [ 224.294856][ T7571] udp_sock_create4+0xa7/0x450 [ 224.294891][ T7571] ? __pfx_udp_sock_create4+0x10/0x10 [ 224.294933][ T7571] ? __do_proc_dointvec+0x5ec/0xb30 [ 224.294980][ T7571] sctp_udp_sock_start+0x10b/0x4b0 [ 224.295029][ T7571] ? __pfx_sctp_udp_sock_start+0x10/0x10 [ 224.295093][ T7571] ? proc_dointvec+0x55/0x70 [ 224.295138][ T7571] proc_sctp_do_udp_port+0x380/0x450 [ 224.295180][ T7571] ? __pfx_proc_sctp_do_udp_port+0x10/0x10 [ 224.295222][ T7571] ? __virt_addr_valid+0x1a4/0x590 [ 224.295260][ T7571] ? __virt_addr_valid+0x5e/0x590 [ 224.295293][ T7571] ? __phys_addr_symbol+0x30/0x80 [ 224.295324][ T7571] ? __check_object_size+0x488/0x710 [ 224.295361][ T7571] proc_sys_call_handler+0x3c6/0x5a0 [ 224.295414][ T7571] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 224.295468][ T7571] ? splice_from_pipe_next+0x1f8/0x5d0 [ 224.295519][ T7571] iter_file_splice_write+0x90f/0x10b0 [ 224.295583][ T7571] ? __pfx_iter_file_splice_write+0x10/0x10 [ 224.295642][ T7571] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 224.295695][ T7571] ? splice_direct_to_actor+0x346/0xa40 [ 224.295741][ T7571] ? __pfx_iter_file_splice_write+0x10/0x10 [ 224.295789][ T7571] direct_splice_actor+0x18f/0x6c0 [ 224.295835][ T7571] splice_direct_to_actor+0x346/0xa40 [ 224.295881][ T7571] ? __pfx_direct_splice_actor+0x10/0x10 [ 224.295930][ T7571] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 224.295976][ T7571] ? __fget_files+0x1fc/0x3a0 [ 224.296032][ T7571] do_splice_direct+0x178/0x250 [ 224.296073][ T7571] ? __pfx_do_splice_direct+0x10/0x10 [ 224.296114][ T7571] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 224.296158][ T7571] ? rw_verify_area+0xcf/0x680 [ 224.296196][ T7571] do_sendfile+0xafb/0xe40 [ 224.296235][ T7571] ? __pfx_do_sendfile+0x10/0x10 [ 224.296270][ T7571] ? __fget_files+0x206/0x3a0 [ 224.296315][ T7571] __x64_sys_sendfile64+0x1da/0x220 [ 224.296338][ T7571] ? ksys_write+0x1ba/0x250 [ 224.296373][ T7571] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 224.296408][ T7571] do_syscall_64+0xcd/0x250 [ 224.296444][ T7571] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 224.296481][ T7571] RIP: 0033:0x7f7362d8d169 [ 224.296501][ T7571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 224.296525][ T7571] RSP: 002b:00007f7363b3c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 224.296548][ T7571] RAX: ffffffffffffffda RBX: 00007f7362fa5fa0 RCX: 00007f7362d8d169 [ 224.296565][ T7571] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004 [ 224.296580][ T7571] RBP: 00007f7363b3c090 R08: 0000000000000000 R09: 0000000000000000 [ 224.296595][ T7571] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002 [ 224.296610][ T7571] R13: 0000000000000000 R14: 00007f7362fa5fa0 R15: 00007ffcd8020e38 [ 224.296640][ T7571] [ 224.741524][ T7571] sctp: Failed to create the SCTP UDP tunneling v4 sock [ 226.026861][ T7585] netlink: 342 bytes leftover after parsing attributes in process `syz.6.245'. [ 226.697878][ T7585] FAULT_INJECTION: forcing a failure. [ 226.697878][ T7585] name failslab, interval 1, probability 0, space 0, times 0 [ 226.729638][ T7585] CPU: 0 UID: 0 PID: 7585 Comm: syz.6.245 Not tainted 6.14.0-rc4-syzkaller #0 [ 226.729681][ T7585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 226.729699][ T7585] Call Trace: [ 226.729709][ T7585] [ 226.729721][ T7585] dump_stack_lvl+0x16c/0x1f0 [ 226.729768][ T7585] should_fail_ex+0x50a/0x650 [ 226.729819][ T7585] ? fs_reclaim_acquire+0xae/0x150 [ 226.729863][ T7585] should_failslab+0xc2/0x120 [ 226.729892][ T7585] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 226.729941][ T7585] ? __asan_memcpy+0x3c/0x60 [ 226.729982][ T7585] ? __kernfs_new_node+0xd3/0x890 [ 226.730032][ T7585] __kernfs_new_node+0xd3/0x890 [ 226.730081][ T7585] ? __pfx___kernfs_new_node+0x10/0x10 [ 226.730123][ T7585] ? __pfx_lock_release+0x10/0x10 [ 226.730169][ T7585] ? kernfs_add_one+0x39d/0x520 [ 226.730231][ T7585] ? lock_acquire.part.0+0x11b/0x380 [ 226.730277][ T7585] ? find_held_lock+0x2d/0x110 [ 226.730324][ T7585] kernfs_new_node+0x186/0x240 [ 226.730378][ T7585] kernfs_create_link+0xcc/0x240 [ 226.730416][ T7585] sysfs_do_create_link_sd+0x90/0x140 [ 226.730461][ T7585] sysfs_create_link+0x61/0xc0 [ 226.730503][ T7585] device_add+0x62e/0x1a70 [ 226.730552][ T7585] ? __pfx_device_add+0x10/0x10 [ 226.730602][ T7585] ? __init_waitqueue_head+0xca/0x150 [ 226.730654][ T7585] netdev_register_kobject+0x183/0x3a0 [ 226.730708][ T7585] register_netdevice+0x147b/0x1eb0 [ 226.730767][ T7585] ? __pfx_register_netdevice+0x10/0x10 [ 226.730831][ T7585] __ip_tunnel_create+0x4aa/0x690 [ 226.730874][ T7585] ? __pfx___ip_tunnel_create+0x10/0x10 [ 226.730917][ T7585] ? read_word_at_a_time+0xe/0x20 [ 226.730973][ T7585] ip_tunnel_init_net+0x22a/0x790 [ 226.731020][ T7585] ? __pfx_ip_tunnel_init_net+0x10/0x10 [ 226.731071][ T7585] ? __kmalloc_noprof+0x23b/0x510 [ 226.731127][ T7585] ? __pfx_ipgre_tap_init_net+0x10/0x10 [ 226.731160][ T7585] ops_init+0x1df/0x5f0 [ 226.731213][ T7585] setup_net+0x21f/0x860 [ 226.731265][ T7585] ? __pfx_setup_net+0x10/0x10 [ 226.731316][ T7585] ? down_read_killable+0xcc/0x380 [ 226.731362][ T7585] ? __pfx_down_read_killable+0x10/0x10 [ 226.731407][ T7585] ? __raw_spin_lock_init+0x3a/0x110 [ 226.731457][ T7585] ? debug_mutex_init+0x37/0x70 [ 226.731489][ T7585] copy_net_ns+0x2a6/0x5f0 [ 226.731523][ T7585] create_new_namespaces+0x3ea/0xad0 [ 226.731576][ T7585] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 226.731687][ T7585] ksys_unshare+0x45d/0xa40 [ 226.731716][ T7585] ? __pfx_ksys_unshare+0x10/0x10 [ 226.731743][ T7585] ? xfd_validate_state+0x5d/0x180 [ 226.731792][ T7585] __x64_sys_unshare+0x31/0x40 [ 226.731819][ T7585] do_syscall_64+0xcd/0x250 [ 226.731856][ T7585] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 226.731896][ T7585] RIP: 0033:0x7fae20d8d169 [ 226.731917][ T7585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 226.731942][ T7585] RSP: 002b:00007fae21b92038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 226.731966][ T7585] RAX: ffffffffffffffda RBX: 00007fae20fa6080 RCX: 00007fae20d8d169 [ 226.731983][ T7585] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 226.732000][ T7585] RBP: 00007fae20e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 226.732015][ T7585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 226.732030][ T7585] R13: 0000000000000000 R14: 00007fae20fa6080 R15: 00007fff1df2b488 [ 226.732063][ T7585] [ 228.899388][ T7648] sctp: Failed to create the SCTP UDP tunneling v4 sock [ 228.912981][ T7648] FAULT_INJECTION: forcing a failure. [ 228.912981][ T7648] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 228.976217][ T7648] CPU: 1 UID: 0 PID: 7648 Comm: syz.2.257 Not tainted 6.14.0-rc4-syzkaller #0 [ 228.976258][ T7648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 228.976276][ T7648] Call Trace: [ 228.976285][ T7648] [ 228.976297][ T7648] dump_stack_lvl+0x16c/0x1f0 [ 228.976342][ T7648] should_fail_ex+0x50a/0x650 [ 228.976398][ T7648] _copy_to_user+0x32/0xd0 [ 228.976433][ T7648] simple_read_from_buffer+0xd0/0x160 [ 228.976477][ T7648] proc_fail_nth_read+0x198/0x270 [ 228.976515][ T7648] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 228.976556][ T7648] ? rw_verify_area+0xcf/0x680 [ 228.976594][ T7648] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 228.976632][ T7648] vfs_read+0x1df/0xbf0 [ 228.976681][ T7648] ? __fget_files+0x1fc/0x3a0 [ 228.976728][ T7648] ? __pfx___mutex_lock+0x10/0x10 [ 228.976769][ T7648] ? __pfx_vfs_read+0x10/0x10 [ 228.976824][ T7648] ? __fget_files+0x206/0x3a0 [ 228.976881][ T7648] ksys_read+0x12b/0x250 [ 228.976924][ T7648] ? __pfx_ksys_read+0x10/0x10 [ 228.976980][ T7648] do_syscall_64+0xcd/0x250 [ 228.977024][ T7648] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 228.977069][ T7648] RIP: 0033:0x7f7362d8bb7c [ 228.977092][ T7648] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 228.977121][ T7648] RSP: 002b:00007f7363b3c030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 228.977149][ T7648] RAX: ffffffffffffffda RBX: 00007f7362fa5fa0 RCX: 00007f7362d8bb7c [ 228.977168][ T7648] RDX: 000000000000000f RSI: 00007f7363b3c0a0 RDI: 0000000000000005 [ 228.977185][ T7648] RBP: 00007f7363b3c090 R08: 0000000000000000 R09: 0000000000000000 [ 228.977201][ T7648] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002 [ 228.977217][ T7648] R13: 0000000000000000 R14: 00007f7362fa5fa0 R15: 00007ffcd8020e38 [ 228.977259][ T7648] [ 230.849182][ T7682] syz.2.261 uses obsolete (PF_INET,SOCK_PACKET) [ 232.260479][ T7706] vhci_hcd: default hub control req: 0000 vf861 i0000 l0 [ 232.628597][ T7683] openvswitch: netlink: Multiple metadata blocks provided [ 233.841856][ T29] audit: type=1800 audit(6035368546.491:8): pid=7750 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.270" name="dbroot" dev="configfs" ino=17961 res=0 errno=0 [ 234.176864][ T7754] nbd: socks must be embedded in a SOCK_ITEM attr [ 234.241389][ T7754] block nbd0: shutting down sockets [ 236.745390][ T7806] FAULT_INJECTION: forcing a failure. [ 236.745390][ T7806] name failslab, interval 1, probability 0, space 0, times 0 [ 236.796900][ T7806] CPU: 0 UID: 0 PID: 7806 Comm: syz.5.280 Not tainted 6.14.0-rc4-syzkaller #0 [ 236.796947][ T7806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 236.796967][ T7806] Call Trace: [ 236.796976][ T7806] [ 236.796988][ T7806] dump_stack_lvl+0x16c/0x1f0 [ 236.797037][ T7806] should_fail_ex+0x50a/0x650 [ 236.797088][ T7806] ? fs_reclaim_acquire+0xae/0x150 [ 236.797132][ T7806] ? mon_text_open+0x1cc/0x4f0 [ 236.797175][ T7806] should_failslab+0xc2/0x120 [ 236.797206][ T7806] __kmalloc_cache_noprof+0x68/0x410 [ 236.797249][ T7806] ? __raw_spin_lock_init+0x3a/0x110 [ 236.797308][ T7806] ? __pfx_mon_text_open+0x10/0x10 [ 236.797352][ T7806] mon_text_open+0x1cc/0x4f0 [ 236.797397][ T7806] ? __pfx_mon_text_open+0x10/0x10 [ 236.797440][ T7806] ? __debugfs_file_get+0x1ff/0x850 [ 236.797481][ T7806] ? __pfx___debugfs_file_get+0x10/0x10 [ 236.797524][ T7806] ? __pfx_apparmor_file_open+0x10/0x10 [ 236.797563][ T7806] ? lockdown_is_locked_down+0x3f/0x130 [ 236.797608][ T7806] ? bpf_lsm_locked_down+0x9/0x10 [ 236.797646][ T7806] ? __pfx_mon_text_open+0x10/0x10 [ 236.797687][ T7806] full_proxy_open_regular+0x1b6/0x360 [ 236.797737][ T7806] do_dentry_open+0x735/0x1c40 [ 236.797784][ T7806] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 236.797833][ T7806] ? inode_permission+0xdd/0x5f0 [ 236.797872][ T7806] vfs_open+0x82/0x3f0 [ 236.797909][ T7806] ? may_open+0x1f2/0x400 [ 236.797950][ T7806] path_openat+0x1e88/0x2d80 [ 236.798013][ T7806] ? __pfx_path_openat+0x10/0x10 [ 236.798061][ T7806] ? __pfx___lock_acquire+0x10/0x10 [ 236.798105][ T7806] ? lock_acquire.part.0+0x11b/0x380 [ 236.798150][ T7806] ? find_held_lock+0x2d/0x110 [ 236.798190][ T7806] do_filp_open+0x20c/0x470 [ 236.798238][ T7806] ? __pfx_do_filp_open+0x10/0x10 [ 236.798282][ T7806] ? find_held_lock+0x2d/0x110 [ 236.798344][ T7806] ? alloc_fd+0x41f/0x760 [ 236.798402][ T7806] do_sys_openat2+0x17a/0x1e0 [ 236.798436][ T7806] ? __pfx_do_sys_openat2+0x10/0x10 [ 236.798486][ T7806] __x64_sys_openat+0x175/0x210 [ 236.798522][ T7806] ? __pfx___x64_sys_openat+0x10/0x10 [ 236.798561][ T7806] ? syscall_user_dispatch+0x7a/0x130 [ 236.798624][ T7806] do_syscall_64+0xcd/0x250 [ 236.798670][ T7806] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 236.798716][ T7806] RIP: 0033:0x7f5f6ed8d169 [ 236.798742][ T7806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 236.798789][ T7806] RSP: 002b:00007f5f6fc9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 236.798820][ T7806] RAX: ffffffffffffffda RBX: 00007f5f6efa5fa0 RCX: 00007f5f6ed8d169 [ 236.798840][ T7806] RDX: 0000000000000000 RSI: 00004000000000c0 RDI: ffffffffffffff9c [ 236.798860][ T7806] RBP: 00007f5f6ee0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 236.798883][ T7806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 236.798902][ T7806] R13: 0000000000000000 R14: 00007f5f6efa5fa0 R15: 00007ffd3eb14988 [ 236.798941][ T7806] [ 238.676374][ T29] audit: type=1800 audit(6035368551.331:9): pid=7830 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.283" name="dbroot" dev="configfs" ino=18746 res=0 errno=0 [ 238.697692][ T7835] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(2) [ 239.701551][ T7860] usb usb28: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 239.958584][ T7866] capability: warning: `syz.0.286' uses 32-bit capabilities (legacy support in use) [ 241.015990][ T7883] [U] [ 241.018795][ T7883] [U] [ 241.021555][ T7883] [U] [ 241.024340][ T7883] [U] [ 241.064439][ T7883] [U] [ 241.067256][ T7883] [U] [ 241.070074][ T7883] [U] [ 241.072845][ T7883] [U] [ 241.107232][ T7883] [U] [ 241.110042][ T7883] [U] [ 241.112807][ T7883] [U] [ 241.115582][ T7883] [U] [ 241.137095][ T7883] [U] [ 241.139908][ T7883] [U] [ 241.142682][ T7883] [U] [ 241.145456][ T7883] [U] [ 241.179758][ T7883] [U] [ 241.182577][ T7883] [U] [ 241.185340][ T7883] [U] [ 241.188109][ T7883] [U] [ 241.232829][ T7883] [U] [ 241.235645][ T7883] [U] [ 241.238425][ T7883] [U] [ 241.241200][ T7883] [U] [ 241.400709][ T7883] [U] [ 241.403520][ T7883] [U] [ 241.406280][ T7883] [U] [ 241.409041][ T7883] [U] [ 241.497167][ T7883] [U] [ 241.499975][ T7883] [U] [ 241.502746][ T7883] [U] [ 241.505517][ T7883] [U] [ 241.581109][ T7883] [U] [ 241.584004][ T7883] [U] [ 241.586781][ T7883] [U] [ 241.589553][ T7883] [U] [ 241.629942][ T7883] [U] [ 241.632746][ T7883] [U] [ 241.635519][ T7883] [U] [ 241.638287][ T7883] [U] [ 241.696401][ T7883] [U] [ 241.699212][ T7883] [U] [ 241.701983][ T7883] [U] [ 241.704752][ T7883] [U] [ 241.735956][ T7883] [U] [ 241.738759][ T7883] [U] [ 241.741552][ T7883] [U] [ 241.744315][ T7883] [U] [ 241.776873][ T7883] [U] [ 241.779682][ T7883] [U] [ 241.782445][ T7883] [U] [ 241.785206][ T7883] [U] [ 241.839693][ T7883] [U] [ 241.842502][ T7883] [U] [ 241.845268][ T7883] [U] [ 241.848036][ T7883] [U] [ 241.873038][ T7883] [U] [ 242.144971][ T7896] netlink: 8 bytes leftover after parsing attributes in process `syz.0.294'. [ 243.733390][ T7916] Invalid ELF header magic: != ELF [ 244.966250][ T29] audit: type=1800 audit(6035368557.631:10): pid=7926 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.298" name="dbroot" dev="configfs" ino=18274 res=0 errno=0 [ 245.178228][ T55] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 245.895810][ T7937] FAULT_INJECTION: forcing a failure. [ 245.895810][ T7937] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 245.963732][ T7937] CPU: 0 UID: 0 PID: 7937 Comm: syz.5.300 Not tainted 6.14.0-rc4-syzkaller #0 [ 245.963772][ T7937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 245.963795][ T7937] Call Trace: [ 245.963804][ T7937] [ 245.963816][ T7937] dump_stack_lvl+0x16c/0x1f0 [ 245.963861][ T7937] should_fail_ex+0x50a/0x650 [ 245.963918][ T7937] _copy_from_user+0x2e/0xd0 [ 245.963953][ T7937] kstrtouint_from_user+0xd7/0x1c0 [ 245.963999][ T7937] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 245.964055][ T7937] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 245.964105][ T7937] proc_fail_nth_write+0x84/0x250 [ 245.964143][ T7937] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 245.964181][ T7937] ? do_writev+0x133/0x340 [ 245.964230][ T7937] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 245.964269][ T7937] vfs_writev+0x6da/0xdd0 [ 245.964309][ T7937] ? fdget_pos+0x267/0x390 [ 245.964366][ T7937] ? __pfx_vfs_writev+0x10/0x10 [ 245.964405][ T7937] ? __mutex_lock+0x1cc/0xb10 [ 245.964444][ T7937] ? find_held_lock+0x2d/0x110 [ 245.964486][ T7937] ? __pfx___mutex_lock+0x10/0x10 [ 245.964525][ T7937] ? trace_lock_acquire+0x14e/0x1f0 [ 245.964559][ T7937] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 245.964623][ T7937] ? __fget_files+0x206/0x3a0 [ 245.964681][ T7937] ? do_writev+0x133/0x340 [ 245.964718][ T7937] do_writev+0x133/0x340 [ 245.964771][ T7937] ? __pfx_do_writev+0x10/0x10 [ 245.964823][ T7937] do_syscall_64+0xcd/0x250 [ 245.964866][ T7937] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 245.964909][ T7937] RIP: 0033:0x7f5f6ed8d169 [ 245.964933][ T7937] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 245.964960][ T7937] RSP: 002b:00007f5f6fc9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 245.964987][ T7937] RAX: ffffffffffffffda RBX: 00007f5f6efa5fa0 RCX: 00007f5f6ed8d169 [ 245.965006][ T7937] RDX: 0000000000000003 RSI: 0000400000000200 RDI: 0000000000000007 [ 245.965023][ T7937] RBP: 00007f5f6ee0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 245.965040][ T7937] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 245.965057][ T7937] R13: 0000000000000000 R14: 00007f5f6efa5fa0 R15: 00007ffd3eb14988 [ 245.965113][ T7937] [ 246.643181][ T7953] netlink: 'syz.6.302': attribute type 1 has an invalid length. [ 250.501029][ T29] audit: type=1800 audit(6035368563.161:11): pid=8029 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.309" name="dbroot" dev="configfs" ino=19460 res=0 errno=0 [ 252.147614][ T8065] sctp: Failed to create the SCTP UDP tunneling v4 sock [ 254.923160][ T8119] netlink: 8 bytes leftover after parsing attributes in process `syz.6.319'. [ 254.968183][ T8121] FAULT_INJECTION: forcing a failure. [ 254.968183][ T8121] name failslab, interval 1, probability 0, space 0, times 0 [ 255.049344][ T8121] CPU: 0 UID: 0 PID: 8121 Comm: syz.0.320 Not tainted 6.14.0-rc4-syzkaller #0 [ 255.049389][ T8121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 255.049407][ T8121] Call Trace: [ 255.049417][ T8121] [ 255.049433][ T8121] dump_stack_lvl+0x16c/0x1f0 [ 255.049480][ T8121] should_fail_ex+0x50a/0x650 [ 255.049530][ T8121] ? fs_reclaim_acquire+0xae/0x150 [ 255.049586][ T8121] should_failslab+0xc2/0x120 [ 255.049616][ T8121] kmem_cache_alloc_node_noprof+0x72/0x3c0 [ 255.049664][ T8121] ? __alloc_skb+0x2b1/0x380 [ 255.049705][ T8121] ? __pfx_lock_release+0x10/0x10 [ 255.049750][ T8121] __alloc_skb+0x2b1/0x380 [ 255.049789][ T8121] ? __pfx___alloc_skb+0x10/0x10 [ 255.049828][ T8121] ? __pfx_lock_release+0x10/0x10 [ 255.049870][ T8121] ? tcp_chrono_stop+0x95/0x420 [ 255.049909][ T8121] tcp_stream_alloc_skb+0x34/0x570 [ 255.049963][ T8121] tcp_connect+0xe71/0x5500 [ 255.050002][ T8121] ? trace_lock_acquire+0x14e/0x1f0 [ 255.050041][ T8121] ? mark_held_locks+0x9f/0xe0 [ 255.050083][ T8121] ? __pfx_tcp_connect+0x10/0x10 [ 255.050111][ T8121] ? get_random_u16+0x588/0x7e0 [ 255.050157][ T8121] ? tcp_fastopen_cookie_check+0x2f7/0x310 [ 255.050205][ T8121] ? xfrm_lookup_route+0x6a/0x200 [ 255.050262][ T8121] tcp_v4_connect+0x14f7/0x1b80 [ 255.050318][ T8121] ? __pfx_tcp_v4_connect+0x10/0x10 [ 255.050374][ T8121] __inet_stream_connect+0x3c7/0x1020 [ 255.050426][ T8121] ? __pfx___inet_stream_connect+0x10/0x10 [ 255.050490][ T8121] tcp_sendmsg_fastopen+0x3d7/0x700 [ 255.050563][ T8121] tcp_sendmsg_locked+0x2075/0x37c0 [ 255.050615][ T8121] ? hlock_class+0x4e/0x130 [ 255.050646][ T8121] ? mark_lock+0xb5/0xc60 [ 255.050686][ T8121] ? __pfx___lock_acquire+0x10/0x10 [ 255.050736][ T8121] ? __pfx_mark_lock+0x10/0x10 [ 255.050782][ T8121] ? lock_acquire.part.0+0x11b/0x380 [ 255.050832][ T8121] ? __pfx_tcp_sendmsg_locked+0x10/0x10 [ 255.050887][ T8121] ? tcp_sendmsg+0x20/0x50 [ 255.050944][ T8121] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 255.050979][ T8121] ? mark_held_locks+0x9f/0xe0 [ 255.051024][ T8121] ? __local_bh_enable_ip+0xa4/0x120 [ 255.051079][ T8121] tcp_sendmsg+0x2e/0x50 [ 255.051125][ T8121] ? __pfx_tcp_sendmsg+0x10/0x10 [ 255.051175][ T8121] inet_sendmsg+0xb9/0x140 [ 255.051223][ T8121] ____sys_sendmsg+0x98c/0xc90 [ 255.051260][ T8121] ? __pfx_____sys_sendmsg+0x10/0x10 [ 255.051292][ T8121] ? __lock_acquire+0xcc5/0x3c40 [ 255.051353][ T8121] ___sys_sendmsg+0x135/0x1e0 [ 255.051402][ T8121] ? __pfx____sys_sendmsg+0x10/0x10 [ 255.051466][ T8121] ? trace_lock_acquire+0x14e/0x1f0 [ 255.051531][ T8121] __sys_sendmmsg+0x201/0x420 [ 255.051582][ T8121] ? __pfx___sys_sendmmsg+0x10/0x10 [ 255.051641][ T8121] ? __pfx_do_futex+0x10/0x10 [ 255.051700][ T8121] ? xfd_validate_state+0x5d/0x180 [ 255.051746][ T8121] ? rcu_is_watching+0x12/0xc0 [ 255.051787][ T8121] __x64_sys_sendmmsg+0x9c/0x100 [ 255.051832][ T8121] ? lockdep_hardirqs_on+0x7c/0x110 [ 255.051868][ T8121] do_syscall_64+0xcd/0x250 [ 255.051910][ T8121] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 255.051962][ T8121] RIP: 0033:0x7f651db8d169 [ 255.051987][ T8121] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 255.052017][ T8121] RSP: 002b:00007f651e923038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 255.052046][ T8121] RAX: ffffffffffffffda RBX: 00007f651dda5fa0 RCX: 00007f651db8d169 [ 255.052066][ T8121] RDX: 0000000000000005 RSI: 0000400000000140 RDI: 0000000000000008 [ 255.052084][ T8121] RBP: 00007f651dc0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 255.052102][ T8121] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000000 [ 255.052120][ T8121] R13: 0000000000000000 R14: 00007f651dda5fa0 R15: 00007ffe6f5df548 [ 255.052159][ T8121] [ 257.153177][ T8149] FAULT_INJECTION: forcing a failure. [ 257.153177][ T8149] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 257.226358][ T8149] CPU: 0 UID: 0 PID: 8149 Comm: syz.0.325 Not tainted 6.14.0-rc4-syzkaller #0 [ 257.226397][ T8149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 257.226415][ T8149] Call Trace: [ 257.226424][ T8149] [ 257.226436][ T8149] dump_stack_lvl+0x16c/0x1f0 [ 257.226480][ T8149] should_fail_ex+0x50a/0x650 [ 257.226548][ T8149] _copy_to_user+0x32/0xd0 [ 257.226584][ T8149] simple_read_from_buffer+0xd0/0x160 [ 257.226631][ T8149] proc_fail_nth_read+0x198/0x270 [ 257.226670][ T8149] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 257.226710][ T8149] ? rw_verify_area+0xcf/0x680 [ 257.226749][ T8149] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 257.226787][ T8149] vfs_read+0x1df/0xbf0 [ 257.226830][ T8149] ? __fget_files+0x1fc/0x3a0 [ 257.226874][ T8149] ? __pfx___mutex_lock+0x10/0x10 [ 257.226915][ T8149] ? __pfx_vfs_read+0x10/0x10 [ 257.226969][ T8149] ? __fget_files+0x206/0x3a0 [ 257.227024][ T8149] ksys_read+0x12b/0x250 [ 257.227065][ T8149] ? __pfx_ksys_read+0x10/0x10 [ 257.227118][ T8149] do_syscall_64+0xcd/0x250 [ 257.227160][ T8149] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 257.227205][ T8149] RIP: 0033:0x7f651db8bb7c [ 257.227230][ T8149] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 257.227259][ T8149] RSP: 002b:00007f651e923030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 257.227287][ T8149] RAX: ffffffffffffffda RBX: 00007f651dda5fa0 RCX: 00007f651db8bb7c [ 257.227306][ T8149] RDX: 000000000000000f RSI: 00007f651e9230a0 RDI: 0000000000000004 [ 257.227323][ T8149] RBP: 00007f651e923090 R08: 0000000000000000 R09: 0000000000000000 [ 257.227341][ T8149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 257.227358][ T8149] R13: 0000000000000000 R14: 00007f651dda5fa0 R15: 00007ffe6f5df548 [ 257.227396][ T8149] [ 258.480906][ T29] audit: type=1800 audit(6035368571.141:12): pid=8193 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.332" name="dbroot" dev="configfs" ino=20513 res=0 errno=0 [ 261.201627][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 261.226447][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 261.754972][ T8256] netlink: 8 bytes leftover after parsing attributes in process `syz.5.340'. [ 262.684614][ T29] audit: type=1800 audit(6035368575.331:13): pid=8283 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.343" name="dbroot" dev="configfs" ino=19771 res=0 errno=0 [ 266.047240][ T8341] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 267.700378][ T29] audit: type=1800 audit(6035368580.361:14): pid=8384 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.354" name="dbroot" dev="configfs" ino=20801 res=0 errno=0 [ 270.994646][ T8461] HfR: entered promiscuous mode [ 271.476754][ T29] audit: type=1800 audit(6035368584.141:15): pid=8467 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.368" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0 [ 273.276776][ T8512] cougar: G6 mapped to space [ 273.546219][ T29] audit: type=1800 audit(6035368586.201:16): pid=8517 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.380" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0 [ 275.538652][ T8553] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 275.592869][ T8556] sctp: Failed to create the SCTP UDP tunneling v4 sock [ 276.466457][ T8574] netlink: 4 bytes leftover after parsing attributes in process `syz.6.394'. [ 278.143828][ T29] audit: type=1800 audit(6035368590.811:17): pid=8601 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.400" name="dbroot" dev="configfs" ino=21165 res=0 errno=0 [ 282.608147][ T29] audit: type=1800 audit(6035368595.271:18): pid=8671 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.414" name="dbroot" dev="configfs" ino=21750 res=0 