last executing test programs: 8m30.977410762s ago: executing program 2 (id=2021): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/devices/system/clockevents/clockevent0/current_device\x00', 0x80500, 0x0) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001040)='/proc/self/net/dev_snmp6/dummy0\x00', 0x4180, 0x0) read$auto(r1, &(0x7f0000000000)='\x00', 0xea) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) prctl$auto_PR_SET_MM_END_DATA(0x2, 0x4, 0xffffffffffffffff, 0x5d26, 0xfffffffffffffffc) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)=""/4096, 0x1000) 8m30.834819491s ago: executing program 2 (id=2023): r0 = socket(0x10, 0x2, 0x0) bpf$auto(0x1f, &(0x7f00000004c0)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x4, 0x5, r0, @relative_id=0x6, 0xfffffffffffffffd}, 0x37c) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='f\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) sendmmsg$auto(r0, 0x0, 0x4, 0x8) 8m30.722528721s ago: executing program 2 (id=2024): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001a40), r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001a80)={'wg2\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(r0, &(0x7f0000002f40)={0x0, 0x0, &(0x7f0000002f00)={&(0x7f0000001ac0)={0x24, r1, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@ETHTOOL_A_CABLE_TEST_TDR_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @ETHTOOL_A_CABLE_TEST_TDR_CFG={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x24040000}, 0x0) 8m30.534952698s ago: executing program 2 (id=2026): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyu3\x00', 0x1, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/udp_hash_entries\x00', 0x8000, 0x0) read$auto_proc_sys_file_operations_proc_sysctl(r1, 0x0, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, &(0x7f0000000080)="f5c94556d7b994ee4c7d6b964e87cfce41d8b86d8574badcc9a0191d85605665e0fa950b247f4667f57ca338d45bd2f88e5dd3dfe6600774e6503521259e0c7c3ddd5099d8b948915c1d3f49efad80b766") mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, r2, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000200), 0xffffffffffffffff) ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f0000000240)="e25a43a65c6cca6c9411c2746b41e9359a2d8bb15d8a3e5581af2300e0e4d52dab848a5e99dd3fb47ef1848ca5105bfd0c8db60ef1fef0e9bebc947cd9f6f1ca5ee8ebf43d91905392610ada852e3312f6cb3e874aa0eb47f59245386744ef1087c9dd1ca2d1f1cd3c844c1199b1dbaccbc09f1638f2f27352ee732b3daa6560b50e0a797394f17d0530dd316d542e58") sendmsg$auto_ETHTOOL_MSG_EEE_GET(r3, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x804}, 0x400c850) write$auto(0x3, 0x0, 0xfdef) mmap$auto(0x0, 0x580f, 0xffb, 0x8000000008011, 0x3, 0x0) madvise$auto(0x0, 0x2003f0, 0x15) getresgid$auto(0x0, &(0x7f0000000a40)=0x2, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xe0002, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$auto(r4, 0x1, 0x10, &(0x7f0000000040)='\x00\x15\x8d\xca`\xbcgY\xd2w\xf6\xaedN\xfb\xc2_\xf54\xb4z\n*\xaaL\'\xab>q\x9e\xdd`\x84_\r\xc2\x17\xb1\xaf\xd2\f\xfd[Iy\xbb*$\xec\xca\x8b\xde\xdcV@\x04+\x00'/82, 0xba) close_range$auto(0x2, 0xa, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0) r5 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) read$auto(r5, 0x0, 0xb4d3) write$auto(0xffffffffffffffff, 0x0, 0x7ff) write$auto(0x3, 0x0, 0xffd8) syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000001a40), 0xffffffffffffffff) 8m29.757769709s ago: executing program 2 (id=2030): r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/040/001\x00', 0x29202, 0x0) mmap$auto(0x2000, 0x80009, 0xb, 0x8000000008011, r0, 0x0) mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0x18000) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) fcntl$auto_F_SETLEASE(r1, 0x400, 0xffffffffffffffff) r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/input/event1\x00', 0x701140, 0x0) ioctl$auto_EVIOCRMFF(r2, 0x40044581, 0x0) mlockall$auto(0x6) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030000020000060006000000000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a000500aaaaaaaaaaaa00000a000500bbbbbbbbbbbb0000080003003800000008000200", @ANYRES32=0x0, @ANYBLOB="00006467bb15eaed2569adf10aec0a3500"], 0x68}, 0x1, 0x0, 0x0, 0x20040084}, 0x40090) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) setpriority$auto_PRIO_USER(0x2, 0x0, 0x40) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) madvise$auto(0x0, 0x2000040080000007, 0xe) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram2\x00', 0x14f642, 0x0) write$auto(0x3, 0x0, 0xfffffdef) 8m28.822969104s ago: executing program 2 (id=2032): r0 = socket(0x10, 0x2, 0x0) bpf$auto(0x1f, &(0x7f00000004c0)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x4, 0x5, r0, @relative_id=0x6, 0xfffffffffffffffd}, 0x37c) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='f\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) sendmmsg$auto(r0, 0x0, 0x4, 0x8) 8m28.368882494s ago: executing program 32 (id=2032): r0 = socket(0x10, 0x2, 0x0) bpf$auto(0x1f, &(0x7f00000004c0)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x4, 0x5, r0, @relative_id=0x6, 0xfffffffffffffffd}, 0x37c) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='f\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) sendmmsg$auto(r0, 0x0, 0x4, 0x8) 8m8.430018001s ago: executing program 3 (id=2090): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) read$auto(r0, &(0x7f00000001c0)='\\\x00', 0x8000) socket(0x10, 0x2, 0x0) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1000af"], 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (fail_nth: 20) 8m8.06997444s ago: executing program 3 (id=2093): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x742, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/ifb0/broadcast\x00', 0x591000, 0x0) fanotify_init$auto(0x200, 0x1) open(&(0x7f0000000200)='./file0\x00', 0x123c40, 0x140) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x91) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/power/pm_print_times\x00', 0x82942, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nlbl_cipsov4(0x0, 0xffffffffffffffff) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/pci0000:00/0000:00:03.0/consistent_dma_mask_bits\x00', 0x0, 0x0) openat$auto_usbfs_devices_fops_usb(0xffffffffffffff9c, &(0x7f0000000000), 0x80100, 0x0) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000004180)='/dev/snd/controlC1\x00', 0x28180, 0x0) socket(0xa, 0x3, 0x87) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/slab/kmalloc-64/min_partial\x00', 0x501, 0x0) r1 = setfsuid$auto(0xee00) r2 = setfsuid$auto(0xee01) setresuid$auto(r1, r2, r1) r3 = socket(0x10, 0x2, 0x9) sendmsg$auto_NL80211_CMD_SET_COALESCE(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000005304"], 0x5f}, 0x1, 0x0, 0x0, 0x40040094}, 0x40) write$auto(r3, &(0x7f0000000000)='-\x00', 0x2fb) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_INFO(r0, 0xc1105511, 0x0) 8m7.849207269s ago: executing program 3 (id=2094): ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = io_uring_setup$auto(0x6, 0x0) r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) close_range$auto(r1, r0, 0x8) r2 = socket(0x22, 0x1, 0x4) getsockopt$auto(r2, 0x0, 0x61, 0x0, &(0x7f00000000c0)=0x28) ioctl$auto_VHOST_SET_FEATURES(r1, 0x4008af00, &(0x7f0000000000)=0x200000000) read$auto(r1, 0x0, 0x3ff) r3 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer\x00', 0x0, 0x0) ioctl$auto_SNDCTL_SEQ_GETTIME(r4, 0x80045113, 0x0) r5 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)={0x38, r5, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x8, 0x3, 0x0, 0x1, [@nested={0x4, 0x6}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f1779048590828847"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) mmap$auto(0x0, 0x40, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x104, 0x6, 0x3}, {0x100, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}}) futex_waitv$auto(&(0x7f0000000300)={0x0, 0x4, 0x2}, 0x1, 0x0, &(0x7f0000000340)={0x225c17d03, 0x800006}, 0x0) close_range$auto(0x2, 0x8, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4460, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x0, 0x5, 0x2]}, 0x0) close_range$auto(0x2, 0x8, 0x0) 8m7.460411226s ago: executing program 3 (id=2096): sendmsg$auto_NL80211_CMD_MODIFY_LINK_STA(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800}, 0x804) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x1}, 0x2, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'virt_wifi0\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB="0dfb6a6f9e339a889c4135ec661593e25948d05d03e805d1cae33a816932664a7e2b69eea1e89aa664f885de3ca431f591743d0e39cd73b59e0db1c5ed8672eafadd419718aedd3661915cc81f4c816da9cdfb617b7cbc1fb0549815fc545e9d6a6b97d1ddc4357444786d5e82f26047ac2e29aed3db71ef0fb78f1ad9641ed668a5155d98e72d4a3f1c88ccf8c220da887fc092b998f0be3f1a027f863e4528eed4a466921202fe8111e834ab01ce564c71a55dde575b7d7d686e", @ANYRES16=r0, @ANYBLOB="130026bd7000fddbdf250200000008000300", @ANYRESOCT=r2, @ANYBLOB="08000c010c8d0000"], 0x24}, 0x1, 0x0, 0x0, 0x4004080}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) mlockall$auto(0x7) mmap$auto(0xf000, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) capset$auto(&(0x7f0000000100)={0x20080522}, 0x0) write$auto(0x3, 0x0, 0xffd8) mmap$auto(0x0, 0xfb1, 0xffffffff, 0x9b72, 0xffffffffffffffff, 0x8000) io_uring_setup$auto(0x6, 0x0) r3 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) futex$auto(&(0x7f0000000080)=0x1, 0x6, 0x40000001, 0x0, 0x0, 0x3) futex$auto(0x0, 0x5, 0x8, 0x0, &(0x7f0000000080)=0x203, 0x14002000) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x1}, 0x40000) r4 = socket(0xa, 0x802, 0x3a) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0x2b, 0x1, 0x1) setsockopt$auto(r4, 0x29, 0x21, &(0x7f0000000880)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\xff\x1b\x01\x1e\xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\xf2Vw\xbe\x1c$\xddm\x8a\x9d\x91_\vBj\x0eQ\xce\x16\'C\x8c\x01\x80\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\x00\x00\x00\x00\xe4\xa5\xfe\xb5h\xae\xec%\xf9\x94>\xd6,\xf3\x98\'\xb0\t~~\xb4\x98\xbb3=A\x9c\x17\xaa\xce\fh-M\xdb-\x15VX\xfe\xca+\xb5\x95\xb3JL\x0fl\xe84\xbd\xa3nO\x9f\xfa\xb1\x06$\b$i3\x83\xd7\x06\xd6\x1e\xdbB\x9bb\x1cXC\x8c\x8b\xd9\xff\xf2Bf\x99!Z\x13\xff\xca\xf3e\x015\x9b\x86\xd6$\x1a\r3\x91\xb7\x942\xeb\xadVA\xfc\x1f\xbf1\xb7T\xc1\xbf\xc0\xc2\xfc\xe8w\xd33\xb2,\xb0\x9fA3\xc2\xa2\x1cM\x825\x94U\xbbNeb\xd2\xa9\x0f\xed\x8b\xea\xfa\x8a\x04.\xffMIw\x0f\xd6\xae^\xd2\xf1j\xcb\r\xa4\x1d0d\xca\x81\x9c\x80GL\x0e\xe6\x19\x8au\x1a7\xc5|\xf6\x1e\xe00\xc6\"\x83\x1c\xa2\x9e\a\x1c\xea\xa3\x9c\xe1BF\x05b\xf6\xdcf\x04\xd9B\xb9\x98\x9cq\xbd\xfb\xb5~\xf2\x8d\x9f`\xec\xd0\xafY\xcf\x84', 0x18000113) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "3d64dc8bff7fff7f610000000024"}, 0x55) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) 8m6.893954357s ago: executing program 3 (id=2101): prctl$auto(0x23, 0xc, 0x2008, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/block/parameters/events_dfl_poll_msecs\x00', 0x80002, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) inotify_init1$auto(0x3000000000000) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0xae, 0x9, 0x7, &(0x7f0000000140)=0xfffff151) socket(0x25, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x15, 0x5, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/fcloop/ctl/del_local_port\x00', 0x80001, 0x0) write$auto(r0, &(0x7f0000000040)='^/]\x00', 0x9) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/arch_status\x00', 0x100382, 0x0) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, 0x0, 0x141a41, 0x0) socket(0x10, 0x2, 0x0) rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}}) socket(0x2, 0x6, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x20000, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x102, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1, 0x2, 0xfffffff2) r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) open(0x0, 0x22240, 0x55) getsockopt$auto(r1, 0x1, 0x2, &(0x7f00000000c0)='/proc/self/arch_status\x00', &(0x7f0000000100)=0xfffff000) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) open(&(0x7f0000000000)='./file0\x00', 0xa09c2, 0xa4) socket(0x2, 0x801, 0x100) 8m5.363369885s ago: executing program 3 (id=2107): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/bus/usb/drivers/usbip-host/match_busid\x00', 0x28b42, 0x0) mmap$auto(0x6, 0x40000000000e983, 0xdf, 0xeb1, r0, 0x8000) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/manager\x00', 0x40040, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000180)='/d\x00*\xc6\xc8\x8ad\xd1\x04\xbdifo\xffe\x10o\xeap\xdd\xa6P\x1a\xbb\xa8\xf9\x00', 0x100000a3d9) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/pcmC0D0p\x00', 0xa00, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram4\x00', 0xdd01, 0x0) open(0x0, 0x161342, 0x100) msync$auto(0x1ffff000, 0x1800000ff010000, 0x400000004) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x5, 0xfffffffc, 0x0) socket(0x2b, 0x1, 0x84) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0xa, 0x100) connect$auto(0x3, &(0x7f0000000000), 0x55) setsockopt$auto(0x3, 0x0, 0x1, 0x0, 0x9) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3e}}, 0x54) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) setsockopt$auto(0x3, 0x8084, 0x81e, 0x0, 0x8001) open(0x0, 0xeee00, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) msgctl$auto(0x8000, 0x100006, 0x0) sendmsg$auto_NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x20008814}, 0x20004090) socket(0x21, 0x2, 0x1) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x0, 0x4836, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) readv$auto(0x3, &(0x7f00000000c0)={0x0, 0x4}, 0x8) 8m4.58700053s ago: executing program 33 (id=2107): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/bus/usb/drivers/usbip-host/match_busid\x00', 0x28b42, 0x0) mmap$auto(0x6, 0x40000000000e983, 0xdf, 0xeb1, r0, 0x8000) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/manager\x00', 0x40040, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000180)='/d\x00*\xc6\xc8\x8ad\xd1\x04\xbdifo\xffe\x10o\xeap\xdd\xa6P\x1a\xbb\xa8\xf9\x00', 0x100000a3d9) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/pcmC0D0p\x00', 0xa00, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram4\x00', 0xdd01, 0x0) open(0x0, 0x161342, 0x100) msync$auto(0x1ffff000, 0x1800000ff010000, 0x400000004) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x5, 0xfffffffc, 0x0) socket(0x2b, 0x1, 0x84) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0xa, 0x100) connect$auto(0x3, &(0x7f0000000000), 0x55) setsockopt$auto(0x3, 0x0, 0x1, 0x0, 0x9) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3e}}, 0x54) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) setsockopt$auto(0x3, 0x8084, 0x81e, 0x0, 0x8001) open(0x0, 0xeee00, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) msgctl$auto(0x8000, 0x100006, 0x0) sendmsg$auto_NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x20008814}, 0x20004090) socket(0x21, 0x2, 0x1) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x0, 0x4836, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) readv$auto(0x3, &(0x7f00000000c0)={0x0, 0x4}, 0x8) 5m7.315391849s ago: executing program 1 (id=2602): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400) socket(0xa, 0x1, 0x100) ioperm$auto(0x7, 0x5ad2, 0x8) modify_ldt$auto(0x1, 0x0, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0) ioctl$auto_USBDEVFS_ALLOW_SUSPEND(0xffffffffffffffff, 0x5522, 0x0) r0 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0xc0000, 0x0) pread64$auto(r0, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{W\xed>\xe7l\xcb\x90\\/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x400) socket(0x1e, 0x1, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x400000000000948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) mmap$auto(0xc, 0x20009, 0x5, 0xeb1, 0x405, 0x8000) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) process_mrelease$auto(0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x50b41, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) mount$auto(0x0, &(0x7f0000001500)='./file0\x00', &(0x7f0000001540)='cifs\x00', 0x8002, 0x0) mincore$auto(0x1000, 0x8001, 0x0) fcntl$auto(0x8000000000000001, 0x26, 0x8) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0) 5m6.027496529s ago: executing program 1 (id=2609): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(0x3, 0x0, 0x7fffffff) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) mmap$auto(0x0, 0x40009, 0x36, 0x9b72, 0x7, 0x28000) ioctl$auto(r1, 0x4b66, 0x1) write$auto(0x1, 0x0, 0x80000000) bpf$auto(0x0, &(0x7f00000003c0)=@task_fd_query={0x0, r0, 0xd, 0x89, 0x2, 0x4, r0, 0x81, 0x9}, 0x6f4) read$auto(0x3, 0x0, 0x80) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) readv$auto(r0, 0x0, 0x401) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) ioctl$auto_SNDCTL_DSP_GETOSPACE(0xffffffffffffffff, 0x8010500c, &(0x7f0000004040)) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x100000000002, 0x783, 0x3, 0x8000000008011, r2, 0x40) write$auto(0x3, 0x0, 0xfffffdef) write$auto(0x3, 0x0, 0xfffffdef) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2b, 0x1, 0x1) r3 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r3, 0x0, 0x200, 0x100) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40) recvmmsg$auto(r3, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) 5m2.529504951s ago: executing program 1 (id=2624): close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/vulnerabilities/mmio_stale_data\x00', 0x0, 0x0) socket(0xa, 0x3, 0x3a) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0xa, 0x1, 0x84) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, &(0x7f0000000180)={0x1, 0x7, 0x6}) setsockopt$auto(r0, 0x0, 0x40, 0x0, 0x10000) mmap$auto(0x0, 0xdb81, 0x2, 0x40eb1, 0xffffffffffffffff, 0x300000000000) r1 = io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001700), r2) sendmsg$auto_NETDEV_CMD_DEV_GET(r2, &(0x7f0000001840)={0x0, 0x0, &(0x7f0000001800)={&(0x7f00000017c0)={0x14, r3, 0x301, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0xf0ffff, 0x0, 0x4005}, 0x28044004) sendmsg$auto_NETDEV_CMD_NAPI_SET(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r3, 0x100, 0x70bd27, 0x25dfdbfe, {}, [@NETDEV_A_NAPI_ID={0x8, 0x2, 0x8000}]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x0) fanotify_init$auto(0x5, 0x2000000000002) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) ioctl$auto(r4, 0x2, 0x9) ioctl$auto(0x3, 0x400c4d09, r4) 5m2.109163829s ago: executing program 1 (id=2626): r0 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(0xffffffffffffffff, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000003180)=ANY=[@ANYBLOB="14000000", @ANYRES16=r0, @ANYBLOB='\x00'/14], 0x14}, 0x1, 0x0, 0x0, 0x6000091}, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) r1 = open(&(0x7f0000000800)='./file0\x00', 0xe4201, 0x17c) fcntl$auto(r1, 0x400, 0x1) socket(0x1, 0x2, 0x40000008) unshare$auto(0x40000080) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ip6_mr_vif\x00', 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f00000000c0)=""/4087, 0xff7) mmap$auto(0x0, 0x20009, 0x7, 0xeb1, 0x0, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/mm/transparent_hugepage/shrink_underused\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000140)=""/1, 0x1) setsockopt$auto(0x400000000000003, 0x20000029, 0x21b, 0x0, 0x3) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd3/queue/iosched/write_expire\x00', 0x20681, 0x0) r4 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x30) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r5) sendmsg$auto_NL80211_CMD_GET_WIPHY(r5, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r6, @ANYBLOB="810b25bd7080fbdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004) recvmmsg$auto(r5, &(0x7f0000000180)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x2, 0x6}, 0x803}, 0x10a, 0x6, 0x0) r7 = openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/buffer_percent\x00', 0x1, 0x0) mmap$auto(0x2, 0x40000000008, 0x6, 0x7ffffffffffffffd, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0x3, 0x66) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) writev$auto(r7, &(0x7f00000035c0)={0x0, 0x4}, 0x9) fcntl$auto(r4, 0xfffffffd, 0x0) r8 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC0\x00', 0x101a02, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r8, 0xc1105517, &(0x7f00000001c0)={{@raw=0xfff, 0x100110d, 0xfffd, 0x6, "e927783f468fa2e92fe8ec7a46cbb766439daa1ee1aa0000000000040000660e07010000000000000080fbfb"}, 0x6, 0x0, 0x4, @raw=0x404, @enumerated={0x55d3, 0x7, "bf154d70dcfcea02faacb07c4222db1f207fdb681dc9b0bf2c6c9ce16d51ebc73df6a7aa16659cd5e4dc8374caf945548e604179f1f87c3bd8701d3d5c3d998c", 0xffffffffffffffff, 0x91e0}, "a4699d30a05edbe0d28473c399a7dc920b153e9b1675451d7de94b4123f970bedd3460c667373fcc59b584d81592f6ab606c276852295e00af49e6de6e768034"}) r9 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ip6_mr_vif\x00', 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r9, &(0x7f00000000c0)=""/4087, 0xff7) 5m0.559565453s ago: executing program 1 (id=2634): mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x8000003, 0x7) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) ioctl$auto_SNAPSHOT_PLATFORM_SUPPORT(r0, 0x330f, 0x0) msgrcv$auto(0x0, 0x0, 0xff9, 0xfffffffffffffffc, 0xb4) msgsnd$auto(0x0, 0x0, 0x8, 0x9) close_range$auto(0x2, 0xffffffffffffffff, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) r2 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) sendfile$auto(r2, r1, 0x0, 0x8) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) r4 = socket(0x15, 0x5, 0x0) bind$auto(r4, &(0x7f0000000040)=@generic={0xa, "986d17a55d9b07bcc94c4e3770c4"}, 0x6a) close_range$auto(0x2, 0x8, 0x0) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r5) ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0) 5m0.126847124s ago: executing program 1 (id=2637): r0 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0) write$auto_fuse_dev_operations_fuse_i(r0, &(0x7f0000000440), 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x540b, 0xfffffffffffffffd) socket(0xf, 0x3, 0x2) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r3 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(r3, 0x2, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x8000001f, 0x2, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000) fsopen$auto(0x0, 0x1) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) setsockopt$auto(r1, 0xc, 0x7fff, &(0x7f0000000040)='/]&&\x00', 0x7) socket(0xa, 0x5, 0x94) mmap$auto(0x0, 0x400108, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) unshare$auto(0x40000080) mmap$auto(0x0, 0x80000000003, 0x4000000000df, 0x40eb9, 0x401, 0x300000000000) mkdir$auto(&(0x7f0000000040)='./file0\x00', 0x2) r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x8000, 0x70) mknodat$auto(r4, &(0x7f00000003c0)='./file0\x00', 0xfff, 0xfffffff8) renameat2$auto(r4, &(0x7f0000000200)='./file0\x00', r4, &(0x7f0000000240)='./file1\x00', 0x1) 4m44.870895253s ago: executing program 34 (id=2637): r0 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0) write$auto_fuse_dev_operations_fuse_i(r0, &(0x7f0000000440), 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x540b, 0xfffffffffffffffd) socket(0xf, 0x3, 0x2) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r3 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(r3, 0x2, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x8000001f, 0x2, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000) fsopen$auto(0x0, 0x1) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) setsockopt$auto(r1, 