last executing test programs: 1m2.502842869s ago: executing program 1 (id=531): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) socket(0x1, 0x3, 0x1000) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video33\x00', 0x22a040, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0x5, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) socketpair$auto(0xfffffffe, 0x8, 0x5, 0x0) ioctl$auto(0x3, 0x89e0, 0xfffffffffffff4e0) fanotify_init$auto(0x5, 0x2000000000002) inotify_init1$auto(0x3000000000000) socket(0x15, 0x5, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) write$auto(0xffffffffffffffff, 0x0, 0xc9c8) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x3, 0x6, 0x0, 0x10000, 0x1, 0x2, {0x2100000000, 0x10000}, 0x3, 0x6, 0xffffffffffffffdd, 0x1008000, 0x0, 0x80000004, 0x83, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x1800}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) bpf$auto(0x15, &(0x7f0000000100)=@batch={0x7fff, 0x1, 0x7, 0x8000000000000000, 0xd, 0xffffffffffffffff, 0x7, 0xf0ce}, 0xcb) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) socket$nl_generic(0x10, 0x3, 0x10) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x5, 0x21, 0x4, 0x0, 0x15f4da0a, 0x3, 0x4000000003, 0x62, 0xee2, 0x7, 0x6d3e, 0x9, 0x6, 0x6]}, 0x0) close_range$auto(0x2, 0xa, 0x0) r1 = socket(0xa, 0x1, 0x84) getsockopt$auto(r1, 0x84, 0x81, 0x0, &(0x7f0000000000)=0x9b) write$auto_v4l2_fops_v4l2_dev(0xffffffffffffffff, &(0x7f00000000c0)="6ba063fae94a06956ac6a4fc7f6b6dc884bbb225bc777bbab9bed5fc5e538d8c07a40fae7bcc4da2959aa13a3dfbd7babb9230354e070254cace42ae479cd280256fac4100000000000058b2704f4f41bfc3dcac0f1f16b700000000000000", 0x5f) sysfs$auto(0x2, 0x5, 0x0) 1m2.301827614s ago: executing program 1 (id=533): mmap$auto(0x400000, 0x2000a, 0xdf, 0xeb1, 0x401, 0x8000) syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) ioctl$auto_TIOCSTI2(r2, 0x5412, &(0x7f0000000840)="12915fb9d5") r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/bus/usb/drivers/usbtouchscreen/new_id\x00', 0xbce02, 0x0) write$auto(r3, 0x0, 0x81) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000bc0), r0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000140), r4) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="010014bd7000fbdbde2504000000"], 0x14}, 0x1, 0x0, 0x0, 0x44004811}, 0x40000c0) r6 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f00000001c0), r1) sendmsg$auto_TCP_METRICS_CMD_GET(r4, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="00022dbd7000fedbdf250100000014000200fc00000000000000000000000000000108000100ac1414bb"], 0x30}, 0x1, 0x0, 0x0, 0x50}, 0x4000004) r7 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/nfsd.fh/flush\x00', 0x8a402, 0x0) read$auto_proc_reg_file_ops_compat_inode(r7, 0x0, 0x0) acct$auto(&(0x7f00000000c0)='/proc/thread-self/net/rpc/nfsd.fh/flush\x00') openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x102, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) sendmsg$auto_IEEE802154_LLSEC_ADD_DEVKEY(r4, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x34, 0x0, 0x100, 0x70bd26, 0x25dfdbfe, {}, [@IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5, 0x36, 0x3}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5, 0x36, 0x4}, @IEEE802154_ATTR_BAT_EXT={0x5, 0x1a, 0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x24000804}, 0x20008001) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) 1m1.413897389s ago: executing program 1 (id=540): mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0x6, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0001, 0x0) mmap$auto(0x7fffffffe000, 0x61, 0x100001000000004, 0xfa31, r0, 0x8000) r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0) (async) shmctl$auto_SHM_INFO(0x7, 0xe, &(0x7f0000001080)={{0x5, 0x0, 0x0, 0xfffffff7, 0x2, 0x5, 0x6}, 0x400, 0x4, 0x1000, 0x10000, @inferred, @raw=0x28e, 0x6, 0x0, &(0x7f0000000000)="fbfc5ab80473a07faab0aa0f45772e1ba1d2cb0584d814e78cefbf8c87e1a81785f0da9e2ff2f6e8a1234272b0edf384e85984cd53c93a02247e07f559d094", 0x0}) socket(0x15, 0x1, 0x0) socket(0x1e, 0x2, 0x0) (async, rerun: 64) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) (async, rerun: 64) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) mmap$auto(0x4000000000000, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = io_uring_setup$auto(0x6, 0x0) (async) r4 = open(0x0, 0x2a4c0, 0x20) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x8000, 0x0) r6 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x80, 0x0) ioctl$auto(r6, 0x40045542, r5) (async) ioctl$auto_TUNGETVNETHDRSZ(r3, 0x800454d7, &(0x7f0000000040)=0x20000000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async) mbind$auto(0x0, 0x100000004, 0x4, 0x0, 0x20000000000006, 0x2) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 64) sendmsg$auto_BATADV_CMD_SET_MESH(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x14, 0x0, 0x300, 0x70bd27, 0x25dfdbf9}, 0x14}, 0x1, 0x0, 0x0, 0x84004}, 0x0) (async, rerun: 64) sendmsg$auto_BATADV_CMD_GET_BLA_CLAIM(r4, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x54, 0x0, 0x10, 0x70bd28, 0x25dfdbfe, {}, [@BATADV_ATTR_NEIGH_ADDRESS={0xa, 0x18, @broadcast}, @BATADV_ATTR_MCAST_FLAGS_PRIV={0x8, 0x27, 0x7}, @BATADV_ATTR_VERSION={0xb, 0x1, ':[#{-$['}, @BATADV_ATTR_ACTIVE={0x4}, @BATADV_ATTR_BANDWIDTH_UP={0x8, 0x1b, 0xf84}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x2}, @BATADV_ATTR_FLAG_BEST={0x4}, @BATADV_ATTR_BLA_CRC={0x6, 0x22, 0x100}]}, 0x54}, 0x1, 0x0, 0x0, 0x4008094}, 0x0) 1m0.623399089s ago: executing program 1 (id=550): write$auto_console_fops_tty_io(0xffffffffffffffff, &(0x7f0000000140), 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00082dbd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100aaaaaaaaaa35000008000200", @ANYRES32], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="f2000000", @ANYBLOB='.'], 0x1ac}, 0x1, 0x0, 0x0, 0x24040840}, 0x94) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 1m0.252588191s ago: executing program 1 (id=555): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) ioperm$auto(0x7, 0x6, 0x1) (async) openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x500, 0x0) mmap$auto(0x0, 0xb, 0x72, 0x8b72, 0x2, 0x8000) (async) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) getsockopt$auto(0x6, 0x40000000029, 0x1e, 0xfffffffffffffffe, 0x0) unshare$auto(0x40000080) (async) acct$auto(&(0x7f0000000080)='/proc/sys/kernel/sched_deadline\xdcBH\xc7H\xe2\x1d\b\x00ax_us\x00\xae\xb5\x86\xe9\xf6\xfe\x9b6\x91\x8f\x158\xe7qwI\t0\xc3\xd1\xcd\xf5\x04\xe0B\xe0U<\xb1\x1d\xda\xd2') (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/flags\x00', 0x111142, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty12\x00', 0x800, 0x0) read$auto_tracing_pipe_fops_trace(0xffffffffffffffff, &(0x7f0000000100)=""/70, 0x46) (async) setresuid$auto(0x2, 0x7, 0x8080) ioctl$auto(r1, 0x4b3a, 0x10) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0) (async) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) (async) write$auto(0xffffffffffffffff, 0x0, 0x0) set_mempolicy$auto(0x4005, &(0x7f0000000000)=0x1, 0x4) io_uring_register$auto(r0, 0x80, &(0x7f0000000240)="89cb92b4015e75fcfb76862efb1f38685d5d0906c31f6a23a61374f4071c09b4bfb0bee1c83bb920dc13b470b60b60d664b688eff561ae914e32da4779e0d6c6f1300e158bfcc179fa82dbdfdefebef014217443721b51426045f8405f25f581fdaa2bb52dc0ca73860d6393a74d1a0bb2ff3f6d6f404150f190b22c6000fffbfce06d7bcaf068af5bfba809446e81bd88de11eca4807a7689e9a9", 0x3) (async) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x440, 0x0) r3 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000003740)='/dev/sequencer2\x00', 0x88241, 0x0) ioctl$auto_SNDCTL_SEQ_GETINCOUNT(r3, 0x80045105, 0x0) (async) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) madvise$auto(0x0, 0xffffff7fffff0005, 0x8) (async) madvise$auto(0x0, 0xffffffffffff0001, 0x15) ioctl$auto_SNDCTL_DSP_CHANNELS(r2, 0xc0045006, &(0x7f00000001c0)) (async) read$auto_nsim_dev_trap_fa_cookie_fops_dev(r2, &(0x7f0000000000)=""/156, 0x9c) wait4$auto(0x0, &(0x7f0000000200)=0x400, 0x1c000000, &(0x7f0000000300)={{0xd, 0x80000000000005}, {0x1, 0x400000000000002}, 0x2, 0x3, 0x9, 0x0, 0x8, 0xcfe, 0x0, 0x1, 0x800, 0x1, 0x80000001, 0x3, 0x8, 0x5}) 59.64563749s ago: executing program 1 (id=560): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x4002, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0xa, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}}) (async) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x4002, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0xa, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}}) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0xa, 0x801, 0x106) (async) socket(0xa, 0x801, 0x106) recvmmsg$auto(0x3, 0x0, 0x20000000, 0x75e, 0x0) ioperm$auto(0x3, 0xe, 0x2000000000000149) pidfd_open$auto(0x1, 0x0) (async) r0 = pidfd_open$auto(0x1, 0x0) setns(r0, 0x60020000) r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000002c0), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r2, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000000)={0x28, r1, 0x101, 0x70bd2b, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x60040440}, 0x800) umount2$auto(&(0x7f0000000080)='.\x00', 0x8) (async) umount2$auto(&(0x7f0000000080)='.\x00', 0x8) msgctl$auto_IPC_SET(0x8, 0x1, &(0x7f0000000100)={{0xa, 0xee00, 0xee00, 0x820, 0x8, 0x6, 0x7}, &(0x7f0000000000)=0x8, &(0x7f0000000040)=0x1, 0x100000001, 0x85, 0x8, 0x1, 0x6, 0x366, 0x4, 0x5, @inferred=0xffffffffffffffff, @inferred=0xffffffffffffffff}) (async) msgctl$auto_IPC_SET(0x8, 0x1, &(0x7f0000000100)={{0xa, 0xee00, 0xee00, 0x820, 0x8, 0x6, 0x7}, &(0x7f0000000000)=0x8, &(0x7f0000000040)=0x1, 0x100000001, 0x85, 0x8, 0x1, 0x6, 0x366, 0x4, 0x5, @inferred=0xffffffffffffffff, @inferred=0xffffffffffffffff}) ioprio_get$auto(0x8, r3) 44.527288216s ago: executing program 32 (id=560): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x4002, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0xa, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}}) (async) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x4002, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0xa, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}}) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0xa, 0x801, 0x106) (async) socket(0xa, 0x801, 0x106) recvmmsg$auto(0x3, 0x0, 0x20000000, 0x75e, 0x0) ioperm$auto(0x3, 0xe, 0x2000000000000149) pidfd_open$auto(0x1, 0x0) (async) r0 = pidfd_open$auto(0x1, 0x0) setns(r0, 0x60020000) r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000002c0), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r2, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000000)={0x28, r1, 0x101, 0x70bd2b, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x60040440}, 0x800) umount2$auto(&(0x7f0000000080)='.\x00', 0x8) (async) umount2$auto(&(0x7f0000000080)='.\x00', 0x8) msgctl$auto_IPC_SET(0x8, 0x1, &(0x7f0000000100)={{0xa, 0xee00, 0xee00, 0x820, 0x8, 0x6, 0x7}, &(0x7f0000000000)=0x8, &(0x7f0000000040)=0x1, 0x100000001, 0x85, 0x8, 0x1, 0x6, 0x366, 0x4, 0x5, @inferred=0xffffffffffffffff, @inferred=0xffffffffffffffff}) (async) msgctl$auto_IPC_SET(0x8, 0x1, &(0x7f0000000100)={{0xa, 0xee00, 0xee00, 0x820, 0x8, 0x6, 0x7}, &(0x7f0000000000)=0x8, &(0x7f0000000040)=0x1, 0x100000001, 0x85, 0x8, 0x1, 0x6, 0x366, 0x4, 0x5, @inferred=0xffffffffffffffff, @inferred=0xffffffffffffffff}) ioprio_get$auto(0x8, r3) 6.556053359s ago: executing program 4 (id=782): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) sysfs$auto(0x2, 0x100001000000032, 0x0) r1 = fsopen$auto(0x0, 0x1) fsconfig$auto(r1, 0x8, 0x0, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000000), r3) sendmsg$auto_NL80211_CMD_STOP_AP(r3, &(0x7f0000001940)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x1c, r4, 0x129, 0x70bd2c, 0x25dfdbfb, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x5a88314c8e109829}, 0x14) 6.238625843s ago: executing program 4 (id=783): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x266e80, 0x0) write$auto(r0, &(0x7f0000000000)='//\xf2\x00', 0x80000000) (async) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) (async) openat2$dir(0xffffffffffffff9c, 0x0, &(0x7f0000000240)={0x80040, 0x80, 0x3}, 0x18) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) (async) r3 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r3, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x6, 0x50b301a, 0x0, 0x2c, 0x0, 0x2}) (async) rseq$auto(&(0x7f0000000080)={0x9, 0x8, 0x0, 0x7, 0xffffffff, 0x2, "24229ba6405fe4fc8b"}, 0x7ffd, 0xfffffff4, 0x47a) sendmsg$auto_IPVS_CMD_GET_SERVICE(r2, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x80800) (async) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) gettid() (async) rt_sigtimedwait$auto(0x0, 0x0, 0x0, 0x8) write$auto(0x3, 0x0, 0x100082) (async) r4 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) mmap$auto(0x0, 0xc, 0xbc5, 0x13, 0x3, 0x8000) lseek$auto(r4, 0x7ffffffffffffffc, 0x1) (async) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async) clone$auto(0x8001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6) r5 = socket(0xa, 0x2, 0x73) dup3$auto(0xffffffffffffffff, r5, 0x7) mlockall$auto(0x7) r6 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x40, r6, 0x400, 0x70bd26, 0x25dfdbfe, {}, [@L2TP_ATTR_UDP_DPORT={0x6, 0x1b, 0x4e22}, @L2TP_ATTR_L2SPEC_TYPE={0x5}, @L2TP_ATTR_L2SPEC_LEN={0x5, 0x6, 0x83}, @L2TP_ATTR_IFNAME={0x14, 0x8, 'pimreg0\x00'}]}, 0x40}, 0x1, 0x0, 0x0, 0xc000}, 0x8011) 5.083987676s ago: executing program 4 (id=787): mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) r0 = fsopen$auto(0x0, 0x1) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, &(0x7f0000021740)={0x0, 0x0, &(0x7f0000021700)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x800) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto(0x3, 0x4030ae7b, r0) 4.448449383s ago: executing program 4 (id=790): socket$nl_generic(0x10, 0x3, 0x10) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/user\x00') prctl$auto(0x23, 0x8, 0x2008, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0x200, 0x9b72, 0x2, 0x8000) process_vm_writev$auto(0x1, &(0x7f0000002980)={0x0, 0x4}, 0x3, &(0x7f0000002a40)={0x0, 0x7}, 0x4, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x15, 0x5, 0x0) getsockopt$auto(r0, 0x114, 0x2712, 0xfffffffffffffffc, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) socket(0x1d, 0x2, 0x6) socket(0x2, 0x2, 0x1) io_uring_setup$auto(0x6, 0x0) open(0x0, 0x149443, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa101, 0x0) io_uring_setup$auto(0x2, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) socketpair$auto(0x1e, 0x5, 0x3, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0) ioctl$auto_TIOCVHANGUP2(r1, 0x5437, 0x0) 4.195187736s ago: executing program 0 (id=792): r0 = socket(0x25, 0x5, 0x80000001) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0) setreuid$auto(0x40, 0xa) futimesat$auto(0xda, 0x0, 0x0) getsockopt$auto(r0, 0x65, 0x8, 0x0, 0x0) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x0, 0x33, 0x0, 0x4) listen$auto(0xffffffffffffffff, 0x1) 3.602994577s ago: executing program 3 (id=795): mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) dup2$auto(r0, r0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) bind$auto(r0, &(0x7f0000000040)=@llc={0x1a, 0x305, 0x9, 0x9, 0x3, 0x2, @local}, 0x401) socket(0x1d, 0x3, 0x1) write$auto(0x3, 0x0, 0x5c8) newfstatat$auto(r0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)={0x7ff, 0xca18, 0x4, 0xffbfffff, 0xffffffffffffffff, 0x0, 0x0, 0x81, 0x1000000000000008, 0x7, 0xe08, 0x0, 0x100000000, 0x1000, 0x0, 0x7, 0x4}, 0x7) 3.266829719s ago: executing program 4 (id=797): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32) getrandom$auto(0x0, 0x6000000, 0x3) (async, rerun: 32) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004000)='/dev/audio\x00', 0x102, 0x0) ioctl$auto_SNDCTL_DSP_GETOSPACE(r0, 0x8010500c, &(0x7f0000004040)) (async) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) (async, rerun: 32) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f602, 0x0) (rerun: 32) mmap$auto(0x100000000002, 0x783, 0x3, 0x8000000008011, r1, 0x40) (async) write$auto(0x3, 0x0, 0xfffffdef) write$auto(0x3, 0x0, 0xfffffdef) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) r2 = socket(0x2b, 0x1, 0x1) r3 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r3, &(0x7f0000000080)={{0x0, 0xc, 0x0, 0xf3, 0x0, 0x20, 0x3}, 0x5b3}, 0x200, 0x100) (async, rerun: 64) r4 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x181881, 0x0) (rerun: 64) ioctl$auto_SG_SET_TIMEOUT2(r4, 0x2201, &(0x7f0000000040)="bd10a58de2") (async, rerun: 64) r5 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64) r6 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x38, r6, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x8, 0x3, 0x0, 0x1, [@nested={0x4, 0x11}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f1779048590828847"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) (async) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40) (async, rerun: 32) recvmmsg$auto(r3, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0) (rerun: 32) setsockopt$auto(r2, 0x29, 0x20, 0x0, 0x20) 3.216487741s ago: executing program 2 (id=798): mmap$auto(0x0, 0x4028009, 0x7, 0xeb1, 0x401, 0x5) close_range$auto(0x0, 0xfffffffffffff000, 0x2) open(&(0x7f00000000c0)='./file0\x00', 0x149443, 0x0) socket(0x22, 0x2, 0x1) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x101, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) set_mempolicy$auto(0x2005, 0x0, 0x4) prctl$auto_PR_GET_TSC(0x19, 0x1, 0x0, 0xfffffffffffffd84, 0x4) ioctl$auto_KVM_CREATE_VM(r0, 0x4048aecb, 0x0) 2.638874874s ago: executing program 2 (id=799): migrate_pages$auto(0x0, 0x7ff, 0xfffffffffffffffe, 0xffffffffffffffff) mmap$auto(0xffffffffffffffff, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r0, 0x0, 0x1f40) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) bpf$auto(0x0, &(0x7f00000011c0)=@task_fd_query={0x9, 0x21eb, 0x47ff, 0x700, 0xa, 0x1000109, 0xffffffffffffffff, 0x0, 0x3}, 0x6f3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mbind$auto(0x0, 0xfa9d, 0x8001, &(0x7f0000000280)=0xc9e, 0x400, 0x1) mlock$auto(0x81, 0xffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) 2.627962342s ago: executing program 0 (id=800): r0 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/dev_snmp6/bond_slave_1\x00', 0x521000, 0x0) r1 = openat$auto_fuse_dir_operations_dir(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/bluetooth/hci7/hci7:201\x00', 0x200, 0x0) close_range$auto(r0, r1, 0x8) ioctl$auto_VHOST_SET_VRING_ERR(0xffffffffffffffff, 0x4008af22, &(0x7f0000000080)={0x2, r1}) read$auto_stat_fops_per_vm_kvm_main(r2, &(0x7f00000000c0)=""/23, 0x17) read$auto_proc_single_file_operations_base(r2, &(0x7f0000000100)=""/4096, 0x1000) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f0000001100)='E\t') r3 = openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f0000001140)='/sys/kernel/debug/tracing/buffer_percent\x00', 0x40, 0x0) r4 = getsockopt$auto_SO_WIFI_STATUS(r3, 0x1000, 0x29, &(0x7f0000001180)='/sys/devices/virtual/bluetooth/hci7/hci7:201\x00', &(0x7f00000011c0)=0x6) write$auto(r0, &(0x7f0000001200)='\x00', 0x6) setsockopt$auto(r4, 0x2, 0x401, &(0x7f0000001240)='\x00', 0x4) openat$auto_vga_arb_device_fops_vgaarb(0xffffffffffffff9c, &(0x7f0000001280), 0x6aa002, 0x0) openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000012c0), 0x800, 0x0) iopl$auto(0x3) setsockopt$auto_SO_KEEPALIVE(r4, 0x6, 0x9, &(0x7f0000001300)='#%\x00', 0x2) ioctl$auto_VHOST_SET_LOG_FD(r4, 0x4004af07, &(0x7f0000001340)=r2) fsconfig$auto_SHMEM_HUGE_FORCE(r3, 0x4, &(0x7f0000001380)='\x00', &(0x7f00000013c0)="842e019e7c86d5f645fee5f79d4fd452706579b5bc0d932b9f234160348f81f5d6999142d33ac5b17b90e247c8a43c83b99089ff9221c21bc67ec72b1c32cebd687ca18912bcfa9f33cb7e93f6cb7967d746a63b8a0a2379dba76e6f06e3c53cdadb29d212e9bb52b62e637dd948bf126faafc4fb8851bf276b4e1290618b00382760a3b7d2d7410e1", 0xfffffffffffffffe) ioctl$auto_BLKTRACESETUP32(r4, 0xc0401273, &(0x7f0000001480)={"01f651ed7f6664644bdf2cb5b5e6f8fefe5d8b6485457169dd65d5a61b392074", 0xff34, 0x10000, 0x1, 0x800, 0x400, 0xffffffffffffffff}) r7 = prctl$auto_PR_SET_MM_START_STACK(0x0, 0x5, r6, 0x8, 0x5) r8 = socketpair$auto(0xfffffff0, 0x2, 0x9, &(0x7f0000001500)=0x3) socket$nl_generic(0x10, 0x3, 0x10) r9 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001540), r9) write$auto(r8, &(0x7f0000001580)='-:@.