last executing test programs: 3m5.466697088s ago: executing program 3 (id=266): syslog$auto_SYSLOG_ACTION_CONSOLE_LEVEL(0x9, &(0x7f0000000200)='/sys/devices/virtual/block/ram7/diskseq\x00', 0x10001) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram7/diskseq\x00', 0x70000, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = fsopen$auto(0x0, 0x7) r2 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f00000001c0), r1) sendmsg$auto_IEEE802154_LLSEC_LIST_KEY(r1, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x3c, r2, 0x100, 0x70bd2b, 0x25dfdbfc, {}, [@IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5}, @IEEE802154_ATTR_PAN_COORD={0x5, 0x19, 0x5}, @IEEE802154_ATTR_TXPOWER={0x5, 0x21, 0x58}, @IEEE802154_ATTR_COORD_PAN_ID={0x6, 0xa, 0x400}, @IEEE802154_ATTR_CHANNEL={0x5, 0x7, 0x1}]}, 0x3c}, 0x1, 0x0, 0x0, 0xc0}, 0x2000c000) sendmsg$auto_IEEE802154_DISASSOCIATE_REQ(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x3c, r2, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@IEEE802154_ATTR_CSMA_MIN_BE={0x5, 0x26, 0xd9}, @IEEE802154_ATTR_BAT_EXT={0x5, 0x1a, 0x8}, @IEEE802154_ATTR_CSMA_MAX_BE={0x5, 0x27, 0x9}, @IEEE802154_ATTR_BAT_EXT={0x5, 0x1a, 0x5e}, @IEEE802154_ATTR_BAT_EXT={0x5, 0x1a, 0xf7}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8005}, 0x20000001) unshare$auto(0x40000080) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000500)={'veth0_to_team\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_DEBUG_GET(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)={0x20, r3, 0x10, 0x70bd29, 0x25dfdbfd, {}, [@ETHTOOL_A_DEBUG_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x800}, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x3c78, 0x2, 0x800008000) sendmsg$auto_ETHTOOL_MSG_RSS_GET(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000340)={&(0x7f00000003c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="000225bd7002fcdbdf252600000008000200040000000800070007000000080007003f00000008000700001000000800020004000000cfe59cfc802f5cb0ba7cb9213ef17f7dccde3322b3d71a298de18d6b9e8293e67d90f48a58b41fbdb779a720ec63767c4585422355f1ec05af6d15bf8f2754553cc48ccce982c41995c51bb060f20fa416e4f5ac1c94a2bf5cb68fa04db22e0b864ae246f870bda88e31c69b8b0eafcece166507d9ffb126d9dc0b2850dc505cc114ee97ab531850beca3ab8a14dda478b1728e258442c7abadf9396a6918694cb751cf77ccce0ae201a62ae3a3f5540828e18f4d947a367d3e912b64f1ef1adef4cc251e26d046b2d64d884a30d59ae"], 0x3c}, 0x1, 0x0, 0x0, 0x1}, 0x40004) ioctl$auto_SNDCTL_DSP_GETODELAY(0xffffffffffffffff, 0x80045017, &(0x7f0000000000)="e741684a39a8c1dfc9c7f0741144d2f779a3952af02db88a41f8ba1d0e35ba08a398b61ef4618d8ba0956da1335300868843dd683d802854df4640cbb0fbe19fcfd55f94d7bec9e56078904c13339807d0b66f0eaa976781ccff0f0000e86f038993de59796efebc3fadc3361b") poll$auto(&(0x7f00000010c0)={0xc8, 0x20, 0x7}, 0xc, 0x4) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) mincore$auto(0x1000, 0x8001, 0x0) io_uring_setup$auto(0x877, 0x0) fcntl$auto(r5, 0x5, 0x0) openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/free_buffer\x00', 0x40000, 0x0) openat$auto_stat_fops_(0xffffffffffffff9c, &(0x7f0000000180)='/proc/stat\x00', 0x2000, 0x0) madvise$auto(0x110c230000, 0x8031ca, 0x9) close_range$auto(0x2, 0xffffffffffffffff, 0x0) r6 = socket(0x10, 0x2, 0xc) sendmsg$auto_NL80211_CMD_START_SCHED_SCAN(r6, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="9c00e6c357356df6006ea40000", @ANYRES16=0x0, @ANYBLOB="020025bd7000fbdbdf254b0000000500880000000000050074000d0000000400410022002400b7802731566da23c5d9f3a6507e8bd2abd60c5e234d14791ae6a65d5698300000400370108003700000000801b003400c816c5076f04f7f3331f9e4c558b3da2a1f6e61c16d2c8001900340062c99bbd49b39649a9052fc5d6285617fcdeba169f0000000600b100051a00000400cf00"], 0x9c}, 0x1, 0x0, 0x0, 0x811}, 0x4000) r7 = socket(0x15, 0x5, 0x0) sendmsg$auto_NL80211_CMD_SET_TID_TO_LINK_MAPPING(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x40040}, 0x24008050) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="18000000", @ANYRES8=r6, @ANYBLOB="01"], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x0) 3m4.708345033s ago: executing program 3 (id=271): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) semctl$auto_SEM_INFO(0x5, 0x20f9, 0x13, 0x9) ioctl$auto_FUSE_DEV_IOC_BACKING_OPEN(0xffffffffffffffff, 0x4010e501, &(0x7f0000000180)={r0, 0x9be}) write$auto_proc_sys_file_operations_proc_sysctl(r1, &(0x7f0000000280)="d678387f2b06643743b6451b67fc93cc71d930e1ab7f9c1d61927d501a3cbef4591ab340b41ad45d2e45b6ca3ecb7e4742fa9e37b880ab38a6e1a60338f6e58fb14735f131e89d136adb66273b1508acd8d88bb88a69c35f0ef1819d5f11041f83a852499ee8690eae35d78c5c98fa63baf2133acb6ee76a84cd42c0ccb1888185ae8c34f81b9414ddcea8a979af028935aeae6d103a23f27920708b926c53707b240691399e92d91653e52f8b892be73cb0bfab200ee11ac2837dc50625e8edc9b776f1d3f8c15f4f4a7a609afd8bece516623efac6309d5fd6f723ec317b7a6632c18d7bef607b13bc6808bb1d53076e09", 0xf2) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000140), 0xa0502, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x1, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/pts/ptmx\x00', 0x0, 0x0) setresuid$auto(0x0, 0x0, 0x8000) ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/ati_remote2/parameters/mode_mask\x00', 0x0, 0x0) process_madvise$auto_MADV_REMOVE(0xffffffffffffffff, 0x0, 0x7, 0x9, 0x3) r4 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$auto_TUNSETQUEUE(r4, 0x400454d9, &(0x7f00000000c0)=0x3) mmap$auto(0xfffffffffffffffd, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2b, 0x1, 0x3) r5 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(r0, r5, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x12a, 0x4) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_UI_DEV_DESTROY(r2, 0x5502, 0x0) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_WIPHY(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001140)={0x0}, 0x1, 0x0, 0x0, 0x20000084}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20000800) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 3m1.697536179s ago: executing program 3 (id=282): r0 = socket(0xa, 0x3, 0x2c) setsockopt$auto_SO_LINGER(r0, 0x1, 0xd, &(0x7f0000000000)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\t\xf8p\xc6\xb9E\x81\xb6F\x96\xa6\xba\xf4\x98;n\xb2nA6\x1a\xb9\xac\xde\x0e\x90\x18\xf1\x13I\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\xc2\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x00\x00\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81', 0x7) setsockopt$auto(r0, 0x1, 0x44, &(0x7f0000000180)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\t\xf8p\xc6\xb9E\x81\xb6F\x96\xa6\xba\xf4\x98;n\xb2nA6\x1a\xb9\xac\xde\x0e\x90\x18\xf1\x13I\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\xc2\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x00\x00\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81', 0xa95e) 3m1.474027922s ago: executing program 3 (id=283): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0) ioctl$auto_UI_SET_RELBIT(r0, 0x40045566, &(0x7f0000000080)=0x1) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/v4l-subdev3\x00', 0x0, 0x0) r1 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x6, 0x50b301a, 0x2c, 0x2c, 0x0, 0x2}) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0xe) set_mempolicy$auto(0x80, &(0x7f00000000c0)=0x3, 0x6) ioctl$auto(0x3, 0xc0305602, 0x38) 3m0.857112861s ago: executing program 3 (id=284): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) socket(0x2, 0x6, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$auto_FUSE_DEV_IOC_BACKING_OPEN(0xffffffffffffffff, 0x4010e501, &(0x7f0000000040)={0xffffffffffffffff, 0x5c77}) r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/input/event1\x00', 0x40002, 0x0) ioctl$auto_EVIOCGMASK(r0, 0x80104592, 0x0) unshare$auto(0x40000080) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) r2 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) read$auto_proc_page_owner_operations_page_owner(r2, &(0x7f0000002080)=""/4096, 0x1000) 2m57.845413986s ago: executing program 3 (id=295): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) recvmmsg$auto(0x4, 0x0, 0xffffffff, 0x0, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000b80), 0xffffffffffffffff) rt_sigqueueinfo$auto(0x0, 0xc74, &(0x7f0000000000)={@siginfo_0_0={0xf9, 0x12, 0x7e73, @_timer={0x0, 0x80000001, @sival_ptr=0x0, 0x5}}}) r0 = socket(0x11, 0x3, 0x9) sendmmsg$auto(r0, &(0x7f0000000480)={{&(0x7f0000000000), 0xa013, &(0x7f00000001c0)={&(0x7f0000000280), 0x49}, 0x5, &(0x7f00000004c0), 0x3, 0x4}, 0x1}, 0x2, 0x100) unshare$auto(0xfffffffffffffffb) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000280)={0x44, r2, 0x1, 0x70bd31, 0x25dfdbfd, {}, [@ETHTOOL_A_FEATURES_WANTED={0x18, 0x3, 0x0, 0x1, [@nested={0x14, 0x3, 0x0, 0x1, [@nested={0xc, 0xb0, 0x0, 0x1, [@typed={0x8, 0x2, 0x0, 0x0, @uid}]}, @nested={0x4, 0x1e}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}]}]}, 0x44}}, 0x24048084) close_range$auto(0x0, 0xfffffffffffff001, 0x2) socket(0x2, 0x1, 0x0) socket(0x1e, 0x1, 0x0) socket(0x10, 0x2, 0x0) memfd_create$auto(&(0x7f0000000000)='\xc4--:\xdd:,./-${\x00', 0x4) mmap$auto(0x0, 0x8, 0x1000000016, 0x13, 0x3, 0x400180000000) ftruncate$auto(0x3, 0x400180200000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/netdevsim/del_device\x00', 0x501, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) memfd_create$auto(&(0x7f0000000000)='!\x00', 0x16) fallocate$auto(0xffffffffffffffff, 0xfffffffe, 0x0, 0x2cbd5e) r4 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r4, 0xc004743e, 0x0) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) ioctl$auto_PPPIOCSCOMPRESS(r4, 0x4010744d, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000180)='Z', 0x1) 2m42.733942255s ago: executing program 32 (id=295): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) recvmmsg$auto(0x4, 0x0, 0xffffffff, 0x0, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000b80), 0xffffffffffffffff) rt_sigqueueinfo$auto(0x0, 0xc74, &(0x7f0000000000)={@siginfo_0_0={0xf9, 0x12, 0x7e73, @_timer={0x0, 0x80000001, @sival_ptr=0x0, 0x5}}}) r0 = socket(0x11, 0x3, 0x9) sendmmsg$auto(r0, &(0x7f0000000480)={{&(0x7f0000000000), 0xa013, &(0x7f00000001c0)={&(0x7f0000000280), 0x49}, 0x5, &(0x7f00000004c0), 0x3, 0x4}, 0x1}, 0x2, 0x100) unshare$auto(0xfffffffffffffffb) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000280)={0x44, r2, 0x1, 0x70bd31, 0x25dfdbfd, {}, [@ETHTOOL_A_FEATURES_WANTED={0x18, 0x3, 0x0, 0x1, [@nested={0x14, 0x3, 0x0, 0x1, [@nested={0xc, 0xb0, 0x0, 0x1, [@typed={0x8, 0x2, 0x0, 0x0, @uid}]}, @nested={0x4, 0x1e}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}]}]}, 0x44}}, 0x24048084) close_range$auto(0x0, 0xfffffffffffff001, 0x2) socket(0x2, 0x1, 0x0) socket(0x1e, 0x1, 0x0) socket(0x10, 0x2, 0x0) memfd_create$auto(&(0x7f0000000000)='\xc4--:\xdd:,./-${\x00', 0x4) mmap$auto(0x0, 0x8, 0x1000000016, 0x13, 0x3, 0x400180000000) ftruncate$auto(0x3, 0x400180200000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/netdevsim/del_device\x00', 0x501, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) memfd_create$auto(&(0x7f0000000000)='!\x00', 0x16) fallocate$auto(0xffffffffffffffff, 0xfffffffe, 0x0, 0x2cbd5e) r4 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r4, 0xc004743e, 0x0) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) ioctl$auto_PPPIOCSCOMPRESS(r4, 0x4010744d, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000180)='Z', 0x1) 9.351217574s ago: executing program 1 (id=843): mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000) r0 = prctl$auto(0x1000000003b, 0x1, 0x0, 0x5, 0x54f) getsockopt$auto_SO_TYPE(r0, 0x1e, 0x3, &(0x7f0000000080)='\x00', &(0x7f00000000c0)=0x64f) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x1c3001, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x801, 0x106) socket(0xa, 0x1, 0x84) socket(0x28, 0x1, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="2f212abd7800fddbdf"], 0x14}}, 0x4000000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/fs/pipe-max-size\x00', 0x382, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000000c0)={[0x80000000000001ff, 0x7, 0x6, 0x1, 0x0, 0x8000000000002, 0x55f4da0a, 0x400000000000001, 0x3, 0x300000000000000, 0x80000001, 0x17, 0x8000, 0x5, 0x2]}, 0x0) 7.802856223s ago: executing program 1 (id=847): syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r0, 0x0, 0xa3d9) r1 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) read$auto_proc_page_owner_operations_page_owner(r1, &(0x7f0000002080)=""/4096, 0x1000) (fail_nth: 2) 7.285903819s ago: executing program 1 (id=848): syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r0, 0x0, 0xa3d9) r1 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) read$auto_proc_page_owner_operations_page_owner(r1, &(0x7f0000002080)=""/4096, 0x1000) 7.192969271s ago: executing program 1 (id=849): r0 = socket(0x15, 0x5, 0x0) read$auto(0x3, 0x0, 0x80) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x2006a) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x2c, 0x3, 0x0) socket(0x15, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x100) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0) mmap$auto(0x0, 0x5, 0xfffffffffffffe01, 0x8011, 0x3, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) socket(0x10, 0x2, 0x0) socket(0x10, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x801, 0x106) io_uring_setup$auto(0x6, 0x0) r1 = socket(0xa, 0x2, 0x88) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r1, @new_prog_fd=0x4, 0x8, @old_prog_fd=r1}, 0xa3) bpf$auto(0x2, &(0x7f0000000040)=@query={@target_ifindex, 0xff, 0x7, 0x9, 0x7f, @count=0xfffffff1, 0x0, 0x80000000, 0xc, 0xb, 0x7}, 0x9) r2 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ttyq0\x00', 0x101400, 0x0) write$auto_console_fops_tty_io(r2, &(0x7f0000000140)="671d264add69b6440843b6e6688a2b5ad9df2669e6f9cd236532b20ed763c1dbfee3f787fc87cd0f5600ac8caf4bde4c30b530ac6ebbff950e1a647d6a08a1b55dde5a409b58", 0x46) ustat$auto(0x801, 0x0) sendmsg$auto(r0, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0) 6.301629639s ago: executing program 0 (id=853): syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x801}, 0x80) socket$nl_generic(0x11, 0x3, 0x10) socketpair$auto(0x1d, 0x2, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x118) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) symlink$auto(&(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000000)='./file0\x00') madvise$auto(0x0, 0xffffffffffff0005, 0x19) arch_prctl$auto(0x5003, 0x5) gettid() socket(0x2, 0x80002, 0x73) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x801, 0x106) socket(0xa, 0x1, 0x84) socket(0x28, 0x1, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="2f212abd7800fddbdf"], 0x14}}, 0x4000000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/fs/pipe-max-size\x00', 0x382, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000000c0)={[0x80000000000001ff, 0x7, 0x6, 0x1, 0x2, 0x8000000000002, 0x55f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0) io_uring_setup$auto(0x6, 0x0) 6.167416276s ago: executing program 1 (id=854): statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44f, 0x6, 0x5, 0x1007181, 0x8a0d, 0x7, 0x7, 0x7ff, 0x89, 0x26, 0x4, 0x200004000001, 0x384, 0xfffffffffffffffa, 0x0, 0x0, 0x30, 0x0, 0x864, 0x11, 0x22000, 0x200, 0x0, 0x800084, [0x200, 0x2, 0xffffffffffffffff, 0xfffffffffffffffe, 0x0, 0x401ffc, 0x0, 0xe, 0x1, 0x400, 0xfffffffffffffffd, 0xffffffffffffffff, 0x8, 0x2000004, 0x6, 0x0, 0x10000000000008, 0xc32b, 0x8, 0x10000000000, 0xffffffffffffffff, 0x4, 0x2f, 0x0, 0x0, 0x3006, 0x400000000005b8, 0xfffd, 0x0, 0x8000, 0x2, 0x6, 0x2, 0x88e, 0x40, 0xfffffffffffffffc, 0x8, 0xa38, 0x1c0000000000000, 0x4, 0xfffffffffffffffd, 0x2, 0x8, 0x10000000007, 0xc567, 0x7ffffffffd]}, 0xb, 0xe0fa) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mtdblock0\x00', 0x10d441, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) pkey_free$auto(0x0) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x129800, 0x0) ioperm$auto(0x2, 0x3, 0x383a) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/profile\x00', 0x200000, 0x0) setsockopt$auto_SO_PASSPIDFD(r1, 0x3, 0x4c, &(0x7f00000000c0)='\x00', 0x3) mq_open$auto(0x0, 0xde8, 0xb, 0x0) mq_unlink$auto(0x0) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x3, 0x3b) r2 = socket(0x2, 0x1, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_GET_WIPHY(0xffffffffffffffff, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000280)=ANY=[@ANYRES16=r3, @ANYRES8=r3], 0x18}, 0x1, 0x0, 0x0, 0x400d0}, 0x404c054) r4 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event2\x00', 0x20081, 0x0) getsockopt$auto_SO_NETNS_COOKIE(r0, 0x2, 0x47, &(0x7f0000000140)='/dev/input/event2\x00', &(0x7f0000000180)=0x10) write$auto(r4, &(0x7f0000000000)='/dev/input/event0\x00', 0x7fe) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000100), 0x480080, 0x0) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYRES8=r1, @ANYRESDEC=r3, @ANYRESOCT=r5], 0x1ac}, 0x1, 0x0, 0x0, 0x20000000}, 0x48000) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001180), 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) statmount$auto(0x0, &(0x7f00000003c0)={0xa, 0x1, 0x1ff, 0x107, 0x5, 0x6, 0x1ffde, 0x3, 0x7f, 0x9, 0x9, 0x80003, 0x4, 0xd9, 0xb4, 0x81, 0x8, 0x10006, 0x4000081, 0x0, 0x0, 0x9, 0x22000, 0x200, 0x1, 0x84, [0x3, 0x2, 0x0, 0x2, 0x0, 0x80, 0x0, 0x1, 0x70624ce7, 0x0, 0x1, 0xffffffffffffffff, 0x8, 0x0, 0x6, 0x0, 0xfffffffffffbfffd, 0x2000000000000004, 0x10000000000004, 0x10000000000, 0xb668, 0x4, 0xfffffffffffffe00, 0xfffffffffffffffe, 0x0, 0x1005, 0x400000000005b8, 0xffff, 0x0, 0x100, 0x0, 0xc, 0x2, 0x88e, 0x40, 0xfffffffffffffffc, 0x8, 0xa38, 0x0, 0x3, 0xfffffffffffffffc, 0x2, 0x8, 0x7, 0xc567, 0xbb], "c5cdca5e64bdd91fb5efa49a509343f5baae235f18c872cb0dbb7f1e33215bf0e978365ef876d25f0fda8c07559d3e8ada7bab266cec5cbaae3e3d1f46b8e695b3d51043a5cca039a0e71694ee3f18c55658df59c2617fad034f0be58b82e763d7d31f079d01ca2e905e7ba0b60b31a939743890c88aebf676a438"}, 0x1fe, 0xd) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) r6 = socket(0xa, 0x3, 0x3a) bind$auto(r6, &(0x7f0000000180)=@vsock={0x28, 0x0, 0x2711}, 0x3e) 5.64477074s ago: executing program 1 (id=856): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/devices/virtual/block/ram1/queue/atomic_write_boundary_bytes\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) signalfd$auto(0xffffffffffffffff, 0x0, 0x8) r1 = epoll_create$auto(0x3e) epoll_ctl$auto(r1, 0x1, 0x8000000000000000, 0x0) r2 = gettid() r3 = getpid() mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000) pread64$auto(0xffffffffffffffff, 0x0, 0x100000000008, 0x8) close_range$auto(0x2, 0x8, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) write$auto(0x4, 0x0, 0x100082) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) signalfd$auto(r4, &(0x7f0000000040)={0x4}, 0x9) mmap$auto(0x0, 0x3, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_TIOCGETD2(0xffffffffffffffff, 0x5424, 0x0) statmount$auto(0x0, 0x0, 0x1fc, 0x81) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) ioctl$auto(0x3, 0x80081270, 0x38) r5 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r5, 0x0, 0x40000) socket$nl_generic(0x10, 0x3, 0x10) semctl$auto(0x8000000000000000, 0x92c, 0x10, 0x7) mseal$auto(0x3, 0x7, 0x41) rt_tgsigqueueinfo$auto(r3, r2, 0x21, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)=""/4096, 0x1000) 5.643195372s ago: executing program 4 (id=857): r0 = getsockopt$auto_SO_BPF_EXTENSIONS(0xffffffffffffffff, 0x3, 0x30, &(0x7f0000000580)='\\.}$\\@#]\\\xf3,)^}\xe2\\].\x94^[M\x00\xd9\x88\x06\xf3\xbe+\x9a\xfda\x9b\xdc\x19\x9a\x82\xfc}\x7f*\xb4G2V\xbf\xef\xc9\xd5\a\xb1\xbb-Q\x8a\x89~e\x17\'\x99\x9b\b\x8f\x01\xc4\xb2\xa1\xcd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00)\x02\xcf4\vw\xe6w\"-\xa6\xbe\xe3!