last executing test programs: 20.583842149s ago: executing program 0 (id=457): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/graphics/fbcon/cursor_blink\x00', 0x248901, 0x0) unshare$auto(0x40000080) mmap$auto(0x3, 0x3, 0x4000000000df, 0x17, r0, 0x300000000000) r1 = socket(0x9, 0x2, 0x100) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/net/bond0/bonding/primary_reselect\x00', 0x1e2142, 0x0) sendfile$auto(r2, r2, 0x0, 0x7fff) unshare$auto(0xa4) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x20b42, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r3, 0xc0045002, 0x0) unshare$auto(0x40000084) r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) write$auto(r4, &(0x7f0000000200)='/de\xef\xe7audio1\x00', 0xa3d9) r5 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYRES32, @ANYRES16=r5, @ANYBLOB="4cb245184f86db27df250a000a"], 0xf8}}, 0x10004010) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000240)={&(0x7f00000003c0)=ANY=[@ANYRES64=r1, @ANYRES8=r0, @ANYRES32], 0x5c}, 0x1, 0x0, 0x0, 0x22008885}, 0x40) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r3, 0xc004500a, &(0x7f00000003c0)) r6 = syz_clone(0x800100, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x3, 0x5, 0x4000000000df, 0x40eb1, 0x401, 0x300000000002) listmount$auto(&(0x7f0000000300)={0xfffffffb, @raw=0xfffffffe, 0x400, 0x7fffffffffffffff, 0x400000}, &(0x7f0000000340)=0x9, 0x166, 0x3) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000380)='/proc/tty/drivers\x00', 0x2000, 0x0) read$auto(r1, &(0x7f0000000080)='/proc/scsi/sg/devices\x00', 0xc9e3) r7 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000780)='/proc/self/net/rpc/auth.rpcsec.init/channel\x00', 0x441, 0x0) write$auto(r7, &(0x7f0000000000)='\\@-,@n', 0x60) getpgid(0x0) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/fuse\x00', 0xc0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) rt_tgsigqueueinfo$auto(0xffffffffffffffff, r6, 0x8, &(0x7f0000000440)={@_si_pad}) open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40) 18.786444423s ago: executing program 0 (id=462): mmap$auto(0x0, 0x99, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) sendto$auto(r1, &(0x7f0000000340)="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", 0x9, 0x3, &(0x7f00000000c0)=@l2={0x1f, 0x7, @any, 0x8, 0x1}, 0x1) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_USBDEVFS_CONTROL32(r0, 0xc0105500, &(0x7f0000000080)={0x7a, 0x7d, 0x7, 0x4, 0x100, 0x7, 0xa}) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x800, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = socket(0x2, 0x2, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(r3, &(0x7f0000000180)=@in={0x2, 0x0, @private=0xa010100}, 0x15) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f0000000200)={{@inferred, 0x1, 0x1, 0x8, "3112d585005a614d19e22af9ffb683dbede3d0bf828bbfba40f035f4be6b7fe5e2f94bd90484b0755015e48d"}, 0x2, 0x5, 0x4, @inferred, @integer={0x7, 0x5, 0x5}, "7a9fc199a16a2311eacf2fc7ae1da978dc3e8090334fdd73340238d212b6debe0eda71bdd70925450e24e87212f0bcab84a16f7ce8cbce0bb32777702b8d7c2d"}) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/mac80211_hwsim/hwsim1/ieee80211/phy1/rfkill3/hard_block_reasons\x00', 0x0, 0x0) read$auto(r4, 0x0, 0x20) rt_sigqueueinfo$auto(0x0, 0x4, &(0x7f0000000000)={@siginfo_0_0={0xf9, 0x14, 0x7e73, @_timer={0x0, 0x80000001, @sival_ptr=0x0, 0x5}}}) socket(0x11, 0x3, 0x9) 17.407122166s ago: executing program 0 (id=465): socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01002cbd7000fbdbdf250a00000808000300000000000800010000000000080002"], 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0xc400, 0x9}, 0x7}, 0x3, 0x0) 16.872751636s ago: executing program 0 (id=469): set_mempolicy$auto(0x1, 0x0, 0x8) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1f, 0x2, 0x15) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1300f5"], 0x1ac}, 0x1, 0x0, 0x0, 0x10}, 0x4004) sendmsg$auto_NL80211_CMD_ADD_TX_TS(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYBLOB='&\a9o', @ANYRES16=0x0, @ANYBLOB="000126bd7000fedbdf25690000001400818005000200030000000500010081000000"], 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x20008080) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x2}, 0x7}, 0x3, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1540, 0x0) mmap$auto(0x400000000, 0x400008, 0xdf, 0x9b72, 0x2, 0x7) socket(0xf4e103c757b125cb, 0x2, 0x8) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x29, 0x2, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x2000000}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0) recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0xfffffffe, 0x0, 0x5, 0x0, 0x200002, 0x8}, 0x801}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r0, 0x894a, 0x24) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x2000, 