0xc, 0x7fff, &(0x7f0000000040)='/]&&\x00', 0x7) socket(0xa, 0x5, 0x94) mmap$auto(0x0, 0x400108, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) unshare$auto(0x40000080) mmap$auto(0x0, 0x80000000003, 0x4000000000df, 0x40eb9, 0x401, 0x300000000000) mkdir$auto(&(0x7f0000000040)='./file0\x00', 0x2) r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x8000, 0x70) mknodat$auto(r4, &(0x7f00000003c0)='./file0\x00', 0xfff, 0xfffffff8) renameat2$auto(r4, &(0x7f0000000200)='./file0\x00', r4, &(0x7f0000000240)='./file1\x00', 0x1) 8.964562303s ago: executing program 0 (id=3376): mmap$auto(0x0, 0x40009, 0x5, 0x9b71, 0x7, 0x28000) shmat$auto(0x59, &(0x7f0000000580)='(\x04', 0xfffffffd) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000003) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/blkio.prio.class\x00', 0x183042, 0x0) sendfile$auto(r0, r0, 0x0, 0x8000) write$auto(0x3, 0x0, 0x7) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_pid_set_comm_operations_base(0xffffffffffffff9c, 0x0, 0x2, 0x0) prctl$auto(0x9, 0x0, 0x6, 0xfffffffffffffffa, 0x1) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_proc_pid_set_comm_operations_base(0xffffffffffffff9c, 0x0, 0x10500, 0x0) pidfd_send_signal$auto_PIDFD_SIGNAL_PROCESS_GROUP(0xffffffffffffffff, 0x7, 0x0, 0x4) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x8000, 0x0) sendmsg$auto_IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="d0000000", @ANYRES16=0x0, @ANYBLOB="040026bd7000fcdbdf2504000000b1000180f5c53c7461b64f8c60fb90f69a1d13d52d6da3527ec7b5be48e686e7364c12793198cdcb6a78253c3bdd7916ced602b5b19762a916baa53c0411bfbf1477407c42963b5791e719e91567d82c697af89370f6f7872979c6713c9b4265a481e529d40b485bc24dac0ed112ebaf8e0f59b20e48f9cffcaa0bed04dad70c00c2d584eb40a6d01a4f463f88d47ae307e73bfd4123c7765a43faedde7088214666ba0cf2c894acec08005c00", @ANYRES32, @ANYBLOB="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"], 0x348}, 0x1, 0x0, 0x0, 0x4004080}, 0x0) r4 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)=ANY=[@ANYBLOB="17000000", @ANYBLOB='j\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4) sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) ioctl$auto_SNDCTL_DSP_SPEED(r3, 0xc0045002, 0x0) read$auto(r3, 0x0, 0xcefbce6) read$auto_nsim_dev_trap_fa_cookie_fops_dev(r3, &(0x7f0000000000)=""/156, 0x9c) socket(0x2, 0x1, 0x0) 7.816229883s ago: executing program 0 (id=3382): open(0x0, 0x161342, 0x100) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, 0x0, 0x0) lseek$auto(0xffffffffffffffff, 0x7fffffffffffffff, 0x3) truncate$auto(0x0, 0x0) ioctl$auto_TIOCMGET2(0xffffffffffffffff, 0x5415, 0x0) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x8880) socket(0xa, 0x5, 0x0) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0d566b3dd008e4edd96502"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0x200000c4) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}, 0x1, 0x0, 0x0, 0x300}, 0x40000) 7.408083216s ago: executing program 0 (id=3384): openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x264302, 0x0) r0 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) write$auto(r0, &(0x7f0000000100)='\x01\x00\xa8a\xe0a\x1cJ4\x00\xaaN\xc8\xf9\x12\xeb\x00\xab`{U\x04\x12\xb0\x96\x82\x1f\x16\x11_\x97\x0e\x06\xa7Y}`@\x1b\x00\x00\x00\x00\x00\x00\x00\x00\xd22z\x14z\xbf\xf94\x92mP\x87[\xa4p\x93\xd4\xe3\xe8Vhpy\xf6\xce\xbb\x8c\xb2\xc9>\xd9Y\x8d\xbe\x90\xbcu*\xc8\xdc\x0e]\x01\xd1\x9e\x0f\x05_\xfc\xb8\xeb\xd9\xb7\xa4\a\xae\xa5I\f7\x17\x91L}m\xea\r+\xecy\xe1\xe0D\x824\xfc[+\x0f\xe0\x11\xe8\x83\xc4\"\xcc&z\x8c@pC\xb2\xf6k\x14~iA?\x90Pnj\x82\xea\xf0\xfa\xe8\xe1\x81Q6\x11\xe4T\xd5\xf0\xb1\xc65tr\x8b\x83^\xa17uX\xe7l\xcb\x90\\/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x400) socket(0x1e, 0x1, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0x21, 0x3, 0x9) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x400000000000948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) mmap$auto(0xc, 0x20009, 0x5, 0xeb1, 0x405, 0x2) unshare$auto(0x40000080) process_mrelease$auto(0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x50b41, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) mount$auto(0x0, &(0x7f0000001500)='./file0\x00', &(0x7f0000001540)='cifs\x00', 0x8002, 0x0) mincore$auto(0x1000004000001000, 0x8001, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000007c0), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r2, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="050725bd7000fbdbdf25093e"], 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x880) 5.10902812s ago: executing program 4 (id=3389): r0 = socket$nl_generic(0x10, 0x3, 0x10) open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f00000003c0)=""/192, 0xc0) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/card1/pcm0p/sub0/hw_params\x00', 0x1c1282, 0x0) read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000280)=""/65, 0x41) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x40000008000) sendmsg$auto_TIPC_NL_NET_SET(r0, 0x0, 0x40017) mmap$auto(0x0, 0x2020009, 0x10, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x23, 0x8, 0x2008, 0x0, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, r1, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) syz_clone3(&(0x7f0000000400)={0x9840100, 0x0, 0x0, 0x0, {0x31}, 0x0, 0x0, 0x0, 0x0}, 0x58) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x2, 0x0) mmap$auto(0x0, 0x10000, 0x8000, 0xeb1, 0xfffffffffffffffa, 0x8000) ppoll$auto(0x0, 0x9, 0x0, 0x0, 0x8) madvise$auto(0x0, 0x200007, 0x19) syz_clone3(0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0) futex_wait$auto(0x0, 0x0, 0x7f, 0x2, 0x0, 0x1) futex_wake$auto(0x0, 0x7, 0xfffffffb, 0x2) sysfs$auto(0x2, 0x23, 0x0) r3 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r3, 0x0, 0x4) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) 4.132796886s ago: executing program 5 (id=3390): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r0) sendmsg$auto_NL80211_CMD_GET_WIPHY(r0, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r1, @ANYBLOB="810b25bd7080fbdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004) recvmmsg$auto(r0, &(0x7f0000000180)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x2, 0x6}, 0x803}, 0x10a, 0x6, 0x0) (fail_nth: 34) 3.678044135s ago: executing program 5 (id=3391): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) open(&(0x7f0000000140)='./file0\x00', 0x220c0, 0x20) chmod$auto(&(0x7f00000000c0)='./file0\x00', 0xf4ba) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x10001, 0x9) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001100)='/proc/bus/pci/00/03.0\x00', 0xa0581, 0x0) write$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000001140)="8cbdca", 0x3) writev$auto(r1, &(0x7f0000001d40)={0x0, 0x2}, 0x6) read$auto(r0, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x1007}, 0x3) execve$auto(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0) 3.615989051s ago: executing program 4 (id=3392): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0) write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000140), r1) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x14, r2, 0x1, 0x70bd25, 0x25dfdbff, {0x4, 0x0, 0xd00}}, 0x14}, 0x1, 0x0, 0x0, 0x20004041}, 0x4004040) 3.324406389s ago: executing program 6 (id=3393): mmap$auto(0x0, 0x2020009, 0xbe, 0xeb1, 0xfffffffffffffffa, 0x2000000000008000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x3, &(0x7f0000000000)={0x8, 0x66, 0x2, 0xc3d, 0x1, 0x400004, 0xffffffffffffffff, [0x0, 0x34, 0x7fffffff], {0x100, 0x6, 0x8000, 0x80000000, 0xa5, 0x7, 0xb, 0xba8c, 0x5}, {0xfffffc00, 0x6, 0x0, 0x401, 0x2008, 0x8, 0x0, 0x8e9, 0x6}}) lstat$auto(&(0x7f0000000000)='./file1\x00', 0x0) r0 = socket(0x2, 0x6, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'vlan0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, &(0x7f0000021740)={0x0, 0x0, &(0x7f0000021700)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x4004804) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[], 0x1ac}}, 0x20044000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x103, 0x60000000) 2.877651412s ago: executing program 4 (id=3394): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000440), r0) lstat$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x9, 0x6, 0x8, 0x8000, 0x0, 0xee01, 0x0, 0x9, 0x100000000, 0x3, 0x4, 0x1000, 0x4, 0x8, 0x4, 0x3, 0x9}) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000680), r1) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000006c0)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="110b27f27200fbdbdf250c00000008000300", @ANYRES32=r3], 0x24}, 0x1, 0x0, 0x0, 0x4001}, 0x9800) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) statx$auto(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x6, 0x4, &(0x7f0000000180)={0x1, 0x9, 0xba, 0x85, 0xee00, 0xffffffffffffffff, 0x6, 0x200, 0x7fff, 0x7, 0x6, 0x7fff, {0xf, 0xce9e}, {0x6, 0x1}, {0xc, 0x7fffffff}, {0x40, 0xba23}, 0xb44, 0x400, 0xf, 0x9, 0x400, 0x733, 0xffffffff, 0x8, 0x6, 0x2, 0x1, 0x7, [0x1, 0x8, 0x16e, 0x400, 0xe, 0xaa, 0x0, 0x100, 0x2]}) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) read$auto_fake_panic_fops_(0xffffffffffffffff, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8ad00, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x5, 0x0) r4 = socket(0xa, 0x801, 0x84) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) msgctl$auto_IPC_INFO(0x100, 0x3, &(0x7f00000012c0)={{0x632, 0xffffffffffffffff, 0xee00, 0x1, 0x5, 0x1, 0x80}, 0x0, 0x0, 0x1b, 0x7, 0x5, 0x7, 0x1, 0xdd34, 0x7, 0x8, @raw=0xffff}) write$auto(r5, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) msgctl$auto_IPC_RMID(0xffff, 0x0, &(0x7f0000000280)={{0x4, r6, r7, 0xfffffffd, 0x9, 0xd, 0xb}, &(0x7f0000000200)=0x5, &(0x7f0000000240)=0x5, 0x1, 0x1, 0x6e, 0xe811, 0x5, 0x4, 0x5, 0x10, @raw=0x5, @raw=0x7}) r8 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_IPVS_CMD_SET_SERVICE(0xffffffffffffffff, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={&(0x7f0000000580)=ANY=[@ANYBLOB=',\x00\x00', @ANYRES16=r8, @ANYBLOB="010028bd7000fcdbdf2502000000180001800800058004007d000c00018002"], 0x2c}, 0x1, 0x0, 0x0, 0x44050}, 0x4008000) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x54) get_robust_list$auto(0x0, 0x0, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) setsockopt$auto(r4, 0x1, 0x3f, 0x0, 0xb) socket$nl_generic(0x10, 0x3, 0x10) 2.51271052s ago: executing program 5 (id=3395): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400) socket(0xa, 0x1, 0x100) ioperm$auto(0x7, 0x5ad2, 0x8) modify_ldt$auto(0x1, 0x0, 0x10) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0) ioctl$auto_USBDEVFS_ALLOW_SUSPEND(0xffffffffffffffff, 0x5522, 0x0) r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) pread64$auto(r1, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{W\xed>\xe7l\xcb\x90\\/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x400) socket(0x27, 0x3, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0x21, 0x3, 0x9) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000240)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x400000000000948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0) read$auto(r3, 0x0, 0x20) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/fail-nth\x00', 0x25e040, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, 0x0, 0x2002, 0x0) bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=r0}, 0xa3) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1000000000001ff, 0x4000000000007, 0x1, 0xfffffffffffffefd, 0x948b, 0x3, 0x15f4da0a, 0x4, 0x3, 0x61, 0x3ff, 0x7, 0x6d3e, 0x9, 0xffffffff, 0x800004]}, 0x0) mmap$auto(0xc, 0x20009, 0x5, 0xeb1, 0x405, 0x8000) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) process_mrelease$auto(0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) msync$auto(0x1dfff000, 0x8000000000000000, 0x9) 2.456125961s ago: executing program 6 (id=3396): mmap$auto(0x0, 0x20009, 0xdf, 0xeb4, 0x401, 0x8000) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@rc={0x1f, @none, 0x5}, 0x800069) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x900, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x18, 0x5, 0x2) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0x23, 0x80805, 0x0) modify_ldt$auto(0xf, 0x0, 0x2000000200000010) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) ioperm$auto(0x3, 0xe, 0x2000000000000149) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/ip6_vti0/stable_secret\x00', 0x2, 0x0) pwrite64$auto(r0, 0x0, 0x1, 0x8) 1.395109924s ago: executing program 6 (id=3397): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x8, &(0x7f0000000140)={0x3ff, 0x2, 0x9, 0x10001, 0xc, 0xc05, 0xffffffffffffffff, [0x7fd, 0x1001, 0x8], {0x9, 0x4, 0x8, 0x0, 0x420, 0x1001, 0x3fdc, 0x3, 0x5}, {0xa, 0x140, 0x54ed, 0x0, 0x101, 0xff, 0x7, 0xa, 0x100000001}}) socket(0x10, 0x2, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x0, 0xffffffffffffffff, 0x801, 0x10008, 0x400, 0x1000049, r0, 0x20000000000804, 0x3}, 0x6f3) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x28102, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, 0x0, 0x2dc08f24db163610, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368a, 0x2, {0x100000000, 0x10000}, 0x5, 0x8, 0xfffffffffffffffd, 0x1008000, 0x0, 0x9, 0x81, 0xdfffffffffff628e, 0x6, 0xdeb1, 0x808}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) close_range$auto(r1, 0xffffffffffffffff, 0xfffff21b) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0) getrandom$auto(0x0, 0x6000000, 0x3) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) ioctl$auto_FIOQSIZE(0xffffffffffffffff, 0x5460, 0xffffffffffffffff) read$auto_aoe_fops_aoechr(0xffffffffffffffff, &(0x7f0000000040)=""/4096, 0x1000) close_range$auto(0x2, 0x8000, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'veth0\x00'}) close_range$auto(0x0, 0xffffffffffffffff, 0x0) 1.365181178s ago: executing program 4 (id=3398): mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x8000003, 0x7) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) ioctl$auto_SNAPSHOT_PLATFORM_SUPPORT(r0, 0x330f, 0x0) msgrcv$auto(0x0, 0x0, 0xff9, 0xfffffffffffffffc, 0xb4) msgsnd$auto(0x0, 0x0, 0x8, 0x9) close_range$auto(0x2, 0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) move_pages$auto(0x0, 0x0, 0x0, 0x0, 0x0, 0x2) r1 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) write$auto(r1, &(0x7f0000000340)='3\x00', 0x6) 445.320397ms ago: executing program 0 (id=3399): openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0x109000, 0x0) openat$auto_trace_options_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/options/test_nop_refuse\x00', 0x204001, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) socket(0x23, 0x800, 0x0) pipe2$auto(0x0, 0x80) r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) socket(0x18, 0x4, 0x0) openat$auto_fops_blob_file(0xffffffffffffff9c, &(0x7f0000011500), 0x40002, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x20c40, 0x0) openat$auto_proc_mounts_operations_mnt_namespace(0xffffffffffffff9c, 0x0, 0x121080, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x2, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) prctl$auto(0x23, 0xf, 0x0, 0x200000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x103400, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x183042, 0x0) ioctl$auto_IOC_PR_RESERVE(r0, 0x401070c9, &(0x7f0000000040)={0x7ed3, 0x4, 0x2}) socketpair$auto(0x1, 0x5, 0xfffffffd, 0x0) ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) 373.790756ms ago: executing program 4 (id=3400): keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x0, 0x5, 0x8) setresgid$auto(0xa05, 0x4, 0x0) mknod$auto(&(0x7f00000003c0)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5', 0x20e9, 0x103) access$auto(&(0x7f0000000000)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00', 0x3) 348.49519ms ago: executing program 6 (id=3401): sendmsg$auto_NFC_CMD_STOP_POLL(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x800000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x800) mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NETDEV_CMD_QUEUE_GET(r0, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)={0x14, 0x0, 0x1, 0x70bd2c, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x8014) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="1b000000", @ANYBLOB='J'], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/sctp/rto_max\x00', 0x101201, 0x0) write$auto_proc_sys_file_operations_proc_sysctl(r1, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/dummy_hcd.3/usb4/4-0:1.0/usb4-port1/quirks\x00', 0xa081, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_DEBUG_GET(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="090329bde1c3e400049029"], 0x14}, 0x1, 0x0, 0x0, 0x24008800}, 0x20044840) io_uring_setup$auto(0xb, &(0x7f0000000080)={0x80000000, 0x10000d, 0x2000, 0x6, 0x7, 0x8, 0xffffffffffffffff, [0x0, 0x0, 0xe], {0x0, 0x4, 0x8c48, 0x29f, 0x103, 0x7f, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x9, 0x76c5, 0x8, 0x100000000}}) r4 = openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/buffer_percent\x00', 0x80000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ttyu0\x00', 0x484200, 0x0) openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/kvm/max_mmu_rmap_size\x00', 0x20002, 0x0) readv$auto(r4, &(0x7f0000000040)={0x0, 0x2}, 0x5) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) 285.062202ms ago: executing program 5 (id=3402): r0 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) write$auto(r0, &(0x7f0000000340)='3\x00', 0x6) 64.904582ms ago: executing program 4 (id=3403): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x8, &(0x7f0000000140)={0x3ff, 0x2, 0x9, 0x10001, 0xc, 0xc05, 0xffffffffffffffff, [0x7fd, 0x1001, 0x8], {0x9, 0x4, 0x8, 0x0, 0x420, 0x1001, 0x3fdc, 0x3, 0x5}, {0xa, 0x140, 0x54ed, 0x0, 0x101, 0xff, 0x7, 0xa, 0x100000001}}) socket(0x10, 0x2, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x0, 0xffffffffffffffff, 0x801, 0x10008, 0x400, 0x1000049, r0, 0x20000000000804, 0x3}, 0x6f3) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x28102, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, 0x0, 0x2dc08f24db163610, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368a, 0x2, {0x100000000, 0x10000}, 0x5, 0x8, 0xfffffffffffffffd, 0x1008000, 0x0, 0x9, 0x81, 0xdfffffffffff628e, 0x6, 0xdeb1, 0x808}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) close_range$auto(r1, 0xffffffffffffffff, 0xfffff21b) ioctl$auto(0xffffffffffffffff, 0x5453, 0xffffffffffffffff) getrandom$auto(0x0, 0x6000000, 0x3) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) ioctl$auto_FIOQSIZE(0xffffffffffffffff, 0x5460, 0xffffffffffffffff) read$auto_aoe_fops_aoechr(0xffffffffffffffff, &(0x7f0000000040)=""/4096, 0x1000) close_range$auto(0x2, 0x8000, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'veth0\x00'}) close_range$auto(0x0, 0xffffffffffffffff, 0x0) 32.987253ms ago: executing program 0 (id=3404): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400) socket(0xa, 0x1, 0x100) ioperm$auto(0x7, 0x5ad2, 0x8) modify_ldt$auto(0x1, 0x0, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0) ioctl$auto_USBDEVFS_ALLOW_SUSPEND(0xffffffffffffffff, 0x5522, 0x0) r0 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) mseal$auto(0x8000000000000000, 0xfefffffffffffff3, 0x0) pread64$auto(r0, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{W\xed>\xe7l\xcb\x90\\/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x400) socket(0x1e, 0x1, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0x21, 0x3, 0x9) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x400000000000948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) mmap$auto(0xc, 0x20009, 0x5, 0xeb1, 0x405, 0x8000) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0xffffffffffffffff) process_mrelease$auto(0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) mount$auto(0x0, &(0x7f0000001500)='./file0\x00', &(0x7f0000001540)='cifs\x00', 0x8002, 0x0) mincore$auto(0x1000, 0x8001, 0x0) fcntl$auto(0x8000000000000001, 0x26, 0x8) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0) 0s ago: executing program 5 (id=3405): mmap$auto(0x0, 0x20009, 0xdf, 0xeb4, 0x401, 0x8000) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@rc={0x1f, @none, 0x5}, 0x800069) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x900, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x18, 0x5, 0x2) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) modify_ldt$auto(0xf, 0x0, 0x2000000200000010) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) ioperm$auto(0x3, 0xe, 0x2000000000000149) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/ip6_vti0/stable_secret\x00', 0x2, 0x0) pwrite64$auto(r0, 0x0, 0x1, 0x8) kernel console output (not intermixed with test programs): 0476][T18852] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1244.410508][T18852] RIP: 0033:0x7f5ea7f8e969 [ 1244.410534][T18852] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1244.410568][T18852] RSP: 002b:00007f5ea8e54038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1244.410599][T18852] RAX: ffffffffffffffda RBX: 00007f5ea81b5fa0 RCX: 00007f5ea7f8e969 [ 1244.410621][T18852] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1244.410641][T18852] RBP: 00007f5ea8010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1244.410661][T18852] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1244.410681][T18852] R13: 0000000000000000 R14: 00007f5ea81b5fa0 R15: 00007ffd212c9fb8 [ 1244.410728][T18852] [ 1244.455353][T18852] Failed to initialize the IGMP autojoin socket (err -12) [ 1244.458066][ C0] vkms_vblank_simulate: vblank timer overrun [ 1244.707308][ C0] vkms_vblank_simulate: vblank timer overrun [ 1244.713415][ C0] hrtimer: interrupt took 298532188 ns [ 1244.813430][ C0] vkms_vblank_simulate: vblank timer overrun [ 1246.256877][T18863] bridge0: port 4(bond0) entered blocking state [ 1246.293894][T18863] bridge0: port 4(bond0) entered disabled state [ 1246.309192][T18863] bond0: entered allmulticast mode [ 1246.314384][T18863] bond_slave_0: entered allmulticast mode [ 1246.345323][T18863] bond_slave_1: entered allmulticast mode [ 1246.380358][T18863] bond0: entered promiscuous mode [ 1246.413838][T18863] bond_slave_0: entered promiscuous mode [ 1246.538024][T18863] bond_slave_1: entered promiscuous mode [ 1246.545645][T18863] bridge0: port 4(bond0) entered blocking state [ 1246.552092][T18863] bridge0: port 4(bond0) entered forwarding state [ 1246.593813][T18867] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2760'. [ 1247.006402][T18868] CIFS mount error: No usable UNC path provided in device string! [ 1247.006402][T18868] [ 1247.048495][T18868] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1248.525540][T18893] CIFS mount error: No usable UNC path provided in device string! [ 1248.525540][T18893] [ 1248.535904][T18893] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1249.715958][T18914] FAULT_INJECTION: forcing a failure. [ 1249.715958][T18914] name failslab, interval 1, probability 0, space 0, times 0 [ 1249.968122][T18914] CPU: 1 UID: 0 PID: 18914 Comm: syz.5.2770 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1249.968180][T18914] Tainted: [U]=USER [ 1249.968192][T18914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1249.968213][T18914] Call Trace: [ 1249.968225][T18914] [ 1249.968238][T18914] dump_stack_lvl+0x16c/0x1f0 [ 1249.968301][T18914] should_fail_ex+0x512/0x640 [ 1249.968339][T18914] ? fs_reclaim_acquire+0xae/0x150 [ 1249.968405][T18914] ? tomoyo_encode2+0x100/0x3e0 [ 1249.968450][T18914] should_failslab+0xc2/0x120 [ 1249.968493][T18914] __kmalloc_noprof+0xd2/0x510 [ 1249.968550][T18914] ? d_absolute_path+0x136/0x1a0 [ 