last executing test programs: 1m40.581435645s ago: executing program 1 (id=604): mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x5, 0x0) socket(0x2b, 0x1, 0x1) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x23, 0x1, 0x100) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyx9\x00', 0x40, 0x0) mmap$auto(0xc, 0x20009, 0x5, 0xeb1, 0x405, 0x8000) openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000c40)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) socket(0x10, 0xa, 0x0) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB='\r'], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0x200000c4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='^'], 0x1ac}, 0x1, 0x0, 0x0, 0xc000}, 0xc814) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f00000001c0)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x8) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x8800) socket$nl_generic(0x10, 0x3, 0x10) open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) mount$auto(&(0x7f0000000000), &(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='ufs\x00', 0x9, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x50b41, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) mincore$auto(0x1000, 0x8001, 0x0) fcntl$auto(0x8000000000000001, 0x7, 0x8) 1m38.875515151s ago: executing program 1 (id=610): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) mbind$auto(0xf000, 0x1, 0x1, 0x0, 0x7fff, 0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = setfsuid$auto(0xee00) r2 = setfsuid$auto(0xee01) setresuid$auto(r1, r2, r1) sendmsg$auto_NL80211_CMD_GET_MPP(r0, &(0x7f0000000a80)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000a40)={&(0x7f0000000040)={0x9cc, 0x0, 0x200, 0x70bd2a, 0x25dfdbfd, {}, [@NL80211_ATTR_BEACON_HEAD={0x1e3, 0xe, "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"}, @NL80211_ATTR_DISABLE_HE={0x4}, @NL80211_ATTR_CONTROL_PORT={0x4}, @NL80211_ATTR_STA_SUPPORTED_CHANNELS={0x5e, 0xbd, "e8bfdc5b6d0bf488758ff9888de1b590745248eeb1bcb101c9b5058f93b70d65cc6d4e399297eef3c73d9a1154c4b8514bf2f998267fe1b2633139bd85a1ee976656c674084ef76e0081cf6df15b79edf1aa35caf5cb79df36f1"}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0xd}, @NL80211_ATTR_BSS_SHORT_SLOT_TIME={0x5, 0x1e, 0x4}, @NL80211_ATTR_P2P_CTWINDOW={0x5, 0xa2, 0x2}, @NL80211_ATTR_CSA_IES={0x734, 0xb9, 0x0, 0x1, [@generic="fe25bdc10c34ec5fa736556c193891405f17fb629c7a1cd4468e83a45d6795ad17a2f3cf2b9a4c2844dd83a71aad3603a3aa00dadede196ad881c0d6f7770e738397a0a386d0e2f6853f4fffa880e4f0843bd5eb71a3e870a031b520bf3850f65992a597c242e8ed74281e6e52d9c253fb5ffce8ab16c14d9f0a89f2a7f18327efdd7220905d013248a83ccedf0ed8a786f4d88ed195671f", @nested={0x347, 0xff, 0x0, 0x1, [@generic="8ba393c8cfaac9bc66bac80d56d8965c715142357ea714ac657bc0b992bdefdbad02823446842016506c87ae1e02f964c6b10471a910c54462ba87070831c449719fede0a847b0d1f56ff6daf30dc71556032cb29401c7d32abc2fc1fe25fa77e54d82ff33b6ee376c2a37195ee96544278708756759a1e230f5df613717a1139eb1a0cd812106c38a775f5bec9c900ffd679af5831e0296988f29316009d23fc240bf76a3dad4c8a97e2fedb84b6faad0eb4a401d98b2bebf836b35743671a437", @typed={0x8, 0xb4, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @generic="3e7dbe5d422d7e1c6174335c649aa5909c6e621bc69cb31f4e0e216f8c37c83e090efcce9150d26f4605d66601a57e8ffad733a9bb639b2af3cccd4e", @generic="dabe4252c391e084ae21ddbae116c896ec13d1a950f7c8e9a6b918d5a8cad78dd7d178ebb941221f10663285553dea4769bd99a617925f51a991aa1165d78502ade759d934638f95c4a087c9046e3b11f37a", @generic="707d7402e1e61a207129b0d807f54fbb0a9b90566cd55a22b29de73ada24084c4969a66c466058f8f0879ac9f784923f344f7e0962c8f80019ea864cf3b9122c56ec0ab2df0d67dbb6427c54ab7a58a4963093809589b1ea50ffe38230d6d3ecc00cf01447c6356f98a9c78afde763486d251cacd519c517ecc1e28a3c185c9c76ad0600dd386bab6ad71d3c303ff533febd21f36e4eb7a1547cbc0413f580a0b702f1042466c50eb7f7ff1135929a7691a9d7c348621fa6107bedb1d7a7ed6985de7f8e381485ab653eb8735e336207512a1192e388f8e480715e82af5f4a802060a12293ffccecd8c0f329", @typed={0x6, 0x104, 0x0, 0x0, @str='+\x00'}, @nested={0x4, 0x38}, @generic="a4b16a2c1feef3b1bb8702fc6a8df8d8ceda015a166d0f0d3966321abddd3aa5ef6c9f6e79eb36494fb4f6324d67e7628ed6be99e9436002120b2a9c22bd48ac8472ed30f779d9ec3d69ce45d305ee5cdb3d10be7f2b9fa6fada376ce1e02f611a9ad2e9719e61d971364e8abfe6f704b4268ef660b0081a9fcad7b05ea715f342940f581edc3624aadab200152999c5d688a0e9c61e48fd3f8b200d7624bfb2303a8599b74a3dc614dc2c69c0bf9f011748e3b4974d60fb4a6eb318dce5f1b72c2f9504309704fbe1026b70ea460ace54e1c14f29a305495fa004f8841c48af6790ab2edcd1f3cfe8276966cd91564fee01e527"]}, @generic="21a98e6a727a519bd942472a0a54e7f126974af7161b08755aba24e8d79a6bd45caac6411bcfa947c5ba9c388c1f736bec8858a724a4628912b600d83cdfdaf9c55c0ad36a954ae7b0f3fd78d924a39ad52e0b5ece3c26d5e4daa075eedbcd2383eeb6fdb5c664d18cccc81abcf613cf355a1f7fc7693c3ea31f32da44cd1fd28e467a4781c1fb38b9ce2bb02f127d68c3d8ca482d62e6fba73baf0ae7e803b8428db758a6ee7050e04480f7b1c993c93c0b5d760742e3070e7159c43a520dda129b0269872afefeab2b22bd6a0cd06433cb059ec77cf4458b327bde9e04d91a6e16dac16347fe93d7f44de6c5", @generic="58a54c01d94cc25d114be6dec3f7f44fed781ec5916784819b5bb9bf6c1a997e0cc8ba09572451f88942c725aa988dfc77d1fd88af897a3bd7610c4ef96a7df4cc412a38a09d7f099246dbfcdaaeb27337d860189b4e56e1e4437226015d33355f3d7caa65c31cc99efa79a43eed9059ce04af3a5272ed900104c89326a962cf20ee7cafd584a1652ca239d727f55d46eaf2375924b7d5dbac1d0a692493821605dcad62aa0f98b9d2a2118bb341", @generic="e59512f4b2", @nested={0x110, 0x5, 0x0, 0x1, [@typed={0x8, 0x9a, 0x0, 0x0, @uid=r2}, @generic="c5c00134d4c6c415dfd1db9bf5374a2476bc8f433184a6b51469babddcf76db249e38d566a616f2775a352d73bd14515e9b8fa93da3444af44a3f6b45d752625dea42d58839666ed6521b72132f46f15c008d8bc4350d9a1bac318ee6b109efa5741cd7b99c9cd0343b3d250192e019ed6862cd5e75dbb04cece5b30586fa7b823089ade51ebeb82cae52a7fc040b2846026e12f008f8274f248c934233b882be7662e9de0f2b915551e0d1217ddf5d207189332708c82e6be0fa77c799cd67391351cddbbcf1a97c7aa285d3decca857a", @generic="c4c49d87242578573ae137355815e242a3d4b46993a87b2ab88651fe1e67ded9c1837a3f8d1c8c1835f6941962a6022d52278f"]}, @typed={0x7, 0x60, 0x0, 0x0, @str='%+\x00'}, @nested={0x97, 0x2c, 0x0, 0x1, [@nested={0x4, 0x11c}, @generic="a9b62cbe854b0d24aac2cba04671dbb7410b31eb12261bce1e9ee560e56e6f379c73d367e3d80a7932fd17252b8cb4e11edc7df5652091cc2938a9cb9f35bcd784e6e4d2a1c121da11a8cbcdb648f0992c75f68c5af346266f0f66c048a6fbe69acca9b1ea2f331f17a278d3c5e4763d31ac0b843d07c64e3899a31ee95c15bc5f105b3d55933e", @typed={0x8, 0x8d, 0x0, 0x0, @fd}]}]}, @NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0xc4d}, @NL80211_ATTR_HE_BSS_COLOR={0x18, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_COLOR={0x5, 0x1, 0x36}]}]}, 0x9cc}, 0x1, 0x0, 0x0, 0x4040831}, 0x20000000) 1m37.896786229s ago: executing program 1 (id=614): r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r0, &(0x7f0000000380)="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", 0x10e) 1m37.818140763s ago: executing program 1 (id=615): r0 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(0xffffffffffffffff, 0x7a0, 0x6) recvmmsg$auto(r0, 0x0, 0x1, 0x0, 0x0) socket(0x2b, 0x1, 0x1) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x2, 0x4, 0x3, 0x2, 0x8, 0xc, 0xe3, 0x400000000a, 0x3}, 0x6f6) mmap$auto(0x0, 0x2020009, 0x3, 0x19, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x2000000, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x8000000000000002, 0x15) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x28102, 0x0) r1 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x408, 0x7, 0x1ff, 0x7, 0x42, 0x4909b6f8, 0x1ffdf, 0x7, 0x200003, 0x2, 0xa121, 0x3, 0x6, 0x4, 0xb4, 0xa, 0x6, 0x10001, 0x80, 0x100000000, 0x0, 0x7, 0x2100, 0x200, 0x0, 0x84, 0x0, 0x0, 0x0, 0x10000, 0xfffffffd, [0x0, 0x0, 0x0, 0x3, 0x0, 0x7f, 0x0, 0x0, 0x200000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff]}, 0x1fe, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 1m37.705778567s ago: executing program 1 (id=617): r0 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x40000, 0x0) bpf$auto(0x7, 0xffffffffffffffff, 0xe0000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0xfff, 0x5, 0x10, 0x0) ioprio_set$auto(0x3, 0x0, 0x4b34) r1 = socket(0x15, 0x5, 0x0) madvise$auto(0x1ffff000, 0x7, 0x100000000) (async) madvise$auto(0x1ffff000, 0x7, 0x100000000) mmap$auto(0x0, 0x400008, 0xdf, 0xfff, 0x2, 0x8000) (async) mmap$auto(0x0, 0x400008, 0xdf, 0xfff, 0x2, 0x8000) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) (async) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, 0x0, 0x40) close_range$auto(r0, 0x8, 0xcc6) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/tty/ptye4/power/runtime_suspended_time\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) (async) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) close_range$auto(r0, r0, 0x800002) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0) (async) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0) socket(0x2, 0x80002, 0x73) (async) socket(0x2, 0x80002, 0x73) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/usb_storage/parameters/delay_use\x00', 0x181942, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) sysfs$auto(0x2, 0x4d, 0x0) fsopen$auto(0x0, 0x4) madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mbind$auto(0x2000, 0x3, 0x100000000, 0x0, 0x5, 0x40000002) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/power/wakeup_count\x00', 0x141500, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000200)=""/152, 0x98) (async) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000200)=""/152, 0x98) clone$auto(0x9000, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x5) (async) clone$auto(0x9000, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x5) madvise$auto(0x0, 0xfffffffffffefffd, 0x17) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/default_smp_affinity\x00', 0x40000, 0x0) 1m36.860237831s ago: executing program 1 (id=620): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) pread64$auto(0xffffffffffffffff, 0x0, 0x8100000041, 0x3) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x11c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x3d7}, 0x7}, 0x803, 0x0) r0 = open(&(0x7f0000000140)='./file0\x00', 0x220c0, 0x4) (async) r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) socket(0x2, 0x6, 0x0) (async) memfd_create$auto(0x0, 0xe) (async) socket(0x2, 0x1, 0x106) socket(0x10, 0x3, 0x6) (async) socket(0xa, 0x1, 0x84) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptywa\x00', 0x400, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/sctp/remaddr\x00', 0x101d00, 0x0) (async, rerun: 32) socketpair$auto(0x1e, 0x1, 0x9, 0x0) (async, rerun: 32) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0xa042, 0x0) ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x0) mmap$auto(0x0, 0x10000, 0x4000000000000006, 0xeb1, r1, 0x8000) (async, rerun: 32) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) (rerun: 32) read$auto(r1, 0x0, 0x8) chmod$auto(&(0x7f00000000c0)='./file0\x00', 0xf4ba) (async) execve$auto(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) pread64$auto(0xffffffffffffffff, &(0x7f0000001340)='\xbb\xbb\xbb\xbb\xbb\xbb', 0xe, 0xff) execve$auto(&(0x7f0000000080)='./file0\x00', &(0x7f0000000240)=&(0x7f0000000280)='team_slave_1\x00', 0x0) execve$auto(&(0x7f0000000100)='./file0\x00', &(0x7f00000002c0)=&(0x7f0000000040)='team_slave_1\x00', 0x0) 1m21.549751652s ago: executing program 32 (id=620): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) pread64$auto(0xffffffffffffffff, 0x0, 0x8100000041, 0x3) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x11c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x3d7}, 0x7}, 0x803, 0x0) r0 = open(&(0x7f0000000140)='./file0\x00', 0x220c0, 0x4) (async) r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) socket(0x2, 0x6, 0x0) (async) memfd_create$auto(0x0, 0xe) (async) socket(0x2, 0x1, 0x106) socket(0x10, 0x3, 0x6) (async) socket(0xa, 0x1, 0x84) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptywa\x00', 0x400, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/sctp/remaddr\x00', 0x101d00, 0x0) (async, rerun: 32) socketpair$auto(0x1e, 0x1, 0x9, 0x0) (async, rerun: 32) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0xa042, 0x0) ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x0) mmap$auto(0x0, 0x10000, 0x4000000000000006, 0xeb1, r1, 0x8000) (async, rerun: 32) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) (rerun: 32) read$auto(r1, 0x0, 0x8) chmod$auto(&(0x7f00000000c0)='./file0\x00', 0xf4ba) (async) execve$auto(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) pread64$auto(0xffffffffffffffff, &(0x7f0000001340)='\xbb\xbb\xbb\xbb\xbb\xbb', 0xe, 0xff) execve$auto(&(0x7f0000000080)='./file0\x00', &(0x7f0000000240)=&(0x7f0000000280)='team_slave_1\x00', 0x0) execve$auto(&(0x7f0000000100)='./file0\x00', &(0x7f00000002c0)=&(0x7f0000000040)='team_slave_1\x00', 0x0) 8.264547169s ago: executing program 2 (id=854): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) r0 = socket(0x2b, 0x1, 0x1) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r0, 0x0, 0x20000001) madvise$auto(0x0, 0xffffffffffff0004, 0x19) kill$auto(0x0, 0x21) madvise$auto(0x0, 0x200007, 0x8) madvise$auto(0x0, 0x2003f0, 0x15) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_MPP(r0, 0x0, 0x880) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) madvise$auto(0x0, 0xffffffffffff0004, 0x19) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) madvise$auto(0x0, 0x200007, 0x8) munmap$auto(0x8000, 0xffffffff) syz_genetlink_get_family_id$auto_nfc(&(0x7f00000000c0), r0) sendmsg$auto_NFC_CMD_STOP_POLL(r0, 0x0, 0x44084) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0x400000eb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x10000000000048, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/security/tomoyo/profile\x00', 0x64200, 0x0) 6.727197773s ago: executing program 0 (id=861): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram3/queue/stable_writes\x00', 0x182, 0x0) mmap$auto(0x0, 0x1004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) ioctl$auto(r0, 0x1, r0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8ad00, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video39\x00', 0x82, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(0xffffffffffffffff, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000840)='./cgroup.cpu/memory.stat\x00', 0x80200, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000080)=""/118, 0x76) r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x8742, 0x0) mmap$auto(0x0, 0x5, 0x2, 0x40eb1, r2, 0x300000000000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x101800, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000200), 0xffffffffffffffff) write$auto(0x3, 0x0, 0xfdef) getresgid$auto(0x0, &(0x7f0000000a40)=0x2, 0x0) close_range$auto(0x2, 0xa, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) write$auto(0x3, 0x0, 0xffd8) 6.123688493s ago: executing program 0 (id=863): r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x402, 0x0) (async) r1 = prctl$auto(0x23, 0x80000000000a, 0x80000001, 0x0, 0x0) mmap$auto(0x8a, 0xc1, 0x4000000000e2, 0x44eb1, r1, 0x167c) (async) pipe$auto(0x0) (async) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0xb39) (async, rerun: 64) socket(0x29, 0x5, 0x0) (async, rerun: 64) socket$nl_generic(0x10, 0x3, 0x10) (async) syz_genetlink_get_family_id$auto_nbd(0x0, 0xffffffffffffffff) (async, rerun: 64) socket(0x1d, 0x2, 0x2) (async, rerun: 64) socket$nl_generic(0x10, 0x3, 0x10) (async) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x3ec0) (async) sendmmsg$auto(0x3, 0x0, 0x9a5, 0x47ffff7a) connect$auto(0x3, 0x0, 0x55) syz_genetlink_get_family_id$auto_tipcv2(0x0, 0xffffffffffffffff) (async) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) getsockopt$auto(0xffffffffffffffff, 0x10d, 0xc, 0x0, 0x0) (async) madvise$auto(0x0, 0x10, 0xc) (async, rerun: 64) mbind$auto(0x0, 0x2, 0x4, 0x0, 0x6, 0x2) (async, rerun: 64) madvise$auto(0x7e, 0x7f, 0x203) (async) r2 = openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/environ\x00', 0x2000, 0x0) read$auto_proc_environ_operations_base(r2, &(0x7f0000000240)=""/80, 0x50) (async) r3 = socket(0x2000000000000021, 0x2, 0xfffffff0) setsockopt$auto(r3, 0x110, 0x1, 0x0, 0x4) (async) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000140)={{@inferred, 0xfffffffd, 0x4, 0x8, "3113d585005a614d19e22af9ffb683c5828bbfba40f035f4be6b7fe5e2f94bd90484b1755015e48d00", @inferred=0xffffffffffffffff}, 0x3, 0x5, 0x0, @inferred=0x0, @enumerated={0x40, 0x2, "c832bcbae48ab01ec23457b7fd2dd3547c4e2eeba79edd0d1599ded9cbfaf517162fbe6a6f50f1aaa18fb20cabec86d900", 0x400, 0xc278}, "7a9fc199a16a2311eacf2fc7ae1da978dc3e8090334fdd73340238d212b6debe0ada55bdd70925450e24e87212f0bcab84a16f7ce8cbce0bb32777702b8d7c2d"}) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/module/brd/parameters/max_part\x00', 0xc3002, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) prctl$auto_PR_SET_MM_START_STACK(0xf, 0x5, r4, 0x5, 0x2) socket$nl_generic(0x10, 0x3, 0x10) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) 5.904548957s ago: executing program 0 (id=864): openat$auto_generic(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/bluetooth/hci2/hci2:200/power/autosuspend_delay_ms\x00', 0x18800, 0x0) sendfile$auto(0x1, 0xffffffffffffffff, 0x0, 0x8fb5) r0 = fcntl$auto(0x3, 0x4, 0xa553) ioctl$auto(0x3, 0x541b, r0) openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x42006, 0x0) r1 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x501002, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f0000000140)='/d\x03\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xae\xdf\xff\xf0\x15\xf8W$\xda\x00\x00\xe0\xb7\x94D\x00\x85\xaf\xe3\xb6\x98\x80x\xb5Ky\xb3\x85[:\xf4\x14\xf1\x8f\xf2\xa2\xd8@\xb5S\x19]Xo\x14\xe8\x1f\xfe\x7f\xd8\x10\x9b\x18\n_S\xf7R\xc4/\x92n\xfa', 0x4) fcntl$auto_F_NOTIFY(0xffffffffffffffff, 0x402, 0x1) fsopen$auto(&(0x7f00000000c0)='/dev/net/tun\x00', 0x1) mmap$auto(0x0, 0x8000000000000000, 0x9, 0x9b70, r0, 0x7ffe) lseek$auto(r1, 0x7f, 0x2a21) sysfs$auto(0x2, 0x8000000000000001, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x108002, 0x0) epoll_create$auto(0x3e) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000000), 0x189a01, 0x0) eventfd$auto(0x3) socketpair$auto(0x9, 0x2, 0xb, 0x0) ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x5411, 0x0) 5.491956393s ago: executing program 0 (id=866): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/net/ip_vs\x00', 0x880, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) adjtimex$auto(&(0x7f00000004c0)={0xf332b6c, 0x0, 0x6, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x4, 0x80000000368e, 0x4, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x4cef, 0x1, 0xfff7ffffffff6292, 0xe, 0xdeb1, 0x804}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/swradio3\x00', 0x0, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x9, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffd]}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) timerfd_create$auto(0x100, 0x150b) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00'}) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x2, 0x100) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x4, 0x3) r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/pagemap\x00', 0x102, 0x0) ioctl$auto_PAGEMAP_SCAN(r2, 0xc0606610, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_READI_FRAMES2(r1, 0x80184151, &(0x7f0000000040)={0x101, &(0x7f00000005c0)="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", 0x8}) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd9/removable\x00', 0x700, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f00000000c0)=""/142, 0x8e) openat$auto_proc_gid_map_operations_base(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket(0x9, 0x1, 0x4) mprotect$auto(0x5, 0x8000000000000004, 0x5) madvise$auto(0x0, 0xffffffffffff0001, 0x15) msync$auto(0x0, 0x2000000005, 0x6) socket$nl_generic(0x10, 0x3, 0x10) madvise$auto(0x8, 0x8000000000000001, 0xa) r4 = syz_clone(0x40040000, 0x0, 0x0, 0x0, 0x0, 0x0) move_pages$auto(r4, 0x1002, 0x0, 0x0, 0x0, 0x5) 4.306682931s ago: executing program 3 (id=869): statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x8, 0x10000000001ff, 0x7c9, 0x25, 0x4909b6f5, 0x1ffde, 0x7, 0x3, 0x20000009, 0x9, 0x3, 0x4, 0x1, 0xb4, 0x9, 0x8, 0x10003, 0x80, 0x3, 0x0, 0xa, 0x22000, 0x200, 0xffffff28, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffff3ff, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff9, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0xffff, 0x10, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0xfffffffffffffffe]}, 0x1fe, 0x9) r0 = open(&(0x7f0000000140)='./file0\x00', 0x220c0, 0x4) ioctl$auto_SNAPSHOT_ALLOC_SWAP_PAGE(r0, 0x80083314, &(0x7f0000000040)=0xce) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYRESOCT=r0, @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x40008004}, 0x8000) r1 = socket(0x10, 0x2, 0x0) setsockopt$auto_SO_RXQ_OVFL(r1, 0x1, 0x28, 0x0, 0x7) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x1892, 0x0, 0x2, &(0x7f0000000140), 0xb, 0xa505}, 0x800}, 0x7, 