\xd3\xecs\xc7\b]\xa6(\x9c\xcb\x1d\x1d=p<\xf0\xc3\xf6-^d\xc6\xfa\xc5\x9b\x8d\"{*\x9d\\H\v\xa0U\xa7\v\xad\xaft4\xdd\xc5\xd4\xbe<\xfb\x02\x01\x15*\x12\xc7\xc8\xb6\xdbp\xb2\xbfl\xfcdT\xde \x8f/*\xa3|\xf4\xfb\xca\xfe\xfe\x93\xb9\x8ap\xfb\xde\xd1\xad\x06\xa2\xe2I\xa9\xc5\xe5\xa5\x9f\x17\x8a\xa7\'v\x93\x9e\xc2\xa7\x8c\x96m\xbf\x97\xcbr\x95}\xf0\x841\xd3\x91\x97s\xf2\xa7\x98\x0e\xa5|Y\xbdx\xf8r\x8f\xd9\xa0\xb1L\x01c$\xf6p\x9a\xf6\xf3\xd2\xba\xcf0\xac\x01\x99<\xda\xfdy=\xe2\xda\xe8\xb1\x18\x06\xc5\a\xfb\xf7\xaa\xe6\x8a\xb0\x01\xa5\x87\x00\xfb\xf4\x94\xec\xd8', &(0x7f0000000040)=0x102) setsockopt$auto_SO_TIMESTAMP_NEW(r0, 0x3, 0x3f, &(0x7f00000003c0)='/\x00ys/devices7pcL0000:08/0000:00:01.1/ata1/host0/target\x8b\xe6S0:\x00:0/0:0:0:0/block/sda/power/control\x00WPX\xd9h\x1d\xafn\x12\x8bq\\`\xb5\xea\x7f\x9d\x16\x1f0tB\xb5\b\x11\x9b\x9ak\xe0\x01\x00\x00\x00\x00\x00\t\x01\x9aF\tD,i\x96\xe8c\x819M\b&\x13\xca\x8c\x96|\xc7\r \xb8EG\x97g\xebf/\xbb[)>\x8em\bp\x8b\xe4\xa5]\xb0\x86/\x916\x9d\xc8\xa4j%\xae\x00\xfd\xa4\xc1\x10p\xaf\xd88,\xe5\x19\xd2.f\xe0l}hd\rU\xe9\xf1\xd7^\x1dj2\x94\xd6\xb0P\xda8~\x96\xdb\xdc[\x862\x95\xed\xe2\xe0\xd9\xff0\xae\xf2\xb0o9\xf1g\xebm\xcc\x85\xf1\xb9\x06\xd8\xeb\x99\xaf\x1f\xe3\xf8\xad\xe3Q\x05\xe2G}\a8\xfcq\xb3\xe4\x910\x8fVc(\xe02M\xbcF\xda\xd4\x9ey\xb2\n:03\xb4\xf6\xb4\xc7\n\xd7\x83\xe1\bs2@\x92si\xa0D\xbc\x18\n\x8f,\xa5\x1b;J\x95\x065\x8e\xf1\xd7\x84\xd7\xca!a\xf5\x985\xccX\xd12\x1e\x83\xab\xb7\xe1\xfcEd\xcf\x94\x1d\xcf\x00N1\x93\xedS\x92\x8a:\xf2\xa8\x1e\xff\x802\xed\x90\aE\x1e[\f\xa5z\xfb\xd3T\xb7{#\x9e\x00'/387, 0x80000000) mmap$auto(0x0, 0xa, 0x3, 0xeb1, 0x8, 0x8000) close_range$auto(0x2, 0x8, 0x0) read$auto_uhid_fops_uhid(r0, &(0x7f00000002c0)=""/11, 0xb) r1 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r1, 0xfffffffbffdffe00, &(0x7f00000001c0)=';') ioctl$auto(0x3, 0x40086203, 0x38) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/nbd6\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) madvise$auto(0x0, 0x454, 0x9) socket(0x5, 0x2, 0x2) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/smaps_rollup\x00', 0x2400, 0x0) unshare$auto(0x40000080) socket(0x11, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, &(0x7f0000000100)={0x5c, 0xfffdfffffffeffff, 0x800000005, 0x7fffffffefff, 0xff7ffffffffffffe, 0x1, 0x0, 0xe5, 0x0, 0x2, 0x0, 0x2}) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_MACSEC_CMD_UPD_RXSA(r2, &(0x7f0000006200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)=ANY=[], 0x38}, 0x1, 0x0, 0x0, 0x4008000}, 0xc000) socket(0x6, 0x3, 0x84) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r3 = getpid() process_vm_readv$auto(r3, &(0x7f0000000080)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={0x0, 0xffffffff}, 0x6, 0x0) mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000) lseek$auto(0xffffffffffffffff, 0xfffffffffffffffb, 0x3) setsockopt$auto(0xffffffffffffffff, 0x4, 0x8001, 0x0, 0x8000002) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x18938c6f, 0xf) r4 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0) signalfd$auto(r4, 0x0, 0x8) 4.940867396s ago: executing program 0 (id=860): r0 = openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) write$auto_cachefiles_daemon_fops_internal(r0, &(0x7f0000000300)="a04f", 0x2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) r1 = open(0x0, 0x261c2, 0x84) close_range$auto(0x2, 0x8000, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) r3 = socket(0xa, 0x3, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000280)={'wg0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r5, r4, 0x4, 0x401, r3, @relative_id=0x13, 0xe600}, 0xf) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r1, 0x0, 0x3}, 0xc) bpf$auto(0x3, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x4}, 0xc) 4.87060543s ago: executing program 0 (id=861): mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000) r0 = prctl$auto(0x1000000003b, 0x1, 0x0, 0x5, 0x54f) getsockopt$auto_SO_TYPE(r0, 0x1e, 0x3, &(0x7f0000000080)='\x00', &(0x7f00000000c0)=0x64f) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x1c3001, 0x0) madvise$auto(0x100000, 0xffffffffffff0005, 0x19) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x801, 0x106) socket(0xa, 0x1, 0x84) socket(0x28, 0x1, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="2f212abd7800fddbdf"], 0x14}}, 0x4000000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/fs/pipe-max-size\x00', 0x382, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000000c0)={[0x80000000000001ff, 0x7, 0x6, 0x1, 0x0, 0x8000000000002, 0x55f4da0a, 0x400000000000001, 0x3, 0x300000000000000, 0x80000001, 0x17, 0x8000, 0x5, 0x2]}, 0x0) 4.283783835s ago: executing program 4 (id=862): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x3, 0xb2f7, 0x6f, 0x110, 0x5, 0xf) prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x3) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x2, 0x8000) statx$auto(0xffffff9c, 0x0, 0x1000, 0x1, 0x0) r0 = socket(0x10, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x1, 0x0) connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710, @hyper}, 0x55) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) listen$auto(r0, 0xffc) accept$auto(0x3, 0x0, 0x0) modify_ldt$auto(0x11, 0x0, 0x10) msgctl$auto_IPC_SET(0x0, 0x1, &(0x7f0000000300)={{0xf3, 0xee01, 0x0, 0x2, 0x4, 0xb, 0x8}, 0x0, 0x0, 0x6, 0x0, 0x0, 0x4800000000, 0xfffffffffffffffb, 0x8000, 0x0, 0x1, @raw=0x4, @raw=0xfffffff1}) r3 = socket(0x2, 0x1, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x40100, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) sendmsg$auto_NL80211_CMD_CONNECT(r3, 0x0, 0x4000000) socket(0x18, 0x5, 0x1) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1, 0x3, 0x4) clone$auto(0xd2d4, 0x101, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x80882, 0x0) mbind$auto(0x0, 0x100400004, 0x100000000, 0x0, 0x7, 0x2) msgctl$auto_IPC_RMID(0x4, 0x0, &(0x7f0000000080)={{0x3, r1, r2, 0x400, 0x6, 0x7, 0xd}, &(0x7f0000000000)=0x9, &(0x7f0000000040)=0x7, 0x0, 0x456, 0x9, 0xff, 0x4, 0xff99, 0x5, 0x9, @raw=0x9, @inferred=0xffffffffffffffff}) 4.139812829s ago: executing program 2 (id=863): openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) madvise$auto(0x0, 0x7ffffffffffffffc, 0xc) prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000004180)='/dev/snd/controlC1\x00', 0x28180, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) unshare$auto(0x40000080) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, 0x0, 0xd0800, 0x0) write$auto_fuse_dev_operations_fuse_i(r1, &(0x7f0000000440)="19000003d30000", 0x7) socket(0x2, 0x1, 0x0) r2 = socket(0x18, 0x5, 0x2) bind$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x0, @multicast1}, 0x6b) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) madvise$auto(0x0, 0x6, 0x11) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x80000000000000d, 0x1, 0x948d, 0x6, 0x15f4da0a, 0x1, 0x8, 0x1000000, 0xfffffffffffffffd, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop3\x00', 0x10000, 0x0) mmap$auto_def_blk_fops_fs(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x100000f, 0x13, r4, 0xca) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0) readv$auto(r2, &(0x7f00000000c0)={0x0, 0x6}, 0x3) setsockopt$auto_SO_RCVTIMEO_OLD(r5, 0x9, 0x14, &(0x7f0000000040)=')]&/-]-!\x00', 0xdb) mmap$auto(0x0, 0x8000000020009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, r2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_HWSIM_CMD_REGISTER(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4020}, 0xc, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="cc010000", @ANYRES16=0x0, @ANYBLOB="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"], 0x1cc}, 0x1, 0x0, 0x0, 0x40}, 0x1) socket(0x1e, 0x5, 0x0) sendto$auto(0x3, 0x0, 0x79, 0x2, &(0x7f0000000440)=@tipc=@name={0x1e, 0x2, 0x3, {{0x1, 0x1}}}, 0x20) 3.532861074s ago: executing program 0 (id=864): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'ip6gre0\x00', 0x0}) sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004540)={&(0x7f0000000140)={0x40, r1, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@OVS_DP_ATTR_IFINDEX={0x8, 0x9, r2}, @OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0x6}, @OVS_DP_ATTR_NAME={0x11, 0x1, 'ovs_\xc3\xff\xff\xff\xff\xff\xff\xff\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x2000000) 2.823490663s ago: executing program 4 (id=865): openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x101440, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r0, 0x0, 0x800) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x4, 0x10001) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC1D1c\x00', 0x1, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x7149ea5ef7296d42, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/amidi2\x00', 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/lockdep\x00', 0x10b402, 0x0) socket$nl_generic(0x10, 0x3, 0x10) eventfd$auto(0x34b) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) capset$auto(&(0x7f0000000180)={0x19980330}, 0x0) socketpair$auto(0x1e, 0x1, 0x0, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/fs/pipe-max-size\x00', 0x382, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/usbip-vudc.0/usbip_sockfd\x00', 0x103841, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r3 = open_by_handle_at$auto(r1, &(0x7f00000000c0)={0x72, 0x23c, "44a2339df071ccecdec2ae119b7b95ff9cc928c201e1cd40e4db0024b474ec2cab0c89a4a40f0ab2cbb01b3ceecb612ef7922122a3f33a4405c3efb237b4643b6015419d7bf21db963863ac00f557dcc23798e677d56672d126085ef9dd80a7fa09f0714bc251f290ce26bf851d5087cab14"}, 0x8000) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptyab\x00', 0x0, 0x0) ioctl$auto_TIOCSETD2(r4, 0x5423, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_POWER(r3, 0xc00455d0, &(0x7f0000000180)=0x101) ioctl$auto_TIOCSTI2(r4, 0x5412, 0x0) 2.639065278s ago: executing program 0 (id=866): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/vbi29\x00', 0x1c9240, 0x0) r0 = gettid() kill$auto(r0, 0x11) r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408) getdents$auto(r1, 0x0, 0x400018) ioctl$auto(0x3, 0xc0285628, 0x38) mmap$auto(0x0, 0x2020006, 0x4, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) write$auto(0xca, 0x0, 0x2b) 2.586052464s ago: executing program 4 (id=867): mkdir$auto(&(0x7f0000001580)='./file0\x00', 0x1) lsetxattr$auto(&(0x7f0000003080)='./file0\x00', &(0x7f00000030c0)='-\x00', &(0x7f0000003100), 0x7, 0x3) r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x65, 0x2) io_uring_setup$auto(0x48, 0x0) io_uring_register$auto(0x100000001, 0x4, 0xffffffffffffffff, 0x1) r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(r1, 0xaf01, 0x5) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) ioctl$auto(r1, 0xc008af12, r0) openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000240), 0x48900, 0x0) ppoll$auto(&(0x7f0000000080)={0xffffffffffffffff, 0x11b, 0x7ff}, 0xc, &(0x7f00000000c0)={0x3, 0x7f}, 0x0, 0x8) 2.375040896s ago: executing program 4 (id=868): bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x0, 0x4, 0x3, 0x2, 0x8, 0xc, 0xe3, 0x400000000a, 0x3}, 0x6f4) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) init_module$auto(0x0, 0xffff9, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.6/usb7/power/wakeup_active_count\x00') prctl$auto(0xeca0, 0x13, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x8000000000000000, 0x15) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x402, 0x8000) timer_create$auto(0x7, 0x0, 0x0) timer_gettime$auto(0x0, 0x0) lseek$auto(0x3, 0x7fffffffffffffff, 0x0) madvise$auto(0x0, 0x2000000080000001, 0x3) socket(0x2, 0x1, 0x106) socket(0x2b, 0x1, 0x1) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x404, 0x8000) getsockopt$auto(0x4, 0x6, 0x15, 0xfffffffffffffffc, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, &(0x7f0000000000)={0x2, 0x10000002, 0x6}) move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x30, 0x80000006, 0x4) r0 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x408, 0x7, 0x1, 0x7, 0x44, 0x4909b6f8, 0x201ffdf, 0x7, 0x200003, 0x2, 0xa121, 0x3, 0x6, 0x4, 0xb4, 0xa, 0x6, 0x10001, 0x80, 0x100000000, 0x0, 0x7, 0x2100, 0x200, 0x0, 0x84, [0x2, 0x0, 0x0, 0x50100000000000, 0x6, 0x2000, 0x0, 0x6, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x0, 0x0, 0x5, 0xffffffffffff7ffe, 0xffffffffffffbfff, 0xfffffffffffffffd, 0x1, 0x0, 0xffffffffffffffff, 0x4, 0xfffffffffffffffe, 0x2000000000000000, 0x0, 0x0, 0x400000000005b8, 0xc, 0x0, 0x0, 0x40000, 0x6, 0x0, 0x88e, 0x8000000000008, 0xfffffffffffffffc, 0x9, 0xa38, 0x0, 0x3, 0xfffffffffffffffa, 0x8, 0x4000000000, 0x7]}, 0x1fe, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4) mmap$auto(0x0, 0x200003, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) socket$nl_generic(0x10, 0x3, 0x10) 2.374243181s ago: executing program 2 (id=876): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/workqueue/nvme_tcp_wq/max_active\x00', 0x182b02, 0x0) sendfile$auto(r0, r0, 0x0, 0x3) (fail_nth: 7) 1.769951022s ago: executing program 2 (id=869): select$auto(0xe, 0x0, 0x0, &(0x7f00000000c0)={[0x80000000000001ff, 0x7, 0x6, 0x1, 0x2, 0x8000000000002, 0x55f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0) 1.616174243s ago: executing program 0 (id=870): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) (async) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async) socket(0x1d, 0x2, 0x6) (async) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) ioperm$auto(0x2, 0x3, 0x1) (async, rerun: 32) clone$auto(0xffff, 0x7, 0xfffffffffffffffe, 0xffffffffffffffff, 0xffff) (rerun: 32) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x5c, r2, 0x1, 0x70bd2d, 0x25dfdbf9, {}, [@L2TP_ATTR_ENCAP_TYPE={0x6}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x10}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x211e78dc}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x8}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @mcast1}, @L2TP_ATTR_IP6_DADDR={0x14, 0x20, @local}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x4008004) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async, rerun: 64) clock_adjtime$auto(0x0, &(0x7f0000000000)={0x7, 0x8, 0x4, 0x8, 0x7fffffff, 0xffffffc0, 0x6, 0x5, 0x3, 0x0, 0xb9, {}, 0x1000, 0x7, 0xb, 0x5, 0x2000006, 0x101, 0x7fff, 0x3}) (async, rerun: 64) adjtimex$auto(&(0x7f0000000100)={0x248a134b, 0x0, 0x4, 0x6efd, 0x8, 0x10001, 0x3, 0x0, 0x3, 0x4, 0xff, {0x9, 0x1}, 0x0, 0x81, 0x4, 0x80000000, 0x0, 0xffffffff, 0x9, 0x4, 0x4, 0x8, 0x8}) getsockopt$auto_SO_PASSCRED(r0, 0x80000000, 0x10, &(0x7f0000000200)='}d\x00', &(0x7f0000000240)=0x10) pkey_free$auto(0xfffffffd) (async) getpeername$auto(0x3, 0x0, 0x0) (async, rerun: 32) unshare$auto(0x40000080) (async, rerun: 32) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/fs/orangefs/perf_counters/ncache\x00', 0xa001, 0x0) write$auto(r3, &(0x7f0000000000)='72\xa1\x84\xbd0\x00f\x19\x1c\xc7k\x00\x00\x00\x00', 0x7) ioctl$auto(0x3, 0x80084d17, 0x38) 1.589473572s ago: executing program 2 (id=871): mmap$auto(0x0, 0xc, 0x9c0f, 0x44eb2, 0x10006, 0x300000000000) syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/mnt\x00') ioctl$auto(0x3, 0x4020940c, 0x5) (fail_nth: 12) 789.816689ms ago: executing program 2 (id=872): close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket(0xa, 0x2, 0x3a) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f00000001c0)={0x30, r1, 0x1, 0x50bd25, 0x25dfdbfd, {}, [@NBD_ATTR_SOCKETS={0x10, 0x7, 0x0, 0x1, [@nested={0xc, 0x1, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@generic='\x00\x00\x00\x00']}]}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x200000000006}]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x8880) 200.949153ms ago: executing program 2 (id=873): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) mmap$auto(0x8, 0xa00008, 0x80000000000002, 0x40eb1, 0x602, 0x300000000001) quotactl_fd$auto(0xffffffffffffffff, 0x1, 0x0, 0x0) socket(0x2, 0x3, 0xfffffff1) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb3, 0x401, 0x8000) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x2100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x100000, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x800}) socket(0x2b, 0x1, 0x1) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) unshare$auto(0x40000080) mmap$auto(0x9, 0x4, 0x4000000000df, 0x100000010, 0x401, 0xd82) r2 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/stat\x00', 0x80c00, 0x0) read$auto_proc_single_file_operations_base(r2, &(0x7f00000051c0)=""/103, 0x67) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/pm_async\x00', 0x0, 0x0) r3 = fcntl$auto_F_GETFL(r0, 0x3, 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) r4 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8a802, 0x0) ioctl$auto(r4, 0x2288, r4) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101800, 0x0) acct$auto(0x0) openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, 0x0, 0x800, 0x0) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, 0x0, 0x68a80, 0x0) setsockopt$auto_SO_DEVMEM_DONTNEED(r2, 0xb379, 0x50, &(0x7f0000000100)='\x00', 0xf8f) ioctl$auto_SG_GET_KEEP_ORPHAN(r3, 0x2288, &(0x7f0000000080)="a0cdd5b7d104cd6d4a93a05948465a2cb2d3f5ece0a5cfe5a7005874fa41ff871305d828b3eaf2a706560b8828d946e0b6be2cdba5baea4cffdf37aec08f7e409efa7b950a4cdf58a432a7dd4377f4833b1b9c28ee50aa2586f60ff25896d5e817c61d212641af25d7934a379b1fd1") r5 = waitid$auto_P_ALL(0x0, 0xffffffffffffffff, &(0x7f0000000180)={@siginfo_0_0={0x0, 0x10000, 0xb30f, @_timer={0xffffffffffffffff, 0x40000, @sival_ptr=&(0x7f0000000300)="28fc7f3de762c2df46cf55e4f509bc4c706f60fba6a25415c0f28804f2395e5b4eda8e4a31c0032c65aa1c1f5ea41e2115fbea5a31369f177356396a4e46be9c084eb55aa02db814fc981c18a872b63332018f4f9308eec7de6491219913e1721b7e5eda2db402066ebc26df2514383fb024c5e185db2f2ec23cb23f2d605fa619e79d52c32e70dc24237bfd6297822f9b19634aa8f742813624cdba2206d4029323df08e003c1fc8911a52c1650571f47512f717746f562be8ce86ef8074a7a7a34c7d42c142dfbdd907580eea693683f8f83e2a3c66ef47face6cacee8e0ff1edde7661812", 0xfffffffc}}}, 0x4, 0x0) keyctl$auto(0x800, 0x0, 0xee01, 0x0, 0x8) fcntl$auto_F_GET_RW_HINT(r3, 0x40b, r5) sendfile$auto(0x1, 0x3, 0x0, 0xc01) epoll_create$auto(0x3e) 0s ago: executing program 4 (id=874): write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x100, 0x0) openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, 0x0, 0xe0000, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/system/node/node1/cpumap\x00', 0x48000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0xc8440, 0x0) r1 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r1, 0xfffffff7effffd01, &(0x7f00000001c0)) r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r2, 0x0, 0x1) read$auto(r2, 0x0, 0x1f40) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) gettid() mmap$auto(0x2000000, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) kernel console output (not intermixed with test programs): me failslab, interval 1, probability 0, space 0, times 0 [ 262.691130][ T8444] CPU: 1 UID: 0 PID: 8444 Comm: syz.0.509 Not tainted 6.14.0-rc3-syzkaller #0 [ 262.691171][ T8444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 262.691189][ T8444] Call Trace: [ 262.691198][ T8444] [ 262.691210][ T8444] dump_stack_lvl+0x16c/0x1f0 [ 262.691253][ T8444] should_fail_ex+0x50a/0x650 [ 262.691302][ T8444] ? fs_reclaim_acquire+0xae/0x150 [ 262.691344][ T8444] should_failslab+0xc2/0x120 [ 262.691373][ T8444] __kmalloc_node_noprof+0xd1/0x510 [ 262.691421][ T8444] ? lock_acquire+0x2f/0xb0 [ 262.691463][ T8444] ? __might_fault+0xe3/0x190 [ 262.691494][ T8444] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 262.691544][ T8444] __kvmalloc_node_noprof+0xad/0x1a0 [ 262.691589][ T8444] xt_alloc_table_info+0x3e/0xa0 [ 262.691631][ T8444] do_ipt_set_ctl+0x5b3/0xbe0 [ 262.691676][ T8444] ? __mutex_lock+0x1cc/0xb10 [ 262.691718][ T8444] ? __pfx_do_ipt_set_ctl+0x10/0x10 [ 262.691762][ T8444] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 262.691803][ T8444] ? sockopt_release_sock+0x52/0x60 [ 262.691850][ T8444] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 262.691908][ T8444] ? nf_sockopt_find.constprop.0+0x221/0x290 [ 262.691954][ T8444] nf_setsockopt+0x8a/0xf0 [ 262.692003][ T8444] ip_setsockopt+0xcb/0xf0 [ 262.692055][ T8444] ipv6_setsockopt+0x155/0x170 [ 262.692097][ T8444] sctp_setsockopt+0x16a/0xb810 [ 262.692151][ T8444] ? __pfx_sctp_setsockopt+0x10/0x10 [ 262.692197][ T8444] ? __pfx_aa_sk_perm+0x10/0x10 [ 262.692239][ T8444] ? sock_common_setsockopt+0x2e/0xf0 [ 262.692293][ T8444] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 262.692348][ T8444] do_sock_setsockopt+0x222/0x480 [ 262.692400][ T8444] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 262.692452][ T8444] ? lock_acquire+0x2f/0xb0 [ 262.692515][ T8444] __sys_setsockopt+0x1a0/0x230 [ 262.692564][ T8444] __x64_sys_setsockopt+0xbd/0x160 [ 262.692605][ T8444] ? do_syscall_64+0x91/0x250 [ 262.692642][ T8444] ? lockdep_hardirqs_on+0x7c/0x110 [ 262.692678][ T8444] do_syscall_64+0xcd/0x250 [ 262.692718][ T8444] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 262.692763][ T8444] RIP: 0033:0x7f2bcf78cde9 [ 262.692787][ T8444] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 262.692817][ T8444] RSP: 002b:00007f2bd0619038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 262.692845][ T8444] RAX: ffffffffffffffda RBX: 00007f2bcf9a5fa0 RCX: 00007f2bcf78cde9 [ 262.692866][ T8444] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000003 [ 262.692885][ T8444] RBP: 00007f2bd0619090 R08: 0000000000010000 R09: 0000000000000000 [ 262.692904][ T8444] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 262.692922][ T8444] R13: 0000000000000000 R14: 00007f2bcf9a5fa0 R15: 00007ffcd3e6d868 [ 262.692960][ T8444] [ 262.997282][ T8408] kernel write not supported for file /page_tables/current_user (pid: 8408 comm: syz.1.508) [ 263.180568][ T8444] kernel write not supported for file /page_tables/current_user (pid: 8444 comm: syz.0.509) [ 264.180765][ T8451] kernel write not supported for file /page_tables/current_user (pid: 8451 comm: syz.1.510) [ 264.295319][ T5846] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 264.991972][ T8449] kernel write not supported for file /page_tables/current_user (pid: 8449 comm: syz.0.511) [ 265.343395][ T8468] kernel write not supported for file /page_tables/current_user (pid: 8468 comm: syz.0.515) [ 265.683268][ T8473] kernel write not supported for file /page_tables/current_user (pid: 8473 comm: syz.0.517) [ 266.626398][ T8477] kernel write not supported for file /page_tables/current_user (pid: 8477 comm: syz.0.519) [ 266.719979][ T8483] kernel write not supported for file /page_tables/current_user (pid: 8483 comm: syz.0.519) [ 267.504100][ T8496] kernel write not supported for file /page_tables/current_user (pid: 8496 comm: syz.0.531) [ 268.688689][ T8464] kernel write not supported for file /page_tables/current_user (pid: 8464 comm: syz.1.514) [ 268.724621][ T8516] FAULT_INJECTION: forcing a failure. [ 268.724621][ T8516] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 268.864130][ T8516] CPU: 1 UID: 0 PID: 8516 Comm: syz.2.526 Not tainted 6.14.0-rc3-syzkaller #0 [ 268.864168][ T8516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 268.864185][ T8516] Call Trace: [ 268.864194][ T8516] [ 268.864210][ T8516] dump_stack_lvl+0x16c/0x1f0 [ 268.864252][ T8516] should_fail_ex+0x50a/0x650 [ 268.864298][ T8516] ? __pfx___might_resched+0x10/0x10 [ 268.864350][ T8516] should_fail_alloc_page+0xe7/0x130 [ 268.864381][ T8516] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 268.864429][ T8516] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 268.864480][ T8516] ? copy_splice_read+0x1a8/0xb80 [ 268.864517][ T8516] ? stack_trace_save+0x95/0xd0 [ 268.864552][ T8516] ? __pfx_stack_trace_save+0x10/0x10 [ 268.864586][ T8516] ? stack_depot_save_flags+0x28/0x9c0 [ 268.864647][ T8516] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 268.864694][ T8516] ? kasan_save_stack+0x42/0x60 [ 268.864737][ T8516] ? kasan_save_track+0x14/0x30 [ 268.864780][ T8516] ? __kmalloc_noprof+0x21c/0x510 [ 268.864823][ T8516] ? copy_splice_read+0x1a8/0xb80 [ 268.864859][ T8516] ? do_splice_read+0x282/0x370 [ 268.864895][ T8516] ? splice_direct_to_actor+0x2a4/0xa40 [ 268.864932][ T8516] ? do_splice_direct+0x178/0x250 [ 268.864968][ T8516] ? do_sendfile+0xafb/0xe40 [ 268.865003][ T8516] ? __x64_sys_sendfile64+0x1da/0x220 [ 268.865058][ T8516] alloc_pages_bulk_noprof+0x6f9/0x1390 [ 268.865119][ T8516] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 268.865176][ T8516] ? trace_kmalloc+0x2d/0xd0 [ 268.865209][ T8516] ? __kmalloc_noprof+0x23b/0x510 [ 268.865261][ T8516] copy_splice_read+0x1e0/0xb80 [ 268.865302][ T8516] ? look_up_lock_class+0x59/0x150 [ 268.865340][ T8516] ? __pfx_copy_splice_read+0x10/0x10 [ 268.865383][ T8516] ? __pfx_register_lock_class+0x10/0x10 [ 268.865442][ T8516] ? __pfx_copy_splice_read+0x10/0x10 [ 268.865480][ T8516] do_splice_read+0x282/0x370 [ 268.865521][ T8516] splice_direct_to_actor+0x2a4/0xa40 [ 268.865563][ T8516] ? __pfx_direct_splice_actor+0x10/0x10 [ 268.865623][ T8516] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 268.865666][ T8516] ? __fget_files+0x1fc/0x3a0 [ 268.865732][ T8516] do_splice_direct+0x178/0x250 [ 268.865775][ T8516] ? __pfx_do_splice_direct+0x10/0x10 [ 268.865817][ T8516] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 268.865865][ T8516] ? rw_verify_area+0xcf/0x680 [ 268.865907][ T8516] do_sendfile+0xafb/0xe40 [ 268.865955][ T8516] ? __pfx_do_sendfile+0x10/0x10 [ 268.865997][ T8516] ? __fget_files+0x206/0x3a0 [ 268.866052][ T8516] __x64_sys_sendfile64+0x1da/0x220 [ 268.866080][ T8516] ? ksys_write+0x1ba/0x250 [ 268.866123][ T8516] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 268.866187][ T8516] do_syscall_64+0xcd/0x250 [ 268.866229][ T8516] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 268.866273][ T8516] RIP: 0033:0x7fa44998cde9 [ 268.866297][ T8516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 268.866326][ T8516] RSP: 002b:00007fa44a754038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 268.866356][ T8516] RAX: ffffffffffffffda RBX: 00007fa449ba5fa0 RCX: 00007fa44998cde9 [ 268.866377][ T8516] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003 [ 268.866395][ T8516] RBP: 00007fa44a754090 R08: 0000000000000000 R09: 0000000000000000 [ 268.866414][ T8516] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 268.866432][ T8516] R13: 0000000000000000 R14: 00007fa449ba5fa0 R15: 00007ffc085289d8 [ 268.866470][ T8516] [ 270.180143][ T8514] kernel write not supported for file /page_tables/current_user (pid: 8514 comm: syz.0.525) [ 270.581758][ T8534] kernel write not supported for file /page_tables/current_user (pid: 8534 comm: syz.0.530) syzkaller syzkaller login: [ 271.004306][ T8541] kernel write not supported for file /page_tables/current_user (pid: 8541 comm: syz.1.527) [ 271.301149][ T8544] kernel write not supported for file /page_tables/current_user (pid: 8544 comm: syz.0.533) [ 271.438397][ T8553] kernel write not supported for file /page_tables/current_user (pid: 8553 comm: syz.1.534) [ 272.108151][ T8559] kernel write not supported for file /page_tables/current_user (pid: 8559 comm: syz.1.537) [ 272.381358][ T8563] kernel write not supported for file /page_tables/current_user (pid: 8563 comm: syz.1.537) [ 273.615586][ T8575] FAULT_INJECTION: forcing a failure. [ 273.615586][ T8575] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 273.637930][ T8575] CPU: 0 UID: 0 PID: 8575 Comm: syz.4.539 Not tainted 6.14.0-rc3-syzkaller #0 [ 273.637969][ T8575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 273.637987][ T8575] Call Trace: [ 273.637995][ T8575] [ 273.638007][ T8575] dump_stack_lvl+0x16c/0x1f0 [ 273.638049][ T8575] should_fail_ex+0x50a/0x650 [ 273.638102][ T8575] _copy_from_iter+0x2a1/0x1560 [ 273.638135][ T8575] ? trace_lock_acquire+0x14e/0x1f0 [ 273.638175][ T8575] ? __pfx__copy_from_iter+0x10/0x10 [ 273.638229][ T8575] ? __virt_addr_valid+0x1a4/0x590 [ 273.638267][ T8575] ? __virt_addr_valid+0x5e/0x590 [ 273.638299][ T8575] ? __phys_addr_symbol+0x30/0x80 [ 273.638330][ T8575] ? __check_object_size+0x488/0x710 [ 273.638367][ T8575] file_tty_write.constprop.0+0x48d/0x9a0 [ 273.638420][ T8575] redirected_tty_write+0xcc/0x140 [ 273.638460][ T8575] vfs_write+0x5ae/0x1150 [ 273.638506][ T8575] ? __pfx_redirected_tty_write+0x10/0x10 [ 273.638550][ T8575] ? __pfx_vfs_write+0x10/0x10 [ 273.638597][ T8575] ? __fget_files+0x40/0x3a0 [ 273.638665][ T8575] ksys_write+0x12b/0x250 [ 273.638709][ T8575] ? __pfx_ksys_write+0x10/0x10 [ 273.638765][ T8575] do_syscall_64+0xcd/0x250 [ 273.638808][ T8575] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 273.638853][ T8575] RIP: 0033:0x7efdf558cde9 [ 273.638877][ T8575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 273.638907][ T8575] RSP: 002b:00007efdf33f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 273.638940][ T8575] RAX: ffffffffffffffda RBX: 00007efdf57a5fa0 RCX: 00007efdf558cde9 [ 273.638961][ T8575] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 273.638979][ T8575] RBP: 00007efdf33f6090 R08: 0000000000000000 R09: 0000000000000000 [ 273.638998][ T8575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 273.639017][ T8575] R13: 0000000000000000 R14: 00007efdf57a5fa0 R15: 00007ffc0bb16138 [ 273.639058][ T8575] [ 273.876092][ T8572] kernel write not supported for file /page_tables/current_user (pid: 8572 comm: syz.1.538) [ 274.362316][ T8582] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 274.401392][ T8582] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 274.451288][ T8569] Process accounting paused [ 274.491254][ T8580] kernel write not supported for file /page_tables/current_user (pid: 8580 comm: syz.1.540) [ 274.835134][ T8590] netlink: 36 bytes leftover after parsing attributes in process `syz.1.544'. [ 274.919460][ T8593] netlink: 8 bytes leftover after parsing attributes in process `syz.1.544'. [ 275.184341][ T8593] kernel write not supported for file /page_tables/current_user (pid: 8593 comm: syz.1.544) [ 275.305792][ T8597] FAULT_INJECTION: forcing a failure. [ 275.305792][ T8597] name failslab, interval 1, probability 0, space 0, times 0 [ 275.364181][ T8597] CPU: 0 UID: 0 PID: 8597 Comm: syz.4.546 Not tainted 6.14.0-rc3-syzkaller #0 [ 275.364219][ T8597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 275.364237][ T8597] Call Trace: [ 275.364246][ T8597] [ 275.364258][ T8597] dump_stack_lvl+0x16c/0x1f0 [ 275.364300][ T8597] should_fail_ex+0x50a/0x650 [ 275.364349][ T8597] ? fs_reclaim_acquire+0xae/0x150 [ 275.364390][ T8597] ? copy_splice_read+0x1a8/0xb80 [ 275.364428][ T8597] should_failslab+0xc2/0x120 [ 275.364457][ T8597] __kmalloc_noprof+0xcb/0x510 [ 275.364513][ T8597] copy_splice_read+0x1a8/0xb80 [ 275.364555][ T8597] ? look_up_lock_class+0x59/0x150 [ 275.364595][ T8597] ? __pfx_copy_splice_read+0x10/0x10 [ 275.364641][ T8597] ? __pfx_register_lock_class+0x10/0x10 [ 275.364700][ T8597] ? __pfx_copy_splice_read+0x10/0x10 [ 275.364739][ T8597] do_splice_read+0x282/0x370 [ 275.364783][ T8597] splice_direct_to_actor+0x2a4/0xa40 [ 275.364828][ T8597] ? __pfx_direct_splice_actor+0x10/0x10 [ 275.364878][ T8597] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 275.364924][ T8597] ? __fget_files+0x1fc/0x3a0 [ 275.364974][ T8597] do_splice_direct+0x178/0x250 [ 275.365015][ T8597] ? __pfx_do_splice_direct+0x10/0x10 [ 275.365057][ T8597] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 275.365119][ T8597] ? rw_verify_area+0xcf/0x680 [ 275.365162][ T8597] do_sendfile+0xafb/0xe40 [ 275.365210][ T8597] ? __pfx_do_sendfile+0x10/0x10 [ 275.365252][ T8597] ? __fget_files+0x206/0x3a0 [ 275.365307][ T8597] __x64_sys_sendfile64+0x1da/0x220 [ 275.365336][ T8597] ? ksys_write+0x1ba/0x250 [ 275.365379][ T8597] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 275.365443][ T8597] do_syscall_64+0xcd/0x250 [ 275.365484][ T8597] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.365528][ T8597] RIP: 0033:0x7efdf558cde9 [ 275.365551][ T8597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 275.365580][ T8597] RSP: 002b:00007efdf33f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 275.365609][ T8597] RAX: ffffffffffffffda RBX: 00007efdf57a5fa0 RCX: 00007efdf558cde9 [ 275.365629][ T8597] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003 [ 275.365647][ T8597] RBP: 00007efdf33f6090 R08: 0000000000000000 R09: 0000000000000000 [ 275.365666][ T8597] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 275.365684][ T8597] R13: 0000000000000000 R14: 00007efdf57a5fa0 R15: 00007ffc0bb16138 [ 275.365723][ T8597] [ 275.751291][ T8454] kernel write not supported for file /page_tables/current_user (pid: 8454 comm: syz.1.510) [ 276.146637][ T8604] kernel write not supported for file /page_tables/current_user (pid: 8604 comm: syz.1.547) [ 277.198639][ T8600] Process accounting resumed [ 277.203405][ T8600] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8600 comm: syz.1.547) [ 277.655730][ T8616] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8616 comm: syz.1.552) [ 277.761570][ T8619] netlink: zone id is out of range [ 277.811601][ T8619] netlink: zone id is out of range [ 277.837321][ T8619] netlink: zone id is out of range [ 277.974262][ T8619] netlink: set zone limit has 4 unknown bytes [ 278.281069][ T8623] FAULT_INJECTION: forcing a failure. [ 278.281069][ T8623] name failslab, interval 1, probability 0, space 0, times 0 [ 278.333431][ T8623] CPU: 0 UID: 0 PID: 8623 Comm: syz.1.554 Not tainted 6.14.0-rc3-syzkaller #0 [ 278.333470][ T8623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 278.333487][ T8623] Call Trace: [ 278.333496][ T8623] [ 278.333507][ T8623] dump_stack_lvl+0x16c/0x1f0 [ 278.333550][ T8623] should_fail_ex+0x50a/0x650 [ 278.333597][ T8623] ? fs_reclaim_acquire+0xae/0x150 [ 278.333639][ T8623] ? tomoyo_encode2+0x100/0x3e0 [ 278.333678][ T8623] should_failslab+0xc2/0x120 [ 278.333707][ T8623] __kmalloc_noprof+0xcb/0x510 [ 278.333762][ T8623] tomoyo_encode2+0x100/0x3e0 [ 278.333807][ T8623] tomoyo_encode+0x29/0x50 [ 278.333846][ T8623] tomoyo_realpath_from_path+0x19d/0x720 [ 278.333910][ T8623] tomoyo_check_open_permission+0x2ad/0x3c0 [ 278.333964][ T8623] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 278.334039][ T8623] ? __pfx_hook_file_open+0x10/0x10 [ 278.334076][ T8623] ? lock_acquire+0x2f/0xb0 [ 278.334123][ T8623] tomoyo_file_open+0x6b/0x90 [ 278.334172][ T8623] security_file_open+0x84/0x1e0 [ 278.334213][ T8623] do_dentry_open+0x57c/0x1c40 [ 278.334263][ T8623] ? inode_permission+0xdd/0x5f0 [ 278.334300][ T8623] vfs_open+0x82/0x3f0 [ 278.334328][ T8623] ? may_open+0x1f2/0x400 [ 278.334377][ T8623] path_openat+0x1e88/0x2d80 [ 278.334435][ T8623] ? __pfx_path_openat+0x10/0x10 [ 278.334499][ T8623] ? __pfx___lock_acquire+0x10/0x10 [ 278.334540][ T8623] ? lock_acquire.part.0+0x11b/0x380 [ 278.334583][ T8623] ? find_held_lock+0x2d/0x110 [ 278.334622][ T8623] do_filp_open+0x20c/0x470 [ 278.334667][ T8623] ? __pfx_do_filp_open+0x10/0x10 [ 278.334710][ T8623] ? find_held_lock+0x2d/0x110 [ 278.334771][ T8623] ? alloc_fd+0x41f/0x760 [ 278.334827][ T8623] do_sys_openat2+0x17a/0x1e0 [ 278.334859][ T8623] ? __pfx_do_sys_openat2+0x10/0x10 [ 278.334904][ T8623] ? __fget_files+0x206/0x3a0 [ 278.334955][ T8623] __x64_sys_openat+0x175/0x210 [ 278.334990][ T8623] ? __pfx___x64_sys_openat+0x10/0x10 [ 278.335022][ T8623] ? ksys_write+0x1ba/0x250 [ 278.335080][ T8623] do_syscall_64+0xcd/0x250 [ 278.335121][ T8623] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 278.335174][ T8623] RIP: 0033:0x7fd40c78b750 [ 278.335196][ T8623] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 278.335223][ T8623] RSP: 002b:00007fd40d51bf10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 278.335252][ T8623] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fd40c78b750 [ 278.335271][ T8623] RDX: 0000000000000000 RSI: 00007fd40d51bfa0 RDI: 00000000ffffff9c [ 278.335289][ T8623] RBP: 00007fd40d51bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 278.335307][ T8623] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 278.335325][ T8623] R13: 0000000000000000 R14: 00007fd40c9a5fa0 R15: 00007ffe4e978728 [ 278.335361][ T8623] [ 278.754314][ T8623] ERROR: Out of memory at tomoyo_realpath_from_path. [ 279.145468][ T8623] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8623 comm: syz.1.554) [ 279.795979][ T8636] HfR: entered promiscuous mode [ 279.856037][ T8634] openvswitch: HfR: Dropping previously announced user features [ 279.963745][ T8639] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8639 comm: syz.1.557) [ 280.733698][ T8650] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8650 comm: syz.1.561) [ 281.169899][ T8662] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8662 comm: syz.1.564) [ 282.610185][ T8666] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8666 comm: syz.1.566) [ 283.300739][ T29] audit: type=1800 audit(6034831004.085:5): pid=8688 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.569" name="dbroot" dev="configfs" ino=20670 res=0 errno=0 [ 283.320695][ C1] vkms_vblank_simulate: vblank timer overrun [ 283.377499][ T8688] netlink: 4 bytes leftover after parsing attributes in process `syz.4.569'. [ 283.692855][ T8690] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8690 comm: syz.1.570) [ 283.968291][ T8696] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8696 comm: syz.1.573) [ 284.359798][ T8708] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8708 comm: syz.1.583) [ 284.780110][ T8712] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8712 comm: syz.1.576) [ 285.673020][ T8726] netlink: 330 bytes leftover after parsing attributes in process `syz.4.579'. [ 285.850210][ T8717] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8717 comm: syz.1.578) [ 286.672152][ T8739] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8739 comm: syz.1.586) [ 287.028003][ T8747] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8747 comm: syz.1.588) [ 287.303726][ T8756] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8756 comm: syz.1.591) [ 287.405462][ T8746] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000 [ 287.810886][ T8767] netlink: 28 bytes leftover after parsing attributes in process `syz.0.594'. [ 287.820968][ T8769] FAULT_INJECTION: forcing a failure. [ 287.820968][ T8769] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 287.935882][ T8759] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8759 comm: syz.1.592) [ 287.969983][ T8769] CPU: 0 UID: 0 PID: 8769 Comm: syz.2.593 Not tainted 6.14.0-rc3-syzkaller #0 [ 287.970018][ T8769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 287.970035][ T8769] Call Trace: [ 287.970043][ T8769] [ 287.970053][ T8769] dump_stack_lvl+0x16c/0x1f0 [ 287.970103][ T8769] should_fail_ex+0x50a/0x650 [ 287.970153][ T8769] _copy_to_iter+0x2a1/0x1560 [ 287.970184][ T8769] ? trace_lock_acquire+0x14e/0x1f0 [ 287.970217][ T8769] ? __pfx_lock_release+0x10/0x10 [ 287.970259][ T8769] ? __pfx__copy_to_iter+0x10/0x10 [ 287.970286][ T8769] ? __virt_addr_valid+0x1a4/0x590 [ 287.970321][ T8769] ? __virt_addr_valid+0x5e/0x590 [ 287.970350][ T8769] ? __phys_addr_symbol+0x30/0x80 [ 287.970378][ T8769] ? __check_object_size+0x488/0x710 [ 287.970412][ T8769] seq_read_iter+0xd00/0x12b0 [ 287.970464][ T8769] kernfs_fop_read_iter+0x414/0x580 [ 287.970501][ T8769] ? rw_verify_area+0xcf/0x680 [ 287.970539][ T8769] vfs_read+0x886/0xbf0 [ 287.970584][ T8769] ? __pfx_vfs_read+0x10/0x10 [ 287.970647][ T8769] ksys_read+0x12b/0x250 [ 287.970684][ T8769] ? __pfx_ksys_read+0x10/0x10 [ 287.970733][ T8769] do_syscall_64+0xcd/0x250 [ 287.970771][ T8769] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.970811][ T8769] RIP: 0033:0x7fa44998cde9 [ 287.970834][ T8769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 287.970860][ T8769] RSP: 002b:00007fa44a754038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 287.970886][ T8769] RAX: ffffffffffffffda RBX: 00007fa449ba5fa0 RCX: 00007fa44998cde9 [ 287.970905][ T8769] RDX: 00000000000000b1 RSI: 0000400000001100 RDI: 0000000000000003 [ 287.970922][ T8769] RBP: 00007fa44a754090 R08: 0000000000000000 R09: 0000000000000000 [ 287.970939][ T8769] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 287.970955][ T8769] R13: 0000000000000000 R14: 00007fa449ba5fa0 R15: 00007ffc085289d8 [ 287.970991][ T8769] [ 288.448477][ T8772] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8772 comm: syz.1.595) [ 288.728159][ T8767] hsr_slave_1 (unregistering): left promiscuous mode [ 289.004737][ T8776] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8776 comm: syz.1.597) [ 289.472372][ T8793] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 289.488101][ T8793] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 290.092443][ T8793] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8793 comm: syz.1.600) [ 290.322788][ T8813] FAULT_INJECTION: forcing a failure. [ 290.322788][ T8813] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 290.427157][ T8813] CPU: 0 UID: 0 PID: 8813 Comm: syz.4.604 Not tainted 6.14.0-rc3-syzkaller #0 [ 290.427199][ T8813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 290.427217][ T8813] Call Trace: [ 290.427225][ T8813] [ 290.427237][ T8813] dump_stack_lvl+0x16c/0x1f0 [ 290.427279][ T8813] should_fail_ex+0x50a/0x650 [ 290.427340][ T8813] _copy_from_user+0x2e/0xd0 [ 290.427373][ T8813] copy_msghdr_from_user+0x99/0x160 [ 290.427417][ T8813] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 290.427460][ T8813] ? __lock_acquire+0xcc5/0x3c40 [ 290.427520][ T8813] ___sys_sendmsg+0xff/0x1e0 [ 290.427566][ T8813] ? __pfx____sys_sendmsg+0x10/0x10 [ 290.427628][ T8813] ? trace_lock_acquire+0x14e/0x1f0 [ 290.427690][ T8813] __sys_sendmmsg+0x201/0x420 [ 290.427739][ T8813] ? __pfx___sys_sendmmsg+0x10/0x10 [ 290.427797][ T8813] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 290.427851][ T8813] ? fput+0x67/0x440 [ 290.427881][ T8813] ? ksys_write+0x1ba/0x250 [ 290.427923][ T8813] ? __pfx_ksys_write+0x10/0x10 [ 290.427972][ T8813] __x64_sys_sendmmsg+0x9c/0x100 [ 290.428016][ T8813] ? lockdep_hardirqs_on+0x7c/0x110 [ 290.428052][ T8813] do_syscall_64+0xcd/0x250 [ 290.428093][ T8813] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 290.428137][ T8813] RIP: 0033:0x7efdf558cde9 [ 290.428161][ T8813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 290.428189][ T8813] RSP: 002b:00007efdf33f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 290.428218][ T8813] RAX: ffffffffffffffda RBX: 00007efdf57a5fa0 RCX: 00007efdf558cde9 [ 290.428239][ T8813] RDX: 0000000000000005 RSI: 0000400000000140 RDI: 0000000000000003 [ 290.428257][ T8813] RBP: 00007efdf33f6090 R08: 0000000000000000 R09: 0000000000000000 [ 290.428276][ T8813] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000001 [ 290.428300][ T8813] R13: 0000000000000000 R14: 00007efdf57a5fa0 R15: 00007ffc0bb16138 [ 290.428339][ T8813] [ 290.923390][ T8823] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8823 comm: syz.1.606) [ 291.014004][ T8810] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8810 comm: syz.1.606) [ 291.231822][ T8833] ovs_ÿÃ: entered promiscuous mode [ 291.315614][ T8831] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8831 comm: syz.1.610) [ 294.090614][ T8848] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8848 comm: syz.1.613) [ 295.232371][ T8864] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8864 comm: syz.1.617) [ 295.595064][ T8886] FAULT_INJECTION: forcing a failure. [ 295.595064][ T8886] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 295.600289][ T8883] openvswitch: netlink: push_nsh: missing base or metadata attributes [ 295.674343][ T8886] CPU: 1 UID: 0 PID: 8886 Comm: syz.1.624 Not tainted 6.14.0-rc3-syzkaller #0 [ 295.674379][ T8886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 295.674394][ T8886] Call Trace: [ 295.674401][ T8886] [ 295.674411][ T8886] dump_stack_lvl+0x16c/0x1f0 [ 295.674447][ T8886] should_fail_ex+0x50a/0x650 [ 295.674490][ T8886] _copy_from_user+0x2e/0xd0 [ 295.674516][ T8886] copy_from_sockptr_offset+0x164/0x1a0 [ 295.674550][ T8886] ? __might_fault+0xe3/0x190 [ 295.674575][ T8886] ? __pfx_copy_from_sockptr_offset+0x10/0x10 [ 295.674617][ T8886] do_ipt_set_ctl+0x5ed/0xbe0 [ 295.674652][ T8886] ? __mutex_lock+0x1cc/0xb10 [ 295.674692][ T8886] ? __pfx_do_ipt_set_ctl+0x10/0x10 [ 295.674726][ T8886] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 295.674757][ T8886] ? sockopt_release_sock+0x52/0x60 [ 295.674796][ T8886] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 295.674840][ T8886] ? nf_sockopt_find.constprop.0+0x221/0x290 [ 295.674876][ T8886] nf_setsockopt+0x8a/0xf0 [ 295.674908][ T8886] ip_setsockopt+0xcb/0xf0 [ 295.674949][ T8886] ipv6_setsockopt+0x155/0x170 [ 295.674981][ T8886] sctp_setsockopt+0x16a/0xb810 [ 295.675023][ T8886] ? __pfx_sctp_setsockopt+0x10/0x10 [ 295.675058][ T8886] ? __pfx_aa_sk_perm+0x10/0x10 [ 295.675090][ T8886] ? sock_common_setsockopt+0x2e/0xf0 [ 295.675133][ T8886] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 295.675175][ T8886] do_sock_setsockopt+0x222/0x480 [ 295.675215][ T8886] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 295.675257][ T8886] ? lock_acquire+0x2f/0xb0 [ 295.675305][ T8886] __sys_setsockopt+0x1a0/0x230 [ 295.675343][ T8886] __x64_sys_setsockopt+0xbd/0x160 [ 295.675375][ T8886] ? do_syscall_64+0x91/0x250 [ 295.675404][ T8886] ? lockdep_hardirqs_on+0x7c/0x110 [ 295.675432][ T8886] do_syscall_64+0xcd/0x250 [ 295.675464][ T8886] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 295.675499][ T8886] RIP: 0033:0x7fd40c78cde9 [ 295.675518][ T8886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 295.675541][ T8886] RSP: 002b:00007fd40d51c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 295.675564][ T8886] RAX: ffffffffffffffda RBX: 00007fd40c9a5fa0 RCX: 00007fd40c78cde9 [ 295.675580][ T8886] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000003 [ 295.675594][ T8886] RBP: 00007fd40d51c090 R08: 0000000000010000 R09: 0000000000000000 [ 295.675609][ T8886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 295.675623][ T8886] R13: 0000000000000000 R14: 00007fd40c9a5fa0 R15: 00007ffe4e978728 [ 295.675652][ T8886] [ 296.045033][ T8886] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8886 comm: syz.1.624) [ 297.076184][ T8896] FAULT_INJECTION: forcing a failure. [ 297.076184][ T8896] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 297.146700][ T8896] CPU: 0 UID: 0 PID: 8896 Comm: syz.0.627 Not tainted 6.14.0-rc3-syzkaller #0 [ 297.146746][ T8896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 297.146764][ T8896] Call Trace: [ 297.146773][ T8896] [ 297.146785][ T8896] dump_stack_lvl+0x16c/0x1f0 [ 297.146830][ T8896] should_fail_ex+0x50a/0x650 [ 297.146891][ T8896] ? __pfx___might_resched+0x10/0x10 [ 297.146945][ T8896] should_fail_alloc_page+0xe7/0x130 [ 297.146995][ T8896] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 297.147046][ T8896] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 297.147101][ T8896] ? __pfx_mark_lock+0x10/0x10 [ 297.147142][ T8896] ? mark_lock+0xb5/0xc60 [ 297.147181][ T8896] ? find_held_lock+0x2d/0x110 [ 297.147225][ T8896] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 297.147304][ T8896] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 297.147357][ T8896] ? policy_nodemask+0xea/0x4e0 [ 297.147412][ T8896] alloc_pages_mpol+0x1fc/0x540 [ 297.147466][ T8896] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 297.147520][ T8896] ? find_held_lock+0x2d/0x110 [ 297.147562][ T8896] folio_alloc_mpol_noprof+0x36/0x2f0 [ 297.147609][ T8896] shmem_alloc_folio+0x135/0x160 [ 297.147663][ T8896] shmem_alloc_and_add_folio+0x48e/0xc10 [ 297.147707][ T8896] ? shmem_huge_global_enabled+0x72/0x6b0 [ 297.147740][ T8896] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 297.147782][ T8896] ? shmem_allowable_huge_orders+0xd0/0x410 [ 297.147829][ T8896] shmem_get_folio_gfp+0x689/0x1530 [ 297.147876][ T8896] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 297.147914][ T8896] ? __pfx_mark_lock+0x10/0x10 [ 297.147966][ T8896] shmem_fault+0x200/0xae0 [ 297.148006][ T8896] ? __pfx_shmem_fault+0x10/0x10 [ 297.148041][ T8896] ? __pfx_lock_release+0x10/0x10 [ 297.148085][ T8896] ? __pfx_filemap_map_pages+0x10/0x10 [ 297.148121][ T8896] ? mark_held_locks+0x9f/0xe0 [ 297.148166][ T8896] ? pte_alloc_one+0x2b8/0x390 [ 297.148226][ T8896] ? __pfx_filemap_map_pages+0x10/0x10 [ 297.148262][ T8896] __do_fault+0x10a/0x490 [ 297.148295][ T8896] ? __pfx_filemap_map_pages+0x10/0x10 [ 297.148329][ T8896] do_pte_missing+0x1a8/0x3e10 [ 297.148373][ T8896] ? do_raw_spin_unlock+0x172/0x230 [ 297.148403][ T8896] ? __pmd_alloc+0x3c2/0x870 [ 297.148446][ T8896] __handle_mm_fault+0x1166/0x2c60 [ 297.148502][ T8896] ? __pfx___handle_mm_fault+0x10/0x10 [ 297.148567][ T8896] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 297.148665][ T8896] ? find_vma+0xc0/0x140 [ 297.148701][ T8896] ? __pfx_find_vma+0x10/0x10 [ 297.148744][ T8896] handle_mm_fault+0x3fa/0xaa0 [ 297.148799][ T8896] do_user_addr_fault+0x7a3/0x13f0 [ 297.148851][ T8896] exc_page_fault+0x5c/0xc0 [ 297.148906][ T8896] asm_exc_page_fault+0x26/0x30 [ 297.148950][ T8896] RIP: 0010:__put_user_4+0x11/0x20 [ 297.148987][ T8896] Code: 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 [ 297.149017][ T8896] RSP: 0018:ffffc9000545fd48 EFLAGS: 00050206 [ 297.149043][ T8896] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000bb1 [ 297.149061][ T8896] RDX: ffff88802ee29e00 RSI: ffffffff86256702 RDI: ffffffff8bd34340 [ 297.149081][ T8896] RBP: 0000000000002289 R08: 0000000000000000 R09: fffffbfff20c4e02 [ 297.149101][ T8896] R10: ffffffff90627017 R11: 0000000000000000 R12: ffff88803079bc00 [ 297.149121][ T8896] R13: ffff88803079bc70 R14: ffff8881447bb400 R15: ffff88807d1cc000 [ 297.149155][ T8896] ? sg_ioctl+0x262/0x2760 [ 297.149207][ T8896] sg_ioctl+0x26d/0x2760 [ 297.149265][ T8896] ? __pfx_sg_ioctl+0x10/0x10 [ 297.149308][ T8896] ? __pfx_lock_release+0x10/0x10 [ 297.149352][ T8896] ? trace_lock_acquire+0x14e/0x1f0 [ 297.149403][ T8896] ? __fget_files+0x206/0x3a0 [ 297.149454][ T8896] ? __pfx_sg_ioctl+0x10/0x10 [ 297.149501][ T8896] __x64_sys_ioctl+0x190/0x200 [ 297.149543][ T8896] do_syscall_64+0xcd/0x250 [ 297.149591][ T8896] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 297.149635][ T8896] RIP: 0033:0x7f2bcf78cde9 [ 297.149659][ T8896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 297.149688][ T8896] RSP: 002b:00007f2bd0619038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 297.149716][ T8896] RAX: ffffffffffffffda RBX: 00007f2bcf9a5fa0 RCX: 00007f2bcf78cde9 [ 297.149737][ T8896] RDX: 0000000000000bb1 RSI: 0000000000002289 RDI: 0000000000000003 [ 297.149756][ T8896] RBP: 00007f2bd0619090 R08: 0000000000000000 R09: 0000000000000000 [ 297.149775][ T8896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 297.149794][ T8896] R13: 0000000000000000 R14: 00007f2bcf9a5fa0 R15: 00007ffcd3e6d868 [ 297.149834][ T8896] [ 297.778125][ T8894] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8894 comm: syz.1.625) [ 298.208446][ T8900] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8900 comm: syz.1.629) [ 299.532776][ T8907] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8907 comm: syz.1.630) [ 300.026808][ T8926] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8926 comm: syz.1.633) [ 300.419675][ T8928] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8928 comm: syz.1.634) [ 301.466512][ T8933] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8933 comm: syz.1.635) [ 301.600086][ T8960] FAULT_INJECTION: forcing a failure. [ 301.600086][ T8960] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 301.600150][ T8960] CPU: 1 UID: 0 PID: 8960 Comm: syz.1.641 Not tainted 6.14.0-rc3-syzkaller #0 [ 301.600188][ T8960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 301.600205][ T8960] Call Trace: [ 301.600214][ T8960] [ 301.600225][ T8960] dump_stack_lvl+0x16c/0x1f0 [ 301.600267][ T8960] should_fail_ex+0x50a/0x650 [ 301.600329][ T8960] _copy_to_user+0x32/0xd0 [ 301.600365][ T8960] simple_read_from_buffer+0xd0/0x160 [ 301.600408][ T8960] proc_fail_nth_read+0x198/0x270 [ 301.600446][ T8960] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 301.600487][ T8960] ? rw_verify_area+0xcf/0x680 [ 301.600525][ T8960] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 301.600563][ T8960] vfs_read+0x1df/0xbf0 [ 301.600604][ T8960] ? __fget_files+0x1fc/0x3a0 [ 301.600650][ T8960] ? __pfx___mutex_lock+0x10/0x10 [ 301.600688][ T8960] ? __pfx_vfs_read+0x10/0x10 [ 301.600740][ T8960] ? __fget_files+0x206/0x3a0 [ 301.600797][ T8960] ksys_read+0x12b/0x250 [ 301.600838][ T8960] ? __pfx_ksys_read+0x10/0x10 [ 301.600893][ T8960] do_syscall_64+0xcd/0x250 [ 301.600935][ T8960] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 301.600979][ T8960] RIP: 0033:0x7fd40c78b7fc [ 301.601003][ T8960] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 301.601032][ T8960] RSP: 002b:00007fd40d51c030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 301.601060][ T8960] RAX: ffffffffffffffda RBX: 00007fd40c9a5fa0 RCX: 00007fd40c78b7fc [ 301.601081][ T8960] RDX: 000000000000000f RSI: 00007fd40d51c0a0 RDI: 0000000000000004 [ 301.601100][ T8960] RBP: 00007fd40d51c090 R08: 0000000000000000 R09: 0000000000000000 [ 301.601117][ T8960] R10: 0000400000000180 R11: 0000000000000246 R12: 0000000000000001 [ 301.601136][ T8960] R13: 0000000000000000 R14: 00007fd40c9a5fa0 R15: 00007ffe4e978728 [ 301.601176][ T8960] [ 301.651097][ T8959] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8959 comm: syz.1.641) [ 302.841035][ T8977] QAT: Device 2 not found [ 303.162008][ T8965] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8965 comm: syz.1.643) [ 303.181089][ T8982] FAULT_INJECTION: forcing a failure. [ 303.181089][ T8982] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 303.230355][ T8982] CPU: 0 UID: 0 PID: 8982 Comm: syz.4.646 Not tainted 6.14.0-rc3-syzkaller #0 [ 303.230393][ T8982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 303.230411][ T8982] Call Trace: [ 303.230420][ T8982] [ 303.230431][ T8982] dump_stack_lvl+0x16c/0x1f0 [ 303.230479][ T8982] should_fail_ex+0x50a/0x650 [ 303.230534][ T8982] _copy_to_user+0x32/0xd0 [ 303.230569][ T8982] copy_ns_info_to_user+0x137/0x1e0 [ 303.230617][ T8982] ns_ioctl+0xa9a/0xd00 [ 303.230660][ T8982] ? __pfx_ns_ioctl+0x10/0x10 [ 303.230704][ T8982] ? __fget_files+0x206/0x3a0 [ 303.230755][ T8982] ? __pfx_ns_ioctl+0x10/0x10 [ 303.230799][ T8982] __x64_sys_ioctl+0x190/0x200 [ 303.230840][ T8982] do_syscall_64+0xcd/0x250 [ 303.230882][ T8982] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 303.230927][ T8982] RIP: 0033:0x7efdf558cde9 [ 303.230951][ T8982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 303.230980][ T8982] RSP: 002b:00007efdf33f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 303.231008][ T8982] RAX: ffffffffffffffda RBX: 00007efdf57a5fa0 RCX: 00007efdf558cde9 [ 303.231029][ T8982] RDX: 0000000000000005 RSI: 000000004020940c RDI: 0000000000000003 [ 303.231048][ T8982] RBP: 00007efdf33f6090 R08: 0000000000000000 R09: 0000000000000000 [ 303.231067][ T8982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 303.231085][ T8982] R13: 0000000000000000 R14: 00007efdf57a5fa0 R15: 00007ffc0bb16138 [ 303.231123][ T8982] [ 303.714983][ T8987] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8987 comm: syz.1.648) [ 303.942511][ T8995] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 8995 comm: syz.1.653) [ 304.313645][ T8996] syz.2.650: vmalloc error: size 1798144, failed to allocate pages, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 304.481011][ T8996] CPU: 1 UID: 0 PID: 8996 Comm: syz.2.650 Not tainted 6.14.0-rc3-syzkaller #0 [ 304.481049][ T8996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 304.481076][ T8996] Call Trace: [ 304.481085][ T8996] [ 304.481097][ T8996] dump_stack_lvl+0x16c/0x1f0 [ 304.481138][ T8996] warn_alloc+0x24d/0x3a0 [ 304.481182][ T8996] ? __pfx_warn_alloc+0x10/0x10 [ 304.481224][ T8996] ? alloc_pages_mpol+0x25b/0x540 [ 304.481268][ T8996] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 304.481330][ T8996] __vmalloc_node_range_noprof+0x12bd/0x1530 [ 304.481387][ T8996] ? __snd_dma_alloc_pages+0x50/0x90 [ 304.481438][ T8996] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 304.481487][ T8996] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 304.481536][ T8996] ? __snd_dma_alloc_pages+0x50/0x90 [ 304.481581][ T8996] vmalloc_noprof+0x6b/0x90 [ 304.481625][ T8996] ? __snd_dma_alloc_pages+0x50/0x90 [ 304.481666][ T8996] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 304.481711][ T8996] __snd_dma_alloc_pages+0x50/0x90 [ 304.481750][ T8996] snd_dma_alloc_dir_pages+0x151/0x240 [ 304.481793][ T8996] do_alloc_pages+0x115/0x270 [ 304.481836][ T8996] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 304.481882][ T8996] snd_pcm_hw_params+0x15e6/0x1b20 [ 304.481931][ T8996] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 304.481972][ T8996] ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0 [ 304.482012][ T8996] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 304.482053][ T8996] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 304.482106][ T8996] snd_pcm_oss_change_params_locked+0x1406/0x3a60 [ 304.482158][ T8996] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 304.482194][ T8996] ? snd_pcm_oss_sync+0x306/0x7f0 [ 304.482251][ T8996] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 304.482287][ T8996] snd_pcm_oss_sync+0x326/0x7f0 [ 304.482322][ T8996] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 304.482353][ T8996] snd_pcm_oss_release+0x28b/0x310 [ 304.482385][ T8996] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 304.482413][ T8996] __fput+0x3ff/0xb70 [ 304.482449][ T8996] task_work_run+0x14e/0x250 [ 304.482488][ T8996] ? __pfx_task_work_run+0x10/0x10 [ 304.482527][ T8996] ? __pfx___do_sys_close_range+0x10/0x10 [ 304.482578][ T8996] syscall_exit_to_user_mode+0x27b/0x2a0 [ 304.482614][ T8996] do_syscall_64+0xda/0x250 [ 304.482648][ T8996] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 304.482689][ T8996] RIP: 0033:0x7fa44998cde9 [ 304.482711][ T8996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 304.482738][ T8996] RSP: 002b:00007fa44a754038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 304.482764][ T8996] RAX: 0000000000000000 RBX: 00007fa449ba5fa0 RCX: 00007fa44998cde9 [ 304.482782][ T8996] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 304.482799][ T8996] RBP: 00007fa449a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 304.482816][ T8996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 304.482834][ T8996] R13: 0000000000000000 R14: 00007fa449ba5fa0 R15: 00007ffc085289d8 [ 304.482877][ T8996] [ 304.482889][ T8996] Mem-Info: [ 304.747055][ T9014] Process accounting resumed [ 304.767085][ T8996] active_anon:18893 inactive_anon:0 isolated_anon:0 [ 304.767085][ T8996] active_file:19107 inactive_file:39332 isolated_file:0 [ 304.767085][ T8996] unevictable:2193 dirty:113 writeback:25 [ 304.767085][ T8996] slab_reclaimable:10610 slab_unreclaimable:95855 [ 304.767085][ T8996] mapped:29218 shmem:12458 pagetables:932 [ 304.767085][ T8996] sec_pagetables:0 bounce:0 [ 304.767085][ T8996] kernel_misc_reclaimable:0 [ 304.767085][ T8996] free:1321260 free_pcp:1405 free_cma:0 [ 304.844314][ T8996] Node 0 active_anon:75972kB inactive_anon:0kB active_file:76428kB inactive_file:157256kB unevictable:7236kB isolated(anon):0kB isolated(file):0kB mapped:117272kB dirty:452kB writeback:100kB shmem:48596kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11180kB pagetables:3728kB sec_pagetables:0kB all_unreclaimable? no [ 304.877557][ T8996] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 304.909727][ T8996] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 304.909825][ T8996] lowmem_reserve[]: 0 2487 2487 0 0 [ 304.909900][ T8996] Node 0 DMA32 free:1360020kB boost:0kB min:34152kB low:42688kB high:51224kB reserved_highatomic:0KB active_anon:76564kB inactive_anon:0kB active_file:76428kB inactive_file:157164kB unevictable:7636kB writepending:452kB present:3129332kB managed:2547544kB mlocked:6100kB bounce:0kB free_pcp:5332kB local_pcp:424kB free_cma:0kB [ 304.909996][ T8996] lowmem_reserve[]: 0 0 0 0 0 [ 304.910087][ T8996] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:92kB unevictable:0kB writepending:0kB present:1048580kB managed:108kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB [ 304.910173][ T8996] lowmem_reserve[]: 0 0 0 0 0 [ 304.910242][ T8996] Node 1 Normal free:3908460kB boost:0kB min:55748kB low:69684kB high:83620kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 304.910328][ T8996] lowmem_reserve[]: 0 0 0 0 0 [ 304.910394][ T8996] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 304.910634][ T8996] Node 0 DMA32: 12*4kB (UE) 4*8kB (E) 25*16kB (UE) 799*32kB (UME) 813*64kB (UME) 386*128kB (UME) 254*256kB (UME) 142*512kB (UM) 69*1024kB (UM) 14*2048kB (UME) 243*4096kB (UM) = 1359872kB [ 304.910940][ T8996] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 304.911135][ T8996] Node 1 Normal: 217*4kB (UE) 65*8kB (UME) 32*16kB (UME) 212*32kB (UME) 88*64kB (UME) 21*128kB (UME) 15*256kB (UME) 7*512kB (UME) 3*1024kB (UM) 3*2048kB (UE) 946*4096kB (M) = 3908460kB [ 304.911450][ T8996] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 304.911478][ T8996] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 304.911504][ T8996] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 304.911531][ T8996] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 304.911558][ T8996] 71522 total pagecache pages [ 304.911572][ T8996] 0 pages in swap cache [ 304.911584][ T8996] Free swap = 124668kB [ 304.911597][ T8996] Total swap = 124996kB [ 304.911610][ T8996] 2097051 pages RAM [ 304.911622][ T8996] 0 pages HighMem/MovableOnly [ 304.911634][ T8996] 428507 pages reserved [ 304.911647][ T8996] 0 pages cma reserved [ 304.921462][ T9014] kernel write not supported for file /page_tables/current_user (pid: 9014 comm: syz.0.656) [ 305.491487][ T9005] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9005 comm: syz.1.655) [ 305.927792][ T9021] kernel write not supported for file /page_tables/current_user (pid: 9021 comm: syz.0.657) [ 306.086001][ T9029] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9029 comm: syz.1.659) [ 306.775433][ T9031] tty tty1: ldisc open failed (-12), clearing slot 0 [ 306.985086][ T9031] kernel write not supported for file /page_tables/current_user (pid: 9031 comm: syz.0.660) [ 307.330794][ T9051] kernel write not supported for file /page_tables/current_user (pid: 9051 comm: syz.0.664) [ 307.342656][ T9048] Process accounting paused [ 307.364428][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 307.388391][ T9053] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size [ 307.577167][ T9059] FAULT_INJECTION: forcing a failure. [ 307.577167][ T9059] name failslab, interval 1, probability 0, space 0, times 0 [ 307.704709][ T9059] CPU: 1 UID: 0 PID: 9059 Comm: syz.1.665 Not tainted 6.14.0-rc3-syzkaller #0 [ 307.704747][ T9059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 307.704764][ T9059] Call Trace: [ 307.704773][ T9059] [ 307.704785][ T9059] dump_stack_lvl+0x16c/0x1f0 [ 307.704828][ T9059] should_fail_ex+0x50a/0x650 [ 307.704884][ T9059] ? fs_reclaim_acquire+0xae/0x150 [ 307.704925][ T9059] should_failslab+0xc2/0x120 [ 307.704955][ T9059] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 307.705004][ T9059] ? __pmd_alloc+0xc3/0x870 [ 307.705051][ T9059] __pmd_alloc+0xc3/0x870 [ 307.705096][ T9059] __handle_mm_fault+0x9fb/0x2c60 [ 307.705155][ T9059] ? __pfx___handle_mm_fault+0x10/0x10 [ 307.705199][ T9059] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 307.705269][ T9059] ? find_vma+0xc0/0x140 [ 307.705306][ T9059] ? __pfx_find_vma+0x10/0x10 [ 307.705348][ T9059] handle_mm_fault+0x3fa/0xaa0 [ 307.705402][ T9059] do_user_addr_fault+0x7a3/0x13f0 [ 307.705456][ T9059] exc_page_fault+0x5c/0xc0 [ 307.705490][ T9059] asm_exc_page_fault+0x26/0x30 [ 307.705532][ T9059] RIP: 0010:rep_movs_alternative+0x4a/0x70 [ 307.705581][ T9059] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1 [ 307.705610][ T9059] RSP: 0018:ffffc9000b59fb60 EFLAGS: 00050206 [ 307.705634][ T9059] RAX: 0000000000000001 RBX: 0000000000000800 RCX: 0000000000000800 [ 307.705652][ T9059] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88806392b000 [ 307.705670][ T9059] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100c7256ff [ 307.705688][ T9059] R10: ffff88806392b7ff R11: 0000000000000000 R12: ffffc9000b59fda0 [ 307.705707][ T9059] R13: 0000000000000800 R14: ffff88806392b000 R15: 00007ffffffff000 [ 307.705748][ T9059] _copy_from_iter+0x385/0x1560 [ 307.705782][ T9059] ? trace_lock_acquire+0x14e/0x1f0 [ 307.705823][ T9059] ? __pfx__copy_from_iter+0x10/0x10 [ 307.705857][ T9059] ? __virt_addr_valid+0x1a4/0x590 [ 307.705895][ T9059] ? __virt_addr_valid+0x5e/0x590 [ 307.705927][ T9059] ? __phys_addr_symbol+0x30/0x80 [ 307.705957][ T9059] ? __check_object_size+0x488/0x710 [ 307.705993][ T9059] file_tty_write.constprop.0+0x48d/0x9a0 [ 307.706044][ T9059] redirected_tty_write+0xcc/0x140 [ 307.706082][ T9059] vfs_write+0x5ae/0x1150 [ 307.706127][ T9059] ? __pfx_redirected_tty_write+0x10/0x10 [ 307.706170][ T9059] ? __pfx_vfs_write+0x10/0x10 [ 307.706215][ T9059] ? __fget_files+0x40/0x3a0 [ 307.706280][ T9059] ksys_write+0x12b/0x250 [ 307.706322][ T9059] ? __pfx_ksys_write+0x10/0x10 [ 307.706376][ T9059] do_syscall_64+0xcd/0x250 [ 307.706416][ T9059] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 307.706459][ T9059] RIP: 0033:0x7fd40c78cde9 [ 307.706482][ T9059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 307.706509][ T9059] RSP: 002b:00007fd40d51c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 307.706536][ T9059] RAX: ffffffffffffffda RBX: 00007fd40c9a5fa0 RCX: 00007fd40c78cde9 [ 307.706556][ T9059] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 307.706573][ T9059] RBP: 00007fd40d51c090 R08: 0000000000000000 R09: 0000000000000000 [ 307.706592][ T9059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 307.706610][ T9059] R13: 0000000000000000 R14: 00007fd40c9a5fa0 R15: 00007ffe4e978728 [ 307.706649][ T9059] [ 308.054055][ T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!! [ 309.215950][ T9062] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 309.241798][ T9062] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 309.254405][ T9062] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 309.283526][ T9062] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 309.386886][ T9062] kernel write not supported for file /page_tables/current_user (pid: 9062 comm: syz.0.666) [ 309.624486][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 309.984967][ T9093] syz.1.676 (9093): /proc/9092/oom_adj is deprecated, please use /proc/9092/oom_score_adj instead. [ 310.541707][ T9084] kernel write not supported for file /page_tables/current_user (pid: 9084 comm: syz.0.674) [ 