errno=0 [ 283.430877][ T8675] process 'syz.0.415' launched ':,' with NULL argv: empty string added [ 284.674085][ T29] audit: type=1800 audit(6035368597.331:19): pid=8693 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.420" name="dbroot" dev="configfs" ino=21325 res=0 errno=0 [ 286.227725][ T8705] netlink: 4 bytes leftover after parsing attributes in process `syz.0.422'. [ 287.237901][ T8728] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input9 [ 288.755789][ T29] audit: type=1800 audit(6035368601.411:20): pid=8758 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.437" name="dbroot" dev="configfs" ino=21437 res=0 errno=0 [ 289.751081][ T8760] netlink: 338 bytes leftover after parsing attributes in process `syz.0.445'. [ 290.525769][ T29] audit: type=1800 audit(6035368603.181:21): pid=8777 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.443" name="dummy_udc" dev="gadgetfs" ino=6427 res=0 errno=0 [ 291.894410][ T8795] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:17: corrupted in-inode xattr: bad magic number in in-inode xattr [ 291.914192][ T8796] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:1: corrupted in-inode xattr: bad magic number in in-inode xattr [ 292.230619][ T8808] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input10 [ 292.419868][ T8820] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:17: corrupted in-inode xattr: bad magic number in in-inode xattr [ 292.499003][ T8821] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:17: corrupted in-inode xattr: bad magic number in in-inode xattr [ 293.006181][ T29] audit: type=1800 audit(6035368605.661:22): pid=8825 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.454" name="dbroot" dev="configfs" ino=22540 res=0 errno=0 [ 293.373344][ T8831] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:17: corrupted in-inode xattr: bad magic number in in-inode xattr [ 294.345508][ T8843] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:17: corrupted in-inode xattr: bad magic number in in-inode xattr [ 296.196813][ T8868] netlink: 4 bytes leftover after parsing attributes in process `syz.2.462'. [ 297.070210][ T29] audit: type=1800 audit(6035368609.731:23): pid=8882 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.466" name="dbroot" dev="configfs" ino=22100 res=0 errno=0 [ 297.963265][ T8898] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr [ 298.018914][ T8900] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:17: corrupted in-inode xattr: bad magic number in in-inode xattr [ 298.734888][ T8909] bridge0: port 3(syz_tun) entered blocking state [ 298.766293][ T8909] bridge0: port 3(syz_tun) entered disabled state [ 298.772989][ T8909] syz_tun: entered allmulticast mode [ 298.839172][ T8909] syz_tun: entered promiscuous mode [ 298.845136][ T8909] bridge0: port 3(syz_tun) entered blocking state [ 298.852202][ T8909] bridge0: port 3(syz_tun) entered forwarding state [ 299.117385][ T8908] ima: policy update failed [ 299.122138][ T29] audit: type=1802 audit(6035368611.781:24): pid=8908 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.6.472" res=0 errno=0 [ 299.181307][ T8903] FAULT_INJECTION: forcing a failure. [ 299.181307][ T8903] name failslab, interval 1, probability 0, space 0, times 0 [ 299.234756][ T8903] CPU: 0 UID: 0 PID: 8903 Comm: syz.5.470 Not tainted 6.14.0-rc4-syzkaller #0 [ 299.234800][ T8903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 299.234824][ T8903] Call Trace: [ 299.234835][ T8903] [ 299.234848][ T8903] dump_stack_lvl+0x16c/0x1f0 [ 299.234897][ T8903] should_fail_ex+0x50a/0x650 [ 299.234949][ T8903] ? fs_reclaim_acquire+0xae/0x150 [ 299.234995][ T8903] ? rand_initialize_disk+0x3f/0xc0 [ 299.235047][ T8903] should_failslab+0xc2/0x120 [ 299.235079][ T8903] __kmalloc_cache_noprof+0x68/0x410 [ 299.235125][ T8903] ? lockdep_init_map_type+0x16d/0x7d0 [ 299.235184][ T8903] rand_initialize_disk+0x3f/0xc0 [ 299.235238][ T8903] __alloc_disk_node+0x2c1/0x610 [ 299.235288][ T8903] __blk_alloc_disk+0xd8/0x170 [ 299.235328][ T8903] ? __pfx___blk_alloc_disk+0x10/0x10 [ 299.235396][ T8903] ? __pfx_idr_alloc+0x10/0x10 [ 299.235446][ T8903] ? __raw_spin_lock_init+0x3a/0x110 [ 299.235507][ T8903] ? __pfx_hot_add_show+0x10/0x10 [ 299.235557][ T8903] zram_add+0x160/0x6b0 [ 299.235613][ T8903] ? __pfx_zram_add+0x10/0x10 [ 299.235687][ T8903] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 299.235735][ T8903] ? rcu_is_watching+0x12/0xc0 [ 299.235778][ T8903] ? __pfx_hot_add_show+0x10/0x10 [ 299.235826][ T8903] hot_add_show+0x21/0x80 [ 299.235873][ T8903] class_attr_show+0x6f/0xa0 [ 299.235918][ T8903] ? __pfx_class_attr_show+0x10/0x10 [ 299.235959][ T8903] sysfs_kf_seq_show+0x23e/0x410 [ 299.236005][ T8903] seq_read_iter+0x4f4/0x12b0 [ 299.236064][ T8903] kernfs_fop_read_iter+0x414/0x580 [ 299.236105][ T8903] ? rw_verify_area+0xcf/0x680 [ 299.236149][ T8903] vfs_read+0x886/0xbf0 [ 299.236204][ T8903] ? __pfx_vfs_read+0x10/0x10 [ 299.236290][ T8903] ksys_read+0x12b/0x250 [ 299.236333][ T8903] ? __pfx_ksys_read+0x10/0x10 [ 299.236391][ T8903] do_syscall_64+0xcd/0x250 [ 299.236435][ T8903] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 299.236481][ T8903] RIP: 0033:0x7f5f6ed8d169 [ 299.236525][ T8903] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 299.236558][ T8903] RSP: 002b:00007f5f6fc9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 299.236596][ T8903] RAX: ffffffffffffffda RBX: 00007f5f6efa5fa0 RCX: 00007f5f6ed8d169 [ 299.236618][ T8903] RDX: 0000000000001000 RSI: 0000400000000ec0 RDI: 0000000000000007 [ 299.236637][ T8903] RBP: 00007f5f6ee0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 299.236657][ T8903] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 299.236676][ T8903] R13: 0000000000000000 R14: 00007f5f6efa5fa0 R15: 00007ffd3eb14988 [ 299.236719][ T8903] [ 299.628373][ T8903] zram: Added device: zram1 [ 300.175469][ T55] Bluetooth: hci1: unexpected subevent 0x04 length: 122 > 11 [ 304.505273][ T8983] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr [ 304.688044][ T8985] netlink: 8 bytes leftover after parsing attributes in process `syz.6.487'. [ 305.711789][ T8992] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 307.077147][ T29] audit: type=1800 audit(6035368619.731:25): pid=9008 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.494" name="dbroot" dev="configfs" ino=23027 res=0 errno=0 [ 308.224499][ T9026] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:1: corrupted in-inode xattr: bad magic number in in-inode xattr [ 308.316609][ T9028] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:1: corrupted in-inode xattr: bad magic number in in-inode xattr [ 309.433893][ T9043] netlink: 28 bytes leftover after parsing attributes in process `syz.5.500'. [ 310.413144][ T9049] netlink: 342 bytes leftover after parsing attributes in process `syz.0.509'. [ 310.479612][ T29] audit: type=1800 audit(6035368623.141:26): pid=9054 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.502" name="dbroot" dev="configfs" ino=22463 res=0 errno=0 [ 311.238830][ T9060] Invalid ELF header magic: != ELF [ 313.512553][ T9096] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:17: corrupted in-inode xattr: bad magic number in in-inode xattr [ 314.489430][ T9102] netlink: 342 bytes leftover after parsing attributes in process `syz.2.513'. [ 315.627111][ T9137] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:17: corrupted in-inode xattr: bad magic number in in-inode xattr [ 315.691871][ T9140] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:17: corrupted in-inode xattr: bad magic number in in-inode xattr [ 315.984886][ T9147] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:20: corrupted in-inode xattr: bad magic number in in-inode xattr [ 317.044280][ T29] audit: type=1800 audit(6035368629.701:27): pid=9159 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.525" name="dbroot" dev="configfs" ino=24037 res=0 errno=0 [ 317.155285][ T9165] netlink: 338 bytes leftover after parsing attributes in process `syz.0.532'. [ 317.266525][ T9165] netlink: 338 bytes leftover after parsing attributes in process `syz.0.532'. [ 317.363730][ T9167] netlink: 134 bytes leftover after parsing attributes in process `syz.0.532'. [ 318.294993][ T9177] netlink: 342 bytes leftover after parsing