last executing test programs: 7.55590689s ago: executing program 2 (id=1251): r0 = socket(0x2, 0x801, 0x100) connect$auto(0x3, &(0x7f00000000c0), 0x55) connect$auto(0x3, &(0x7f00000000c0), 0x55) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) r2 = prctl$auto_PR_GET_TSC(0x19, 0xfff, 0x0, 0x0, 0x10000) read$auto_proc_mountinfo_operations_mnt_namespace(r2, &(0x7f0000000280)=""/28, 0x1c) r3 = socket(0x11, 0x3, 0x9) r4 = prctl$auto_PR_SET_MM_START_BRK(0x90e6, 0x6, 0x0, 0x8, 0x9) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), r4) r5 = syz_genetlink_get_family_id$auto_hsr(&(0x7f0000000140), r0) mmap$auto(0x0, 0x20009, 0x20000000000000e2, 0xeb1, 0x405, 0x8000) r6 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/mixer\x00', 0x40000, 0x0) ioctl$auto_SOUND_MIXER_WRITE_RECSRC(r6, 0xc0044dff, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x6c, r5, 0x100, 0x70bd26, 0x25dfdbfb, {}, [@HSR_A_IF2_AGE={0x8}, @HSR_A_NODE_ADDR={0xa, 0x1, @local}, @HSR_A_NODE_ADDR_B={0xa, 0x5, @link_local}, @HSR_A_IF2_SEQ={0x6}, @HSR_A_NODE_ADDR={0xa, 0x1, @multicast}, @HSR_A_IF1_SEQ={0x6, 0x6, 0x4}, @HSR_A_IFINDEX={0x8, 0x2, r1}, @HSR_A_IF2_AGE={0x8, 0x4, 0x5}, @HSR_A_NODE_ADDR_B={0xa, 0x5, @multicast}]}, 0x6c}, 0x1, 0x0, 0x0, 0x800}, 0x40) sendmmsg$auto(r3, &(0x7f0000000400)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000440), 0x49}, 0x1, &(0x7f0000000200), 0x5, 0x3}, 0x5}, 0x2, 0x100) 7.185299764s ago: executing program 2 (id=1252): close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x2, 0x80002, 0x73) r1 = socket(0x1d, 0x800, 0x84) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, 0x0, 0x4000000) connect$auto(r1, 0x0, 0x54) setsockopt$auto(0x3, 0x10000000084, 0x25, 0x0, 0x90) pwrite64$auto(r0, 0x0, 0x6, 0x100000003) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, r0, 0x1008000) openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, 0x0, 0x902, 0x0) close_range$auto(0x2, 0xa, 0x0) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x6, 0x4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x62c00, 0x0) openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000400), 0x80001, 0x0) getcwd$auto(0x0, 0x8) 6.458481728s ago: executing program 0 (id=1256): unshare$auto(0x40000080) madvise$auto(0x5, 0x7fffffffffffffff, 0x7) mmap$auto(0xfe, 0xffffffffffffff9a, 0x4, 0x1ff, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) epoll_create$auto(0x4) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0) socket(0x11, 0x80003, 0x300) socket(0x25, 0x1, 0x1) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/input/devices\x00', 0x4a040, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fd, 0x8, 0xd, 0x1, 0x948b, 0x2, 0x15f4da0b, 0x6, 0x80000000080, 0x1fffe000000000, 0x80000001, 0x5, 0x6d3c, 0x200000000000005, 0x2]}, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) mlock$auto(0x7c89, 0x47fff) 5.930854437s ago: executing program 3 (id=1259): r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, 0x0, 0x222002, 0x0) pwrite64$auto(0xc8, 0x0, 0xfdef, 0x3) write$auto(0xca, &(0x7f0000001140)='\x04>\x00\x02\x18\x00\x00\xd3b\x01\xbd\x9b@\xb0\x00\x00\x00\x84\xa2\\\x15\xc4>\xa9\x82,\x95\xeeH\xf8}v\xb3\xcb(\xa90Abe\xc3\x8c\xcc\xe7\xb8\x00F\x89#\xb4\xf0F\xa1Gd\xb5\x8f\x9dZ~\xea\xa3\x93\xc2\x04\xe1;b\x99\x97}Z\x7f\x0f\x90\xce\x85-e\xb6n\xbc\xc6=\xf8\xce\xe7\x1e]\x85|\xce\xd7L\x9b\xd3lb\xc5\xee\xdb\xcb\xbb\xd8\xd9\xd3\xf8 \xe9e\xe5\x80\x1c', 0x10) preadv2$auto(r0, &(0x7f0000000300)={0x0, 0xc343}, 0x9, 0x3, 0x8000000000000000, 0x784) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x20a42, 0x0) write$auto(r1, &(0x7f00000000c0)='\x04>2\x04!\xe2\x00\x94\xf2\xa2\x00\x00', 0x7e) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000580)='/sys/kernel/debug/tracing/tracing_cpumask\x00', 0x8002, 0x0) read$auto(r2, 0x0, 0x80) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xc0000, 0x0) socket(0x11, 0x3, 0x2) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x1, 0xd, 0x3000, 0x5, 0x4, 0x7fffffff, 0xffffffffffffffff, [], {0x6, 0x6, 0x3b5a, 0x21f, 0x102, 0x7ffffffb, 0x101, 0x8, 0x3}, {0x100, 0x1, 0x52, 0x405, 0x2, 0x60, 0x76c5, 0x8, 0x100000000}}) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) msgget$auto(0xc, 0x9) 5.666545342s ago: executing program 3 (id=1260): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) ioctl$auto(0xc8, 0x800454df, 0x2000000000000acd) migrate_pages$auto(0x0, 0xfffffffffffffffb, 0x0, &(0x7f00000001c0)=0x7) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x9) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio\x00', 0x0, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0) read$auto(r1, 0x0, 0x6) write$auto(0xffffffffffffffff, &(0x7f0000000040)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x5) unshare$auto(0x40000080) ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f00000001c0)) read$auto(r0, 0x0, 0x9) 5.56294543s ago: executing program 0 (id=1261): mmap$auto(0x0, 0x400008, 0xb, 0x9b72, 0x2, 0x8000) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x2000c041) r0 = socket(0x2a, 0x1, 0x0) ioprio_set$auto(0x6, 0x0, 0x8) connect$auto(r0, &(0x7f0000000000)=@can, 0x8) recvfrom$auto(r0, 0x0, 0xa, 0x6, 0x0, 0xfffffffffffffffd) fcntl$auto(0xffffffffffffffff, 0x401, 0x5) unshare$auto(0x40000080) r1 = socket(0xa, 0x3, 0x3a) epoll_wait$auto(r0, 0x0, 0x7ff, 0x6) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000100), r1) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0xca, 0x0, 0x567) r2 = openat$auto_tracing_mark_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_marker\x00', 0x201, 0x0) writev$auto(r2, &(0x7f0000001040)={0x0, 0x7fff}, 0x9) 5.542018274s ago: executing program 2 (id=1262): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC1D1p\x00', 0x80, 0x0) socket(0x2b, 0x1, 0x0) r0 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) socket$nl_generic(0x10, 0x3, 0x10) socket(0x26, 0x80805, 0x0) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) pidfd_getfd$auto(0x3, 0x1, 0x100000000) bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r2, r1, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc) bpf$auto(0x1, &(0x7f00000001c0)=@raw_tracepoint={0x5, r0, 0x0, 0x6}, 0xc) 5.324297046s ago: executing program 2 (id=1264): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/platform/snd_aloop.0/sound/card1/id\x00', 0x48a22, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/fib_triestat\x00', 0x0, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) read$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffffff, 0x0, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_CREATE_VM(r0, 0x4048aecb, 0x0) 4.925330682s ago: executing program 3 (id=1265): openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/card1/pcm0p/sub0/hw_params\x00', 0x1c1282, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0xf1, 0x2, 0x8000) remap_file_pages$auto(0x5, 0x1000, 0x0, 0x8, 0x10007) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socket(0x1e, 0x5, 0x0) read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000280)=""/65, 0x41) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) syz_clone3(&(0x7f0000000400)={0x9840100, 0x0, 0x0, 0x0, {0x31}, 0x0, 0x0, 0x0, 0x0}, 0x58) 4.560584829s ago: executing program 0 (id=1266): socket(0x2, 0x2, 0x0) r0 = socket(0x2, 0x1, 0x106) write$auto(r0, &(0x7f0000000040)='+.\x00', 0x8) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x2c, 0x80003, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0x80040, 0x0) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) socket(0xa, 0x1, 0x84) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) open(0x0, 0x22240, 0x55) socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) 4.560304218s ago: executing program 1 (id=1267): r0 = socket(0x2, 0x801, 0x100) connect$auto(0x3, &(0x7f00000000c0), 0x55) connect$auto(0x3, &(0x7f00000000c0), 0x55) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) r2 = prctl$auto_PR_GET_TSC(0x19, 0xfff, 0x0, 0x0, 0x10000) read$auto_proc_mountinfo_operations_mnt_namespace(r2, &(0x7f0000000280)=""/28, 0x1c) r3 = socket(0x11, 0x3, 0x9) r4 = prctl$auto_PR_SET_MM_START_BRK(0x90e6, 0x6, 0x0, 0x8, 0x9) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), r4) r5 = syz_genetlink_get_family_id$auto_hsr(&(0x7f0000000140), r0) mmap$auto(0x0, 0x20009, 0x20000000000000e2, 0xeb1, 0x405, 0x8000) r6 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/mixer\x00', 0x40000, 0x0) ioctl$auto_SOUND_MIXER_WRITE_RECSRC(r6, 0xc0044dff, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x6c, r5, 0x100, 0x70bd26, 0x25dfdbfb, {}, [@HSR_A_IF2_AGE={0x8}, @HSR_A_NODE_ADDR={0xa, 0x1, @local}, @HSR_A_NODE_ADDR_B={0xa, 0x5, @link_local}, @HSR_A_IF2_SEQ={0x6}, @HSR_A_NODE_ADDR={0xa, 0x1, @multicast}, @HSR_A_IF1_SEQ={0x6, 0x6, 0x4}, @HSR_A_IFINDEX={0x8, 0x2, r1}, @HSR_A_IF2_AGE={0x8, 0x4, 0x5}, @HSR_A_NODE_ADDR_B={0xa, 0x5, @multicast}]}, 0x6c}, 0x1, 0x0, 0x0, 0x800}, 0x40) sendmmsg$auto(r3, &(0x7f0000000400)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000440), 0x49}, 0x1, &(0x7f0000000200), 0x5, 0x3}, 0x5}, 0x2, 0x100) 4.171076138s ago: executing program 1 (id=1268): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x802, 0x1) socket(0x2, 0x5, 0x0) socketpair$auto(0x1e, 0x1, 0x0, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) ioctl$auto_TCFLSH2(r0, 0x8924, 0x0) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r1, 0x0, 0x1f40) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) 4.050020187s ago: executing program 2 (id=1269): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) r0 = socket(0x2b, 0x1, 0x1) r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001480)={'veth0_virt_wifi\x00'}) munmap$auto(0x8000, 0xffffffff) close_range$auto(0x2, 0x8, 0x0) 2.501440215s ago: executing program 3 (id=1270): unshare$auto(0x40000080) madvise$auto(0x5, 0x7fffffffffffffff, 0x7) mmap$auto(0xfe, 0xffffffffffffff9a, 0x4, 0x1ff, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) epoll_create$auto(0x4) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0) socket(0x11, 0x80003, 0x300) socket(0x25, 0x1, 0x1) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/input/devices\x00', 0x4a040, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fd, 0x8, 0xd, 0x1, 0x948b, 0x2, 0x15f4da0b, 0x6, 0x80000000080, 0x1fffe000000000, 0x80000001, 0x5, 0x6d3c, 0x200000000000005, 0x2]}, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) mlock$auto(0x7c89, 0x47fff) 2.501294992s ago: executing program 0 (id=1271): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f000000e680), 0x2, 0x0) io_uring_setup$auto(0x6, 0x0) read$auto_rb_simple_fops_trace(r0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, 0x0, 0x30100, 0x0) open(0x0, 0x22240, 0x1d3) socket(0xa, 0x2, 0x0) unshare$auto(0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x0, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x200, 0x0) open(0x0, 0x222c2, 0x154) writev$auto(0xffffffffffffffff, 0x0, 0x9) close_range$auto(0x2, 0x8, 0x0) 2.501166119s ago: executing program 1 (id=1272): close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x2, 0x80002, 0x73) r1 = socket(0x1d, 0x800, 0x84) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, 0x0, 0x4000000) connect$auto(r1, 0x0, 0x54) setsockopt$auto(0x3, 0x10000000084, 0x25, 0x0, 0x90) pwrite64$auto(r0, 0x0, 0x6, 0x100000003) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, r0, 0x1008000) openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, 0x0, 0x902, 0x0) close_range$auto(0x2, 0xa, 0x0) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x6, 0x4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x62c00, 0x0) openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000400), 0x80001, 0x0) getcwd$auto(0x0, 0x8) 1.488683233s ago: executing program 3 (id=1273): openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, 0x0, 0x582, 0x0) r0 = socket(0x11, 0x80003, 0x300) sendfile$auto(0x1, r0, 0x0, 0x8fb5) dup2$auto(0x0, 0x3) mmap$auto(0x0, 0x2020008, 0x4, 0x800000eb5, 0xfffffffffffffffa, 0x8000) socket(0x2b, 0x1, 0x0) sysfs$auto(0x1000006, 0x1, 0x0) fcntl$auto(0x3, 0x4, 0xa553) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x101e81, 0x0) ioctl$auto(0x3, 0x541b, 0x10000000000402) prctl$auto_PR_SET_NAME(0xf, 0x5, 0x0, 0x8, 0xff) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) open(&(0x7f0000000100)='./file1\x00', 0x2002, 0x1) mmap$auto(0x2000, 0x80009, 0xb, 0x8000000008011, 0xffffffffffffffff, 0x0) mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0x18000) 1.487723617s ago: executing program 1 (id=1281): r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/radio6\x00', 0x8a241, 0x0) r1 = openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/smaps\x00', 0x244002, 0x0) unshare$auto(0x40000080) ioctl$auto(r0, 0x5646, r1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0xa, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0) r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/security/tomoyo/profile\x00', 0x40802, 0x0) read$auto(r2, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0x70) write$auto(0x3, 0x0, 0xfdef) r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/032/001\x00', 0x80202, 0x0) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/usb/usbmon/32t\x00', 0x82000, 0x0) ioctl$auto_USBDEVFS_CONTROL(r3, 0xc0185500, &(0x7f00000004c0)={0x0, 0x7, 0x7, 0x8c53, 0x0, 0x4, 0x0}) ioctl$auto(r0, 0x227e, r0) 983.279468ms ago: executing program 0 (id=1274): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000001840), r1) sendmsg$auto_NL802154_CMD_GET_SEC_DEVKEY(r1, &(0x7f00000019c0)={0x0, 0x0, &(0x7f0000001980)={&(0x7f0000001880)={0x14, r2, 0xf09, 0x70bd2a, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x0) r3 = getpid() process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) semctl$auto_IPC_SET(0x6, 0xfffffffd, 0x1, 0x6) ioctl$auto_BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={"f4013c197762e394dd0a011b200c75aad6ede623f21a567ffbd31c42b81d4e3a", 0x3ff, 0xfffffff4, 0x6, 0x9, 0x6, 0xffffffffffffffff}) r4 = geteuid() setreuid$auto(r4, 0x0) statx$auto(0xffffffffffffffff, &(0x7f0000000340)='./file0\x00', 0x4, 0x2, &(0x7f0000000480)={0x5, 0xf, 0x7, 0x7, r4, 0xffffffffffffffff, 0x7, 0xa1c9, 0x8, 0x1ff, 0x2, 0x6, {0x9, 0x80}, {0x2, 0x1}, {0x9, 0xfffffc00}, {0x5, 0x2}, 0x11, 0xdfa, 0x7, 0x2, 0x4, 0x855a, 0x7f, 0xfffffffffffffff8, 0x4, 0x0, 0x87, 0x5, [0x8, 0x2d52, 0x8, 0x9, 0x0, 0x9, 0xfffffffffffffffc, 0x3, 0x3391]}) msgctl$auto_IPC_SET(0x9, 0x1, &(0x7f0000000180)={{0xf, 0xee01, 0xee00, 0x40ae, 0x7, 0x1, 0xfff}, &(0x7f0000000100)=0x8, &(0x7f0000000140)=0x40, 0x1, 0x8, 0xdb2, 0x0, 0x100000000, 0x67c0, 0x7, 0x6, @inferred=0xffffffffffffffff, @raw=0x9}) madvise$auto(0x0, 0xffffffffffff0001, 0x15) write$auto(0x3, 0x0, 0x100082) 914.488258ms ago: executing program 3 (id=1275): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) r0 = socket(0x2b, 0x1, 0x1) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r0, 0x2) mmap$auto(0x0, 0x400005, 0xe3, 0x9b72, r0, 0x7) kill$auto(0x0, 0x21) madvise$auto(0x0, 0x200007, 0x8) madvise$auto(0x0, 0x2003f0, 0x15) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) 642.124757ms ago: executing program 1 (id=1276): ioctl$auto_TIOCEXCL2(0xffffffffffffffff, 0x540c, &(0x7f0000000040)="e76f1cf796") setsockopt$auto(0x3, 0x0, 0x31, 0x0, 0x28) unshare$auto(0x40000080) r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/mm/ksm/pages_to_scan\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000140)=""/151, 0x97) ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_tipcv2(0x0, 0xffffffffffffffff) sendmsg$auto_TIPC_NL_BEARER_GET(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000001280)={0x0}, 0x1, 0x0, 0x0, 0x24000000}, 0x20000080) capset$auto(&(0x7f0000000180)={0x19980330}, 0x0) socket(0x25, 0x6, 0x80000082) sendmsg$auto_SEG6_CMD_DUMPHMAC(0xffffffffffffffff, 0x0, 0x24044804) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/asound/card1/pcm0c/sub6/xrun_injection\x00', 0x12b102, 0x0) close_range$auto(0x2, 0x8, 0x0) 771.541µs ago: executing program 0 (id=1277): r0 = socket(0x2, 0x801, 0x100) connect$auto(0x3, &(0x7f00000000c0), 0x55) connect$auto(0x3, &(0x7f00000000c0), 0x55) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) r2 = prctl$auto_PR_GET_TSC(0x19, 0xfff, 0x0, 0x0, 0x10000) read$auto_proc_mountinfo_operations_mnt_namespace(r2, &(0x7f0000000280)=""/28, 0x1c) r3 = socket(0x11, 0x3, 0x9) r4 = prctl$auto_PR_SET_MM_START_BRK(0x90e6, 0x6, 0x0, 0x8, 0x9) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), r4) r5 = syz_genetlink_get_family_id$auto_hsr(&(0x7f0000000140), r0) mmap$auto(0x0, 0x20009, 0x20000000000000e2, 0xeb1, 0x405, 0x8000) r6 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/mixer\x00', 0x40000, 0x0) ioctl$auto_SOUND_MIXER_WRITE_RECSRC(r6, 0xc0044dff, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x6c, r5, 0x100, 0x70bd26, 0x25dfdbfb, {}, [@HSR_A_IF2_AGE={0x8}, @HSR_A_NODE_ADDR={0xa, 0x1, @local}, @HSR_A_NODE_ADDR_B={0xa, 0x5, @link_local}, @HSR_A_IF2_SEQ={0x6}, @HSR_A_NODE_ADDR={0xa, 0x1, @multicast}, @HSR_A_IF1_SEQ={0x6, 0x6, 0x4}, @HSR_A_IFINDEX={0x8, 0x2, r1}, @HSR_A_IF2_AGE={0x8, 0x4, 0x5}, @HSR_A_NODE_ADDR_B={0xa, 0x5, @multicast}]}, 0x6c}, 0x1, 0x0, 0x0, 0x800}, 0x40) sendmmsg$auto(r3, &(0x7f0000000400)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000440), 0x49}, 0x1, &(0x7f0000000200), 0x5, 0x3}, 0x5}, 0x2, 0x100) 360.276µs ago: executing program 1 (id=1278): r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto(r0, 0x4004556e, 0x1f) r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0xfffffffffffffffe, 0x10400005, 0xfffffffffffffffe, 0x4f1, 0x2, 0x8000) unshare$auto(0x40000080) openat$auto_tracing_mark_fops_trace(0xffffffffffffff9c, 0x0, 0x480, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/bdi/43:384/max_bytes\x00', 0x181482, 0x0) read$auto(r2, 0x0, 0x9) write$auto(0x3, 0x0, 0x1) write$auto(0xffffffffffffffff, &(0x7f0000000540)='/dev/uinput\x00', 0x7f) syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000000c0), r1) sendmsg$auto_NL802154_CMD_NEW_SEC_LEVEL(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24f8}, 0x1, 0x0, 0x0, 0x1}, 0x8040) r3 = openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x6}, 0x5) 0s ago: executing program 2 (id=1286): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x4, 