\x00', 0x2) mknod$auto(&(0x7f00000015c0)='./file0\x00', 0x5, 0x10001) ioctl$auto_KVM_CREATE_VM(r7, 0xae01, 0x0) openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000001600)='/proc/self/cmdline\x00', 0x600000, 0x0) write$auto_lowpan_control_fops_6lowpan(r8, &(0x7f0000001640)="00f429085d87515266fe2a27c6f024206426fef302c8fbc687bd1b275e4965624847fa2739bfe83315c29eda56a261a661cdf527491a306732e50d3aa46e250786b8b1a18c14b5fcd471d444b65ffceaaa28eb4618d057ef9193a62f47b6c1cce544069cf407490515faff8429ca631574233b0f86e7d870331b797df4aa41fc7e3ed55899d62f41e96991e2314e3ae1a6356e4b861342ffbdc987eed99f0ed1a4a0561a8d3d025017b22c6927c1f4991818417f9a5c406059f0bf352726c3bcab5102ec9e51ab74ba1d043436bc0fdce36b18848597c488f389567de20cbc40c8b66f3a511920237d9d9e121d", 0xed) capget$auto(&(0x7f0000001740)={0x1000, r6}, &(0x7f0000001780)={0xffffffff, 0x2, 0xcc}) mmap$auto(0x0, 0x1ff, 0x16, 0x13, r5, 0x22) 2.304011249s ago: executing program 0 (id=801): openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/oom_score\x00', 0x0, 0x0) r0 = prctl$auto(0x16, 0x1, 0x6, 0xfffffffffffffffe, 0x4) r1 = openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/set_event_notrace_pid\x00', 0x582, 0x0) write$auto_console_fops_tty_io(r1, &(0x7f0000001240)='4', 0x1) r2 = socket(0x10, 0x2, 0xc) r3 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)={0x14, r3, 0x100, 0x70bd28, 0x25dfdbfb, {0xa, 0x0, 0x700}}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x2000000) futex$auto(&(0x7f00000001c0)=0x1, 0x8c, 0x1, 0x0, 0x0, 0x1) syz_genetlink_get_family_id$auto_mac802154_hwsim(&(0x7f0000000000), r2) r4 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000440), 0x20100, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000300)=""/154, 0x9a) ioctl$auto_LOOP_CTL_GET_FREE(r4, 0x4c82, 0x0) mmap$auto(0x8, 0x3, 0x7, 0x13, 0xffffffffffffffff, 0x4) 2.233370465s ago: executing program 3 (id=802): close_range$auto(0x2, 0x8, 0x0) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/pressure/irq\x00', 0x680d00, 0x0) write$auto(r0, 0x0, 0x6) openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/loginuid\x00', 0x1a1081, 0x0) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/bond0/bonding/miimon\x00', 0x62342, 0x0) (async) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/i8042/serio1/resetafter\x00', 0x129102, 0x0) read$auto(r1, 0x0, 0x18) (async) write$auto(0x3, 0x0, 0xfdef) 2.072059912s ago: executing program 3 (id=803): r0 = socket(0x21, 0x3, 0x187f) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r0, 0x8000) statx$auto(0xffffff9c, 0x0, 0x1000, 0xf59d, 0x0) socket(0xa, 0x1, 0x84) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x3a) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r1 = socket(0x1d, 0x3, 0x1) getpeername$auto(0x3, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) lsm_list_modules$auto(0x0, 0x0, 0x0) syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$auto_L2TP_CMD_SESSION_GET(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00047000ffdbdf2508000000050006000900000005000600f600000006000e00a8dc000008000b0000010000"], 0x34}}, 0x4004014) socketpair$auto(0x5, 0x8, 0xc, 0x0) mmap$auto(0x0, 0x400008, 0x10, 0x9b72, 0xffffffffffffffff, 0x8004) syz_clone3(&(0x7f0000000200)={0x182000080, 0x0, 0x0, 0x0, {0x1a}, 0x0, 0x0, 0x0, 0x0}, 0x58) kill$auto(0x0, 0x21) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7ffff004) mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) writev$auto(r2, 0x0, 0x3) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x1d, 0x3, 0x1) write$auto_nsim_psample_enable_fops_psample(0xffffffffffffffff, &(0x7f0000000100), 0x0) seccomp$auto(0x200, 0x41e30178, 0x0) r3 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64) fchdir$auto(r3) io_uring_setup$auto(0x6, 0x0) 1.818370659s ago: executing program 2 (id=804): ioperm$auto(0x7, 0x6, 0x1) (async) r0 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x500, 0x0) unshare$auto(0x40000080) mmap$auto(0x10000, 0x2020006, 0x1, 0x13, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8000, 0x0) (async) socket(0x2, 0x6, 0x7) socket$nl_generic(0x10, 0x3, 0x10) (async) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000100), 0x101002, 0x0) close_range$auto(r0, r1, 0xa00) (async) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) (async) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_CREATE_VM(r1, 0x4068aea3, 0x0) (async) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000003fc0), 0xffffffffffffffff) (async) sendmsg$auto_CTRL_CMD_GETFAMILY2(r3, &(0x7f00000040c0)={0x0, 0x0, &(0x7f0000004080)={&(0x7f0000000380)=ANY=[@ANYBLOB="3b0400000140d38135c6", @ANYRES16=r3, @ANYBLOB="010030ad7000fddbdf250300000006000100800000000600010080ff0000", @ANYRES32=r3, @ANYBLOB="89affd58489f9610d9e0a847164bc1cf4679107098fbe5dd535dece20822553008e673259197b3030557edf3f8d68df0a4ef13e0790c42bacafcbeac19b608b8beb4b7d894cd2d2d72b645efe726dd74246fb596b174", @ANYRESHEX=r3], 0x24}, 0x1, 0x0, 0x0, 0x8815}, 0x4000050) (async) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) (async) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, 0x0) (async) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r5, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r6, @ANYBLOB="00ad65496f942cb134da0222bd7000fcdbdf2504000200"], 0x14}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800) mmap$auto(0x0, 0x2020009, 0x48e, 0x19, r0, 0x8000) (async) r7 = syz_genetlink_get_family_id$auto_vdpa(&(0x7f0000000200), r4) sendmsg$auto_VDPA_CMD_DEV_GET(r3, &(0x7f0000000080)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="6718016f", @ANYRES16=r7, @ANYBLOB="28012abd7000fedbdf2505000000080011009685000006000d005000000008001100018000001400020067656e65766531000000000000000000"], 0x40}, 0x1, 0x0, 0x0, 0x40008c1}, 0x4) sendmsg$auto_NL80211_CMD_VENDOR(r3, 0x0, 0x80) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async) setsockopt$auto_SO_TYPE(r4, 0xa, 0x3, &(0x7f0000000040)='\xce\x00', 0x0) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/flags\x00', 0x101142, 0x0) 1.28717429s ago: executing program 0 (id=805): openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000001a00), 0x88000, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0b, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/devices/virtual/tty/ptmx/uevent\x00', 0x0, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x781, 0x0) r1 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) execveat$auto(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) read$auto_proc_mountinfo_operations_mnt_namespace(r1, 0x0, 0x0) keyctl$auto(0x12, 0xf, 0x40000000c6e9, 0x81, 0xa472) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x200080, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x18dd01, 0x0) ioctl$auto_SG_GET_RESERVED_SIZE(r3, 0x301, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) madvise$auto(0x0, 0xffffffffffff0004, 0x19) tee$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xef8) execveat$auto(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x11000) madvise$auto(0x0, 0x200007, 0x8) 1.262588555s ago: executing program 3 (id=806): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/nfc/nfc0/rfkill0/persistent\x00', 0x2640, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000000c0)=""/228, 0xe4) sendmsg$auto_NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, 0x0, 0x30008851) unshare$auto(0x8000400) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_ext4_dir_operations_ext4(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bluetooth/hci1/hci1:201\x00', 0x41, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x545840, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x40000000000a5, 0x8000) socket(0x26, 0xd, 0x1ff) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000340)='/dev/sda\x00', 0x8001, 0x0) fallocate$auto(r2, 0x7, 0x4000000000000004, 0x80000000) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x2000, 0x0) ioctl$auto_BLKROTATIONAL(r3, 0x127e, 0x0) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x40000, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(0x3, 0x0, 0x100082) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f0000000200)={{@raw=0x3, 0x1, 0x1, 0x81, "3112d585005a614d19e22af9ffb683dbede3d0bf828bbfba40f035f4be6b7fe5e2f94bd90484b0755015e48d"}, 0x401, 0x5, 0x4, @inferred, @integer={0xdbe, 0x255, 0x8}, "7a9fc199a19e4f1054cf2fc7ae1d87d21000debe0eda71bdd709254592b67fbcb5adb17884a16f7ce8cbce0bb32791702b8d7c2d00000900"}) ioctl$auto_SNDCTL_DSP_SETFMT(r4, 0xc0045005, &(0x7f0000000040)) socket(0x28, 0x5, 0x0) delete_module$auto(0x0, 0x5) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000340), r5) sendmsg$auto_TIPC_NL_NET_SET(r5, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000400)=ANY=[@ANYRESHEX=r1, @ANYRES16=r6, @ANYBLOB="01002cbd7000ffdbdf250f0000000c00078008000200156f4e8e76096cf375c45ca71cd7901b13f57a8532a6f1b882359dbe8a6dc625419c9fd4cb5c4103f8", @ANYRES8=r2, @ANYBLOB], 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x2) 1.037240254s ago: executing program 2 (id=807): mkdir$auto(&(0x7f0000000000)='}[,&*}\x00', 0xc001) (async) mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x10001, 0x0) (async) mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', 0x0, 0x44020, 0x0) (async, rerun: 32) r0 = open(&(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', 0x101800, 0x7) (rerun: 32) read$auto(r0, 0x0, 0x1) (async) r1 = socket(0x28, 0x1, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_SCAN(r2, &(0x7f00000165c0)={0x0, 0x0, &(0x7f0000016580)={&(0x7f00000006c0)={0x14, r3, 0xd3ac6c422733a379, 0x70bd29, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x48800) (async, rerun: 64) sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="34000000eb43edbc64d27f6541048151e04762717f9d", @ANYRES16=r3, @ANYBLOB="080026bd7000fcdbdf25020000000400b9800400ff000400430005002001040000000400170004005f0004002101"], 0x34}}, 0x4000840) (rerun: 64) r4 = semctl$auto_GETVAL(0xfffffff8, 0x6, 0xc, 0x522) sendmsg$auto_NL80211_CMD_UPDATE_OWE_INFO(r0, &(0x7f0000000900)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="b8030000", @ANYRES16=r3, @ANYBLOB="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", @ANYRES32=r4, @ANYBLOB="0c002400000000000b00000004002e80000060c4709e409f562700f8441f04d65d0e00abbed4b32e1bb95b73d769a3155612a07d185bdfbc6b550afaa18f3ef97f464f060000"], 0x3b8}, 0x1, 0x0, 0x0, 0x40}, 0x4004004) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00042cbd7000fb3d89cb80"], 0x24}, 0x1, 0x0, 0x0, 0x20008010}, 0x400d0) (async, rerun: 32) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async, rerun: 32) close_range$auto(0x2, 0xa, 0x0) (async) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="24051c27c100dedbdf250307cc0008000200", @ANYRES32=0x0, @ANYBLOB="060007000080000006000700050000000a00050000000000000000000a00010000000000000000000a0001000000000000000000060006000d00000006000600070000000a0001"], 0x6c}}, 0x0) socket(0x2, 0x3, 0x100) (async, rerun: 64) socket(0x10, 0x2, 0x0) (rerun: 64) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4044040}, 0x24008890) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) (async) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}, 0x1, 0x0, 0x0, 0x4000804}, 0x40000) (async) r5 = socket(0x10, 0x2, 0x0) r6 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f000001f300), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRES32=r6], 0x1ac}}, 0x40000) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4) sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0xa, 0x8) prctl$auto_PR_SET_SECCOMP(0x16, 0x40, r4, 0x90ef, 0x2568ae93) 1.034850404s ago: executing program 0 (id=808): r0 = socket(0x25, 0x5, 0x80000001) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0) setreuid$auto(0x40, 0xa) futimesat$auto(0xda, 0x0, 0x0) getsockopt$auto(r0, 0x65, 0x8, 0x0, 0x0) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x0, 0x33, 0x0, 0x4) listen$auto(0xffffffffffffffff, 0x1) 1.014444952s ago: executing program 3 (id=809): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0xa, 0x2, 0x0) statx$auto(0xffffff9c, 0x0, 0x1000, 0x803, 0x0) setsockopt$auto(r0, 0x29, 0x30, 0x0, 0x56b) (fail_nth: 1) 816.007957ms ago: executing program 2 (id=810): openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0) socketpair$auto(0xfff, 0x5, 0x10, 0x0) madvise$auto(0x1ffff000, 0x7, 0x100000000) (async) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) (async) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000) r0 = fsopen$auto(0x0, 0x1) madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async) read$auto(r0, &(0x7f0000000000)='/proc/self/smaps_rollup\x00', 0x2b83) (async) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) (async) clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6) (async) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) (async) prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) (async) pselect6$auto(0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) (async) socketpair$auto(0x1e, 0x5, 0x80000000, 0x0) (async) socket(0xa, 0x5, 0x0) socket(0xa, 0x801, 0x84) (async) sendmsg$auto_MACSEC_CMD_UPD_OFFLOAD(0xffffffffffffffff, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4040085}, 0x80) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r1, 0x0, 0x1f40) (async) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) (async) madvise$auto(0x0, 0x1, 0x3) (async) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) (async) shmget$auto(0xa, 0x10563, 0x568d1af2) 778.186887ms ago: executing program 3 (id=811): bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_1={0xffffffffffffffff, 0xa, @value=0x716, 0x7}, 0x6f6) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) init_module$auto(0x0, 0xffff9, &(0x7f0000000380)='/sys/devices/platform/dummy_hcd.6/usb7\x00\x00owtive_co\x85G\x0e\xb8\xab=7K\xc7\xdfB\xef\x94\x18\\\xe8\xb5\xd1\xbb\xd7qH\x10\xad\xdf\x82\xdd\b\x1e\"0\f\\k\xb5V\xd8y|\xa8{jZ\x17\x97\x1d\x83pmIV\xc5\x10V*\xe2\xc3\xa2=\"\xe6n\xa2l\f\x83hL\xf5\x0f\xd5\x9dbA\x88Z\xdd\x99\xba\x94\xb8/\xf0Z\x04\xc4h\x8a\x9b\xdc\x12\xc9\x0e\xf3pu\xadW\x04h\a\xb5\xde\x84\xc6\x05\xcbT\rD/M\xe1\xfc\x1f\x94\x8c\xc4A\xc1\xed,\n1M\xd4\xed+\xa8\xc1\xccEUs\xb3\xea\x03\x0fFo;\x1d\x95\x15\xe0\xbd\xb1w\x85\x7f\xa7\f\xcb\x8c\x9e@\x16\xba\xdep\x00\x19\xc7s\xce|.