last executing test programs: 7m50.424163822s ago: executing program 0 (id=136): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/devices.deny\x00', 0x8ea182, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0) 7m50.168559853s ago: executing program 0 (id=138): bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) 7m49.299139907s ago: executing program 0 (id=141): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd7000fcdbdf251400000005000c00050000000c000180080001006f4200924337a0e9474303bae13462806b5d30049a034193fa881180000e291cfe059a0b518f078c6537ccef901b88cbacd625cb939f19e75aee541aa2b1c766e37d384dce7b12b809cb18a8f717b2cdf5d72a6656a309953bc1", @ANYRES32=r2, @ANYBLOB="0800110001000000"], 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x0) 7m48.918244369s ago: executing program 0 (id=145): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/sysname\x00', 0xaa102, 0x0) write$auto(r0, &(0x7f00000000c0)='..\n\x06\x01K', 0x7f0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_DEL_RADIO(r1, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000080)={0x158, r2, 0x100, 0x70bd2a, 0x25dfdbff, {}, [@HWSIM_ATTR_TX_INFO_FLAGS={0xc0, 0x15, "b982a165cd550f4329c39986b10f5cc65e8dcc8f9552844f1c95c0ea557c675f5600cab14bf04d0c86716fcd6a0b08a1245042c51745ea7e666aeff4137e9688d9fb2942dafa2d7873eaaccfd54b4207a9ee28f129053308742abb5001897f1ac8e4ee1e72c78723f808bc08933a258c4a0289796610763c796f2312d27c0db0a9027724ee94b6da2a5f01cd1bec6c704654a5827a52caebbd6194a2eeba724b77d5930a25e05e5d62ca5c821c0b40fccbb58b7291adceb621526085"}, @HWSIM_ATTR_COOKIE={0xc, 0x8, 0x6}, @HWSIM_ATTR_PMSR_SUPPORT={0x54, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR={0x4}, @NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x200}, @NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x400}, @NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x1}, @NL80211_PMSR_ATTR_TYPE_CAPA={0x2c, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x3}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x9}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0xfffffffd}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x5}]}]}, @NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x6}]}, @HWSIM_ATTR_SIGNAL={0x8, 0x6, 0x81}, @HWSIM_ATTR_RX_RATE={0x8, 0x5, 0x7}, @HWSIM_ATTR_SIGNAL={0x8, 0x6, 0x6}, @HWSIM_ATTR_REG_STRICT_REG={0x4}, @HWSIM_ATTR_USE_CHANCTX={0x4}, @HWSIM_ATTR_TX_INFO_FLAGS={0x4}]}, 0x158}, 0x1, 0x0, 0x0, 0x480}, 0x4000) r3 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0) ioctl$auto(r3, 0x81004517, r3) r4 = socket(0xa, 0x1, 0x84) getsockopt$auto(r4, 0x84, 0xe, 0x0, 0x0) r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000002c0), r1) sendmsg$auto_ETHTOOL_MSG_FEATURES_GET(r4, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x441304}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x3c, r5, 0x8, 0x70bd2b, 0x25dfdbfc, {}, [@ETHTOOL_A_FEATURES_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x78a}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004001}, 0xd4) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000080)='nfsd\x00', 0x7, 0x0) chdir$auto(&(0x7f0000000000)='}[,&*}\x00') close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) open(&(0x7f0000000100)='.\x00', 0x0, 0x408) lseek$auto(0x0, 0xfff, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/mmap_min_addr\x00', 0x101302, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0x5c8) r6 = syz_clone(0x2400, 0x0, 0x0, 0x0, 0x0, 0x0) kcmp$auto_KCMP_FILE(r6, r6, 0x0, 0xffffffffffffffff, 0xffffffffffffffff) 7m48.424797903s ago: executing program 0 (id=146): socket(0xa, 0x2, 0x73) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000140), 0x100, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(0x0, 0x9, 0x0) landlock_restrict_self$auto(r0, 0x0) landlock_restrict_self$auto(r0, 0x0) 7m48.240422851s ago: executing program 0 (id=147): unshare$auto(0x40000080) (async) socket(0xa, 0x1, 0x2084) rseq$auto(0x0, 0x8000, 0x0, 0x6) (async, rerun: 32) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async, rerun: 32) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x1) (async, rerun: 32) openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000240), 0x183440, 0x0) (async, rerun: 32) r0 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000040), 0x80040, 0x0) (async, rerun: 64) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async, rerun: 64) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(0xffffffffffffffff, &(0x7f0000006380)={0xfffffffffffffffd, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4044041}, 0x4000) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000000)=""/112, 0x70) (async, rerun: 32) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async, rerun: 32) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) r1 = openat$auto_check_wx_fops_(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) pread64$auto(r1, 0x0, 0x5, 0x5) ioctl$auto_USB_RAW_IOCTL_CONFIGURE(r0, 0x5509, 0x0) (async) unshare$auto(0x40000080) (async) sendmsg$auto_MACSEC_CMD_UPD_RXSA(0xffffffffffffffff, 0x0, 0x404c044) openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) socket(0x28, 0x1, 0x0) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) (async) select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x8, 0xd, 0x1, 0x948b, 0x4460, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x7fffffff, 0x7, 0x0, 0x9, 0x1000000000000002]}, 0x0) (async, rerun: 32) r2 = socket(0x11, 0x3, 0x2) (rerun: 32) ioctl$sock_SIOCGIFINDEX(r2, 0x8955, 0x0) ioperm$auto(0xaf, 0xe, 0x991b) (async) memfd_create$auto(&(0x7f00000002c0)='IPVS\x00', 0x7) (async, rerun: 64) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) (rerun: 64) close_range$auto(0x2, 0x8, 0x0) 7m47.849808455s ago: executing program 32 (id=147): unshare$auto(0x40000080) (async) socket(0xa, 0x1, 0x2084) rseq$auto(0x0, 0x8000, 0x0, 0x6) (async, rerun: 32) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async, rerun: 32) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x1) (async, rerun: 32) openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000240), 0x183440, 0x0) (async, rerun: 32) r0 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000040), 0x80040, 0x0) (async, rerun: 64) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async, rerun: 64) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(0xffffffffffffffff, &(0x7f0000006380)={0xfffffffffffffffd, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4044041}, 0x4000) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000000)=""/112, 0x70) (async, rerun: 32) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async, rerun: 32) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) r1 = openat$auto_check_wx_fops_(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) pread64$auto(r1, 0x0, 0x5, 0x5) ioctl$auto_USB_RAW_IOCTL_CONFIGURE(r0, 0x5509, 0x0) (async) unshare$auto(0x40000080) (async) sendmsg$auto_MACSEC_CMD_UPD_RXSA(0xffffffffffffffff, 0x0, 0x404c044) openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) socket(0x28, 0x1, 0x0) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) (async) select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x8, 0xd, 0x1, 0x948b, 0x4460, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x7fffffff, 0x7, 0x0, 0x9, 0x1000000000000002]}, 0x0) (async, rerun: 32) r2 = socket(0x11, 0x3, 0x2) (rerun: 32) ioctl$sock_SIOCGIFINDEX(r2, 0x8955, 0x0) ioperm$auto(0xaf, 0xe, 0x991b) (async) memfd_create$auto(&(0x7f00000002c0)='IPVS\x00', 0x7) (async, rerun: 64) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) (rerun: 64) close_range$auto(0x2, 0x8, 0x0) 4m11.239283287s ago: executing program 3 (id=1032): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ILA_CMD_ADD(r0, &(0x7f0000000080)={0x0, 0xf0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="010028bd7000fddbdf2501"], 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x48000) 4m11.038330389s ago: executing program 3 (id=1033): r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x20282, 0x0) lsm_set_self_attr$auto(0xb, &(0x7f0000000200)={0x7, 0x7, 0xffffffffffff7fff, 0x91, "ca51d0d1437ca5d268711c0d334d2dee1271c478464a66fef0023dc3dbfe5b7b02542d35d1d071801a2fc42073371e1620398409e4cc3138dca08d7a0989984870b35d1b9150470a1727982c2b46ed426feec24b689d46fc808a202aba95bd2ca69657bb2a27c031ba1e9f73ac8180f3652bab73569b0ad09b81abb509792ce1416be44d2dd56eadaaa669e6f245e59e9d"}, 0x5, 0x1) ioctl$auto_UI_DEV_SETUP(r0, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x9, 0x80}, "6a034a07c7b8edb8fc3b39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0x6}) ioctl$auto_UI_DEV_CREATE(r0, 0x5501, 0x0) r1 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/ksm_stat\x00', 0x2, 0x0) read$auto_proc_single_file_operations_base(r1, &(0x7f0000000040)=""/228, 0xe4) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00032cbd9696d07d9f774bc1f347a1042f7000fedbdf2502000000000035eb"], 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x4008800) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) dup$auto(r1) unshare$auto(0x40000080) r2 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x0, 0x0) msync$auto(0x7, 0x4, 0x4) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r2, 0x0) mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0) r4 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000000), 0x101600, 0x0) ioctl$auto_VHOST_SET_OWNER(r4, 0xaf01, 0x0) ioctl$auto_VHOST_SET_VRING_CALL(r4, 0x4008af21, &(0x7f0000002600)) read$auto(r3, 0x0, 0x20) close_range$auto(0x2, 0x8, 0x0) r5 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vbi21\x00', 0x0, 0x0) ioctl$auto_VHOST_SET_VRING_CALL(r4, 0x4008af21, &(0x7f0000000140)={0x6, r5}) openat$auto_buffer_subbuf_size_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/buffer_subbuf_size_kb\x00', 0x2, 0x0) write$auto(0x3, 0x0, 0xfdef) 4m10.364952436s ago: executing program 3 (id=1035): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) brk$auto(0xffffffffffffff66) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x40000, 0x0) mmap$auto(0x3f, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) 4m9.183008413s ago: executing program 3 (id=1038): mmap$auto(0x0, 0x6, 0x8, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x10, 0x70bd2c, 0x25dfdbfd, {0xa, 0x0, 0xa00}}, 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='!\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x44}, 0x40090) r0 = socket(0x10, 0x2, 0x0) fcntl$auto(0x0, 0x402, 0x80000000) openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0) 4m8.886462932s ago: executing program 3 (id=1039): socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ila(&(0x7f0000000040), 0xffffffffffffffff) openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000180), 0x480, 0x0) unshare$auto(0x40000080) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) socket(0x1e, 0x1, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0x11, 0x3, 0x9) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'hsr0\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRESHEX=0x0, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYRES32=r2, @ANYBLOB="060006ff05000000080003009b"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x800) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) pread64$auto(0xffffffffffffffff, 0x0, 0x1ff, 0x8800000000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x7, 0x1ff, 0x7, 0x5, 0x7181, 0x8002, 0x7, 0x3, 0x9, 0x5, 0x80003, 0x4, 0x200000000000, 0xb4, 0x9, 0x8, 0x10006, 0x4000080, 0x0, 0x0, 0x5754a854, 0x22000, 0x200, 0x0, 0xd363}, 0x1fe, 0xd) shmget$auto(0xffffffffffffffff, 0xb0d, 0xa7db6ba) unshare$auto(0x8000400) openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) 4m7.470207672s ago: executing program 3 (id=1044): unshare$auto(0x0) mmap$auto(0x2, 0x1000000000000003, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r0 = socket(0xa, 0x1, 0x100) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/nfc/nfc1/rfkill1/index\x00', 0x1e2142, 0x0) sendfile$auto(r1, r1, 0x0, 0x6) unshare$auto(0xa4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x10, 0x2, 0x15) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1000af", @ANYRESDEC=r1], 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001) sendmmsg$auto(r3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0xe, 0x2}, 0x7}, 0x3, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x20b42, 0x0) close_range$auto(r0, r3, 0x4000000000002) r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd7\x00', 0x0, 0x0) ioctl$auto_SG_GET_RESERVED_SIZE(r5, 0x4c06, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r4, 0xc0045002, 0x0) r6 = socket(0x1, 0x80e, 0xc) unshare$auto(0x10000000400187ff) r7 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) write$auto(r7, &(0x7f0000000200)='/de\xef\xe7audio1\x00', 0xa3d9) syz_genetlink_get_family_id$auto_nlctrl(0x0, r6) sendmsg$auto_CTRL_CMD_GETPOLICY(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYRESDEC=r1, @ANYRES32=r1, @ANYBLOB="4cb245184f86db27df250a000a"], 0xf8}, 0x1, 0x0, 0x0, 0x40010}, 0x10004010) sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x64f4040a6ccda016}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x220088c0}, 0x40) ioctl$auto_SNDCTL_SEQ_GETINCOUNT(r7, 0x80045105, 0x0) socket$nl_generic(0x10, 0x3, 0x10) read$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffffff, &(0x7f00000003c0)=""/67, 0x43) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000200), 0xffffffffffffffff) 3m51.926323516s ago: executing program 33 (id=1044): unshare$auto(0x0) mmap$auto(0x2, 0x1000000000000003, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r0 = socket(0xa, 0x1, 0x100) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/nfc/nfc1/rfkill1/index\x00', 0x1e2142, 0x0) sendfile$auto(r1, r1, 0x0, 0x6) unshare$auto(0xa4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x10, 0x2, 0x15) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1000af", @ANYRESDEC=r1], 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001) sendmmsg$auto(r3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0xe, 0x2}, 0x7}, 0x3, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x20b42, 0x0) close_range$auto(r0, r3, 0x4000000000002) r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd7\x00', 0x0, 0x0) ioctl$auto_SG_GET_RESERVED_SIZE(r5, 0x4c06, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r4, 0xc0045002, 0x0) r6 = socket(0x1, 0x80e, 0xc) unshare$auto(0x10000000400187ff) r7 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) write$auto(r7, &(0x7f0000000200)='/de\xef\xe7audio1\x00', 0xa3d9) syz_genetlink_get_family_id$auto_nlctrl(0x0, r6) sendmsg$auto_CTRL_CMD_GETPOLICY(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYRESDEC=r1, @ANYRES32=r1, @ANYBLOB="4cb245184f86db27df250a000a"], 0xf8}, 0x1, 0x0, 0x0, 0x40010}, 0x10004010) sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x64f4040a6ccda016}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x220088c0}, 0x40) ioctl$auto_SNDCTL_SEQ_GETINCOUNT(r7, 0x80045105, 0x0) socket$nl_generic(0x10, 0x3, 0x10) read$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffffff, &(0x7f00000003c0)=""/67, 0x43) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000200), 0xffffffffffffffff) 8.134105451s ago: executing program 5 (id=1858): socket(0x6, 0x2, 0x3) mq_open$auto(&(0x7f0000000140)='\xbe\xf2\x82\xe7\x14g\xb5\xeeMQ\x13\xa2_g\xbf\t\xfa\xf2_N\xb0{\xf9\xb57v\xeeG\xd9l\xbf\x86q w\x96\xd9\xe9\xa8\xe1\xf0\xc7\x1f\x1e\xc4\xc4\x89u\x83\xe8}\xbd\x7fO\x91\xc1UVW.\xb6\xad\x04u\x02w.\xec`O\xc1\x0e\x15\xe7:\xc9\x1bK\xcddY\x03\x95\xd1\xae\xc1\x9b\x96\x9faj\xd2\xfc\xfc\x1f7\xaf\xcan\xf6\xc0wK\xce\xe7Q\xae\xc9Hw\x01\xef\xda[\xe5\xa3\xa3%\'\x8f\xcf\x96X:\x04Dkt\x7f\xde\x80\x01\xddX\x91\x88\xa1\t\xc3\xf1\xfe[\x93$O8 b\xb4\x92\xf4\xbc\xc5\xb9\x989\xfcF\xec\xdc@\xdd\xdaeM\xe0U\xc8;\xf5\xe7$Q8\xd2\x87\xdd\xc5\x9d\xc5\xe8\xb5\xb5\xb8\xdfD\xd0\xe8t\x8aS\xaa\xbe\xaa\xba\x9e^0\x1a\xf8Y\xf0H5\xa9u\x0e\xc4\x04\x13\xf58p\x9f\x11\xc07\xefS*|\xd87\x12\xc0\xce\xde0\xd82;\xcd\x18\r\xccI\x99\n\xd2\x86\xc5\x01\'\x8b\x87\xc9\xc3\xeeK|\xae\xb8]\x8f\fID\xb1\x98\xf4\x81@\x1c\xaa\xfd\xbc\xc2\x13@\x7f\x93n/l\xac\xfb|\x99\xe0\t\xea\v\x8d\x15>\xd9\x06\x06\xd3\xdcf\xaf\x86G\xcc\xff\xa4XHH\x7f\x85,\xb1\xc7\x16\xe67R\xb4\x95\xb5\x8d\auH{u\xd3\xd0\xbb\b\x89?;\xc6\xd2\xf3\x95\xb5\x97Z\x88\x02\xa1\x94\x9f\xf50\x03\x15\xd93*\xa1{\x13\xc7P1$;e\x18sB+b\x94\xcd^\xa2\x8bT\xf9Q\x97\xd7\"\x13\x83$~\x17\x1aL\n\xae\xeb\xd5tNj\x04<){n \xda\x15\x95<\x1c\xf7\xa6u\x8d\xe9[\x03\x13\xd04\t\x00\x00\x00\x92{\x87\x1a\x7f|\xed\x8c\xe9\x02\x80$\xeaz\xa4T\xc8\xa7\xb8y\xce\xd5R\x10\xac1v\x8bdp\xb3{(\xb9\x95\x8b\x82\x06\"\xd2\xa9A\x02\x8e\xfa\v\xa0`\xab\xb7\xc6\xbe\xea\a\xef\xf7\xb1\x00'/479, 0x1, 0x8, 0x0) mq_notify$auto(0x4, 0x0) mq_notify$auto(0x4, &(0x7f0000000040)={@sival_ptr=0x0, @inferred, 0x1}) openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, 0x0, 0x2dc08f24db163610, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x10, 0x0) fsopen$auto(0x0, 0x1) adjtimex$auto(&(0x7f00000005c0)={0xf332b6e, 0x0, 0xcea4, 0xfffffffffffffffd, 0xd4, 0x1, 0x0, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1007bfe, 0x0, 0x9, 0x81, 0xdfffffffffff628c, 0x2, 0xdeb1, 0x808}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/module/i915/parameters/mitigations\x00', 0x80302, 0x0) sendfile$auto(r1, r1, 0x0, 0x7ffff000) openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, 0x0, 0x12000, 0x0) socket(0x29, 0x800, 0x6) ioctl$auto_MTDFILEMODE(0xffffffffffffffff, 0x4d13, 0x0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) r2 = eventfd$auto(0x80) readv$auto(r2, &(0x7f0000000380)={0x0, 0x8}, 0x4) read$auto(r2, 0x0, 0xcc9c) userfaultfd$auto(0x4) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/mm/transparent_hugepage/khugepaged/scan_sleep_millisecs\x00', 0xa0582, 0x0) write$auto(r3, 0x0, 0x2b6) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) 7.089187068s ago: executing program 5 (id=1860): pwrite64$auto(0xc8, 0x0, 0xfdef, 0x3) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0) open(&(0x7f0000000280)='./cgroup\x00', 0x5d52c0, 0x0) r0 = socket(0xa, 0x2, 0x3a) open_by_handle_at$auto(r0, 0x0, 0xffffffff) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x5e23, @remote}, 0x6a) prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x0, 0xffffffffffffffff, 0x9, 0x7) write$auto(0xffffffffffffffff, 0x0, 0xb9ab) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x300, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, 0x0, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x3, 0x6, 0x0, 0x10000, 0x1, 0x2, {0x2100000000, 0x10000}, 0x3, 0x6, 0xffffffffffffffdd, 0x1008000, 0x0, 0x80000004, 0x83, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x1800}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x1, 0x2040000, 0x100000001, 0x7fffffff) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_tcp_metrics(0x0, 0xffffffffffffffff) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x10001, 0x0) mmap$auto(0x0, 0x810005, 0xffb, 0x12, 0x3, 0x8000) write$auto(0x3, 0x0, 0x100082) sendmsg$auto_TCP_METRICS_CMD_GET(r3, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000b00)={0x14, r4, 0x89c1beb01534ff9b, 0x70bd29, 0x25dfdbfb}, 0x14}}, 0x0) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/maps\x00', 0x21000, 0x0) tgkill$auto(0x1, 0x1, 0x5) mmap$auto(0xf400, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) 6.151700424s ago: executing program 4 (id=1862): r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/radio6\x00', 0x8a240, 0x0) pread64$auto(r0, 0x0, 0x6, 0x7) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f0000000000)='./file0\x00', 0xa48c2, 0x4) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x6c, 0x0, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@HSR_A_IF1_AGE={0x8, 0x3, 0x200}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x8000}, @HSR_A_IFINDEX={0x8}, @HSR_A_NODE_ADDR_B={0xa, 0x5, @random="c862a41180f6"}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_NODE_ADDR={0xa, 0x1, @random="70b28a70c5dc"}, @HSR_A_IF2_AGE={0x8, 0x4, 0x3}, @HSR_A_IF2_SEQ={0x6, 0x7, 0xff}, @HSR_A_NODE_ADDR={0xa, 0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) r1 = socket(0x28, 0x80000, 0x3) ppoll$auto(&(0x7f0000000000)={r1, 0x4, 0x5}, 0x7, 0x0, 0x0, 0x8) setsockopt$auto(r0, 0x9, 0x13, &(0x7f0000000300)='\x00@\x00n|\xaa\x1f\xc7\xe6\x8a\x9d\xc4\xffmqRm\xf1\x9b\x86\xc7\x91!