0x4008) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/netfilter/nfnetlink_queue\x00', 0x101000, 0x0) socket(0x10, 0x2, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) clone$auto(0x7fff, 0x200, 0x0, 0x0, 0xf) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0) r4 = socket(0xa, 0x3, 0x3a) getsockopt$auto(r4, 0x29, 0xd1, 0x0, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) madvise$auto(0x0, 0x454, 0x9) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r3) r5 = ioctl$auto_KVM_CREATE_VM(r2, 0x4004ae99, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(r0, 0x8, 0x10000) close_range$auto(0xffffffffffffffff, 0xfffffffffffff000, 0x2) io_uring_enter$auto(0x3, 0x1, 0x82400001, 0x0, 0x0, 0x18) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000080), r5) unshare$auto(0x40000080) 3.883949345s ago: executing program 4 (id=871): mmap$auto(0x0, 0x2020009, 0x80000000000003, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000040)='/dev/usbmon32\x00', 0x224640, 0x0) ioctl$auto_MON_IOCX_GET(r0, 0x40189206, 0x0) read$auto_mon_fops_binary_mon_bin(r0, 0x0, 0x0) select$auto(0x5, 0x0, 0x0, 0x0, 0x0) getrandom$auto(&(0x7f0000000000)='\x00', 0x800, 0x7ff) setfsgid$auto(0x9) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0xa, 0xa) setsockopt$auto(0x3, 0x1, 0x3c, 0x0, 0x9) setresgid$auto(0xffffffffffffffff, 0x0, 0x7fffffffffffffff) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/032/001\x00', 0x80202, 0x0) 3.522617749s ago: executing program 3 (id=872): socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x106) r0 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r1 = openat$auto_ocfs2_control_fops_stack_user(0xffffffffffffff9c, &(0x7f0000000080), 0x4c000, 0x0) ioctl$auto(r0, 0x4b66, r1) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x540b, 0xfffffffffffffffd) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x3, 0x1, 0xff42, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000005, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) umount2$auto(0x0, 0x6) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) bind$auto(0xffffffffffffffff, 0x0, 0x4) openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000) mmap$auto(0x0, 0x400108, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) 3.384315859s ago: executing program 0 (id=873): r0 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/swaps\x00', 0x0, 0x0) pread64$auto(r0, 0x0, 0xeda5, 0xc86) 3.224383159s ago: executing program 0 (id=874): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r1 = socket(0x2, 0x3, 0xa) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x848000000015, 0x805, 0x0) bind$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x6b) getsockname$auto(0x3, &(0x7f0000000d00), &(0x7f0000000d40)=0x4) getsockopt$auto(r1, 0xff, 0x30, 0x0, 0x0) process_madvise$auto(0xffffffffffffffff, 0x0, 0x2e5, 0x6, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x2c, r3, 0x1, 0x2070bd26, 0x25dfdbf8, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x8, 0x1, 'HfR\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}]}, 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x80) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000080), 0xffffffffffffffff) rseq$auto(&(0x7f0000000180)={0x9, 0x8, 0x100000001, 0xe6, 0xffff1bfb, 0x80, "b88de06277c43278edd6a608c9cf94df7eb3656db701d56aede23f295f1ce28ea210f5f7fec797aeaf14db5d293e5ceaf9b27aac56c0869ddae207c7e17986404eb7913477516c46812f31b0c2abfa88ab2563ab0b7044499d59"}, 0x8, 0x0, 0x8) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000003040), 0xffffffffffffffff) sendmsg$auto_OVS_METER_CMD_SET(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000003200)={&(0x7f0000000000)={0x28, r5, 0x159198c6007aa95d, 0x70bd29, 0x25dfdbfc, {}, [@OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_BANDS={0x8, 0x4, 0x0, 0x1, [@generic='\x00\x00\x00\x00']}, @OVS_METER_ATTR_ID={0x8, 0x1, 0x5}]}, 0x28}, 0x1, 0x0, 0x0, 0xc0}, 0x40) mmap$auto(0xfe, 0xffffffffffffff46, 0xdf, 0x8d8, r0, 0x2) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) mq_timedreceive$auto(0xffffffffffffffff, 0x0, 0x5, 0x0, 0xffffffffffffffff) 2.855018559s ago: executing program 3 (id=875): openat$auto_generic(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/bluetooth/hci2/hci2:200/power/autosuspend_delay_ms\x00', 0x18800, 0x0) sendfile$auto(0x1, 0xffffffffffffffff, 0x0, 0x8fb5) r0 = fcntl$auto(0x3, 0x4, 0xa553) ioctl$auto(0x3, 0x541b, r0) openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x42006, 0x0) r1 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x501002, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f0000000140)='/d\x03\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xae\xdf\xff\xf0\x15\xf8W$\xda\x00\x00\xe0\xb7\x94D\x00\x85\xaf\xe3\xb6\x98\x80x\xb5Ky\xb3\x85[:\xf4\x14\xf1\x8f\xf2\xa2\xd8@\xb5S\x19]Xo\x14\xe8\x1f\xfe\x7f\xd8\x10\x9b\x18\n_S\xf7R\xc4/\x92n\xfa', 0x4) fcntl$auto_F_NOTIFY(0xffffffffffffffff, 0x402, 0x1) fsopen$auto(&(0x7f00000000c0)='/dev/net/tun\x00', 0x1) mmap$auto(0x0, 0x8000000000000000, 0x9, 0x9b70, r0, 0x7ffe) lseek$auto(r1, 0x7f, 0x2a21) sysfs$auto(0x2, 0x8000000000000001, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x108002, 0x0) epoll_create$auto(0x3e) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000000), 0x189a01, 0x0) eventfd$auto(0x3) socketpair$auto(0x9, 0x2, 0xb, 0x0) ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x5411, 0x0) 2.690691157s ago: executing program 4 (id=876): r0 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(0xffffffffffffffff, 0x7a0, 0x6) recvmmsg$auto(r0, 0x0, 0x1, 0x0, &(0x7f0000000340)={0x4}) socket(0x2b, 0x1, 0x1) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x2, 0x4, 0x3, 0x2, 0x8, 0xc, 0xe3, 0x400000000a, 0x3}, 0x6f6) mmap$auto(0x0, 0x2020009, 0x3, 0x19, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x2000000, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x8000000000000002, 0x15) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x28102, 0x0) r1 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x408, 0x7, 0x1ff, 0x7, 0x42, 0x4909b6f8, 0x1ffdf, 0x7, 0x200003, 0x2, 0xa121, 0x3, 0x6, 0x4, 0xb4, 0xa, 0x6, 0x10001, 0x80, 0x100000000, 0x0, 0x7, 0x2100, 0x200, 0x0, 0x84, 0x0, 0x0, 0x0, 0x10000, 0xfffffffd, [0x0, 0x0, 0x0, 0x3, 0x0, 0x7f, 0x0, 0x0, 0x200000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff]}, 0x1fe, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 2.540454187s ago: executing program 4 (id=877): mmap$auto(0x0, 0x7, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x15, 0x5, 0x0) read$auto(0x3, 0x0, 0x80) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a) ustat$auto(0x801, 0x0) sendmsg$auto(r0, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0) sysfs$auto(0x2, 0xe, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) getcwd$auto(0x0, 0xffffffffffffffff) r1 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x80100, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r1, 0x40146f2c, 0x0) 2.135782379s ago: executing program 3 (id=878): r0 = socket(0x2, 0x1, 0x106) setsockopt$auto(r0, 0x6, 0x5, &(0x7f0000000080)='*\x00', 0xe6) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/controlC2\x00', 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/cifs/smbd_max_receive_size\x00', 0x103742, 0x0) r2 = bpf$auto_BPF_MAP_CREATE(0x0, &(0x7f0000000280)=@test={r1, 0x0, 0x5, 0x5f13, 0x1ff, 0x0, 0x10001, 0x1ff, 0x1, 0x2, 0x0, 0x3, 0x48, 0x30, 0x2}, 0x5cf3) read$auto_nsim_dev_trap_fa_cookie_fops_dev(r2, &(0x7f0000000540)=""/138, 0x8a) r3 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/tracing/trace_options\x00', 0x42002, 0x0) mkdir$auto(&(0x7f0000000040)='./file0\x00', 0x2) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r4 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0) landlock_restrict_self$auto(r4, 0x0) r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x5a220, 0x70) mknodat$auto(r5, &(0x7f00000003c0)='./file0\x00', 0xfff, 0xfffffff8) renameat2$auto(r5, &(0x7f0000000200)='./file0\x00', r5, &(0x7f0000000240)='./file1\x00', 0x1) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000400)='/proc/thread-self/fail-nth\x00', 0x101000, 0x0) cachestat$auto(r6, &(0x7f00000000c0)={0x401, 0x428a}, &(0x7f0000000100)={0x3f, 0x3, 0x1b, 0x15, 0x5}, 0x0) r7 = openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x8000, 0x70) mknodat$auto(r7, &(0x7f00000003c0)='./file0\x00', 0xfff, 0xfffffff8) renameat2$auto(r7, &(0x7f0000000200)='./file0\x00', r7, &(0x7f0000000240)='./file1\x00', 0x2) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0xffffffffffffffff, 0x1009, &(0x7f0000000700)="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", 0x2) r8 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="4400ca9347790000", @ANYRES16=r8, @ANYBLOB="1b0026bd7000fddbdf2503000000040008001400038010000e800c009400060000000000000012000100898771f1c19f1779048590828847000004000280"], 0x44}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_LIST(r1, 0xc0505510, &(0x7f00000004c0)={0x7, 0x8001, 0x8001, @inferred, 0x0, "577fe34b52704ac8509b19a7692aa2edccbd331ed4ebee812d81942f1310bbbb02251beba7ae3fde4ed42fdb546575140790"}) 1.958499177s ago: executing program 2 (id=879): rseq$auto(&(0x7f0000000140)={0xe, 0x1, 0x0, 0x806, 0x0, 0x2}, 0x8000, 0x0, 0x8000006) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000e40)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x2, 0x0) pwritev$auto(r0, &(0x7f0000000100)={&(0x7f0000000080), 0xe001}, 0x3, 0xe, 0x3) mbind$auto(0x7f, 0xffffffff80000000, 0x9, 0x0, 0x7fff, 0x0) openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, 0x0, 0x142, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x1e9742, 0x0) madvise$auto(0x0, 0x2003f0, 0x15) mmap$auto(0x0, 0x5, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x29, 0x2, 0x0) getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0) r1 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x801, 0x0) write$auto_ftrace_subsystem_filter_fops_trace_events(r1, 0x0, 0x0) (fail_nth: 3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/v4l-subdev0\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x15, 0xfffffffffffffffa, 0x8000) openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/dynamic_events\x00', 0x80301, 0x0) ioperm$auto(0x7, 0x6, 0x10) mkdir$auto(&(0x7f0000000080)='./file0\x00', 0x7ff) r2 = open$dir(&(0x7f0000000000)='./file0\x00', 0x10000, 0x6) openat$auto(r2, &(0x7f0000000180)='./file0\x00', 0x8000, 0x7ff) unlinkat$auto(r2, &(0x7f00000001c0)='./file0\x00', 0x0) 1.860189968s ago: executing program 3 (id=880): statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x8, 0x10000000001ff, 0x7c9, 0x25, 0x4909b6f5, 0x1ffde, 0x7, 0x3, 0x20000009, 0x9, 0x3, 0x4, 0x1, 0xb4, 0x9, 0x8, 0x10003, 0x80, 0x3, 0x0, 0xa, 0x22000, 0x200, 0xffffff28, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffff3ff, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff9, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0xffff, 0x10, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0xfffffffffffffffe]}, 0x1fe, 0x9) r0 = open(&(0x7f0000000140)='./file0\x00', 0x220c0, 0x4) ioctl$auto_SNAPSHOT_ALLOC_SWAP_PAGE(r0, 0x80083314, &(0x7f0000000040)=0xce) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYRESOCT=r0, @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x40008004}, 0x8000) r1 = socket(0x10, 0x2, 0x0) setsockopt$auto_SO_RXQ_OVFL(r1, 0x1, 0x28, 0x0, 0x7) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x1892, 0x0, 0x2, &(0x7f0000000140), 0xb, 0xa505}, 0x800}, 0x7, 0x4008) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/netfilter/nfnetlink_queue\x00', 0x101000, 0x0) socket(0x10, 0x2, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) clone$auto(0x7fff, 0x200, 0x0, 0x0, 0xf) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0) r4 = socket(0xa, 0x3, 0x3a) getsockopt$auto(r4, 0x29, 0xd1, 0x0, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) madvise$auto(0x0, 0x454, 0x9) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r3) r5 = ioctl$auto_KVM_CREATE_VM(r2, 0x4004ae99, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(r0, 0x8, 0x10000) close_range$auto(0xffffffffffffffff, 0xfffffffffffff000, 0x2) io_uring_enter$auto(0x3, 0x1, 0x82400001, 0x0, 0x0, 0x18) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000080), r5) unshare$auto(0x40000080) 1.340492066s ago: executing program 2 (id=881): openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x802, 0x0) r0 = socket(0x29, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendfile$auto(0x1, 0x3, 0x0, 0xc01) r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x1, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) quotactl_fd$auto(r1, 0x4, 0xffffffffffffffff, 0x0) setpgid$auto(0x0, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/pci0000:00/0000:00:01.0/driver_override\x00', 0xa001, 0x0) write$auto(r2, &(0x7f0000000040)=']^-{+(**\x9d\x00', 0x7) getdents64$auto(0xffffffffffffffff, 0x0, 0x400) ioctl$auto_VHOST_VSOCK_SET_RUNNING(0xffffffffffffffff, 0x4004af61, 0x0) madvise$auto(0x0, 0x8000000000000000, 0x15) capget$auto(0x0, 0xfffffffffffffffe) setresuid$auto(0x60, 0x1000, 0x607) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-9/xps_rxqs\x00', 0x1a1842, 0x0) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) ioctl$auto(r0, 0x89a3, 0x24) clone3$auto(&(0x7f0000000080)={0x404, 0x8, 0x6f, 0x7, 0xfffffffffffffff7, 0xffff, 0x6, 0x1be, 0x5, 0x8, 0x4}, 0x3) r4 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000001200)='/sys/kernel/security/tomoyo/profile\x00', 0x0, 0x0) read$auto_tomoyo_operations_securityfs_if(r4, &(0x7f0000000040)=""/4099, 0xfd98) r5 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/numa_maps\x00', 0xa00, 0x0) ioctl$auto(r3, 0x5606, r5) 1.269808156s ago: executing program 4 (id=882): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) setrlimit$auto(0x1000000007, 0x0) io_uring_setup$auto(0x6, 0x0) getxattrat$auto(0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0, 0xb91) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sg0\x00', 0x8402, 0x0) socket(0x23, 0x2, 0x0) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x1, 0xd, 0x3000, 0x5, 0x4, 0x7fffffff, 0xffffffffffffffff, [], {0x6, 0x6, 0x3b5a, 0x21f, 0x102, 0x7ffffffb, 0x101, 0x8, 0x3}, {0x100, 0x1, 0x52, 0x405, 0x2, 0x60, 0x76c5, 0x8, 0x100000000}}) unshare$auto(0x40000080) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x202002, 0x0) sysfs$auto(0x2, 0x20, 0x0) r0 = fsopen$auto(0x0, 0x1) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xe, 0x1, 0x4, 0x7, 0x15f4da0a, 0x1, 0x7fff, 0x300000000000000, 0x80000001, 0xdc, 0x6d3c, 0x8, 0x2, 0x2e]}, 0x0) socket(0xf, 0x800, 0x1) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f0000000000), 0x444080, 0x0) mmap$auto(0x0, 0xfffc, 0x6, 0x40eb2, r1, 0x300000000000) getcwd$auto(0x0, 0xffffffffffffffff) ioctl$auto_TIOCVHANGUP2(r0, 0x5437, &(0x7f0000000180)="988fc03ec9b8556b4fcd65d1930dcd840a1775362351f5eab61c7fa6ba79b623706416aec2a51c4ba4dd8c7b8922865ca2644075f6f96e34a3bb16202bf666465b38cc186e006bac3d2ad6d4c76c4e7aae1b1bdee5a3632b2f0dcf56e731f4ea1d79812e2440314caf3feb202f1d945fcfd62af9ed678cbaf9d9953620cadeed39558b7f9fb76af2e0b033cc393dd31aa87720f9f568e4c7f81227249e1a39ab020f018aaa58ce507c438d8a0ce382f7ae45839e5ecab7dae4f488f479120c9c70d72e11a785e1ffff7451154e71628affc9390517d082303b4893ad1361da241f8539ca114f610c38a8043ddcb14d2f7cce53a8") clone$auto(0x109001, 0x2, 0xffffffffffffffff, 0xfffffffffffffffc, 0x8) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x4c01c0, 0x0) 1.117777035s ago: executing program 2 (id=883): openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/trace\x00', 0x1a6b75d63882a712, 0x1a00) 904.945073ms ago: executing program 2 (id=884): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/fs/pipe-max-size\x00', 0x382, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_LINKSTATE_GET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="2c2d00204600000081c68082006e9d6400", @ANYRES16=r2, @ANYBLOB="01002dbd7000ffdbdf250600000018000180140002006c6f00"/38], 0x2c}, 0x1, 0x0, 0x0, 0x20004001}, 0x20c84) openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/mem\x00', 0x200000, 0x0) sendfile$auto(r0, r0, 0x0, 0x2) mmap$auto(0xffffffffffffffff, 0x20005, 0x0, 0x10000000eb0, r0, 0x3) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0x24b7}, 0x8, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x6) r3 = socket(0x1a, 0x2, 0x400) r4 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) socket(0x29, 0x2, 0x0) r5 = socket(0x11, 0x3, 0x9) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) r6 = io_uring_setup$auto(0x6, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'netdevsim0\x00', 0x0}) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) socket$nl_generic(0x10, 0x3, 0x10) socket(0x26, 0x80805, 0x0) socket(0xa, 0x3, 0x6) clone$auto(0x21003b46, 0x2, 0x0, 0x0, 0x6) bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r7, r6, 0x99, 0x8, 0x1, @relative_id=0x4, 0x9}, 0x8a4) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x3}, 0x6) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r5, 0x0, 0x3}, 0xc) recvmmsg$auto(r4, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r3, 0x8993, 0x24) 809.293087ms ago: executing program 3 (id=885): socket(0x10, 0x3, 0x6) (async) mmap$auto(0x2, 0x20009, 0xdf, 0x17, 0x401, 0x8000) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 64) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 64) socket(0x15, 0x5, 0x0) io_uring_setup$auto(0x59, 0x0) (async) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) (async) open(0x0, 0x4040, 0x75) (async) connect$auto(0x3, 0x0, 0x55) (async, rerun: 32) openat$auto_o2hb_debug_fops_heartbeat(0xffffffffffffff9c, &(0x7f0000001d80)='/sys/kernel/debug/o2hb/failed_regions\x00', 0x200, 0x0) (async, rerun: 32) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x8) (async, rerun: 64) r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) (async, rerun: 64) r1 = socketpair$auto(0x1e, 0x4, 0x2, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) (async, rerun: 64) ioctl$auto(r0, 0x5609, r1) (async, rerun: 64) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async) write$auto_console_fops_tty_io(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 32) ioctl$auto(0xc8, 0x800454e0, 0xe) (async, rerun: 32) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) (async) r2 = socket(0xa, 0x3, 0x3a) sendmsg$auto_ETHTOOL_MSG_EEE_GET(r2, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x4100000}, 0xc, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[], 0xb4}, 0x1, 0x0, 0x0, 0x20040880}, 0x4000) (async) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup/cgroup.type\x00', 0x103042, 0x0) setresgid$auto(0xffffffffffffffff, 0x28000000000000, 0x7) (async) fsconfig$auto(r2, 0x2, &(0x7f0000000000)='./cgroup/cgroup.type\x00', 0x0, 0x0) (async, rerun: 32) read$auto(r3, 0x0, 0x3fffffffffff) (async, rerun: 32) kexec_load$auto(0x2, 0x2, 0x0, 0x0) (async) mmap$auto(0x30000000, 0x2020009, 0x4, 0xeb1, 0xfffffffffffffffa, 0x8000) 610.899423ms ago: executing program 2 (id=886): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0) r0 = socket(0x15, 0x1, 0x2) open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) fcntl$auto(0x8000000000000001, 0xbe6a, 0x8) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) unlink$auto(&(0x7f0000000380)='./file0\x00') getpgid(0x0) syz_genetlink_get_family_id$auto_ioam6(&(0x7f00000000c0), r0) sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x20040890}, 0x50) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) r1 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x5, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) io_uring_setup$auto(0x2, 0x0) rt_sigtimedwait$auto(0x0, 0x0, 0x0, 0x8) ioctl$auto_KVM_GET_MSRS(0xffffffffffffffff, 0xc008ae88, 0x0) getpid() setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) write$auto(0x3, 0x0, 0xffd8) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) connect$auto(0x3, 0x0, 0x55) 602.134805ms ago: executing program 4 (id=887): openat$auto_generic(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/bluetooth/hci2/hci2:200/power/autosuspend_delay_ms\x00', 0x18800, 0x0) sendfile$auto(0x1, 0xffffffffffffffff, 0x0, 0x8fb5) r0 = fcntl$auto(0x3, 0x4, 0xa553) ioctl$auto(0x3, 0x541b, r0) openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x42006, 0x0) r1 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x501002, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f0000000140)='/d\x03\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xae\xdf\xff\xf0\x15\xf8W$\xda\x00\x00\xe0\xb7\x94D\x00\x85\xaf\xe3\xb6\x98\x80x\xb5Ky\xb3\x85[:\xf4\x14\xf1\x8f\xf2\xa2\xd8@\xb5S\x19]Xo\x14\xe8\x1f\xfe\x7f\xd8\x10\x9b\x18\n_S\xf7R\xc4/\x92n\xfa', 0x4) fcntl$auto_F_NOTIFY(0xffffffffffffffff, 0x402, 0x1) fsopen$auto(&(0x7f00000000c0)='/dev/net/tun\x00', 0x1) mmap$auto(0x0, 0x8000000000000000, 0x9, 0x9b70, r0, 0x7ffe) lseek$auto(r1, 0x7f, 0x2a21) sysfs$auto(0x2, 0x8000000000000001, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x108002, 0x0) epoll_create$auto(0x3e) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000000), 0x189a01, 