0x0) r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) madvise$auto(0x5, 0x5c7, 0x81) read$auto(r2, 0x0, 0x1f40) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/dummy_hcd.2/usb3/version\x00', 0x400, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f00000000c0)=""/255, 0xff) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0xb}, 0x3) close_range$auto(0x2, 0x8, 0x0) socket(0x23, 0x80803, 0x1) 15.735741036s ago: executing program 0 (id=474): openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000) r0 = open(&(0x7f0000000000)='./file0\x00', 0x149443, 0x14) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) write$auto(0x3, 0x0, 0x100082) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) migrate_pages$auto(0x0, 0x8, 0x0, &(0x7f00000001c0)=0x7b) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/adsp1\x00', 0x80502, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r1, 0xc0045006, &(0x7f00000001c0)) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x82, 0x0) syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000000), 0xffffffffffffffff) 8.746262104s ago: executing program 3 (id=496): openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0) r0 = open(&(0x7f0000000000)='./file0\x00', 0x149443, 0x14) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) write$auto(0x3, 0x0, 0x100082) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) migrate_pages$auto(0x0, 0x8, 0x0, &(0x7f00000001c0)=0x7b) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/adsp1\x00', 0x80502, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r1, 0xc0045006, &(0x7f00000001c0)) readv$auto(0x3, 0x0, 0x1) move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x82, 0x0) syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000000), 0xffffffffffffffff) 7.935019114s ago: executing program 3 (id=499): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nbd10\x00', 0xd0b02, 0x0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) fcntl$auto_F_SETOWN_EX(0xffffffffffffffff, 0xf, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe0180, 0x0) madvise$auto(0x0, 0x200007, 0x19) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/loop12/partscan\x00', 0x8000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/usbcore/parameters/quirks\x00', 0xc0202, 0x0) write$auto(r1, 0x0, 0x1c61fe90) mkdir$auto(&(0x7f0000004440)='./file0\x00', 0x1) mkdir$auto(&(0x7f00000000c0)='./file1\x00', 0x9) mkdir$auto(&(0x7f0000000380)='./file0/file0\x00', 0x552) rename$auto(&(0x7f0000000480)='./file1\x00', &(0x7f0000000040)='./file0/file0\x00') mkdir$auto(&(0x7f0000000080)='}[,&*}\x00', 0x9001) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f00000002c0)='nfsd\x00\xd7{\xba|\b\x1b\xd3\xd0\xec6\xee\x04b\xb7\xa1\a\xb8{\'\x8a\xc4//\x8d\xae\x02\x9c', 0x2, 0x0) msgctl$auto(0x26, 0x400, 0x0) rseq$auto(0x0, 0xfffffff4, 0x0, 0x7) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC1\x00', 0x103280, 0x0) write$auto_console_fops_tty_io(0xffffffffffffffff, &(0x7f0000000040)="0152f1ccbaf0a250747d8adb", 0xc) socket$nl_generic(0x10, 0x3, 0x10) setsockopt$auto(0x1, 0x1, 0x46, 0x0, 0xbb) ioctl$auto_NVRAM_INIT(0xffffffffffffffff, 0x7040, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r3 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r2, 0x5608, r3) r4 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) sendfile$auto(r4, r0, 0x0, 0x8) 7.396590754s ago: executing program 0 (id=500): r0 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0) socketpair$auto(0xfff, 0x5, 0x10, 0x0) madvise$auto(0x1ffff000, 0x7, 0x100000000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000) fsopen$auto(0x0, 0x1) r1 = bpf$auto(0x0, 0x0, 0x6f3) ioctl$auto_USB_RAW_IOCTL_EP_SET_HALT(r1, 0x4004550d, &(0x7f0000000080)=0x7fffffff) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000000), r1) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r3, &(0x7f0000000580)={0x0, 0x9eff, &(0x7f0000000540)={&(0x7f0000000400)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="01002dbd70000d00df257eb8af00"], 0x14}, 0x1, 0x68, 0x0, 0x4000014}, 0x0) sendmsg$auto_NL80211_CMD_REGISTER_FRAME(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000140)={&(0x7f0000000040)={0x88, r2, 0x2, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'wlan0\x00'}, @NL80211_ATTR_VHT_CAPABILITY={0x5f, 0x9d, "d9840e405ddc271d0af2795104043387c73d8c86019c8f126de88c1da4c0ba1b5569d50b8aaad28f8f00a2d3b49f6bed934a4b5d6d60dfd8b23feebb5cb3a4cf3a096d345f86891cb2a5d9f738df8475f472cff2720f24703863cb"}]}, 0x88}, 0x1, 0x0, 0x0, 0x4}, 0x8080) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r4 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) ioctl$auto(r5, 0x401870c8, r4) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) pselect6$auto(0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) shmget$auto(0xa, 