\xf1,\xba\xc9\xe9\xd2\xbej\b\xe8L\xff\xec\xee\xec,{\x1bC9\xb4\xef=\x87S\x9d[i\x8b`\x9dN\b\vPN\x89\xd6Q:\xfb\xf9B#fk\n\x06\xcb\xf7\x9d$\xfc\xb7\x00\x8a\xd9\x9f]\x06\xd8\x19\xc3\"_\x96,\xd8\viM\x13\xbc\xb4pi\x8b\xce\xb5\x97\xbfj\xe3\'\xd8\x15Q1mZ\xe0\xa6\xd7,E\x91\xe2\xa6\xe0\xa4$\xb4\x8a|\x00\xe1\xcbn\x84\x17k,\x9d\x11\x12\x05\x00\x00\x00\x00\x00\x00\x00\x0e\xfb\xa8\xbfD\xa6Cq\xc0\x82g\xa5i\x13\x0e\x83V\x95\xe3E,t\x8e\xa1\xa5\xd9\f\x99\xaa\xe9\x9a\xeff$\x8b\xa48\x85:=\xe5\xf5A\xb8Fi<:\x8b\xe3\x7f\x03\xb2\x81\xa4\x81\r\x02\x82\xda\xf0\xeb\x96K\\`\x9f\xb9\xbe\xa3\xa7pL\xb4\xfc\x1a\xef&\xf3\xf0\xf1\xbfG)\x99\x05{\x8d\x93\x10\x81vFh\xf9\xed<\x15\x0f\x13\x10\xb3/\x1a\x85\xf8C\x96\x01\x95\x01!5\x86M\xfeM~AhO#d\xa4Vm0\xb1\xf9Y6&LYk\xeb\xf7\xbb\vd,\r\x96\x922dFy\xcc\x04', 0x9) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) socket(0x2, 0x801, 0x100) pipe$auto(&(0x7f0000000080)=0xffffffffffffffff) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d) r3 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/pcmC1D0c\x00', 0x20000, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_DROP2(r3, 0x4143, 0x0) read$auto_stat_fops_per_vm_kvm_main(r2, &(0x7f00000000c0)=""/211, 0xd3) sendfile$auto(0x6, 0x3, 0x0, 0xfffffdef) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mq_open$auto(0x0, 0x0, 0x7d, &(0x7f0000000040)={0xfffffffffffffffd, 0x6, 0xffffffffffffffc0, 0x800000000000006}) socket(0x2, 0x80805, 0x0) r4 = eventfd$auto(0x7) writev$auto(0x4, &(0x7f0000000080)={&(0x7f0000000040), 0x8}, 0x1) read$auto_vhci_fops_hci_vhci(r4, &(0x7f0000000200)=""/36, 0x24) 5.180367995s ago: executing program 2 (id=1863): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/attr/exec\x00', 0x101000, 0x0) recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000380)={{&(0x7f00000001c0)="a36d3fa58cc14c483eaeefbda25ed11e6584b0e06b6f7d2a0920bb3dac705aa384572b6a4be4e53907a7b258", 0x7fff, 0x0, 0x9, 0x0, 0x2, 0x9}, 0x2}, 0xfffffffd, 0x3, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) ppoll$auto(0x0, 0x7f, 0x0, &(0x7f00000001c0)={0x3}, 0x8) mount$auto(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)='nfs\x00', 0x1, &(0x7f00000001c0)) write$auto_proc_pid_attr_operations_base(r0, &(0x7f0000000280)="e6eec9f1147ef5a4e8", 0x9) r1 = socket(0xa, 0x3, 0x2f) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40811}, 0x4000013) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="5e0027b4839f3015398d3b61", @ANYRES32, @ANYRES32=r1], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000f80), 0xffffffffffffffff) sendmsg$auto_ILA_CMD_DEL(r2, &(0x7f0000001040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x44884) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'ip6gre0\x00'}) sendmsg$auto_ILA_CMD_DEL(r1, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, r3, 0x200, 0x70bd2a, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x1) r4 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 4.847184496s ago: executing program 4 (id=1864): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) clock_nanosleep$auto(0x1, 0x200, &(0x7f0000000140)={0x0, 0x2800000a}, 0x0) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) syz_clone(0x4200, 0x0, 0x0, 0x0, 0x0, 0x0) mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x20000000) 4.67703328s ago: executing program 5 (id=1867): rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0x6, 0x2}, 0x8000, 0x0, 0x6) open(&(0x7f0000000080)='./file0\x00', 0x22ac2, 0x5d745cb200ae4d7b) mount$auto(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x5, 0x0) 4.528151388s ago: executing program 1 (id=1868): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x802, 0x0) r1 = io_uring_setup$auto(0x6, 0x0) ioctl$auto(r0, 0xc1205531, r1) 4.32667669s ago: executing program 5 (id=1869): socket(0xa, 0x3, 0x3a) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0xa, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) select$auto(0x3, 0x0, 0x0, 0x0, 0x0) syslog$auto(0x2, 0x0, 0xcf) close_range$auto(0x2, 0x8, 0x0) shmget$auto(0x400, 0x10563, 0x568c12f2) sendmsg$auto_NL80211_CMD_AUTHENTICATE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x24048800) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x2020009, 0x3, 0x20000000eb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6) r1 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/pcmC0D0p\x00', 0x40002, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_TTSTAMP(r1, 0x40044103, &(0x7f0000000180)=0x1) write$auto_tomoyo_operations_securityfs_if(0xffffffffffffffff, &(0x7f0000001300), 0x0) shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0xc76, 0x8000) shmdt$auto(&(0x7f0000000000)=':-h!/-^@(\']@%]/\x00') close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) 3.903208558s ago: executing program 4 (id=1870): socket(0x6, 0x2, 0x3) mq_open$auto(&(0x7f0000000140)='\xbe\xf2\x82\xe7\x14g\xb5\xeeMQ\x13\xa2_g\xbf\t\xfa\xf2_N\xb0{\xf9\xb57v\xeeG\xd9l\xbf\x86q w\x96\xd9\xe9\xa8\xe1\xf0\xc7\x1f\x1e\xc4\xc4\x89u\x83\xe8}\xbd\x7fO\x91\xc1UVW.\xb6\xad\x04u\x02w.\xec`O\xc1\x0e\x15\xe7:\xc9\x1bK\xcddY\x03\x95\xd1\xae\xc1\x9b\x96\x9faj\xd2\xfc\xfc\x1f7\xaf\xcan\xf6\xc0wK\xce\xe7Q\xae\xc9Hw\x01\xef\xda[\xe5\xa3\xa3%\'\x8f\xcf\x96X:\x04Dkt\x7f\xde\x80\x01\xddX\x91\x88\xa1\t\xc3\xf1\xfe[\x93$O8 b\xb4\x92\xf4\xbc\xc5\xb9\x989\xfcF\xec\xdc@\xdd\xdaeM\xe0U\xc8;\xf5\xe7$Q8\xd2\x87\xdd\xc5\x9d\xc5\xe8\xb5\xb5\xb8\xdfD\xd0\xe8t\x8aS\xaa\xbe\xaa\xba\x9e^0\x1a\xf8Y\xf0H5\xa9u\x0e\xc4\x04\x13\xf58p\x9f\x11\xc07\xefS*|\xd87\x12\xc0\xce\xde0\xd82;\xcd\x18\r\xccI\x99\n\xd2\x86\xc5\x01\'\x8b\x87\xc9\xc3\xeeK|\xae\xb8]\x8f\fID\xb1\x98\xf4\x81@\x1c\xaa\xfd\xbc\xc2\x13@\x7f\x93n/l\xac\xfb|\x99\xe0\t\xea\v\x8d\x15>\xd9\x06\x06\xd3\xdcf\xaf\x86G\xcc\xff\xa4XHH\x7f\x85,\xb1\xc7\x16\xe67R\xb4\x95\xb5\x8d\auH{u\xd3\xd0\xbb\b\x89?;\xc6\xd2\xf3\x95\xb5\x97Z\x88\x02\xa1\x94\x9f\xf50\x03\x15\xd93*\xa1{\x13\xc7P1$;e\x18sB+b\x94\xcd^\xa2\x8bT\xf9Q\x97\xd7\"\x13\x83$~\x17\x1aL\n\xae\xeb\xd5tNj\x04<){n \xda\x15\x95<\x1c\xf7\xa6u\x8d\xe9[\x03\x13\xd04\t\x00\x00\x00\x92{\x87\x1a\x7f|\xed\x8c\xe9\x02\x80$\xeaz\xa4T\xc8\xa7\xb8y\xce\xd5R\x10\xac1v\x8bdp\xb3{(\xb9\x95\x8b\x82\x06\"\xd2\xa9A\x02\x8e\xfa\v\xa0`\xab\xb7\xc6\xbe\xea\a\xef\xf7\xb1\x00'/479, 0x1, 0x8, 0x0) mq_notify$auto(0x4, 0x0) mq_notify$auto(0x4, &(0x7f0000000040)={@sival_ptr=0x0, @inferred, 0x1}) openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, 0x0, 0x2dc08f24db163610, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x10, 0x0) fsopen$auto(0x0, 0x1) adjtimex$auto(&(0x7f00000005c0)={0xf332b6e, 0x0, 0xcea4, 0xfffffffffffffffd, 0xd4, 0x1, 0x0, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1007bfe, 0x0, 0x9, 0x81, 0xdfffffffffff628c, 0x2, 0xdeb1, 0x808}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/module/i915/parameters/mitigations\x00', 0x80302, 0x0) sendfile$auto(r1, r1, 0x0, 0x7ffff000) openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, 0x0, 0x12000, 0x0) socket(0x29, 0x800, 0x6) ioctl$auto_MTDFILEMODE(0xffffffffffffffff, 0x4d13, 0x0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) r2 = eventfd$auto(0x80) readv$auto(r2, &(0x7f0000000380)={0x0, 0x8}, 0x4) read$auto(r2, 0x0, 0xcc9c) userfaultfd$auto(0x4) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/mm/transparent_hugepage/khugepaged/scan_sleep_millisecs\x00', 0xa0582, 0x0) write$auto(r3, 0x0, 0x2b6) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) 3.902918477s ago: executing program 1 (id=1871): r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket(0x11, 0x3, 0x9) sendmmsg$auto(r2, &(0x7f00000006c0)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={&(0x7f0000000200)="4c030000000000000029", 0x49}, 0x5, &(0x7f0000000700), 0x5, 0x1}, 0x5}, 0x2, 0x100) r3 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='*\x00%i'], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) madvise$auto_MADV_GUARD_INSTALL(0x0, 0x2021000, 0x66) r4 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r4, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x6, 0x50b301a, 0x2c, 0x2c, 0x0, 0x2}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_event_inject_fops_trace(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/inject\x00', 0x2, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) open(&(0x7f0000000000)='./file0\x00', 0xa09c2, 0xa4) socket(0x2, 0x801, 0x100) r5 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0) ioctl$auto(r5, 0x9210641f, 0xd) close_range$auto(0x2, 0x8, 0x0) pipe$auto(&(0x7f0000000040)) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d) sendfile$auto(0x6, 0x3, 0x0, 0xfffffdef) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) mbind$auto(0x2000, 0x100000004, 0x400100000000, 0x0, 0x6, 0x2) mprotect$auto(0x8001, 0x4, 0x5) 3.902805412s ago: executing program 2 (id=1872): io_uring_setup$auto(0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ioctl$auto_UBI_IOCDET(0xffffffffffffffff, 0x40046f41, 0x0) unshare$auto(0x40000080) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/tty53\x00', 0x200, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0x5c083, 0x0) select$auto(0x7, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x0, 0x1, 0x2, 0x3, 0x95f4da0a, 0xefffffffffffffff, 0x3, 0x62, 0x80000001, 0x10000000000004, 0x6d40, 0x1, 0x2, 0xfffffffffffffffe]}, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r1, 0x0, 0x1, 0x0, 0x1e) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x7, 0xc45d, 0x80, 0x6, 0x3, 0x2, 0x3, 0x3, 0x62, 0x80000022, 0x7, 0x6d3e, 0x2000000004000009, 0x2, 0x6]}, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000) ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto(r2, 0x5522, 0xf15) 2.798652215s ago: executing program 4 (id=1873): r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/radio6\x00', 0x8a240, 0x0) pread64$auto(r0, 0x0, 0x6, 0x7) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f0000000000)='./file0\x00', 0xa48c2, 0x4) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x6c, 0x0, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@HSR_A_IF1_AGE={0x8, 0x3, 0x200}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x8000}, @HSR_A_IFINDEX={0x8}, @HSR_A_NODE_ADDR_B={0xa, 0x5, @random="c862a41180f6"}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_NODE_ADDR={0xa, 0x1, @random="70b28a70c5dc"}, @HSR_A_IF2_AGE={0x8, 0x4, 0x3}, @HSR_A_IF2_SEQ={0x6, 0x7, 0xff}, @HSR_A_NODE_ADDR={0xa, 0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) r1 = socket(0x28, 0x80000, 0x3) ppoll$auto(&(0x7f0000000000)={r1, 0x4, 0x5}, 0x7, 0x0, 0x0, 0x8) setsockopt$auto(r0, 0x9, 0x13, &(0x7f0000000300)='\x00@\x00n|\xaa\x1f\xc7\xe6\x8a\x9d\xc4\xffmqRm\xf1\x9b\x86\xc7\x91!\xf1,\xba\xc9\xe9\xd2\xbej\b\xe8L\xff\xec\xee\xec,{\x1bC9\xb4\xef=\x87S\x9d[i\x8b`\x9dN\b\vPN\x89\xd6Q:\xfb\xf9B#fk\n\x06\xcb\xf7\x9d$\xfc\xb7\x00\x8a\xd9\x9f]\x06\xd8\x19\xc3\"_\x96,\xd8\viM\x13\xbc\xb4pi\x8b\xce\xb5\x97\xbfj\xe3\'\xd8\x15Q1mZ\xe0\xa6\xd7,E\x91\xe2\xa6\xe0\xa4$\xb4\x8a|\x00\xe1\xcbn\x84\x17k,\x9d\x11\x12\x05\x00\x00\x00\x00\x00\x00\x00\x0e\xfb\xa8\xbfD\xa6Cq\xc0\x82g\xa5i\x13\x0e\x83V\x95\xe3E,t\x8e\xa1\xa5\xd9\f\x99\xaa\xe9\x9a\xeff$\x8b\xa48\x85:=\xe5\xf5A\xb8Fi<:\x8b\xe3\x7f\x03\xb2\x81\xa4\x81\r\x02\x82\xda\xf0\xeb\x96K\\`\x9f\xb9\xbe\xa3\xa7pL\xb4\xfc\x1a\xef&\xf3\xf0\xf1\xbfG)\x99\x05{\x8d\x93\x10\x81vFh\xf9\xed<\x15\x0f\x13\x10\xb3/\x1a\x85\xf8C\x96\x01\x95\x01!5\x86M\xfeM~AhO#d\xa4Vm0\xb1\xf9Y6&LYk\xeb\xf7\xbb\vd,\r\x96\x922dFy\xcc\x04', 0x9) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) socket(0x2, 0x801, 0x100) pipe$auto(&(0x7f0000000080)=0xffffffffffffffff) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d) r3 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/pcmC1D0c\x00', 0x20000, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_DROP2(r3, 0x4143, 0x0) read$auto_stat_fops_per_vm_kvm_main(r2, &(0x7f00000000c0)=""/211, 0xd3) sendfile$auto(0x6, 0x3, 0x0, 0xfffffdef) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mq_open$auto(0x0, 0x0, 0x7d, &(0x7f0000000040)={0xfffffffffffffffd, 0x6, 0xffffffffffffffc0, 0x800000000000006}) socket(0x2, 0x80805, 0x0) r4 = eventfd$auto(0x7) writev$auto(0x4, &(0x7f0000000080)={&(0x7f0000000040), 0x8}, 0x1) read$auto_vhci_fops_hci_vhci(r4, &(0x7f0000000200)=""/36, 0x24) 2.789062613s ago: executing program 1 (id=1874): bpf$auto(0x68, &(0x7f0000000000)=@bpf_attr_3={0xa332, 0x2, 0x6, 0x5, 0xfffffbff, 0x2, 0x1, 0x4, 0x7, "0108a5172d53c2dc73bf58e1423b2178", 0x0, 0x9, 0xffffffffffffffff, 0x81, 0x8, 0x81, 0xb03, 0xfffffffffffffffd, 0x3ff, 0x7, @attach_prog_fd, 0xb5f3, 0x632, 0x57d, 0x1ff, 0x8, 0xffffffffffffffff, 0xffffffffffffffff}, 0xa3) mmap$auto(0x0, 0x400008, 0xdd, 0x9b72, 0x2, 0x8000) r2 = socket(0x2, 0x5, 0x0) close_range$auto(0x2, 0x8, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x28, 0x801, 0x0) openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000200), r3) (async) r4 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000200), r3) waitid$auto_P_PIDFD(0x3, r0, &(0x7f0000000240)={@siginfo_0_0={0xfffffe01, 0x10000, 0x10, @_sigpoll={0xda, r1}}}, 0x56, &(0x7f00000002c0)={{0x20, 0x36}, {0x800, 0x3}, 0x101, 0x101, 0xa, 0x5, 0x40, 0x2, 0x7000000, 0x8, 0x1, 0x0, 0x398, 0x10001, 0x65, 0xffffffff}) (async) r5 = waitid$auto_P_PIDFD(0x3, r0, &(0x7f0000000240)={@siginfo_0_0={0xfffffe01, 0x10000, 0x10, @_sigpoll={0xda, r1}}}, 0x56, &(0x7f00000002c0)={{0x20, 0x36}, {0x800, 0x3}, 0x101, 0x101, 0xa, 0x5, 0x40, 0x2, 0x7000000, 0x8, 0x1, 0x0, 0x398, 0x10001, 0x65, 0xffffffff}) sendmsg$auto_NL802154_CMD_ABORT_SCAN(r1, &(0x7f0000001ac0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000001a80)={&(0x7f0000000380)={0x16dc, r4, 0x20, 0x70bd2d, 0x25dfdbff, {}, [@NL802154_ATTR_MAX_ASSOCIATIONS={0x8, 0x27, 0x4}, @NL802154_ATTR_SEC_KEY={0x16b8, 0x30, 0x0, 0x1, [@nested={0x11ba, 0xbf, 0x0, 0x1, [@typed={0xd, 0x5e, 0x0, 0x0, @str=':,:\"[@&}\x00'}, @typed={0x14, 0x18, 0x0, 0x0, @ipv6=@empty}, @typed={0x4, 0x6c}, @generic="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", @generic="3fcb6616641af99a48ecf055852baa4a1a5e7386e82e791b143f2aa47c5a679657aa445c7fa5eb90aa4f583abb6b7893e5aaf7897bbdfcbd0f4305df54d1671b5d05e73b8570b5aee2be7efb49a5b4fd82f06d226611a26cef8ce00f3b0eb24665a5dbf4aa319bdd91aa82d70671cbe30949bd43192ac424c041fe3365ad25c905dab257385bc5bd7450cfae13b7d66e098f2291b129058a4090556792211c184e20a572a5cd05ce7960145c7ef48c67be941ce281f0b32f4332b5035a8f31f57190ba52d30e5dd6e02444461527fa076b36a5aae5cde8d1358b3ebeeb7fd9d17a", @nested={0x4, 0x2a}, @generic="79017dfa1066fb88910caaaf5327bfb3dc77b4e501519b5316dd76a408fffa6e9a3ac42bcc961efed323a9e7865ba20544bf91177bf782d07a5ba4667cb931301156fdee5ac0d3d918818d38903773f9619b750c6ca1d8004819238a678a8f5fcf6cffe9055989b280fe7871e2e8244b425204065b3a1677c8bdf3e10348b52f910f91f193162058511844ccaeac4b790a34ea35601f6b0631e3aa8999e6a563e38e99e696786955be"]}, @typed={0x8, 0x20, 0x0, 0x0, @ipv4=@multicast2}, @nested={0x212, 0x1a, 0x0, 0x1, [@typed={0x4, 0xae}, @typed={0x8, 0x59, 0x0, 0x0, @u32=0x8}, @nested={0x4, 0x68}, @typed={0x14, 0x2a, 0x0, 0x0, @ipv6=@local}, @nested={0x4, 0x61}, @typed={0x8, 0xc8, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @generic="314ca2b01b57ee139ed44e535fe25ebda1b7024d3610558ddd00eff6ba2c7716155ab7179e6cdb4e41499f5644aa373140be169d6200b4c4dd426b141abab786927ea5626b86e8b7e4b35695cc7ff06bcf2b35826303fef4d29e7054fd9c8d333ea9b6d9ec35d5562bb7f2616f3b6bde0ddad56c11977ea7cba8aa530037263f312301bd66f35cdc7b4937c3ff5a00", @generic="cbc91f574c264c143c33a3db3a457182e0a858e56fa3a0b8b13ed8b573bf470d1abe66fd6ff58040129d827a9786180bc7627b863d26b1b0b7c73302fab98678828df8f7b0d5ae6cac946074cb52d5bb3f43ff79fd32c9d64cbe86c8b92f569cbece4e202e8d04c6", @generic="ef06a6bde0d8e385eeacdb38738225707247a500c106f4842ab5c5f3c318946887dc6529d85cad3303f827c2693fade239054891f4dc30ed34bc12f076a602ccff26e1ab413b11aec8fc3d56e9ed1a68427a6a630a328b64bd223bcec229fb9ecb795e060aef614ff922fcc7f64858db593f9277fd3acd54e4b8a5d1865c58dd286c9bf063d7c4c6d16a57c04d36e2e438ab20a1cd980e2a07cb5c25956dc12a89ea60d17068b4ce79e1fea64b8dae168b008587c486e70493fbe66c5dab9242206ba250579f0c517c1ec8479885df4c2ec610914cf5fcc29bf24357955b406019a85e9c141169"]}, @nested={0x1ba, 0x131, 0x0, 0x1, [@typed={0xf, 0xd1, 0x0, 0x0, @str='/dev/nvram\x00'}, @nested={0x4, 0x124}, @generic="42345c87df1b94cc41d8fa5ff2e5763681a2df9c64d1a2d810d6884c530982da26ada5db8c3e1e195de64bf9428261ed9d2f58acbf21047bdfa07d0cff729cac45390b5abd3d0a78ffcf3118d1abb605bb4ee253d0c10f1c1589ddfd891a1508572671a58700fdb7ed0284526f55ed2f14d93a3032f9ef70dda103155aac5a070039c57a96479a2b62509d9bbe3d9e4630049512bfaf0f7b2b39401bf5ba8c06f3cbb7cd6db39d169f8a4ba3bf3e2f3e9d731cd9e9279d5ebe1bceadff797c25c3b0a3cf24e970f1ec8516736ef734930a5bef1f776d8d8e595a9b61", @generic="67de31c07096ad1ad01a69be54ecd4dfa50407f87fdbcae2b5374baaf2bdf32f89debd87125d8f033069c4894c1016d3773fbeba99ae91cc4b9375daf518785df8c4799a9072133e4f6c704b539e29c5c11e2626a30d56156bd7e4af0428981e1fbcec4f863ac4e80a63c78f83b2bc537490ca27b735f6b18c9e704178bed26dbdfa3f799818c48428b07e10ba62b2f272b68a2a69cc4a6a3c65d03c8a9a0149ca60010df64222709573a9a12af606ee9519af02c1b8ec318846ca9318062148d1d194c2b74d"]}, @nested={0x10, 0x94, 0x0, 0x1, [@typed={0xc, 0x18, 0x0, 0x0, @u64=0x4}]}, @typed={0x8, 0x11c, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x10}}, @nested={0xc, 0xc2, 0x0, 0x1, [@typed={0x8, 0x113, 0x0, 0x0, @pid=r5}]}, @generic="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"]}, @NL802154_ATTR_TX_POWER={0x8, 0xb, 0x6}]}, 0x16dc}, 0x1, 0x0, 0x0, 0x4044880}, 0x8000) (async) sendmsg$auto_NL802154_CMD_ABORT_SCAN(r1, &(0x7f0000001ac0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000001a80)={&(0x7f0000000380)={0x16dc, r4, 0x20, 0x70bd2d, 0x25dfdbff, {}, [@NL802154_ATTR_MAX_ASSOCIATIONS={0x8, 0x27, 0x4}, @NL802154_ATTR_SEC_KEY={0x16b8, 0x30, 0x0, 0x1, [@nested={0x11ba, 0xbf, 0x0, 0x1, [@typed={0xd, 0x5e, 0x0, 0x0, @str=':,:\"[@&}\x00'}, @typed={0x14, 0x18, 0x0, 0x0, @ipv6=@empty}, @typed={0x4, 0x6c}, @generic="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", @generic="3fcb6616641af99a48ecf055852baa4a1a5e7386e82e791b143f2aa47c5a679657aa445c7fa5eb90aa4f583abb6b7893e5aaf7897bbdfcbd0f4305df54d1671b5d05e73b8570b5aee2be7efb49a5b4fd82f06d226611a26cef8ce00f3b0eb24665a5dbf4aa319bdd91aa82d70671cbe30949bd43192ac424c041fe3365ad25c905dab257385bc5bd7450cfae13b7d66e098f2291b129058a4090556792211c184e20a572a5cd05ce7960145c7ef48c67be941ce281f0b32f4332b5035a8f31f57190ba52d30e5dd6e02444461527fa076b36a5aae5cde8d1358b3ebeeb7fd9d17a", @nested={0x4, 0x2a}, @generic="79017dfa1066fb88910caaaf5327bfb3dc77b4e501519b5316dd76a408fffa6e9a3ac42bcc961efed323a9e7865ba20544bf91177bf782d07a5ba4667cb931301156fdee5ac0d3d918818d38903773f9619b750c6ca1d8004819238a678a8f5fcf6cffe9055989b280fe7871e2e8244b425204065b3a1677c8bdf3e10348b52f910f91f193162058511844ccaeac4b790a34ea35601f6b0631e3aa8999e6a563e38e99e696786955be"]}, @typed={0x8, 0x20, 0x0, 0x0, @ipv4=@multicast2}, @nested={0x212, 0x1a, 0x0, 0x1, [@typed={0x4, 0xae}, @typed={0x8, 0x59, 0x0, 0x0, @u32=0x8}, @nested={0x4, 0x68}, @typed={0x14, 0x2a, 0x0, 0x0, @ipv6=@local}, @nested={0x4, 0x61}, @typed={0x8, 0xc8, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @generic="314ca2b01b57ee139ed44e535fe25ebda1b7024d3610558ddd00eff6ba2c7716155ab7179e6cdb4e41499f5644aa373140be169d6200b4c4dd426b141abab786927ea5626b86e8b7e4b35695cc7ff06bcf2b35826303fef4d29e7054fd9c8d333ea9b6d9ec35d5562bb7f2616f3b6bde0ddad56c11977ea7cba8aa530037263f312301bd66f35cdc7b4937c3ff5a00", @generic="cbc91f574c264c143c33a3db3a457182e0a858e56fa3a0b8b13ed8b573bf470d1abe66fd6ff58040129d827a9786180bc7627b863d26b1b0b7c73302fab98678828df8f7b0d5ae6cac946074cb52d5bb3f43ff79fd32c9d64cbe86c8b92f569cbece4e202e8d04c6", @generic="ef06a6bde0d8e385eeacdb38738225707247a500c106f4842ab5c5f3c318946887dc6529d85cad3303f827c2693fade239054891f4dc30ed34bc12f076a602ccff26e1ab413b11aec8fc3d56e9ed1a68427a6a630a328b64bd223bcec229fb9ecb795e060aef614ff922fcc7f64858db593f9277fd3acd54e4b8a5d1865c58dd286c9bf063d7c4c6d16a57c04d36e2e438ab20a1cd980e2a07cb5c25956dc12a89ea60d17068b4ce79e1fea64b8dae168b008587c486e70493fbe66c5dab9242206ba250579f0c517c1ec8479885df4c2ec610914cf5fcc29bf24357955b406019a85e9c141169"]}, @nested={0x1ba, 0x131, 0x0, 0x1, [@typed={0xf, 0xd1, 0x0, 0x0, @str='/dev/nvram\x00'}, @nested={0x4, 0x124}, @generic="42345c87df1b94cc41d8fa5ff2e5763681a2df9c64d1a2d810d6884c530982da26ada5db8c3e1e195de64bf9428261ed9d2f58acbf21047bdfa07d0cff729cac45390b5abd3d0a78ffcf3118d1abb605bb4ee253d0c10f1c1589ddfd891a1508572671a58700fdb7ed0284526f55ed2f14d93a3032f9ef70dda103155aac5a070039c57a96479a2b62509d9bbe3d9e4630049512bfaf0f7b2b39401bf5ba8c06f3cbb7cd6db39d169f8a4ba3bf3e2f3e9d731cd9e9279d5ebe1bceadff797c25c3b0a3cf24e970f1ec8516736ef734930a5bef1f776d8d8e595a9b61", @generic="67de31c07096ad1ad01a69be54ecd4dfa50407f87fdbcae2b5374baaf2bdf32f89debd87125d8f033069c4894c1016d3773fbeba99ae91cc4b9375daf518785df8c4799a9072133e4f6c704b539e29c5c11e2626a30d56156bd7e4af0428981e1fbcec4f863ac4e80a63c78f83b2bc537490ca27b735f6b18c9e704178bed26dbdfa3f799818c48428b07e10ba62b2f272b68a2a69cc4a6a3c65d03c8a9a0149ca60010df64222709573a9a12af606ee9519af02c1b8ec318846ca9318062148d1d194c2b74d"]}, @nested={0x10, 0x94, 0x0, 0x1, [@typed={0xc, 0x18, 0x0, 0x0, @u64=0x4}]}, @typed={0x8, 0x11c, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x10}}, @nested={0xc, 0xc2, 0x0, 0x1, [@typed={0x8, 0x113, 0x0, 0x0, @pid=r5}]}, @generic="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"]}, @NL802154_ATTR_TX_POWER={0x8, 0xb, 0x6}]}, 0x16dc}, 0x1, 0x0, 0x0, 0x4044880}, 0x8000) r6 = memfd_create$auto(&(0x7f0000001b00)='%!