last executing test programs: 8m55.770278682s ago: executing program 3 (id=850): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) close_range$auto(0x2, 0x8, 0x0) iopl$auto(0x9) futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$auto(0x4000000000000c8, 0x800454cf, 0x3) r2 = socket(0x10, 0x2, 0x6) r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="200028bd7000fcdbdf25110000002c001e8028005e80080046800400f7801c0011801800278014003f0000000000000000000000ffffac1414aa08001d00", @ANYRES32, @ANYBLOB="050008898d9625e9", @ANYRESHEX=r3], 0x50}, 0x1, 0x0, 0x0, 0x2004a0c0}, 0x8044) r4 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r4, 0x107, 0x12, 0x0, 0x4) r5 = socket(0x11, 0x80003, 0x300) mmap$auto(0x3, 0x8001, 0x62, 0x10, r4, 0x7) r6 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) socket(0x11, 0x2, 0x3ff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x1b, &(0x7f00000000c0), 0x1) setsockopt$auto(0xffffffffffffffff, 0x107, 0xf, 0x0, 0x6) mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x1, 0x8000) ioctl$auto_BLKGETDISKSEQ(r0, 0x80081280, &(0x7f0000000000)=0x400) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) mmap$auto(0x3, 0x20009, 0xe3, 0x100000eb2, r6, 0x8000) setsockopt$auto(r5, 0x107, 0x12, 0x0, 0x4) sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000080)=ANY=[@ANYRESOCT=r2, @ANYRES16=r1, @ANYRES16=r0], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8880) 8m52.267949364s ago: executing program 3 (id=863): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x23, 0x80805, 0x0) fanotify_init$auto(0x5, 0x2000000000002) r0 = io_uring_setup$auto(0x3, 0x0) pipe$auto(0x0) r1 = syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f0000000080), r0) sendmsg$auto_KSMBD_EVENT_SHARE_CONFIG_REQUEST(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r1, 0x1, 0x70bd27, 0x25dfdbff, {}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000044}, 0x20004815) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x48140, 0x0) socket(0x2, 0x3, 0xa) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x3, 0xa) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket(0x2, 0x801, 0x106) socket(0x15, 0x5, 0x0) socket(0x10, 0x2, 0x0) r3 = socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r3, @ANYRES8=r2, @ANYRES64], 0x18}, 0x1, 0x2000, 0x0, 0x40000}, 0x80) 8m51.211526658s ago: executing program 3 (id=869): socketpair$auto(0x1e, 0xfffffffe, 0x4, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/net/lowpan0/mtu\x00', 0x183841, 0x0) write$auto(r0, &(0x7f0000000300)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xabxo\xd9\x90\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xa5\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x85R\x96\xe4\x86\\\x13\xa9\x1a&\x19\x8a9\x82\xf0\x83\f\xf7\xeb', 0x4) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = socket(0x10, 0x2, 0x0) recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0) socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x3c, 0x65f, 0x1ffde, 0x7, 0x3, 0x2, 0x81, 0x3, 0x6, 0x4, 0xb4, 0x9, 0x6, 0x10003, 0x80, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000]}, 0x1fe, 0xd) r2 = openat$auto_objects_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) pread64$auto(r2, 0x0, 0x7, 0x800) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x10, &(0x7f0000000100)={&(0x7f0000000080), 0x1}, 0x2, &(0x7f00000001c0), 0x1, 0xa505}, 0x800}, 0x7, 0x4006) r3 = socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/irq/3/name\x00', 0xc2902, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x121102, 0x0) r4 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00\x0e\x15F\xf7\x1a\xd1K+\xedy\xc6\x9bb\x94\xb4^\xc2\x83%\xfbw}\xfb_P\"\x19\xdfi\xe9hA|Q\x8a_F\x04:Q\x90\'\x06', 0x0, 0x10000, 0x0) sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="d80200", @ANYRES8, @ANYBLOB="01002dbd7000fcdbdf25010000000c0002000500000000000000c5000700c1007cf7c27c120e3984130834a73f9221887ac28e443c4a1a7da8d2ddcf2890cce5822826764f3f410e53f43f30"], 0x1d8}, 0x1, 0x0, 0x0, 0x40080}, 0x2400c090) ioctl$auto_VHOST_SET_OWNER(r4, 0xaf01, 0x5) ioctl$auto_VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f0000000000)={0x8}) close_range$auto(0x2, r3, 0x2) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x69) semget$auto(0xff, 0x40000000, 0x7f) msgsnd$auto(0x5, 0x0, 0x8000000000008, 0x800) 8m50.953856123s ago: executing program 3 (id=870): sendmsg$auto_NL80211_CMD_LEAVE_OCB(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='\b\x00\x00\x00', @ANYRES16, @ANYBLOB="000426bd7000fcdbdf256d00000008006a00060000000600ed000200000008001f"], 0x30}}, 0x1) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060007000100000008000200", @ANYRES32=0x0, @ANYBLOB="0c001a"], 0x68}, 0x1, 0x0, 0x0, 0x4044080}, 0x40090) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0x0, 0x0) r0 = fsopen$auto(0x0, 0x1) setresuid$auto(0x0, 0x7, 0x0) fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x4f, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRESOCT=r0], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0xc081) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) fchmod$auto(r0, 0x3) 8m50.452730289s ago: executing program 3 (id=873): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x8000, 0x0) read$auto(r0, 0x0, 0x9) close_range$auto(r0, r0, 0x52) socket(0x1e, 0x805, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x60840, 0x0) ioctl$auto(0x3, 0x40045532, r0) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D0c\x00', 0x88c00, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0x10001, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) 8m49.446737102s ago: executing program 3 (id=881): r0 = socket(0xa, 0x80000, 0x0) semctl$auto_GETPID(0x4, 0xf, 0xb, 0x80000000) mmap$auto(0x0, 0x4000000000200004, 0x7, 0x40eb2, r0, 0x300000000000) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x89fc, &(0x7f0000000000)={'tunl0\x00'}) write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xabxo\xd9\x90\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xa5\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5Y\a\xc1\xe9(\x85R\x96\xe4\x86\\\x13\xa9\x1a&\x19\x8a9\x82\xf0\x83\f\xf7\xeb\x00\x00\x00\x00\x00\x00\x00\x00v\x92f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) write$auto(0x3, 0x0, 0xffd8) futimesat$auto(r2, &(0x7f0000000240)='./file0\x00', 0x0) unshare$auto(0x40000080) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000280), 0x103a40, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x109401, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/debug/netdevsim/netdevsim1/ports/3/pp_hold\x00', 0x200000, 0x0) r3 = socket(0x2, 0x80802, 0x0) setsockopt$auto(r3, 0x11, 0x67, 0x0, 0x8) close_range$auto(0x2, 0x8, 0x0) 572.238991ms ago: executing program 2 (id=2474): sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x35}, 0x1, 0x0, 0x0, 0x40}, 0x40) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0xa, 0x0) r0 = socket(0x10, 0x2, 0xc) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x6) r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/007/001\x00', 0xa901, 0x0) ioctl$auto_USBDEVFS_SUBMITURB32(r2, 0x802c550a, &(0x7f0000000300)=ANY=[@ANYBLOB="020000060000e6ff040000000100400008"]) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f00000009c0), 0xffffffffffffffff) sendmsg$auto_IPVS_CMD_SET_SERVICE(r3, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={&(0x7f0000002b00)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010028bd7000fcdbdf25050000001c0001800800058004007d00100001800a"], 0x30}, 0x1, 0x0, 0x0, 0x4050}, 0x4000000) ioctl$auto(r2, 0x4008550d, r2) ioctl$auto(r1, 0x4b49, 0x9) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x6, 0x1, 0x8000000000000000, 0x0) fanotify_init$auto(0x65, 0x2) pipe$auto(0x0) dup2$auto(0x5, 0x4) splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9) flock$auto(r0, 0x8) write$auto(0x6, 0x0, 0x100000001) setsockopt$auto(0x3, 0x1, 0x2a, 0x0, 0x9) close_range$auto(0x2, 0x8, 0x0) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x2, 0x100) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) 558.546552ms ago: executing program 4 (id=2475): r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/023/001\x00', 0x2042, 0x0) ioctl$auto_USBDEVFS_BULK(r0, 0xc0185502, &(0x7f00000000c0)={0x4, 0xffff1ad2, 0x7, &(0x7f0000000040)="587966c1eae8299c8b05e51c9d6789a8758acc1cfc646c7dee2e2e4fa3163ac1ff045f2dadc0472fa2b2606b3c8300f6f5dcf4bb2532ffe49d927fb46689eed05fa67e534090ad5bb60a"}) r1 = socket(0x18, 0x5, 0x6) syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000100), r1) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r1) sendmsg$auto_NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x40, r2, 0x800, 0x70bd28, 0x25dfdbfc, {}, [@NL80211_ATTR_STA_PLINK_STATE={0x5, 0x74, 0x7}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x7}, @NL80211_ATTR_MESH_ID={0x19, 0x18, "4a14a2895f3acfa3e43369e15ce0d40eb63ddaaa97"}]}, 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x20004814) r3 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000280)='/dev/cuse\x00', 0x20000, 0x0) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/midi2\x00', 0x48000, 0x0) mbind$auto(0x0, 0x3, 0x3ff, &(0x7f0000000300)=0x8, 0xd16f, 0x2) r5 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000380), r1) sendmsg$auto_SMC_NETLINK_DUMP_HS_LIMITATION(r1, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x58, r5, 0x4efd92d22402b67d, 0x70bd28, 0x25dfdbfe, {}, "51e1b0787a93744fd52ed12eaa5924663613f38c729381093c9963905392e69b94ee3fd7d89595b167c3bf22731ec6fd2bbe8bf384bd04765002a7a09b20eca4a6ac6c"}, 0x58}, 0x1, 0x0, 0x0, 0x40}, 0x8001) r6 = signalfd4$auto(r4, &(0x7f00000004c0)={0x8000}, 0x1, 0xab8) ioctl$auto_SNDRV_RAWMIDI_IOCTL_DROP(r6, 0x40045730, &(0x7f0000000500)=0x8) close_range$auto(r3, r1, 0x0) read$auto(r1, &(0x7f0000000540)='}^--\x00', 0x48bb) r7 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f00000005c0), r6) sendmsg$auto_OVS_DP_CMD_NEW(r6, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)={0x1c, r7, 0x10, 0x70bd28, 0x25dfdbfd, {}, [@OVS_DP_ATTR_MASKS_CACHE_SIZE={0x8, 0x7, 0x1d3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x0) ioctl$auto_MEMGETREGIONINFO(r6, 0xc0104d08, &(0x7f00000006c0)={0x8, 0x6, 0xffffffff, 0x74a}) ioctl$auto_IOCTL_STOP_ACCEL_DEV(r6, 0x40096101, &(0x7f0000000840)={@config_section=&(0x7f00000007c0)={"8b72a623e9f12257bb587de02414e2541dabf4a443374df6d6f68db7788413652afb614f715b4be25cb853fffc1d270a6751fa2a6fd47a4b7e88c6ba36a3a703", @params=&(0x7f0000000700)={"98965f335c4074ad622a8b93342644fb9ac0a6d08285223d1db6d32b81de8c71b2a805d955edd0d048bc337a698538a5dcc6d8b6fd40eac2b36eff9f31fc1d86", "cf8678e2eb2e80a6968504cdaf8f8968422b5f4afaec7ff576b283c656673124976cafb944087f420703ce26baff09781371f210f5d74dc1014979989361f30f", @padding3, 0x1}, @padding3}}) r8 = openat$auto_fuse_conn_congestion_threshold_ops_control(0xffffffffffffff9c, &(0x7f0000000880), 0x86c01, 0x0) fadvise64$auto(r8, 0x8000000000000001, 0x9, 0x7) ioctl$auto_USBDEVFS_CONTROL32(r0, 0xc0105500, &(0x7f00000008c0)={0x2, 0x80, 0xa, 0x3, 0x7, 0xcdc7, 0x3}) recvmsg$auto(r8, &(0x7f0000000b80)={&(0x7f0000000900)="ea5dbbc26761e7137705920e383cb417a7d7791db65c5c5f1bcb68321f2f02e437cde496bbac4b762ef203a63fa99d8d95e1135359dea132561848a0cec468844fed2454e9864f44965f8c21f48b4b3838e26c8c7782947952706d9dfb38df32a61906d2333c7e4b38a398c5907c76c90ac31a6426a75f453b5cd67ce7abdab62617d848a2642f9efad6db104315dcc3ef7cad7ef29fddd2d27bb944b0b9145bee9d9cc8", 0x3, &(0x7f0000000ac0)={&(0x7f00000009c0)="e09efc561f5f734e22ffc85e23e78d3b005a38321e7a61dad1990ea3cdb3feb9fd249f49af3cf526eadfcfb04db750045a9f9f7dbf346a566828eb77710935deb0631e3213c73312c8ebf36396575633162187d0f355681844fdc2dd18825054a3432d7c0e318193459cfbe313a1c86bddc3ae5b3b90c99c7471b5da3f40e04a863cdbf6887b05328c92a3d82ea676170c6aa4fedd063c5f35b597f532533670aa361663afbfc29fa0670e15fecd023324a56e648fe37a03ebabdfd5ee00d398288e6d0677a1b3c67903be036d75c14f99bbfd55567b75c26afffd4d150ca592af611560eecbf49f205962", 0x4}, 0xfffffffffffffffe, &(0x7f0000000b00)="d11fc22556b4bdaa3aeb463f18299d2c2531fc3091837b2c94e056507f1d76c6a572b96c781868ef0c7d075e0759d87a6b52e50b01b4c28b4b7afe6d19e1439ee9367236d2eb7812802049d8e6dbae0e20df", 0x6c3, 0x2}, 0x4) getsockopt$auto_SO_DOMAIN(0xffffffffffffffff, 0x2, 0x27, &(0x7f0000000bc0)='\\.[\x00', &(0x7f0000000c00)=0x2) close_range$auto(r3, r3, 0x1) r9 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_GET_REG(r9, &(0x7f0000001d40)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000001d00)={&(0x7f0000000c80)={0x105c, r2, 0x4, 0x70bd2c, 0x25dfdbfb, {}, [@NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x8}, @NL80211_ATTR_COLOR_CHANGE_ELEMS={0x20, 0x131, 0x0, 0x1, [@NL80211_ATTR_HW_TIMESTAMP_ENABLED={0x4}, @NL80211_ATTR_KEY_IDX={0x5}, @NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}, @NL80211_ATTR_PEER_AID={0x6, 0xb5, 0x1}, @NL80211_ATTR_ROAM_SUPPORT={0x4}]}, @NL80211_ATTR_PMKID={0x1004, 0x55, "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"}, @NL80211_ATTR_MESH_PEER_AID={0x6, 0xed, 0x4}, @NL80211_ATTR_VIF_RADIO_MASK={0x8, 0x14d, 0x1}, @NL80211_ATTR_SSID={0xa, 0x34, "267802a998a3"}]}, 0x105c}, 0x1, 0x0, 0x0, 0x20000801}, 0x4000000) r10 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000001dc0), r1) sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r1, &(0x7f0000001e80)={&(0x7f0000001d80)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000001e40)={&(0x7f0000001e00)={0x28, r10, 0x8, 0x70bd29, 0x25dfdbfb, {}, [@NL802154_ATTR_SEC_DEVKEY={0xc, 0x2f, 0x0, 0x1, [@typed={0x8, 0x14c, 0x0, 0x0, @pid}]}, @NL802154_ATTR_CCA_OPT={0x8, 0xd, 0x971a}]}, 0x28}, 0x1, 0x0, 0x0, 0x4040850}, 0x4000010) ioctl$auto__ctl_fops_dm_ioctl(r6, 0x1, &(0x7f0000001ec0)="f819d18391ef307124314b8f84a68450dbda3df77ddb23ca58840b928f316e753ca73d9f614494906a547c0f2a8841bc99affb409526bd99df8a6a5b7e529b") 499.929494ms ago: executing program 0 (id=2476): mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000) mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa) execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) readv$auto(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x7}, 0x8) close_range$auto(0x2, 0x8, 0x0) madvise$auto(0x0, 0xd0, 0x2) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x4821c0, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x12bc00, 0x0) faccessat2$auto(0xffffffffffffffff, 0x0, 0x0, 0x7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0xa, 0x5, 0x2) connect$auto(0x3, 0x0, 0x54) r2 = socket(0xa, 0x5, 0x84) getsockopt$auto(r2, 0x84, 0x9, 0x0, &(0x7f0000000000)=0x9b) setsockopt$auto(r1, 0x10000000084, 0x9, 0x0, 0x9c) read$auto(r0, 0x0, 0x20) r3 = openat$dir(0xffffffffffffff9c, 0x0, 0x2d2802, 0x48) faccessat$auto(r3, 0x0, 0x2) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xc44c1, 0x0) mmap$auto(0x0, 0x5, 0xfff, 0x44eb2, 0x10006, 0x300000000000) mmap$auto(0x0, 0x9, 0xe3, 0xeb1, 0xffffffffffffffff, 0x8000) r5 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/netdevsim/netdevsim0/health/break_health\x00', 0x0, 0x0) write$auto(r5, 0x0, 0x1ff) read$auto_rng_chrdev_ops_core(0xffffffffffffffff, 0x0, 0x0) openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) ioperm$auto(0x7, 0x6, 0x2) 462.317692ms ago: executing program 2 (id=2477): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000440)='/dev/ptyzf\x00', 0x2200, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x200, 0x1) fanotify_mark$auto(0x0, 0x9, 0x10000008, 0x4, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x0) prctl$auto_PR_SET_MM_ARG_END(0x9, 0x9, 0xffffffffffffffff, 0xd, 0x13) r1 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) ioctl$auto_UI_DEV_SETUP(r1, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x8, 0xcf}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0xb}) ioctl$auto_UI_DEV_CREATE(r1, 0x5501, 0x0) writev$auto(r1, &(0x7f0000000340)={0x0, 0xda7e}, 0x9) select$auto(0x7, 0x0, 0x0, 0x0, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x40841, 0x8) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x6c800, 0x0) openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, 0x0, 0x2482, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card0\x00', 0x0, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop2\x00', 0x19d2c2, 0x0) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_PHY_GET(r0, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000000000)={0x14, r2, 0x301, 0x70bd26, 0x25dfdc02}, 0x14}, 0x1, 0x1000000, 0x0, 0x2404c012}, 0x80) 436.980332ms ago: executing program 4 (id=2478): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x2, 0x400008, 0x8, 0x9b72, 0xffffffffffffffff, 0x0) close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x1, 0x0) socket(0xa, 0x3, 0xff) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x6, 0x101, 0x1, 0xfffffffffffffff1, 0x2, 0x8000) madvise$auto(0x0, 0x2000040080000004, 0xe) r0 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0) write$auto_proc_mem_operations_base(r0, &(0x7f0000001680)="a7", 0x80000) mmap$auto(0x0, 0x20009, 0x4001000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) listmount$auto(&(0x7f0000000100)={0xfffffffc, @raw=0xffffffff, 0x844, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/mm/transparent_hugepage/khugepaged/scan_sleep_millisecs\x00', 0xa0582, 0x0) write$auto(r1, 0x0, 0x2b6) syz_clone3(&(0x7f0000000080)={0xe0000, 0x0, 0x0, 0x0, {0x14}, 0x0, 0x0, 0x0, &(0x7f00000004c0)}, 0x58) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kvm_amd/parameters/pause_filter_thresh\x00', 0x200, 0x0) write$auto_ocfs2_control_fops_stack_user(0xffffffffffffffff, 0x0, 0x0) r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001b80)='/dev/input/event2\x00', 0x40800, 0x0) ioctl$auto_EVIOCSKEYCODE(r2, 0x40084504, 0x0) write$auto(0xffffffffffffffff, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(0xffffffffffffffff, 0x0, 0x98c7) socket(0x11, 0x4, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x0, 0x0) 351.89799ms ago: executing program 0 (id=2479): adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0xfffffffffffffffc, 0xfffffffffffffffd, 0x2, 0x1, 0x1, 0x0, 0xffffffffffffff7f, 0x368e, 0x2, {0x8, 0x20000000010000}, 0x5, 0x6, 0x1, 0x7, 0x0, 0x6, 0x4, 0xffffffffffff628e, 0xa747, 0xdead, 0x804}) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01002dbd7000f9dbdf250100000005000d00100000000500070010000000080009009c781e2108000a000800000014001f0000211e789c0000000a00ffff0000000014002000ff01faffffff00000000000000000000060002000100"], 0x78}, 0x1, 0x0, 0x0, 0x40000}, 0x400c004) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/net/rxrpc/calls\x00', 0x40380, 0x0) pread64$auto(r2, 0x0, 0x10001, 0x830) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x9, 0x21e9, 0x7ff, 0x6, 0x2, 0xb, 0x2e, 0x0, 0x3}, 0x6f4) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xf) write$auto(0xffffffffffffffff, 0x0, 0x100) read$auto(0x3, 0x0, 0x80) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0xb}, 0x1, 0x0, 0x0, 0x4}, 0x0) close_range$auto(0x2, 0x8, 0x0) syz_genetlink_get_family_id$auto_nl802154(0x0, 0xffffffffffffffff) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/manager\x00', 0x40040, 0x0) setresuid$auto(0x0, 0x0, 0xffffffffffffffff) unshare$auto(0x40000080) mmap$auto(0xbe3, 0x2020005, 0x3, 0x15, 0xfffffffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) 338.213989ms ago: executing program 4 (id=2480): select$auto(0x0, &(0x7f0000000040)={[0x9, 0x4, 0x34, 0x9, 0x1, 0x1, 0xa, 0x6, 0x5, 0x1, 0x0, 0xcf, 0x5, 0x213, 0x5, 0xb98]}, 0x0, 0x0, 0x0) r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/input/event0\x00', 0x414b00, 0x0) r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$auto_VHOST_SET_LOG_FD2(0xffffffffffffffff, 0x4004af07, &(0x7f0000000100)=r0) process_mrelease$auto(r2, 0x2) writev$auto(r1, &(0x7f00000000c0)={&(0x7f0000000240)="e327262d36408e1c0cf4d9ac8a51616df660eb3e9a0234777d950a943d9b980c7033659c75b79f25bb19b38379c4f92ea0250b1c", 0xfffffffffffffffe}, 0x3) 288.850356ms ago: executing program 2 (id=2481): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0x408, 0x7, 0x1ff, 0x7, 0x42, 0xfff, 0x1ffdf, 0x7, 0x200003, 0x2, 0xa121, 0x3, 0x6, 0x4, 0xb4, 0xa, 0x6, 0x10001, 0x80, 0x100000000, 0x0, 0x7, 0x2100, 0x200, 0x0, 0x84, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x58, 0x0, 0x200000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40]}, 0x1fe, 0xd) unshare$auto(0x40000080) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x80102, 0x0) mmap$auto(0x0, 0x10005, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x40200, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f00000001c0)={0x0, 0x7}, 0x3) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x602, 0x1) r2 = open(&(0x7f0000000000)='./file1\x00', 0x1652c2, 0xe1d2b27bdc14aa98) fanotify_mark$auto(0x400000000000, 0x105, 0xf2b, r2, 0x0) open(&(0x7f0000000000)='./bus\x00', 0x12ba7e, 0x45) open(&(0x7f0000000100)='.