attributes in process `syz.2.526'. [ 318.463124][ T9194] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:17: corrupted in-inode xattr: bad magic number in in-inode xattr [ 318.592011][ T9197] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:17: corrupted in-inode xattr: bad magic number in in-inode xattr [ 319.404819][ T9209] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr [ 319.576270][ T55] Bluetooth: hci0: command 0x0406 tx timeout [ 319.741444][ T9221] synth uevent: /devices/platform/dummy_hcd.3/usb4/ep_00: unknown uevent action string [ 319.812949][ T9221] ep_00: uevent: failed to send synthetic uevent: -22 [ 319.907327][ T9229] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:1: corrupted in-inode xattr: bad magic number in in-inode xattr [ 320.577533][ T9241] netlink: 342 bytes leftover after parsing attributes in process `syz.6.540'. [ 320.695480][ T9247] Invalid ELF header magic: != ELF [ 321.388333][ T9264] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr [ 321.435124][ T9265] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr [ 321.474541][ T9269] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr [ 321.502353][ T9270] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr [ 321.705473][ T9276] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:20: corrupted in-inode xattr: bad magic number in in-inode xattr [ 321.723549][ T9277] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:20: corrupted in-inode xattr: bad magic number in in-inode xattr [ 322.258100][ T9287] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr [ 322.632770][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 322.640636][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 323.071269][ T9303] netlink: 252 bytes leftover after parsing attributes in process `syz.6.554'. [ 323.433023][ T9313] Invalid ELF header magic: != ELF [ 324.025493][ T9331] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr [ 324.062313][ T9332] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr [ 324.318447][ T9339] FAULT_INJECTION: forcing a failure. [ 324.318447][ T9339] name failslab, interval 1, probability 0, space 0, times 0 [ 324.339929][ T9339] CPU: 1 UID: 0 PID: 9339 Comm: syz.6.564 Not tainted 6.14.0-rc4-syzkaller #0 [ 324.339966][ T9339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 324.339980][ T9339] Call Trace: [ 324.339987][ T9339] [ 324.339995][ T9339] dump_stack_lvl+0x16c/0x1f0 [ 324.340030][ T9339] should_fail_ex+0x50a/0x650 [ 324.340067][ T9339] ? fs_reclaim_acquire+0xae/0x150 [ 324.340099][ T9339] ? tomoyo_realpath_from_path+0xb9/0x720 [ 324.340132][ T9339] should_failslab+0xc2/0x120 [ 324.340154][ T9339] __kmalloc_noprof+0xcb/0x510 [ 324.340189][ T9339] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 324.340229][ T9339] tomoyo_realpath_from_path+0xb9/0x720 [ 324.340261][ T9339] ? tomoyo_path_number_perm+0x235/0x590 [ 324.340289][ T9339] ? tomoyo_path_number_perm+0x235/0x590 [ 324.340320][ T9339] tomoyo_path_number_perm+0x248/0x590 [ 324.340350][ T9339] ? tomoyo_path_number_perm+0x235/0x590 [ 324.340391][ T9339] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 324.340464][ T9339] ? __pfx_lock_release+0x10/0x10 [ 324.340496][ T9339] ? trace_lock_acquire+0x14e/0x1f0 [ 324.340526][ T9339] ? lock_acquire+0x2f/0xb0 [ 324.340557][ T9339] ? __fget_files+0x40/0x3a0 [ 324.340594][ T9339] ? __fget_files+0x206/0x3a0 [ 324.340630][ T9339] security_file_ioctl+0x9b/0x240 [ 324.340660][ T9339] __x64_sys_ioctl+0xb7/0x200 [ 324.340691][ T9339] do_syscall_64+0xcd/0x250 [ 324.340723][ T9339] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 324.340757][ T9339] RIP: 0033:0x7fae20d8d169 [ 324.340774][ T9339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 324.340797][ T9339] RSP: 002b:00007fae21bb3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 324.340819][ T9339] RAX: ffffffffffffffda RBX: 00007fae20fa5fa0 RCX: 00007fae20d8d169 [ 324.340834][ T9339] RDX: 0000000000000003 RSI: 00000000c0045627 RDI: 0000000000000005 [ 324.340848][ T9339] RBP: 00007fae21bb3090 R08: 0000000000000000 R09: 0000000000000000 [ 324.340862][ T9339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 324.340876][ T9339] R13: 0000000000000000 R14: 00007fae20fa5fa0 R15: 00007fff1df2b488 [ 324.340913][ T9339] [ 324.340936][ T9339] ERROR: Out of memory at tomoyo_realpath_from_path. [ 324.593241][ T9344] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:19: corrupted in-inode xattr: bad magic number in in-inode xattr [ 325.152778][ T9350] netlink: 252 bytes leftover after parsing attributes in process `syz.6.566'. [ 325.234729][ T29] audit: type=1800 audit(6035368637.891:28): pid=9357 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.569" name="dbroot" dev="configfs" ino=24515 res=0 errno=0 [ 325.480962][ T9363] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr [ 325.515278][ T9364] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr [ 325.535375][ T9365] netlink: 28 bytes leftover after parsing attributes in process `syz.6.570'. [ 325.544662][ T9365] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 325.567369][ T9365] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 325.586664][ T9365] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 325.602302][ T9365] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 325.948665][ T9368] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:1: corrupted in-inode xattr: bad magic number in in-inode xattr [ 326.045820][ T9367] netlink: 'syz.0.571': attribute type 11 has an invalid length. [ 326.464455][ T9381] FAULT_INJECTION: forcing a failure. [ 326.464455][ T9381] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 326.480481][ T9381] CPU: 1 UID: 0 PID: 9381 Comm: syz.5.575 Not tainted 6.14.0-rc4-syzkaller #0 [ 326.480521][ T9381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 326.480539][ T9381] Call Trace: [ 326.480548][ T9381] [ 326.480560][ T9381] dump_stack_lvl+0x16c/0x1f0 [ 326.480605][ T9381] should_fail_ex+0x50a/0x650 [ 326.480652][ T9381] ? __pfx___might_resched+0x10/0x10 [ 326.480707][ T9381] should_fail_alloc_page+0xe7/0x130 [ 326.480739][ T9381] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 326.480798][ T9381] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 326.480852][ T9381] ? __pfx_mark_lock+0x10/0x10 [ 326.480898][ T9381] ? hlock_class+0x4e/0x130 [ 326.480930][ T9381] ? mark_lock+0xb5/0xc60 [ 326.480973][ T9381] ? hlock_class+0x4e/0x130 [ 326.481005][ T9381] ? mark_lock+0xb5/0xc60 [ 326.481046][ T9381] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 326.481100][ T9381] ? mark_lock+0xb5/0xc60 [ 326.481157][ T9381] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 326.481210][ T9381] ? policy_nodemask+0xea/0x4e0 [ 326.481266][ T9381] alloc_pages_mpol+0x1fc/0x540 [ 326.481298][ T9381] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 326.481329][ T9381] ? find_held_lock+0x2d/0x110 [ 326.481371][ T9381] folio_alloc_mpol_noprof+0x36/0x2f0 [ 326.481409][ T9381] shmem_alloc_folio+0x135/0x160 [ 326.481461][ T9381] shmem_alloc_and_add_folio+0x48e/0xc10 [ 326.481504][ T9381] ? shmem_huge_global_enabled+0x72/0x6b0 [ 326.481538][ T9381] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 326.481579][ T9381] ? shmem_allowable_huge_orders+0xd0/0x410 [ 326.481626][ T9381] shmem_get_folio_gfp+0x689/0x1530 [ 326.481670][ T9381] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 326.481712][ T9381] ? filemap_map_pages+0xf92/0x16b0 [ 326.481757][ T9381] shmem_fault+0x200/0xae0 [ 326.481806][ T9381] ? __pfx_shmem_fault+0x10/0x10 [ 326.481851][ T9381] ? do_pte_missing+0xde9/0x3e10 [ 326.481897][ T9381] ? __pfx_lock_release+0x10/0x10 [ 326.481949][ T9381] __do_fault+0x10a/0x490 [ 326.481986][ T9381] do_pte_missing+0xecf/0x3e10 [ 326.482048][ T9381] __handle_mm_fault+0x1166/0x2c60 [ 326.482107][ T9381] ? __pfx___handle_mm_fault+0x10/0x10 [ 326.482153][ T9381] ? follow_page_pte+0x3ac/0x1490 [ 326.482199][ T9381] ? __pfx_lock_release+0x10/0x10 [ 326.482275][ T9381] handle_mm_fault+0x3fa/0xaa0 [ 326.482329][ T9381] __get_user_pages+0x773/0x36f0 [ 326.482386][ T9381] ? __pfx_mt_find+0x10/0x10 [ 326.482428][ T9381] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 326.482473][ T9381] ? __pfx___get_user_pages+0x10/0x10 [ 326.482522][ T9381] ? __mm_populate+0x21d/0x380 [ 326.482579][ T9381] populate_vma_page_range+0x27f/0x3a0 [ 326.482631][ T9381] ? __pfx_populate_vma_page_range+0x10/0x10 [ 326.482679][ T9381] ? __pfx_find_vma_intersection+0x10/0x10 [ 326.482724][ T9381] ? __do_sys_mlockall+0x331/0x5c0 [ 326.482761][ T9381] __mm_populate+0x1d6/0x380 [ 326.482817][ T9381] ? __pfx___mm_populate+0x10/0x10 [ 326.482869][ T9381] ? up_write+0x1b2/0x520 [ 326.482920][ T9381] __do_sys_mlockall+0x520/0x5c0 [ 326.482954][ T9381] do_syscall_64+0xcd/0x250 [ 326.482997][ T9381] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 326.483042][ T9381] RIP: 0033:0x7f5f6ed8d169 [ 326.483067][ T9381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 326.483097][ T9381] RSP: 002b:00007f5f6fc7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000097 [ 326.483126][ T9381] RAX: ffffffffffffffda RBX: 00007f5f6efa6080 RCX: 00007f5f6ed8d169 [ 326.483146][ T9381] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 326.483163][ T9381] RBP: 00007f5f6ee0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 326.483181][ T9381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 326.483198][ T9381] R13: 0000000000000000 R14: 00007f5f6efa6080 R15: 00007ffd3eb14988 [ 326.483236][ T9381] [ 327.259711][ T9382] cougar: G6 mapped to F18 [ 327.274699][ T9380] cougar: G6 mapped to F18 [ 328.520937][ T9400] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:20: corrupted in-inode xattr: bad magic number in in-inode xattr [ 328.749332][ T9402] netlink: 252 bytes leftover after parsing attributes in process `syz.2.579'. [ 329.722329][ T9427] Invalid ELF header magic: != ELF [ 330.018010][ T29] audit: type=1800 audit(6035368642.671:29): pid=9434 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.586" name="dbroot" dev="configfs" ino=25068 res=0 errno=0 [ 330.129031][ T9436] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:1: corrupted in-inode xattr: bad magic number in in-inode xattr [ 331.196663][ T9448] netlink: 252 bytes leftover after parsing attributes in process `syz.5.590'. [ 331.608299][ T5851] Bluetooth: hci3: unexpected event 0x35 length: 13 > 6 [ 331.614312][ T9459] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:19: corrupted in-inode xattr: bad magic number in in-inode xattr [ 331.920082][ T9467] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:19: corrupted in-inode xattr: bad magic number in in-inode xattr [ 331.986294][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 331.994870][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 332.003428][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 332.011980][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 332.020815][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 332.886437][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 333.152315][ T9475] sg_read: process 601 (syz.2.595) changed security contexts after opening file descriptor, this is not allowed. [ 333.226389][ T9483] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:19: corrupted in-inode xattr: bad magic number in in-inode xattr [ 333.254702][ T9484] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:20: corrupted in-inode xattr: bad magic number in in-inode xattr [ 333.637087][ T9488] nbd: socks must be embedded in a SOCK_ITEM attr [ 333.647837][ T9488] block nbd0: shutting down sockets [ 334.043650][ T9501] netlink: 8 bytes leftover after parsing attributes in process `syz.2.602'. [ 334.082668][ T9498] netlink: 252 bytes leftover after parsing attributes in process `syz.5.601'. [ 334.936500][ T55] Bluetooth: hci1: command 0x0406 tx timeout [ 335.151354][ T9568] kmem.limit_in_bytes is deprecated and will be removed. Writing any value to this file has no effect. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 335.995684][ T9579] Process accounting resumed [ 336.416279][ T9584] netlink: 252 bytes leftover after parsing attributes in process `syz.5.614'. [ 336.987487][ T9606] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(6) [ 337.256959][ T9622] [U] [ 337.259780][ T9622] [U] [ 337.262550][ T9622] [U] [ 337.265318][ T9622] [U] [ 337.316544][ T9622] [U] [ 337.319349][ T9622] [U] [ 337.322111][ T9622] [U] [ 337.324882][ T9622] [U] [ 337.356471][ T9622] [U] [ 337.359285][ T9622] [U] [ 337.362047][ T9622] [U] [ 337.364851][ T9622] [U] [ 337.467240][ T9622] [U] [ 337.470043][ T9622] [U] [ 337.472812][ T9622] [U] [ 337.475576][ T9622] [U] [ 337.531529][ T9622] [U] [ 337.534329][ T9622] [U] [ 337.537084][ T9622] [U] [ 337.539848][ T9622] [U] [ 337.618915][ T9622] [U] [ 337.621716][ T9622] [U] [ 337.624477][ T9622] [U] [ 337.627234][ T9622] [U] [ 337.663779][ T9622] [U] [ 337.666586][ T9622] [U] [ 337.669330][ T9622] [U] [ 337.672064][ T9622] [U] [ 337.753139][ T9622] [U] [ 337.755963][ T9622] [U] [ 337.758708][ T9622] [U] [ 337.761440][ T9622] [U] [ 337.863864][ T9622] [U] [ 337.866680][ T9622] [U] [ 337.869450][ T9622] [U] [ 337.872214][ T9622] [U] [ 337.921416][ T9622] [U] [ 337.924217][ T9622] [U] [ 337.926989][ T9622] [U] [ 337.929753][ T9622] [U] [ 337.991546][ T9622] [U] [ 337.994357][ T9622] [U] [ 337.997128][ T9622] [U] [ 337.999892][ T9622] [U] [ 338.106407][ T9622] [U] [ 338.109213][ T9622] [U] [ 338.111986][ T9622] [U] [ 338.114738][ T9622] [U] [ 338.177842][ T9622] [U] [ 338.180644][ T9622] [U] [ 338.183410][ T9622] [U] [ 338.186174][ T9622] [U] [ 338.250265][ T9622] [U] [ 338.253072][ T9622] [U] [ 338.255839][ T9622] [U] [ 338.258596][ T9622] [U] [ 338.266749][ T9637] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:29: corrupted in-inode xattr: bad magic number in in-inode xattr [ 338.333297][ T9622] [U] [ 338.336095][ T9622] [U] [ 338.338854][ T9622] [U] [ 338.341611][ T9622] [U] [ 338.344671][ T9636] nvme_fabrics: missing parameter 'transport=%s' [ 338.406907][ T9636] nvme_fabrics: missing parameter 'nqn=%s' [ 338.444684][ T9622] [U] [ 338.447501][ T9622] [U] [ 338.450260][ T9622] [U] [ 338.453015][ T9622] [U] [ 338.606532][ T9622] [U] [ 338.609323][ T9622] [U] [ 338.612080][ T9622] [U] [ 338.614822][ T9622] [U] [ 338.658858][ T9622] [U] [ 338.661664][ T9622] [U] [ 338.664423][ T9622] [U] [ 338.667188][ T9622] [U] [ 338.694570][ T9642] Invalid ELF header magic: != ELF [ 338.801158][ T9622] [U] [ 338.804015][ T9622] [U] [ 338.806767][ T9622] [U] [ 338.809508][ T9622] [U] [ 338.854676][ T9622] [U] [ 339.738472][ T9656] netlink: 252 bytes leftover after parsing attributes in process `syz.2.629'. [ 340.092721][ T9659] netlink: 28 bytes leftover after parsing attributes in process `syz.6.630'. [ 340.167260][ T9662] netlink: 252 bytes leftover after parsing attributes in process `syz.2.631'. [ 340.177575][ T9662] FAULT_INJECTION: forcing a failure. [ 340.177575][ T9662] name failslab, interval 1, probability 0, space 0, times 0 [ 340.240366][ T9662] CPU: 1 UID: 0 PID: 9662 Comm: syz.2.631 Not tainted 6.14.0-rc4-syzkaller #0 [ 340.240406][ T9662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 340.240423][ T9662] Call Trace: [ 340.240432][ T9662] [ 340.240442][ T9662] dump_stack_lvl+0x16c/0x1f0 [ 340.240486][ T9662] should_fail_ex+0x50a/0x650 [ 340.240533][ T9662] ? fs_reclaim_acquire+0xae/0x150 [ 340.240575][ T9662] should_failslab+0xc2/0x120 [ 340.240604][ T9662] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 340.240652][ T9662] ? getname_flags.part.0+0x4c/0x550 [ 340.240710][ T9662] getname_flags.part.0+0x4c/0x550 [ 340.240751][ T9662] getname_flags+0x93/0xf0 [ 340.240794][ T9662] __x64_sys_mkdirat+0x76/0xb0 [ 340.240844][ T9662] do_syscall_64+0xcd/0x250 [ 340.240888][ T9662] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 340.240932][ T9662] RIP: 0033:0x7f7362d8d169 [ 340.240956][ T9662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 340.240986][ T9662] RSP: 002b:00007f7363b3c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102 [ 340.241015][ T9662] RAX: ffffffffffffffda RBX: 00007f7362fa5fa0 RCX: 00007f7362d8d169 [ 340.241042][ T9662] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000000 [ 340.241060][ T9662] RBP: 00007f7363b3c090 R08: 0000000000000000 R09: 0000000000000000 [ 340.241078][ T9662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 340.241096][ T9662] R13: 0000000000000000 R14: 00007f7362fa5fa0 R15: 00007ffcd8020e38 [ 340.241133][ T9662] [ 340.746449][ T9677] kAFS: Invalid Command on /proc/fs/afs/cells