-/#\x00', 0xe) ioctl$auto_EVIOCSMASK(r6, 0x40104593, &(0x7f0000001b40)={0x80, 0x1, 0x9}) epoll_create$auto(0x4) epoll_ctl$auto(0x5, 0x1, r2, 0x0) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) openat$auto_cgwb_debug_stats_fops_(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/kernel/debug/bdi/1:15/wb_stats\x00', 0x40, 0x0) (async) r7 = openat$auto_cgwb_debug_stats_fops_(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/kernel/debug/bdi/1:15/wb_stats\x00', 0x40, 0x0) pread64$auto(r7, 0x0, 0xffffffff, 0xfff) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff) r8 = socket(0x11, 0x3, 0x9) fanotify_init$auto(0x4, 0x0) (async) fanotify_init$auto(0x4, 0x0) ioctl$auto(0x3, 0x541b, 0x10000000000402) capset$auto(0x0, &(0x7f00000000c0)={0x0, 0x7, 0x6}) sendmmsg$auto(r8, &(0x7f00000001c0)={{&(0x7f0000000180), 0x5aa, &(0x7f0000000100)={&(0x7f0000000140)="6d864e54068b741afded1db9615c3af9c6d90e00898686362582d9098024c7959653bdcdeb3f347c2bbbbf32874bc8d1deb03fcf5caea15e04", 0x49}, 0x5, &(0x7f0000000180), 0x5, 0xffd}, 0x5}, 0x2, 0x100) 2.438719727s ago: executing program 1 (id=1875): r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x111800, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000280)={{0x3, 0x1000, 0x1, 0x1, 0x8}, "654c6dbc7a4d30983899a7e1325b6a29ba1e184410ba9f74e82a3fa6c3ccf1bf"}) ioctl$auto_SNDRV_TIMER_IOCTL_INFO(r0, 0x80e85411, &(0x7f00000002c0)={0x7fe3, 0x6, "b908674cfda2f7f351c66f681b0cf4a6f675fcee96065fdca6f219ea386de55097e14dbb38e0462dd9d44d7c6c55e2a5937efe361800", "3b6e33d493a9c79b3387938d612ceab5a4a20e605cd0842aa149397ff8063b45d44f8ce95fa39df1e5e1fc5e51f00fa2dfcc38c9b1ef6596b9e746f5e48ac07048156ea6be1e1ca5d281c7bb11333d0f", 0x397, 0x3, "d3bc655e384df871894a5771758ff164f2cd8098ac193333046911421bc3f1a0cf5d0300000000000000a9001fa7efb0600cc93b5b84a000"}) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) mmap$auto(0xfffffffffffffffc, 0xf, 0x9, 0xdf, r1, 0x5) write$auto(r1, 0x0, 0x41ec) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0xe0742, 0x0) syz_genetlink_get_family_id$auto_ovs_vport(0xfffffffffffffffe, 0xffffffffffffffff) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) mmap$auto(0x80000001, 0x580f, 0x112f4a03, 0x8000000008011, 0x3, 0x3) madvise$auto(0x0, 0x2003f0, 0x15) getresgid$auto(0x0, &(0x7f0000000a40)=0x2, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xe0002, 0x0) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x40, 0x0) setsockopt$auto(r2, 0x1, 0x10, &(0x7f0000000280)='\x00\x15\x8d\xca`\xbcgY\xd2w\xf6\xaedN\x00\x00\x00\x00\x04\x00\x00\x00*\xaaL\'\xab>q\x9e\xdd`\x84_\r\xc2\x17\xb1\xaf\xd2\f\xfd[Iy\xbb*$\xec\xca\x8b\xde\xdcV@\x04+\x00\x00\t\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\xc3\xa2\x1a\xf1\xdf\x12\b?Q\xec*\b`\'\xfe\xcb\xe9\xc0\xf4\x119\xf6f\v\xf7\x13\xe6\xd8\xa2\xd3\xfd\xa7', 0xba) setsockopt$auto_SO_PROTOCOL(0xffffffffffffffff, 0x4, 0x26, 0x0, 0x7) shmctl$auto_SHM_LOCK(0x1, 0xb, &(0x7f00000003c0)={{0x4, 0x0, 0xee01, 0x18, 0x9, 0x21, 0x6}, 0xe, 0xc4, 0x1, 0x4, @inferred, @raw=0x4c000, 0x3, 0x0, 0x0, 0x0}) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x30}, 0x1, 0x0, 0x0, 0x810}, 0x4000080) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff) r3 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) read$auto(r3, 0x0, 0xb4d3) 2.434138928s ago: executing program 2 (id=1883): openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) (fail_nth: 6) 1.809510042s ago: executing program 4 (id=1876): pwrite64$auto(0xc8, 0x0, 0xfdef, 0x3) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0) open(&(0x7f0000000280)='./cgroup\x00', 0x5d52c0, 0x0) r0 = socket(0xa, 0x2, 0x3a) open_by_handle_at$auto(r0, 0x0, 0xffffffff) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x5e23, @remote}, 0x6a) prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x0, 0xffffffffffffffff, 0x9, 0x7) write$auto(0xffffffffffffffff, 0x0, 0xb9ab) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x300, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, 0x0, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x3, 0x6, 0x0, 0x10000, 0x1, 0x2, {0x2100000000, 0x10000}, 0x3, 0x6, 0xffffffffffffffdd, 0x1008000, 0x0, 0x80000004, 0x83, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x1800}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x1, 0x2040000, 0x100000001, 0x7fffffff) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_tcp_metrics(0x0, 0xffffffffffffffff) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x10001, 0x0) mmap$auto(0x0, 0x810005, 0xffb, 0x12, 0x3, 0x8000) write$auto(0x3, 0x0, 0x100082) sendmsg$auto_TCP_METRICS_CMD_GET(r3, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000b00)={0x14, r4, 0x89c1beb01534ff9b, 0x70bd29, 0x25dfdbfb}, 0x14}}, 0x0) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/maps\x00', 0x21000, 0x0) tgkill$auto(0x1, 0x1, 0x5) mmap$auto(0xf400, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) 1.809338264s ago: executing program 2 (id=1877): socket(0x6, 0x2, 0x3) mq_open$auto(&(0x7f0000000140)='\xbe\xf2\x82\xe7\x14g\xb5\xeeMQ\x13\xa2_g\xbf\t\xfa\xf2_N\xb0{\xf9\xb57v\xeeG\xd9l\xbf\x86q w\x96\xd9\xe9\xa8\xe1\xf0\xc7\x1f\x1e\xc4\xc4\x89u\x83\xe8}\xbd\x7fO\x91\xc1UVW.\xb6\xad\x04u\x02w.\xec`O\xc1\x0e\x15\xe7:\xc9\x1bK\xcddY\x03\x95\xd1\xae\xc1\x9b\x96\x9faj\xd2\xfc\xfc\x1f7\xaf\xcan\xf6\xc0wK\xce\xe7Q\xae\xc9Hw\x01\xef\xda[\xe5\xa3\xa3%\'\x8f\xcf\x96X:\x04Dkt\x7f\xde\x80\x01\xddX\x91\x88\xa1\t\xc3\xf1\xfe[\x93$O8 b\xb4\x92\xf4\xbc\xc5\xb9\x989\xfcF\xec\xdc@\xdd\xdaeM\xe0U\xc8;\xf5\xe7$Q8\xd2\x87\xdd\xc5\x9d\xc5\xe8\xb5\xb5\xb8\xdfD\xd0\xe8t\x8aS\xaa\xbe\xaa\xba\x9e^0\x1a\xf8Y\xf0H5\xa9u\x0e\xc4\x04\x13\xf58p\x9f\x11\xc07\xefS*|\xd87\x12\xc0\xce\xde0\xd82;\xcd\x18\r\xccI\x99\n\xd2\x86\xc5\x01\'\x8b\x87\xc9\xc3\xeeK|\xae\xb8]\x8f\fID\xb1\x98\xf4\x81@\x1c\xaa\xfd\xbc\xc2\x13@\x7f\x93n/l\xac\xfb|\x99\xe0\t\xea\v\x8d\x15>\xd9\x06\x06\xd3\xdcf\xaf\x86G\xcc\xff\xa4XHH\x7f\x85,\xb1\xc7\x16\xe67R\xb4\x95\xb5\x8d\auH{u\xd3\xd0\xbb\b\x89?;\xc6\xd2\xf3\x95\xb5\x97Z\x88\x02\xa1\x94\x9f\xf50\x03\x15\xd93*\xa1{\x13\xc7P1$;e\x18sB+b\x94\xcd^\xa2\x8bT\xf9Q\x97\xd7\"\x13\x83$~\x17\x1aL\n\xae\xeb\xd5tNj\x04<){n \xda\x15\x95<\x1c\xf7\xa6u\x8d\xe9[\x03\x13\xd04\t\x00\x00\x00\x92{\x87\x1a\x7f|\xed\x8c\xe9\x02\x80$\xeaz\xa4T\xc8\xa7\xb8y\xce\xd5R\x10\xac1v\x8bdp\xb3{(\xb9\x95\x8b\x82\x06\"\xd2\xa9A\x02\x8e\xfa\v\xa0`\xab\xb7\xc6\xbe\xea\a\xef\xf7\xb1\x00'/479, 0x1, 0x8, 0x0) mq_notify$auto(0x4, 0x0) mq_notify$auto(0x4, &(0x7f0000000040)={@sival_ptr=0x0, @inferred, 0x1}) openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, 0x0, 0x2dc08f24db163610, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x10, 0x0) fsopen$auto(0x0, 0x1) adjtimex$auto(&(0x7f00000005c0)={0xf332b6e, 0x0, 0xcea4, 0xfffffffffffffffd, 0xd4, 0x1, 0x0, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1007bfe, 0x0, 0x9, 0x81, 0xdfffffffffff628c, 0x2, 0xdeb1, 0x808}) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x4a801, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/module/i915/parameters/mitigations\x00', 0x80302, 0x0) sendfile$auto(r1, r1, 0x0, 0x7ffff000) openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, 0x0, 0x12000, 0x0) socket(0x29, 0x800, 0x6) sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40010}, 0x800) ioctl$auto_MTDFILEMODE(0xffffffffffffffff, 0x4d13, 0x0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) r2 = eventfd$auto(0x80) readv$auto(r2, &(0x7f0000000380)={0x0, 0x8}, 0x4) userfaultfd$auto(0x4) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/mm/transparent_hugepage/khugepaged/scan_sleep_millisecs\x00', 0xa0582, 0x0) write$auto(r3, 0x0, 0x2b6) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) 1.80512988s ago: executing program 5 (id=1878): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/attr/exec\x00', 0x101000, 0x0) recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000380)={{&(0x7f00000001c0)="a36d3fa58cc14c483eaeefbda25ed11e6584b0e06b6f7d2a0920bb3dac705aa384572b6a4be4e53907a7b258", 0x7fff, 0x0, 0x9, 0x0, 0x2, 0x9}, 0x2}, 0xfffffffd, 0x3, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) ppoll$auto(0x0, 0x7f, 0x0, &(0x7f00000001c0)={0x3}, 0x8) mount$auto(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)='nfs\x00', 0x1, &(0x7f00000001c0)) write$auto_proc_pid_attr_operations_base(r0, &(0x7f0000000280)="e6eec9f1147ef5a4e8", 0x9) r1 = socket(0xa, 0x3, 0x2f) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40811}, 0x4000013) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="5e0027b4839f3015398d3b61", @ANYRES32, @ANYRES32=r1], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000f80), 0xffffffffffffffff) sendmsg$auto_ILA_CMD_DEL(r2, &(0x7f0000001040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x44884) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'ip6gre0\x00'}) sendmsg$auto_ILA_CMD_DEL(r1, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, r3, 0x200, 0x70bd2a, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x1) r4 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 1.333337153s ago: executing program 2 (id=1879): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x802, 0x0) r1 = io_uring_setup$auto(0x6, 0x0) ioctl$auto(r0, 0xc1205531, r1) 1.187707218s ago: executing program 1 (id=1880): mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000340), 0x108800, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_ct_limit(0x0, r1) sendmsg$auto_OVS_CT_LIMIT_CMD_SET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x2000c040}, 0x4) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x100, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mbind$auto(0x2000, 0x100000004, 0x1000000f4, 0x0, 0x2, 0x2) 890.802869ms ago: executing program 2 (id=1881): socket(0xa, 0x3, 0x3a) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x3f) 498.957022ms ago: executing program 5 (id=1882): r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket(0x11, 0x3, 0x9) sendmmsg$auto(r2, &(0x7f00000006c0)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={&(0x7f0000000200)="4c030000000000000029", 0x49}, 0x5, &(0x7f0000000700), 0x5, 0x1}, 0x5}, 0x2, 0x100) r3 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='*\x00%i'], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) madvise$auto_MADV_GUARD_INSTALL(0x0, 0x2021000, 0x66) r4 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r4, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x6, 0x50b301a, 0x2c, 0x2c, 0x0, 0x2}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_event_inject_fops_trace(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/inject\x00', 0x2, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) open(&(0x7f0000000000)='./file0\x00', 0xa09c2, 0xa4) socket(0x2, 0x801, 0x100) r5 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0) ioctl$auto(r5, 0x9210641f, 0xd) close_range$auto(0x2, 0x8, 0x0) pipe$auto(&(0x7f0000000040)) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d) sendfile$auto(0x6, 0x3, 0x0, 0xfffffdef) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) mbind$auto(0x2000, 0x100000004, 0x400100000000, 0x0, 0x6, 0x2) mprotect$auto(0x8001, 0x4, 0x5) 315.423732ms ago: executing program 4 (id=1884): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000040), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NBD_CMD_CONNECT(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000540)={0x1c, r1, 0x1, 0x70bd2d, 0x25dfdbfc, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x7fffffff}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000) mmap$auto(0x0, 0x2020008, 0x3, 0xeb1, r0, 0x8000) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r3, 0x0, 0x20) write$auto(0x3, 0x0, 0xfffffdef) 0s ago: executing program 1 (id=1885): io_uring_setup$auto(0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ioctl$auto_UBI_IOCDET(0xffffffffffffffff, 0x40046f41, 0x0) unshare$auto(0x40000080) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/tty53\x00', 0x200, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0x5c083, 0x0) select$auto(0x7, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x0, 0x1, 0x2, 0x3, 0x95f4da0a, 0xefffffffffffffff, 0x3, 0x62, 0x80000001, 0x10000000000004, 0x6d40, 0x1, 0x2, 0xfffffffffffffffe]}, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r1, 0x0, 0x1, 0x0, 0x1e) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x7, 0xc45d, 0x80, 0x6, 0x3, 0x2, 0x3, 0x3, 0x62, 0x80000022, 0x7, 0x6d3e, 0x2000000004000009, 0x2, 0x6]}, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000) ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto(r2, 0x5522, 0xf15) kernel console output (not intermixed with test programs): v: batadv0: Adding interface: batadv_slave_1 [ 372.972541][T10464] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 373.041072][T10464] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 373.354674][T10516] Setting dangerous option i915.mitigations - tainting kernel [ 373.433512][T10464] hsr_slave_0: entered promiscuous mode [ 373.860513][T10464] hsr_slave_1: entered promiscuous mode [ 373.867212][T10464] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 373.874899][T10464] Cannot create hsr debugfs directory [ 374.546351][T10464] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 374.596269][T10464] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 374.624168][ T5839] Bluetooth: hci4: command tx timeout [ 374.627692][T10464] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 374.667044][T10464] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 375.258495][T10464] 8021q: adding VLAN 0 to HW filter on device bond0 [ 375.391946][T10464] 8021q: adding VLAN 0 to HW filter on device team0 [ 375.561854][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 375.569115][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 375.649783][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 375.657078][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 376.465028][T10547] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1132'. [ 376.707330][ T5839] Bluetooth: hci4: command tx timeout [ 376.952441][T10464] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 377.481882][T10565] FAULT_INJECTION: forcing a failure. [ 377.481882][T10565] name failslab, interval 1, probability 0, space 0, times 0                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            [ 387.098818][ T36] ttyS ttyS0: 3 input overrun(s) [ 387.724972][T10720] FAULT_INJECTION: forcing a failure. [ 387.724972][T10720] name failslab, interval 1, probability 0, space 0, times 0 [ 387.796107][T10720] CPU: 0 UID: 0 PID: 10720 Comm: syz.5.1175 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 387.796156][T10720] Tainted: [U]=USER [ 387.796167][T10720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 387.796185][T10720] Call Trace: [ 387.796196][T10720] [ 387.796207][T10720] dump_stack_lvl+0x16c/0x1f0 [ 387.796266][T10720] should_fail_ex+0x512/0x640 [ 387.796310][T10720] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 387.796364][T10720] should_failslab+0xc2/0x120 [ 387.796403][T10720] __kmalloc_cache_noprof+0x6a/0x3e0 [ 387.796453][T10720] ? __genradix_ptr_alloc+0x340/0x5f0 [ 387.796504][T10720] ? sctp_auth_shkey_create+0x9e/0x210 [ 387.796559][T10720] sctp_auth_shkey_create+0x9e/0x210 [ 387.796613][T10720] sctp_auth_asoc_copy_shkeys+0x1f2/0x360 [ 387.796678][T10720] sctp_association_new+0x19ad/0x2a00 [ 387.796722][T10720] sctp_connect_new_asoc+0x1b6/0x790 [ 387.796760][T10720] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 387.796806][T10720] ? bpf_lsm_sctp_bind_connect+0x9/0x10 [ 387.796860][T10720] sctp_sendmsg+0x15f9/0x1ee0 [ 387.796907][T10720] ? __pfx_sctp_sendmsg+0x10/0x10 [ 387.796961][T10720] ? __might_fault+0xe3/0x190 [ 387.797000][T10720] ? __pfx_aa_sk_perm+0x10/0x10 [ 387.797042][T10720] ? __pfx_sctp_sendmsg+0x10/0x10 [ 387.797078][T10720] inet_sendmsg+0x119/0x140 [ 387.797124][T10720] __sys_sendto+0x431/0x510 [ 387.797157][T10720] ? __pfx___sys_sendto+0x10/0x10 [ 387.797223][T10720] ? ksys_write+0x1b9/0x240 [ 387.797262][T10720] ? __pfx_ksys_write+0x10/0x10 [ 387.797289][T10720] ? rcu_is_watching+0x12/0xc0 [ 387.797323][T10720] __x64_sys_sendto+0xe0/0x1c0 [ 387.797354][T10720] ? do_syscall_64+0x91/0x230 [ 387.797398][T10720] ? lockdep_hardirqs_on+0x7c/0x110 [ 387.797439][T10720] do_syscall_64+0xcd/0x230 [ 387.797485][T10720] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 387.797518][T10720] RIP: 0033:0x7f8f0838e969 [ 387.797542][T10720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 387.797572][T10720] RSP: 002b:00007f8f091c3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 387.797602][T10720] RAX: ffffffffffffffda RBX: 00007f8f085b5fa0 RCX: 00007f8f0838e969 [ 387.797623][T10720] RDX: 0000000000000401 RSI: 0000000000000000 RDI: 0000000000000000 [ 387.797642][T10720] RBP: 00007f8f091c3090 R08: 0000200000000000 R09: 000000000000001f [ 387.797663][T10720] R10: 0000000000000101 R11: 0000000000000246 R12: 0000000000000001 [ 387.797681][T10720] R13: 0000000000000000 R14: 00007f8f085b5fa0 R15: 00007ffc9e419118 [ 387.797723][T10720] [ 389.403504][T10743] Setting dangerous option i915.mitigations - tainting kernel [ 389.638451][ T30] audit: type=1800 audit(4294970287.230:8): pid=10713 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1174" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0 [ 390.839824][T10763] netlink: 306 bytes leftover after parsing attributes in process `syz.4.1186'. [ 391.485164][T10773] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1187'. [ 392.485997][T10788] FAULT_INJECTION: forcing a failure. [ 392.485997][T10788] name failslab, interval 1, probability 0, space 0, times 0 [ 392.523842][T10788] CPU: 1 UID: 0 PID: 10788 Comm: syz.1.1191 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 392.523895][T10788] Tainted: [U]=USER [ 392.523905][T10788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 392.523924][T10788] Call Trace: [ 392.523934][T10788] [ 392.523946][T10788] dump_stack_lvl+0x16c/0x1f0 [ 392.523997][T10788] should_fail_ex+0x512/0x640 [ 392.524048][T10788] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 392.524105][T10788] should_failslab+0xc2/0x120 [ 392.524149][T10788] __kmalloc_cache_noprof+0x6a/0x3e0 [ 392.524197][T10788] ? __genradix_ptr_alloc+0x340/0x5f0 [ 392.524247][T10788] ? sctp_auth_shkey_create+0x9e/0x210 [ 392.524299][T10788] sctp_auth_shkey_create+0x9e/0x210 [ 392.524350][T10788] sctp_auth_asoc_copy_shkeys+0x1f2/0x360 [ 392.524409][T10788] sctp_association_new+0x19ad/0x2a00 [ 392.524454][T10788] sctp_connect_new_asoc+0x1b6/0x790 [ 392.524491][T10788] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 392.524527][T10788] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 392.524584][T10788] ? bpf_lsm_sctp_bind_connect+0x9/0x10 [ 392.524639][T10788] sctp_sendmsg+0x15f9/0x1ee0 [ 392.524670][T10788] ? __lock_acquire+0x5ca/0x1ba0 [ 392.524721][T10788] ? __pfx_sctp_sendmsg+0x10/0x10 [ 392.524759][T10788] ? __pfx___might_resched+0x10/0x10 [ 392.524810][T10788] ? __pfx_aa_sk_perm+0x10/0x10 [ 392.524853][T10788] ? __pfx_sctp_sendmsg+0x10/0x10 [ 392.524889][T10788] inet_sendmsg+0x119/0x140 [ 392.524936][T10788] ____sys_sendmsg+0x973/0xc70 [ 392.524984][T10788] ? __pfx_____sys_sendmsg+0x10/0x10 [ 392.525040][T10788] ? __pfx__kstrtoull+0x10/0x10 [ 392.525081][T10788] ___sys_sendmsg+0x134/0x1d0 [ 392.525120][T10788] ? __pfx____sys_sendmsg+0x10/0x10 [ 392.525176][T10788] ? find_held_lock+0x2b/0x80 [ 392.525229][T10788] __sys_sendmmsg+0x200/0x420 [ 392.525267][T10788] ? __pfx___sys_sendmmsg+0x10/0x10 [ 392.525316][T10788] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 392.525378][T10788] ? fput+0x70/0xf0 [ 392.525413][T10788] ? ksys_write+0x1b9/0x240 [ 392.525442][T10788] ? __pfx_ksys_write+0x10/0x10 [ 392.525469][T10788] ? rcu_is_watching+0x12/0xc0 [ 392.525505][T10788] __x64_sys_sendmmsg+0x9c/0x100 [ 392.525539][T10788] ? lockdep_hardirqs_on+0x7c/0x110 [ 392.525579][T10788] do_syscall_64+0xcd/0x230 [ 392.525624][T10788] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 392.525654][T10788] RIP: 0033:0x7fb7c578e969 [ 392.525678][T10788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 392.525707][T10788] RSP: 002b:00007fb7c65af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 392.525734][T10788] RAX: ffffffffffffffda RBX: 00007fb7c59b5fa0 RCX: 00007fb7c578e969 [ 392.525754][T10788] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000003 [ 392.525773][T10788] RBP: 00007fb7c65af090 R08: 0000000000000000 R09: 0000000000000000 [ 392.525791][T10788] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000001 [ 392.525809][T10788] R13: 0000000000000000 R14: 00007fb7c59b5fa0 R15: 00007ffcfaca4988 [ 392.525848][T10788] [ 395.200726][T10815] Invalid ELF header magic: != ELF [ 395.347062][T10822] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1200'. [ 396.186118][ T30] audit: type=1800 audit(4294970293.770:9): pid=10797 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1192" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0 [ 398.259149][T10862] netlink: Conntrack attr has 16 unknown bytes [ 398.794896][T10871] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1214'. [ 398.993877][T10878] FAULT_INJECTION: forcing a failure. [ 398.993877][T10878] name failslab, interval 1, probability 0, space 0, times 0 [ 399.031863][T10878] CPU: 1 UID: 0 PID: 10878 Comm: syz.5.1216 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 399.031912][T10878] Tainted: [U]=USER [ 399.031923][T10878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 399.031941][T10878] Call Trace: [ 399.031951][T10878] [ 399.031963][T10878] dump_stack_lvl+0x16c/0x1f0 [ 399.032012][T10878] should_fail_ex+0x512/0x640 [ 399.032054][T10878] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 399.032096][T10878] should_failslab+0xc2/0x120 [ 399.032133][T10878] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 399.032178][T10878] ? __d_alloc+0x31/0xaa0 [ 399.032218][T10878] __d_alloc+0x31/0xaa0 [ 399.032255][T10878] d_alloc+0x4a/0x1e0 [ 399.032291][T10878] d_alloc_parallel+0xe3/0x12e0 [ 399.032340][T10878] ? is_bpf_text_address+0x94/0x1a0 [ 399.032380][T10878] ? kernel_text_address+0x8d/0x100 [ 399.032430][T10878] ? __kernel_text_address+0xd/0x40 [ 399.032484][T10878] ? unwind_get_return_address+0x59/0xa0 [ 399.032522][T10878] ? __pfx_d_alloc_parallel+0x10/0x10 [ 399.032571][T10878] ? lockdep_init_map_type+0x5c/0x280 [ 399.032613][T10878] ? lockdep_init_map_type+0x5c/0x280 [ 399.032664][T10878] __lookup_slow+0x193/0x460 [ 399.032705][T10878] ? __pfx___lookup_slow+0x10/0x10 [ 399.032752][T10878] ? trace_mm_compaction_wakeup_kcompactd+0xa0/0x1f0 [ 399.032816][T10878] ? trace_mm_compaction_wakeup_kcompactd+0xa0/0x1f0 [ 399.032873][T10878] ? d_lookup+0xe7/0x190 [ 399.032922][T10878] lookup_one_len+0x17f/0x1b0 [ 399.032964][T10878] ? __pfx_lookup_one_len+0x10/0x10 [ 399.033006][T10878] ? mntput+0x10/0x90 [ 399.033056][T10878] start_creating.part.0+0x12f/0x3a0 [ 399.033106][T10878] __debugfs_create_file+0xa7/0x6b0 [ 399.033155][T10878] debugfs_create_file_full+0x41/0x60 [ 399.033206][T10878] do_blk_trace_setup+0x476/0xb50 [ 399.033283][T10878] blk_trace_setup+0xed/0x1b0 [ 399.033334][T10878] ? __pfx_blk_trace_setup+0x10/0x10 [ 399.033383][T10878] ? __pfx_snprintf+0x10/0x10 [ 399.033443][T10878] blk_trace_ioctl+0x146/0x280 [ 399.033480][T10878] ? __pfx_blk_trace_ioctl+0x10/0x10 [ 399.033518][T10878] ? find_held_lock+0x2b/0x80 [ 399.033546][T10878] ? hook_file_ioctl_common+0x145/0x410 [ 399.033585][T10878] blkdev_ioctl+0x108/0x6d0 [ 399.033620][T10878] ? __pfx_blkdev_ioctl+0x10/0x10 [ 399.033662][T10878] ? __pfx_blkdev_ioctl+0x10/0x10 [ 399.033700][T10878] __x64_sys_ioctl+0x190/0x200 [ 399.033743][T10878] do_syscall_64+0xcd/0x230 [ 399.033789][T10878] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 399.033821][T10878] RIP: 0033:0x7f8f0838e969 [ 399.033846][T10878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 399.033875][T10878] RSP: 002b:00007f8f091c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 399.033904][T10878] RAX: ffffffffffffffda RBX: 00007f8f085b5fa0 RCX: 00007f8f0838e969 [ 399.033926][T10878] RDX: 00002000000004c0 RSI: 00000000c0481273 RDI: 0000000000000003 [ 399.033945][T10878] RBP: 00007f8f091c3090 R08: 0000000000000000 R09: 0000000000000000 [ 399.033964][T10878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 399.033983][T10878] R13: 0000000000000000 R14: 00007f8f085b5fa0 R15: 00007ffc9e419118 [ 399.034025][T10878] [ 401.031624][T10900] netlink: 306 bytes leftover after parsing attributes in process `syz.2.1222'. [ 401.510667][T10903] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1223'. [ 402.674844][T10913] netlink: 21 bytes leftover after parsing attributes in process `syz.1.1225'. [ 402.953789][ T30] audit: type=1800 audit(4294970300.540:10): pid=10875 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1215" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0 [ 403.120609][T10917] FAULT_INJECTION: forcing a failure. [ 403.120609][T10917] name failslab, interval 1, probability 0, space 0, times 0 [ 403.153797][T10917] CPU: 0 UID: 0 PID: 10917 Comm: syz.2.1234 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 403.153848][T10917] Tainted: [U]=USER [ 403.153858][T10917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 403.153875][T10917] Call Trace: [ 403.153885][T10917] [ 403.153896][T10917] dump_stack_lvl+0x16c/0x1f0 [ 403.153942][T10917] should_fail_ex+0x512/0x640 [ 403.153991][T10917] should_failslab+0xc2/0x120 [ 403.154028][T10917] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 403.154063][T10917] ? skb_clone+0x190/0x3f0 [ 403.154102][T10917] skb_clone+0x190/0x3f0 [ 403.154150][T10917] netlink_deliver_tap+0xabd/0xd30 [ 403.154195][T10917] netlink_unicast+0x5df/0x7f0 [ 403.154237][T10917] ? __pfx_netlink_unicast+0x10/0x10 [ 403.154271][T10917] ? __lock_acquire+0xaa4/0x1ba0 [ 403.154319][T10917] netlink_sendmsg+0x8d1/0xdd0 [ 403.154362][T10917] ? __pfx_netlink_sendmsg+0x10/0x10 [ 403.154416][T10917] ____sys_sendmsg+0xa95/0xc70 [ 403.154460][T10917] ? copy_msghdr_from_user+0x10a/0x160 [ 403.154494][T10917] ? __pfx_____sys_sendmsg+0x10/0x10 [ 403.154555][T10917] ___sys_sendmsg+0x134/0x1d0 [ 403.154593][T10917] ? __pfx____sys_sendmsg+0x10/0x10 [ 403.154676][T10917] __sys_sendmsg+0x16d/0x220 [ 403.154714][T10917] ? __pfx___sys_sendmsg+0x10/0x10 [ 403.154759][T10917] ? rcu_is_watching+0x12/0xc0 [ 403.154798][T10917] do_syscall_64+0xcd/0x230 [ 403.154844][T10917] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 403.154874][T10917] RIP: 0033:0x7fa382f8e969 [ 403.154898][T10917] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 403.154927][T10917] RSP: 002b:00007fa383d64038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 403.154955][T10917] RAX: ffffffffffffffda RBX: 00007fa3831b5fa0 RCX: 00007fa382f8e969 [ 403.154975][T10917] RDX: 0000000004044820 RSI: 00002000000002c0 RDI: 0000000000000003 [ 403.154993][T10917] RBP: 00007fa383d64090 R08: 0000000000000000 R09: 0000000000000000 [ 403.155011][T10917] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 403.155029][T10917] R13: 0000000000000000 R14: 00007fa3831b5fa0 R15: 00007ffd08a834b8 [ 403.155068][T10917] [ 404.785387][T10931] FAULT_INJECTION: forcing a failure. [ 404.785387][T10931] name failslab, interval 1, probability 0, space 0, times 0 [ 404.984606][T10931] CPU: 0 UID: 0 PID: 10931 Comm: syz.2.1228 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 404.984657][T10931] Tainted: [U]=USER [ 404.984667][T10931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 404.984685][T10931] Call Trace: [ 404.984695][T10931] [ 404.984707][T10931] dump_stack_lvl+0x16c/0x1f0 [ 404.984756][T10931] should_fail_ex+0x512/0x640 [ 404.984810][T10931] ? __kmalloc_noprof+0xbf/0x510 [ 404.984847][T10931] ? snd_ctl_elem_add+0x558/0x14c0 [ 404.984882][T10931] should_failslab+0xc2/0x120 [ 404.984921][T10931] __kmalloc_noprof+0xd2/0x510 [ 404.984956][T10931] ? snd_ctl_new+0x13c/0x1a0 [ 404.984994][T10931] snd_ctl_elem_add+0x558/0x14c0 [ 404.985039][T10931] ? find_held_lock+0x2b/0x80 [ 404.985068][T10931] ? __might_fault+0xe3/0x190 [ 404.985104][T10931] ? __might_fault+0xe3/0x190 [ 404.985137][T10931] ? __might_fault+0x13b/0x190 [ 404.985173][T10931] ? __pfx_snd_ctl_elem_add+0x10/0x10 [ 404.985222][T10931] snd_ctl_elem_add_user+0xc3/0x170 [ 404.985260][T10931] ? __pfx_snd_ctl_elem_add_user+0x10/0x10 [ 404.985297][T10931] ? find_held_lock+0x2b/0x80 [ 404.985377][T10931] snd_ctl_ioctl+0x981/0x1320 [ 404.985415][T10931] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 404.985456][T10931] ? find_held_lock+0x2b/0x80 [ 404.985485][T10931] ? hook_file_ioctl_common+0x145/0x410 [ 404.985529][T10931] ? __fget_files+0x20e/0x3c0 [ 404.985584][T10931] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 404.985622][T10931] __x64_sys_ioctl+0x190/0x200 [ 404.985669][T10931] do_syscall_64+0xcd/0x230 [ 404.985719][T10931] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 404.985749][T10931] RIP: 0033:0x7fa382f8e969 [ 404.985781][T10931] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 404.985811][T10931] RSP: 002b:00007fa383d64038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 404.985841][T10931] RAX: ffffffffffffffda RBX: 00007fa3831b5fa0 RCX: 00007fa382f8e969 [ 404.985862][T10931] RDX: 0000200000000140 RSI: 00000000c1105517 RDI: 0000000000000003 [ 404.985881][T10931] RBP: 00007fa383d64090 R08: 0000000000000000 R09: 0000000000000000 [ 404.985901][T10931] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 404.985919][T10931] R13: 0000000000000000 R14: 00007fa3831b5fa0 R15: 00007ffd08a834b8 [ 404.985958][T10931] [ 407.792310][T10970] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1238'. [ 409.529686][T10994] FAULT_INJECTION: forcing a failure. [ 409.529686][T10994] name failslab, interval 1, probability 0, space 0, times 0 [ 409.543247][T10994] CPU: 1 UID: 0 PID: 10994 Comm: syz.1.1244 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 409.543299][T10994] Tainted: [U]=USER [ 409.543308][T10994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 409.543322][T10994] Call Trace: [ 409.543330][T10994] [ 409.543339][T10994] dump_stack_lvl+0x16c/0x1f0 [ 409.543377][T10994] should_fail_ex+0x512/0x640 [ 409.543413][T10994] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 409.543444][T10994] should_failslab+0xc2/0x120 [ 409.543473][T10994] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 409.543500][T10994] ? sock_alloc_inode+0x25/0x1c0 [ 409.543537][T10994] ? __pfx_sock_alloc_inode+0x10/0x10 [ 409.543567][T10994] sock_alloc_inode+0x25/0x1c0 [ 409.543612][T10994] alloc_inode+0x61/0x240 [ 409.543660][T10994] sock_alloc+0x40/0x280 [ 409.543693][T10994] __sock_create+0xc1/0x8d0 [ 409.543733][T10994] inet_ctl_sock_create+0x94/0x230 [ 409.543768][T10994] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 409.543798][T10994] ? lockdep_init_map_type+0x5c/0x280 [ 409.543831][T10994] ? do_init_timer+0xc9/0x110 [ 409.543858][T10994] ? __pfx_sctp_ctrlsock_init+0x10/0x10 [ 409.543891][T10994] sctp_ctrlsock_init+0x40/0xf0 [ 409.543924][T10994] ops_init+0x1df/0x5f0 [ 409.543955][T10994] setup_net+0x21e/0x850 [ 409.543986][T10994] ? __pfx_setup_net+0x10/0x10 [ 409.544012][T10994] ? lockdep_init_map_type+0x5c/0x280 [ 409.544044][T10994] ? __pfx_down_read_killable+0x10/0x10 [ 409.544085][T10994] ? debug_mutex_init+0x37/0x70 [ 409.544109][T10994] copy_net_ns+0x2a6/0x5f0 [ 409.544143][T10994] create_new_namespaces+0x3ea/0xad0 [ 409.544177][T10994] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 409.544206][T10994] ksys_unshare+0x45b/0xa40 [ 409.544238][T10994] ? __pfx_ksys_unshare+0x10/0x10 [ 409.544268][T10994] ? xfd_validate_state+0x5d/0x180 [ 409.544308][T10994] ? rcu_is_watching+0x12/0xc0 [ 409.544336][T10994] __x64_sys_unshare+0x31/0x40 [ 409.544367][T10994] do_syscall_64+0xcd/0x230 [ 409.544403][T10994] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 409.544427][T10994] RIP: 0033:0x7fb7c578e969 [ 409.544446][T10994] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 409.544469][T10994] RSP: 002b:00007fb7c656d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 409.544491][T10994] RAX: ffffffffffffffda RBX: 00007fb7c59b6160 RCX: 00007fb7c578e969 [ 409.544506][T10994] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 409.544520][T10994] RBP: 00007fb7c5810ab1 R08: 0000000000000000 R09: 0000000000000000 [ 409.544534][T10994] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 409.544548][T10994] R13: 0000000000000000 R14: 00007fb7c59b6160 R15: 00007ffcfaca4988 [ 409.544578][T10994] [ 409.867535][T10994] socket: no more sockets [ 410.701972][T10997] FAULT_INJECTION: forcing a failure. [ 410.701972][T10997] name failslab, interval 1, probability 0, space 0, times 0 [ 410.791486][T10997] CPU: 1 UID: 0 PID: 10997 Comm: syz.4.1245 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 410.791559][T10997] Tainted: [U]=USER [ 410.791570][T10997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 410.791589][T10997] Call Trace: [ 410.791599][T10997] [ 410.791611][T10997] dump_stack_lvl+0x16c/0x1f0 [ 410.791662][T10997] should_fail_ex+0x512/0x640 [ 410.791714][T10997] should_failslab+0xc2/0x120 [ 410.791752][T10997] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 410.791799][T10997] ? skb_clone+0x190/0x3f0 [ 410.791841][T10997] skb_clone+0x190/0x3f0 [ 410.791876][T10997] netlink_deliver_tap+0xabd/0xd30 [ 410.791914][T10997] netlink_unicast+0x5df/0x7f0 [ 410.791950][T10997] ? __pfx_netlink_unicast+0x10/0x10 [ 410.791980][T10997] ? __lock_acquire+0xaa4/0x1ba0 [ 410.792023][T10997] netlink_sendmsg+0x8d1/0xdd0 [ 410.792060][T10997] ? __pfx_netlink_sendmsg+0x10/0x10 [ 410.792105][T10997] ____sys_sendmsg+0xa95/0xc70 [ 410.792145][T10997] ? copy_msghdr_from_user+0x10a/0x160 [ 410.792173][T10997] ? __pfx_____sys_sendmsg+0x10/0x10 [ 410.792244][T10997] ___sys_sendmsg+0x134/0x1d0 [ 410.792276][T10997] ? __pfx____sys_sendmsg+0x10/0x10 [ 410.792403][T10997] __sys_sendmsg+0x16d/0x220 [ 410.792435][T10997] ? __pfx___sys_sendmsg+0x10/0x10 [ 410.792475][T10997] ? rcu_is_watching+0x12/0xc0 [ 410.792523][T10997] do_syscall_64+0xcd/0x230 [ 410.792564][T10997] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 410.792591][T10997] RIP: 0033:0x7fc84258e969 [ 410.792612][T10997] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 410.792637][T10997] RSP: 002b:00007fc84349c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 410.792662][T10997] RAX: ffffffffffffffda RBX: 00007fc8427b5fa0 RCX: 00007fc84258e969 [ 410.792680][T10997] RDX: 0000000004040000 RSI: 00002000000002c0 RDI: 0000000000000003 [ 410.792696][T10997] RBP: 00007fc84349c090 R08: 0000000000000000 R09: 0000000000000000 [ 410.792712][T10997] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 410.792728][T10997] R13: 0000000000000000 R14: 00007fc8427b5fa0 R15: 00007ffd6e2d0758 [ 410.792761][T10997] [ 411.622546][T11008] Setting dangerous option i915.mitigations - tainting kernel [ 412.096738][T11012] netlink: 'syz.2.1250': attribute type 19 has an invalid length. [ 412.156098][T11012] netlink: 114 bytes leftover after parsing attributes in process `syz.2.1250'. [ 412.189749][T11017] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1252'. [ 413.175833][T11025] Setting dangerous option i915.mitigations - tainting kernel [ 414.248813][T11036] Setting dangerous option i915.mitigations - tainting kernel [ 416.303007][T11057] Setting dangerous option i915.mitigations - tainting kernel [ 416.431196][T11060] openvswitch: netlink: Flow key attribute not present in set flow. [ 417.135664][T11068] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1265'. [ 418.694278][T11069] i2c i2c-0: delete_device: Can't parse I2C address [ 419.556914][T11090] Setting dangerous option i915.mitigations - tainting kernel [ 420.782518][T11101] Setting dangerous option i915.mitigations - tainting kernel [ 421.656708][T11109] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1273'. [ 421.658418][T11105] netlink: 'syz.5.1272': attribute type 19 has an invalid length. [ 421.757162][T11105] netlink: 114 bytes leftover after parsing attributes in process `syz.5.1272'. [ 421.814214][T11116] openvswitch: netlink: Flow key attribute not present in set flow. [ 422.855476][T11130] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1278'. [ 424.941843][T11144] Setting dangerous option i915.mitigations - tainting kernel [ 426.788463][T11158] Setting dangerous option i915.mitigations - tainting kernel [ 428.153399][T11166] Setting dangerous option i915.mitigations - tainting kernel [ 428.757270][T11174] openvswitch: netlink: Flow key attribute not present in set flow. [ 429.099311][T11183] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1291'. [ 430.601482][T11197] Setting dangerous option i915.mitigations - tainting kernel [ 432.756239][T11222] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1302'. [ 433.900489][T11235] Setting dangerous option i915.mitigations - tainting kernel [ 434.495070][T11242] Setting dangerous option i915.mitigations - tainting kernel [ 435.425897][T11254] Setting dangerous option i915.mitigations - tainting kernel [ 436.694084][T11270] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1314'. [ 437.854187][T11284] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1316'. [ 438.349681][T11291] Setting dangerous option i915.mitigations - tainting kernel [ 438.966072][T11298] Setting dangerous option i915.mitigations - tainting kernel [ 440.020502][T11311] Setting dangerous option i915.mitigations - tainting kernel [ 440.369869][T11314] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1325'. [ 441.288673][T11328] Setting dangerous option i915.mitigations - tainting kernel [ 443.468533][T11359] Setting dangerous option i915.mitigations - tainting kernel [ 443.798638][T11355] CIFS mount error: No usable UNC path provided in device string! [ 443.798638][T11355] [ 443.810127][T11355] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 444.546934][T11367] Setting dangerous option i915.mitigations - tainting kernel [ 445.179248][T11370] Setting dangerous option i915.mitigations - tainting kernel [ 445.275443][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.281879][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 445.944091][T11382] Setting dangerous option i915.mitigations - tainting kernel [ 447.830171][T11400] Setting dangerous option i915.mitigations - tainting kernel [ 448.418549][T11410] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1350'. [ 449.444063][T11425] Setting dangerous option i915.mitigations - tainting kernel [ 451.942584][T11453] Setting dangerous option i915.mitigations - tainting kernel [ 453.730065][T11473] Setting dangerous option i915.mitigations - tainting kernel [ 455.161005][T11489] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1371'. [ 455.589025][T11493] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1372'. [ 456.452570][ T30] audit: type=1800 audit(4294970354.040:11): pid=11477 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1369" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0 [ 457.818696][T11516] Setting dangerous option i915.mitigations - tainting kernel [ 458.656572][T11524] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1377'. [ 459.097809][T11536] Setting dangerous option i915.mitigations - tainting kernel [ 459.393967][T11538] Setting dangerous option i915.mitigations - tainting kernel [ 460.070623][T11556] Setting dangerous option i915.mitigations - tainting kernel [ 462.345794][T11571] FAULT_INJECTION: forcing a failure. [ 462.345794][T11571] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 462.373683][T11571] CPU: 1 UID: 0 PID: 11571 Comm: syz.2.1398 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 462.373737][T11571] Tainted: [U]=USER [ 462.373746][T11571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 462.373765][T11571] Call Trace: [ 462.373775][T11571] [ 462.373787][T11571] dump_stack_lvl+0x16c/0x1f0 [ 462.373843][T11571] should_fail_ex+0x512/0x640 [ 462.373895][T11571] should_fail_alloc_page+0xe7/0x130 [ 462.373938][T11571] prepare_alloc_pages+0x3c2/0x610 [ 462.373988][T11571] ? rcu_is_watching+0x12/0xc0 [ 462.374022][T11571] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 462.374064][T11571] ? unwind_get_return_address+0x59/0xa0 [ 462.374102][T11571] ? arch_stack_walk+0xa6/0x100 [ 462.374160][T11571] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 462.374203][T11571] ? __pfx_stack_trace_save+0x10/0x10 [ 462.374239][T11571] ? stack_depot_save_flags+0x28/0xa50 [ 462.374299][T11571] ? kasan_save_stack+0x42/0x60 [ 462.374338][T11571] ? __lock_acquire+0xaa4/0x1ba0 [ 462.374377][T11571] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 462.374425][T11571] ? policy_nodemask+0xea/0x4e0 [ 462.374468][T11571] alloc_pages_mpol+0x1fb/0x550 [ 462.374510][T11571] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 462.374546][T11571] ? __page_table_check_ptes_set+0x1ae/0x420 [ 462.374587][T11571] ? find_held_lock+0x2b/0x80 [ 462.374626][T11571] alloc_pages_noprof+0x131/0x390 [ 462.374667][T11571] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 462.374703][T11571] get_free_pages_noprof+0xc/0x40 [ 462.374745][T11571] kasan_populate_vmalloc_pte+0x2d/0x160 [ 462.374781][T11571] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 462.374814][T11571] __apply_to_page_range+0x617/0xd60 [ 462.374870][T11571] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 462.374911][T11571] ? __pfx___apply_to_page_range+0x10/0x10 [ 462.374964][T11571] ? alloc_vmap_area+0x872/0x2970 [ 462.375019][T11571] alloc_vmap_area+0x919/0x2970 [ 462.375085][T11571] ? __pfx_alloc_vmap_area+0x10/0x10 [ 462.375148][T11571] __get_vm_area_node+0x1a7/0x300 [ 462.375206][T11571] __vmalloc_node_range_noprof+0x277/0x1540 [ 462.375261][T11571] ? pcpu_mem_zalloc+0x54/0xb0 [ 462.375308][T11571] ? pcpu_mem_zalloc+0x54/0xb0 [ 462.375349][T11571] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 462.375411][T11571] ? rcu_is_watching+0x12/0xc0 [ 462.375445][T11571] ? pcpu_mem_zalloc+0x54/0xb0 [ 462.375477][T11571] __vmalloc_noprof+0x6d/0x90 [ 462.375528][T11571] ? pcpu_mem_zalloc+0x54/0xb0 [ 462.375560][T11571] pcpu_mem_zalloc+0x54/0xb0 [ 462.375591][T11571] pcpu_create_chunk+0x432/0x730 [ 462.375631][T11571] pcpu_alloc_noprof+0x11e1/0x1470 [ 462.375689][T11571] bpf_map_alloc_percpu+0x9a/0x4b0 [ 462.375736][T11571] htab_map_alloc+0x10be/0x1540 [ 462.375792][T11571] ? ns_capable+0xd7/0x110 [ 462.375831][T11571] map_create+0x58f/0x1db0 [ 462.375888][T11571] ? __pfx_map_create+0x10/0x10 [ 462.375926][T11571] ? __might_fault+0xe3/0x190 [ 462.375962][T11571] ? __might_fault+0xe3/0x190 [ 462.375994][T11571] ? __might_fault+0x13b/0x190 [ 462.376048][T11571] __sys_bpf+0x47cc/0x4d80 [ 462.376100][T11571] ? __pfx___sys_bpf+0x10/0x10 [ 462.376153][T11571] ? do_writev+0x218/0x330 [ 462.376215][T11571] ? do_futex+0x122/0x350 [ 462.376251][T11571] ? __pfx_do_futex+0x10/0x10 [ 462.376307][T11571] ? xfd_validate_state+0x5d/0x180 [ 462.376363][T11571] ? rcu_is_watching+0x12/0xc0 [ 462.376401][T11571] __x64_sys_bpf+0x78/0xc0 [ 462.376447][T11571] ? lockdep_hardirqs_on+0x7c/0x110 [ 462.376490][T11571] do_syscall_64+0xcd/0x230 [ 462.376539][T11571] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 462.376572][T11571] RIP: 0033:0x7fa382f8e969 [ 462.376600][T11571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 462.376631][T11571] RSP: 002b:00007fa383d64038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 462.376664][T11571] RAX: ffffffffffffffda