0x0) eventfd$auto(0x3) socketpair$auto(0x9, 0x2, 0xb, 0x0) ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x5411, 0x0) 0s ago: executing program 4 (id=888): unshare$auto(0x40000080) mmap$auto(0x0, 0x5, 0xdf, 0x9b72, 0x7, 0x28000) r0 = socket(0x10, 0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'bridge_slave_0\x00'}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40010) sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x4, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r2 = socket(0xa, 0x1, 0x100) r3 = getuid() r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x24, r4, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r6}, @NL80211_ATTR_WIPHY_FRAG_THRESHOLD={0x8, 0x3f, 0x80005}]}, 0x24}, 0x1, 0x0, 0x0, 0x20040810}, 0x20000084) r7 = socket(0x11, 0x80003, 0x300) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000040)={'vxcan1\x00', 0x0}) sendto$auto(0x3, 0x0, 0x13, 0xfffffff9, &(0x7f0000000440)=@xdp={0x2c, 0x300, r8, 0x10}, 0x22) sendmsg$auto_ETHTOOL_MSG_WOL_SET(r2, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000100)={&(0x7f0000000300)={0x2d0, 0x0, 0x400, 0x70bd2b, 0x25dfdbfc, {}, [@ETHTOOL_A_WOL_HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}]}, @ETHTOOL_A_WOL_MODES={0x1f7, 0x2, 0x0, 0x1, [@generic="e016d9dfd78f888d22aac1a84cfc214a85ea638d6afebcbecf36f1b280a854ad67254aa77c9682297ab6c87bc1d082793d3b25a4a3adea3dcdf696ae91edaa9f9991e836f9863d5ee31a55986dfb79a93810ede8ff8b41a60cbbc8008559bb018b3791ee1a57f931ea24d7f30d31", @typed={0xc, 0x85, 0x0, 0x0, @u64=0xfffffffffffffffe}, @typed={0xc, 0x9e, 0x0, 0x0, @u64=0x13d}, @generic="479e73056324987772cd3291616514ffab", @nested={0x78, 0x31, 0x0, 0x1, [@typed={0xc, 0x92, 0x0, 0x0, @u64=0x100000000}, @nested={0x4, 0x11c}, @generic="ea52b6c3d7d26e947ca41c340f0a9b7480ff7131f93d8c2904deba31874034656f76ce508351f36c8f5b71b048042225d0a324fa53f442735a39d1061587cd1a1188960398c6b2d38f66c3dbb71f684d4acbc44c933a5d61cac2b0a691badfe654e39bca"]}, @typed={0x8, 0x63, 0x0, 0x0, @uid=r3}, @nested={0xbe, 0x140, 0x0, 0x1, [@nested={0x4, 0x5f}, @nested={0x4, 0x7e}, @typed={0x13, 0x114, 0x0, 0x0, @str='bridge_slave_0\x00'}, @typed={0x8, 0xf3, 0x0, 0x0, @u32=0xffffff9c}, @generic="91cf63db1c9f1ebd9a3c1d7dbc77541594d97726d74d760de218d50f416d570bec975517d6cb55adfc08e5a6e6b7fff552051f00d23a063a6159e21c7b4f9d7009b353134b5a78be", @nested={0x4, 0x76}, @typed={0x8, 0x10, 0x0, 0x0, @ipv4=@loopback}, @generic="11cc0f6023d0a976e8bd5b5e9d728fe13536a8c5cd766b1d5616e3bdf3d03a4b62dd45ebf14973558c4732319f38483eb048d9418898fab48d3e5e40e262240d6348"]}, @typed={0x8, 0x67, 0x0, 0x0, @ipv4=@empty}, @typed={0x14, 0x133, 0x0, 0x0, @ipv6=@private2}]}, @ETHTOOL_A_WOL_HEADER={0x7c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gre0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xfffffff5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x948}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xd9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}]}]}, 0x2d0}, 0x1, 0x0, 0x0, 0x20000810}, 0x20008000) socket(0x2, 0x3, 0xa) setregid$auto(0x0, 0x3) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) getpgid(0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2a, 0x3, 0xfffffffa) statmount$auto(0x0, 0x0, 0x202, 0xd) kernel console output (not intermixed with test programs): alid length. [ 164.671109][ T6640] Invalid ELF header magic: != ELF [ 165.311531][ T6640] snd_aloop snd_aloop.0: control 16781581:65535:6:'x?F/zF˷fC:8 is already present [ 166.902985][ T6667] netlink: 28 bytes leftover after parsing attributes in process `syz.1.174'. [ 167.006815][ T6667] geneve1: entered allmulticast mode [ 167.485185][ T6676] netlink: 28 bytes leftover after parsing attributes in process `syz.1.184'. [ 171.833710][ T6700] netlink: 346 bytes leftover after parsing attributes in process `syz.0.182'. [ 172.227936][ T6737] Invalid ELF header magic: != ELF [ 174.450293][ T6776] FAULT_INJECTION: forcing a failure. [ 174.450293][ T6776] name failslab, interval 1, probability 0, space 0, times 0 [ 174.526917][ T6776] CPU: 1 UID: 0 PID: 6776 Comm: syz.0.201 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 174.526951][ T6776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 174.526965][ T6776] Call Trace: [ 174.526972][ T6776] [ 174.526981][ T6776] dump_stack_lvl+0x16c/0x1f0 [ 174.527019][ T6776] should_fail_ex+0x512/0x640 [ 174.527047][ T6776] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 174.527080][ T6776] should_failslab+0xc2/0x120 [ 174.527102][ T6776] __kmalloc_cache_noprof+0x6a/0x3e0 [ 174.527133][ T6776] ? trace_kmalloc+0x2b/0xd0 [ 174.527155][ T6776] ? snd_virmidi_input_open+0xc8/0x4a0 [ 174.527195][ T6776] snd_virmidi_input_open+0xc8/0x4a0 [ 174.527244][ T6776] open_substream+0x478/0x9b0 [ 174.527271][ T6776] rawmidi_open_priv+0x513/0x6e0 [ 174.527301][ T6776] snd_rawmidi_open+0x4cc/0xbf0 [ 174.527334][ T6776] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 174.527362][ T6776] ? __pfx_default_wake_function+0x10/0x10 [ 174.527396][ T6776] ? kobject_get_unless_zero+0x156/0x1e0 [ 174.527436][ T6776] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 174.527461][ T6776] snd_open+0x1fe/0x450 [ 174.527497][ T6776] ? __pfx_snd_open+0x10/0x10 [ 174.527528][ T6776] chrdev_open+0x231/0x6a0 [ 174.527563][ T6776] ? __pfx_apparmor_file_open+0x10/0x10 [ 174.527592][ T6776] ? __pfx_chrdev_open+0x10/0x10 [ 174.527629][ T6776] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 174.527667][ T6776] do_dentry_open+0x741/0x1c10 [ 174.527700][ T6776] ? __pfx_chrdev_open+0x10/0x10 [ 174.527741][ T6776] vfs_open+0x82/0x3f0 [ 174.527767][ T6776] path_openat+0x1e5e/0x2d40 [ 174.527811][ T6776] ? __pfx_path_openat+0x10/0x10 [ 174.527852][ T6776] do_filp_open+0x20b/0x470 [ 174.527892][ T6776] ? __pfx_do_filp_open+0x10/0x10 [ 174.527966][ T6776] ? alloc_fd+0x471/0x7d0 [ 174.528026][ T6776] do_sys_openat2+0x11b/0x1d0 [ 174.528056][ T6776] ? __pfx_do_sys_openat2+0x10/0x10 [ 174.528091][ T6776] __x64_sys_openat+0x174/0x210 [ 174.528116][ T6776] ? __pfx___x64_sys_openat+0x10/0x10 [ 174.528143][ T6776] ? rcu_is_watching+0x12/0xc0 [ 174.528179][ T6776] do_syscall_64+0xcd/0x260 [ 174.528215][ T6776] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 174.528244][ T6776] RIP: 0033:0x7f6ca398e169 [ 174.528262][ T6776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 174.528285][ T6776] RSP: 002b:00007f6ca47bd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 174.528306][ T6776] RAX: ffffffffffffffda RBX: 00007f6ca3bb5fa0 RCX: 00007f6ca398e169 [ 174.528321][ T6776] RDX: 0000000000080102 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 174.528335][ T6776] RBP: 00007f6ca3a10a68 R08: 0000000000000000 R09: 0000000000000000 [ 174.528349][ T6776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 174.528362][ T6776] R13: 0000000000000000 R14: 00007f6ca3bb5fa0 R15: 00007fffc4817148 [ 174.528390][ T6776] [ 175.320539][ T6781] delete_channel: no stack [ 175.643804][ T6785] openvswitch: HfR: Dropping previously announced user features [ 177.621180][ T6809] netlink: 28 bytes leftover after parsing attributes in process `syz.2.210'. [ 177.672711][ T6812] netlink: 28 bytes leftover after parsing attributes in process `syz.1.211'. [ 182.288337][ T6892] openvswitch: HfR: Dropping previously announced user features [ 183.644064][ T6910] Invalid ELF header magic: != ELF [ 185.012184][ T6928] FAULT_INJECTION: forcing a failure. [ 185.012184][ T6928] name failslab, interval 1, probability 0, space 0, times 0 [ 185.048770][ T6928] CPU: 1 UID: 0 PID: 6928 Comm: syz.3.240 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 185.048819][ T6928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 185.048839][ T6928] Call Trace: [ 185.048851][ T6928] [ 185.048864][ T6928] dump_stack_lvl+0x16c/0x1f0 [ 185.048920][ T6928] should_fail_ex+0x512/0x640 [ 185.048956][ T6928] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 185.049005][ T6928] should_failslab+0xc2/0x120 [ 185.049035][ T6928] __kmalloc_cache_noprof+0x6a/0x3e0 [ 185.049080][ T6928] ? snd_midi_event_new+0x6f/0x210 [ 185.049134][ T6928] snd_midi_event_new+0x6f/0x210 [ 185.049183][ T6928] snd_virmidi_input_open+0x107/0x4a0 [ 185.049240][ T6928] open_substream+0x478/0x9b0 [ 185.049278][ T6928] rawmidi_open_priv+0x513/0x6e0 [ 185.049322][ T6928] snd_rawmidi_open+0x4cc/0xbf0 [ 185.049367][ T6928] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 185.049408][ T6928] ? __pfx_default_wake_function+0x10/0x10 [ 185.049455][ T6928] ? kobject_get_unless_zero+0x156/0x1e0 [ 185.049527][ T6928] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 185.049566][ T6928] snd_open+0x1fe/0x450 [ 185.049613][ T6928] ? __pfx_snd_open+0x10/0x10 [ 185.049659][ T6928] chrdev_open+0x231/0x6a0 [ 185.049708][ T6928] ? __pfx_apparmor_file_open+0x10/0x10 [ 185.049749][ T6928] ? __pfx_chrdev_open+0x10/0x10 [ 185.049803][ T6928] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 185.049857][ T6928] do_dentry_open+0x741/0x1c10 [ 185.049904][ T6928] ? __pfx_chrdev_open+0x10/0x10 [ 185.049962][ T6928] vfs_open+0x82/0x3f0 [ 185.050002][ T6928] path_openat+0x1e5e/0x2d40 [ 185.050063][ T6928] ? __pfx_path_openat+0x10/0x10 [ 185.050121][ T6928] do_filp_open+0x20b/0x470 [ 185.050169][ T6928] ? __pfx_do_filp_open+0x10/0x10 [ 185.050249][ T6928] ? alloc_fd+0x471/0x7d0 [ 185.050307][ T6928] do_sys_openat2+0x11b/0x1d0 [ 185.050341][ T6928] ? __pfx_do_sys_openat2+0x10/0x10 [ 185.050392][ T6928] __x64_sys_openat+0x174/0x210 [ 185.050427][ T6928] ? __pfx___x64_sys_openat+0x10/0x10 [ 185.050465][ T6928] ? rcu_is_watching+0x12/0xc0 [ 185.050523][ T6928] do_syscall_64+0xcd/0x260 [ 185.050574][ T6928] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 185.050607][ T6928] RIP: 0033:0x7f6def98e169 [ 185.050634][ T6928] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 185.050664][ T6928] RSP: 002b:00007f6df078d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 185.050694][ T6928] RAX: ffffffffffffffda RBX: 00007f6defbb5fa0 RCX: 00007f6def98e169 [ 185.050715][ T6928] RDX: 0000000000080102 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 185.050736][ T6928] RBP: 00007f6defa10a68 R08: 0000000000000000 R09: 0000000000000000 [ 185.050755][ T6928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 185.050774][ T6928] R13: 0000000000000000 R14: 00007f6defbb5fa0 R15: 00007ffc5cbf9598 [ 185.050816][ T6928] [ 185.845511][ T6938] ubi0: attaching mtd0 [ 185.896433][ T6938] ubi0: scanning is finished [ 185.910501][ T6938] ubi0: empty MTD device detected [ 185.968651][ T6938] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 186.024325][ T6940] Invalid ELF header magic: != ELF [ 186.422035][ T6938] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 186.624275][ T6939] could not allocate digest TFM handle [ 186.664845][ T6952] delete_channel: no stack [ 187.847409][ T6957] Invalid ELF header magic: != ELF [ 188.229527][ T6972] openvswitch: HfR: Dropping previously announced user features [ 189.925891][ T7001] ubi0: attaching mtd0 [ 189.959238][ T7001] ubi0: scanning is finished [ 189.984386][ T7001] ubi0: empty MTD device detected [ 190.004716][ T7001] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 190.134801][ T7003] Invalid ELF header magic: != ELF [ 190.440724][ T7001] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 191.807628][ T7025] openvswitch: HfR: Dropping previously announced user features [ 193.019930][ T7044] Invalid ELF header magic: != ELF [ 193.506909][ T7050] netlink: 28 bytes leftover after parsing attributes in process `syz.0.270'. [ 193.526300][ T7050] geneve1: entered allmulticast mode [ 195.216950][ T7075] openvswitch: HfR: Dropping previously announced user features [ 196.082725][ T7083] netlink: 28 bytes leftover after parsing attributes in process `syz.1.276'. [ 196.223954][ T7086] netlink: 28 bytes leftover after parsing attributes in process `syz.3.281'. [ 196.263455][ T7086] geneve1: entered allmulticast mode [ 196.288875][ T7089] netlink: 28 bytes leftover after parsing attributes in process `syz.0.282'. [ 197.098429][ T7103] openvswitch: HfR: Dropping previously announced user features [ 199.556454][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.564591][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 202.911881][ T7162] could not allocate digest TFM handle [ 203.175618][ T7187] openvswitch: HfR: Dropping previously announced user features [ 208.594555][ T7265] openvswitch: HfR: Dropping previously announced user features [ 212.194407][ T7311] Invalid ELF header magic: != ELF [ 214.989009][ T7363] netlink: 28 bytes leftover after parsing attributes in process `syz.1.343'. [ 215.287332][ T7364] openvswitch: HfR: Dropping previously announced user features [ 216.455387][ T7374] Invalid ELF header magic: != ELF [ 216.763099][ T7384] openvswitch: HfR: Dropping previously announced user features [ 217.182301][ T7377] delete_channel: no stack [ 218.516806][ T7397] delete_channel: no stack [ 218.773183][ T7402] netlink: 28 bytes leftover after parsing attributes in process `syz.3.354'. [ 221.039277][ T7438] openvswitch: HfR: Dropping previously announced user features [ 223.631195][ T7475] openvswitch: HfR: Dropping previously announced user features [ 224.320336][ T7485] delete_channel: no stack [ 224.810848][ T7491] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 226.100315][ T7509] delete_channel: no stack [ 227.233075][ T5857] Bluetooth: hci3: command 0x0406 tx timeout [ 227.239582][ T5857] Bluetooth: hci0: command 0x0406 tx timeout [ 227.245965][ T5154] Bluetooth: hci2: command 0x0406 tx timeout [ 227.246022][ T5154] Bluetooth: hci1: command 0x0406 tx timeout [ 227.342896][ T7530] delete_channel: no stack [ 228.158224][ T7537] Invalid ELF header magic: != ELF [ 230.533399][ T7571] openvswitch: HfR: Dropping previously announced user features [ 231.591003][ T7585] delete_channel: no stack [ 236.012811][ T7643] netlink: 8 bytes leftover after parsing attributes in process `syz.0.400'. [ 236.660220][ T7663] openvswitch: HfR: Dropping previously announced user features [ 237.256032][ T7681] netlink: 'syz.0.407': attribute type 27 has an invalid length. [ 237.268460][ T7681] netlink: 334 bytes leftover after parsing attributes in process `syz.0.407'. [ 237.701496][ T7694] Invalid ELF header magic: != ELF [ 237.739843][ T7692] openvswitch: HfR: Dropping previously announced user features [ 238.982861][ T5846] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 240.996669][ T7728] Invalid ELF header magic: != ELF [ 241.226057][ T7739] Invalid ELF header magic: != ELF [ 242.229271][ T7756] openvswitch: HfR: Dropping previously announced user features [ 244.797126][ T7814] Invalid ELF header magic: != ELF [ 245.900894][ T7853] ptrace attach of "./syz-executor exec"[5841] was attempted by "./syz-executor exec"[7853] [ 247.023651][ T7916] synth uevent: /bus/memstick: unknown uevent action string [ 248.429427][ T7983] input: f as /devices/virtual/input/input6 [ 249.174347][ T7993] FAULT_INJECTION: forcing a failure. [ 249.174347][ T7993] name fail_futex, interval 1, probability 0, space 0, times 1 [ 249.190659][ T8001] openvswitch: HfR: Dropping previously announced user features [ 249.216683][ T7993] CPU: 0 UID: 0 PID: 7993 Comm: syz.2.443 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 249.216727][ T7993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 249.216748][ T7993] Call Trace: [ 249.216757][ T7993] [ 249.216771][ T7993] dump_stack_lvl+0x16c/0x1f0 [ 249.216830][ T7993] should_fail_ex+0x512/0x640 [ 249.216872][ T7993] get_futex_key+0x1c2/0x1000 [ 249.216920][ T7993] ? __pfx_get_futex_key+0x10/0x10 [ 249.216967][ T7993] ? kasan_save_track+0x14/0x30 [ 249.217012][ T7993] ? __kasan_kmalloc+0xaa/0xb0 [ 249.217062][ T7993] futex_lock_pi+0x27c/0x7b0 [ 249.217117][ T7993] ? __lock_acquire+0x5ca/0x1ba0 [ 249.217170][ T7993] ? __pfx_futex_lock_pi+0x10/0x10 [ 249.217231][ T7993] ? find_held_lock+0x2b/0x80 [ 249.217282][ T7993] ? proc_fail_nth_write+0x9f/0x250 [ 249.217332][ T7993] ? __pfx_futex_wake_mark+0x10/0x10 [ 249.217371][ T7993] ? ksys_write+0x190/0x240 [ 249.217422][ T7993] do_futex+0x11a/0x350 [ 249.217468][ T7993] ? __pfx_do_futex+0x10/0x10 [ 249.217524][ T7993] __x64_sys_futex+0x1e0/0x4c0 [ 249.217573][ T7993] ? fput+0x70/0xf0 [ 249.217602][ T7993] ? __pfx___x64_sys_futex+0x10/0x10 [ 249.217646][ T7993] ? ksys_write+0x1b9/0x240 [ 249.217689][ T7993] ? __pfx_ksys_write+0x10/0x10 [ 249.217744][ T7993] do_syscall_64+0xcd/0x260 [ 249.217792][ T7993] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 249.217829][ T7993] RIP: 0033:0x7f5ec718e169 [ 249.217853][ T7993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 249.217887][ T7993] RSP: 002b:00007f5ec7f74038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 249.217917][ T7993] RAX: ffffffffffffffda RBX: 00007f5ec73b5fa0 RCX: 00007f5ec718e169 [ 249.217938][ T7993] RDX: 0000000000000007 RSI: 0000000000000006 RDI: 0000000000000000 [ 249.217956][ T7993] RBP: 00007f5ec7f74090 R08: 0000000000000000 R09: 0000000080000002 [ 249.217976][ T7993] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 249.217994][ T7993] R13: 0000000000000000 R14: 00007f5ec73b5fa0 R15: 00007ffd72fe2c88 [ 249.218035][ T7993] [ 249.825249][ T8009] FAULT_INJECTION: forcing a failure. [ 249.825249][ T8009] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 249.852417][ T8009] CPU: 0 UID: 0 PID: 8009 Comm: syz.3.447 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 249.852459][ T8009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 249.852476][ T8009] Call Trace: [ 249.852485][ T8009] [ 249.852496][ T8009] dump_stack_lvl+0x16c/0x1f0 [ 249.852560][ T8009] should_fail_ex+0x512/0x640 [ 249.852602][ T8009] should_fail_alloc_page+0xe7/0x130 [ 249.852635][ T8009] prepare_alloc_pages+0x3c2/0x610 [ 249.852672][ T8009] ? arch_stack_walk+0xa6/0x100 [ 249.852719][ T8009] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 249.852770][ T8009] ? __lock_acquire+0x5ca/0x1ba0 [ 249.852825][ T8009] ? stack_trace_save+0x8e/0xc0 [ 249.852866][ T8009] ? __pfx_stack_trace_save+0x10/0x10 [ 249.852908][ T8009] ? stack_depot_save_flags+0x28/0xa50 [ 249.852951][ T8009] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 249.853003][ T8009] ? find_held_lock+0x2b/0x80 [ 249.853049][ T8009] ? __lock_acquire+0xaa4/0x1ba0 [ 249.853108][ T8009] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 249.853144][ T8009] ? policy_nodemask+0xea/0x4e0 [ 249.853199][ T8009] alloc_pages_mpol+0x1fb/0x550 [ 249.853231][ T8009] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 249.853277][ T8009] alloc_pages_noprof+0x131/0x390 [ 249.853327][ T8009] __pmd_alloc+0x3f/0x870 [ 249.853362][ T8009] ? find_held_lock+0x2b/0x80 [ 249.853404][ T8009] __handle_mm_fault+0x948/0x2a40 [ 249.853460][ T8009] ? __pfx___handle_mm_fault+0x10/0x10 [ 249.853535][ T8009] ? find_vma+0xbf/0x140 [ 249.853567][ T8009] ? __pfx_find_vma+0x10/0x10 [ 249.853599][ T8009] ? find_held_lock+0x2b/0x80 [ 249.853642][ T8009] handle_mm_fault+0x3fe/0xad0 [ 249.853694][ T8009] do_user_addr_fault+0x7a6/0x1370 [ 249.853731][ T8009] ? unwind_get_return_address+0x59/0xa0 [ 249.853775][ T8009] ? rcu_is_watching+0x12/0xc0 [ 249.853818][ T8009] exc_page_fault+0x5c/0xc0 [ 249.853863][ T8009] asm_exc_page_fault+0x26/0x30 [ 249.853893][ T8009] RIP: 0010:rep_movs_alternative+0x30/0x90 [ 249.853930][ T8009] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 [ 249.853959][ T8009] RSP: 0018:ffffc900040bfab0 EFLAGS: 00050212 [ 249.853985][ T8009] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000024 [ 249.854003][ T8009] RDX: fffff52000817f6c RSI: 0000000000000000 RDI: ffffc900040bfb40 [ 249.854023][ T8009] RBP: 0000000000000024 R08: 0000000000000001 R09: fffff52000817f6c [ 249.854042][ T8009] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000 [ 249.854061][ T8009] R13: ffffc900040bfb40 R14: 0000000000000000 R15: 0000000000100082 [ 249.854101][ T8009] _copy_from_user+0x98/0xd0 [ 249.854143][ T8009] sg_write+0x2cc/0xe10 [ 249.854184][ T8009] ? __pfx_sg_write+0x10/0x10 [ 249.854261][ T8009] ? apparmor_file_permission+0x251/0x400 [ 249.854299][ T8009] ? bpf_lsm_file_permission+0x9/0x10 [ 249.854338][ T8009] ? security_file_permission+0x71/0x210 [ 249.854381][ T8009] ? rw_verify_area+0xcf/0x680 [ 249.854424][ T8009] vfs_write+0x25c/0x1180 [ 249.854465][ T8009] ? __pfx_sg_write+0x10/0x10 [ 249.854551][ T8009] ? __pfx_vfs_write+0x10/0x10 [ 249.854591][ T8009] ? find_held_lock+0x2b/0x80 [ 249.854632][ T8009] ? __fget_files+0x204/0x3c0 [ 249.854685][ T8009] ? __fget_files+0x20e/0x3c0 [ 249.854743][ T8009] ksys_write+0x12a/0x240 [ 249.854786][ T8009] ? __pfx_ksys_write+0x10/0x10 [ 249.854827][ T8009] ? rcu_is_watching+0x12/0xc0 [ 249.854878][ T8009] do_syscall_64+0xcd/0x260 [ 249.854928][ T8009] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 249.854959][ T8009] RIP: 0033:0x7f6def98e169 [ 249.854983][ T8009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 249.855012][ T8009] RSP: 002b:00007f6df078d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 249.855039][ T8009] RAX: ffffffffffffffda RBX: 00007f6defbb5fa0 RCX: 00007f6def98e169 [ 249.855059][ T8009] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 249.855078][ T8009] RBP: 00007f6df078d090 R08: 0000000000000000 R09: 0000000000000000 [ 249.855096][ T8009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 249.855115][ T8009] R13: 0000000000000000 R14: 00007f6defbb5fa0 R15: 00007ffc5cbf9598 [ 249.855156][ T8009] [ 251.443441][ T8023] synth uevent: /bus/memstick: unknown uevent action string [ 252.445699][ T8066] random: crng reseeded on system resumption [ 253.103058][ T8115] bond0: option all_slaves_active: invalid value () [ 253.625773][ T8129] netlink: 4 bytes leftover after parsing attributes in process `syz.2.454'. [ 255.963384][ T30] audit: type=1800 audit(6039815422.661:2): pid=8235 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.465" name="discovery_nqn" dev="configfs" ino=18218 res=0 errno=0 [ 259.080860][ T8404] FAULT_INJECTION: forcing a failure. [ 259.080860][ T8404] name failslab, interval 1, probability 0, space 0, times 0 [ 259.153893][ T8404] CPU: 1 UID: 0 PID: 8404 Comm: syz.0.479 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 259.153937][ T8404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 259.153955][ T8404] Call Trace: [ 259.153965][ T8404] [ 259.153977][ T8404] dump_stack_lvl+0x16c/0x1f0 [ 259.154028][ T8404] should_fail_ex+0x512/0x640 [ 259.154063][ T8404] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 259.154115][ T8404] should_failslab+0xc2/0x120 [ 259.154145][ T8404] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 259.154194][ T8404] ? __alloc_skb+0x2b2/0x380 [ 259.154241][ T8404] __alloc_skb+0x2b2/0x380 [ 259.154281][ T8404] ? __pfx___alloc_skb+0x10/0x10 [ 259.154324][ T8404] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 259.154370][ T8404] ? __lock_acquire+0xaa4/0x1ba0 [ 259.154427][ T8404] netlink_alloc_large_skb+0x69/0x130 [ 259.154477][ T8404] netlink_sendmsg+0x6a1/0xdd0 [ 259.154531][ T8404] ? __pfx_netlink_sendmsg+0x10/0x10 [ 259.154594][ T8404] ____sys_sendmsg+0xa95/0xc70 [ 259.154626][ T8404] ? copy_msghdr_from_user+0x10a/0x160 [ 259.154667][ T8404] ? __pfx_____sys_sendmsg+0x10/0x10 [ 259.154715][ T8404] ? __pfx__kstrtoull+0x10/0x10 [ 259.154772][ T8404] ___sys_sendmsg+0x134/0x1d0 [ 259.154817][ T8404] ? __pfx____sys_sendmsg+0x10/0x10 [ 259.154878][ T8404] ? find_held_lock+0x2b/0x80 [ 259.154941][ T8404] __sys_sendmmsg+0x200/0x420 [ 259.154989][ T8404] ? __pfx___sys_sendmmsg+0x10/0x10 [ 259.155045][ T8404] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 259.155109][ T8404] ? fput+0x70/0xf0 [ 259.155139][ T8404] ? ksys_write+0x1b9/0x240 [ 259.155182][ T8404] ? __pfx_ksys_write+0x10/0x10 [ 259.155223][ T8404] ? rcu_is_watching+0x12/0xc0 [ 259.155269][ T8404] __x64_sys_sendmmsg+0x9c/0x100 [ 259.155311][ T8404] ? lockdep_hardirqs_on+0x7c/0x110 [ 259.155356][ T8404] do_syscall_64+0xcd/0x260 [ 259.155406][ T8404] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 259.155438][ T8404] RIP: 0033:0x7f6ca398e169 [ 259.155462][ T8404] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 259.155491][ T8404] RSP: 002b:00007f6ca479c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 259.155521][ T8404] RAX: ffffffffffffffda RBX: 00007f6ca3bb6080 RCX: 00007f6ca398e169 [ 259.155542][ T8404] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 259.155561][ T8404] RBP: 00007f6ca479c090 R08: 0000000000000000 R09: 0000000000000000 [ 259.155579][ T8404] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 259.155598][ T8404] R13: 0000000000000000 R14: 00007f6ca3bb6080 R15: 00007fffc4817148 [ 259.155637][ T8404] [ 260.999298][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 261.006468][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 262.282668][ T8508] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 262.682303][ T8528] capability: warning: `syz.3.491' uses 32-bit capabilities (legacy support in use) [ 266.232478][ T8698] lo: entered allmulticast mode [ 266.378086][ T8698] lo: left allmulticast mode [ 267.565961][ T8789] sctp: [Deprecated]: syz.3.504 (pid 8789) Use of int in maxseg socket option. [ 267.565961][ T8789] Use struct sctp_assoc_value instead [ 269.497024][ T8861] FAULT_INJECTION: forcing a failure. [ 269.497024][ T8861] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 269.546550][ T8861] CPU: 1 UID: 0 PID: 8861 Comm: syz.2.514 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 269.546605][ T8861] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 269.546623][ T8861] Call Trace: [ 269.546633][ T8861] [ 269.546645][ T8861] dump_stack_lvl+0x16c/0x1f0 [ 269.546695][ T8861] should_fail_ex+0x512/0x640 [ 269.546745][ T8861] _copy_from_iter+0x2a4/0x15b0 [ 269.546793][ T8861] ? __pfx__copy_from_iter+0x10/0x10 [ 269.546834][ T8861] ? rcu_is_watching+0x12/0xc0 [ 269.546870][ T8861] ? trace_kmalloc+0x2b/0xd0 [ 269.546900][ T8861] ? __kmalloc_noprof+0x242/0x510 [ 269.546954][ T8861] kernfs_fop_write_iter+0x19a/0x510 [ 269.546998][ T8861] vfs_write+0x5ba/0x1180 [ 269.547041][ T8861] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 269.547083][ T8861] ? __pfx___mutex_lock+0x10/0x10 [ 269.547127][ T8861] ? __pfx_vfs_write+0x10/0x10 [ 269.547213][ T8861] ksys_write+0x12a/0x240 [ 269.547256][ T8861] ? __pfx_ksys_write+0x10/0x10 [ 269.547298][ T8861] ? rcu_is_watching+0x12/0xc0 [ 269.547347][ T8861] do_syscall_64+0xcd/0x260 [ 269.547399][ T8861] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 269.547431][ T8861] RIP: 0033:0x7f5ec718e169 [ 269.547454][ T8861] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 269.547484][ T8861] RSP: 002b:00007f5ec7f53038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 269.547512][ T8861] RAX: ffffffffffffffda RBX: 00007f5ec73b6080 RCX: 00007f5ec718e169 [ 269.547533][ T8861] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000003 [ 269.547551][ T8861] RBP: 00007f5ec7f53090 R08: 0000000000000000 R09: 0000000000000000 [ 269.547570][ T8861] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 269.547588][ T8861] R13: 0000000000000000 R14: 00007f5ec73b6080 R15: 00007ffd72fe2c88 [ 269.547629][ T8861] [ 269.960570][ T8879] openvswitch: HfR: Dropping previously announced user features [ 271.692266][ T8968] Unable to find swap-space signature [ 271.725849][ T8968] workqueue: Failed to create a rescuer kthread for wq "nfc3_nci_cmd_wq": -EINTR [ 275.087509][ T9134] netlink: 28 bytes leftover after parsing attributes in process `syz.1.531'. [ 275.618539][ T9166] FAULT_INJECTION: forcing a failure. [ 275.618539][ T9166] name failslab, interval 1, probability 0, space 0, times 0 [ 275.660573][ T9166] CPU: 0 UID: 0 PID: 9166 Comm: syz.2.533 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 275.660619][ T9166] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 275.660638][ T9166] Call Trace: [ 275.660648][ T9166] [ 275.660660][ T9166] dump_stack_lvl+0x16c/0x1f0 [ 275.660713][ T9166] should_fail_ex+0x512/0x640 [ 275.660749][ T9166] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 275.660799][ T9166] should_failslab+0xc2/0x120 [ 275.660829][ T9166] __kmalloc_cache_noprof+0x6a/0x3e0 [ 275.660874][ T9166] ? resv_map_alloc+0x7e/0x400 [ 275.660910][ T9166] resv_map_alloc+0x7e/0x400 [ 275.660944][ T9166] hugetlbfs_get_inode+0x33f/0x730 [ 275.660988][ T9166] hugetlb_file_setup+0x15b/0x620 [ 275.661033][ T9166] ksys_mmap_pgoff+0x189/0x5c0 [ 275.661071][ T9166] ? rcu_is_watching+0x12/0xc0 [ 275.661115][ T9166] __x64_sys_mmap+0x125/0x190 [ 275.661158][ T9166] do_syscall_64+0xcd/0x260 [ 275.661218][ T9166] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.661251][ T9166] RIP: 0033:0x7f5ec718e169 [ 275.661292][ T9166] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 275.661323][ T9166] RSP: 002b:00007f5ec7f53038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 275.661353][ T9166] RAX: ffffffffffffffda RBX: 00007f5ec73b6080 RCX: 00007f5ec718e169 [ 275.661374][ T9166] RDX: 00004000000000e3 RSI: 0000000000200004 RDI: 0000000000000000 [ 275.661393][ T9166] RBP: 00007f5ec7210a68 R08: 000000000000000d R09: 0000300000000000 [ 275.661414][ T9166] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000 [ 275.661433][ T9166] R13: 0000000000000000 R14: 00007f5ec73b6080 R15: 00007ffd72fe2c88 [ 275.661473][ T9166] [ 277.308313][ T9200] netlink: 28 bytes leftover after parsing attributes in process `syz.1.536'. [ 277.881379][ T30] audit: type=1800 audit(6039815444.581:3): pid=9238 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.542" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 281.158938][ T9338] netlink: 28 bytes leftover after parsing attributes in process `syz.3.550'. [ 281.224518][ T9350] openvswitch: HfR: Dropping previously announced user features [ 283.955956][ T9437] netlink: 'syz.3.561': attribute type 8 has an invalid length. [ 285.507791][ T9475] FAULT_INJECTION: forcing a failure. [ 285.507791][ T9475] name failslab, interval 1, probability 0, space 0, times 0 [ 285.521857][ T9475] CPU: 1 UID: 0 PID: 9475 Comm: syz.3.564 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 285.521898][ T9475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 285.521916][ T9475] Call Trace: [ 285.521925][ T9475] [ 285.521936][ T9475] dump_stack_lvl+0x16c/0x1f0 [ 285.521987][ T9475] should_fail_ex+0x512/0x640 [ 285.522021][ T9475] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 285.522066][ T9475] should_failslab+0xc2/0x120 [ 285.522095][ T9475] __kmalloc_cache_noprof+0x6a/0x3e0 [ 285.522134][ T9475] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 285.522175][ T9475] ? device_add+0xccc/0x1a70 [ 285.522211][ T9475] device_add+0xccc/0x1a70 [ 285.522242][ T9475] ? __pfx___debug_object_init+0x10/0x10 [ 285.522284][ T9475] ? alloc_workqueue+0x198/0x200 [ 285.522345][ T9475] ? __pfx_device_add+0x10/0x10 [ 285.522388][ T9475] nfc_register_device+0x41/0x3c0 [ 285.522434][ T9475] nci_register_device+0x7f1/0xb80 [ 285.522472][ T9475] ? __pfx_nci_register_device+0x10/0x10 [ 285.522515][ T9475] ? lockdep_init_map_type+0x5c/0x280 [ 285.522549][ T9475] virtual_ncidev_open+0x141/0x220 [ 285.522585][ T9475] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 285.522617][ T9475] misc_open+0x35a/0x420 [ 285.522654][ T9475] ? __pfx_misc_open+0x10/0x10 [ 285.522687][ T9475] chrdev_open+0x231/0x6a0 [ 285.522729][ T9475] ? __pfx_apparmor_file_open+0x10/0x10 [ 285.522764][ T9475] ? __pfx_chrdev_open+0x10/0x10 [ 285.522809][ T9475] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 285.522856][ T9475] do_dentry_open+0x741/0x1c10 [ 285.522896][ T9475] ? __pfx_chrdev_open+0x10/0x10 [ 285.522947][ T9475] vfs_open+0x82/0x3f0 [ 285.522982][ T9475] path_openat+0x1e5e/0x2d40 [ 285.523042][ T9475] ? __pfx_path_openat+0x10/0x10 [ 285.523099][ T9475] do_filp_open+0x20b/0x470 [ 285.523148][ T9475] ? __pfx_do_filp_open+0x10/0x10 [ 285.523226][ T9475] ? alloc_fd+0x471/0x7d0 [ 285.523283][ T9475] do_sys_openat2+0x11b/0x1d0 [ 285.523329][ T9475] ? __pfx_do_sys_openat2+0x10/0x10 [ 285.523379][ T9475] __x64_sys_openat+0x174/0x210 [ 285.523413][ T9475] ? __pfx___x64_sys_openat+0x10/0x10 [ 285.523452][ T9475] ? rcu_is_watching+0x12/0xc0 [ 285.523502][ T9475] do_syscall_64+0xcd/0x260 [ 285.523550][ T9475] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 285.523578][ T9475] RIP: 0033:0x7f6def98e169 [ 285.523599][ T9475] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 285.523627][ T9475] RSP: 002b:00007f6df078d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 285.523652][ T9475] RAX: ffffffffffffffda RBX: 00007f6defbb5fa0 RCX: 00007f6def98e169 [ 285.523670][ T9475] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 285.523688][ T9475] RBP: 00007f6defa10a68 R08: 0000000000000000 R09: 0000000000000000 [ 285.523705][ T9475] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 285.523722][ T9475] R13: 0000000000000000 R14: 00007f6defbb5fa0 R15: 00007ffc5cbf9598 [ 285.523758][ T9475] [ 286.966237][ T30] audit: type=1800 audit(6039815453.661:4): pid=9531 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.570" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 290.215998][ T9725] netlink: 28 bytes leftover after parsing attributes in process `syz.3.582'. [ 290.443033][ T9727] openvswitch: netlink: nsh attribute has 251 unknown bytes. [ 290.927452][ T9790] openvswitch: netlink: Message has 20 unknown bytes. [ 291.586022][ T9790] bridge0: port 2(syz_tun) entered blocking state [ 291.605880][ T9790] bridge0: port 2(syz_tun) entered disabled state [ 291.623471][ T9790] syz_tun: entered allmulticast mode [ 291.636715][ T9790] syz_tun: entered promiscuous mode [ 291.643110][ T9790] bridge0: port 2(syz_tun) entered blocking state [ 291.649802][ T9790] bridge0: port 2(syz_tun) entered forwarding state [ 291.879916][ T9886] Invalid ELF header magic: != ELF [ 292.595028][ T9939] FAULT_INJECTION: forcing a failure. [ 292.595028][ T9939] name failslab, interval 1, probability 0, space 0, times 0 [ 292.608073][ T9939] CPU: 0 UID: 0 PID: 9939 Comm: syz.1.591 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 292.608108][ T9939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 292.608124][ T9939] Call Trace: [ 292.608133][ T9939] [ 292.608143][ T9939] dump_stack_lvl+0x16c/0x1f0 [ 292.608186][ T9939] should_fail_ex+0x512/0x640 [ 292.608224][ T9939] should_failslab+0xc2/0x120 [ 292.608251][ T9939] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 292.608294][ T9939] ? __inet_hash_connect+0x7cb/0x1e30 [ 292.608335][ T9939] __inet_hash_connect+0x7cb/0x1e30 [ 292.608380][ T9939] ? __pfx___inet_check_established+0x10/0x10 [ 292.608413][ T9939] ? __pfx___inet_hash_connect+0x10/0x10 [ 292.608447][ T9939] ? inet_hash_connect+0x125/0x260 [ 292.608478][ T9939] tcp_v4_connect+0xdf7/0x1ba0 [ 292.608525][ T9939] ? __pfx_tcp_v4_connect+0x10/0x10 [ 292.608564][ T9939] ? __local_bh_enable_ip+0xa4/0x120 [ 292.608599][ T9939] mptcp_connect+0x579/0xfe0 [ 292.608630][ T9939] __inet_stream_connect+0x3c5/0x1020 [ 292.608659][ T9939] ? __pfx___inet_stream_connect+0x10/0x10 [ 292.608681][ T9939] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 292.608733][ T9939] ? __pfx_inet_stream_connect+0x10/0x10 [ 292.608756][ T9939] ? __local_bh_enable_ip+0xa4/0x120 [ 292.608789][ T9939] ? __pfx_inet_stream_connect+0x10/0x10 [ 292.608809][ T9939] inet_stream_connect+0x57/0xa0 [ 292.608833][ T9939] __sys_connect_file+0x13e/0x1a0 [ 292.608862][ T9939] __sys_connect+0x14d/0x170 [ 292.608886][ T9939] ? __pfx___sys_connect+0x10/0x10 [ 292.608922][ T9939] ? __pfx_ksys_write+0x10/0x10 [ 292.608953][ T9939] ? rcu_is_watching+0x12/0xc0 [ 292.608986][ T9939] __x64_sys_connect+0x72/0xb0 [ 292.609010][ T9939] ? lockdep_hardirqs_on+0x7c/0x110 [ 292.609042][ T9939] do_syscall_64+0xcd/0x260 [ 292.609078][ T9939] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 292.609101][ T9939] RIP: 0033:0x7fb15178e169 [ 292.609119][ T9939] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 292.609141][ T9939] RSP: 002b:00007fb15251b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 292.609161][ T9939] RAX: ffffffffffffffda RBX: 00007fb1519b5fa0 RCX: 00007fb15178e169 [ 292.609176][ T9939] RDX: 0000000000000055 RSI: 00002000000000c0 RDI: 0000000000000003 [ 292.609189][ T9939] RBP: 00007fb15251b090 R08: 0000000000000000 R09: 0000000000000000 [ 292.609202][ T9939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 292.609215][ T9939] R13: 0000000000000000 R14: 00007fb1519b5fa0 R15: 00007ffdc0158c58 [ 292.609244][ T9939] [ 293.986591][ T9986] FAULT_INJECTION: forcing a failure. [ 293.986591][ T9986] name failslab, interval 1, probability 0, space 0, times 0 [ 294.009196][ T9986] CPU: 1 UID: 0 PID: 9986 Comm: syz.0.597 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 294.009241][ T9986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 294.009259][ T9986] Call Trace: [ 294.009270][ T9986] [ 294.009282][ T9986] dump_stack_lvl+0x16c/0x1f0 [ 294.009337][ T9986] should_fail_ex+0x512/0x640 [ 294.009402][ T9986] ? __kmalloc_noprof+0xbf/0x510 [ 294.009454][ T9986] ? ops_init+0x77/0x5f0 [ 294.009495][ T9986] should_failslab+0xc2/0x120 [ 294.009536][ T9986] __kmalloc_noprof+0xd2/0x510 [ 294.009595][ T9986] ops_init+0x77/0x5f0 [ 294.009646][ T9986] setup_net+0x21e/0x850 [ 294.009695][ T9986] ? __pfx_setup_net+0x10/0x10 [ 294.009737][ T9986] ? lockdep_init_map_type+0x5c/0x280 [ 294.009769][ T9986] ? __pfx_down_read_killable+0x10/0x10 [ 294.009805][ T9986] ? debug_mutex_init+0x37/0x70 [ 294.009852][ T9986] copy_net_ns+0x2a6/0x5f0 [ 294.009906][ T9986] create_new_namespaces+0x3ea/0xad0 [ 294.009968][ T9986] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 294.010017][ T9986] ksys_unshare+0x45b/0xa40 [ 294.010065][ T9986] ? __pfx_ksys_unshare+0x10/0x10 [ 294.010113][ T9986] ? xfd_validate_state+0x5d/0x180 [ 294.010150][ T9986] ? rcu_is_watching+0x12/0xc0 [ 294.010199][ T9986] __x64_sys_unshare+0x31/0x40 [ 294.010248][ T9986] do_syscall_64+0xcd/0x260 [ 294.010300][ T9986] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 294.010332][ T9986] RIP: 0033:0x7f6ca398e169 [ 294.010355][ T9986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 294.010384][ T9986] RSP: 002b:00007f6ca47bd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 294.010412][ T9986] RAX: ffffffffffffffda RBX: 00007f6ca3bb5fa0 RCX: 00007f6ca398e169 [ 294.010432][ T9986] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 294.010450][ T9986] RBP: 00007f6ca3a10a68 R08: 0000000000000000 R09: 0000000000000000 [ 294.010483][ T9986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 294.010501][ T9986] R13: 0000000000000000 R14: 00007f6ca3bb5fa0 R15: 00007fffc4817148 [ 294.010552][ T9986] [ 294.740616][T10013] netlink: 28 bytes leftover after parsing attributes in process `syz.2.600'. [ 294.822587][T10013] geneve1: entered allmulticast mode [ 296.203073][T10111] netlink: 28 bytes leftover after parsing attributes in process `syz.3.605'. [ 296.275677][T10111] netlink: 330 bytes leftover after parsing attributes in process `syz.3.605'. [ 296.389175][T10112] netlink: 20 bytes leftover after parsing attributes in process `syz.3.605'. [ 298.733123][T10221] netlink: 28 bytes leftover after parsing attributes in process `syz.1.615'. [ 300.359749][T10324] FAULT_INJECTION: forcing a failure. [ 300.359749][T10324] name failslab, interval 1, probability 0, space 0, times 0 [ 300.388182][T10324] CPU: 0 UID: 0 PID: 10324 Comm: syz.3.623 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 300.388231][T10324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 300.388250][T10324] Call Trace: [ 300.388261][T10324] [ 300.388283][T10324] dump_stack_lvl+0x16c/0x1f0 [ 300.388338][T10324] should_fail_ex+0x512/0x640 [ 300.388373][T10324] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 300.388422][T10324] should_failslab+0xc2/0x120 [ 300.388453][T10324] __kmalloc_cache_noprof+0x6a/0x3e0 [ 300.388497][T10324] ? resv_map_alloc+0x7e/0x400 [ 300.388534][T10324] resv_map_alloc+0x7e/0x400 [ 300.388568][T10324] hugetlbfs_get_inode+0x33f/0x730 [ 300.388613][T10324] hugetlb_file_setup+0x15b/0x620 [ 300.388657][T10324] ksys_mmap_pgoff+0x189/0x5c0 [ 300.388695][T10324] ? rcu_is_watching+0x12/0xc0 [ 300.388739][T10324] __x64_sys_mmap+0x125/0x190 [ 300.388781][T10324] do_syscall_64+0xcd/0x260 [ 300.388857][T10324] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 300.388890][T10324] RIP: 0033:0x7f6def98e169 [ 300.388917][T10324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 300.388948][T10324] RSP: 002b:00007f6df076c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 300.388979][T10324] RAX: ffffffffffffffda RBX: 00007f6defbb6080 RCX: 00007f6def98e169 [ 300.389000][T10324] RDX: 00004000000000e3 RSI: 0000000000200004 RDI: 0000000000000000 [ 300.389018][T10324] RBP: 00007f6defa10a68 R08: 000000000000000d R09: 0000300000000000 [ 300.389036][T10324] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000 [ 300.389054][T10324] R13: 0000000000000000 R14: 00007f6defbb6080 R15: 00007ffc5cbf9598 [ 300.389092][T10324] [ 301.583395][T10359] netlink: 28 bytes leftover after parsing attributes in process `syz.3.626'. [ 302.159089][T10369] FAULT_INJECTION: forcing a failure. [ 302.159089][T10369] name failslab, interval 1, probability 0, space 0, times 0 [ 302.202230][T10369] CPU: 1 UID: 0 PID: 10369 Comm: syz.3.628 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 302.202276][T10369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 302.202295][T10369] Call Trace: [ 302.202305][T10369] [ 302.202317][T10369] dump_stack_lvl+0x16c/0x1f0 [ 302.202371][T10369] should_fail_ex+0x512/0x640 [ 302.202408][T10369] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 302.202463][T10369] should_failslab+0xc2/0x120 [ 302.202493][T10369] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 302.202543][T10369] ? hugetlbfs_alloc_inode+0x8c/0x1d0 [ 302.202584][T10369] hugetlbfs_alloc_inode+0x8c/0x1d0 [ 302.202619][T10369] ? __pfx_hugetlbfs_alloc_inode+0x10/0x10 [ 302.202656][T10369] alloc_inode+0x61/0x240 [ 302.202693][T10369] new_inode+0x22/0x1c0 [ 302.202733][T10369] hugetlbfs_get_inode+0x354/0x730 [ 302.202778][T10369] hugetlb_file_setup+0x15b/0x620 [ 302.202822][T10369] ksys_mmap_pgoff+0x189/0x5c0 [ 302.202860][T10369] ? rcu_is_watching+0x12/0xc0 [ 302.202904][T10369] __x64_sys_mmap+0x125/0x190 [ 302.202947][T10369] do_syscall_64+0xcd/0x260 [ 302.202995][T10369] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 302.203026][T10369] RIP: 0033:0x7f6def98e169 [ 302.203050][T10369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 302.203089][T10369] RSP: 002b:00007f6df076c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 302.203125][T10369] RAX: ffffffffffffffda RBX: 00007f6defbb6080 RCX: 00007f6def98e169 [ 302.203145][T10369] RDX: 00004000000000e3 RSI: 0000000000200004 RDI: 0000000000000000 [ 302.203164][T10369] RBP: 00007f6defa10a68 R08: 000000000000000d R09: 0000300000000000 [ 302.203182][T10369] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000 [ 302.203201][T10369] R13: 0000000000000000 R14: 00007f6defbb6080 R15: 00007ffc5cbf9598 [ 302.203239][T10369] [ 303.656935][T10413] Invalid ELF header magic: != ELF [ 312.024876][T10655] openvswitch: HfR: Dropping previously announced user features [ 315.769362][ T5854] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 315.783323][ T5854] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 315.787508][ T5842] bridge0: port 2(syz_tun) entered disabled state [ 315.795424][ T5854] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 315.805606][ T5854] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 315.817138][ T5854] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 315.981207][ T5842] syz_tun (unregistering): left allmulticast mode [ 315.987714][ T5842] syz_tun (unregistering): left promiscuous mode [ 316.010185][ T5842] bridge0: port 2(syz_tun) entered disabled state [ 316.102781][ T5854] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 316.833185][T10847] FAULT_INJECTION: forcing a failure. [ 316.833185][T10847] name failslab, interval 1, probability 0, space 0, times 0 [ 316.833234][T10847] CPU: 0 UID: 0 PID: 10847 Comm: syz.2.656 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 316.833274][T10847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 316.833293][T10847] Call Trace: [ 316.833303][T10847] [ 316.833315][T10847] dump_stack_lvl+0x16c/0x1f0 [ 316.833368][T10847] should_fail_ex+0x512/0x640 [ 316.833405][T10847] ? fs_reclaim_acquire+0xae/0x150 [ 316.833448][T10847] should_failslab+0xc2/0x120 [ 316.833479][T10847] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 316.833530][T10847] ? security_inode_alloc+0x3b/0x2b0 [ 316.833572][T10847] security_inode_alloc+0x3b/0x2b0 [ 316.833609][T10847] inode_init_always_gfp+0xce4/0x1030 [ 316.833664][T10847] alloc_inode+0x86/0x240 [ 316.833701][T10847] new_inode+0x22/0x1c0 [ 316.833747][T10847] hugetlbfs_get_inode+0x354/0x730 [ 316.833791][T10847] hugetlb_file_setup+0x15b/0x620 [ 316.833836][T10847] ksys_mmap_pgoff+0x189/0x5c0 [ 316.833873][T10847] ? rcu_is_watching+0x12/0xc0 [ 316.833918][T10847] __x64_sys_mmap+0x125/0x190 [ 316.833961][T10847] do_syscall_64+0xcd/0x260 [ 316.834012][T10847] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 316.834045][T10847] RIP: 0033:0x7f5ec718e169 [ 316.834071][T10847] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 316.834102][T10847] RSP: 002b:00007f5ec7f53038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 316.834131][T10847] RAX: ffffffffffffffda RBX: 00007f5ec73b6080 RCX: 00007f5ec718e169 [ 316.834152][T10847] RDX: 00004000000000e3 RSI: 0000000000200004 RDI: 0000000000000000 [ 316.834172][T10847] RBP: 00007f5ec7210a68 R08: 000000000000000d R09: 0000300000000000 [ 316.834189][T10847] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000 [ 316.834207][T10847] R13: 0000000000000000 R14: 00007f5ec73b6080 R15: 00007ffd72fe2c88 [ 316.834245][T10847] [ 317.873548][ T5846] Bluetooth: hci2: command tx timeout [ 317.975859][T10784] chnl_net:caif_netlink_parms(): no params data found [ 318.199447][T10784] bridge0: port 1(bridge_slave_0) entered blocking state [ 318.221299][T10784] bridge0: port 1(bridge_slave_0) entered disabled state [ 318.228706][T10784] bridge_slave_0: entered allmulticast mode [ 318.252519][T10784] bridge_slave_0: entered promiscuous mode [ 318.280093][T10784] bridge0: port 2(bridge_slave_1) entered blocking state [ 318.287441][T10784] bridge0: port 2(bridge_slave_1) entered disabled state [ 318.300266][T10784] bridge_slave_1: entered allmulticast mode [ 318.316373][T10784] bridge_slave_1: entered promiscuous mode [ 318.423818][T10784] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 318.478177][T10784] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 318.608393][T10784] team0: Port device team_slave_0 added [ 318.764363][T10784] team0: Port device team_slave_1 added [ 319.090805][T11171] FAULT_INJECTION: forcing a failure. [ 319.090805][T11171] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 319.090870][T11171] CPU: 0 UID: 0 PID: 11171 Comm: syz.3.666 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 319.090910][T11171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 319.090929][T11171] Call Trace: [ 319.090938][T11171] [ 319.090950][T11171] dump_stack_lvl+0x16c/0x1f0 [ 319.091001][T11171] should_fail_ex+0x512/0x640 [ 319.091047][T11171] should_fail_alloc_page+0xe7/0x130 [ 319.091082][T11171] prepare_alloc_pages+0x3c2/0x610 [ 319.091130][T11171] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 319.091186][T11171] ? stack_trace_save+0x8e/0xc0 [ 319.091242][T11171] ? __lock_acquire+0xaa4/0x1ba0 [ 319.091293][T11171] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 319.091348][T11171] ? fb_var_to_videomode+0x4c9/0x690 [ 319.091394][T11171] ? __pfx_fb_match_mode+0x10/0x10 [ 319.091436][T11171] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 319.091478][T11171] ? lockdep_hardirqs_on+0x7c/0x110 [ 319.091529][T11171] ? vc_allocate+0x489/0x880 [ 319.091575][T11171] __alloc_pages_noprof+0xb/0x1b0 [ 319.091629][T11171] ___kmalloc_large_node+0x82/0x1e0 [ 319.091667][T11171] ? con_is_visible+0x65/0x150 [ 319.091710][T11171] __kmalloc_large_node_noprof+0x1c/0x70 [ 319.091751][T11171] __kmalloc_noprof.cold+0xc/0x61 [ 319.091807][T11171] vc_allocate+0x489/0x880 [ 319.091857][T11171] ? __pfx_vc_allocate+0x10/0x10 [ 319.091920][T11171] con_install+0xa1/0x600 [ 319.091974][T11171] ? __pfx_con_install+0x10/0x10 [ 319.092031][T11171] ? __pfx_con_install+0x10/0x10 [ 319.092083][T11171] tty_init_dev.part.0+0x99/0x500 [ 319.092120][T11171] tty_open+0xa50/0xf90 [ 319.092160][T11171] ? __pfx_tty_open+0x10/0x10 [ 319.092191][T11171] ? chrdev_open+0x58c/0x6a0 [ 319.092247][T11171] ? __pfx_tty_open+0x10/0x10 [ 319.092277][T11171] chrdev_open+0x231/0x6a0 [ 319.092329][T11171] ? __pfx_chrdev_open+0x10/0x10 [ 319.092384][T11171] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 319.092437][T11171] do_dentry_open+0x741/0x1c10 [ 319.092484][T11171] ? __pfx_chrdev_open+0x10/0x10 [ 319.092542][T11171] vfs_open+0x82/0x3f0 [ 319.092581][T11171] path_openat+0x1e5e/0x2d40 [ 319.092650][T11171] ? __pfx_path_openat+0x10/0x10 [ 319.092712][T11171] do_filp_open+0x20b/0x470 [ 319.092762][T11171] ? __pfx_do_filp_open+0x10/0x10 [ 319.092842][T11171] ? alloc_fd+0x471/0x7d0 [ 319.092900][T11171] do_sys_openat2+0x11b/0x1d0 [ 319.092934][T11171] ? __pfx_do_sys_openat2+0x10/0x10 [ 319.092985][T11171] __x64_sys_openat+0x174/0x210 [ 319.093021][T11171] ? __pfx___x64_sys_openat+0x10/0x10 [ 319.093059][T11171] ? rcu_is_watching+0x12/0xc0 [ 319.093112][T11171] do_syscall_64+0xcd/0x260 [ 319.093163][T11171] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 319.093196][T11171] RIP: 0033:0x7f6def98e169 [ 319.093223][T11171] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 319.093254][T11171] RSP: 002b:00007f6df078d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 319.093284][T11171] RAX: ffffffffffffffda RBX: 00007f6defbb5fa0 RCX: 00007f6def98e169 [ 319.093305][T11171] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 319.093324][T11171] RBP: 00007f6defa10a68 R08: 0000000000000000 R09: 0000000000000000 [ 319.093342][T11171] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 319.093360][T11171] R13: 0000000000000000 R14: 00007f6defbb5fa0 R15: 00007ffc5cbf9598 [ 319.093402][T11171] [ 319.122192][ T30] audit: type=1800 audit(6039815493.826:5): pid=11172 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.665" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 319.131620][T10784] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 319.131646][T10784] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 319.131685][T10784] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 319.134085][T10784] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 319.134107][T10784] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 319.134147][T10784] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 319.715065][T10784] hsr_slave_0: entered promiscuous mode [ 319.987853][ T5846] Bluetooth: hci2: command tx timeout [ 320.044649][T10784] hsr_slave_1: entered promiscuous mode [ 320.078708][T10784] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 320.095110][T10784] Cannot create hsr debugfs directory [ 321.046844][T10784] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 321.106019][T10784] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 321.203986][T10784] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 321.285372][T10784] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 321.737373][T10784] 8021q: adding VLAN 0 to HW filter on device bond0 [ 321.792875][T10784] 8021q: adding VLAN 0 to HW filter on device team0 [ 321.822653][ T3540] bridge0: port 1(bridge_slave_0) entered blocking state [ 321.829912][ T3540] bridge0: port 1(bridge_slave_0) entered forwarding state [ 321.873717][T11304] FAULT_INJECTION: forcing a failure. [ 321.873717][T11304] name failslab, interval 1, probability 0, space 0, times 0 [ 321.886986][ T3540] bridge0: port 2(bridge_slave_1) entered blocking state [ 321.894230][ T3540] bridge0: port 2(bridge_slave_1) entered forwarding state [ 321.963211][T11304] CPU: 0 UID: 0 PID: 11304 Comm: syz.0.671 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 321.963254][T11304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 321.963272][T11304] Call Trace: [ 321.963282][T11304] [ 321.963293][T11304] dump_stack_lvl+0x16c/0x1f0 [ 321.963343][T11304] should_fail_ex+0x512/0x640 [ 321.963378][T11304] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 321.963421][T11304] ? __pfx_cec_config_thread_func+0x10/0x10 [ 321.963465][T11304] should_failslab+0xc2/0x120 [ 321.963492][T11304] __kmalloc_cache_noprof+0x6a/0x3e0 [ 321.963530][T11304] ? lockdep_init_map_type+0x5c/0x280 [ 321.963557][T11304] ? __kthread_create_on_node+0xce/0x3f0 [ 321.963602][T11304] ? __init_swait_queue_head+0xca/0x150 [ 321.963639][T11304] ? __pfx_cec_config_thread_func+0x10/0x10 [ 321.963682][T11304] __kthread_create_on_node+0xce/0x3f0 [ 321.963729][T11304] ? __pfx___kthread_create_on_node+0x10/0x10 [ 321.963785][T11304] ? cec_adap_enable+0x77c/0xc30 [ 321.963833][T11304] ? __pfx_cec_config_thread_func+0x10/0x10 [ 321.963877][T11304] kthread_create_on_node+0xc7/0x100 [ 321.963922][T11304] ? __pfx_kthread_create_on_node+0x10/0x10 [ 321.963965][T11304] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 321.964016][T11304] ? lockdep_init_map_type+0x5c/0x280 [ 321.964045][T11304] ? lockdep_init_map_type+0x5c/0x280 [ 321.964079][T11304] cec_claim_log_addrs+0x13e/0x2e0 [ 321.964136][T11304] __cec_s_log_addrs+0xdc9/0x1670 [ 321.964193][T11304] cec_ioctl+0x4b8/0x2970 [ 321.964245][T11304] ? __pfx_cec_ioctl+0x10/0x10 [ 321.964294][T11304] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 321.964328][T11304] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 321.964361][T11304] ? do_vfs_ioctl+0x512/0x1990 [ 321.964396][T11304] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 321.964455][T11304] ? find_held_lock+0x2b/0x80 [ 321.964490][T11304] ? hook_file_ioctl_common+0x145/0x410 [ 321.964538][T11304] ? __pfx_cec_ioctl+0x10/0x10 [ 321.964584][T11304] __x64_sys_ioctl+0x190/0x200 [ 321.964621][T11304] do_syscall_64+0xcd/0x260 [ 321.964666][T11304] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 321.964695][T11304] RIP: 0033:0x7f6ca398e169 [ 321.964718][T11304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 321.964746][T11304] RSP: 002b:00007f6ca475a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 321.964773][T11304] RAX: ffffffffffffffda RBX: 00007f6ca3bb6240 RCX: 00007f6ca398e169 [ 321.964793][T11304] RDX: 00002000000000c0 RSI: 00000000c05c6104 RDI: 0000000000000005 [ 321.964811][T11304] RBP: 00007f6ca3a10a68 R08: 0000000000000000 R09: 0000000000000000 [ 321.964828][T11304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 321.964845][T11304] R13: 0000000000000000 R14: 00007f6ca3bb6240 R15: 00007fffc4817148 [ 321.964882][T11304] [ 322.414000][ T5846] Bluetooth: hci2: command tx timeout [ 322.474344][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 322.485917][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 322.872856][T11320] netlink: 'syz.0.674': attribute type 1 has an invalid length. [ 323.198941][T10784] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 323.251460][T11356] FAULT_INJECTION: forcing a failure. [ 323.251460][T11356] name failslab, interval 1, probability 0, space 0, times 0 [ 323.287724][T11356] CPU: 0 UID: 0 PID: 11356 Comm: syz.0.677 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 323.287766][T11356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 323.287784][T11356] Call Trace: [ 323.287794][T11356] [ 323.287805][T11356] dump_stack_lvl+0x16c/0x1f0 [ 323.287855][T11356] should_fail_ex+0x512/0x640 [ 323.287890][T11356] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 323.287950][T11356] should_failslab+0xc2/0x120 [ 323.287977][T11356] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 323.288025][T11356] ? alloc_empty_file+0x55/0x1e0 [ 323.288064][T11356] alloc_empty_file+0x55/0x1e0 [ 323.288099][T11356] path_openat+0xe0/0x2d40 [ 323.288141][T11356] ? __x64_sys_openat+0x174/0x210 [ 323.288173][T11356] ? do_syscall_64+0xcd/0x260 [ 323.288219][T11356] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 323.288266][T11356] ? __pfx_path_openat+0x10/0x10 [ 323.288324][T11356] do_filp_open+0x20b/0x470 [ 323.288371][T11356] ? __pfx_do_filp_open+0x10/0x10 [ 323.288446][T11356] ? alloc_fd+0x471/0x7d0 [ 323.288504][T11356] do_sys_openat2+0x11b/0x1d0 [ 323.288537][T11356] ? __pfx_do_sys_openat2+0x10/0x10 [ 323.288575][T11356] ? __fget_files+0x20e/0x3c0 [ 323.288626][T11356] __x64_sys_openat+0x174/0x210 [ 323.288661][T11356] ? __pfx___x64_sys_openat+0x10/0x10 [ 323.288693][T11356] ? ksys_write+0x1b9/0x240 [ 323.288735][T11356] ? rcu_is_watching+0x12/0xc0 [ 323.288783][T11356] do_syscall_64+0xcd/0x260 [ 323.288828][T11356] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 323.288854][T11356] RIP: 0033:0x7f6ca398e169 [ 323.288874][T11356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 323.288898][T11356] RSP: 002b:00007f6ca479c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 323.288921][T11356] RAX: ffffffffffffffda RBX: 00007f6ca3bb6080 RCX: 00007f6ca398e169 [ 323.288947][T11356] RDX: 0000000000080301 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 323.288963][T11356] RBP: 00007f6ca479c090 R08: 0000000000000000 R09: 0000000000000000 [ 323.288978][T11356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 323.288993][T11356] R13: 0000000000000000 R14: 00007f6ca3bb6080 R15: 00007fffc4817148 [ 323.289024][T11356] [ 323.681701][T11359] netlink: 2 bytes leftover after parsing attributes in process `syz.2.676'. [ 323.942151][T11366] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 324.419559][T10784] veth0_vlan: entered promiscuous mode [ 324.430122][ T5846] Bluetooth: hci2: command tx timeout [ 324.434879][T10784] veth1_vlan: entered promiscuous mode [ 324.539877][T10784] veth0_macvtap: entered promiscuous mode [ 324.835136][ T36] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 324.927001][T10784] veth1_macvtap: entered promiscuous mode [ 325.045751][ T36] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 325.091336][T11407] netlink: 28 bytes leftover after parsing attributes in process `syz.3.682'. [ 325.153354][T10784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 325.184862][T10784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 325.220048][T10784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 325.240066][T10784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 325.258526][T10784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 325.299207][T10784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 325.321286][T10784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 325.349133][T10784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 325.380771][T10784] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 325.726048][ T36] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 325.862442][T10784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 325.895524][T10784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 325.926376][T10784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 325.944715][T10784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 325.957797][T10784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 325.973862][T10784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 325.983987][T10784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 325.995289][T10784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 326.007233][T10784] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 326.078441][ T36] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 326.160635][T10784] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 326.177334][T10784] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 326.186345][T10784] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 326.195886][T10784] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 326.571922][ T3540] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 326.617684][ T3540] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 326.826371][ T755] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 326.840396][ T36] bridge_slave_0: left allmulticast mode [ 326.848509][ T36] bridge_slave_0: left promiscuous mode [ 326.867406][ T755] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 326.876706][ T36] bridge0: port 1(bridge_slave_0) entered disabled state [ 327.003600][T11487] FAULT_INJECTION: forcing a failure. [ 327.003600][T11487] name failslab, interval 1, probability 0, space 0, times 0 [ 327.041638][T11487] CPU: 0 UID: 0 PID: 11487 Comm: syz.2.687 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 327.041686][T11487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 327.041706][T11487] Call Trace: [ 327.041717][T11487] [ 327.041728][T11487] dump_stack_lvl+0x16c/0x1f0 [ 327.041782][T11487] should_fail_ex+0x512/0x640 [ 327.041819][T11487] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 327.041867][T11487] should_failslab+0xc2/0x120 [ 327.041898][T11487] __kmalloc_cache_noprof+0x6a/0x3e0 [ 327.041941][T11487] ? resv_map_alloc+0x7e/0x400 [ 327.041979][T11487] resv_map_alloc+0x7e/0x400 [ 327.042012][T11487] hugetlbfs_get_inode+0x33f/0x730 [ 327.042055][T11487] hugetlb_file_setup+0x15b/0x620 [ 327.042100][T11487] ksys_mmap_pgoff+0x189/0x5c0 [ 327.042139][T11487] ? rcu_is_watching+0x12/0xc0 [ 327.042183][T11487] __x64_sys_mmap+0x125/0x190 [ 327.042227][T11487] do_syscall_64+0xcd/0x260 [ 327.042279][T11487] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 327.042312][T11487] RIP: 0033:0x7f5ec718e169 [ 327.042336][T11487] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 327.042367][T11487] RSP: 002b:00007f5ec7f53038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 327.042396][T11487] RAX: ffffffffffffffda RBX: 00007f5ec73b6080 RCX: 00007f5ec718e169 [ 327.042416][T11487] RDX: 00004000000000e3 RSI: 0000000000200004 RDI: 0000000000000000 [ 327.042435][T11487] RBP: 00007f5ec7210a68 R08: 000000000000000d R09: 0000300000000000 [ 327.042454][T11487] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000 [ 327.042472][T11487] R13: 0000000000000000 R14: 00007f5ec73b6080 R15: 00007ffd72fe2c88 [ 327.042511][T11487] [ 327.506172][T11497] usb usb15: usbfs: process 11497 (syz.0.690) did not claim interface 0 before use [ 327.952267][ T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 327.981162][ T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 327.993671][ T36] bond0 (unregistering): Released all slaves [ 328.168716][ T36] HfR: left promiscuous mode [ 328.652629][T11522] HfR: entered promiscuous mode [ 329.747132][ T36] hsr_slave_0: left promiscuous mode [ 329.786367][ T36] hsr_slave_1: left promiscuous mode [ 329.804405][ T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 329.848378][ T36] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 329.901753][ T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 329.963845][ T36] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 330.086377][ T36] veth1_macvtap: left promiscuous mode [ 330.110556][ T36] veth0_macvtap: left promiscuous mode [ 330.116580][ T36] veth1_vlan: left