\x00', 0x0, 0x408) socket(0xa, 0x3, 0xe7) openat$nci(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000080), r3) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'vlan1\x00'}) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/vhci_hcd.3/usb16/ep_00/bmAttributes\x00', 0x2000, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x15, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x3d, 0x6, 0x1ffde, 0x7, 0x3, 0x2, 0xd, 0x3, 0x6, 0x4, 0xb4, 0x6, 0x6, 0x7ff, 0x80, 0x4, 0x0, 0x7, 0x4, 0x203, 0x0, 0xb4, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x68, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xbd26, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1, 0x0, 0x9]}, 0x1fe, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, 0x0, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40000) r4 = socket(0x10, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000480), r4) 179.90129ms ago: executing program 4 (id=2482): mmap$auto(0xffffffffffffffff, 0x10001, 0x9, 0xeb1, 0x401, 0x8002) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x2200, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x7, 0x7, 0x3e, 0xfffffffffffffffa, 0x1ffde, 0x7, 0x0, 0x4, 0x9, 0x3, 0x2, 0x3, 0xffffffffffff0001, 0x3, 0x2, 0x10000, 0x80, 0x7, 0x0, 0x7, 0x2000, 0x8, 0x0, 0x84, 0x0, 0x3, 0x0, 0x0, 0x0, [0x2e66, 0x0, 0x0, 0x0, 0x6, 0xb, 0x0, 0x0, 0x0, 0x9, 0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x5, 0x310ef505, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x3, 0x8, 0x1, 0x0, 0x200002]}, 0xfe, 0x200d) r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20881, 0x0) write$auto(r0, &(0x7f0000000040)='/dev/input/event1\x00', 0x10001) socket(0xa, 0x2, 0x73) syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff) r1 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/fuse\x00', 0x10d200, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket(0x23, 0x80805, 0x0) r2 = inotify_init1$auto(0x3000000000000) mmap$auto(0x0, 0x2020009, 0x126, 0xf8, 0xffffffffffffffff, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) bind$auto(0x3, &(0x7f0000000040)=@ethernet={0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1cc5087217524dd0}}, 0x6a) ioctl$auto(0x3, 0x89e0, 0x38) write$auto_fuse_dev_operations_fuse_i(r1, &(0x7f0000000440)="110000000500"/17, 0x11) r3 = openat$auto_stats_seq_fops_netdebug(0xffffffffffffff9c, &(0x7f0000000140), 0x2040, 0x0) read$auto_stats_seq_fops_netdebug(r3, &(0x7f0000000380)=""/177, 0xb1) r4 = ioctl$auto_TUNSETOWNER(0xffffffffffffffff, 0x400454cc, &(0x7f00000000c0)=0x3) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0) ioctl$auto_TUNSETLINK(r2, 0x400454cd, &(0x7f0000000480)=0x7df7) ioctl$auto(r1, 0xc0304d18, 0x8) ioctl$auto_USB_RAW_IOCTL_EP_READ(r4, 0xc0085508, &(0x7f0000000100)={0x3172, 0xcd6, 0x4, "3d273d113ce01f49733ddef9148427e780dd1a6c88ca8933a5b6fbbf45ce474d17c4ab833ac5"}) io_cancel$auto(0x520, &(0x7f0000000000)={0x6, 0x4, 0x8, 0x5, 0x401, 0xffffffffffffffff, 0x1cc, 0x2d, 0x1000, 0x0, 0x1}, &(0x7f0000000080)={0x8000, 0x8, 0x0, 0x7fff}) 179.496936ms ago: executing program 0 (id=2483): openat$auto_autofs_root_operations_autofs_i(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/ieee80211/phy11/netdev:wlan1/stations\x00', 0x6108c1, 0x0) r0 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) write$auto_qrtr_tun_ops_tun(r0, &(0x7f0000000080), 0x0) openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2201, 0x0) ioperm$auto(0x7, 0x5ad2, 0x8) modify_ldt$auto(0x1, 0x0, 0x10) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) socket(0x1e, 0x1, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0x21, 0x3, 0x9) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0xc8101, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) write$auto(0x3, 0x0, 0xffd8) futimesat$auto(r2, &(0x7f0000000240)='./file0\x00', 0x0) unshare$auto(0x40000080) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000280), 0x103a40, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, 0x0, 0x200000, 0x0) r3 = socket(0x2, 0x80802, 0x0) setsockopt$auto(r3, 0x11, 0x67, 0x0, 0x8) close_range$auto(0x2, 0x8, 0x0) 179.213313ms ago: executing program 2 (id=2484): sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x35}, 0x1, 0x0, 0x0, 0x40}, 0x40) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0xa, 0x0) r0 = socket(0x10, 0x2, 0xc) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x6) r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/007/001\x00', 0xa901, 0x0) ioctl$auto_USBDEVFS_SUBMITURB32(r2, 0x802c550a, &(0x7f0000000300)=ANY=[@ANYBLOB="020000060000e6ff040000000100400008"]) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f00000009c0), 0xffffffffffffffff) sendmsg$auto_IPVS_CMD_SET_SERVICE(r3, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={&(0x7f0000002b00)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010028bd7000fcdbdf25050000001c0001800800058004007d00100001800a"], 0x30}, 0x1, 0x0, 0x0, 0x4050}, 0x4000000) ioctl$auto(r2, 0x4008550d, r2) ioctl$auto(r1, 0x4b49, 0x9) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x6, 0x1, 0x8000000000000000, 0x0) fanotify_init$auto(0x65, 0x2) pipe$auto(0x0) dup2$auto(0x5, 0x4) splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9) flock$auto(r0, 0x8) write$auto(0x6, 0x0, 0x100000001) recvfrom$auto(0x3, 0x0, 0x80000000002, 0x6, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x2, 0x100) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) 128.953995ms ago: executing program 4 (id=2485): mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) unshare$auto(0x5) ioctl$auto_TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptya5\x00', 0x62c00, 0x0) close_range$auto(0x2, 0xa, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x141001, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptye0\x00', 0x347940, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x0, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000100)='\x06\xe9\x00\x00\x00\x03&\b\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x9) socket(0xb, 0x6, 0x7ffffffc) getsockopt$auto(r0, 0x8, 0x85, 0x0, 0x0) r3 = socket(0x10, 0x2, 0x4) mmap$auto(0x0, 0x20006, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_fuse_conn_congestion_threshold_ops_control(0xffffffffffffff9c, &(0x7f00000000c0), 0x42000, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x100e42, 0x0) ioctl$auto_SG_GET_REQUEST_TABLE(r2, 0x2286, 0x0) socketpair$auto(0x6, 0x5, 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/scsi/device_info\x00', 0x8002, 0x0) write$auto(r3, &(0x7f0000000000)='-\x00', 0x2fb) select$auto(0x48, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x4, 0x948f, 0x3, 0x15f4da07, 0x3, 0x7, 0x62, 0x8000001f, 0x7, 0x806d3d, 0x8000009, 0x5, 0x8]}, 0x0) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mincore$auto(0x1000, 0x8001, 0x0) unshare$auto(0x20000080) connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710}, 0x10) unshare$auto(0x40000080) 67.611848ms ago: executing program 2 (id=2486): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x1, 0x8, 0x9, 0x13, r0, 0x6) mmap$auto(0x0, 0x810004, 0xfff, 0x8000000008012, 0x3, 0x8000) mmap$auto(0x0, 0x202000d, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) futex$auto(0x0, 0x89, 0x4, 0x0, 0x0, 0x100) r1 = prctl$auto_PR_SET_MM_START_DATA(0x3, 0x3, 0xffffffffffffffff, 0x8, 0x6) io_uring_enter$auto(r1, 0x0, 0x8000, 0x7, &(0x7f0000000040)="61c051522d4eb9875b6d44bb5d052d8b5089", 0x400) write$auto(0x3, 0x0, 0xfffffdef) 8.005282ms ago: executing program 0 (id=2487): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x2, 0x400008, 0x8, 0x9b72, 0xffffffffffffffff, 0x0) close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x1, 0x0) socket(0xa, 0x3, 0xff) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x6, 0x101, 0x1, 0xfffffffffffffff1, 0x2, 0x8000) madvise$auto(0x0, 0x2000040080000004, 0xe) r0 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0) write$auto_proc_mem_operations_base(r0, &(0x7f0000001680)="a7", 0x80000) mmap$auto(0x0, 0x20009, 0x4001000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) listmount$auto(&(0x7f0000000100)={0xfffffffc, @raw=0xffffffff, 0x844, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/mm/transparent_hugepage/khugepaged/scan_sleep_millisecs\x00', 0xa0582, 0x0) write$auto(r1, 0x0, 0x2b6) syz_clone3(&(0x7f0000000080)={0xe0000, 0x0, 0x0, 0x0, {0x14}, 0x0, 0x0, 0x0, &(0x7f00000004c0)}, 0x58) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kvm_amd/parameters/pause_filter_thresh\x00', 0x200, 0x0) write$auto_ocfs2_control_fops_stack_user(0xffffffffffffffff, 0x0, 0x0) r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001b80)='/dev/input/event2\x00', 0x40800, 0x0) ioctl$auto_EVIOCSKEYCODE(r2, 0x40084504, 0x0) write$auto(0xffffffffffffffff, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(0xffffffffffffffff, 0x0, 0x98c7) socket(0x11, 0x4, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x0, 0x0) 0s ago: executing program 4 (id=2488): mmap$auto(0x4, 0x7b, 0xdf, 0x9b75, 0x2, 0x8000) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) timerfd_create$auto(0x9, 0x0) semctl$auto(0x1ff, 0x2, 0x13, 0x4) (async, rerun: 64) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x800, 0x0) (rerun: 64) ioctl$auto(0x3, 0x40085400, 0x5) (async) ioprio_set$auto(0x2, 0x800000000, 0x8) (async) preadv2$auto(0x3, &(0x7f0000001000)={0x0, 0xfff5}, 0x5, 0xffffffffffffffff, 0x7, 0x2e) (async) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async) madvise$auto(0x0, 0xffffffffffff0081, 0x14) bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) (async) socket(0x2, 0x3, 0x6) (async) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32) mincore$auto(0x0, 0x10000, 0x0) (async, rerun: 32) setsockopt$auto(0x3, 0x0, 0x31, 0x0, 0x28) mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) fstatfs$auto(r0, 0x0) kernel console output (not intermixed with test programs): 66][T14775] [ 716.307778][T14775] dump_stack_lvl+0x16c/0x1f0 [ 716.307832][T14775] should_fail_ex+0x512/0x640 [ 716.307882][T14775] _copy_to_user+0x32/0xd0 [ 716.307934][T14775] simple_read_from_buffer+0xcb/0x170 [ 716.307977][T14775] proc_fail_nth_read+0x197/0x270 [ 716.308017][T14775] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 716.308058][T14775] ? rw_verify_area+0xcf/0x680 [ 716.308098][T14775] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 716.308145][T14775] vfs_read+0x1e4/0xc60 [ 716.308210][T14775] ? __pfx___mutex_lock+0x10/0x10 [ 716.308259][T14775] ? __pfx_vfs_read+0x10/0x10 [ 716.308315][T14775] ? __fget_files+0x20e/0x3c0 [ 716.308368][T14775] ksys_read+0x12a/0x250 [ 716.308412][T14775] ? __pfx_ksys_read+0x10/0x10 [ 716.308469][T14775] do_syscall_64+0xcd/0x490 [ 716.308520][T14775] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 716.308554][T14775] RIP: 0033:0x7f1671d8d33c [ 716.308578][T14775] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 716.308610][T14775] RSP: 002b:00007f1672bf0030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 716.308639][T14775] RAX: ffffffffffffffda RBX: 00007f1671fb6080 RCX: 00007f1671d8d33c [ 716.308660][T14775] RDX: 000000000000000f RSI: 00007f1672bf00a0 RDI: 0000000000000004 [ 716.308686][T14775] RBP: 00007f1672bf0090 R08: 0000000000000000 R09: 0000000000000000 [ 716.308709][T14775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 716.308729][T14775] R13: 0000000000000000 R14: 00007f1671fb6080 R15: 00007ffe76661c88 [ 716.308770][T14775] [ 716.957343][T14771] FAULT_INJECTION: forcing a failure. [ 716.957343][T14771] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 716.970895][T14771] CPU: 1 UID: 0 PID: 14771 Comm: syz.4.2013 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 716.970938][T14771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 716.970957][T14771] Call Trace: [ 716.970968][T14771] [ 716.970980][T14771] dump_stack_lvl+0x16c/0x1f0 [ 716.971033][T14771] should_fail_ex+0x512/0x640 [ 716.971083][T14771] should_fail_alloc_page+0xe7/0x130 [ 716.971116][T14771] prepare_alloc_pages+0x3c2/0x610 [ 716.971159][T14771] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 716.971213][T14771] ? mas_next_slot+0x12d3/0x21b0 [ 716.971242][T14771] ? __up_read+0x1f8/0x750 [ 716.971294][T14771] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 716.971344][T14771] ? mas_find+0x2f6/0x530 [ 716.971373][T14771] ? validate_mm+0x40a/0x570 [ 716.971421][T14771] ? __pfx_validate_mm+0x10/0x10 [ 716.971468][T14771] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 716.971519][T14771] ? policy_nodemask+0xea/0x4e0 [ 716.971551][T14771] alloc_pages_mpol+0x1fb/0x550 [ 716.971583][T14771] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 716.971623][T14771] alloc_pages_noprof+0x131/0x390 [ 716.971655][T14771] __pud_alloc+0x3b/0x750 [ 716.971692][T14771] alloc_new_pud+0x267/0x320 [ 716.971747][T14771] move_page_tables+0x6b6/0x4070 [ 716.971801][T14771] ? __pfx_copy_vma+0x10/0x10 [ 716.971846][T14771] ? lockdep_hardirqs_on+0x7c/0x110 [ 716.971898][T14771] ? __pfx_move_page_tables+0x10/0x10 [ 716.971946][T14771] ? register_lock_class+0x41/0x4c0 [ 716.971986][T14771] ? __schedule+0x1181/0x5de0 [ 716.972043][T14771] ? __lock_acquire+0x622/0x1c90 [ 716.972092][T14771] copy_vma_and_data+0x216/0x750 [ 716.972150][T14771] ? __pfx_copy_vma_and_data+0x10/0x10 [ 716.972207][T14771] ? __vma_enter_locked+0x163/0x3f0 [ 716.972255][T14771] ? find_held_lock+0x2b/0x80 [ 716.972290][T14771] ? move_vma+0x536/0x1740 [ 716.972346][T14771] move_vma+0x548/0x1740 [ 716.972430][T14771] ? __pfx_move_vma+0x10/0x10 [ 716.972476][T14771] ? mm_get_unmapped_area+0x95/0xe0 [ 716.972516][T14771] ? shmem_get_unmapped_area+0x170/0xa00 [ 716.972562][T14771] ? cap_mmap_addr+0x4b/0x120 [ 716.972592][T14771] ? bpf_lsm_mmap_addr+0x9/0x10 [ 716.972627][T14771] ? security_mmap_addr+0x6c/0x1e0 [ 716.972671][T14771] ? __get_unmapped_area+0x267/0x440 [ 716.972714][T14771] ? vrm_set_new_addr+0x208/0x290 [ 716.972776][T14771] __do_sys_mremap+0xe07/0x1590 [ 716.972834][T14771] ? __pfx___do_sys_mremap+0x10/0x10 [ 716.972896][T14771] ? __fget_files+0x204/0x3c0 [ 716.972950][T14771] ? __x64_sys_futex+0x1e0/0x4c0 [ 716.973018][T14771] do_syscall_64+0xcd/0x490 [ 716.973073][T14771] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 716.973108][T14771] RIP: 0033:0x7fe31e18e929 [ 716.973137][T14771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 716.973171][T14771] RSP: 002b:00007fe31f07e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 716.973203][T14771] RAX: ffffffffffffffda RBX: 00007fe31e3b6160 RCX: 00007fe31e18e929 [ 716.973226][T14771] RDX: 0000000000000008 RSI: 0000000000000002 RDI: 0000000000000000 [ 716.973247][T14771] RBP: 00007fe31e210b39 R08: 00007effffffb000 R09: 0000000000000000 [ 716.973268][T14771] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 716.973287][T14771] R13: 0000000000000000 R14: 00007fe31e3b6160 R15: 00007ffcf22df078 [ 716.973330][T14771] [ 718.371970][T14784] sctp: [Deprecated]: syz.2.2016 (pid 14784) Use of struct sctp_assoc_value in delayed_ack socket option. [ 718.371970][T14784] Use struct sctp_sack_info instead [ 719.373367][T14806] FAULT_INJECTION: forcing a failure. [ 719.373367][T14806] name failslab, interval 1, probability 0, space 0, times 0 [ 719.425997][T14806] CPU: 1 UID: 0 PID: 14806 Comm: syz.4.2019 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 719.426042][T14806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 719.426061][T14806] Call Trace: [ 719.426073][T14806] [ 719.426086][T14806] dump_stack_lvl+0x16c/0x1f0 [ 719.426150][T14806] should_fail_ex+0x512/0x640 [ 719.426202][T14806] should_failslab+0xc2/0x120 [ 719.426235][T14806] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 719.426286][T14806] ? dst_alloc+0x99/0x1a0 [ 719.426335][T14806] dst_alloc+0x99/0x1a0 [ 719.426382][T14806] rt_dst_alloc+0x35/0x3a0 [ 719.426421][T14806] ip_route_output_key_hash_rcu+0x87a/0x28f0 [ 719.426483][T14806] ip_route_output_key_hash+0x137/0x2e0 [ 719.426532][T14806] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 719.426587][T14806] ? __call_rcu_common.constprop.0+0x3f0/0xa10 [ 719.426636][T14806] ? lockdep_hardirqs_on+0x7c/0x110 [ 719.426685][T14806] ? percpu_counter_add_batch+0xb8/0x1f0 [ 719.426732][T14806] ip_route_output_flow+0x27/0x150 [ 719.426784][T14806] __ip4_datagram_connect+0x8b5/0x1540 [ 719.426834][T14806] ? do_softirq+0xf0/0xf0 [ 719.426874][T14806] udp_connect+0x2e/0x70 [ 719.426908][T14806] inet_dgram_connect+0x15e/0x2f0 [ 719.426953][T14806] ? __pfx_inet_dgram_connect+0x10/0x10 [ 719.426991][T14806] __sys_connect_file+0x141/0x1a0 [ 719.427036][T14806] __sys_connect+0x13b/0x160 [ 719.427080][T14806] ? __pfx___sys_connect+0x10/0x10 [ 719.427148][T14806] ? __pfx_ksys_write+0x10/0x10 [ 719.427205][T14806] __x64_sys_connect+0x72/0xb0 [ 719.427244][T14806] ? lockdep_hardirqs_on+0x7c/0x110 [ 719.427290][T14806] do_syscall_64+0xcd/0x490 [ 719.427343][T14806] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 719.427376][T14806] RIP: 0033:0x7fe31e18e929 [ 719.427403][T14806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 719.427435][T14806] RSP: 002b:00007fe31f0c0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 719.427466][T14806] RAX: ffffffffffffffda RBX: 00007fe31e3b5fa0 RCX: 00007fe31e18e929 [ 719.427488][T14806] RDX: 0000000000000055 RSI: 00002000000000c0 RDI: 0000000000000003 [ 719.427509][T14806] RBP: 00007fe31f0c0090 R08: 0000000000000000 R09: 0000000000000000 [ 719.427529][T14806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 719.427548][T14806] R13: 0000000000000000 R14: 00007fe31e3b5fa0 R15: 00007ffcf22df078 [ 719.427591][T14806] [ 720.607202][T14808] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 720.626354][T14808] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 720.632476][T14808] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 720.656298][T14808] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 721.297017][T14827] FAULT_INJECTION: forcing a failure. [ 721.297017][T14827] name failslab, interval 1, probability 0, space 0, times 0 [ 721.312042][T14827] CPU: 1 UID: 0 PID: 14827 Comm: syz.0.2024 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 721.312084][T14827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 721.312103][T14827] Call Trace: [ 721.312114][T14827] [ 721.312127][T14827] dump_stack_lvl+0x16c/0x1f0 [ 721.312178][T14827] should_fail_ex+0x512/0x640 [ 721.312220][T14827] ? fs_reclaim_acquire+0xae/0x150 [ 721.312260][T14827] should_failslab+0xc2/0x120 [ 721.312290][T14827] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 721.312338][T14827] ? security_inode_alloc+0x3b/0x2b0 [ 721.312394][T14827] security_inode_alloc+0x3b/0x2b0 [ 721.312431][T14827] inode_init_always_gfp+0xce4/0x1030 [ 721.312485][T14827] alloc_inode+0x86/0x240 [ 721.312510][T14827] sock_alloc+0x40/0x280 [ 721.312533][T14827] __sock_create+0xc1/0x8d0 [ 721.312566][T14827] __sys_socketpair+0x25c/0x5a0 [ 721.312597][T14827] ? __pfx___sys_socketpair+0x10/0x10 [ 721.312629][T14827] ? xfd_validate_state+0x61/0x180 [ 721.312667][T14827] __x64_sys_socketpair+0x96/0x100 [ 721.312696][T14827] ? lockdep_hardirqs_on+0x7c/0x110 [ 721.312730][T14827] do_syscall_64+0xcd/0x490 [ 721.312768][T14827] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 721.312793][T14827] RIP: 0033:0x7f51b1f8e929 [ 721.312811][T14827] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 721.312835][T14827] RSP: 002b:00007f51b2df7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 [ 721.312857][T14827] RAX: ffffffffffffffda RBX: 00007f51b21b5fa0 RCX: 00007f51b1f8e929 [ 721.312873][T14827] RDX: 8000000000000000 RSI: 0000000000000005 RDI: 000000000000001e [ 721.312888][T14827] RBP: 00007f51b2010b39 R08: 0000000000000000 R09: 0000000000000000 [ 721.312902][T14827] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 721.312917][T14827] R13: 0000000000000000 R14: 00007f51b21b5fa0 R15: 00007fffecfd0d88 [ 721.312947][T14827] [ 721.313080][T14827] net_ratelimit: 78 callbacks suppressed [ 721.313094][T14827] socket: no more sockets [ 722.275880][T12625] Bluetooth: hci0: command 0x0c1a tx timeout [ 722.678420][ T6857] Bluetooth: hci3: command 0x0c1a tx timeout [ 722.684488][T14708] Bluetooth: hci1: command 0x0c1a tx timeout [ 722.690675][T12625] Bluetooth: hci2: command 0x0406 tx timeout [ 723.506375][T14843] FAULT_INJECTION: forcing a failure. [ 723.506375][T14843] name failslab, interval 1, probability 0, space 0, times 0 [ 723.531538][T14843] CPU: 0 UID: 0 PID: 14843 Comm: syz.0.2027 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 723.531581][T14843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 723.531605][T14843] Call Trace: [ 723.531617][T14843] [ 723.531629][T14843] dump_stack_lvl+0x16c/0x1f0 [ 723.531685][T14843] should_fail_ex+0x512/0x640 [ 723.531730][T14843] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 723.531821][T14843] should_failslab+0xc2/0x120 [ 723.531852][T14843] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 723.531900][T14843] ? __proc_create+0xc3/0x8c0 [ 723.531947][T14843] ? __proc_create+0x2ce/0x8c0 [ 723.532004][T14843] __proc_create+0x2ce/0x8c0 [ 723.532053][T14843] ? __pfx___proc_create+0x10/0x10 [ 723.532120][T14843] proc_create_reg+0x7d/0x180 [ 723.532156][T14843] proc_create_net_data+0x8e/0x1b0 [ 723.532206][T14843] ? __pfx_proc_create_net_data+0x10/0x10 [ 723.532268][T14843] ? __pfx_ipmr_net_init+0x10/0x10 [ 723.532303][T14843] ipmr_net_init+0x27d/0x4e0 [ 723.532339][T14843] ? __pfx_ipmr_net_init+0x10/0x10 [ 723.532372][T14843] ops_init+0x1df/0x5f0 [ 723.532451][T14843] setup_net+0x1ff/0x510 [ 723.532480][T14843] ? lockdep_init_map_type+0x5c/0x280 [ 723.532531][T14843] ? __pfx_setup_net+0x10/0x10 [ 723.532566][T14843] ? debug_mutex_init+0x37/0x70 [ 723.532608][T14843] copy_net_ns+0x2a6/0x5f0 [ 723.532647][T14843] create_new_namespaces+0x3ea/0xa90 [ 723.532695][T14843] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 723.532799][T14843] ksys_unshare+0x45b/0xa40 [ 723.532852][T14843] ? __pfx_ksys_unshare+0x10/0x10 [ 723.532904][T14843] ? syscall_user_dispatch+0x78/0x140 [ 723.532972][T14843] __x64_sys_unshare+0x31/0x40 [ 723.533016][T14843] do_syscall_64+0xcd/0x490 [ 723.533074][T14843] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 723.533116][T14843] RIP: 0033:0x7f51b1f8e929 [ 723.533154][T14843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 723.533188][T14843] RSP: 002b:00007f51b2df7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 723.533227][T14843] RAX: ffffffffffffffda RBX: 00007f51b21b5fa0 RCX: 00007f51b1f8e929 [ 723.533250][T14843] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 723.533270][T14843] RBP: 00007f51b2010b39 R08: 0000000000000000 R09: 0000000000000000 [ 723.533294][T14843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 723.533315][T14843] R13: 0000000000000000 R14: 00007f51b21b5fa0 R15: 00007fffecfd0d88 [ 723.533359][T14843] [ 725.155268][T14855] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input88 [ 725.514180][T14860] FAULT_INJECTION: forcing a failure. [ 725.514180][T14860] name failslab, interval 1, probability 0, space 0, times 0 [ 725.633708][T14860] CPU: 1 UID: 0 PID: 14860 Comm: syz.4.2031 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 725.633757][T14860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 725.633778][T14860] Call Trace: [ 725.633790][T14860] [ 725.633804][T14860] dump_stack_lvl+0x16c/0x1f0 [ 725.633870][T14860] should_fail_ex+0x512/0x640 [ 725.633919][T14860] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 725.633966][T14860] should_failslab+0xc2/0x120 [ 725.633989][T14860] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 725.634029][T14860] ? kvasprintf_const+0x66/0x1a0 [ 725.634056][T14860] kvasprintf+0xbc/0x160 [ 725.634076][T14860] ? __pfx_kvasprintf+0x10/0x10 [ 725.634100][T14860] ? rcu_read_unlock+0x17/0x60 [ 725.634123][T14860] ? kernel_text_address+0x8d/0x100 [ 725.634165][T14860] kvasprintf_const+0x66/0x1a0 [ 725.634188][T14860] kobject_set_name_vargs+0x5a/0x140 [ 725.634213][T14860] dev_set_name+0xc7/0x100 [ 725.634241][T14860] ? __pfx_dev_set_name+0x10/0x10 [ 725.634269][T14860] ? rcu_is_watching+0x12/0xc0 [ 725.634293][T14860] ? trace_kmalloc+0x2b/0xd0 [ 725.634315][T14860] ? __kmalloc_noprof.cold+0x5c/0x61 [ 725.634362][T14860] wiphy_new_nm+0x811/0x2160 [ 725.634388][T14860] ? __pfx_ieee80211_emulate_add_chanctx+0x10/0x10 [ 725.634417][T14860] ? __pfx_ieee80211_emulate_remove_chanctx+0x10/0x10 [ 725.634444][T14860] ieee80211_alloc_hw_nm+0x1b7a/0x2260 [ 725.634470][T14860] ? __local_bh_enable_ip+0xa4/0x120 [ 725.634501][T14860] mac80211_hwsim_new_radio+0x1d4/0x54d0 [ 725.634551][T14860] ? __asan_memset+0x23/0x50 [ 725.634586][T14860] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 725.634631][T14860] hwsim_new_radio_nl+0xb51/0x12c0 [ 725.634670][T14860] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 725.634714][T14860] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 725.634747][T14860] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 725.634786][T14860] genl_family_rcv_msg_doit+0x209/0x2f0 [ 725.634826][T14860] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 725.634858][T14860] ? trace_cap_capable+0x18d/0x200 [ 725.634889][T14860] ? bpf_lsm_capable+0x9/0x10 [ 725.634918][T14860] ? security_capable+0x7e/0x260 [ 725.634957][T14860] ? ns_capable+0xd7/0x110 [ 725.634983][T14860] genl_rcv_msg+0x55c/0x800 [ 725.635016][T14860] ? __pfx_genl_rcv_msg+0x10/0x10 [ 725.635046][T14860] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 725.635091][T14860] netlink_rcv_skb+0x158/0x420 [ 725.635117][T14860] ? __pfx_genl_rcv_msg+0x10/0x10 [ 725.635148][T14860] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 725.635186][T14860] ? netlink_deliver_tap+0x1ae/0xd30 [ 725.635214][T14860] genl_rcv+0x28/0x40 [ 725.635239][T14860] netlink_unicast+0x53a/0x7f0 [ 725.635268][T14860] ? __pfx_netlink_unicast+0x10/0x10 [ 725.635302][T14860] netlink_sendmsg+0x8d1/0xdd0 [ 725.635332][T14860] ? __pfx_netlink_sendmsg+0x10/0x10 [ 725.635369][T14860] ____sys_sendmsg+0xa98/0xc70 [ 725.635398][T14860] ? copy_msghdr_from_user+0x10a/0x160 [ 725.635434][T14860] ? __pfx_____sys_sendmsg+0x10/0x10 [ 725.635468][T14860] ? __pfx_futex_wake_mark+0x10/0x10 [ 725.635508][T14860] ___sys_sendmsg+0x134/0x1d0 [ 725.635546][T14860] ? __pfx____sys_sendmsg+0x10/0x10 [ 725.635581][T14860] ? __lock_acquire+0x622/0x1c90 [ 725.635649][T14860] __sys_sendmsg+0x16d/0x220 [ 725.635685][T14860] ? __pfx___sys_sendmsg+0x10/0x10 [ 725.635721][T14860] ? __x64_sys_futex+0x1e0/0x4c0 [ 725.635786][T14860] do_syscall_64+0xcd/0x490 [ 725.635846][T14860] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 725.635882][T14860] RIP: 0033:0x7fe31e18e929 [ 725.635903][T14860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 725.635927][T14860] RSP: 002b:00007fe31f09f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 725.635950][T14860] RAX: ffffffffffffffda RBX: 00007fe31e3b6080 RCX: 00007fe31e18e929 [ 725.635966][T14860] RDX: 0000000004048850 RSI: 0000200000000080 RDI: 0000000000000004 [ 725.635981][T14860] RBP: 00007fe31e210b39 R08: 0000000000000000 R09: 0000000000000000 [ 725.635996][T14860] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 725.636011][T14860] R13: 0000000000000000 R14: 00007fe31e3b6080 R15: 00007ffcf22df078 [ 725.636040][T14860] [ 727.605270][T14885] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2038'. [ 728.101943][T14894] svc: failed to register nfsdv3 RPC service (errno 111). [ 728.160783][T14894] svc: failed to register nfsaclv3 RPC service (errno 111). [ 729.504230][T14912] FAULT_INJECTION: forcing a failure. [ 729.504230][T14912] name failslab, interval 1, probability 0, space 0, times 0 [ 729.673527][T14912] CPU: 1 UID: 0 PID: 14912 Comm: syz.0.2044 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 729.673587][T14912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 729.673602][T14912] Call Trace: [ 729.673610][T14912] [ 729.673619][T14912] dump_stack_lvl+0x16c/0x1f0 [ 729.673660][T14912] should_fail_ex+0x512/0x640 [ 729.673694][T14912] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 729.673728][T14912] ? __pfx_rescuer_thread+0x10/0x10 [ 729.673762][T14912] should_failslab+0xc2/0x120 [ 729.673785][T14912] __kmalloc_cache_noprof+0x6a/0x3e0 [ 729.673815][T14912] ? lockdep_init_map_type+0x5c/0x280 [ 729.673847][T14912] ? __kthread_create_on_node+0xce/0x3f0 [ 729.673879][T14912] ? __pfx_rescuer_thread+0x10/0x10 [ 729.673914][T14912] __kthread_create_on_node+0xce/0x3f0 [ 729.673945][T14912] ? __pfx___kthread_create_on_node+0x10/0x10 [ 729.673982][T14912] ? __pfx_vsnprintf+0x10/0x10 [ 729.674019][T14912] ? __pfx_rescuer_thread+0x10/0x10 [ 729.674054][T14912] kthread_create_on_node+0xc7/0x100 [ 729.674084][T14912] ? __pfx_kthread_create_on_node+0x10/0x10 [ 729.674112][T14912] ? __pfx_scnprintf+0x10/0x10 [ 729.674165][T14912] init_rescuer+0x320/0x640 [ 729.674198][T14912] ? __pfx_init_rescuer+0x10/0x10 [ 729.674238][T14912] ? wq_adjust_max_active+0x39d/0x4a0 [ 729.674276][T14912] __alloc_workqueue+0xc37/0x1810 [ 729.674310][T14912] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 729.674346][T14912] alloc_workqueue+0xd2/0x200 [ 729.674374][T14912] ? __pfx_alloc_workqueue+0x10/0x10 [ 729.674410][T14912] ? __pfx___debug_object_init+0x10/0x10 [ 729.674442][T14912] nci_register_device+0x21e/0xb80 [ 729.674475][T14912] ? __pfx_nci_register_device+0x10/0x10 [ 729.674510][T14912] ? lockdep_init_map_type+0x5c/0x280 [ 729.674547][T14912] virtual_ncidev_open+0x141/0x220 [ 729.674576][T14912] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 729.674604][T14912] misc_open+0x35d/0x420 [ 729.674633][T14912] ? __pfx_misc_open+0x10/0x10 [ 729.674660][T14912] chrdev_open+0x231/0x6a0 [ 729.674695][T14912] ? __pfx_apparmor_file_open+0x10/0x10 [ 729.674724][T14912] ? __pfx_chrdev_open+0x10/0x10 [ 729.674763][T14912] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 729.674799][T14912] do_dentry_open+0x744/0x1c10 [ 729.674834][T14912] ? __pfx_chrdev_open+0x10/0x10 [ 729.674876][T14912] vfs_open+0x82/0x3f0 [ 729.674904][T14912] path_openat+0x1de4/0x2cb0 [ 729.674949][T14912] ? __pfx_path_openat+0x10/0x10 [ 729.674984][T14912] ? __lock_acquire+0xb8a/0x1c90 [ 729.675017][T14912] do_filp_open+0x20b/0x470 [ 729.675051][T14912] ? __pfx_do_filp_open+0x10/0x10 [ 729.675105][T14912] ? alloc_fd+0x471/0x7d0 [ 729.675144][T14912] do_sys_openat2+0x11b/0x1d0 [ 729.675178][T14912] ? __pfx_do_sys_openat2+0x10/0x10 [ 729.675216][T14912] __x64_sys_openat+0x174/0x210 [ 729.675243][T14912] ? __pfx___x64_sys_openat+0x10/0x10 [ 729.675283][T14912] do_syscall_64+0xcd/0x490 [ 729.675322][T14912] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 729.675347][T14912] RIP: 0033:0x7f51b1f8e929 [ 729.675366][T14912] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 729.675390][T14912] RSP: 002b:00007f51b2dd6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 729.675413][T14912] RAX: ffffffffffffffda RBX: 00007f51b21b6080 RCX: 00007f51b1f8e929 [ 729.675429][T14912] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 729.675446][T14912] RBP: 00007f51b2010b39 R08: 0000000000000000 R09: 0000000000000000 [ 729.675461][T14912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 729.675475][T14912] R13: 0000000000000000 R14: 00007f51b21b6080 R15: 00007fffecfd0d88 [ 729.675505][T14912] [ 730.065866][T14912] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -ENOMEM [ 730.498098][T14912] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2044'. [ 730.884145][T14920] mkiss: ax0: crc mode is auto. [ 731.976356][T14939] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2051'. [ 732.277845][T14944] FAULT_INJECTION: forcing a failure. [ 732.277845][T14944] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 732.327869][T14944] CPU: 0 UID: 0 PID: 14944 Comm: syz.1.2053 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 732.327917][T14944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 732.327938][T14944] Call Trace: [ 732.327949][T14944] [ 732.327964][T14944] dump_stack_lvl+0x16c/0x1f0 [ 732.328021][T14944] should_fail_ex+0x512/0x640 [ 732.328080][T14944] should_fail_alloc_page+0xe7/0x130 [ 732.328117][T14944] prepare_alloc_pages+0x3c2/0x610 [ 732.328173][T14944] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 732.328226][T14944] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 732.328285][T14944] ? mas_next_node+0x7e0/0xf50 [ 732.328346][T14944] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 732.328431][T14944] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 732.328489][T14944] ? policy_nodemask+0xea/0x4e0 [ 732.328525][T14944] alloc_pages_mpol+0x1fb/0x550 [ 732.328564][T14944] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 732.328598][T14944] ? kernel_text_address+0x8d/0x100 [ 732.328650][T14944] ? __kernel_text_address+0xd/0x40 [ 732.328710][T14944] alloc_pages_noprof+0x131/0x390 [ 732.328745][T14944] pte_alloc_one+0x1c/0x3a0 [ 732.328801][T14944] __pte_alloc+0x6d/0x3c0 [ 732.328834][T14944] ? __pfx___pte_alloc+0x10/0x10 [ 732.328882][T14944] walk_pgd_range+0xbd5/0x1f60 [ 732.328943][T14944] ? __pfx_guard_install_set_pte+0x10/0x10 [ 732.329002][T14944] ? __pfx_guard_install_pte_entry+0x10/0x10 [ 732.329042][T14944] ? __pfx_guard_install_set_pte+0x10/0x10 [ 732.329105][T14944] ? __pfx_guard_install_set_pte+0x10/0x10 [ 732.329175][T14944] ? __pfx_guard_install_set_pte+0x10/0x10 [ 732.329237][T14944] ? __pfx_walk_pgd_range+0x10/0x10 [ 732.329306][T14944] __walk_page_range+0x163/0x820 [ 732.329363][T14944] ? find_vma+0xbf/0x140 [ 732.329400][T14944] ? __pfx_find_vma+0x10/0x10 [ 732.329437][T14944] ? walk_page_test+0x9b/0x180 [ 732.329495][T14944] walk_page_range_mm+0x54d/0x8a0 [ 732.329555][T14944] ? __pfx_walk_page_range_mm+0x10/0x10 [ 732.329625][T14944] ? __anon_vma_prepare+0x2e2/0x5e0 [ 732.329682][T14944] madvise_vma_behavior+0xee2/0x2420 [ 732.329726][T14944] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 732.329769][T14944] ? __pfx_mas_prev+0x10/0x10 [ 732.329832][T14944] ? find_vma_prev+0xda/0x160 [ 732.329875][T14944] ? __pfx_find_vma_prev+0x10/0x10 [ 732.329923][T14944] ? __pfx_mt_find+0x10/0x10 [ 732.329968][T14944] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 732.330002][T14944] madvise_walk_vmas+0x1d1/0x2c0 [ 732.330039][T14944] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 732.330090][T14944] madvise_do_behavior+0x15d/0x3f0 [ 732.330131][T14944] ? __pfx_madvise_do_behavior+0x10/0x10 [ 732.330209][T14944] do_madvise+0x161/0x230 [ 732.330250][T14944] ? __pfx_do_madvise+0x10/0x10 [ 732.330311][T14944] ? xfd_validate_state+0x61/0x180 [ 732.330365][T14944] __x64_sys_madvise+0xa9/0x110 [ 732.330405][T14944] ? lockdep_hardirqs_on+0x7c/0x110 [ 732.330458][T14944] do_syscall_64+0xcd/0x490 [ 732.330512][T14944] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 732.330552][T14944] RIP: 0033:0x7fd51078e929 [ 732.330580][T14944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 732.330613][T14944] RSP: 002b:00007fd511595038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 732.330649][T14944] RAX: ffffffffffffffda RBX: 00007fd5109b5fa0 RCX: 00007fd51078e929 [ 732.330672][T14944] RDX: 0000000000000066 RSI: 0000000000000401 RDI: 0000000000000000 [ 732.330692][T14944] RBP: 00007fd510810b39 R08: 0000000000000000 R09: 0000000000000000 [ 732.330717][T14944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 732.330737][T14944] R13: 0000000000000000 R14: 00007fd5109b5fa0 R15: 00007ffcdc6935a8 [ 732.330781][T14944] [ 732.723566][T14944] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2053'. [ 734.629468][T14964] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input89 [ 735.712248][T14983] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2061'. [ 736.344573][T15001] ALSA: mixer_oss: invalid OSS volume '0' [ 736.352682][T15001] ALSA: mixer_oss: invalid OSS volume '' [ 737.239035][T15009] FAULT_INJECTION: forcing a failure. [ 737.239035][T15009] name failslab, interval 1, probability 0, space 0, times 0 [ 737.253635][T15009] CPU: 1 UID: 0 PID: 15009 Comm: syz.4.2067 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 737.253677][T15009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 737.253701][T15009] Call Trace: [ 737.253712][T15009] [ 737.253724][T15009] dump_stack_lvl+0x16c/0x1f0 [ 737.253776][T15009] should_fail_ex+0x512/0x640 [ 737.253821][T15009] ? __kmalloc_noprof+0xbf/0x510 [ 737.253868][T15009] ? ops_init+0x77/0x5f0 [ 737.253914][T15009] should_failslab+0xc2/0x120 [ 737.253944][T15009] __kmalloc_noprof+0xd2/0x510 [ 737.253990][T15009] ? __asan_memcpy+0x3c/0x60 [ 737.254036][T15009] ops_init+0x77/0x5f0 [ 737.254088][T15009] setup_net+0x1ff/0x510 [ 737.254114][T15009] ? lockdep_init_map_type+0x5c/0x280 [ 737.254157][T15009] ? __pfx_setup_net+0x10/0x10 [ 737.254188][T15009] ? debug_mutex_init+0x37/0x70 [ 737.254221][T15009] copy_net_ns+0x2a6/0x5f0 [ 737.254257][T15009] create_new_namespaces+0x3ea/0xa90 [ 737.254301][T15009] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 737.254339][T15009] ksys_unshare+0x45b/0xa40 [ 737.254379][T15009] ? __pfx_ksys_unshare+0x10/0x10 [ 737.254423][T15009] ? syscall_user_dispatch+0x78/0x140 [ 737.254482][T15009] __x64_sys_unshare+0x31/0x40 [ 737.254521][T15009] do_syscall_64+0xcd/0x490 [ 737.254572][T15009] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 737.254602][T15009] RIP: 0033:0x7fe31e18e929 [ 737.254627][T15009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 737.254660][T15009] RSP: 002b:00007fe31f0c0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 737.254696][T15009] RAX: ffffffffffffffda RBX: 00007fe31e3b5fa0 RCX: 00007fe31e18e929 [ 737.254716][T15009] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 737.254735][T15009] RBP: 00007fe31e210b39 R08: 0000000000000000 R09: 0000000000000000 [ 737.254754][T15009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 737.254772][T15009] R13: 0000000000000000 R14: 00007fe31e3b5fa0 R15: 00007ffcf22df078 [ 737.254812][T15009] [ 739.878739][T15029] ALSA: mixer_oss: invalid OSS volume '0' [ 739.884639][T15029] ALSA: mixer_oss: invalid OSS volume '' [ 740.877873][T15038] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2073'. [ 742.593160][T15075] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input90 [ 743.347472][T15087] Invalid ELF header magic: != ELF [ 744.036507][T13460] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 1721 with max blocks 1 with error 117 [ 744.104134][T13460] EXT4-fs (sda1): This should not happen!! Data will be lost [ 744.104134][T13460] [ 744.941708][T15111] FAULT_INJECTION: forcing a failure. [ 744.941708][T15111] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 744.976457][T15111] CPU: 0 UID: 0 PID: 15111 Comm: syz.0.2089 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 