RBX: 00007fa3831b5fa0 RCX: 00007fa382f8e969 [ 462.376685][T11571] RDX: 00000000000000a3 RSI: 0000200000000780 RDI: 0000000000000000 [ 462.376705][T11571] RBP: 00007fa383010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 462.376726][T11571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 462.376746][T11571] R13: 0000000000000000 R14: 00007fa3831b5fa0 R15: 00007ffd08a834b8 [ 462.376789][T11571] [ 463.446903][T11584] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input15 [ 463.458013][T11582] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 463.651885][T11594] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1393'. [ 463.735160][T11593] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1392'. [ 464.774802][T11585] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input16 [ 465.322312][T11609] Setting dangerous option i915.mitigations - tainting kernel [ 465.484692][T11614] Setting dangerous option i915.mitigations - tainting kernel [ 465.657018][T11611] Setting dangerous option i915.mitigations - tainting kernel [ 466.258627][T11625] Setting dangerous option i915.mitigations - tainting kernel [ 468.507567][T11650] Setting dangerous option i915.mitigations - tainting kernel [ 469.991745][T11659] netlink: 93 bytes leftover after parsing attributes in process `syz.2.1410'. [ 470.539504][T11677] Setting dangerous option i915.mitigations - tainting kernel [ 471.553890][T11689] Setting dangerous option i915.mitigations - tainting kernel [ 471.922702][T11687] FAULT_INJECTION: forcing a failure. [ 471.922702][T11687] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 471.993861][T11687] CPU: 0 UID: 0 PID: 11687 Comm: syz.5.1418 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 471.993924][T11687] Tainted: [U]=USER [ 471.993935][T11687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 471.993957][T11687] Call Trace: [ 471.993968][T11687] [ 471.993982][T11687] dump_stack_lvl+0x16c/0x1f0 [ 471.994036][T11687] should_fail_ex+0x512/0x640 [ 471.994090][T11687] should_fail_alloc_page+0xe7/0x130 [ 471.994136][T11687] prepare_alloc_pages+0x3c2/0x610 [ 471.994185][T11687] ? rcu_is_watching+0x12/0xc0 [ 471.994222][T11687] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 471.994264][T11687] ? unwind_get_return_address+0x59/0xa0 [ 471.994302][T11687] ? arch_stack_walk+0xa6/0x100 [ 471.994364][T11687] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 471.994409][T11687] ? __pfx_stack_trace_save+0x10/0x10 [ 471.994444][T11687] ? stack_depot_save_flags+0x28/0xa50 [ 471.994503][T11687] ? kasan_save_stack+0x42/0x60 [ 471.994542][T11687] ? __lock_acquire+0xaa4/0x1ba0 [ 471.994582][T11687] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 471.994630][T11687] ? policy_nodemask+0xea/0x4e0 [ 471.994674][T11687] alloc_pages_mpol+0x1fb/0x550 [ 471.994717][T11687] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 471.994753][T11687] ? __page_table_check_ptes_set+0x1ae/0x420 [ 471.994795][T11687] ? find_held_lock+0x2b/0x80 [ 471.994834][T11687] alloc_pages_noprof+0x131/0x390 [ 471.994875][T11687] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 471.994906][T11687] get_free_pages_noprof+0xc/0x40 [ 471.994946][T11687] kasan_populate_vmalloc_pte+0x2d/0x160 [ 471.994981][T11687] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 471.995014][T11687] __apply_to_page_range+0x617/0xd60 [ 471.995070][T11687] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 471.995112][T11687] ? __pfx___apply_to_page_range+0x10/0x10 [ 471.995164][T11687] ? alloc_vmap_area+0x872/0x2970 [ 471.995219][T11687] alloc_vmap_area+0x919/0x2970 [ 471.995282][T11687] ? __pfx_alloc_vmap_area+0x10/0x10 [ 471.995348][T11687] __get_vm_area_node+0x1a7/0x300 [ 471.995405][T11687] __vmalloc_node_range_noprof+0x277/0x1540 [ 471.995460][T11687] ? pcpu_mem_zalloc+0x54/0xb0 [ 471.995505][T11687] ? pcpu_mem_zalloc+0x54/0xb0 [ 471.995547][T11687] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 471.995609][T11687] ? rcu_is_watching+0x12/0xc0 [ 471.995641][T11687] ? pcpu_mem_zalloc+0x54/0xb0 [ 471.995673][T11687] __vmalloc_noprof+0x6d/0x90 [ 471.995724][T11687] ? pcpu_mem_zalloc+0x54/0xb0 [ 471.995756][T11687] pcpu_mem_zalloc+0x54/0xb0 [ 471.995788][T11687] pcpu_create_chunk+0x432/0x730 [ 471.995828][T11687] pcpu_alloc_noprof+0x11e1/0x1470 [ 471.995886][T11687] bpf_map_alloc_percpu+0x9a/0x4b0 [ 471.995933][T11687] htab_map_alloc+0x10be/0x1540 [ 471.995990][T11687] ? ns_capable+0xd7/0x110 [ 471.996030][T11687] map_create+0x58f/0x1db0 [ 471.996088][T11687] ? __pfx_map_create+0x10/0x10 [ 471.996128][T11687] ? __might_fault+0xe3/0x190 [ 471.996165][T11687] ? __might_fault+0xe3/0x190 [ 471.996200][T11687] ? __might_fault+0x13b/0x190 [ 471.996256][T11687] __sys_bpf+0x47cc/0x4d80 [ 471.996314][T11687] ? __pfx___sys_bpf+0x10/0x10 [ 471.996363][T11687] ? do_writev+0x218/0x330 [ 471.996422][T11687] ? do_futex+0x122/0x350 [ 471.996459][T11687] ? __pfx_do_futex+0x10/0x10 [ 471.996516][T11687] ? xfd_validate_state+0x5d/0x180 [ 471.996572][T11687] ? rcu_is_watching+0x12/0xc0 [ 471.996610][T11687] __x64_sys_bpf+0x78/0xc0 [ 471.996659][T11687] ? lockdep_hardirqs_on+0x7c/0x110 [ 471.996705][T11687] do_syscall_64+0xcd/0x230 [ 471.996754][T11687] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 471.996789][T11687] RIP: 0033:0x7f8f0838e969 [ 471.996818][T11687] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 471.996851][T11687] RSP: 002b:00007f8f091c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 471.996884][T11687] RAX: ffffffffffffffda RBX: 00007f8f085b5fa0 RCX: 00007f8f0838e969 [ 471.996907][T11687] RDX: 00000000000000a3 RSI: 0000200000000780 RDI: 0000000000000000 [ 471.996927][T11687] RBP: 00007f8f08410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 471.996948][T11687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 471.996968][T11687] R13: 0000000000000000 R14: 00007f8f085b5fa0 R15: 00007ffc9e419118 [ 471.997013][T11687] [ 472.660613][T11697] Setting dangerous option i915.mitigations - tainting kernel [ 474.066959][T11705] netlink: 93 bytes leftover after parsing attributes in process `syz.4.1423'. [ 474.799478][T11726] Setting dangerous option i915.mitigations - tainting kernel [ 475.579260][T11732] Setting dangerous option i915.mitigations - tainting kernel [ 475.759282][T11738] Setting dangerous option i915.mitigations - tainting kernel [ 477.256962][T11759] Setting dangerous option i915.mitigations - tainting kernel [ 478.286509][T11768] Setting dangerous option i915.mitigations - tainting kernel [ 479.277744][T11769] netlink: 93 bytes leftover after parsing attributes in process `syz.5.1436'. [ 480.458993][T11791] Setting dangerous option i915.mitigations - tainting kernel [ 482.047010][T11809] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1449'. [ 482.099034][T11812] Setting dangerous option i915.mitigations - tainting kernel [ 483.147291][T11824] Setting dangerous option i915.mitigations - tainting kernel [ 483.294820][T11825] Setting dangerous option i915.mitigations - tainting kernel [ 483.838645][T11831] Setting dangerous option i915.mitigations - tainting kernel [ 486.304780][T11864] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1464'. [ 486.372324][T11866] Setting dangerous option i915.mitigations - tainting kernel [ 487.874256][T11886] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1476'. [ 487.911898][T11888] Setting dangerous option i915.mitigations - tainting kernel [ 488.060737][T11887] Setting dangerous option i915.mitigations - tainting kernel [ 488.514940][T11897] Setting dangerous option i915.mitigations - tainting kernel [ 489.370211][T11909] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1481'. [ 491.185650][T11930] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1477'. [ 491.248503][T11931] Setting dangerous option i915.mitigations - tainting kernel [ 491.829508][T11934] Setting dangerous option i915.mitigations - tainting kernel [ 492.976835][T11949] Setting dangerous option i915.mitigations - tainting kernel [ 493.243723][T11951] Setting dangerous option i915.mitigations - tainting kernel [ 493.424741][ T5836] Bluetooth: hci4: command 0x0406 tx timeout [ 494.003369][T11960] Setting dangerous option i915.mitigations - tainting kernel [ 494.085764][T11962] Setting dangerous option i915.mitigations - tainting kernel [ 495.039178][T11976] Setting dangerous option i915.mitigations - tainting kernel [ 495.128090][T11979] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1489'. [ 496.339461][T11991] Setting dangerous option i915.mitigations - tainting kernel [ 496.734730][T11996] FAULT_INJECTION: forcing a failure. [ 496.734730][T11996] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 496.821746][T11996] CPU: 0 UID: 0 PID: 11996 Comm: syz.2.1496 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 496.821801][T11996] Tainted: [U]=USER [ 496.821813][T11996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 496.821833][T11996] Call Trace: [ 496.821844][T11996] [ 496.821856][T11996] dump_stack_lvl+0x16c/0x1f0 [ 496.821908][T11996] should_fail_ex+0x512/0x640 [ 496.821961][T11996] _copy_to_iter+0x2a4/0x15a0 [ 496.822012][T11996] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 496.822064][T11996] ? __pfx__copy_to_iter+0x10/0x10 [ 496.822114][T11996] ? kernfs_seq_stop+0xcd/0x120 [ 496.822169][T11996] ? kernfs_put_active+0x86/0xe0 [ 496.822208][T11996] seq_read_iter+0xcf8/0x12c0 [ 496.822272][T11996] kernfs_fop_read_iter+0x40f/0x5a0 [ 496.822312][T11996] ? rw_verify_area+0xcf/0x680 [ 496.822362][T11996] vfs_read+0x8c8/0xc70 [ 496.822398][T11996] ? __pfx___mutex_lock+0x10/0x10 [ 496.822444][T11996] ? __pfx_vfs_read+0x10/0x10 [ 496.822503][T11996] ksys_read+0x12a/0x240 [ 496.822532][T11996] ? __pfx_ksys_read+0x10/0x10 [ 496.822559][T11996] ? rcu_is_watching+0x12/0xc0 [ 496.822602][T11996] do_syscall_64+0xcd/0x230 [ 496.822644][T11996] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 496.822671][T11996] RIP: 0033:0x7fa382f8e969 [ 496.822692][T11996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 496.822718][T11996] RSP: 002b:00007fa383d64038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 496.822744][T11996] RAX: ffffffffffffffda RBX: 00007fa3831b5fa0 RCX: 00007fa382f8e969 [ 496.822765][T11996] RDX: 0000000000000077 RSI: 00002000000000c0 RDI: 0000000000000004 [ 496.822782][T11996] RBP: 00007fa383d64090 R08: 0000000000000000 R09: 0000000000000000 [ 496.822798][T11996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 496.822814][T11996] R13: 0000000000000000 R14: 00007fa3831b5fa0 R15: 00007ffd08a834b8 [ 496.822848][T11996] [ 497.715128][T12013] Setting dangerous option i915.mitigations - tainting kernel [ 498.818282][T12027] FAULT_INJECTION: forcing a failure. [ 498.818282][T12027] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 498.843351][T12027] CPU: 0 UID: 0 PID: 12027 Comm: syz.1.1506 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 498.843400][T12027] Tainted: [U]=USER [ 498.843410][T12027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 498.843428][T12027] Call Trace: [ 498.843440][T12027] [ 498.843453][T12027] dump_stack_lvl+0x16c/0x1f0 [ 498.843501][T12027] should_fail_ex+0x512/0x640 [ 498.843554][T12027] should_fail_alloc_page+0xe7/0x130 [ 498.843596][T12027] prepare_alloc_pages+0x3c2/0x610 [ 498.843644][T12027] ? arch_stack_walk+0xa6/0x100 [ 498.843685][T12027] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 498.843730][T12027] ? stack_trace_save+0x8e/0xc0 [ 498.843762][T12027] ? __pfx_stack_trace_save+0x10/0x10 [ 498.843794][T12027] ? stack_depot_save_flags+0x28/0xa50 [ 498.843845][T12027] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 498.843885][T12027] ? kasan_save_stack+0x42/0x60 [ 498.843916][T12027] ? kasan_save_stack+0x33/0x60 [ 498.843946][T12027] ? kasan_save_track+0x14/0x30 [ 498.843977][T12027] ? __kasan_slab_alloc+0x89/0x90 [ 498.844011][T12027] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 498.844051][T12027] ? __pmd_alloc+0xc3/0x870 [ 498.844099][T12027] ? rep_movs_alternative+0x4a/0x90 [ 498.844131][T12027] ? _copy_to_iter+0x50c/0x15a0 [ 498.844175][T12027] ? seq_read_iter+0xcf8/0x12c0 [ 498.844216][T12027] ? seq_read+0x39e/0x4e0 [ 498.844257][T12027] ? proc_reg_read+0x23d/0x330 [ 498.844287][T12027] ? vfs_read+0x1de/0xc70 [ 498.844313][T12027] ? ksys_read+0x12a/0x240 [ 498.844340][T12027] ? do_syscall_64+0xcd/0x230 [ 498.844382][T12027] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 498.844419][T12027] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 498.844463][T12027] ? policy_nodemask+0xea/0x4e0 [ 498.844505][T12027] alloc_pages_mpol+0x1fb/0x550 [ 498.844547][T12027] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 498.844584][T12027] ? __lock_acquire+0xaa4/0x1ba0 [ 498.844635][T12027] ? __pfx_filemap_map_pages+0x10/0x10 [ 498.844675][T12027] alloc_pages_noprof+0x131/0x390 [ 498.844716][T12027] pte_alloc_one+0x19/0x380 [ 498.844775][T12027] __do_fault+0x320/0x490 [ 498.844817][T12027] ? __pfx_filemap_map_pages+0x10/0x10 [ 498.844856][T12027] do_pte_missing+0x1a6/0x3fb0 [ 498.844889][T12027] ? do_raw_spin_unlock+0x172/0x230 [ 498.844942][T12027] ? __pmd_alloc+0x3c2/0x870 [ 498.844986][T12027] ? find_held_lock+0x2b/0x80 [ 498.845020][T12027] __handle_mm_fault+0x103d/0x2a40 [ 498.845072][T12027] ? __pfx___handle_mm_fault+0x10/0x10 [ 498.845130][T12027] ? find_vma+0xbf/0x140 [ 498.845173][T12027] ? __pfx_find_vma+0x10/0x10 [ 498.845222][T12027] handle_mm_fault+0x3fe/0xad0 [ 498.845262][T12027] do_user_addr_fault+0x7a6/0x1370 [ 498.845300][T12027] ? rcu_is_watching+0x12/0xc0 [ 498.845336][T12027] exc_page_fault+0x5c/0xc0 [ 498.845380][T12027] asm_exc_page_fault+0x26/0x30 [ 498.845411][T12027] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 498.845447][T12027] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 498.845479][T12027] RSP: 0018:ffffc900044cf9c0 EFLAGS: 00050202 [ 498.845506][T12027] RAX: 0000000000000001 RBX: 0000000000000069 RCX: 0000000000000069 [ 498.845526][T12027] RDX: ffffed100f80840e RSI: ffff88807c042000 RDI: 0000000000000000 [ 498.845547][T12027] RBP: 0000000000000069 R08: 0000000000000000 R09: ffffed100f80840d [ 498.845567][T12027] R10: ffff88807c042068 R11: 0000000000000000 R12: ffffc900044cfbd0 [ 498.845589][T12027] R13: 0000000000000000 R14: ffffc900044cfbd8 R15: ffff88807c042000 [ 498.845632][T12027] _copy_to_iter+0x50c/0x15a0 [ 498.845692][T12027] ? __pfx__copy_to_iter+0x10/0x10 [ 498.845742][T12027] ? can_rcvlist_proc_show+0x39b/0x5d0 [ 498.845780][T12027] ? seq_putc+0x6c/0xf0 [ 498.845819][T12027] ? can_rcvlist_proc_show+0x3b2/0x5d0 [ 498.845861][T12027] seq_read_iter+0xcf8/0x12c0 [ 498.845926][T12027] seq_read+0x39e/0x4e0 [ 498.845972][T12027] ? __pfx_seq_read+0x10/0x10 [ 498.846025][T12027] ? get_pid_task+0xfc/0x250 [ 498.846094][T12027] ? __pfx_seq_read+0x10/0x10 [ 498.846137][T12027] proc_reg_read+0x23d/0x330 [ 498.846169][T12027] ? __pfx_proc_reg_read+0x10/0x10 [ 498.846205][T12027] vfs_read+0x1de/0xc70 [ 498.846241][T12027] ? __pfx___mutex_lock+0x10/0x10 [ 498.846286][T12027] ? __pfx_vfs_read+0x10/0x10 [ 498.846328][T12027] ? __fget_files+0x20e/0x3c0 [ 498.846392][T12027] ksys_read+0x12a/0x240 [ 498.846422][T12027] ? __pfx_ksys_read+0x10/0x10 [ 498.846449][T12027] ? rcu_is_watching+0x12/0xc0 [ 498.846492][T12027] do_syscall_64+0xcd/0x230 [ 498.846541][T12027] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 498.846573][T12027] RIP: 0033:0x7fb7c578e969 [ 498.846598][T12027] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 498.846628][T12027] RSP: 002b:00007fb7c65af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 498.846657][T12027] RAX: ffffffffffffffda RBX: 00007fb7c59b5fa0 RCX: 00007fb7c578e969 [ 498.846678][T12027] RDX: 0000000000000f3c RSI: 0000000000000000 RDI: 0000000000000003 [ 498.846698][T12027] RBP: 00007fb7c65af090 R08: 0000000000000000 R09: 0000000000000000 [ 498.846718][T12027] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 498.846738][T12027] R13: 0000000000000000 R14: 00007fb7c59b5fa0 R15: 00007ffcfaca4988 [ 498.846781][T12027] [ 500.141822][T12043] Setting dangerous option i915.mitigations - tainting kernel [ 501.112944][T12056] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1511'. [ 501.707215][T12067] Setting dangerous option i915.mitigations - tainting kernel [ 502.761193][T12074] FAULT_INJECTION: forcing a failure. [ 502.761193][T12074] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 502.801577][T12074] CPU: 0 UID: 0 PID: 12074 Comm: syz.5.1515 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 502.801634][T12074] Tainted: [U]=USER [ 502.801645][T12074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 502.801665][T12074] Call Trace: [ 502.801677][T12074] [ 502.801689][T12074] dump_stack_lvl+0x16c/0x1f0 [ 502.801740][T12074] should_fail_ex+0x512/0x640 [ 502.801792][T12074] _copy_to_user+0x32/0xd0 [ 502.801846][T12074] simple_read_from_buffer+0xcb/0x170 [ 502.801897][T12074] proc_fail_nth_read+0x197/0x270 [ 502.801945][T12074] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 502.801990][T12074] ? rw_verify_area+0xcf/0x680 [ 502.802037][T12074] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 502.802084][T12074] vfs_read+0x1de/0xc70 [ 502.802119][T12074] ? __pfx___mutex_lock+0x10/0x10 [ 502.802165][T12074] ? __pfx_vfs_read+0x10/0x10 [ 502.802207][T12074] ? __fget_files+0x20e/0x3c0 [ 502.802270][T12074] ksys_read+0x12a/0x240 [ 502.802304][T12074] ? __pfx_ksys_read+0x10/0x10 [ 502.802332][T12074] ? rcu_is_watching+0x12/0xc0 [ 502.802374][T12074] do_syscall_64+0xcd/0x230 [ 502.802424][T12074] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 502.802466][T12074] RIP: 0033:0x7f8f0838d37c [ 502.802491][T12074] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 502.802522][T12074] RSP: 002b:00007f8f091c3030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 502.802553][T12074] RAX: ffffffffffffffda RBX: 00007f8f085b5fa0 RCX: 00007f8f0838d37c [ 502.802575][T12074] RDX: 000000000000000f RSI: 00007f8f091c30a0 RDI: 0000000000000004 [ 502.802595][T12074] RBP: 00007f8f091c3090 R08: 0000000000000000 R09: 0000000000000000 [ 502.802615][T12074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 502.802635][T12074] R13: 0000000000000000 R14: 00007f8f085b5fa0 R15: 00007ffc9e419118 [ 502.802678][T12074] [ 504.817395][T12108] Setting dangerous option i915.mitigations - tainting kernel [ 505.733215][T12117] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1529'. [ 506.708945][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 506.716521][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 508.096885][T12152] Setting dangerous option i915.mitigations - tainting kernel [ 509.239777][T12173] FAULT_INJECTION: forcing a failure. [ 509.239777][T12173] name failslab, interval 1, probability 0, space 0, times 0 [ 509.347301][T12173] CPU: 0 UID: 0 PID: 12173 Comm: syz.5.1546 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 509.347355][T12173] Tainted: [U]=USER [ 509.347367][T12173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 509.347386][T12173] Call Trace: [ 509.347398][T12173] [ 509.347411][T12173] dump_stack_lvl+0x16c/0x1f0 [ 509.347461][T12173] should_fail_ex+0x512/0x640 [ 509.347513][T12173] should_failslab+0xc2/0x120 [ 509.347555][T12173] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 509.347593][T12173] ? skb_clone+0x190/0x3f0 [ 509.347636][T12173] skb_clone+0x190/0x3f0 [ 509.347675][T12173] netlink_deliver_tap+0xabd/0xd30 [ 509.347724][T12173] netlink_unicast+0x5df/0x7f0 [ 509.347770][T12173] ? __pfx_netlink_unicast+0x10/0x10 [ 509.347808][T12173] ? __lock_acquire+0xaa4/0x1ba0 [ 509.347861][T12173] netlink_sendmsg+0x8d1/0xdd0 [ 509.347918][T12173] ? __pfx_netlink_sendmsg+0x10/0x10 [ 509.347975][T12173] ____sys_sendmsg+0xa95/0xc70 [ 509.348023][T12173] ? copy_msghdr_from_user+0x10a/0x160 [ 509.348058][T12173] ? __pfx_____sys_sendmsg+0x10/0x10 [ 509.348124][T12173] ___sys_sendmsg+0x134/0x1d0 [ 509.348164][T12173] ? __pfx____sys_sendmsg+0x10/0x10 [ 509.348254][T12173] __sys_sendmsg+0x16d/0x220 [ 509.348292][T12173] ? __pfx___sys_sendmsg+0x10/0x10 [ 509.348343][T12173] ? rcu_is_watching+0x12/0xc0 [ 509.348385][T12173] do_syscall_64+0xcd/0x230 [ 509.348435][T12173] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 509.348468][T12173] RIP: 0033:0x7f8f0838e969 [ 509.348494][T12173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 509.348526][T12173] RSP: 002b:00007f8f091c3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 509.348556][T12173] RAX: ffffffffffffffda RBX: 00007f8f085b5fa0 RCX: 00007f8f0838e969 [ 509.348578][T12173] RDX: 000000000400c014 RSI: 0000200000000040 RDI: 0000000000000003 [ 509.348597][T12173] RBP: 00007f8f091c3090 R08: 0000000000000000 R09: 0000000000000000 [ 509.348616][T12173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 509.348636][T12173] R13: 0000000000000000 R14: 00007f8f085b5fa0 R15: 00007ffc9e419118 [ 509.348678][T12173] [ 509.348802][T12173] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1546'. [ 509.890920][T12178] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1547'. [ 510.181198][T12183] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1548'. [ 510.186172][T12185] FAULT_INJECTION: forcing a failure. [ 510.186172][T12185] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 510.214734][T12183] veth1_macvtap: entered