promiscuous mode [ 330.123976][ T36] veth0_vlan: left promiscuous mode [ 330.163838][T11579] FAULT_INJECTION: forcing a failure. [ 330.163838][T11579] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 330.293880][T11579] CPU: 1 UID: 0 PID: 11579 Comm: syz.4.698 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 330.293924][T11579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 330.293942][T11579] Call Trace: [ 330.293952][T11579] [ 330.293964][T11579] dump_stack_lvl+0x16c/0x1f0 [ 330.294017][T11579] should_fail_ex+0x512/0x640 [ 330.294060][T11579] _copy_from_user+0x2e/0xd0 [ 330.294102][T11579] core_sys_select+0x35a/0xbe0 [ 330.294156][T11579] ? __pfx_core_sys_select+0x10/0x10 [ 330.294210][T11579] ? proc_fail_nth_write+0x9f/0x250 [ 330.294289][T11579] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 330.294348][T11579] kern_select+0x15d/0x1e0 [ 330.294407][T11579] ? __pfx_kern_select+0x10/0x10 [ 330.294457][T11579] ? __pfx_ksys_write+0x10/0x10 [ 330.294500][T11579] ? rcu_is_watching+0x12/0xc0 [ 330.294546][T11579] __x64_sys_select+0xbd/0x160 [ 330.294589][T11579] ? do_syscall_64+0x91/0x260 [ 330.294636][T11579] ? lockdep_hardirqs_on+0x7c/0x110 [ 330.294680][T11579] do_syscall_64+0xcd/0x260 [ 330.294729][T11579] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 330.294762][T11579] RIP: 0033:0x7fd15058e169 [ 330.294786][T11579] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 330.294815][T11579] RSP: 002b:00007fd1513fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 330.294844][T11579] RAX: ffffffffffffffda RBX: 00007fd1507b6080 RCX: 00007fd15058e169 [ 330.294863][T11579] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 330.294881][T11579] RBP: 00007fd1513fe090 R08: 0000000000000000 R09: 0000000000000000 [ 330.294898][T11579] R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000001 [ 330.294916][T11579] R13: 0000000000000000 R14: 00007fd1507b6080 R15: 00007ffc89683a48 [ 330.294956][T11579] [ 330.886185][T11587] FAULT_INJECTION: forcing a failure. [ 330.886185][T11587] name failslab, interval 1, probability 0, space 0, times 0 [ 330.918032][T11587] CPU: 1 UID: 0 PID: 11587 Comm: syz.0.700 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 330.918076][T11587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 330.918093][T11587] Call Trace: [ 330.918103][T11587] [ 330.918114][T11587] dump_stack_lvl+0x16c/0x1f0 [ 330.918166][T11587] should_fail_ex+0x512/0x640 [ 330.918201][T11587] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 330.918255][T11587] should_failslab+0xc2/0x120 [ 330.918284][T11587] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 330.918333][T11587] ? __alloc_skb+0x2b2/0x380 [ 330.918377][T11587] __alloc_skb+0x2b2/0x380 [ 330.918415][T11587] ? __pfx___alloc_skb+0x10/0x10 [ 330.918456][T11587] ? find_held_lock+0x2b/0x80 [ 330.918503][T11587] ? is_bpf_text_address+0x8a/0x1a0 [ 330.918538][T11587] alloc_skb_with_frags+0xe0/0x860 [ 330.918584][T11587] ? is_bpf_text_address+0x94/0x1a0 [ 330.918616][T11587] ? __kernel_text_address+0xd/0x40 [ 330.918657][T11587] sock_alloc_send_pskb+0x7fb/0x990 [ 330.918709][T11587] ? __pfx_sock_alloc_send_pskb+0x10/0x10 [ 330.918758][T11587] ? find_held_lock+0x2b/0x80 [ 330.918804][T11587] tun_get_user+0x502/0x3b10 [ 330.918867][T11587] ? __pfx_tun_get_user+0x10/0x10 [ 330.918910][T11587] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 330.918962][T11587] ? find_held_lock+0x2b/0x80 [ 330.919002][T11587] ? tun_get+0x191/0x370 [ 330.919052][T11587] tun_chr_write_iter+0xdc/0x210 [ 330.919101][T11587] vfs_write+0x5ba/0x1180 [ 330.919146][T11587] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 330.919195][T11587] ? __pfx_vfs_write+0x10/0x10 [ 330.919234][T11587] ? find_held_lock+0x2b/0x80 [ 330.919300][T11587] __x64_sys_pwrite64+0x1f4/0x250 [ 330.919349][T11587] ? __pfx___x64_sys_pwrite64+0x10/0x10 [ 330.919408][T11587] do_syscall_64+0xcd/0x260 [ 330.919457][T11587] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 330.919498][T11587] RIP: 0033:0x7f6ca398e169 [ 330.919521][T11587] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 330.919551][T11587] RSP: 002b:00007f6ca47bd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 330.919579][T11587] RAX: ffffffffffffffda RBX: 00007f6ca3bb5fa0 RCX: 00007f6ca398e169 [ 330.919599][T11587] RDX: 000000000000fdf3 RSI: 0000200000000000 RDI: 00000000000000c8 [ 330.919618][T11587] RBP: 00007f6ca47bd090 R08: 0000000000000000 R09: 0000000000000000 [ 330.919636][T11587] R10: 0000000000000039 R11: 0000000000000246 R12: 0000000000000001 [ 330.919654][T11587] R13: 0000000000000001 R14: 00007f6ca3bb5fa0 R15: 00007fffc4817148 [ 330.919693][T11587] [ 332.239901][ T36] team0 (unregistering): Port device team_slave_1 removed [ 332.291719][ T36] team0 (unregistering): Port device team_slave_0 removed [ 334.261487][T11729] sd 0:0:1:0: PR command failed: 1026 [ 334.269155][T11729] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 334.292068][T11729] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 334.742888][T11811] FAULT_INJECTION: forcing a failure. [ 334.742888][T11811] name failslab, interval 1, probability 0, space 0, times 0 [ 334.831195][T11811] CPU: 1 UID: 0 PID: 11811 Comm: syz.3.710 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 334.831238][T11811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 334.831255][T11811] Call Trace: [ 334.831265][T11811] [ 334.831276][T11811] dump_stack_lvl+0x16c/0x1f0 [ 334.831327][T11811] should_fail_ex+0x512/0x640 [ 334.831362][T11811] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 334.831414][T11811] should_failslab+0xc2/0x120 [ 334.831444][T11811] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 334.831493][T11811] ? getname_flags.part.0+0x4c/0x550 [ 334.831536][T11811] getname_flags.part.0+0x4c/0x550 [ 334.831578][T11811] getname_flags+0x93/0xf0 [ 334.831624][T11811] do_sys_openat2+0xb8/0x1d0 [ 334.831657][T11811] ? __pfx_do_sys_openat2+0x10/0x10 [ 334.831693][T11811] ? __fget_files+0x20e/0x3c0 [ 334.831745][T11811] __x64_sys_openat+0x174/0x210 [ 334.831781][T11811] ? __pfx___x64_sys_openat+0x10/0x10 [ 334.831813][T11811] ? ksys_write+0x1b9/0x240 [ 334.831856][T11811] ? rcu_is_watching+0x12/0xc0 [ 334.831907][T11811] do_syscall_64+0xcd/0x260 [ 334.831956][T11811] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 334.831987][T11811] RIP: 0033:0x7f6def98e169 [ 334.832010][T11811] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 334.832039][T11811] RSP: 002b:00007f6df078d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 334.832066][T11811] RAX: ffffffffffffffda RBX: 00007f6defbb5fa0 RCX: 00007f6def98e169 [ 334.832084][T11811] RDX: 0000000000080102 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 334.832101][T11811] RBP: 00007f6df078d090 R08: 0000000000000000 R09: 0000000000000000 [ 334.832118][T11811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 334.832142][T11811] R13: 0000000000000000 R14: 00007f6defbb5fa0 R15: 00007ffc5cbf9598 [ 334.832181][T11811] [ 336.000214][ T30] audit: type=1800 audit(6039815510.686:6): pid=11866 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.713" name="dummy_udc" dev="gadgetfs" ino=6209 res=0 errno=0 [ 336.183157][ T5846] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 338.778501][T12058] openvswitch: HfR: Dropping previously announced user features [ 340.212966][T12085] FAULT_INJECTION: forcing a failure. [ 340.212966][T12085] name failslab, interval 1, probability 0, space 0, times 0 [ 340.290050][T12085] CPU: 0 UID: 0 PID: 12085 Comm: syz.0.722 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 340.290099][T12085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 340.290119][T12085] Call Trace: [ 340.290130][T12085] [ 340.290144][T12085] dump_stack_lvl+0x16c/0x1f0 [ 340.290202][T12085] should_fail_ex+0x512/0x640 [ 340.290241][T12085] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 340.290300][T12085] should_failslab+0xc2/0x120 [ 340.290334][T12085] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 340.290387][T12085] ? security_file_alloc+0x34/0x2b0 [ 340.290439][T12085] security_file_alloc+0x34/0x2b0 [ 340.290484][T12085] init_file+0x93/0x4c0 [ 340.290519][T12085] alloc_empty_file+0x73/0x1e0 [ 340.290557][T12085] alloc_file_pseudo+0x13a/0x230 [ 340.290596][T12085] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 340.290647][T12085] __shmem_file_setup+0x210/0x300 [ 340.290700][T12085] shmem_zero_setup+0x93/0x1a0 [ 340.290746][T12085] __mmap_region+0x2036/0x27c0 [ 340.290804][T12085] ? __pfx___mmap_region+0x10/0x10 [ 340.290855][T12085] ? trace_sched_exit_tp+0xde/0x130 [ 340.290936][T12085] ? __pfx___schedule+0x10/0x10 [ 340.291030][T12085] ? trace_cap_capable+0x18d/0x200 [ 340.291067][T12085] ? cap_capable+0xb3/0x250 [ 340.291107][T12085] mmap_region+0x1ab/0x3f0 [ 340.291166][T12085] do_mmap+0xd8e/0x11b0 [ 340.291214][T12085] ? __pfx_do_mmap+0x10/0x10 [ 340.291255][T12085] ? __pfx_down_write_killable+0x10/0x10 [ 340.291296][T12085] vm_mmap_pgoff+0x281/0x450 [ 340.291344][T12085] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 340.291385][T12085] ? fd_install+0x244/0x750 [ 340.291439][T12085] ? __x64_sys_futex+0x1e0/0x4c0 [ 340.291486][T12085] ? __x64_sys_futex+0x1e9/0x4c0 [ 340.291540][T12085] ksys_mmap_pgoff+0x7d/0x5c0 [ 340.291579][T12085] ? rcu_is_watching+0x12/0xc0 [ 340.291626][T12085] __x64_sys_mmap+0x125/0x190 [ 340.291670][T12085] do_syscall_64+0xcd/0x260 [ 340.291734][T12085] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 340.291769][T12085] RIP: 0033:0x7f6ca398e169 [ 340.291796][T12085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 340.291829][T12085] RSP: 002b:00007f6ca47bd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 340.291861][T12085] RAX: ffffffffffffffda RBX: 00007f6ca3bb5fa0 RCX: 00007f6ca398e169 [ 340.291883][T12085] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000 [ 340.291903][T12085] RBP: 00007f6ca3a10a68 R08: fffffffffffffffa R09: 0000000000008000 [ 340.291925][T12085] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 340.291945][T12085] R13: 0000000000000000 R14: 00007f6ca3bb5fa0 R15: 00007fffc4817148 [ 340.291987][T12085] [ 340.622610][T12090] FAULT_INJECTION: forcing a failure. [ 340.622610][T12090] name failslab, interval 1, probability 0, space 0, times 0 [ 340.622659][T12090] CPU: 1 UID: 0 PID: 12090 Comm: syz.3.725 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 340.622710][T12090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 340.622730][T12090] Call Trace: [ 340.622742][T12090] [ 340.622753][T12090] dump_stack_lvl+0x16c/0x1f0 [ 340.622807][T12090] should_fail_ex+0x512/0x640 [ 340.622845][T12090] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 340.622895][T12090] should_failslab+0xc2/0x120 [ 340.622927][T12090] __kmalloc_cache_noprof+0x6a/0x3e0 [ 340.622972][T12090] ? vc_allocate+0x16c/0x880 [ 340.623030][T12090] vc_allocate+0x16c/0x880 [ 340.623082][T12090] ? __pfx_vc_allocate+0x10/0x10 [ 340.623145][T12090] con_install+0xa1/0x600 [ 340.623199][T12090] ? __pfx_con_install+0x10/0x10 [ 340.623256][T12090] ? __pfx_con_install+0x10/0x10 [ 340.623309][T12090] tty_init_dev.part.0+0x99/0x500 [ 340.623345][T12090] tty_open+0xa50/0xf90 [ 340.623385][T12090] ? __pfx_tty_open+0x10/0x10 [ 340.623415][T12090] ? chrdev_open+0x10b/0x6a0 [ 340.623488][T12090] ? __pfx_tty_open+0x10/0x10 [ 340.623519][T12090] chrdev_open+0x231/0x6a0 [ 340.623567][T12090] ? __pfx_apparmor_file_open+0x10/0x10 [ 340.623609][T12090] ? __pfx_chrdev_open+0x10/0x10 [ 340.623671][T12090] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 340.623729][T12090] do_dentry_open+0x741/0x1c10 [ 340.623777][T12090] ? __pfx_chrdev_open+0x10/0x10 [ 340.623836][T12090] vfs_open+0x82/0x3f0 [ 340.623876][T12090] path_openat+0x1e5e/0x2d40 [ 340.623941][T12090] ? __pfx_path_openat+0x10/0x10 [ 340.624003][T12090] do_filp_open+0x20b/0x470 [ 340.624052][T12090] ? __pfx_do_filp_open+0x10/0x10 [ 340.624133][T12090] ? alloc_fd+0x471/0x7d0 [ 340.624193][T12090] do_sys_openat2+0x11b/0x1d0 [ 340.624227][T12090] ? __pfx_do_sys_openat2+0x10/0x10 [ 340.624280][T12090] __x64_sys_openat+0x174/0x210 [ 340.624317][T12090] ? __pfx___x64_sys_openat+0x10/0x10 [ 340.624356][T12090] ? rcu_is_watching+0x12/0xc0 [ 340.624409][T12090] do_syscall_64+0xcd/0x260 [ 340.624464][T12090] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 340.624498][T12090] RIP: 0033:0x7f6def98e169 [ 340.624526][T12090] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 340.624558][T12090] RSP: 002b:00007f6df078d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 340.624590][T12090] RAX: ffffffffffffffda RBX: 00007f6defbb5fa0 RCX: 00007f6def98e169 [ 340.624612][T12090] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 340.624633][T12090] RBP: 00007f6defa10a68 R08: 0000000000000000 R09: 0000000000000000 [ 340.624653][T12090] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 340.624682][T12090] R13: 0000000000000000 R14: 00007f6defbb5fa0 R15: 00007ffc5cbf9598 [ 340.624726][T12090] [ 342.467062][T12142] FAULT_INJECTION: forcing a failure. [ 342.467062][T12142] name failslab, interval 1, probability 0, space 0, times 0 [ 342.486696][T12142] CPU: 0 UID: 0 PID: 12142 Comm: syz.3.728 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 342.486744][T12142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 342.486761][T12142] Call Trace: [ 342.486770][T12142] [ 342.486780][T12142] dump_stack_lvl+0x16c/0x1f0 [ 342.486828][T12142] should_fail_ex+0x512/0x640 [ 342.486858][T12142] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 342.486900][T12142] should_failslab+0xc2/0x120 [ 342.486926][T12142] __kmalloc_cache_noprof+0x6a/0x3e0 [ 342.486963][T12142] ? resv_map_alloc+0x7e/0x400 [ 342.486994][T12142] resv_map_alloc+0x7e/0x400 [ 342.487021][T12142] hugetlbfs_get_inode+0x33f/0x730 [ 342.487058][T12142] hugetlb_file_setup+0x15b/0x620 [ 342.487095][T12142] ksys_mmap_pgoff+0x189/0x5c0 [ 342.487126][T12142] ? rcu_is_watching+0x12/0xc0 [ 342.487162][T12142] __x64_sys_mmap+0x125/0x190 [ 342.487197][T12142] do_syscall_64+0xcd/0x260 [ 342.487254][T12142] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 342.487283][T12142] RIP: 0033:0x7f6def98e169 [ 342.487305][T12142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 342.487332][T12142] RSP: 002b:00007f6df076c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 342.487358][T12142] RAX: ffffffffffffffda RBX: 00007f6defbb6080 RCX: 00007f6def98e169 [ 342.487376][T12142] RDX: 00004000000000e3 RSI: 0000000000200004 RDI: 0000000000000000 [ 342.487392][T12142] RBP: 00007f6defa10a68 R08: 000000000000000d R09: 0000300000000000 [ 342.487409][T12142] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000 [ 342.487425][T12142] R13: 0000000000000000 R14: 00007f6defbb6080 R15: 00007ffc5cbf9598 [ 342.487457][T12142] [ 342.983656][T12148] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7fe08 [ 343.082450][T12148] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 343.129881][T12148] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 343.201061][T12148] page_type: f5(slab) [ 343.205179][T12148] raw: 00fff00000000040 ffff88801b442000 0000000000000000 0000000000000001 [ 343.318776][T12148] raw: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000 [ 343.365009][T12148] head: 00fff00000000040 ffff88801b442000 0000000000000000 0000000000000001 [ 343.413868][T12148] head: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000 [ 343.511342][T12148] head: 00fff00000000003 ffffea0001ff8201 00000000ffffffff 00000000ffffffff [ 343.556561][T12148] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 343.590086][T12148] page dumped because: unmovable page [ 343.607158][T12148] page_owner tracks the page as allocated [ 343.623760][T12148] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 76, tgid 76 (kworker/u8:4), ts 326159127196, free_ts 325872112512 [ 343.684820][T12148] post_alloc_hook+0x181/0x1b0 [ 343.705421][T12148] get_page_from_freelist+0x1193/0x39b0 [ 343.734632][T12148] __alloc_frozen_pages_noprof+0x263/0x23a0 [ 343.839095][T12148] alloc_pages_mpol+0x1fb/0x550 [ 343.869209][T12148] new_slab+0x23c/0x330 [ 343.885300][T12148] ___slab_alloc+0xd9c/0x1940 [ 343.905840][T12148] __slab_alloc.constprop.0+0x56/0xb0 [ 343.923333][T12148] __kmalloc_node_track_caller_noprof+0x2ee/0x510 [ 343.929895][T12148] kmalloc_reserve+0xef/0x2c0 [ 343.937985][T12148] __alloc_skb+0x166/0x380 [ 343.942891][T12148] inet6_ifinfo_notify+0x77/0x150 [ 343.949226][T12148] addrconf_notify+0x81a/0x19e0 [ 343.954540][T12148] notifier_call_chain+0xb9/0x410 [ 343.959719][T12148] call_netdevice_notifiers_info+0xbe/0x140 [ 343.966143][T12148] netif_state_change+0x113/0x150 [ 343.971650][T12148] linkwatch_do_dev+0x12b/0x160 [ 343.976945][T12148] page last free pid 11399 tgid 11378 stack trace: [ 343.983971][T12148] __free_frozen_pages+0x69d/0xff0 [ 343.989188][T12148] __folio_put+0x329/0x450 [ 343.996180][T12148] skb_release_data+0x618/0x960 [ 344.001632][T12148] __kfree_skb+0x4f/0x70 [ 344.005969][T12148] tcp_write_queue_purge+0x18d/0xd80 [ 344.033157][T12148] tcp_disconnect+0x395/0x1ec0 [ 344.045513][T12148] __inet_stream_connect+0x243/0x1020 [ 344.071686][T12148] inet_stream_connect+0x57/0xa0 [ 344.076782][T12148] __sys_connect_file+0x13e/0x1a0 [ 344.120608][T12148] __sys_connect+0x14d/0x170 [ 344.128555][T12148] __x64_sys_connect+0x72/0xb0 [ 344.147899][T12148] do_syscall_64+0xcd/0x260 [ 344.199095][T12148] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 344.631593][T12200] FAULT_INJECTION: forcing a failure. [ 344.631593][T12200] name failslab, interval 1, probability 0, space 0, times 0 [ 344.707506][T12200] CPU: 1 UID: 0 PID: 12200 Comm: syz.3.731 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 344.707548][T12200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 344.707566][T12200] Call Trace: [ 344.707575][T12200] [ 344.707585][T12200] dump_stack_lvl+0x16c/0x1f0 [ 344.707633][T12200] should_fail_ex+0x512/0x640 [ 344.707666][T12200] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 344.707717][T12200] should_failslab+0xc2/0x120 [ 344.707745][T12200] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 344.707789][T12200] ? fput+0x70/0xf0 [ 344.707815][T12200] ? getname_flags.part.0+0x4c/0x550 [ 344.707857][T12200] getname_flags.part.0+0x4c/0x550 [ 344.707896][T12200] __x64_sys_unlink+0xb0/0x110 [ 344.707944][T12200] do_syscall_64+0xcd/0x260 [ 344.707993][T12200] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 344.708035][T12200] RIP: 0033:0x7f6def98e169 [ 344.708059][T12200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 344.708089][T12200] RSP: 002b:00007f6df076c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057 [ 344.708119][T12200] RAX: ffffffffffffffda RBX: 00007f6defbb6080 RCX: 00007f6def98e169 [ 344.708139][T12200] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000380 [ 344.708157][T12200] RBP: 00007f6df076c090 R08: 0000000000000000 R09: 0000000000000000 [ 344.708175][T12200] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 344.708193][T12200] R13: 0000000000000001 R14: 00007f6defbb6080 R15: 00007ffc5cbf9598 [ 344.708232][T12200] [ 345.656506][ T5846] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 346.949165][T12241] CIFS: VFS: Unsupported security flags: 0x10 [ 348.971565][T12448] FAULT_INJECTION: forcing a failure. [ 348.971565][T12448] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 348.985446][T12448] CPU: 0 UID: 0 PID: 12448 Comm: syz.3.741 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 348.985487][T12448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 348.985505][T12448] Call Trace: [ 348.985515][T12448] [ 348.985527][T12448] dump_stack_lvl+0x16c/0x1f0 [ 348.985579][T12448] should_fail_ex+0x512/0x640 [ 348.985622][T12448] _copy_from_user+0x2e/0xd0 [ 348.985664][T12448] copy_msghdr_from_user+0x98/0x160 [ 348.985707][T12448] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 348.985758][T12448] ? __pfx__kstrtoull+0x10/0x10 [ 348.985815][T12448] ___sys_sendmsg+0xfe/0x1d0 [ 348.985860][T12448] ? __pfx____sys_sendmsg+0x10/0x10 [ 348.985931][T12448] ? find_held_lock+0x2b/0x80 [ 348.985999][T12448] __sys_sendmmsg+0x200/0x420 [ 348.986047][T12448] ? __pfx___sys_sendmmsg+0x10/0x10 [ 348.986102][T12448] ? lockdep_hardirqs_on+0x7c/0x110 [ 348.986147][T12448] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 348.986214][T12448] ? fput+0x70/0xf0 [ 348.986245][T12448] ? ksys_write+0x1b9/0x240 [ 348.986288][T12448] ? __pfx_ksys_write+0x10/0x10 [ 348.986331][T12448] ? rcu_is_watching+0x12/0xc0 [ 348.986379][T12448] __x64_sys_sendmmsg+0x9c/0x100 [ 348.986421][T12448] ? lockdep_hardirqs_on+0x7c/0x110 [ 348.986465][T12448] do_syscall_64+0xcd/0x260 [ 348.986515][T12448] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 348.986547][T12448] RIP: 0033:0x7f6def98e169 [ 348.986571][T12448] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 348.986602][T12448] RSP: 002b:00007f6df072a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 348.986632][T12448] RAX: ffffffffffffffda RBX: 00007f6defbb6240 RCX: 00007f6def98e169 [ 348.986654][T12448] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 