311.094089][ T5846] Bluetooth: hci2: command 0x0406 tx timeout [ 311.254198][ T5846] Bluetooth: hci1: command 0x0406 tx timeout [ 311.327584][ T9106] FAULT_INJECTION: forcing a failure. [ 311.327584][ T9106] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 311.342919][ T5847] Bluetooth: hci0: command 0x0406 tx timeout [ 311.349129][ T5846] Bluetooth: hci3: command 0x0c1a tx timeout [ 311.398510][ T9106] CPU: 0 UID: 0 PID: 9106 Comm: syz.0.679 Not tainted 6.14.0-rc3-syzkaller #0 [ 311.398563][ T9106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 311.398581][ T9106] Call Trace: [ 311.398590][ T9106] [ 311.398602][ T9106] dump_stack_lvl+0x16c/0x1f0 [ 311.398663][ T9106] should_fail_ex+0x50a/0x650 [ 311.398719][ T9106] _copy_to_user+0x32/0xd0 [ 311.398754][ T9106] simple_read_from_buffer+0xd0/0x160 [ 311.398799][ T9106] proc_fail_nth_read+0x198/0x270 [ 311.398839][ T9106] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 311.398881][ T9106] ? rw_verify_area+0xcf/0x680 [ 311.398928][ T9106] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 311.398966][ T9106] vfs_read+0x1df/0xbf0 [ 311.399010][ T9106] ? __fget_files+0x1fc/0x3a0 [ 311.399057][ T9106] ? __pfx___mutex_lock+0x10/0x10 [ 311.399096][ T9106] ? __pfx_vfs_read+0x10/0x10 [ 311.399150][ T9106] ? __fget_files+0x206/0x3a0 [ 311.399206][ T9106] ksys_read+0x12b/0x250 [ 311.399249][ T9106] ? __pfx_ksys_read+0x10/0x10 [ 311.399304][ T9106] do_syscall_64+0xcd/0x250 [ 311.399347][ T9106] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 311.399392][ T9106] RIP: 0033:0x7f2bcf78b7fc [ 311.399416][ T9106] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 311.399445][ T9106] RSP: 002b:00007f2bd0619030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 311.399474][ T9106] RAX: ffffffffffffffda RBX: 00007f2bcf9a5fa0 RCX: 00007f2bcf78b7fc [ 311.399495][ T9106] RDX: 000000000000000f RSI: 00007f2bd06190a0 RDI: 0000000000000005 [ 311.399514][ T9106] RBP: 00007f2bd0619090 R08: 0000000000000000 R09: 0000000000000000 [ 311.399533][ T9106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 311.399552][ T9106] R13: 0000000000000000 R14: 00007f2bcf9a5fa0 R15: 00007ffcd3e6d868 [ 311.399592][ T9106] [ 311.613050][ T9106] kernel write not supported for file /page_tables/current_user (pid: 9106 comm: syz.0.679) [ 312.101017][ T9107] kernel write not supported for file /page_tables/current_user (pid: 9107 comm: syz.0.680) [ 312.308390][ T9116] netlink: 4 bytes leftover after parsing attributes in process `syz.4.681'. [ 312.358616][ T9117] netlink: 342 bytes leftover after parsing attributes in process `syz.2.683'. [ 312.498754][ T9115] kernel write not supported for file /page_tables/current_user (pid: 9115 comm: syz.0.684) [ 312.752186][ T9126] netlink: 'syz.2.685': attribute type 29 has an invalid length. [ 312.790742][ T9126] netlink: 334 bytes leftover after parsing attributes in process `syz.2.685'. [ 312.877277][ T9131] netlink: 4 bytes leftover after parsing attributes in process `syz.2.685'. [ 312.924328][ T5846] Bluetooth: hci1: Unable to find connection for big 0xd2 [ 313.225571][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 313.264284][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 313.604857][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 313.798417][ T9125] kernel write not supported for file /page_tables/current_user (pid: 9125 comm: syz.0.686) [ 314.097323][ T29] audit: type=1800 audit(6034831034.885:6): pid=9151 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.690" name="lu_gp_id" dev="configfs" ino=22478 res=0 errno=0 [ 314.291603][ T9150] kernel write not supported for file /page_tables/current_user (pid: 9150 comm: syz.0.690) [ 314.363951][ T29] audit: type=1800 audit(6034831035.125:7): pid=9153 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.691" name="dbroot" dev="configfs" ino=22495 res=0 errno=0 [ 314.480657][ T9158] kernel write not supported for file /page_tables/current_user (pid: 9158 comm: syz.0.693) [ 314.509428][ T9156] kernel write not supported for file /page_tables/current_user (pid: 9156 comm: syz.0.693) [ 314.764129][ T0] NOHZ tick-stop error: local softirq work is pending, handler #82!!! [ 315.329988][ T9170] netlink: 78 bytes leftover after parsing attributes in process `syz.2.696'. [ 315.587935][ T9163] kernel write not supported for file /page_tables/current_user (pid: 9163 comm: syz.0.694) [ 315.934621][ T9180] FAULT_INJECTION: forcing a failure. [ 315.934621][ T9180] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 315.974176][ T9180] CPU: 1 UID: 0 PID: 9180 Comm: syz.2.698 Not tainted 6.14.0-rc3-syzkaller #0 [ 315.974216][ T9180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 315.974235][ T9180] Call Trace: [ 315.974244][ T9180] [ 315.974255][ T9180] dump_stack_lvl+0x16c/0x1f0 [ 315.974307][ T9180] should_fail_ex+0x50a/0x650 [ 315.974353][ T9180] ? __pfx___might_resched+0x10/0x10 [ 315.974407][ T9180] should_fail_alloc_page+0xe7/0x130 [ 315.974457][ T9180] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 315.974508][ T9180] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 315.974562][ T9180] ? __pfx_mark_lock+0x10/0x10 [ 315.974602][ T9180] ? __pfx_stack_trace_save+0x10/0x10 [ 315.974638][ T9180] ? stack_depot_save_flags+0x28/0x9c0 [ 315.974690][ T9180] ? rcu_is_watching+0x12/0xc0 [ 315.974727][ T9180] ? kasan_save_stack+0x42/0x60 [ 315.974774][ T9180] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 315.974827][ T9180] ? hlock_class+0x4e/0x130 [ 315.974863][ T9180] ? hlock_class+0x4e/0x130 [ 315.974912][ T9180] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 315.974964][ T9180] ? policy_nodemask+0xea/0x4e0 [ 315.975018][ T9180] alloc_pages_mpol+0x1fc/0x540 [ 315.975070][ T9180] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 315.975133][ T9180] alloc_pages_noprof+0x131/0x390 [ 315.975164][ T9180] pte_alloc_one+0x20/0x390 [ 315.975214][ T9180] do_pte_missing+0x1aff/0x3e10 [ 315.975261][ T9180] ? do_raw_spin_unlock+0x172/0x230 [ 315.975301][ T9180] ? __pmd_alloc+0x3c2/0x870 [ 315.975348][ T9180] __handle_mm_fault+0x1166/0x2c60 [ 315.975406][ T9180] ? __pfx___handle_mm_fault+0x10/0x10 [ 315.975452][ T9180] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 315.975522][ T9180] ? find_vma+0xc0/0x140 [ 315.975560][ T9180] ? __pfx_find_vma+0x10/0x10 [ 315.975603][ T9180] handle_mm_fault+0x3fa/0xaa0 [ 315.975658][ T9180] do_user_addr_fault+0x7a3/0x13f0 [ 315.975711][ T9180] exc_page_fault+0x5c/0xc0 [ 315.975747][ T9180] asm_exc_page_fault+0x26/0x30 [ 315.975791][ T9180] RIP: 0010:rep_movs_alternative+0x30/0x70 [ 315.975840][ T9180] Code: f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 [ 315.975871][ T9180] RSP: 0018:ffffc900053ffe58 EFLAGS: 00050202 [ 315.975897][ T9180] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 000000000000000c [ 315.975916][ T9180] RDX: fffff52000a7ffd7 RSI: 0000000000000000 RDI: ffffc900053ffeb0 [ 315.975948][ T9180] RBP: 000000000000000c R08: 0000000000000001 R09: fffff52000a7ffd7 [ 315.975967][ T9180] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000 [ 315.975985][ T9180] R13: ffffc900053ffeb0 R14: 0000000000000001 R15: 0000000000000005 [ 315.976025][ T9180] _copy_from_user+0x98/0xd0 [ 315.976057][ T9180] __x64_sys_epoll_ctl+0x132/0x1e0 [ 315.976098][ T9180] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 315.976145][ T9180] do_syscall_64+0xcd/0x250 [ 315.976184][ T9180] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 315.976224][ T9180] RIP: 0033:0x7fa44998cde9 [ 315.976247][ T9180] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 315.976287][ T9180] RSP: 002b:00007fa44a754038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 315.976314][ T9180] RAX: ffffffffffffffda RBX: 00007fa449ba5fa0 RCX: 00007fa44998cde9 [ 315.976334][ T9180] RDX: 0000000000000004 RSI: 0000000000000001 RDI: 0000000000000005 [ 315.976352][ T9180] RBP: 00007fa44a754090 R08: 0000000000000000 R09: 0000000000000000 [ 315.976371][ T9180] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 315.976389][ T9180] R13: 0000000000000000 R14: 00007fa449ba5fa0 R15: 00007ffc085289d8 [ 315.976428][ T9180] [ 316.403791][ T9179] kernel write not supported for file /page_tables/current_user (pid: 9179 comm: syz.0.699) [ 317.272140][ T9188] netlink: 28 bytes leftover after parsing attributes in process `syz.2.702'. [ 317.422629][ T9190] kernel write not supported for file /page_tables/current_user (pid: 9190 comm: syz.0.701) [ 317.651777][ T9199] usb usb15: usbfs: interface 0 claimed by hub while 'syz.0.705' sets config #5 [ 317.679501][ T9198] FAULT_INJECTION: forcing a failure. [ 317.679501][ T9198] name failslab, interval 1, probability 0, space 0, times 0 [ 317.692436][ T9198] CPU: 0 UID: 0 PID: 9198 Comm: syz.4.704 Not tainted 6.14.0-rc3-syzkaller #0 [ 317.692472][ T9198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 317.692490][ T9198] Call Trace: [ 317.692499][ T9198] [ 317.692510][ T9198] dump_stack_lvl+0x16c/0x1f0 [ 317.692554][ T9198] should_fail_ex+0x50a/0x650 [ 317.692600][ T9198] ? fs_reclaim_acquire+0xae/0x150 [ 317.692642][ T9198] ? tomoyo_realpath_from_path+0xb9/0x720 [ 317.692681][ T9198] should_failslab+0xc2/0x120 [ 317.692711][ T9198] __kmalloc_noprof+0xcb/0x510 [ 317.692756][ T9198] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 317.692807][ T9198] tomoyo_realpath_from_path+0xb9/0x720 [ 317.692849][ T9198] ? tomoyo_path_number_perm+0x235/0x590 [ 317.692885][ T9198] ? tomoyo_path_number_perm+0x235/0x590 [ 317.692924][ T9198] tomoyo_path_number_perm+0x248/0x590 [ 317.692958][ T9198] ? tomoyo_path_number_perm+0x235/0x590 [ 317.692997][ T9198] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 317.693069][ T9198] ? __pfx_lock_release+0x10/0x10 [ 317.693112][ T9198] ? trace_lock_acquire+0x14e/0x1f0 [ 317.693153][ T9198] ? lock_acquire+0x2f/0xb0 [ 317.693194][ T9198] ? __fget_files+0x40/0x3a0 [ 317.693242][ T9198] ? __fget_files+0x206/0x3a0 [ 317.693291][ T9198] security_file_ioctl+0x9b/0x240 [ 317.693331][ T9198] __x64_sys_ioctl+0xb7/0x200 [ 317.693371][ T9198] do_syscall_64+0xcd/0x250 [ 317.693417][ T9198] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 317.693460][ T9198] RIP: 0033:0x7efdf558cde9 [ 317.693483][ T9198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 317.693513][ T9198] RSP: 002b:00007efdf33f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 317.693541][ T9198] RAX: ffffffffffffffda RBX: 00007efdf57a5fa0 RCX: 00007efdf558cde9 [ 317.693561][ T9198] RDX: 0000000000000007 RSI: 00000000c0104d03 RDI: 0000000000000005 [ 317.693580][ T9198] RBP: 00007efdf33f6090 R08: 0000000000000000 R09: 0000000000000000 [ 317.693599][ T9198] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 317.693616][ T9198] R13: 0000000000000000 R14: 00007efdf57a5fa0 R15: 00007ffc0bb16138 [ 317.693655][ T9198] [ 317.693667][ T9198] ERROR: Out of memory at tomoyo_realpath_from_path. [ 317.922868][ T9201] usb usb15: usbfs: interface 0 claimed by hub while 'syz.0.705' sets config #2477 [ 318.024498][ T9201] kernel write not supported for file /page_tables/current_user (pid: 9201 comm: syz.0.705) [ 318.971643][ T9207] kernel write not supported for file /page_tables/current_user (pid: 9207 comm: syz.0.706) [ 319.514330][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 319.717532][ T9231] kernel write not supported for file /page_tables/current_user (pid: 9231 comm: syz.0.708) [ 320.025827][ T9236] kernel write not supported for file /page_tables/current_user (pid: 9236 comm: syz.0.711) [ 320.502845][ T9249] netlink: 4 bytes leftover after parsing attributes in process `syz.2.713'. [ 320.671118][ T9240] kernel write not supported for file /page_tables/current_user (pid: 9240 comm: syz.0.712) [ 320.836433][ T9251] FAULT_INJECTION: forcing a failure. [ 320.836433][ T9251] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 320.875260][ T9251] CPU: 0 UID: 0 PID: 9251 Comm: syz.2.715 Not tainted 6.14.0-rc3-syzkaller #0 [ 320.875301][ T9251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 320.875319][ T9251] Call Trace: [ 320.875329][ T9251] [ 320.875341][ T9251] dump_stack_lvl+0x16c/0x1f0 [ 320.875386][ T9251] should_fail_ex+0x50a/0x650 [ 320.875439][ T9251] _copy_to_user+0x32/0xd0 [ 320.875473][ T9251] simple_read_from_buffer+0xd0/0x160 [ 320.875517][ T9251] proc_fail_nth_read+0x198/0x270 [ 320.875554][ T9251] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 320.875595][ T9251] ? rw_verify_area+0xcf/0x680 [ 320.875631][ T9251] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 320.875669][ T9251] vfs_read+0x1df/0xbf0 [ 320.875711][ T9251] ? __fget_files+0x1fc/0x3a0 [ 320.875754][ T9251] ? __pfx___mutex_lock+0x10/0x10 [ 320.875792][ T9251] ? __pfx_vfs_read+0x10/0x10 [ 320.875843][ T9251] ? __fget_files+0x206/0x3a0 [ 320.875898][ T9251] ksys_read+0x12b/0x250 [ 320.875940][ T9251] ? __pfx_ksys_read+0x10/0x10 [ 320.875994][ T9251] do_syscall_64+0xcd/0x250 [ 320.876035][ T9251] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 320.876078][ T9251] RIP: 0033:0x7fa44998b7fc [ 320.876102][ T9251] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 320.876131][ T9251] RSP: 002b:00007fa44a754030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 320.876159][ T9251] RAX: ffffffffffffffda RBX: 00007fa449ba5fa0 RCX: 00007fa44998b7fc [ 320.876186][ T9251] RDX: 000000000000000f RSI: 00007fa44a7540a0 RDI: 0000000000000005 [ 320.876205][ T9251] RBP: 00007fa44a754090 R08: 0000000000000000 R09: 0000000000000000 [ 320.876224][ T9251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 320.876242][ T9251] R13: 0000000000000000 R14: 00007fa449ba5fa0 R15: 00007ffc085289d8 [ 320.876285][ T9251] [ 321.067495][ C0] vkms_vblank_simulate: vblank timer overrun [ 321.191665][ T9252] kernel write not supported for file /page_tables/current_user (pid: 9252 comm: syz.0.716) [ 321.504984][ T9266] FAULT_INJECTION: forcing a failure. [ 321.504984][ T9266] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 321.518382][ T9266] CPU: 1 UID: 0 PID: 9266 Comm: syz.2.719 Not tainted 6.14.0-rc3-syzkaller #0 [ 321.518418][ T9266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 321.518435][ T9266] Call Trace: [ 321.518445][ T9266] [ 321.518456][ T9266] dump_stack_lvl+0x16c/0x1f0 [ 321.518499][ T9266] should_fail_ex+0x50a/0x650 [ 321.518555][ T9266] _copy_from_user+0x2e/0xd0 [ 321.518587][ T9266] move_addr_to_kernel+0x68/0x160 [ 321.518625][ T9266] __copy_msghdr+0x386/0x470 [ 321.518669][ T9266] copy_msghdr_from_user+0xc2/0x160 [ 321.518714][ T9266] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 321.518758][ T9266] ? __lock_acquire+0xcc5/0x3c40 [ 321.518820][ T9266] ___sys_sendmsg+0xff/0x1e0 [ 321.518867][ T9266] ? __pfx____sys_sendmsg+0x10/0x10 [ 321.518935][ T9266] ? trace_lock_acquire+0x14e/0x1f0 [ 321.518997][ T9266] __sys_sendmmsg+0x201/0x420 [ 321.519047][ T9266] ? __pfx___sys_sendmmsg+0x10/0x10 [ 321.519106][ T9266] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 321.519162][ T9266] ? fput+0x67/0x440 [ 321.519191][ T9266] ? ksys_write+0x1ba/0x250 [ 321.519236][ T9266] ? __pfx_ksys_write+0x10/0x10 [ 321.519285][ T9266] __x64_sys_sendmmsg+0x9c/0x100 [ 321.519330][ T9266] ? lockdep_hardirqs_on+0x7c/0x110 [ 321.519366][ T9266] do_syscall_64+0xcd/0x250 [ 321.519406][ T9266] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 321.519450][ T9266] RIP: 0033:0x7fa44998cde9 [ 321.519473][ T9266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 321.519503][ T9266] RSP: 002b:00007fa44a754038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 321.519531][ T9266] RAX: ffffffffffffffda RBX: 00007fa449ba5fa0 RCX: 00007fa44998cde9 [ 321.519551][ T9266] RDX: 0000000000000005 RSI: 0000400000000140 RDI: 0000000000000003 [ 321.519568][ T9266] RBP: 00007fa44a754090 R08: 0000000000000000 R09: 0000000000000000 [ 321.519587][ T9266] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000001 [ 321.519606][ T9266] R13: 0000000000000000 R14: 00007fa449ba5fa0 R15: 00007ffc085289d8 [ 321.519644][ T9266] [ 322.376212][ T9264] FAULT_INJECTION: forcing a failure. [ 322.376212][ T9264] name failslab, interval 1, probability 0, space 0, times 0 [ 322.424029][ T9264] CPU: 1 UID: 7 PID: 9264 Comm: syz.0.718 Not tainted 6.14.0-rc3-syzkaller #0 [ 322.424080][ T9264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 322.424100][ T9264] Call Trace: [ 322.424128][ T9264] [ 322.424141][ T9264] dump_stack_lvl+0x16c/0x1f0 [ 322.424187][ T9264] should_fail_ex+0x50a/0x650 [ 322.424237][ T9264] ? fs_reclaim_acquire+0xae/0x150 [ 322.424281][ T9264] ? alloc_fdtable+0xa0/0x2b0 [ 322.424323][ T9264] should_failslab+0xc2/0x120 [ 322.424353][ T9264] __kmalloc_cache_noprof+0x68/0x410 [ 322.424397][ T9264] ? do_raw_spin_lock+0x12d/0x2c0 [ 322.424436][ T9264] alloc_fdtable+0xa0/0x2b0 [ 322.424481][ T9264] dup_fd+0x83b/0xb90 [ 322.424532][ T9264] ? apparmor_task_alloc+0x2c2/0x3b0 [ 322.424591][ T9264] copy_process+0x25d3/0x8c50 [ 322.424640][ T9264] ? __pfx___lock_acquire+0x10/0x10 [ 322.424703][ T9264] ? schedule+0x210/0x350 [ 322.424749][ T9264] ? __pfx_copy_process+0x10/0x10 [ 322.424780][ T9264] ? __might_fault+0x13b/0x190 [ 322.424813][ T9264] ? __pfx_lock_release+0x10/0x10 [ 322.424857][ T9264] ? trace_lock_acquire+0x14e/0x1f0 [ 322.424898][ T9264] ? lock_acquire+0x2f/0xb0 [ 322.424941][ T9264] ? __might_fault+0xe3/0x190 [ 322.424974][ T9264] ? __might_fault+0xe3/0x190 [ 322.425012][ T9264] ? _copy_from_user+0x59/0xd0 [ 322.425057][ T9264] kernel_clone+0xfd/0x960 [ 322.425091][ T9264] ? __pfx_kernel_clone+0x10/0x10 [ 322.425131][ T9264] ? __pfx_futex_wait+0x10/0x10 [ 322.425177][ T9264] ? find_held_lock+0x2d/0x110 [ 322.425221][ T9264] __do_sys_clone3+0x214/0x290 [ 322.425251][ T9264] ? __pfx___do_sys_clone3+0x10/0x10 [ 322.425334][ T9264] do_syscall_64+0xcd/0x250 [ 322.425377][ T9264] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 322.425423][ T9264] RIP: 0033:0x7f2bcf78cde9 [ 322.425448][ T9264] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 322.425481][ T9264] RSP: 002b:00007f2bd0618f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 322.425513][ T9264] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f2bcf78cde9 [ 322.425534][ T9264] RDX: 00007f2bd0618f20 RSI: 0000000000000058 RDI: 00007f2bd0618f20 [ 322.425555][ T9264] RBP: 00007f2bcf80e2a0 R08: 0000000000000000 R09: 0000000000000058 [ 322.425576][ T9264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 322.425597][ T9264] R13: 0000000000000000 R14: 00007f2bcf9a5fa0 R15: 00007ffcd3e6d868 [ 322.425636][ T9264] [ 322.746093][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 322.753168][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 323.146018][ T9263] kernel write not supported for file /page_tables/current_user (pid: 9263 comm: syz.0.718) [ 323.349581][ T9285] kernel write not supported for file /page_tables/current_user (pid: 9285 comm: syz.0.723) [ 324.096804][ T9286] kernel write not supported for file /page_tables/current_user (pid: 9286 comm: syz.0.724) [ 325.043323][ T29] audit: type=1800 audit(6034831045.825:8): pid=9308 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.727" name="dbroot" dev="configfs" ino=24644 res=0 errno=0 [ 325.093507][ T9308] kernel write not supported for file /page_tables/current_user (pid: 9308 comm: syz.0.727) [ 325.178466][ T9308] Process accounting resumed [ 328.617181][ T9363] FAULT_INJECTION: forcing a failure. [ 328.617181][ T9363] name failslab, interval 1, probability 0, space 0, times 0 [ 328.631260][ T9363] CPU: 0 UID: 0 PID: 9363 Comm: syz.0.739 Not tainted 6.14.0-rc3-syzkaller #0 [ 328.631302][ T9363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 328.631321][ T9363] Call Trace: [ 328.631330][ T9363] [ 328.631342][ T9363] dump_stack_lvl+0x16c/0x1f0 [ 328.631389][ T9363] should_fail_ex+0x50a/0x650 [ 328.631439][ T9363] ? fs_reclaim_acquire+0xae/0x150 [ 328.631485][ T9363] should_failslab+0xc2/0x120 [ 328.631515][ T9363] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 328.631565][ T9363] ? ptlock_alloc+0x1f/0x70 [ 328.631617][ T9363] ptlock_alloc+0x1f/0x70 [ 328.631671][ T9363] pte_alloc_one+0x74/0x390 [ 328.631722][ T9363] __pte_alloc+0x6e/0x3d0 [ 328.631759][ T9363] ? __pfx___pte_alloc+0x10/0x10 [ 328.631800][ T9363] ? find_held_lock+0x2d/0x110 [ 328.631838][ T9363] do_pte_missing+0x2828/0x3e10 [ 328.631899][ T9363] __handle_mm_fault+0x1166/0x2c60 [ 328.631957][ T9363] ? __pfx___handle_mm_fault+0x10/0x10 [ 328.632045][ T9363] handle_mm_fault+0x3fa/0xaa0 [ 328.632099][ T9363] __get_user_pages+0x773/0x36f0 [ 328.632161][ T9363] ? __pfx_mt_find+0x10/0x10 [ 328.632202][ T9363] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 328.632249][ T9363] ? __pfx___get_user_pages+0x10/0x10 [ 328.632300][ T9363] ? __mm_populate+0x21d/0x380 [ 328.632353][ T9363] populate_vma_page_range+0x27f/0x3a0 [ 328.632405][ T9363] ? __pfx_populate_vma_page_range+0x10/0x10 [ 328.632470][ T9363] ? __pfx_find_vma_intersection+0x10/0x10 [ 328.632515][ T9363] ? vm_mmap_pgoff+0x29b/0x3a0 [ 328.632567][ T9363] __mm_populate+0x1d6/0x380 [ 328.632617][ T9363] ? __pfx___mm_populate+0x10/0x10 [ 328.632689][ T9363] ? up_write+0x1b2/0x520 [ 328.632743][ T9363] vm_mmap_pgoff+0x2d3/0x3a0 [ 328.632793][ T9363] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 328.632843][ T9363] ? native_tss_update_io_bitmap+0x3cc/0x730 [ 328.632890][ T9363] ? __x64_sys_futex+0x1ea/0x4c0 [ 328.632935][ T9363] ksys_mmap_pgoff+0x7d/0x5c0 [ 328.632974][ T9363] ? rcu_is_watching+0x12/0xc0 [ 328.633012][ T9363] __x64_sys_mmap+0x125/0x190 [ 328.633062][ T9363] do_syscall_64+0xcd/0x250 [ 328.633104][ T9363] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 328.633151][ T9363] RIP: 0033:0x7f2bcf78cde9 [ 328.633176][ T9363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 