\x19\xf9;\a\x943\xc3-#\xb0\xbf\bR\x87\x9e\xd0m\x01H') prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) socket(0x2, 0x1, 0x6) mmap$auto(0x0, 0x4, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) setsockopt$auto(0x3, 0x0, 0x32, 0x0, 0x4) socket(0x1d, 0x2, 0x7) r0 = socket(0x2, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) madvise$auto(0x0, 0x8000000000000000, 0x15) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x28102, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/class/infiniband_mad/abi_version\x00', 0x20100, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000004300)=""/108, 0x6c) lseek$auto(0x3, 0x7fffffffffffffff, 0x0) madvise$auto(0x0, 0x2000000080000001, 0x3) capget$auto(0x0, 0xfffffffffffffffe) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = pipe$auto(&(0x7f0000000000)=0xffffffffffffffff) splice$auto(r3, 0x0, 0x2, 0x0, 0x9, 0x8) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x10, 0x2, 0x0) setsockopt$auto_SO_OOBINLINE(r2, 0x0, 0xa, &(0x7f0000000080)='/sys/kernel/security/tomoyo/audit\x00', 0x4) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="1000"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0xc000) r4 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x400, 0x0) r5 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/audit\x00', 0x0, 0x0) read$auto(r5, 0x0, 0x74d) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(r4, 0xc4c85512, &(0x7f00000012c0)={{@raw=0x6, 0x0, 0x3, 0x6, "0582a820061b5c51a65a6dd72b0b15addbdf55cb4b0f2381f2673e3a1ebe21e1bf1b26f0db7b62b67bd764f9"}, 0x0, @integer64=@value_ptr=0x0, "528d458095d42b72adda0cac2d45bdaacfc82245992af763188bf00ab57d5d73b094925aa92857fd2f672f85343275f8080000ca41e93023ab4510269ed959a79a789527276d90375018fc08050559d8936b8d72087a5689d4338da78b8b8bdcea8188ca43202fb78dacb3fea1258074885c899d75cd52751f9be959d90fa5c2"}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) 369.398334ms ago: executing program 4 (id=812): sysfs$auto(0x2, 0x10000000000048, 0x0) r0 = fsopen$auto(0x0, 0x1) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, &(0x7f0000021740)={0x0, 0x0, &(0x7f0000021700)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x800) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto(0x3, 0x4030ae7b, r0) 293.225019ms ago: executing program 0 (id=813): mmap$auto(0x9, 0x0, 0x126, 0xf5, 0xffffffffffffffff, 0x8003) bind$auto(0x3, &(0x7f0000000040)=@ethernet={0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1cc5087217524dd0}}, 0x6a) ioctl$auto(0x3, 0x89e0, 0x38) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x80081, 0x0) write$auto_seq_oss_f_ops_seq_oss(r0, &(0x7f00000002c0)="f618deadf7e888b1ff8bff71c49054428f819e30236ce79200d01532f2ed0d000000008d5d8e9dea0337f5095b82a54456f845800adbfbd11b66630e687bbca2612c912a6f57eb9f9944281954e2c5da22daf73acc711a3d9b6758b7a6e74bae890345225264da35ac3be11d2f555b8d08cef68f4a3aa938391dfbc0841813c93c41ee53b7e310c21563c1d8cbcde6549675fbe14b917c5b0a23069452100c3110990884271e91b8f6497e89091dc41c4cdd1769725f5f6d78aaac6367115bb64416e2894ed472", 0xc7) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x80045439, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) close_range$auto(0xffffffffffffffff, 0x8, 0x0) r2 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x5a9f01, 0x0) r3 = ioctl$auto_dma_heap_fops_dma_heap(r2, 0xffffffffffdffe00, &(0x7f0000000140)=';') ioctl$auto(r3, 0x541b, 0xfffffffffffff4e0) pwrite64$auto(r2, &(0x7f0000000180)='*-{\x00', 0xa5a, 0x7f) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) r4 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) mmap$auto(0x0, 0x4020009, 0x7ffd, 0xeb1, 0x401, 0x8000) write$auto(r1, 0x0, 0x7fffffff) read$auto(r4, 0x0, 0xbcd5) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_XFS_IOC_ATTRLIST_BY_HANDLE(r3, 0x4058587a, &(0x7f0000001300)={{0xffffffffffffffff, &(0x7f0000000040)="9bc5a1e885c8c0539b691b531f8a0cbc5299c2ff94120290944f685e2e893fb05b2d954f55b7fdd4972a86a18722e5ae1e7d281ba2380188ca701b38424a327f3c847b19895e109e0a98fd1c3ca4d1d45af22b7e9750fc1c75a00b8504b05b5bb62b4d6947212c6c7c1bb9cf9b6d19093f19fa4da7b07c8d96980448c069172f070d12c4e30adce32e1060a228f3e447d495d86599a75ca2734976309cca07ee561fbd62d431d3cf057065c94a34db49db3812650cf8e80cd8f04f20999554fa9c3fec96b7f032e370b530b417bdcebcdd98aafbcf75c841beba7ed0e63f9c5bd496bbf683c7569ef393592e18b44aa608", 0xa, &(0x7f0000000140)="9e30dd0c873ed47cdaa90b93408f6d86d9d28e687a99c7b64a54b566448839b52bcba6e39528f0bb16", 0x1, &(0x7f0000000240)="5d5f3736660da9534d9dbc29dffac0fca5027258637121e0302512351235518d6ea2e6b508369df76333232dca18ac315232563c52e83918b3f28425bc3df8c25fa1176debc1d5f1026173e0425e648b9024981f9204bbafd3ad2882bb1e73beafc065eb45e0d919d9d027178b2357049d12359ad54c27eeb1fc640c6a068d2f2aee336a84a9bfcfb6b74d9121466d07b4e7b058439bcd8b6fbf3e36e50fb6b645b973b5c78e877b8f", &(0x7f00000001c0)=0x6}, {[0x6e8e, 0x1, 0x1, 0xffffffff]}, 0xd, 0x7fff, &(0x7f0000001580)="ebe0e172f592f0a9a5622fffb91ecddbc3236ad55fc059930ee12e8d06d7b0195bae9269b2a5c41890e409aca3afe6dfe8e789a0f977a8d546a247e0ee0afda0024419ef8641f19f4d5c66c15692e36f2e747af324a74814c6e5ddd701153f48e6f824f98379e5c8ed445bd8d3dd5e38965896db0d265ebec6c3327ada59b71d4111767e7afd3f52fd6f248e41d4c463d916a1ff2bc0d3b73be85fbb466a9ca13c8f44263a6e39b890d41f57e2d007ef556708ab490cbde69424c72e36f4d39cd8c7dcc97b319bfd299b181489d84c28e3a2204824d7de42b12affbbe90f80ce7cdd9b4d746bf7d9d3ff473ece3e8d93761067eebec5fed686acc119f1bfe54631ab092e1e97835aa38504051ecea969a8c8788c6ec507b9eb641cadd09f5e6a3697b926cbe288af32017588bc1f8bfbbf63561c597447eb9888c3d976e84e16bdf46ec775755151e0d9e2d64d75e4d02e6bbfb2b63d8b4655b4a0eefa0cbdae151109a2e3e0bdac82c31788328d038ee496ffbac401c5351a9e3ec4b9f295a2859b4d67774f81de6823226ab0416760708eaf32a759f7ff4fa27197e7a446e544093bb4343df52445aa8b46714ea03a989fc368530587e5e9e206759435b9410708598cd10649b5a8f3c5df9b22b6a98ddb2850aabe8f0089bac0b0341bdd07d8b64f49cadff6510061eb65a72ff059e756aec365008f4edd71127cd8a48ab581270cccfa28cc8b05b09af5837568a515e86257bf3fddf062576cb45e626977f41787b7c253d5be6f301d9063972ee6e6c6a950ebd2e582860a0669e1744cc02a9bbc0f2247ee1bbd6259e92a68205ce0ff7c4e599e3666a0b64399c1e961cfb110ddb545a7e631a984b3590dc8e781d180e768633c73cc8eb1501d5fe3a65e3d7600b15f8819561a234ae2739fd27d890f3c46de1f25c780af031174aee26aa5897d357399f9445cb663c829ca13755abefd5f5b7d52bb0922818c5bb0968633bd9847e138cd752a44bbda52f36d4f999ee467b330c40f78db6ea0385340f7bb0359a24de9118c6fad490185f87fb61d79b57a099d973139601c31cf43d02de92c7ce8319eb82022fcc8f44de093e01d8ad355d9b70e60afcdded1ea5612416df1b1de885b3d078c7a6cf68caa8a4d191560ac8fa09687e96eec069fe465abc481141ebce2abb981cd48d5a76f07c3d192897ad5211d75c77f7b4ba910ae5107ea2d9ae5ddf8d9eba5bb62676b520a982a9c4b7a4d60d195c63284f96c331e198ba6b24bebeca6cd043a0d3debdf65c293935925a774b2dfdefdc1cbc1b69072f8d6b2bc2f7006a163865186587f10d5643c3472ffdf4ef8fca45ed4e77929866360e03f1929d57e20aab4195e3f7a1d32785c48a76ee713690974cde895f3ebe7055bb6350e2c339b451fe19fb4b1866a3501fc44e9602fe14530a5ccdec3c0582eeab8fec1dddcc5a68d80707e69ccac94d0edb984a10229715c2907219be97717a55c226db75475ac7af3a0009f1c95415c9c175cc6c24c2ba1116ab26203685e2a8b85f297e8d4d49336903d4d017244791e4c31892a944a2179322588ebdd5f84a2a1ac23266274fec111b5c3396a41eddac3cd5b31585a19c4d1e2472220e15f9f500cd002b256961b285219e4c2db9285316d72b1d46d1b8189ac0a017ea3b6a114c2311439c82729eb1d968fee463050f29511bce5fc473ae8283021b31a81dc593089d2ac56b226bc684ba96eccc41db3e5b787cf3e0a98bfbd7cf11de3d8e562fe880a5e4b7c139f651f02282ee47adbfd8fdc36acbacdc30a593a049fa99af589461693a96ffbb9413882bdb889670bbacbff5d51013e16f7b12665f47609bb2eaee6be04c4509756bb39cedecbd52032e692c215e5ce3398bba276388f46ada4cb740c4eb0999120cfdcb9e368c823b72cf70505a3d706bd26797e5b7617d66c5486f28898010c124313be33393bb0025cf005335f55d35223b4eb48ca4917cb5ad69e4ee6c44f1efc5c82cc70ff35d7f53feeb9f67a81d3169bf9e0987430eaef40f9a9158b884c7d9d8af978d7be898ab090847137d73c2581bd892c0d49cc81b7784763b38df3c05abdff95cf3d2bc64f0531501e5adb81d64f2018b00a5ab2bcc1dc7bf5782580108477097f5915de67081f163dc92fd717d9daea13ebe29ef3628833124cd4e0be773912a87a438243bbf17e5675e2c89ce39ef8a291e038ecaa126a607d9114e49ec23c1d77a34117ef32d1ade58b42a23f299500e44d6581d7e2f78582e41e26d87834d4300ed3acb93cf37d7855e0280aa49c678a0193f19d93861455708ad30e4e492f9b786f7ef84fb29f22a8fcba2a648f5ba96757d29d80260056726fb8f648e5e2a5dd8ea7013f605076b22264bbad58f6f1cdbfc91382f086b7ced589e072ffe4a6b914848b1a2347b111375afc0f9b1a84e1b0ec258f4683ed9b7690c3aa64efdba4feda11920c3596d415e13c1d9fe5db0d2d79a59b4c797073bf44b2e1a5491e7d0b862add5e05a28226feb43a181d428a2a172f2f49025b60bfc55e092bdda9fd9e84efaac21c3a7df593d9f9156bd903162e996d183bbfc08c3669a7bbac884968082bb5ab2a1efa8231c877a79f1c00ae9f636b457112058d6ad023a470fd74299c2d92b0ba8fdc1f23c682122a5d762566562838acbeb0d79de0940ba7215500f1429fd29c0b0797efc78457055e4a5e2d82bc9f4af6dee1ca98f639b08e8ffa19e8824e5a981115e6f1868e938670529af5b2d9f271468edb4823757cad1ec4c5cfb75af644de4853e55689d551fb40070d231c305af424f68e364a4c1de0d2b51f84e419d5104f61d88ef47bbb357a9d28f8565b53923097aeac1cd5bcd04c1c339b15cd4d870fb9254b56d6340dbd04303f68e6521f1fb1f72d11d6a7cc3bba9ca066213e81e27c4f8a1774aa2bb416cc535e4f0ffbd7b3936ec85297a0531b5fea8b72164197db578157c6063a0529e5a6ab23509e0b07a9d1f600b4fa67b6bf7aa90fa1e91d6745bb3790539c678c2460a4fd8f6f9b965cd82a8d6edfb9e158d57fae8f864dba3cd9379d885a42ab04adff4f2e1feb36b104a2cfa89f614d5f536985d5398120f42df61efdf411d2fcdf08d03eb737ee5e265abea25a1d0cd7e82f5147526e9980e48aff7d410f625955cbb067cfb256a22e86244dc0793857c0c23fd857ae4f5b1e91f4b474b36f3546843a8c45c846aabe70995949dc7bdc8949cd0d75f7eb4406a20ea27c9a609f2322cd9b2211ef2b242ffd904992481f538719f88a7a1cc0934796b857b96149e22353bcb411a527b37af218a905c6a9d888f42324dd13d03253a460c419f9b7ac64fce6d6854abdfdcb754311c12f0643ac4da5779dbf42c2ef388bde1297e5087c047060af7b717099e18df2205737e67cdf7a8403749072440491850e534f70103f6e1bbcb661f785bfe6f0626d60afd81e4ab151b3ad59a4bef0563fc5b9a5c57c8b63a45244989ef49227903e64ac9a97ad5edafd707150b735c8c173340f95ed021eef4f2e8c8bac557e3352012bf2d7b7febe7adafa33e56eaceefcf5f70ab91dba21474594ce2084ae8e9bf283a01d4ca12cb9cd3851f70aace3d12eb67bba139c513f0fba83502c66426a17f91a67ace375f646b4fa81f8d0519f6b3c84e20d1d8008520bdf64768a0dd8e62efcf9630c16ea331c2f352793462ebeff33dc8654bc8bc0ed071075ace14c95cc79b184f58fab9614d3ff830016f16f6f29fe6cc52895ec54999604c699af374c29bb8552ddff0688e5440c4209ecaa95368cdb523896e259c5dba4e4a06e3edbe3268006f71337b9be8bf9eb1947130bd328bd56b8fb85a35958b9380dfe3f62b56665a8cae90e7b28f291f9b3b49f08a9290748f537d69bfebe96eea91949b4bd24744fd92c2965291306972937ff017b21f6a334707f7dc9dc84d0fa4d4f5f7ddff29fda15743cb3cb1495808a7bfa54dfd484908adf27f7f45228b8baba5d07c20c8135d12399ba00923cc99bbfe3a981365e3a1825cdd948417208a95f2e7b5c39bc6ddb27e40094d82afa421f6a68883f2c52c0a8a4b6897f040f22b707cc41527d40019263fcaa8c0f0c806fb79a15d395e4bacfc611644915493644f6882288e6e2e92934ea51eebe27e2925b9fe57096f804b2807afded1108b2c533895ab0b86609c936fd25a0bddd581aa2d7c9fc0651b410022e019dbb1a208bbf58789f5a16fabd74dce437cbcff206bc6726c615243c5aa75cb6e4b151eb9b1ce823ae0abd85a91b9f9044a442f88a59f32c3f30053a23ae240f04690489e7d81fc5d24856e1c9233c9a32c496b3f314db084396f11fae133045f2a5d4e5361592023eaf8100fc30de2cbc139cecca504a0ae1fcd1645daf460f7ec58ecac6b2ba607ff5d8151258b248f42f6efda069e898165b03b270f505844266c5edc6c088b52a6be61ff9fa9bc13562d63dd932c2dfdda3bd4fbb15b42911cf79247a8a1f46f9498c2b6fca470a359ab4b572c8d9963f09ef34f4099961dcfb960d108e5502f187802c20e1b6a291333fc7b1f81010ae6d4326f6d04772d1820a722594535cbf8cb2e7c9e402b202b3ac8a8fb5bec43ec8f0034e560ae1abd07b073e2f77ec79a3142ac43feb69f9ed9efb80d2a8c375e7a1a0de6ef64474e51380d36e7f743337443d"}) mmap$auto(0x0, 0x38, 0xdf, 0x9b72, 0x2, 0x8) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) 0s ago: executing program 2 (id=814): r0 = socket(0x15, 0x5, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/block/loop12/queue/nr_requests\x00', 0xa3182, 0x0) sendfile$auto(r1, r1, 0x0, 0x2) ioctl$auto_TIOCSETD2(r0, 0x5423, &(0x7f0000000000)="144fed42894463e1254b70a9d0eea21cb8be695382226379a85af6bbfc64a41f7c48dea1379f643326818b747c138d87d58fcaa0c408d03f868531a72791d0967eab8b655bcb4118c4d031de2397890748075fbe81a852e5046f5926c02bac524f0cd1d817920f1268ad36262f5a18ff7756a12cc24c9c8f8dbd94f5c31e32006bde96ca39689b5fe223d2d44d94d14e96f4539aa972c2e19156fb6b8132ace0c8fc3b1084b371b7648ef3aefbde683b39bba52345f09df9a71fff8d3641561f2e7307b56c6fb11fdf71f09783039067eb557529b8") getsockopt$auto(r0, 0x114, 0x2710, 0xfffffffffffffffc, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.162' (ED25519) to the list of known hosts. [ 75.143792][ T5826] cgroup: Unknown subsys name 'net' [ 75.272477][ T5826] cgroup: Unknown subsys name 'cpuset' [ 75.281510][ T5826] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 76.712264][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 76.718765][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 76.775144][ T5826] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 78.656762][ T5839] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 78.665795][ T5839] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 78.674187][ T5839] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 78.682515][ T5839] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 78.690741][ T5839] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 78.698471][ T5839] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 78.705998][ T5849] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 78.710471][ T5839] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 78.730314][ T5849] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 78.730398][ T5839] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 78.749781][ T5852] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 78.750057][ T5839] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 78.757451][ T5852] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 78.764405][ T5839] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 78.771857][ T5852] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 78.783336][ T5839] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 78.785916][ T5849] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 78.792232][ T5839] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 78.799471][ T5852] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 78.815414][ T5849] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 79.176743][ T5835] chnl_net:caif_netlink_parms(): no params data found [ 79.191405][ T5836] chnl_net:caif_netlink_parms(): no params data found [ 79.232190][ T5842] chnl_net:caif_netlink_parms(): no params data found [ 79.287672][ T5844] chnl_net:caif_netlink_parms(): no params data found [ 79.396115][ T5842] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.403376][ T5842] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.413570][ T5842] bridge_slave_0: entered allmulticast mode [ 79.420477][ T5842] bridge_slave_0: entered promiscuous mode [ 79.428311][ T5835] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.435654][ T5835] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.443060][ T5835] bridge_slave_0: entered allmulticast mode [ 79.449871][ T5835] bridge_slave_0: entered promiscuous mode [ 79.474499][ T5842] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.481644][ T5842] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.488766][ T5842] bridge_slave_1: entered allmulticast mode [ 79.495646][ T5842] bridge_slave_1: entered promiscuous mode [ 79.511132][ T5835] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.518227][ T5835] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.525555][ T5835] bridge_slave_1: entered allmulticast mode [ 79.532219][ T5835] bridge_slave_1: entered promiscuous mode [ 79.538746][ T5836] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.546028][ T5836] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.553215][ T5836] bridge_slave_0: entered allmulticast mode [ 79.560197][ T5836] bridge_slave_0: entered promiscuous mode [ 79.595822][ T5836] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.603149][ T5836] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.610397][ T5836] bridge_slave_1: entered allmulticast mode [ 79.617090][ T5836] bridge_slave_1: entered promiscuous mode [ 79.630653][ T5844] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.637743][ T5844] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.645222][ T5844] bridge_slave_0: entered allmulticast mode [ 79.651882][ T5844] bridge_slave_0: entered promiscuous mode [ 79.660954][ T5842] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 79.670263][ T5844] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.677372][ T5844] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.685269][ T5844] bridge_slave_1: entered allmulticast mode [ 79.691965][ T5844] bridge_slave_1: entered promiscuous mode [ 79.700757][ T5835] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 79.718755][ T5842] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 79.736613][ T5835] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 79.747466][ T5836] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 79.759227][ T5836] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 79.806588][ T5844] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 79.817884][ T5844] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 79.837963][ T5835] team0: Port device team_slave_0 added [ 79.854232][ T5842] team0: Port device team_slave_0 added [ 79.869919][ T5835] team0: Port device team_slave_1 added [ 79.878051][ T5836] team0: Port device team_slave_0 added [ 79.886849][ T5836] team0: Port device team_slave_1 added [ 79.893943][ T5842] team0: Port device team_slave_1 added [ 79.950149][ T5844] team0: Port device team_slave_0 added [ 79.956858][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 79.964243][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.990484][ T5835] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 80.003883][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 80.010905][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 80.036920][ T5835] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 80.048418][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 80.055584][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 80.082202][ T5836] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 80.094436][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 80.101614][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 80.127666][ T5842] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 80.140341][ T5844] team0: Port device team_slave_1 added [ 80.148815][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 80.155850][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 80.181824][ T5842] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 80.207069][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 80.214096][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 80.240619][ T5836] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 80.269689][ T5844] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 80.276767][ T5844] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 80.303109][ T5844] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 80.316385][ T5844] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 80.323768][ T5844] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 80.350176][ T5844] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 80.418277][ T5842] hsr_slave_0: entered promiscuous mode [ 80.424964][ T5842] hsr_slave_1: entered promiscuous mode [ 80.444313][ T5835] hsr_slave_0: entered promiscuous mode [ 80.450755][ T5835] hsr_slave_1: entered promiscuous mode [ 80.456694][ T5835] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 80.464494][ T5835] Cannot create hsr debugfs directory [ 80.473791][ T5844] hsr_slave_0: entered promiscuous mode [ 80.481801][ T5844] hsr_slave_1: entered promiscuous mode [ 80.487685][ T5844] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 80.495783][ T5844] Cannot create hsr debugfs directory [ 80.532765][ T5836] hsr_slave_0: entered promiscuous mode [ 80.538899][ T5836] hsr_slave_1: entered promiscuous mode [ 80.545200][ T5836] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 80.553033][ T5836] Cannot create hsr debugfs directory [ 80.789648][ T5849] Bluetooth: hci3: command tx timeout [ 80.810617][ T5842] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 80.823021][ T5842] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 80.833460][ T5842] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 80.848917][ T5842] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 80.869553][ T5843] Bluetooth: hci1: command tx timeout [ 80.875486][ T5843] Bluetooth: hci0: command tx timeout [ 80.884932][ T5849] Bluetooth: hci2: command tx timeout [ 80.896205][ T5835] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 80.912818][ T5835] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 80.922252][ T5835] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 80.942942][ T5835] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 80.975755][ T5836] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 80.985576][ T5836] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 81.012690][ T5836] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 81.038151][ T5836] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 81.069075][ T5844] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 