348.986673][T12448] RBP: 00007f6df072a090 R08: 0000000000000000 R09: 0000000000000000 [ 348.986691][T12448] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 348.986710][T12448] R13: 0000000000000000 R14: 00007f6defbb6240 R15: 00007ffc5cbf9598 [ 348.986750][T12448] [ 349.702158][ T30] audit: type=1800 audit(6039815524.396:7): pid=12464 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.742" name="dummy_udc" dev="gadgetfs" ino=6209 res=0 errno=0 [ 355.327203][T12762] input: f as /devices/virtual/input/input8 [ 357.428796][T12926] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 358.398307][T12847] kexec: Could not allocate control_code_buffer [ 360.362675][T13007] CIFS: VFS: Unsupported security flags: 0x10 [ 360.697728][T13142] FAULT_INJECTION: forcing a failure. [ 360.697728][T13142] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 360.697773][T13142] CPU: 1 UID: 0 PID: 13142 Comm: syz.2.782 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 360.697813][T13142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 360.697840][T13142] Call Trace: [ 360.697850][T13142] [ 360.697869][T13142] dump_stack_lvl+0x16c/0x1f0 [ 360.697920][T13142] should_fail_ex+0x512/0x640 [ 360.697962][T13142] should_fail_alloc_page+0xe7/0x130 [ 360.697997][T13142] prepare_alloc_pages+0x3c2/0x610 [ 360.698044][T13142] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 360.698098][T13142] ? stack_trace_save+0x8e/0xc0 [ 360.698152][T13142] ? __lock_acquire+0xaa4/0x1ba0 [ 360.698203][T13142] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 360.698256][T13142] ? fb_var_to_videomode+0x4c9/0x690 [ 360.698299][T13142] ? __pfx_fb_match_mode+0x10/0x10 [ 360.698341][T13142] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 360.698383][T13142] ? lockdep_hardirqs_on+0x7c/0x110 [ 360.698431][T13142] ? vc_allocate+0x489/0x880 [ 360.698477][T13142] __alloc_pages_noprof+0xb/0x1b0 [ 360.698523][T13142] ___kmalloc_large_node+0x82/0x1e0 [ 360.698559][T13142] ? con_is_visible+0x65/0x150 [ 360.698601][T13142] __kmalloc_large_node_noprof+0x1c/0x70 [ 360.698642][T13142] __kmalloc_noprof.cold+0xc/0x61 [ 360.698695][T13142] vc_allocate+0x489/0x880 [ 360.698744][T13142] ? __pfx_vc_allocate+0x10/0x10 [ 360.698804][T13142] con_install+0xa1/0x600 [ 360.698855][T13142] ? __pfx_con_install+0x10/0x10 [ 360.698921][T13142] ? __pfx_con_install+0x10/0x10 [ 360.698974][T13142] tty_init_dev.part.0+0x99/0x500 [ 360.699010][T13142] tty_open+0xa50/0xf90 [ 360.699049][T13142] ? __pfx_tty_open+0x10/0x10 [ 360.699080][T13142] ? chrdev_open+0x10b/0x6a0 [ 360.699133][T13142] ? __pfx_tty_open+0x10/0x10 [ 360.699162][T13142] chrdev_open+0x231/0x6a0 [ 360.699209][T13142] ? __pfx_apparmor_file_open+0x10/0x10 [ 360.699249][T13142] ? __pfx_chrdev_open+0x10/0x10 [ 360.699300][T13142] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 360.699352][T13142] do_dentry_open+0x741/0x1c10 [ 360.699397][T13142] ? __pfx_chrdev_open+0x10/0x10 [ 360.699454][T13142] vfs_open+0x82/0x3f0 [ 360.699490][T13142] path_openat+0x1e5e/0x2d40 [ 360.699552][T13142] ? __pfx_path_openat+0x10/0x10 [ 360.699609][T13142] do_filp_open+0x20b/0x470 [ 360.699655][T13142] ? __pfx_do_filp_open+0x10/0x10 [ 360.699731][T13142] ? alloc_fd+0x471/0x7d0 [ 360.699789][T13142] do_sys_openat2+0x11b/0x1d0 [ 360.699823][T13142] ? __pfx_do_sys_openat2+0x10/0x10 [ 360.699877][T13142] __x64_sys_openat+0x174/0x210 [ 360.699914][T13142] ? __pfx___x64_sys_openat+0x10/0x10 [ 360.699950][T13142] ? rcu_is_watching+0x12/0xc0 [ 360.700002][T13142] do_syscall_64+0xcd/0x260 [ 360.700050][T13142] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 360.700082][T13142] RIP: 0033:0x7f5ec718e169 [ 360.700107][T13142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 360.700137][T13142] RSP: 002b:00007f5ec7f74038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 360.700167][T13142] RAX: ffffffffffffffda RBX: 00007f5ec73b5fa0 RCX: 00007f5ec718e169 [ 360.700189][T13142] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 360.700210][T13142] RBP: 00007f5ec7210a68 R08: 0000000000000000 R09: 0000000000000000 [ 360.700229][T13142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 360.700248][T13142] R13: 0000000000000000 R14: 00007f5ec73b5fa0 R15: 00007ffd72fe2c88 [ 360.700289][T13142] [ 360.969430][T13153] netlink: 8 bytes leftover after parsing attributes in process `syz.0.783'. [ 361.537136][T13172] openvswitch: HfR: Dropping previously announced user features [ 365.037910][T13338] netlink: 'syz.3.802': attribute type 3 has an invalid length. [ 365.787375][T13331] Invalid ELF header magic: != ELF [ 368.164386][T13452] FAULT_INJECTION: forcing a failure. [ 368.164386][T13452] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 368.164439][T13452] CPU: 0 UID: 0 PID: 13452 Comm: syz.2.806 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 368.164483][T13452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 368.164504][T13452] Call Trace: [ 368.164514][T13452] [ 368.164526][T13452] dump_stack_lvl+0x16c/0x1f0 [ 368.164580][T13452] should_fail_ex+0x512/0x640 [ 368.164628][T13452] should_fail_alloc_page+0xe7/0x130 [ 368.164663][T13452] prepare_alloc_pages+0x3c2/0x610 [ 368.164712][T13452] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 368.164770][T13452] ? stack_trace_save+0x8e/0xc0 [ 368.164826][T13452] ? __lock_acquire+0xaa4/0x1ba0 [ 368.164879][T13452] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 368.164945][T13452] ? fb_var_to_videomode+0x4c9/0x690 [ 368.164992][T13452] ? __pfx_fb_match_mode+0x10/0x10 [ 368.165036][T13452] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 368.165079][T13452] ? lockdep_hardirqs_on+0x7c/0x110 [ 368.165129][T13452] ? vc_allocate+0x489/0x880 [ 368.165179][T13452] __alloc_pages_noprof+0xb/0x1b0 [ 368.165228][T13452] ___kmalloc_large_node+0x82/0x1e0 [ 368.165265][T13452] ? con_is_visible+0x65/0x150 [ 368.165312][T13452] __kmalloc_large_node_noprof+0x1c/0x70 [ 368.165406][T13452] __kmalloc_noprof.cold+0xc/0x61 [ 368.165458][T13452] vc_allocate+0x489/0x880 [ 368.165507][T13452] ? __pfx_vc_allocate+0x10/0x10 [ 368.165566][T13452] con_install+0xa1/0x600 [ 368.165619][T13452] ? __pfx_con_install+0x10/0x10 [ 368.165676][T13452] ? __pfx_con_install+0x10/0x10 [ 368.165726][T13452] tty_init_dev.part.0+0x99/0x500 [ 368.165762][T13452] tty_open+0xa50/0xf90 [ 368.165799][T13452] ? __pfx_tty_open+0x10/0x10 [ 368.165831][T13452] ? chrdev_open+0x10b/0x6a0 [ 368.165886][T13452] ? __pfx_tty_open+0x10/0x10 [ 368.165928][T13452] chrdev_open+0x231/0x6a0 [ 368.165978][T13452] ? __pfx_apparmor_file_open+0x10/0x10 [ 368.166022][T13452] ? __pfx_chrdev_open+0x10/0x10 [ 368.166075][T13452] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 368.166131][T13452] do_dentry_open+0x741/0x1c10 [ 368.166181][T13452] ? __pfx_chrdev_open+0x10/0x10 [ 368.166240][T13452] vfs_open+0x82/0x3f0 [ 368.166279][T13452] path_openat+0x1e5e/0x2d40 [ 368.166345][T13452] ? __pfx_path_openat+0x10/0x10 [ 368.166406][T13452] do_filp_open+0x20b/0x470 [ 368.166455][T13452] ? __pfx_do_filp_open+0x10/0x10 [ 368.166537][T13452] ? alloc_fd+0x471/0x7d0 [ 368.166597][T13452] do_sys_openat2+0x11b/0x1d0 [ 368.166631][T13452] ? __pfx_do_sys_openat2+0x10/0x10 [ 368.166689][T13452] __x64_sys_openat+0x174/0x210 [ 368.166726][T13452] ? __pfx___x64_sys_openat+0x10/0x10 [ 368.166766][T13452] ? rcu_is_watching+0x12/0xc0 [ 368.166820][T13452] do_syscall_64+0xcd/0x260 [ 368.166875][T13452] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 368.166917][T13452] RIP: 0033:0x7f5ec718e169 [ 368.166944][T13452] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 368.166977][T13452] RSP: 002b:00007f5ec7f74038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 368.167008][T13452] RAX: ffffffffffffffda RBX: 00007f5ec73b5fa0 RCX: 00007f5ec718e169 [ 368.167029][T13452] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 368.167050][T13452] RBP: 00007f5ec7210a68 R08: 0000000000000000 R09: 0000000000000000 [ 368.167068][T13452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 368.167086][T13452] R13: 0000000000000000 R14: 00007f5ec73b5fa0 R15: 00007ffd72fe2c88 [ 368.167129][T13452] [ 370.462767][T13492] netlink: 8 bytes leftover after parsing attributes in process `syz.0.810'. [ 370.463270][T13492] netlink: 8 bytes leftover after parsing attributes in process `syz.0.810'. [ 373.305204][T13557] netlink: 28 bytes leftover after parsing attributes in process `syz.0.818'. [ 373.393195][T13557] bridge_slave_1: left allmulticast mode [ 373.415565][T13557] bridge_slave_1: left promiscuous mode [ 373.437619][T13557] bridge0: port 2(bridge_slave_1) entered disabled state [ 373.546470][T13557] bridge_slave_0: left allmulticast mode [ 373.574565][T13557] bridge_slave_0: left promiscuous mode [ 373.602909][T13557] bridge0: port 1(bridge_slave_0) entered disabled state [ 374.768957][T13531] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 374.817943][T13531] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 374.924270][T13531] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 375.131252][T13531] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 375.185294][T13531] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 375.326971][T13531] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 375.468610][T13531] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 375.525166][T13531] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 375.651930][T13531] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 375.848573][T13531] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 375.920200][T13531] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 376.151421][T13531] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 376.254934][T13531] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 376.841792][ T5846] Bluetooth: hci1: command 0x0406 tx timeout [ 377.160337][ T5846] Bluetooth: hci0: command 0x0406 tx timeout [ 377.480066][ T5846] Bluetooth: hci3: command 0x0406 tx timeout [ 377.819186][T13652] input: f as /devices/virtual/input/input9 [ 377.870123][ T5846] Bluetooth: hci2: command 0x0c1a tx timeout [ 378.696680][T13667] FAULT_INJECTION: forcing a failure. [ 378.696680][T13667] name fail_futex, interval 1, probability 0, space 0, times 0 [ 378.710462][T13667] CPU: 0 UID: 0 PID: 13667 Comm: syz.4.829 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 378.710504][T13667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 378.710523][T13667] Call Trace: [ 378.710533][T13667] [ 378.710544][T13667] dump_stack_lvl+0x16c/0x1f0 [ 378.710594][T13667] should_fail_ex+0x512/0x640 [ 378.710636][T13667] should_fail_futex+0x4c/0x60 [ 378.710679][T13667] futex_lock_pi_atomic+0x101/0xdb0 [ 378.710740][T13667] futex_lock_pi+0x2ee/0x7b0 [ 378.710799][T13667] ? __pfx_futex_lock_pi+0x10/0x10 [ 378.710866][T13667] ? find_held_lock+0x2b/0x80 [ 378.710921][T13667] ? proc_fail_nth_write+0x9f/0x250 [ 378.710971][T13667] ? __pfx_futex_wake_mark+0x10/0x10 [ 378.711010][T13667] ? ksys_write+0x190/0x240 [ 378.711061][T13667] do_futex+0x11a/0x350 [ 378.711107][T13667] ? __pfx_do_futex+0x10/0x10 [ 378.711163][T13667] __x64_sys_futex+0x1e0/0x4c0 [ 378.711219][T13667] ? fput+0x70/0xf0 [ 378.711247][T13667] ? __pfx___x64_sys_futex+0x10/0x10 [ 378.711292][T13667] ? ksys_write+0x1b9/0x240 [ 378.711333][T13667] ? __pfx_ksys_write+0x10/0x10 [ 378.711390][T13667] do_syscall_64+0xcd/0x260 [ 378.711440][T13667] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 378.711472][T13667] RIP: 0033:0x7fd15058e169 [ 378.711496][T13667] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 378.711527][T13667] RSP: 002b:00007fd1513fe038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 378.711555][T13667] RAX: ffffffffffffffda RBX: 00007fd1507b6080 RCX: 00007fd15058e169 [ 378.711575][T13667] RDX: 0000000000000007 RSI: 0000000000000006 RDI: 0000000000000000 [ 378.711592][T13667] RBP: 00007fd1513fe090 R08: 0000000000000000 R09: 0000000080000002 [ 378.711611][T13667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 378.711629][T13667] R13: 0000000000000001 R14: 00007fd1507b6080 R15: 00007ffc89683a48 [ 378.711669][T13667] [ 378.930319][ T5846] Bluetooth: hci1: command 0x0406 tx timeout [ 379.230353][ T5854] Bluetooth: hci0: command 0x0406 tx timeout [ 379.560064][ T5854] Bluetooth: hci3: command 0x0406 tx timeout [ 379.950048][ T5854] Bluetooth: hci2: command 0x0c1a tx timeout [ 381.000002][ T5854] Bluetooth: hci1: command 0x0406 tx timeout [ 381.312609][ T5854] Bluetooth: hci0: command 0x0406 tx timeout [ 381.630538][ T5854] Bluetooth: hci3: command 0x0406 tx timeout [ 382.040132][ T5854] Bluetooth: hci2: command 0x0c1a tx timeout [ 382.697388][T13737] [U]  [ 382.700459][T13737] [U] [ 382.703177][T13737] [U] [ 382.705894][T13737] [U] [ 382.719239][T13737] [U] [ 382.722014][T13737] [U] [ 382.724727][T13737] [U] [ 382.727454][T13737] [U] [ 382.761213][T13737] [U] [ 382.764235][T13737] [U] [ 382.766960][T13737] [U] [ 382.769676][T13737] [U] [ 382.807579][T13737] [U] [ 382.810333][T13737] [U] [ 382.813087][T13737] [U] [ 382.815843][T13737] [U] [ 382.820540][T13737] [U] [ 382.823326][T13737] [U] [ 382.826092][T13737] [U] [ 382.828889][T13737] [U] [ 382.879031][T13740] [U] [ 383.815861][T13759] FAULT_INJECTION: forcing a failure. [ 383.815861][T13759] name failslab, interval 1, probability 0, space 0, times 0 [ 383.815910][T13759] CPU: 1 UID: 0 PID: 13759 Comm: syz.2.843 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 383.815951][T13759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 383.815970][T13759] Call Trace: [ 383.815980][T13759] [ 383.815992][T13759] dump_stack_lvl+0x16c/0x1f0 [ 383.816047][T13759] should_fail_ex+0x512/0x640 [ 383.816084][T13759] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 383.816133][T13759] should_failslab+0xc2/0x120 [ 383.816165][T13759] __kmalloc_cache_noprof+0x6a/0x3e0 [ 383.816211][T13759] ? device_create_groups_vargs+0x8a/0x270 [ 383.816258][T13759] device_create_groups_vargs+0x8a/0x270 [ 383.816301][T13759] device_create+0xed/0x130 [ 383.816339][T13759] ? __pfx_device_create+0x10/0x10 [ 383.816371][T13759] ? do_raw_spin_lock+0x12c/0x2b0 [ 383.816412][T13759] ? is_console_locked+0x9/0x20 [ 383.816459][T13759] ? con_is_visible+0x65/0x150 [ 383.816501][T13759] ? csi_J+0x54a/0xad0 [ 383.816558][T13759] vcs_make_sysfs+0x32/0x80 [ 383.816603][T13759] vc_allocate+0x501/0x880 [ 383.816659][T13759] ? __pfx_vc_allocate+0x10/0x10 [ 383.816723][T13759] con_install+0xa1/0x600 [ 383.816778][T13759] ? __pfx_con_install+0x10/0x10 [ 383.816843][T13759] ? __pfx_con_install+0x10/0x10 [ 383.816896][T13759] tty_init_dev.part.0+0x99/0x500 [ 383.816934][T13759] tty_open+0xa50/0xf90 [ 383.816975][T13759] ? __pfx_tty_open+0x10/0x10 [ 383.817008][T13759] ? chrdev_open+0x10b/0x6a0 [ 383.817065][T13759] ? __pfx_tty_open+0x10/0x10 [ 383.817097][T13759] chrdev_open+0x231/0x6a0 [ 383.817145][T13759] ? __pfx_apparmor_file_open+0x10/0x10 [ 383.817187][T13759] ? __pfx_chrdev_open+0x10/0x10 [ 383.817242][T13759] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 383.817298][T13759] do_dentry_open+0x741/0x1c10 [ 383.817346][T13759] ? __pfx_chrdev_open+0x10/0x10 [ 383.817406][T13759] vfs_open+0x82/0x3f0 [ 383.817445][T13759] path_openat+0x1e5e/0x2d40 [ 383.817510][T13759] ? __pfx_path_openat+0x10/0x10 [ 383.817572][T13759] do_filp_open+0x20b/0x470 [ 383.817620][T13759] ? __pfx_do_filp_open+0x10/0x10 [ 383.817702][T13759] ? alloc_fd+0x471/0x7d0 [ 383.817761][T13759] do_sys_openat2+0x11b/0x1d0 [ 383.817801][T13759] ? __pfx_do_sys_openat2+0x10/0x10 [ 383.817854][T13759] __x64_sys_openat+0x174/0x210 [ 383.817890][T13759] ? __pfx___x64_sys_openat+0x10/0x10 [ 383.817937][T13759] ? rcu_is_watching+0x12/0xc0 [ 383.817992][T13759] do_syscall_64+0xcd/0x260 [ 383.818047][T13759] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 383.818079][T13759] RIP: 0033:0x7f5ec718e169 [ 383.818105][T13759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 383.818138][T13759] RSP: 002b:00007f5ec7f74038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 383.818167][T13759] RAX: ffffffffffffffda RBX: 00007f5ec73b5fa0 RCX: 00007f5ec718e169 [ 383.818188][T13759] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 383.818207][T13759] RBP: 00007f5ec7210a68 R08: 0000000000000000 R09: 0000000000000000 [ 383.818226][T13759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 383.818244][T13759] R13: 0000000000000000 R14: 00007f5ec73b5fa0 R15: 00007ffd72fe2c88 [ 383.818286][T13759] [ 383.909610][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 384.110307][ T5854] Bluetooth: hci2: command 0x0c1a tx timeout [ 384.223568][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 384.943754][T13775] netlink: 40 bytes leftover after parsing attributes in process `syz.2.847'. [ 386.892276][T13814] FAULT_INJECTION: forcing a failure. [ 386.892276][T13814] name failslab, interval 1, probability 0, space 0, times 0 [ 386.950044][T13814] CPU: 1 UID: 0 PID: 13814 Comm: syz.0.851 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 386.950091][T13814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 386.950111][T13814] Call Trace: [ 386.950120][T13814] [ 386.950133][T13814] dump_stack_lvl+0x16c/0x1f0 [ 386.950187][T13814] should_fail_ex+0x512/0x640 [ 386.950226][T13814] ? __kmalloc_node_noprof+0xc5/0x500 [ 386.950285][T13814] should_failslab+0xc2/0x120 [ 386.950317][T13814] __kmalloc_node_noprof+0xd8/0x500 [ 386.950373][T13814] ? __vmalloc_node_range_noprof+0x3eb/0x1540 [ 386.950428][T13814] __vmalloc_node_range_noprof+0x3eb/0x1540 [ 386.950500][T13814] ? n_tty_open+0x1a/0x170 [ 386.950545][T13814] ? __ldsem_down_write_nested+0x10e/0x850 [ 386.950588][T13814] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 386.950647][T13814] ? n_tty_open+0x1a/0x170 [ 386.950686][T13814] vzalloc_noprof+0x6b/0x90 [ 386.950730][T13814] ? n_tty_open+0x1a/0x170 [ 386.950765][T13814] ? __pfx_n_tty_open+0x10/0x10 [ 386.950799][T13814] n_tty_open+0x1a/0x170 [ 386.950833][T13814] ? __pfx_n_tty_open+0x10/0x10 [ 386.950869][T13814] tty_ldisc_open+0x9c/0x120 [ 386.950918][T13814] tty_ldisc_setup+0x40/0x100 [ 386.950969][T13814] tty_init_dev.part.0+0x1ec/0x500 [ 386.951008][T13814] tty_open+0xa50/0xf90 [ 386.951050][T13814] ? __pfx_tty_open+0x10/0x10 [ 386.951083][T13814] ? chrdev_open+0x10b/0x6a0 [ 386.951140][T13814] ? __pfx_tty_open+0x10/0x10 [ 386.951172][T13814] chrdev_open+0x231/0x6a0 [ 386.951223][T13814] ? __pfx_apparmor_file_open+0x10/0x10 [ 386.951266][T13814] ? __pfx_chrdev_open+0x10/0x10 [ 386.951323][T13814] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 386.951380][T13814] do_dentry_open+0x741/0x1c10 [ 386.951429][T13814] ? __pfx_chrdev_open+0x10/0x10 [ 386.951497][T13814] vfs_open+0x82/0x3f0 [ 386.951538][T13814] path_openat+0x1e5e/0x2d40 [ 386.951607][T13814] ? __pfx_path_openat+0x10/0x10 [ 386.951675][T13814] do_filp_open+0x20b/0x470 [ 386.951725][T13814] ? __pfx_do_filp_open+0x10/0x10 [ 386.951809][T13814] ? alloc_fd+0x471/0x7d0 [ 386.951871][T13814] do_sys_openat2+0x11b/0x1d0 [ 386.951907][T13814] ? __pfx_do_sys_openat2+0x10/0x10 [ 386.951958][T13814] __x64_sys_openat+0x174/0x210 [ 386.951992][T13814] ? __pfx___x64_sys_openat+0x10/0x10 [ 386.952027][T13814] ? rcu_is_watching+0x12/0xc0 [ 386.952078][T13814] do_syscall_64+0xcd/0x260 [ 386.952129][T13814] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 386.952163][T13814] RIP: 0033:0x7f6ca398e169 [ 386.952189][T13814] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 386.952220][T13814] RSP: 002b:00007f6ca47bd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 386.952251][T13814] RAX: ffffffffffffffda RBX: 00007f6ca3bb5fa0 RCX: 00007f6ca398e169 [ 386.952273][T13814] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 386.952293][T13814] RBP: 00007f6ca3a10a68 R08: 0000000000000000 R09: 0000000000000000 [ 386.952313][T13814] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 386.952331][T13814] R13: 0000000000000000 R14: 00007f6ca3bb5fa0 R15: 00007fffc4817148 [ 386.952375][T13814] [ 386.952721][T13814] syz.0.851: vmalloc error: size 12288, failed to allocated page array size 24, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 387.350022][T13814] CPU: 1 UID: 0 PID: 13814 Comm: syz.0.851 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 387.350068][T13814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 387.350088][T13814] Call Trace: [ 387.350098][T13814] [ 387.350109][T13814] dump_stack_lvl+0x16c/0x1f0 [ 387.350162][T13814] warn_alloc+0x248/0x3a0 [ 387.350213][T13814] ? __pfx_warn_alloc+0x10/0x10 [ 387.350265][T13814] ? dump_stack_lvl+0x1a1/0x1f0 [ 387.350323][T13814] ? rcu_is_watching+0x12/0xc0 [ 387.350364][T13814] ? __kmalloc_node_noprof+0x23b/0x500 [ 387.350427][T13814] __vmalloc_node_range_noprof+0x1110/0x1540 [ 387.350487][T13814] ? n_tty_open+0x1a/0x170 [ 387.350530][T13814] ? __ldsem_down_write_nested+0x10e/0x850 [ 387.350569][T13814] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 387.350626][T13814] ? n_tty_open+0x1a/0x170 [ 387.350662][T13814] vzalloc_noprof+0x6b/0x90 [ 387.350704][T13814] ? n_tty_open+0x1a/0x170 [ 387.350738][T13814] ? __pfx_n_tty_open+0x10/0x10 [ 387.350770][T13814] n_tty_open+0x1a/0x170 [ 387.350803][T13814] ? __pfx_n_tty_open+0x10/0x10 [ 387.350837][T13814] tty_ldisc_open+0x9c/0x120 [ 387.350884][T13814] tty_ldisc_setup+0x40/0x100 [ 387.350933][T13814] tty_init_dev.part.0+0x1ec/0x500 [ 387.350970][T13814] tty_open+0xa50/0xf90 [ 387.351009][T13814] ? __pfx_tty_open+0x10/0x10 [ 387.351045][T13814] ? chrdev_open+0x10b/0x6a0 [ 387.351101][T13814] ? __pfx_tty_open+0x10/0x10 [ 387.351132][T13814] chrdev_open+0x231/0x6a0 [ 387.351180][T13814] ? __pfx_apparmor_file_open+0x10/0x10 [ 387.351223][T13814] ? __pfx_chrdev_open+0x10/0x10 [ 387.351286][T13814] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 387.351342][T13814] do_dentry_open+0x741/0x1c10 [ 387.351390][T13814] ? __pfx_chrdev_open+0x10/0x10 [ 387.351450][T13814] vfs_open+0x82/0x3f0 [ 387.351489][T13814] path_openat+0x1e5e/0x2d40 [ 387.351553][T13814] ? __pfx_path_openat+0x10/0x10 [ 387.351616][T13814] do_filp_open+0x20b/0x470 [ 387.351666][T13814] ? __pfx_do_filp_open+0x10/0x10 [ 387.351747][T13814] ? alloc_fd+0x471/0x7d0 [ 387.351807][T13814] do_sys_openat2+0x11b/0x1d0 [ 387.351842][T13814] ? __pfx_do_sys_openat2+0x10/0x10 [ 387.351895][T13814] __x64_sys_openat+0x174/0x210 [ 387.351931][T13814] ? __pfx___x64_sys_openat+0x10/0x10 [ 387.351969][T13814] ? rcu_is_watching+0x12/0xc0 [ 387.352022][T13814] do_syscall_64+0xcd/0x260 [ 387.352073][T13814] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 387.352107][T13814] RIP: 0033:0x7f6ca398e169 [ 387.352132][T13814] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 387.352165][T13814] RSP: 002b:00007f6ca47bd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 387.352206][T13814] RAX: ffffffffffffffda RBX: 00007f6ca3bb5fa0 RCX: 00007f6ca398e169 [ 387.352227][T13814] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 387.352249][T13814] RBP: 00007f6ca3a10a68 R08: 0000000000000000 R09: 0000000000000000 [ 387.352275][T13814] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 387.352294][T13814] R13: 0000000000000000 R14: 00007f6ca3bb5fa0 R15: 00007fffc4817148 [ 387.352338][T13814] [ 387.352414][T13814] Mem-Info: [ 387.678329][T13814] active_anon:18901 inactive_anon:2 isolated_anon:0 [ 387.678329][T13814] active_file:21872 inactive_file:39581 isolated_file:0 [ 387.678329][T13814] unevictable:768 dirty:681 writeback:0 [ 387.678329][T13814] slab_reclaimable:10884 slab_unreclaimable:110222 [ 387.678329][T13814] mapped:26962 shmem:3352 pagetables:1017 [ 387.678329][T13814] sec_pagetables:0 bounce:0 [ 387.678329][T13814] kernel_misc_reclaimable:0 [ 387.678329][T13814] free:1294254 free_pcp:8574 free_cma:0 [ 387.725203][T13814] Node 0 active_anon:75604kB inactive_anon:8kB active_file:87488kB inactive_file:158252kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:107848kB dirty:2724kB writeback:0kB shmem:11872kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12640kB pagetables:4068kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 387.765545][T13814] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 387.823698][T13814] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 387.859396][T13814] lowmem_reserve[]: 0 2482 2483 2483 2483 [ 387.866481][T13814] Node 0 DMA32 free:1287800kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB active_anon:75552kB inactive_anon:8kB active_file:87488kB inactive_file:156668kB unevictable:1536kB writepending:2724kB present:3129332kB managed:2541672kB mlocked:0kB bounce:0kB free_pcp:888kB local_pcp:684kB free_cma:0kB [ 387.898514][T13814] lowmem_reserve[]: 0 0 1 1 1 [ 387.905666][T13814] Node 0 Normal free:8kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:52kB inactive_anon:0kB active_file:0kB inactive_file:1584kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 387.934341][T13814] lowmem_reserve[]: 0 0 0 0 0 [ 387.939635][T13814] Node 1 Normal free:3901988kB boost:0kB min:55784kB low:69728kB high:83672kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:6300kB local_pcp:0kB free_cma:0kB [ 387.969146][T13814] lowmem_reserve[]: 0 0 0 0 0 [ 387.974196][T13814] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 387.988096][T13814] Node 0 DMA32: 3923*4kB (UM) 1519*8kB (UME) 1447*16kB (UME) 958*32kB (UME) 722*64kB (UME) 334*128kB (UME) 244*256kB (UM) 82*512kB (UME) 31*1024kB (UM) 9*2048kB (UM) 235*4096kB (ME) = 1287796kB [ 388.007892][T13814] Node 0 Normal: 2*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 388.020270][T13814] Node 1 Normal: 4*4kB (UME) 5*8kB (UE) 10*16kB (UME) 200*32kB (UE) 86*64kB (UME) 32*128kB (UE) 13*256kB (UM) 9*512kB (UME) 3*1024kB (UME) 2*2048kB (UE) 945*4096kB (M) = 3902040kB [ 388.045305][T13814] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 388.055071][T13814] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 388.065668][T13814] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 388.076288][T13814] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 388.086581][T13814] 64833 total pagecache pages [ 388.091532][T13814] 33 pages in swap cache [ 388.095899][T13814] Free swap = 124852kB [ 388.100650][T13814] Total swap = 124996kB [ 388.104910][T13814] 2097051 pages RAM [ 388.108761][T13814] 0 pages HighMem/MovableOnly [ 388.113662][T13814] 429591 pages reserved [ 388.117864][T13814] 0 pages cma reserved [ 388.123940][T13814] tty tty26: ldisc open failed (-12), clearing slot 25 [ 388.137921][T13817] pty pty233: ldisc open failed (-12), clearing slot 233 [ 388.447756][T13874] FAULT_INJECTION: forcing a failure. [ 388.447756][T13874] name failslab, interval 1, probability 0, space 0, times 0 [ 388.493118][T13874] CPU: 1 UID: 0 PID: 13874 Comm: syz.4.856 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 388.493162][T13874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 388.493180][T13874] Call Trace: [ 388.493190][T13874] [ 388.493200][T13874] dump_stack_lvl+0x16c/0x1f0 [ 388.493249][T13874] should_fail_ex+0x512/0x640 [ 388.493279][T13874] ? __kmalloc_node_noprof+0xc5/0x500 [ 388.493327][T13874] should_failslab+0xc2/0x120 [ 388.493356][T13874] __kmalloc_node_noprof+0xd8/0x500 [ 388.493407][T13874] ? __vmalloc_node_range_noprof+0x3eb/0x1540 [ 388.493456][T13874] __vmalloc_node_range_noprof+0x3eb/0x1540 [ 388.493512][T13874] ? n_tty_open+0x1a/0x170 [ 388.493551][T13874] ? __ldsem_down_write_nested+0x10e/0x850 [ 388.493590][T13874] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 388.493645][T13874] ? n_tty_open+0x1a/0x170 [ 388.493680][T13874] vzalloc_noprof+0x6b/0x90 [ 388.493719][T13874] ? n_tty_open+0x1a/0x170 [ 388.493752][T13874] ? __pfx_n_tty_open+0x10/0x10 [ 388.493784][T13874] n_tty_open+0x1a/0x170 [ 388.493818][T13874] ? __pfx_n_tty_open+0x10/0x10 [ 388.493851][T13874] tty_ldisc_open+0x9c/0x120 [ 388.493895][T13874] tty_ldisc_setup+0x40/0x100 [ 388.493942][T13874] tty_init_dev.part.0+0x1ec/0x500 [ 388.493978][T13874] tty_open+0xa50/0xf90 [ 388.494017][T13874] ? __pfx_tty_open+0x10/0x10 [ 388.494048][T13874] ? chrdev_open+0x10b/0x6a0 [ 388.494112][T13874] ? __pfx_tty_open+0x10/0x10 [ 388.494143][T13874] chrdev_open+0x231/0x6a0 [ 388.494190][T13874] ? __pfx_apparmor_file_open+0x10/0x10 [ 388.494231][T13874] ? __pfx_chrdev_open+0x10/0x10 [ 388.494285][T13874] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 388.494339][T13874] do_dentry_open+0x741/0x1c10 [ 388.494385][T13874] ? __pfx_chrdev_open+0x10/0x10 [ 388.494441][T13874] vfs_open+0x82/0x3f0 [ 388.494479][T13874] path_openat+0x1e5e/0x2d40 [ 388.494542][T13874] ? __pfx_path_openat+0x10/0x10 [ 388.494600][T13874] do_filp_open+0x20b/0x470 [ 388.494647][T13874] ? __pfx_do_filp_open+0x10/0x10 [ 388.494724][T13874] ? alloc_fd+0x471/0x7d0 [ 388.494781][T13874] do_sys_openat2+0x11b/0x1d0 [ 388.494815][T13874] ? __pfx_do_sys_openat2+0x10/0x10 [ 388.494866][T13874] __x64_sys_openat+0x174/0x210 [ 388.494901][T13874] ? __pfx___x64_sys_openat+0x10/0x10 [ 388.494939][T13874] ? rcu_is_watching+0x12/0xc0 [ 388.494990][T13874] do_syscall_64+0xcd/0x260 [ 388.495041][T13874] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 388.495073][T13874] RIP: 0033:0x7fd15058e169 [ 388.495108][T13874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 388.495139][T13874] RSP: 002b:00007fd15141f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 388.495169][T13874] RAX: ffffffffffffffda RBX: 00007fd1507b5fa0 RCX: 00007fd15058e169 [ 388.495189][T13874] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 388.495208][T13874] RBP: 00007fd150610a68 R08: 0000000000000000 R09: 0000000000000000 [ 388.495226][T13874] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 388.495243][T13874] R13: 0000000000000000 R14: 00007fd1507b5fa0 R15: 00007ffc89683a48 [ 388.495283][T13874] [ 388.495342][T13874] tty tty26: ldisc open failed (-12), clearing slot 25 [ 388.528835][T13870] netlink: 342 bytes leftover after parsing attributes in process `syz.0.862'. [ 389.926822][T13923] tipc: Started in network mode [ 389.932945][T13923] tipc: Node identity ee00, cluster identity 4711 [ 389.939428][T13923] tipc: Node number set to 60928 [ 390.575135][T13917] netlink: ct family unspecified [ 391.504286][T13971] FAULT_INJECTION: forcing a failure. [ 391.504286][T13971] name failslab, interval 1, probability 0, space 0, times 0 [ 391.584533][T13971] CPU: 0 UID: 0 PID: 13971 Comm: syz.4.868 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 391.584581][T13971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 391.584601][T13971] Call Trace: [ 391.584613][T13971] [ 391.584624][T13971] dump_stack_lvl+0x16c/0x1f0 [ 391.584681][T13971] should_fail_ex+0x512/0x640 [ 391.584719][T13971] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 391.584775][T13971] should_failslab+0xc2/0x120 [ 391.584808][T13971] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 391.584859][T13971] ? __pfx___might_resched+0x10/0x10 [ 391.584917][T13971] ? alloc_vmap_area+0x613/0x2970 [ 391.584962][T13971] alloc_vmap_area+0x613/0x2970 [ 391.585020][T13971] ? __pfx_alloc_vmap_area+0x10/0x10 [ 391.585070][T13971] __get_vm_area_node+0x1a7/0x300 [ 391.585119][T13971] __vmalloc_node_range_noprof+0x277/0x1540 [ 391.585163][T13971] ? n_tty_open+0x1a/0x170 [ 391.585216][T13971] ? n_tty_open+0x1a/0x170 [ 391.585255][T13971] ? __ldsem_down_write_nested+0x10e/0x850 [ 391.585297][T13971] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 391.585355][T13971] ? n_tty_open+0x1a/0x170 [ 391.585392][T13971] vzalloc_noprof+0x6b/0x90 [ 391.585433][T13971] ? n_tty_open+0x1a/0x170 [ 391.585467][T13971] ? __pfx_n_tty_open+0x10/0x10 [ 391.585499][T13971] n_tty_open+0x1a/0x170 [ 391.585534][T13971] ? __pfx_n_tty_open+0x10/0x10 [ 391.585569][T13971] tty_ldisc_open+0x9c/0x120 [ 391.585614][T13971] tty_ldisc_setup+0x40/0x100 [ 391.585663][T13971] tty_init_dev.part.0+0x1ec/0x500 [ 391.585701][T13971] tty_open+0xa50/0xf90 [ 391.585742][T13971] ? __pfx_tty_open+0x10/0x10 [ 391.585774][T13971] ? chrdev_open+0x10b/0x6a0 [ 391.585830][T13971] ? __pfx_tty_open+0x10/0x10 [ 391.585862][T13971] chrdev_open+0x231/0x6a0 [ 391.585922][T13971] ? __pfx_apparmor_file_open+0x10/0x10 [ 391.585966][T13971] ? __pfx_chrdev_open+0x10/0x10 [ 391.586021][T13971] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 391.586076][T13971] do_dentry_open+0x741/0x1c10 [ 391.586123][T13971] ? __pfx_chrdev_open+0x10/0x10 [ 391.586183][T13971] vfs_open+0x82/0x3f0 [ 391.586222][T13971] path_openat+0x1e5e/0x2d40 [ 391.586287][T13971] ? __pfx_path_openat+0x10/0x10 [ 391.586347][T13971] do_filp_open+0x20b/0x470 [ 391.586394][T13971] ? __pfx_do_filp_open+0x10/0x10 [ 391.586476][T13971] ? alloc_fd+0x471/0x7d0 [ 391.586535][T13971] do_sys_openat2+0x11b/0x1d0 [ 391.586571][T13971] ? __pfx_do_sys_openat2+0x10/0x10 [ 391.586624][T13971] __x64_sys_openat+0x174/0x210 [ 391.586661][T13971] ? __pfx___x64_sys_openat+0x10/0x10 [ 391.586700][T13971] ? rcu_is_watching+0x12/0xc0 [ 391.586754][T13971] do_syscall_64+0xcd/0x260 [ 391.586806][T13971] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 391.586838][T13971] RIP: 0033:0x7fd15058e169 [ 391.586864][T13971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 391.586905][T13971] RSP: 002b:00007fd15141f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 391.586937][T13971] RAX: ffffffffffffffda RBX: 00007fd1507b5fa0 RCX: 00007fd15058e169 [ 391.586959][T13971] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 391.586980][T13971] RBP: 00007fd150610a68 R08: 0000000000000000 R09: 0000000000000000 [ 391.586999][T13971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 391.587019][T13971] R13: 0000000000000000 R14: 00007fd1507b5fa0 R15: 00007ffc89683a48 [ 391.587061][T13971] [ 391.587107][T13971] tty tty26: ldisc open failed (-12), clearing slot 25 [ 393.450507][T14049] openvswitch: HfR: Dropping previously announced user features [ 394.321784][T14060] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 394.647759][T14066] FAULT_INJECTION: forcing a failure. [ 394.647759][T14066] name failslab, interval 1, probability 0, space 0, times 0 [ 394.665438][T14066] CPU: 1 UID: 0 PID: 14066 Comm: syz.2.879 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 394.665482][T14066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 394.665501][T14066] Call Trace: [ 394.665511][T14066] [ 394.665524][T14066] dump_stack_lvl+0x16c/0x1f0 [ 394.665585][T14066] should_fail_ex+0x512/0x640 [ 394.665622][T14066] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 394.665671][T14066] should_failslab+0xc2/0x120 [ 394.665701][T14066] __kmalloc_cache_noprof+0x6a/0x3e0 [ 394.665746][T14066] ? create_filter_start.constprop.0+0xa5/0x300 [ 394.665800][T14066] create_filter_start.constprop.0+0xa5/0x300 [ 394.665854][T14066] apply_subsystem_event_filter+0x185/0x1450 [ 394.665911][T14066] ? __might_fault+0xe3/0x190 [ 394.665959][T14066] ? __pfx_apply_subsystem_event_filter+0x10/0x10 [ 394.666021][T14066] ? _copy_from_user+0x59/0xd0 [ 394.666065][T14066] subsystem_filter_write+0x95/0x120 [ 394.666118][T14066] vfs_write+0x25c/0x1180 [ 394.666159][T14066] ? __pfx_subsystem_filter_write+0x10/0x10 [ 394.666213][T14066] ? __pfx___mutex_lock+0x10/0x10 [ 394.666260][T14066] ? __pfx_vfs_write+0x10/0x10 [ 394.666315][T14066] ? __fget_files+0x20e/0x3c0 [ 394.666374][T14066] ksys_write+0x12a/0x240 [ 394.666422][T14066] ? __pfx_ksys_write+0x10/0x10 [ 394.666461][T14066] ? rcu_is_watching+0x12/0xc0 [ 394.666513][T14066] do_syscall_64+0xcd/0x260 [ 394.666564][T14066] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 394.666603][T14066] RIP: 0033:0x7f5ec718e169 [ 394.666628][T14066] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 394.666659][T14066] RSP: 002b:00007f5ec7f74038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 394.666689][T14066] RAX: ffffffffffffffda RBX: 00007f5ec73b5fa0 RCX: 00007f5ec718e169 [ 394.666709][T14066] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 394.666727][T14066] RBP: 00007f5ec7f74090 R08: 0000000000000000 R09: 0000000000000000 [ 394.666745][T14066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 394.666762][T14066] R13: 0000000000000000 R14: 00007f5ec73b5fa0 R15: 00007ffd72fe2c88 [ 394.666804][T14066] [ 396.685540][T14155] [ 396.687943][T14155] ====================================================== [ 396.694999][T14155] WARNING: possible circular locking dependency detected [ 396.702835][T14155] 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 Not tainted [ 396.710227][T14155] ------------------------------------------------------ [ 396.717255][T14155] syz.4.888/14155 is trying to acquire lock: [ 396.723271][T14155] ffff888063b796a8 (&smc->clcsock_release_lock){+.+.}-{4:4}, at: smc_switch_to_fallback+0x2d/0x9f0 [ 396.734061][T14155] [ 396.734061][T14155] but task is already holding lock: [ 396.741452][T14155] ffff888063b78e58 (sk_lock-AF_INET6){+.+.}-{0:0}, at: smc_sendmsg+0x47/0x520 [ 396.750381][T14155] [ 396.750381][T14155] which lock already depends on the new lock. [ 396.750381][T14155] [ 396.760807][T14155] [ 396.760807][T14155] the existing dependency chain (in reverse order) is: [ 396.769840][T14155] [ 396.769840][T14155] -> #2 (sk_lock-AF_INET6){+.+.}-{0:0}: [ 396.777618][T14155] lock_sock_nested+0x41/0xf0 [ 396.782859][T14155] sockopt_lock_sock+0x54/0x70 [ 396.788181][T14155] do_ipv6_setsockopt+0x204a/0x4420 [ 396.793958][T14155] ipv6_setsockopt+0xcb/0x170 [ 396.799199][T14155] udpv6_setsockopt+0x7d/0xd0 [ 396.804426][T14155] do_sock_setsockopt+0x221/0x470 [ 396.810069][T14155] __sys_setsockopt+0x1a0/0x230 [ 396.815474][T14155] __x64_sys_setsockopt+0xbd/0x160 [ 396.821138][T14155] do_syscall_64+0xcd/0x260 [ 396.826203][T14155] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 396.832648][T14155] [ 396.832648][T14155] -> #1 (rtnl_mutex){+.+.}-{4:4}: [ 396.839896][T14155] __mutex_lock+0x199/0xb90 [ 396.844969][T14155] do_ipv6_setsockopt+0x2042/0x4420 [ 396.850730][T14155] ipv6_setsockopt+0xcb/0x170 [ 396.855962][T14155] tcp_setsockopt+0xa4/0x100 [ 396.861114][T14155] smc_setsockopt+0x1b3/0xa00 [ 396.866376][T14155] do_sock_setsockopt+0x221/0x470 [ 396.871969][T14155] __sys_setsockopt+0x1a0/0x230 [ 396.877382][T14155] __x64_sys_setsockopt+0xbd/0x160 [ 396.883053][T14155] do_syscall_64+0xcd/0x260 [ 396.888122][T14155] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 396.894566][T14155] [ 396.894566][T14155] -> #0 (&smc->clcsock_release_lock){+.+.}-{4:4}: [ 396.903211][T14155] __lock_acquire+0x1173/0x1ba0 [ 396.908632][T14155] lock_acquire+0x179/0x350 [ 396.913684][T14155] __mutex_lock+0x199/0xb90 [ 396.918751][T14155] smc_switch_to_fallback+0x2d/0x9f0 [ 396.924586][T14155] smc_sendmsg+0x13d/0x520 [ 396.929553][T14155] ____sys_sendmsg+0xa95/0xc70 [ 396.934864][T14155] ___sys_sendmsg+0x134/0x1d0 [ 396.940090][T14155] __sys_sendmsg+0x16d/0x220 [ 396.945248][T14155] do_syscall_64+0xcd/0x260 [ 396.950368][T14155] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 396.956814][T14155] [ 396.956814][T14155] other info that might help us debug this: [ 396.956814][T14155] [ 396.967057][T14155] Chain exists of: [ 396.967057][T14155] &smc->clcsock_release_lock --> rtnl_mutex --> sk_lock-AF_INET6 [ 396.967057][T14155] [ 396.980917][T14155] Possible unsafe locking scenario: [ 396.980917][T14155] [ 396.988575][T14155] CPU0 CPU1 [ 396.993959][T14155] ---- ---- [ 396.999336][T14155] lock(sk_lock-AF_INET6); [ 397.003876][T14155] lock(rtnl_mutex); [ 397.010399][T14155] lock(sk_lock-AF_INET6); [ 397.017470][T14155] lock(&smc->clcsock_release_lock); [ 397.022866][T14155] [ 397.022866][T14155] *** DEADLOCK *** [ 397.022866][T14155] [ 397.031022][T14155] 1 lock held by syz.4.888/14155: [ 397.036092][T14155] #0: ffff888063b78e58 (sk_lock-AF_INET6){+.+.}-{0:0}, at: smc_sendmsg+0x47/0x520 [ 397.045455][T14155] [ 397.045455][T14155] stack backtrace: [ 397.051365][T14155] CPU: 1 UID: 0 PID: 14155 Comm: syz.4.888 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 397.051400][T14155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 397.051416][T14155] Call Trace: [ 397.051425][T14155] [ 397.051435][T14155] dump_stack_lvl+0x116/0x1f0 [ 397.051476][T14155] print_circular_bug+0x275/0x350 [ 397.051519][T14155] check_noncircular+0x14c/0x170 [ 397.051563][T14155] __lock_acquire+0x1173/0x1ba0 [ 397.051616][T14155] lock_acquire+0x179/0x350 [ 397.051642][T14155] ? smc_switch_to_fallback+0x2d/0x9f0 [ 397.051673][T14155] ? __pfx___might_resched+0x10/0x10 [ 397.051716][T14155] ? register_lock_class+0x41/0x4c0 [ 397.051747][T14155] __mutex_lock+0x199/0xb90 [ 397.051786][T14155] ? smc_switch_to_fallback+0x2d/0x9f0 [ 397.051811][T14155] ? __lock_acquire+0xaa4/0x1ba0 [ 397.051853][T14155] ? smc_switch_to_fallback+0x2d/0x9f0 [ 397.051880][T14155] ? __pfx___mutex_lock+0x10/0x10 [ 397.051923][T14155] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 397.051956][T14155] ? smc_switch_to_fallback+0x2d/0x9f0 [ 397.051981][T14155] smc_switch_to_fallback+0x2d/0x9f0 [ 397.052008][T14155] smc_sendmsg+0x13d/0x520 [ 397.052034][T14155] ____sys_sendmsg+0xa95/0xc70 [ 397.052058][T14155] ? copy_msghdr_from_user+0x10a/0x160 [ 397.052092][T14155] ? __pfx_____sys_sendmsg+0x10/0x10 [ 397.052123][T14155] ___sys_sendmsg+0x134/0x1d0 [ 397.052156][T14155] ? __pfx____sys_sendmsg+0x10/0x10 [ 397.052209][T14155] __sys_sendmsg+0x16d/0x220 [ 397.052242][T14155] ? __pfx___sys_sendmsg+0x10/0x10 [ 397.052275][T14155] ? __x64_sys_futex+0x1e0/0x4c0 [ 397.052317][T14155] ? rcu_is_watching+0x12/0xc0 [ 397.052360][T14155] do_syscall_64+0xcd/0x260 [ 397.052401][T14155] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 397.052427][T14155] RIP: 0033:0x7fd15058e169 [ 397.052447][T14155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 397.052473][T14155] RSP: 002b:00007fd1513fe038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 397.052496][T14155] RAX: ffffffffffffffda RBX: 00007fd1507b6080 RCX: 00007fd15058e169 [ 397.052514][T14155] RDX: 0000000020008000 RSI: 0000200000000140 RDI: 0000000000000005 [ 397.052530][T14155] RBP: 00007fd150610a68 R08: 0000000000000000 R09: 0000000000000000 [ 397.052545][T14155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 397.052560][T14155] R13: 0000000000000000 R14: 00007fd1507b6080 R15: 00007ffc89683a48 [ 397.052584][T14155] [ 397.389148][T14132] kexec: Could not allocate control_code_buffer