0x10563, 0x568d1af2) read$auto_proc_pid_maps_operations_internal(r0, &(0x7f00000010c0)=""/4096, 0x1000) 7.392189852s ago: executing program 3 (id=501): openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0) r0 = open(&(0x7f0000000000)='./file0\x00', 0x149443, 0x14) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) write$auto(0x3, 0x0, 0x100082) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) migrate_pages$auto(0x0, 0x8, 0x0, &(0x7f00000001c0)=0x7b) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/adsp1\x00', 0x80502, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r1, 0xc0045006, &(0x7f00000001c0)) readv$auto(0x3, 0x0, 0x1) move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x82, 0x0) syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000000), 0xffffffffffffffff) 7.20171344s ago: executing program 1 (id=503): openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x109482, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0x0, 0x1, 0x2000000000001, 0x6, 0x0, 0x1, 0x8, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x8000, 0x0, 0x80000003, 0x81, 0xffffffffffff628e, 0xa743, 0xdeb1, 0x804}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x6a1, 0x2000000000002) socket(0x26, 0x80805, 0x0) socket(0x28, 0x1, 0x0) socket(0x1, 0x1, 0x1) open(&(0x7f0000000000)='./bus\x00', 0x22042, 0x45) fanotify_mark$auto(0x0, 0x1, 0x9, 0x4, 0x0) close_range$auto(0x2, 0x8, 0x4) mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) r1 = socket(0x10, 0x2, 0x6) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x5, 0x3, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0x2, 0x2, 0x0) socket(0x2, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) socket(0x2, 0x1, 0x109) 5.806054097s ago: executing program 3 (id=506): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/veth0_to_bridge/force_mld_version\x00', 0x8000, 0x0) mmap$auto(0x2000000, 0x2020005, 0x3, 0xeb1, r0, 0x7ffe) r1 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000) recvmmsg$auto(r2, &(0x7f0000000140)={{0x0, 0x1, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0) write$auto_proc_clear_refs_operations_internal(r1, 0x0, 0xffffff4b) r3 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x80800, 0x0) read$auto(r3, 0x0, 0x39b8) socketpair$auto(0x3, 0x4, 0x8000000000000000, 0x0) r4 = open(0x0, 0x22240, 0x55) r5 = openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x101c01, 0x0) ioctl$auto(r5, 0x80286f4e, r4) 5.459726538s ago: executing program 1 (id=507): r0 = socket(0x10, 0x3, 0x6) socket(0xa, 0x1, 0x84) mmap$auto(0x4, 0x401, 0xdf, 0x9b72, r0, 0x10000000006) mincore$auto(0x1000, 0x8001, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/dummy0/ifalias\x00', 0xa001, 0x0) r2 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000440)='/sys/kernel/tracing/dynamic_events\x00', 0x42, 0x0) write$auto_dynamic_events_ops_trace_dynevent(r2, &(0x7f0000000480)="0a451f44a544", 0x6) write$auto(r1, &(0x7f0000000500)='%[.[\x00T\n&\xc1\x1e\xae\xb8\xd7\x95\x17\xa3\x7f\xa3\xa7\xf2M\xd1(h\xa51T\x9fQG0\xe8\xd1\xd7m\xafF\x04\"h\xe6\x10\f)\x7f\x83\xdc\xb4\xa4:R\f\xe7\xe6\xb1I\x03\x9a\xca\x8f\x8c\xbb\xe1*\x9d\x11\x9a\x04F9\"\xe3\xc2\x0f\xc5\xcf\x0f\xb1,w\xfe\x06h\xaf&\t\xd0E\x8b}\xa2\xb9zl\x8c\x8b\xce\x12*=`\x11\xef2\xf3 \xec\xbe:h\x9e\xc8\xf1\x15\xfa\x90\x9d\xeec\xbf\xf9\xf2\xcc\xf5\xa3F\xc2-\xda\xbc\xd9h\x06\x9fx', 0xd4) r3 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(r0, &(0x7f0000000040)={0x0, 0xf0ff, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002dbd7000ffdbdf25050000000c00010007000000000000000c00010004000000000000000c00010040000000000000000c00010004000000000000000c00010000000002000000005c94e1797ca8442265f85c16d8a71b3b511589d295d3ed74e9f5b571283703e0f87901f5c4fec45951a4747efed16599bbe9ef934d843e712c2464438b1b8b5d2f93acc24b781109d04cccd68f71b14de3d1d6134f77a716a903f013d7a28f44a385a820665393aa904dd43567ba1d3596d842976188893f7585880b7850e05cfa9fc9bd95213943ff1fbb67f90959"], 0x50}, 0x1, 0x0, 0x0, 0x4048081}, 0x0) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000) capset$auto(&(0x7f0000000100)={0x20080522}, 0x0) io_uring_setup$auto(0x1, 0x0) openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/lu_gp_id\x00', 0x189002, 0x0) mmap$auto(0x0, 0x4, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0xffffffffffffffff, 0xfffffffffffff000, 0x2) io_uring_enter$auto(0xffffffffffffffff, 0x1, 0x401, 0x0, 0x0, 0x18) mmap$auto(0x0, 0x9, 0xe0, 0x1000000ebe, 0x401, 0x8000) mknod$auto(0x0, 0x1081, 0x3) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto(0x3, 0x0, 0xfffffdef) ioctl$auto(0x3, 0x5412, 0x38) mmap$auto(0x0, 0x202000a, 0x3, 0x40000eb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/rose11/tx_queue_len\x00', 