0x0) r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002240)='/dev/cec17\x00', 0x181680, 0x0) ioctl$auto_CEC_DQEVENT(r0, 0xc0506107, 0x0) ioctl$auto_CEC_DQEVENT(r0, 0xc0506107, 0x0) close_range$auto(0x2, 0x8, 0x0) ioctl$auto(0xffffffffffffffff, 0xffff, 0xffffffffffffffff) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe0180, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20082, 0x0) openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mixer1\x00', 0x8000, 0x0) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="0a0018"], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) socket(0x2, 0x3, 0x100) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800) open(0x0, 0x22240, 0x55) kernel console output (not intermixed with test programs): pfx_futex_wait+0x10/0x10 [ 178.469209][ T7342] ? kmem_cache_free+0x2d4/0x4d0 [ 178.469248][ T7342] ? fd_install+0x1db/0x670 [ 178.469286][ T7342] ? putname+0x154/0x1a0 [ 178.469315][ T7342] do_futex+0x229/0x350 [ 178.469345][ T7342] ? __pfx_do_futex+0x10/0x10 [ 178.469391][ T7342] __x64_sys_futex+0x1e0/0x4c0 [ 178.469423][ T7342] ? __x64_sys_openat+0x174/0x210 [ 178.469451][ T7342] ? __pfx___x64_sys_futex+0x10/0x10 [ 178.469483][ T7342] ? rcu_is_watching+0x12/0xc0 [ 178.469515][ T7342] do_syscall_64+0xcd/0x260 [ 178.469542][ T7342] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 178.469570][ T7342] RIP: 0033:0x7f340878d169 [ 178.469593][ T7342] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 178.469621][ T7342] RSP: 002b:00007f34096ad0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 178.469650][ T7342] RAX: ffffffffffffffda RBX: 00007f34089a5fa8 RCX: 00007f340878d169 [ 178.469670][ T7342] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f34089a5fa8 [ 178.469688][ T7342] RBP: 00007f34089a5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 178.469705][ T7342] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f34089a5fac [ 178.469722][ T7342] R13: 0000000000000000 R14: 00007ffd12b787c0 R15: 00007ffd12b788a8 [ 178.469753][ T7342] [ 178.706191][ C0] vkms_vblank_simulate: vblank timer overrun [ 179.075185][ T7349] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input7 [ 179.361542][ T7351] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9 [ 180.588851][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 180.830542][ T7386] netlink: 4 bytes leftover after parsing attributes in process `syz.1.413'. [ 181.989627][ T7413] FAULT_INJECTION: forcing a failure. [ 181.989627][ T7413] name failslab, interval 1, probability 0, space 0, times 0 [ 182.021021][ T7413] CPU: 0 UID: 0 PID: 7413 Comm: syz.2.422 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 182.021066][ T7413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 182.021083][ T7413] Call Trace: [ 182.021092][ T7413] [ 182.021102][ T7413] dump_stack_lvl+0x16c/0x1f0 [ 182.021136][ T7413] should_fail_ex+0x512/0x640 [ 182.021170][ T7413] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 182.021218][ T7413] should_failslab+0xc2/0x120 [ 182.021264][ T7413] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 182.021304][ T7413] ? __pfx_proc_create_data+0x10/0x10 [ 182.021336][ T7413] ? cache_create_net+0x2b/0x220 [ 182.021379][ T7413] kmemdup_noprof+0x29/0x60 [ 182.021412][ T7413] cache_create_net+0x2b/0x220 [ 182.021443][ T7413] nfsd_idmap_init+0x11f/0x250 [ 182.021470][ T7413] ? __pfx_nfsd_net_init+0x10/0x10 [ 182.021508][ T7413] nfsd_net_init+0x69/0x3a0 [ 182.021547][ T7413] ? __pfx_nfsd_net_init+0x10/0x10 [ 182.021586][ T7413] ops_init+0x1df/0x5f0 [ 182.021627][ T7413] setup_net+0x21e/0x850 [ 182.021668][ T7413] ? __pfx_setup_net+0x10/0x10 [ 182.021706][ T7413] ? lockdep_init_map_type+0x5c/0x280 [ 182.021745][ T7413] ? __pfx_down_read_killable+0x10/0x10 [ 182.021781][ T7413] ? debug_mutex_init+0x37/0x70 [ 182.021813][ T7413] copy_net_ns+0x2a6/0x5f0 [ 182.021859][ T7413] create_new_namespaces+0x3ea/0xad0 [ 182.021901][ T7413] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 182.021936][ T7413] ksys_unshare+0x45b/0xa40 [ 182.021971][ T7413] ? __pfx_ksys_unshare+0x10/0x10 [ 182.022007][ T7413] ? xfd_validate_state+0x5d/0x180 [ 182.022036][ T7413] ? rcu_is_watching+0x12/0xc0 [ 182.022070][ T7413] __x64_sys_unshare+0x31/0x40 [ 182.022106][ T7413] do_syscall_64+0xcd/0x260 [ 182.022136][ T7413] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 182.022165][ T7413] RIP: 0033:0x7f32e2d8d169 [ 182.022188][ T7413] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 182.022216][ T7413] RSP: 002b:00007f32e0bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 182.022244][ T7413] RAX: ffffffffffffffda RBX: 00007f32e2fa5fa0 RCX: 00007f32e2d8d169 [ 182.022263][ T7413] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 182.022278][ T7413] RBP: 00007f32e2e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 182.022293][ T7413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 182.022308][ T7413] R13: 0000000000000000 R14: 00007f32e2fa5fa0 R15: 00007ffe4bd23dc8 [ 182.022340][ T7413] [ 182.271786][ C0] vkms_vblank_simulate: vblank timer overrun [ 182.498094][ T7419] netlink: 338 bytes leftover after parsing attributes in process `syz.1.424'. [ 182.530604][ T7419] mac80211_hwsim hwsim8 wlan0: entered promiscuous mode [ 184.059707][ T7441] random: crng reseeded on system resumption [ 184.234285][ T7443] mkiss: ax0: crc mode is auto. [ 186.056990][ T7477] netlink: 'syz.2.439': attribute type 10 has an invalid length. [ 186.073037][ T7477] netlink: 230 bytes leftover after parsing attributes in process `syz.2.439'. [ 186.124265][ T7477] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check. [ 186.541676][ T7485] [U] [ 186.544552][ T7485] [U] [ 186.547247][ T7485] [U] [ 186.549955][ T7485] [U] [ 186.572753][ T7485] [U] [ 186.575543][ T7485] [U] [ 186.578473][ T7485] [U] [ 186.581212][ T7485] [U] [ 186.658830][ T7485] [U] [ 186.661642][ T7485] [U] [ 186.664378][ T7485] [U] [ 186.667115][ T7485] [U] [ 186.671495][ T7485] [U] [ 186.674357][ T7485] [U] [ 186.677100][ T7485] [U] [ 186.680021][ T7485] [U] [ 186.789205][ T7485] [U] [ 186.792004][ T7485] [U] [ 186.794755][ T7485] [U] [ 186.797521][ T7485] [U] [ 186.851013][ T7489] FAULT_INJECTION: forcing a failure. [ 186.851013][ T7489] name failslab, interval 1, probability 0, space 0, times 0 [ 186.881857][ T7485] [U] [ 186.884651][ T7485] [U] [ 186.887540][ T7485] [U] [ 186.890253][ T7485] [U] [ 186.905409][ T7489] CPU: 1 UID: 0 PID: 7489 Comm: syz.1.443 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 186.905453][ T7489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 186.905470][ T7489] Call Trace: [ 186.905479][ T7489] [ 186.905490][ T7489] dump_stack_lvl+0x16c/0x1f0 [ 186.905524][ T7489] should_fail_ex+0x512/0x640 [ 186.905559][ T7489] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 186.905603][ T7489] should_failslab+0xc2/0x120 [ 186.905647][ T7489] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 186.905687][ T7489] ? __asan_memcpy+0x3c/0x60 [ 186.905722][ T7489] ? __kernfs_new_node+0xd2/0x8a0 [ 186.905776][ T7489] __kernfs_new_node+0xd2/0x8a0 [ 186.905819][ T7489] ? __pfx___kernfs_new_node+0x10/0x10 [ 186.905863][ T7489] ? __lock_acquire+0xaa4/0x1ba0 [ 186.905914][ T7489] kernfs_new_node+0x186/0x240 [ 186.905947][ T7489] kernfs_create_link+0xcc/0x240 [ 186.905982][ T7489] sysfs_do_create_link_sd+0x90/0x140 [ 186.906022][ T7489] sysfs_create_link+0x61/0xc0 [ 186.906061][ T7489] device_add+0x62c/0x1a70 [ 186.906095][ T7489] ? __pfx_device_add+0x10/0x10 [ 186.906126][ T7489] ? lockdep_init_map_type+0x5c/0x280 [ 186.906167][ T7489] ? __init_waitqueue_head+0xca/0x150 [ 186.906201][ T7489] wakeup_source_device_create+0x214/0x2a0 [ 186.906233][ T7489] wakeup_source_sysfs_add+0x1c/0x90 [ 186.906262][ T7489] wakeup_source_register+0xaa/0x140 [ 186.906305][ T7489] ep_create_wakeup_source+0x139/0x2e0 [ 186.906349][ T7489] ? __pfx_ep_create_wakeup_source+0x10/0x10 [ 186.906392][ T7489] ? do_epoll_ctl+0x154d/0x3590 [ 186.906435][ T7489] do_epoll_ctl+0x1d6a/0x3590 [ 186.906486][ T7489] ? __pfx_do_epoll_ctl+0x10/0x10 [ 186.906522][ T7489] ? find_held_lock+0x2b/0x80 [ 186.906549][ T7489] ? __might_fault+0xe3/0x190 [ 186.906576][ T7489] ? __might_fault+0xe3/0x190 [ 186.906611][ T7489] ? __x64_sys_epoll_ctl+0x15c/0x1e0 [ 186.906649][ T7489] __x64_sys_epoll_ctl+0x15c/0x1e0 [ 186.906688][ T7489] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 186.906723][ T7489] ? rcu_is_watching+0x12/0xc0 [ 186.906758][ T7489] do_syscall_64+0xcd/0x260 [ 186.906788][ T7489] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 186.906816][ T7489] RIP: 0033:0x7ff8f718d169 [ 186.906840][ T7489] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 186.906868][ T7489] RSP: 002b:00007ff8f7f58038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 186.906896][ T7489] RAX: ffffffffffffffda RBX: 00007ff8f73a5fa0 RCX: 00007ff8f718d169 [ 186.906915][ T7489] RDX: 8000000000000000 RSI: 0000000000000001 RDI: 0000000000000005 [ 186.906934][ T7489] RBP: 00007ff8f720e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 186.906952][ T7489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 186.906970][ T7489] R13: 0000000000000000 R14: 00007ff8f73a5fa0 R15: 00007ffc75111d88 [ 186.907003][ T7489] [ 187.194190][ T7485] [U] [ 187.197132][ T7485] [U] [ 187.199864][ T7485] [U] [ 187.202616][ T7485] [U] [ 187.207157][ T7485] [U] [ 187.209929][ T7485] [U] [ 187.212672][ T7485] [U] [ 187.215411][ T7485] [U] [ 187.218427][ T7485] [U] [ 187.221205][ T7485] [U] [ 187.223993][ T7485] [U] [ 187.226705][ T7485] [U] [ 187.229667][ T7485] [U] [ 187.232409][ T7485] [U] [ 187.235150][ T7485] [U] [ 187.237887][ T7485] [U] [ 187.240832][ T7485] [U] [ 187.243575][ T7485] [U] [ 187.246319][ T7485] [U] [ 187.249059][ T7485] [U] [ 187.252057][ T7485] [U] [ 187.254794][ T7485] [U] [ 187.257521][ T7485] [U] [ 187.260233][ T7485] [U] [ 187.263682][ T7485] [U] [ 187.266444][ T7485] [U] [ 187.269169][ T7485] [U] [ 187.271884][ T7485] [U] [ 187.274812][ T7485] [U] [ 187.277552][ T7485] [U] [ 187.280269][ T7485] [U] [ 187.282979][ T7485] [U] [ 187.285925][ T7485] [U] [ 187.288679][ T7485] [U] [ 187.291419][ T7485] [U] [ 187.294160][ T7485] [U] [ 187.298006][ T7485] [U] [ 187.300763][ T7485] [U] [ 187.303510][ T7485] [U] [ 187.306369][ T7485] [U] [ 187.309422][ T7485] [U] [ 187.312170][ T7485] [U] [ 187.314918][ T7485] [U] [ 187.317665][ T7485] [U] [ 187.320816][ T7485] [U] [ 187.323578][ T7485] [U] [ 187.326325][ T7485] [U] [ 187.330181][ T7485] [U] [ 187.331473][ T7485] [U] [ 187.331526][ T7485] [U] [ 187.331572][ T7485] [U] [ 187.331618][ T7485] [U] [ 187.331829][ T7485] [U] [ 187.331874][ T7485] [U] [ 187.331917][ T7485] [U] [ 187.331962][ T7485] [U] [ 187.332173][ T7485] [U] [ 187.332220][ T7485] [U] [ 187.332260][ T7485] [U] [ 187.332301][ T7485] [U] [ 187.332504][ T7485] [U] [ 187.332556][ T7485] [U] [ 187.332601][ T7485] [U] [ 187.332647][ T7485] [U] [ 187.332850][ T7485] [U] [ 187.332896][ T7485] [U] [ 187.332941][ T7485] [U] [ 187.332986][ T7485] [U] [ 187.333211][ T7485] [U] [ 187.333255][ T7485] [U] [ 187.333294][ T7485] [U] [ 187.333339][ T7485] [U] [ 187.333551][ T7485] [U] [ 187.333596][ T7485] [U] [ 187.333641][ T7485] [U] [ 187.333681][ T7485] [U] [ 187.333885][ T7485] [U] [ 187.333930][ T7485] [U] [ 187.333975][ T7485] [U] [ 187.334020][ T7485] [U] [ 187.334223][ T7485] [U] [ 187.334267][ T7485] [U] [ 187.334306][ T7485] [U] [ 187.334349][ T7485] [U] [ 187.334683][ T7485] [U] [ 187.334733][ T7485] [U] [ 187.334777][ T7485] [U] [ 187.334821][ T7485] [U] [ 187.335040][ T7485] [U] [ 187.335087][ T7485] [U] [ 187.335133][ T7485] [U] [ 187.335179][ T7485] [U] [ 187.335400][ T7485] [U] [ 187.335448][ T7485] [U] [ 187.335495][ T7485] [U] [ 187.335542][ T7485] [U] [ 187.539138][ T7483] [U] [ 187.808670][ T7500] serio: Serial port ptm0 [ 189.407581][ T7535] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 189.484676][ T7535] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 189.490871][ T7535] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 189.558561][ T7535] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 189.640122][ T7540] netlink: 28 bytes leftover after parsing attributes in process `syz.0.458'. [ 190.465869][ T7561] FAULT_INJECTION: forcing a failure. [ 190.465869][ T7561] name failslab, interval 1, probability 0, space 0, times 0 [ 190.546156][ T7561] CPU: 0 UID: 0 PID: 7561 Comm: syz.0.465 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 190.546201][ T7561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 190.546219][ T7561] Call Trace: [ 190.546228][ T7561] [ 190.546239][ T7561] dump_stack_lvl+0x16c/0x1f0 [ 190.546273][ T7561] should_fail_ex+0x512/0x640 [ 190.546308][ T7561] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 190.546351][ T7561] should_failslab+0xc2/0x120 [ 190.546397][ T7561] __kmalloc_cache_noprof+0x6a/0x3e0 [ 190.546436][ T7561] ? _request_firmware+0x2a4/0x1470 [ 190.546487][ T7561] _request_firmware+0x2a4/0x1470 [ 190.546529][ T7561] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 190.546569][ T7561] ? __rtnl_unlock+0x68/0xf0 [ 190.546612][ T7561] ? netdev_run_todo+0x864/0x1320 [ 190.546656][ T7561] ? __pfx__request_firmware+0x10/0x10 [ 190.546694][ T7561] ? __pfx_netdev_run_todo+0x10/0x10 [ 190.546735][ T7561] ? __pfx___mutex_lock+0x10/0x10 [ 190.546772][ T7561] request_firmware+0x35/0x50 [ 190.546810][ T7561] reg_reload_regdb+0x89/0x460 [ 190.546843][ T7561] ? __pfx_reg_reload_regdb+0x10/0x10 [ 190.546875][ T7561] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 190.546914][ T7561] ? nl80211_pre_doit+0x1b0/0xb10 [ 190.546957][ T7561] genl_family_rcv_msg_doit+0x206/0x2f0 [ 190.546990][ T7561] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 190.547019][ T7561] ? rcu_is_watching+0x12/0xc0 [ 190.547057][ T7561] ? bpf_lsm_capable+0x9/0x10 [ 190.547084][ T7561] ? security_capable+0x7e/0x260 [ 190.547124][ T7561] genl_rcv_msg+0x55c/0x800 [ 190.547155][ T7561] ? __pfx_genl_rcv_msg+0x10/0x10 [ 190.547188][ T7561] ? __pfx___dev_queue_xmit+0x10/0x10 [ 190.547220][ T7561] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 190.547256][ T7561] ? __pfx_nl80211_reload_regdb+0x10/0x10 [ 190.547284][ T7561] ? __pfx_nl80211_post_doit+0x10/0x10 [ 190.547326][ T7561] ? __lock_acquire+0xaa4/0x1ba0 [ 190.547370][ T7561] netlink_rcv_skb+0x16a/0x440 [ 190.547412][ T7561] ? __pfx_genl_rcv_msg+0x10/0x10 [ 190.547442][ T7561] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 190.547510][ T7561] ? __pfx_down_read+0x10/0x10 [ 190.547542][ T7561] ? netlink_deliver_tap+0x1ae/0xd30 [ 190.547587][ T7561] genl_rcv+0x28/0x40 [ 190.547611][ T7561] netlink_unicast+0x53a/0x7f0 [ 190.547657][ T7561] ? __pfx_netlink_unicast+0x10/0x10 [ 190.547700][ T7561] ? __phys_addr_symbol+0x30/0x80 [ 190.547739][ T7561] ? __check_object_size+0x4c7/0x710 [ 190.547791][ T7561] netlink_sendmsg+0x8da/0xd70 [ 190.547838][ T7561] ? __pfx_netlink_sendmsg+0x10/0x10 [ 190.547891][ T7561] ____sys_sendmsg+0xa8d/0xc60 [ 190.547920][ T7561] ? copy_msghdr_from_user+0x10a/0x160 [ 190.547958][ T7561] ? __pfx_____sys_sendmsg+0x10/0x10 [ 190.547990][ T7561] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 190.548041][ T7561] ___sys_sendmsg+0x134/0x1d0 [ 190.548080][ T7561] ? __pfx____sys_sendmsg+0x10/0x10 [ 190.548152][ T7561] __sys_sendmsg+0x16d/0x220 [ 190.548191][ T7561] ? __pfx___sys_sendmsg+0x10/0x10 [ 190.548228][ T7561] ? __x64_sys_futex+0x1e0/0x4c0 [ 190.548269][ T7561] ? rcu_is_watching+0x12/0xc0 [ 190.548305][ T7561] do_syscall_64+0xcd/0x260 [ 190.548336][ T7561] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 190.548365][ T7561] RIP: 0033:0x7f1277f8d169 [ 190.548389][ T7561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 190.548418][ T7561] RSP: 002b:00007f1278df4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 190.548448][ T7561] RAX: ffffffffffffffda RBX: 00007f12781a5fa0 RCX: 00007f1277f8d169 [ 190.548467][ T7561] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000008 [ 190.548492][ T7561] RBP: 00007f127800e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 190.548510][ T7561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 190.548527][ T7561] R13: 0000000000000000 R14: 00007f12781a5fa0 R15: 00007ffe5f75e928 [ 190.548560][ T7561] [ 190.937922][ T7561] platform regulatory.0: _request_firmware_prepare: kmalloc(struct firmware) failed [ 191.442147][ T5845] Bluetooth: hci0: command 0x0c1a tx timeout syzkaller syzkaller login: [ 191.521387][ T5838] Bluetooth: hci2: command 0x0c1a tx timeout [ 191.527465][ T5838] Bluetooth: hci1: command 0x0c1a tx timeout [ 191.601378][ T5838] Bluetooth: hci3: command 0x0c1a tx timeout [ 192.891743][ T7592] netlink: 8 bytes leftover after parsing attributes in process `syz.1.473'. [ 193.834432][ T7603] Invalid ELF header magic: != ELF [ 195.818676][ T7638] netlink: 28 bytes leftover after parsing attributes in process `syz.2.485'. [ 199.101770][ C0] vcan0: j1939_tp_rxtimer: 0xffff88802d75dc00: rx timeout, send abort [ 199.110116][ C0] vcan0: j1939_tp_rxtimer: 0xffff88802d75cc00: rx timeout, send abort [ 199.121373][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88802d75dc00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 199.135881][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88802d75cc00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 199.728368][ T7679] mkiss: ax0: crc mode is auto. [ 199.784066][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.790447][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 200.054891][ T7686] netlink: 334 bytes leftover after parsing attributes in process `syz.0.498'. [ 200.136879][ T7689] netlink: 334 bytes leftover after parsing attributes in process `syz.0.498'. [ 200.233886][ T7687] FAULT_INJECTION: forcing a failure. [ 200.233886][ T7687] name failslab, interval 1, probability 0, space 0, times 0 [ 200.309902][ T7687] CPU: 0 UID: 0 PID: 7687 Comm: syz.1.499 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 200.309949][ T7687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 200.309968][ T7687] Call Trace: [ 200.309977][ T7687] [ 200.309989][ T7687] dump_stack_lvl+0x16c/0x1f0 [ 200.310026][ T7687] should_fail_ex+0x512/0x640 [ 200.310062][ T7687] ? __kmalloc_noprof+0xbf/0x510 [ 200.310108][ T7687] ? lsm_blob_alloc+0x68/0x90 [ 200.310136][ T7687] should_failslab+0xc2/0x120 [ 200.310181][ T7687] __kmalloc_noprof+0xd2/0x510 [ 200.310224][ T7687] lsm_blob_alloc+0x68/0x90 [ 200.310253][ T7687] security_prepare_creds+0x30/0x270 [ 200.310298][ T7687] prepare_creds+0x540/0x750 [ 200.310344][ T7687] __sys_setreuid+0x101/0xaf0 [ 200.310377][ T7687] ? rcu_is_watching+0x12/0xc0 [ 200.310409][ T7687] do_syscall_64+0xcd/0x260 [ 200.310450][ T7687] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 200.310480][ T7687] RIP: 0033:0x7ff8f718d169 [ 200.310503][ T7687] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 200.310533][ T7687] RSP: 002b:00007ff8f7f58038 EFLAGS: 00000246 ORIG_RAX: 0000000000000071 [ 200.310564][ T7687] RAX: ffffffffffffffda RBX: 00007ff8f73a5fa0 RCX: 00007ff8f718d169 [ 200.310584][ T7687] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000003 [ 200.310603][ T7687] RBP: 00007ff8f720e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 200.310620][ T7687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 200.310638][ T7687] R13: 0000000000000000 R14: 00007ff8f73a5fa0 R15: 00007ffc75111d88 [ 200.310668][ T7687] [ 204.274188][ T7720] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11 [ 204.673172][ T7723] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input13 [ 205.058058][ C1] vcan0: j1939_tp_rxtimer: 0xffff888026b2e000: rx timeout, send abort [ 205.566408][ C1] vcan0: j1939_tp_rxtimer: 0xffff888026b2e000: abort rx timeout. Force session deactivation [ 209.908186][ T7787] Invalid ELF header magic: != ELF [ 210.151062][ T7792] FAULT_INJECTION: forcing a failure. [ 210.151062][ T7792] name failslab, interval 1, probability 0, space 0, times 0 [ 210.236678][ T7792] CPU: 1 UID: 0 PID: 7792 Comm: syz.2.524 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 210.236723][ T7792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 210.236739][ T7792] Call Trace: [ 210.236748][ T7792] [ 210.236759][ T7792] dump_stack_lvl+0x16c/0x1f0 [ 210.236791][ T7792] should_fail_ex+0x512/0x640 [ 210.236825][ T7792] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 210.236870][ T7792] should_failslab+0xc2/0x120 [ 210.236915][ T7792] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 210.236954][ T7792] ? lockdep_init_map_type+0x5c/0x280 [ 210.236992][ T7792] ? mempool_init_node+0x31d/0x760 [ 210.237033][ T7792] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 210.237073][ T7792] mempool_init_node+0x31d/0x760 [ 210.237117][ T7792] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 210.237156][ T7792] ? __pfx_mempool_free_slab+0x10/0x10 [ 210.237194][ T7792] mempool_init_noprof+0x3a/0x50 [ 210.237236][ T7792] bioset_init+0x37a/0x880 [ 210.237266][ T7792] ? __pfx_bioset_init+0x10/0x10 [ 210.237314][ T7792] __alloc_disk_node+0x83/0x610 [ 210.237357][ T7792] __blk_mq_alloc_disk+0x89/0x120 [ 210.237399][ T7792] loop_add+0x496/0xb70 [ 210.237429][ T7792] ? 0xffffffff81000000 [ 210.237450][ T7792] ? do_vfs_ioctl+0x512/0x1990 [ 210.237484][ T7792] ? __pfx_loop_add+0x10/0x10 [ 210.237512][ T7792] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 210.237562][ T7792] ? find_held_lock+0x2b/0x80 [ 210.237591][ T7792] ? 0xffffffff81000000 [ 210.237610][ T7792] loop_control_ioctl+0x13c/0x630 [ 210.237643][ T7792] ? __pfx_loop_control_ioctl+0x10/0x10 [ 210.237675][ T7792] ? 0xffffffff81000000 [ 210.237692][ T7792] ? __pfx_loop_control_ioctl+0x10/0x10 [ 210.237722][ T7792] ? 0xffffffff81000000 [ 210.237739][ T7792] __x64_sys_ioctl+0x190/0x200 [ 210.237770][ T7792] do_syscall_64+0xcd/0x260 [ 210.237801][ T7792] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 210.237830][ T7792] RIP: 0033:0x7f32e2d8d169 [ 210.237852][ T7792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 210.237880][ T7792] RSP: 002b:00007f32e0bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 210.237910][ T7792] RAX: ffffffffffffffda RBX: 00007f32e2fa5fa0 RCX: 00007f32e2d8d169 [ 210.237929][ T7792] RDX: ffffffff81000000 RSI: 0000000000004c80 RDI: 0000000000000007 [ 210.237946][ T7792] RBP: 00007f32e2e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 210.237963][ T7792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 210.237980][ T7792] R13: 0000000000000000 R14: 00007f32e2fa5fa0 R15: 00007ffe4bd23dc8 [ 210.238006][ T7792] ? 0xffffffff81000000 [ 210.238028][ T7792] [ 212.658355][ T7820] netlink: 86 bytes leftover after parsing attributes in process `syz.1.529'. [ 212.990317][ T7823] mkiss: ax0: crc mode is auto. [ 213.445243][ T7837] Device name cannot be null; rc = [-22] [ 213.451915][ T7835] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 213.452083][ T7835] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 213.452198][ T7835] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 213.452320][ T7835] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 213.880081][ T7844] cougar: G6 mapped to space [ 214.673147][ T7850] mkiss: ax0: crc mode is auto. [ 215.072630][ T7858] FAULT_INJECTION: forcing a failure. [ 215.072630][ T7858] name failslab, interval 1, probability 0, space 0, times 0 [ 215.089687][ T7858] CPU: 1 UID: 0 PID: 7858 Comm: syz.3.541 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 215.089732][ T7858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 215.089749][ T7858] Call Trace: [ 215.089757][ T7858] [ 215.089768][ T7858] dump_stack_lvl+0x16c/0x1f0 [ 215.089801][ T7858] should_fail_ex+0x512/0x640 [ 215.089835][ T7858] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 215.089874][ T7858] should_failslab+0xc2/0x120 [ 215.089919][ T7858] __kmalloc_cache_noprof+0x6a/0x3e0 [ 215.089957][ T7858] ? sctp_auth_init+0x1e0/0x570 [ 215.089984][ T7858] ? kasan_save_track+0x14/0x30 [ 215.090028][ T7858] sctp_auth_init+0x1e0/0x570 [ 215.090054][ T7858] sctp_setsockopt+0xa376/0xb870 [ 215.090092][ T7858] ? __pfx_sctp_setsockopt+0x10/0x10 [ 215.090121][ T7858] ? __lock_acquire+0x5ca/0x1ba0 [ 215.090160][ T7858] ? __pfx_aa_sk_perm+0x10/0x10 [ 215.090203][ T7858] ? sock_common_setsockopt+0x2e/0xf0 [ 215.090264][ T7858] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 215.090309][ T7858] do_sock_setsockopt+0x221/0x470 [ 215.090352][ T7858] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 215.090410][ T7858] __sys_setsockopt+0x1a0/0x230 [ 215.090450][ T7858] __x64_sys_setsockopt+0xbd/0x160 [ 215.090483][ T7858] ? do_syscall_64+0x91/0x260 [ 215.090509][ T7858] ? lockdep_hardirqs_on+0x7c/0x110 [ 215.090546][ T7858] do_syscall_64+0xcd/0x260 [ 215.090573][ T7858] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 215.090601][ T7858] RIP: 0033:0x7f340878d169 [ 215.090625][ T7858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 215.090653][ T7858] RSP: 002b:00007f34096ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 215.090682][ T7858] RAX: ffffffffffffffda RBX: 00007f34089a5fa0 RCX: 00007f340878d169 [ 215.090702][ T7858] RDX: 0000000000000081 RSI: 0000010000000084 RDI: 0000000000000003 [ 215.090721][ T7858] RBP: 00007f340880e2a0 R08: 0000000000000008 R09: 0000000000000000 [ 215.090739][ T7858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 215.090756][ T7858] R13: 0000000000000000 R14: 00007f34089a5fa0 R15: 00007ffd12b788a8 [ 215.090788][ T7858] [ 215.521532][ T5845] Bluetooth: hci0: command 0x0c1a tx timeout [ 215.526443][ T5838] Bluetooth: hci3: command 0x0c1a tx timeout [ 215.528304][ T5831] Bluetooth: hci2: command 0x0c1a tx timeout [ 215.533658][ T5838] Bluetooth: hci1: command 0x0c1a tx timeout [ 215.981605][ T7871] Device name cannot be null; rc = [-22] [ 216.062338][ T7869] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 216.081492][ T7869] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 216.094008][ T7869] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 216.111497][ T7869] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 216.251436][ T7872] can: request_module (can-proto-0) failed. [ 217.877687][ T7895] netlink: 252 bytes leftover after parsing attributes in process `syz.0.551'. [ 217.927759][ T7895] netlink: 252 bytes leftover after parsing attributes in process `syz.0.551'. [ 218.081396][ T5831] Bluetooth: hci1: command 0x0c1a tx timeout [ 218.087518][ T5845] Bluetooth: hci0: command 0x0c1a tx timeout [ 218.171518][ T5831] Bluetooth: hci3: command 0x0c1a tx timeout [ 218.177696][ T5831] Bluetooth: hci2: command 0x0c1a tx timeout [ 218.449936][ T7899] netlink: 28 bytes leftover after parsing attributes in process `syz.0.554'. [ 218.470636][ T7899] veth0_macvtap: left promiscuous mode [ 218.470794][ T7899] macvtap0: entered promiscuous mode [ 218.470826][ T7899] macvtap0: entered allmulticast mode [ 220.257851][ T7922] Invalid ELF header magic: != ELF [ 220.875385][ T7936] cougar: G6 mapped to space [ 221.121194][ T7937] ======================================================= [ 221.121194][ T7937] WARNING: The mand mount option has been deprecated and [ 221.121194][ T7937] and is ignored by this kernel. Remove the mand [ 221.121194][ T7937] option from the mount to silence this warning. [ 221.121194][ T7937] ======================================================= [ 221.698368][ T7931] netlink: 504 bytes leftover after parsing attributes in process `syz.3.562'. [ 221.787780][ T7931] netlink: 350 bytes leftover after parsing attributes in process `syz.3.562'. [ 221.973410][ T7940] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 221.979804][ T7940] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 222.011544][ T7940] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 222.017653][ T7940] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 222.555641][ T7963] Invalid ELF header magic: != ELF [ 223.441411][ T5831] Bluetooth: hci0: command 0x0c1a tx timeout [ 224.003032][ T5831] Bluetooth: hci1: command 0x0c1a tx timeout [ 224.081582][ T5831] Bluetooth: hci3: command 0x0c1a tx timeout [ 224.090728][ T5845] Bluetooth: hci2: command 0x0c1a tx timeout [ 224.882729][ T7981] cougar: G6 mapped to space [ 224.967736][ T7983] Invalid ELF header magic: != ELF [ 226.719736][ T7998] FAULT_INJECTION: forcing a failure. [ 226.719736][ T7998] name failslab, interval 1, probability 0, space 0, times 0 [ 226.761399][ T7998] CPU: 1 UID: 0 PID: 7998 Comm: syz.1.582 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 226.761446][ T7998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 226.761463][ T7998] Call Trace: [ 226.761473][ T7998] [ 226.761484][ T7998] dump_stack_lvl+0x16c/0x1f0 [ 226.761516][ T7998] should_fail_ex+0x512/0x640 [ 226.761553][ T7998] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 226.761594][ T7998] should_failslab+0xc2/0x120 [ 226.761639][ T7998] __kmalloc_cache_noprof+0x6a/0x3e0 [ 226.761678][ T7998] ? percpu_ref_init+0xec/0x410 [ 226.761710][ T7998] ? __pfx_blkg_release+0x10/0x10 [ 226.761737][ T7998] percpu_ref_init+0xec/0x410 [ 226.761765][ T7998] ? kasan_save_track+0x14/0x30 [ 226.761807][ T7998] blkg_alloc+0xea/0xb00 [ 226.761841][ T7998] blkcg_init_disk+0x51/0x160 [ 226.761874][ T7998] __alloc_disk_node+0x299/0x610 [ 226.761919][ T7998] __blk_mq_alloc_disk+0x89/0x120 [ 226.761974][ T7998] loop_add+0x496/0xb70 [ 226.762005][ T7998] ? 0xffffffff81000000 [ 226.762026][ T7998] ? do_vfs_ioctl+0x512/0x1990 [ 226.762060][ T7998] ? __pfx_loop_add+0x10/0x10 [ 226.762088][ T7998] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 226.762139][ T7998] ? find_held_lock+0x2b/0x80 [ 226.762169][ T7998] ? 0xffffffff81000000 [ 226.762190][ T7998] loop_control_ioctl+0x13c/0x630 [ 226.762221][ T7998] ? __pfx_loop_control_ioctl+0x10/0x10 [ 226.762256][ T7998] ? 0xffffffff81000000 [ 226.762275][ T7998] ? __pfx_loop_control_ioctl+0x10/0x10 [ 226.762308][ T7998] ? 0xffffffff81000000 [ 226.762328][ T7998] __x64_sys_ioctl+0x190/0x200 [ 226.762362][ T7998] do_syscall_64+0xcd/0x260 [ 226.762393][ T7998] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 226.762421][ T7998] RIP: 0033:0x7ff8f718d169 [ 226.762442][ T7998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 226.762470][ T7998] RSP: 002b:00007ff8f7f58038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 226.762499][ T7998] RAX: ffffffffffffffda RBX: 00007ff8f73a5fa0 RCX: 00007ff8f718d169 [ 226.762518][ T7998] RDX: ffffffff81000000 RSI: 0000000000004c80 RDI: 0000000000000007 [ 226.762536][ T7998] RBP: 00007ff8f720e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 226.762553][ T7998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 226.762569][ T7998] R13: 0000000000000000 R14: 00007ff8f73a5fa0 R15: 00007ffc75111d88 [ 226.762595][ T7998] ? 0xffffffff81000000 [ 226.762619][ T7998] [ 227.013769][ C1] vkms_vblank_simulate: vblank timer overrun [ 228.530972][ T8006] FAULT_INJECTION: forcing a failure. [ 228.530972][ T8006] name failslab, interval 1, probability 0, space 0, times 0 [ 228.550245][ T8006] CPU: 1 UID: 0 PID: 8006 Comm: syz.0.585 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 228.550289][ T8006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 228.550307][ T8006] Call Trace: [ 228.550316][ T8006] [ 228.550329][ T8006] dump_stack_lvl+0x16c/0x1f0 [ 228.550363][ T8006] should_fail_ex+0x512/0x640 [ 228.550399][ T8006] ? __kmalloc_noprof+0xbf/0x510 [ 228.550449][ T8006] ? acpi_ns_get_normalized_pathname+0x75/0xd0 [ 228.550487][ T8006] should_failslab+0xc2/0x120 [ 228.550533][ T8006] __kmalloc_noprof+0xd2/0x510 [ 228.550580][ T8006] acpi_ns_get_normalized_pathname+0x75/0xd0 [ 228.550619][ T8006] acpi_ex_start_trace_method+0x30/0x480 [ 228.550663][ T8006] acpi_ds_begin_method_execution+0x3c/0x980 [ 228.550709][ T8006] ? acpi_tb_check_dsdt_header+0x187/0x3e0 [ 228.550755][ T8006] acpi_ps_execute_method+0x94/0xb30 [ 228.550790][ T8006] ? acpi_ut_acquire_mutex+0x125/0x1d0 [ 228.550828][ T8006] acpi_ns_evaluate+0x76c/0xca0 [ 228.550864][ T8006] ? kasan_save_track+0x14/0x30 [ 228.550906][ T8006] acpi_evaluate_object+0x1fa/0xa90 [ 228.550952][ T8006] ? do_syscall_64+0xcd/0x260 [ 228.550980][ T8006] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 228.551011][ T8006] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 228.551058][ T8006] ? __mutex_trylock_common+0xe9/0x250 [ 228.551104][ T8006] acpi_evaluate_integer+0xdd/0x200 [ 228.551143][ T8006] ? __pfx___might_resched+0x10/0x10 [ 228.551187][ T8006] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 228.551242][ T8006] ? __pfx_status_show+0x10/0x10 [ 228.551266][ T8006] status_show+0xa0/0x120 [ 228.551292][ T8006] ? __pfx_status_show+0x10/0x10 [ 228.551324][ T8006] dev_attr_show+0x53/0xe0 [ 228.551351][ T8006] ? __pfx_dev_attr_show+0x10/0x10 [ 228.551376][ T8006] sysfs_kf_seq_show+0x23e/0x410 [ 228.551417][ T8006] seq_read_iter+0x506/0x12b0 [ 228.551468][ T8006] kernfs_fop_read_iter+0x422/0x5a0 [ 228.551502][ T8006] ? rw_verify_area+0xcf/0x680 [ 228.551538][ T8006] vfs_read+0x8c8/0xc70 [ 228.551578][ T8006] ? __pfx___mutex_lock+0x10/0x10 [ 228.551605][ T8006] ? __pfx_vfs_read+0x10/0x10 [ 228.551654][ T8006] ksys_read+0x12a/0x240 [ 228.551691][ T8006] ? __pfx_ksys_read+0x10/0x10 [ 228.551724][ T8006] ? rcu_is_watching+0x12/0xc0 [ 228.551760][ T8006] do_syscall_64+0xcd/0x260 [ 228.551789][ T8006] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 228.551817][ T8006] RIP: 0033:0x7f1277f8d169 [ 228.551840][ T8006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 228.551867][ T8006] RSP: 002b:00007f1278df4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 228.551896][ T8006] RAX: ffffffffffffffda RBX: 00007f12781a5fa0 RCX: 00007f1277f8d169 [ 228.551914][ T8006] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000003 [ 228.551933][ T8006] RBP: 00007f127800e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 228.551950][ T8006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 228.551967][ T8006] R13: 0000000000000000 R14: 00007f12781a5fa0 R15: 00007ffe5f75e928 [ 228.551999][ T8006] [ 228.854427][ C1] vkms_vblank_simulate: vblank timer overrun [ 228.911404][ T8006] ACPI Error: Could not allocate 15 bytes (20240827/nsnames-308) [ 230.153230][ T8022] FAULT_INJECTION: forcing a failure. [ 230.153230][ T8022] name failslab, interval 1, probability 0, space 0, times 0 [ 230.187779][ T8022] CPU: 1 UID: 0 PID: 8022 Comm: syz.0.591 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 230.187828][ T8022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 230.187846][ T8022] Call Trace: [ 230.187856][ T8022] [ 230.187867][ T8022] dump_stack_lvl+0x16c/0x1f0 [ 230.187904][ T8022] should_fail_ex+0x512/0x640 [ 230.187940][ T8022] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 230.187982][ T8022] should_failslab+0xc2/0x120 [ 230.188026][ T8022] __kmalloc_cache_noprof+0x6a/0x3e0 [ 230.188064][ T8022] ? dccp_feat_clone_sp_val+0x96/0x130 [ 230.188109][ T8022] ? dccp_feat_entry_new+0x1a2/0x380 [ 230.188165][ T8022] dccp_feat_entry_new+0x1a2/0x380 [ 230.188213][ T8022] __feat_register_sp+0x372/0x5a0 [ 230.188261][ T8022] ? __pfx___feat_register_sp+0x10/0x10 [ 230.188307][ T8022] ? __kasan_kmalloc+0xaa/0xb0 [ 230.188352][ T8022] dccp_feat_init+0x724/0x800 [ 230.188382][ T8022] ? __pfx_dccp_feat_init+0x10/0x10 [ 230.188408][ T8022] ? __pfx_dccp_keepalive_timer+0x10/0x10 [ 230.188443][ T8022] ? lockdep_init_map_type+0x5c/0x280 [ 230.188480][ T8022] ? do_init_timer+0xc9/0x110 [ 230.188510][ T8022] ? __pfx_dccp_keepalive_timer+0x10/0x10 [ 230.188547][ T8022] ? __pfx_dccp_delack_timer+0x10/0x10 [ 230.188589][ T8022] dccp_init_sock+0x327/0x420 [ 230.188623][ T8022] ? __pfx_dccp_v4_init_sock+0x10/0x10 [ 230.188654][ T8022] dccp_v4_init_sock+0x1f/0xa0 [ 230.188684][ T8022] ? __pfx_dccp_v4_init_sock+0x10/0x10 [ 230.188716][ T8022] inet_create+0x936/0x1090 [ 230.188745][ T8022] ? inet_create+0x93/0x1090 [ 230.188777][ T8022] __sock_create+0x335/0x8d0 [ 230.188810][ T8022] inet_ctl_sock_create+0x94/0x230 [ 230.188856][ T8022] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 230.188901][ T8022] ? __pfx_dccp_v4_init_net+0x10/0x10 [ 230.188933][ T8022] dccp_v4_init_net+0x63/0x90 [ 230.188963][ T8022] ops_init+0x1df/0x5f0 [ 230.189005][ T8022] setup_net+0x21e/0x850 [ 230.189048][ T8022] ? __pfx_setup_net+0x10/0x10 [ 230.189087][ T8022] ? lockdep_init_map_type+0x5c/0x280 [ 230.189135][ T8022] ? __pfx_down_read_killable+0x10/0x10 [ 230.189172][ T8022] ? debug_mutex_init+0x37/0x70 [ 230.189203][ T8022] copy_net_ns+0x2a6/0x5f0 [ 230.189249][ T8022] create_new_namespaces+0x3ea/0xad0 [ 230.189294][ T8022] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 230.189333][ T8022] ksys_unshare+0x45b/0xa40 [ 230.189371][ T8022] ? __pfx_ksys_unshare+0x10/0x10 [ 230.189408][ T8022] ? xfd_validate_state+0x5d/0x180 [ 230.189438][ T8022] ? rcu_is_watching+0x12/0xc0 [ 230.189473][ T8022] __x64_sys_unshare+0x31/0x40 [ 230.189509][ T8022] do_syscall_64+0xcd/0x260 [ 230.189537][ T8022] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 230.189564][ T8022] RIP: 0033:0x7f1277f8d169 [ 230.189587][ T8022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 230.189613][ T8022] RSP: 002b:00007f1278df4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 230.189641][ T8022] RAX: ffffffffffffffda RBX: 00007f12781a5fa0 RCX: 00007f1277f8d169 [ 230.189659][ T8022] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 230.189674][ T8022] RBP: 00007f127800e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 230.189691][ T8022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 230.189707][ T8022] R13: 0000000000000000 R14: 00007f12781a5fa0 R15: 00007ffe5f75e928 [ 230.189736][ T8022] [ 230.522019][ C1] vkms_vblank_simulate: vblank timer overrun [ 231.559082][ T8047] netlink: 330 bytes leftover after parsing attributes in process `syz.2.599'. [ 231.659401][ T8047] syz.2.599 (8047) used greatest stack depth: 21336 bytes left [ 232.565627][ T30] audit: type=1326 audit(6038054018.254:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8035 comm="syz.3.598" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f340878d169 code=0x0 [ 233.340277][ T8078] FAULT_INJECTION: forcing a failure. [ 233.340277][ T8078] name failslab, interval 1, probability 0, space 0, times 0 [ 233.431310][ T8078] CPU: 1 UID: 0 PID: 8078 Comm: syz.3.606 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 233.431354][ T8078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 233.431370][ T8078] Call Trace: [ 233.431379][ T8078] [ 233.431390][ T8078] dump_stack_lvl+0x16c/0x1f0 [ 233.431421][ T8078] should_fail_ex+0x512/0x640 [ 233.431453][ T8078] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 233.431499][ T8078] should_failslab+0xc2/0x120 [ 233.431541][ T8078] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 233.431583][ T8078] ? dccp_feat_clone_sp_val+0x96/0x130 [ 233.431630][ T8078] kmemdup_noprof+0x29/0x60 [ 233.431660][ T8078] dccp_feat_clone_sp_val+0x96/0x130 [ 233.431700][ T8078] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 233.431741][ T8078] __feat_register_sp+0x331/0x5a0 [ 233.431783][ T8078] ? __pfx___feat_register_sp+0x10/0x10 [ 233.431821][ T8078] ? lockdep_hardirqs_on+0x7c/0x110 [ 233.431860][ T8078] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 233.431902][ T8078] ? __debug_object_init+0x2de/0x3d0 [ 233.431949][ T8078] dccp_feat_init+0x2ad/0x800 [ 233.431979][ T8078] ? __pfx_dccp_feat_init+0x10/0x10 [ 233.432007][ T8078] ? __pfx_dccp_keepalive_timer+0x10/0x10 [ 233.432046][ T8078] ? lockdep_init_map_type+0x5c/0x280 [ 233.432087][ T8078] ? do_init_timer+0xc9/0x110 [ 233.432127][ T8078] ? __pfx_dccp_keepalive_timer+0x10/0x10 [ 233.432164][ T8078] ? __pfx_dccp_delack_timer+0x10/0x10 [ 233.432205][ T8078] dccp_init_sock+0x327/0x420 [ 233.432238][ T8078] ? __pfx_dccp_v4_init_sock+0x10/0x10 [ 233.432270][ T8078] dccp_v4_init_sock+0x1f/0xa0 [ 233.432298][ T8078] ? __pfx_dccp_v4_init_sock+0x10/0x10 [ 233.432329][ T8078] inet_create+0x936/0x1090 [ 233.432358][ T8078] ? inet_create+0x93/0x1090 [ 233.432389][ T8078] __sock_create+0x335/0x8d0 [ 233.432423][ T8078] inet_ctl_sock_create+0x94/0x230 [ 233.432468][ T8078] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 233.432519][ T8078] ? __pfx_dccp_v4_init_net+0x10/0x10 [ 233.432552][ T8078] dccp_v4_init_net+0x63/0x90 [ 233.432583][ T8078] ops_init+0x1df/0x5f0 [ 233.432622][ T8078] setup_net+0x21e/0x850 [ 233.432683][ T8078] ? __pfx_setup_net+0x10/0x10 [ 233.432721][ T8078] ? lockdep_init_map_type+0x5c/0x280 [ 233.432760][ T8078] ? __pfx_down_read_killable+0x10/0x10 [ 233.432821][ T8078] ? debug_mutex_init+0x37/0x70 [ 233.432852][ T8078] copy_net_ns+0x2a6/0x5f0 [ 233.432905][ T8078] create_new_namespaces+0x3ea/0xad0 [ 233.432949][ T8078] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 233.432986][ T8078] ksys_unshare+0x45b/0xa40 [ 233.433024][ T8078] ? __pfx_ksys_unshare+0x10/0x10 [ 233.433074][ T8078] __x64_sys_unshare+0x31/0x40 [ 233.433122][ T8078] do_syscall_64+0xcd/0x260 [ 233.433154][ T8078] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 233.433183][ T8078] RIP: 0033:0x7f340878d169 [ 233.433207][ T8078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 233.433237][ T8078] RSP: 002b:00007f34096ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 233.433267][ T8078] RAX: ffffffffffffffda RBX: 00007f34089a5fa0 RCX: 00007f340878d169 [ 233.433288][ T8078] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 233.433305][ T8078] RBP: 00007f340880e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 233.433322][ T8078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 233.433339][ T8078] R13: 0000000000000000 R14: 00007f34089a5fa0 R15: 00007ffd12b788a8 [ 233.433370][ T8078] [ 234.751538][ T8090] FAULT_INJECTION: forcing a failure. [ 234.751538][ T8090] name failslab, interval 1, probability 0, space 0, times 0 [ 234.811419][ T8090] CPU: 0 UID: 0 PID: 8090 Comm: syz.2.609 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 234.811465][ T8090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 234.811483][ T8090] Call Trace: [ 234.811491][ T8090] [ 234.811502][ T8090] dump_stack_lvl+0x16c/0x1f0 [ 234.811537][ T8090] should_fail_ex+0x512/0x640 [ 234.811572][ T8090] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 234.811614][ T8090] should_failslab+0xc2/0x120 [ 234.811659][ T8090] __kmalloc_cache_noprof+0x6a/0x3e0 [ 234.811698][ T8090] ? snd_midi_event_new+0x6f/0x210 [ 234.811742][ T8090] snd_midi_event_new+0x6f/0x210 [ 234.811788][ T8090] snd_virmidi_input_open+0x107/0x4a0 [ 234.811836][ T8090] open_substream+0x478/0x9b0 [ 234.811868][ T8090] rawmidi_open_priv+0x513/0x6e0 [ 234.811905][ T8090] snd_rawmidi_open+0x4cc/0xbd0 [ 234.811943][ T8090] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 234.811979][ T8090] ? __pfx_default_wake_function+0x10/0x10 [ 234.812013][ T8090] ? kobject_get_unless_zero+0x156/0x1e0 [ 234.812051][ T8090] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 234.812083][ T8090] snd_open+0x1fe/0x450 [ 234.812120][ T8090] ? __pfx_snd_open+0x10/0x10 [ 234.812162][ T8090] chrdev_open+0x231/0x6a0 [ 234.812205][ T8090] ? __pfx_apparmor_file_open+0x10/0x10 [ 234.812248][ T8090] ? __pfx_chrdev_open+0x10/0x10 [ 234.812292][ T8090] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 234.812338][ T8090] do_dentry_open+0x741/0x1c10 [ 234.812377][ T8090] ? __pfx_chrdev_open+0x10/0x10 [ 234.812420][ T8090] ? inode_permission+0xdd/0x5f0 [ 234.812453][ T8090] vfs_open+0x82/0x3f0 [ 234.812478][ T8090] ? may_open+0x1f2/0x400 [ 234.812513][ T8090] path_openat+0x1e5e/0x2d40 [ 234.812562][ T8090] ? __pfx_path_openat+0x10/0x10 [ 234.812610][ T8090] do_filp_open+0x20b/0x470 [ 234.812671][ T8090] ? __pfx_do_filp_open+0x10/0x10 [ 234.812711][ T8090] ? find_held_lock+0x2b/0x80 [ 234.812758][ T8090] ? alloc_fd+0x420/0x760 [ 234.812807][ T8090] do_sys_openat2+0x11b/0x1d0 [ 234.812836][ T8090] ? __pfx_do_sys_openat2+0x10/0x10 [ 234.812876][ T8090] __x64_sys_openat+0x174/0x210 [ 234.812906][ T8090] ? __pfx___x64_sys_openat+0x10/0x10 [ 234.812938][ T8090] ? rcu_is_watching+0x12/0xc0 [ 234.812973][ T8090] do_syscall_64+0xcd/0x260 [ 234.813003][ T8090] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 234.813032][ T8090] RIP: 0033:0x7f32e2d8d169 [ 234.813064][ T8090] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 234.813092][ T8090] RSP: 002b:00007f32e0bd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 234.813121][ T8090] RAX: ffffffffffffffda RBX: 00007f32e2fa6080 RCX: 00007f32e2d8d169 [ 234.813141][ T8090] RDX: 0000000000080102 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 234.813160][ T8090] RBP: 00007f32e2e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 234.813177][ T8090] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 234.813194][ T8090] R13: 0000000000000000 R14: 00007f32e2fa6080 R15: 00007ffe4bd23dc8 [ 234.813225][ T8090] [ 237.575233][ T8118] FAULT_INJECTION: forcing a failure. [ 237.575233][ T8118] name failslab, interval 1, probability 0, space 0, times 0 [ 237.591724][ T8118] CPU: 1 UID: 0 PID: 8118 Comm: syz.3.618 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 237.591766][ T8118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 237.591783][ T8118] Call Trace: [ 237.591792][ T8118] [ 237.591803][ T8118] dump_stack_lvl+0x16c/0x1f0 [ 237.591839][ T8118] should_fail_ex+0x512/0x640 [ 237.591874][ T8118] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 237.591918][ T8118] should_failslab+0xc2/0x120 [ 237.591963][ T8118] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 237.592004][ T8118] ? is_bad_inode+0xd/0x40 [ 237.592045][ T8118] ? ima_d_path+0xbd/0x2a0 [ 237.592077][ T8118] ima_d_path+0xbd/0x2a0 [ 237.592103][ T8118] ? vfs_getxattr_alloc+0xec/0x340 [ 237.592143][ T8118] ? __pfx_ima_d_path+0x10/0x10 [ 237.592179][ T8118] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 237.592227][ T8118] process_measurement+0x1b71/0x2360 [ 237.592262][ T8118] ? __pfx_process_measurement+0x10/0x10 [ 237.592289][ T8118] ? find_held_lock+0x2b/0x80 [ 237.592320][ T8118] ? rcu_is_watching+0x12/0xc0 [ 237.592346][ T8118] ? mod_objcg_state+0x4ba/0x8c0 [ 237.592382][ T8118] ? lockdep_hardirqs_on+0x7c/0x110 [ 237.592451][ T8118] ? __pfx_tracing_clock_show+0x10/0x10 [ 237.592497][ T8118] ? single_open+0x15f/0x1f0 [ 237.592527][ T8118] ? inode_to_bdi+0x9e/0x160 [ 237.592564][ T8118] ima_file_check+0xc5/0x110 [ 237.592590][ T8118] ? __pfx_ima_file_check+0x10/0x10 [ 237.592642][ T8118] security_file_post_open+0x8e/0x210 [ 237.592686][ T8118] path_openat+0x147d/0x2d40 [ 237.592737][ T8118] ? __pfx_path_openat+0x10/0x10 [ 237.592782][ T8118] do_filp_open+0x20b/0x470 [ 237.592822][ T8118] ? __pfx_do_filp_open+0x10/0x10 [ 237.592862][ T8118] ? find_held_lock+0x2b/0x80 [ 237.592907][ T8118] ? alloc_fd+0x420/0x760 [ 237.592952][ T8118] do_sys_openat2+0x11b/0x1d0 [ 237.592980][ T8118] ? __pfx_do_sys_openat2+0x10/0x10 [ 237.593036][ T8118] __x64_sys_openat+0x174/0x210 [ 237.593073][ T8118] ? __pfx___x64_sys_openat+0x10/0x10 [ 237.593106][ T8118] ? rcu_is_watching+0x12/0xc0 [ 237.593142][ T8118] do_syscall_64+0xcd/0x260 [ 237.593172][ T8118] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 237.593202][ T8118] RIP: 0033:0x7f340878d169 [ 237.593226][ T8118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 237.593255][ T8118] RSP: 002b:00007f34096ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 237.593283][ T8118] RAX: ffffffffffffffda RBX: 00007f34089a5fa0 RCX: 00007f340878d169 [ 237.593301][ T8118] RDX: 0000000000000002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 237.593319][ T8118] RBP: 00007f340880e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 237.593337][ T8118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 237.593354][ T8118] R13: 0000000000000000 R14: 00007f34089a5fa0 R15: 00007ffd12b788a8 [ 237.593385][ T8118] [ 240.454598][ T8149] netlink: 350 bytes leftover after parsing attributes in process `syz.1.627'. syzkaller syzkaller login: [ 240.817405][ T8166] Invalid ELF header magic: != ELF [ 240.832423][ T8169] random: crng reseeded on system resumption [ 241.721147][ T8180] vivid-003: ================= START STATUS ================= [ 241.744539][ T8180] vivid-003: Radio HW Seek Mode: Bounded [ 241.750529][ T8180] vivid-003: Radio Programmable HW Seek: false [ 241.762160][ T8180] vivid-003: RDS Rx I/O Mode: Block I/O [ 241.781330][ T8180] vivid-003: Generate RBDS Instead of RDS: false [ 241.787776][ T8180] vivid-003: RDS Reception: true [ 241.799119][ T8180] vivid-003: RDS Program Type: 0 inactive [ 241.814197][ T8180] vivid-003: RDS PS Name: inactive [ 241.819503][ T8180] vivid-003: RDS Radio Text: inactive [ 241.836507][ T8180] vivid-003: RDS Traffic Announcement: false inactive [ 241.844800][ T8180] vivid-003: RDS Traffic Program: false inactive [ 241.851722][ T8180] vivid-003: RDS Music: false inactive [ 241.857495][ T8180] vivid-003: ================== END STATUS ================== [ 242.203196][ T8189] FAULT_INJECTION: forcing a failure. [ 242.203196][ T8189] name failslab, interval 1, probability 0, space 0, times 0 [ 242.231472][ T8189] CPU: 0 UID: 0 PID: 8189 Comm: syz.0.637 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 242.231515][ T8189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 242.231532][ T8189] Call Trace: [ 242.231540][ T8189] [ 242.231551][ T8189] dump_stack_lvl+0x16c/0x1f0 [ 242.231584][ T8189] should_fail_ex+0x512/0x640 [ 242.231617][ T8189] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 242.231661][ T8189] should_failslab+0xc2/0x120 [ 242.231705][ T8189] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 242.231744][ T8189] ? bdev_alloc_inode+0x26/0x90 [ 242.231768][ T8189] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 242.231807][ T8189] ? __pfx_bdev_alloc_inode+0x10/0x10 [ 242.231837][ T8189] bdev_alloc_inode+0x26/0x90 [ 242.231865][ T8189] ? __pfx_bdev_alloc_inode+0x10/0x10 [ 242.231893][ T8189] alloc_inode+0x61/0x240 [ 242.231922][ T8189] new_inode+0x22/0x1c0 [ 242.231962][ T8189] bdev_alloc+0x2b/0x420 [ 242.232006][ T8189] __alloc_disk_node+0x116/0x610 [ 242.232041][ T8189] __blk_mq_alloc_disk+0x89/0x120 [ 242.232077][ T8189] loop_add+0x496/0xb70 [ 242.232100][ T8189] ? 0xffffffff81000000 [ 242.232117][ T8189] ? do_vfs_ioctl+0x512/0x1990 [ 242.232146][ T8189] ? __pfx_loop_add+0x10/0x10 [ 242.232169][ T8189] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 242.232212][ T8189] ? find_held_lock+0x2b/0x80 [ 242.232238][ T8189] ? 0xffffffff81000000 [ 242.232255][ T8189] loop_control_ioctl+0x13c/0x630 [ 242.232284][ T8189] ? __pfx_loop_control_ioctl+0x10/0x10 [ 242.232314][ T8189] ? 0xffffffff81000000 [ 242.232330][ T8189] ? __pfx_loop_control_ioctl+0x10/0x10 [ 242.232358][ T8189] ? 0xffffffff81000000 [ 242.232374][ T8189] __x64_sys_ioctl+0x190/0x200 [ 242.232404][ T8189] do_syscall_64+0xcd/0x260 [ 242.232430][ T8189] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 242.232454][ T8189] RIP: 0033:0x7f1277f8d169 [ 242.232474][ T8189] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 242.232498][ T8189] RSP: 002b:00007f1278df4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 242.232523][ T8189] RAX: ffffffffffffffda RBX: 00007f12781a5fa0 RCX: 00007f1277f8d169 [ 242.232540][ T8189] RDX: ffffffff81000000 RSI: 0000000000004c80 RDI: 0000000000000007 [ 242.232555][ T8189] RBP: 00007f127800e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 242.232570][ T8189] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 242.232601][ T8189] R13: 0000000000000000 R14: 00007f12781a5fa0 R15: 00007ffe5f75e928 [ 242.232623][ T8189] ? 0xffffffff81000000 [ 242.232644][ T8189] [ 243.792722][ T8215] FAULT_INJECTION: forcing a failure. [ 243.792722][ T8215] name failslab, interval 1, probability 0, space 0, times 0 [ 243.834892][ T8215] CPU: 0 UID: 0 PID: 8215 Comm: syz.2.647 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 243.834935][ T8215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 243.834952][ T8215] Call Trace: [ 243.834986][ T8215] [ 243.834997][ T8215] dump_stack_lvl+0x16c/0x1f0 [ 243.835031][ T8215] should_fail_ex+0x512/0x640 [ 243.835064][ T8215] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 243.835107][ T8215] should_failslab+0xc2/0x120 [ 243.835155][ T8215] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 243.835194][ T8215] ? __kernfs_new_node+0xd2/0x8a0 [ 243.835242][ T8215] __kernfs_new_node+0xd2/0x8a0 [ 243.835289][ T8215] ? __pfx___kernfs_new_node+0x10/0x10 [ 243.835336][ T8215] ? __lock_acquire+0xaa4/0x1ba0 [ 243.835392][ T8215] kernfs_new_node+0x186/0x240 [ 243.835427][ T8215] kernfs_create_link+0xcc/0x240 [ 243.835466][ T8215] sysfs_do_create_link_sd+0x90/0x140 [ 243.835511][ T8215] sysfs_create_link+0x61/0xc0 [ 243.835551][ T8215] device_add+0x591/0x1a70 [ 243.835587][ T8215] ? __pfx_device_add+0x10/0x10 [ 243.835617][ T8215] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 243.835662][ T8215] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 243.835711][ T8215] wiphy_register+0x1c9c/0x2850 [ 243.835740][ T8215] ? netdev_run_todo+0x864/0x1320 [ 243.835782][ T8215] ? __dev_printk+0x1d0/0x270 [ 243.835828][ T8215] ? __pfx_wiphy_register+0x10/0x10 [ 243.835873][ T8215] ieee80211_register_hw+0x2432/0x4020 [ 243.835913][ T8215] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 243.835947][ T8215] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 243.836000][ T8215] ? __hrtimer_init+0xc6/0x220 [ 243.836041][ T8215] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 243.836078][ T8215] mac80211_hwsim_new_radio+0x3034/0x54d0 [ 243.836135][ T8215] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 243.836184][ T8215] hwsim_new_radio_nl+0xb51/0x12c0 [ 243.836225][ T8215] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 243.836274][ T8215] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 243.836306][ T8215] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 243.836344][ T8215] genl_family_rcv_msg_doit+0x206/0x2f0 [ 243.836375][ T8215] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 243.836405][ T8215] ? trace_cap_capable+0x18d/0x200 [ 243.836445][ T8215] ? bpf_lsm_capable+0x9/0x10 [ 243.836473][ T8215] ? security_capable+0x7e/0x260 [ 243.836502][ T8215] ? ns_capable+0xd7/0x110 [ 243.836533][ T8215] genl_rcv_msg+0x55c/0x800 [ 243.836564][ T8215] ? __pfx_genl_rcv_msg+0x10/0x10 [ 243.836590][ T8215] ? __pfx___dev_queue_xmit+0x10/0x10 [ 243.836623][ T8215] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 243.836663][ T8215] ? __lock_acquire+0xaa4/0x1ba0 [ 243.836706][ T8215] netlink_rcv_skb+0x16a/0x440 [ 243.836747][ T8215] ? __pfx_genl_rcv_msg+0x10/0x10 [ 243.836776][ T8215] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 243.836832][ T8215] ? __pfx_down_read+0x10/0x10 [ 243.836866][ T8215] ? netlink_deliver_tap+0x1ae/0xd30 [ 243.836911][ T8215] genl_rcv+0x28/0x40 [ 243.836934][ T8215] netlink_unicast+0x53a/0x7f0 [ 