allmulticast mode [ 510.217416][T12185] CPU: 1 UID: 0 PID: 12185 Comm: syz.5.1550 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 510.217472][T12185] Tainted: [U]=USER [ 510.217484][T12185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 510.217504][T12185] Call Trace: [ 510.217515][T12185] [ 510.217529][T12185] dump_stack_lvl+0x16c/0x1f0 [ 510.217583][T12185] should_fail_ex+0x512/0x640 [ 510.217638][T12185] _copy_from_iter+0x477/0x15b0 [ 510.217697][T12185] ? __alloc_skb+0x200/0x380 [ 510.217736][T12185] ? __pfx__copy_from_iter+0x10/0x10 [ 510.217791][T12185] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 510.217832][T12185] ? __lock_acquire+0xaa4/0x1ba0 [ 510.217895][T12185] netlink_sendmsg+0x829/0xdd0 [ 510.217944][T12185] ? __pfx_netlink_sendmsg+0x10/0x10 [ 510.218003][T12185] ____sys_sendmsg+0xa95/0xc70 [ 510.218053][T12185] ? copy_msghdr_from_user+0x10a/0x160 [ 510.218092][T12185] ? __pfx_____sys_sendmsg+0x10/0x10 [ 510.218147][T12185] ? __pfx__kstrtoull+0x10/0x10 [ 510.218194][T12185] ___sys_sendmsg+0x134/0x1d0 [ 510.218234][T12185] ? __pfx____sys_sendmsg+0x10/0x10 [ 510.218292][T12185] ? find_held_lock+0x2b/0x80 [ 510.218351][T12185] __sys_sendmmsg+0x200/0x420 [ 510.218395][T12185] ? __pfx___sys_sendmmsg+0x10/0x10 [ 510.218447][T12185] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 510.218515][T12185] ? fput+0x70/0xf0 [ 510.218555][T12185] ? ksys_write+0x1b9/0x240 [ 510.218586][T12185] ? __pfx_ksys_write+0x10/0x10 [ 510.218616][T12185] ? rcu_is_watching+0x12/0xc0 [ 510.218655][T12185] __x64_sys_sendmmsg+0x9c/0x100 [ 510.218693][T12185] ? lockdep_hardirqs_on+0x7c/0x110 [ 510.218739][T12185] do_syscall_64+0xcd/0x230 [ 510.218791][T12185] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 510.218825][T12185] RIP: 0033:0x7f8f0838e969 [ 510.218852][T12185] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 510.218894][T12185] RSP: 002b:00007f8f091c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 510.218926][T12185] RAX: ffffffffffffffda RBX: 00007f8f085b5fa0 RCX: 00007f8f0838e969 [ 510.218949][T12185] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 510.218970][T12185] RBP: 00007f8f091c3090 R08: 0000000000000000 R09: 0000000000000000 [ 510.218991][T12185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 510.219011][T12185] R13: 0000000000000000 R14: 00007f8f085b5fa0 R15: 00007ffc9e419118 [ 510.219055][T12185] [ 510.584186][T12191] Setting dangerous option i915.mitigations - tainting kernel [ 511.517574][T12195] zswap: compressor not available [ 513.190277][T12220] FAULT_INJECTION: forcing a failure. [ 513.190277][T12220] name failslab, interval 1, probability 0, space 0, times 0 [ 513.210966][T12220] CPU: 1 UID: 0 PID: 12220 Comm: syz.2.1561 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 513.211018][T12220] Tainted: [U]=USER [ 513.211029][T12220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 513.211047][T12220] Call Trace: [ 513.211058][T12220] [ 513.211071][T12220] dump_stack_lvl+0x16c/0x1f0 [ 513.211122][T12220] should_fail_ex+0x512/0x640 [ 513.211167][T12220] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 513.211209][T12220] should_failslab+0xc2/0x120 [ 513.211249][T12220] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 513.211286][T12220] ? __d_alloc+0x31/0xaa0 [ 513.211318][T12220] ? __pfx_dquot_alloc_inode+0x10/0x10 [ 513.211356][T12220] __d_alloc+0x31/0xaa0 [ 513.211394][T12220] d_alloc_pseudo+0x1c/0xc0 [ 513.211437][T12220] alloc_file_pseudo+0xcf/0x230 [ 513.211481][T12220] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 513.211535][T12220] __shmem_file_setup+0x210/0x300 [ 513.211574][T12220] shmem_zero_setup+0x93/0x1a0 [ 513.211616][T12220] __mmap_region+0x2036/0x27c0 [ 513.211659][T12220] ? __pfx___mmap_region+0x10/0x10 [ 513.211789][T12220] ? trace_cap_capable+0x18d/0x200 [ 513.211823][T12220] ? cap_capable+0xb3/0x250 [ 513.211862][T12220] mmap_region+0x1ab/0x3f0 [ 513.211907][T12220] do_mmap+0xd8e/0x11b0 [ 513.211962][T12220] ? __pfx_do_mmap+0x10/0x10 [ 513.212011][T12220] ? __pfx_down_write_killable+0x10/0x10 [ 513.212072][T12220] vm_mmap_pgoff+0x281/0x450 [ 513.212126][T12220] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 513.212177][T12220] ? __fget_files+0x20e/0x3c0 [ 513.212240][T12220] ksys_mmap_pgoff+0x7d/0x5c0 [ 513.212287][T12220] ? __pfx_ksys_write+0x10/0x10 [ 513.212323][T12220] __x64_sys_mmap+0x125/0x190 [ 513.212361][T12220] do_syscall_64+0xcd/0x230 [ 513.212409][T12220] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 513.212441][T12220] RIP: 0033:0x7fa382f8e969 [ 513.212466][T12220] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 513.212499][T12220] RSP: 002b:00007fa383d64038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 513.212530][T12220] RAX: ffffffffffffffda RBX: 00007fa3831b5fa0 RCX: 00007fa382f8e969 [ 513.212553][T12220] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000 [ 513.212573][T12220] RBP: 00007fa383d64090 R08: fffffffffffffffa R09: 0000000000008000 [ 513.212594][T12220] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000001 [ 513.212613][T12220] R13: 0000000000000000 R14: 00007fa3831b5fa0 R15: 00007ffd08a834b8 [ 513.212655][T12220] [ 514.359259][T12236] Setting dangerous option i915.mitigations - tainting kernel [ 514.745000][T12239] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 516.662740][T12257] zswap: compressor not available [ 516.694943][T12259] Setting dangerous option i915.mitigations - tainting kernel [ 517.289272][T12274] Setting dangerous option i915.mitigations - tainting kernel [ 518.689425][T12290] kAFS: unparsable volume name [ 519.017922][T12289] could not allocate digest TFM handle [ 519.311890][T12302] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1581'. [ 519.541927][T12309] FAULT_INJECTION: forcing a failure. [ 519.541927][T12309] name failslab, interval 1, probability 0, space 0, times 0 [ 519.623859][T12309] CPU: 1 UID: 0 PID: 12309 Comm: syz.2.1584 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 519.623913][T12309] Tainted: [U]=USER [ 519.623924][T12309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 519.623942][T12309] Call Trace: [ 519.623954][T12309] [ 519.623966][T12309] dump_stack_lvl+0x16c/0x1f0 [ 519.624022][T12309] should_fail_ex+0x512/0x640 [ 519.624068][T12309] ? fs_reclaim_acquire+0xae/0x150 [ 519.624119][T12309] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 519.624166][T12309] should_failslab+0xc2/0x120 [ 519.624207][T12309] __kmalloc_noprof+0xd2/0x510 [ 519.624254][T12309] tomoyo_realpath_from_path+0xc2/0x6e0 [ 519.624324][T12309] tomoyo_check_open_permission+0x2ab/0x3c0 [ 519.624368][T12309] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 519.624452][T12309] ? find_held_lock+0x2b/0x80 [ 519.624505][T12309] tomoyo_file_open+0x6b/0x90 [ 519.624559][T12309] security_file_open+0x84/0x1e0 [ 519.624604][T12309] do_dentry_open+0x596/0x1c10 [ 519.624651][T12309] vfs_open+0x82/0x3f0 [ 519.624699][T12309] path_openat+0x1e5e/0x2d40 [ 519.624753][T12309] ? __pfx_path_openat+0x10/0x10 [ 519.624802][T12309] do_filp_open+0x20b/0x470 [ 519.624835][T12309] ? __pfx_do_filp_open+0x10/0x10 [ 519.624910][T12309] ? alloc_fd+0x471/0x7d0 [ 519.624974][T12309] do_sys_openat2+0x11b/0x1d0 [ 519.625016][T12309] ? __pfx_do_sys_openat2+0x10/0x10 [ 519.625066][T12309] ? __fget_files+0x20e/0x3c0 [ 519.625125][T12309] __x64_sys_openat+0x174/0x210 [ 519.625171][T12309] ? __pfx___x64_sys_openat+0x10/0x10 [ 519.625213][T12309] ? ksys_write+0x1b9/0x240 [ 519.625260][T12309] do_syscall_64+0xcd/0x230 [ 519.625317][T12309] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 519.625350][T12309] RIP: 0033:0x7fa382f8e969 [ 519.625375][T12309] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 519.625405][T12309] RSP: 002b:00007fa383d64038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 519.625434][T12309] RAX: ffffffffffffffda RBX: 00007fa3831b5fa0 RCX: 00007fa382f8e969 [ 519.625455][T12309] RDX: 0000000000000302 RSI: 00002000000009c0 RDI: ffffffffffffff9c [ 519.625476][T12309] RBP: 00007fa383d64090 R08: 0000000000000000 R09: 0000000000000000 [ 519.625496][T12309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 519.625516][T12309] R13: 0000000000000001 R14: 00007fa3831b5fa0 R15: 00007ffd08a834b8 [ 519.625568][T12309] [ 519.625779][T12309] ERROR: Out of memory at tomoyo_realpath_from_path. [ 521.204977][T12329] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1590'. [ 522.746149][T12335] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1591'. [ 522.904718][T12342] kAFS: unparsable volume name [ 523.575140][T12353] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:7 is already present [ 524.444633][T12359] FAULT_INJECTION: forcing a failure. [ 524.444633][T12359] name fail_futex, interval 1, probability 0, space 0, times 0 [ 524.458001][T12359] CPU: 1 UID: 0 PID: 12359 Comm: syz.2.1598 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 524.458052][T12359] Tainted: [U]=USER [ 524.458063][T12359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 524.458083][T12359] Call Trace: [ 524.458093][T12359] [ 524.458105][T12359] dump_stack_lvl+0x16c/0x1f0 [ 524.458153][T12359] should_fail_ex+0x512/0x640 [ 524.458204][T12359] should_fail_futex+0x4c/0x60 [ 524.458238][T12359] futex_requeue+0x4fb/0x1eb0 [ 524.458287][T12359] ? find_held_lock+0x2b/0x80 [ 524.458320][T12359] ? __pfx_futex_requeue+0x10/0x10 [ 524.458375][T12359] ? find_held_lock+0x2b/0x80 [ 524.458414][T12359] ? find_held_lock+0x2b/0x80 [ 524.458446][T12359] ? ksys_write+0x190/0x240 [ 524.458482][T12359] do_futex+0x1ad/0x350 [ 524.458519][T12359] ? __pfx_do_futex+0x10/0x10 [ 524.458565][T12359] __x64_sys_futex+0x1e0/0x4c0 [ 524.458602][T12359] ? fput+0x70/0xf0 [ 524.458638][T12359] ? __pfx___x64_sys_futex+0x10/0x10 [ 524.458671][T12359] ? ksys_write+0x1b9/0x240 [ 524.458701][T12359] ? __pfx_ksys_write+0x10/0x10 [ 524.458730][T12359] ? rcu_is_watching+0x12/0xc0 [ 524.458773][T12359] do_syscall_64+0xcd/0x230 [ 524.458821][T12359] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 524.458860][T12359] RIP: 0033:0x7fa382f8e969 [ 524.458885][T12359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 524.458918][T12359] RSP: 002b:00007fa383d64038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 524.458947][T12359] RAX: ffffffffffffffda RBX: 00007fa3831b5fa0 RCX: 00007fa382f8e969 [ 524.458968][T12359] RDX: 0000000000000001 RSI: 000000000000008c RDI: 00002000000001c0 [ 524.458988][T12359] RBP: 00007fa383d64090 R08: 0000000000000000 R09: 0000000000000001 [ 524.459008][T12359] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 524.459028][T12359] R13: 0000000000000000 R14: 00007fa3831b5fa0 R15: 00007ffd08a834b8 [ 524.459069][T12359] [ 525.951985][T12377] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1601'. [ 528.185097][T12396] kAFS: unparsable volume name [ 528.416042][T12400] Setting dangerous option i915.mitigations - tainting kernel [ 529.289808][T12409] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:7 is already present [ 529.429911][T12403] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1609'. [ 529.449475][T12403] team_slave_0: entered allmulticast mode [ 530.131442][T12421] Setting dangerous option i915.mitigations - tainting kernel [ 531.786140][T12440] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1617'. [ 533.125743][T12451] kAFS: unparsable volume name [ 533.681587][T12462] Setting dangerous option i915.mitigations - tainting kernel [ 534.467514][T12469] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:7 is already present [ 534.885469][T12475] Setting dangerous option i915.mitigations - tainting kernel [ 535.631842][T12479] Setting dangerous option i915.mitigations - tainting kernel [ 536.631597][T12483] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1627'. [ 536.674739][T12483] team_slave_0: entered allmulticast mode [ 537.794076][T12501] kAFS: unparsable volume name [ 538.606293][T12510] Setting dangerous option i915.mitigations - tainting kernel [ 539.726675][T12519] Setting dangerous option i915.mitigations - tainting kernel [ 540.245605][T12524] Setting dangerous option i915.mitigations - tainting kernel [ 540.259437][T12527] FAULT_INJECTION: forcing a failure. [ 540.259437][T12527] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 540.274176][T12527] CPU: 0 UID: 0 PID: 12527 Comm: syz.2.1641 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 540.274224][T12527] Tainted: [U]=USER [ 540.274235][T12527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 540.274253][T12527] Call Trace: [ 540.274263][T12527] [ 540.274283][T12527] dump_stack_lvl+0x16c/0x1f0 [ 540.274330][T12527] should_fail_ex+0x512/0x640 [ 540.274379][T12527] _copy_from_user+0x2e/0xd0 [ 540.274427][T12527] __sys_bpf+0x21d/0x4d80 [ 540.274475][T12527] ? __pfx___sys_bpf+0x10/0x10 [ 540.274516][T12527] ? vfs_write+0x316/0x1180 [ 540.274554][T12527] ? __pfx_vfs_write+0x10/0x10 [ 540.274583][T12527] ? do_sys_openat2+0x157/0x1d0 [ 540.274643][T12527] ? ksys_write+0x1b9/0x240 [ 540.274671][T12527] ? __pfx_ksys_write+0x10/0x10 [ 540.274697][T12527] ? rcu_is_watching+0x12/0xc0 [ 540.274733][T12527] __x64_sys_bpf+0x78/0xc0 [ 540.274775][T12527] ? lockdep_hardirqs_on+0x7c/0x110 [ 540.274817][T12527] do_syscall_64+0xcd/0x230 [ 540.274864][T12527] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 540.274895][T12527] RIP: 0033:0x7fa382f8e969 [ 540.274919][T12527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 540.274948][T12527] RSP: 002b:00007fa383d64038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 540.274977][T12527] RAX: ffffffffffffffda RBX: 00007fa3831b5fa0 RCX: 00007fa382f8e969 [ 540.274999][T12527] RDX: 0000000000000007 RSI: 0000200000000040 RDI: 0000000000000003 [ 540.275017][T12527] RBP: 00007fa383d64090 R08: 0000000000000000 R09: 0000000000000000 [ 540.275037][T12527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 540.275055][T12527] R13: 0000000000000000 R14: 00007fa3831b5fa0 R15: 00007ffd08a834b8 [ 540.275094][T12527] [ 541.130722][T12541] kAFS: unparsable volume name [ 542.368158][T12564] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1648'. [ 542.565449][T12568] Setting dangerous option i915.mitigations - tainting kernel [ 544.882341][T12589] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input17 [ 545.396794][T12598] Invalid ELF header magic: != ELF [ 546.256246][T12610] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1662'. [ 546.284202][T12610] FAULT_INJECTION: forcing a failure. [ 546.284202][T12610] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 546.353667][T12610] CPU: 1 UID: 0 PID: 12610 Comm: syz.2.1662 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 546.353733][T12610] Tainted: [U]=USER [ 546.353744][T12610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 546.353767][T12610] Call Trace: [ 546.353779][T12610] [ 546.353792][T12610] dump_stack_lvl+0x16c/0x1f0 [ 546.353852][T12610] should_fail_ex+0x512/0x640 [ 546.353998][T12610] should_fail_alloc_page+0xe7/0x130 [ 546.354038][T12610] prepare_alloc_pages+0x3c2/0x610 [ 546.354088][T12610] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 546.354125][T12610] ? mark_held_locks+0x49/0x80 [ 546.354160][T12610] ? finish_task_switch.isra.0+0x221/0xc10 [ 546.354192][T12610] ? finish_task_switch.isra.0+0x2fa/0xc10 [ 546.354222][T12610] ? rcu_is_watching+0x12/0xc0 [ 546.354249][T12610] ? trace_sched_exit_tp+0xde/0x130 [ 546.354285][T12610] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 546.354341][T12610] ? __pfx___schedule+0x10/0x10 [ 546.354387][T12610] ? wiphy_new_nm+0x701/0x2160 [ 546.354430][T12610] __alloc_pages_noprof+0xb/0x1b0 [ 546.354464][T12610] ___kmalloc_large_node+0x82/0x1e0 [ 546.354512][T12610] __kmalloc_large_node_noprof+0x1c/0x70 [ 546.354558][T12610] __kmalloc_noprof.cold+0xc/0x61 [ 546.354596][T12610] ? irq_work_queue+0xce/0x100 [ 546.354640][T12610] ? __pfx_ieee80211_emulate_add_chanctx+0x10/0x10 [ 546.354691][T12610] ? __pfx_ieee80211_emulate_remove_chanctx+0x10/0x10 [ 546.354743][T12610] wiphy_new_nm+0x701/0x2160 [ 546.354791][T12610] ? __pfx_ieee80211_emulate_add_chanctx+0x10/0x10 [ 546.354842][T12610] ? __pfx_ieee80211_emulate_remove_chanctx+0x10/0x10 [ 546.354891][T12610] ieee80211_alloc_hw_nm+0x1b7a/0x2260 [ 546.354939][T12610] ? __local_bh_enable_ip+0xa4/0x120 [ 546.354991][T12610] mac80211_hwsim_new_radio+0x1d4/0x54d0 [ 546.355039][T12610] ? __pfx__printk+0x10/0x10 [ 546.355087][T12610] ? __pfx____ratelimit+0x10/0x10 [ 546.355132][T12610] ? rcu_is_watching+0x12/0xc0 [ 546.355163][T12610] ? do_trace_netlink_extack+0x164/0x1e0 [ 546.355218][T12610] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 546.355278][T12610] hwsim_new_radio_nl+0xb51/0x12c0 [ 546.355329][T12610] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 546.355392][T12610] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 546.355442][T12610] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 546.355501][T12610] genl_family_rcv_msg_doit+0x206/0x2f0 [ 546.355550][T12610] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 546.355609][T12610] ? trace_cap_capable+0x18d/0x200 [ 546.355652][T12610] ? bpf_lsm_capable+0x9/0x10 [ 546.355685][T12610] ? security_capable+0x7e/0x260 [ 546.355718][T12610] ? ns_capable+0xd7/0x110 [ 546.355756][T12610] genl_rcv_msg+0x55c/0x800 [ 546.355808][T12610] ? __pfx_genl_rcv_msg+0x10/0x10 [ 546.355849][T12610] ? __pfx___dev_queue_xmit+0x10/0x10 [ 546.355902][T12610] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 546.355959][T12610] ? __lock_acquire+0xaa4/0x1ba0 [ 546.356024][T12610] netlink_rcv_skb+0x16a/0x440 [ 546.356064][T12610] ? __pfx_genl_rcv_msg+0x10/0x10 [ 546.356113][T12610] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 546.356174][T12610] ? __pfx_down_read+0x10/0x10 [ 546.356225][T12610] ? netlink_deliver_tap+0x1ae/0xd30 [ 546.356270][T12610] genl_rcv+0x28/0x40 [ 546.356310][T12610] netlink_unicast+0x53a/0x7f0 [ 546.356362][T12610] ? __pfx_netlink_unicast+0x10/0x10 [ 546.356401][T12610] ? __lock_acquire+0xaa4/0x1ba0 [ 546.356454][T12610] netlink_sendmsg+0x8d1/0xdd0 [ 546.356500][T12610] ? __pfx_netlink_sendmsg+0x10/0x10 [ 546.356557][T12610] ____sys_sendmsg+0xa95/0xc70 [ 546.356605][T12610] ? copy_msghdr_from_user+0x10a/0x160 [ 546.356641][T12610] ? __pfx_____sys_sendmsg+0x10/0x10 [ 546.356709][T12610] ___sys_sendmsg+0x134/0x1d0 [ 546.356749][T12610] ? __pfx____sys_sendmsg+0x10/0x10 [ 546.356839][T12610] __sys_sendmsg+0x16d/0x220 [ 546.356877][T12610] ? __pfx___sys_sendmsg+0x10/0x10 [ 546.356927][T12610] ? rcu_is_watching+0x12/0xc0 [ 546.356977][T12610] do_syscall_64+0xcd/0x230 [ 546.357065][T12610] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 546.357099][T12610] RIP: 0033:0x7fa382f8e969 [ 546.357125][T12610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 546.357156][T12610] RSP: 002b:00007fa383d64038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 546.357187][T12610] RAX: ffffffffffffffda RBX: 00007fa3831b5fa0 RCX: 00007fa382f8e969 [ 546.357208][T12610] RDX: 0000000000018800 RSI: 0000200000001400 RDI: 0000000000000003 [ 546.357228][T12610] RBP: 00007fa383d64090 R08: 0000000000000000 R09: 0000000000000000 [ 546.357248][T12610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 546.357267][T12610] R13: 0000000000000000 R14: 00007fa3831b5fa0 R15: 00007ffd08a834b8 [ 546.357310][T12610] [ 548.116529][T12633] Setting dangerous option i915.mitigations - tainting kernel [ 548.875181][T12644] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1670'. [ 549.125937][T12652] Setting dangerous option i915.mitigations - tainting kernel [ 550.029268][T12659] Setting dangerous option i915.mitigations - tainting kernel [ 550.087714][T12650] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input18 [ 551.021270][T12661] Invalid ELF header magic: != ELF [ 551.279910][T12677] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input19 [ 551.367565][T12677] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1677'. [ 552.123589][T12688] Setting dangerous option i915.mitigations - tainting kernel [ 553.234350][T12711] Setting dangerous option i915.mitigations - tainting kernel [ 553.985102][T12724] kAFS: unparsable volume name [ 554.178173][T12728] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input20 [ 554.253806][T12723] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input21 [ 554.271336][T12728] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1692'. [ 554.581364][T12731] Invalid ELF header magic: != ELF [ 555.308181][T12747] Setting dangerous option i915.mitigations - tainting kernel [ 556.132620][T12756] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1700'. [ 556.293490][T12761] kAFS: unparsable volume name [ 556.329191][T12762] Setting dangerous option i915.mitigations - tainting kernel [ 556.761317][T12767] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input22 [ 556.850396][T12767] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1704'. [ 557.892554][T12786] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1708'. [ 558.246563][T12794] Setting dangerous option i915.mitigations - tainting kernel [ 558.905365][T12800] kAFS: unparsable volume name [ 559.057621][T12803] Setting dangerous option i915.mitigations - tainting kernel [ 559.404450][T12807] kAFS: unparsable volume name [ 559.503182][T12809] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1715'. [ 