0x0, 0x0) read$auto(r4, 0x0, 0x20) 5.13387491s ago: executing program 1 (id=508): madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) ioctl$auto(0xffffffffffffffff, 0x64c8, 0x1e2) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) unshare$auto(0x40000080) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d) ioctl$auto_SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, 0x0) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/usb/usbmon/36u\x00', 0x26040, 0x0) msgctl$auto_MSG_STAT_ANY(0x2, 0xd, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) ioperm$auto(0x7, 0x6, 0x10) close_range$auto(0x2, 0x8, 0x0) gettid() socket(0xa, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) unshare$auto(0x40000080) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) get_mempolicy$auto(0x0, 0x0, 0x3, 0x1ff, 0x3) r1 = openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/per_cpu/cpu1/trace\x00', 0x1a6b75d63882a712, 0x0) mmap$auto(0x80000000000000, 0x40009, 0xe3, 0x9b72, r1, 0x407) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_TIOCVHANGUP2(0xffffffffffffffff, 0x5437, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0) 4.806056758s ago: executing program 3 (id=509): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x2000000000000021, 0x2, 0x10000000000002) socket(0x15, 0x5, 0x0) socket(0x2c, 0x80f, 0x0) openat$auto_iommufd_fops_main(0xffffffffffffff9c, 0x0, 0x48501, 0x0) io_uring_setup$auto(0x1, 0x0) pipe$auto(0x0) mq_notify$auto(0xffffffffffffffff, &(0x7f0000000200)={@sival_ptr=0x0, @raw=0x8, 0x2, @_tid}) 4.657498573s ago: executing program 3 (id=511): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) writev$auto(r0, &(0x7f0000000140)={&(0x7f0000000440)="2eeac92d9d56290f1473de4316f6c305e697f21f801c20ee7be35bd4f36c85c2a55fc8b2d603fbc2eb55089f497828e5df3f7bf49e5e86f1b08c86cd73055babba4d5b9738b65736677337b8eb96d7da26695fbe87e4cb7e38f12e3ca379c89c1dba59f33ae51a12b8ca7ad964b8a261741e193e453c6b8fb9184c969fb388ccec224c3c85879e4838746da40c4a80b478cf8b8cda00778571850555", 0x81}, 0xac) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) sendmsg$auto_NL802154_CMD_GET_SEC_DEV(0xffffffffffffffff, 0x0, 0x0) read$auto(r1, 0x0, 0x1f40) stat$auto(0x0, &(0x7f0000000380)={0x3, 0x3, 0x6, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4, 0xa, 0xff, 0x100, 0x401, 0x5f57, 0x80000000, 0xaa}) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3) getsockopt$auto_SO_PASSCRED(r4, 0x1, 0x10, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/tty/ptypb/power/control\x00', 0x124001, 0x0) mmap$auto(0x0, 0x400005, 0x800000000000df, 0x9b72, 0x2, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r3, 0x0, 0x20048801) sendmsg$auto_NETDEV_CMD_NAPI_GET(r3, &(0x7f0000000640)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x24, 0x0, 0x8, 0x70bd2d, 0x25dfdbfe, {}, [@NETDEV_A_NAPI_ID={0x8, 0x2, 0x6c300c66}, @NETDEV_A_NAPI_ID={0x8, 0x2, 0xe098}]}, 0x24}, 0x1, 0x0, 0x0, 0x4885}, 0xf04251e3e0dbbdac) ioperm$auto(0xffff, 0xe, 0x1) openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) fcntl$auto_F_SETLK(0xffffffffffffffff, 0x6, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bond0\x00'}) statmount$auto(0x0, &(0x7f0000000180)={0x8000008, 0x1, 0x9, 0x3, 0x400026, 0x940, 0x1ffde, 0x3, 0x6, 0x7ff, 0xfffffffa, 0x400005, 0xfff, 0x0, 0xb0, 0x8, 0x9, 0x3, 0x5, 0x6, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x2}, 0xfffff7fffffffffa, 0x81) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r5, 0x0, 0x20) r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r6, &(0x7f0000000200)={0x0, 0x7}, 0x3) io_setup$auto(0xffff, &(0x7f0000000580)) write$auto(0x3, 0x0, 0xfffffdef) 3.770277831s ago: executing program 2 (id=513): mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) r0 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a4, 0xffff) mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000) madvise$auto(0x405, 0xffffffffffff0001, 0x3) syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r0) sendmsg$auto_NL80211_CMD_RADAR_DETECT(0xffffffffffffffff, 0x0, 0x4008000) sendmsg$auto_NL80211_CMD_STOP_NAN(0xffffffffffffffff, 0x0, 0x815) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) setresuid$auto(0x2, 0x7, 0x0) r1 = geteuid() setreuid$auto(r1, 0x0) adjtimex$auto(&(0x7f00000005c0)={0xf332b6e, 0x0, 0x2000000000000000, 0x8, 0xd4, 0x7, 0x5, 0x0, 0x10001, 0x1, 0x2, {0x8, 0x10001}, 0x1, 0x6, 0xfffffffffffffffd, 0x1007ffe, 0x0, 0x80000004, 0xa, 0xffffefffffff628e, 0xa747, 0x1, 0x1800}) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, 0x0, 0x20100, 0x0) socket(0x2, 0x80002, 0x73) bind$auto(r2, 0x0, 0x6a) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) io_uring_setup$auto(0x6, 0x0) write$auto(r3, &(0x7f0000000340)='\xa3o\a`\f\f4\xc6\xe7\x8a\x16h\x80\xb5\xed\xe4\xec\xfe\xe50\xb9\xbb1/#\xdc\xdd\xed\xa2\x85\xa1\xd5\xf5\xfeG\xdcI\xe3c\xb8BS\x04Y\xc9N\x98\xc6I_E \xc8^T\x84Mh\xf4Y\xcc\xe4\x9al\x88\x8fX\xcb\xad\x1d*\xec\x1dG@H/N\xaa\x1b\xce\x8b\xff\xcfe\xac\xda\xb0\xbe;-y\x12\x13\x93\x1d\xb5>\x1c\x02Tv\x92\xc0\x1c\xaa\x8a8\x0e_Fv\x00\xdc\nfd\x16\xa6d\xa3z\xdf\xc7o+1\xf4Q\xf7i\xd6.