1249.968614][T18914] tomoyo_encode2+0x100/0x3e0 [ 1249.968666][T18914] tomoyo_encode+0x29/0x50 [ 1249.968710][T18914] tomoyo_realpath_from_path+0x18f/0x6e0 [ 1249.968770][T18914] tomoyo_path_number_perm+0x245/0x580 [ 1249.968809][T18914] ? tomoyo_path_number_perm+0x237/0x580 [ 1249.968853][T18914] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1249.968896][T18914] ? find_held_lock+0x2b/0x80 [ 1249.968967][T18914] ? find_held_lock+0x2b/0x80 [ 1249.968999][T18914] ? hook_file_ioctl_common+0x145/0x410 [ 1249.969046][T18914] ? __fget_files+0x20e/0x3c0 [ 1249.969090][T18914] security_file_ioctl+0x9b/0x240 [ 1249.969134][T18914] __x64_sys_ioctl+0xb7/0x200 [ 1249.969186][T18914] do_syscall_64+0xcd/0x230 [ 1249.969237][T18914] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1249.969271][T18914] RIP: 0033:0x7f186518e969 [ 1249.969296][T18914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1249.969329][T18914] RSP: 002b:00007f1866040038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1249.969360][T18914] RAX: ffffffffffffffda RBX: 00007f18653b6080 RCX: 00007f186518e969 [ 1249.969389][T18914] RDX: 0000000000000000 RSI: 0000000000005437 RDI: 0000000000000002 [ 1249.969408][T18914] RBP: 00007f1866040090 R08: 0000000000000000 R09: 0000000000000000 [ 1249.969429][T18914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1249.969449][T18914] R13: 0000000000000000 R14: 00007f18653b6080 R15: 00007ffd7fdf4f68 [ 1249.969492][T18914] [ 1249.969624][T18914] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1251.234330][T18930] FAULT_INJECTION: forcing a failure. [ 1251.234330][T18930] name failslab, interval 1, probability 0, space 0, times 0 [ 1251.247019][T18930] CPU: 0 UID: 0 PID: 18930 Comm: syz.6.2776 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1251.247077][T18930] Tainted: [U]=USER [ 1251.247090][T18930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1251.247112][T18930] Call Trace: [ 1251.247123][T18930] [ 1251.247137][T18930] dump_stack_lvl+0x116/0x1f0 [ 1251.247200][T18930] should_fail_ex+0x512/0x640 [ 1251.247247][T18930] should_failslab+0xc2/0x120 [ 1251.247294][T18930] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1251.247337][T18930] ? __send_signal_locked+0x159/0x12c0 [ 1251.247379][T18930] __send_signal_locked+0x159/0x12c0 [ 1251.247416][T18930] ? __lock_task_sighand+0x146/0x340 [ 1251.247457][T18930] do_send_specific+0x1e8/0x370 [ 1251.247504][T18930] ? __pfx_do_send_specific+0x10/0x10 [ 1251.247548][T18930] ? __task_pid_nr_ns+0x17c/0x500 [ 1251.247611][T18930] do_rt_tgsigqueueinfo+0xa9/0x100 [ 1251.247662][T18930] __x64_sys_rt_tgsigqueueinfo+0x17a/0x210 [ 1251.247717][T18930] ? __pfx___x64_sys_rt_tgsigqueueinfo+0x10/0x10 [ 1251.247772][T18930] ? xfd_validate_state+0x5d/0x180 [ 1251.247826][T18930] do_syscall_64+0xcd/0x230 [ 1251.247880][T18930] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1251.247914][T18930] RIP: 0033:0x7f3e0398e969 [ 1251.247942][T18930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1251.247975][T18930] RSP: 002b:00007f3e047df038 EFLAGS: 00000246 ORIG_RAX: 0000000000000129 [ 1251.248008][T18930] RAX: ffffffffffffffda RBX: 00007f3e03bb5fa0 RCX: 00007f3e0398e969 [ 1251.248031][T18930] RDX: 0000000000000021 RSI: 0000000000000041 RDI: 0000000000000040 [ 1251.248053][T18930] RBP: 00007f3e03a10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1251.248075][T18930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1251.248096][T18930] R13: 0000000000000000 R14: 00007f3e03bb5fa0 R15: 00007ffee088e258 [ 1251.248141][T18930] [ 1251.440708][ C0] vkms_vblank_simulate: vblank timer overrun [ 1251.506767][T18926] zswap: compressor not available [ 1253.291430][T18957] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2781'. [ 1257.912066][T18999] FAULT_INJECTION: forcing a failure. [ 1257.912066][T18999] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1257.936159][T18999] CPU: 0 UID: 0 PID: 18999 Comm: syz.0.2790 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1257.936221][T18999] Tainted: [U]=USER [ 1257.936233][T18999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1257.936255][T18999] Call Trace: [ 1257.936267][T18999] [ 1257.936281][T18999] dump_stack_lvl+0x16c/0x1f0 [ 1257.936338][T18999] should_fail_ex+0x512/0x640 [ 1257.936385][T18999] get_futex_key+0x49e/0x1000 [ 1257.936430][T18999] ? __pfx_get_futex_key+0x10/0x10 [ 1257.936484][T18999] futex_wake+0xe7/0x4e0 [ 1257.936534][T18999] ? __pfx_futex_wake+0x10/0x10 [ 1257.936585][T18999] ? kmem_cache_free+0x2d4/0x4d0 [ 1257.936623][T18999] ? fd_install+0x225/0x750 [ 1257.936653][T18999] ? putname+0x154/0x1a0 [ 1257.936709][T18999] do_futex+0x1e3/0x350 [ 1257.936750][T18999] ? __pfx_do_futex+0x10/0x10 [ 1257.936802][T18999] __x64_sys_futex+0x1e0/0x4c0 [ 1257.936850][T18999] ? __pfx___x64_sys_futex+0x10/0x10 [ 1257.936894][T18999] ? rcu_is_watching+0x12/0xc0 [ 1257.936941][T18999] do_syscall_64+0xcd/0x230 [ 1257.936995][T18999] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1257.937030][T18999] RIP: 0033:0x7f5ea7f8e969 [ 1257.937057][T18999] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1257.937092][T18999] RSP: 002b:00007f5ea8e120e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1257.937125][T18999] RAX: ffffffffffffffda RBX: 00007f5ea81b6168 RCX: 00007f5ea7f8e969 [ 1257.937148][T18999] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f5ea81b616c [ 1257.937170][T18999] RBP: 00007f5ea81b6160 R08: 00007f5ea8e55000 R09: 0000000000000000 [ 1257.937192][T18999] R10: 0000000000000009 R11: 0000000000000246 R12: 00007f5ea81b616c [ 1257.937213][T18999] R13: 0000000000000000 R14: 00007ffd212c9ed0 R15: 00007ffd212c9fb8 [ 1257.937255][T18999] [ 1263.762006][T19035] aoe: skb alloc failure [ 1263.778321][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 1263.784741][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 1264.665124][T19028] CIFS mount error: No usable UNC path provided in device string! [ 1264.665124][T19028] [ 1264.675497][T19028] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1266.916501][T19052] CIFS mount error: No usable UNC path provided in device string! [ 1266.916501][T19052] [ 1266.965882][T19052] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1270.686930][T19094] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2812'. [ 1273.936026][T19121] CIFS mount error: No usable UNC path provided in device string! [ 1273.936026][T19121] [ 1273.991509][T19123] netlink: 194 bytes leftover after parsing attributes in process `syz.4.2819'. [ 1274.094065][T19121] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1275.852667][T19138] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2822'. [ 1278.039394][T19155] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2828'. [ 1279.580609][T19155] kexec: Could not allocate control_code_buffer [ 1283.952123][T19215] FAULT_INJECTION: forcing a failure. [ 1283.952123][T19215] name failslab, interval 1, probability 0, space 0, times 0 [ 1283.964798][T19215] CPU: 1 UID: 0 PID: 19215 Comm: syz.0.2840 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1283.964835][T19215] Tainted: [U]=USER [ 1283.964844][T19215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1283.964860][T19215] Call Trace: [ 1283.964874][T19215] [ 1283.964886][T19215] dump_stack_lvl+0x116/0x1f0 [ 1283.964937][T19215] should_fail_ex+0x512/0x640 [ 1283.964982][T19215] should_failslab+0xc2/0x120 [ 1283.965026][T19215] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1283.965068][T19215] ? __send_signal_locked+0x159/0x12c0 [ 1283.965107][T19215] __send_signal_locked+0x159/0x12c0 [ 1283.965140][T19215] ? __lock_task_sighand+0x146/0x340 [ 1283.965168][T19215] do_send_specific+0x1e8/0x370 [ 1283.965200][T19215] ? __pfx_do_send_specific+0x10/0x10 [ 1283.965230][T19215] ? __task_pid_nr_ns+0x17c/0x500 [ 1283.965272][T19215] do_rt_tgsigqueueinfo+0xa9/0x100 [ 1283.965305][T19215] __x64_sys_rt_tgsigqueueinfo+0x17a/0x210 [ 1283.965342][T19215] ? __pfx___x64_sys_rt_tgsigqueueinfo+0x10/0x10 [ 1283.965378][T19215] ? xfd_validate_state+0x5d/0x180 [ 1283.965421][T19215] do_syscall_64+0xcd/0x230 [ 1283.965458][T19215] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1283.965481][T19215] RIP: 0033:0x7f5ea7f8e969 [ 1283.965501][T19215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1283.965524][T19215] RSP: 002b:00007f5ea8e54038 EFLAGS: 00000246 ORIG_RAX: 0000000000000129 [ 1283.965545][T19215] RAX: ffffffffffffffda RBX: 00007f5ea81b5fa0 RCX: 00007f5ea7f8e969 [ 1283.965561][T19215] RDX: 0000000000000021 RSI: 0000000000000197 RDI: 0000000000000196 [ 1283.965575][T19215] RBP: 00007f5ea8010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1283.965589][T19215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1283.965603][T19215] R13: 0000000000000000 R14: 00007f5ea81b5fa0 R15: 00007ffd212c9fb8 [ 1283.965632][T19215] [ 1285.962891][T19227] FAULT_INJECTION: forcing a failure. [ 1285.962891][T19227] name failslab, interval 1, probability 0, space 0, times 0 [ 1285.975564][T19227] CPU: 0 UID: 0 PID: 19227 Comm: syz.4.2844 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1285.975602][T19227] Tainted: [U]=USER [ 1285.975611][T19227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1285.975626][T19227] Call Trace: [ 1285.975634][T19227] [ 1285.975644][T19227] dump_stack_lvl+0x116/0x1f0 [ 1285.975682][T19227] should_fail_ex+0x512/0x640 [ 1285.975716][T19227] should_failslab+0xc2/0x120 [ 1285.975749][T19227] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1285.975779][T19227] ? __send_signal_locked+0x159/0x12c0 [ 1285.975808][T19227] __send_signal_locked+0x159/0x12c0 [ 1285.975833][T19227] ? __lock_task_sighand+0x146/0x340 [ 1285.975860][T19227] do_send_specific+0x1e8/0x370 [ 1285.975893][T19227] ? __pfx_do_send_specific+0x10/0x10 [ 1285.975924][T19227] ? __task_pid_nr_ns+0x17c/0x500 [ 1285.975968][T19227] do_rt_tgsigqueueinfo+0xa9/0x100 [ 1285.976003][T19227] __x64_sys_rt_tgsigqueueinfo+0x17a/0x210 [ 1285.976042][T19227] ? __pfx___x64_sys_rt_tgsigqueueinfo+0x10/0x10 [ 1285.976079][T19227] ? xfd_validate_state+0x5d/0x180 [ 1285.976117][T19227] do_syscall_64+0xcd/0x230 [ 1285.976154][T19227] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1285.976178][T19227] RIP: 0033:0x7f04a218e969 [ 1285.976197][T19227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1285.976222][T19227] RSP: 002b:00007f04a309b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000129 [ 1285.976244][T19227] RAX: ffffffffffffffda RBX: 00007f04a23b5fa0 RCX: 00007f04a218e969 [ 1285.976261][T19227] RDX: 0000000000000021 RSI: 0000000000000341 RDI: 0000000000000340 [ 1285.976276][T19227] RBP: 00007f04a2210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1285.976297][T19227] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1285.976312][T19227] R13: 0000000000000000 R14: 00007f04a23b5fa0 R15: 00007ffd9a65a2e8 [ 1285.976343][T19227] [ 1291.687373][T19274] CIFS mount error: No usable UNC path provided in device string! [ 1291.687373][T19274] [ 1291.701029][T19274] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1292.767314][T19281] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 1292.829736][T19281] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 1293.640424][T19305] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2861'. [ 1295.072211][T19320] net_ratelimit: 481 callbacks suppressed [ 1295.072282][T19320] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 1295.215366][T19321] CIFS mount error: No usable UNC path provided in device string! [ 1295.215366][T19321] [ 1295.236016][T19321] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1295.390323][T19322] FAULT_INJECTION: forcing a failure. [ 1295.390323][T19322] name failslab, interval 1, probability 0, space 0, times 0 [ 1295.615675][T19322] CPU: 1 UID: 0 PID: 19322 Comm: syz.5.2865 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1295.615735][T19322] Tainted: [U]=USER [ 1295.615746][T19322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1295.615766][T19322] Call Trace: [ 1295.615778][T19322] [ 1295.615790][T19322] dump_stack_lvl+0x16c/0x1f0 [ 1295.615840][T19322] should_fail_ex+0x512/0x640 [ 1295.615878][T19322] ? __kvmalloc_node_noprof+0x122/0x600 [ 1295.615917][T19322] should_failslab+0xc2/0x120 [ 1295.615959][T19322] __kvmalloc_node_noprof+0x135/0x600 [ 1295.615997][T19322] ? io_alloc_cache_init+0x33/0x170 [ 1295.616048][T19322] ? io_alloc_cache_init+0x33/0x170 [ 1295.616090][T19322] io_alloc_cache_init+0x33/0x170 [ 1295.616137][T19322] io_uring_setup+0x5ff/0x1ff0 [ 1295.616173][T19322] ? __pfx_io_uring_setup+0x10/0x10 [ 1295.616207][T19322] ? find_held_lock+0x2b/0x80 [ 1295.616240][T19322] ? count_memcg_events_mm.constprop.0+0x138/0x340 [ 1295.616307][T19322] ? do_user_addr_fault+0x843/0x1370 [ 1295.616347][T19322] __x64_sys_io_uring_setup+0xc2/0x170 [ 1295.616393][T19322] do_syscall_64+0xcd/0x230 [ 1295.616438][T19322] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1295.616466][T19322] RIP: 0033:0x7f186518e969 [ 1295.616489][T19322] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1295.616518][T19322] RSP: 002b:00007f1866040038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 1295.616546][T19322] RAX: ffffffffffffffda RBX: 00007f18653b6080 RCX: 00007f186518e969 [ 1295.616566][T19322] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000406 [ 1295.616585][T19322] RBP: 00007f1865210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1295.616604][T19322] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1295.616622][T19322] R13: 0000000000000000 R14: 00007f18653b6080 R15: 00007ffd7fdf4f68 [ 1295.616658][T19322] [ 1297.037903][T19344] netlink: 342 bytes leftover after parsing attributes in process `syz.6.2870'. [ 1297.128549][T19344] IPv6: NLM_F_CREATE should be specified when creating new route [ 1297.179058][T19344] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 1297.186412][T19344] IPv6: NLM_F_CREATE should be set when creating new route [ 1297.193659][T19344] IPv6: NLM_F_CREATE should be set when creating new route [ 1299.200371][T19359] CIFS mount error: No usable UNC path provided in device string! [ 1299.200371][T19359] [ 1299.266050][T19359] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1300.645980][T19378] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2877'. [ 1300.690423][T19375] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2877'. [ 1300.850775][T19372] ima: policy update failed [ 1300.857866][ T30] audit: type=1802 audit(4294968792.595:140): pid=19372 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.2877" res=0 errno=0 [ 1302.090363][T19400] CIFS mount error: No usable UNC path provided in device string! [ 1302.090363][T19400] [ 1302.100571][T19400] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1303.328535][T19409] CIFS mount error: No usable UNC path provided in device string! [ 1303.328535][T19409] [ 1303.344906][T19409] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1304.435473][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 1304.441843][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 1304.554430][T19439] Device name cannot be null; rc = [-22] [ 1305.184345][T19451] CIFS mount error: No usable UNC path provided in device string! [ 1305.184345][T19451] [ 1305.195724][T19451] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1308.434356][T19484] CIFS mount error: No usable UNC path provided in device string! [ 1308.434356][T19484] [ 1308.521251][T19484] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1310.434495][T19508] FAULT_INJECTION: forcing a failure. [ 1310.434495][T19508] name failslab, interval 1, probability 0, space 0, times 0 [ 1310.556230][T19508] CPU: 0 UID: 0 PID: 19508 Comm: syz.5.2904 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1310.556277][T19508] Tainted: [U]=USER [ 1310.556287][T19508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1310.556303][T19508] Call Trace: [ 1310.556320][T19508] [ 1310.556331][T19508] dump_stack_lvl+0x16c/0x1f0 [ 1310.556376][T19508] should_fail_ex+0x512/0x640 [ 1310.556408][T19508] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 1310.556443][T19508] should_failslab+0xc2/0x120 [ 1310.556470][T19508] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 1310.556494][T19508] ? __alloc_skb+0x2b2/0x380 [ 1310.556519][T19508] ? bpf_lsm_capable+0x9/0x10 [ 1310.556545][T19508] __alloc_skb+0x2b2/0x380 [ 1310.556575][T19508] ? __pfx___alloc_skb+0x10/0x10 [ 1310.556600][T19508] ? genl_rcv_msg+0x4e0/0x800 [ 1310.556617][T19508] ? genl_rcv_msg+0x4bb/0x800 [ 1310.556641][T19508] netlink_ack+0x15d/0xb80 [ 1310.556671][T19508] ? __lock_acquire+0xaa4/0x1ba0 [ 1310.556703][T19508] netlink_rcv_skb+0x347/0x440 [ 1310.556732][T19508] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1310.556751][T19508] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1310.556793][T19508] ? __pfx_down_read+0x10/0x10 [ 1310.556811][T19508] ? netlink_deliver_tap+0x1ae/0xd30 [ 1310.556842][T19508] genl_rcv+0x28/0x40 [ 1310.556870][T19508] netlink_unicast+0x53a/0x7f0 [ 1310.556921][T19508] ? __pfx_netlink_unicast+0x10/0x10 [ 1310.556950][T19508] ? __lock_acquire+0xaa4/0x1ba0 [ 1310.556985][T19508] netlink_sendmsg+0x8d1/0xdd0 [ 1310.557019][T19508] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1310.557060][T19508] ____sys_sendmsg+0xa95/0xc70 [ 1310.557081][T19508] ? copy_msghdr_from_user+0x10a/0x160 [ 1310.557109][T19508] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1310.557161][T19508] ___sys_sendmsg+0x134/0x1d0 [ 1310.557194][T19508] ? __pfx____sys_sendmsg+0x10/0x10 [ 1310.557261][T19508] __sys_sendmsg+0x16d/0x220 [ 1310.557297][T19508] ? __pfx___sys_sendmsg+0x10/0x10 [ 1310.557337][T19508] ? rcu_is_watching+0x12/0xc0 [ 1310.557370][T19508] do_syscall_64+0xcd/0x230 [ 1310.557406][T19508] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1310.557429][T19508] RIP: 0033:0x7f186518e969 [ 1310.557447][T19508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1310.557470][T19508] RSP: 002b:00007f1866061038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1310.557492][T19508] RAX: ffffffffffffffda RBX: 00007f18653b5fa0 RCX: 00007f186518e969 [ 1310.557508][T19508] RDX: 0000000000000000 RSI: 0000200000002f40 RDI: 0000000000000003 [ 1310.557522][T19508] RBP: 00007f1866061090 R08: 0000000000000000 R09: 0000000000000000 [ 1310.557537][T19508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1310.557556][T19508] R13: 0000000000000000 R14: 00007f18653b5fa0 R15: 00007ffd7fdf4f68 [ 1310.557585][T19508] [ 1311.500300][T19512] FAULT_INJECTION: forcing a failure. [ 1311.500300][T19512] name failslab, interval 1, probability 0, space 0, times 0 [ 1311.513001][T19512] CPU: 1 UID: 0 PID: 19512 Comm: syz.0.2905 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1311.513058][T19512] Tainted: [U]=USER [ 1311.513072][T19512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1311.513094][T19512] Call Trace: [ 1311.513107][T19512] [ 1311.513120][T19512] dump_stack_lvl+0x116/0x1f0 [ 1311.513177][T19512] should_fail_ex+0x512/0x640 [ 1311.513233][T19512] should_failslab+0xc2/0x120 [ 1311.513279][T19512] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1311.513324][T19512] ? __send_signal_locked+0x159/0x12c0 [ 1311.513366][T19512] __send_signal_locked+0x159/0x12c0 [ 1311.513405][T19512] ? __lock_task_sighand+0x146/0x340 [ 1311.513445][T19512] do_send_specific+0x1e8/0x370 [ 1311.513493][T19512] ? __pfx_do_send_specific+0x10/0x10 [ 1311.513537][T19512] ? __task_pid_nr_ns+0x17c/0x500 [ 1311.513599][T19512] do_rt_tgsigqueueinfo+0xa9/0x100 [ 1311.513649][T19512] __x64_sys_rt_tgsigqueueinfo+0x17a/0x210 [ 1311.513705][T19512] ? __pfx___x64_sys_rt_tgsigqueueinfo+0x10/0x10 [ 1311.513760][T19512] ? xfd_validate_state+0x5d/0x180 [ 1311.513814][T19512] do_syscall_64+0xcd/0x230 [ 1311.513868][T19512] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1311.513903][T19512] RIP: 0033:0x7f5ea7f8e969 [ 1311.513931][T19512] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1311.513965][T19512] RSP: 002b:00007f5ea8e54038 EFLAGS: 00000246 ORIG_RAX: 0000000000000129 [ 1311.513999][T19512] RAX: ffffffffffffffda RBX: 00007f5ea81b5fa0 RCX: 00007f5ea7f8e969 [ 1311.514023][T19512] RDX: 0000000000000021 RSI: 00000000000001cb RDI: 00000000000001ca [ 1311.514045][T19512] RBP: 00007f5ea8010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1311.514067][T19512] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1311.514089][T19512] R13: 0000000000000000 R14: 00007f5ea81b5fa0 R15: 00007ffd212c9fb8 [ 1311.514134][T19512] [ 1312.809557][T19517] openvswitch: netlink: Tunnel attr 6859 out of range max 16 [ 1317.134684][T19582] snd_dummy snd_dummy.0: control 16781581:65533:6:'x?F/zF˷fC:0 is already present [ 1318.830360][T19596] netlink: 334 bytes leftover after parsing attributes in process `syz.6.2924'. [ 1320.069978][T19610] netlink: 194 bytes leftover after parsing attributes in process `syz.6.2926'. [ 1320.771924][T19654] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2931'. [ 1320.796607][T19654] IPv6: NLM_F_CREATE should be specified when creating new route [ 1320.834311][T19654] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 1320.841652][T19654] IPv6: NLM_F_CREATE should be set when creating new route [ 1320.848953][T19654] IPv6: NLM_F_CREATE should be set when creating new route [ 1322.996697][T19688] netlink: 194 bytes leftover after parsing attributes in process `syz.6.2939'. [ 1323.278261][T19691] netlink: 2076 bytes leftover after parsing attributes in process `syz.0.2940'. [ 1323.640472][T19699] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2941'. [ 1323.735245][T19699] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2941'. [ 1324.257686][T19706] can: request_module (can-proto-4) failed. [ 1324.305778][T19711] i2c i2c-0: Failed to register i2c client card: at 0x01 (-16) [ 1325.568079][T19727] CIFS mount error: No usable UNC path provided in device string! [ 1325.568079][T19727] [ 1325.729180][T19727] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1325.983311][T19725] CIFS mount error: No usable UNC path provided in device string! [ 1325.983311][T19725] [ 1326.127774][T19725] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1328.145268][T19747] CIFS mount error: No usable UNC path provided in device string! [ 1328.145268][T19747] [ 1328.157463][T19747] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1330.322517][T19789] netlink: 2076 bytes leftover after parsing attributes in process `syz.0.2963'. [ 1331.260452][T19806] CIFS mount error: No usable UNC path provided in device string! [ 1331.260452][T19806] [ 1331.274927][T19806] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1331.444723][T19805] CIFS mount error: No usable UNC path provided in device string! [ 1331.444723][T19805] [ 1331.488808][T19805] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1332.085210][ T5872] Bluetooth: hci1: command 0x0406 tx timeout [ 1335.077933][T19842] kernel read not supported for file /\*)A (pid: 19842 comm: syz.0.2974) [ 1335.106671][ T30] audit: type=1800 audit(4294968826.845:141): pid=19842 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2974" name="\*)A" dev="mqueue" ino=68131 res=0 errno=0 [ 1335.917904][T19858] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2977'. [ 1336.172772][T19864] RDS: rds_bind could not find a transport for 7bc:c94c:4e37:70c4::, load rds_tcp or rds_rdma? [ 1336.735498][T19860] cgroup: fork rejected by pids controller in /syz6 [ 1337.235534][T19918] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 1337.279896][T19904] ptrace attach of "./syz-executor exec"[14960] was attempted by "./syz-executor exec"[19904] [ 1339.156864][T19933] RDS: rds_bind could not find a