328.633208][ T9363] RSP: 002b:00007f2bd0619038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 328.633239][ T9363] RAX: ffffffffffffffda RBX: 00007f2bcf9a5fa0 RCX: 00007f2bcf78cde9 [ 328.633261][ T9363] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 328.633280][ T9363] RBP: 00007f2bcf80e2a0 R08: 0000000000000002 R09: 0000000000008000 [ 328.633301][ T9363] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 328.633320][ T9363] R13: 0000000000000000 R14: 00007f2bcf9a5fa0 R15: 00007ffcd3e6d868 [ 328.633362][ T9363] [ 332.125597][ T9392] FAULT_INJECTION: forcing a failure. [ 332.125597][ T9392] name failslab, interval 1, probability 0, space 0, times 0 [ 332.210026][ T9392] CPU: 1 UID: 0 PID: 9392 Comm: syz.4.747 Not tainted 6.14.0-rc3-syzkaller #0 [ 332.210083][ T9392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 332.210101][ T9392] Call Trace: [ 332.210111][ T9392] [ 332.210123][ T9392] dump_stack_lvl+0x16c/0x1f0 [ 332.210168][ T9392] should_fail_ex+0x50a/0x650 [ 332.210216][ T9392] ? fs_reclaim_acquire+0xae/0x150 [ 332.210262][ T9392] should_failslab+0xc2/0x120 [ 332.210292][ T9392] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 332.210343][ T9392] ? vm_area_dup+0x21/0x2f0 [ 332.210406][ T9392] vm_area_dup+0x21/0x2f0 [ 332.210455][ T9392] __split_vma+0x181/0x1160 [ 332.210510][ T9392] ? __pfx___split_vma+0x10/0x10 [ 332.210580][ T9392] vms_gather_munmap_vmas+0x1c3/0x1730 [ 332.210644][ T9392] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 332.210698][ T9392] ? mas_walk+0x6a6/0x910 [ 332.210747][ T9392] __mmap_region+0x328/0x2760 [ 332.210803][ T9392] ? __pfx___mmap_region+0x10/0x10 [ 332.210866][ T9392] ? hlock_class+0x4e/0x130 [ 332.210899][ T9392] ? mark_lock+0xb5/0xc60 [ 332.210948][ T9392] ? __pfx_mark_lock+0x10/0x10 [ 332.210991][ T9392] ? __pfx___schedule+0x10/0x10 [ 332.211025][ T9392] ? schedule+0x298/0x350 [ 332.211101][ T9392] ? mm_get_unmapped_area+0x95/0xe0 [ 332.211155][ T9392] mmap_region+0x1ab/0x3f0 [ 332.211193][ T9392] do_mmap+0xd8d/0x11b0 [ 332.211241][ T9392] ? __pfx_do_mmap+0x10/0x10 [ 332.211283][ T9392] ? __pfx_down_write_killable+0x10/0x10 [ 332.211337][ T9392] vm_mmap_pgoff+0x203/0x3a0 [ 332.211394][ T9392] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 332.211437][ T9392] ? find_held_lock+0x2d/0x110 [ 332.211476][ T9392] ? __x64_sys_futex+0x1e1/0x4c0 [ 332.211512][ T9392] ? __x64_sys_futex+0x1ea/0x4c0 [ 332.211556][ T9392] ksys_mmap_pgoff+0x7d/0x5c0 [ 332.211598][ T9392] ? rcu_is_watching+0x12/0xc0 [ 332.211637][ T9392] __x64_sys_mmap+0x125/0x190 [ 332.211689][ T9392] do_syscall_64+0xcd/0x250 [ 332.211731][ T9392] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 332.211777][ T9392] RIP: 0033:0x7efdf558cde9 [ 332.211802][ T9392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 332.211834][ T9392] RSP: 002b:00007efdf33f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 332.211863][ T9392] RAX: ffffffffffffffda RBX: 00007efdf57a5fa0 RCX: 00007efdf558cde9 [ 332.211884][ T9392] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000001000000 [ 332.211904][ T9392] RBP: 00007efdf560e2a0 R08: fffffffffffffffa R09: 0000000000008000 [ 332.211926][ T9392] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 332.211945][ T9392] R13: 0000000000000000 R14: 00007efdf57a5fa0 R15: 00007ffc0bb16138 [ 332.211986][ T9392] [ 333.042215][ T9379] FAULT_INJECTION: forcing a failure. [ 333.042215][ T9379] name failslab, interval 1, probability 0, space 0, times 0 [ 333.055228][ T9379] CPU: 1 UID: 7 PID: 9379 Comm: syz.1.742 Not tainted 6.14.0-rc3-syzkaller #0 [ 333.055266][ T9379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 333.055286][ T9379] Call Trace: [ 333.055295][ T9379] [ 333.055307][ T9379] dump_stack_lvl+0x16c/0x1f0 [ 333.055360][ T9379] should_fail_ex+0x50a/0x650 [ 333.055412][ T9379] ? fs_reclaim_acquire+0xae/0x150 [ 333.055458][ T9379] ? alloc_fdtable+0xa0/0x2b0 [ 333.055499][ T9379] should_failslab+0xc2/0x120 [ 333.055527][ T9379] __kmalloc_cache_noprof+0x68/0x410 [ 333.055569][ T9379] ? do_raw_spin_lock+0x12d/0x2c0 [ 333.055608][ T9379] alloc_fdtable+0xa0/0x2b0 [ 333.055653][ T9379] dup_fd+0x83b/0xb90 [ 333.055703][ T9379] ? apparmor_task_alloc+0x2c2/0x3b0 [ 333.055754][ T9379] copy_process+0x25d3/0x8c50 [ 333.055786][ T9379] ? __pfx___lock_acquire+0x10/0x10 [ 333.055825][ T9379] ? schedule+0x210/0x350 [ 333.055864][ T9379] ? __pfx_copy_process+0x10/0x10 [ 333.055888][ T9379] ? __might_fault+0x13b/0x190 [ 333.055915][ T9379] ? __pfx_lock_release+0x10/0x10 [ 333.055951][ T9379] ? trace_lock_acquire+0x14e/0x1f0 [ 333.055985][ T9379] ? lock_acquire+0x2f/0xb0 [ 333.056019][ T9379] ? __might_fault+0xe3/0x190 [ 333.056046][ T9379] ? __might_fault+0xe3/0x190 [ 333.056093][ T9379] ? _copy_from_user+0x59/0xd0 [ 333.056126][ T9379] kernel_clone+0xfd/0x960 [ 333.056154][ T9379] ? __pfx_kernel_clone+0x10/0x10 [ 333.056186][ T9379] ? __pfx_futex_wait+0x10/0x10 [ 333.056224][ T9379] ? find_held_lock+0x2d/0x110 [ 333.056259][ T9379] __do_sys_clone3+0x214/0x290 [ 333.056284][ T9379] ? __pfx___do_sys_clone3+0x10/0x10 [ 333.056357][ T9379] do_syscall_64+0xcd/0x250 [ 333.056393][ T9379] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 333.056433][ T9379] RIP: 0033:0x7fd40c78cde9 [ 333.056453][ T9379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 333.056480][ T9379] RSP: 002b:00007fd40d51bf08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 333.056505][ T9379] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fd40c78cde9 [ 333.056523][ T9379] RDX: 00007fd40d51bf20 RSI: 0000000000000058 RDI: 00007fd40d51bf20 [ 333.056540][ T9379] RBP: 00007fd40c80e2a0 R08: 0000000000000000 R09: 0000000000000058 [ 333.056557][ T9379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 333.056573][ T9379] R13: 0000000000000000 R14: 00007fd40c9a5fa0 R15: 00007ffe4e978728 [ 333.056606][ T9379] [ 336.844847][ T9444] FAULT_INJECTION: forcing a failure. [ 336.844847][ T9444] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 336.877787][ T9444] CPU: 1 UID: 0 PID: 9444 Comm: syz.2.763 Not tainted 6.14.0-rc3-syzkaller #0 [ 336.877829][ T9444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 336.877847][ T9444] Call Trace: [ 336.877856][ T9444] [ 336.877868][ T9444] dump_stack_lvl+0x16c/0x1f0 [ 336.877911][ T9444] should_fail_ex+0x50a/0x650 [ 336.877958][ T9444] ? __pfx___might_resched+0x10/0x10 [ 336.878013][ T9444] should_fail_alloc_page+0xe7/0x130 [ 336.878045][ T9444] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 336.878097][ T9444] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 336.878159][ T9444] ? __pfx_mark_lock+0x10/0x10 [ 336.878200][ T9444] ? __pfx_stack_trace_save+0x10/0x10 [ 336.878236][ T9444] ? stack_depot_save_flags+0x28/0x9c0 [ 336.878288][ T9444] ? rcu_is_watching+0x12/0xc0 [ 336.878327][ T9444] ? kasan_save_stack+0x42/0x60 [ 336.878371][ T9444] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 336.878426][ T9444] ? hlock_class+0x4e/0x130 [ 336.878463][ T9444] ? hlock_class+0x4e/0x130 [ 336.878512][ T9444] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 336.878565][ T9444] ? policy_nodemask+0xea/0x4e0 [ 336.878621][ T9444] alloc_pages_mpol+0x1fc/0x540 [ 336.878674][ T9444] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 336.878751][ T9444] alloc_pages_noprof+0x131/0x390 [ 336.878782][ T9444] pte_alloc_one+0x20/0x390 [ 336.878830][ T9444] do_pte_missing+0x1aff/0x3e10 [ 336.878878][ T9444] ? do_raw_spin_unlock+0x172/0x230 [ 336.878930][ T9444] ? __pmd_alloc+0x3c2/0x870 [ 336.878979][ T9444] __handle_mm_fault+0x1166/0x2c60 [ 336.879039][ T9444] ? __pfx___handle_mm_fault+0x10/0x10 [ 336.879085][ T9444] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 336.879162][ T9444] ? find_vma+0xc0/0x140 [ 336.879197][ T9444] ? __pfx_find_vma+0x10/0x10 [ 336.879238][ T9444] handle_mm_fault+0x3fa/0xaa0 [ 336.879292][ T9444] do_user_addr_fault+0x7a3/0x13f0 [ 336.879347][ T9444] exc_page_fault+0x5c/0xc0 [ 336.879383][ T9444] asm_exc_page_fault+0x26/0x30 [ 336.879427][ T9444] RIP: 0010:rep_movs_alternative+0x4a/0x70 [ 336.879474][ T9444] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1 [ 336.879504][ T9444] RSP: 0018:ffffc90003737b60 EFLAGS: 00050206 [ 336.879529][ T9444] RAX: 0000000000000001 RBX: 0000000000000800 RCX: 0000000000000800 [ 336.879547][ T9444] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff888065e5d000 [ 336.879565][ T9444] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100cbcbaff [ 336.879583][ T9444] R10: ffff888065e5d7ff R11: 0000000000000000 R12: ffffc90003737da0 [ 336.879603][ T9444] R13: 0000000000000800 R14: ffff888065e5d000 R15: 00007ffffffff000 [ 336.879646][ T9444] _copy_from_iter+0x385/0x1560 [ 336.879681][ T9444] ? trace_lock_acquire+0x14e/0x1f0 [ 336.879722][ T9444] ? __pfx__copy_from_iter+0x10/0x10 [ 336.879751][ T9444] ? __virt_addr_valid+0x1a4/0x590 [ 336.879788][ T9444] ? __virt_addr_valid+0x5e/0x590 [ 336.879821][ T9444] ? __phys_addr_symbol+0x30/0x80 [ 336.879852][ T9444] ? __check_object_size+0x488/0x710 [ 336.879890][ T9444] file_tty_write.constprop.0+0x48d/0x9a0 [ 336.879944][ T9444] redirected_tty_write+0xcc/0x140 [ 336.879983][ T9444] vfs_write+0x5ae/0x1150 [ 336.880027][ T9444] ? __pfx_redirected_tty_write+0x10/0x10 [ 336.880073][ T9444] ? __pfx_vfs_write+0x10/0x10 [ 336.880126][ T9444] ? __fget_files+0x40/0x3a0 [ 336.880194][ T9444] ksys_write+0x12b/0x250 [ 336.880237][ T9444] ? __pfx_ksys_write+0x10/0x10 [ 336.880293][ T9444] do_syscall_64+0xcd/0x250 [ 336.880336][ T9444] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 336.880380][ T9444] RIP: 0033:0x7fa44998cde9 [ 336.880405][ T9444] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 336.880435][ T9444] RSP: 002b:00007fa44a754038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 336.880463][ T9444] RAX: ffffffffffffffda RBX: 00007fa449ba5fa0 RCX: 00007fa44998cde9 [ 336.880484][ T9444] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 336.880504][ T9444] RBP: 00007fa44a754090 R08: 0000000000000000 R09: 0000000000000000 [ 336.880523][ T9444] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 336.880542][ T9444] R13: 0000000000000000 R14: 00007fa449ba5fa0 R15: 00007ffc085289d8 [ 336.880584][ T9444] [ 337.413867][ T9447] Process accounting resumed [ 337.418674][ T9447] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9447 comm: syz.1.762) [ 337.886689][ T9455] FAULT_INJECTION: forcing a failure. [ 337.886689][ T9455] name failslab, interval 1, probability 0, space 0, times 0 [ 337.886781][ T9455] CPU: 1 UID: 0 PID: 9455 Comm: syz.2.765 Not tainted 6.14.0-rc3-syzkaller #0 [ 337.886815][ T9455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 337.886834][ T9455] Call Trace: [ 337.886843][ T9455] [ 337.886855][ T9455] dump_stack_lvl+0x16c/0x1f0 [ 337.886896][ T9455] should_fail_ex+0x50a/0x650 [ 337.886942][ T9455] ? fs_reclaim_acquire+0xae/0x150 [ 337.886995][ T9455] should_failslab+0xc2/0x120 [ 337.887025][ T9455] __kmalloc_node_noprof+0xd1/0x510 [ 337.887074][ T9455] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 337.887121][ T9455] __kvmalloc_node_noprof+0xad/0x1a0 [ 337.887167][ T9455] seq_read_iter+0x82a/0x12b0 [ 337.887222][ T9455] kernfs_fop_read_iter+0x414/0x580 [ 337.887264][ T9455] copy_splice_read+0x61d/0xb80 [ 337.887311][ T9455] ? __pfx_copy_splice_read+0x10/0x10 [ 337.887356][ T9455] ? __pfx_register_lock_class+0x10/0x10 [ 337.887418][ T9455] ? __pfx_copy_splice_read+0x10/0x10 [ 337.887458][ T9455] do_splice_read+0x282/0x370 [ 337.887502][ T9455] splice_direct_to_actor+0x2a4/0xa40 [ 337.887545][ T9455] ? __pfx_direct_splice_actor+0x10/0x10 [ 337.887594][ T9455] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 337.887639][ T9455] ? __fget_files+0x1fc/0x3a0 [ 337.887688][ T9455] do_splice_direct+0x178/0x250 [ 337.887729][ T9455] ? __pfx_do_splice_direct+0x10/0x10 [ 337.887771][ T9455] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 337.887817][ T9455] ? rw_verify_area+0xcf/0x680 [ 337.887860][ T9455] do_sendfile+0xafb/0xe40 [ 337.887906][ T9455] ? __pfx_do_sendfile+0x10/0x10 [ 337.887948][ T9455] ? __fget_files+0x206/0x3a0 [ 337.888008][ T9455] __x64_sys_sendfile64+0x1da/0x220 [ 337.888036][ T9455] ? ksys_write+0x1ba/0x250 [ 337.888077][ T9455] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 337.888141][ T9455] do_syscall_64+0xcd/0x250 [ 337.888181][ T9455] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 337.888225][ T9455] RIP: 0033:0x7fa44998cde9 [ 337.888249][ T9455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 337.888279][ T9455] RSP: 002b:00007fa44a754038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 337.888308][ T9455] RAX: ffffffffffffffda RBX: 00007fa449ba5fa0 RCX: 00007fa44998cde9 [ 337.888329][ T9455] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003 [ 337.888347][ T9455] RBP: 00007fa44a754090 R08: 0000000000000000 R09: 0000000000000000 [ 337.888366][ T9455] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 337.888384][ T9455] R13: 0000000000000000 R14: 00007fa449ba5fa0 R15: 00007ffc085289d8 [ 337.888423][ T9455] [ 338.143799][ T9443] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9443 comm: syz.1.762) [ 338.356901][ T9463] netlink: 334 bytes leftover after parsing attributes in process `syz.1.767'. [ 338.617257][ T9466] FAULT_INJECTION: forcing a failure. [ 338.617257][ T9466] name failslab, interval 1, probability 0, space 0, times 0 [ 338.617301][ T9466] CPU: 0 UID: 0 PID: 9466 Comm: syz.2.770 Not tainted 6.14.0-rc3-syzkaller #0 [ 338.617334][ T9466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 338.617352][ T9466] Call Trace: [ 338.617362][ T9466] [ 338.617373][ T9466] dump_stack_lvl+0x16c/0x1f0 [ 338.617414][ T9466] should_fail_ex+0x50a/0x650 [ 338.617462][ T9466] ? fs_reclaim_acquire+0xae/0x150 [ 338.617505][ T9466] should_failslab+0xc2/0x120 [ 338.617535][ T9466] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 338.617583][ T9466] ? alloc_empty_file+0x73/0x1e0 [ 338.617621][ T9466] alloc_empty_file+0x73/0x1e0 [ 338.617654][ T9466] path_openat+0xe1/0x2d80 [ 338.617703][ T9466] ? hlock_class+0x4e/0x130 [ 338.617735][ T9466] ? __lock_acquire+0x15a9/0x3c40 [ 338.617790][ T9466] ? __pfx_path_openat+0x10/0x10 [ 338.617835][ T9466] ? __pfx___lock_acquire+0x10/0x10 [ 338.617876][ T9466] ? lock_acquire.part.0+0x11b/0x380 [ 338.617920][ T9466] ? find_held_lock+0x2d/0x110 [ 338.617958][ T9466] do_filp_open+0x20c/0x470 [ 338.618004][ T9466] ? __pfx_do_filp_open+0x10/0x10 [ 338.618048][ T9466] ? find_held_lock+0x2d/0x110 [ 338.618106][ T9466] ? alloc_fd+0x41f/0x760 [ 338.618160][ T9466] do_sys_openat2+0x17a/0x1e0 [ 338.618192][ T9466] ? __pfx_do_sys_openat2+0x10/0x10 [ 338.618229][ T9466] ? __fget_files+0x206/0x3a0 [ 338.618280][ T9466] __x64_sys_openat+0x175/0x210 [ 338.618313][ T9466] ? __pfx___x64_sys_openat+0x10/0x10 [ 338.618346][ T9466] ? ksys_write+0x1ba/0x250 [ 338.618401][ T9466] do_syscall_64+0xcd/0x250 [ 338.618442][ T9466] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 338.618486][ T9466] RIP: 0033:0x7fa44998b750 [ 338.618510][ T9466] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 338.618540][ T9466] RSP: 002b:00007fa44a753f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 338.618568][ T9466] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa44998b750 [ 338.618588][ T9466] RDX: 0000000000000000 RSI: 00007fa44a753fa0 RDI: 00000000ffffff9c [ 338.618608][ T9466] RBP: 00007fa44a753fa0 R08: 0000000000000000 R09: 0000000000000000 [ 338.618627][ T9466] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 338.618663][ T9466] R13: 0000000000000000 R14: 00007fa449ba5fa0 R15: 00007ffc085289d8 [ 338.618708][ T9466] [ 338.627014][ T9459] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9459 comm: syz.1.767) [ 338.851633][ T9467] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9467 comm: syz.1.771) [ 339.506681][ T9472] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9472 comm: syz.1.773) [ 339.710224][ T9481] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9481 comm: syz.1.776) [ 339.726150][ T9482] can: request_module (can-proto-5) failed. [ 339.954042][ T9493] FAULT_INJECTION: forcing a failure. [ 339.954042][ T9493] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 339.954084][ T9493] CPU: 1 UID: 0 PID: 9493 Comm: syz.1.777 Not tainted 6.14.0-rc3-syzkaller #0 [ 339.954116][ T9493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 339.954134][ T9493] Call Trace: [ 339.954143][ T9493] [ 339.954155][ T9493] dump_stack_lvl+0x16c/0x1f0 [ 339.954195][ T9493] should_fail_ex+0x50a/0x650 [ 339.954249][ T9493] _copy_to_user+0x32/0xd0 [ 339.954284][ T9493] simple_read_from_buffer+0xd0/0x160 [ 339.954327][ T9493] proc_fail_nth_read+0x198/0x270 [ 339.954370][ T9493] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 339.954411][ T9493] ? rw_verify_area+0xcf/0x680 [ 339.954446][ T9493] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 339.954483][ T9493] vfs_read+0x1df/0xbf0 [ 339.954525][ T9493] ? __fget_files+0x1fc/0x3a0 [ 339.954569][ T9493] ? __pfx___mutex_lock+0x10/0x10 [ 339.954607][ T9493] ? __pfx_vfs_read+0x10/0x10 [ 339.954660][ T9493] ? __fget_files+0x206/0x3a0 [ 339.954713][ T9493] ksys_read+0x12b/0x250 [ 339.954753][ T9493] ? __pfx_ksys_read+0x10/0x10 [ 339.954807][ T9493] do_syscall_64+0xcd/0x250 [ 339.954855][ T9493] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 339.954898][ T9493] RIP: 0033:0x7fd40c78b7fc [ 339.954921][ T9493] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 339.954951][ T9493] RSP: 002b:00007fd40a5f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 339.954979][ T9493] RAX: ffffffffffffffda RBX: 00007fd40c9a6080 RCX: 00007fd40c78b7fc [ 339.954999][ T9493] RDX: 000000000000000f RSI: 00007fd40a5f60a0 RDI: 0000000000000005 [ 339.955018][ T9493] RBP: 00007fd40a5f6090 R08: 0000000000000000 R09: 0000000000000000 [ 339.955037][ T9493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 339.955056][ T9493] R13: 0000000000000000 R14: 00007fd40c9a6080 R15: 00007ffe4e978728 [ 339.955094][ T9493] [ 340.038885][ T9488] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9488 comm: syz.1.777) [ 340.715416][ T9514] netlink: 342 bytes leftover after parsing attributes in process `syz.2.781'. [ 341.061310][ T29] audit: type=1800 audit(6034831061.845:9): pid=9522 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.785" name="dbroot" dev="configfs" ino=24447 res=0 errno=0 [ 341.541680][ T9505] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9505 comm: syz.1.779) [ 341.878582][ T9534] FAULT_INJECTION: forcing a failure. [ 341.878582][ T9534] name failslab, interval 1, probability 0, space 0, times 0 [ 341.894345][ T9534] CPU: 0 UID: 0 PID: 9534 Comm: syz.4.791 Not tainted 6.14.0-rc3-syzkaller #0 [ 341.894383][ T9534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 341.894401][ T9534] Call Trace: [ 341.894410][ T9534] [ 341.894421][ T9534] dump_stack_lvl+0x16c/0x1f0 [ 341.894462][ T9534] should_fail_ex+0x50a/0x650 [ 341.894507][ T9534] ? fs_reclaim_acquire+0xae/0x150 [ 341.894549][ T9534] ? __register_sysctl_table+0xeaf/0x1910 [ 341.894599][ T9534] should_failslab+0xc2/0x120 [ 341.894628][ T9534] __kmalloc_noprof+0xcb/0x510 [ 341.894682][ T9534] __register_sysctl_table+0xeaf/0x1910 [ 341.894750][ T9534] ? __pfx___register_sysctl_table+0x10/0x10 [ 341.894802][ T9534] ? setup_mq_sysctls+0x5d/0x230 [ 341.894840][ T9534] ? __asan_memcpy+0x3c/0x60 [ 341.894885][ T9534] setup_mq_sysctls+0x13d/0x230 [ 341.894925][ T9534] copy_ipcs+0x479/0x610 [ 341.894955][ T9534] ? copy_utsname+0xab/0x470 [ 341.895003][ T9534] create_new_namespaces+0x20a/0xad0 [ 341.895054][ T9534] ? security_capable+0x7e/0x260 [ 341.895120][ T9534] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 341.895172][ T9534] ksys_unshare+0x45d/0xa40 [ 341.895202][ T9534] ? __pfx_ksys_unshare+0x10/0x10 [ 341.895251][ T9534] ? ksys_write+0x1ba/0x250 [ 341.895305][ T9534] __x64_sys_unshare+0x31/0x40 [ 341.895337][ T9534] do_syscall_64+0xcd/0x250 [ 341.895378][ T9534] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 341.895423][ T9534] RIP: 0033:0x7efdf558cde9 [ 341.895446][ T9534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 341.895476][ T9534] RSP: 002b:00007efdf33f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 341.895506][ T9534] RAX: ffffffffffffffda RBX: 00007efdf57a5fa0 RCX: 00007efdf558cde9 [ 341.895527][ T9534] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000400 [ 341.895545][ T9534] RBP: 00007efdf33f6090 R08: 0000000000000000 R09: 0000000000000000 [ 341.895564][ T9534] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 341.895583][ T9534] R13: 0000000000000000 R14: 00007efdf57a5fa0 R15: 00007ffc0bb16138 [ 341.895621][ T9534] [ 341.895634][ T9534] sysctl could not get directory: /fs/mqueue -12 [ 342.154899][ T9535] FAULT_INJECTION: forcing a failure. [ 342.154899][ T9535] name failslab, interval 1, probability 0, space 0, times 0 [ 342.228844][ T9535] CPU: 1 UID: 0 PID: 9535 Comm: syz.1.789 Not tainted 6.14.0-rc3-syzkaller #0 [ 342.228902][ T9535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 342.228921][ T9535] Call Trace: [ 342.228931][ T9535] [ 342.228943][ T9535] dump_stack_lvl+0x16c/0x1f0 [ 342.228989][ T9535] should_fail_ex+0x50a/0x650 [ 342.229038][ T9535] ? trace_lock_acquire+0x14e/0x1f0 [ 342.229079][ T9535] ? proc_self_get_link+0x1a9/0x230 [ 342.229122][ T9535] should_failslab+0xc2/0x120 [ 342.229153][ T9535] __kmalloc_cache_noprof+0x68/0x410 [ 342.229208][ T9535] proc_self_get_link+0x1a9/0x230 [ 342.229254][ T9535] ? __pfx_proc_self_get_link+0x10/0x10 [ 342.229296][ T9535] step_into+0x1982/0x2220 [ 342.229345][ T9535] ? __pfx_step_into+0x10/0x10 [ 342.229393][ T9535] ? lookup_fast+0x153/0x5f0 [ 342.229441][ T9535] walk_component+0xfc/0x5b0 [ 342.229486][ T9535] link_path_walk.part.0.constprop.0+0x669/0xd40 [ 342.229547][ T9535] path_openat+0x228/0x2d80 [ 342.229590][ T9535] ? hlock_class+0x4e/0x130 [ 342.229639][ T9535] ? __pfx_path_openat+0x10/0x10 [ 342.229693][ T9535] ? __pfx___lock_acquire+0x10/0x10 [ 342.229736][ T9535] ? lock_acquire.part.0+0x11b/0x380 [ 342.229782][ T9535] ? find_held_lock+0x2d/0x110 [ 342.229822][ T9535] do_filp_open+0x20c/0x470 [ 342.229868][ T9535] ? __pfx_do_filp_open+0x10/0x10 [ 342.229913][ T9535] ? find_held_lock+0x2d/0x110 [ 342.229976][ T9535] ? alloc_fd+0x41f/0x760 [ 342.230034][ T9535] do_sys_openat2+0x17a/0x1e0 [ 342.230068][ T9535] ? __pfx_do_sys_openat2+0x10/0x10 [ 342.230118][ T9535] ? __fget_files+0x206/0x3a0 [ 342.230171][ T9535] __x64_sys_openat+0x175/0x210 [ 342.230204][ T9535] ? __pfx___x64_sys_openat+0x10/0x10 [ 342.230237][ T9535] ? ksys_write+0x1ba/0x250 [ 342.230294][ T9535] do_syscall_64+0xcd/0x250 [ 342.230335][ T9535] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 342.230380][ T9535] RIP: 0033:0x7fd40c78b750 [ 342.230404][ T9535] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 342.230434][ T9535] RSP: 002b:00007fd40d51bf10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 342.230462][ T9535] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fd40c78b750 [ 342.230483][ T9535] RDX: 0000000000000002 RSI: 00007fd40d51bfa0 RDI: 00000000ffffff9c [ 342.230502][ T9535] RBP: 00007fd40d51bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 342.230521][ T9535] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 342.230540][ T9535] R13: 0000000000000000 R14: 00007fd40c9a5fa0 R15: 00007ffe4e978728 [ 342.230580][ T9535] [ 342.513177][ T9535] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9535 comm: syz.1.789) [ 342.846884][ T9545] RDS: rds_bind could not find a transport for 7bc:c94c:4e37:70c4::, load rds_tcp or rds_rdma? [ 343.040295][ T9543] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9543 comm: syz.1.792) [ 343.374231][ T9552] nbd0: detected capacity change from 0 to 68719476736 [ 343.388565][ T5850] block nbd0: Send control failed (result -22) [ 343.424303][ T5850] block nbd0: Request send failed, requeueing [ 343.460726][ T5846] block nbd0: Receive control failed (result -32) [ 343.463292][ T58] block nbd0: Dead connection, failed to find a fallback [ 343.481938][ T58] block nbd0: shutting down sockets [ 343.488333][ T58] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 343.498702][ T58] Buffer I/O error on dev nbd0, logical block 0, async page read [ 343.507844][ T5850] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 343.518034][ T5850] Buffer I/O error on dev nbd0, logical block 0, async page read [ 343.526500][ T5850] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 343.536277][ T5850] Buffer I/O error on dev nbd0, logical block 0, async page read [ 343.544681][ T5850] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 343.553779][ T5850] Buffer I/O error on dev nbd0, logical block 0, async page read [ 343.562287][ T5850] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 343.571909][ T5850] Buffer I/O error on dev nbd0, logical block 0, async page read [ 343.580246][ T5850] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 343.589755][ T5850] Buffer I/O error on dev nbd0, logical block 0, async page read [ 343.598056][ T5850] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 343.607794][ T5850] Buffer I/O error on dev nbd0, logical block 0, async page read [ 343.616093][ T5850] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 343.625640][ T5850] Buffer I/O error on dev nbd0, logical block 0, async page read [ 343.633508][ T5850] ldm_validate_partition_table(): Disk read failed. [ 343.645806][ T9553] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9553 comm: syz.1.795) [ 343.649903][ T5850] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 343.703960][ T5850] Buffer I/O error on dev nbd0, logical block 0, async page read [ 343.747252][ T5850] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 343.771521][ T5850] Buffer I/O error on dev nbd0, logical block 0, async page read [ 343.814726][ T5850] Dev nbd0: unable to read RDB block 0 [ 343.820848][ T5850] nbd0: unable to read partition table [ 343.889165][ T5850] ldm_validate_partition_table(): Disk read failed. [ 343.921755][ T5850] Dev nbd0: unable to read RDB block 0 [ 344.003307][ T9565] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9565 comm: syz.1.798) [ 344.068499][ T5850] nbd0: unable to read partition table [ 344.164141][ T9570] netlink: 334 bytes leftover after parsing attributes in process `syz.0.799'. [ 344.403607][ T9573] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9573 comm: syz.1.800) [ 345.970552][ T9594] Invalid ELF header magic: != ELF [ 346.194738][ T9578] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9578 comm: syz.1.802) [ 346.362941][ T9604] HfR: entered promiscuous mode [ 346.528461][ T9603] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9603 comm: syz.1.807) [ 346.599780][ T9609] FAULT_INJECTION: forcing a failure. [ 346.599780][ T9609] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 346.613947][ T9609] CPU: 1 UID: 0 PID: 9609 Comm: syz.1.808 Not tainted 6.14.0-rc3-syzkaller #0 [ 346.613993][ T9609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 346.614010][ T9609] Call Trace: [ 346.614019][ T9609] [ 346.614031][ T9609] dump_stack_lvl+0x16c/0x1f0 [ 346.614088][ T9609] should_fail_ex+0x50a/0x650 [ 346.614153][ T9609] _copy_to_user+0x32/0xd0 [ 346.614192][ T9609] simple_read_from_buffer+0xd0/0x160 [ 346.614249][ T9609] proc_fail_nth_read+0x198/0x270 [ 346.614293][ T9609] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 346.614344][ T9609] ? rw_verify_area+0xcf/0x680 [ 346.614392][ T9609] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 346.614435][ T9609] vfs_read+0x1df/0xbf0 [ 346.614485][ T9609] ? __fget_files+0x1fc/0x3a0 [ 346.614535][ T9609] ? __pfx___mutex_lock+0x10/0x10 [ 346.614575][ T9609] ? __pfx_vfs_read+0x10/0x10 [ 346.614629][ T9609] ? __fget_files+0x206/0x3a0 [ 346.614703][ T9609] ksys_read+0x12b/0x250 [ 346.614749][ T9609] ? __pfx_ksys_read+0x10/0x10 [ 346.614805][ T9609] do_syscall_64+0xcd/0x250 [ 346.614848][ T9609] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 346.614899][ T9609] RIP: 0033:0x7fd40c78b7fc [ 346.614928][ T9609] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 346.614959][ T9609] RSP: 002b:00007fd40d51c030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 346.614993][ T9609] RAX: ffffffffffffffda RBX: 00007fd40c9a5fa0 RCX: 00007fd40c78b7fc [ 346.615015][ T9609] RDX: 000000000000000f RSI: 00007fd40d51c0a0 RDI: 0000000000000004 [ 346.615034][ T9609] RBP: 00007fd40d51c090 R08: 0000000000000000 R09: 0000000000000000 [ 346.615053][ T9609] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 346.615072][ T9609] R13: 0000000000000000 R14: 00007fd40c9a5fa0 R15: 00007ffe4e978728 [ 346.615123][ T9609] [ 346.616718][ T9609] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9609 comm: syz.1.808) [ 347.003234][ T9610] netlink: 28 bytes leftover after parsing attributes in process `syz.2.804'. [ 347.042111][ T9611] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9611 comm: syz.1.810) [ 347.136922][ T9610] netdevsim netdevsim2 netdevsim1: entered allmulticast mode [ 347.338022][ T9621] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9621 comm: syz.1.811) [ 348.660606][ T9628] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9628 comm: syz.1.812) [ 349.811325][ T9662] openvswitch: ovs_ÿÃ: Dropping previously announced user features [ 350.052074][ T9653] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9653 comm: syz.1.817) [ 350.145622][ T9668] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 350.220894][ T9668] CIFS mount error: No usable UNC path provided in device string! [ 350.220894][ T9668] [ 350.252714][ T9668] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 351.385271][ T9675] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9675 comm: syz.1.826) [ 351.774184][ T9695] nbd1: detected capacity change from 0 to 68719476736 [ 351.802007][ T5850] block nbd1: Send control failed (result -22) [ 351.843981][ T5850] block nbd1: Request send failed, requeueing [ 351.899669][ T5846] block nbd1: Receive control failed (result -32) [ 351.907622][ T5941] block nbd1: Dead connection, failed to find a fallback [ 351.916234][ T5941] block nbd1: shutting down sockets [ 351.921504][ T5941] blk_print_req_error: 24 callbacks suppressed [ 351.921524][ T5941] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 351.937319][ T5941] buffer_io_error: 23 callbacks suppressed [ 351.937340][ T5941] Buffer I/O error on dev nbd1, logical block 0, async page read [ 351.953183][ T5850] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 351.970446][ T5850] Buffer I/O error on dev nbd1, logical block 0, async page read [ 351.979034][ T5850] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 351.993466][ T5850] Buffer I/O error on dev nbd1, logical block 0, async page read [ 352.001514][ T5850] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 352.017761][ T5850] Buffer I/O error on dev nbd1, logical block 0, async page read [ 352.044301][ T5850] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 352.055763][ T5850] Buffer I/O error on dev nbd1, logical block 0, async page read [ 352.063731][ T5850] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 352.092283][ T5850] Buffer I/O error on dev nbd1, logical block 0, async page read [ 352.102430][ T5850] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 352.125576][ T5850] Buffer I/O error on dev nbd1, logical block 0, async page read [ 352.133554][ T5850] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 352.164216][ T5850] Buffer I/O error on dev nbd1, logical block 0, async page read [ 352.182702][ T5850] ldm_validate_partition_table(): Disk read failed. [ 352.191252][ T5850] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 352.210473][ T5850] Buffer I/O error on dev nbd1, logical block 0, async page read [ 352.247126][ T5850] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 352.276666][ T5850] Buffer I/O error on dev nbd1, logical block 0, async page read [ 352.323007][ T5850] Dev nbd1: unable to read RDB block 0 [ 352.359082][ T5850] nbd1: unable to read partition table [ 352.398248][ T5850] ldm_validate_partition_table(): Disk read failed. [ 352.428929][ T5850] Dev nbd1: unable to read RDB block 0 [ 352.454422][ T5850] nbd1: unable to read partition table [ 352.783353][ T9693] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9693 comm: syz.1.830) [ 352.798786][ T9716] Invalid ELF header magic: != ELF [ 353.011787][ T9725] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9725 comm: syz.1.836) [ 353.183713][ T9732] FAULT_INJECTION: forcing a failure. [ 353.183713][ T9732] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 353.202413][ T9732] CPU: 1 UID: 0 PID: 9732 Comm: syz.0.838 Not tainted 6.14.0-rc3-syzkaller #0 [ 353.202452][ T9732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 353.202470][ T9732] Call Trace: [ 353.202478][ T9732] [ 353.202489][ T9732] dump_stack_lvl+0x16c/0x1f0 [ 353.202533][ T9732] should_fail_ex+0x50a/0x650 [ 353.202585][ T9732] _copy_from_user+0x2e/0xd0 [ 353.202618][ T9732] kstrtouint_from_user+0xd7/0x1c0 [ 353.202667][ T9732] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 353.202720][ T9732] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 353.202769][ T9732] proc_fail_nth_write+0x84/0x250 [ 353.202806][ T9732] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 353.202841][ T9732] ? ksys_write+0x12b/0x250 [ 353.202890][ T9732] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 353.202925][ T9732] vfs_write+0x24c/0x1150 [ 353.202968][ T9732] ? __fget_files+0x1fc/0x3a0 [ 353.203012][ T9732] ? __pfx___mutex_lock+0x10/0x10 [ 353.203049][ T9732] ? __pfx_vfs_write+0x10/0x10 [ 353.203102][ T9732] ? __fget_files+0x206/0x3a0 [ 353.203155][ T9732] ksys_write+0x12b/0x250 [ 353.203196][ T9732] ? __pfx_ksys_write+0x10/0x10 [ 353.203250][ T9732] do_syscall_64+0xcd/0x250 [ 353.203290][ T9732] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 353.203333][ T9732] RIP: 0033:0x7f2bcf78b89f [ 353.203356][ T9732] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 353.203385][ T9732] RSP: 002b:00007f2bd0619030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 353.203412][ T9732] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f2bcf78b89f [ 353.203431][ T9732] RDX: 0000000000000001 RSI: 00007f2bd06190a0 RDI: 0000000000000004 [ 353.203450][ T9732] RBP: 00007f2bd0619090 R08: 0000000000000000 R09: 0000000000000000 [ 353.203468][ T9732] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 353.203487][ T9732] R13: 0000000000000000 R14: 00007f2bcf9a5fa0 R15: 00007ffcd3e6d868 [ 353.203525][ T9732] [ 353.436746][ T9716] zswap: compressor not available [ 353.503467][ T9727] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9727 comm: syz.1.837) [ 353.637331][ T9722] Process accounting resumed [ 353.642008][ T9722] kernel write not supported for file /page_tables/current_user (pid: 9722 comm: syz.4.834) [ 354.837832][ T9744] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9744 comm: syz.1.840) [ 356.229898][ T9740] kernel write not supported for file /page_tables/current_user (pid: 9740 comm: syz.4.841) [ 356.348232][ T9749] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9749 comm: syz.1.843) [ 356.622149][ T9771] FAULT_INJECTION: forcing a failure. [ 356.622149][ T9771] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 356.660506][ T9771] CPU: 0 UID: 0 PID: 9771 Comm: syz.1.847 Not tainted 6.14.0-rc3-syzkaller #0 [ 356.660546][ T9771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 356.660565][ T9771] Call Trace: [ 356.660573][ T9771] [ 356.660584][ T9771] dump_stack_lvl+0x16c/0x1f0 [ 356.660627][ T9771] should_fail_ex+0x50a/0x650 [ 356.660690][ T9771] _copy_to_user+0x32/0xd0 [ 356.660725][ T9771] read_page_owner+0x11c6/0x1bb0 [ 356.660776][ T9771] ? __pfx_read_page_owner+0x10/0x10 [ 356.660847][ T9771] full_proxy_read+0x13c/0x200 [ 356.660887][ T9771] ? __pfx_full_proxy_read+0x10/0x10 [ 356.660927][ T9771] vfs_read+0x1df/0xbf0 [ 356.660969][ T9771] ? __fget_files+0x1fc/0x3a0 [ 356.661013][ T9771] ? __pfx___mutex_lock+0x10/0x10 [ 356.661051][ T9771] ? __pfx_vfs_read+0x10/0x10 [ 356.661103][ T9771] ? __fget_files+0x206/0x3a0 [ 356.661152][ T9771] ksys_read+0x12b/0x250 [ 356.661193][ T9771] ? __pfx_ksys_read+0x10/0x10 [ 356.661238][ T9771] do_syscall_64+0xcd/0x250 [ 356.661272][ T9771] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 356.661310][ T9771] RIP: 0033:0x7fd40c78cde9 [ 356.661331][ T9771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 356.661355][ T9771] RSP: 002b:00007fd40d51c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 356.661378][ T9771] RAX: ffffffffffffffda RBX: 00007fd40c9a5fa0 RCX: 00007fd40c78cde9 [ 356.661394][ T9771] RDX: 0000000000001000 RSI: 0000400000002080 RDI: 0000000000000005 [ 356.661410][ T9771] RBP: 00007fd40d51c090 R08: 0000000000000000 R09: 0000000000000000 [ 356.661426][ T9771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 356.661441][ T9771] R13: 0000000000000000 R14: 00007fd40c9a5fa0 R15: 00007ffe4e978728 [ 356.661472][ T9771] [ 356.841104][ C0] vkms_vblank_simulate: vblank timer overrun [ 356.873410][ T9771] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9771 comm: syz.1.847) [ 357.009549][ T9774] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9774 comm: syz.1.848) [ 358.034040][ T9775] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9775 comm: syz.1.849) [ 358.115573][ T9778] kernel write not supported for file /page_tables/current_user (pid: 9778 comm: syz.4.846) [ 358.501384][ T9789] kernel write not supported for file /netdevsim/netdevsim3/take_snapshot (pid: 9789 comm: syz.1.854) [ 358.520122][ T9792] kernel write not supported for file /page_tables/current_user (pid: 9792 comm: syz.4.855) [ 359.048029][ T9806] nfs4: Unknown parameter 'nfsd' [ 359.582768][ T9797] kernel write not supported for file /page_tables/current_user (pid: 9797 comm: syz.4.857) [ 360.994190][ T9826] warn_unsupported: 1 callbacks suppressed [ 360.994216][ T9826] kernel write not supported for file /page_tables/current_user (pid: 9826 comm: syz.4.862) [ 361.317277][ T9832] ovs_Ãÿÿÿÿÿÿÿ: entered promiscuous mode [ 361.332283][ T9820] kernel write not supported for file /page_tables/current_user (pid: 9820 comm: syz.4.862) [ 361.601840][ T9836] kernel write not supported for file /page_tables/current_user (pid: 9836 comm: syz.4.865) [ 361.800450][ T9844] kernel write not supported for file /page_tables/current_user (pid: 9844 comm: vhost-9841) [ 361.925751][ T9847] FAULT_INJECTION: forcing a failure. [ 361.925751][ T9847] name failslab, interval 1, probability 0, space 0, times 0 [ 361.955397][ T9847] CPU: 1 UID: 0 PID: 9847 Comm: syz.2.876 Not tainted 6.14.0-rc3-syzkaller #0 [ 361.955438][ T9847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 361.955457][ T9847] Call Trace: [ 361.955465][ T9847] [ 361.955477][ T9847] dump_stack_lvl+0x16c/0x1f0 [ 361.955522][ T9847] should_fail_ex+0x50a/0x650 [ 361.955572][ T9847] ? fs_reclaim_acquire+0xae/0x150 [ 361.955614][ T9847] ? kernfs_fop_write_iter+0x223/0x500 [ 361.955647][ T9847] should_failslab+0xc2/0x120 [ 361.955677][ T9847] __kmalloc_noprof+0xcb/0x510 [ 361.955735][ T9847] kernfs_fop_write_iter+0x223/0x500 [ 361.955774][ T9847] iter_file_splice_write+0x90f/0x10b0 [ 361.955839][ T9847] ? __pfx_iter_file_splice_write+0x10/0x10 [ 361.955899][ T9847] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 361.955953][ T9847] ? splice_direct_to_actor+0x346/0xa40 [ 361.955999][ T9847] ? __pfx_iter_file_splice_write+0x10/0x10 [ 361.956047][ T9847] direct_splice_actor+0x18f/0x6c0 [ 361.956101][ T9847] splice_direct_to_actor+0x346/0xa40 [ 361.956147][ T9847] ? __pfx_direct_splice_actor+0x10/0x10 [ 361.956198][ T9847] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 361.956243][ T9847] ? __fget_files+0x1fc/0x3a0 [ 361.956295][ T9847] do_splice_direct+0x178/0x250 [ 361.956337][ T9847] ? __pfx_do_splice_direct+0x10/0x10 [ 361.956381][ T9847] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 361.956429][ T9847] ? rw_verify_area+0xcf/0x680 [ 361.956472][ T9847] do_sendfile+0xafb/0xe40 [ 361.956521][ T9847] ? __pfx_do_sendfile+0x10/0x10 [ 361.956562][ T9847] ? __fget_files+0x206/0x3a0 [ 361.956629][ T9847] __x64_sys_sendfile64+0x1da/0x220 [ 361.956657][ T9847] ? ksys_write+0x1ba/0x250 [ 361.956698][ T9847] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 361.956762][ T9847] do_syscall_64+0xcd/0x250 [ 361.956803][ T9847] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 361.956847][ T9847] RIP: 0033:0x7fa44998cde9 [ 361.956870][ T9847] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 361.956900][ T9847] RSP: 002b:00007fa44a754038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 361.956928][ T9847] RAX: ffffffffffffffda RBX: 00007fa449ba5fa0 RCX: 00007fa44998cde9 [ 361.956949][ T9847] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003 [ 361.956968][ T9847] RBP: 00007fa44a754090 R08: 0000000000000000 R09: 0000000000000000 [ 361.956987][ T9847] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 361.957005][ T9847] R13: 0000000000000000 R14: 00007fa449ba5fa0 R15: 00007ffc085289d8 [ 361.957043][ T9847] [ 361.991695][ T9848] Invalid ELF header magic: != ELF [ 361.993952][ C1] vkms_vblank_simulate: vblank timer overrun [ 362.226723][ C1] vkms_vblank_simulate: vblank timer overrun [ 362.762017][ T9856] FAULT_INJECTION: forcing a failure. [ 362.762017][ T9856] name failslab, interval 1, probability 0, space 0, times 0 [ 362.810375][ T9856] CPU: 0 UID: 0 PID: 9856 Comm: syz.2.871 Not tainted 6.14.0-rc3-syzkaller #0 [ 362.810415][ T9856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 362.810434][ T9856] Call Trace: [ 362.810443][ T9856] [ 362.810454][ T9856] dump_stack_lvl+0x16c/0x1f0 [ 362.810495][ T9856] should_fail_ex+0x50a/0x650 [ 362.810539][ T9856] ? fs_reclaim_acquire+0xae/0x150 [ 362.810579][ T9856] should_failslab+0xc2/0x120 [ 362.810607][ T9856] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 362.810650][ T9856] ? __pfx___mutex_lock+0x10/0x10 [ 362.810684][ T9856] ? __pmd_alloc+0xc3/0x870 [ 362.810728][ T9856] __pmd_alloc+0xc3/0x870 [ 362.810769][ T9856] huge_pte_alloc+0x292/0x3a0 [ 362.810812][ T9856] hugetlb_fault+0x377/0x2fa0 [ 362.810858][ T9856] ? __pfx_hugetlb_fault+0x10/0x10 [ 362.810912][ T9856] ? find_vma+0xc0/0x140 [ 362.810945][ T9856] ? __pfx_find_vma+0x10/0x10 [ 362.810985][ T9856] handle_mm_fault+0x930/0xaa0 [ 362.811034][ T9856] do_user_addr_fault+0x7a3/0x13f0 [ 362.811085][ T9856] exc_page_fault+0x5c/0xc0 [ 362.811118][ T9856] asm_exc_page_fault+0x26/0x30 [ 362.811156][ T9856] RIP: 0010:rep_movs_alternative+0x33/0x70 [ 362.811202][ T9856] Code: 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb [ 362.811249][ T9856] RSP: 0018:ffffc9000f0c7dc0 EFLAGS: 00050212 [ 362.811273][ T9856] RAX: 0000001400000010 RBX: 0000000000000010 RCX: 0000000000000010 [ 362.811298][ T9856] RDX: fffff52001e18fcd RSI: ffffc9000f0c7e58 RDI: 0000000000000005 [ 362.811317][ T9856] RBP: 0000000000000005 R08: 0000000000000000 R09: fffff52001e18fcc [ 362.811340][ T9856] R10: ffffc9000f0c7e67 R11: 0000000000000000 R12: ffffc9000f0c7e58 [ 362.811359][ T9856] R13: 0000000000000015 R14: 00007ffffffff000 R15: 0000000000000000 [ 362.811397][ T9856] _copy_to_user+0xbb/0xd0 [ 362.811431][ T9856] copy_ns_info_to_user+0x137/0x1e0 [ 362.811477][ T9856] ns_ioctl+0xa9a/0xd00 [ 362.811518][ T9856] ? __pfx_ns_ioctl+0x10/0x10 [ 362.811560][ T9856] ? __fget_files+0x206/0x3a0 [ 362.811610][ T9856] ? __pfx_ns_ioctl+0x10/0x10 [ 362.811652][ T9856] __x64_sys_ioctl+0x190/0x200 [ 362.811692][ T9856] do_syscall_64+0xcd/0x250 [ 362.811732][ T9856] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 362.811773][ T9856] RIP: 0033:0x7fa44998cde9 [ 362.811796][ T9856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 362.811824][ T9856] RSP: 002b:00007fa44a754038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 362.811850][ T9856] RAX: ffffffffffffffda RBX: 00007fa449ba5fa0 RCX: 00007fa44998cde9 [ 362.811871][ T9856] RDX: 0000000000000005 RSI: 000000004020940c RDI: 0000000000000003 [ 362.811888][ T9856] RBP: 00007fa44a754090 R08: 0000000000000000 R09: 0000000000000000 [ 362.811907][ T9856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 362.811924][ T9856] R13: 0000000000000000 R14: 00007fa449ba5fa0 R15: 00007ffc085289d8 [ 362.811963][ T9856] [ 363.180963][ T9850] netlink: 28 bytes leftover after parsing attributes in process `syz.4.868'. [ 363.268841][ T9850] netdevsim netdevsim4 netdevsim1: entered allmulticast mode [ 363.634149][ T9899] nbd2: detected capacity change from 0 to 68719476736 [ 363.700462][ T5850] block nbd2: Send control failed (result -22) [ 363.750053][ T5850] block nbd2: Request send failed, requeueing [ 363.764525][ T5846] block nbd2: Receive control failed (result -32) [ 363.780796][ T42] block nbd2: Dead connection, failed to find a fallback [ 363.789054][ T42] block nbd2: shutting down sockets [ 363.794638][ T42] blk_print_req_error: 24 callbacks suppressed [ 363.794660][ T42] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 363.812798][ T42] buffer_io_error: 23 callbacks suppressed [ 363.812821][ T42] Buffer I/O error on dev nbd2, logical block 0, async page read [ 363.827069][ T5850] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 363.845905][ T5850] Buffer I/O error on dev nbd2, logical block 0, async page read [ 363.854177][ T5850] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 363.863296][ T5850] Buffer I/O error on dev nbd2, logical block 0, async page read [ 363.872907][ T5850] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 363.882130][ T5850] Buffer I/O error on dev nbd2, logical block 0, async page read [ 363.890297][ T5850] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 363.901669][ T5850] Buffer I/O error on dev nbd2, logical block 0, async page read [ 363.909803][ T5850] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 363.974509][ T5850] Buffer I/O error on dev nbd2, logical block 0, async page read [ 363.996308][ T5850] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 364.017963][ T5850] Buffer I/O error on dev nbd2, logical block 0, async page read [ 364.036524][ T5850] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 364.054280][ T5850] Buffer I/O error on dev nbd2, logical block 0, async page read [ 364.062142][ T5850] ldm_validate_partition_table(): Disk read failed. [ 364.089717][ T5850] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 364.104003][ T5850] Buffer I/O error on dev nbd2, logical block 0, async page read [ 364.122215][ T5850] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 364.124419][ T9846] kernel write not supported for file /page_tables/current_user (pid: 9846 comm: syz.4.868) [ 364.142056][ T5850] Buffer I/O error on dev nbd2, logical block 0, async page read [ 364.164330][ T5850] Dev nbd2: unable to read RDB block 0 [ 364.173412][ T5850] nbd2: unable to read partition table [ 364.200258][ T5850] ldm_validate_partition_table(): Disk read failed. [ 364.235354][ T5850] Dev nbd2: unable to read RDB block 0 [ 364.241356][ T5850] nbd2: unable to read partition table [ 364.269484][ T5850] [ 364.271869][ T5850] ====================================================== [ 364.278944][ T5850] WARNING: possible circular locking dependency detected [ 364.285988][ T5850] 6.14.0-rc3-syzkaller #0 Not tainted [ 364.291397][ T5850] ------------------------------------------------------ [ 364.298440][ T5850] udevd/5850 is trying to acquire lock: [ 364.304011][ T5850] ffff8881437e1308 (&q->q_usage_counter(io)#51){++++}-{0:0}, at: __submit_bio+0x3d1/0x690 [ 364.314021][ T5850] [ 364.314021][ T5850] but task is already holding lock: [ 364.321403][ T5850] ffff888148e242c0 (mapping.invalidate_lock#2){++++}-{4:4}, at: page_cache_ra_unbounded+0x173/0x7d0 [ 364.332277][ T5850] [ 364.332277][ T5850] which lock already depends on the new lock. [ 364.332277][ T5850] [ 364.342693][ T5850] [ 364.342693][ T5850] the existing dependency chain (in reverse order) is: [ 364.351713][ T5850] [ 364.351713][ T5850] -> #6 (mapping.invalidate_lock#2){++++}-{4:4}: [ 364.360266][ T5850] down_read+0x9a/0x330 [ 364.364972][ T5850] filemap_fault+0x1845/0x2ca0 [ 364.370293][ T5850] __do_fault+0x10a/0x490 [ 364.375165][ T5850] do_pte_missing+0xecf/0x3e10 [ 364.380477][ T5850] __handle_mm_fault+0x1166/0x2c60 [ 364.386172][ T5850] handle_mm_fault+0x3fa/0xaa0 [ 364.391489][ T5850] do_user_addr_fault+0x7a3/0x13f0 [ 364.397147][ T5850] exc_page_fault+0x5c/0xc0 [ 364.402190][ T5850] asm_exc_page_fault+0x26/0x30 [ 364.407590][ T5850] fault_in_readable+0x160/0x200 [ 364.413075][ T5850] fault_in_iov_iter_readable+0x101/0x2c0 [ 364.419351][ T5850] iomap_file_buffered_write+0x3e2/0xc70 [ 364.425528][ T5850] blkdev_write_iter+0x574/0xdd0 [ 364.431016][ T5850] vfs_write+0x5ae/0x1150 [ 364.435903][ T5850] ksys_write+0x12b/0x250 [ 364.440779][ T5850] do_syscall_64+0xcd/0x250 [ 364.445827][ T5850] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 364.452272][ T5850] [ 364.452272][ T5850] -> #5 (&mm->mmap_lock){++++}-{4:4}: [ 364.459860][ T5850] __might_fault+0x11b/0x190 [ 364.465003][ T5850] _copy_from_user+0x29/0xd0 [ 364.470143][ T5850] csum_and_copy_from_iter_full+0x218/0x1e20 [ 364.476672][ T5850] ip_generic_getfrag+0x175/0x260 [ 364.482242][ T5850] raw6_getfrag+0x22d/0x2a0 [ 364.487282][ T5850] __ip6_append_data.isra.0+0x3dca/0x4650 [ 364.493544][ T5850] ip6_append_data+0x1e6/0x500 [ 364.498853][ T5850] rawv6_sendmsg+0x15c9/0x4610 [ 364.504163][ T5850] inet_sendmsg+0x119/0x140 [ 364.509220][ T5850] ____sys_sendmsg+0x98c/0xc90 [ 364.514526][ T5850] ___sys_sendmsg+0x135/0x1e0 [ 364.519749][ T5850] __sys_sendmsg+0x16e/0x220 [ 364.524895][ T5850] do_syscall_64+0xcd/0x250 [ 364.529951][ T5850] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 364.536399][ T5850] [ 364.536399][ T5850] -> #4 (sk_lock-AF_INET6){+.+.}-{0:0}: [ 364.544164][ T5850] lock_sock_nested+0x3a/0xf0 [ 364.549393][ T5850] inet_autobind+0x1a/0x1a0 [ 364.554447][ T5850] inet_send_prepare+0x317/0x530 [ 364.559935][ T5850] inet_sendmsg+0x43/0x140 [ 364.564909][ T5850] sock_sendmsg+0x389/0x490 [ 364.569953][ T5850] __sock_xmit+0x1e8/0x4f0 [ 364.574925][ T5850] nbd_send_cmd+0x8ec/0x1c90 [ 364.580056][ T5850] nbd_queue_rq+0x941/0x1220 [ 364.585186][ T5850] blk_mq_dispatch_rq_list+0x443/0x1dc0 [ 364.591312][ T5850] __blk_mq_sched_dispatch_requests+0xcdf/0x1620 [ 364.598217][ T5850] blk_mq_sched_dispatch_requests+0xd8/0x1b0 [ 364.604780][ T5850] blk_mq_run_hw_queue+0x239/0x670 [ 364.610442][ T5850] blk_mq_flush_plug_list+0x673/0x1c60 [ 364.616497][ T5850] __blk_flush_plug+0x2c5/0x4b0 [ 364.621894][ T5850] __submit_bio+0x547/0x690 [ 364.626947][ T5850] submit_bio_noacct_nocheck+0x698/0xd70 [ 364.633124][ T5850] submit_bio_noacct+0x50d/0x1ec0 [ 364.638728][ T5850] block_read_full_folio+0x812/0xa50 [ 364.644570][ T5850] filemap_read_folio+0xc6/0x2a0 [ 364.650058][ T5850] do_read_cache_folio+0x263/0x5c0 [ 364.655717][ T5850] read_part_sector+0xd4/0x310 [ 364.661047][ T5850] adfspart_check_ICS+0x94/0x940 [ 364.666535][ T5850] bdev_disk_changed+0x71f/0x1520 [ 364.672121][ T5850] blkdev_get_whole+0x187/0x290 [ 364.677510][ T5850] bdev_open+0x2c7/0xe20 [ 364.682305][ T5850] blkdev_open+0x272/0x3f0 [ 364.687266][ T5850] do_dentry_open+0x735/0x1c40 [ 364.692603][ T5850] vfs_open+0x82/0x3f0 [ 364.697216][ T5850] path_openat+0x1e88/0x2d80 [ 364.702358][ T5850] do_filp_open+0x20c/0x470 [ 364.707412][ T5850] do_sys_openat2+0x17a/0x1e0 [ 364.712641][ T5850] __x64_sys_openat+0x175/0x210 [ 364.718033][ T5850] do_syscall_64+0xcd/0x250 [ 364.723085][ T5850] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 364.729533][ T5850] [ 364.729533][ T5850] -> #3 (&nsock->tx_lock){+.+.}-{4:4}: [ 364.737212][ T5850] __mutex_lock+0x19b/0xb10 [ 364.742276][ T5850] nbd_queue_rq+0x424/0x1220 [ 364.747438][ T5850] blk_mq_dispatch_rq_list+0x443/0x1dc0 [ 364.753562][ T5850] __blk_mq_sched_dispatch_requests+0xcdf/0x1620 [ 364.760456][ T5850] blk_mq_sched_dispatch_requests+0xd8/0x1b0 [ 364.767013][ T5850] blk_mq_run_hw_queue+0x239/0x670 [ 364.772692][ T5850] blk_mq_flush_plug_list+0x673/0x1c60 [ 364.778718][ T5850] __blk_flush_plug+0x2c5/0x4b0 [ 364.784189][ T5850] __submit_bio+0x547/0x690 [ 364.789274][ T5850] submit_bio_noacct_nocheck+0x698/0xd70 [ 364.795477][ T5850] submit_bio_noacct+0x50d/0x1ec0 [ 364.801094][ T5850] block_read_full_folio+0x812/0xa50 [ 364.806956][ T5850] filemap_read_folio+0xc6/0x2a0 [ 364.812463][ T5850] do_read_cache_folio+0x263/0x5c0 [ 364.818143][ T5850] read_part_sector+0xd4/0x310 [ 364.823484][ T5850] adfspart_check_ICS+0x94/0x940 [ 364.828987][ T5850] bdev_disk_changed+0x71f/0x1520 [ 364.834581][ T5850] blkdev_get_whole+0x187/0x290 [ 364.839987][ T5850] bdev_open+0x2c7/0xe20 [ 364.844780][ T5850] blkdev_open+0x272/0x3f0 [ 364.849750][ T5850] do_dentry_open+0x735/0x1c40 [ 364.855071][ T5850] vfs_open+0x82/0x3f0 [ 364.859690][ T5850] path_openat+0x1e88/0x2d80 [ 364.864863][ T5850] do_filp_open+0x20c/0x470 [ 364.869940][ T5850] do_sys_openat2+0x17a/0x1e0 [ 364.875176][ T5850] __x64_sys_openat+0x175/0x210 [ 364.880573][ T5850] do_syscall_64+0xcd/0x250 [ 364.885622][ T5850] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 364.892191][ T5850] [ 364.892191][ T5850] -> #2 (&cmd->lock){+.+.}-{4:4}: [ 364.899437][ T5850] __mutex_lock+0x19b/0xb10 [ 364.904487][ T5850] nbd_queue_rq+0xbe/0x1220 [ 364.909544][ T5850] blk_mq_dispatch_rq_list+0x443/0x1dc0 [ 364.915650][ T5850] __blk_mq_sched_dispatch_requests+0xcdf/0x1620 [ 364.922557][ T5850] blk_mq_sched_dispatch_requests+0xd8/0x1b0 [ 364.929126][ T5850] blk_mq_run_hw_queue+0x239/0x670 [ 364.934802][ T5850] blk_mq_flush_plug_list+0x673/0x1c60 [ 364.940863][ T5850] __blk_flush_plug+0x2c5/0x4b0 [ 364.946279][ T5850] __submit_bio+0x547/0x690 [ 364.951325][ T5850] submit_bio_noacct_nocheck+0x698/0xd70 [ 364.957510][ T5850] submit_bio_noacct+0x50d/0x1ec0 [ 364.963094][ T5850] block_read_full_folio+0x812/0xa50 [ 364.968948][ T5850] filemap_read_folio+0xc6/0x2a0 [ 364.974438][ T5850] do_read_cache_folio+0x263/0x5c0 [ 364.980137][ T5850] read_part_sector+0xd4/0x310 [ 364.985453][ T5850] adfspart_check_ICS+0x94/0x940 [ 364.990944][ T5850] bdev_disk_changed+0x71f/0x1520 [ 364.996530][ T5850] blkdev_get_whole+0x187/0x290 [ 365.001931][ T5850] bdev_open+0x2c7/0xe20 [ 365.006722][ T5850] blkdev_open+0x272/0x3f0 [ 365.011695][ T5850] do_dentry_open+0x735/0x1c40 [ 365.017016][ T5850] vfs_open+0x82/0x3f0 [ 365.021622][ T5850] path_openat+0x1e88/0x2d80 [ 365.026778][ T5850] do_filp_open+0x20c/0x470 [ 365.031854][ T5850] do_sys_openat2+0x17a/0x1e0 [ 365.037072][ T5850] __x64_sys_openat+0x175/0x210 [ 365.042464][ T5850] do_syscall_64+0xcd/0x250 [ 365.047516][ T5850] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 365.053959][ T5850] [ 365.053959][ T5850] -> #1 (set->srcu){.+.+}-{0:0}: [ 365.061123][ T5850] __synchronize_srcu+0xa9/0x2a0 [ 365.066629][ T5850] blk_mq_update_nr_requests+0x288/0x670 [ 365.072813][ T5850] queue_requests_store+0x161/0x210 [ 365.078581][ T5850] queue_attr_store+0x370/0x510 [ 365.083991][ T5850] sysfs_kf_write+0x117/0x170 [ 365.089222][ T5850] kernfs_fop_write_iter+0x33d/0x500 [ 365.095207][ T5850] vfs_write+0x5ae/0x1150 [ 365.100103][ T5850] ksys_write+0x12b/0x250 [ 365.104990][ T5850] do_syscall_64+0xcd/0x250 [ 365.110038][ T5850] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 365.116496][ T5850] [ 365.116496][ T5850] -> #0 (&q->q_usage_counter(io)#51){++++}-{0:0}: [ 365.125130][ T5850] __lock_acquire+0x249e/0x3c40 [ 365.130527][ T5850] lock_acquire.part.0+0x11b/0x380 [ 365.136197][ T5850] blk_mq_submit_bio+0x20db/0x25f0 [ 365.141850][ T5850] __submit_bio+0x3d1/0x690 [ 365.146906][ T5850] submit_bio_noacct_nocheck+0x698/0xd70 [ 365.153172][ T5850] submit_bio_noacct+0x50d/0x1ec0 [ 365.158732][ T5850] mpage_readahead+0x41d/0x590 [ 365.164034][ T5850] read_pages+0x1a7/0xc60 [ 365.168916][ T5850] page_cache_ra_unbounded+0x426/0x7d0 [ 365.174913][ T5850] force_page_cache_ra+0x24b/0x340 [ 365.180563][ T5850] page_cache_sync_ra+0x158/0xa30 [ 365.186135][ T5850] filemap_get_pages+0xb62/0x1c30 [ 365.191695][ T5850] filemap_read+0x3c5/0xe70 [ 365.196734][ T5850] blkdev_read_iter+0x187/0x4b0 [ 365.202128][ T5850] vfs_read+0x886/0xbf0 [ 365.206824][ T5850] ksys_read+0x12b/0x250 [ 365.211610][ T5850] do_syscall_64+0xcd/0x250 [ 365.216651][ T5850] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 365.223092][ T5850] [ 365.223092][ T5850] other info that might help us debug this: [ 365.223092][ T5850] [ 365.233329][ T5850] Chain exists of: [ 365.233329][ T5850] &q->q_usage_counter(io)#51 --> &mm->mmap_lock --> mapping.invalidate_lock#2 [ 365.233329][ T5850] [ 365.248155][ T5850] Possible unsafe locking scenario: [ 365.248155][ T5850] [ 365.255610][ T5850] CPU0 CPU1 [ 365.260976][ T5850] ---- ---- [ 365.266432][ T5850] rlock(mapping.invalidate_lock#2); [ 365.271833][ T5850] lock(&mm->mmap_lock); [ 365.278715][ T5850] lock(mapping.invalidate_lock#2); [ 365.286547][ T5850] rlock(&q->q_usage_counter(io)#51); [ 365.292031][ T5850] [ 365.292031][ T5850] *** DEADLOCK *** [ 365.292031][ T5850] [ 365.300176][ T5850] 1 lock held by udevd/5850: [ 365.304780][ T5850] #0: ffff888148e242c0 (mapping.invalidate_lock#2){++++}-{4:4}, at: page_cache_ra_unbounded+0x173/0x7d0 [ 365.316068][ T5850] [ 365.316068][ T5850] stack backtrace: [ 365.321960][ T5850] CPU: 0 UID: 0 PID: 5850 Comm: udevd Not tainted 6.14.0-rc3-syzkaller #0 [ 365.321986][ T5850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 365.322001][ T5850] Call Trace: [ 365.322009][ T5850] [ 365.322019][ T5850] dump_stack_lvl+0x116/0x1f0 [ 365.322051][ T5850] print_circular_bug+0x490/0x760 [ 365.322087][ T5850] check_noncircular+0x31a/0x400 [ 365.322121][ T5850] ? __pfx_check_noncircular+0x10/0x10 [ 365.322154][ T5850] ? __kernel_text_address+0xd/0x40 [ 365.322187][ T5850] ? unwind_get_return_address+0x59/0xa0 [ 365.322227][ T5850] ? lockdep_lock+0xc6/0x200 [ 365.322253][ T5850] ? __pfx_lockdep_lock+0x10/0x10 [ 365.322281][ T5850] __lock_acquire+0x249e/0x3c40 [ 365.322320][ T5850] ? __pfx___lock_acquire+0x10/0x10 [ 365.322353][ T5850] ? hlock_class+0x4e/0x130 [ 365.322377][ T5850] ? mark_lock+0xb5/0xc60 [ 365.322407][ T5850] ? page_cache_ra_unbounded+0x426/0x7d0 [ 365.322435][ T5850] ? page_cache_sync_ra+0x158/0xa30 [ 365.322463][ T5850] lock_acquire.part.0+0x11b/0x380 [ 365.322498][ T5850] ? __submit_bio+0x3d1/0x690 [ 365.322524][ T5850] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 365.322560][ T5850] ? rcu_is_watching+0x12/0xc0 [ 365.322584][ T5850] ? trace_lock_acquire+0x14e/0x1f0 [ 365.322611][ T5850] ? __submit_bio+0x3d1/0x690 [ 365.322636][ T5850] ? lock_acquire+0x2f/0xb0 [ 365.322668][ T5850] ? __submit_bio+0x3d1/0x690 [ 365.322693][ T5850] blk_mq_submit_bio+0x20db/0x25f0 [ 365.322721][ T5850] ? __submit_bio+0x3d1/0x690 [ 365.322747][ T5850] ? __pfx_blk_mq_submit_bio+0x10/0x10 [ 365.322774][ T5850] ? mark_lock+0xb5/0xc60 [ 365.322805][ T5850] ? __pfx___lock_acquire+0x10/0x10 [ 365.322838][ T5850] ? trace_lock_acquire+0x14e/0x1f0 [ 365.322870][ T5850] ? __pfx_mark_lock+0x10/0x10 [ 365.322902][ T5850] ? find_held_lock+0x2d/0x110 [ 365.322929][ T5850] __submit_bio+0x3d1/0x690 [ 365.322954][ T5850] ? __pfx___submit_bio+0x10/0x10 [ 365.322983][ T5850] ? ktime_get+0x200/0x310 [ 365.323012][ T5850] ? lockdep_hardirqs_on+0x7c/0x110 [ 365.323042][ T5850] ? submit_bio_noacct_nocheck+0x698/0xd70 [ 365.323069][ T5850] submit_bio_noacct_nocheck+0x698/0xd70 [ 365.323097][ T5850] ? __pfx_submit_bio_noacct_nocheck+0x10/0x10 [ 365.323127][ T5850] ? __pfx___might_resched+0x10/0x10 [ 365.323169][ T5850] submit_bio_noacct+0x50d/0x1ec0 [ 365.323197][ T5850] mpage_readahead+0x41d/0x590 [ 365.323224][ T5850] ? __pfx_mpage_readahead+0x10/0x10 [ 365.323256][ T5850] ? __pfx_blkdev_get_block+0x10/0x10 [ 365.323287][ T5850] ? __folio_batch_add_and_move+0x5f3/0xc60 [ 365.323321][ T5850] ? __pfx_lock_release+0x10/0x10 [ 365.323354][ T5850] ? trace_lock_acquire+0x14e/0x1f0 [ 365.323381][ T5850] ? __pfx_blkdev_readahead+0x10/0x10 [ 365.323411][ T5850] read_pages+0x1a7/0xc60 [ 365.323435][ T5850] ? __folio_batch_add_and_move+0x689/0xc60 [ 365.323473][ T5850] ? __pfx_read_pages+0x10/0x10 [ 365.323505][ T5850] page_cache_ra_unbounded+0x426/0x7d0 [ 365.323539][ T5850] force_page_cache_ra+0x24b/0x340 [ 365.323569][ T5850] page_cache_sync_ra+0x158/0xa30 [ 365.323597][ T5850] ? __lock_acquire+0xcc5/0x3c40 [ 365.323631][ T5850] filemap_get_pages+0xb62/0x1c30 [ 365.323669][ T5850] ? __pfx_filemap_get_pages+0x10/0x10 [ 365.323704][ T5850] ? __pfx___might_resched+0x10/0x10 [ 365.323745][ T5850] filemap_read+0x3c5/0xe70 [ 365.323776][ T5850] ? trace_lock_acquire+0x14e/0x1f0 [ 365.323823][ T5850] ? __pfx_filemap_read+0x10/0x10 [ 365.323874][ T5850] ? apparmor_file_permission+0x251/0x400 [ 365.323907][ T5850] blkdev_read_iter+0x187/0x4b0 [ 365.323940][ T5850] vfs_read+0x886/0xbf0 [ 365.323975][ T5850] ? __pfx_vfs_read+0x10/0x10 [ 365.324008][ T5850] ? blkdev_llseek+0x9b/0xd0 [ 365.324036][ T5850] ? __pfx_lock_release+0x10/0x10 [ 365.324072][ T5850] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 365.324114][ T5850] ksys_read+0x12b/0x250 [ 365.324147][ T5850] ? __pfx_ksys_read+0x10/0x10 [ 365.324183][ T5850] do_syscall_64+0xcd/0x250 [ 365.324214][ T5850] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 365.324250][ T5850] RIP: 0033:0x7f568a916b6a [ 365.324268][ T5850] Code: 00 3d 00 00 41 00 75 0d 50 48 8d 3d 2d 08 0a 00 e8 ea 7d 01 00 31 c0 e9 07 ff ff ff 64 8b 04 25 18 00 00 00 85 c0 75 1b 0f 05 <48> 3d 00 f0 ff ff 76 6c 48 8b 15 8f a2 0d 00 f7 d8 64 89 02 48 83 [ 365.324292][ T5850] RSP: 002b:00007ffe65b5a068 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 365.324314][ T5850] RAX: ffffffffffffffda RBX: 00001fffffff0000 RCX: 00007f568a916b6a [ 365.324331][ T5850] RDX: 0000000000000040 RSI: 0000563fb5e50978 RDI: 0000000000000009 [ 365.324346][ T5850] RBP: 0000000000000040 R08: 0000563fb5e50950 R09: 00007f568a9f1b60 [ 365.324362][ T5850] R10: 0000000000000007 R11: 0000000000000246 R12: 0000563fb5e50950 [ 365.324378][ T5850] R13: 0000563fb5e50968 R14: 0000563fb5e49ff8 R15: 0000563fb5e49fa0 [ 365.324400][ T5850] [ 365.932891][ T9906] FAULT_INJECTION: forcing a failure. [ 365.932891][ T9906] name failslab, interval 1, probability 0, space 0, times 0 [ 366.082256][ T9906] CPU: 1 UID: 0 PID: 9906 Comm: syz.4.874 Not tainted 6.14.0-rc3-syzkaller #0 [ 366.082305][ T9906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 366.082325][ T9906] Call Trace: [ 366.082335][ T9906] [ 366.082347][ T9906] dump_stack_lvl+0x16c/0x1f0 [ 366.082392][ T9906] should_fail_ex+0x50a/0x650 [ 366.082448][ T9906] ? fs_reclaim_acquire+0xae/0x150 [ 366.082502][ T9906] should_failslab+0xc2/0x120 [ 366.082530][ T9906] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 366.082579][ T9906] ? vm_area_dup+0x21/0x2f0 [ 366.082625][ T9906] vm_area_dup+0x21/0x2f0 [ 366.082671][ T9906] __split_vma+0x181/0x1160 [ 366.082720][ T9906] ? __pfx___split_vma+0x10/0x10 [ 366.082767][ T9906] ? arch_scale_cpu_capacity+0x15/0xb0 [ 366.082816][ T9906] ? dl_scaled_delta_exec+0xdd/0x2e0 [ 366.082851][ T9906] vms_gather_munmap_vmas+0x1c3/0x1730 [ 366.082905][ T9906] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 366.082953][ T9906] ? mas_walk+0x6a6/0x910 [ 366.082985][ T9906] ? trace_lock_acquire+0x14e/0x1f0 [ 366.083025][ T9906] __mmap_region+0x328/0x2760 [ 366.083083][ T9906] ? __pfx___mmap_region+0x10/0x10 [ 366.083144][ T9906] ? __pfx___schedule+0x10/0x10 [ 366.083174][ T9906] ? lock_release+0x4e2/0x6f0 [ 366.083215][ T9906] ? schedule+0x298/0x350 [ 366.083266][ T9906] ? mm_get_unmapped_area+0x95/0xe0 [ 366.083307][ T9906] ? shmem_get_unmapped_area+0x183/0xa20 [ 366.083340][ T9906] mmap_region+0x1ab/0x3f0 [ 366.083370][ T9906] do_mmap+0xd8d/0x11b0 [ 366.083412][ T9906] ? __pfx_do_mmap+0x10/0x10 [ 366.083450][ T9906] ? __pfx_down_write_killable+0x10/0x10 [ 366.083497][ T9906] vm_mmap_pgoff+0x203/0x3a0 [ 366.083542][ T9906] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 366.083588][ T9906] ? __x64_sys_futex+0x1e1/0x4c0 [ 366.083624][ T9906] ? __x64_sys_futex+0x1ea/0x4c0 [ 366.083664][ T9906] ksys_mmap_pgoff+0x7d/0x5c0 [ 366.083701][ T9906] ? rcu_is_watching+0x12/0xc0 [ 366.083751][ T9906] __x64_sys_mmap+0x125/0x190 [ 366.083799][ T9906] do_syscall_64+0xcd/0x250 [ 366.083837][ T9906] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 366.083879][ T9906] RIP: 0033:0x7efdf558cde9 [ 366.083898][ T9906] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 366.083927][ T9906] RSP: 002b:00007efdf33f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 366.083956][ T9906] RAX: ffffffffffffffda RBX: 00007efdf57a5fa0 RCX: 00007efdf558cde9 [ 366.083977][ T9906] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000002000000 [ 366.083996][ T9906] RBP: 00007efdf560e2a0 R08: fffffffffffffffa R09: 0000000000008000 [ 366.084017][ T9906] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 366.084043][ T9906] R13: 0000000000000000 R14: 00007efdf57a5fa0 R15: 00007ffc0bb16138 [ 366.084073][ T9906] [ 366.387307][ T9906] kernel write not supported for file /page_tables/current_user (pid: 9906 comm: syz.4.874)