\t\x10\x99\xc4\x06\xa3\xbf*\xbb\xe0H\xc9u+\x17\x93!\x1c\xc3\xcd\xc1y\xaf\xf1\xd1B\xaa[\x9d\xb6\xad\xe2\xff\x9b[{\xd1z\x18\xba\x7f\xb5\x10\xdd1\xf2\x9c\xb0=\xf09\r\xc3\x1b9\xbe\xa8\xe76[/<,\xe1\x90\xb3G}\x85E\xc6\x8ak4\xc3+\xf0\x9f\xe0F\x1b\xdb\x84\x17\xc0\x99\xf1\xb5,\x1f\x8a\xe7\x0f\xd7\xc2{>\xb9q\xc3\xa7\xaaF|\\4\x03Z\xecH\x99\xber\xab\xe6+>\x95\x86\x83\xfb\x16o\x98\xe0\xe9d\xa1z^}\xc7\x12\xe6b\xa2\xb1X\x062\x12\xec\x12.\xbb\x10\x11\xdb_Xo\xfc\xcd\x8av\x80\xf0!n\x8d\xee)\rm\xc5\xee\xd6\xde\xc7\xf8\xdf\xc1?\x82\xca\xb6X\xe3\xfc\xf8\x1a\xe7U\xd6\f\x8e\x98+\x99\x1dqtV\xb4\x05\xa4ge', 0x110000a3d9) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) madvise$auto(0x0, 0x20499d, 0x9) mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x63af, 0x63, 0x0, 0x0, 0x0, 0x0, 0x8, 0x80000008000000a, 0x40000402, 0x6, 0x7, 0xffffffff80000004, 0x8000000002009, 0x6, 0x2400001000ff}) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000800}, 0x4) r4 = socket(0x10, 0x2, 0x6) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) 2.186971096s ago: executing program 1 (id=514): r0 = socket(0x2, 0x1, 0x106) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x15, 0x5, 0x0) socket(0x2, 0x1, 0x106) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55) setsockopt$auto(r0, 0x1, 0x9, 0x0, 0xeb66) (fail_nth: 1) 2.05247015s ago: executing program 2 (id=515): r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x20800, 0x0) ioctl$auto_SNDCTL_SYNTH_INFO(r0, 0xc08c5102, &(0x7f0000000100)="b5af8abdd024aade135d0e8ab37e685a53d96119acf0e47ed653d56bfef3f56abe0c98ab") socket(0x2, 0x1, 0x106) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x14, 0x5, 0x7fff) socket(0x2, 0x1, 0x106) r1 = io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0x401, 0x8000) io_pgetevents$auto(0x4, 0x8, 0xa31f, 0x0, 0x0, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55) ioctl$auto_XFS_IOC_FSBULKSTAT(r1, 0xc0205865, &(0x7f0000000180)={&(0x7f0000000040)=0x9, 0x200, &(0x7f0000000080)="8f6d1eb47fbfc38c09d34eb9f0a756564f7f7d0c5458e0a7216c7998bc798e67da4c98a4d0a0c0867cc7635b0701180eddd4ff9ffd8634f32b4727b36bc7a2f46c611bdc23395cacaec6fa", &(0x7f0000000140)=0x800}) setsockopt$auto(r0, 0xfffffffd, 0x9, 0x0, 0xffff) 1.88784614s ago: executing program 2 (id=516): r0 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000100), 0x80000, 0x0) ioctl$auto_UBI_IOCDET(r0, 0x40046f41, &(0x7f0000000140)=0xfffffffa) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa140, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, 0x0, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000240), 0x2b0002, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000c00), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_GET_VLAN(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x1c, r3, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40801}, 0x4008090) sendmsg$auto_NL80211_CMD_SET_MAC_ACL(r2, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)={0x74, 0x0, 0x4, 0x70bd26, 0x25dfdbfe, {}, [@NL80211_ATTR_MLO_LINK_DISABLED={0x4}, @NL80211_ATTR_DISABLE_HT={0x4}, @NL80211_ATTR_FILS_ERP_USERNAME={0xa, 0xf9, "26a0ead42b49"}, @NL80211_ATTR_S1G_CAPABILITY={0x44, 0x128, "9d4dfaf927513d07e49c581803aa9a33490c221f3c83453e234065b88979a79ac60d445817856b6bd4cd703837a781b518aa3957920a71135efdd972d03db364"}, @NL80211_ATTR_MDID={0x6, 0xb1, 0x8}]}, 0x74}, 0x1, 0x0, 0x0, 0x20008080}, 0x40) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) r5 = socket(0x2b, 0x1, 0x0) socket(0x29, 0x2, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) write$auto(0x3, 0x0, 0xfffffdef) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x3ec0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) sendmmsg$auto(r5, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x9}, 0x800009}, 0x3, 0x20000000) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) sendto$auto(0x3, 0x0, 0xe7, 0xfd, 0x0, 0x403) 1.503661409s ago: executing program 2 (id=517): mmap$auto(0x0, 0x99, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) sendto$auto(r1, &(0x7f0000000340)="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", 0x9, 0x3, &(0x7f00000000c0)=@l2={0x1f, 0x7, @any, 0x8, 0x1}, 0x1) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0) ioctl$auto(0x3, 0xae41, r3) ioctl$auto_KVM_CREATE_VM(r2, 0x4048aecb, 0x0) ioctl$auto_USBDEVFS_CONTROL32(r0, 0xc0105500, &(0x7f0000000080)={0x7a, 0x7d, 0x7, 0x4, 0x100, 0x7, 0xa}) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x800, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = socket(0x2, 