transport for 7bc:c94c:4e37:70c4::, load rds_tcp or rds_rdma? [ 1345.686891][T19977] CIFS mount error: No usable UNC path provided in device string! [ 1345.686891][T19977] [ 1345.725072][T19977] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1346.179694][T19987] device-mapper: ioctl: Unable to rename non-existent device,  to [ 1346.611709][T19993] FAULT_INJECTION: forcing a failure. [ 1346.611709][T19993] name failslab, interval 1, probability 0, space 0, times 0 [ 1346.624362][T19993] CPU: 1 UID: 0 PID: 19993 Comm: syz.5.3003 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1346.624408][T19993] Tainted: [U]=USER [ 1346.624418][T19993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1346.624435][T19993] Call Trace: [ 1346.624446][T19993] [ 1346.624457][T19993] dump_stack_lvl+0x116/0x1f0 [ 1346.624510][T19993] should_fail_ex+0x512/0x640 [ 1346.624551][T19993] should_failslab+0xc2/0x120 [ 1346.624590][T19993] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1346.624628][T19993] ? __send_signal_locked+0x159/0x12c0 [ 1346.624663][T19993] __send_signal_locked+0x159/0x12c0 [ 1346.624695][T19993] ? __lock_task_sighand+0x146/0x340 [ 1346.624729][T19993] do_send_specific+0x1e8/0x370 [ 1346.624769][T19993] ? __pfx_do_send_specific+0x10/0x10 [ 1346.624807][T19993] ? __task_pid_nr_ns+0x17c/0x500 [ 1346.624859][T19993] do_rt_tgsigqueueinfo+0xa9/0x100 [ 1346.624899][T19993] __x64_sys_rt_tgsigqueueinfo+0x17a/0x210 [ 1346.624947][T19993] ? __pfx___x64_sys_rt_tgsigqueueinfo+0x10/0x10 [ 1346.624993][T19993] ? xfd_validate_state+0x5d/0x180 [ 1346.625039][T19993] do_syscall_64+0xcd/0x230 [ 1346.625084][T19993] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1346.625114][T19993] RIP: 0033:0x7f186518e969 [ 1346.625138][T19993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1346.625167][T19993] RSP: 002b:00007f1866061038 EFLAGS: 00000246 ORIG_RAX: 0000000000000129 [ 1346.625194][T19993] RAX: ffffffffffffffda RBX: 00007f18653b5fa0 RCX: 00007f186518e969 [ 1346.625214][T19993] RDX: 0000000000000021 RSI: 0000000000000359 RDI: 0000000000000358 [ 1346.625233][T19993] RBP: 00007f1865210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1346.625250][T19993] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1346.625268][T19993] R13: 0000000000000000 R14: 00007f18653b5fa0 R15: 00007ffd7fdf4f68 [ 1346.625305][T19993] [ 1349.550072][T20011] zswap: compressor not available [ 1355.808436][T20066] ovs_: entered promiscuous mode [ 1356.488524][T20069] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE r҄y*"l-y–L̓]' [ 1356.515025][T20069] CPU: 1 UID: 0 PID: 20069 Comm: syz.5.3024 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1356.515080][T20069] Tainted: [U]=USER [ 1356.515092][T20069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1356.515112][T20069] Call Trace: [ 1356.515124][T20069] [ 1356.515149][T20069] dump_stack_lvl+0x16c/0x1f0 [ 1356.515200][T20069] sysfs_warn_dup+0x7f/0xa0 [ 1356.515230][T20069] sysfs_do_create_link_sd+0x124/0x140 [ 1356.515266][T20069] sysfs_create_link+0x61/0xc0 [ 1356.515295][T20069] device_add+0x62c/0x1a70 [ 1356.515335][T20069] ? __pfx_device_add+0x10/0x10 [ 1356.515366][T20069] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1356.515414][T20069] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 1356.515471][T20069] wiphy_register+0x1c9c/0x2850 [ 1356.515503][T20069] ? netdev_run_todo+0x864/0x1320 [ 1356.515548][T20069] ? __dev_printk+0x1a0/0x270 [ 1356.515599][T20069] ? __pfx_wiphy_register+0x10/0x10 [ 1356.515655][T20069] ieee80211_register_hw+0x2432/0x4020 [ 1356.515703][T20069] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 1356.515740][T20069] ? find_held_lock+0x2b/0x80 [ 1356.515774][T20069] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1356.515820][T20069] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 1356.515870][T20069] ? __hrtimer_setup+0x176/0x280 [ 1356.515922][T20069] mac80211_hwsim_new_radio+0x3034/0x54d0 [ 1356.515990][T20069] ? __kmalloc_node_track_caller_noprof+0x23e/0x510 [ 1356.516038][T20069] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 1356.516083][T20069] ? __asan_memcpy+0x3c/0x60 [ 1356.516120][T20069] hwsim_new_radio_nl+0xb51/0x12c0 [ 1356.516183][T20069] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 1356.516239][T20069] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 1356.516297][T20069] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 1356.516364][T20069] genl_family_rcv_msg_doit+0x206/0x2f0 [ 1356.516401][T20069] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 1356.516456][T20069] ? trace_cap_capable+0x18d/0x200 [ 1356.516502][T20069] ? bpf_lsm_capable+0x9/0x10 [ 1356.516539][T20069] ? security_capable+0x7e/0x260 [ 1356.516573][T20069] ? ns_capable+0xd7/0x110 [ 1356.516615][T20069] genl_rcv_msg+0x55c/0x800 [ 1356.516653][T20069] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1356.516682][T20069] ? __pfx___dev_queue_xmit+0x10/0x10 [ 1356.516720][T20069] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 1356.516764][T20069] ? __lock_acquire+0xaa4/0x1ba0 [ 1356.516819][T20069] netlink_rcv_skb+0x16a/0x440 [ 1356.516867][T20069] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1356.516902][T20069] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1356.517053][T20069] ? __pfx_down_read+0x10/0x10 [ 1356.517091][T20069] ? netlink_deliver_tap+0x1ae/0xd30 [ 1356.517165][T20069] genl_rcv+0x28/0x40 [ 1356.517215][T20069] netlink_unicast+0x53a/0x7f0 [ 1356.517272][T20069] ? __pfx_netlink_unicast+0x10/0x10 [ 1356.517321][T20069] ? __lock_acquire+0xaa4/0x1ba0 [ 1356.517380][T20069] netlink_sendmsg+0x8d1/0xdd0 [ 1356.517438][T20069] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1356.517506][T20069] ____sys_sendmsg+0xa95/0xc70 [ 1356.517541][T20069] ? copy_msghdr_from_user+0x10a/0x160 [ 1356.517587][T20069] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1356.517642][T20069] ___sys_sendmsg+0x134/0x1d0 [ 1356.517703][T20069] ? __pfx____sys_sendmsg+0x10/0x10 [ 1356.517807][T20069] __sys_sendmsg+0x16d/0x220 [ 1356.517855][T20069] ? __pfx___sys_sendmsg+0x10/0x10 [ 1356.517900][T20069] ? __x64_sys_futex+0x1e0/0x4c0 [ 1356.518006][T20069] ? rcu_is_watching+0x12/0xc0 [ 1356.518057][T20069] do_syscall_64+0xcd/0x230 [ 1356.518114][T20069] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1356.518148][T20069] RIP: 0033:0x7f186518e969 [ 1356.518173][T20069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1356.518205][T20069] RSP: 002b:00007f1866061038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1356.518235][T20069] RAX: ffffffffffffffda RBX: 00007f18653b5fa0 RCX: 00007f186518e969 [ 1356.518258][T20069] RDX: 0000000004000800 RSI: 00002000000000c0 RDI: 0000000000000003 [ 1356.518279][T20069] RBP: 00007f1865210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1356.518300][T20069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1356.518331][T20069] R13: 0000000000000000 R14: 00007f18653b5fa0 R15: 00007ffd7fdf4f68 [ 1356.518383][T20069] syzkaller syzkaller login: [ 1362.400876][T19897] syz.6.2979 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1362.929135][T19897] CPU: 1 UID: 0 PID: 19897 Comm: syz.6.2979 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1362.929208][T19897] Tainted: [U]=USER [ 1362.929218][T19897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1362.929235][T19897] Call Trace: [ 1362.929246][T19897] [ 1362.929258][T19897] dump_stack_lvl+0x16c/0x1f0 [ 1362.929306][T19897] dump_header+0x101/0x930 [ 1362.929352][T19897] oom_kill_process+0x270/0xa60 [ 1362.929399][T19897] out_of_memory+0x350/0x1700 [ 1362.929457][T19897] ? __pfx_out_of_memory+0x10/0x10 [ 1362.929511][T19897] mem_cgroup_out_of_memory+0x205/0x270 [ 1362.929560][T19897] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 1362.929618][T19897] ? do_raw_spin_unlock+0x172/0x230 [ 1362.929653][T19897] try_charge_memcg+0xa07/0x10c0 [ 1362.929700][T19897] ? __pfx_try_charge_memcg+0x10/0x10 [ 1362.929739][T19897] ? __print_lock_name+0x51/0xe0 [ 1362.929773][T19897] ? rcu_read_unlock+0x17/0x60 [ 1362.929825][T19897] charge_memcg+0x8a/0x230 [ 1362.929865][T19897] __mem_cgroup_charge+0x2b/0x1e0 [ 1362.929911][T19897] shmem_alloc_and_add_folio+0x514/0xc20 [ 1362.929959][T19897] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 1362.930003][T19897] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 1362.930051][T19897] shmem_get_folio_gfp+0x687/0x1530 [ 1362.930095][T19897] ? __lock_acquire+0xaa4/0x1ba0 [ 1362.930138][T19897] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 1362.930180][T19897] ? __pte_offset_map_lock+0x155/0x2f0 [ 1362.930230][T19897] shmem_write_begin+0x160/0x300 [ 1362.930273][T19897] ? __pfx_shmem_write_begin+0x10/0x10 [ 1362.930315][T19897] ? balance_dirty_pages_ratelimited_flags+0x92/0x1260 [ 1362.930348][T19897] ? __pfx_timestamp_truncate+0x10/0x10 [ 1362.930388][T19897] generic_perform_write+0x3cd/0x930 [ 1362.930445][T19897] ? __pfx_generic_perform_write+0x10/0x10 [ 1362.930486][T19897] ? inode_needs_update_time.part.0+0x191/0x270 [ 1362.930532][T19897] shmem_file_write_iter+0x10e/0x140 [ 1362.930580][T19897] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 1362.930624][T19897] __kernel_write_iter+0x317/0xa90 [ 1362.930661][T19897] ? __pfx___kernel_write_iter+0x10/0x10 [ 1362.930693][T19897] ? __up_read+0x1f8/0x750 [ 1362.930745][T19897] ? dump_user_range+0x73d/0xb30 [ 1362.930786][T19897] ? copy_mc_enhanced_fast_string+0x6/0xf [ 1362.930827][T19897] dump_user_range+0x418/0xb30 [ 1362.930880][T19897] ? __pfx_dump_user_range+0x10/0x10 [ 1362.930927][T19897] ? elf_coredump_extra_notes_write+0xbd/0x430 [ 1362.930970][T19897] ? __pfx_writenote+0x10/0x10 [ 1362.931027][T19897] elf_core_dump+0x288a/0x3a90 [ 1362.931094][T19897] ? __pfx_elf_core_dump+0x10/0x10 [ 1362.931147][T19897] ? check_preempt_wakeup_fair+0x509/0x880 [ 1362.931186][T19897] ? find_held_lock+0x2b/0x80 [ 1362.931217][T19897] ? 0xffffffffff600000 [ 1362.931243][T19897] ? rcu_is_watching+0x12/0xc0 [ 1362.931274][T19897] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 1362.931314][T19897] ? lockdep_hardirqs_on+0x7c/0x110 [ 1362.931414][T19897] ? do_coredump+0x3183/0x4480 [ 1362.931461][T19897] do_coredump+0x3183/0x4480 [ 1362.931519][T19897] ? __pfx_do_coredump+0x10/0x10 [ 1362.931565][T19897] ? stack_trace_save+0x8e/0xc0 [ 1362.931599][T19897] ? __pfx_stack_trace_save+0x10/0x10 [ 1362.931632][T19897] ? stack_depot_save_flags+0x28/0xa50 [ 1362.931671][T19897] ? __lock_acquire+0xaa4/0x1ba0 [ 1362.931723][T19897] ? __kasan_slab_free+0x51/0x70 [ 1362.931757][T19897] ? kmem_cache_free+0x2d4/0x4d0 [ 1362.931790][T19897] ? __sigqueue_free+0xba/0x2a0 [ 1362.931832][T19897] ? get_signal+0xcba/0x26d0 [ 1362.931867][T19897] ? arch_do_signal_or_restart+0x8f/0x7a0 [ 1362.931966][T19897] ? proc_coredump_connector+0x2d1/0x4f0 [ 1362.932006][T19897] ? __pfx_proc_coredump_connector+0x10/0x10 [ 1362.932055][T19897] ? rcu_is_watching+0x12/0xc0 [ 1362.932091][T19897] get_signal+0x22e3/0x26d0 [ 1362.932137][T19897] ? force_sig_fault+0xc4/0x100 [ 1362.932176][T19897] ? __pfx_get_signal+0x10/0x10 [ 1362.932226][T19897] arch_do_signal_or_restart+0x8f/0x7a0 [ 1362.932271][T19897] ? trace_irq_disable.constprop.0+0xd4/0x120 [ 1362.932315][T19897] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1362.932386][T19897] irqentry_exit_to_user_mode+0x13f/0x280 [ 1362.932438][T19897] asm_exc_page_fault+0x26/0x30 [ 1362.932468][T19897] RIP: 0033:0x21000 [ 1362.932494][T19897] Code: Unable to access opcode bytes at 0x20fd6. [ 1362.932507][T19897] RSP: 002b:000000000000000a EFLAGS: 00010246 [ 1362.932530][T19897] RAX: 0000000000000000 RBX: 00007f3e03bb6080 RCX: 00007f3e0398e969 [ 1362.932550][T19897] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46 [ 1362.932568][T19897] RBP: 00007f3e03a10ab1 R08: 0000000000000002 R09: 0000000000000000 [ 1362.932586][T19897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1362.932605][T19897] R13: 0000000000000000 R14: 00007f3e03bb6080 R15: 00007ffee088e258 [ 1362.932645][T19897] [ 1362.932657][T19897] memory: usage 307200kB, limit 307200kB, failcnt 16466 [ 1363.522853][T19897] memory+swap: usage 430148kB, limit 9007199254740988kB, failcnt 0 [ 1363.584924][T19897] kmem: usage 3508kB, limit 9007199254740988kB, failcnt 0 [ 1363.602236][T19897] Memory cgroup stats for /syz6: [ 1363.602530][T19897] cache 309739520 [ 1363.615011][T19897] rss 1183744 [ 1363.618324][T19897] rss_huge 0 [ 1363.623055][T19897] shmem 309739520 [ 1363.643018][T19897] mapped_file 0 [ 1363.667421][T19897] dirty 0 [ 1363.672892][T19897] writeback 0 [ 1363.702510][T19897] workingset_refault_anon 300 [ 1363.724929][T19897] workingset_refault_file 6 [ 1363.736236][T19897] swap 125919232 [ 1363.739804][T19897] swapcached 24576 [ 1363.743608][T19897] pgpgin 191199 [ 1363.747717][T19897] pgpgout 115284 [ 1363.753740][T19897] pgfault 85912 [ 1363.761544][T19897] pgmajfault 177 [ 1363.765570][T19897] inactive_anon 181084160 [ 1363.771185][T19897] active_anon 129863680 [ 1363.777412][T19897] inactive_file 0 [ 1363.786587][T19897] active_file 0 [ 1363.791226][T19897] unevictable 0 [ 1363.794680][T19897] hierarchical_memory_limit 314572800 [ 1363.844238][T19897] hierarchical_memsw_limit 9223372036854771712 [ 1363.855082][T19897] total_cache 309739520 [ 1363.864465][T19897] total_rss 1183744 [ 1363.872729][T19897] total_rss_huge 0 [ 1363.885189][T19897] total_shmem 309739520 [ 1363.889379][T19897] total_mapped_file 0 [ 1363.893385][T19897] total_dirty 0 [ 1363.952775][T19897] total_writeback 0 [ 1363.973015][T19897] total_workingset_refault_anon 300 [ 1364.007687][T19897] total_workingset_refault_file 6 [ 1364.019428][T19897] total_swap 125919232 [ 1364.023526][T19897] total_swapcached 24576 [ 1364.038145][T19897] total_pgpgin 191199 [ 1364.058429][T19897] total_pgpgout 115284 [ 1364.062587][T19897] total_pgfault 85912 [ 1364.078704][T19897] total_pgmajfault 177 [ 1364.082801][T19897] total_inactive_anon 181084160 [ 1364.107864][T19897] total_active_anon 129863680 [ 1364.114384][T19897] total_inactive_file 0 [ 1364.123749][T19897] total_active_file 0 [ 1364.140431][T19897] total_unevictable 0 [ 1364.144417][T19897] anon_cost 0 [ 1364.155109][T19897] file_cost 0 [ 1364.158509][T19897] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz6,task_memcg=/syz6,task=syz.6.2979,pid=19900,uid=0 [ 1364.179330][T19897] Memory cgroup out of memory: Killed process 19900 (syz.6.2979) total-vm:98764kB, anon-rss:1044kB, file-rss:51716kB, shmem-rss:0kB, UID:0 pgtables:188kB oom_score_adj:1000 [ 1365.852446][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 1365.858782][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 1368.882726][T20125] snd_dummy snd_dummy.0: control 16781581:65533:6:'x?F/zF˷fC:0 is already present [ 1370.921468][T20147] kernel read not supported for file /\*)A (pid: 20147 comm: syz.5.3040) [ 1370.987989][ T30] audit: type=1800 audit(4294968862.715:142): pid=20147 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.3040" name="\*)A" dev="mqueue" ino=61564 res=0 errno=0 [ 1371.505332][T20158] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3042'. [ 1374.283753][T20198] CIFS mount error: No usable UNC path provided in device string! [ 1374.283753][T20198] [ 1374.304486][T20198] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1379.962318][T20258] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 1380.163396][T20252] CIFS mount error: No usable UNC path provided in device string! [ 1380.163396][T20252] [ 1380.253375][T20252] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1380.576903][T20263] CIFS mount error: No usable UNC path provided in device string! [ 1380.576903][T20263] [ 1380.587240][T20263] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1380.730944][T20269] FAULT_INJECTION: forcing a failure. [ 1380.730944][T20269] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1380.765416][T20269] CPU: 1 UID: 0 PID: 20269 Comm: syz.0.3068 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1380.765449][T20269] Tainted: [U]=USER [ 1380.765456][T20269] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1380.765467][T20269] Call Trace: [ 1380.765474][T20269] [ 1380.765482][T20269] dump_stack_lvl+0x16c/0x1f0 [ 1380.765515][T20269] should_fail_ex+0x512/0x640 [ 1380.765543][T20269] _copy_to_user+0x32/0xd0 [ 1380.765571][T20269] simple_read_from_buffer+0xcb/0x170 [ 1380.765605][T20269] proc_fail_nth_read+0x197/0x270 [ 1380.765641][T20269] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1380.765685][T20269] ? rw_verify_area+0xcf/0x680 [ 1380.765726][T20269] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1380.765767][T20269] vfs_read+0x1de/0xc70 [ 1380.765801][T20269] ? __pfx___mutex_lock+0x10/0x10 [ 1380.765842][T20269] ? __pfx_vfs_read+0x10/0x10 [ 1380.765881][T20269] ? __fget_files+0x20e/0x3c0 [ 1380.765919][T20269] ksys_read+0x12a/0x240 [ 1380.765947][T20269] ? __pfx_ksys_read+0x10/0x10 [ 1380.765973][T20269] ? rcu_is_watching+0x12/0xc0 [ 1380.766011][T20269] do_syscall_64+0xcd/0x230 [ 1380.766053][T20269] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1380.766081][T20269] RIP: 0033:0x7f5ea7f8d37c [ 1380.766112][T20269] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1380.766141][T20269] RSP: 002b:00007f5ea8e33030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1380.766160][T20269] RAX: ffffffffffffffda RBX: 00007f5ea81b6080 RCX: 00007f5ea7f8d37c [ 1380.766174][T20269] RDX: 000000000000000f RSI: 00007f5ea8e330a0 RDI: 0000000000000009 [ 1380.766186][T20269] RBP: 00007f5ea8e33090 R08: 0000000000000000 R09: 0000000000000000 [ 1380.766198][T20269] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1380.766210][T20269] R13: 0000000000000000 R14: 00007f5ea81b6080 R15: 00007ffd212c9fb8 [ 1380.766236][T20269] [ 1386.965472][T20367] kernel read not supported for file /\*)A (pid: 20367 comm: syz.4.3089) [ 1387.087749][ T30] audit: type=1800 audit(4294968878.775:143): pid=20367 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3089" name="\*)A" dev="mqueue" ino=61987 res=0 errno=0 [ 1387.328820][T20370] snd_dummy snd_dummy.0: control 16781581:65533:6:'x?F/zF˷fC:0 is already present [ 1387.450861][T20376] random: crng reseeded on system resumption                                                                                                                                                                                                            syzkaller syzkaller login: [ 1398.405764][T20504] FAULT_INJECTION: forcing a failure. [ 1398.405764][T20504] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1398.412005][T20504] CPU: 1 UID: 0 PID: 20504 Comm: syz.6.3121 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1398.412060][T20504] Tainted: [U]=USER [ 1398.412073][T20504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1398.412093][T20504] Call Trace: [ 1398.412106][T20504] [ 1398.412119][T20504] dump_stack_lvl+0x16c/0x1f0 [ 1398.412173][T20504] should_fail_ex+0x512/0x640 [ 1398.412221][T20504] should_fail_alloc_page+0xe7/0x130 [ 1398.412270][T20504] prepare_alloc_pages+0x3c2/0x610 [ 1398.412337][T20504] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 1398.412381][T20504] ? cgroup_rstat_updated+0x2a/0xb20 [ 1398.412428][T20504] ? rcu_is_watching+0x12/0xc0 [ 1398.412464][T20504] ? __mod_memcg_lruvec_state+0x533/0x760 [ 1398.412499][T20504] ? __mod_zone_page_state+0xcc/0x1a0 [ 1398.412539][T20504] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1398.412592][T20504] ? folios_put_refs+0x5ce/0x740 [ 1398.412649][T20504] ? __pfx_folios_put_refs+0x10/0x10 [ 1398.412703][T20504] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1398.412753][T20504] ? policy_nodemask+0xea/0x4e0 [ 1398.412801][T20504] alloc_pages_mpol+0x1fb/0x550 [ 1398.412848][T20504] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1398.412905][T20504] folio_alloc_mpol_noprof+0x36/0x2f0 [ 1398.412959][T20504] shmem_alloc_folio+0x135/0x160 [ 1398.412997][T20504] shmem_alloc_and_add_folio+0x499/0xc20 [ 1398.413049][T20504] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 1398.413098][T20504] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 1398.413146][T20504] shmem_get_folio_gfp+0x687/0x1530 [ 1398.413194][T20504] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 1398.413230][T20504] shmem_fault+0x1fe/0xa30 [ 1398.413258][T20504] ? __pfx_shmem_fault+0x10/0x10 [ 1398.413290][T20504] ? __pfx___up_read+0x10/0x10 [ 1398.413331][T20504] ? __pfx_filemap_map_pages+0x10/0x10 [ 1398.413359][T20504] __do_fault+0x10a/0x490 [ 1398.413388][T20504] ? __pfx_filemap_map_pages+0x10/0x10 [ 1398.413421][T20504] do_pte_missing+0x1a6/0x3fb0 [ 1398.413449][T20504] ? __handle_mm_fault+0x1010/0x2a40 [ 1398.413476][T20504] __handle_mm_fault+0x103d/0x2a40 [ 1398.413507][T20504] ? __pfx___handle_mm_fault+0x10/0x10 [ 1398.413547][T20504] ? find_vma+0xbf/0x140 [ 1398.413577][T20504] ? __pfx_find_vma+0x10/0x10 [ 1398.413612][T20504] handle_mm_fault+0x3fe/0xad0 [ 1398.413641][T20504] do_user_addr_fault+0x7a6/0x1370 [ 1398.413670][T20504] ? rcu_is_watching+0x12/0xc0 [ 1398.413694][T20504] exc_page_fault+0x5c/0xc0 [ 1398.413725][T20504] asm_exc_page_fault+0x26/0x30 [ 1398.413746][T20504] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 1398.413771][T20504] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 1398.413804][T20504] RSP: 0018:ffffc9000100fbc0 EFLAGS: 00050206 [ 1398.413820][T20504] RAX: 0000000000000001 RBX: 0000000000004000 RCX: 0000000000003000 [ 1398.413834][T20504] RDX: 0000000000000000 RSI: ffff888061f05000 RDI: 0000000000005000 [ 1398.413848][T20504] RBP: 0000000000004000 R08: 0000000000000000 R09: ffffed100c3e0fff [ 1398.413861][T20504] R10: ffff888061f07fff R11: 0000000000000000 R12: ffff888061f04000 [ 1398.413874][T20504] R13: 0000000000008000 R14: 00007ffffffff000 R15: 0000000000000000 [ 1398.413900][T20504] _copy_to_user+0xbb/0xd0 [ 1398.413929][T20504] snd_pcm_oss_read2+0x294/0x410 [ 1398.413952][T20504] ? __pfx_snd_pcm_oss_read2+0x10/0x10 [ 1398.413972][T20504] ? snd_pcm_kernel_ioctl+0x267/0x2e0 [ 1398.413997][T20504] ? snd_pcm_oss_prepare+0x11e/0x220 [ 1398.414033][T20504] snd_pcm_oss_read+0x5d3/0x760 [ 1398.414058][T20504] ? __pfx_snd_pcm_oss_read+0x10/0x10 [ 1398.414080][T20504] vfs_read+0x1de/0xc70 [ 1398.414106][T20504] ? __pfx_vfs_read+0x10/0x10 [ 1398.414125][T20504] ? find_held_lock+0x2b/0x80 [ 1398.414146][T20504] ? __fget_files+0x204/0x3c0 [ 1398.414169][T20504] ? __fget_files+0x20e/0x3c0 [ 1398.414195][T20504] ksys_read+0x12a/0x240 [ 1398.414215][T20504] ? __pfx_ksys_read+0x10/0x10 [ 1398.414235][T20504] ? rcu_is_watching+0x12/0xc0 [ 1398.414262][T20504] do_syscall_64+0xcd/0x230 [ 1398.414294][T20504] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1398.414313][T20504] RIP: 0033:0x7f3e0398e969 [ 1398.414329][T20504] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1398.414348][T20504] RSP: 002b:00007f3e047be038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1398.414366][T20504] RAX: ffffffffffffffda RBX: 00007f3e03bb6080 RCX: 00007f3e0398e969 [ 1398.414380][T20504] RDX: 000000000cefbce6 RSI: 0000000000000000 RDI: 0000000000000008 [ 1398.414392][T20504] RBP: 00007f3e03a10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1398.414416][T20504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1398.414428][T20504] R13: 0000000000000000 R14: 00007f3e03bb6080 R15: 00007ffee088e258 [ 1398.414454][T20504] [ 1400.502639][T20514] CIFS mount error: No usable UNC path provided in device string! [ 1400.502639][T20514] [ 1400.504129][T20514] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1400.545821][T20518] netlink: 2076 bytes leftover after parsing attributes in process `syz.0.3124'. [ 1401.611399][T20533] FAULT_INJECTION: forcing a failure. [ 1401.611399][T20533] name failslab, interval 1, probability 0, space 0, times 0 [ 1401.623568][T20533] CPU: 1 UID: 0 PID: 20533 Comm: syz.5.3127 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1401.623616][T20533] Tainted: [U]=USER [ 1401.623627][T20533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1401.623646][T20533] Call Trace: [ 1401.623656][T20533] [ 1401.623668][T20533] dump_stack_lvl+0x16c/0x1f0 [ 1401.623717][T20533] should_fail_ex+0x512/0x640 [ 1401.623752][T20533] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 1401.623795][T20533] should_failslab+0xc2/0x120 [ 1401.623835][T20533] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 1401.623873][T20533] ? __alloc_skb+0x2b2/0x380 [ 1401.623918][T20533] __alloc_skb+0x2b2/0x380 [ 1401.623956][T20533] ? __pfx___alloc_skb+0x10/0x10 [ 1401.624018][T20533] ? __lock_acquire+0xaa4/0x1ba0 [ 1401.624068][T20533] netlink_alloc_large_skb+0x69/0x130 [ 1401.624118][T20533] netlink_sendmsg+0x6a1/0xdd0 [ 1401.624180][T20533] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1401.624247][T20533] ____sys_sendmsg+0xa95/0xc70 [ 1401.624279][T20533] ? copy_msghdr_from_user+0x10a/0x160 [ 1401.624322][T20533] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1401.624359][T20533] ? kfree+0x252/0x4d0 [ 1401.624386][T20533] ? __pfx__kstrtoull+0x10/0x10 [ 1401.624445][T20533] ___sys_sendmsg+0x134/0x1d0 [ 1401.624490][T20533] ? __pfx____sys_sendmsg+0x10/0x10 [ 1401.624570][T20533] ? __pfx___might_resched+0x10/0x10 [ 1401.624617][T20533] __sys_sendmmsg+0x200/0x420 [ 1401.624663][T20533] ? __pfx___sys_sendmmsg+0x10/0x10 [ 1401.624720][T20533] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1401.624784][T20533] ? fput+0x70/0xf0 [ 1401.624833][T20533] ? ksys_write+0x1b9/0x240 [ 1401.624862][T20533] ? __pfx_ksys_write+0x10/0x10 [ 1401.624891][T20533] ? rcu_is_watching+0x12/0xc0 [ 1401.624926][T20533] __x64_sys_sendmmsg+0x9c/0x100 [ 1401.624963][T20533] ? lockdep_hardirqs_on+0x7c/0x110 [ 1401.625001][T20533] do_syscall_64+0xcd/0x230 [ 1401.625045][T20533] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1401.625074][T20533] RIP: 0033:0x7f186518e969 [ 1401.625100][T20533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1401.625129][T20533] RSP: 002b:00007f1866061038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1401.625156][T20533] RAX: ffffffffffffffda RBX: 00007f18653b5fa0 RCX: 00007f186518e969 [ 1401.625180][T20533] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 1401.625198][T20533] RBP: 00007f1866061090 R08: 0000000000000000 R09: 0000000000000000 [ 1401.625215][T20533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1401.625233][T20533] R13: 0000000000000000 R14: 00007f18653b5fa0 R15: 00007ffd7fdf4f68 [ 1401.625268][T20533] [ 1401.683339][T20534] Invalid ELF header magic: != ELF [ 1401.774950][T20536] netlink: 2076 bytes leftover after parsing attributes in process `syz.5.3127'. [ 1402.389229][T20545] FAULT_INJECTION: forcing a failure. [ 1402.389229][T20545] name failslab, interval 1, probability 0, space 0, times 0 [ 1402.391145][T20545] CPU: 0 UID: 0 PID: 20545 Comm: syz.6.3131 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1402.391184][T20545] Tainted: [U]=USER [ 1402.391193][T20545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1402.391209][T20545] Call Trace: [ 1402.391217][T20545] [ 1402.391227][T20545] dump_stack_lvl+0x16c/0x1f0 [ 1402.391268][T20545] should_fail_ex+0x512/0x640 [ 1402.391298][T20545] ? __kvmalloc_node_noprof+0x122/0x600 [ 1402.391331][T20545] should_failslab+0xc2/0x120 [ 1402.391372][T20545] __kvmalloc_node_noprof+0x135/0x600 [ 1402.391402][T20545] ? sbitmap_init_node+0x1ca/0x770 [ 1402.391447][T20545] ? sbitmap_init_node+0x1ca/0x770 [ 1402.391483][T20545] sbitmap_init_node+0x1ca/0x770 [ 1402.391525][T20545] sbitmap_queue_init_node+0x41/0x560 [ 1402.391579][T20545] blk_mq_init_tags+0x12d/0x2b0 [ 1402.391614][T20545] blk_mq_alloc_map_and_rqs+0x237/0xf10 [ 1402.391645][T20545] ? blk_mq_map_queues+0x211/0x410 [ 1402.391687][T20545] __blk_mq_alloc_map_and_rqs+0x128/0x1f0 [ 1402.391719][T20545] blk_mq_alloc_tag_set+0x75e/0x1250 [ 1402.391757][T20545] nbd_dev_add+0x34a/0xbb0 [ 1402.391794][T20545] ? __pfx_nbd_dev_add+0x10/0x10 [ 1402.391827][T20545] ? nbd_genl_connect+0x98e/0x1c20 [ 1402.391879][T20545] ? bpf_lsm_capable+0x9/0x10 [ 1402.391908][T20545] ? __radix_tree_lookup+0x21f/0x2c0 [ 1402.391945][T20545] nbd_genl_connect+0x8b0/0x1c20 [ 1402.391987][T20545] ? __pfx_nbd_genl_connect+0x10/0x10 [ 1402.392024][T20545] ? __nla_parse+0x40/0x60 [ 1402.392061][T20545] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 1402.392106][T20545] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 1402.392155][T20545] genl_family_rcv_msg_doit+0x206/0x2f0 [ 1402.392181][T20545] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 1402.392223][T20545] ? genl_get_cmd+0x194/0x580 [ 1402.392268][T20545] ? __local_bh_enable_ip+0xa4/0x120 [ 1402.392296][T20545] ? __dev_queue_xmit+0x896/0x43e0 [ 1402.392322][T20545] ? __radix_tree_lookup+0x21f/0x2c0 [ 1402.392364][T20545] genl_rcv_msg+0x55c/0x800 [ 1402.392389][T20545] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1402.392411][T20545] ? __pfx___dev_queue_xmit+0x10/0x10 [ 1402.392438][T20545] ? __pfx_nbd_genl_connect+0x10/0x10 [ 1402.392479][T20545] ? __lock_acquire+0xaa4/0x1ba0 [ 1402.392517][T20545] netlink_rcv_skb+0x16a/0x440 [ 1402.392551][T20545] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1402.392574][T20545] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1402.392623][T20545] ? __pfx_down_read+0x10/0x10 [ 1402.392645][T20545] ? netlink_deliver_tap+0x1ae/0xd30 [ 1402.392682][T20545] genl_rcv+0x28/0x40 [ 1402.392716][T20545] netlink_unicast+0x53a/0x7f0 [ 1402.392754][T20545] ? __pfx_netlink_unicast+0x10/0x10 [ 1402.392787][T20545] ? __lock_acquire+0xaa4/0x1ba0 [ 1402.392845][T20545] netlink_sendmsg+0x8d1/0xdd0 [ 1402.392887][T20545] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1402.392936][T20545] ____sys_sendmsg+0xa95/0xc70 [ 1402.392961][T20545] ? copy_msghdr_from_user+0x10a/0x160 [ 1402.392994][T20545] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1402.393023][T20545] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1402.393065][T20545] ___sys_sendmsg+0x134/0x1d0 [ 1402.393101][T20545] ? __pfx____sys_sendmsg+0x10/0x10 [ 1402.393173][T20545] __sys_sendmsg+0x16d/0x220 [ 1402.393207][T20545] ? __pfx___sys_sendmsg+0x10/0x10 [ 1402.393240][T20545] ? __x64_sys_futex+0x1e0/0x4c0 [ 1402.393278][T20545] ? rcu_is_watching+0x12/0xc0 [ 1402.393312][T20545] do_syscall_64+0xcd/0x230 [ 1402.393356][T20545] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1402.393382][T20545] RIP: 0033:0x7f3e0398e969 [ 1402.393402][T20545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1402.393429][T20545] RSP: 002b:00007f3e047df038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1402.393453][T20545] RAX: ffffffffffffffda RBX: 00007f3e03bb5fa0 RCX: 00007f3e0398e969 [ 1402.393471][T20545] RDX: 0000000000008880 RSI: 0000200000001e00 RDI: 0000000000000007 [ 1402.393487][T20545] RBP: 00007f3e03a10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1402.393504][T20545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1402.393519][T20545] R13: 0000000000000000 R14: 00007f3e03bb5fa0 R15: 00007ffee088e258 [ 1402.393552][T20545] [ 1402.393758][T20545] blk-mq: reduced tag depth (128 -> 64) [ 1403.974041][T20574] FAULT_INJECTION: forcing a failure. [ 1403.974041][T20574] name failslab, interval 1, probability 0, space 0, times 0 [ 1403.982934][T20574] CPU: 1 UID: 0 PID: 20574 Comm: syz.0.3138 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1403.982979][T20574] Tainted: [U]=USER [ 1403.982989][T20574] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1403.983006][T20574] Call Trace: [ 1403.983015][T20574] [ 1403.983027][T20574] dump_stack_lvl+0x16c/0x1f0 [ 1403.983069][T20574] should_fail_ex+0x512/0x640 [ 1403.983102][T20574] ? __kmalloc_noprof+0xbf/0x510 [ 1403.983138][T20574] ? __register_sysctl_table+0xb3/0x1900 [ 1403.983171][T20574] should_failslab+0xc2/0x120 [ 1403.983210][T20574] __kmalloc_noprof+0xd2/0x510 [ 1403.983256][T20574] __register_sysctl_table+0xb3/0x1900 [ 1403.983291][T20574] ? is_module_address+0x5f/0xf0 [ 1403.983335][T20574] ? __pfx___register_sysctl_table+0x10/0x10 [ 1403.983368][T20574] ? is_module_address+0x69/0xf0 [ 1403.983406][T20574] ? register_net_sysctl_sz+0x228/0x3e0 [ 1403.983451][T20574] ? __asan_memcpy+0x3c/0x60 [ 1403.983479][T20574] ? __pfx_nf_lwtunnel_net_init+0x10/0x10 [ 1403.983518][T20574] nf_lwtunnel_net_init+0x60/0xf0 [ 1403.983557][T20574] ops_init+0x1df/0x5f0 [ 1403.983601][T20574] setup_net+0x21e/0x850 [ 1403.983645][T20574] ? __pfx_setup_net+0x10/0x10 [ 1403.983682][T20574] ? lockdep_init_map_type+0x5c/0x280 [ 1403.983721][T20574] ? __pfx_down_read_killable+0x10/0x10 [ 1403.983751][T20574] ? debug_mutex_init+0x37/0x70 [ 1403.983784][T20574] copy_net_ns+0x2a6/0x5f0 [ 1403.983831][T20574] create_new_namespaces+0x3ea/0xad0 [ 1403.983874][T20574] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1403.983912][T20574] ksys_unshare+0x45b/0xa40 [ 1403.983954][T20574] ? __pfx_ksys_unshare+0x10/0x10 [ 1403.983993][T20574] ? xfd_validate_state+0x5d/0x180 [ 1403.984025][T20574] ? rcu_is_watching+0x12/0xc0 [ 1403.984062][T20574] __x64_sys_unshare+0x31/0x40 [ 1403.984101][T20574] do_syscall_64+0xcd/0x230 [ 1403.984144][T20574] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1403.984171][T20574] RIP: 0033:0x7f5ea7f8e969 [ 1403.984193][T20574] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1403.984220][T20574] RSP: 002b:00007f5ea8e54038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1403.984253][T20574] RAX: ffffffffffffffda RBX: 00007f5ea81b5fa0 RCX: 00007f5ea7f8e969 [ 1403.984271][T20574] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1403.984288][T20574] RBP: 00007f5ea8010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1403.984305][T20574] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1403.984322][T20574] R13: 0000000000000000 R14: 00007f5ea81b5fa0 R15: 00007ffd212c9fb8 [ 1403.984358][T20574] [ 1405.274064][T20588] CIFS mount error: No usable UNC path provided in device string! [ 1405.274064][T20588] [ 1405.388738][T20588] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1407.366424][T20631] openvswitch: netlink: Key type 261 is out of range max 32 [ 1411.587103][T20680] CIFS mount error: No usable UNC path provided in device string! [ 1411.587103][T20680] [ 1411.614737][T20680] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1411.663865][T20683] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1414.255890][T20718] FAULT_INJECTION: forcing a failure. [ 1414.255890][T20718] name failslab, interval 1, probability 0, space 0, times 0 [ 1414.355890][T20718] CPU: 1 UID: 0 PID: 20718 Comm: syz.6.3171 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1414.355929][T20718] Tainted: [U]=USER [ 1414.355936][T20718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1414.355950][T20718] Call Trace: [ 1414.355958][T20718] [ 1414.355967][T20718] dump_stack_lvl+0x16c/0x1f0 [ 1414.356003][T20718] should_fail_ex+0x512/0x640 [ 1414.356031][T20718] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 1414.356063][T20718] should_failslab+0xc2/0x120 [ 1414.356094][T20718] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 1414.356121][T20718] ? lockdep_init_map_type+0x5c/0x280 [ 1414.356154][T20718] ? __d_alloc+0x31/0xaa0 [ 1414.356184][T20718] __d_alloc+0x31/0xaa0 [ 1414.356213][T20718] d_alloc_pseudo+0x1c/0xc0 [ 1414.356253][T20718] alloc_file_pseudo+0xcf/0x230 [ 1414.356287][T20718] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 1414.356319][T20718] ? alloc_fd+0x471/0x7d0 [ 1414.356346][T20718] sock_alloc_file+0x50/0x210 [ 1414.356381][T20718] __sys_socket+0x1c0/0x260 [ 1414.356405][T20718] ? __pfx___sys_socket+0x10/0x10 [ 1414.356430][T20718] ? rcu_is_watching+0x12/0xc0 [ 1414.356458][T20718] __x64_sys_socket+0x72/0xb0 [ 1414.356480][T20718] ? lockdep_hardirqs_on+0x7c/0x110 [ 1414.356512][T20718] do_syscall_64+0xcd/0x230 [ 1414.356548][T20718] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1414.356572][T20718] RIP: 0033:0x7f3e0398e969 [ 1414.356589][T20718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1414.356613][T20718] RSP: 002b:00007f3e047df038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 1414.356635][T20718] RAX: ffffffffffffffda RBX: 00007f3e03bb5fa0 RCX: 00007f3e0398e969 [ 1414.356650][T20718] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 1414.356665][T20718] RBP: 00007f3e03a10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1414.356679][T20718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1414.356693][T20718] R13: 0000000000000000 R14: 00007f3e03bb5fa0 R15: 00007ffee088e258 [ 1414.356721][T20718] [ 1414.728477][T20716] snd_dummy snd_dummy.0: control 16781581:65533:6:'x?F/zF˷fC:0 is already present [ 1416.140320][T20749] [ 1416.390546][T20737] RDS: rds_bind could not find a transport for 7bc:c94c:4e37:70c4::, load rds_tcp or rds_rdma? [ 1416.674015][T20757] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3179'. [ 1417.425499][T14165] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 1419.636945][T20790] FAULT_INJECTION: forcing a failure. [ 1419.636945][T20790] name failslab, interval 1, probability 0, space 0, times 0 [ 1419.673300][T20790] CPU: 0 UID: 0 PID: 20790 Comm: syz.0.3183 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1419.673352][T20790] Tainted: [U]=USER [ 1419.673364][T20790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1419.673382][T20790] Call Trace: [ 1419.673393][T20790] [ 1419.673404][T20790] dump_stack_lvl+0x16c/0x1f0 [ 1419.673453][T20790] should_fail_ex+0x512/0x640 [ 1419.673506][T20790] ? fs_reclaim_acquire+0xae/0x150 [ 1419.673572][T20790] should_failslab+0xc2/0x120 [ 1419.673612][T20790] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1419.673648][T20790] ? security_inode_alloc+0x3b/0x2b0 [ 1419.673687][T20790] security_inode_alloc+0x3b/0x2b0 [ 1419.673722][T20790] inode_init_always_gfp+0xce4/0x1030 [ 1419.673758][T20790] alloc_inode+0x86/0x240 [ 1419.673796][T20790] sock_alloc+0x40/0x280 [ 1419.673840][T20790] __sock_create+0xc1/0x8d0 [ 1419.673875][T20790] __sys_socket+0x14d/0x260 [ 1419.673904][T20790] ? __pfx___sys_socket+0x10/0x10 [ 1419.673935][T20790] ? rcu_is_watching+0x12/0xc0 [ 1419.673972][T20790] __x64_sys_socket+0x72/0xb0 [ 1419.674000][T20790] ? lockdep_hardirqs_on+0x7c/0x110 [ 1419.674040][T20790] do_syscall_64+0xcd/0x230 [ 1419.674100][T20790] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1419.674130][T20790] RIP: 0033:0x7f5ea7f8e969 [ 1419.674153][T20790] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1419.674181][T20790] RSP: 002b:00007f5ea8e54038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 1419.674209][T20790] RAX: ffffffffffffffda RBX: 00007f5ea81b5fa0 RCX: 00007f5ea7f8e969 [ 1419.674229][T20790] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 1419.674246][T20790] RBP: 00007f5ea8010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1419.674265][T20790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1419.674283][T20790] R13: 0000000000000000 R14: 00007f5ea81b5fa0 R15: 00007ffd212c9fb8 [ 1419.674338][T20790] [ 1419.674376][T20790] socket: no more sockets [ 1420.873480][T20803] warning: `syz.0.3187' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 1421.388749][T20814] netlink: 326 bytes leftover after parsing attributes in process `syz.6.3189'. [ 1424.289475][T20848] FAULT_INJECTION: forcing a failure. [ 1424.289475][T20848] name failslab, interval 1, probability 0, space 0, times 0 [ 1424.312985][T20848] CPU: 0 UID: 0 PID: 20848 Comm: syz.5.3199 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1424.313037][T20848] Tainted: [U]=USER [ 1424.313048][T20848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1424.313067][T20848] Call Trace: [ 1424.313078][T20848] [ 1424.313093][T20848] dump_stack_lvl+0x16c/0x1f0 [ 1424.313130][T20848] should_fail_ex+0x512/0x640 [ 1424.313158][T20848] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1424.313190][T20848] should_failslab+0xc2/0x120 [ 1424.313222][T20848] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1424.313249][T20848] ? __proc_create+0xc3/0x8c0 [ 1424.313276][T20848] ? __proc_create+0x2ce/0x8c0 [ 1424.313307][T20848] __proc_create+0x2ce/0x8c0 [ 1424.313336][T20848] ? __pfx___proc_create+0x10/0x10 [ 1424.313367][T20848] ? _raw_write_unlock+0x28/0x50 [ 1424.313399][T20848] ? proc_register+0x314/0x5f0 [ 1424.313434][T20848] proc_create_reg+0x7d/0x180 [ 1424.313463][T20848] ? __pfx_rt_acct_proc_show+0x10/0x10 [ 1424.313501][T20848] proc_create_single_data+0x86/0x190 [ 1424.313532][T20848] ? __pfx_proc_create_single_data+0x10/0x10 [ 1424.313563][T20848] ? __pfx_nl_fib_input+0x10/0x10 [ 1424.313601][T20848] ? __pfx_ip_rt_do_proc_init+0x10/0x10 [ 1424.313648][T20848] ip_rt_do_proc_init+0xf4/0x1b0 [ 1424.313689][T20848] ops_init+0x1df/0x5f0 [ 1424.313724][T20848] setup_net+0x21e/0x850 [ 1424.313759][T20848] ? __pfx_setup_net+0x10/0x10 [ 1424.313789][T20848] ? lockdep_init_map_type+0x5c/0x280 [ 1424.313822][T20848] ? __pfx_down_read_killable+0x10/0x10 [ 1424.313847][T20848] ? debug_mutex_init+0x37/0x70 [ 1424.313874][T20848] copy_net_ns+0x2a6/0x5f0 [ 1424.313912][T20848] create_new_namespaces+0x3ea/0xad0 [ 1424.313946][T20848] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1424.313977][T20848] ksys_unshare+0x45b/0xa40 [ 1424.314031][T20848] ? __pfx_ksys_unshare+0x10/0x10 [ 1424.314086][T20848] ? xfd_validate_state+0x5d/0x180 [ 1424.314123][T20848] ? rcu_is_watching+0x12/0xc0 [ 1424.314155][T20848] __x64_sys_unshare+0x31/0x40 [ 1424.314187][T20848] do_syscall_64+0xcd/0x230 [ 1424.314223][T20848] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1424.314246][T20848] RIP: 0033:0x7f186518e969 [ 1424.314264][T20848] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1424.314287][T20848] RSP: 002b:00007f1866040038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1424.314308][T20848] RAX: ffffffffffffffda RBX: 00007f18653b6080 RCX: 00007f186518e969 [ 1424.314323][T20848] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1424.314337][T20848] RBP: 00007f1865210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1424.314351][T20848] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1424.314364][T20848] R13: 0000000000000000 R14: 00007f18653b6080 R15: 00007ffd7fdf4f68 [ 1424.314392][T20848] syzkaller syzkaller login: [ 1427.294950][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 1427.301301][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 1429.970698][T20914] kernel read not supported for file /\*)A (pid: 20914 comm: syz.4.3213) [ 1430.015108][T20903] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3210'. [ 1430.029973][ T30] audit: type=1800 audit(4294968921.765:145): pid=20914 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3213" name="\*)A" dev="mqueue" ino=61987 res=0 errno=0 [ 1430.283171][T20917] CIFS mount error: No usable UNC path provided in device string! [ 1430.283171][T20917] [ 1430.321275][T20917] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1434.871870][T20958] CIFS mount error: No usable UNC path provided in device string! [ 1434.871870][T20958] [ 1434.963684][T20958] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1435.056208][T20966] CIFS mount error: No usable UNC path provided in device string! [ 1435.056208][T20966] [ 1435.084017][T20966] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1436.260585][T20985] netlink: 2076 bytes leftover after parsing attributes in process `syz.5.3232'. [ 1438.245223][T21010] netlink: 'syz.0.3237': attribute type 15 has an invalid length. [ 1438.255293][T21010] netlink: 252 bytes leftover after parsing attributes in process `syz.0.3237'. [ 1439.330178][T21014] CIFS mount error: No usable UNC path provided in device string! [ 1439.330178][T21014] [ 1439.364835][T21014] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1440.972618][T21038] netlink: 'syz.5.3244': attribute type 1 has an invalid length. [ 1442.799611][T21058] ovs9: entered promiscuous mode [ 1442.860677][T21059] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3249'. [ 1445.886418][T21102] FAULT_INJECTION: forcing a failure. [ 1445.886418][T21102] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1445.910815][T21102] CPU: 1 UID: 0 PID: 21102 Comm: syz.5.3257 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1445.910863][T21102] Tainted: [U]=USER [ 1445.910873][T21102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1445.910891][T21102] Call Trace: [ 1445.910902][T21102] [ 1445.910912][T21102] dump_stack_lvl+0x16c/0x1f0 [ 1445.910961][T21102] should_fail_ex+0x512/0x640 [ 1445.911006][T21102] should_fail_alloc_page+0xe7/0x130 [ 1445.911052][T21102] prepare_alloc_pages+0x3c2/0x610 [ 1445.911106][T21102] ? rcu_is_watching+0x12/0xc0 [ 1445.911141][T21102] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 1445.911200][T21102] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1445.911239][T21102] ? do_raw_spin_lock+0x12c/0x2b0 [ 1445.911268][T21102] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 1445.911318][T21102] ? find_held_lock+0x2b/0x80 [ 1445.911361][T21102] ? __lock_acquire+0xaa4/0x1ba0 [ 1445.911402][T21102] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1445.911451][T21102] ? policy_nodemask+0xea/0x4e0 [ 1445.911494][T21102] alloc_pages_mpol+0x1fb/0x550 [ 1445.911537][T21102] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1445.911588][T21102] folio_alloc_mpol_noprof+0x36/0x2f0 [ 1445.911638][T21102] shmem_alloc_folio+0x135/0x160 [ 1445.911672][T21102] shmem_alloc_and_add_folio+0x499/0xc20 [ 1445.911727][T21102] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 1445.911792][T21102] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 1445.911842][T21102] shmem_get_folio_gfp+0x687/0x1530 [ 1445.911895][T21102] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 1445.911938][T21102] ? __pfx_timestamp_truncate+0x10/0x10 [ 1445.911983][T21102] shmem_fault+0x1fe/0xa30 [ 1445.912026][T21102] ? __pfx_shmem_fault+0x10/0x10 [ 1445.912075][T21102] ? __pfx___up_read+0x10/0x10 [ 1445.912136][T21102] ? __pfx_filemap_map_pages+0x10/0x10 [ 1445.912179][T21102] __do_fault+0x10a/0x490 [ 1445.912224][T21102] ? __pfx_filemap_map_pages+0x10/0x10 [ 1445.912267][T21102] do_pte_missing+0x1a6/0x3fb0 [ 1445.912307][T21102] ? __handle_mm_fault+0x1010/0x2a40 [ 1445.912348][T21102] __handle_mm_fault+0x103d/0x2a40 [ 1445.912399][T21102] ? __pfx___handle_mm_fault+0x10/0x10 [ 1445.912460][T21102] ? find_vma+0xbf/0x140 [ 1445.912506][T21102] ? __pfx_find_vma+0x10/0x10 [ 1445.912558][T21102] handle_mm_fault+0x3fe/0xad0 [ 1445.912600][T21102] do_user_addr_fault+0x7a6/0x1370 [ 1445.912640][T21102] ? rcu_is_watching+0x12/0xc0 [ 1445.912677][T21102] exc_page_fault+0x5c/0xc0 [ 1445.912730][T21102] asm_exc_page_fault+0x26/0x30 [ 1445.912763][T21102] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 1445.912800][T21102] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 1445.912833][T21102] RSP: 0000:ffffc9000bb9fc68 EFLAGS: 00050206 [ 1445.912859][T21102] RAX: 0000000000000001 RBX: 0000000000003f64 RCX: 0000000000001f64 [ 1445.912892][T21102] RDX: 0000000000000000 RSI: ffff88806defa09c RDI: 0000000000006000 [ 1445.912911][T21102] RBP: 0000000000004000 R08: 0000000000000000 R09: ffffed100dbdf7ff [ 1445.912930][T21102] R10: ffff88806defbfff R11: 0000000000000000 R12: ffff88806def809c [ 1445.912950][T21102] R13: 0000000000007f64 R14: 00007ffffffff000 R15: 0000000000000000 [ 1445.912989][T21102] _copy_to_user+0xbb/0xd0 [ 