243.836987][ T8215] ? __pfx_netlink_unicast+0x10/0x10 [ 243.837030][ T8215] ? __phys_addr_symbol+0x30/0x80 [ 243.837068][ T8215] ? __check_object_size+0x4c7/0x710 [ 243.837119][ T8215] netlink_sendmsg+0x8da/0xd70 [ 243.837166][ T8215] ? __pfx_netlink_sendmsg+0x10/0x10 [ 243.837220][ T8215] ____sys_sendmsg+0xa8d/0xc60 [ 243.837251][ T8215] ? copy_msghdr_from_user+0x10a/0x160 [ 243.837289][ T8215] ? __pfx_____sys_sendmsg+0x10/0x10 [ 243.837330][ T8215] ___sys_sendmsg+0x134/0x1d0 [ 243.837370][ T8215] ? __pfx____sys_sendmsg+0x10/0x10 [ 243.837444][ T8215] __sys_sendmsg+0x16d/0x220 [ 243.837482][ T8215] ? __pfx___sys_sendmsg+0x10/0x10 [ 243.837519][ T8215] ? __x64_sys_futex+0x1e0/0x4c0 [ 243.837560][ T8215] ? rcu_is_watching+0x12/0xc0 [ 243.837597][ T8215] do_syscall_64+0xcd/0x260 [ 243.837629][ T8215] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 243.837659][ T8215] RIP: 0033:0x7f32e2d8d169 [ 243.837684][ T8215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 243.837711][ T8215] RSP: 002b:00007f32e0bf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 243.837740][ T8215] RAX: ffffffffffffffda RBX: 00007f32e2fa5fa0 RCX: 00007f32e2d8d169 [ 243.837760][ T8215] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000008 [ 243.837778][ T8215] RBP: 00007f32e2e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 243.837796][ T8215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 243.837811][ T8215] R13: 0000000000000000 R14: 00007f32e2fa5fa0 R15: 00007ffe4bd23dc8 [ 243.837842][ T8215] syzkaller syzkaller login: [ 245.953597][ T8250] netlink: 4 bytes leftover after parsing attributes in process `syz.0.659'. [ 246.005925][ T8253] capability: warning: `syz.2.658' uses deprecated v2 capabilities in a way that may be insecure [ 247.388550][ T8290] Invalid ELF header magic: != ELF [ 248.500943][ T8314] netlink: 4 bytes leftover after parsing attributes in process `syz.3.668'. [ 248.932382][ T8326] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 248.939545][ T8326] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 248.951582][ T8326] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 248.966119][ T8326] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 249.152723][ T8331] netlink: 4 bytes leftover after parsing attributes in process `syz.2.673'. syzkaller syzkaller login: [ 249.818415][ T8346] netlink: 28 bytes leftover after parsing attributes in process `syz.2.679'. [ 249.823765][ T8344] Invalid ELF header magic: != ELF [ 249.956098][ T8346] bond0: (slave bond_slave_0): Releasing backup interface [ 250.961782][ T5831] Bluetooth: hci2: command 0x0c1a tx timeout [ 250.967928][ T5845] Bluetooth: hci1: command 0x0c1a tx timeout [ 250.974097][ T5839] Bluetooth: hci0: command 0x0c1a tx timeout [ 251.043829][ T5831] Bluetooth: hci3: command 0x0c1a tx timeout syzkaller syzkaller login: [ 251.771006][ T8368] random: crng reseeded on system resumption [ 252.165476][ T8379] netlink: 4 bytes leftover after parsing attributes in process `syz.0.686'. [ 253.203806][ T8386] sg_write: data in/out 32732/16086 bytes for SCSI command 0x0-- guessing data in; [ 253.203806][ T8386] program syz.3.688 not setting count and/or reply_len properly [ 253.290290][ T30] audit: type=1326 audit(6038054038.954:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.1.692" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff8f718d169 code=0x0 [ 253.306278][ T8391] vivid-003: ================= START STATUS ================= [ 253.319857][ T8391] vivid-003: Radio HW Seek Mode: Bounded [ 253.326660][ T8391] vivid-003: Radio Programmable HW Seek: false [ 253.333470][ T8391] vivid-003: RDS Rx I/O Mode: Block I/O [ 253.339674][ T8391] vivid-003: Generate RBDS Instead of RDS: false [ 253.346652][ T8391] vivid-003: RDS Reception: true [ 253.404671][ T8391] vivid-003: RDS Program Type: 0 inactive [ 253.410569][ T8391] vivid-003: RDS PS Name: inactive [ 253.476369][ T8391] vivid-003: RDS Radio Text: inactive [ 253.498257][ T8391] vivid-003: RDS Traffic Announcement: false inactive [ 253.541780][ T8391] vivid-003: RDS Traffic Program: false inactive [ 253.571455][ T8391] vivid-003: RDS Music: false inactive [ 253.577043][ T8391] vivid-003: ================== END STATUS ================== [ 254.331546][ T8442] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 254.437985][ T8442] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 254.495044][ T8442] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 254.538028][ T8442] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 256.004808][ T8476] netlink: 28 bytes leftover after parsing attributes in process `syz.1.701'. [ 256.241602][ T5831] Bluetooth: hci0: command 0x0c1a tx timeout [ 256.481433][ T5831] Bluetooth: hci1: command 0x0c1a tx timeout [ 256.561346][ T5831] Bluetooth: hci3: command 0x0c1a tx timeout [ 256.561389][ T5845] Bluetooth: hci2: command 0x0c1a tx timeout [ 257.273414][ T8484] Invalid ELF header magic: != ELF [ 257.369489][ T8488] vivid-003: ================= START STATUS ================= [ 257.418957][ T8488] vivid-003: Radio HW Seek Mode: Bounded [ 257.461574][ T8488] vivid-003: Radio Programmable HW Seek: false [ 257.517776][ T8488] vivid-003: RDS Rx I/O Mode: Block I/O [ 257.633030][ T8488] vivid-003: Generate RBDS Instead of RDS: false [ 257.640038][ T8488] vivid-003: RDS Reception: true [ 257.682104][ T8488] vivid-003: RDS Program Type: 0 inactive [ 257.687959][ T8488] vivid-003: RDS PS Name: inactive [ 257.707846][ T8488] vivid-003: RDS Radio Text: inactive [ 257.752120][ T8488] vivid-003: RDS Traffic Announcement: false inactive [ 257.811771][ T8488] vivid-003: RDS Traffic Program: false inactive [ 257.818237][ T8488] vivid-003: RDS Music: false inactive [ 257.871612][ T8488] vivid-003: ================== END STATUS ================== [ 258.590517][ T8502] sp0: Synchronizing with TNC [ 259.346322][ T5845] Bluetooth: hci0: ACL packet for unknown connection handle 0 [ 259.800551][ T8532] Invalid ELF header magic: != ELF [ 261.012016][ T8543] netlink: 338 bytes leftover after parsing attributes in process `syz.0.722'. [ 261.043487][ T8543] netlink: 338 bytes leftover after parsing attributes in process `syz.0.722'. [ 261.167918][ T8544] netlink: 338 bytes leftover after parsing attributes in process `syz.0.722'. [ 261.206563][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 261.213025][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 264.191575][ T8575] FAULT_INJECTION: forcing a failure. [ 264.191575][ T8575] name failslab, interval 1, probability 0, space 0, times 0 [ 264.211411][ T8575] CPU: 0 UID: 0 PID: 8575 Comm: syz.1.730 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 264.211455][ T8575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 264.211473][ T8575] Call Trace: [ 264.211482][ T8575] [ 264.211492][ T8575] dump_stack_lvl+0x16c/0x1f0 [ 264.211525][ T8575] should_fail_ex+0x512/0x640 [ 264.211559][ T8575] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 264.211615][ T8575] should_failslab+0xc2/0x120 [ 264.211660][ T8575] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 264.211705][ T8575] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 264.211748][ T8575] ? fib_notifier_ops_register+0x32/0x270 [ 264.211793][ T8575] kmemdup_noprof+0x29/0x60 [ 264.211824][ T8575] fib_notifier_ops_register+0x32/0x270 [ 264.211868][ T8575] fib4_notifier_init+0x4f/0xd0 [ 264.211906][ T8575] fib_net_init+0xbf/0x3f0 [ 264.211943][ T8575] ? __pfx___register_sysctl_table+0x10/0x10 [ 264.211976][ T8575] ? __pfx_fib_net_init+0x10/0x10 [ 264.212014][ T8575] ? lockdep_init_map_type+0x5c/0x280 [ 264.212056][ T8575] ? do_init_timer+0xc9/0x110 [ 264.212088][ T8575] ? devinet_init_net+0x5c2/0x910 [ 264.212130][ T8575] ? __pfx_fib_net_init+0x10/0x10 [ 264.212162][ T8575] ops_init+0x1df/0x5f0 [ 264.212198][ T8575] setup_net+0x21e/0x850 [ 264.212236][ T8575] ? __pfx_setup_net+0x10/0x10 [ 264.212271][ T8575] ? lockdep_init_map_type+0x5c/0x280 [ 264.212308][ T8575] ? __pfx_down_read_killable+0x10/0x10 [ 264.212343][ T8575] ? debug_mutex_init+0x37/0x70 [ 264.212390][ T8575] copy_net_ns+0x2a6/0x5f0 [ 264.212436][ T8575] create_new_namespaces+0x3ea/0xad0 [ 264.212476][ T8575] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 264.212513][ T8575] ksys_unshare+0x45b/0xa40 [ 264.212550][ T8575] ? __pfx_ksys_unshare+0x10/0x10 [ 264.212593][ T8575] ? xfd_validate_state+0x5d/0x180 [ 264.212623][ T8575] ? rcu_is_watching+0x12/0xc0 [ 264.212657][ T8575] __x64_sys_unshare+0x31/0x40 [ 264.212693][ T8575] do_syscall_64+0xcd/0x260 [ 264.212722][ T8575] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 264.212751][ T8575] RIP: 0033:0x7ff8f718d169 [ 264.212775][ T8575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 264.212802][ T8575] RSP: 002b:00007ff8f7f58038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 264.212830][ T8575] RAX: ffffffffffffffda RBX: 00007ff8f73a5fa0 RCX: 00007ff8f718d169 [ 264.212850][ T8575] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 264.212867][ T8575] RBP: 00007ff8f720e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 264.212885][ T8575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 264.212902][ T8575] R13: 0000000000000000 R14: 00007ff8f73a5fa0 R15: 00007ffc75111d88 [ 264.212934][ T8575] [ 265.023138][ T5845] Bluetooth: hci0: unexpected event 0x3e length: 508 > 260 [ 265.023182][ T5845] Bluetooth: hci0: unexpected subevent 0x02 length: 507 > 260 [ 265.051272][ T5845] Bluetooth: hci0: Dropping invalid advertising data [ 265.058617][ T5845] Bluetooth: hci0: unknown advertising packet type: 0xe9 [ 266.740028][ T8612] FAULT_INJECTION: forcing a failure. [ 266.740028][ T8612] name failslab, interval 1, probability 0, space 0, times 0 [ 266.843671][ T8612] CPU: 1 UID: 0 PID: 8612 Comm: syz.0.740 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 266.843711][ T8612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 266.843729][ T8612] Call Trace: [ 266.843737][ T8612] [ 266.843748][ T8612] dump_stack_lvl+0x16c/0x1f0 [ 266.843782][ T8612] should_fail_ex+0x512/0x640 [ 266.843822][ T8612] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 266.843867][ T8612] should_failslab+0xc2/0x120 [ 266.843911][ T8612] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 266.843954][ T8612] ? sock_alloc_inode+0x25/0x1c0 [ 266.844000][ T8612] ? __pfx_sock_alloc_inode+0x10/0x10 [ 266.844034][ T8612] sock_alloc_inode+0x25/0x1c0 [ 266.844070][ T8612] alloc_inode+0x61/0x240 [ 266.844097][ T8612] sock_alloc+0x40/0x280 [ 266.844133][ T8612] __sock_create+0xc1/0x8d0 [ 266.844157][ T8612] ? proc_create_reg+0xe3/0x180 [ 266.844187][ T8612] inet_ctl_sock_create+0x94/0x230 [ 266.844230][ T8612] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 266.844270][ T8612] ? lockdep_init_map_type+0x5c/0x280 [ 266.844308][ T8612] ? lockdep_init_map_type+0x5c/0x280 [ 266.844346][ T8612] ? __pfx_igmp_net_init+0x10/0x10 [ 266.844373][ T8612] igmp_net_init+0xd0/0x1a0 [ 266.844402][ T8612] ops_init+0x1df/0x5f0 [ 266.844442][ T8612] setup_net+0x21e/0x850 [ 266.844479][ T8612] ? __pfx_setup_net+0x10/0x10 [ 266.844512][ T8612] ? lockdep_init_map_type+0x5c/0x280 [ 266.844549][ T8612] ? __pfx_down_read_killable+0x10/0x10 [ 266.844582][ T8612] ? debug_mutex_init+0x37/0x70 [ 266.844608][ T8612] copy_net_ns+0x2a6/0x5f0 [ 266.844648][ T8612] create_new_namespaces+0x3ea/0xad0 [ 266.844692][ T8612] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 266.844728][ T8612] ksys_unshare+0x45b/0xa40 [ 266.844765][ T8612] ? __pfx_ksys_unshare+0x10/0x10 [ 266.844800][ T8612] ? xfd_validate_state+0x5d/0x180 [ 266.844836][ T8612] ? rcu_is_watching+0x12/0xc0 [ 266.844867][ T8612] __x64_sys_unshare+0x31/0x40 [ 266.844901][ T8612] do_syscall_64+0xcd/0x260 [ 266.844926][ T8612] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 266.844951][ T8612] RIP: 0033:0x7f1277f8d169 [ 266.844973][ T8612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 266.844999][ T8612] RSP: 002b:00007f1278df4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 266.845027][ T8612] RAX: ffffffffffffffda RBX: 00007f12781a5fa0 RCX: 00007f1277f8d169 [ 266.845047][ T8612] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 266.845064][ T8612] RBP: 00007f127800e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 266.845080][ T8612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 266.845096][ T8612] R13: 0000000000000000 R14: 00007f12781a5fa0 R15: 00007ffe5f75e928 [ 266.845127][ T8612] [ 266.849797][ T8612] socket: no more sockets [ 267.141848][ T8612] Failed to initialize the IGMP autojoin socket (err -23) [ 268.278002][ T8633] FAULT_INJECTION: forcing a failure. [ 268.278002][ T8633] name failslab, interval 1, probability 0, space 0, times 0 [ 268.307037][ T8633] CPU: 0 UID: 0 PID: 8633 Comm: syz.0.747 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 268.307081][ T8633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 268.307098][ T8633] Call Trace: [ 268.307106][ T8633] [ 268.307117][ T8633] dump_stack_lvl+0x16c/0x1f0 [ 268.307150][ T8633] should_fail_ex+0x512/0x640 [ 268.307182][ T8633] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 268.307223][ T8633] should_failslab+0xc2/0x120 [ 268.307267][ T8633] __kmalloc_cache_noprof+0x6a/0x3e0 [ 268.307304][ T8633] ? snd_pcm_oss_change_params_locked+0x211/0x3b40 [ 268.307337][ T8633] snd_pcm_oss_change_params_locked+0x211/0x3b40 [ 268.307366][ T8633] ? preempt_count_sub+0xc5/0x160 [ 268.307401][ T8633] ? trace_contention_end+0xdd/0x130 [ 268.307440][ T8633] ? __mutex_lock+0x1cb/0xb00 [ 268.307467][ T8633] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 268.307495][ T8633] ? snd_pcm_oss_get_active_substream+0x146/0x1d0 [ 268.307526][ T8633] ? __pfx___mutex_lock+0x10/0x10 [ 268.307560][ T8633] ? find_held_lock+0x2b/0x80 [ 268.307591][ T8633] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 268.307623][ T8633] snd_pcm_oss_ioctl+0x31aa/0x37a0 [ 268.307651][ T8633] ? find_held_lock+0x2b/0x80 [ 268.307679][ T8633] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 268.307710][ T8633] ? __fget_files+0x20e/0x3c0 [ 268.307752][ T8633] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 268.307792][ T8633] __x64_sys_ioctl+0x190/0x200 [ 268.307826][ T8633] do_syscall_64+0xcd/0x260 [ 268.307855][ T8633] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 268.307882][ T8633] RIP: 0033:0x7f1277f8d169 [ 268.307905][ T8633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 268.307933][ T8633] RSP: 002b:00007f1278df4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 268.307959][ T8633] RAX: ffffffffffffffda RBX: 00007f12781a5fa0 RCX: 00007f1277f8d169 [ 268.307977][ T8633] RDX: 0000000000000000 RSI: 00000000c0045005 RDI: 0000000000000005 [ 268.307993][ T8633] RBP: 00007f127800e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 268.308009][ T8633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 268.308026][ T8633] R13: 0000000000000000 R14: 00007f12781a5fa0 R15: 00007ffe5f75e928 [ 268.308055][ T8633] [ 268.642792][ T8635] Invalid ELF header magic: != ELF [ 269.039033][ T8642] netlink: 246 bytes leftover after parsing attributes in process `syz.2.749'. [ 270.012219][ T8654] HfR: entered promiscuous mode [ 270.073182][ T8654] netlink: 12 bytes leftover after parsing attributes in process `syz.2.754'. [ 270.111421][ T8654] HfR: left promiscuous mode [ 270.229602][ T8657] HfR: entered promiscuous mode [ 271.994201][ T8690] netlink: 342 bytes leftover after parsing attributes in process `syz.3.766'. [ 274.545918][ T8717] Invalid ELF header magic: != ELF [ 275.338335][ T8725] FAULT_INJECTION: forcing a failure. [ 275.338335][ T8725] name failslab, interval 1, probability 0, space 0, times 0 [ 275.361461][ T8725] CPU: 1 UID: 0 PID: 8725 Comm: syz.2.776 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 275.361505][ T8725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 275.361522][ T8725] Call Trace: [ 275.361530][ T8725] [ 275.361541][ T8725] dump_stack_lvl+0x16c/0x1f0 [ 275.361574][ T8725] should_fail_ex+0x512/0x640 [ 275.361609][ T8725] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 275.361654][ T8725] should_failslab+0xc2/0x120 [ 275.361700][ T8725] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 275.361749][ T8725] ? __pfx_map_id_range_down+0x10/0x10 [ 275.361790][ T8725] ? prepare_creds+0x2e/0x750 [ 275.361838][ T8725] prepare_creds+0x2e/0x750 [ 275.361883][ T8725] __sys_setfsuid+0xda/0x350 [ 275.361916][ T8725] ? rcu_is_watching+0x12/0xc0 [ 275.361946][ T8725] do_syscall_64+0xcd/0x260 [ 275.361975][ T8725] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.362004][ T8725] RIP: 0033:0x7f32e2d8d169 [ 275.362027][ T8725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 275.362054][ T8725] RSP: 002b:00007f32e0bf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000007a [ 275.362082][ T8725] RAX: ffffffffffffffda RBX: 00007f32e2fa5fa0 RCX: 00007f32e2d8d169 [ 275.362101][ T8725] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 275.362118][ T8725] RBP: 00007f32e2e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 275.362134][ T8725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 275.362151][ T8725] R13: 0000000000000000 R14: 00007f32e2fa5fa0 R15: 00007ffe4bd23dc8 [ 275.362182][ T8725] [ 276.062932][ T8733] FAULT_INJECTION: forcing a failure. [ 276.062932][ T8733] name failslab, interval 1, probability 0, space 0, times 0 [ 276.141874][ T8733] CPU: 1 UID: 0 PID: 8733 Comm: syz.3.780 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 276.141920][ T8733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 276.141937][ T8733] Call Trace: [ 276.141946][ T8733] [ 276.141957][ T8733] dump_stack_lvl+0x16c/0x1f0 [ 276.141990][ T8733] should_fail_ex+0x512/0x640 [ 276.142027][ T8733] ? fs_reclaim_acquire+0xae/0x150 [ 276.142064][ T8733] ? mempool_init_node+0x31d/0x760 [ 276.142105][ T8733] should_failslab+0xc2/0x120 [ 276.142152][ T8733] __kmalloc_noprof+0xd2/0x510 [ 276.142188][ T8733] ? mempool_init_noprof+0x3a/0x50 [ 276.142227][ T8733] ? __pfx_mempool_kmalloc+0x10/0x10 [ 276.142264][ T8733] ? __pfx_mempool_kmalloc+0x10/0x10 [ 276.142301][ T8733] mempool_init_node+0x31d/0x760 [ 276.142346][ T8733] ? fsnotify_add_mark_locked+0x79b/0xfd0 [ 276.142387][ T8733] ? __pfx_mempool_kmalloc+0x10/0x10 [ 276.142420][ T8733] ? __pfx_mempool_kfree+0x10/0x10 [ 276.142451][ T8733] mempool_init_noprof+0x3a/0x50 [ 276.142488][ T8733] do_fanotify_mark+0x26aa/0x3680 [ 276.142526][ T8733] ? __pfx_do_fanotify_mark+0x10/0x10 [ 276.142558][ T8733] ? __x64_sys_futex+0x1e9/0x4c0 [ 276.142591][ T8733] ? xfd_validate_state+0x5d/0x180 [ 276.142613][ T8733] ? arch_syscall_is_vdso_sigreturn+0xb6/0x230 [ 276.142652][ T8733] ? syscall_user_dispatch+0x78/0x140 [ 276.142696][ T8733] __x64_sys_fanotify_mark+0xbd/0x160 [ 276.142736][ T8733] ? syscall_trace_enter+0x5e/0x260 [ 276.142774][ T8733] do_syscall_64+0xcd/0x260 [ 276.142803][ T8733] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 276.142828][ T8733] RIP: 0033:0x7f340878d169 [ 276.142849][ T8733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 276.142875][ T8733] RSP: 002b:00007f34096ad038 EFLAGS: 00000246 ORIG_RAX: 000000000000012d [ 276.142899][ T8733] RAX: ffffffffffffffda RBX: 00007f34089a5fa0 RCX: 00007f340878d169 [ 276.142916][ T8733] RDX: 0000000000008009 RSI: 0000000000000105 RDI: 0000000000000000 [ 276.142930][ T8733] RBP: 00007f340880e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 276.142946][ T8733] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 276.142961][ T8733] R13: 0000000000000000 R14: 00007f34089a5fa0 R15: 00007ffd12b788a8 [ 276.142989][ T8733] [ 276.379054][ C1] vkms_vblank_simulate: vblank timer overrun [ 277.055209][ T8749] FAULT_INJECTION: forcing a failure. [ 277.055209][ T8749] name failslab, interval 1, probability 0, space 0, times 0 [ 277.161486][ T8749] CPU: 1 UID: 0 PID: 8749 Comm: syz.3.784 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 277.161531][ T8749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 277.161549][ T8749] Call Trace: [ 277.161559][ T8749] [ 277.161571][ T8749] dump_stack_lvl+0x16c/0x1f0 [ 277.161605][ T8749] should_fail_ex+0x512/0x640 [ 277.161656][ T8749] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 277.161698][ T8749] should_failslab+0xc2/0x120 [ 277.161744][ T8749] __kmalloc_cache_noprof+0x6a/0x3e0 [ 277.161781][ T8749] ? percpu_ref_init+0xec/0x410 [ 277.161810][ T8749] ? __pfx_blkg_release+0x10/0x10 [ 277.161838][ T8749] percpu_ref_init+0xec/0x410 [ 277.161867][ T8749] ? kasan_save_track+0x14/0x30 [ 277.161909][ T8749] blkg_alloc+0xea/0xb00 [ 277.161943][ T8749] blkcg_init_disk+0x51/0x160 [ 277.161977][ T8749] __alloc_disk_node+0x299/0x610 [ 277.162023][ T8749] __blk_alloc_disk+0xd7/0x170 [ 277.162063][ T8749] ? __pfx___blk_alloc_disk+0x10/0x10 [ 277.162122][ T8749] ? lockdep_init_map_type+0x5c/0x280 [ 277.162164][ T8749] ? __raw_spin_lock_init+0x3a/0x110 [ 277.162212][ T8749] ? __pfx_hot_add_show+0x10/0x10 [ 277.162245][ T8749] zram_add+0x16e/0x6c0 [ 277.162277][ T8749] ? __pfx_zram_add+0x10/0x10 [ 277.162334][ T8749] ? __pfx_hot_add_show+0x10/0x10 [ 277.162367][ T8749] hot_add_show+0x21/0x80 [ 277.162397][ T8749] class_attr_show+0x6f/0xa0 [ 277.162427][ T8749] ? __pfx_class_attr_show+0x10/0x10 [ 277.162455][ T8749] sysfs_kf_seq_show+0x23e/0x410 [ 277.162500][ T8749] seq_read_iter+0x506/0x12b0 [ 277.162550][ T8749] kernfs_fop_read_iter+0x422/0x5a0 [ 277.162580][ T8749] ? rw_verify_area+0xcf/0x680 [ 277.162615][ T8749] vfs_read+0x8c8/0xc70 [ 277.162659][ T8749] ? __pfx___mutex_lock+0x10/0x10 [ 277.162687][ T8749] ? __pfx_vfs_read+0x10/0x10 [ 277.162744][ T8749] ksys_read+0x12a/0x240 [ 277.162783][ T8749] ? __pfx_ksys_read+0x10/0x10 [ 277.162820][ T8749] ? rcu_is_watching+0x12/0xc0 [ 277.162857][ T8749] do_syscall_64+0xcd/0x260 [ 277.162887][ T8749] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 277.162918][ T8749] RIP: 0033:0x7f340878d169 [ 277.162942][ T8749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 277.162970][ T8749] RSP: 002b:00007f34096ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 277.162999][ T8749] RAX: ffffffffffffffda RBX: 00007f34089a5fa0 RCX: 00007f340878d169 [ 277.163019][ T8749] RDX: 0000000000001000 RSI: 0000200000000ec0 RDI: 0000000000000007 [ 277.163037][ T8749] RBP: 00007f340880e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 277.163054][ T8749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 277.163071][ T8749] R13: 0000000000000000 R14: 00007f34089a5fa0 R15: 00007ffd12b788a8 [ 277.163104][ T8749] [ 277.439865][ C1] vkms_vblank_simulate: vblank timer overrun [ 277.709536][ T8749] zram: Error allocating disk structure for device 1 [ 278.266167][ T8754] netlink: 4 bytes leftover after parsing attributes in process `syz.0.785'. [ 279.667261][ T8783] netlink: 28 bytes leftover after parsing attributes in process `syz.1.795'. [ 280.305532][ T8793] netlink: 4 bytes leftover after parsing attributes in process `syz.3.798'. [ 283.609915][ T8855] Invalid ELF header magic: != ELF [ 284.308641][ T8870] netlink: 28 bytes leftover after parsing attributes in process `syz.1.820'. [ 285.830826][ T8888] FAULT_INJECTION: forcing a failure. [ 285.830826][ T8888] name failslab, interval 1, probability 0, space 0, times 0 [ 285.919693][ T8888] CPU: 1 UID: 0 PID: 8888 Comm: syz.3.826 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 285.919735][ T8888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 285.919752][ T8888] Call Trace: [ 285.919759][ T8888] [ 285.919771][ T8888] dump_stack_lvl+0x16c/0x1f0 [ 285.919806][ T8888] should_fail_ex+0x512/0x640 [ 285.919841][ T8888] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 285.919886][ T8888] should_failslab+0xc2/0x120 [ 285.919934][ T8888] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 285.919975][ T8888] ? find_held_lock+0x2b/0x80 [ 285.920004][ T8888] ? alloc_vfsmnt+0x23/0x6f0 [ 285.920036][ T8888] alloc_vfsmnt+0x23/0x6f0 [ 285.920067][ T8888] clone_mnt+0x6d/0xff0 [ 285.920099][ T8888] ? copy_tree+0x50d/0xa20 [ 285.920140][ T8888] ? copy_mnt_ns+0x1ac/0xac0 [ 285.920169][ T8888] copy_tree+0x38d/0xa20 [ 285.920221][ T8888] copy_mnt_ns+0x1ac/0xac0 [ 285.920245][ T8888] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 285.920286][ T8888] ? trace_cap_capable+0x18d/0x200 [ 285.920326][ T8888] ? create_new_namespaces+0x30/0xad0 [ 285.920373][ T8888] create_new_namespaces+0xd3/0xad0 [ 285.920407][ T8888] ? bpf_lsm_capable+0x9/0x10 [ 285.920435][ T8888] ? security_capable+0x7e/0x260 [ 285.920471][ T8888] copy_namespaces+0x468/0x560 [ 285.920507][ T8888] copy_process+0x2b75/0x9130 [ 285.920563][ T8888] ? __pfx_copy_process+0x10/0x10 [ 285.920595][ T8888] ? __pfx___futex_wait+0x10/0x10 [ 285.920659][ T8888] kernel_clone+0xfc/0x960 [ 285.920696][ T8888] ? __pfx_kernel_clone+0x10/0x10 [ 285.920738][ T8888] ? do_sys_openat2+0x1b0/0x1d0 [ 285.920775][ T8888] __do_sys_clone+0xce/0x120 [ 285.920810][ T8888] ? __pfx___do_sys_clone+0x10/0x10 [ 285.920860][ T8888] ? rcu_is_watching+0x12/0xc0 [ 285.920896][ T8888] do_syscall_64+0xcd/0x260 [ 285.920926][ T8888] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 285.920955][ T8888] RIP: 0033:0x7f340878d169 [ 285.920979][ T8888] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 285.921006][ T8888] RSP: 002b:00007f34096acfe8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 285.921035][ T8888] RAX: ffffffffffffffda RBX: 00007f34089a5fa0 RCX: 00007f340878d169 [ 285.921055][ T8888] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000001432a0091 [ 285.921072][ T8888] RBP: 00007f340880e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 285.921090][ T8888] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000 [ 285.921105][ T8888] R13: 0000000000000000 R14: 00007f34089a5fa0 R15: 00007ffd12b788a8 [ 285.921136][ T8888] [ 286.175493][ C1] vkms_vblank_simulate: vblank timer overrun [ 286.858435][ T8897] FAULT_INJECTION: forcing a failure. [ 286.858435][ T8897] name failslab, interval 1, probability 0, space 0, times 0 [ 286.901734][ T8897] CPU: 0 UID: 0 PID: 8897 Comm: syz.0.836 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 286.901778][ T8897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 286.901796][ T8897] Call Trace: [ 286.901804][ T8897] [ 286.901814][ T8897] dump_stack_lvl+0x16c/0x1f0 [ 286.901847][ T8897] should_fail_ex+0x512/0x640 [ 286.901885][ T8897] should_failslab+0xc2/0x120 [ 286.901929][ T8897] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 286.901978][ T8897] ? zswap_store+0x837/0x2660 [ 286.902015][ T8897] zswap_store+0x837/0x2660 [ 286.902056][ T8897] ? __pfx_zswap_store+0x10/0x10 [ 286.902089][ T8897] ? do_raw_spin_lock+0x12c/0x2b0 [ 286.902131][ T8897] ? find_held_lock+0x2b/0x80 [ 286.902159][ T8897] ? folio_free_swap+0x171/0x580 [ 286.902203][ T8897] ? do_raw_spin_unlock+0x172/0x230 [ 286.902245][ T8897] ? swp_swap_info+0xce/0x130 [ 286.902269][ T8897] ? __pfx_swp_swap_info+0x10/0x10 [ 286.902301][ T8897] swap_writepage+0x3bd/0x1170 [ 286.902332][ T8897] ? folio_clear_dirty_for_io+0x112/0x800 [ 286.902376][ T8897] pageout+0x3b0/0xa90 [ 286.902399][ T8897] ? __pfx_pageout+0x10/0x10 [ 286.902450][ T8897] ? on_each_cpu_cond_mask+0x5a/0x90 [ 286.902496][ T8897] ? arch_tlbbatch_flush+0x279/0x3c0 [ 286.902537][ T8897] ? folio_mark_dirty+0xd8/0x150 [ 286.902577][ T8897] shrink_folio_list+0x2f4f/0x40a0 [ 286.902621][ T8897] ? __pfx_shrink_folio_list+0x10/0x10 [ 286.902645][ T8897] ? do_syscall_64+0xcd/0x260 [ 286.902679][ T8897] ? __lock_acquire+0x5ca/0x1ba0 [ 286.902722][ T8897] ? __lock_acquire+0x5ca/0x1ba0 [ 286.902781][ T8897] ? page_ext_put+0x48/0xd0 [ 286.902818][ T8897] ? __page_table_check_zero+0x2d7/0x360 [ 286.902865][ T8897] reclaim_folio_list+0xd7/0x5d0 [ 286.902894][ T8897] ? __pfx_reclaim_folio_list+0x10/0x10 [ 286.902932][ T8897] ? lru_gen_update_size+0x539/0xde0 [ 286.902983][ T8897] ? lru_gen_del_folio+0x32b/0x540 [ 286.903030][ T8897] reclaim_pages+0x47b/0x650 [ 286.903059][ T8897] ? __pfx_reclaim_pages+0x10/0x10 [ 286.903086][ T8897] ? find_held_lock+0x2b/0x80 [ 286.903113][ T8897] ? madvise_cold_or_pageout_pte_range+0x601/0x2100 [ 286.903148][ T8897] madvise_cold_or_pageout_pte_range+0x13b2/0x2100 [ 286.903188][ T8897] ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10 [ 286.903229][ T8897] ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10 [ 286.903260][ T8897] walk_pgd_range+0xba7/0x1a90 [ 286.903292][ T8897] ? mt_find+0x3ef/0xa30 [ 286.903325][ T8897] ? __pfx_walk_pgd_range+0x10/0x10 [ 286.903357][ T8897] __walk_page_range+0x163/0x830 [ 286.903384][ T8897] ? find_vma+0xbf/0x140 [ 286.903412][ T8897] ? __pfx_find_vma+0x10/0x10 [ 286.903444][ T8897] ? walk_page_test+0x9b/0x180 [ 286.903470][ T8897] walk_page_range_mm+0x558/0x940 [ 286.903499][ T8897] ? __pfx_walk_page_range_mm+0x10/0x10 [ 286.903529][ T8897] ? find_held_lock+0x2b/0x80 [ 286.903556][ T8897] ? mlock_drain_local+0x22d/0x4f0 [ 286.903601][ T8897] walk_page_range+0x63/0x90 [ 286.903635][ T8897] madvise_pageout+0x31c/0x810 [ 286.903661][ T8897] ? find_held_lock+0x2b/0x80 [ 286.903688][ T8897] ? __pfx_madvise_pageout+0x10/0x10 [ 286.903727][ T8897] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 286.903771][ T8897] madvise_vma_behavior+0x44f/0x1de0 [ 286.903802][ T8897] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 286.903831][ T8897] ? find_vma_prev+0xda/0x160 [ 286.903864][ T8897] ? __pfx_find_vma_prev+0x10/0x10 [ 286.903906][ T8897] ? __pfx___might_resched+0x10/0x10 [ 286.903942][ T8897] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 286.903969][ T8897] madvise_walk_vmas+0x1ce/0x2c0 [ 286.904014][ T8897] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 286.904065][ T8897] do_madvise+0x364/0x7c0 [ 286.904094][ T8897] ? __pfx_do_madvise+0x10/0x10 [ 286.904122][ T8897] ? __x64_sys_futex+0x1e0/0x4c0 [ 286.904159][ T8897] ? rcu_is_watching+0x12/0xc0 [ 286.904189][ T8897] __x64_sys_madvise+0xa9/0x110 [ 286.904216][ T8897] ? lockdep_hardirqs_on+0x7c/0x110 [ 286.904258][ T8897] do_syscall_64+0xcd/0x260 [ 286.904286][ T8897] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.904313][ T8897] RIP: 0033:0x7f1277f8d169 [ 286.904334][ T8897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 286.904361][ T8897] RSP: 002b:00007f1278df4038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 286.904387][ T8897] RAX: ffffffffffffffda RBX: 00007f12781a5fa0 RCX: 00007f1277f8d169 [ 286.904405][ T8897] RDX: 0000000000000015 RSI: 0000000000000005 RDI: 0000000000000000 [ 286.904421][ T8897] RBP: 00007f127800e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 286.904438][ T8897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 286.904454][ T8897] R13: 0000000000000000 R14: 00007f12781a5fa0 R15: 00007ffe5f75e928 [ 286.904483][ T8897] [ 287.598801][ T8906] Invalid ELF header magic: != ELF [ 288.221162][ T8911] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 288.387612][ T8916] netlink: 186 bytes leftover after parsing attributes in process `syz.0.835'. [ 288.532180][ T8922] random: crng reseeded on system resumption [ 289.165384][ T8941] Invalid ELF header magic: != ELF [ 291.595478][ T8985] FAULT_INJECTION: forcing a failure. [ 291.595478][ T8985] name failslab, interval 1, probability 0, space 0, times 0 [ 291.701026][ T8985] CPU: 0 UID: 0 PID: 8985 Comm: syz.2.856 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 291.701073][ T8985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 291.701090][ T8985] Call Trace: [ 291.701099][ T8985] [ 291.701110][ T8985] dump_stack_lvl+0x16c/0x1f0 [ 291.701144][ T8985] should_fail_ex+0x512/0x640 [ 291.701180][ T8985] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 291.701230][ T8985] should_failslab+0xc2/0x120 [ 291.701276][ T8985] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 291.701319][ T8985] ? setup_mq_sysctls+0x5d/0x230 [ 291.701361][ T8985] kmemdup_noprof+0x29/0x60 [ 291.701394][ T8985] setup_mq_sysctls+0x5d/0x230 [ 291.701436][ T8985] copy_ipcs+0x479/0x610 [ 291.701471][ T8985] ? copy_utsname+0xab/0x470 [ 291.701508][ T8985] create_new_namespaces+0x20a/0xad0 [ 291.701545][ T8985] ? security_capable+0x7e/0x260 [ 291.701582][ T8985] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 291.701620][ T8985] ksys_unshare+0x45b/0xa40 [ 291.701660][ T8985] ? __pfx_ksys_unshare+0x10/0x10 [ 291.701697][ T8985] ? xfd_validate_state+0x5d/0x180 [ 291.701727][ T8985] ? rcu_is_watching+0x12/0xc0 [ 291.701761][ T8985] __x64_sys_unshare+0x31/0x40 [ 291.701800][ T8985] do_syscall_64+0xcd/0x260 [ 291.701831][ T8985] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 291.701860][ T8985] RIP: 0033:0x7f32e2d8d169 [ 291.701881][ T8985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 291.701909][ T8985] RSP: 002b:00007f32e0bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 291.701938][ T8985] RAX: ffffffffffffffda RBX: 00007f32e2fa5fa0 RCX: 00007f32e2d8d169 [ 291.701957][ T8985] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000400 [ 291.701975][ T8985] RBP: 00007f32e2e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 291.701991][ T8985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 291.702008][ T8985] R13: 0000000000000000 R14: 00007f32e2fa5fa0 R15: 00007ffe4bd23dc8 [ 291.702039][ T8985] [ 293.190435][ T8998] Invalid ELF header magic: != ELF [ 294.250674][ T5845] Bluetooth: hci3: ACL packet for unknown connection handle 0 [ 296.673781][ T5845] Bluetooth: hci1: ACL packet for unknown connection handle 0 [ 297.537933][ T9062] vivid-003: ================= START STATUS ================= [ 297.597076][ T9062] vivid-003: Radio HW Seek Mode: Bounded [ 297.631303][ T9062] vivid-003: Radio Programmable HW Seek: false [ 297.637566][ T9062] vivid-003: RDS Rx I/O Mode: Block I/O [ 297.705719][ T9062] vivid-003: Generate RBDS Instead of RDS: false [ 297.863081][ T9062] vivid-003: RDS Reception: true [ 297.868132][ T9062] vivid-003: RDS Program Type: 0 inactive [ 297.941139][ T9062] vivid-003: RDS PS Name: inactive [ 297.946535][ T9062] vivid-003: RDS Radio Text: inactive [ 297.981375][ T9062] vivid-003: RDS Traffic Announcement: false inactive [ 298.022749][ T9062] vivid-003: RDS Traffic Program: false inactive [ 298.029294][ T9062] vivid-003: RDS Music: false inactive [ 298.061282][ T9062] vivid-003: ================== END STATUS ================== [ 298.589932][ T9076] erspan0: entered allmulticast mode [ 299.397195][ T5845] Bluetooth: hci1: Malformed LE Event: 0x02 [ 299.570150][ T9100] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 299.577009][ T9100] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 302.482117][ T9143] mkiss: ax0: crc mode is auto. [ 303.428108][ T9157] netlink: 28 bytes leftover after parsing attributes in process `syz.2.914'. [ 304.293424][ T5845] Bluetooth: hci2: ACL packet for unknown connection handle 0 [ 304.733310][ T9172] netlink: 4 bytes leftover after parsing attributes in process `syz.3.910'. [ 305.417860][ T9184] Invalid ELF header magic: != ELF [ 306.368923][ T5845] Bluetooth: hci1: ISO packet for unknown connection handle 0 [ 308.241995][ T5845] Bluetooth: hci0: ACL packet for unknown connection handle 0 [ 311.140531][ T9281] netlink: 28 bytes leftover after parsing attributes in process `syz.3.941'. [ 311.205051][ T9281] veth1_macvtap: left promiscuous mode [ 312.863406][ T9310] netlink: 8 bytes leftover after parsing attributes in process `syz.2.948'. [ 313.182903][ T9321] netlink: 4 bytes leftover after parsing attributes in process `syz.3.951'. [ 315.449195][ T9360] ubi0: attaching mtd0 [ 315.488170][ T9360] ubi0: scanning is finished [ 315.506571][ T9360] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 315.578130][ T9367] bridge0: port 3(netdevsim2) entered blocking state [ 315.589179][ T9367] bridge0: port 3(netdevsim2) entered disabled state [ 315.602855][ T9367] netdevsim netdevsim0 netdevsim2: entered allmulticast mode [ 315.617306][ T9367] netdevsim netdevsim0 netdevsim2: entered promiscuous mode [ 315.629017][ T9367] bridge0: port 3(netdevsim2) entered blocking state [ 315.635902][ T9367] bridge0: port 3(netdevsim2) entered forwarding state [ 315.736731][ T9360] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 316.211640][ T9377] FAULT_INJECTION: forcing a failure. [ 316.211640][ T9377] name failslab, interval 1, probability 0, space 0, times 0 [ 316.271914][ T9377] CPU: 1 UID: 0 PID: 9377 Comm: syz.2.966 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 316.271957][ T9377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 316.271972][ T9377] Call Trace: [ 316.271980][ T9377] [ 316.271990][ T9377] dump_stack_lvl+0x16c/0x1f0 [ 316.272021][ T9377] should_fail_ex+0x512/0x640 [ 316.272054][ T9377] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 316.272096][ T9377] should_failslab+0xc2/0x120 [ 316.272136][ T9377] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 316.272171][ T9377] ? __proc_create+0xc3/0x8c0 [ 316.272196][ T9377] ? __proc_create+0x2ce/0x8c0 [ 316.272225][ T9377] __proc_create+0x2ce/0x8c0 [ 316.272261][ T9377] ? __pfx___proc_create+0x10/0x10 [ 316.272294][ T9377] ? _raw_write_unlock+0x28/0x50 [ 316.272336][ T9377] proc_create_reg+0x7d/0x180 [ 316.272366][ T9377] proc_create_data+0x86/0x110 [ 316.272393][ T9377] ? __pfx_proc_create_data+0x10/0x10 [ 316.272424][ T9377] ? cache_register_net+0x137/0x5e0 [ 316.272463][ T9377] cache_register_net+0x1e0/0x5e0 [ 316.272497][ T9377] unix_gid_cache_create+0x8b/0x130 [ 316.272527][ T9377] ? __pfx_sunrpc_init_net+0x10/0x10 [ 316.272553][ T9377] sunrpc_init_net+0x71/0x190 [ 316.272581][ T9377] ops_init+0x1df/0x5f0 [ 316.272621][ T9377] setup_net+0x21e/0x850 [ 316.272659][ T9377] ? __pfx_setup_net+0x10/0x10 [ 316.272695][ T9377] ? lockdep_init_map_type+0x5c/0x280 [ 316.272731][ T9377] ? __pfx_down_read_killable+0x10/0x10 [ 316.272766][ T9377] ? debug_mutex_init+0x37/0x70 [ 316.272795][ T9377] copy_net_ns+0x2a6/0x5f0 [ 316.272839][ T9377] create_new_namespaces+0x3ea/0xad0 [ 316.272879][ T9377] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 316.272914][ T9377] ksys_unshare+0x45b/0xa40 [ 316.272951][ T9377] ? __pfx_ksys_unshare+0x10/0x10 [ 316.272984][ T9377] ? xfd_validate_state+0x5d/0x180 [ 316.273011][ T9377] ? rcu_is_watching+0x12/0xc0 [ 316.273045][ T9377] __x64_sys_unshare+0x31/0x40 [ 316.273081][ T9377] do_syscall_64+0xcd/0x260 [ 316.273109][ T9377] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 316.273136][ T9377] RIP: 0033:0x7f32e2d8d169 [ 316.273157][ T9377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 316.273183][ T9377] RSP: 002b:00007f32e0bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 316.273211][ T9377] RAX: ffffffffffffffda RBX: 00007f32e2fa5fa0 RCX: 00007f32e2d8d169 [ 316.273239][ T9377] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 316.273256][ T9377] RBP: 00007f32e2e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 316.273274][ T9377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 316.273290][ T9377] R13: 0000000000000000 R14: 00007f32e2fa5fa0 R15: 00007ffe4bd23dc8 [ 316.273322][ T9377] [ 316.606119][ T9387] netlink: 28 bytes leftover after parsing attributes in process `syz.1.968'. [ 316.986469][ T9393] Invalid ELF header magic: != ELF [ 319.954096][ T9451] Invalid ELF header magic: != ELF [ 321.200374][ T9469] netlink: 330 bytes leftover after parsing attributes in process `syz.2.993'. [ 321.632637][ T9472] FAULT_INJECTION: forcing a failure. [ 321.632637][ T9472] name failslab, interval 1, probability 0, space 0, times 0 [ 321.647805][ T9472] CPU: 1 UID: 0 PID: 9472 Comm: syz.2.994 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 321.647849][ T9472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 321.647866][ T9472] Call Trace: [ 321.647875][ T9472] [ 321.647886][ T9472] dump_stack_lvl+0x16c/0x1f0 [ 321.647921][ T9472] should_fail_ex+0x512/0x640 [ 321.647969][ T9472] ? fs_reclaim_acquire+0xae/0x150 [ 321.648005][ T9472] should_failslab+0xc2/0x120 [ 321.648051][ T9472] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 321.648105][ T9472] ? security_inode_alloc+0x3b/0x2b0 [ 321.648144][ T9472] security_inode_alloc+0x3b/0x2b0 [ 321.648181][ T9472] inode_init_always_gfp+0xce4/0x1030 [ 321.648227][ T9472] alloc_inode+0x86/0x240 [ 321.648257][ T9472] new_inode+0x22/0x1c0 [ 321.648285][ T9472] ? start_creating.part.0+0x25d/0x3a0 [ 321.648321][ T9472] debugfs_create_dir+0xdd/0x5f0 [ 321.648356][ T9472] kvm_dev_ioctl+0x122b/0x1ad0 [ 321.648395][ T9472] ? find_held_lock+0x2b/0x80 [ 321.648427][ T9472] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 321.648470][ T9472] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 321.648504][ T9472] __x64_sys_ioctl+0x190/0x200 [ 321.648540][ T9472] do_syscall_64+0xcd/0x260 [ 321.648571][ T9472] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 321.648598][ T9472] RIP: 0033:0x7f32e2d8d169 [ 321.648621][ T9472] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 321.648649][ T9472] RSP: 002b:00007f32e0bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 321.648677][ T9472] RAX: ffffffffffffffda RBX: 00007f32e2fa5fa0 RCX: 00007f32e2d8d169 [ 321.648696][ T9472] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 321.648713][ T9472] RBP: 00007f32e2e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 321.648729][ T9472] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 321.648746][ T9472] R13: 0000000000000000 R14: 00007f32e2fa5fa0 R15: 00007ffe4bd23dc8 [ 321.648777][ T9472] [ 321.648865][ T9472] debugfs: out of free dentries, can not create directory '9472-7' [ 322.008703][ T9474] netlink: 350 bytes leftover after parsing attributes in process `syz.3.995'. [ 322.211270][ T9479] Invalid ELF header magic: != ELF [ 322.212639][ T9477] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 322.245672][ T9477] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 322.252013][ T9477] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 322.258812][ T9477] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 322.650195][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 322.656884][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 323.310234][ T9500] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1002'. [ 323.356275][ T9500] netlink: 354 bytes leftover after parsing attributes in process `syz.2.1002'. [ 323.517089][ T9504] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1004'. [ 324.049317][ T9512] device-mapper: ioctl: Invalid ioctl structure: name , dev 9 [ 324.241422][ T5845] Bluetooth: hci0: command 0x0c1a tx timeout [ 324.325503][ T5831] Bluetooth: hci2: command 0x0c1a tx timeout [ 324.325513][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout [ 324.337720][ T5845] Bluetooth: hci3: command 0x0c1a tx timeout [ 325.792249][ T9553] FAULT_INJECTION: forcing a failure. [ 325.792249][ T9553] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 325.826912][ T9553] CPU: 0 UID: 0 PID: 9553 Comm: syz.0.1019 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 325.826973][ T9553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 325.826991][ T9553] Call Trace: [ 325.827000][ T9553] [ 325.827012][ T9553] dump_stack_lvl+0x16c/0x1f0 [ 325.827049][ T9553] should_fail_ex+0x512/0x640 [ 325.827090][ T9553] should_fail_alloc_page+0xe7/0x130 [ 325.827139][ T9553] prepare_alloc_pages.constprop.0+0x172/0x570 [ 325.827182][ T9553] __alloc_frozen_pages_noprof+0x18f/0x24d0 [ 325.827229][ T9553] ? lock_acquire+0x179/0x350 [ 325.827268][ T9553] ? find_held_lock+0x2b/0x80 [ 325.827300][ T9553] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 325.827343][ T9553] ? __lock_acquire+0x5ca/0x1ba0 [ 325.827384][ T9553] ? __lock_acquire+0x5ca/0x1ba0 [ 325.827433][ T9553] ? lock_acquire+0x179/0x350 [ 325.827469][ T9553] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 325.827513][ T9553] ? policy_nodemask+0xea/0x4e0 [ 325.827561][ T9553] alloc_pages_mpol+0x1fb/0x540 [ 325.827607][ T9553] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 325.827653][ T9553] ? page_table_check_set.part.0+0x3b8/0x550 [ 325.827702][ T9553] alloc_pages_noprof+0x131/0x390 [ 325.827749][ T9553] pte_alloc_one+0x19/0x380 [ 325.827783][ T9553] __pte_alloc+0x6d/0x3c0 [ 325.827814][ T9553] ? __pfx___pte_alloc+0x10/0x10 [ 325.827844][ T9553] ? __pfx___might_resched+0x10/0x10 [ 325.827876][ T9553] ? copy_page_range+0x1e9e/0x5790 [ 325.827914][ T9553] copy_page_range+0x3827/0x5790 [ 325.827985][ T9553] ? __pfx_copy_page_range+0x10/0x10 [ 325.828030][ T9553] ? __pfx___might_resched+0x10/0x10 [ 325.828064][ T9553] ? __pfx_mas_store+0x10/0x10 [ 325.828101][ T9553] ? copy_process+0x8604/0x9130 [ 325.828136][ T9553] ? down_write+0x14d/0x200 [ 325.828170][ T9553] ? up_write+0x1b2/0x520 [ 325.828214][ T9553] copy_process+0x8651/0x9130 [ 325.828269][ T9553] ? __pfx_copy_process+0x10/0x10 [ 325.828308][ T9553] ? try_to_wake_up+0xa2f/0x1680 [ 325.828342][ T9553] ? plist_check_head+0xa3/0x150 [ 325.828380][ T9553] ? find_held_lock+0x2b/0x80 [ 325.828412][ T9553] ? wake_up_q+0xb0/0x160 [ 325.828439][ T9553] ? do_raw_spin_unlock+0x172/0x230 [ 325.828487][ T9553] kernel_clone+0xfc/0x960 [ 325.828522][ T9553] ? __pfx_futex_wake+0x10/0x10 [ 325.828561][ T9553] ? __pfx_kernel_clone+0x10/0x10 [ 325.828594][ T9553] ? __pfx_vfs_writev+0x10/0x10 [ 325.828643][ T9553] ? 0xffffffffff600000 [ 325.828664][ T9553] __do_sys_clone+0xce/0x120 [ 325.828701][ T9553] ? __pfx___do_sys_clone+0x10/0x10 [ 325.828740][ T9553] ? 0xffffffffff600000 [ 325.828768][ T9553] ? rcu_is_watching+0x12/0xc0 [ 325.828804][ T9553] do_syscall_64+0xcd/0x260 [ 325.828831][ T9553] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 325.828861][ T9553] RIP: 0033:0x7f1277f8d169 [ 325.828883][ T9553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 325.828908][ T9553] RSP: 002b:00007f1278dd3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 325.828946][ T9553] RAX: ffffffffffffffda RBX: 00007f12781a6080 RCX: 00007f1277f8d169 [ 325.828966][ T9553] RDX: ffffffffffffffff RSI: 0000000000000005 RDI: 0000000000008001 [ 325.828984][ T9553] RBP: 00007f127800e2a0 R08: 0000000000000006 R09: 0000000000000000 [ 325.829000][ T9553] R10: ffffffffff600000 R11: 0000000000000246 R12: 0000000000000000 [ 325.829018][ T9553] R13: 0000000000000000 R14: 00007f12781a6080 R15: 00007ffe5f75e928 [ 325.829041][ T9553] ? 0xffffffffff600000 [ 325.829072][ T9553] [ 333.923007][ T9676] Process accounting resumed [ 334.918007][ T9694] FAULT_INJECTION: forcing a failure. [ 334.918007][ T9694] name fail_futex, interval 1, probability 0, space 0, times 0 [ 334.952142][ T9694] CPU: 0 UID: 0 PID: 9694 Comm: syz.2.1058 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 334.952192][ T9694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 334.952214][ T9694] Call Trace: [ 334.952224][ T9694] [ 334.952236][ T9694] dump_stack_lvl+0x16c/0x1f0 [ 334.952273][ T9694] should_fail_ex+0x512/0x640 [ 334.952316][ T9694] get_futex_key+0x49e/0x1000 [ 334.952353][ T9694] ? __pfx_get_futex_key+0x10/0x10 [ 334.952389][ T9694] ? kasan_save_track+0x14/0x30 [ 334.952431][ T9694] ? __kasan_kmalloc+0xaa/0xb0 [ 334.952474][ T9694] futex_lock_pi+0x27c/0x7b0 [ 334.952517][ T9694] ? __pfx_futex_lock_pi+0x10/0x10 [ 334.952556][ T9694] ? __pfx___futex_wait+0x10/0x10 [ 334.952604][ T9694] ? futex_wait+0x120/0x380 [ 334.952635][ T9694] ? __pfx_futex_wake_mark+0x10/0x10 [ 334.952669][ T9694] ? __lock_acquire+0xaa4/0x1ba0 [ 334.952702][ T9694] do_futex+0x33e/0x350 [ 334.952727][ T9694] ? __pfx_do_futex+0x10/0x10 [ 334.952752][ T9694] ? do_raw_spin_lock+0x12c/0x2b0 [ 334.952788][ T9694] __x64_sys_futex+0x1e0/0x4c0 [ 334.952824][ T9694] ? __pfx___x64_sys_futex+0x10/0x10 [ 334.952850][ T9694] ? rcu_is_watching+0x12/0xc0 [ 334.952878][ T9694] do_syscall_64+0xcd/0x260 [ 334.952900][ T9694] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 334.952923][ T9694] RIP: 0033:0x7f32e2d8d169 [ 334.952943][ T9694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 334.952967][ T9694] RSP: 002b:00007f32e0bf6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 334.952990][ T9694] RAX: ffffffffffffffda RBX: 00007f32e2fa5fa0 RCX: 00007f32e2d8d169 [ 334.953005][ T9694] RDX: 000000000000000a RSI: 0000000000000008 RDI: 0000000000000000 [ 334.953018][ T9694] RBP: 00007f32e2e0e2a0 R08: 0000000000000000 R09: 0000000080800002 [ 334.953032][ T9694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 334.953045][ T9694] R13: 0000000000000000 R14: 00007f32e2fa5fa0 R15: 00007ffe4bd23dc8 [ 334.953070][ T9694] [ 335.228460][ T9697] usb usb8: usbfs: interface 0 claimed by hub while 'syz.0.1060' sets config #5 syzkaller syzkaller login: [ 338.073180][ T9736] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 338.254230][ T9745] random: crng reseeded on system resumption [ 338.549579][ T9751] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1074'. [ 338.604592][ T9751] netlink: 354 bytes leftover after parsing attributes in process `syz.2.1074'. [ 339.532732][ T9761] zswap: compressor not available [ 341.171573][ T9816] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 341.177773][ T9816] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 341.211703][ T9816] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 341.217865][ T9816] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 341.342177][ T9818] Process accounting resumed [ 341.495437][ T9830] syz.0.1086 (9830): /proc/9828/oom_adj is deprecated, please use /proc/9828/oom_score_adj instead. [ 342.079923][ T5845] Bluetooth: hci3: unexpected subevent 0x01 length: 4 < 18 [ 342.655736][ T9865] netlink: 93 bytes leftover after parsing attributes in process `syz.1.1093'. [ 342.765117][ T9874] netlink: 93 bytes leftover after parsing attributes in process `syz.1.1093'. [ 343.216587][ T5845] Bluetooth: hci1: command 0x0c1a tx timeout [ 343.216624][ T5831] Bluetooth: hci0: command 0x0c1a tx timeout [ 343.281388][ T5831] Bluetooth: hci3: command 0x0c1a tx timeout [ 343.282368][ T5845] Bluetooth: hci2: command 0x0c1a tx timeout [ 343.954328][ T9896] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1101'. [ 344.753985][ T9900] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1102'. [ 344.777074][ T9881] kexec: Could not allocate control_code_buffer [ 349.405812][ T9980] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1124'. [ 349.466654][ T9980] netlink: 354 bytes leftover after parsing attributes in process `syz.3.1124'. [ 349.794507][ T9984] FAULT_INJECTION: forcing a failure. [ 349.794507][ T9984] name failslab, interval 1, probability 0, space 0, times 0 [ 349.808447][ T9984] CPU: 1 UID: 0 PID: 9984 Comm: syz.0.1125 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 349.808487][ T9984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 349.808504][ T9984] Call Trace: [ 349.808512][ T9984] [ 349.808523][ T9984] dump_stack_lvl+0x16c/0x1f0 [ 349.808553][ T9984] should_fail_ex+0x512/0x640 [ 349.808585][ T9984] ? fs_reclaim_acquire+0xae/0x150 [ 349.808619][ T9984] should_failslab+0xc2/0x120 [ 349.808662][ T9984] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 349.808703][ T9984] ? security_inode_alloc+0x3b/0x2b0 [ 349.808739][ T9984] security_inode_alloc+0x3b/0x2b0 [ 349.808773][ T9984] inode_init_always_gfp+0xce4/0x1030 [ 349.808816][ T9984] alloc_inode+0x86/0x240 [ 349.808844][ T9984] new_inode+0x22/0x1c0 [ 349.808869][ T9984] ? start_creating.part.0+0x25d/0x3a0 [ 349.808903][ T9984] __debugfs_create_file+0x11c/0x6b0 [ 349.808937][ T9984] debugfs_create_file_full+0x41/0x60 [ 349.808982][ T9984] kvm_dev_ioctl+0x14ff/0x1ad0 [ 349.809024][ T9984] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 349.809063][ T9984] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 349.809096][ T9984] __x64_sys_ioctl+0x190/0x200 [ 349.809129][ T9984] do_syscall_64+0xcd/0x260 [ 349.809157][ T9984] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 349.809183][ T9984] RIP: 0033:0x7f1277f8d169 [ 349.809204][ T9984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 349.809228][ T9984] RSP: 002b:00007f1278df4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 349.809255][ T9984] RAX: ffffffffffffffda RBX: 00007f12781a5fa0 RCX: 00007f1277f8d169 [ 349.809271][ T9984] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 349.809287][ T9984] RBP: 00007f127800e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 349.809302][ T9984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 349.809318][ T9984] R13: 0000000000000000 R14: 00007f12781a5fa0 R15: 00007ffe5f75e928 [ 349.809347][ T9984] [ 349.809373][ T9984] debugfs: out of free dentries, can not create file 'max_mmu_rmap_size' [ 350.020919][ T5845] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 350.021026][ T5845] Bluetooth: hci1: unexpected subevent 0x05 length: 725 > 12 [ 350.679170][T10009] netlink: zone id is out of range [ 350.700071][T10009] netlink: zone id is out of range [ 350.727303][T10009] netlink: zone id is out of range [ 350.736986][T10009] netlink: zone id is out of range [ 350.752025][T10008] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1132'. [ 350.860297][T10009] netlink: zone id is out of range [ 350.905258][T10009] netlink: zone id is out of range [ 350.942137][T10009] netlink: zone id is out of range [ 350.966846][T10009] netlink: zone id is out of range [ 351.005322][T10009] netlink: zone id is out of range [ 351.034630][T10009] netlink: zone id is out of range syzkaller syzkaller login: [ 352.081399][ T5845] Bluetooth: hci1: command 0x0c1a tx timeout [ 354.073787][T10064] kexec: Could not allocate control_code_buffer [ 354.124308][T10077] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1149'. [ 354.160802][T10077] netlink: 354 bytes leftover after parsing attributes in process `syz.0.1149'. [ 354.594373][ T5845] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 354.594415][ T5845] Bluetooth: hci2: unexpected subevent 0x05 length: 725 > 12 [ 355.003723][T10093] random: crng reseeded on system resumption [ 355.146319][T10094] Invalid ELF header magic: != ELF syzkaller syzkaller login: [ 356.641485][ T5845] Bluetooth: hci2: command 0x0c1a tx timeout [ 357.498966][T10139] Invalid ELF header magic: != ELF [ 358.981965][T10156] net_ratelimit: 164 callbacks suppressed [ 358.981989][T10156] netlink: zone id is out of range [ 359.021231][T10156] netlink: zone id is out of range [ 359.043915][T10156] netlink: zone id is out of range [ 359.049204][T10156] netlink: zone id is out of range [ 359.097709][T10156] netlink: zone id is out of range [ 359.153558][T10156] netlink: zone id is out of range [ 359.158756][T10156] netlink: zone id is out of range [ 359.198364][T10156] netlink: zone id is out of range [ 359.214286][T10156] netlink: zone id is out of range [ 359.219647][T10156] netlink: zone id is out of range [ 359.283923][T10159] FAULT_INJECTION: forcing a failure. [ 359.283923][T10159] name failslab, interval 1, probability 0, space 0, times 0 [ 359.296968][T10159] CPU: 1 UID: 0 PID: 10159 Comm: syz.2.1174 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 359.297010][T10159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 359.297027][T10159] Call Trace: [ 359.297036][T10159] [ 359.297047][T10159] dump_stack_lvl+0x16c/0x1f0 [ 359.297080][T10159] should_fail_ex+0x512/0x640 [ 359.297116][T10159] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 359.297161][T10159] should_failslab+0xc2/0x120 [ 359.297205][T10159] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 359.297244][T10159] ? find_held_lock+0x2b/0x80 [ 359.297271][T10159] ? alloc_vfsmnt+0x23/0x6f0 [ 359.297304][T10159] alloc_vfsmnt+0x23/0x6f0 [ 359.297334][T10159] clone_mnt+0x6d/0xff0 [ 359.297367][T10159] ? copy_tree+0x50d/0xa20 [ 359.297407][T10159] ? copy_mnt_ns+0x1ac/0xac0 [ 359.297436][T10159] copy_tree+0x38d/0xa20 [ 359.297484][T10159] copy_mnt_ns+0x1ac/0xac0 [ 359.297510][T10159] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 359.297550][T10159] ? trace_cap_capable+0x18d/0x200 [ 359.297583][T10159] ? create_new_namespaces+0x30/0xad0 [ 359.297631][T10159] create_new_namespaces+0xd3/0xad0 [ 359.297665][T10159] ? bpf_lsm_capable+0x9/0x10 [ 359.297692][T10159] ? security_capable+0x7e/0x260 [ 359.297727][T10159] copy_namespaces+0x468/0x560 [ 359.297758][T10159] copy_process+0x2b75/0x9130 [ 359.297812][T10159] ? __pfx_copy_process+0x10/0x10 [ 359.297845][T10159] ? __pfx___futex_wait+0x10/0x10 [ 359.297893][T10159] ? find_held_lock+0x2b/0x80 [ 359.297926][T10159] ? 