0x2, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(r4, &(0x7f0000000180)=@in={0x2, 0x0, @private=0xa010100}, 0x15) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f0000000200)={{@inferred, 0x1, 0x1, 0x8, "3112d585005a614d19e22af9ffb683dbede3d0bf828bbfba40f035f4be6b7fe5e2f94bd90484b0755015e48d"}, 0x2, 0x5, 0x4, @inferred, @integer={0x7, 0x5, 0x5}, "7a9fc199a16a2311eacf2fc7ae1da978dc3e8090334fdd73340238d212b6debe0eda71bdd70925450e24e87212f0bcab84a16f7ce8cbce0bb32777702b8d7c2d"}) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/mac80211_hwsim/hwsim1/ieee80211/phy1/rfkill3/hard_block_reasons\x00', 0x0, 0x0) read$auto(r5, 0x0, 0x20) rt_sigqueueinfo$auto(0x0, 0x4, &(0x7f0000000000)={@siginfo_0_0={0xf9, 0x14, 0x7e73, @_timer={0x0, 0x80000001, @sival_ptr=0x0, 0x5}}}) socket(0x11, 0x3, 0x9) 1.192165218s ago: executing program 2 (id=518): r0 = openat$auto_percpu_stats_fops_(0xffffffffffffff9c, 0x0, 0x200, 0x0) r1 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000400)='/dev/cuse\x00', 0x1c1041, 0x0) mmap$auto(0xffffffffffffffff, 0x20009, 0x7, 0xeb1, 0x40000000000a5, 0x8000) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x5, 0x311) setregid$auto(0x81, 0x5) clone$auto(0x7fff, 0xff, &(0x7f0000000600)=0x8000, 0x0, 0x7) poll$auto(&(0x7f0000000080)={0x2, 0x0, 0x1a}, 0xff, 0x1) write$auto_fuse_dev_operations_fuse_i(r1, &(0x7f0000000440)="110000001265843a000000000000000000", 0x11) writev$auto(r0, &(0x7f00000001c0)={&(0x7f0000000000)="999e0d4d6548f60f0cd8ebe1dc6be388db0daeb02e395a966e51a06267ea942567d72744ec55c7d15bd900774dfe7e22e13e1abe55c4524abc4027702ae7c551e1cb9f1bc350884170c1fc3ea36b92ada1e4dc7b8b98bc76b046cb9fd0cfdcafd4b7e1c7da8f18d69042e87ddf1fbb5fafacef79a0496ad709e772067aff07aaada94c80a2ec2aaabcbd0e636fc9fca77f2d8b38e3c172c3a1f0f3dc83746fde7f9790fb933d0aa69c74ddc961d32f065485147802ef58185dbeafbaf1052c5ef7aa16d76bf3a71a86d356", 0x2}, 0x200) bpf$auto(0x0, &(0x7f0000000280)=@task_fd_query={0x19, 0x4, 0x4, 0x809, 0x8, 0x4, 0x66b, 0x5, 0x7ff}, 0x6f4) capset$auto(&(0x7f0000000200)={0x4}, &(0x7f0000000240)={0x7, 0x1ff, 0x2}) 1.131815478s ago: executing program 1 (id=519): mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffff7, 0x1fd) close_range$auto(0x0, 0xfffffffffffff000, 0x9) socket(0x11, 0x2, 0x73) pipe2$auto(0x0, 0x0) r0 = io_uring_setup$auto(0x6, 0x0) socket$nl_generic(0x10, 0x3, 0x10) open(0x0, 0x154001, 0x5a) io_uring_setup$auto(0x6, 0x0) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, 0x0, 0x1, 0x0) pidfd_send_signal$auto_SIGCONT(r0, 0x12, &(0x7f0000000040)={@siginfo_0_0={0x4, 0x3, 0xffffffff, @_sigsys={&(0x7f0000000140)="f8497a3b63aa126a5922b8a5a0e0deebbe519e092a7b03f8798f034fd1be03c44188f5cc81b7b52674e886531d57e78c3346000a7dd6d8ba7be6e36845f4f1b58c1e3a2bef3e46b799", 0x7bd5493, 0x6}}}, 0x6) openat$auto_proc_mounts_operations_mnt_namespace(0xffffffffffffff9c, 0x0, 0x121080, 0x0) openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, 0x0, 0x8801, 0x0) socket(0x2, 0x5, 0x0) openat$auto_stat_fops_(0xffffffffffffff9c, 0x0, 0x202802, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xc2dc0, 0x0) mmap$auto(0x4, 0x7fffffff, 0xffffffffffff8002, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3ff, 0x8000) r1 = socket(0x1e, 0x2, 0xa) tee$auto(0x2000000000000, 0x3, 0x402, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="6cd13ac7270aa52513e84c79b104cebeb906912324e1858fe7b3ecb06ec5bb12afb607b1ed0bf18e33045f3d7f115ed8f19ec982ae1626e9b9af0309ec50f0d903576aa3fd17d4f62f1ccc3cf0bb3e66e324d4a51549b8921b78c58f", @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x0) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x6000, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x1, @local}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0xc}}, 0x54) setsockopt$auto(0x3, 0x10000000084, 0x10, 0x0, 0x8) socket(0x11, 0x2, 0x14) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) 1.056022782s ago: executing program 2 (id=520): mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) r0 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a4, 0xffff) mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000) madvise$auto(0x405, 0xffffffffffff0001, 0x3) syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r0) sendmsg$auto_NL80211_CMD_RADAR_DETECT(0xffffffffffffffff, 0x0, 0x4008000) sendmsg$auto_NL80211_CMD_STOP_NAN(0xffffffffffffffff, 0x0, 0x815) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) setresuid$auto(0x2, 0x7, 0x0) r1 = geteuid() setreuid$auto(r1, 0x0) adjtimex$auto(&(0x7f00000005c0)={0xf332b6e, 0x0, 0x2000000000000000, 0x8, 0xd4, 0x7, 0x5, 0x0, 0x10001, 0x1, 0x2, {0x8, 0x10001}, 0x1, 0x6, 0xfffffffffffffffd, 0x1007ffe, 0x0, 0x80000004, 0xa, 0xffffefffffff628e, 0xa747, 0x1, 0x1800}) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, 0x0, 0x20100, 0x0) socket(0x2, 0x80002, 0x73) bind$auto(r2, 0x0, 0x6a) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) io_uring_setup$auto(0x6, 0x0) write$auto(r3, &(0x7f0000000340)='\xa3o\a`\f\f4\xc6\xe7\x8a\x16h\x80\xb5\xed\xe4\xec\xfe\xe50\xb9\xbb1/#\xdc\xdd\xed\xa2\x85\xa1\xd5\xf5\xfeG\xdcI\xe3c\xb8BS\x04Y\xc9N\x98\xc6I_E \xc8^T\x84Mh\xf4Y\xcc\xe4\x9al\x88\x8fX\xcb\xad\x1d*\xec\x1dG@H/N\xaa\x1b\xce\x8b\xff\xcfe\xac\xda\xb0\xbe;-y\x12\x13\x93\x1d\xb5>\x1c\x02Tv\x92\xc0\x1c\xaa\x8a8\x0e_Fv\x00\xdc\nfd\x16\xa6d\xa3z\xdf\xc7o+1\xf4Q\xf7i\xd6.