1445.913033][T21102] snd_pcm_oss_read+0x276/0x760 [ 1445.913073][T21102] ? __pfx_snd_pcm_oss_read+0x10/0x10 [ 1445.913108][T21102] vfs_read+0x1de/0xc70 [ 1445.913147][T21102] ? __pfx_vfs_read+0x10/0x10 [ 1445.913174][T21102] ? find_held_lock+0x2b/0x80 [ 1445.913207][T21102] ? __fget_files+0x204/0x3c0 [ 1445.913242][T21102] ? __fget_files+0x20e/0x3c0 [ 1445.913281][T21102] ksys_read+0x12a/0x240 [ 1445.913312][T21102] ? __pfx_ksys_read+0x10/0x10 [ 1445.913341][T21102] ? rcu_is_watching+0x12/0xc0 [ 1445.913382][T21102] do_syscall_64+0xcd/0x230 [ 1445.913429][T21102] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1445.913459][T21102] RIP: 0033:0x7f186518e969 [ 1445.913482][T21102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1445.913512][T21102] RSP: 002b:00007f1866040038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1445.913538][T21102] RAX: ffffffffffffffda RBX: 00007f18653b6080 RCX: 00007f186518e969 [ 1445.913558][T21102] RDX: 000000000cefbce6 RSI: 0000000000000000 RDI: 0000000000000008 [ 1445.913577][T21102] RBP: 00007f1865210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1445.913596][T21102] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1445.913615][T21102] R13: 0000000000000000 R14: 00007f18653b6080 R15: 00007ffd7fdf4f68 [ 1445.913655][T21102] [ 1447.168777][T21117] FAULT_INJECTION: forcing a failure. [ 1447.168777][T21117] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1447.168885][T21117] CPU: 0 UID: 0 PID: 21117 Comm: syz.0.3261 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1447.168918][T21117] Tainted: [U]=USER [ 1447.168926][T21117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1447.168939][T21117] Call Trace: [ 1447.168946][T21117] [ 1447.168954][T21117] dump_stack_lvl+0x16c/0x1f0 [ 1447.168990][T21117] should_fail_ex+0x512/0x640 [ 1447.169020][T21117] should_fail_alloc_page+0xe7/0x130 [ 1447.169051][T21117] prepare_alloc_pages+0x3c2/0x610 [ 1447.169088][T21117] ? rcu_is_watching+0x12/0xc0 [ 1447.169113][T21117] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 1447.169155][T21117] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1447.169183][T21117] ? do_raw_spin_lock+0x12c/0x2b0 [ 1447.169203][T21117] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 1447.169238][T21117] ? find_held_lock+0x2b/0x80 [ 1447.169268][T21117] ? __lock_acquire+0xaa4/0x1ba0 [ 1447.169297][T21117] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1447.169331][T21117] ? policy_nodemask+0xea/0x4e0 [ 1447.169362][T21117] alloc_pages_mpol+0x1fb/0x550 [ 1447.169391][T21117] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1447.169428][T21117] folio_alloc_mpol_noprof+0x36/0x2f0 [ 1447.169462][T21117] shmem_alloc_folio+0x135/0x160 [ 1447.169486][T21117] shmem_alloc_and_add_folio+0x499/0xc20 [ 1447.169520][T21117] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 1447.169551][T21117] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 1447.169584][T21117] shmem_get_folio_gfp+0x687/0x1530 [ 1447.169629][T21117] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 1447.169663][T21117] ? __pfx_timestamp_truncate+0x10/0x10 [ 1447.169703][T21117] shmem_fault+0x1fe/0xa30 [ 1447.169732][T21117] ? __pfx_shmem_fault+0x10/0x10 [ 1447.169762][T21117] ? __pfx___up_read+0x10/0x10 [ 1447.169800][T21117] ? __pfx_filemap_map_pages+0x10/0x10 [ 1447.169827][T21117] __do_fault+0x10a/0x490 [ 1447.169863][T21117] ? __pfx_filemap_map_pages+0x10/0x10 [ 1447.169889][T21117] do_pte_missing+0x1a6/0x3fb0 [ 1447.169914][T21117] ? __handle_mm_fault+0x1010/0x2a40 [ 1447.169940][T21117] __handle_mm_fault+0x103d/0x2a40 [ 1447.169969][T21117] ? __pfx___handle_mm_fault+0x10/0x10 [ 1447.170006][T21117] ? find_vma+0xbf/0x140 [ 1447.170034][T21117] ? __pfx_find_vma+0x10/0x10 [ 1447.170067][T21117] handle_mm_fault+0x3fe/0xad0 [ 1447.170094][T21117] do_user_addr_fault+0x7a6/0x1370 [ 1447.170120][T21117] ? rcu_is_watching+0x12/0xc0 [ 1447.170142][T21117] exc_page_fault+0x5c/0xc0 [ 1447.170171][T21117] asm_exc_page_fault+0x26/0x30 [ 1447.170190][T21117] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 1447.170214][T21117] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 1447.170235][T21117] RSP: 0018:ffffc9000bd9fbc0 EFLAGS: 00050206 [ 1447.170251][T21117] RAX: 0000000000000001 RBX: 0000000000004000 RCX: 0000000000001f64 [ 1447.170264][T21117] RDX: 0000000000000000 RSI: ffff88806defa09c RDI: 0000000000012000 [ 1447.170277][T21117] RBP: 000000000000ff64 R08: 0000000000000000 R09: ffffed100dbdf7ff [ 1447.170289][T21117] R10: ffff88806defbfff R11: 0000000000000000 R12: ffff88806def8000 [ 1447.170302][T21117] R13: 0000000000013f64 R14: 00007ffffffff000 R15: 0000000000000000 [ 1447.170327][T21117] _copy_to_user+0xbb/0xd0 [ 1447.170356][T21117] snd_pcm_oss_read2+0x294/0x410 [ 1447.170380][T21117] ? __pfx_snd_pcm_oss_read2+0x10/0x10 [ 1447.170408][T21117] snd_pcm_oss_read+0x5d3/0x760 [ 1447.170433][T21117] ? __pfx_snd_pcm_oss_read+0x10/0x10 [ 1447.170456][T21117] vfs_read+0x1de/0xc70 [ 1447.170483][T21117] ? __pfx_vfs_read+0x10/0x10 [ 1447.170501][T21117] ? find_held_lock+0x2b/0x80 [ 1447.170522][T21117] ? __fget_files+0x204/0x3c0 [ 1447.170545][T21117] ? __fget_files+0x20e/0x3c0 [ 1447.170571][T21117] ksys_read+0x12a/0x240 [ 1447.170601][T21117] ? __pfx_ksys_read+0x10/0x10 [ 1447.170621][T21117] ? rcu_is_watching+0x12/0xc0 [ 1447.170648][T21117] do_syscall_64+0xcd/0x230 [ 1447.170679][T21117] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1447.170699][T21117] RIP: 0033:0x7f5ea7f8e969 [ 1447.170714][T21117] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1447.170733][T21117] RSP: 002b:00007f5ea8e33038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1447.170768][T21117] RAX: ffffffffffffffda RBX: 00007f5ea81b6080 RCX: 00007f5ea7f8e969 [ 1447.170783][T21117] RDX: 000000000cefbce6 RSI: 0000000000000000 RDI: 0000000000000008 [ 1447.170797][T21117] RBP: 00007f5ea8010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1447.170810][T21117] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1447.170823][T21117] R13: 0000000000000000 R14: 00007f5ea81b6080 R15: 00007ffd212c9fb8 [ 1447.170859][T21117] [ 1449.617136][T21101] tty tty17: ldisc open failed (-12), clearing slot 16 [ 1449.664779][T21109] tty tty12: ldisc open failed (-12), clearing slot 11 [ 1449.677655][T21126] ptm ptm0: ldisc open failed (-12), clearing slot 0 [ 1449.726955][T21127] ptm ptm1: ldisc open failed (-12), clearing slot 1 [ 1450.621199][T21147] zswap: compressor not available [ 1453.016923][T21190] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3278'. [ 1453.101844][T21190] bridge0: port 2(bridge_slave_1) entered disabled state [ 1453.231472][T21190] bridge_slave_1 (unregistering): left allmulticast mode [ 1453.247732][T21190] bridge_slave_1 (unregistering): left promiscuous mode [ 1453.392194][T21190] bridge0: port 2(bridge_slave_1) entered disabled state [ 1453.921169][T21199] zswap: compressor not available [ 1457.033295][T21232] FAULT_INJECTION: forcing a failure. [ 1457.033295][T21232] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1457.071745][T21232] CPU: 0 UID: 0 PID: 21232 Comm: syz.4.3286 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1457.071786][T21232] Tainted: [U]=USER [ 1457.071794][T21232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1457.071807][T21232] Call Trace: [ 1457.071814][T21232] [ 1457.071821][T21232] dump_stack_lvl+0x16c/0x1f0 [ 1457.071857][T21232] should_fail_ex+0x512/0x640 [ 1457.071885][T21232] should_fail_alloc_page+0xe7/0x130 [ 1457.071914][T21232] prepare_alloc_pages+0x3c2/0x610 [ 1457.071947][T21232] ? rcu_is_watching+0x12/0xc0 [ 1457.071971][T21232] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 1457.071997][T21232] ? cgroup_rstat_updated+0x2a/0xb20 [ 1457.072021][T21232] ? rcu_is_watching+0x12/0xc0 [ 1457.072041][T21232] ? __mod_memcg_lruvec_state+0x533/0x760 [ 1457.072061][T21232] ? __mod_zone_page_state+0xcc/0x1a0 [ 1457.072096][T21232] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1457.072127][T21232] ? folios_put_refs+0x5ce/0x740 [ 1457.072160][T21232] ? __pfx_folios_put_refs+0x10/0x10 [ 1457.072191][T21232] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1457.072223][T21232] ? policy_nodemask+0xea/0x4e0 [ 1457.072252][T21232] alloc_pages_mpol+0x1fb/0x550 [ 1457.072279][T21232] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1457.072314][T21232] folio_alloc_mpol_noprof+0x36/0x2f0 [ 1457.072346][T21232] shmem_alloc_folio+0x135/0x160 [ 1457.072369][T21232] shmem_alloc_and_add_folio+0x499/0xc20 [ 1457.072400][T21232] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 1457.072429][T21232] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 1457.072460][T21232] shmem_get_folio_gfp+0x687/0x1530 [ 1457.072491][T21232] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 1457.072518][T21232] ? __pfx_timestamp_truncate+0x10/0x10 [ 1457.072546][T21232] shmem_fault+0x1fe/0xa30 [ 1457.072573][T21232] ? __pfx_shmem_fault+0x10/0x10 [ 1457.072602][T21232] ? __pfx___up_read+0x10/0x10 [ 1457.072641][T21232] ? __pfx_filemap_map_pages+0x10/0x10 [ 1457.072668][T21232] __do_fault+0x10a/0x490 [ 1457.072696][T21232] ? __pfx_filemap_map_pages+0x10/0x10 [ 1457.072722][T21232] do_pte_missing+0x1a6/0x3fb0 [ 1457.072747][T21232] ? __handle_mm_fault+0x1010/0x2a40 [ 1457.072772][T21232] __handle_mm_fault+0x103d/0x2a40 [ 1457.072811][T21232] ? __pfx___handle_mm_fault+0x10/0x10 [ 1457.072865][T21232] ? find_vma+0xbf/0x140 [ 1457.072902][T21232] ? __pfx_find_vma+0x10/0x10 [ 1457.072935][T21232] handle_mm_fault+0x3fe/0xad0 [ 1457.072961][T21232] do_user_addr_fault+0x7a6/0x1370 [ 1457.072987][T21232] ? rcu_is_watching+0x12/0xc0 [ 1457.073010][T21232] exc_page_fault+0x5c/0xc0 [ 1457.073038][T21232] asm_exc_page_fault+0x26/0x30 [ 1457.073058][T21232] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 1457.073086][T21232] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 1457.073106][T21232] RSP: 0018:ffffc9000b7cfbc0 EFLAGS: 00050206 [ 1457.073122][T21232] RAX: 0000000000000001 RBX: 0000000000004000 RCX: 0000000000001f64 [ 1457.073135][T21232] RDX: 0000000000000000 RSI: ffff8880973fe09c RDI: 0000000000012000 [ 1457.073148][T21232] RBP: 000000000000ff64 R08: 0000000000000000 R09: ffffed1012e7ffff [ 1457.073160][T21232] R10: ffff8880973fffff R11: 0000000000000000 R12: ffff8880973fc000 [ 1457.073173][T21232] R13: 0000000000013f64 R14: 00007ffffffff000 R15: 0000000000000000 [ 1457.073199][T21232] _copy_to_user+0xbb/0xd0 [ 1457.073228][T21232] snd_pcm_oss_read2+0x294/0x410 [ 1457.073251][T21232] ? __pfx_snd_pcm_oss_read2+0x10/0x10 [ 1457.073280][T21232] snd_pcm_oss_read+0x5d3/0x760 [ 1457.073305][T21232] ? __pfx_snd_pcm_oss_read+0x10/0x10 [ 1457.073328][T21232] vfs_read+0x1de/0xc70 [ 1457.073354][T21232] ? __pfx_vfs_read+0x10/0x10 [ 1457.073373][T21232] ? find_held_lock+0x2b/0x80 [ 1457.073395][T21232] ? __fget_files+0x204/0x3c0 [ 1457.073418][T21232] ? __fget_files+0x20e/0x3c0 [ 1457.073444][T21232] ksys_read+0x12a/0x240 [ 1457.073464][T21232] ? __pfx_ksys_read+0x10/0x10 [ 1457.073483][T21232] ? rcu_is_watching+0x12/0xc0 [ 1457.073510][T21232] do_syscall_64+0xcd/0x230 [ 1457.073542][T21232] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1457.073562][T21232] RIP: 0033:0x7f04a218e969 [ 1457.073578][T21232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1457.073598][T21232] RSP: 002b:00007f04a307a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1457.073616][T21232] RAX: ffffffffffffffda RBX: 00007f04a23b6080 RCX: 00007f04a218e969 [ 1457.073629][T21232] RDX: 000000000cefbce6 RSI: 0000000000000000 RDI: 0000000000000008 [ 1457.073642][T21232] RBP: 00007f04a2210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1457.073654][T21232] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1457.073667][T21232] R13: 0000000000000000 R14: 00007f04a23b6080 R15: 00007ffd9a65a2e8 [ 1457.073692][T21232] [ 1457.764279][T21240] snd_dummy snd_dummy.0: control 16781581:65533:6:'x?F/zF˷fC:0 is already present [ 1459.974900][T21259] FAULT_INJECTION: forcing a failure. [ 1459.974900][T21259] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1459.988270][T21259] CPU: 1 UID: 0 PID: 21259 Comm: syz.4.3293 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1459.988318][T21259] Tainted: [U]=USER [ 1459.988330][T21259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1459.988348][T21259] Call Trace: [ 1459.988359][T21259] [ 1459.988379][T21259] dump_stack_lvl+0x16c/0x1f0 [ 1459.988441][T21259] should_fail_ex+0x512/0x640 [ 1459.988484][T21259] should_fail_alloc_page+0xe7/0x130 [ 1459.988527][T21259] prepare_alloc_pages+0x3c2/0x610 [ 1459.988582][T21259] ? rcu_is_watching+0x12/0xc0 [ 1459.988625][T21259] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 1459.988689][T21259] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1459.988730][T21259] ? do_raw_spin_lock+0x12c/0x2b0 [ 1459.988758][T21259] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 1459.988808][T21259] ? find_held_lock+0x2b/0x80 [ 1459.988850][T21259] ? __lock_acquire+0xaa4/0x1ba0 [ 1459.988892][T21259] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1459.988942][T21259] ? policy_nodemask+0xea/0x4e0 [ 1459.988990][T21259] alloc_pages_mpol+0x1fb/0x550 [ 1459.989033][T21259] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1459.989084][T21259] folio_alloc_mpol_noprof+0x36/0x2f0 [ 1459.989133][T21259] shmem_alloc_folio+0x135/0x160 [ 1459.989168][T21259] shmem_alloc_and_add_folio+0x499/0xc20 [ 1459.989217][T21259] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 1459.989262][T21259] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 1459.989310][T21259] shmem_get_folio_gfp+0x687/0x1530 [ 1459.989359][T21259] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 1459.989400][T21259] ? __pfx_timestamp_truncate+0x10/0x10 [ 1459.989443][T21259] shmem_fault+0x1fe/0xa30 [ 1459.989484][T21259] ? __pfx_shmem_fault+0x10/0x10 [ 1459.989530][T21259] ? __pfx___up_read+0x10/0x10 [ 1459.989605][T21259] ? __pfx_filemap_map_pages+0x10/0x10 [ 1459.989651][T21259] __do_fault+0x10a/0x490 [ 1459.989695][T21259] ? __pfx_filemap_map_pages+0x10/0x10 [ 1459.989735][T21259] do_pte_missing+0x1a6/0x3fb0 [ 1459.989778][T21259] ? __handle_mm_fault+0x1010/0x2a40 [ 1459.989818][T21259] __handle_mm_fault+0x103d/0x2a40 [ 1459.989864][T21259] ? __pfx___handle_mm_fault+0x10/0x10 [ 1459.989922][T21259] ? find_vma+0xbf/0x140 [ 1459.989968][T21259] ? __pfx_find_vma+0x10/0x10 [ 1459.990017][T21259] handle_mm_fault+0x3fe/0xad0 [ 1459.990058][T21259] do_user_addr_fault+0x7a6/0x1370 [ 1459.990097][T21259] ? rcu_is_watching+0x12/0xc0 [ 1459.990132][T21259] exc_page_fault+0x5c/0xc0 [ 1459.990175][T21259] asm_exc_page_fault+0x26/0x30 [ 1459.990205][T21259] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 1459.990241][T21259] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 1459.990271][T21259] RSP: 0018:ffffc9000bd8fbc0 EFLAGS: 00050206 [ 1459.990296][T21259] RAX: 0000000000000001 RBX: 0000000000004000 RCX: 0000000000000f64 [ 1459.990315][T21259] RDX: 0000000000000000 RSI: ffff88809772709c RDI: 0000000000013000 [ 1459.990335][T21259] RBP: 000000000000ff64 R08: 0000000000000000 R09: ffffed1012ee4fff [ 1459.990354][T21259] R10: ffff888097727fff R11: 0000000000000000 R12: ffff888097724000 [ 1459.990373][T21259] R13: 0000000000013f64 R14: 00007ffffffff000 R15: 0000000000000000 [ 1459.990413][T21259] _copy_to_user+0xbb/0xd0 [ 1459.990457][T21259] snd_pcm_oss_read2+0x294/0x410 [ 1459.990494][T21259] ? __pfx_snd_pcm_oss_read2+0x10/0x10 [ 1459.990538][T21259] snd_pcm_oss_read+0x5d3/0x760 [ 1459.990577][T21259] ? __pfx_snd_pcm_oss_read+0x10/0x10 [ 1459.990620][T21259] vfs_read+0x1de/0xc70 [ 1459.990660][T21259] ? __pfx_vfs_read+0x10/0x10 [ 1459.990689][T21259] ? find_held_lock+0x2b/0x80 [ 1459.990721][T21259] ? __fget_files+0x204/0x3c0 [ 1459.990756][T21259] ? __fget_files+0x20e/0x3c0 [ 1459.990798][T21259] ksys_read+0x12a/0x240 [ 1459.990829][T21259] ? __pfx_ksys_read+0x10/0x10 [ 1459.990858][T21259] ? rcu_is_watching+0x12/0xc0 [ 1459.990901][T21259] do_syscall_64+0xcd/0x230 [ 1459.990950][T21259] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1459.990981][T21259] RIP: 0033:0x7f04a218e969 [ 1459.991005][T21259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1459.991035][T21259] RSP: 002b:00007f04a307a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1459.991063][T21259] RAX: ffffffffffffffda RBX: 00007f04a23b6080 RCX: 00007f04a218e969 [ 1459.991084][T21259] RDX: 000000000cefbce6 RSI: 0000000000000000 RDI: 0000000000000008 [ 1459.991102][T21259] RBP: 00007f04a2210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1459.991121][T21259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1459.991140][T21259] R13: 0000000000000000 R14: 00007f04a23b6080 R15: 00007ffd9a65a2e8 [ 1459.991180][T21259] [ 1462.393541][T21304] CIFS mount error: No usable UNC path provided in device string! [ 1462.393541][T21304] [ 1462.403816][T21304] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1462.924704][T21315] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3303'. [ 1463.173468][T21315] bond0: (slave bond_slave_0): Releasing backup interface [ 1463.979500][T21330] FAULT_INJECTION: forcing a failure. [ 1463.979500][T21330] name failslab, interval 1, probability 0, space 0, times 0 [ 1464.013811][T21330] CPU: 0 UID: 0 PID: 21330 Comm: syz.0.3307 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1464.013864][T21330] Tainted: [U]=USER [ 1464.013875][T21330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1464.013895][T21330] Call Trace: [ 1464.013907][T21330] [ 1464.013919][T21330] dump_stack_lvl+0x16c/0x1f0 [ 1464.013972][T21330] should_fail_ex+0x512/0x640 [ 1464.014011][T21330] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1464.014049][T21330] should_failslab+0xc2/0x120 [ 1464.014093][T21330] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1464.014127][T21330] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 1464.014185][T21330] ? genl_start+0x1e8/0x980 [ 1464.014220][T21330] genl_start+0x1e8/0x980 [ 1464.014256][T21330] __netlink_dump_start+0x60b/0x990 [ 1464.014309][T21330] genl_family_rcv_msg_dumpit+0x1e2/0x2e0 [ 1464.014346][T21330] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 1464.014392][T21330] ? __pfx_genl_start+0x10/0x10 [ 1464.014419][T21330] ? __pfx_genl_dumpit+0x10/0x10 [ 1464.014446][T21330] ? __pfx_genl_done+0x10/0x10 [ 1464.014477][T21330] ? bpf_lsm_capable+0x9/0x10 [ 1464.014513][T21330] ? security_capable+0x7e/0x260 [ 1464.014555][T21330] ? ns_capable+0xd7/0x110 [ 1464.014596][T21330] genl_rcv_msg+0x46e/0x800 [ 1464.014633][T21330] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1464.014663][T21330] ? __pfx___dev_queue_xmit+0x10/0x10 [ 1464.014700][T21330] ? __pfx_batadv_bla_backbone_dump+0x10/0x10 [ 1464.014741][T21330] ? __lock_acquire+0xaa4/0x1ba0 [ 1464.014804][T21330] netlink_rcv_skb+0x16a/0x440 [ 1464.014852][T21330] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1464.014885][T21330] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1464.014953][T21330] ? __pfx_down_read+0x10/0x10 [ 1464.014985][T21330] ? netlink_deliver_tap+0x1ae/0xd30 [ 1464.015036][T21330] genl_rcv+0x28/0x40 [ 1464.015083][T21330] netlink_unicast+0x53a/0x7f0 [ 1464.015135][T21330] ? __pfx_netlink_unicast+0x10/0x10 [ 1464.015180][T21330] ? __lock_acquire+0xaa4/0x1ba0 [ 1464.015235][T21330] netlink_sendmsg+0x8d1/0xdd0 [ 1464.015288][T21330] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1464.015352][T21330] ____sys_sendmsg+0xa95/0xc70 [ 1464.015385][T21330] ? copy_msghdr_from_user+0x10a/0x160 [ 1464.015428][T21330] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1464.015465][T21330] ? kfree+0x252/0x4d0 [ 1464.015491][T21330] ? __pfx__kstrtoull+0x10/0x10 [ 1464.015557][T21330] ___sys_sendmsg+0x134/0x1d0 [ 1464.015603][T21330] ? __pfx____sys_sendmsg+0x10/0x10 [ 1464.015686][T21330] ? __pfx___might_resched+0x10/0x10 [ 1464.015734][T21330] __sys_sendmmsg+0x200/0x420 [ 1464.015783][T21330] ? __pfx___sys_sendmmsg+0x10/0x10 [ 1464.015842][T21330] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1464.015907][T21330] ? fput+0x70/0xf0 [ 1464.015947][T21330] ? ksys_write+0x1b9/0x240 [ 1464.015980][T21330] ? __pfx_ksys_write+0x10/0x10 [ 1464.016039][T21330] ? rcu_is_watching+0x12/0xc0 [ 1464.016093][T21330] __x64_sys_sendmmsg+0x9c/0x100 [ 1464.016136][T21330] ? lockdep_hardirqs_on+0x7c/0x110 [ 1464.016181][T21330] do_syscall_64+0xcd/0x230 [ 1464.016231][T21330] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1464.016264][T21330] RIP: 0033:0x7f5ea7f8e969 [ 1464.016289][T21330] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1464.016321][T21330] RSP: 002b:00007f5ea8e54038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1464.016350][T21330] RAX: ffffffffffffffda RBX: 00007f5ea81b5fa0 RCX: 00007f5ea7f8e969 [ 1464.016371][T21330] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 1464.016391][T21330] RBP: 00007f5ea8e54090 R08: 0000000000000000 R09: 0000000000000000 [ 1464.016410][T21330] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1464.016430][T21330] R13: 0000000000000000 R14: 00007f5ea81b5fa0 R15: 00007ffd212c9fb8 [ 1464.016472][T21330] [ 1464.879646][T21330] netlink: 2076 bytes leftover after parsing attributes in process `syz.0.3307'. [ 1465.128687][T21325] ubi0: detaching mtd0 [ 1465.138547][T21325] ubi0: mtd0 is detached [ 1465.415521][T21339] netlink: 342 bytes leftover after parsing attributes in process `syz.5.3309'. [ 1465.465403][T21339] netlink: 342 bytes leftover after parsing attributes in process `syz.5.3309'. [ 1466.639889][T21352] openvswitch: ovs9: Dropping previously announced user features [ 1466.692435][T21352] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3314'. [ 1467.061982][T21358] FAULT_INJECTION: forcing a failure. [ 1467.061982][T21358] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1467.149655][T21358] CPU: 0 UID: 0 PID: 21358 Comm: syz.5.3315 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1467.149702][T21358] Tainted: [U]=USER [ 1467.149711][T21358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1467.149728][T21358] Call Trace: [ 1467.149738][T21358] [ 1467.149750][T21358] dump_stack_lvl+0x16c/0x1f0 [ 1467.149796][T21358] should_fail_ex+0x512/0x640 [ 1467.149836][T21358] should_fail_alloc_page+0xe7/0x130 [ 1467.149879][T21358] prepare_alloc_pages+0x3c2/0x610 [ 1467.149934][T21358] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 1467.149992][T21358] ? cgroup_rstat_updated+0x2a/0xb20 [ 1467.150029][T21358] ? rcu_is_watching+0x12/0xc0 [ 1467.150070][T21358] ? __mod_memcg_lruvec_state+0x533/0x760 [ 1467.150102][T21358] ? __mod_zone_page_state+0xcc/0x1a0 [ 1467.150138][T21358] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1467.150193][T21358] ? folios_put_refs+0x5ce/0x740 [ 1467.150238][T21358] ? __pfx_folios_put_refs+0x10/0x10 [ 1467.150284][T21358] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1467.150329][T21358] ? policy_nodemask+0xea/0x4e0 [ 1467.150371][T21358] alloc_pages_mpol+0x1fb/0x550 [ 1467.150412][T21358] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1467.150462][T21358] folio_alloc_mpol_noprof+0x36/0x2f0 [ 1467.150508][T21358] shmem_alloc_folio+0x135/0x160 [ 1467.150540][T21358] shmem_alloc_and_add_folio+0x499/0xc20 [ 1467.150585][T21358] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 1467.150627][T21358] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 1467.150672][T21358] shmem_get_folio_gfp+0x687/0x1530 [ 1467.150719][T21358] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 1467.150759][T21358] ? reacquire_held_locks+0xcd/0x1f0 [ 1467.150799][T21358] ? __mark_inode_dirty+0x64d/0xe50 [ 1467.150844][T21358] shmem_fault+0x1fe/0xa30 [ 