744.976503][T15111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 744.976522][T15111] Call Trace: [ 744.976533][T15111] [ 744.976547][T15111] dump_stack_lvl+0x16c/0x1f0 [ 744.976603][T15111] should_fail_ex+0x512/0x640 [ 744.976658][T15111] _copy_to_user+0x32/0xd0 [ 744.976712][T15111] simple_read_from_buffer+0xcb/0x170 [ 744.976756][T15111] proc_fail_nth_read+0x197/0x270 [ 744.976796][T15111] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 744.976837][T15111] ? rw_verify_area+0xcf/0x680 [ 744.976876][T15111] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 744.976926][T15111] vfs_read+0x1e4/0xc60 [ 744.976975][T15111] ? __pfx___mutex_lock+0x10/0x10 [ 744.977026][T15111] ? __pfx_vfs_read+0x10/0x10 [ 744.977082][T15111] ? __fget_files+0x20e/0x3c0 [ 744.977139][T15111] ksys_read+0x12a/0x250 [ 744.977189][T15111] ? __pfx_ksys_read+0x10/0x10 [ 744.977259][T15111] do_syscall_64+0xcd/0x490 [ 744.977306][T15111] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 744.977339][T15111] RIP: 0033:0x7f51b1f8d33c [ 744.977364][T15111] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 744.977396][T15111] RSP: 002b:00007f51b2df7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 744.977425][T15111] RAX: ffffffffffffffda RBX: 00007f51b21b5fa0 RCX: 00007f51b1f8d33c [ 744.977455][T15111] RDX: 000000000000000f RSI: 00007f51b2df70a0 RDI: 0000000000000004 [ 744.977474][T15111] RBP: 00007f51b2df7090 R08: 0000000000000000 R09: 0000000000000000 [ 744.977493][T15111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 744.977511][T15111] R13: 0000000000000000 R14: 00007f51b21b5fa0 R15: 00007fffecfd0d88 [ 744.977552][T15111] [ 745.168007][ C0] vkms_vblank_simulate: vblank timer overrun [ 745.790087][T15122] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input91 [ 747.618941][T15159] FAULT_INJECTION: forcing a failure. [ 747.618941][T15159] name failslab, interval 1, probability 0, space 0, times 0 [ 747.645970][T15159] CPU: 1 UID: 0 PID: 15159 Comm: syz.2.2100 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 747.646015][T15159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 747.646035][T15159] Call Trace: [ 747.646046][T15159] [ 747.646059][T15159] dump_stack_lvl+0x16c/0x1f0 [ 747.646112][T15159] should_fail_ex+0x512/0x640 [ 747.646158][T15159] ? __kmalloc_noprof+0xbf/0x510 [ 747.646209][T15159] ? ima_write_template_field_data+0x5d/0x1f0 [ 747.646248][T15159] should_failslab+0xc2/0x120 [ 747.646280][T15159] __kmalloc_noprof+0xd2/0x510 [ 747.646338][T15159] ima_write_template_field_data+0x5d/0x1f0 [ 747.646385][T15159] ima_eventdigest_init_common+0x154/0x430 [ 747.646431][T15159] ? __pfx_ima_eventdigest_init_common+0x10/0x10 [ 747.646497][T15159] ? rcu_is_watching+0x12/0xc0 [ 747.646530][T15159] ? trace_kmalloc+0x2b/0xd0 [ 747.646562][T15159] ? __kmalloc_noprof+0x242/0x510 [ 747.646609][T15159] ? __print_lock_name+0xb1/0xe0 [ 747.646655][T15159] ima_alloc_init_template+0x3a0/0x720 [ 747.646719][T15159] ima_store_measurement+0x1eb/0x5c0 [ 747.646755][T15159] ? __pfx_ima_store_measurement+0x10/0x10 [ 747.646789][T15159] ? vfs_getxattr_alloc+0xec/0x340 [ 747.646844][T15159] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 747.646897][T15159] process_measurement+0x1ddb/0x23e0 [ 747.646969][T15159] ? __pfx_process_measurement+0x10/0x10 [ 747.647023][T15159] ? alloc_empty_file+0x73/0x1e0 [ 747.647053][T15159] ? hugetlb_file_setup+0x4cd/0x620 [ 747.647084][T15159] ? ksys_mmap_pgoff+0x189/0x5c0 [ 747.647114][T15159] ? __x64_sys_mmap+0x125/0x190 [ 747.647207][T15159] ima_file_mmap+0x1b1/0x1d0 [ 747.647252][T15159] ? __pfx_ima_file_mmap+0x10/0x10 [ 747.647306][T15159] security_mmap_file+0x88c/0x990 [ 747.647348][T15159] vm_mmap_pgoff+0xec/0x450 [ 747.647386][T15159] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 747.647414][T15159] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 747.647449][T15159] ? hugetlbfs_get_inode+0x31f/0x730 [ 747.647490][T15159] ksys_mmap_pgoff+0x1c8/0x5c0 [ 747.647527][T15159] __x64_sys_mmap+0x125/0x190 [ 747.647572][T15159] do_syscall_64+0xcd/0x490 [ 747.647629][T15159] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 747.647661][T15159] RIP: 0033:0x7f1671d8e929 [ 747.647686][T15159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 747.647718][T15159] RSP: 002b:00007f1672c11038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 747.647746][T15159] RAX: ffffffffffffffda RBX: 00007f1671fb5fa0 RCX: 00007f1671d8e929 [ 747.647766][T15159] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000 [ 747.647785][T15159] RBP: 00007f1671e10b39 R08: 0000000000000401 R09: 0000300000000000 [ 747.647805][T15159] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000 [ 747.647823][T15159] R13: 0000000000000000 R14: 00007f1671fb5fa0 R15: 00007ffe76661c88 [ 747.647862][T15159] [ 747.652769][ T30] audit: type=1804 audit(6045821617.425:7): pid=15159 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.2.2100" name="anon_hugepage" dev="hugetlbfs" ino=44238 res=0 errno=0 [ 748.106253][T15142] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117 [ 748.193202][T15142] EXT4-fs (sda1): This should not happen!! Data will be lost [ 748.193202][T15142] [ 748.482007][T15170] ALSA: mixer_oss: invalid OSS volume '0' [ 748.488190][T15170] ALSA: mixer_oss: invalid OSS volume '' [ 748.986728][T15178] FAULT_INJECTION: forcing a failure. [ 748.986728][T15178] name fail_futex, interval 1, probability 0, space 0, times 0 [ 749.040406][T15178] CPU: 0 UID: 0 PID: 15178 Comm: syz.1.2103 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 749.040450][T15178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 749.040469][T15178] Call Trace: [ 749.040480][T15178] [ 749.040492][T15178] dump_stack_lvl+0x16c/0x1f0 [ 749.040550][T15178] should_fail_ex+0x512/0x640 [ 749.040598][T15178] get_futex_key+0x1d0/0x1540 [ 749.040637][T15178] ? __pfx_get_futex_key+0x10/0x10 [ 749.040685][T15178] futex_wake+0xea/0x530 [ 749.040731][T15178] ? __pfx_futex_wake+0x10/0x10 [ 749.040778][T15178] ? errseq_sample+0x53/0x70 [ 749.040823][T15178] ? file_init_path+0x4fe/0x760 [ 749.040860][T15178] do_futex+0x1e3/0x350 [ 749.040898][T15178] ? __pfx_do_futex+0x10/0x10 [ 749.040934][T15178] ? fd_install+0x225/0x750 [ 749.040981][T15178] __x64_sys_futex+0x1e0/0x4c0 [ 749.041019][T15178] ? __sys_socket+0xac/0x260 [ 749.041055][T15178] ? __pfx___x64_sys_futex+0x10/0x10 [ 749.041092][T15178] ? xfd_validate_state+0x61/0x180 [ 749.041129][T15178] ? __pfx_do_writev+0x10/0x10 [ 749.041180][T15178] do_syscall_64+0xcd/0x490 [ 749.041228][T15178] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 749.041259][T15178] RIP: 0033:0x7fd51078e929 [ 749.041283][T15178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 749.041313][T15178] RSP: 002b:00007fd5115950e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 749.041342][T15178] RAX: ffffffffffffffda RBX: 00007fd5109b5fa8 RCX: 00007fd51078e929 [ 749.041363][T15178] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fd5109b5fac [ 749.041381][T15178] RBP: 00007fd5109b5fa0 R08: 00007fd511596000 R09: 0000000000000000 [ 749.041401][T15178] R10: 0000000000000008 R11: 0000000000000246 R12: 00007fd5109b5fac [ 749.041419][T15178] R13: 0000000000000000 R14: 00007ffcdc6934c0 R15: 00007ffcdc6935a8 [ 749.041457][T15178] [ 750.705614][ T30] audit: type=1800 audit(6045821620.469:8): pid=15206 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="" name="lu_gp_id" dev="configfs" ino=45462 res=0 errno=0 [ 752.441114][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 752.447584][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 753.672004][T15242] FAULT_INJECTION: forcing a failure. [ 753.672004][T15242] name failslab, interval 1, probability 0, space 0, times 0 [ 753.716448][T15242] CPU: 1 UID: 0 PID: 15242 Comm: syz.1.2116 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 753.716491][T15242] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 753.716510][T15242] Call Trace: [ 753.716523][T15242] [ 753.716535][T15242] dump_stack_lvl+0x16c/0x1f0 [ 753.716588][T15242] should_fail_ex+0x512/0x640 [ 753.716633][T15242] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 753.716688][T15242] should_failslab+0xc2/0x120 [ 753.716719][T15242] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 753.716779][T15242] ? __d_alloc+0x31/0xaa0 [ 753.716830][T15242] __d_alloc+0x31/0xaa0 [ 753.716875][T15242] ? __pfx_stack_trace_save+0x10/0x10 [ 753.716912][T15242] d_alloc+0x4a/0x1e0 [ 753.716963][T15242] d_alloc_parallel+0xe3/0x12e0 [ 753.716998][T15242] ? kasan_save_stack+0x33/0x60 [ 753.717045][T15242] ? kasan_save_free_info+0x3b/0x60 [ 753.717079][T15242] ? __kasan_slab_free+0x51/0x70 [ 753.717125][T15242] ? walk_component+0x1a5/0x5b0 [ 753.717163][T15242] ? link_path_walk+0x511/0xe20 [ 753.717200][T15242] ? path_openat+0x1b0/0x2cb0 [ 753.717242][T15242] ? do_sys_openat2+0x11b/0x1d0 [ 753.717284][T15242] ? __pfx_d_alloc_parallel+0x10/0x10 [ 753.717326][T15242] ? lockdep_init_map_type+0x5c/0x280 [ 753.717372][T15242] ? lockdep_init_map_type+0x5c/0x280 [ 753.717422][T15242] __lookup_slow+0x193/0x460 [ 753.717458][T15242] ? __pfx___lookup_slow+0x10/0x10 [ 753.717518][T15242] ? lookup_fast+0x156/0x610 [ 753.717561][T15242] walk_component+0x353/0x5b0 [ 753.717605][T15242] link_path_walk+0x627/0xe20 [ 753.717660][T15242] path_openat+0x1b0/0x2cb0 [ 753.717701][T15242] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 753.717747][T15242] ? __pfx_path_openat+0x10/0x10 [ 753.717816][T15242] ? __lock_acquire+0xb8a/0x1c90 [ 753.717862][T15242] do_filp_open+0x20b/0x470 [ 753.717910][T15242] ? __pfx_do_filp_open+0x10/0x10 [ 753.717968][T15242] ? __pfx_kfree_link+0x10/0x10 [ 753.718015][T15242] ? alloc_fd+0x471/0x7d0 [ 753.718068][T15242] do_sys_openat2+0x11b/0x1d0 [ 753.718102][T15242] ? __pfx_do_sys_openat2+0x10/0x10 [ 753.718150][T15242] __x64_sys_openat+0x174/0x210 [ 753.718185][T15242] ? __pfx___x64_sys_openat+0x10/0x10 [ 753.718236][T15242] do_syscall_64+0xcd/0x490 [ 753.718287][T15242] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 753.718319][T15242] RIP: 0033:0x7fd51078e929 [ 753.718345][T15242] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 753.718374][T15242] RSP: 002b:00007fd511553038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 753.718401][T15242] RAX: ffffffffffffffda RBX: 00007fd5109b6160 RCX: 00007fd51078e929 [ 753.718421][T15242] RDX: 0000000000000000 RSI: 0000200000000c00 RDI: ffffffffffffff9c [ 753.718441][T15242] RBP: 00007fd510810b39 R08: 0000000000000000 R09: 0000000000000000 [ 753.718459][T15242] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 753.718477][T15242] R13: 0000000000000000 R14: 00007fd5109b6160 R15: 00007ffcdc6935a8 [ 753.718517][T15242] [ 754.811739][T15262] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2121'. [ 755.934861][T15275] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2127'. [ 756.657834][T15289] FAULT_INJECTION: forcing a failure. [ 756.657834][T15289] name failslab, interval 1, probability 0, space 0, times 0 [ 756.705916][T15289] CPU: 0 UID: 0 PID: 15289 Comm: syz.4.2130 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 756.705959][T15289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 756.705974][T15289] Call Trace: [ 756.705982][T15289] [ 756.705991][T15289] dump_stack_lvl+0x16c/0x1f0 [ 756.706032][T15289] should_fail_ex+0x512/0x640 [ 756.706065][T15289] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 756.706101][T15289] should_failslab+0xc2/0x120 [ 756.706125][T15289] __kmalloc_cache_noprof+0x6a/0x3e0 [ 756.706157][T15289] ? ipv4_inetpeer_init+0x3f/0xb0 [ 756.706187][T15289] ? __pfx_ipv4_inetpeer_init+0x10/0x10 [ 756.706217][T15289] ipv4_inetpeer_init+0x3f/0xb0 [ 756.706245][T15289] ops_init+0x1df/0x5f0 [ 756.706287][T15289] setup_net+0x1ff/0x510 [ 756.706307][T15289] ? lockdep_init_map_type+0x5c/0x280 [ 756.706341][T15289] ? __pfx_setup_net+0x10/0x10 [ 756.706365][T15289] ? debug_mutex_init+0x37/0x70 [ 756.706391][T15289] copy_net_ns+0x2a6/0x5f0 [ 756.706418][T15289] create_new_namespaces+0x3ea/0xa90 [ 756.706451][T15289] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 756.706500][T15289] ksys_unshare+0x45b/0xa40 [ 756.706535][T15289] ? __pfx_ksys_unshare+0x10/0x10 [ 756.706568][T15289] ? syscall_user_dispatch+0x78/0x140 [ 756.706614][T15289] __x64_sys_unshare+0x31/0x40 [ 756.706644][T15289] do_syscall_64+0xcd/0x490 [ 756.706684][T15289] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 756.706709][T15289] RIP: 0033:0x7fe31e18e929 [ 756.706728][T15289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 756.706755][T15289] RSP: 002b:00007fe31f0c0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 756.706778][T15289] RAX: ffffffffffffffda RBX: 00007fe31e3b5fa0 RCX: 00007fe31e18e929 [ 756.706794][T15289] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 756.706810][T15289] RBP: 00007fe31e210b39 R08: 0000000000000000 R09: 0000000000000000 [ 756.706825][T15289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 756.706839][T15289] R13: 0000000000000000 R14: 00007fe31e3b5fa0 R15: 00007ffcf22df078 [ 756.706869][T15289] [ 757.563800][T15293] FAULT_INJECTION: forcing a failure. [ 757.563800][T15293] name failslab, interval 1, probability 0, space 0, times 0 [ 757.635954][T15293] CPU: 1 UID: 0 PID: 15293 Comm: syz.4.2131 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 757.636004][T15293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 757.636025][T15293] Call Trace: [ 757.636036][T15293] [ 757.636049][T15293] dump_stack_lvl+0x16c/0x1f0 [ 757.636104][T15293] should_fail_ex+0x512/0x640 [ 757.636145][T15293] ? __kmalloc_noprof+0xbf/0x510 [ 757.636190][T15293] ? ops_init+0x77/0x5f0 [ 757.636232][T15293] should_failslab+0xc2/0x120 [ 757.636259][T15293] __kmalloc_noprof+0xd2/0x510 [ 757.636298][T15293] ? lockdep_init_map_type+0x5c/0x280 [ 757.636346][T15293] ops_init+0x77/0x5f0 [ 757.636394][T15293] setup_net+0x1ff/0x510 [ 757.636417][T15293] ? lockdep_init_map_type+0x5c/0x280 [ 757.636456][T15293] ? __pfx_setup_net+0x10/0x10 [ 757.636492][T15293] ? debug_mutex_init+0x37/0x70 [ 757.636523][T15293] copy_net_ns+0x2a6/0x5f0 [ 757.636557][T15293] create_new_namespaces+0x3ea/0xa90 [ 757.636596][T15293] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 757.636630][T15293] ksys_unshare+0x45b/0xa40 [ 757.636668][T15293] ? __pfx_ksys_unshare+0x10/0x10 [ 757.636708][T15293] ? syscall_user_dispatch+0x78/0x140 [ 757.636762][T15293] __x64_sys_unshare+0x31/0x40 [ 757.636798][T15293] do_syscall_64+0xcd/0x490 [ 757.636844][T15293] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 757.636873][T15293] RIP: 0033:0x7fe31e18e929 [ 757.636896][T15293] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 757.636925][T15293] RSP: 002b:00007fe31f0c0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 757.636953][T15293] RAX: ffffffffffffffda RBX: 00007fe31e3b5fa0 RCX: 00007fe31e18e929 [ 757.636971][T15293] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 757.636989][T15293] RBP: 00007fe31e210b39 R08: 0000000000000000 R09: 0000000000000000 [ 757.637006][T15293] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 757.637023][T15293] R13: 0000000000000000 R14: 00007fe31e3b5fa0 R15: 00007ffcf22df078 [ 757.637059][T15293] [ 757.880506][T15295] FAULT_INJECTION: forcing a failure. [ 757.880506][T15295] name failslab, interval 1, probability 0, space 0, times 0 [ 757.893337][T15295] CPU: 1 UID: 0 PID: 15295 Comm: syz.1.2132 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 757.893380][T15295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 757.893401][T15295] Call Trace: [ 757.893412][T15295] [ 757.893424][T15295] dump_stack_lvl+0x16c/0x1f0 [ 757.893487][T15295] should_fail_ex+0x512/0x640 [ 757.893531][T15295] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 757.893585][T15295] should_failslab+0xc2/0x120 [ 757.893617][T15295] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 757.893664][T15295] ? do_raw_write_lock+0x11c/0x3a0 [ 757.893713][T15295] ? sock_alloc_inode+0x25/0x1c0 [ 757.893750][T15295] ? __pfx_sock_alloc_inode+0x10/0x10 [ 757.893782][T15295] sock_alloc_inode+0x25/0x1c0 [ 757.893813][T15295] alloc_inode+0x64/0x240 [ 757.893847][T15295] sock_alloc+0x40/0x280 [ 757.893877][T15295] __sock_create+0xc1/0x8d0 [ 757.893914][T15295] ? proc_create_reg+0xe3/0x180 [ 757.893948][T15295] inet_ctl_sock_create+0x94/0x230 [ 757.893992][T15295] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 757.894033][T15295] ? lockdep_init_map_type+0x5c/0x280 [ 757.894078][T15295] ? lockdep_init_map_type+0x5c/0x280 [ 757.894124][T15295] ? __pfx_igmp_net_init+0x10/0x10 [ 757.894169][T15295] igmp_net_init+0xd0/0x1a0 [ 757.894216][T15295] ops_init+0x1df/0x5f0 [ 757.894270][T15295] setup_net+0x1ff/0x510 [ 757.894298][T15295] ? lockdep_init_map_type+0x5c/0x280 [ 757.894340][T15295] ? __pfx_setup_net+0x10/0x10 [ 757.894372][T15295] ? debug_mutex_init+0x37/0x70 [ 757.894407][T15295] copy_net_ns+0x2a6/0x5f0 [ 757.894444][T15295] create_new_namespaces+0x3ea/0xa90 [ 757.894495][T15295] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 757.894534][T15295] ksys_unshare+0x45b/0xa40 [ 757.894576][T15295] ? __pfx_ksys_unshare+0x10/0x10 [ 757.894619][T15295] ? xfd_validate_state+0x61/0x180 [ 757.894672][T15295] __x64_sys_unshare+0x31/0x40 [ 757.894714][T15295] do_syscall_64+0xcd/0x490 [ 757.894766][T15295] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 757.894798][T15295] RIP: 0033:0x7fd51078e929 [ 757.894824][T15295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 757.894856][T15295] RSP: 002b:00007fd511595038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 757.894886][T15295] RAX: ffffffffffffffda RBX: 00007fd5109b5fa0 RCX: 00007fd51078e929 [ 757.894907][T15295] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 757.894926][T15295] RBP: 00007fd510810b39 R08: 0000000000000000 R09: 0000000000000000 [ 757.894945][T15295] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 757.894963][T15295] R13: 0000000000000000 R14: 00007fd5109b5fa0 R15: 00007ffcdc6935a8 [ 757.895004][T15295] [ 757.895019][T15295] socket: no more sockets [ 758.285934][T15295] Failed to initialize the IGMP autojoin socket (err -23) [ 758.604796][T15299] ALSA: mixer_oss: invalid OSS volume '0' [ 758.610812][T15299] ALSA: mixer_oss: invalid OSS volume '' [ 762.886842][T13460] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117 [ 762.925843][T13460] EXT4-fs (sda1): This should not happen!! Data will be lost [ 762.925843][T13460] [ 763.367058][T10151] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 1724 with max blocks 2 with error 117 [ 763.367184][T10151] EXT4-fs (sda1): This should not happen!! Data will be lost [ 763.367184][T10151] [ 763.368837][T10151] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 1728 with max blocks 1 with error 117 [ 763.368878][T10151] EXT4-fs (sda1): This should not happen!! Data will be lost [ 763.368878][T10151] [ 763.774664][T15368] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input92 [ 764.793303][T15376] ALSA: mixer_oss: invalid OSS volume '0' [ 764.799364][T15376] ALSA: mixer_oss: invalid OSS volume '' [ 765.088575][T15373] random: crng reseeded on system resumption [ 765.561477][T15380] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2150'. [ 766.809098][T15388] ALSA: mixer_oss: invalid OSS volume '0' [ 767.150056][T15388] ALSA: mixer_oss: invalid OSS volume '' [ 768.233160][T15415] FAULT_INJECTION: forcing a failure. [ 768.233160][T15415] name failslab, interval 1, probability 0, space 0, times 0 [ 768.246258][T15415] CPU: 1 UID: 0 PID: 15415 Comm: syz.1.2158 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 768.246302][T15415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 768.246322][T15415] Call Trace: [ 768.246333][T15415] [ 768.246345][T15415] dump_stack_lvl+0x16c/0x1f0 [ 768.246398][T15415] should_fail_ex+0x512/0x640 [ 768.246443][T15415] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 768.246497][T15415] should_failslab+0xc2/0x120 [ 768.246529][T15415] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 768.246577][T15415] ? security_socket_post_create+0x21d/0x260 [ 768.246611][T15415] ? __d_alloc+0x31/0xaa0 [ 768.246666][T15415] __d_alloc+0x31/0xaa0 [ 768.246729][T15415] d_alloc_pseudo+0x1c/0xc0 [ 768.246765][T15415] alloc_file_pseudo+0xcf/0x230 [ 768.246804][T15415] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 768.246838][T15415] ? alloc_fd+0x471/0x7d0 [ 768.246887][T15415] sock_alloc_file+0x50/0x210 [ 768.246918][T15415] __sys_socket+0x1c0/0x260 [ 768.246956][T15415] ? __pfx___sys_socket+0x10/0x10 [ 768.246995][T15415] ? xfd_validate_state+0x61/0x180 [ 768.247035][T15415] ? __pfx_do_writev+0x10/0x10 [ 768.247086][T15415] __x64_sys_socket+0x72/0xb0 [ 768.247123][T15415] ? lockdep_hardirqs_on+0x7c/0x110 [ 768.247167][T15415] do_syscall_64+0xcd/0x490 [ 768.247212][T15415] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 768.247244][T15415] RIP: 0033:0x7fd51078e929 [ 768.247272][T15415] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 768.247305][T15415] RSP: 002b:00007fd511595038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 768.247335][T15415] RAX: ffffffffffffffda RBX: 00007fd5109b5fa0 RCX: 00007fd51078e929 [ 768.247357][T15415] RDX: 0000000000000100 RSI: 0000000000000801 RDI: 0000000000000002 [ 768.247377][T15415] RBP: 00007fd510810b39 R08: 0000000000000000 R09: 0000000000000000 [ 768.247396][T15415] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 768.247415][T15415] R13: 0000000000000000 R14: 00007fd5109b5fa0 R15: 00007ffcdc6935a8 [ 768.247456][T15415] [ 768.463177][ C1] vkms_vblank_simulate: vblank timer overrun [ 768.796903][T15423] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2159'. [ 769.496053][T15434] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input93 [ 770.182203][T15438] FAULT_INJECTION: forcing a failure. [ 770.182203][T15438] name failslab, interval 1, probability 0, space 0, times 0 [ 770.257595][T15438] CPU: 1 UID: 0 PID: 15438 Comm: syz.0.2163 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 770.257645][T15438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 770.257666][T15438] Call Trace: [ 770.257678][T15438] [ 770.257692][T15438] dump_stack_lvl+0x16c/0x1f0 [ 770.257752][T15438] should_fail_ex+0x512/0x640 [ 770.257799][T15438] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 770.257857][T15438] should_failslab+0xc2/0x120 [ 770.257890][T15438] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 770.257941][T15438] ? do_raw_write_lock+0x11c/0x3a0 [ 770.257993][T15438] ? sock_alloc_inode+0x25/0x1c0 [ 770.258033][T15438] ? __pfx_sock_alloc_inode+0x10/0x10 [ 770.258067][T15438] sock_alloc_inode+0x25/0x1c0 [ 770.258101][T15438] alloc_inode+0x64/0x240 [ 770.258136][T15438] sock_alloc+0x40/0x280 [ 770.258178][T15438] __sock_create+0xc1/0x8d0 [ 770.258219][T15438] ? proc_create_reg+0xe3/0x180 [ 770.258257][T15438] inet_ctl_sock_create+0x94/0x230 [ 770.258304][T15438] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 770.258347][T15438] ? lockdep_init_map_type+0x5c/0x280 [ 770.258396][T15438] ? lockdep_init_map_type+0x5c/0x280 [ 770.258445][T15438] ? __pfx_igmp_net_init+0x10/0x10 [ 770.258495][T15438] igmp_net_init+0xd0/0x1a0 [ 770.258545][T15438] ops_init+0x1df/0x5f0 [ 770.258609][T15438] setup_net+0x1ff/0x510 [ 770.258638][T15438] ? lockdep_init_map_type+0x5c/0x280 [ 770.258683][T15438] ? __pfx_setup_net+0x10/0x10 [ 770.258717][T15438] ? debug_mutex_init+0x37/0x70 [ 770.258753][T15438] copy_net_ns+0x2a6/0x5f0 [ 770.258793][T15438] create_new_namespaces+0x3ea/0xa90 [ 770.258841][T15438] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 770.258883][T15438] ksys_unshare+0x45b/0xa40 [ 770.258929][T15438] ? __pfx_ksys_unshare+0x10/0x10 [ 770.258977][T15438] ? syscall_user_dispatch+0x78/0x140 [ 770.259040][T15438] __x64_sys_unshare+0x31/0x40 [ 770.259085][T15438] do_syscall_64+0xcd/0x490 [ 770.259141][T15438] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 770.259184][T15438] RIP: 0033:0x7f51b1f8e929 [ 770.259213][T15438] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 770.259247][T15438] RSP: 002b:00007f51b2df7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 770.259281][T15438] RAX: ffffffffffffffda RBX: 00007f51b21b5fa0 RCX: 00007f51b1f8e929 [ 770.259304][T15438] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 770.259324][T15438] RBP: 00007f51b2010b39 R08: 0000000000000000 R09: 0000000000000000 [ 770.259345][T15438] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 770.259365][T15438] R13: 0000000000000000 R14: 00007f51b21b5fa0 R15: 00007fffecfd0d88 [ 770.259407][T15438] [ 770.545959][T15438] socket: no more sockets [ 770.550385][T15438] Failed to initialize the IGMP autojoin socket (err -23) [ 771.663405][T15448] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2166'. [ 773.140143][T15475] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input94 [ 776.784236][T15522] vhci_hcd: invalid port number 16 [ 776.800024][T15522] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 776.854895][T15524] Invalid ELF header magic: != ELF [ 778.083105][T15535] Process accounting resumed [ 779.886502][T15566] FAULT_INJECTION: forcing a failure. [ 779.886502][T15566] name failslab, interval 1, probability 0, space 0, times 0 [ 779.886551][T15566] CPU: 1 UID: 0 PID: 15566 Comm: syz.4.2190 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 779.886592][T15566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 779.886611][T15566] Call Trace: [ 779.886621][T15566] [ 779.886635][T15566] dump_stack_lvl+0x16c/0x1f0 [ 779.886690][T15566] should_fail_ex+0x512/0x640 [ 779.886737][T15566] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 779.886792][T15566] should_failslab+0xc2/0x120 [ 779.886823][T15566] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 779.886873][T15566] ? __d_alloc+0x31/0xaa0 [ 779.886928][T15566] __d_alloc+0x31/0xaa0 [ 779.886982][T15566] d_alloc_pseudo+0x1c/0xc0 [ 779.887017][T15566] alloc_file_pseudo+0xcf/0x230 [ 779.887054][T15566] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 779.887100][T15566] ? alloc_fd+0x471/0x7d0 [ 779.887145][T15566] sock_alloc_file+0x50/0x210 [ 779.887175][T15566] __sys_socket+0x1c0/0x260 [ 779.887212][T15566] ? __pfx___sys_socket+0x10/0x10 [ 779.887247][T15566] ? xfd_validate_state+0x61/0x180 [ 779.887294][T15566] ? __pfx_ksys_write+0x10/0x10 [ 779.887345][T15566] __x64_sys_socket+0x72/0xb0 [ 779.887379][T15566] ? lockdep_hardirqs_on+0x7c/0x110 [ 779.887424][T15566] do_syscall_64+0xcd/0x490 [ 779.887471][T15566] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 779.887502][T15566] RIP: 0033:0x7fe31e18e929 [ 779.887525][T15566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 779.887557][T15566] RSP: 002b:00007fe31f0c0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 779.887585][T15566] RAX: ffffffffffffffda RBX: 00007fe31e3b5fa0 RCX: 00007fe31e18e929 [ 779.887605][T15566] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000025 [ 779.887622][T15566] RBP: 00007fe31e210b39 R08: 0000000000000000 R09: 0000000000000000 [ 779.887640][T15566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 779.887657][T15566] R13: 0000000000000000 R14: 00007fe31e3b5fa0 R15: 00007ffcf22df078 [ 779.887694][T15566] [ 780.848848][T15577] FAULT_INJECTION: forcing a failure. [ 780.848848][T15577] name failslab, interval 1, probability 0, space 0, times 0 [ 780.885880][T15577] CPU: 1 UID: 0 PID: 15577 Comm: syz.4.2192 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 780.885929][T15577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 780.885949][T15577] Call Trace: [ 780.885960][T15577] [ 780.885973][T15577] dump_stack_lvl+0x16c/0x1f0 [ 780.886028][T15577] should_fail_ex+0x512/0x640 [ 780.886076][T15577] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 780.886133][T15577] should_failslab+0xc2/0x120 [ 780.886166][T15577] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 780.886217][T15577] ? __proc_create+0xc3/0x8c0 [ 780.886267][T15577] ? __proc_create+0x2ce/0x8c0 [ 780.886325][T15577] __proc_create+0x2ce/0x8c0 [ 780.886391][T15577] ? __pfx___proc_create+0x10/0x10 [ 780.886452][T15577] ? _raw_write_unlock+0x28/0x50 [ 780.886499][T15577] ? proc_register+0x314/0x5f0 [ 780.886555][T15577] proc_create_reg+0x7d/0x180 [ 780.886588][T15577] ? __pfx_snmp_seq_show+0x10/0x10 [ 780.886634][T15577] proc_create_net_single+0x86/0x170 [ 780.886667][T15577] ? __pfx_proc_create_net_single+0x10/0x10 [ 780.886697][T15577] ? __pfx_proc_create_net_data+0x10/0x10 [ 780.886762][T15577] ? __pfx_ip_proc_init_net+0x10/0x10 [ 780.886808][T15577] ip_proc_init_net+0xe8/0x1a0 [ 780.886853][T15577] ops_init+0x1df/0x5f0 [ 780.886912][T15577] setup_net+0x1ff/0x510 [ 780.886940][T15577] ? lockdep_init_map_type+0x5c/0x280 [ 780.886985][T15577] ? __pfx_setup_net+0x10/0x10 [ 780.887018][T15577] ? debug_mutex_init+0x37/0x70 [ 780.887053][T15577] copy_net_ns+0x2a6/0x5f0 [ 780.887092][T15577] create_new_namespaces+0x3ea/0xa90 [ 780.887138][T15577] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 780.887179][T15577] ksys_unshare+0x45b/0xa40 [ 780.887224][T15577] ? __pfx_ksys_unshare+0x10/0x10 [ 780.887271][T15577] ? syscall_user_dispatch+0x78/0x140 [ 780.887330][T15577] __x64_sys_unshare+0x31/0x40 [ 780.887381][T15577] do_syscall_64+0xcd/0x490 [ 780.887436][T15577] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 780.887470][T15577] RIP: 0033:0x7fe31e18e929 [ 780.887495][T15577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 780.887529][T15577] RSP: 002b:00007fe31f0c0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 780.887561][T15577] RAX: ffffffffffffffda RBX: 00007fe31e3b5fa0 RCX: 00007fe31e18e929 [ 780.887583][T15577] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 780.887603][T15577] RBP: 00007fe31e210b39 R08: 0000000000000000 R09: 0000000000000000 [ 780.887622][T15577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 780.887642][T15577] R13: 0000000000000000 R14: 00007fe31e3b5fa0 R15: 00007ffcf22df078 [ 780.887686][T15577] [ 781.968925][T15591] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input95 [ 783.121629][T15614] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5) [ 783.629684][T15624] random: crng reseeded on system resumption [ 784.453869][T15607] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_rx_wq": -EINTR [ 785.404560][T15653] FAULT_INJECTION: forcing a failure. [ 785.404560][T15653] name failslab, interval 1, probability 0, space 0, times 0 [ 785.452713][T15653] CPU: 0 UID: 0 PID: 15653 Comm: syz.4.2204 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 785.452761][T15653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 785.452782][T15653] Call Trace: [ 785.452793][T15653] [ 785.452806][T15653] dump_stack_lvl+0x16c/0x1f0 [ 785.452859][T15653] should_fail_ex+0x512/0x640 [ 785.452904][T15653] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 785.452963][T15653] should_failslab+0xc2/0x120 [ 785.452994][T15653] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 785.453042][T15653] ? __proc_create+0xc3/0x8c0 [ 785.453090][T15653] ? __proc_create+0x2ce/0x8c0 [ 785.453145][T15653] __proc_create+0x2ce/0x8c0 [ 785.453195][T15653] ? __pfx___proc_create+0x10/0x10 [ 785.453251][T15653] ? _raw_write_unlock+0x28/0x50 [ 785.453294][T15653] ? proc_register+0x314/0x5f0 [ 785.453348][T15653] proc_create_reg+0x7d/0x180 [ 785.453382][T15653] proc_create_net_data+0x8e/0x1b0 [ 785.453434][T15653] ? __pfx_proc_create_net_data+0x10/0x10 [ 785.453485][T15653] ? lockdep_init_map_type+0x5c/0x280 [ 785.453537][T15653] ? lockdep_init_map_type+0x5c/0x280 [ 785.453585][T15653] ? __pfx_igmp_net_init+0x10/0x10 [ 785.453634][T15653] igmp_net_init+0xab/0x1a0 [ 785.453685][T15653] ops_init+0x1df/0x5f0 [ 785.453742][T15653] setup_net+0x1ff/0x510 [ 785.453771][T15653] ? lockdep_init_map_type+0x5c/0x280 [ 785.453817][T15653] ? __pfx_setup_net+0x10/0x10 [ 785.453851][T15653] ? debug_mutex_init+0x37/0x70 [ 785.453888][T15653] copy_net_ns+0x2a6/0x5f0 [ 785.453927][T15653] create_new_namespaces+0x3ea/0xa90 [ 785.453979][T15653] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 785.454022][T15653] ksys_unshare+0x45b/0xa40 [ 785.454067][T15653] ? __pfx_ksys_unshare+0x10/0x10 [ 785.454113][T15653] ? syscall_user_dispatch+0x78/0x140 [ 785.454176][T15653] __x64_sys_unshare+0x31/0x40 [ 785.454219][T15653] do_syscall_64+0xcd/0x490 [ 785.454273][T15653] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 785.454308][T15653] RIP: 0033:0x7fe31e18e929 [ 785.454335][T15653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 785.454368][T15653] RSP: 002b:00007fe31f0c0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 785.454401][T15653] RAX: ffffffffffffffda RBX: 00007fe31e3b5fa0 RCX: 00007fe31e18e929 [ 785.454423][T15653] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 785.454443][T15653] RBP: 00007fe31e210b39 R08: 0000000000000000 R09: 0000000000000000 [ 785.454464][T15653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 785.454484][T15653] R13: 0000000000000000 R14: 00007fe31e3b5fa0 R15: 00007ffcf22df078 [ 785.454525][T15653] [ 786.776661][T15662] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input96 [ 787.897613][T15683] ALSA: mixer_oss: invalid OSS volume '0' [ 787.903506][T15683] ALSA: mixer_oss: invalid OSS volume '' [ 789.409415][T12625] Bluetooth: hci3: unexpected event 0x04 length: 46 > 10 [ 791.106645][T15725] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2220'. [ 791.475973][T12625] Bluetooth: hci3: command 0x0c1a tx timeout [ 791.783279][T15725] bond0: (slave bond_slave_1): Releasing backup interface [ 793.103074][T15763] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input97 [ 793.825122][ T6858] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 1732 with max blocks 2 with error 117 [ 793.873087][ T6858] EXT4-fs (sda1): This should not happen!! Data will be lost [ 793.873087][ T6858] [ 795.076668][T15798] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 795.082861][T15798] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 795.109513][T15798] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 795.427548][T15798] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 795.427780][T15798] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 796.036055][T15803] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input98 [ 797.180600][T12625] Bluetooth: hci3: command 0x0c1a tx timeout [ 797.188583][T12625] Bluetooth: hci1: command 0x0c1a tx timeout [ 797.194737][T12625] Bluetooth: hci0: command 0x0c1a tx timeout [ 797.475892][ T6857] Bluetooth: hci2: command 0x0406 tx timeout [ 798.310718][T15824] mkiss: ax0: crc mode is auto. [ 798.690745][ C0] unchecked MSR access error: WRMSR to 0x418 (tried to write 0x0000000000000322) at rIP: 0xffffffff8163eaa9 (__mcheck_cpu_init_clear_banks+0x109/0x1f0) [ 798.706140][ C0] Call Trace: [ 798.709455][ C0] [ 798.712329][ C0] ? __pfx_mce_cpu_restart+0x10/0x10 [ 798.717675][ C0] mce_cpu_restart+0x98/0xb0 [ 798.722310][ C0] __flush_smp_call_function_queue+0x27d/0x8c0 [ 798.728525][ C0] __sysvec_call_function_single+0x87/0x400 [ 798.734461][ C0] sysvec_call_function_single+0x9f/0xc0 [ 798.740149][ C0] [ 798.743116][ C0] [ 798.746073][ C0] asm_sysvec_call_function_single+0x1a/0x20 [ 798.752087][ C0] RIP: 0010:pv_native_safe_halt+0xf/0x20 [ 798.757768][ C0] Code: 4b 75 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d f3 5e 2d 00 fb f4 0c fb 02 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 [ 798.777422][ C0] RSP: 0000:ffffffff8e207e08 EFLAGS: 000002c2 [ 798.783543][ C0] RAX: 0000000000537d75 RBX: 0000000000000000 RCX: ffffffff8b7cac29 [ 798.791554][ C0] RDX: 0000000000000000 RSI: ffffffff8de13876 RDI: ffffffff8c1565a0 [ 798.799647][ C0] RBP: fffffbfff1c52ef0 R08: 0000000000000001 R09: ffffed1017086645 [ 798.807646][ C0] R10: ffff8880b843322b R11: 0000000000000001 R12: 0000000000000000 [ 798.815640][ C0] R13: ffffffff8e297780 R14: ffffffff90a82d50 R15: 0000000000000000 [ 798.823649][ C0] ? ct_kernel_exit+0x139/0x190 [ 798.828560][ C0] default_idle+0x13/0x20 [ 798.832922][ C0] default_idle_call+0x6d/0xb0 [ 798.837727][ C0] do_idle+0x391/0x510 [ 798.841838][ C0] ? __pfx_do_idle+0x10/0x10 [ 798.846459][ C0] ? trace_sched_exit_tp+0x31/0x130 [ 798.851695][ C0] cpu_startup_entry+0x4f/0x60 [ 798.856490][ C0] rest_init+0x16b/0x2b0 [ 798.860760][ C0] ? acpi_subsystem_init+0x133/0x180 [ 798.866073][ C0] ? __pfx_x86_late_time_init+0x10/0x10 [ 798.871658][ C0] start_kernel+0x3ee/0x4d0 [ 798.876196][ C0] x86_64_start_reservations+0x18/0x30 [ 798.881684][ C0] x86_64_start_kernel+0x130/0x190 [ 798.886840][ C0] common_startup_64+0x13e/0x148 [ 798.891831][ C0] [ 799.256343][ T6857] Bluetooth: hci3: command 0x0c1a tx timeout [ 799.900184][T15836] FAULT_INJECTION: forcing a failure. [ 799.900184][T15836] name fail_futex, interval 1, probability 0, space 0, times 0 [ 799.990973][T15836] CPU: 1 UID: 0 PID: 15836 Comm: syz.4.2239 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 799.991007][T15836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 799.991023][T15836] Call Trace: [ 799.991031][T15836] [ 799.991040][T15836] dump_stack_lvl+0x16c/0x1f0 [ 799.991079][T15836] should_fail_ex+0x512/0x640 [ 799.991118][T15836] get_futex_key+0x1d0/0x1540 [ 799.991149][T15836] ? __pfx_get_futex_key+0x10/0x10 [ 799.991173][T15836] ? netlink_recvmsg+0x6b6/0xa90 [ 799.991198][T15836] ? __pfx_netlink_recvmsg+0x10/0x10 [ 799.991228][T15836] futex_wake+0xea/0x530 [ 799.991264][T15836] ? __pfx_futex_wake+0x10/0x10 [ 799.991299][T15836] ? __sys_recvfrom+0x26c/0x310 [ 799.991333][T15836] ? __pfx___sys_recvfrom+0x10/0x10 [ 799.991369][T15836] do_futex+0x1e3/0x350 [ 799.991397][T15836] ? __pfx_do_futex+0x10/0x10 [ 799.991424][T15836] ? find_held_lock+0x2b/0x80 [ 799.991453][T15836] __x64_sys_futex+0x1e0/0x4c0 [ 799.991495][T15836] ? __pfx___x64_sys_futex+0x10/0x10 [ 799.991535][T15836] do_syscall_64+0xcd/0x490 [ 799.991572][T15836] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 799.991596][T15836] RIP: 0033:0x7fe31e18e929 [ 799.991614][T15836] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 799.991637][T15836] RSP: 002b:00007fe31f09f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 799.991659][T15836] RAX: ffffffffffffffda RBX: 00007fe31e3b6088 RCX: 00007fe31e18e929 [ 799.991674][T15836] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe31e3b608c [ 799.991689][T15836] RBP: 00007fe31e3b6080 R08: 00007fe31f0c1000 R09: 0000000000000000 [ 799.991703][T15836] R10: 0000000000000015 R11: 0000000000000246 R12: 00007fe31e3b608c [ 799.991718][T15836] R13: 0000000000000000 R14: 00007ffcf22def90 R15: 00007ffcf22df078 [ 799.991745][T15836] [ 800.463356][T15836] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2239'. [ 800.612797][T13457] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117 [ 800.631953][T13457] EXT4-fs (sda1): This should not happen!! Data will be lost [ 800.631953][T13457] [ 800.675594][T13457] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 1737 with max blocks 1 with error 117 [ 800.689225][T13457] EXT4-fs (sda1): This should not happen!! Data will be lost [ 800.689225][T13457] [ 800.856056][T15843] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input99 [ 801.641752][T15855] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2244'. [ 801.713584][T15855] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2244'. [ 801.876060][T15858] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2246'. [ 802.027565][T15858] team0: Port device team_slave_1 removed [ 802.626668][T15870] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input100 [ 804.304461][T15885] ubi0: attaching mtd0 [ 804.416680][T15884] EXT4-fs error (device sda1): ext4_discard_preallocations:5601: comm syz.0.2253: Error -117 reading block bitmap for 5 [ 804.440624][T15885] ubi0: scanning is finished [ 804.466264][T15885] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 804.788283][T15885] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 805.602638][T15911] FAULT_INJECTION: forcing a failure. [ 805.602638][T15911] name failslab, interval 1, probability 0, space 0, times 0 [ 805.602698][T15911] CPU: 1 UID: 0 PID: 15911 Comm: syz.0.2257 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 805.602735][T15911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 805.602750][T15911] Call Trace: [ 805.602758][T15911] [ 805.602767][T15911] dump_stack_lvl+0x16c/0x1f0 [ 805.602809][T15911] should_fail_ex+0x512/0x640 [ 805.602842][T15911] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 805.602883][T15911] should_failslab+0xc2/0x120 [ 805.602906][T15911] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 805.602955][T15911] ? __proc_create+0xc3/0x8c0 [ 805.603006][T15911] ? __proc_create+0x2ce/0x8c0 [ 805.603066][T15911] __proc_create+0x2ce/0x8c0 [ 805.603120][T15911] ? __pfx___proc_create+0x10/0x10 [ 805.603180][T15911] ? _raw_spin_unlock+0x28/0x50 [ 805.603238][T15911] proc_create_reg+0x7d/0x180 [ 805.603276][T15911] proc_create_net_data+0x8e/0x1b0 [ 805.603333][T15911] ? __pfx_proc_create_net_data+0x10/0x10 [ 805.603390][T15911] ? mptcp_net_init+0x4d0/0x620 [ 805.603431][T15911] ? udp_pernet_init+0x6d3/0x910 [ 805.603487][T15911] ? __pfx_udplite4_proc_init_net+0x10/0x10 [ 805.603532][T15911] udplite4_proc_init_net+0x57/0x80 [ 805.603586][T15911] ops_init+0x1df/0x5f0 [ 805.603652][T15911] setup_net+0x1ff/0x510 [ 805.603679][T15911] ? lockdep_init_map_type+0x5c/0x280 [ 805.603730][T15911] ? __pfx_setup_net+0x10/0x10 [ 805.603761][T15911] ? debug_mutex_init+0x37/0x70 [ 805.603796][T15911] copy_net_ns+0x2a6/0x5f0 [ 805.603832][T15911] create_new_namespaces+0x3ea/0xa90 [ 805.603876][T15911] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 805.603915][T15911] ksys_unshare+0x45b/0xa40 [ 805.603975][T15911] ? __pfx_ksys_unshare+0x10/0x10 [ 805.604021][T15911] ? syscall_user_dispatch+0x78/0x140 [ 805.604083][T15911] __x64_sys_unshare+0x31/0x40 [ 805.604126][T15911] do_syscall_64+0xcd/0x490 [ 805.604180][T15911] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 805.604213][T15911] RIP: 0033:0x7f51b1f8e929 [ 805.604240][T15911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 805.604274][T15911] RSP: 002b:00007f51b2df7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 805.604305][T15911] RAX: ffffffffffffffda RBX: 00007f51b21b5fa0 RCX: 00007f51b1f8e929 [ 805.604328][T15911] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 805.604348][T15911] RBP: 00007f51b2010b39 R08: 0000000000000000 R09: 0000000000000000 [ 805.604368][T15911] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 805.604387][T15911] R13: 0000000000000000 R14: 00007f51b21b5fa0 R15: 00007fffecfd0d88 [ 805.604429][T15911] [ 805.641477][T15912] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input101 [ 807.071693][T15936] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 807.174629][T15936] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 807.236514][T15936] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 807.300011][T15936] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 807.306336][T15936] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 807.853032][T15953] FAULT_INJECTION: forcing a failure. [ 807.853032][T15953] name fail_futex, interval 1, probability 0, space 0, times 0 [ 807.944139][T15953] CPU: 1 UID: 0 PID: 15953 Comm: syz.2.2266 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 807.944183][T15953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 807.944198][T15953] Call Trace: [ 807.944206][T15953] [ 807.944216][T15953] dump_stack_lvl+0x16c/0x1f0 [ 807.944257][T15953] should_fail_ex+0x512/0x640 [ 807.944297][T15953] get_futex_key+0x1d0/0x1540 [ 807.944329][T15953] ? __pfx_get_futex_key+0x10/0x10 [ 807.944353][T15953] ? netlink_recvmsg+0x6b6/0xa90 [ 807.944380][T15953] ? __pfx_netlink_recvmsg+0x10/0x10 [ 807.944409][T15953] futex_wake+0xea/0x530 [ 807.944446][T15953] ? __pfx_futex_wake+0x10/0x10 [ 807.944485][T15953] ? __sys_recvfrom+0x26c/0x310 [ 807.944520][T15953] ? __pfx___sys_recvfrom+0x10/0x10 [ 807.944557][T15953] do_futex+0x1e3/0x350 [ 807.944586][T15953] ? __pfx_do_futex+0x10/0x10 [ 807.944615][T15953] ? find_held_lock+0x2b/0x80 [ 807.944644][T15953] __x64_sys_futex+0x1e0/0x4c0 [ 807.944677][T15953] ? __pfx___x64_sys_futex+0x10/0x10 [ 807.944727][T15953] do_syscall_64+0xcd/0x490 [ 807.944767][T15953] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 807.944793][T15953] RIP: 0033:0x7f1671d8e929 [ 807.944812][T15953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 807.944836][T15953] RSP: 002b:00007f1672bf00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 807.944859][T15953] RAX: ffffffffffffffda RBX: 00007f1671fb6088 RCX: 00007f1671d8e929 [ 807.944875][T15953] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1671fb608c [ 807.944891][T15953] RBP: 00007f1671fb6080 R08: 00007f1672c12000 R09: 0000000000000000 [ 807.944907][T15953] R10: 0000000000000015 R11: 0000000000000246 R12: 00007f1671fb608c [ 807.944922][T15953] R13: 0000000000000000 R14: 00007ffe76661ba0 R15: 00007ffe76661c88 [ 807.944952][T15953] [ 808.241886][T15953] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2266'. [ 809.096877][ T6857] Bluetooth: hci0: command 0x0c1a tx timeout [ 809.236165][ T6857] Bluetooth: hci1: command 0x0c1a tx timeout [ 809.315999][ T6857] Bluetooth: hci2: command 0x0406 tx timeout [ 809.322068][T12625] Bluetooth: hci3: command 0x0c1a tx timeout [ 809.520915][T15977] FAULT_INJECTION: forcing a failure. [ 809.520915][T15977] name failslab, interval 1, probability 0, space 0, times 0 [ 809.569172][T15977] CPU: 1 UID: 0 PID: 15977 Comm: syz.1.2272 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 809.569220][T15977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 809.569241][T15977] Call Trace: [ 809.569252][T15977] [ 809.569265][T15977] dump_stack_lvl+0x16c/0x1f0 [ 809.569323][T15977] should_fail_ex+0x512/0x640 [ 809.569368][T15977] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 809.569416][T15977] should_failslab+0xc2/0x120 [ 809.569448][T15977] __kmalloc_cache_noprof+0x6a/0x3e0 [ 809.569492][T15977] ? vsnprintf+0x318/0x1160 [ 809.569534][T15977] ? __alloc_workqueue+0xda2/0x1810 [ 809.569590][T15977] __alloc_workqueue+0xda2/0x1810 [ 809.569631][T15977] ? __pfx_vsnprintf+0x10/0x10 [ 809.569675][T15977] ? lockdep_hardirqs_on+0x7c/0x110 [ 809.569722][T15977] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 809.569771][T15977] alloc_workqueue+0xd2/0x200 [ 809.569811][T15977] ? __pfx_alloc_workqueue+0x10/0x10 [ 809.569880][T15977] ? __pfx___debug_object_init+0x10/0x10 [ 809.569927][T15977] nci_register_device+0x511/0xb80 [ 809.569976][T15977] ? __pfx_nci_register_device+0x10/0x10 [ 809.570028][T15977] ? lockdep_init_map_type+0x5c/0x280 [ 809.570083][T15977] virtual_ncidev_open+0x141/0x220 [ 809.570126][T15977] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 809.570166][T15977] misc_open+0x35d/0x420 [ 809.570210][T15977] ? __pfx_misc_open+0x10/0x10 [ 809.570250][T15977] chrdev_open+0x231/0x6a0 [ 809.570302][T15977] ? __pfx_apparmor_file_open+0x10/0x10 [ 809.570344][T15977] ? __pfx_chrdev_open+0x10/0x10 [ 809.570399][T15977] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 809.570452][T15977] do_dentry_open+0x744/0x1c10 [ 809.570505][T15977] ? __pfx_chrdev_open+0x10/0x10 [ 809.570575][T15977] vfs_open+0x82/0x3f0 [ 809.570619][T15977] path_openat+0x1de4/0x2cb0 [ 809.570683][T15977] ? __pfx_path_openat+0x10/0x10 [ 809.570735][T15977] ? __lock_acquire+0xb8a/0x1c90 [ 809.570784][T15977] do_filp_open+0x20b/0x470 [ 809.570834][T15977] ? __pfx_do_filp_open+0x10/0x10 [ 809.570914][T15977] ? alloc_fd+0x471/0x7d0 [ 809.570973][T15977] do_sys_openat2+0x11b/0x1d0 [ 809.571010][T15977] ? __pfx_do_sys_openat2+0x10/0x10 [ 809.571065][T15977] __x64_sys_openat+0x174/0x210 [ 809.571104][T15977] ? __pfx___x64_sys_openat+0x10/0x10 [ 809.571176][T15977] do_syscall_64+0xcd/0x490 [ 809.571231][T15977] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 809.571264][T15977] RIP: 0033:0x7fd51078e929 [ 809.571291][T15977] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 809.571327][T15977] RSP: 002b:00007fd511574038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 809.571359][T15977] RAX: ffffffffffffffda RBX: 00007fd5109b6080 RCX: 00007fd51078e929 [ 809.571381][T15977] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 809.571402][T15977] RBP: 00007fd510810b39 R08: 0000000000000000 R09: 0000000000000000 [ 809.571422][T15977] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 809.571441][T15977] R13: 0000000000000000 R14: 00007fd5109b6080 R15: 00007ffcdc6935a8 [ 809.571483][T15977] [ 809.973085][T15977] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2272'. [ 810.686740][T15991] ALSA: mixer_oss: invalid OSS volume '0' [ 810.692654][T15991] ALSA: mixer_oss: invalid OSS volume '' [ 811.396331][ T6857] Bluetooth: hci3: command 0x0c1a tx timeout [ 811.568578][T16008] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 811.597164][T16008] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 811.647483][T16008] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 811.739720][T16008] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 811.785228][T16008] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 811.940373][T16005] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input102 [ 812.399065][T16019] nfs: Bad value for 'source' [ 812.411823][T16016] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input103 [ 812.526160][T16015] netlink: 'syz.1.2281': attribute type 1 has an invalid length. [ 812.905294][T16028] netlink: 'syz.1.2284': attribute type 1 has an invalid length. [ 813.546316][T16034] random: crng reseeded on system resumption [ 813.636225][T12625] Bluetooth: hci1: command 0x0c1a tx timeout [ 813.642305][ T6857] Bluetooth: hci0: command 0x0c1a tx timeout [ 813.717488][T12625] Bluetooth: hci3: command 0x0c1a tx timeout [ 813.795860][T12625] Bluetooth: hci2: command 0x0406 tx timeout [ 813.881490][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 813.895777][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 814.491811][T16037] ALSA: mixer_oss: invalid OSS volume '0' [ 814.536147][T16037] ALSA: mixer_oss: invalid OSS volume '' [ 815.795854][T12625] Bluetooth: hci3: command 0x0c1a tx timeout [ 816.406063][T16065] FAULT_INJECTION: forcing a failure. [ 816.406063][T16065] name failslab, interval 1, probability 0, space 0, times 0 [ 816.406111][T16065] CPU: 1 UID: 0 PID: 16065 Comm: syz.0.2291 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 816.406152][T16065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 816.406173][T16065] Call Trace: [ 816.406184][T16065] [ 816.406197][T16065] dump_stack_lvl+0x16c/0x1f0 [ 816.406252][T16065] should_fail_ex+0x512/0x640 [ 816.406298][T16065] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 816.406351][T16065] should_failslab+0xc2/0x120 [ 816.406381][T16065] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 816.406428][T16065] ? __proc_create+0xc3/0x8c0 [ 816.406477][T16065] ? __proc_create+0x2ce/0x8c0 [ 816.406540][T16065] __proc_create+0x2ce/0x8c0 [ 816.406593][T16065] ? __pfx___proc_create+0x10/0x10 [ 816.406648][T16065] ? do_raw_spin_unlock+0x172/0x230 [ 816.406706][T16065] ? _raw_spin_unlock+0x28/0x50 [ 816.406772][T16065] proc_create_reg+0x7d/0x180 [ 816.406807][T16065] proc_create_net_data+0x8e/0x1b0 [ 816.406863][T16065] ? __pfx_proc_create_net_data+0x10/0x10 [ 816.406987][T16065] ? __asan_memcpy+0x3c/0x60 [ 816.407041][T16065] ? __pfx_unix_net_init+0x10/0x10 [ 816.407081][T16065] ? __pfx_unix_net_init+0x10/0x10 [ 816.407118][T16065] unix_net_init+0xb7/0x350 [ 816.407161][T16065] ? __pfx_unix_net_init+0x10/0x10 [ 816.407198][T16065] ops_init+0x1df/0x5f0 [ 816.407256][T16065] setup_net+0x1ff/0x510 [ 816.407285][T16065] ? lockdep_init_map_type+0x5c/0x280 [ 816.407330][T16065] ? __pfx_setup_net+0x10/0x10 [ 816.407364][T16065] ? debug_mutex_init+0x37/0x70 [ 816.407401][T16065] copy_net_ns+0x2a6/0x5f0 [ 816.407452][T16065] create_new_namespaces+0x3ea/0xa90 [ 816.407501][T16065] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 816.407541][T16065] ksys_unshare+0x45b/0xa40 [ 816.407585][T16065] ? __pfx_ksys_unshare+0x10/0x10 [ 816.407643][T16065] ? xfd_validate_state+0x61/0x180 [ 816.407700][T16065] __x64_sys_unshare+0x31/0x40 [ 816.407744][T16065] do_syscall_64+0xcd/0x490 [ 816.407798][T16065] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 816.407832][T16065] RIP: 0033:0x7f51b1f8e929 [ 816.407859][T16065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 816.407894][T16065] RSP: 002b:00007f51b2df7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 816.407938][T16065] RAX: ffffffffffffffda RBX: 00007f51b21b5fa0 RCX: 00007f51b1f8e929 [ 816.407960][T16065] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 816.407980][T16065] RBP: 00007f51b2010b39 R08: 0000000000000000 R09: 0000000000000000 [ 816.407999][T16065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 816.408017][T16065] R13: 0000000000000000 R14: 00007f51b21b5fa0 R15: 00007fffecfd0d88 [ 816.408059][T16065] [ 817.272502][T16079] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2293'. [ 818.048847][T16084] ALSA: mixer_oss: invalid OSS volume '0' [ 818.054675][T16084] ALSA: mixer_oss: invalid OSS volume '' [ 818.351258][T16093] ALSA: mixer_oss: invalid OSS volume '0' [ 818.357594][T16093] ALSA: mixer_oss: invalid OSS volume '' [ 819.892418][ T30] audit: type=1800 audit(6045821689.659:9): pid=16102 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2300" name="dmabuf" dev="dmabuf" ino=67 res=0 errno=0 [ 819.995544][T16107] netlink: 'syz.0.2302': attribute type 1 has an invalid length. [ 820.895408][T16124] FAULT_INJECTION: forcing a failure. [ 820.895408][T16124] name failslab, interval 1, probability 0, space 0, times 0 [ 820.915827][T16124] CPU: 1 UID: 0 PID: 16124 Comm: syz.1.2304 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 820.915876][T16124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 820.915891][T16124] Call Trace: [ 820.915912][T16124] [ 820.915920][T16124] dump_stack_lvl+0x16c/0x1f0 [ 820.915958][T16124] should_fail_ex+0x512/0x640 [ 820.915989][T16124] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 820.916022][T16124] should_failslab+0xc2/0x120 [ 820.916043][T16124] __kmalloc_cache_noprof+0x6a/0x3e0 [ 820.916073][T16124] ? ipv4_mib_init_net+0x263/0x5f0 [ 820.916106][T16124] ipv4_mib_init_net+0x263/0x5f0 [ 820.916135][T16124] ? __pfx_igmp_net_init+0x10/0x10 [ 820.916168][T16124] ? __pfx_ipv4_mib_init_net+0x10/0x10 [ 820.916204][T16124] ops_init+0x1df/0x5f0 [ 820.916263][T16124] setup_net+0x1ff/0x510 [ 820.916282][T16124] ? lockdep_init_map_type+0x5c/0x280 [ 820.916315][T16124] ? __pfx_setup_net+0x10/0x10 [ 820.916338][T16124] ? debug_mutex_init+0x37/0x70 [ 820.916364][T16124] copy_net_ns+0x2a6/0x5f0 [ 820.916390][T16124] create_new_namespaces+0x3ea/0xa90 [ 820.916422][T16124] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 820.916449][T16124] ksys_unshare+0x45b/0xa40 [ 820.916479][T16124] ? __pfx_ksys_unshare+0x10/0x10 [ 820.916512][T16124] ? syscall_user_dispatch+0x78/0x140 [ 820.916554][T16124] __x64_sys_unshare+0x31/0x40 [ 820.916584][T16124] do_syscall_64+0xcd/0x490 [ 820.916621][T16124] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 820.916645][T16124] RIP: 0033:0x7fd51078e929 [ 820.916663][T16124] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 820.916686][T16124] RSP: 002b:00007fd511595038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 820.916707][T16124] RAX: ffffffffffffffda RBX: 00007fd5109b5fa0 RCX: 00007fd51078e929 [ 820.916724][T16124] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 820.916737][T16124] RBP: 00007fd510810b39 R08: 0000000000000000 R09: 0000000000000000 [ 820.916751][T16124] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 820.916765][T16124] R13: 0000000000000000 R14: 00007fd5109b5fa0 R15: 00007ffcdc6935a8 [ 820.916794][T16124] [ 821.764016][T16136] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input104 [ 822.005288][T16141] ALSA: mixer_oss: invalid OSS volume '0' [ 822.011432][T16141] ALSA: mixer_oss: invalid OSS volume '' [ 822.788639][T16149] kvm: kvm [16148]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x40000077) [ 822.830207][T16147] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input105 [ 823.232828][T16156] FAULT_INJECTION: forcing a failure. [ 823.232828][T16156] name failslab, interval 1, probability 0, space 0, times 0 [ 823.275910][T16156] CPU: 0 UID: 0 PID: 16156 Comm: syz.0.2312 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 823.275945][T16156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 823.275960][T16156] Call Trace: [ 823.275969][T16156] [ 823.275978][T16156] dump_stack_lvl+0x16c/0x1f0 [ 823.276019][T16156] should_fail_ex+0x512/0x640 [ 823.276053][T16156] ? __kmalloc_noprof+0xbf/0x510 [ 823.276089][T16156] ? fib_default_rule_add+0x4f/0x420 [ 823.276125][T16156] should_failslab+0xc2/0x120 [ 823.276147][T16156] __kmalloc_noprof+0xd2/0x510 [ 823.276180][T16156] ? lockdep_init_map_type+0x5c/0x280 [ 823.276225][T16156] fib_default_rule_add+0x4f/0x420 [ 823.276273][T16156] ? __pfx_ipmr_net_init+0x10/0x10 [ 823.276311][T16156] ipmr_net_init+0x1ee/0x4e0 [ 823.276347][T16156] ? __pfx_ipmr_net_init+0x10/0x10 [ 823.276381][T16156] ops_init+0x1df/0x5f0 [ 823.276438][T16156] setup_net+0x1ff/0x510 [ 823.276465][T16156] ? lockdep_init_map_type+0x5c/0x280 [ 823.276510][T16156] ? __pfx_setup_net+0x10/0x10 [ 823.276543][T16156] ? debug_mutex_init+0x37/0x70 [ 823.276578][T16156] copy_net_ns+0x2a6/0x5f0 [ 823.276617][T16156] create_new_namespaces+0x3ea/0xa90 [ 823.276663][T16156] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 823.276709][T16156] ksys_unshare+0x45b/0xa40 [ 823.276754][T16156] ? __pfx_ksys_unshare+0x10/0x10 [ 823.276801][T16156] ? syscall_user_dispatch+0x78/0x140 [ 823.276863][T16156] __x64_sys_unshare+0x31/0x40 [ 823.276904][T16156] do_syscall_64+0xcd/0x490 [ 823.276958][T16156] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 823.276991][T16156] RIP: 0033:0x7f51b1f8e929 [ 823.277016][T16156] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 823.277048][T16156] RSP: 002b:00007f51b2df7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 823.277079][T16156] RAX: ffffffffffffffda RBX: 00007f51b21b5fa0 RCX: 00007f51b1f8e929 [ 823.277101][T16156] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 823.277121][T16156] RBP: 00007f51b2010b39 R08: 0000000000000000 R09: 0000000000000000 [ 823.277140][T16156] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 823.277159][T16156] R13: 0000000000000000 R14: 00007f51b21b5fa0 R15: 00007fffecfd0d88 [ 823.277200][T16156] [ 824.016005][T16161] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 824.088609][T16161] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 824.094824][T16161] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 824.219584][T16161] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 824.316168][T16161] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 825.511335][T16183] FAULT_INJECTION: forcing a failure. [ 825.511335][T16183] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 825.636391][T16183] CPU: 0 UID: 0 PID: 16183 Comm: syz.2.2317 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 825.636437][T16183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 825.636457][T16183] Call Trace: [ 825.636468][T16183] [ 825.636481][T16183] dump_stack_lvl+0x16c/0x1f0 [ 825.636535][T16183] should_fail_ex+0x512/0x640 [ 825.636588][T16183] should_fail_alloc_page+0xe7/0x130 [ 825.636622][T16183] prepare_alloc_pages+0x3c2/0x610 [ 825.636668][T16183] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 825.636726][T16183] ? __lock_acquire+0xb8a/0x1c90 [ 825.636769][T16183] ? css_rstat_updated+0x9d/0xd30 [ 825.636816][T16183] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 825.636868][T16183] ? __lock_acquire+0xb8a/0x1c90 [ 825.636925][T16183] ? css_rstat_updated+0x9d/0xd30 [ 825.636957][T16183] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 825.637002][T16183] ? policy_nodemask+0xea/0x4e0 [ 825.637032][T16183] alloc_pages_mpol+0x1fb/0x550 [ 825.637060][T16183] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 825.637087][T16183] ? find_held_lock+0x2b/0x80 [ 825.637113][T16183] ? __pfx___might_resched+0x10/0x10 [ 825.637146][T16183] folio_alloc_mpol_noprof+0x36/0x2f0 [ 825.637180][T16183] alloc_migration_target_by_mpol+0x246/0x500 [ 825.637219][T16183] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 825.637255][T16183] ? __pfx___might_resched+0x10/0x10 [ 825.637285][T16183] ? __pfx_queue_folios_pte_range+0x10/0x10 [ 825.637322][T16183] migrate_pages_batch+0x3bc/0x31a0 [ 825.637365][T16183] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 825.637417][T16183] ? __pfx_migrate_pages_batch+0x10/0x10 [ 825.637479][T16183] migrate_pages_sync+0x12d/0x8a0 [ 825.637515][T16183] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 825.637560][T16183] ? __pfx_migrate_pages_sync+0x10/0x10 [ 825.637592][T16183] ? __pfx_queue_pages_test_walk+0x10/0x10 [ 825.637642][T16183] migrate_pages+0x1b67/0x23b0 [ 825.637679][T16183] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 825.637727][T16183] ? __pfx_migrate_pages+0x10/0x10 [ 825.637765][T16183] ? find_held_lock+0x2b/0x80 [ 825.637811][T16183] ? up_write+0x1b2/0x520 [ 825.637858][T16183] do_mbind+0x6f0/0xf30 [ 825.637904][T16183] ? __pfx_do_mbind+0x10/0x10 [ 825.637934][T16183] ? find_held_lock+0x2b/0x80 [ 825.637964][T16183] ? ksys_write+0x190/0x250 [ 825.638022][T16183] ? __pfx_get_nodes+0x10/0x10 [ 825.638067][T16183] ? __fget_files+0x20e/0x3c0 [ 825.638114][T16183] kernel_mbind+0x1e3/0x1f0 [ 825.638151][T16183] ? __pfx_kernel_mbind+0x10/0x10 [ 825.638198][T16183] do_syscall_64+0xcd/0x490 [ 825.638247][T16183] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 825.638277][T16183] RIP: 0033:0x7f1671d8e929 [ 825.638302][T16183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 825.638331][T16183] RSP: 002b:00007f1672bef038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 825.638360][T16183] RAX: ffffffffffffffda RBX: 00007f1671fb6080 RCX: 00007f1671d8e929 [ 825.638380][T16183] RDX: 0000000100000000 RSI: 8000000000000001 RDI: 000000000000f000 [ 825.638400][T16183] RBP: 00007f1672bef090 R08: 0000000000000006 R09: 0000000000000002 [ 825.638417][T16183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 825.638435][T16183] R13: 0000000000000001 R14: 00007f1671fb6080 R15: 00007ffe76661c88 [ 825.638473][T16183] [ 826.036051][T12625] Bluetooth: hci1: command 0x0c1a tx timeout [ 826.042141][T12625] Bluetooth: hci0: command 0x0c1a tx timeout [ 826.149328][ T6857] Bluetooth: hci3: command 0x0c1a tx timeout [ 826.362472][ T6857] Bluetooth: hci2: command 0x0406 tx timeout [ 826.607692][T16187] ALSA: mixer_oss: invalid OSS volume '0' [ 826.679084][T16187] ALSA: mixer_oss: invalid OSS volume '' [ 826.940763][T16189] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 0, inode_bitmap = 137 [ 827.084337][T16189] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 1, inode_bitmap = 138 [ 827.188346][T16189] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 0: bad block bitmap checksum [ 827.534062][T16197] openvswitch: netlink: ERSPAN option length err (len 256, max 255). [ 827.799819][T16204] FAULT_INJECTION: forcing a failure. [ 827.799819][T16204] name failslab, interval 1, probability 0, space 0, times 0 [ 827.855906][T16204] CPU: 1 UID: 0 PID: 16204 Comm: syz.1.2324 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 827.855952][T16204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 827.855973][T16204] Call Trace: [ 827.855984][T16204] [ 827.855997][T16204] dump_stack_lvl+0x16c/0x1f0 [ 827.856052][T16204] should_fail_ex+0x512/0x640 [ 827.856099][T16204] ? __kmalloc_noprof+0xbf/0x510 [ 827.856151][T16204] ? __register_sysctl_table+0xea2/0x1900 [ 827.856203][T16204] should_failslab+0xc2/0x120 [ 827.856234][T16204] __kmalloc_noprof+0xd2/0x510 [ 827.856280][T16204] ? __register_sysctl_table+0xe8e/0x1900 [ 827.856342][T16204] __register_sysctl_table+0xea2/0x1900 [ 827.856406][T16204] ? __pfx___register_sysctl_table+0x10/0x10 [ 827.856457][T16204] ? is_module_address+0x69/0xf0 [ 827.856518][T16204] ? register_net_sysctl_sz+0x228/0x3e0 [ 827.856555][T16204] ? __asan_memcpy+0x3c/0x60 [ 827.856603][T16204] mptcp_net_init+0x499/0x620 [ 827.856652][T16204] ? __pfx_mptcp_net_init+0x10/0x10 [ 827.856692][T16204] ops_init+0x1df/0x5f0 [ 827.856746][T16204] setup_net+0x1ff/0x510 [ 827.856838][T16204] ? lockdep_init_map_type+0x5c/0x280 [ 827.856885][T16204] ? __pfx_setup_net+0x10/0x10 [ 827.856917][T16204] ? debug_mutex_init+0x37/0x70 [ 827.856958][T16204] copy_net_ns+0x2a6/0x5f0 [ 827.856997][T16204] create_new_namespaces+0x3ea/0xa90 [ 827.857042][T16204] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 827.857083][T16204] ksys_unshare+0x45b/0xa40 [ 827.857126][T16204] ? __pfx_ksys_unshare+0x10/0x10 [ 827.857173][T16204] ? syscall_user_dispatch+0x78/0x140 [ 827.857235][T16204] __x64_sys_unshare+0x31/0x40 [ 827.857277][T16204] do_syscall_64+0xcd/0x490 [ 827.857331][T16204] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 827.857365][T16204] RIP: 0033:0x7fd51078e929 [ 827.857393][T16204] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 827.857425][T16204] RSP: 002b:00007fd511595038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 827.857456][T16204] RAX: ffffffffffffffda RBX: 00007fd5109b5fa0 RCX: 00007fd51078e929 [ 827.857486][T16204] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 827.857511][T16204] RBP: 00007fd510810b39 R08: 0000000000000000 R09: 0000000000000000 [ 827.857534][T16204] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 827.857554][T16204] R13: 0000000000000000 R14: 00007fd5109b5fa0 R15: 00007ffcdc6935a8 [ 827.857598][T16204] [ 827.861725][T16204] sysctl could not get directory: /net/mptcp -12 [ 828.205895][ T6857] Bluetooth: hci3: command 0x0c1a tx timeout [ 828.266983][T16210] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 828.299433][T16210] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 828.307187][T16210] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 828.318047][T16210] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 828.324295][T16210] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 828.592453][T16215] FAULT_INJECTION: forcing a failure. [ 828.592453][T16215] name failslab, interval 1, probability 0, space 0, times 0 [ 828.607038][T16215] CPU: 0 UID: 0 PID: 16215 Comm: syz.4.2327 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 828.607084][T16215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 828.607105][T16215] Call Trace: [ 828.607117][T16215] [ 828.607130][T16215] dump_stack_lvl+0x16c/0x1f0 [ 828.607187][T16215] should_fail_ex+0x512/0x640 [ 828.607233][T16215] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 828.607290][T16215] should_failslab+0xc2/0x120 [ 828.607323][T16215] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 828.607375][T16215] ? alloc_unbound_pwq+0x3ff/0xe10 [ 828.607416][T16215] alloc_unbound_pwq+0x3ff/0xe10 [ 828.607462][T16215] apply_wqattrs_prepare+0x3af/0xbd0 [ 828.607515][T16215] apply_workqueue_attrs_locked+0x64/0xe0 [ 828.607553][T16215] __alloc_workqueue+0xf41/0x1810 [ 828.607602][T16215] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 828.607653][T16215] alloc_workqueue+0xd2/0x200 [ 828.607704][T16215] ? __pfx_alloc_workqueue+0x10/0x10 [ 828.607758][T16215] ? __pfx___debug_object_init+0x10/0x10 [ 828.607806][T16215] nci_register_device+0x394/0xb80 [ 828.607853][T16215] ? __pfx_nci_register_device+0x10/0x10 [ 828.607904][T16215] ? lockdep_init_map_type+0x5c/0x280 [ 828.607958][T16215] virtual_ncidev_open+0x141/0x220 [ 828.608002][T16215] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 828.608040][T16215] misc_open+0x35d/0x420 [ 828.608082][T16215] ? __pfx_misc_open+0x10/0x10 [ 828.608120][T16215] chrdev_open+0x231/0x6a0 [ 828.608170][T16215] ? __pfx_apparmor_file_open+0x10/0x10 [ 828.608211][T16215] ? __pfx_chrdev_open+0x10/0x10 [ 828.608265][T16215] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 828.608317][T16215] do_dentry_open+0x744/0x1c10 [ 828.608368][T16215] ? __pfx_chrdev_open+0x10/0x10 [ 828.608428][T16215] vfs_open+0x82/0x3f0 [ 828.608470][T16215] path_openat+0x1de4/0x2cb0 [ 828.608531][T16215] ? __pfx_path_openat+0x10/0x10 [ 828.608581][T16215] ? __lock_acquire+0xb8a/0x1c90 [ 828.608630][T16215] do_filp_open+0x20b/0x470 [ 828.608676][T16215] ? __pfx_do_filp_open+0x10/0x10 [ 828.608764][T16215] ? alloc_fd+0x471/0x7d0 [ 828.608821][T16215] do_sys_openat2+0x11b/0x1d0 [ 828.608858][T16215] ? __pfx_do_sys_openat2+0x10/0x10 [ 828.608911][T16215] __x64_sys_openat+0x174/0x210 [ 828.608948][T16215] ? __pfx___x64_sys_openat+0x10/0x10 [ 828.609004][T16215] do_syscall_64+0xcd/0x490 [ 828.609058][T16215] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 828.609091][T16215] RIP: 0033:0x7fe31e18e929 [ 828.609118][T16215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 828.609152][T16215] RSP: 002b:00007fe31f09f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 828.609183][T16215] RAX: ffffffffffffffda RBX: 00007fe31e3b6080 RCX: 00007fe31e18e929 [ 828.609206][T16215] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 828.609228][T16215] RBP: 00007fe31e210b39 R08: 0000000000000000 R09: 0000000000000000 [ 828.609248][T16215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 828.609268][T16215] R13: 0000000000000000 R14: 00007fe31e3b6080 R15: 00007ffcf22df078 [ 828.609311][T16215] [ 828.986760][T12625] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 829.014925][T12625] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 829.023736][T12625] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 829.026482][T16217] FAULT_INJECTION: forcing a failure. [ 829.026482][T16217] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 829.054814][T12625] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 829.064735][T12625] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 829.135935][T16217] CPU: 1 UID: 0 PID: 16217 Comm: syz.1.2328 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 829.135975][T16217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 829.135993][T16217] Call Trace: [ 829.136003][T16217] [ 829.136015][T16217] dump_stack_lvl+0x16c/0x1f0 [ 829.136067][T16217] should_fail_ex+0x512/0x640 [ 829.136116][T16217] should_fail_alloc_page+0xe7/0x130 [ 829.136151][T16217] prepare_alloc_pages+0x3c2/0x610 [ 829.136196][T16217] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 829.136246][T16217] ? __pfx_page_vma_mapped_walk+0x10/0x10 [ 829.136298][T16217] ? mlock_drain_local+0x22d/0x4f0 [ 829.136355][T16217] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 829.136435][T16217] ? __up_read+0x1f8/0x750 [ 829.136478][T16217] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 829.136525][T16217] ? policy_nodemask+0xea/0x4e0 [ 829.136555][T16217] alloc_pages_mpol+0x1fb/0x550 [ 829.136587][T16217] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 829.136614][T16217] ? rmap_walk_anon+0x503/0x710 [ 829.136661][T16217] folio_alloc_mpol_noprof+0x36/0x2f0 [ 829.136699][T16217] alloc_migration_target_by_mpol+0x246/0x500 [ 829.136738][T16217] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 829.136774][T16217] ? __pfx_invalid_migration_vma+0x10/0x10 [ 829.136808][T16217] ? __pfx___might_resched+0x10/0x10 [ 829.136841][T16217] ? folio_get_anon_vma+0xdd/0x760 [ 829.136888][T16217] migrate_pages_batch+0x3bc/0x31a0 [ 829.136929][T16217] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 829.136988][T16217] ? __pfx_migrate_pages_batch+0x10/0x10 [ 829.137040][T16217] migrate_pages_sync+0x12d/0x8a0 [ 829.137078][T16217] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 829.137126][T16217] ? __pfx_migrate_pages_sync+0x10/0x10 [ 829.137157][T16217] ? __pfx_queue_pages_test_walk+0x10/0x10 [ 829.137222][T16217] migrate_pages+0x1b67/0x23b0 [ 829.137253][T16217] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 829.137293][T16217] ? __pfx_migrate_pages+0x10/0x10 [ 829.137325][T16217] ? find_held_lock+0x2b/0x80 [ 829.137358][T16217] ? up_write+0x1b2/0x520 [ 829.137404][T16217] do_mbind+0x6f0/0xf30 [ 829.137444][T16217] ? __pfx_do_mbind+0x10/0x10 [ 829.137472][T16217] ? find_held_lock+0x2b/0x80 [ 829.137498][T16217] ? ksys_write+0x190/0x250 [ 829.137550][T16217] ? __pfx_get_nodes+0x10/0x10 [ 829.137590][T16217] ? __fget_files+0x20e/0x3c0 [ 829.137634][T16217] kernel_mbind+0x1e3/0x1f0 [ 829.137669][T16217] ? __pfx_kernel_mbind+0x10/0x10 [ 829.137727][T16217] do_syscall_64+0xcd/0x490 [ 829.137774][T16217] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 829.137800][T16217] RIP: 0033:0x7fd51078e929 [ 829.137824][T16217] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 829.137852][T16217] RSP: 002b:00007fd511595038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 829.137881][T16217] RAX: ffffffffffffffda RBX: 00007fd5109b5fa0 RCX: 00007fd51078e929 [ 829.137903][T16217] RDX: 0000000100000000 RSI: 8000000000000001 RDI: 000000000000f000 [ 829.137923][T16217] RBP: 00007fd511595090 R08: 0000000000000006 R09: 0000000000000002 [ 829.137943][T16217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 829.137962][T16217] R13: 0000000000000000 R14: 00007fd5109b5fa0 R15: 00007ffcdc6935a8 [ 829.138002][T16217] [ 829.588900][T16224] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2327'. [ 829.902010][T13455] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 829.908591][ T30] audit: type=1326 audit(6045821699.679:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16223 comm="syz.2.2329" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f1671d8e929 code=0x0 [ 830.117923][T13455] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 830.261510][T16234] FAULT_INJECTION: forcing a failure. [ 830.261510][T16234] name failslab, interval 1, probability 0, space 0, times 0 [ 830.276500][T12625] Bluetooth: hci0: command 0x0c1a tx timeout [ 830.315048][T16234] CPU: 1 UID: 0 PID: 16234 Comm: syz.4.2331 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 830.315093][T16234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 830.315113][T16234] Call Trace: [ 830.315124][T16234] [ 830.315137][T16234] dump_stack_lvl+0x16c/0x1f0 [ 830.315191][T16234] should_fail_ex+0x512/0x640 [ 830.315236][T16234] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 830.315289][T16234] should_failslab+0xc2/0x120 [ 830.315320][T16234] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 830.315378][T16234] ? alloc_unbound_pwq+0x3ff/0xe10 [ 830.315419][T16234] alloc_unbound_pwq+0x3ff/0xe10 [ 830.315463][T16234] apply_wqattrs_prepare+0x3af/0xbd0 [ 830.315514][T16234] apply_workqueue_attrs_locked+0x64/0xe0 [ 830.315550][T16234] __alloc_workqueue+0xf41/0x1810 [ 830.315600][T16234] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 830.315649][T16234] alloc_workqueue+0xd2/0x200 [ 830.315687][T16234] ? __pfx_alloc_workqueue+0x10/0x10 [ 830.315738][T16234] ? __pfx___debug_object_init+0x10/0x10 [ 830.315784][T16234] nci_register_device+0x394/0xb80 [ 830.315831][T16234] ? __pfx_nci_register_device+0x10/0x10 [ 830.315882][T16234] ? lockdep_init_map_type+0x5c/0x280 [ 830.315933][T16234] virtual_ncidev_open+0x141/0x220 [ 830.315971][T16234] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 830.316009][T16234] misc_open+0x35d/0x420 [ 830.316048][T16234] ? __pfx_misc_open+0x10/0x10 [ 830.316084][T16234] chrdev_open+0x231/0x6a0 [ 830.316132][T16234] ? __pfx_apparmor_file_open+0x10/0x10 [ 830.316173][T16234] ? __pfx_chrdev_open+0x10/0x10 [ 830.316225][T16234] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 830.316275][T16234] do_dentry_open+0x744/0x1c10 [ 830.316324][T16234] ? __pfx_chrdev_open+0x10/0x10 [ 830.316393][T16234] vfs_open+0x82/0x3f0 [ 830.316432][T16234] path_openat+0x1de4/0x2cb0 [ 830.316492][T16234] ? __pfx_path_openat+0x10/0x10 [ 830.316541][T16234] ? __lock_acquire+0xb8a/0x1c90 [ 830.316587][T16234] do_filp_open+0x20b/0x470 [ 830.316636][T16234] ? __pfx_do_filp_open+0x10/0x10 [ 830.316715][T16234] ? alloc_fd+0x471/0x7d0 [ 830.316770][T16234] do_sys_openat2+0x11b/0x1d0 [ 830.316806][T16234] ? __pfx_do_sys_openat2+0x10/0x10 [ 830.316845][T16234] ? __pfx___might_resched+0x10/0x10 [ 830.316888][T16234] __x64_sys_openat+0x174/0x210 [ 830.316925][T16234] ? __pfx___x64_sys_openat+0x10/0x10 [ 830.316979][T16234] do_syscall_64+0xcd/0x490 [ 830.317032][T16234] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 830.317064][T16234] RIP: 0033:0x7fe31e18e929 [ 830.317091][T16234] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 830.317125][T16234] RSP: 002b:00007fe31f09f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 830.317157][T16234] RAX: ffffffffffffffda RBX: 00007fe31e3b6080 RCX: 00007fe31e18e929 [ 830.317179][T16234] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 830.317200][T16234] RBP: 00007fe31e210b39 R08: 0000000000000000 R09: 0000000000000000 [ 830.317219][T16234] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 830.317238][T16234] R13: 0000000000000000 R14: 00007fe31e3b6080 R15: 00007ffcf22df078 [ 830.317280][T16234] [ 830.376037][T12625] Bluetooth: hci2: command 0x0406 tx timeout [ 830.539806][T16238] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2331'. [ 830.541855][ T6857] Bluetooth: hci1: command 0x0c1a tx timeout [ 830.686117][T13455] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 830.759693][T16243] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2332'. [ 830.852800][T13455] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 830.863662][T16240] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2332'. [ 830.890424][T16241] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2332'. [ 830.965508][T16241] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2332'. [ 831.161540][T12625] Bluetooth: hci3: command tx timeout [ 831.686157][T13455] macvlan0: left allmulticast mode [ 831.715853][T13455] veth1_vlan: left allmulticast mode [ 831.721309][T13455] macvlan0: left promiscuous mode [ 831.749389][T13455] bridge0: port 4(macvlan0) entered disabled state [ 831.814865][T13455] vlan1: left allmulticast mode [ 831.823123][T13455] vlan1: left promiscuous mode [ 831.829351][T16252] netlink: 'syz.2.2334': attribute type 1 has an invalid length. [ 831.838022][T13455] bridge0: port 3(vlan1) entered disabled state [ 831.852258][T13455] bridge_slave_1: left allmulticast mode [ 831.905180][T13455] bridge_slave_1: left promiscuous mode [ 831.916301][T16261] FAULT_INJECTION: forcing a failure. [ 831.916301][T16261] name failslab, interval 1, probability 0, space 0, times 0 [ 831.929491][T13455] bridge0: port 2(bridge_slave_1) entered disabled state [ 831.987367][T13455] bridge_slave_0: left allmulticast mode [ 831.995883][T16261] CPU: 0 UID: 0 PID: 16261 Comm: syz.1.2335 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 831.995929][T16261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 831.995950][T16261] Call Trace: [ 831.995961][T16261] [ 831.995974][T16261] dump_stack_lvl+0x16c/0x1f0 [ 831.996031][T16261] should_fail_ex+0x512/0x640 [ 831.996079][T16261] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 831.996138][T16261] should_failslab+0xc2/0x120 [ 831.996171][T16261] __kmalloc_cache_noprof+0x6a/0x3e0 [ 831.996217][T16261] ? snd_mixer_oss_get_volume1_sw.constprop.0.isra.0+0xd4/0x480 [ 