\t\x10\x99\xc4\x06\xa3\xbf*\xbb\xe0H\xc9u+\x17\x93!\x1c\xc3\xcd\xc1y\xaf\xf1\xd1B\xaa[\x9d\xb6\xad\xe2\xff\x9b[{\xd1z\x18\xba\x7f\xb5\x10\xdd1\xf2\x9c\xb0=\xf09\r\xc3\x1b9\xbe\xa8\xe76[/<,\xe1\x90\xb3G}\x85E\xc6\x8ak4\xc3+\xf0\x9f\xe0F\x1b\xdb\x84\x17\xc0\x99\xf1\xb5,\x1f\x8a\xe7\x0f\xd7\xc2{>\xb9q\xc3\xa7\xaaF|\\4\x03Z\xecH\x99\xber\xab\xe6+>\x95\x86\x83\xfb\x16o\x98\xe0\xe9d\xa1z^}\xc7\x12\xe6b\xa2\xb1X\x062\x12\xec\x12.\xbb\x10\x11\xdb_Xo\xfc\xcd\x8av\x80\xf0!n\x8d\xee)\rm\xc5\xee\xd6\xde\xc7\xf8\xdf\xc1?\x82\xca\xb6X\xe3\xfc\xf8\x1a\xe7U\xd6\f\x8e\x98+\x99\x1dqtV\xb4\x05\xa4ge', 0x110000a3d9) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) madvise$auto(0x0, 0x20499d, 0x9) mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x63af, 0x63, 0x0, 0x0, 0x0, 0x0, 0x8, 0x80000008000000a, 0x40000402, 0x6, 0x7, 0xffffffff80000004, 0x8000000002009, 0x6, 0x2400001000ff}) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) r4 = socket(0x10, 0x2, 0x6) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) 0s ago: executing program 1 (id=521): read$auto(0xffffffffffffffff, 0x0, 0x20) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl802154(0x0, r0) write$auto(0xca, &(0x7f0000000080)='\x04>2\x0e\xa9\ns\xdeam\xea\xf4\x1b\xf8\xea}\xbe\b\x93&\xfc\x1a\xf0\x9a\xd5\xff\x8b\xeb\xa6v\xaed\xd5=IZ\xe6\xa4$\xf4?\x13F~\xd4_w8\x9dor1\xe5\xbd?\\*\x17B\x91\x84M\xec\xe7/\xaf5Itu~\x9e\xd8\x1f\xea\x95\x97s\xebX\xfd\xbc\xfe\xfaz\xc2\xadr\xff\xff\xff\xff\xff\xff\xff\xffV\x93\xfeu\xcf\xd9W\xf9\x13\x8b\xed\xf4o\xcf \xc5\x03', 0x7e) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r0, &(0x7f0000001f40)={0x0, 0x0, &(0x7f0000001f00)={&(0x7f0000000180)={0x28, r1, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x1}, @NL802154_ATTR_WPAN_PHY={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x0) shmctl$auto_SHM_INFO(0xc2, 0xe, &(0x7f0000000180)={{0x6d8, 0xee00, 0x0, 0x0, 0x5, 0x6, 0xffff}, 0xfd4, 0x5, 0x800, 0x917, @inferred=0xffffffffffffffff, @raw=0x5, 0x0, 0x0, &(0x7f0000000080), 0x0}) r3 = fcntl$auto_F_GETOWN(0xffffffffffffffff, 0x9, 0x9) semctl$auto(0x3ff, 0xfff, 0x9, 0xfe00000000000000) sendmsg$auto_NL802154_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000340)={&(0x7f0000000440)={0x320, r1, 0x200, 0x70bd2a, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_PHY_CAPS={0x2f4, 0x18, 0x0, 0x1, [@nested={0x1a7, 0x116, 0x0, 0x1, [@nested={0x4, 0x112}, @generic="8f913e7856630e05967c3c18c5f238d70ce866d1e0c20a349a3d707c9db0c611e37f1fe2c24aecbadd7f1ccbcf031407dd8c", @generic="b9a482d4b033b14b7393f38935987cccdbe2dd1fc8fbf087f03fc5a64b4e07392a4de43755002c665a5da6de06fb17fb5d08d4c88eea000dc85953ea0050b56ab7d3c38ecd6b65f68bfb31e9b5569a6304262aadc2b562438481b4c403a634afd30c5b685d61261288c3e480ca720ba3d626d95650d09dc2584b9ae242be964b7580061806ce98df0c19a9f71117003aa4bc0d327656d395612ed5556b0fe1dbdfb2f8a62072148dc2e8a7825dd7a0d79ca6822c922962da38140d7817664d71e5b9f339c84b7ecf199b96b0c8b4bc575b", @nested={0x4, 0x6d}, @generic="23c5aa89cf91639e504c2c7501390f2ad0f4fe0c716f37aab0a475ef10321cc71b6ce500bbc891e01d63557223578b7ba35e506a161c691a3f1036e2ea44c2b34c53053862f967d4b4d7df1d915d7a0ad6d0b582359f516ad982f0b3c5a78a2b82c4c04d7e4311b79efaf121e610d3b23bd668171a2190897ae78e097cec9d25ea4dcccf4a2d9fa53fdbe6ee", @nested={0x4, 0x37}, @typed={0x8, 0x72, 0x0, 0x0, @u32}]}, @nested={0x54, 0xa0, 0x0, 0x1, [@typed={0xc, 0x10f, 0x0, 0x0, @u64=0x2}, @typed={0x8, 0x14, 0x0, 0x0, @uid=r2}, @typed={0x8, 0xbb, 0x0, 0x0, @pid=r3}, @typed={0x8, 0x73, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x2c, 0x7, 0x0, 0x0, @str='/sys/devices/virtual/block/ram9/diskseq\x00'}]}, @typed={0xc, 0x11d, 0x0, 0x0, @u64=0x2}, @nested={0xc4, 0x120, 0x0, 0x1, [@generic="a94d918163f80e5c44f53e1bbc0d1fec097bb22649483953b22213deb6e686937c5698fbc66951a5cc9fab0cc631717d4108bb51afc22f33bf73c461a4da4788216d056c1561bd2c55020478b628d3643e7423f05db8655ba5ffd4122c3ad9e611d2c2651f014d1ab451cf4c6cbc7db13dff90c83bb9384dba652c6230fa65ee191adf1015a3ba2cf82ce1bfaf63a22a1a110b955dde43dc0b00b40bcc575bd3ba2c3a713bd19a770a80da903eed6f70132e6cb1676630ae", @typed={0x6, 0x70, 0x0, 0x0, @str='[\x00'}]}, @typed={0x8, 0x13b, 0x0, 0x0, @u32=0x6}, @nested={0x18, 0x3c, 0x0, 0x1, [@typed={0x14, 