1467.150884][T21358] ? __pfx_shmem_fault+0x10/0x10 [ 1467.150923][T21358] ? _raw_spin_unlock+0x28/0x50 [ 1467.150960][T21358] ? __pfx___up_read+0x10/0x10 [ 1467.151015][T21358] ? __pfx_filemap_map_pages+0x10/0x10 [ 1467.151063][T21358] __do_fault+0x10a/0x490 [ 1467.151105][T21358] ? __pfx_filemap_map_pages+0x10/0x10 [ 1467.151143][T21358] do_pte_missing+0x1a6/0x3fb0 [ 1467.151177][T21358] ? __handle_mm_fault+0x1010/0x2a40 [ 1467.151214][T21358] __handle_mm_fault+0x103d/0x2a40 [ 1467.151258][T21358] ? __pfx___handle_mm_fault+0x10/0x10 [ 1467.151312][T21358] ? find_vma+0xbf/0x140 [ 1467.151354][T21358] ? __pfx_find_vma+0x10/0x10 [ 1467.151402][T21358] handle_mm_fault+0x3fe/0xad0 [ 1467.151441][T21358] do_user_addr_fault+0x7a6/0x1370 [ 1467.151478][T21358] ? rcu_is_watching+0x12/0xc0 [ 1467.151512][T21358] exc_page_fault+0x5c/0xc0 [ 1467.151553][T21358] asm_exc_page_fault+0x26/0x30 [ 1467.151581][T21358] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 1467.151613][T21358] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 1467.151641][T21358] RSP: 0018:ffffc90003a47bc0 EFLAGS: 00050206 [ 1467.151664][T21358] RAX: 0000000000000001 RBX: 0000000000004000 RCX: 0000000000002000 [ 1467.151682][T21358] RDX: 0000000000000000 RSI: ffff88807f516000 RDI: 0000000000002000 [ 1467.151702][T21358] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffed100fea2fff [ 1467.151721][T21358] R10: ffff88807f517fff R11: 0000000000000000 R12: ffff88807f514000 [ 1467.151740][T21358] R13: 0000000000004000 R14: 00007ffffffff000 R15: 0000000000000000 [ 1467.151779][T21358] _copy_to_user+0xbb/0xd0 [ 1467.151822][T21358] snd_pcm_oss_read2+0x294/0x410 [ 1467.151856][T21358] ? __pfx_snd_pcm_oss_read2+0x10/0x10 [ 1467.151885][T21358] ? snd_pcm_kernel_ioctl+0x267/0x2e0 [ 1467.151923][T21358] ? snd_pcm_oss_prepare+0x11e/0x220 [ 1467.151976][T21358] snd_pcm_oss_read+0x5d3/0x760 [ 1467.152013][T21358] ? __pfx_snd_pcm_oss_read+0x10/0x10 [ 1467.152055][T21358] vfs_read+0x1de/0xc70 [ 1467.152094][T21358] ? __pfx_vfs_read+0x10/0x10 [ 1467.152121][T21358] ? find_held_lock+0x2b/0x80 [ 1467.152154][T21358] ? __fget_files+0x204/0x3c0 [ 1467.152189][T21358] ? __fget_files+0x20e/0x3c0 [ 1467.152227][T21358] ksys_read+0x12a/0x240 [ 1467.152257][T21358] ? __pfx_ksys_read+0x10/0x10 [ 1467.152285][T21358] ? rcu_is_watching+0x12/0xc0 [ 1467.152326][T21358] do_syscall_64+0xcd/0x230 [ 1467.152372][T21358] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1467.152400][T21358] RIP: 0033:0x7f186518e969 [ 1467.152422][T21358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1467.152451][T21358] RSP: 002b:00007f1866040038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1467.152478][T21358] RAX: ffffffffffffffda RBX: 00007f18653b6080 RCX: 00007f186518e969 [ 1467.152497][T21358] RDX: 000000000cefbce6 RSI: 0000000000000000 RDI: 0000000000000008 [ 1467.152515][T21358] RBP: 00007f1865210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1467.152533][T21358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1467.152550][T21358] R13: 0000000000000000 R14: 00007f18653b6080 R15: 00007ffd7fdf4f68 [ 1467.152593][T21358] [ 1468.757138][T21387] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3321'. [ 1469.054342][T21391] blktrace: Concurrent blktraces are not allowed on sda1 [ 1470.383804][T21414] FAULT_INJECTION: forcing a failure. [ 1470.383804][T21414] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1470.398242][T21414] CPU: 0 UID: 0 PID: 21414 Comm: syz.0.3328 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1470.398294][T21414] Tainted: [U]=USER [ 1470.398305][T21414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1470.398325][T21414] Call Trace: [ 1470.398336][T21414] [ 1470.398349][T21414] dump_stack_lvl+0x16c/0x1f0 [ 1470.398401][T21414] should_fail_ex+0x512/0x640 [ 1470.398450][T21414] _copy_to_user+0x32/0xd0 [ 1470.398490][T21414] simple_read_from_buffer+0xcb/0x170 [ 1470.398537][T21414] proc_fail_nth_read+0x197/0x270 [ 1470.398580][T21414] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1470.398625][T21414] ? rw_verify_area+0xcf/0x680 [ 1470.398667][T21414] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1470.398709][T21414] vfs_read+0x1de/0xc70 [ 1470.398742][T21414] ? __pfx___mutex_lock+0x10/0x10 [ 1470.398783][T21414] ? __pfx_vfs_read+0x10/0x10 [ 1470.398822][T21414] ? __fget_files+0x20e/0x3c0 [ 1470.398859][T21414] ksys_read+0x12a/0x240 [ 1470.398887][T21414] ? __pfx_ksys_read+0x10/0x10 [ 1470.398914][T21414] ? rcu_is_watching+0x12/0xc0 [ 1470.398953][T21414] do_syscall_64+0xcd/0x230 [ 1470.398997][T21414] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1470.399030][T21414] RIP: 0033:0x7f5ea7f8d37c [ 1470.399052][T21414] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1470.399079][T21414] RSP: 002b:00007f5ea8e54030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1470.399106][T21414] RAX: ffffffffffffffda RBX: 00007f5ea81b5fa0 RCX: 00007f5ea7f8d37c [ 1470.399125][T21414] RDX: 000000000000000f RSI: 00007f5ea8e540a0 RDI: 0000000000000004 [ 1470.399144][T21414] RBP: 00007f5ea8e54090 R08: 0000000000000000 R09: 0000000000000000 [ 1470.399161][T21414] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1470.399178][T21414] R13: 0000000000000000 R14: 00007f5ea81b5fa0 R15: 00007ffd212c9fb8 [ 1470.399215][T21414] [ 1471.111026][T21424] can: request_module (can-proto-0) failed. [ 1471.918731][T21450] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3336'. [ 1472.331500][T21440] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1472.347176][T21440] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1472.353683][T21440] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 1472.446356][T21440] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1472.471544][T21440] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1472.493504][T21440] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1472.513730][T21440] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 1472.985566][T21460] netlink: 2076 bytes leftover after parsing attributes in process `syz.0.3339'. [ 1473.318462][T21462] RDS: rds_bind could not find a transport for 7bc:c94c:4e37:70c4::, load rds_tcp or rds_rdma? [ 1473.686257][ T5872] Bluetooth: hci0: command 0x0406 tx timeout [ 1474.404910][ T5872] Bluetooth: hci3: command 0x0406 tx timeout [ 1474.485565][ T5872] Bluetooth: hci4: command 0x0c1a tx timeout [ 1474.491645][ T5872] Bluetooth: hci2: command 0x0c1a tx timeout [ 1474.564994][ T5872] Bluetooth: hci1: command 0x0406 tx timeout [ 1475.169120][T21481] CIFS mount error: No usable UNC path provided in device string! [ 1475.169120][T21481] [ 1475.219603][T21481] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1476.103860][T21499] zswap: compressor not available [ 1476.485369][ T5872] Bluetooth: hci3: command 0x0406 tx timeout [ 1476.546526][T21515] hub 3-0:1.0: USB hub found [ 1476.583700][T21515] hub 3-0:1.0: 1 port detected [ 1476.684951][ T5872] Bluetooth: hci1: command 0x0406 tx timeout [ 1476.715259][T21515] usb usb3: authorized to connect [ 1479.246915][T21551] FAULT_INJECTION: forcing a failure. [ 1479.246915][T21551] name failslab, interval 1, probability 0, space 0, times 0 [ 1479.283817][T21551] CPU: 0 UID: 0 PID: 21551 Comm: syz.6.3360 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1479.283863][T21551] Tainted: [U]=USER [ 1479.283873][T21551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1479.283889][T21551] Call Trace: [ 1479.283899][T21551] [ 1479.283910][T21551] dump_stack_lvl+0x16c/0x1f0 [ 1479.283953][T21551] should_fail_ex+0x512/0x640 [ 1479.283986][T21551] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1479.284023][T21551] should_failslab+0xc2/0x120 [ 1479.284061][T21551] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1479.284099][T21551] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1479.284141][T21551] ? prepare_creds+0x2c/0x7d0 [ 1479.284188][T21551] prepare_creds+0x2c/0x7d0 [ 1479.284234][T21551] do_faccessat+0x527/0xba0 [ 1479.284265][T21551] ? __pfx_do_faccessat+0x10/0x10 [ 1479.284296][T21551] ? rcu_is_watching+0x12/0xc0 [ 1479.284338][T21551] __x64_sys_access+0x5b/0x80 [ 1479.284373][T21551] do_syscall_64+0xcd/0x230 [ 1479.284417][T21551] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1479.284445][T21551] RIP: 0033:0x7f3e0398e969 [ 1479.284466][T21551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1479.284493][T21551] RSP: 002b:00007f3e047df038 EFLAGS: 00000246 ORIG_RAX: 0000000000000015 [ 1479.284519][T21551] RAX: ffffffffffffffda RBX: 00007f3e03bb5fa0 RCX: 00007f3e0398e969 [ 1479.284538][T21551] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000200000000000 [ 1479.284554][T21551] RBP: 00007f3e047df090 R08: 0000000000000000 R09: 0000000000000000 [ 1479.284572][T21551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1479.284588][T21551] R13: 0000000000000000 R14: 00007f3e03bb5fa0 R15: 00007ffee088e258 [ 1479.284623][T21551] [ 1480.759892][T21561] CIFS mount error: No usable UNC path provided in device string! [ 1480.759892][T21561] [ 1480.776025][T21561] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1481.185319][T21571] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input21 [ 1481.549286][T21578] lo: entered allmulticast mode [ 1481.644974][T21579] lo: left allmulticast mode [ 1481.891531][T21579] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 1481.898825][T21579] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 1483.198694][T21598] CIFS mount error: No usable UNC path provided in device string! [ 1483.198694][T21598] [ 1483.209779][T21598] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1484.332901][T21613] FAULT_INJECTION: forcing a failure. [ 1484.332901][T21613] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1484.348602][T21613] CPU: 0 UID: 0 PID: 21613 Comm: syz.0.3376 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1484.348652][T21613] Tainted: [U]=USER [ 1484.348663][T21613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1484.348681][T21613] Call Trace: [ 1484.348693][T21613] [ 1484.348705][T21613] dump_stack_lvl+0x16c/0x1f0 [ 1484.348755][T21613] should_fail_ex+0x512/0x640 [ 1484.348799][T21613] _copy_to_user+0x32/0xd0 [ 1484.348852][T21613] snd_pcm_oss_read2+0x294/0x410 [ 1484.348886][T21613] ? __pfx_snd_pcm_oss_read2+0x10/0x10 [ 1484.348928][T21613] snd_pcm_oss_read+0x5d3/0x760 [ 1484.348972][T21613] ? __pfx_snd_pcm_oss_read+0x10/0x10 [ 1484.349005][T21613] vfs_read+0x1de/0xc70 [ 1484.349043][T21613] ? __pfx_vfs_read+0x10/0x10 [ 1484.349068][T21613] ? find_held_lock+0x2b/0x80 [ 1484.349100][T21613] ? __fget_files+0x204/0x3c0 [ 1484.349134][T21613] ? __fget_files+0x20e/0x3c0 [ 1484.349171][T21613] ksys_read+0x12a/0x240 [ 1484.349200][T21613] ? __pfx_ksys_read+0x10/0x10 [ 1484.349228][T21613] ? rcu_is_watching+0x12/0xc0 [ 1484.349268][T21613] do_syscall_64+0xcd/0x230 [ 1484.349313][T21613] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1484.349342][T21613] RIP: 0033:0x7f5ea7f8e969 [ 1484.349364][T21613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1484.349393][T21613] RSP: 002b:00007f5ea8e33038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1484.349420][T21613] RAX: ffffffffffffffda RBX: 00007f5ea81b6080 RCX: 00007f5ea7f8e969 [ 1484.349440][T21613] RDX: 000000000cefbce6 RSI: 0000000000000000 RDI: 0000000000000008 [ 1484.349458][T21613] RBP: 00007f5ea8010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1484.349476][T21613] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1484.349493][T21613] R13: 0000000000000000 R14: 00007f5ea81b6080 R15: 00007ffd212c9fb8 [ 1484.349529][T21613] [ 1485.045989][T21624] FAULT_INJECTION: forcing a failure. [ 1485.045989][T21624] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1485.059458][T21624] CPU: 0 UID: 0 PID: 21624 Comm: syz.5.3379 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1485.059505][T21624] Tainted: [U]=USER [ 1485.059517][T21624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1485.059535][T21624] Call Trace: [ 1485.059547][T21624] [ 1485.059558][T21624] dump_stack_lvl+0x16c/0x1f0 [ 1485.059610][T21624] should_fail_ex+0x512/0x640 [ 1485.059661][T21624] _copy_to_user+0x32/0xd0 [ 1485.059706][T21624] snd_pcm_oss_read2+0x294/0x410 [ 1485.059742][T21624] ? __pfx_snd_pcm_oss_read2+0x10/0x10 [ 1485.059773][T21624] ? snd_pcm_kernel_ioctl+0x267/0x2e0 [ 1485.059812][T21624] ? snd_pcm_oss_prepare+0x11e/0x220 [ 1485.059876][T21624] snd_pcm_oss_read+0x5d3/0x760 [ 1485.059913][T21624] ? __pfx_snd_pcm_oss_read+0x10/0x10 [ 1485.059946][T21624] vfs_read+0x1de/0xc70 [ 1485.059984][T21624] ? __pfx_vfs_read+0x10/0x10 [ 1485.060011][T21624] ? find_held_lock+0x2b/0x80 [ 1485.060043][T21624] ? __fget_files+0x204/0x3c0 [ 1485.060076][T21624] ? __fget_files+0x20e/0x3c0 [ 1485.060114][T21624] ksys_read+0x12a/0x240 [ 1485.060142][T21624] ? __pfx_ksys_read+0x10/0x10 [ 1485.060171][T21624] ? rcu_is_watching+0x12/0xc0 [ 1485.060210][T21624] do_syscall_64+0xcd/0x230 [ 1485.060256][T21624] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1485.060285][T21624] RIP: 0033:0x7f186518e969 [ 1485.060308][T21624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1485.060338][T21624] RSP: 002b:00007f1866040038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1485.060366][T21624] RAX: ffffffffffffffda RBX: 00007f18653b6080 RCX: 00007f186518e969 [ 1485.060386][T21624] RDX: 000000000cefbce6 RSI: 0000000000000000 RDI: 0000000000000008 [ 1485.060404][T21624] RBP: 00007f1865210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1485.060422][T21624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1485.060439][T21624] R13: 0000000000000000 R14: 00007f18653b6080 R15: 00007ffd7fdf4f68 [ 1485.060476][T21624] [ 1485.273326][T21631] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3382'. [ 1486.806119][T21648] FAULT_INJECTION: forcing a failure. [ 1486.806119][T21648] name failslab, interval 1, probability 0, space 0, times 0 [ 1486.844005][T21648] CPU: 1 UID: 0 PID: 21648 Comm: syz.0.3386 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1486.844057][T21648] Tainted: [U]=USER [ 1486.844068][T21648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1486.844085][T21648] Call Trace: [ 1486.844096][T21648] [ 1486.844107][T21648] dump_stack_lvl+0x16c/0x1f0 [ 1486.844154][T21648] should_fail_ex+0x512/0x640 [ 1486.844187][T21648] ? fs_reclaim_acquire+0xae/0x150 [ 1486.844235][T21648] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1486.844277][T21648] should_failslab+0xc2/0x120 [ 1486.844333][T21648] __kmalloc_noprof+0xd2/0x510 [ 1486.844377][T21648] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1486.844425][T21648] ? tomoyo_profile+0x47/0x60 [ 1486.844477][T21648] tomoyo_path_number_perm+0x245/0x580 [ 1486.844511][T21648] ? tomoyo_path_number_perm+0x237/0x580 [ 1486.844552][T21648] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1486.844591][T21648] ? find_held_lock+0x2b/0x80 [ 1486.844657][T21648] ? find_held_lock+0x2b/0x80 [ 1486.844687][T21648] ? hook_file_ioctl_common+0x145/0x410 [ 1486.844729][T21648] ? __fget_files+0x20e/0x3c0 [ 1486.844765][T21648] security_file_ioctl+0x9b/0x240 [ 1486.844805][T21648] __x64_sys_ioctl+0xb7/0x200 [ 1486.844859][T21648] do_syscall_64+0xcd/0x230 [ 1486.844905][T21648] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1486.844935][T21648] RIP: 0033:0x7f5ea7f8e969 [ 1486.844959][T21648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1486.844987][T21648] RSP: 002b:00007f5ea8e54038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1486.845016][T21648] RAX: ffffffffffffffda RBX: 00007f5ea81b5fa0 RCX: 00007f5ea7f8e969 [ 1486.845036][T21648] RDX: 0000000000000001 RSI: 0000000000004b66 RDI: 0000000000000004 [ 1486.845055][T21648] RBP: 00007f5ea8e54090 R08: 0000000000000000 R09: 0000000000000000 [ 1486.845073][T21648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1486.845091][T21648] R13: 0000000000000000 R14: 00007f5ea81b5fa0 R15: 00007ffd212c9fb8 [ 1486.845128][T21648] [ 1487.067216][T21648] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1488.243201][T21665] CIFS mount error: No usable UNC path provided in device string! [ 1488.243201][T21665] [ 1488.286182][T21665] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1488.752217][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 1488.758970][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 1489.276734][T21671] zswap: compressor not available [ 1489.382733][T21676] FAULT_INJECTION: forcing a failure. [ 1489.382733][T21676] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1489.479448][T21676] CPU: 0 UID: 0 PID: 21676 Comm: syz.5.3391 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1489.479499][T21676] Tainted: [U]=USER [ 1489.479510][T21676] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1489.479527][T21676] Call Trace: [ 1489.479537][T21676] [ 1489.479549][T21676] dump_stack_lvl+0x16c/0x1f0 [ 1489.479597][T21676] should_fail_ex+0x512/0x640 [ 1489.479639][T21676] should_fail_alloc_page+0xe7/0x130 [ 1489.479681][T21676] prepare_alloc_pages+0x3c2/0x610 [ 1489.479734][T21676] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 1489.479775][T21676] ? bpf_ksym_find+0x124/0x1c0 [ 1489.479805][T21676] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 1489.479840][T21676] ? is_bpf_text_address+0x94/0x1a0 [ 1489.479879][T21676] ? kernel_text_address+0x8d/0x100 [ 1489.479908][T21676] ? __kernel_text_address+0xd/0x40 [ 1489.479936][T21676] ? unwind_get_return_address+0x59/0xa0 [ 1489.479973][T21676] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1489.480024][T21676] ? stack_trace_save+0x8e/0xc0 [ 1489.480056][T21676] ? __pfx_stack_trace_save+0x10/0x10 [ 1489.480089][T21676] ? stack_depot_save_flags+0x28/0xa50 [ 1489.480126][T21676] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1489.480170][T21676] ? policy_nodemask+0xea/0x4e0 [ 1489.480211][T21676] alloc_pages_mpol+0x1fb/0x550 [ 1489.480251][T21676] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1489.480301][T21676] alloc_pages_noprof+0x131/0x390 [ 1489.480365][T21676] __pud_alloc+0x39/0x690 [ 1489.480416][T21676] __handle_mm_fault+0x996/0x2a40 [ 1489.480462][T21676] ? __pfx___handle_mm_fault+0x10/0x10 [ 1489.480529][T21676] handle_mm_fault+0x3fe/0xad0 [ 1489.480570][T21676] __get_user_pages+0x771/0x36f0 [ 1489.480616][T21676] ? __pfx___get_user_pages+0x10/0x10 [ 1489.480660][T21676] get_user_pages_remote+0x258/0xb20 [ 1489.480701][T21676] ? __pfx_get_user_pages_remote+0x10/0x10 [ 1489.480747][T21676] get_arg_page+0xf4/0x310 [ 1489.480775][T21676] ? __pfx_get_arg_page+0x10/0x10 [ 1489.480807][T21676] ? up_write+0x1b2/0x520 [ 1489.480860][T21676] copy_string_kernel+0x155/0x4a0 [ 1489.480896][T21676] do_execveat_common.isra.0+0x2ed/0x610 [ 1489.480935][T21676] __x64_sys_execve+0x8e/0xb0 [ 1489.480967][T21676] do_syscall_64+0xcd/0x230 [ 1489.481015][T21676] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1489.481046][T21676] RIP: 0033:0x7f186518e969 [ 1489.481069][T21676] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1489.481099][T21676] RSP: 002b:00007f1866061038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 1489.481128][T21676] RAX: ffffffffffffffda RBX: 00007f18653b5fa0 RCX: 00007f186518e969 [ 1489.481150][T21676] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00002000000001c0 [ 1489.481169][T21676] RBP: 00007f1865210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1489.481188][T21676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1489.481206][T21676] R13: 0000000000000000 R14: 00007f18653b5fa0 R15: 00007ffd7fdf4f68 [ 1489.481246][T21676] [ 1550.170948][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 1550.177848][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 1611.609105][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 1611.628615][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 1639.764577][ T31] INFO: task syz-executor:5851 blocked for more than 143 seconds. [ 1639.773551][ T31] Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 [ 1639.785151][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1639.793861][ T31] task:syz-executor state:D stack:23432 pid:5851 tgid:5851 ppid:5849 task_flags:0x440100 flags:0x00000002 [ 1639.806661][ T31] Call Trace: [ 1639.809955][ T31] [ 1639.812898][ T31] __schedule+0x116f/0x5de0 [ 1639.818409][ T31] ? __pfx___schedule+0x10/0x10 [ 1639.824718][ T31] ? find_held_lock+0x2b/0x80 [ 1639.834606][ T31] ? schedule+0x2d7/0x3a0 [ 1639.838964][ T31] schedule+0xe7/0x3a0 [ 1639.843061][ T31] io_schedule+0xbf/0x130 [ 1639.848114][ T31] bit_wait_io+0x15/0xe0 [ 1639.854631][ T31] __wait_on_bit+0x62/0x180 [ 1639.859164][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 1639.864119][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 1639.875094][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 1639.881145][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 1639.887151][ T31] do_get_write_access+0x93d/0x12a0 [ 1639.894620][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 1639.900631][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 1639.907481][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 1639.914926][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 1639.920446][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 1639.926284][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 1639.932276][ T31] ? rcu_is_watching+0x12/0xc0 [ 1639.944928][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 1639.954597][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 1639.959828][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 1639.965889][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 1639.971549][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 1639.978240][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 1639.984752][ T31] ext4_dirty_inode+0xd9/0x130 [ 1640.004452][ T31] ? rcu_is_watching+0x12/0xc0 [ 1640.009254][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 1640.014298][ T31] generic_update_time+0xcf/0xf0 [ 1640.020146][ T31] file_update_time+0x17d/0x1c0 [ 1640.026471][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 1640.031586][ T31] ? tcp_recvmsg+0x1f9/0x680 [ 1640.044474][ T31] ? __pfx_tcp_recvmsg+0x10/0x10 [ 1640.054590][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 1640.060065][ T31] ? vm_normal_page+0x13b/0x2b0 [ 1640.065407][ T31] ? find_held_lock+0x2b/0x80 [ 1640.070139][ T31] ? find_held_lock+0x2b/0x80 [ 1640.075344][ T31] do_page_mkwrite+0x171/0x380 [ 1640.081240][ T31] do_wp_page+0xb9e/0x58e0 [ 1640.094667][ T31] ? __pfx_do_wp_page+0x10/0x10 [ 1640.099636][ T31] ? do_raw_spin_lock+0x12c/0x2b0 [ 1640.114424][ T31] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 1640.119834][ T31] ? ___pte_offset_map+0x1bc/0x540 [ 1640.137480][ T31] __handle_mm_fault+0x1ada/0x2a40 [ 1640.144672][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 1640.150160][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 1640.165390][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 1640.170679][ T31] handle_mm_fault+0x3fe/0xad0 [ 1640.175767][ T31] do_user_addr_fault+0x60c/0x1370 [ 1640.184766][ T31] exc_page_fault+0x5c/0xc0 [ 1640.189308][ T31] asm_exc_page_fault+0x26/0x30 [ 1640.194157][ T31] RIP: 0033:0x7f558be77dcf [ 1640.214657][ T31] RSP: 002b:00007ffec4b69bd0 EFLAGS: 00010246 [ 1640.220748][ T31] RAX: 00007f558ae44000 RBX: 00005555584c9e10 RCX: 0000000000000000 [ 1640.246388][ T31] RDX: 1ffffffff03e2a38 RSI: 00005555584d5578 RDI: 0000000000000001 [ 1640.256506][ T31] RBP: 00007ffec4b69ec0 R08: 00005555584d5578 R09: 0000000000000547 [ 1640.264992][ T31] R10: 0000000000000001 R11: 00007ffec4b6a0d0 R12: 00007ffec4b69f20 [ 1640.272986][ T31] R13: 0000000000000004 R14: 00007ffec4b69c40 