0xffffffffff600000 [ 359.297947][T10159] kernel_clone+0xfc/0x960 [ 359.297984][T10159] ? __pfx_kernel_clone+0x10/0x10 [ 359.298033][T10159] ? 0xffffffffff600000 [ 359.298052][T10159] ? 0xffffffffff600000 [ 359.298071][T10159] __do_sys_clone+0xce/0x120 [ 359.298106][T10159] ? __pfx___do_sys_clone+0x10/0x10 [ 359.298141][T10159] ? do_raw_spin_unlock+0x172/0x230 [ 359.298186][T10159] ? 0xffffffffff600000 [ 359.298204][T10159] ? 0xffffffffff600000 [ 359.298223][T10159] ? 0xffffffffff600000 [ 359.298251][T10159] ? rcu_is_watching+0x12/0xc0 [ 359.298287][T10159] do_syscall_64+0xcd/0x260 [ 359.298316][T10159] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 359.298344][T10159] RIP: 0033:0x7f32e2d8d169 [ 359.298366][T10159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 359.298394][T10159] RSP: 002b:00007f32e0bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 359.298422][T10159] RAX: ffffffffffffffda RBX: 00007f32e2fa5fa0 RCX: 00007f32e2d8d169 [ 359.298441][T10159] RDX: ffffffffff600000 RSI: 0000000000000002 RDI: 000fffffffe22000 [ 359.298459][T10159] RBP: 00007f32e2e0e2a0 R08: 00000800fffffffc R09: 0000000000000000 [ 359.298477][T10159] R10: ffffffffff600000 R11: 0000000000000246 R12: 0000000000000000 [ 359.298495][T10159] R13: 0000000000000000 R14: 00007f32e2fa5fa0 R15: 00007ffe4bd23dc8 [ 359.298518][T10159] ? 0xffffffffff600000 [ 359.298537][T10159] ? 0xffffffffff600000 [ 359.298559][T10159] [ 359.594961][ C1] vkms_vblank_simulate: vblank timer overrun [ 360.488285][T10173] Invalid ELF header magic: != ELF [ 361.346184][T10191] FAULT_INJECTION: forcing a failure. [ 361.346184][T10191] name fail_futex, interval 1, probability 0, space 0, times 0 [ 361.369030][T10191] CPU: 1 UID: 0 PID: 10191 Comm: syz.2.1182 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 361.369074][T10191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 361.369091][T10191] Call Trace: [ 361.369100][T10191] [ 361.369111][T10191] dump_stack_lvl+0x16c/0x1f0 [ 361.369146][T10191] should_fail_ex+0x512/0x640 [ 361.369180][T10191] ? __pfx___futex_wait+0x10/0x10 [ 361.369223][T10191] get_futex_key+0x49e/0x1000 [ 361.369253][T10191] ? __pfx_futex_wake_mark+0x10/0x10 [ 361.369291][T10191] ? __pfx_get_futex_key+0x10/0x10 [ 361.369331][T10191] futex_wake+0xe7/0x4e0 [ 361.369368][T10191] ? __pfx_futex_wake+0x10/0x10 [ 361.369408][T10191] ? find_held_lock+0x2b/0x80 [ 361.369435][T10191] ? __might_fault+0xe3/0x190 [ 361.369460][T10191] ? __might_fault+0xe3/0x190 [ 361.369496][T10191] do_futex+0x1e3/0x350 [ 361.369527][T10191] ? __pfx_do_futex+0x10/0x10 [ 361.369558][T10191] ? cap_validate_magic+0xab/0x200 [ 361.369589][T10191] ? __do_sys_capset+0xf9/0x460 [ 361.369621][T10191] __x64_sys_futex+0x1e0/0x4c0 [ 361.369657][T10191] ? __pfx___x64_sys_futex+0x10/0x10 [ 361.369700][T10191] do_syscall_64+0xcd/0x260 [ 361.369727][T10191] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 361.369755][T10191] RIP: 0033:0x7f32e2d8d169 [ 361.369778][T10191] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 361.369805][T10191] RSP: 002b:00007f32e0bf60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 361.369832][T10191] RAX: ffffffffffffffda RBX: 00007f32e2fa5fa8 RCX: 00007f32e2d8d169 [ 361.369851][T10191] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f32e2fa5fac [ 361.369869][T10191] RBP: 00007f32e2fa5fa0 R08: 00007f32e3af9000 R09: 0000000000000000 [ 361.369887][T10191] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f32e2fa5fac [ 361.369905][T10191] R13: 0000000000000000 R14: 00007ffe4bd23ce0 R15: 00007ffe4bd23dc8 [ 361.369936][T10191] [ 362.212869][T10200] random: crng reseeded on system resumption [ 362.646655][T10221] FAULT_INJECTION: forcing a failure. [ 362.646655][T10221] name failslab, interval 1, probability 0, space 0, times 0 [ 362.669797][T10221] CPU: 0 UID: 0 PID: 10221 Comm: syz.0.1193 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 362.669840][T10221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 362.669856][T10221] Call Trace: [ 362.669864][T10221] [ 362.669874][T10221] dump_stack_lvl+0x16c/0x1f0 [ 362.669906][T10221] should_fail_ex+0x512/0x640 [ 362.669939][T10221] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 362.669978][T10221] should_failslab+0xc2/0x120 [ 362.670022][T10221] __kmalloc_cache_noprof+0x6a/0x3e0 [ 362.670057][T10221] ? device_add+0xccc/0x1a70 [ 362.670089][T10221] device_add+0xccc/0x1a70 [ 362.670115][T10221] ? dev_set_name+0xc7/0x100 [ 362.670147][T10221] ? __pfx_dev_set_name+0x10/0x10 [ 362.670179][T10221] ? __pfx_device_add+0x10/0x10 [ 362.670211][T10221] ? do_raw_spin_lock+0x12c/0x2b0 [ 362.670262][T10221] add_disk_fwnode+0x468/0x13a0 [ 362.670310][T10221] zram_add+0x494/0x6c0 [ 362.670349][T10221] ? __pfx_zram_add+0x10/0x10 [ 362.670407][T10221] ? __pfx_hot_add_show+0x10/0x10 [ 362.670440][T10221] hot_add_show+0x21/0x80 [ 362.670480][T10221] class_attr_show+0x6f/0xa0 [ 362.670512][T10221] ? __pfx_class_attr_show+0x10/0x10 [ 362.670541][T10221] sysfs_kf_seq_show+0x23e/0x410 [ 362.670586][T10221] seq_read_iter+0x506/0x12b0 [ 362.670638][T10221] kernfs_fop_read_iter+0x422/0x5a0 [ 362.670671][T10221] ? rw_verify_area+0xcf/0x680 [ 362.670709][T10221] vfs_read+0x8c8/0xc70 [ 362.670748][T10221] ? __pfx___mutex_lock+0x10/0x10 [ 362.670777][T10221] ? __pfx_vfs_read+0x10/0x10 [ 362.670833][T10221] ksys_read+0x12a/0x240 [ 362.670871][T10221] ? __pfx_ksys_read+0x10/0x10 [ 362.670907][T10221] ? rcu_is_watching+0x12/0xc0 [ 362.670943][T10221] do_syscall_64+0xcd/0x260 [ 362.670974][T10221] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 362.671003][T10221] RIP: 0033:0x7f1277f8d169 [ 362.671027][T10221] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 362.671054][T10221] RSP: 002b:00007f1278df4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 362.671082][T10221] RAX: ffffffffffffffda RBX: 00007f12781a5fa0 RCX: 00007f1277f8d169 [ 362.671101][T10221] RDX: 0000000000001000 RSI: 0000200000000ec0 RDI: 0000000000000007 [ 362.671118][T10221] RBP: 00007f127800e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 362.671136][T10221] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 362.671159][T10221] R13: 0000000000000000 R14: 00007f12781a5fa0 R15: 00007ffe5f75e928 [ 362.671187][T10221] [ 364.722136][T10246] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1203'. [ 365.126073][T10257] FAULT_INJECTION: forcing a failure. [ 365.126073][T10257] name failslab, interval 1, probability 0, space 0, times 0 [ 365.155828][T10257] CPU: 1 UID: 0 PID: 10257 Comm: syz.2.1204 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 365.155875][T10257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 365.155893][T10257] Call Trace: [ 365.155902][T10257] [ 365.155914][T10257] dump_stack_lvl+0x16c/0x1f0 [ 365.155948][T10257] should_fail_ex+0x512/0x640 [ 365.155982][T10257] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 365.156025][T10257] should_failslab+0xc2/0x120 [ 365.156072][T10257] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 365.156114][T10257] ? lockdep_hardirqs_on+0x7c/0x110 [ 365.156158][T10257] ? __kernfs_new_node+0xd2/0x8a0 [ 365.156208][T10257] __kernfs_new_node+0xd2/0x8a0 [ 365.156253][T10257] ? __pfx___kernfs_new_node+0x10/0x10 [ 365.156301][T10257] ? check_path.constprop.0+0x24/0x50 [ 365.156349][T10257] kernfs_new_node+0x186/0x240 [ 365.156383][T10257] __kernfs_create_file+0x53/0x350 [ 365.156421][T10257] sysfs_add_file_mode_ns+0x207/0x3c0 [ 365.156477][T10257] sysfs_create_file_ns+0x13d/0x1d0 [ 365.156516][T10257] ? __pfx_sysfs_create_file_ns+0x10/0x10 [ 365.156555][T10257] ? down_read+0x13d/0x480 [ 365.156586][T10257] ? __pfx___up_read+0x10/0x10 [ 365.156629][T10257] ? acpi_device_notify+0x351/0x480 [ 365.156663][T10257] device_create_file+0xf2/0x1e0 [ 365.156699][T10257] device_add+0x2bf/0x1a70 [ 365.156729][T10257] ? __pfx_dev_set_name+0x10/0x10 [ 365.156765][T10257] ? __pfx_device_add+0x10/0x10 [ 365.156800][T10257] ? do_raw_spin_lock+0x12c/0x2b0 [ 365.156849][T10257] add_disk_fwnode+0x468/0x13a0 [ 365.156896][T10257] zram_add+0x494/0x6c0 [ 365.156928][T10257] ? __pfx_zram_add+0x10/0x10 [ 365.156986][T10257] ? __pfx_hot_add_show+0x10/0x10 [ 365.157018][T10257] hot_add_show+0x21/0x80 [ 365.157051][T10257] class_attr_show+0x6f/0xa0 [ 365.157081][T10257] ? __pfx_class_attr_show+0x10/0x10 [ 365.157107][T10257] sysfs_kf_seq_show+0x23e/0x410 [ 365.157148][T10257] seq_read_iter+0x506/0x12b0 [ 365.157197][T10257] kernfs_fop_read_iter+0x422/0x5a0 [ 365.157230][T10257] ? rw_verify_area+0xcf/0x680 [ 365.157267][T10257] vfs_read+0x8c8/0xc70 [ 365.157307][T10257] ? __pfx___mutex_lock+0x10/0x10 [ 365.157335][T10257] ? __pfx_vfs_read+0x10/0x10 [ 365.157390][T10257] ksys_read+0x12a/0x240 [ 365.157428][T10257] ? __pfx_ksys_read+0x10/0x10 [ 365.157472][T10257] ? rcu_is_watching+0x12/0xc0 [ 365.157509][T10257] do_syscall_64+0xcd/0x260 [ 365.157539][T10257] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 365.157568][T10257] RIP: 0033:0x7f32e2d8d169 [ 365.157592][T10257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 365.157621][T10257] RSP: 002b:00007f32e0bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 365.157650][T10257] RAX: ffffffffffffffda RBX: 00007f32e2fa5fa0 RCX: 00007f32e2d8d169 [ 365.157670][T10257] RDX: 0000000000001000 RSI: 0000200000000ec0 RDI: 0000000000000007 [ 365.157687][T10257] RBP: 00007f32e2e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 365.157702][T10257] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 365.157719][T10257] R13: 0000000000000000 R14: 00007f32e2fa5fa0 R15: 00007ffe4bd23dc8 [ 365.157753][T10257] [ 366.553218][T10282] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 367.006972][T10293] Invalid ELF header magic: != ELF [ 367.655509][T10304] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1219'. [ 367.712917][T10305] Invalid ELF header magic: != ELF [ 369.641015][T10364] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input18 [ 369.793045][T10366] Invalid ELF header magic: != ELF [ 371.126445][T10377] kexec: Could not allocate control_code_buffer [ 372.560294][T10410] Process accounting paused [ 372.639652][ T5845] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 372.639705][ T5845] Bluetooth: hci0: unexpected subevent 0x05 length: 725 > 12 [ 373.302234][T10426] net_ratelimit: 77 callbacks suppressed [ 373.302252][T10426] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 373.314440][T10426] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 374.566471][T10449] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1258'. [ 374.732053][ T5845] Bluetooth: hci0: command 0x0c1a tx timeout [ 374.914899][ T5845] Bluetooth: hci0: Malformed LE Event: 0x02 [ 375.586007][T10464] erspan0: entered allmulticast mode [ 376.296068][T10481] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 376.302606][T10481] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 380.806368][ T5872] [ 380.808768][ T5872] ====================================================== [ 380.815823][ T5872] WARNING: possible circular locking dependency detected [ 380.822877][ T5872] 6.14.0-syzkaller-05877-g1a9239bb4253 #0 Not tainted [ 380.829671][ T5872] ------------------------------------------------------ [ 380.836709][ T5872] kworker/1:3/5872 is trying to acquire lock: [ 380.842882][ T5872] ffffffff900fcf28 (rtnl_mutex){+.+.}-{4:4}, at: smc_vlan_by_tcpsk+0x251/0x620 [ 380.851923][ T5872] [ 380.851923][ T5872] but task is already holding lock: [ 380.859380][ T5872] ffff888032a7bbd8 (sk_lock-AF_INET){+.+.}-{0:0}, at: smc_connect_work+0x53a/0xae0 [ 380.868722][ T5872] [ 380.868722][ T5872] which lock already depends on the new lock. [ 380.868722][ T5872] [ 380.879239][ T5872] [ 380.879239][ T5872] the existing dependency chain (in reverse order) is: [ 380.888342][ T5872] [ 380.888342][ T5872] -> #1 (sk_lock-AF_INET){+.+.}-{0:0}: [ 380.896026][ T5872] lock_sock_nested+0x41/0xf0 [ 380.901244][ T5872] sockopt_lock_sock+0x54/0x70 [ 380.906550][ T5872] do_ip_getsockopt+0x13e4/0x2220 [ 380.912109][ T5872] ip_getsockopt+0x9b/0x1e0 [ 380.917143][ T5872] raw_getsockopt+0x4d/0x1f0 [ 380.922265][ T5872] do_sock_getsockopt+0x3fc/0x800 [ 380.927834][ T5872] __sys_getsockopt+0x12f/0x260 [ 380.933244][ T5872] __x64_sys_getsockopt+0xbd/0x160 [ 380.938979][ T5872] do_syscall_64+0xcd/0x260 [ 380.944012][ T5872] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 380.950436][ T5872] [ 380.950436][ T5872] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 380.957665][ T5872] __lock_acquire+0x1173/0x1ba0 [ 380.963061][ T5872] lock_acquire+0x179/0x350 [ 380.968105][ T5872] __mutex_lock+0x19a/0xb00 [ 380.973318][ T5872] smc_vlan_by_tcpsk+0x251/0x620 [ 380.978791][ T5872] __smc_connect+0x44b/0x4880 [ 380.984009][ T5872] smc_connect_work+0x54c/0xae0 [ 380.989394][ T5872] process_one_work+0x9cc/0x1b70 [ 380.994955][ T5872] worker_thread+0x6c1/0xef0 [ 381.000093][ T5872] kthread+0x3a4/0x760 [ 381.004727][ T5872] ret_from_fork+0x45/0x80 [ 381.009713][ T5872] ret_from_fork_asm+0x1a/0x30 [ 381.015023][ T5872] [ 381.015023][ T5872] other info that might help us debug this: [ 381.015023][ T5872] [ 381.025275][ T5872] Possible unsafe locking scenario: [ 381.025275][ T5872] [ 381.032731][ T5872] CPU0 CPU1 [ 381.038114][ T5872] ---- ---- [ 381.043483][ T5872] lock(sk_lock-AF_INET); [ 381.047920][ T5872] lock(rtnl_mutex); [ 381.054435][ T5872] lock(sk_lock-AF_INET); [ 381.061485][ T5872] lock(rtnl_mutex); [ 381.065481][ T5872] [ 381.065481][ T5872] *** DEADLOCK *** [ 381.065481][ T5872] [ 381.073625][ T5872] 3 locks held by kworker/1:3/5872: [ 381.078830][ T5872] #0: ffff888031745148 ((wq_completion)smc_hs_wq){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70 [ 381.089563][ T5872] #1: ffffc9000423fd18 ((work_completion)(&smc->connect_work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70 [ 381.101334][ T5872] #2: ffff888032a7bbd8 (sk_lock-AF_INET){+.+.}-{0:0}, at: smc_connect_work+0x53a/0xae0 [ 381.111296][ T5872] [ 381.111296][ T5872] stack backtrace: [ 381.117624][ T5872] CPU: 1 UID: 0 PID: 5872 Comm: kworker/1:3 Not tainted 6.14.0-syzkaller-05877-g1a9239bb4253 #0 PREEMPT(full) [ 381.117651][ T5872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 381.117665][ T5872] Workqueue: smc_hs_wq smc_connect_work [ 381.117689][ T5872] Call Trace: [ 381.117696][ T5872] [ 381.117704][ T5872] dump_stack_lvl+0x116/0x1f0 [ 381.117726][ T5872] print_circular_bug+0x275/0x350 [ 381.117753][ T5872] check_noncircular+0x14c/0x170 [ 381.117781][ T5872] __lock_acquire+0x1173/0x1ba0 [ 381.117809][ T5872] ? lockdep_hardirqs_on+0x7c/0x110 [ 381.117842][ T5872] lock_acquire+0x179/0x350 [ 381.117868][ T5872] ? smc_vlan_by_tcpsk+0x251/0x620 [ 381.117894][ T5872] ? __pfx___might_resched+0x10/0x10 [ 381.117918][ T5872] ? kasan_save_stack+0x42/0x60 [ 381.117946][ T5872] ? kasan_save_stack+0x33/0x60 [ 381.117972][ T5872] ? kasan_save_track+0x14/0x30 [ 381.118001][ T5872] __mutex_lock+0x19a/0xb00 [ 381.118021][ T5872] ? smc_vlan_by_tcpsk+0x251/0x620 [ 381.118046][ T5872] ? __lock_acquire+0x5ca/0x1ba0 [ 381.118071][ T5872] ? smc_vlan_by_tcpsk+0x251/0x620 [ 381.118096][ T5872] ? __pfx___mutex_lock+0x10/0x10 [ 381.118117][ T5872] ? find_held_lock+0x2b/0x80 [ 381.118139][ T5872] ? smc_vlan_by_tcpsk+0x251/0x620 [ 381.118163][ T5872] ? rtnl_lock+0x9/0x20 [ 381.118182][ T5872] smc_vlan_by_tcpsk+0x251/0x620 [ 381.118206][ T5872] ? __pfx_smc_vlan_by_tcpsk+0x10/0x10 [ 381.118234][ T5872] __smc_connect+0x44b/0x4880 [ 381.118259][ T5872] ? __pfx___smc_connect+0x10/0x10 [ 381.118288][ T5872] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 381.118321][ T5872] ? __local_bh_enable_ip+0xa4/0x120 [ 381.118347][ T5872] smc_connect_work+0x54c/0xae0 [ 381.118370][ T5872] ? __pfx_smc_connect_work+0x10/0x10 [ 381.118394][ T5872] ? rcu_is_watching+0x12/0xc0 [ 381.118414][ T5872] process_one_work+0x9cc/0x1b70 [ 381.118437][ T5872] ? __pfx_process_one_work+0x10/0x10 [ 381.118460][ T5872] ? assign_work+0x1a0/0x250 [ 381.118491][ T5872] worker_thread+0x6c1/0xef0 [ 381.118513][ T5872] ? __kthread_parkme+0x148/0x220 [ 381.118540][ T5872] ? __pfx_worker_thread+0x10/0x10 [ 381.118559][ T5872] kthread+0x3a4/0x760 [ 381.118588][ T5872] ? __pfx_kthread+0x10/0x10 [ 381.118617][ T5872] ? __pfx_kthread+0x10/0x10 [ 381.118646][ T5872] ? __pfx_kthread+0x10/0x10 [ 381.118675][ T5872] ? __pfx_kthread+0x10/0x10 [ 381.118703][ T5872] ? rcu_is_watching+0x12/0xc0 [ 381.118722][ T5872] ? __pfx_kthread+0x10/0x10 [ 381.118753][ T5872] ret_from_fork+0x45/0x80 [ 381.118772][ T5872] ? __pfx_kthread+0x10/0x10 [ 381.118801][ T5872] ret_from_fork_asm+0x1a/0x30 [ 381.118833][ T5872] [ 381.496769][T10528] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 381.503307][T10528] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 384.082970][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 384.089352][ T1299] ieee802154 phy1 wpan1: encryption failed: -22