81.078192][ T5844] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 81.090141][ T5844] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 81.114218][ T5844] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 81.201960][ T5842] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.260184][ T5835] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.275876][ T5842] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.287144][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.294525][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.321809][ T5835] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.342576][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.349716][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.365772][ T5836] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.375751][ T3581] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.382938][ T3581] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.410910][ T5844] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.418979][ T3581] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.426151][ T3581] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.476272][ T5836] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.504858][ T5844] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.515598][ T3581] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.522759][ T3581] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.549085][ T3581] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.556426][ T3581] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.572249][ T3581] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.579463][ T3581] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.640376][ T54] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.647553][ T54] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.708171][ T5836] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 81.810359][ T5842] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 81.911703][ T5842] veth0_vlan: entered promiscuous mode [ 81.935558][ T5842] veth1_vlan: entered promiscuous mode [ 81.998208][ T5835] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 82.011168][ T5842] veth0_macvtap: entered promiscuous mode [ 82.037670][ T5842] veth1_macvtap: entered promiscuous mode [ 82.070889][ T5835] veth0_vlan: entered promiscuous mode [ 82.078092][ T5836] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 82.088466][ T5844] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 82.118848][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.131781][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 82.141440][ T5835] veth1_vlan: entered promiscuous mode [ 82.159052][ T5842] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.167959][ T5842] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.177253][ T5842] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.186274][ T5842] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.238856][ T5844] veth0_vlan: entered promiscuous mode [ 82.254907][ T5836] veth0_vlan: entered promiscuous mode [ 82.264998][ T5844] veth1_vlan: entered promiscuous mode [ 82.288053][ T5835] veth0_macvtap: entered promiscuous mode [ 82.298895][ T5835] veth1_macvtap: entered promiscuous mode [ 82.334232][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 82.345502][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.357414][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.373629][ T5836] veth1_vlan: entered promiscuous mode [ 82.397139][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 82.407858][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.418978][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 82.449929][ T54] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.462616][ T54] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.464092][ T5835] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.483334][ T5835] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.493647][ T5835] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.502484][ T5835] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.547913][ T1082] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.558301][ T5836] veth0_macvtap: entered promiscuous mode [ 82.562982][ T1082] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.566599][ T5844] veth0_macvtap: entered promiscuous mode [ 82.620346][ T5836] veth1_macvtap: entered promiscuous mode [ 82.630671][ T5844] veth1_macvtap: entered promiscuous mode [ 82.671618][ T5844] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 82.684740][ T5844] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.694805][ T5844] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 82.705580][ T5844] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.717722][ T5844] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.733815][ T5842] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 82.745834][ T1147] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.762224][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 82.777041][ T1147] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.777392][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.795845][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 82.807707][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.818005][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 82.828900][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.841216][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.871422][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 82.871595][ T5849] Bluetooth: hci3: command tx timeout [ 82.883359][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.899447][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 82.910312][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.930510][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 82.956542][ T5849] Bluetooth: hci2: command tx timeout [ 82.960225][ T5843] Bluetooth: hci0: command tx timeout [ 82.962168][ T5150] Bluetooth: hci1: command tx timeout [ 82.983139][ T5844] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 82.998668][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.002398][ T5844] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.012645][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.016641][ T5844] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 83.034600][ T5844] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.045047][ T5844] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 83.045072][ T5844] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.046113][ T5844] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 83.047787][ T5836] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.047831][ T5836] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.047868][ T5836] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.047915][ T5836] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.063929][ T5844] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.063976][ T5844] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.064013][ T5844] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.064050][ T5844] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.324822][ T54] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.355610][ T54] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.373086][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.382039][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.437075][ T5901] netlink: 206 bytes leftover after parsing attributes in process `syz.2.3'. [ 83.481064][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.488935][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.504100][ T5901] Zero length message leads to an empty skb [ 83.512422][ T54] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.539357][ T54] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.194497][ T5924] process 'syz.1.6' launched ':,' with NULL argv: empty string added [ 84.236930][ T5916] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1'. [ 84.536406][ T5929] netlink: 28 bytes leftover after parsing attributes in process `syz.0.8'. [ 84.585841][ T5929] caif0: entered promiscuous mode [ 84.794246][ T5932] hub 8-0:1.0: USB hub found [ 84.801506][ T5932] hub 8-0:1.0: 1 port detected [ 84.890162][ T5917] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 84.949761][ T5150] Bluetooth: hci3: command tx timeout [ 85.029489][ T5150] Bluetooth: hci1: command tx timeout [ 85.032348][ T5849] Bluetooth: hci0: command tx timeout [ 85.034953][ T5843] Bluetooth: hci2: command tx timeout [ 86.200493][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 86.268126][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 86.870125][ T5969] FAULT_INJECTION: forcing a failure. [ 86.870125][ T5969] name failslab, interval 1, probability 0, space 0, times 1 [ 86.919121][ T5969] CPU: 0 UID: 0 PID: 5969 Comm: syz.1.17 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) [ 86.919166][ T5969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 86.919185][ T5969] Call Trace: [ 86.919195][ T5969] [ 86.919212][ T5969] dump_stack_lvl+0x16c/0x1f0 [ 86.919261][ T5969] should_fail_ex+0x512/0x640 [ 86.919293][ T5969] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 86.919329][ T5969] should_failslab+0xc2/0x120 [ 86.919364][ T5969] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 86.919395][ T5969] ? vma_merge_new_range+0x40a/0xbb0 [ 86.919426][ T5969] ? vm_area_alloc+0x134/0x230 [ 86.919471][ T5969] vm_area_alloc+0x134/0x230 [ 86.919512][ T5969] __mmap_region+0x10e3/0x27c0 [ 86.919544][ T5969] ? rcu_is_watching+0x12/0xc0 [ 86.919582][ T5969] ? __pfx___mmap_region+0x10/0x10 [ 86.919613][ T5969] ? finish_task_switch.isra.0+0x221/0xc10 [ 86.919659][ T5969] ? __schedule+0x1186/0x5de0 [ 86.919691][ T5969] ? kvm_sched_clock_read+0x11/0x20 [ 86.919725][ T5969] ? sched_clock+0x38/0x60 [ 86.919796][ T5969] ? trace_cap_capable+0x18d/0x200 [ 86.919852][ T5969] ? cap_capable+0xb3/0x250 [ 86.919903][ T5969] mmap_region+0x1ab/0x3f0 [ 86.919942][ T5969] do_mmap+0xd8e/0x11b0 [ 86.919991][ T5969] ? __pfx_do_mmap+0x10/0x10 [ 86.920036][ T5969] ? __pfx_down_write_killable+0x10/0x10 [ 86.920093][ T5969] vm_mmap_pgoff+0x281/0x450 [ 86.920163][ T5969] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 86.920218][ T5969] ? __x64_sys_futex+0x1e0/0x4c0 [ 86.920261][ T5969] ? __x64_sys_futex+0x1e9/0x4c0 [ 86.920309][ T5969] ksys_mmap_pgoff+0x7d/0x5c0 [ 86.920352][ T5969] ? rcu_is_watching+0x12/0xc0 [ 86.920392][ T5969] __x64_sys_mmap+0x125/0x190 [ 86.920429][ T5969] do_syscall_64+0xcd/0x260 [ 86.920472][ T5969] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.920503][ T5969] RIP: 0033:0x7f4e9d38d169 [ 86.920534][ T5969] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 86.920565][ T5969] RSP: 002b:00007f4e9e2a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 86.920594][ T5969] RAX: ffffffffffffffda RBX: 00007f4e9d5a5fa0 RCX: 00007f4e9d38d169 [ 86.920615][ T5969] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000 [ 86.920633][ T5969] RBP: 00007f4e9d40e2a0 R08: fffffffffffffffa R09: 0000000000008000 [ 86.920652][ T5969] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 86.920669][ T5969] R13: 0000000000000000 R14: 00007f4e9d5a5fa0 R15: 00007fffb6685b88 [ 86.920701][ T5969] [ 87.392413][ T5843] Bluetooth: hci3: command tx timeout [ 87.398680][ T5843] Bluetooth: hci2: command tx timeout [ 87.405033][ T5843] Bluetooth: hci1: command tx timeout [ 87.415210][ T5150] Bluetooth: hci0: command tx timeout [ 87.822117][ T5976] vcan0: tx drop: invalid da for name 0x000000000000003f [ 88.638283][ T5995] program syz.1.21 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 89.429573][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 89.825514][ T6012] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 90.339322][ T6018] mmap: syz.1.23 (6018) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 90.624505][ T6021] synth uevent: /bus/usb/drivers/lg-vl600: unknown uevent action string [ 91.708573][ T6051] FAULT_INJECTION: forcing a failure. [ 91.708573][ T6051] name failslab, interval 1, probability 0, space 0, times 0 [ 91.762554][ T6051] CPU: 1 UID: 0 PID: 6051 Comm: syz.1.35 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) [ 91.762609][ T6051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 91.762628][ T6051] Call Trace: [ 91.762638][ T6051] [ 91.762649][ T6051] dump_stack_lvl+0x16c/0x1f0 [ 91.762697][ T6051] should_fail_ex+0x512/0x640 [ 91.762730][ T6051] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 91.762767][ T6051] should_failslab+0xc2/0x120 [ 91.762804][ T6051] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 91.762835][ T6051] ? find_held_lock+0x2b/0x80 [ 91.762874][ T6051] ? skb_clone+0x190/0x3f0 [ 91.762916][ T6051] skb_clone+0x190/0x3f0 [ 91.762956][ T6051] netlink_broadcast_filtered+0xb19/0xf10 [ 91.763006][ T6051] ? sprintf+0xcc/0x100 [ 91.763043][ T6051] ? __pfx_netlink_broadcast_filtered+0x10/0x10 [ 91.763093][ T6051] ? netlink_has_listeners+0x20f/0x430 [ 91.763136][ T6051] netlink_broadcast+0x39/0x50 [ 91.763176][ T6051] kobject_uevent_env+0xc6a/0x1870 [ 91.763240][ T6051] nfs_netns_sysfs_setup+0x16f/0x1f0 [ 91.763286][ T6051] nfs_net_init+0x10a/0x300 [ 91.763335][ T6051] ? __pfx_nfs_net_init+0x10/0x10 [ 91.763382][ T6051] ops_init+0x1df/0x5f0 [ 91.763425][ T6051] setup_net+0x21e/0x850 [ 91.763469][ T6051] ? __pfx_setup_net+0x10/0x10 [ 91.763510][ T6051] ? lockdep_init_map_type+0x5c/0x280 [ 91.763540][ T6051] ? __pfx_down_read_killable+0x10/0x10 [ 91.763598][ T6051] ? debug_mutex_init+0x37/0x70 [ 91.763641][ T6051] copy_net_ns+0x2a6/0x5f0 [ 91.763690][ T6051] create_new_namespaces+0x3ea/0xad0 [ 91.763744][ T6051] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 91.763794][ T6051] ksys_unshare+0x45b/0xa40 [ 91.763845][ T6051] ? __pfx_ksys_unshare+0x10/0x10 [ 91.763895][ T6051] ? xfd_validate_state+0x5d/0x180 [ 91.763932][ T6051] ? rcu_is_watching+0x12/0xc0 [ 91.763979][ T6051] __x64_sys_unshare+0x31/0x40 [ 91.764029][ T6051] do_syscall_64+0xcd/0x260 [ 91.764072][ T6051] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 91.764104][ T6051] RIP: 0033:0x7f4e9d38d169 [ 91.764129][ T6051] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 91.764160][ T6051] RSP: 002b:00007f4e9e2a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 91.764190][ T6051] RAX: ffffffffffffffda RBX: 00007f4e9d5a5fa0 RCX: 00007f4e9d38d169 [ 91.764211][ T6051] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 91.764228][ T6051] RBP: 00007f4e9d40e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 91.764259][ T6051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 91.764277][ T6051] R13: 0000000000000000 R14: 00007f4e9d5a5fa0 R15: 00007fffb6685b88 [ 91.764309][ T6051] [ 92.493573][ T6064] netlink: 12 bytes leftover after parsing attributes in process `syz.1.39'. [ 93.023728][ T6077] netlink: 1220 bytes leftover after parsing attributes in process `syz.0.40'. [ 93.055962][ T6077] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 93.479113][ T30] audit: type=1326 audit(1743367837.727:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6084 comm="syz.0.42" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f641878d169 code=0x0 [ 93.852472][ T6098] netlink: 330 bytes leftover after parsing attributes in process `syz.3.43'. [ 94.748774][ T6040] kexec: Could not allocate control_code_buffer [ 95.121827][ T6122] netlink: 1220 bytes leftover after parsing attributes in process `syz.2.50'. [ 95.140530][ T6122] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 95.194200][ T6124] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 95.632893][ T6131] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 97.211152][ T52] cfg80211: failed to load regulatory.db [ 97.648068][ T6177] netlink: 1220 bytes leftover after parsing attributes in process `syz.2.59'. [ 97.691303][ T6177] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 97.823000][ T6183] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 97.922623][ T6186] usbip-vudc usbip-vudc.0: gadget not bound [ 98.922079][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 98.930695][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 100.068355][ T6229] netlink: 1220 bytes leftover after parsing attributes in process `syz.1.71'. [ 100.103921][ T6229] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 101.392247][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 101.422945][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 101.627297][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 101.643533][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 101.652987][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 102.058296][ T6269] netlink: 4 bytes leftover after parsing attributes in process `syz.1.76'. [ 102.309208][ T6277] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 102.988090][ T6289] netlink: 4 bytes leftover after parsing attributes in process `syz.1.81'. [ 104.274281][ T6311] netlink: 186 bytes leftover after parsing attributes in process `syz.1.87'. [ 104.291570][ T5849] Bluetooth: hci0: unexpected subevent 0x01 length: 4 < 18 [ 108.083766][ T6359] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 108.615835][ T6369] random: crng reseeded on system resumption [ 110.934136][ T6411] netlink: 1220 bytes leftover after parsing attributes in process `syz.0.109'. [ 110.959077][ T6411] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 112.321105][ T6442] netlink: 'syz.1.120': attribute type 15 has an invalid length. [ 112.346978][ T6442] netlink: 252 bytes leftover after parsing attributes in process `syz.1.120'. [ 112.629245][ T6448] netlink: 1220 bytes leftover after parsing attributes in process `syz.1.122'. [ 112.672247][ T6448] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 113.025465][ T6467] netlink: 8 bytes leftover after parsing attributes in process `syz.1.125'. [ 113.686238][ T6487] netlink: zone id is out of range [ 113.691779][ T6487] netlink: zone id is out of range [ 113.696931][ T6487] netlink: zone id is out of range [ 113.718154][ T6487] netlink: zone id is out of range [ 113.748550][ T6487] netlink: zone id is out of range [ 113.767135][ T6487] netlink: zone id is out of range [ 113.791429][ T6487] netlink: zone id is out of range [ 113.855650][ T6487] netlink: zone id is out of range [ 116.143623][ T6536] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT [ 116.719254][ T6548] netlink: 28 bytes leftover after parsing attributes in process `syz.3.141'. [ 116.772405][ T6548] mac80211_hwsim hwsim8 wlan1: entered allmulticast mode [ 117.539720][ T6566] snd_aloop snd_aloop.0: control 