R15: 00007ffec4b69d10 [ 1640.281506][ T31] [ 1640.286122][ T31] INFO: task syz.4.3403:21713 blocked for more than 143 seconds. [ 1640.294622][ T31] Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 [ 1640.303822][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1640.312867][ T31] task:syz.4.3403 state:D stack:25672 pid:21713 tgid:21713 ppid:14960 task_flags:0x440040 flags:0x00000004 [ 1640.325147][ T31] Call Trace: [ 1640.328436][ T31] [ 1640.331382][ T31] __schedule+0x116f/0x5de0 [ 1640.344945][ T31] ? __pfx___schedule+0x10/0x10 [ 1640.349853][ T31] ? find_held_lock+0x2b/0x80 [ 1640.356801][ T31] ? schedule+0x2d7/0x3a0 [ 1640.364695][ T31] schedule+0xe7/0x3a0 [ 1640.374636][ T31] io_schedule+0xbf/0x130 [ 1640.379019][ T31] bit_wait_io+0x15/0xe0 [ 1640.384905][ T31] __wait_on_bit+0x62/0x180 [ 1640.394877][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 1640.404737][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 1640.410125][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 1640.416525][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 1640.422048][ T31] do_get_write_access+0x93d/0x12a0 [ 1640.427706][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 1640.433724][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 1640.444886][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 1640.454587][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 1640.460062][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 1640.478428][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 1640.485457][ T31] ? rcu_is_watching+0x12/0xc0 [ 1640.504462][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 1640.510121][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 1640.537330][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 1640.542999][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 1640.564415][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 1640.569378][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 1640.593275][ T31] ext4_dirty_inode+0xd9/0x130 [ 1640.605606][ T31] ? rcu_is_watching+0x12/0xc0 [ 1640.614871][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 1640.619937][ T31] generic_update_time+0xcf/0xf0 [ 1640.634807][ T31] file_update_time+0x17d/0x1c0 [ 1640.644844][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 1640.649889][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 1640.664932][ T31] do_page_mkwrite+0x171/0x380 [ 1640.674592][ T31] do_pte_missing+0x29c/0x3fb0 [ 1640.679368][ T31] ? __handle_mm_fault+0x1010/0x2a40 [ 1640.694598][ T31] __handle_mm_fault+0x103d/0x2a40 [ 1640.699764][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 1640.708880][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 1640.714107][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 1640.720206][ T31] handle_mm_fault+0x3fe/0xad0 [ 1640.725253][ T31] do_user_addr_fault+0x60c/0x1370 [ 1640.734696][ T31] exc_page_fault+0x5c/0xc0 [ 1640.744557][ T31] asm_exc_page_fault+0x26/0x30 [ 1640.749431][ T31] RIP: 0033:0x7f04a206eada [ 1640.753844][ T31] RSP: 002b:00007ffd9a65a370 EFLAGS: 00010202 [ 1640.760153][ T31] RAX: 0000001b326fe000 RBX: 00007f04a2ee5720 RCX: 0000001b326fdff8 [ 1640.774449][ T31] RDX: 0000001b32320220 RSI: 0000000000000008 RDI: 00007f04a2ee5720 [ 1640.784638][ T31] RBP: ffffffff8942d8c9 R08: 00007f04a23b6038 R09: 00007f04a23a2000 [ 1640.792638][ T31] R10: 00007f04a17ff008 R11: 0000000000000006 R12: 0000000000000006 [ 1640.802330][ T31] R13: 0000000000000093 R14: ffffffff8942d525 R15: 0000000000000093 [ 1640.810585][ T31] ? __skb_recv_datagram+0xd5/0x220 [ 1640.818230][ T31] ? zerocopy_fill_skb_from_iter+0x179/0xde0 [ 1640.824656][ T31] [ 1640.827761][ T31] INFO: task syz.0.3404:21715 blocked for more than 144 seconds. [ 1640.844428][ T31] Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 [ 1640.853660][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1640.876399][ T31] task:syz.0.3404 state:D stack:25672 pid:21715 tgid:21715 ppid:17210 task_flags:0x440040 flags:0x00000004 [ 1640.894710][ T31] Call Trace: [ 1640.899247][ T31] [ 1640.905056][ T31] __schedule+0x116f/0x5de0 [ 1640.916692][ T31] ? __pfx___schedule+0x10/0x10 [ 1640.921569][ T31] ? find_held_lock+0x2b/0x80 [ 1640.944461][ T31] ? schedule+0x2d7/0x3a0 [ 1640.948815][ T31] schedule+0xe7/0x3a0 [ 1640.952890][ T31] io_schedule+0xbf/0x130 [ 1640.974428][ T31] bit_wait_io+0x15/0xe0 [ 1640.978723][ T31] __wait_on_bit+0x62/0x180 [ 1640.983236][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 1640.991105][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 1641.000694][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 1641.014586][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 1641.020076][ T31] do_get_write_access+0x93d/0x12a0 [ 1641.028180][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 1641.034189][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 1641.074429][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 1641.079998][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 1641.088318][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 1641.093721][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 1641.103207][ T31] ? rcu_is_watching+0x12/0xc0 [ 1641.108509][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 1641.114682][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 1641.119899][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 1641.146998][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 1641.152663][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 1641.174437][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 1641.179832][ T31] ext4_dirty_inode+0xd9/0x130 [ 1641.195308][ T31] ? rcu_is_watching+0x12/0xc0 [ 1641.200107][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 1641.206989][ T31] generic_update_time+0xcf/0xf0 [ 1641.211983][ T31] file_update_time+0x17d/0x1c0 [ 1641.217183][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 1641.222239][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 1641.228174][ T31] do_page_mkwrite+0x171/0x380 [ 1641.234827][ T31] do_pte_missing+0x29c/0x3fb0 [ 1641.239612][ T31] ? __handle_mm_fault+0x1010/0x2a40 [ 1641.245306][ T31] __handle_mm_fault+0x103d/0x2a40 [ 1641.254578][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 1641.260061][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 1641.266006][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 1641.271267][ T31] handle_mm_fault+0x3fe/0xad0 [ 1641.276512][ T31] do_user_addr_fault+0x60c/0x1370 [ 1641.281688][ T31] exc_page_fault+0x5c/0xc0 [ 1641.286648][ T31] asm_exc_page_fault+0x26/0x30 [ 1641.294568][ T31] RIP: 0033:0x7f5ea7e6eada [ 1641.299006][ T31] RSP: 002b:00007ffd212c9ff0 EFLAGS: 00010202 [ 1641.305472][ T31] RAX: 0000001b2f011000 RBX: 00007f5ea8ce5720 RCX: 0000001b2f010ff8 [ 1641.315028][ T31] RDX: 0000001b2ec20220 RSI: 0000000000000008 RDI: 00007f5ea8ce5720 [ 1641.324614][ T31] RBP: ffffffff8480d3ea R08: 00007f5ea81b62d8 R09: 00007f5ea81a2000 [ 1641.334600][ T31] R10: 00007f5ea59f6008 R11: 0000000000000016 R12: 0000000000000016 [ 1641.344798][ T31] R13: 000000000000000d R14: ffffffff8480de9d R15: 000000000000000d [ 1641.354576][ T31] ? security_mmap_file+0x8d/0x990 [ 1641.359727][ T31] ? security_inode_getlsmprop+0xca/0x130 [ 1641.374452][ T31] [ 1641.377539][ T31] INFO: task syz.0.3404:21727 blocked for more than 144 seconds. [ 1641.396854][ T31] Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 [ 1641.406829][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1641.436506][ T31] task:syz.0.3404 state:D stack:26056 pid:21727 tgid:21715 ppid:17210 task_flags:0x440040 flags:0x00004004 [ 1641.464399][ T31] Call Trace: [ 1641.467693][ T31] [ 1641.470642][ T31] __schedule+0x116f/0x5de0 [ 1641.484408][ T31] ? blk_mq_flush_plug_list+0x75a/0x1c70 [ 1641.494848][ T31] ? __pfx___schedule+0x10/0x10 [ 1641.499762][ T31] ? __blk_flush_plug+0x2f3/0x4b0 [ 1641.505257][ T31] ? find_held_lock+0x2b/0x80 [ 1641.509987][ T31] ? schedule+0x2d7/0x3a0 [ 1641.518717][ T31] schedule+0xe7/0x3a0 [ 1641.522810][ T31] io_schedule+0xbf/0x130 [ 1641.544474][ T31] bit_wait_io+0x15/0xe0 [ 1641.548747][ T31] __wait_on_bit+0x62/0x180 [ 1641.553266][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 1641.577073][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 1641.582475][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 1641.604470][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 1641.609972][ T31] do_get_write_access+0x93d/0x12a0 [ 1641.629512][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 1641.635880][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 1641.641964][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 1641.648262][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 1641.653777][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 1641.660208][ T31] ? __lock_acquire+0xaa4/0x1ba0 [ 1641.674638][ T31] ? __pfx___might_resched+0x10/0x10 [ 1641.679973][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 1641.697172][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 1641.702835][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 1641.725530][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 1641.734766][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 1641.745219][ T31] ext4_dirty_inode+0xd9/0x130 [ 1641.750034][ T31] ? rcu_is_watching+0x12/0xc0 [ 1641.755238][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 1641.760291][ T31] ext4_da_update_reserve_space+0x2b4/0x750 [ 1641.766869][ T31] ext4_es_insert_extent+0xbf1/0x11b0 [ 1641.774645][ T31] ? __pfx_ext4_es_insert_extent+0x10/0x10 [ 1641.780484][ T31] ? lock_acquire+0x179/0x350 [ 1641.794846][ T31] ? ext4_es_lookup_extent+0x7d6/0xc50 [ 1641.804650][ T31] ? rcu_is_watching+0x12/0xc0 [ 1641.809445][ T31] ? ext4_es_lookup_extent+0xc7/0xc50 [ 1641.834461][ T31] ext4_map_blocks+0x902/0x1390 [ 1641.839347][ T31] ? __pfx_ext4_map_blocks+0x10/0x10 [ 1641.864536][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 1641.869931][ T31] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 1641.894566][ T31] ext4_do_writepages+0x1a2c/0x3490 [ 1641.899798][ T31] ? __pfx_ext4_do_writepages+0x10/0x10 [ 1641.917286][ T31] ? ext4_writepages+0x37a/0x7d0 [ 1641.923565][ T31] ext4_writepages+0x37a/0x7d0 [ 1641.934932][ T31] ? __pfx_ext4_writepages+0x10/0x10 [ 1641.954436][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 1641.959401][ T31] ? __pfx_ext4_writepages+0x10/0x10 [ 1641.970352][ T31] do_writepages+0x1b2/0x820 [ 1641.975271][ T31] ? lock_acquire+0x179/0x350 [ 1641.979968][ T31] ? __pfx_do_writepages+0x10/0x10 [ 1641.994897][ T31] ? do_raw_spin_lock+0x12c/0x2b0 [ 1642.004733][ T31] ? find_held_lock+0x2b/0x80 [ 1642.009432][ T31] ? wbc_attach_fdatawrite_inode+0x13a/0x190 [ 1642.015818][ T31] ? do_raw_spin_unlock+0x172/0x230 [ 1642.021024][ T31] ? _raw_spin_unlock+0x28/0x50 [ 1642.036016][ T31] filemap_fdatawrite_wbc+0x104/0x160 [ 1642.041412][ T31] __filemap_fdatawrite_range+0xb2/0xf0 [ 1642.064443][ T31] ? __pfx___filemap_fdatawrite_range+0x10/0x10 [ 1642.070762][ T31] file_write_and_wait_range+0xca/0x140 [ 1642.094435][ T31] ext4_sync_file+0x310/0xf10 [ 1642.099140][ T31] ? __pfx___up_read+0x10/0x10 [ 1642.103913][ T31] ? __pfx_ext4_sync_file+0x10/0x10 [ 1642.128657][ T31] vfs_fsync_range+0x136/0x220 [ 1642.133458][ T31] __do_sys_msync+0x3cb/0x5c0 [ 1642.155457][ T31] do_syscall_64+0xcd/0x230 [ 1642.160002][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1642.184557][ T31] RIP: 0033:0x7f5ea7f8e969 [ 1642.188992][ T31] RSP: 002b:00007f5ea8dd0038 EFLAGS: 00000246 ORIG_RAX: 000000000000001a [ 1642.216441][ T31] RAX: ffffffffffffffda RBX: 00007f5ea81b6320 RCX: 00007f5ea7f8e969 [ 1642.235728][ T31] RDX: 0000000400000004 RSI: 0180000000000000 RDI: 000000001ffff000 [ 1642.244578][ T31] RBP: 00007f5ea8010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1642.252558][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1642.264511][ T31] R13: 0000000000000001 R14: 00007f5ea81b6320 R15: 00007ffd212c9fb8 [ 1642.274621][ T31] [ 1642.277709][ T31] INFO: task syz.5.3405:21716 blocked for more than 145 seconds. [ 1642.285802][ T31] Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 [ 1642.304602][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1642.314736][ T31] task:syz.5.3405 state:D stack:26488 pid:21716 tgid:21716 ppid:15417 task_flags:0x440040 flags:0x00000004 [ 1642.328889][ T31] Call Trace: [ 1642.333196][ T31] [ 1642.338674][ T31] __schedule+0x116f/0x5de0 [ 1642.343231][ T31] ? __pfx___schedule+0x10/0x10 [ 1642.364556][ T31] ? find_held_lock+0x2b/0x80 [ 1642.374625][ T31] ? schedule+0x2d7/0x3a0 [ 1642.378976][ T31] schedule+0xe7/0x3a0 [ 1642.383054][ T31] io_schedule+0xbf/0x130 [ 1642.394663][ T31] bit_wait_io+0x15/0xe0 [ 1642.404853][ T31] __wait_on_bit+0x62/0x180 [ 1642.409387][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 1642.424919][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 1642.434644][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 1642.445039][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 1642.450536][ T31] do_get_write_access+0x93d/0x12a0 [ 1642.456280][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 1642.464874][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 1642.470995][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 1642.482343][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 1642.488259][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 1642.493692][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 1642.500103][ T31] ? rcu_is_watching+0x12/0xc0 [ 1642.505214][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 1642.514633][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 1642.524591][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 1642.530263][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 1642.537718][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 1642.548358][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 1642.554580][ T31] ext4_dirty_inode+0xd9/0x130 [ 1642.559419][ T31] ? rcu_is_watching+0x12/0xc0 [ 1642.564201][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 1642.585817][ T31] generic_update_time+0xcf/0xf0 [ 1642.590775][ T31] file_update_time+0x17d/0x1c0 [ 1642.614438][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 1642.619490][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 1642.634460][ T31] do_page_mkwrite+0x171/0x380 [ 1642.649457][ T31] do_pte_missing+0x29c/0x3fb0 [ 1642.674917][ T31] ? __handle_mm_fault+0x1010/0x2a40 [ 1642.680231][ T31] __handle_mm_fault+0x103d/0x2a40 [ 1642.706870][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 1642.712353][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 1642.717659][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 1642.724773][ T31] handle_mm_fault+0x3fe/0xad0 [ 1642.729565][ T31] do_user_addr_fault+0x60c/0x1370 [ 1642.742154][ T31] exc_page_fault+0x5c/0xc0 [ 1642.746796][ T31] asm_exc_page_fault+0x26/0x30 [ 1642.754585][ T31] RIP: 0033:0x7f186506eada [ 1642.764437][ T31] RSP: 002b:00007ffd7fdf4ff0 EFLAGS: 00010202 [ 1642.774480][ T31] RAX: 0000001b2dc0f000 RBX: 00007f1865ee5720 RCX: 0000001b2dc0eff8 [ 1642.782476][ T31] RDX: 0000001b2d820220 RSI: 0000000000000008 RDI: 00007f1865ee5720 [ 1642.790513][ T31] RBP: ffffffff89e54537 R08: 00007f18653b6038 R09: 00007f18653a2000 [ 1642.804439][ T31] R10: 00007f18647ff008 R11: 000000000000000b R12: 000000000000000b [ 1642.844399][ T31] R13: 000000000000007e R14: ffffffff89e54c51 R15: 000000000000007e [ 1642.854527][ T31] ? __skb_recv_udp+0x461/0x940 [ 1642.864510][ T31] ? first_packet_length+0x2a7/0x400 [ 1642.869822][ T31] [ 1642.872855][ T31] [ 1642.872855][ T31] Showing all locks held in the system: [ 1642.880747][ T31] 1 lock held by khungtaskd/31: [ 1642.885693][ T31] #0: ffffffff8e3bf440 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0 [ 1642.895707][ T31] 1 lock held by klogd/5200: [ 1642.904704][ T31] #0: ffff8880b8439f18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130 [ 1642.918687][ T31] 3 locks held by syz-executor/5851: [ 1642.924439][ T31] #0: ffff88802a25e448 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 1642.934454][ T31] #1: ffff88814e672518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 1642.944026][ T31] #2: ffff88814e676950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 1642.975141][ T31] 1 lock held by syz.1.2637/18299: [ 1642.980326][ T31] 6 locks held by kworker/u8:52/19640: [ 1642.988250][ T31] #0: ffff8881412ec948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70 [ 1642.999690][ T31] #1: ffffc90003f67d18 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70 [ 1643.013818][ T31] #2: ffff88814e6720e0 (&type->s_umount_key#31){++++}-{4:4}, at: super_trylock_shared+0x1e/0xf0 [ 1643.036168][ T31] #3: ffff88814e674b98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x1b2/0x820 [ 1643.046681][ T31] #4: ffff88814e676950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 1643.064538][ T31] #5: ffff88807a512a68 (&ei->i_data_sem){++++}-{4:4}, at: ext4_map_blocks+0x355/0x1390 [ 1643.074468][ T31] 2 locks held by getty/20872: [ 1643.079273][ T31] #0: ffff88814cc6c0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 1643.094315][ T31] #1: ffffc900032982f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0 [ 1643.114819][ T31] 3 locks held by syz.4.3403/21713: [ 1643.124596][ T31] #0: ffff8880304ed448 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 1643.133985][ T31] #1: ffff88814e672518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 1643.157688][ T31] #2: ffff88814e676950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 1643.167539][ T31] 3 locks held by syz.0.3404/21715: [ 1643.174584][ T31] #0: ffff888030544448 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 1643.184518][ T31] #1: ffff88814e672518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 1643.209295][ T31] #2: ffff88814e676950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 1643.224533][ T31] 3 locks held by syz.0.3404/21727: [ 1643.234537][ T31] #0: ffff88814e674b98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x1b2/0x820 [ 1643.246350][ T31] #1: ffff88814e676950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 1643.268024][ T31] #2: ffff88807efa2080 (&ei->i_data_sem){++++}-{4:4}, at: ext4_map_blocks+0x355/0x1390 [ 1643.294459][ T31] 3 locks held by syz.5.3405/21716: [ 1643.324408][ T31] #0: ffff888062b8e1c8 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 1643.333749][ T31] #1: ffff88814e672518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 1643.354668][ T31] #2: ffff88814e676950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 1643.385685][ T31] [ 1643.388044][ T31] ============================================= [ 1643.388044][ T31] [ 1643.396557][ T31] NMI backtrace for cpu 1 [ 1643.396582][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1643.396624][ T31] Tainted: [U]=USER [ 1643.396633][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1643.396649][ T31] Call Trace: [ 1643.396659][ T31] [ 1643.396669][ T31] dump_stack_lvl+0x116/0x1f0 [ 1643.396712][ T31] nmi_cpu_backtrace+0x27b/0x390 [ 1643.396745][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 1643.396774][ T31] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 1643.396810][ T31] watchdog+0xf70/0x12c0 [ 1643.396859][ T31] ? __pfx_watchdog+0x10/0x10 [ 1643.396896][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 1643.396937][ T31] ? __kthread_parkme+0x19e/0x250 [ 1643.396975][ T31] ? __pfx_watchdog+0x10/0x10 [ 1643.397014][ T31] kthread+0x3c2/0x780 [ 1643.397057][ T31] ? __pfx_kthread+0x10/0x10 [ 1643.397097][ T31] ? __pfx_kthread+0x10/0x10 [ 1643.397138][ T31] ? __pfx_kthread+0x10/0x10 [ 1643.397180][ T31] ? __pfx_kthread+0x10/0x10 [ 1643.397220][ T31] ? rcu_is_watching+0x12/0xc0 [ 1643.397250][ T31] ? __pfx_kthread+0x10/0x10 [ 1643.397314][ T31] ret_from_fork+0x45/0x80 [ 1643.397346][ T31] ? __pfx_kthread+0x10/0x10 [ 1643.397398][ T31] ret_from_fork_asm+0x1a/0x30 [ 1643.397466][ T31] [ 1643.397477][ T31] Sending NMI from CPU 1 to CPUs 0: [ 1643.535468][ C0] NMI backtrace for cpu 0 [ 1643.535490][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1643.535541][ C0] Tainted: [U]=USER [ 1643.535550][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1643.535565][ C0] RIP: 0010:pv_native_safe_halt+0xf/0x20 [ 1643.535601][ C0] Code: 36 60 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 83 d9 1a 00 fb f4 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 [ 1643.535626][ C0] RSP: 0018:ffffffff8e007e10 EFLAGS: 000002c2 [ 1643.535646][ C0] RAX: 00000000006e834f RBX: 0000000000000000 RCX: ffffffff8b6f13e9 [ 1643.535662][ C0] RDX: 0000000000000000 RSI: ffffffff8dbe98f0 RDI: ffffffff8bf44f80 [ 1643.535678][ C0] RBP: fffffbfff1c12ee8 R08: 0000000000000001 R09: ffffed10170865bd [ 1643.535705][ C0] R10: ffff8880b8432deb R11: 0000000000000000 R12: 0000000000000000 [ 1643.535720][ C0] R13: ffffffff8e097740 R14: ffffffff90866910 R15: 0000000000000000 [ 1643.535736][ C0] FS: 0000000000000000(0000) GS:ffff8881249bf000(0000) knlGS:0000000000000000 [ 1643.535758][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1643.535773][ C0] CR2: 000055d5768bc680 CR3: 000000006f906000 CR4: 00000000003526f0 [ 1643.535788][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1643.535801][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1643.535816][ C0] Call Trace: [ 1643.535834][ C0] [ 1643.535841][ C0] default_idle+0x13/0x20 [ 1643.535860][ C0] default_idle_call+0x6d/0xb0 [ 1643.535879][ C0] do_idle+0x391/0x510 [ 1643.535903][ C0] ? __pfx_do_idle+0x10/0x10 [ 1643.535926][ C0] ? trace_sched_exit_tp+0x31/0x130 [ 1643.535958][ C0] cpu_startup_entry+0x4f/0x60 [ 1643.535982][ C0] rest_init+0x16b/0x2b0 [ 1643.536001][ C0] ? acpi_subsystem_init+0x133/0x180 [ 1643.536025][ C0] ? __pfx_x86_late_time_init+0x10/0x10 [ 1643.536057][ C0] start_kernel+0x3e9/0x4d0 [ 1643.536087][ C0] x86_64_start_reservations+0x18/0x30 [ 1643.536116][ C0] x86_64_start_kernel+0xb0/0xc0 [ 1643.536145][ C0] common_startup_64+0x13e/0x148 [ 1643.536181][ C0] [ 1643.604728][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 1643.604754][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1643.604819][ T31] Tainted: [U]=USER [ 1643.604830][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1643.604851][ T31] Call Trace: [ 1643.604862][ T31] [ 1643.604875][ T31] dump_stack_lvl+0x3d/0x1f0 [ 1643.604924][ T31] panic+0x71c/0x800 [ 1643.604972][ T31] ? __pfx_panic+0x10/0x10 [ 1643.605018][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 1643.605057][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 1643.605089][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 1643.605135][ T31] ? watchdog+0xdda/0x12c0 [ 1643.605176][ T31] ? watchdog+0xdcd/0x12c0 [ 1643.605222][ T31] watchdog+0xdeb/0x12c0 [ 1643.605269][ T31] ? __pfx_watchdog+0x10/0x10 [ 1643.605308][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 1643.605351][ T31] ? __kthread_parkme+0x19e/0x250 [ 1643.605393][ T31] ? __pfx_watchdog+0x10/0x10 [ 1643.605433][ T31] kthread+0x3c2/0x780 [ 1643.605485][ T31] ? __pfx_kthread+0x10/0x10 [ 1643.605527][ T31] ? __pfx_kthread+0x10/0x10 [ 1643.605570][ T31] ? __pfx_kthread+0x10/0x10 [ 1643.605613][ T31] ? __pfx_kthread+0x10/0x10 [ 1643.605656][ T31] ? rcu_is_watching+0x12/0xc0 [ 1643.605688][ T31] ? __pfx_kthread+0x10/0x10 [ 1643.605733][ T31] ret_from_fork+0x45/0x80 [ 1643.605761][ T31] ? __pfx_kthread+0x10/0x10 [ 1643.605807][ T31] ret_from_fork_asm+0x1a/0x30 [ 1643.605868][ T31] [ 1643.899976][ T31] Kernel Offset: disabled [ 1643.904295][ T31] Rebooting in 86400 seconds..