559.612409][T12811] FAULT_INJECTION: forcing a failure. [ 559.612409][T12811] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 559.626282][T12811] CPU: 0 UID: 0 PID: 12811 Comm: syz.4.1717 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 559.626338][T12811] Tainted: [U]=USER [ 559.626351][T12811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 559.626371][T12811] Call Trace: [ 559.626383][T12811] [ 559.626396][T12811] dump_stack_lvl+0x16c/0x1f0 [ 559.626450][T12811] should_fail_ex+0x512/0x640 [ 559.626504][T12811] should_fail_alloc_page+0xe7/0x130 [ 559.626549][T12811] prepare_alloc_pages+0x3c2/0x610 [ 559.626607][T12811] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 559.626655][T12811] ? __lock_acquire+0x5ca/0x1ba0 [ 559.626709][T12811] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 559.626771][T12811] ? find_held_lock+0x2b/0x80 [ 559.626803][T12811] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 559.626850][T12811] ? policy_nodemask+0xea/0x4e0 [ 559.626902][T12811] alloc_pages_mpol+0x1fb/0x550 [ 559.626943][T12811] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 559.626997][T12811] folio_alloc_mpol_noprof+0x36/0x2f0 [ 559.627047][T12811] shmem_alloc_folio+0x135/0x160 [ 559.627082][T12811] shmem_alloc_and_add_folio+0x499/0xc20 [ 559.627131][T12811] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 559.627176][T12811] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 559.627224][T12811] shmem_get_folio_gfp+0x687/0x1530 [ 559.627273][T12811] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 559.627317][T12811] ? filemap_map_pages+0xf6c/0x1680 [ 559.627364][T12811] shmem_fault+0x1fe/0xa30 [ 559.627406][T12811] ? __pfx_shmem_fault+0x10/0x10 [ 559.627452][T12811] ? __pfx_filemap_map_pages+0x10/0x10 [ 559.627507][T12811] __do_fault+0x10a/0x490 [ 559.627550][T12811] do_pte_missing+0x1031/0x3fb0 [ 559.627584][T12811] ? do_raw_spin_unlock+0x172/0x230 [ 559.627636][T12811] ? __pmd_alloc+0x3c2/0x870 [ 559.627682][T12811] ? find_held_lock+0x2b/0x80 [ 559.627716][T12811] __handle_mm_fault+0x103d/0x2a40 [ 559.627762][T12811] ? __pfx___handle_mm_fault+0x10/0x10 [ 559.627819][T12811] ? find_vma+0xbf/0x140 [ 559.627863][T12811] ? __pfx_find_vma+0x10/0x10 [ 559.627921][T12811] handle_mm_fault+0x3fe/0xad0 [ 559.627962][T12811] do_user_addr_fault+0x7a6/0x1370 [ 559.628001][T12811] ? rcu_is_watching+0x12/0xc0 [ 559.628036][T12811] exc_page_fault+0x5c/0xc0 [ 559.628081][T12811] asm_exc_page_fault+0x26/0x30 [ 559.628113][T12811] RIP: 0010:rep_movs_alternative+0x30/0x90 [ 559.628150][T12811] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 [ 559.628184][T12811] RSP: 0018:ffffc90003b27ad0 EFLAGS: 00050216 [ 559.628213][T12811] RAX: 0000000000000001 RBX: 0000000000000010 RCX: 0000000000000020 [ 559.628234][T12811] RDX: fffff520007b520d RSI: 0000000000000010 RDI: ffffc90003da9048 [ 559.628256][T12811] RBP: 0000000000000020 R08: 0000000000000001 R09: fffff520007b520c [ 559.628278][T12811] R10: ffffc90003da9067 R11: 0000000000000000 R12: 0000000000000000 [ 559.628299][T12811] R13: ffffc90003da9048 R14: 0000000000000020 R15: 0000000000000006 [ 559.628342][T12811] _copy_from_user+0x98/0xd0 [ 559.628393][T12811] bpf_prog_load+0x1a8d/0x2490 [ 559.628450][T12811] ? __pfx_bpf_prog_load+0x10/0x10 [ 559.628491][T12811] ? __pfx___futex_wait+0x10/0x10 [ 559.628566][T12811] ? bpf_lsm_bpf+0x9/0x10 [ 559.628602][T12811] __sys_bpf+0x433c/0x4d80 [ 559.628654][T12811] ? __pfx___sys_bpf+0x10/0x10 [ 559.628713][T12811] ? do_futex+0x122/0x350 [ 559.628749][T12811] ? __pfx_do_futex+0x10/0x10 [ 559.628805][T12811] ? xfd_validate_state+0x5d/0x180 [ 559.628861][T12811] ? rcu_is_watching+0x12/0xc0 [ 559.628906][T12811] __x64_sys_bpf+0x78/0xc0 [ 559.628954][T12811] ? lockdep_hardirqs_on+0x7c/0x110 [ 559.628998][T12811] do_syscall_64+0xcd/0x230 [ 559.629050][T12811] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 559.629083][T12811] RIP: 0033:0x7fc84258e969 [ 559.629110][T12811] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 559.629142][T12811] RSP: 002b:00007fc84349c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 559.629172][T12811] RAX: ffffffffffffffda RBX: 00007fc8427b5fa0 RCX: 00007fc84258e969 [ 559.629194][T12811] RDX: 000000000000004a RSI: 0000200000000300 RDI: 0000000000000005 [ 559.629215][T12811] RBP: 00007fc842610ab1 R08: 0000000000000000 R09: 0000000000000000 [ 559.629236][T12811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 559.629256][T12811] R13: 0000000000000000 R14: 00007fc8427b5fa0 R15: 00007ffd6e2d0758 [ 559.629299][T12811] [ 560.339913][T12818] FAULT_INJECTION: forcing a failure. [ 560.339913][T12818] name failslab, interval 1, probability 0, space 0, times 0 [ 560.387856][T12818] CPU: 1 UID: 0 PID: 12818 Comm: syz.5.1719 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 560.387910][T12818] Tainted: [U]=USER [ 560.387921][T12818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 560.387941][T12818] Call Trace: [ 560.387952][T12818] [ 560.387965][T12818] dump_stack_lvl+0x16c/0x1f0 [ 560.388013][T12818] should_fail_ex+0x512/0x640 [ 560.388059][T12818] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 560.388100][T12818] should_failslab+0xc2/0x120 [ 560.388138][T12818] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 560.388173][T12818] ? crng_make_state+0x48e/0x6d0 [ 560.388217][T12818] ? proc_net_ns_init+0x42/0x410 [ 560.388256][T12818] ? __pfx_proc_net_ns_init+0x10/0x10 [ 560.388295][T12818] proc_net_ns_init+0x42/0x410 [ 560.388332][T12818] ? __pfx_proc_net_ns_init+0x10/0x10 [ 560.388367][T12818] ops_init+0x1df/0x5f0 [ 560.388409][T12818] setup_net+0x21e/0x850 [ 560.388450][T12818] ? __pfx_setup_net+0x10/0x10 [ 560.388486][T12818] ? lockdep_init_map_type+0x5c/0x280 [ 560.388530][T12818] ? __pfx_down_read_killable+0x10/0x10 [ 560.388593][T12818] ? debug_mutex_init+0x37/0x70 [ 560.388628][T12818] copy_net_ns+0x2a6/0x5f0 [ 560.388676][T12818] create_new_namespaces+0x3ea/0xad0 [ 560.388720][T12818] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 560.388761][T12818] ksys_unshare+0x45b/0xa40 [ 560.388805][T12818] ? __pfx_ksys_unshare+0x10/0x10 [ 560.388846][T12818] ? xfd_validate_state+0x5d/0x180 [ 560.388899][T12818] ? rcu_is_watching+0x12/0xc0 [ 560.388938][T12818] __x64_sys_unshare+0x31/0x40 [ 560.388981][T12818] do_syscall_64+0xcd/0x230 [ 560.389028][T12818] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 560.389060][T12818] RIP: 0033:0x7f8f0838e969 [ 560.389085][T12818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 560.389116][T12818] RSP: 002b:00007f8f091c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 560.389147][T12818] RAX: ffffffffffffffda RBX: 00007f8f085b5fa0 RCX: 00007f8f0838e969 [ 560.389168][T12818] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 560.389187][T12818] RBP: 00007f8f08410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 560.389206][T12818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 560.389224][T12818] R13: 0000000000000000 R14: 00007f8f085b5fa0 R15: 00007ffc9e419118 [ 560.389264][T12818] [ 561.587928][T12838] kAFS: unparsable volume name [ 561.928316][T12843] FAULT_INJECTION: forcing a failure. [ 561.928316][T12843] name failslab, interval 1, probability 0, space 0, times 0 [ 561.997414][T12843] CPU: 1 UID: 0 PID: 12843 Comm: syz.4.1728 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 561.997464][T12843] Tainted: [U]=USER [ 561.997475][T12843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 561.997494][T12843] Call Trace: [ 561.997505][T12843] [ 561.997518][T12843] dump_stack_lvl+0x16c/0x1f0 [ 561.997570][T12843] should_fail_ex+0x512/0x640 [ 561.997621][T12843] should_failslab+0xc2/0x120 [ 561.997666][T12843] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 561.997705][T12843] ? skb_clone+0x190/0x3f0 [ 561.997748][T12843] skb_clone+0x190/0x3f0 [ 561.997787][T12843] netlink_deliver_tap+0xabd/0xd30 [ 561.997835][T12843] netlink_unicast+0x5df/0x7f0 [ 561.997881][T12843] ? __pfx_netlink_unicast+0x10/0x10 [ 561.997919][T12843] ? __lock_acquire+0xaa4/0x1ba0 [ 561.997973][T12843] netlink_sendmsg+0x8d1/0xdd0 [ 561.998018][T12843] ? __pfx_netlink_sendmsg+0x10/0x10 [ 561.998074][T12843] ____sys_sendmsg+0xa95/0xc70 [ 561.998120][T12843] ? copy_msghdr_from_user+0x10a/0x160 [ 561.998156][T12843] ? __pfx_____sys_sendmsg+0x10/0x10 [ 561.998219][T12843] ___sys_sendmsg+0x134/0x1d0 [ 561.998259][T12843] ? __pfx____sys_sendmsg+0x10/0x10 [ 561.998348][T12843] __sys_sendmsg+0x16d/0x220 [ 561.998386][T12843] ? __pfx___sys_sendmsg+0x10/0x10 [ 561.998437][T12843] ? rcu_is_watching+0x12/0xc0 [ 561.998480][T12843] do_syscall_64+0xcd/0x230 [ 561.998530][T12843] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 561.998563][T12843] RIP: 0033:0x7fc84258e969 [ 561.998589][T12843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 561.998621][T12843] RSP: 002b:00007fc84349c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 561.998662][T12843] RAX: ffffffffffffffda RBX: 00007fc8427b5fa0 RCX: 00007fc84258e969 [ 561.998684][T12843] RDX: 0000000004040000 RSI: 00002000000002c0 RDI: 0000000000000003 [ 561.998705][T12843] RBP: 00007fc84349c090 R08: 0000000000000000 R09: 0000000000000000 [ 561.998725][T12843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 561.998744][T12843] R13: 0000000000000000 R14: 00007fc8427b5fa0 R15: 00007ffd6e2d0758 [ 561.998787][T12843] [ 562.366453][T12845] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1729'. [ 562.670160][T12849] Setting dangerous option i915.mitigations - tainting kernel [ 563.353484][T12856] FAULT_INJECTION: forcing a failure. [ 563.353484][T12856] name failslab, interval 1, probability 0, space 0, times 0 [ 563.405879][T12856] CPU: 0 UID: 0 PID: 12856 Comm: syz.4.1732 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 563.405938][T12856] Tainted: [U]=USER [ 563.405951][T12856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 563.405971][T12856] Call Trace: [ 563.405983][T12856] [ 563.405996][T12856] dump_stack_lvl+0x16c/0x1f0 [ 563.406052][T12856] should_fail_ex+0x512/0x640 [ 563.406100][T12856] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 563.406144][T12856] should_failslab+0xc2/0x120 [ 563.406185][T12856] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 563.406222][T12856] ? __proc_create+0xc3/0x8c0 [ 563.406259][T12856] ? __proc_create+0x2ce/0x8c0 [ 563.406301][T12856] __proc_create+0x2ce/0x8c0 [ 563.406340][T12856] ? __pfx___proc_create+0x10/0x10 [ 563.406375][T12856] ? _raw_write_unlock+0x28/0x50 [ 563.406417][T12856] ? proc_register+0x314/0x5f0 [ 563.406466][T12856] _proc_mkdir+0xb9/0x200 [ 563.406505][T12856] ? __pfx__proc_mkdir+0x10/0x10 [ 563.406561][T12856] ? __pfx_netfilter_net_init+0x10/0x10 [ 563.406596][T12856] netfilter_net_init+0x37b/0x4b0 [ 563.406627][T12856] ? sysctl_net_init+0x27/0x30 [ 563.406676][T12856] ops_init+0x1df/0x5f0 [ 563.406721][T12856] setup_net+0x21e/0x850 [ 563.406766][T12856] ? __pfx_setup_net+0x10/0x10 [ 563.406808][T12856] ? lockdep_init_map_type+0x5c/0x280 [ 563.406854][T12856] ? __pfx_down_read_killable+0x10/0x10 [ 563.406912][T12856] ? debug_mutex_init+0x37/0x70 [ 563.406949][T12856] copy_net_ns+0x2a6/0x5f0 [ 563.406999][T12856] create_new_namespaces+0x3ea/0xad0 [ 563.407046][T12856] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 563.407088][T12856] ksys_unshare+0x45b/0xa40 [ 563.407135][T12856] ? __pfx_ksys_unshare+0x10/0x10 [ 563.407178][T12856] ? xfd_validate_state+0x5d/0x180 [ 563.407234][T12856] ? rcu_is_watching+0x12/0xc0 [ 563.407275][T12856] __x64_sys_unshare+0x31/0x40 [ 563.407321][T12856] do_syscall_64+0xcd/0x230 [ 563.407371][T12856] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 563.407405][T12856] RIP: 0033:0x7fc84258e969 [ 563.407433][T12856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 563.407467][T12856] RSP: 002b:00007fc84349c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 563.407500][T12856] RAX: ffffffffffffffda RBX: 00007fc8427b5fa0 RCX: 00007fc84258e969 [ 563.407524][T12856] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 563.407552][T12856] RBP: 00007fc842610ab1 R08: 0000000000000000 R09: 0000000000000000 [ 563.407573][T12856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 563.407594][T12856] R13: 0000000000000000 R14: 00007fc8427b5fa0 R15: 00007ffd6e2d0758 [ 563.407638][T12856] [ 563.407652][T12856] cannot create netfilter proc entry [ 564.058316][T12868] kAFS: unparsable volume name [ 564.108643][T12869] openvswitch: netlink: Flow key attribute not present in set flow. [ 564.311792][T12864] zswap: compressor not available [ 564.552037][T12882] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1741'. [ 566.196239][T12904] kAFS: unparsable volume name [ 566.959482][T12921] FAULT_INJECTION: forcing a failure. [ 566.959482][T12921] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 567.007538][T12921] CPU: 0 UID: 0 PID: 12921 Comm: syz.5.1751 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 567.007590][T12921] Tainted: [U]=USER [ 567.007601][T12921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 567.007621][T12921] Call Trace: [ 567.007631][T12921] [ 567.007643][T12921] dump_stack_lvl+0x16c/0x1f0 [ 567.007693][T12921] should_fail_ex+0x512/0x640 [ 567.007746][T12921] _copy_from_iter+0x2a4/0x15b0 [ 567.007796][T12921] ? __alloc_skb+0x200/0x380 [ 567.007831][T12921] ? __pfx__copy_from_iter+0x10/0x10 [ 567.007883][T12921] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 567.007922][T12921] ? __lock_acquire+0xaa4/0x1ba0 [ 567.007975][T12921] netlink_sendmsg+0x829/0xdd0 [ 567.008031][T12921] ? __pfx_netlink_sendmsg+0x10/0x10 [ 567.008087][T12921] ____sys_sendmsg+0xa95/0xc70 [ 567.008135][T12921] ? copy_msghdr_from_user+0x10a/0x160 [ 567.008172][T12921] ? __pfx_____sys_sendmsg+0x10/0x10 [ 567.008236][T12921] ___sys_sendmsg+0x134/0x1d0 [ 567.008275][T12921] ? __pfx____sys_sendmsg+0x10/0x10 [ 567.008361][T12921] __sys_sendmsg+0x16d/0x220 [ 567.008399][T12921] ? __pfx___sys_sendmsg+0x10/0x10 [ 567.008463][T12921] do_syscall_64+0xcd/0x230 [ 567.008518][T12921] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 567.008551][T12921] RIP: 0033:0x7f8f0838e969 [ 567.008576][T12921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 567.008608][T12921] RSP: 002b:00007f8f091a2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 567.008638][T12921] RAX: ffffffffffffffda RBX: 00007f8f085b6080 RCX: 00007f8f0838e969 [ 567.008660][T12921] RDX: 0000000000000080 RSI: 0000200000000080 RDI: 0000000000000003 [ 567.008680][T12921] RBP: 00007f8f091a2090 R08: 0000000000000000 R09: 0000000000000000 [ 567.008700][T12921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 567.008719][T12921] R13: 0000000000000001 R14: 00007f8f085b6080 R15: 00007ffc9e419118 [ 567.008760][T12921] [ 567.545904][T12926] FAULT_INJECTION: forcing a failure. [ 567.545904][T12926] name failslab, interval 1, probability 0, space 0, times 0 [ 567.636755][T12926] CPU: 0 UID: 0 PID: 12926 Comm: syz.1.1752 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 567.636806][T12926] Tainted: [U]=USER [ 567.636816][T12926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 567.636834][T12926] Call Trace: [ 567.636844][T12926] [ 567.636857][T12926] dump_stack_lvl+0x16c/0x1f0 [ 567.636913][T12926] should_fail_ex+0x512/0x640 [ 567.636956][T12926] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 567.636994][T12926] should_failslab+0xc2/0x120 [ 567.637032][T12926] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 567.637067][T12926] ? ptlock_alloc+0x1f/0x70 [ 567.637102][T12926] ptlock_alloc+0x1f/0x70 [ 567.637131][T12926] pte_alloc_one+0x6d/0x380 [ 567.637168][T12926] do_pte_missing+0x1c0b/0x3fb0 [ 567.637199][T12926] ? do_raw_spin_unlock+0x172/0x230 [ 567.637257][T12926] ? __pmd_alloc+0x3c2/0x870 [ 567.637298][T12926] ? find_held_lock+0x2b/0x80 [ 567.637330][T12926] __handle_mm_fault+0x103d/0x2a40 [ 567.637373][T12926] ? __pfx___handle_mm_fault+0x10/0x10 [ 567.637427][T12926] ? find_vma+0xbf/0x140 [ 567.637467][T12926] ? __pfx_find_vma+0x10/0x10 [ 567.637514][T12926] handle_mm_fault+0x3fe/0xad0 [ 567.637553][T12926] do_user_addr_fault+0x7a6/0x1370 [ 567.637588][T12926] ? rcu_is_watching+0x12/0xc0 [ 567.637620][T12926] exc_page_fault+0x5c/0xc0 [ 567.637662][T12926] asm_exc_page_fault+0x26/0x30 [ 567.637691][T12926] RIP: 0010:copy_iovec_from_user+0x84/0x170 [ 567.637738][T12926] Code: e8 01 2b ef fc 4d 85 ff 0f 85 c6 00 00 00 e8 43 30 ef fc 0f 01 cb 0f ae e8 49 bf 00 00 00 00 00 fc ff df e8 2e 30 ef fc 31 db <48> 8b 45 08 31 ff 89 de 49 89 c6 e8 5c 2b ef fc 85 db 0f 85 b1 00 [ 567.637769][T12926] RSP: 0018:ffffc90002e3f8f0 EFLAGS: 00050246 [ 567.637794][T12926] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff84cb6c8f [ 567.637815][T12926] RDX: ffff888030cada00 RSI: ffffffff84cb6cb2 RDI: 0000000000000006 [ 567.637836][T12926] RBP: 0000000000000000 R08: 0000000000000006 R09: 0000000000000000 [ 567.637854][T12926] R10: 0000000000000070 R11: 0000000000000000 R12: ffffc90002e3fb60 [ 567.637882][T12926] R13: 0000000000000007 R14: 00007ffffffff000 R15: dffffc0000000000 [ 567.637912][T12926] ? copy_iovec_from_user+0x5f/0x170 [ 567.637956][T12926] ? copy_iovec_from_user+0x82/0x170 [ 567.638013][T12926] iovec_from_user+0xa2/0x140 [ 567.638065][T12926] __import_iovec+0x88/0x660 [ 567.638124][T12926] import_iovec+0x86/0xb0 [ 567.638176][T12926] copy_msghdr_from_user+0xf9/0x160 [ 567.638212][T12926] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 567.638257][T12926] ? __pfx__kstrtoull+0x10/0x10 [ 567.638303][T12926] ___sys_sendmsg+0xfe/0x1d0 [ 567.638341][T12926] ? __pfx____sys_sendmsg+0x10/0x10 [ 567.638398][T12926] ? find_held_lock+0x2b/0x80 [ 567.638456][T12926] __sys_sendmmsg+0x200/0x420 [ 567.638498][T12926] ? __pfx___sys_sendmmsg+0x10/0x10 [ 567.638548][T12926] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 567.638611][T12926] ? fput+0x70/0xf0 [ 567.638648][T12926] ? ksys_write+0x1b9/0x240 [ 567.638678][T12926] ? __pfx_ksys_write+0x10/0x10 [ 567.638715][T12926] __x64_sys_sendmmsg+0x9c/0x100 [ 567.638751][T12926] ? lockdep_hardirqs_on+0x7c/0x110 [ 567.638794][T12926] do_syscall_64+0xcd/0x230 [ 567.638844][T12926] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 567.638897][T12926] RIP: 0033:0x7fb7c578e969 [ 567.638922][T12926] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 567.638954][T12926] RSP: 002b:00007fb7c65af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 567.638982][T12926] RAX: ffffffffffffffda RBX: 00007fb7c59b5fa0 RCX: 00007fb7c578e969 [ 567.639003][T12926] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000002 [ 567.639022][T12926] RBP: 00007fb7c65af090 R08: 0000000000000000 R09: 0000000000000000 [ 567.639042][T12926] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000001 [ 567.639061][T12926] R13: 0000000000000000 R14: 00007fb7c59b5fa0 R15: 00007ffcfaca4988 [ 567.639102][T12926] [ 568.174321][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 568.180703][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 569.648244][T12945] kAFS: unparsable volume name [ 570.322548][T12949] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1767'. [ 571.008284][T12966] netlink: 504 bytes leftover after parsing attributes in process `syz.1.1764'. [ 571.041681][T12966] FAULT_INJECTION: forcing a failure. [ 571.041681][T12966] name failslab, interval 1, probability 0, space 0, times 0 [ 571.054436][T12966] CPU: 1 UID: 0 PID: 12966 Comm: syz.1.1764 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 571.054487][T12966] Tainted: [U]=USER [ 571.054499][T12966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 571.054519][T12966] Call Trace: [ 571.054530][T12966] [ 571.054542][T12966] dump_stack_lvl+0x16c/0x1f0 [ 571.054594][T12966] should_fail_ex+0x512/0x640 [ 571.054646][T12966] should_failslab+0xc2/0x120 [ 571.054688][T12966] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 571.054723][T12966] ? __lock_acquire+0xaa4/0x1ba0 [ 571.054765][T12966] ? xfrm_state_alloc+0x23/0x5c0 [ 571.054804][T12966] xfrm_state_alloc+0x23/0x5c0 [ 571.054837][T12966] __find_acq_core+0xb59/0x2900 [ 571.054902][T12966] xfrm_find_acq+0x7b/0xa0 [ 571.054954][T12966] xfrm_alloc_userspi+0x590/0xbb0 [ 571.055016][T12966] ? __pfx_xfrm_alloc_userspi+0x10/0x10 [ 571.055065][T12966] ? __nla_parse+0x40/0x60 [ 571.055098][T12966] ? __pfx_xfrm_alloc_userspi+0x10/0x10 [ 571.055146][T12966] xfrm_user_rcv_msg+0x4fb/0xb60 [ 571.055195][T12966] ? __pfx_xfrm_user_rcv_msg+0x10/0x10 [ 571.055242][T12966] ? kfree_skbmem+0x1a4/0x1f0 [ 571.055290][T12966] ? consume_skb+0xcc/0x100 [ 571.055374][T12966] ? __mutex_trylock_common+0xe9/0x250 [ 571.055420][T12966] ? __pfx___mutex_trylock_common+0x10/0x10 [ 571.055473][T12966] netlink_rcv_skb+0x16a/0x440 [ 571.055515][T12966] ? __pfx_xfrm_user_rcv_msg+0x10/0x10 [ 571.055560][T12966] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 571.055626][T12966] ? netlink_deliver_tap+0x1ae/0xd30 [ 571.055668][T12966] xfrm_netlink_rcv+0x71/0x90 [ 571.055703][T12966] netlink_unicast+0x53a/0x7f0 [ 571.055744][T12966] ? __pfx_netlink_unicast+0x10/0x10 [ 571.055779][T12966] ? __lock_acquire+0xaa4/0x1ba0 [ 571.055828][T12966] netlink_sendmsg+0x8d1/0xdd0 [ 571.055880][T12966] ? __pfx_netlink_sendmsg+0x10/0x10 [ 571.055934][T12966] ____sys_sendmsg+0xa95/0xc70 [ 571.055979][T12966] ? copy_msghdr_from_user+0x10a/0x160 [ 571.056013][T12966] ? __pfx_____sys_sendmsg+0x10/0x10 [ 571.056076][T12966] ___sys_sendmsg+0x134/0x1d0 [ 571.056113][T12966] ? __pfx____sys_sendmsg+0x10/0x10 [ 571.056196][T12966] __sys_sendmsg+0x16d/0x220 [ 571.056232][T12966] ? __pfx___sys_sendmsg+0x10/0x10 [ 571.056293][T12966] do_syscall_64+0xcd/0x230 [ 571.056338][T12966] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 571.056369][T12966] RIP: 0033:0x7fb7c578e969 [ 571.056393][T12966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 571.056423][T12966] RSP: 002b:00007fb7c65af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 571.056452][T12966] RAX: ffffffffffffffda RBX: 00007fb7c59b5fa0 RCX: 00007fb7c578e969 [ 571.056473][T12966] RDX: 0000000000000050 RSI: 0000200000000240 RDI: 0000000000000003 [ 571.056492][T12966] RBP: 00007fb7c65af090 R08: 0000000000000000 R09: 0000000000000000 [ 571.056511][T12966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 571.056530][T12966] R13: 0000000000000000 R14: 00007fb7c59b5fa0 R15: 00007ffcfaca4988 [ 571.056569][T12966] [ 572.839014][T12987] Setting dangerous option i915.mitigations - tainting kernel [ 573.552456][T12996] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1771'. [ 574.002661][T13006] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1774'. [ 574.406947][T13009] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1773'. [ 575.035768][T13028] kAFS: unparsable volume name [ 575.707999][T13039] Setting dangerous option i915.mitigations - tainting kernel [ 576.332295][T13041] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 576.388389][T13041] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 576.417050][T13041] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 576.444056][T13041] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 576.450399][T13041] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 576.460454][T13041] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 576.676416][T13053] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1787'. [ 578.385270][ T5839] Bluetooth: hci0: command 0x0406 tx timeout [ 578.399575][T13087] Setting dangerous option i915.mitigations - tainting kernel [ 578.463779][ T5839] Bluetooth: hci4: command 0x0406 tx timeout [ 578.469886][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout [ 578.483722][ T5839] Bluetooth: hci3: command 0x0406 tx timeout [ 578.489697][ T5836] Bluetooth: hci2: command 0x0406 tx timeout [ 579.284192][T13099] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 579.302160][T13099] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 579.354341][T13099] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 579.396628][T13099] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 579.428723][T13099] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 580.163997][T13124] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1804'. [ 581.343719][ T5836] Bluetooth: hci2: command 0x0406 tx timeout [ 581.350119][ T5836] Bluetooth: hci0: command 0x0406 tx timeout [ 581.379173][T13146] Setting dangerous option i915.mitigations - tainting kernel [ 581.423822][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout [ 581.429971][ T5836] Bluetooth: hci3: command 0x0406 tx timeout [ 581.504541][ T5836] Bluetooth: hci4: command 0x0406 tx timeout [ 582.956475][T13174] netlink: 504 bytes leftover after parsing attributes in process `syz.2.1816'. [ 583.501840][T13187] Setting dangerous option i915.mitigations - tainting kernel [ 583.720141][T13190] kAFS: No cell specified [ 585.942775][T13235] Setting dangerous option i915.mitigations - tainting kernel [ 587.386307][ C1] vcan0: j1939_tp_rxtimer: 0xffff88805a89b400: rx timeout, send abort [ 587.396177][ C1] vcan0: j1939_tp_rxtimer: 0xffff88805a89a400: rx timeout, send abort [ 587.404688][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88805a89b400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 587.420947][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88805a89a400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 588.544825][T13276] FAULT_INJECTION: forcing a failure. [ 588.544825][T13276] name failslab, interval 1, probability 0, space 0, times 0 [ 588.583197][T13276] CPU: 0 UID: 0 PID: 13276 Comm: syz.2.1848 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 588.583249][T13276] Tainted: [U]=USER [ 588.583258][T13276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 588.583277][T13276] Call Trace: [ 588.583287][T13276] [ 588.583299][T13276] dump_stack_lvl+0x16c/0x1f0 [ 588.583348][T13276] should_fail_ex+0x512/0x640 [ 588.583398][T13276] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 588.583451][T13276] should_failslab+0xc2/0x120 [ 588.583489][T13276] __kmalloc_cache_noprof+0x6a/0x3e0 [ 588.583541][T13276] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 588.583581][T13276] ? lockdep_hardirqs_on+0x7c/0x110 [ 588.583621][T13276] ? __request_module+0x2ad/0x690 [ 588.583670][T13276] __request_module+0x2ad/0x690 [ 588.583717][T13276] ? __pfx___request_module+0x10/0x10 [ 588.583780][T13276] ? find_held_lock+0x2b/0x80 [ 588.583815][T13276] ? nfnetlink_rcv_msg+0x6b9/0x1200 [ 588.583864][T13276] nfnetlink_rcv_msg+0x6db/0x1200 [ 588.583910][T13276] ? __kernel_text_address+0xd/0x40 [ 588.583966][T13276] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 588.584021][T13276] ? stack_trace_save+0x8e/0xc0 [ 588.584052][T13276] ? __pfx_stack_trace_save+0x10/0x10 [ 588.584084][T13276] ? stack_depot_save_flags+0x28/0xa50 [ 588.584130][T13276] ? stack_trace_save+0x8e/0xc0 [ 588.584163][T13276] ? __pfx_stack_trace_save+0x10/0x10 [ 588.584200][T13276] ? kasan_save_stack+0x42/0x60 [ 588.584231][T13276] ? kasan_save_stack+0x33/0x60 [ 588.584263][T13276] ? kasan_save_track+0x14/0x30 [ 588.584295][T13276] ? __kasan_slab_alloc+0x89/0x90 [ 588.584330][T13276] ? kmem_cache_alloc_node_noprof+0x1d5/0x3b0 [ 588.584372][T13276] ? kmalloc_reserve+0x18b/0x2c0 [ 588.584416][T13276] ? __alloc_skb+0x166/0x380 [ 588.584446][T13276] ? netlink_alloc_large_skb+0x69/0x130 [ 588.584484][T13276] ? netlink_sendmsg+0x6a1/0xdd0 [ 588.584519][T13276] ? ____sys_sendmsg+0xa95/0xc70 [ 588.584560][T13276] ? ___sys_sendmsg+0x134/0x1d0 [ 588.584590][T13276] ? __sys_sendmsg+0x16d/0x220 [ 588.584620][T13276] ? do_syscall_64+0xcd/0x230 [ 588.584660][T13276] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 588.584706][T13276] netlink_rcv_skb+0x16a/0x440 [ 588.584744][T13276] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 588.584788][T13276] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 588.584825][T13276] ? __pfx_aa_get_newest_label+0x10/0x10 [ 588.584873][T13276] ? bpf_lsm_capable+0x9/0x10 [ 588.584905][T13276] ? security_capable+0x7e/0x260 [ 588.584935][T13276] ? ns_capable+0xd7/0x110 [ 588.584971][T13276] nfnetlink_rcv+0x1b3/0x430 [ 588.585012][T13276] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 588.585053][T13276] ? netlink_deliver_tap+0x1ae/0xd30 [ 588.585096][T13276] netlink_unicast+0x53a/0x7f0 [ 588.585139][T13276] ? __pfx_netlink_unicast+0x10/0x10 [ 588.585174][T13276] ? __lock_acquire+0xaa4/0x1ba0 [ 588.585223][T13276] netlink_sendmsg+0x8d1/0xdd0 [ 588.585267][T13276] ? __pfx_netlink_sendmsg+0x10/0x10 [ 588.585320][T13276] ____sys_sendmsg+0xa95/0xc70 [ 588.585375][T13276] ? copy_msghdr_from_user+0x10a/0x160 [ 588.585409][T13276] ? __pfx_____sys_sendmsg+0x10/0x10 [ 588.585469][T13276] ___sys_sendmsg+0x134/0x1d0 [ 588.585506][T13276] ? __pfx____sys_sendmsg+0x10/0x10 [ 588.585586][T13276] __sys_sendmsg+0x16d/0x220 [ 588.585621][T13276] ? __pfx___sys_sendmsg+0x10/0x10 [ 588.585667][T13276] ? rcu_is_watching+0x12/0xc0 [ 588.585707][T13276] do_syscall_64+0xcd/0x230 [ 588.585753][T13276] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 588.585783][T13276] RIP: 0033:0x7fa382f8e969 [ 588.585808][T13276] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 588.585837][T13276] RSP: 002b:00007fa383d64038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 588.585866][T13276] RAX: ffffffffffffffda RBX: 00007fa3831b5fa0 RCX: 00007fa382f8e969 [ 588.585887][T13276] RDX: 0000000000000080 RSI: 0000200000000180 RDI: 0000000000000004 [ 588.585906][T13276] RBP: 00007fa383d64090 R08: 0000000000000000 R09: 0000000000000000 [ 588.585925][T13276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 588.585943][T13276] R13: 0000000000000000 R14: 00007fa3831b5fa0 R15: 00007ffd08a834b8 [ 588.585981][T13276] [ 588.993737][ C0] vkms_vblank_simulate: vblank timer overrun [ 589.505656][T13285] Setting dangerous option i915.mitigations - tainting kernel [ 589.670337][T13289] Setting dangerous option i915.mitigations - tainting kernel [ 592.021234][T13332] Setting dangerous option i915.mitigations - tainting kernel [ 592.874426][T13344] Setting dangerous option i915.mitigations - tainting kernel [ 596.140771][T13373] Setting dangerous option i915.mitigations - tainting kernel [ 597.096208][T13395] Setting dangerous option i915.mitigations - tainting kernel [ 598.462646][T13415] FAULT_INJECTION: forcing a failure. [ 598.462646][T13415] name failslab, interval 1, probability 0, space 0, times 0 [ 598.513668][T13415] CPU: 0 UID: 0 PID: 13415 Comm: syz.2.1883 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 598.513716][T13415] Tainted: [U]=USER [ 598.513725][T13415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 598.513741][T13415] Call Trace: [ 598.513751][T13415] [ 598.513767][T13415] dump_stack_lvl+0x16c/0x1f0 [ 598.513811][T13415] should_fail_ex+0x512/0x640 [ 598.513848][T13415] ? fs_reclaim_acquire+0xae/0x150 [ 598.513891][T13415] ? tomoyo_encode2+0x100/0x3e0 [ 598.513926][T13415] should_failslab+0xc2/0x120 [ 598.513960][T13415] __kmalloc_noprof+0xd2/0x510 [ 598.513997][T13415] tomoyo_encode2+0x100/0x3e0 [ 598.514039][T13415] tomoyo_encode+0x29/0x50 [ 598.514074][T13415] tomoyo_realpath_from_path+0x18f/0x6e0 [ 598.514122][T13415] tomoyo_check_open_permission+0x2ab/0x3c0 [ 598.514157][T13415] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 598.514231][T13415] ? find_held_lock+0x2b/0x80 [ 598.514267][T13415] tomoyo_file_open+0x6b/0x90 [ 598.514311][T13415] security_file_open+0x84/0x1e0 [ 598.514350][T13415] do_dentry_open+0x596/0x1c10 [ 598.514389][T13415] vfs_open+0x82/0x3f0 [ 598.514428][T13415] path_openat+0x1e5e/0x2d40 [ 598.514472][T13415] ? __pfx_path_openat+0x10/0x10 [ 598.514508][T13415] do_filp_open+0x20b/0x470 [ 598.514535][T13415] ? __pfx_do_filp_open+0x10/0x10 [ 598.514593][T13415] ? alloc_fd+0x471/0x7d0 [ 598.514648][T13415] do_sys_openat2+0x11b/0x1d0 [ 598.514687][T13415] ? __pfx_do_sys_openat2+0x10/0x10 [ 598.514727][T13415] ? __fget_files+0x20e/0x3c0 [ 598.514774][T13415] __x64_sys_openat+0x174/0x210 [ 598.514810][T13415] ? __pfx___x64_sys_openat+0x10/0x10 [ 598.514845][T13415] ? ksys_write+0x1b9/0x240 [ 598.514882][T13415] do_syscall_64+0xcd/0x230 [ 598.514924][T13415] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 598.514952][T13415] RIP: 0033:0x7fa382f8e969 [ 598.514974][T13415] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 598.515006][T13415] RSP: 002b:00007fa383d64038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 598.515030][T13415] RAX: ffffffffffffffda RBX: 00007fa3831b5fa0 RCX: 00007fa382f8e969 [ 598.515047][T13415] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 598.515064][T13415] RBP: 00007fa383d64090 R08: 0000000000000000 R09: 0000000000000000 [ 598.515081][T13415] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 598.515096][T13415] R13: 0000000000000001 R14: 00007fa3831b5fa0 R15: 00007ffd08a834b8 [ 598.515132][T13415] [ 598.517704][T13415] ERROR: Out of memory at tomoyo_realpath_from_path. [ 599.118522][T13424] Setting dangerous option i915.mitigations - tainting kernel [ 600.694115][T13443] nbd: illegal input index 2147483647 [ 600.829287][T13443] Console: switching to colour VGA+ 80x25 [ 600.938696][T13443] ================================================================== [ 600.938721][T13443] BUG: KASAN: slab-out-of-bounds in fbcon_prepare_logo+0xa03/0xc70 [ 600.938774][T13443] Read of size 10 at addr ffff8880624b18da by task syz.4.1884/13443 [ 600.938804][T13443] [ 600.938823][T13443] CPU: 1 UID: 0 PID: 13443 Comm: syz.4.1884 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 600.938874][T13443] Tainted: [U]=USER [ 600.938886][T13443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 600.938907][T13443] Call Trace: [ 600.938918][T13443] [ 600.938932][T13443] dump_stack_lvl+0x116/0x1f0 [ 600.938979][T13443] print_report+0xc3/0x670 [ 600.939018][T13443] ? __virt_addr_valid+0x5e/0x590 [ 600.939060][T13443] ? __phys_addr+0xc6/0x150 [ 600.939102][T13443] ? fbcon_prepare_logo+0xa03/0xc70 [ 600.939140][T13443] kasan_report+0xe0/0x110 [ 600.939179][T13443] ? fbcon_prepare_logo+0xa03/0xc70 [ 600.939222][T13443] kasan_check_range+0xef/0x1a0 [ 600.939269][T13443] __asan_memcpy+0x23/0x60 [ 600.939299][T13443] fbcon_prepare_logo+0xa03/0xc70 [ 600.939355][T13443] fbcon_init+0xd77/0x1900 [ 600.939395][T13443] ? __pfx_drm_fb_helper_set_par+0x10/0x10 [ 600.939434][T13443] visual_init+0x31d/0x620 [ 600.939485][T13443] do_bind_con_driver.isra.0+0x57a/0xbf0 [ 600.939530][T13443] store_bind+0x61d/0x760 [ 600.939568][T13443] ? sysfs_file_kobj+0xe4/0x290 [ 600.939613][T13443] ? __pfx_store_bind+0x10/0x10 [ 600.939647][T13443] dev_attr_store+0x55/0x80 [ 600.939687][T13443] ? __pfx_dev_attr_store+0x10/0x10 [ 600.939726][T13443] sysfs_kf_write+0xef/0x150 [ 600.939774][T13443] kernfs_fop_write_iter+0x351/0x510 [ 600.939815][T13443] ? __pfx_sysfs_kf_write+0x10/0x10 [ 600.939864][T13443] vfs_write+0x5ba/0x1180 [ 600.939895][T13443] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 600.939939][T13443] ? __pfx___mutex_lock+0x10/0x10 [ 600.939986][T13443] ? __pfx_vfs_write+0x10/0x10 [ 600.940029][T13443] ksys_write+0x12a/0x240 [ 600.940060][T13443] ? __pfx_ksys_write+0x10/0x10 [ 600.940090][T13443] ? rcu_is_watching+0x12/0xc0 [ 600.940127][T13443] do_syscall_64+0xcd/0x230 [ 600.940176][T13443] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 600.940212][T13443] RIP: 0033:0x7fc84258e969 [ 600.940236][T13443] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 600.940269][T13443] RSP: 002b:00007fc84349c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 600.940300][T13443] RAX: ffffffffffffffda RBX: 00007fc8427b5fa0 RCX: 00007fc84258e969 [ 600.940322][T13443] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 600.940352][T13443] RBP: 00007fc842610ab1 R08: 0000000000000000 R09: 0000000000000000 [ 600.940373][T13443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 600.940394][T13443] R13: 0000000000000000 R14: 00007fc8427b5fa0 R15: 00007ffd6e2d0758 [ 600.940427][T13443] [ 600.940439][T13443] [ 600.940448][T13443] Allocated by task 13443: [ 600.940464][T13443] kasan_save_stack+0x33/0x60 [ 600.940496][T13443] kasan_save_track+0x14/0x30 [ 600.940528][T13443] __kasan_kmalloc+0xaa/0xb0 [ 600.940557][T13443] __kmalloc_noprof+0x223/0x510 [ 600.940589][T13443] vc_do_resize+0x1de/0x10e0 [ 600.940621][T13443] fbcon_init+0xd53/0x1900 [ 600.940655][T13443] visual_init+0x31d/0x620 [ 600.940700][T13443] do_bind_con_driver.isra.0+0x57a/0xbf0 [ 600.940733][T13443] store_bind+0x61d/0x760 [ 600.940763][T13443] dev_attr_store+0x55/0x80 [ 600.940798][T13443] sysfs_kf_write+0xef/0x150 [ 600.940839][T13443] kernfs_fop_write_iter+0x351/0x510 [ 600.940883][T13443] vfs_write+0x5ba/0x1180 [ 600.940910][T13443] ksys_write+0x12a/0x240 [ 600.940937][T13443] do_syscall_64+0xcd/0x230 [ 600.940979][T13443] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 600.941011][T13443] [ 600.941019][T13443] The buggy address belongs to the object at ffff8880624b1880 [ 600.941019][T13443] which belongs to the cache kmalloc-64 of size 64 [ 600.941045][T13443] The buggy address is located 50 bytes to the right of [ 600.941045][T13443] allocated 40-byte region [ffff8880624b1880, ffff8880624b18a8) [ 600.941078][T13443] [ 600.941086][T13443] The buggy address belongs to the physical page: [ 600.941109][T13443] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x624b1 [ 600.941138][T13443] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 600.941165][T13443] page_type: f5(slab) [ 600.941192][T13443] raw: 00fff00000000000 ffff88801b4418c0 ffffea0000d41b00 dead000000000003 [ 600.941221][T13443] raw: 0000000000000000 0000000080200020 00000000f5000000 0000000000000000 [ 600.941240][T13443] page dumped because: kasan: bad access detected [ 600.941260][T13443] page_owner tracks the page as allocated [ 600.941272][T13443] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 8050, tgid 8049 (syz.4.503), ts 225273280155, free_ts 225245063721 [ 600.941324][T13443] post_alloc_hook+0x181/0x1b0 [ 600.941360][T13443] get_page_from_freelist+0x135c/0x3920 [ 600.941393][T13443] __alloc_frozen_pages_noprof+0x263/0x23a0 [ 600.941430][T13443] alloc_pages_mpol+0x1fb/0x550 [ 600.941465][T13443] new_slab+0x244/0x340 [ 600.941510][T13443] ___slab_alloc+0xd9c/0x1940 [ 600.941556][T13443] __slab_alloc.constprop.0+0x56/0xb0 [ 600.941605][T13443] __kmalloc_cache_noprof+0xfb/0x3e0 [ 600.941652][T13443] ip6addrlbl_alloc+0x9a/0x2c0 [ 600.941692][T13443] ip6addrlbl_net_init+0x13d/0x400 [ 600.941731][T13443] ops_init+0x1df/0x5f0 [ 600.941764][T13443] setup_net+0x21e/0x850 [ 600.941798][T13443] copy_net_ns+0x2a6/0x5f0 [ 600.941836][T13443] create_new_namespaces+0x3ea/0xad0 [ 600.941868][T13443] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 600.941902][T13443] ksys_unshare+0x45b/0xa40 [ 600.941941][T13443] page last free pid 8049 tgid 8049 stack trace: [ 600.941958][T13443] __free_frozen_pages+0x69d/0xff0 [ 600.942005][T13443] tlb_remove_table_rcu+0x116/0x1a0 [ 600.942034][T13443] rcu_core+0x799/0x14e0 [ 600.942077][T13443] handle_softirqs+0x216/0x8e0 [ 600.942109][T13443] __irq_exit_rcu+0x109/0x170 [ 600.942141][T13443] irq_exit_rcu+0x9/0x30 [ 600.942173][T13443] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 600.942213][T13443] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 600.942246][T13443] [ 600.942254][T13443] Memory state around the buggy address: [ 600.942271][T13443] ffff8880624b1780: 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc fc [ 600.942295][T13443] ffff8880624b1800: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 600.942319][T13443] >ffff8880624b1880: 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc fc [ 600.942337][T13443] ^ [ 600.942367][T13443] ffff8880624b1900: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 600.942390][T13443] ffff8880624b1980: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 600.942409][T13443] ================================================================== [ 600.942428][T13443] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 600.942453][T13443] CPU: 1 UID: 0 PID: 13443 Comm: syz.4.1884 Tainted: G U 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 600.942501][T13443] Tainted: [U]=USER [ 600.942513][T13443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 600.942532][T13443] Call Trace: [ 600.942544][T13443] [ 600.942557][T13443] dump_stack_lvl+0x3d/0x1f0 [ 600.942601][T13443] panic+0x71c/0x800 [ 600.942645][T13443] ? __pfx_panic+0x10/0x10 [ 600.942693][T13443] ? __pfx__printk+0x10/0x10 [ 600.942740][T13443] ? fbcon_prepare_logo+0xa03/0xc70 [ 600.942778][T13443] check_panic_on_warn+0xab/0xb0 [ 600.942825][T13443] end_report+0x107/0x170 [ 600.942861][T13443] kasan_report+0xee/0x110 [ 600.942899][T13443] ? fbcon_prepare_logo+0xa03/0xc70 [ 600.942942][T13443] kasan_check_range+0xef/0x1a0 [ 600.942987][T13443] __asan_memcpy+0x23/0x60 [ 600.943015][T13443] fbcon_prepare_logo+0xa03/0xc70 [ 600.943062][T13443] fbcon_init+0xd77/0x1900 [ 600.943099][T13443] ? __pfx_drm_fb_helper_set_par+0x10/0x10 [ 600.943137][T13443] visual_init+0x31d/0x620 [ 600.943187][T13443] do_bind_con_driver.isra.0+0x57a/0xbf0 [ 600.943228][T13443] store_bind+0x61d/0x760 [ 600.943263][T13443] ? sysfs_file_kobj+0xe4/0x290 [ 600.943307][T13443] ? __pfx_store_bind+0x10/0x10 [ 600.943339][T13443] dev_attr_store+0x55/0x80 [ 600.943387][T13443] ? __pfx_dev_attr_store+0x10/0x10 [ 600.943425][T13443] sysfs_kf_write+0xef/0x150 [ 600.943471][T13443] kernfs_fop_write_iter+0x351/0x510 [ 600.943516][T13443] ? __pfx_sysfs_kf_write+0x10/0x10 [ 600.943563][T13443] vfs_write+0x5ba/0x1180 [ 600.943593][T13443] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 600.943635][T13443] ? __pfx___mutex_lock+0x10/0x10 [ 600.943679][T13443] ? __pfx_vfs_write+0x10/0x10 [ 600.943726][T13443] ksys_write+0x12a/0x240 [ 600.943759][T13443] ? __pfx_ksys_write+0x10/0x10 [ 600.943791][T13443] ? rcu_is_watching+0x12/0xc0 [ 600.943828][T13443] do_syscall_64+0xcd/0x230 [ 600.943877][T13443] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 600.943912][T13443] RIP: 0033:0x7fc84258e969 [ 600.943938][T13443] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 600.943974][T13443] RSP: 002b:00007fc84349c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 600.944007][T13443] RAX: ffffffffffffffda RBX: 00007fc8427b5fa0 RCX: 00007fc84258e969 [ 600.944030][T13443] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 600.944052][T13443] RBP: 00007fc842610ab1 R08: 0000000000000000 R09: 0000000000000000 [ 600.944074][T13443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 600.944096][T13443] R13: 0000000000000000 R14: 00007fc8427b5fa0 R15: 00007ffd6e2d0758 [ 600.944130][T13443] [ 600.944480][T13443] Kernel Offset: disabled