831.996280][T16261] ? kasan_save_track+0x14/0x30 [ 831.996345][T16261] snd_mixer_oss_get_volume1_sw.constprop.0.isra.0+0xd4/0x480 [ 831.996412][T16261] snd_mixer_oss_get_recsrc1_sw+0x104/0x1d0 [ 831.996469][T16261] ? __pfx_snd_mixer_oss_get_recsrc1_sw+0x10/0x10 [ 831.996542][T16261] snd_mixer_oss_ioctl1+0x1883/0x1cf0 [ 831.996591][T16261] ? lockdep_hardirqs_on+0x7c/0x110 [ 831.996641][T16261] ? __pfx_snd_mixer_oss_get_recsrc1_sw+0x10/0x10 [ 831.996697][T16261] ? __pfx_snd_mixer_oss_ioctl1+0x10/0x10 [ 831.996749][T16261] ? tomoyo_path_number_perm+0x295/0x580 [ 831.996795][T16261] ? tomoyo_path_number_perm+0x18d/0x580 [ 831.996839][T16261] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 831.996877][T16261] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 831.996930][T16261] ? do_vfs_ioctl+0x523/0x1a60 [ 831.996969][T16261] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 831.997024][T16261] snd_mixer_oss_ioctl_card+0x102/0x170 [ 831.997077][T16261] ? __pfx_snd_mixer_oss_ioctl_card+0x10/0x10 [ 831.997149][T16261] snd_pcm_oss_ioctl+0x137c/0x37a0 [ 831.997188][T16261] ? find_held_lock+0x2b/0x80 [ 831.997219][T16261] ? hook_file_ioctl_common+0x145/0x410 [ 831.997255][T16261] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 831.997300][T16261] ? __fget_files+0x20e/0x3c0 [ 831.997351][T16261] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 831.997393][T16261] __x64_sys_ioctl+0x18b/0x210 [ 831.997434][T16261] do_syscall_64+0xcd/0x490 [ 831.997488][T16261] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 831.997522][T16261] RIP: 0033:0x7fd51078e929 [ 831.997549][T16261] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 831.997583][T16261] RSP: 002b:00007fd511553038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 831.997615][T16261] RAX: ffffffffffffffda RBX: 00007fd5109b6160 RCX: 00007fd51078e929 [ 831.997637][T16261] RDX: 0000200000000240 RSI: 0000000080044dff RDI: 000000000000000b [ 831.997657][T16261] RBP: 00007fd510810b39 R08: 0000000000000000 R09: 0000000000000000 [ 831.997677][T16261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 831.997696][T16261] R13: 0000000000000000 R14: 00007fd5109b6160 R15: 00007ffcdc6935a8 [ 831.997738][T16261] [ 832.285227][T13455] bridge_slave_0: left promiscuous mode [ 832.291099][T13455] bridge0: port 1(bridge_slave_0) entered disabled state [ 833.239677][T12625] Bluetooth: hci3: command tx timeout [ 833.630890][T13455] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 833.661777][T13455] bond0 (unregistering): Released all slaves [ 833.735625][T16219] chnl_net:caif_netlink_parms(): no params data found [ 834.787732][T16219] bridge0: port 1(bridge_slave_0) entered blocking state [ 834.787859][T16219] bridge0: port 1(bridge_slave_0) entered disabled state [ 834.788060][T16219] bridge_slave_0: entered allmulticast mode [ 834.790138][T16219] bridge_slave_0: entered promiscuous mode [ 834.824777][T16219] bridge0: port 2(bridge_slave_1) entered blocking state [ 834.824899][T16219] bridge0: port 2(bridge_slave_1) entered disabled state [ 834.825078][T16219] bridge_slave_1: entered allmulticast mode [ 834.827519][T16219] bridge_slave_1: entered promiscuous mode [ 835.141898][T16219] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 835.214559][T16219] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 835.316026][T12625] Bluetooth: hci3: command tx timeout [ 835.447758][T16219] team0: Port device team_slave_0 added [ 835.769093][T16219] team0: Port device team_slave_1 added [ 836.024396][T16318] FAULT_INJECTION: forcing a failure. [ 836.024396][T16318] name failslab, interval 1, probability 0, space 0, times 0 [ 836.045940][T16318] CPU: 1 UID: 0 PID: 16318 Comm: syz.1.2343 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 836.045987][T16318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 836.046010][T16318] Call Trace: [ 836.046020][T16318] [ 836.046033][T16318] dump_stack_lvl+0x16c/0x1f0 [ 836.046086][T16318] should_fail_ex+0x512/0x640 [ 836.046130][T16318] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 836.046185][T16318] should_failslab+0xc2/0x120 [ 836.046214][T16318] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 836.046266][T16318] ? kasprintf+0xc7/0x100 [ 836.046299][T16318] kvasprintf+0xbc/0x160 [ 836.046327][T16318] ? __pfx_kvasprintf+0x10/0x10 [ 836.046371][T16318] kasprintf+0xc7/0x100 [ 836.046399][T16318] ? __pfx_kasprintf+0x10/0x10 [ 836.046429][T16318] ? __is_module_percpu_address+0x1e0/0x440 [ 836.046485][T16318] alloc_workqueue+0x114/0x200 [ 836.046524][T16318] ? __pfx_alloc_workqueue+0x10/0x10 [ 836.046573][T16318] ? __pfx___debug_object_init+0x10/0x10 [ 836.046615][T16318] nci_register_device+0x394/0xb80 [ 836.046660][T16318] ? __pfx_nci_register_device+0x10/0x10 [ 836.046707][T16318] ? lockdep_init_map_type+0x5c/0x280 [ 836.046769][T16318] virtual_ncidev_open+0x141/0x220 [ 836.046808][T16318] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 836.046845][T16318] misc_open+0x35d/0x420 [ 836.046883][T16318] ? __pfx_misc_open+0x10/0x10 [ 836.046921][T16318] chrdev_open+0x231/0x6a0 [ 836.046969][T16318] ? __pfx_apparmor_file_open+0x10/0x10 [ 836.047011][T16318] ? __pfx_chrdev_open+0x10/0x10 [ 836.047061][T16318] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 836.047110][T16318] do_dentry_open+0x744/0x1c10 [ 836.047156][T16318] ? __pfx_chrdev_open+0x10/0x10 [ 836.047211][T16318] vfs_open+0x82/0x3f0 [ 836.047249][T16318] path_openat+0x1de4/0x2cb0 [ 836.047307][T16318] ? __pfx_path_openat+0x10/0x10 [ 836.047355][T16318] ? __lock_acquire+0xb8a/0x1c90 [ 836.047399][T16318] do_filp_open+0x20b/0x470 [ 836.047446][T16318] ? __pfx_do_filp_open+0x10/0x10 [ 836.047521][T16318] ? alloc_fd+0x471/0x7d0 [ 836.047575][T16318] do_sys_openat2+0x11b/0x1d0 [ 836.047610][T16318] ? __pfx_do_sys_openat2+0x10/0x10 [ 836.047659][T16318] __x64_sys_openat+0x174/0x210 [ 836.047695][T16318] ? __pfx___x64_sys_openat+0x10/0x10 [ 836.047756][T16318] do_syscall_64+0xcd/0x490 [ 836.047809][T16318] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 836.047843][T16318] RIP: 0033:0x7fd51078e929 [ 836.047868][T16318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 836.047901][T16318] RSP: 002b:00007fd511574038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 836.047933][T16318] RAX: ffffffffffffffda RBX: 00007fd5109b6080 RCX: 00007fd51078e929 [ 836.047955][T16318] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 836.047977][T16318] RBP: 00007fd510810b39 R08: 0000000000000000 R09: 0000000000000000 [ 836.047996][T16318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 836.048015][T16318] R13: 0000000000000000 R14: 00007fd5109b6080 R15: 00007ffcdc6935a8 [ 836.048056][T16318] [ 836.544439][T16323] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2343'. [ 836.898563][T16219] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 836.905680][T16219] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 836.933423][T16219] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 836.947873][T16219] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 836.954872][T16219] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 836.980908][T16219] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 837.148062][T13455] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 837.167163][T13455] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 837.192457][T13455] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 837.216002][T13455] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 837.268573][T13455] veth1_vlan: left promiscuous mode [ 837.274480][T13455] veth0_vlan: left promiscuous mode [ 837.396236][T12625] Bluetooth: hci3: command tx timeout [ 838.273691][T13455] team0 (unregistering): Port device team_slave_1 removed [ 838.355272][T13455] team0 (unregistering): Port device team_slave_0 removed [ 839.225684][T16219] hsr_slave_0: entered promiscuous mode [ 839.232700][T16219] hsr_slave_1: entered promiscuous mode [ 839.242563][T16219] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 839.255847][T16219] Cannot create hsr debugfs directory [ 839.284930][T16337] bridge0: port 3(netdevsim1) entered blocking state [ 839.292180][T16337] bridge0: port 3(netdevsim1) entered disabled state [ 839.312299][T16337] netdevsim netdevsim2 netdevsim1: entered allmulticast mode [ 839.322698][T16337] netdevsim netdevsim2 netdevsim1: entered promiscuous mode [ 839.332471][T16337] bridge0: port 3(netdevsim1) entered blocking state [ 839.339350][T16337] bridge0: port 3(netdevsim1) entered forwarding state [ 840.878563][T16219] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 840.914851][T16219] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 841.003893][T16219] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 841.147636][T16219] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 841.561926][T16219] 8021q: adding VLAN 0 to HW filter on device bond0 [ 841.645591][T16219] 8021q: adding VLAN 0 to HW filter on device team0 [ 841.692937][T13460] bridge0: port 1(bridge_slave_0) entered blocking state [ 841.700200][T13460] bridge0: port 1(bridge_slave_0) entered forwarding state [ 841.769494][T13460] bridge0: port 2(bridge_slave_1) entered blocking state [ 841.776733][T13460] bridge0: port 2(bridge_slave_1) entered forwarding state [ 842.652735][T16219] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 842.818695][T16219] veth0_vlan: entered promiscuous mode [ 842.880199][T16219] veth1_vlan: entered promiscuous mode [ 843.035049][T16219] veth0_macvtap: entered promiscuous mode [ 843.051608][T16219] veth1_macvtap: entered promiscuous mode [ 843.113149][T16219] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 843.177256][T16219] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 843.220705][T16219] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 843.259086][T16219] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 843.278971][T16219] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 843.309379][T16219] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 843.716704][T13457] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 843.757661][T13457] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 843.938982][T13460] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 843.993877][T13460] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 845.367694][ T5826] ------------[ cut here ]------------ [ 845.373246][ T5826] ODEBUG: free active (active state 0) object: ffff888034b992d8 object type: timer_list hint: hci_devcd_timeout+0x0/0x2e0 [ 845.456715][ T5826] WARNING: CPU: 1 PID: 5826 at lib/debugobjects.c:612 debug_print_object+0x1a2/0x2b0 [ 845.466388][ T5826] Modules linked in: [ 845.470382][ T5826] CPU: 1 UID: 0 PID: 5826 Comm: syz-executor Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 845.486373][ T5826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 845.497452][ T5826] RIP: 0010:debug_print_object+0x1a2/0x2b0 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 845.503347][ T5826] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd 80 76 15 8c 4c 89 e6 48 c7 c7 00 6b 15 8c e8 5f 75 9c fc 90 <0f> 0b 90 90 58 83 05 76 34 ca 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d [ 845.525053][ T5826] RSP: 0018:ffffc90003ef7768 EFLAGS: 00010286 [ 845.532531][ T5826] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817aa1a8 [ 845.540663][ T5826] RDX: ffff888026930000 RSI: ffffffff817aa1b5 RDI: 0000000000000001 [ 845.549216][ T5826] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000 [ 845.557520][ T5826] R10: 0000000000000001 R11: fffffffffffe2680 R12: ffffffff8c1571a0 [ 845.565555][ T5826] R13: ffffffff8bafe840 R14: ffffffff8a880fd0 R15: ffffc90003ef7868 [ 845.573676][ T5826] FS: 0000000000000000(0000) GS:ffff888124860000(0000) knlGS:0000000000000000 [ 845.582764][ T5826] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 845.589464][ T5826] CR2: 00007f16713ff000 CR3: 00000000499f8000 CR4: 00000000003526f0 [ 845.597584][ T5826] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 845.605615][ T5826] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 845.613714][ T5826] Call Trace: [ 845.617108][ T5826] [ 845.621119][ T5826] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 845.627554][ T5826] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 845.633482][ T5826] debug_check_no_obj_freed+0x4b7/0x600 [ 845.639427][ T5826] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 845.645587][ T5826] ? rcu_is_watching+0x12/0xc0 [ 845.650510][ T5826] ? kmem_cache_free+0x2d1/0x4d0 [ 845.655549][ T5826] kfree+0x28f/0x4d0 [ 845.659577][ T5826] ? hci_release_dev+0x4d8/0x600 [ 845.664619][ T5826] hci_release_dev+0x4d8/0x600 [ 845.669534][ T5826] ? __pfx_hci_release_dev+0x10/0x10 [ 845.674896][ T5826] ? rcu_is_watching+0x12/0xc0 [ 845.679767][ T5826] ? kfree+0x24f/0x4d0 [ 845.683950][ T5826] bt_host_release+0x6a/0xb0 [ 845.688688][ T5826] ? __pfx_bt_host_release+0x10/0x10 [ 845.694068][ T5826] device_release+0xa1/0x240 [ 845.698807][ T5826] kobject_put+0x1e7/0x5a0 [ 845.703325][ T5826] ? __pfx_vhci_release+0x10/0x10 [ 845.708469][ T5826] put_device+0x1f/0x30 [ 845.712696][ T5826] vhci_release+0x81/0xf0 [ 845.717163][ T5826] __fput+0x402/0xb70 [ 845.721250][ T5826] task_work_run+0x14d/0x240 [ 845.726966][ T5826] ? __pfx_task_work_run+0x10/0x10 [ 845.733064][ T5826] do_exit+0x86c/0x2bd0 [ 845.737378][ T5826] ? rcu_is_watching+0x12/0xc0 [ 845.742218][ T5826] ? irqentry_exit+0x3b/0x90 [ 845.746938][ T5826] ? lockdep_hardirqs_on+0x7c/0x110 [ 845.752241][ T5826] ? __pfx_do_exit+0x10/0x10 [ 845.757081][ T5826] do_group_exit+0xd3/0x2a0 [ 845.761672][ T5826] get_signal+0x2673/0x26d0 [ 845.766329][ T5826] ? tcp_getsockopt+0xa8/0x100 [ 845.771173][ T5826] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 845.777194][ T5826] ? __pfx_get_signal+0x10/0x10 [ 845.782162][ T5826] arch_do_signal_or_restart+0x8f/0x790 [ 845.787871][ T5826] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 845.794107][ T5826] ? fd_install+0x244/0x750 [ 845.798770][ T5826] ? __sys_getsockopt+0x123/0x1b0 [ 845.803869][ T5826] ? __sys_getsockopt+0x144/0x1b0 [ 845.809073][ T5826] exit_to_user_mode_loop+0x84/0x110 [ 845.814460][ T5826] do_syscall_64+0x3f6/0x490 [ 845.819201][ T5826] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 845.826166][ T5826] RIP: 0033:0x7fd51079066a [ 845.831599][ T5826] Code: Unable to access opcode bytes at 0x7fd510790640. [ 845.838751][ T5826] RSP: 002b:00007ffcdc693238 EFLAGS: 00000212 ORIG_RAX: 0000000000000037 [ 845.847335][ T5826] RAX: 0000000000000000 RBX: 00007ffcdc6932c0 RCX: 00007fd51079066a [ 845.856469][ T5826] RDX: 0000000000000041 RSI: 0000000000000029 RDI: 0000000000000003 [ 845.864511][ T5826] RBP: 0000000000000003 R08: 00007ffcdc69325c R09: 0079746972756365 [ 845.872638][ T5826] R10: 00007ffcdc6932c0 R11: 0000000000000212 R12: 00007fd51097fc80 [ 845.880826][ T5826] R13: 00007ffcdc69325c R14: 0000000000000000 R15: 00007fd510981e40 [ 845.888993][ T5826] [ 845.892073][ T5826] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 845.899407][ T5826] CPU: 1 UID: 0 PID: 5826 Comm: syz-executor Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(full) [ 845.911619][ T5826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 845.921708][ T5826] Call Trace: [ 845.925023][ T5826] [ 845.927984][ T5826] dump_stack_lvl+0x3d/0x1f0 [ 845.932634][ T5826] panic+0x71c/0x800 [ 845.936578][ T5826] ? __pfx_panic+0x10/0x10 [ 845.941045][ T5826] ? show_trace_log_lvl+0x29b/0x3e0 [ 845.946303][ T5826] ? check_panic_on_warn+0x1f/0xb0 [ 845.951465][ T5826] ? debug_print_object+0x1a2/0x2b0 [ 845.956696][ T5826] check_panic_on_warn+0xab/0xb0 [ 845.961683][ T5826] __warn+0xf6/0x3c0 [ 845.965632][ T5826] ? debug_print_object+0x1a2/0x2b0 [ 845.970880][ T5826] report_bug+0x3c3/0x580 [ 845.975254][ T5826] ? debug_print_object+0x1a2/0x2b0 [ 845.980488][ T5826] handle_bug+0x184/0x210 [ 845.984851][ T5826] exc_invalid_op+0x17/0x50 [ 845.989396][ T5826] asm_exc_invalid_op+0x1a/0x20 [ 845.994368][ T5826] RIP: 0010:debug_print_object+0x1a2/0x2b0 [ 846.000208][ T5826] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd 80 76 15 8c 4c 89 e6 48 c7 c7 00 6b 15 8c e8 5f 75 9c fc 90 <0f> 0b 90 90 58 83 05 76 34 ca 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d [ 846.019851][ T5826] RSP: 0018:ffffc90003ef7768 EFLAGS: 00010286 [ 846.025962][ T5826] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817aa1a8 [ 846.033970][ T5826] RDX: ffff888026930000 RSI: ffffffff817aa1b5 RDI: 0000000000000001 [ 846.041972][ T5826] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000 [ 846.049979][ T5826] R10: 0000000000000001 R11: fffffffffffe2680 R12: ffffffff8c1571a0 [ 846.058068][ T5826] R13: ffffffff8bafe840 R14: ffffffff8a880fd0 R15: ffffc90003ef7868 [ 846.066100][ T5826] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 846.071701][ T5826] ? __warn_printk+0x198/0x350 [ 846.076514][ T5826] ? __warn_printk+0x1a5/0x350 [ 846.081322][ T5826] ? debug_print_object+0x1a1/0x2b0 [ 846.086556][ T5826] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 846.092055][ T5826] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 846.097911][ T5826] debug_check_no_obj_freed+0x4b7/0x600 [ 846.103506][ T5826] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 846.109611][ T5826] ? rcu_is_watching+0x12/0xc0 [ 846.114413][ T5826] ? kmem_cache_free+0x2d1/0x4d0 [ 846.119402][ T5826] kfree+0x28f/0x4d0 [ 846.123334][ T5826] ? hci_release_dev+0x4d8/0x600 [ 846.128324][ T5826] hci_release_dev+0x4d8/0x600 [ 846.133135][ T5826] ? __pfx_hci_release_dev+0x10/0x10 [ 846.138469][ T5826] ? rcu_is_watching+0x12/0xc0 [ 846.143270][ T5826] ? kfree+0x24f/0x4d0 [ 846.147384][ T5826] bt_host_release+0x6a/0xb0 [ 846.152014][ T5826] ? __pfx_bt_host_release+0x10/0x10 [ 846.157330][ T5826] device_release+0xa1/0x240 [ 846.161960][ T5826] kobject_put+0x1e7/0x5a0 [ 846.166438][ T5826] ? __pfx_vhci_release+0x10/0x10 [ 846.171510][ T5826] put_device+0x1f/0x30 [ 846.175700][ T5826] vhci_release+0x81/0xf0 [ 846.180098][ T5826] __fput+0x402/0xb70 [ 846.184126][ T5826] task_work_run+0x14d/0x240 [ 846.188780][ T5826] ? __pfx_task_work_run+0x10/0x10 [ 846.193953][ T5826] do_exit+0x86c/0x2bd0 [ 846.198171][ T5826] ? rcu_is_watching+0x12/0xc0 [ 846.202978][ T5826] ? irqentry_exit+0x3b/0x90 [ 846.207632][ T5826] ? lockdep_hardirqs_on+0x7c/0x110 [ 846.212884][ T5826] ? __pfx_do_exit+0x10/0x10 [ 846.217531][ T5826] do_group_exit+0xd3/0x2a0 [ 846.222088][ T5826] get_signal+0x2673/0x26d0 [ 846.226637][ T5826] ? tcp_getsockopt+0xa8/0x100 [ 846.231450][ T5826] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 846.237388][ T5826] ? __pfx_get_signal+0x10/0x10 [ 846.242301][ T5826] arch_do_signal_or_restart+0x8f/0x790 [ 846.247895][ T5826] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 846.254086][ T5826] ? fd_install+0x244/0x750 [ 846.258643][ T5826] ? __sys_getsockopt+0x123/0x1b0 [ 846.263719][ T5826] ? __sys_getsockopt+0x144/0x1b0 [ 846.268802][ T5826] exit_to_user_mode_loop+0x84/0x110 [ 846.274144][ T5826] do_syscall_64+0x3f6/0x490 [ 846.278791][ T5826] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 846.284738][ T5826] RIP: 0033:0x7fd51079066a [ 846.289185][ T5826] Code: Unable to access opcode bytes at 0x7fd510790640. [ 846.296237][ T5826] RSP: 002b:00007ffcdc693238 EFLAGS: 00000212 ORIG_RAX: 0000000000000037 [ 846.304700][ T5826] RAX: 0000000000000000 RBX: 00007ffcdc6932c0 RCX: 00007fd51079066a [ 846.312703][ T5826] RDX: 0000000000000041 RSI: 0000000000000029 RDI: 0000000000000003 [ 846.320710][ T5826] RBP: 0000000000000003 R08: 00007ffcdc69325c R09: 0079746972756365 [ 846.328721][ T5826] R10: 00007ffcdc6932c0 R11: 0000000000000212 R12: 00007fd51097fc80 [ 846.336722][ T5826] R13: 00007ffcdc69325c R14: 0000000000000000 R15: 00007fd510981e40 [ 846.344741][ T5826] [ 846.348121][ T5826] Kernel Offset: disabled [ 846.352490][ T5826] Rebooting in 86400 seconds..