16781581:65535:6:'x?F/zF˷fC:1007 is already present [ 118.265815][ T6582] random: crng reseeded on system resumption [ 118.273421][ T6583] netlink: 350 bytes leftover after parsing attributes in process `syz.3.150'. [ 118.299350][ T6581] netlink: 350 bytes leftover after parsing attributes in process `syz.3.150'. [ 119.205602][ T6597] netlink: 1220 bytes leftover after parsing attributes in process `syz.0.152'. [ 119.215060][ T6597] net_ratelimit: 59 callbacks suppressed [ 119.215080][ T6597] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 119.618373][ T6604] FAULT_INJECTION: forcing a failure. [ 119.618373][ T6604] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 119.710746][ T6604] CPU: 0 UID: 0 PID: 6604 Comm: syz.0.154 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) [ 119.710785][ T6604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 119.710800][ T6604] Call Trace: [ 119.710809][ T6604] [ 119.710818][ T6604] dump_stack_lvl+0x16c/0x1f0 [ 119.710859][ T6604] should_fail_ex+0x512/0x640 [ 119.710891][ T6604] _copy_from_user+0x2e/0xd0 [ 119.710922][ T6604] core_sys_select+0x2c7/0xbe0 [ 119.710970][ T6604] ? __pfx_core_sys_select+0x10/0x10 [ 119.711016][ T6604] ? proc_fail_nth_write+0x9f/0x250 [ 119.711076][ T6604] ? do_sys_openat2+0x157/0x1d0 [ 119.711108][ T6604] ? __pfx_do_sys_openat2+0x10/0x10 [ 119.711145][ T6604] kern_select+0x15d/0x1e0 [ 119.711186][ T6604] ? __pfx_kern_select+0x10/0x10 [ 119.711230][ T6604] ? __pfx_ksys_write+0x10/0x10 [ 119.711268][ T6604] ? rcu_is_watching+0x12/0xc0 [ 119.711306][ T6604] __x64_sys_select+0xbd/0x160 [ 119.711348][ T6604] ? do_syscall_64+0x91/0x260 [ 119.711391][ T6604] ? lockdep_hardirqs_on+0x7c/0x110 [ 119.711425][ T6604] do_syscall_64+0xcd/0x260 [ 119.711462][ T6604] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 119.711490][ T6604] RIP: 0033:0x7f641878d169 [ 119.711512][ T6604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 119.711543][ T6604] RSP: 002b:00007f64196ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 119.711569][ T6604] RAX: ffffffffffffffda RBX: 00007f64189a5fa0 RCX: 00007f641878d169 [ 119.711587][ T6604] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 000000000000000c [ 119.711604][ T6604] RBP: 00007f64196ca090 R08: 0000000000000000 R09: 0000000000000000 [ 119.711620][ T6604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 119.711636][ T6604] R13: 0000000000000000 R14: 00007f64189a5fa0 R15: 00007fff2d869e08 [ 119.711665][ T6604] [ 119.809415][ T6601] tipc: Started in network mode [ 119.990810][ T6601] tipc: Node identity ee00, cluster identity 4711 [ 119.997329][ T6601] tipc: Node number set to 60928 [ 120.422874][ T6614] netlink: 4 bytes leftover after parsing attributes in process `syz.0.156'. [ 120.685176][ T6622] netlink: 206 bytes leftover after parsing attributes in process `syz.1.159'. [ 121.633684][ T6645] FAULT_INJECTION: forcing a failure. [ 121.633684][ T6645] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 121.684485][ T6648] usb usb28: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 121.732136][ T6645] CPU: 0 UID: 0 PID: 6645 Comm: syz.3.164 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) [ 121.732187][ T6645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 121.732204][ T6645] Call Trace: [ 121.732212][ T6645] [ 121.732222][ T6645] dump_stack_lvl+0x16c/0x1f0 [ 121.732264][ T6645] should_fail_ex+0x512/0x640 [ 121.732298][ T6645] core_sys_select+0x921/0xbe0 [ 121.732351][ T6645] ? __pfx_core_sys_select+0x10/0x10 [ 121.732423][ T6645] ? proc_fail_nth_write+0x9f/0x250 [ 121.732492][ T6645] ? do_sys_openat2+0x157/0x1d0 [ 121.732530][ T6645] ? __pfx_do_sys_openat2+0x10/0x10 [ 121.732572][ T6645] kern_select+0x15d/0x1e0 [ 121.732620][ T6645] ? __pfx_kern_select+0x10/0x10 [ 121.732672][ T6645] ? __pfx_ksys_write+0x10/0x10 [ 121.732717][ T6645] ? rcu_is_watching+0x12/0xc0 [ 121.732758][ T6645] __x64_sys_select+0xbd/0x160 [ 121.732804][ T6645] ? do_syscall_64+0x91/0x260 [ 121.732845][ T6645] ? lockdep_hardirqs_on+0x7c/0x110 [ 121.732881][ T6645] do_syscall_64+0xcd/0x260 [ 121.732922][ T6645] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.732954][ T6645] RIP: 0033:0x7fd29e98d169 [ 121.732977][ T6645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 121.733004][ T6645] RSP: 002b:00007fd29f812038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 121.733032][ T6645] RAX: ffffffffffffffda RBX: 00007fd29eba5fa0 RCX: 00007fd29e98d169 [ 121.733052][ T6645] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 000000000000000c [ 121.733070][ T6645] RBP: 00007fd29f812090 R08: 0000000000000000 R09: 0000000000000000 [ 121.733088][ T6645] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 121.733105][ T6645] R13: 0000000000000000 R14: 00007fd29eba5fa0 R15: 00007ffdbb512af8 [ 121.733137][ T6645] [ 122.134058][ T6630] netlink: 206 bytes leftover after parsing attributes in process `syz.0.160'. [ 122.386402][ T6642] FAULT_INJECTION: forcing a failure. [ 122.386402][ T6642] name failslab, interval 1, probability 0, space 0, times 0 [ 122.488026][ T6642] CPU: 0 UID: 0 PID: 6642 Comm: syz.2.163 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) [ 122.488072][ T6642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 122.488091][ T6642] Call Trace: [ 122.488100][ T6642] [ 122.488112][ T6642] dump_stack_lvl+0x16c/0x1f0 [ 122.488159][ T6642] should_fail_ex+0x512/0x640 [ 122.488193][ T6642] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 122.488248][ T6642] ? __pfx_cec_config_thread_func+0x10/0x10 [ 122.488293][ T6642] should_failslab+0xc2/0x120 [ 122.488330][ T6642] __kmalloc_cache_noprof+0x6a/0x3e0 [ 122.488382][ T6642] ? lockdep_init_map_type+0x5c/0x280 [ 122.488421][ T6642] ? __kthread_create_on_node+0xce/0x3f0 [ 122.488475][ T6642] ? __init_swait_queue_head+0xca/0x150 [ 122.488518][ T6642] ? __pfx_cec_config_thread_func+0x10/0x10 [ 122.488564][ T6642] __kthread_create_on_node+0xce/0x3f0 [ 122.488618][ T6642] ? __pfx___kthread_create_on_node+0x10/0x10 [ 122.488678][ T6642] ? cec_adap_enable+0x77c/0xc30 [ 122.488727][ T6642] ? __pfx_cec_config_thread_func+0x10/0x10 [ 122.488774][ T6642] kthread_create_on_node+0xc7/0x100 [ 122.488826][ T6642] ? __pfx_kthread_create_on_node+0x10/0x10 [ 122.488877][ T6642] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 122.488922][ T6642] ? preempt_schedule_thunk+0x16/0x30 [ 122.488957][ T6642] ? lockdep_init_map_type+0x5c/0x280 [ 122.488994][ T6642] ? lockdep_init_map_type+0x5c/0x280 [ 122.489028][ T6642] cec_claim_log_addrs+0x13e/0x2e0 [ 122.489071][ T6642] __cec_s_log_addrs+0xdc9/0x1670 [ 122.489124][ T6642] cec_ioctl+0x4b8/0x2970 [ 122.489174][ T6642] ? __pfx_cec_ioctl+0x10/0x10 [ 122.489220][ T6642] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 122.489255][ T6642] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 122.489291][ T6642] ? do_vfs_ioctl+0x512/0x1990 [ 122.489334][ T6642] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 122.489396][ T6642] ? find_held_lock+0x2b/0x80 [ 122.489439][ T6642] ? hook_file_ioctl_common+0x145/0x410 [ 122.489475][ T6642] ? __pfx_cec_ioctl+0x10/0x10 [ 122.489514][ T6642] __x64_sys_ioctl+0x190/0x200 [ 122.489551][ T6642] do_syscall_64+0xcd/0x260 [ 122.489587][ T6642] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.489614][ T6642] RIP: 0033:0x7fcd1278d169 [ 122.489634][ T6642] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 122.489660][ T6642] RSP: 002b:00007fcd135ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 122.489686][ T6642] RAX: ffffffffffffffda RBX: 00007fcd129a5fa0 RCX: 00007fcd1278d169 [ 122.489702][ T6642] RDX: 00002000000000c0 RSI: 00000000c05c6104 RDI: 0000000000000005 [ 122.489718][ T6642] RBP: 00007fcd1280e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 122.489733][ T6642] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 122.489760][ T6642] R13: 0000000000000000 R14: 00007fcd129a5fa0 R15: 00007fff3e984be8 [ 122.489786][ T6642] [ 123.347801][ T6667] netlink: 1220 bytes leftover after parsing attributes in process `syz.2.170'. [ 123.378854][ T6667] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 123.551371][ T6665] netlink: 206 bytes leftover after parsing attributes in process `syz.1.169'. [ 123.691130][ T6674] usbip-vudc usbip-vudc.0: gadget not bound [ 123.711308][ T6671] HfR: entered promiscuous mode [ 124.930392][ T6689] Invalid ELF header magic: != ELF [ 126.128269][ T6699] FAULT_INJECTION: forcing a failure. [ 126.128269][ T6699] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 126.169230][ T6699] CPU: 0 UID: 0 PID: 6699 Comm: syz.1.176 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) [ 126.169265][ T6699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 126.169276][ T6699] Call Trace: [ 126.169282][ T6699] [ 126.169289][ T6699] dump_stack_lvl+0x16c/0x1f0 [ 126.169319][ T6699] should_fail_ex+0x512/0x640 [ 126.169342][ T6699] _copy_to_user+0x32/0xd0 [ 126.169368][ T6699] simple_read_from_buffer+0xcb/0x170 [ 126.169411][ T6699] proc_fail_nth_read+0x197/0x270 [ 126.169452][ T6699] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 126.169494][ T6699] ? rw_verify_area+0xcf/0x680 [ 126.169529][ T6699] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 126.169569][ T6699] vfs_read+0x1de/0xc70 [ 126.169598][ T6699] ? poll_select_finish+0x377/0x6b0 [ 126.169629][ T6699] ? __pfx_poll_select_finish+0x10/0x10 [ 126.169663][ T6699] ? __pfx_vfs_read+0x10/0x10 [ 126.169693][ T6699] ? do_sys_openat2+0x157/0x1d0 [ 126.169722][ T6699] ? __pfx_do_sys_openat2+0x10/0x10 [ 126.169749][ T6699] ? kern_select+0x175/0x1e0 [ 126.169782][ T6699] ksys_read+0x12a/0x240 [ 126.169811][ T6699] ? __pfx_ksys_read+0x10/0x10 [ 126.169840][ T6699] ? rcu_is_watching+0x12/0xc0 [ 126.169870][ T6699] do_syscall_64+0xcd/0x260 [ 126.169897][ T6699] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.169917][ T6699] RIP: 0033:0x7f4e9d38bb7c [ 126.169933][ T6699] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 126.169952][ T6699] RSP: 002b:00007f4e9e2a7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 126.169972][ T6699] RAX: ffffffffffffffda RBX: 00007f4e9d5a5fa0 RCX: 00007f4e9d38bb7c [ 126.169985][ T6699] RDX: 000000000000000f RSI: 00007f4e9e2a70a0 RDI: 0000000000000001 [ 126.169997][ T6699] RBP: 00007f4e9e2a7090 R08: 0000000000000000 R09: 0000000000000000 [ 126.170009][ T6699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 126.170021][ T6699] R13: 0000000000000000 R14: 00007f4e9d5a5fa0 R15: 00007fffb6685b88 [ 126.170042][ T6699] [ 126.380229][ C0] vkms_vblank_simulate: vblank timer overrun [ 126.840444][ T6702] netlink: 'syz.3.177': attribute type 1 has an invalid length. [ 126.928668][ T5849] Bluetooth: hci2: unexpected subevent 0x01 length: 253 > 18 [ 127.560763][ T6702] netlink: 334 bytes leftover after parsing attributes in process `syz.3.177'. [ 128.862970][ T6736] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 129.779415][ T6765] netlink: 206 bytes leftover after parsing attributes in process `syz.2.190'. [ 130.213127][ T6776] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 130.259668][ T6778] openvswitch: netlink: Message has 4 unknown bytes. [ 131.802858][ T6815] ======================================================= [ 131.802858][ T6815] WARNING: The mand mount option has been deprecated and [ 131.802858][ T6815] and is ignored by this kernel. Remove the mand [ 131.802858][ T6815] option from the mount to silence this warning. [ 131.802858][ T6815] ======================================================= [ 131.947816][ T6817] netlink: 206 bytes leftover after parsing attributes in process `syz.0.203'. [ 135.860415][ T6877] netlink: 1220 bytes leftover after parsing attributes in process `syz.1.215'. [ 135.917451][ T6877] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 136.179172][ T6878] netlink: 206 bytes leftover after parsing attributes in process `syz.0.216'. [ 136.988708][ T6880] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 137.144447][ T6880] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 137.430216][ T6880] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 137.692817][ T6880] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 137.772128][ T6880] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 137.963490][ T6880] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 138.023151][ T6907] netlink: 8 bytes leftover after parsing attributes in process `syz.0.223'. [ 138.152238][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 138.159752][ T6880] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 138.165742][ T6880] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 138.169108][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 138.390223][ T6880] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 138.643175][ T6915] zswap: compressor not available [ 138.674174][ T6880] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 138.729245][ T6880] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 138.913732][ T6921] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 138.929627][ T6880] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 139.039054][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout [ 139.189207][ T6926] netlink: 28 bytes leftover after parsing attributes in process `syz.2.226'. [ 139.751404][ T5849] Bluetooth: hci1: command 0x0c1a tx timeout [ 140.245377][ T5849] Bluetooth: hci2: command 0x0c1a tx timeout [ 140.393309][ T6936] capability: warning: `syz.3.232' uses 32-bit capabilities (legacy support in use) [ 140.477913][ T6938] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 140.535062][ T6938] Invalid ELF header magic: != ELF [ 140.724482][ T5849] Bluetooth: hci3: command 0x0c1a tx timeout [ 140.938804][ T6950] netlink: 1220 bytes leftover after parsing attributes in process `syz.1.235'. [ 140.963745][ T6950] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 141.109189][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout [ 141.413192][ T6958] syz.3.238 uses obsolete (PF_INET,SOCK_PACKET) [ 141.829133][ T5849] Bluetooth: hci1: command 0x0c1a tx timeout [ 141.846562][ T6954] netlink: 206 bytes leftover after parsing attributes in process `syz.1.236'. [ 142.319066][ T5849] Bluetooth: hci2: command 0x0c1a tx timeout [ 142.794409][ T5849] Bluetooth: hci3: command 0x0c1a tx timeout [ 143.195011][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout [ 143.314853][ T6982] netlink: 12 bytes leftover after parsing attributes in process `syz.3.242'. [ 143.341031][ T6983] netlink: 12 bytes leftover after parsing attributes in process `syz.3.242'. [ 143.915602][ T5849] Bluetooth: hci1: command 0x0c1a tx timeout [ 144.081014][ T6993] netlink: 1220 bytes leftover after parsing attributes in process `syz.3.245'. [ 144.109473][ T6993] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 144.272515][ T6988] tipc: Started in network mode [ 144.277468][ T6988] tipc: Node identity ee00, cluster identity 4711 [ 144.294415][ T6988] tipc: Node number set to 60928 [ 144.399098][ T5849] Bluetooth: hci2: command 0x0c1a tx timeout [ 144.452311][ T6996] netlink: 8 bytes leftover after parsing attributes in process `syz.3.246'. [ 144.869215][ T5849] Bluetooth: hci3: command 0x0c1a tx timeout [ 145.376145][ T7015] netlink: 12 bytes leftover after parsing attributes in process `syz.3.251'. [ 145.919681][ T7026] syz.3.254 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 146.502622][ T7043] netlink: 4 bytes leftover after parsing attributes in process `syz.2.256'. [ 146.540586][ T7036] netlink: 28 bytes leftover after parsing attributes in process `syz.0.257'. [ 146.781752][ T7036] FAULT_INJECTION: forcing a failure. [ 146.781752][ T7036] name failslab, interval 1, probability 0, space 0, times 0 [ 146.803612][ T7036] CPU: 1 UID: 0 PID: 7036 Comm: syz.0.257 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) [ 146.803664][ T7036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 146.803679][ T7036] Call Trace: [ 146.803687][ T7036] [ 146.803697][ T7036] dump_stack_lvl+0x16c/0x1f0 [ 146.803736][ T7036] should_fail_ex+0x512/0x640 [ 146.803764][ T7036] ? fs_reclaim_acquire+0xae/0x150 [ 146.803805][ T7036] ? kobject_get_path+0xd2/0x2a0 [ 146.803841][ T7036] should_failslab+0xc2/0x120 [ 146.803872][ T7036] __kmalloc_noprof+0xd2/0x510 [ 146.803905][ T7036] kobject_get_path+0xd2/0x2a0 [ 146.803947][ T7036] kobject_uevent_env+0x289/0x1870 [ 146.803991][ T7036] ? __pfx_dev_uevent_name+0x10/0x10 [ 146.804029][ T7036] ? bus_to_subsys+0x12d/0x160 [ 146.804061][ T7036] device_del+0x623/0x9f0 [ 146.804100][ T7036] ? __pfx_device_del+0x10/0x10 [ 146.804140][ T7036] ? netdev_unregister_kobject+0x2da/0x540 [ 146.804182][ T7036] unregister_netdevice_many_notify+0x17eb/0x25a0 [ 146.804230][ T7036] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 146.804272][ T7036] ? __pfx___mutex_lock+0x10/0x10 [ 146.804312][ T7036] ? unregister_netdevice_queue+0x22e/0x3f0 [ 146.804351][ T7036] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 146.804392][ T7036] ? __nla_parse+0x40/0x60 [ 146.804430][ T7036] rtnl_dellink+0x3cb/0xa80 [ 146.804460][ T7036] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 146.804496][ T7036] ? kasan_save_stack+0x33/0x60 [ 146.804526][ T7036] ? kasan_save_track+0x14/0x30 [ 146.804550][ T7036] ? kasan_save_free_info+0x3b/0x60 [ 146.804586][ T7036] ? __kasan_slab_free+0x51/0x70 [ 146.804613][ T7036] ? __pfx_rtnl_dellink+0x10/0x10 [ 146.804642][ T7036] ? nlmon_xmit+0xa5/0xe0 [ 146.804665][ T7036] ? netlink_deliver_tap+0xa87/0xd30 [ 146.804696][ T7036] ? netlink_unicast+0x5df/0x7f0 [ 146.804768][ T7036] ? __lock_acquire+0x5ca/0x1ba0 [ 146.804814][ T7036] ? rcu_is_watching+0x12/0xc0 [ 146.804847][ T7036] ? trace_cap_capable+0x18d/0x200 [ 146.804895][ T7036] ? find_held_lock+0x2b/0x80 [ 146.804927][ T7036] ? __pfx_rtnl_dellink+0x10/0x10 [ 146.804958][ T7036] ? __pfx_rtnl_dellink+0x10/0x10 [ 146.804986][ T7036] ? rtnetlink_rcv_msg+0x93a/0xe90 [ 146.805020][ T7036] ? __pfx_rtnl_dellink+0x10/0x10 [ 146.805053][ T7036] rtnetlink_rcv_msg+0x95b/0xe90 [ 146.805089][ T7036] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 146.805135][ T7036] netlink_rcv_skb+0x16a/0x440 [ 146.805170][ T7036] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 146.805203][ T7036] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 146.805251][ T7036] ? netlink_deliver_tap+0x1ae/0xd30 [ 146.805290][ T7036] netlink_unicast+0x53a/0x7f0 [ 146.805329][ T7036] ? __pfx_netlink_unicast+0x10/0x10 [ 146.805365][ T7036] ? __lock_acquire+0xaa4/0x1ba0 [ 146.805416][ T7036] netlink_sendmsg+0x8d1/0xdd0 [ 146.805458][ T7036] ? __pfx_netlink_sendmsg+0x10/0x10 [ 146.805505][ T7036] ____sys_sendmsg+0xa95/0xc70 [ 146.805555][ T7036] ? copy_msghdr_from_user+0x10a/0x160 [ 146.805586][ T7036] ? __pfx_____sys_sendmsg+0x10/0x10 [ 146.805630][ T7036] ? kfree+0x252/0x4d0 [ 146.805667][ T7036] ? schedule+0x2d7/0x3a0 [ 146.805702][ T7036] ___sys_sendmsg+0x134/0x1d0 [ 146.805736][ T7036] ? __pfx____sys_sendmsg+0x10/0x10 [ 146.805792][ T7036] ? __pfx___might_resched+0x10/0x10 [ 146.805839][ T7036] __sys_sendmmsg+0x200/0x420 [ 146.805875][ T7036] ? __pfx___sys_sendmmsg+0x10/0x10 [ 146.805916][ T7036] ? __pfx_do_futex+0x10/0x10 [ 146.805967][ T7036] ? xfd_validate_state+0x5d/0x180 [ 146.806000][ T7036] ? rcu_is_watching+0x12/0xc0 [ 146.806038][ T7036] __x64_sys_sendmmsg+0x9c/0x100 [ 146.806071][ T7036] ? lockdep_hardirqs_on+0x7c/0x110 [ 146.806104][ T7036] do_syscall_64+0xcd/0x260 [ 146.806141][ T7036] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 146.806170][ T7036] RIP: 0033:0x7f641878d169 [ 146.806191][ T7036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 146.806217][ T7036] RSP: 002b:00007f64196a9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 146.806242][ T7036] RAX: ffffffffffffffda RBX: 00007f64189a6080 RCX: 00007f641878d169 [ 146.806259][ T7036] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000007 [ 146.806275][ T7036] RBP: 00007f641880e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 146.806290][ T7036] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000000 [ 146.806305][ T7036] R13: 0000000000000000 R14: 00007f64189a6080 R15: 00007fff2d869e08 [ 146.806334][ T7036] [ 149.175321][ T7060] Invalid ELF header magic: != ELF [ 150.200165][ T7072] Setting dangerous option i915.mitigations - tainting kernel [ 150.207707][ T7072] Bad "i915.mitigations=$", '$' is unknown [ 151.149794][ T7078] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 152.423866][ T7116] can: request_module (can-proto-0) failed. [ 152.934397][ T7131] netlink: 1220 bytes leftover after parsing attributes in process `syz.2.278'. [ 153.224931][ T7131] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 155.263247][ T7159] netlink: 206 bytes leftover after parsing attributes in process `syz.0.283'. [ 158.159896][ T7202] netlink: 8 bytes leftover after parsing attributes in process `syz.0.294'. [ 158.306895][ T30] audit: type=1800 audit(6038335206.553:3): pid=7204 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.295" name="dbroot" dev="configfs" ino=13949 res=0 errno=0 [ 158.361677][ T7204] db_root: cannot open: [ 158.383813][ T7209] netlink: 12 bytes leftover after parsing attributes in process `syz.0.296'. [ 158.676362][ T7157] kexec: Could not allocate control_code_buffer [ 158.930363][ T7218] netlink: 1220 bytes leftover after parsing attributes in process `syz.1.299'. [ 158.958934][ T7218] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 159.154307][ T7222] cifs: Unknown parameter 'no+ 1`rsFn)aHāh`9kA}1\D@.ZCg^' [ 159.317069][ T7220] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 159.440014][ T7228] netlink: 28 bytes leftover after parsing attributes in process `syz.2.301'. [ 159.818724][ T7245] netlink: 12 bytes leftover after parsing attributes in process `syz.3.307'. [ 160.883705][ T7259] netlink: 28 bytes leftover after parsing attributes in process `syz.1.311'. [ 161.081905][ T7259] mac80211_hwsim hwsim5 wlan1: entered allmulticast mode [ 164.432503][ T7294] bridge0: port 3(team0) entered blocking state [ 164.438816][ T7294] bridge0: port 3(team0) entered disabled state [ 164.516399][ T7294] team0: entered allmulticast mode [ 164.537452][ T7294] team_slave_0: entered allmulticast mode [ 164.585453][ T7294] team_slave_1: entered allmulticast mode [ 164.620364][ T7308] netlink: zone id is out of range [ 164.640960][ T7308] netlink: zone id is out of range [ 164.643041][ T7294] team0: entered promiscuous mode [ 164.651058][ T7308] netlink: zone id is out of range [ 164.666561][ T7308] netlink: zone id is out of range [ 164.679102][ T7308] netlink: zone id is out of range [ 164.681455][ T7294] team_slave_0: entered promiscuous mode [ 164.684231][ T7308] netlink: zone id is out of range [ 164.684245][ T7308] netlink: zone id is out of range [ 164.684257][ T7308] netlink: zone id is out of range [ 164.684268][ T7308] netlink: zone id is out of range [ 164.714974][ T7294] team_slave_1: entered promiscuous mode [ 164.729230][ T7308] netlink: zone id is out of range [ 164.750125][ T7294] bridge0: port 3(team0) entered blocking state [ 164.756749][ T7294] bridge0: port 3(team0) entered forwarding state [ 165.693224][ T7317] netlink: 194 bytes leftover after parsing attributes in process `syz.2.323'. [ 166.671849][ T5849] Bluetooth: hci1: unexpected event 0x1d length: 6 > 5 [ 167.256198][ T7335] netlink: 338 bytes leftover after parsing attributes in process `syz.2.326'. [ 167.407703][ T7337] netlink: 338 bytes leftover after parsing attributes in process `syz.2.326'. [ 167.908172][ T5849] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 167.924728][ T5849] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 169.740544][ T7365] netlink: 8 bytes leftover after parsing attributes in process `syz.0.331'. [ 171.411813][ T7410] sd 0:0:1:0: PR command failed: 1026 [ 171.457366][ T7410] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 171.498611][ T7410] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 171.618126][ T7419] netlink: 28 bytes leftover after parsing attributes in process `syz.0.340'. [ 171.881438][ T7419] veth0_macvtap: left promiscuous mode [ 172.166141][ T7429] netlink: 342 bytes leftover after parsing attributes in process `syz.0.343'. [ 172.738161][ T7444] netlink: 12 bytes leftover after parsing attributes in process `syz.0.347'. [ 172.984199][ T7451] ima: policy update failed [ 172.996267][ T30] audit: type=1802 audit(6038335221.243:4): pid=7451 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.350" res=0 errno=0 [ 173.323071][ T7439] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 173.868531][ T7449] kexec: Could not allocate control_code_buffer [ 174.118596][ T7475] netlink: 1220 bytes leftover after parsing attributes in process `syz.0.355'. [ 174.149099][ T7475] net_ratelimit: 21 callbacks suppressed [ 174.149123][ T7475] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 176.236905][ T7527] netlink: 1220 bytes leftover after parsing attributes in process `syz.0.367'. [ 176.266428][ T7527] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 177.752684][ T7558] FAULT_INJECTION: forcing a failure. [ 177.752684][ T7558] name failslab, interval 1, probability 0, space 0, times 0 [ 177.822817][ T7558] CPU: 0 UID: 0 PID: 7558 Comm: syz.1.374 Tainted: G U 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) [ 177.822866][ T7558] Tainted: [U]=USER [ 177.822875][ T7558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 177.822893][ T7558] Call Trace: [ 177.822902][ T7558] [ 177.822913][ T7558] dump_stack_lvl+0x16c/0x1f0 [ 177.822957][ T7558] should_fail_ex+0x512/0x640 [ 177.822987][ T7558] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 177.823026][ T7558] should_failslab+0xc2/0x120 [ 177.823060][ T7558] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 177.823096][ T7558] ? devinet_init_net+0xeb/0x910 [ 177.823141][ T7558] kmemdup_noprof+0x29/0x60 [ 177.823184][ T7558] devinet_init_net+0xeb/0x910 [ 177.823226][ T7558] ? __pfx_devinet_init_net+0x10/0x10 [ 177.823275][ T7558] ops_init+0x1df/0x5f0 [ 177.823315][ T7558] setup_net+0x21e/0x850 [ 177.823357][ T7558] ? __pfx_setup_net+0x10/0x10 [ 177.823394][ T7558] ? lockdep_init_map_type+0x5c/0x280 [ 177.823423][ T7558] ? __pfx_down_read_killable+0x10/0x10 [ 177.823471][ T7558] ? debug_mutex_init+0x37/0x70 [ 177.823512][ T7558] copy_net_ns+0x2a6/0x5f0 [ 177.823567][ T7558] create_new_namespaces+0x3ea/0xad0 [ 177.823627][ T7558] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 177.823669][ T7558] ksys_unshare+0x45b/0xa40 [ 177.823711][ T7558] ? __pfx_ksys_unshare+0x10/0x10 [ 177.823752][ T7558] ? xfd_validate_state+0x5d/0x180 [ 177.823784][ T7558] ? rcu_is_watching+0x12/0xc0 [ 177.823823][ T7558] __x64_sys_unshare+0x31/0x40 [ 177.823864][ T7558] do_syscall_64+0xcd/0x260 [ 177.823900][ T7558] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 177.823927][ T7558] RIP: 0033:0x7f4e9d38d169 [ 177.823947][ T7558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 177.823973][ T7558] RSP: 002b:00007f4e9e2a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 177.823998][ T7558] RAX: ffffffffffffffda RBX: 00007f4e9d5a5fa0 RCX: 00007f4e9d38d169 [ 177.824016][ T7558] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 177.824032][ T7558] RBP: 00007f4e9d40e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 177.824048][ T7558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 177.824064][ T7558] R13: 0000000000000000 R14: 00007f4e9d5a5fa0 R15: 00007fffb6685b88 [ 177.824093][ T7558] [ 178.272076][ T7556] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 178.799487][ T7569] FAULT_INJECTION: forcing a failure. [ 178.799487][ T7569] name failslab, interval 1, probability 0, space 0, times 0 [ 178.826052][ T7569] CPU: 0 UID: 0 PID: 7569 Comm: syz.0.376 Tainted: G U 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) [ 178.826098][ T7569] Tainted: [U]=USER [ 178.826107][ T7569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 178.826129][ T7569] Call Trace: [ 178.826137][ T7569] [ 178.826152][ T7569] dump_stack_lvl+0x16c/0x1f0 [ 178.826194][ T7569] should_fail_ex+0x512/0x640 [ 178.826223][ T7569] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 178.826273][ T7569] should_failslab+0xc2/0x120 [ 178.826306][ T7569] __kmalloc_cache_noprof+0x6a/0x3e0 [ 178.826351][ T7569] ? copy_net_ns+0x135/0x5f0 [ 178.826407][ T7569] copy_net_ns+0x135/0x5f0 [ 178.826446][ T7569] ? copy_cgroup_ns+0xa4/0x6f0 [ 178.826486][ T7569] create_new_namespaces+0x3ea/0xad0 [ 178.826534][ T7569] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 178.826579][ T7569] ksys_unshare+0x45b/0xa40 [ 178.826625][ T7569] ? __pfx_ksys_unshare+0x10/0x10 [ 178.826669][ T7569] ? xfd_validate_state+0x5d/0x180 [ 178.826702][ T7569] ? rcu_is_watching+0x12/0xc0 [ 178.826744][ T7569] __x64_sys_unshare+0x31/0x40 [ 178.826789][ T7569] do_syscall_64+0xcd/0x260 [ 178.826828][ T7569] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 178.826858][ T7569] RIP: 0033:0x7f641878d169 [ 178.826880][ T7569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 178.826907][ T7569] RSP: 002b:00007f64196ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 178.826934][ T7569] RAX: ffffffffffffffda RBX: 00007f64189a5fa0 RCX: 00007f641878d169 [ 178.826952][ T7569] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 178.826968][ T7569] RBP: 00007f641880e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 178.826984][ T7569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 178.827000][ T7569] R13: 0000000000000000 R14: 00007f64189a5fa0 R15: 00007fff2d869e08 [ 178.827029][ T7569] [ 179.661297][ T7586] netlink: 'syz.1.379': attribute type 2 has an invalid length. [ 179.740263][ T7588] netlink: 'syz.2.381': attribute type 4 has an invalid length. [ 180.080112][ T7598] netlink: 12 bytes leftover after parsing attributes in process `syz.0.386'. [ 180.215787][ T7601] netlink: 12 bytes leftover after parsing attributes in process `syz.0.387'. [ 181.843849][ T30] audit: type=1400 audit(6038335230.093:5): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=7631 comm="syz.0.394" [ 182.574282][ T7692] Invalid ELF header magic: != ELF [ 184.451270][ T7795] Invalid ELF header magic: != ELF [ 185.376244][ T7855] netlink: 1220 bytes leftover after parsing attributes in process `syz.1.411'. [ 185.385828][ T7855] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 185.888756][ T7869] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 187.675834][ T7897] FAULT_INJECTION: forcing a failure. [ 187.675834][ T7897] name failslab, interval 1, probability 0, space 0, times 0 [ 187.754605][ T7897] CPU: 0 UID: 0 PID: 7897 Comm: syz.2.417 Tainted: G U 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) [ 187.754639][ T7897] Tainted: [U]=USER [ 187.754646][ T7897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 187.754657][ T7897] Call Trace: [ 187.754663][ T7897] [ 187.754670][ T7897] dump_stack_lvl+0x16c/0x1f0 [ 187.754699][ T7897] should_fail_ex+0x512/0x640 [ 187.754720][ T7897] ? __kmalloc_noprof+0xbf/0x510 [ 187.754741][ T7897] ? __register_sysctl_table+0xea2/0x1900 [ 187.754765][ T7897] should_failslab+0xc2/0x120 [ 187.754787][ T7897] __kmalloc_noprof+0xd2/0x510 [ 187.754805][ T7897] ? __register_sysctl_table+0xe8e/0x1900 [ 187.754834][ T7897] __register_sysctl_table+0xea2/0x1900 [ 187.754862][ T7897] ? __pfx___register_sysctl_table+0x10/0x10 [ 187.754887][ T7897] ? is_module_address+0x2a/0x50 [ 187.754905][ T7897] ? register_net_sysctl_sz+0x228/0x3e0 [ 187.754936][ T7897] __devinet_sysctl_register+0x1b9/0x360 [ 187.754966][ T7897] ? __pfx___devinet_sysctl_register+0x10/0x10 [ 187.754991][ T7897] ? trace_kmalloc+0x2b/0xd0 [ 187.755016][ T7897] ? devinet_init_net+0xeb/0x910 [ 187.755041][ T7897] ? __asan_memcpy+0x3c/0x60 [ 187.755072][ T7897] devinet_init_net+0x347/0x910 [ 187.755098][ T7897] ? __pfx_devinet_init_net+0x10/0x10 [ 187.755124][ T7897] ops_init+0x1df/0x5f0 [ 187.755150][ T7897] setup_net+0x21e/0x850 [ 187.755196][ T7897] ? __pfx_setup_net+0x10/0x10 [ 187.755240][ T7897] ? lockdep_init_map_type+0x5c/0x280 [ 187.755260][ T7897] ? __pfx_down_read_killable+0x10/0x10 [ 187.755311][ T7897] ? debug_mutex_init+0x37/0x70 [ 187.755339][ T7897] copy_net_ns+0x2a6/0x5f0 [ 187.755371][ T7897] create_new_namespaces+0x3ea/0xad0 [ 187.755406][ T7897] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 187.755439][ T7897] ksys_unshare+0x45b/0xa40 [ 187.755474][ T7897] ? __pfx_ksys_unshare+0x10/0x10 [ 187.755506][ T7897] ? xfd_validate_state+0x5d/0x180 [ 187.755531][ T7897] ? rcu_is_watching+0x12/0xc0 [ 187.755561][ T7897] __x64_sys_unshare+0x31/0x40 [ 187.755594][ T7897] do_syscall_64+0xcd/0x260 [ 187.755626][ T7897] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.755647][ T7897] RIP: 0033:0x7fcd1278d169 [ 187.755664][ T7897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 187.755684][ T7897] RSP: 002b:00007fcd1358c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 187.755703][ T7897] RAX: ffffffffffffffda RBX: 00007fcd129a6080 RCX: 00007fcd1278d169 [ 187.755718][ T7897] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 187.755730][ T7897] RBP: 00007fcd1280e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 187.755743][ T7897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 187.755756][ T7897] R13: 0000000000000000 R14: 00007fcd129a6080 R15: 00007fff3e984be8 [ 187.755779][ T7897] [ 188.359417][ T7897] sysctl could not get directory: /net/ipv4/conf/default -12 [ 188.832384][ T7955] Line length is too long: Should be less than 4094 [ 188.927214][ T7963] netlink: 1220 bytes leftover after parsing attributes in process `syz.0.422'. [ 188.962735][ T7963] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 189.292095][ T7996] netlink: 4 bytes leftover after parsing attributes in process `syz.0.424'. [ 189.476808][ T5849] Bluetooth: hci3: unexpected subevent 0x01 length: 5 < 18 [ 189.612838][ T8022] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 190.529312][ T8074] netlink: 12 bytes leftover after parsing attributes in process `syz.1.426'. [ 191.040183][ T8091] can: request_module (can-proto-0) failed. [ 191.214888][ T8099] netlink: 1220 bytes leftover after parsing attributes in process `syz.1.432'. [ 191.242950][ T8099] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 192.265633][ T8170] netlink: 342 bytes leftover after parsing attributes in process `syz.1.435'. [ 194.434220][ T8295] sctp: [Deprecated]: syz.3.445 (pid 8295) Use of int in max_burst socket option deprecated. [ 194.434220][ T8295] Use struct sctp_assoc_value instead [ 195.610472][ T8359] Invalid ELF header magic: != ELF [ 195.801088][ T8350] ubi0: attaching mtd0 [ 195.845714][ T8350] ubi0: scanning is finished [ 195.872574][ T8350] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 196.139693][ T8350] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 196.824914][ T8437] FAULT_INJECTION: forcing a failure. [ 196.824914][ T8437] name failslab, interval 1, probability 0, space 0, times 0 [ 196.907966][ T8437] CPU: 1 UID: 0 PID: 8437 Comm: syz.2.457 Tainted: G U 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) [ 196.908016][ T8437] Tainted: [U]=USER [ 196.908025][ T8437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 196.908042][ T8437] Call Trace: [ 196.908051][ T8437] [ 196.908062][ T8437] dump_stack_lvl+0x16c/0x1f0 [ 196.908112][ T8437] should_fail_ex+0x512/0x640 [ 196.908143][ T8437] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 196.908195][ T8437] should_failslab+0xc2/0x120 [ 196.908230][ T8437] __kmalloc_cache_noprof+0x6a/0x3e0 [ 196.908279][ T8437] ? ip_vs_est_add_kthread+0x1d5/0x850 [ 196.908323][ T8437] ip_vs_est_add_kthread+0x1d5/0x850 [ 196.908367][ T8437] ip_vs_start_estimator+0x250/0x430 [ 196.908409][ T8437] ip_vs_control_net_init+0x158c/0x1d20 [ 196.908472][ T8437] __ip_vs_init+0x217/0x520 [ 196.908506][ T8437] ? __pfx___ip_vs_init+0x10/0x10 [ 196.908533][ T8437] ops_init+0x1df/0x5f0 [ 196.908571][ T8437] setup_net+0x21e/0x850 [ 196.908608][ T8437] ? __pfx_setup_net+0x10/0x10 [ 196.908643][ T8437] ? lockdep_init_map_type+0x5c/0x280 [ 196.908673][ T8437] ? __pfx_down_read_killable+0x10/0x10 [ 196.908738][ T8437] ? debug_mutex_init+0x37/0x70 [ 196.908783][ T8437] copy_net_ns+0x2a6/0x5f0 [ 196.908832][ T8437] create_new_namespaces+0x3ea/0xad0 [ 196.908887][ T8437] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 196.908934][ T8437] ksys_unshare+0x45b/0xa40 [ 196.908986][ T8437] ? __pfx_ksys_unshare+0x10/0x10 [ 196.909032][ T8437] ? xfd_validate_state+0x5d/0x180 [ 196.909078][ T8437] ? rcu_is_watching+0x12/0xc0 [ 196.909118][ T8437] __x64_sys_unshare+0x31/0x40 [ 196.909180][ T8437] do_syscall_64+0xcd/0x260 [ 196.909222][ T8437] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 196.909254][ T8437] RIP: 0033:0x7fcd1278d169 [ 196.909278][ T8437] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 196.909311][ T8437] RSP: 002b:00007fcd135ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 196.909340][ T8437] RAX: ffffffffffffffda RBX: 00007fcd129a5fa0 RCX: 00007fcd1278d169 [ 196.909359][ T8437] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 196.909379][ T8437] RBP: 00007fcd1280e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 196.909398][ T8437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 196.909415][ T8437] R13: 0000000000000000 R14: 00007fcd129a5fa0 R15: 00007fff3e984be8 [ 196.909449][ T8437] [ 197.711112][ T8497] FAULT_INJECTION: forcing a failure. [ 197.711112][ T8497] name failslab, interval 1, probability 0, space 0, times 0 [ 197.764512][ T8497] CPU: 0 UID: 0 PID: 8497 Comm: syz.2.459 Tainted: G U 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) [ 197.764562][ T8497] Tainted: [U]=USER [ 197.764571][ T8497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 197.764586][ T8497] Call Trace: [ 197.764594][ T8497] [ 197.764607][ T8497] dump_stack_lvl+0x16c/0x1f0 [ 197.764649][ T8497] should_fail_ex+0x512/0x640 [ 197.764677][ T8497] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 197.764712][ T8497] should_failslab+0xc2/0x120 [ 197.764744][ T8497] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 197.764775][ T8497] ? find_held_lock+0x2b/0x80 [ 197.764809][ T8497] ? skb_clone+0x190/0x3f0 [ 197.764851][ T8497] skb_clone+0x190/0x3f0 [ 197.764886][ T8497] netlink_broadcast_filtered+0xb19/0xf10 [ 197.764933][ T8497] ? sprintf+0xcc/0x100 [ 197.764965][ T8497] ? __pfx_netlink_broadcast_filtered+0x10/0x10 [ 197.765012][ T8497] ? netlink_has_listeners+0x20f/0x430 [ 197.765051][ T8497] netlink_broadcast+0x39/0x50 [ 197.765087][ T8497] kobject_uevent_env+0xc6a/0x1870 [ 197.765147][ T8497] nfs_netns_sysfs_setup+0x16f/0x1f0 [ 197.765189][ T8497] nfs_net_init+0x10a/0x300 [ 197.765237][ T8497] ? __pfx_nfs_net_init+0x10/0x10 [ 197.765281][ T8497] ops_init+0x1df/0x5f0 [ 197.765319][ T8497] setup_net+0x21e/0x850 [ 197.765362][ T8497] ? __pfx_setup_net+0x10/0x10 [ 197.765396][ T8497] ? lockdep_init_map_type+0x5c/0x280 [ 197.765427][ T8497] ? __pfx_down_read_killable+0x10/0x10 [ 197.765471][ T8497] ? debug_mutex_init+0x37/0x70 [ 197.765511][ T8497] copy_net_ns+0x2a6/0x5f0 [ 197.765557][ T8497] create_new_namespaces+0x3ea/0xad0 [ 197.765604][ T8497] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 197.765652][ T8497] ksys_unshare+0x45b/0xa40 [ 197.765701][ T8497] ? __pfx_ksys_unshare+0x10/0x10 [ 197.765744][ T8497] ? xfd_validate_state+0x5d/0x180 [ 197.765780][ T8497] ? rcu_is_watching+0x12/0xc0 [ 197.765821][ T8497] __x64_sys_unshare+0x31/0x40 [ 197.765867][ T8497] do_syscall_64+0xcd/0x260 [ 197.765905][ T8497] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 197.765936][ T8497] RIP: 0033:0x7fcd1278d169 [ 197.765958][ T8497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 197.765984][ T8497] RSP: 002b:00007fcd1356b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 197.766014][ T8497] RAX: ffffffffffffffda RBX: 00007fcd129a6160 RCX: 00007fcd1278d169 [ 197.766032][ T8497] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 197.766048][ T8497] RBP: 00007fcd1280e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 197.766065][ T8497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 197.766085][ T8497] R13: 0000000000000000 R14: 00007fcd129a6160 R15: 00007fff3e984be8 [ 197.766114][ T8497] [ 198.045247][ T8502] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 198.370126][ T8524] netlink: 1220 bytes leftover after parsing attributes in process `syz.0.463'. [ 198.379543][ T8524] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 198.679728][ T8544] Invalid ELF header magic: != ELF [ 199.225831][ T8579] FAULT_INJECTION: forcing a failure. [ 199.225831][ T8579] name failslab, interval 1, probability 0, space 0, times 0 [ 199.388906][ T8579] CPU: 1 UID: 0 PID: 8579 Comm: syz.3.467 Tainted: G U 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) [ 199.388963][ T8579] Tainted: [U]=USER [ 199.388973][ T8579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 199.388991][ T8579] Call Trace: [ 199.389000][ T8579] [ 199.389011][ T8579] dump_stack_lvl+0x16c/0x1f0 [ 199.389057][ T8579] should_fail_ex+0x512/0x640 [ 199.389088][ T8579] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 199.389139][ T8579] should_failslab+0xc2/0x120 [ 199.389177][ T8579] __kmalloc_cache_noprof+0x6a/0x3e0 [ 199.389241][ T8579] ? fuse_dev_alloc+0x8e/0x280 [ 199.389280][ T8579] ? kasan_save_track+0x14/0x30 [ 199.389314][ T8579] fuse_dev_alloc+0x8e/0x280 [ 199.389355][ T8579] fuse_dev_alloc_install+0x13/0x40 [ 199.389395][ T8579] cuse_channel_open+0x100/0x7f0 [ 199.389431][ T8579] ? __pfx_cuse_channel_open+0x10/0x10 [ 199.389468][ T8579] misc_open+0x35a/0x420 [ 199.389506][ T8579] ? __pfx_misc_open+0x10/0x10 [ 199.389545][ T8579] chrdev_open+0x231/0x6a0 [ 199.389575][ T8579] ? __pfx_apparmor_file_open+0x10/0x10 [ 199.389612][ T8579] ? __pfx_chrdev_open+0x10/0x10 [ 199.389647][ T8579] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 199.389705][ T8579] do_dentry_open+0x741/0x1c10 [ 199.389757][ T8579] ? __pfx_chrdev_open+0x10/0x10 [ 199.389798][ T8579] vfs_open+0x82/0x3f0 [ 199.389838][ T8579] path_openat+0x1e5e/0x2d40 [ 199.389878][ T8579] ? __pfx_path_openat+0x10/0x10 [ 199.389916][ T8579] do_filp_open+0x20b/0x470 [ 199.389946][ T8579] ? __pfx_do_filp_open+0x10/0x10 [ 199.389997][ T8579] ? alloc_fd+0x471/0x7d0 [ 199.390063][ T8579] do_sys_openat2+0x11b/0x1d0 [ 199.390101][ T8579] ? __pfx_do_sys_openat2+0x10/0x10 [ 199.390142][ T8579] ? do_fcntl+0x1eb/0x1590 [ 199.390193][ T8579] __x64_sys_openat+0x174/0x210 [ 199.390233][ T8579] ? __pfx___x64_sys_openat+0x10/0x10 [ 199.390275][ T8579] ? rcu_is_watching+0x12/0xc0 [ 199.390324][ T8579] do_syscall_64+0xcd/0x260 [ 199.390367][ T8579] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 199.390398][ T8579] RIP: 0033:0x7fd29e98d169 [ 199.390423][ T8579] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 199.390453][ T8579] RSP: 002b:00007fd29f812038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 199.390483][ T8579] RAX: ffffffffffffffda RBX: 00007fd29eba5fa0 RCX: 00007fd29e98d169 [ 199.390504][ T8579] RDX: 00000000001c1041 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 199.390523][ T8579] RBP: 00007fd29ea0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 199.390542][ T8579] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 199.390560][ T8579] R13: 0000000000000000 R14: 00007fd29eba5fa0 R15: 00007ffdbb512af8 [ 199.390594][ T8579] [ 199.911455][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.919954][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 201.037700][ T8672] netlink: 1220 bytes leftover after parsing attributes in process `syz.1.474'. [ 201.057645][ T8672] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 202.031942][ T30] audit: type=1326 audit(6038335258.279:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8688 comm="syz.1.477" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4e9d38d169 code=0x0 [ 202.420005][ T8722] netlink: 28 bytes leftover after parsing attributes in process `syz.2.481'. [ 206.011724][ T8922] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 206.741076][ T9018] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT [ 206.821489][ T9018] netlink: 'syz.0.496': attribute type 2 has an invalid length. [ 207.619474][ T9073] netlink: 12 bytes leftover after parsing attributes in process `syz.1.500'. [ 209.461022][ T9143] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 209.510289][ T9143] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 209.550655][ T9143] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 209.585672][ T9143] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 209.619423][ T9143] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 209.662501][ T9143] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 209.699422][ T9143] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 209.719858][ T9143] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 209.743433][ T9143] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 209.783344][ T9143] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 209.839832][ T9143] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 209.879119][ T9143] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 209.909536][ T9143] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 209.938457][ T9143] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 209.958647][ T9143] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 209.987720][ T9143] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 210.006810][ T9143] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 210.039472][ T9143] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 210.059499][ T9143] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 210.088355][ T9143] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 210.121730][ T9143] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 210.162466][ T9143] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 210.189401][ T9143] snd_aloop snd_aloop.0: Parsing timer source ')' failed with -22 [ 210.441009][ T9180] netlink: 342 bytes leftover after parsing attributes in process `syz.1.517'. [ 210.650873][ T9165] usbip-vudc usbip-vudc.0: gadget not bound [ 210.681381][ T9205] netlink: 4 bytes leftover after parsing attributes in process `syz.2.516'. [ 210.886752][ T9183] Invalid ELF header magic: != ELF [ 211.389034][ T9238] netlink: 28 bytes leftover after parsing attributes in process `syz.2.518'. [ 211.434884][ T9238] bridge0: port 2(bridge_slave_1) entered disabled state [ 211.572024][ T9238] bridge_slave_1 (unregistering): left allmulticast mode [ 211.603281][ T9238] bridge_slave_1 (unregistering): left promiscuous mode [ 211.671131][ T9238] bridge0: port 2(bridge_slave_1) entered disabled state [ 211.766159][ T9251] netlink: 'syz.3.521': attribute type 1 has an invalid length. [ 211.790182][ T9251] nbd: error processing sock list [ 211.853840][ T9255] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 212.614294][ T9306] netlink: 12 bytes leftover after parsing attributes in process `syz.2.529'. [ 213.136832][ T9353] netlink: 1220 bytes leftover after parsing attributes in process `syz.0.535'. [ 213.186497][ T9353] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 214.038456][ T9411] netlink: 8 bytes leftover after parsing attributes in process `syz.3.542'. [ 214.056737][ T9416] netlink: 12 bytes leftover after parsing attributes in process `syz.0.543'. [ 214.106026][ T9411] netlink: 8 bytes leftover after parsing attributes in process `syz.3.542'. [ 214.121179][ T9411] netlink: 8 bytes leftover after parsing attributes in process `syz.3.542'. [ 214.155925][ T9411] netlink: 8 bytes leftover after parsing attributes in process `syz.3.542'. [ 214.170124][ T9421] aoe: skb alloc failure [ 214.175994][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 214.189133][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 214.206406][ T9411] netlink: 8 bytes leftover after parsing attributes in process `syz.3.542'. [ 214.280976][ T9411] netlink: 8 bytes leftover after parsing attributes in process `syz.3.542'. [ 214.319300][ T9411] netlink: 8 bytes leftover after parsing attributes in process `syz.3.542'. [ 214.328324][ T9411] netlink: 8 bytes leftover after parsing attributes in process `syz.3.542'. [ 214.858024][ T9451] mkiss: ax0: crc mode is auto. [ 219.387917][ T9742] __nla_validate_parse: 27 callbacks suppressed [ 219.387939][ T9742] netlink: 206 bytes leftover after parsing attributes in process `syz.2.574'. [ 225.231696][ T9977] netlink: 206 bytes leftover after parsing attributes in process `syz.0.590'. [ 225.629402][ T9984] snd_aloop snd_aloop.0: Parsing timer source 'X' failed with -22 [ 225.759124][ T9990] netlink: 20 bytes leftover after parsing attributes in process `syz.0.592'. [ 226.312807][ T9995] could not allocate digest TFM handle [ 226.710721][T10052] FAULT_INJECTION: forcing a failure. [ 226.710721][T10052] name fail_futex, interval 1, probability 0, space 0, times 1 [ 226.769140][T10052] CPU: 0 UID: 0 PID: 10052 Comm: syz.3.595 Tainted: G U 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) [ 226.769193][T10052] Tainted: [U]=USER [ 226.769202][T10052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 226.769219][T10052] Call Trace: [ 226.769226][T10052] [ 226.769237][T10052] dump_stack_lvl+0x16c/0x1f0 [ 226.769279][T10052] should_fail_ex+0x512/0x640 [ 226.769316][T10052] ? __pfx___futex_wait+0x10/0x10 [ 226.769347][T10052] get_futex_key+0x49e/0x1000 [ 226.769388][T10052] ? __pfx_futex_wake_mark+0x10/0x10 [ 226.769414][T10052] ? __pfx_get_futex_key+0x10/0x10 [ 226.769461][T10052] futex_wake+0xe7/0x4e0 [ 226.769487][T10052] ? __pfx_futex_wake+0x10/0x10 [ 226.769517][T10052] ? vfs_write+0x316/0x1180 [ 226.769565][T10052] do_futex+0x1e3/0x350 [ 226.769606][T10052] ? __pfx_do_futex+0x10/0x10 [ 226.769653][T10052] __x64_sys_futex+0x1e0/0x4c0 [ 226.769695][T10052] ? fput+0x70/0xf0 [ 226.769724][T10052] ? __pfx___x64_sys_futex+0x10/0x10 [ 226.769766][T10052] ? ksys_write+0x1b9/0x240 [ 226.769808][T10052] ? __pfx_ksys_write+0x10/0x10 [ 226.769849][T10052] ? rcu_is_watching+0x12/0xc0 [ 226.769892][T10052] do_syscall_64+0xcd/0x260 [ 226.769929][T10052] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 226.769958][T10052] RIP: 0033:0x7fd29e98d169 [ 226.769981][T10052] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 226.770009][T10052] RSP: 002b:00007fd29f8120e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 226.770035][T10052] RAX: ffffffffffffffda RBX: 00007fd29eba5fa8 RCX: 00007fd29e98d169 [ 226.770053][T10052] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fd29eba5fac [ 226.770070][T10052] RBP: 00007fd29eba5fa0 R08: 00007fd29f813000 R09: 0000000000000000 [ 226.770088][T10052] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007fd29eba5fac [ 226.770106][T10052] R13: 0000000000000000 R14: 00007ffdbb512a10 R15: 00007ffdbb512af8 [ 226.770134][T10052] [ 227.163317][ T9995] netlink: 28 bytes leftover after parsing attributes in process `syz.2.594'. [ 227.407537][T10082] vivid-003: ================= START STATUS ================= [ 227.455884][T10082] vivid-003: Radio HW Seek Mode: Bounded [ 227.465209][T10082] vivid-003: Radio Programmable HW Seek: false [ 227.512519][T10082] vivid-003: RDS Rx I/O Mode: Block I/O [ 227.518184][T10082] vivid-003: Generate RBDS Instead of RDS: false [ 227.589069][T10082] vivid-003: RDS Reception: true [ 227.627433][T10082] vivid-003: RDS Program Type: 0 inactive [ 227.660656][T10082] vivid-003: RDS PS Name: inactive [ 227.665961][T10082] vivid-003: RDS Radio Text: inactive [ 227.673639][T10082] vivid-003: RDS Traffic Announcement: false inactive [ 227.689472][T10082] vivid-003: RDS Traffic Program: false inactive [ 227.695943][T10082] vivid-003: RDS Music: false inactive [ 227.736346][T10093] netlink: 338 bytes leftover after parsing attributes in process `syz.3.597'. [ 227.812173][T10082] vivid-003: ================== END STATUS ================== [ 227.894057][T10107] netlink: 338 bytes leftover after parsing attributes in process `syz.3.597'. [ 228.044304][T10082] netlink: 290 bytes leftover after parsing attributes in process `syz.3.597'. [ 228.079960][T10082] veth0_macvtap: left promiscuous mode [ 228.394693][T10146] snd_aloop snd_aloop.0: Parsing timer source 'X' failed with -22 [ 229.664196][T10181] netlink: 28 bytes leftover after parsing attributes in process `syz.0.605'. [ 230.886675][T10206] netlink: 28 bytes leftover after parsing attributes in process `syz.2.611'. [ 230.897089][T10206] veth0_macvtap: left promiscuous mode [ 230.923855][T10206] macvtap0: entered promiscuous mode [ 230.940705][T10206] macvtap0: entered allmulticast mode [ 231.445428][ T5150] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 231.474889][ T5150] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 231.483421][ T5150] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 231.495200][ T5150] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 231.518039][ T5150] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 231.876147][T10056] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.111191][T10056] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.328174][T10056] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.404449][T10241] netlink: 4 bytes leftover after parsing attributes in process `syz.0.616'. [ 232.527032][T10056] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.981106][T10226] chnl_net:caif_netlink_parms(): no params data found [ 233.373559][T10056] bridge_slave_1: left allmulticast mode [ 233.403224][T10056] bridge_slave_1: left promiscuous mode [ 233.420960][T10056] bridge0: port 2(bridge_slave_1) entered disabled state [ 233.520816][T10056] bridge_slave_0: left allmulticast mode [ 233.526733][T10056] bridge_slave_0: left promiscuous mode [ 233.567475][T10056] bridge0: port 1(bridge_slave_0) entered disabled state [ 233.589062][ T5849] Bluetooth: hci0: command tx timeout [ 234.275148][T10056] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 234.298159][T10056] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 234.324121][T10056] bond0 (unregistering): Released all slaves [ 234.500721][T10226] bridge0: port 1(bridge_slave_0) entered blocking state [ 234.523013][T10226] bridge0: port 1(bridge_slave_0) entered disabled state [ 234.555208][T10226] bridge_slave_0: entered allmulticast mode [ 234.574426][T10226] bridge_slave_0: entered promiscuous mode [ 234.598806][T10226] bridge0: port 2(bridge_slave_1) entered blocking state [ 234.618508][T10226] bridge0: port 2(bridge_slave_1) entered disabled state [ 234.643445][T10226] bridge_slave_1: entered allmulticast mode [ 234.661773][T10226] bridge_slave_1: entered promiscuous mode [ 234.830584][T10226] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 234.919693][T10226] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 235.163412][T10226] team0: Port device team_slave_0 added [ 235.236209][T10226] team0: Port device team_slave_1 added [ 235.349165][T10226] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 235.356213][T10226] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 235.401375][T10226] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 235.475547][T10226] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 235.492894][T10226] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 235.553413][T10226] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 235.644686][T10056] hsr_slave_0: left promiscuous mode [ 235.651433][T10056] hsr_slave_1: left promiscuous mode [ 235.657581][T10056] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 235.669732][ T5849] Bluetooth: hci0: command tx timeout [ 235.673490][T10056] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 235.686214][T10056] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 235.696622][T10056] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 235.718296][T10056] veth1_macvtap: left promiscuous mode [ 235.724576][T10056] veth0_macvtap: left promiscuous mode [ 235.731614][T10056] veth1_vlan: left promiscuous mode [ 235.737094][T10056] veth0_vlan: left promiscuous mode [ 236.161134][T10056] team0 (unregistering): Port device team_slave_1 removed [ 236.197586][T10056] team0 (unregistering): Port device team_slave_0 removed [ 236.615861][T10640] netlink: 206 bytes leftover after parsing attributes in process `syz.3.626'. [ 236.731884][T10226] hsr_slave_0: entered promiscuous mode [ 236.776375][T10226] hsr_slave_1: entered promiscuous mode [ 236.805914][T10226] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 236.814363][T10226] Cannot create hsr debugfs directory [ 237.245878][T10226] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 237.274641][T10226] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 237.312961][T10226] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 237.353081][T10226] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 237.528782][T10226] 8021q: adding VLAN 0 to HW filter on device bond0 [ 237.581591][T10226] 8021q: adding VLAN 0 to HW filter on device team0 [ 237.628422][ T6520] bridge0: port 1(bridge_slave_0) entered blocking state [ 237.635615][ T6520] bridge0: port 1(bridge_slave_0) entered forwarding state [ 237.695097][ T82] bridge0: port 2(bridge_slave_1) entered blocking state [ 237.702281][ T82] bridge0: port 2(bridge_slave_1) entered forwarding state [ 237.727602][T10682] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 237.739494][T10682] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 237.755066][ T5849] Bluetooth: hci0: command tx timeout [ 238.061045][T10226] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 238.547675][T10226] veth0_vlan: entered promiscuous mode [ 238.576171][T10226] veth1_vlan: entered promiscuous mode [ 238.641461][T10226] veth0_macvtap: entered promiscuous mode [ 238.660426][T10226] veth1_macvtap: entered promiscuous mode [ 238.708441][T10226] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 238.742550][T10226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 238.779141][T10226] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 238.809185][T10226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 238.839652][T10226] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 238.860793][T10226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 238.874298][T10226] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 238.950414][T10226] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 238.979206][T10226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 239.005250][T10226] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 239.029357][T10226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 239.050226][T10226] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 239.084619][T10812] FAULT_INJECTION: forcing a failure. [ 239.084619][T10812] name fail_futex, interval 1, probability 0, space 0, times 0 [ 239.103237][T10226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 239.156358][T10812] CPU: 0 UID: 0 PID: 10812 Comm: syz.2.638 Tainted: G U 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) [ 239.156406][T10812] Tainted: [U]=USER [ 239.156415][T10812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 239.156431][T10812] Call Trace: [ 239.156438][T10812] [ 239.156448][T10812] dump_stack_lvl+0x16c/0x1f0 [ 239.156490][T10812] should_fail_ex+0x512/0x640 [ 239.156518][T10812] ? kasan_save_track+0x14/0x30 [ 239.156550][T10812] get_futex_key+0x49e/0x1000 [ 239.156583][T10812] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.156610][T10812] ? __pfx_get_futex_key+0x10/0x10 [ 239.156649][T10812] futex_wake+0xe7/0x4e0 [ 239.156674][T10812] ? __pfx_futex_wake+0x10/0x10 [ 239.156708][T10812] ? rcu_is_watching+0x12/0xc0 [ 239.156747][T10812] do_futex+0x1e3/0x350 [ 239.156786][T10812] ? __pfx_do_futex+0x10/0x10 [ 239.156824][T10812] ? putname+0x154/0x1a0 [ 239.156858][T10812] __x64_sys_futex+0x1e0/0x4c0 [ 239.156902][T10812] ? __pfx___x64_sys_futex+0x10/0x10 [ 239.156955][T10812] do_syscall_64+0xcd/0x260 [ 239.156994][T10812] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.157023][T10812] RIP: 0033:0x7fcd1278d169 [ 239.157053][T10812] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 239.157082][T10812] RSP: 002b:00007fcd135ad0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 239.157110][T10812] RAX: ffffffffffffffda RBX: 00007fcd129a5fa8 RCX: 00007fcd1278d169 [ 239.157129][T10812] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fcd129a5fac [ 239.157146][T10812] RBP: 00007fcd129a5fa0 R08: 00007fcd135ae000 R09: 0000000000000000 [ 239.157163][T10812] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcd129a5fac [ 239.157180][T10812] R13: 0000000000000000 R14: 00007fff3e984b00 R15: 00007fff3e984be8 [ 239.157210][T10812] [ 239.416552][T10226] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 239.486935][T10226] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 239.495950][T10226] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 239.527114][T10226] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 239.564943][T10226] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 239.829105][ T5849] Bluetooth: hci0: command tx timeout [ 240.050330][ T82] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 240.064853][ T82] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 240.119850][ T6520] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 240.127800][ T6520] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 240.791384][T10881] Console: switching to colour VGA+ 80x25 [ 241.078097][T10881] Console: switching to colour frame buffer device 128x48 [ 242.314396][T10976] netlink: 1220 bytes leftover after parsing attributes in process `syz.4.649'. [ 242.339078][T10976] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 242.778879][T10982] netlink: 206 bytes leftover after parsing attributes in process `syz.4.651'. [ 243.030895][T10974] Setting dangerous option i915.mitigations - tainting kernel [ 243.038611][T10974] Bad "i915.mitigations=$", '$' is unknown [ 245.464051][T11108] netlink: 206 bytes leftover after parsing attributes in process `syz.0.660'. [ 245.737948][T11147] CIFS: VFS: Unsupported security flags: 0x200 [ 246.521528][T11217] netlink: 'syz.0.669': attribute type 27 has an invalid length. [ 246.537708][T11217] netlink: 334 bytes leftover after parsing attributes in process `syz.0.669'. [ 247.177350][T11186] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 247.239952][T11186] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 247.303326][T11186] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 247.360383][T11186] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 247.466027][T11186] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 247.623537][T11186] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 247.727517][T11291] netlink: 1220 bytes leftover after parsing attributes in process `syz.2.673'. [ 247.762500][T11291] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 247.780469][T11292] netlink: 4 bytes leftover after parsing attributes in process `syz.0.672'. [ 249.029128][ T5849] Bluetooth: hci1: command 0x0c1a tx timeout [ 249.283341][ T5849] Bluetooth: hci3: command 0x0c1a tx timeout [ 249.283713][ T5150] Bluetooth: hci2: command 0x0c1a tx timeout [ 249.429073][ T5150] Bluetooth: hci0: command 0x0c1a tx timeout [ 251.392926][T11450] Invalid ELF header magic: != ELF [ 251.509021][ T5150] Bluetooth: hci0: command 0x0c1a tx timeout [ 252.833624][T11494] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 253.596755][ T5150] Bluetooth: hci0: command 0x0c1a tx timeout [ 253.860350][T11559] snd_aloop snd_aloop.0: Parsing timer source 'X' failed with -22 [ 256.674350][T11661] netlink: 1220 bytes leftover after parsing attributes in process `syz.0.715'. [ 256.683512][T11661] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 257.227562][T11695] netlink: 'syz.0.717': attribute type 1 has an invalid length. [ 257.713640][T11727] netlink: 294 bytes leftover after parsing attributes in process `syz.2.719'. [ 258.304614][T11762] netlink: 20 bytes leftover after parsing attributes in process `syz.0.722'. [ 258.586301][T11772] netlink: 1220 bytes leftover after parsing attributes in process `syz.4.725'. [ 258.615313][T11772] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 260.304530][T11862] netlink: 1220 bytes leftover after parsing attributes in process `syz.2.736'. [ 260.363235][T11862] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 260.643360][T11866] netlink: 4 bytes leftover after parsing attributes in process `syz.3.737'. [ 260.660051][ T5150] Bluetooth: hci0: unexpected event 0x0f length: 726 > 4 [ 260.660100][ T5150] Bluetooth: hci0: unexpected event for opcode 0xaab2 [ 261.045662][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 261.052201][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 261.779404][T11922] snd_aloop snd_aloop.0: Parsing timer source 'X' failed with -22 [ 261.822413][T11936] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 262.137533][T11936] CIFS mount error: No usable UNC path provided in device string! [ 262.137533][T11936] [ 262.161225][T11936] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 263.030178][T11990] snd_aloop snd_aloop.0: Parsing timer source 'X' failed with -22 [ 264.948194][T12147] netlink: 1220 bytes leftover after parsing attributes in process `syz.4.759'. [ 265.013279][T12147] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 266.742027][T12259] netlink: 1220 bytes leftover after parsing attributes in process `syz.3.772'. [ 266.760241][T12259] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 268.030263][T12332] Invalid ELF header magic: != ELF [ 268.249358][T12306] netlink: 'syz.4.778': attribute type 1 has an invalid length. [ 268.257138][T12306] netlink: 33 bytes leftover after parsing attributes in process `syz.4.778'. [ 270.067576][T12362] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8 [ 270.748062][T12393] netlink: 12 bytes leftover after parsing attributes in process `syz.0.789'. [ 270.896166][T12397] ptrace attach of "./syz-executor exec"[10226] was attempted by ""[12397] [ 271.775552][T12432] netlink: 1220 bytes leftover after parsing attributes in process `syz.2.796'. [ 271.810320][T12432] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 272.969088][ T30] audit: type=1326 audit(4294967321.500:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12468 comm="syz.0.801" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f641878d169 code=0x0 [ 274.534689][T12566] Invalid ELF header magic: != ELF [ 275.222163][T12621] [ 275.224546][T12621] ====================================================== [ 275.231615][T12621] WARNING: possible circular locking dependency detected [ 275.238647][T12621] 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 Tainted: G U [ 275.246981][T12621] ------------------------------------------------------ [ 275.254008][T12621] syz.2.814/12621 is trying to acquire lock: [ 275.259999][T12621] ffff888143331958 (&q->elevator_lock){+.+.}-{4:4}, at: queue_requests_store+0x1c7/0x310 [ 275.269895][T12621] [ 275.269895][T12621] but task is already holding lock: [ 275.277280][T12621] ffff888143331428 (&q->q_usage_counter(io)#29){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20 [ 275.288583][T12621] [ 275.288583][T12621] which lock already depends on the new lock. [ 275.288583][T12621] [ 275.299010][T12621] [ 275.299010][T12621] the existing dependency chain (in reverse order) is: [ 275.308036][T12621] [ 275.308036][T12621] -> #2 (&q->q_usage_counter(io)#29){++++}-{0:0}: [ 275.316674][T12621] blk_alloc_queue+0x619/0x760 [ 275.321995][T12621] blk_mq_alloc_queue+0x179/0x290 [ 275.327561][T12621] __blk_mq_alloc_disk+0x29/0x120 [ 275.333137][T12621] loop_add+0x496/0xb70 [ 275.337855][T12621] loop_init+0x164/0x270 [ 275.342631][T12621] do_one_initcall+0x120/0x6e0 [ 275.347945][T12621] kernel_init_freeable+0x5c2/0x900 [ 275.353698][T12621] kernel_init+0x1c/0x2b0 [ 275.358574][T12621] ret_from_fork+0x45/0x80 [ 275.363531][T12621] ret_from_fork_asm+0x1a/0x30 [ 275.368849][T12621] [ 275.368849][T12621] -> #1 (fs_reclaim){+.+.}-{0:0}: [ 275.376086][T12621] fs_reclaim_acquire+0x102/0x150 [ 275.381660][T12621] blk_mq_alloc_and_init_hctx+0x503/0x11c0 [ 275.388015][T12621] blk_mq_realloc_hw_ctxs+0x8f6/0xc00 [ 275.393947][T12621] blk_mq_init_allocated_queue+0x3af/0x1230 [ 275.400393][T12621] blk_mq_alloc_queue+0x1c2/0x290 [ 275.405963][T12621] __blk_mq_alloc_disk+0x29/0x120 [ 275.411528][T12621] loop_add+0x496/0xb70 [ 275.416242][T12621] loop_init+0x164/0x270 [ 275.421024][T12621] do_one_initcall+0x120/0x6e0 [ 275.426339][T12621] kernel_init_freeable+0x5c2/0x900 [ 275.432086][T12621] kernel_init+0x1c/0x2b0 [ 275.436969][T12621] ret_from_fork+0x45/0x80 [ 275.441922][T12621] ret_from_fork_asm+0x1a/0x30 [ 275.447236][T12621] [ 275.447236][T12621] -> #0 (&q->elevator_lock){+.+.}-{4:4}: [ 275.455082][T12621] __lock_acquire+0x1173/0x1ba0 [ 275.460487][T12621] lock_acquire+0x179/0x350 [ 275.465519][T12621] __mutex_lock+0x199/0xb90 [ 275.470564][T12621] queue_requests_store+0x1c7/0x310 [ 275.476301][T12621] queue_attr_store+0x270/0x310 [ 275.481689][T12621] sysfs_kf_write+0x117/0x170 [ 275.486907][T12621] kernfs_fop_write_iter+0x351/0x510 [ 275.492732][T12621] iter_file_splice_write+0x91c/0x1150 [ 275.498741][T12621] direct_splice_actor+0x18f/0x6c0 [ 275.504397][T12621] splice_direct_to_actor+0x342/0xa30 [ 275.510315][T12621] do_splice_direct+0x174/0x240 [ 275.515709][T12621] do_sendfile+0xafd/0xe50 [ 275.520663][T12621] __x64_sys_sendfile64+0x1d8/0x220 [ 275.526400][T12621] do_syscall_64+0xcd/0x260 [ 275.531436][T12621] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.537860][T12621] [ 275.537860][T12621] other info that might help us debug this: [ 275.537860][T12621] [ 275.548090][T12621] Chain exists of: [ 275.548090][T12621] &q->elevator_lock --> fs_reclaim --> &q->q_usage_counter(io)#29 [ 275.548090][T12621] [ 275.561881][T12621] Possible unsafe locking scenario: [ 275.561881][T12621] [ 275.569336][T12621] CPU0 CPU1 [ 275.574706][T12621] ---- ---- [ 275.580084][T12621] lock(&q->q_usage_counter(io)#29); [ 275.585478][T12621] lock(fs_reclaim); [ 275.591994][T12621] lock(&q->q_usage_counter(io)#29); [ 275.599927][T12621] lock(&q->elevator_lock); [ 275.604534][T12621] [ 275.604534][T12621] *** DEADLOCK *** [ 275.604534][T12621] [ 275.612685][T12621] 5 locks held by syz.2.814/12621: [ 275.617802][T12621] #0: ffff8880365ae420 (sb_writers#7){.+.+}-{0:0}, at: splice_direct_to_actor+0x342/0xa30 [ 275.627863][T12621] #1: ffff888052691088 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510 [ 275.637641][T12621] #2: ffff8881433033c8 (kn->active#179){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510 [ 275.647783][T12621] #3: ffff888143331428 (&q->q_usage_counter(io)#29){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20 [ 275.659494][T12621] #4: ffff888143331460 (&q->q_usage_counter(queue)#21){+.+.}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20 [ 275.671478][T12621] [ 275.671478][T12621] stack backtrace: [ 275.677372][T12621] CPU: 1 UID: 0 PID: 12621 Comm: syz.2.814 Tainted: G U 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) [ 275.677409][T12621] Tainted: [U]=USER [ 275.677417][T12621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 275.677431][T12621] Call Trace: [ 275.677438][T12621] [ 275.677448][T12621] dump_stack_lvl+0x116/0x1f0 [ 275.677482][T12621] print_circular_bug+0x275/0x350 [ 275.677522][T12621] check_noncircular+0x14c/0x170 [ 275.677563][T12621] __lock_acquire+0x1173/0x1ba0 [ 275.677605][T12621] ? __lock_acquire+0xaa4/0x1ba0 [ 275.677644][T12621] lock_acquire+0x179/0x350 [ 275.677665][T12621] ? queue_requests_store+0x1c7/0x310 [ 275.677697][T12621] ? __pfx___might_resched+0x10/0x10 [ 275.677734][T12621] __mutex_lock+0x199/0xb90 [ 275.677764][T12621] ? queue_requests_store+0x1c7/0x310 [ 275.677795][T12621] ? mark_held_locks+0x49/0x80 [ 275.677832][T12621] ? queue_requests_store+0x1c7/0x310 [ 275.677863][T12621] ? __pfx___mutex_lock+0x10/0x10 [ 275.677896][T12621] ? blk_mq_freeze_queue_wait+0xad/0x1b0 [ 275.677925][T12621] ? __pfx_autoremove_wake_function+0x10/0x10 [ 275.677965][T12621] ? queue_requests_store+0x1c7/0x310 [ 275.678008][T12621] queue_requests_store+0x1c7/0x310 [ 275.678037][T12621] ? __pfx_queue_requests_store+0x10/0x10 [ 275.678067][T12621] ? __mutex_trylock_common+0xe9/0x250 [ 275.678090][T12621] ? __pfx_queue_requests_store+0x10/0x10 [ 275.678118][T12621] queue_attr_store+0x270/0x310 [ 275.678150][T12621] ? __pfx_queue_attr_store+0x10/0x10 [ 275.678176][T12621] ? __lock_acquire+0x5ca/0x1ba0 [ 275.678214][T12621] ? kernfs_fop_write_iter+0x28f/0x510 [ 275.678251][T12621] ? __pfx_queue_attr_store+0x10/0x10 [ 275.678277][T12621] sysfs_kf_write+0x117/0x170 [ 275.678310][T12621] kernfs_fop_write_iter+0x351/0x510 [ 275.678340][T12621] ? __pfx_sysfs_kf_write+0x10/0x10 [ 275.678374][T12621] iter_file_splice_write+0x91c/0x1150 [ 275.678418][T12621] ? __pfx_iter_file_splice_write+0x10/0x10 [ 275.678457][T12621] ? __pfx_copy_splice_read+0x10/0x10 [ 275.678497][T12621] ? __pfx_iter_file_splice_write+0x10/0x10 [ 275.678535][T12621] direct_splice_actor+0x18f/0x6c0 [ 275.678572][T12621] splice_direct_to_actor+0x342/0xa30 [ 275.678608][T12621] ? __pfx_direct_splice_actor+0x10/0x10 [ 275.678646][T12621] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 275.678684][T12621] do_splice_direct+0x174/0x240 [ 275.678719][T12621] ? __pfx_do_splice_direct+0x10/0x10 [ 275.678754][T12621] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 275.678790][T12621] ? rw_verify_area+0xcf/0x680 [ 275.678822][T12621] do_sendfile+0xafd/0xe50 [ 275.678856][T12621] ? __pfx_do_sendfile+0x10/0x10 [ 275.678902][T12621] ? __x64_sys_futex+0x1e0/0x4c0 [ 275.678961][T12621] ? __x64_sys_futex+0x1e9/0x4c0 [ 275.678999][T12621] __x64_sys_sendfile64+0x1d8/0x220 [ 275.679025][T12621] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 275.679052][T12621] ? rcu_is_watching+0x12/0xc0 [ 275.679085][T12621] do_syscall_64+0xcd/0x260 [ 275.679117][T12621] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.679147][T12621] RIP: 0033:0x7fcd1278d169 [ 275.679167][T12621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 275.679191][T12621] RSP: 002b:00007fcd135ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 275.679214][T12621] RAX: ffffffffffffffda RBX: 00007fcd129a5fa0 RCX: 00007fcd1278d169 [ 275.679230][T12621] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000004 [ 275.679245][T12621] RBP: 00007fcd1280e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 275.679259][T12621] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000 [ 275.679274][T12621] R13: 0000000000000000 R14: 00007fcd129a5fa0 R15: 00007fff3e984be8 [ 275.679295][T12621]