file [ 340.864534][ T9680] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:18: corrupted in-inode xattr: bad magic number in in-inode xattr [ 341.761570][ T9609] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 341.768024][ T9691] [U] [ 341.774973][ T9691] [U] [ 341.777728][ T9691] [U] [ 341.780467][ T9691] [U] [ 341.831548][ T9691] [U] [ 341.834361][ T9691] [U] [ 341.837130][ T9691] [U] [ 341.839895][ T9691] [U] [ 341.879119][ T9691] [U] [ 341.881927][ T9691] [U] [ 341.884690][ T9691] [U] [ 341.887450][ T9691] [U] [ 341.918520][ T9691] [U] [ 341.921305][ T9691] [U] [ 341.924044][ T9691] [U] [ 341.926782][ T9691] [U] [ 341.946336][ T9691] [U] [ 341.949143][ T9691] [U] [ 341.951902][ T9691] [U] [ 341.954664][ T9691] [U] [ 341.977167][ T9609] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 341.997188][ T9691] [U] [ 342.000011][ T9691] [U] [ 342.002772][ T9691] [U] [ 342.005534][ T9691] [U] [ 342.030383][ T9691] [U] [ 342.033174][ T9691] [U] [ 342.035959][ T9691] [U] [ 342.038717][ T9691] [U] [ 342.091352][ T9691] [U] [ 342.094172][ T9691] [U] [ 342.096951][ T9691] [U] [ 342.099713][ T9691] [U] [ 342.120954][ T9691] [U] [ 342.123759][ T9691] [U] [ 342.126515][ T9691] [U] [ 342.129273][ T9691] [U] [ 342.157099][ T9609] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 342.171587][ T9691] [U] [ 342.174387][ T9691] [U] [ 342.177152][ T9691] [U] [ 342.179920][ T9691] [U] [ 342.215480][ T9691] [U] [ 342.218460][ T9691] [U] [ 342.221240][ T9691] [U] [ 342.224085][ T9691] [U] [ 342.280835][ T9691] [U] [ 342.283652][ T9691] [U] [ 342.286416][ T9691] [U] [ 342.289203][ T9691] [U] [ 342.333046][ T9609] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 342.380943][ T9691] [U] [ 342.383754][ T9691] [U] [ 342.386523][ T9691] [U] [ 342.389280][ T9691] [U] [ 342.434986][ T9691] [U] [ 342.437787][ T9691] [U] [ 342.440543][ T9691] [U] [ 342.443308][ T9691] [U] [ 342.576604][ T9609] bridge_slave_1: left allmulticast mode [ 342.582323][ T9609] bridge_slave_1: left promiscuous mode [ 342.594025][ T9691] [U] [ 342.596822][ T9691] [U] [ 342.599593][ T9691] [U] [ 342.602352][ T9691] [U] [ 342.606347][ T9609] bridge0: port 2(bridge_slave_1) entered disabled state [ 342.621881][ T9691] [U] [ 342.624667][ T9691] [U] [ 342.627434][ T9691] [U] [ 342.630195][ T9691] [U] [ 342.633950][ T9609] bridge_slave_0: left allmulticast mode [ 342.646081][ T9609] bridge_slave_0: left promiscuous mode [ 342.651882][ T9609] bridge0: port 1(bridge_slave_0) entered disabled state [ 342.679592][ T9691] [U] [ 342.682386][ T9691] [U] [ 342.685141][ T9691] [U] [ 342.687886][ T9691] [U] [ 342.812208][ T9691] [U] [ 342.815005][ T9691] [U] [ 342.817757][ T9691] [U] [ 342.820505][ T9691] [U] [ 342.929297][ T9691] [U] [ 342.932090][ T9691] [U] [ 342.934852][ T9691] [U] [ 342.937619][ T9691] [U] [ 342.965508][ T9691] [U] [ 342.968314][ T9691] [U] [ 342.971084][ T9691] [U] [ 342.973859][ T9691] [U] [ 342.992885][ T9691] [U] [ 342.995685][ T9691] [U] [ 342.998451][ T9691] [U] [ 343.001211][ T9691] [U] [ 343.025854][ T9691] [U] [ 343.196691][ T9699] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:27: corrupted in-inode xattr: bad magic number in in-inode xattr [ 343.564951][ T9705] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:14: corrupted in-inode xattr: bad magic number in in-inode xattr [ 343.932636][ T9700] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT [ 343.970464][ T9703] netlink: 252 bytes leftover after parsing attributes in process `syz.5.639'. [ 344.733692][ T9609] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 344.757654][ T9609] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 344.785617][ T9609] bond0 (unregistering): Released all slaves [ 344.793125][ T9728] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:17: corrupted in-inode xattr: bad magic number in in-inode xattr [ 344.812547][ T9723] netlink: 326 bytes leftover after parsing attributes in process `syz.6.645'. [ 344.846111][ T9730] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:17: corrupted in-inode xattr: bad magic number in in-inode xattr [ 344.925216][ T9731] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:17: corrupted in-inode xattr: bad magic number in in-inode xattr [ 344.956496][ T9609] HfR: left promiscuous mode [ 344.990327][ T9734] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:17: corrupted in-inode xattr: bad magic number in in-inode xattr [ 345.016105][ T9732] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 345.038890][ T9736] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:17: corrupted in-inode xattr: bad magic number in in-inode xattr [ 345.075476][ T9737] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 345.104038][ T9738] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:17: corrupted in-inode xattr: bad magic number in in-inode xattr [ 345.217093][ T9739] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:17: corrupted in-inode xattr: bad magic number in in-inode xattr [ 345.433112][ T9744] netlink: 252 bytes leftover after parsing attributes in process `syz.2.647'. [ 345.444479][ T9744] FAULT_INJECTION: forcing a failure. [ 345.444479][ T9744] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 345.472880][ T9744] CPU: 0 UID: 0 PID: 9744 Comm: syz.2.647 Not tainted 6.14.0-rc4-syzkaller #0 [ 345.472923][ T9744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 345.472940][ T9744] Call Trace: [ 345.472950][ T9744] [ 345.472961][ T9744] dump_stack_lvl+0x16c/0x1f0 [ 345.473007][ T9744] should_fail_ex+0x50a/0x650 [ 345.473063][ T9744] strncpy_from_user+0x3b/0x2d0 [ 345.473110][ T9744] getname_flags.part.0+0x8f/0x550 [ 345.473150][ T9744] getname_flags+0x93/0xf0 [ 345.473194][ T9744] __x64_sys_mkdirat+0x76/0xb0 [ 345.473243][ T9744] do_syscall_64+0xcd/0x250 [ 345.473287][ T9744] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 345.473332][ T9744] RIP: 0033:0x7f7362d8d169 [ 345.473356][ T9744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 345.473387][ T9744] RSP: 002b:00007f7363b3c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102 [ 345.473416][ T9744] RAX: ffffffffffffffda RBX: 00007f7362fa5fa0 RCX: 00007f7362d8d169 [ 345.473436][ T9744] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000000 [ 345.473453][ T9744] RBP: 00007f7363b3c090 R08: 0000000000000000 R09: 0000000000000000 [ 345.473471][ T9744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 345.473488][ T9744] R13: 0000000000000000 R14: 00007f7362fa5fa0 R15: 00007ffcd8020e38 [ 345.473535][ T9744] [ 345.828392][ T55] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 345.850526][ T55] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 345.864650][ T55] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 345.876059][ T55] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 345.894892][ T55] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 345.902595][ T55] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 346.057442][ T29] audit: type=1800 audit(6035368658.721:30): pid=9766 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.649" name="dbroot" dev="configfs" ino=27197 res=0 errno=0 [ 346.149924][ T9763] netlink: 252 bytes leftover after parsing attributes in process `syz.2.651'. [ 346.261752][ T9609] hsr_slave_0: left promiscuous mode [ 346.273922][ T9609] hsr_slave_1: left promiscuous mode [ 346.289434][ T9609] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 346.311353][ T9609] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 346.337136][ T9609] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 346.361215][ T9609] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 346.399298][ T9609] veth1_macvtap: left promiscuous mode [ 346.409251][ T9609] veth0_macvtap: left promiscuous mode [ 346.419524][ T9609] veth1_vlan: left promiscuous mode [ 346.429574][ T9609] veth0_vlan: left promiscuous mode [ 347.369447][ T9609] team0 (unregistering): Port device team_slave_1 removed [ 347.423691][ T9609] team0 (unregistering): Port device team_slave_0 removed [ 347.976502][ T5851] Bluetooth: hci3: command tx timeout [ 348.208399][ T9758] chnl_net:caif_netlink_parms(): no params data found [ 348.381239][ T9758] bridge0: port 1(bridge_slave_0) entered blocking state [ 348.392743][ T9758] bridge0: port 1(bridge_slave_0) entered disabled state [ 348.402495][ T9758] bridge_slave_0: entered allmulticast mode [ 348.419226][ T9758] bridge_slave_0: entered promiscuous mode [ 348.461172][ T9758] bridge0: port 2(bridge_slave_1) entered blocking state [ 348.472069][ T9758] bridge0: port 2(bridge_slave_1) entered disabled state [ 348.481495][ T9758] bridge_slave_1: entered allmulticast mode [ 348.489267][ T9609] ref_tracker: net notrefcnt@ffff88802fe8a020 has 1/2 users at [ 348.489267][ T9609] sk_alloc+0xa93/0xb90 [ 348.489267][ T9609] inet6_create+0x380/0x1320 [ 348.489267][ T9609] __sock_create+0x335/0x8d0 [ 348.489267][ T9609] udp_sock_create6+0xc8/0x6a0 [ 348.489267][ T9609] sctp_udp_sock_start+0x280/0x4b0 [ 348.489267][ T9609] proc_sctp_do_udp_port+0x380/0x450 [ 348.489267][ T9609] proc_sys_call_handler+0x3c6/0x5a0 [ 348.489267][ T9609] iter_file_splice_write+0x90f/0x10b0 [ 348.489267][ T9609] direct_splice_actor+0x18f/0x6c0 [ 348.489267][ T9609] splice_direct_to_actor+0x346/0xa40 [ 348.489267][ T9609] do_splice_direct+0x178/0x250 [ 348.489267][ T9609] do_sendfile+0xafb/0xe40 [ 348.489267][ T9609] __x64_sys_sendfile64+0x1da/0x220 [ 348.489267][ T9609] do_syscall_64+0xcd/0x250 [ 348.489267][ T9609] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 348.489267][ T9609] [ 348.510094][ T9758] bridge_slave_1: entered promiscuous mode [ 348.577086][ T9609] ref_tracker: net notrefcnt@ffff88802fe8a020 has 1/2 users at [ 348.577086][ T9609] sk_alloc+0xa93/0xb90 [ 348.577086][ T9609] inet_create+0x3a1/0x10a0 [ 348.577086][ T9609] __sock_create+0x335/0x8d0 [ 348.577086][ T9609] udp_sock_create4+0xa7/0x450 [ 348.577086][ T9609] sctp_udp_sock_start+0x10b/0x4b0 [ 348.577086][ T9609] proc_sctp_do_udp_port+0x380/0x450 [ 348.577086][ T9609] proc_sys_call_handler+0x3c6/0x5a0 [ 348.577086][ T9609] iter_file_splice_write+0x90f/0x10b0 [ 348.577086][ T9609] direct_splice_actor+0x18f/0x6c0 [ 348.577086][ T9609] splice_direct_to_actor+0x346/0xa40 [ 348.577086][ T9609] do_splice_direct+0x178/0x250 [ 348.577086][ T9609] do_sendfile+0xafb/0xe40 [ 348.577086][ T9609] __x64_sys_sendfile64+0x1da/0x220 [ 348.577086][ T9609] do_syscall_64+0xcd/0x250 [ 348.577086][ T9609] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 348.577086][ T9609] [ 348.698778][ T9609] ------------[ cut here ]------------ [ 348.704663][ T9609] WARNING: CPU: 1 PID: 9609 at lib/ref_tracker.c:179 ref_tracker_dir_exit+0x3e3/0x680 [ 348.714424][ T9609] Modules linked in: [ 348.718431][ T9609] CPU: 1 UID: 0 PID: 9609 Comm: kworker/u8:23 Not tainted 6.14.0-rc4-syzkaller #0 [ 348.727837][ T9609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 348.738188][ T9609] Workqueue: netns cleanup_net [ 348.743214][ T9609] RIP: 0010:ref_tracker_dir_exit+0x3e3/0x680 [ 348.749383][ T9609] Code: 11 02 00 00 4d 39 f5 49 8b 06 4d 89 f7 0f 85 0e ff ff ff 48 8b 2c 24 e8 ab 12 c8 fc 48 8b 74 24 18 48 89 ef e8 ae d8 65 06 90 <0f> 0b 90 e8 95 12 c8 fc 48 8d 5d 44 be 04 00 00 00 48 89 df e8 64 [ 348.770643][ T9609] RSP: 0018:ffffc9000335fab0 EFLAGS: 00010246 [ 348.770694][ T9609] RAX: 0000000000000000 RBX: dffffc0000000000 RCX: 0000000000000000 [ 348.770717][ T9609] RDX: 0000000000000001 RSI: ffffffff8b6cec80 RDI: 0000000000000001 [ 348.770739][ T9609] RBP: ffff88802fe8a020 R08: 0000000000000001 R09: fffffbfff2dd7dbb [ 348.770762][ T9609] R10: ffffffff96ebeddf R11: 0000000000002ba2 R12: ffff88802fe8a070 [ 348.770785][ T9609] R13: ffff88802fe8a070 R14: ffff88802fe8a070 R15: ffff88802fe8a070 [ 348.770810][ T9609] FS: 0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 348.770843][ T9609] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 348.770868][ T9609] CR2: 00007f5f6fc59d58 CR3: 000000006e470000 CR4: 00000000003526f0 [ 348.770892][ T9609] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 348.770913][ T9609] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 348.770936][ T9609] Call Trace: [ 348.770949][ T9609] [ 348.770964][ T9609] ? __warn+0xea/0x3c0 [ 348.771008][ T9609] ? ref_tracker_dir_exit+0x3e3/0x680 [ 348.771090][ T9609] ? report_bug+0x3c0/0x580 [ 348.771137][ T9609] ? handle_bug+0x54/0xa0 [ 348.771181][ T9609] ? exc_invalid_op+0x17/0x50 [ 348.771231][ T9609] ? asm_exc_invalid_op+0x1a/0x20 [ 348.771292][ T9609] ? ref_tracker_dir_exit+0x3e3/0x680 [ 348.771358][ T9609] ? __pfx_ref_tracker_dir_exit+0x10/0x10 [ 348.771415][ T9609] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 348.771453][ T9609] ? net_passive_dec+0x7d/0xd0 [ 348.771502][ T9609] net_passive_dec+0x89/0xd0 [ 348.771536][ T9609] cleanup_net+0x8ac/0xb30 [ 348.771572][ T9609] ? __pfx_cleanup_net+0x10/0x10 [ 348.771611][ T9609] ? lock_acquire+0x2f/0xb0 [ 348.771656][ T9609] ? process_one_work+0x921/0x1ba0 [ 348.771709][ T9609] process_one_work+0x9c5/0x1ba0 [ 348.771769][ T9609] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 348.771820][ T9609] ? __pfx_process_one_work+0x10/0x10 [ 348.771879][ T9609] ? assign_work+0x1a0/0x250 [ 348.771926][ T9609] worker_thread+0x6c8/0xf00 [ 348.771988][ T9609] ? __pfx_worker_thread+0x10/0x10 [ 348.772035][ T9609] kthread+0x3af/0x750 [ 348.772076][ T9609] ? __pfx_kthread+0x10/0x10 [ 348.772115][ T9609] ? lock_acquire+0x2f/0xb0 [ 348.772168][ T9609] ? __pfx_kthread+0x10/0x10 [ 348.772212][ T9609] ret_from_fork+0x45/0x80 [ 348.772258][ T9609] ? __pfx_kthread+0x10/0x10 [ 348.772299][ T9609] ret_from_fork_asm+0x1a/0x30 [ 348.772355][ T9609] [ 348.772371][ T9609] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 348.772389][ T9609] CPU: 1 UID: 0 PID: 9609 Comm: kworker/u8:23 Not tainted 6.14.0-rc4-syzkaller #0 [ 348.772422][ T9609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 348.772445][ T9609] Workqueue: netns cleanup_net [ 348.772479][ T9609] Call Trace: [ 348.772498][ T9609] [ 348.772511][ T9609] dump_stack_lvl+0x3d/0x1f0 [ 348.772556][ T9609] panic+0x71d/0x800 [ 348.772594][ T9609] ? __pfx_panic+0x10/0x10 [ 348.772633][ T9609] ? show_trace_log_lvl+0x29d/0x3d0 [ 348.772696][ T9609] ? check_panic_on_warn+0x1f/0xb0 [ 348.772739][ T9609] ? ref_tracker_dir_exit+0x3e3/0x680 [ 348.772795][ T9609] check_panic_on_warn+0xab/0xb0 [ 348.772837][ T9609] __warn+0xf6/0x3c0 [ 348.772875][ T9609] ? ref_tracker_dir_exit+0x3e3/0x680 [ 348.772931][ T9609] report_bug+0x3c0/0x580 [ 348.772976][ T9609] handle_bug+0x54/0xa0 [ 348.773023][ T9609] exc_invalid_op+0x17/0x50 [ 348.773070][ T9609] asm_exc_invalid_op+0x1a/0x20 [ 348.773116][ T9609] RIP: 0010:ref_tracker_dir_exit+0x3e3/0x680 [ 348.773173][ T9609] Code: 11 02 00 00 4d 39 f5 49 8b 06 4d 89 f7 0f 85 0e ff ff ff 48 8b 2c 24 e8 ab 12 c8 fc 48 8b 74 24 18 48 89 ef e8 ae d8 65 06 90 <0f> 0b 90 e8 95 12 c8 fc 48 8d 5d 44 be 04 00 00 00 48 89 df e8 64 [ 348.773206][ T9609] RSP: 0018:ffffc9000335fab0 EFLAGS: 00010246 [ 348.773234][ T9609] RAX: 0000000000000000 RBX: dffffc0000000000 RCX: 0000000000000000 [ 348.773255][ T9609] RDX: 0000000000000001 RSI: ffffffff8b6cec80 RDI: 0000000000000001 [ 348.773277][ T9609] RBP: ffff88802fe8a020 R08: 0000000000000001 R09: fffffbfff2dd7dbb [ 348.773300][ T9609] R10: ffffffff96ebeddf R11: 0000000000002ba2 R12: ffff88802fe8a070 [ 348.773323][ T9609] R13: ffff88802fe8a070 R14: ffff88802fe8a070 R15: ffff88802fe8a070 [ 348.773374][ T9609] ? __pfx_ref_tracker_dir_exit+0x10/0x10 [ 348.773433][ T9609] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 348.773472][ T9609] ? net_passive_dec+0x7d/0xd0 [ 348.773517][ T9609] net_passive_dec+0x89/0xd0 [ 348.773550][ T9609] cleanup_net+0x8ac/0xb30 [ 348.773591][ T9609] ? __pfx_cleanup_net+0x10/0x10 [ 348.773630][ T9609] ? lock_acquire+0x2f/0xb0 [ 348.773675][ T9609] ? process_one_work+0x921/0x1ba0 [ 348.773729][ T9609] process_one_work+0x9c5/0x1ba0 [ 348.773787][ T9609] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 348.773837][ T9609] ? __pfx_process_one_work+0x10/0x10 [ 348.773898][ T9609] ? assign_work+0x1a0/0x250 [ 348.773948][ T9609] worker_thread+0x6c8/0xf00 [ 348.774009][ T9609] ? __pfx_worker_thread+0x10/0x10 [ 348.774057][ T9609] kthread+0x3af/0x750 [ 348.774100][ T9609] ? __pfx_kthread+0x10/0x10 [ 348.774142][ T9609] ? lock_acquire+0x2f/0xb0 [ 348.774195][ T9609] ? __pfx_kthread+0x10/0x10 [ 348.774237][ T9609] ret_from_fork+0x45/0x80 [ 348.774283][ T9609] ? __pfx_kthread+0x10/0x10 [ 348.774325][ T9609] ret_from_fork_asm+0x1a/0x30 [ 348.774383][ T9609] [ 348.778773][ T9609] Kernel Offset: disabled