0x0, 0x0, 0x0, @ipv6=@private0={0xfc, 0x0, '\x00', 0x1}}]}, @nested={0x4, 0xde}]}, @NL802154_ATTR_SCAN_TYPE={0x5, 0x1f, 0xf}, @NL802154_ATTR_SEC_ENABLED={0x5}, @NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x4}]}, 0x320}, 0x1, 0x0, 0x0, 0x20000810}, 0x20000004) sendmsg$auto_L2TP_CMD_SESSION_DELETE(r0, &(0x7f0000000040)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000780)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYRES16=r3], 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x22680639e7360fff) writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x7}, 0x3) eventfd2$auto(0x0, 0x1) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x2, 0x0) kernel console output (not intermixed with test programs): b5fa0 R15: 00007ffc41872ca8 [ 126.708106][ T6463] [ 127.422648][ T6472] FAULT_INJECTION: forcing a failure. [ 127.422648][ T6472] name failslab, interval 1, probability 0, space 0, times 0 [ 127.455357][ T6472] CPU: 1 UID: 0 PID: 6472 Comm: syz.3.108 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 127.455395][ T6472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 127.455410][ T6472] Call Trace: [ 127.455419][ T6472] [ 127.455428][ T6472] dump_stack_lvl+0x16c/0x1f0 [ 127.455467][ T6472] should_fail_ex+0x512/0x640 [ 127.455496][ T6472] ? __kmalloc_noprof+0xbf/0x510 [ 127.455527][ T6472] ? fib_default_rule_add+0x4f/0x420 [ 127.455557][ T6472] should_failslab+0xc2/0x120 [ 127.455588][ T6472] __kmalloc_noprof+0xd2/0x510 [ 127.455624][ T6472] fib_default_rule_add+0x4f/0x420 [ 127.455659][ T6472] fib4_rules_init+0x7c/0x1c0 [ 127.455685][ T6472] fib_net_init+0x1dc/0x3f0 [ 127.455715][ T6472] ? __pfx___register_sysctl_table+0x10/0x10 [ 127.455746][ T6472] ? __pfx_fib_net_init+0x10/0x10 [ 127.455776][ T6472] ? lockdep_init_map_type+0x5c/0x280 [ 127.455810][ T6472] ? do_init_timer+0xc9/0x110 [ 127.455839][ T6472] ? devinet_init_net+0x5c2/0x910 [ 127.455875][ T6472] ? __pfx_fib_net_init+0x10/0x10 [ 127.455904][ T6472] ops_init+0x1df/0x5f0 [ 127.455941][ T6472] setup_net+0x21e/0x850 [ 127.455976][ T6472] ? __pfx_setup_net+0x10/0x10 [ 127.456005][ T6472] ? lockdep_init_map_type+0x5c/0x280 [ 127.456035][ T6472] ? __pfx_down_read_killable+0x10/0x10 [ 127.456062][ T6472] ? debug_mutex_init+0x37/0x70 [ 127.456090][ T6472] copy_net_ns+0x2a6/0x5f0 [ 127.456129][ T6472] create_new_namespaces+0x3ea/0xad0 [ 127.456166][ T6472] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 127.456197][ T6472] ksys_unshare+0x45b/0xa40 [ 127.456230][ T6472] ? __pfx_ksys_unshare+0x10/0x10 [ 127.456260][ T6472] ? xfd_validate_state+0x5d/0x180 [ 127.456296][ T6472] ? rcu_is_watching+0x12/0xc0 [ 127.456331][ T6472] __x64_sys_unshare+0x31/0x40 [ 127.456365][ T6472] do_syscall_64+0xcd/0x230 [ 127.456400][ T6472] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 127.456424][ T6472] RIP: 0033:0x7fa42ed8e169 [ 127.456443][ T6472] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 127.456465][ T6472] RSP: 002b:00007fa42cbf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 127.456488][ T6472] RAX: ffffffffffffffda RBX: 00007fa42efb5fa0 RCX: 00007fa42ed8e169 [ 127.456504][ T6472] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 127.456519][ T6472] RBP: 00007fa42ee10a68 R08: 0000000000000000 R09: 0000000000000000 [ 127.456533][ T6472] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 127.456547][ T6472] R13: 0000000000000000 R14: 00007fa42efb5fa0 R15: 00007ffc41872ca8 [ 127.456576][ T6472] [ 128.584333][ T6491] FAULT_INJECTION: forcing a failure. [ 128.584333][ T6491] name failslab, interval 1, probability 0, space 0, times 0 [ 128.617735][ T6491] CPU: 0 UID: 0 PID: 6491 Comm: syz.2.111 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 128.617772][ T6491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 128.617787][ T6491] Call Trace: [ 128.617796][ T6491] [ 128.617805][ T6491] dump_stack_lvl+0x16c/0x1f0 [ 128.617842][ T6491] should_fail_ex+0x512/0x640 [ 128.617871][ T6491] ? fs_reclaim_acquire+0xae/0x150 [ 128.617911][ T6491] should_failslab+0xc2/0x120 [ 128.617941][ T6491] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 128.617966][ T6491] ? ext4_alloc_io_end_vec+0x2b/0x1c0 [ 128.617995][ T6491] ext4_alloc_io_end_vec+0x2b/0x1c0 [ 128.618024][ T6491] ext4_do_writepages+0x1432/0x3490 [ 128.618066][ T6491] ? __pfx_ext4_do_writepages+0x10/0x10 [ 128.618100][ T6491] ? ext4_writepages+0x37a/0x7d0 [ 128.618118][ T6491] ext4_writepages+0x37a/0x7d0 [ 128.618137][ T6491] ? __pfx_ext4_writepages+0x10/0x10 [ 128.618167][ T6491] ? do_writepages+0x6b6/0x820 [ 128.618200][ T6491] ? __pfx_ext4_writepages+0x10/0x10 [ 128.618221][ T6491] do_writepages+0x1b2/0x820 [ 128.618248][ T6491] ? __pfx_do_writepages+0x10/0x10 [ 128.618274][ T6491] ? do_raw_spin_lock+0x12c/0x2b0 [ 128.618293][ T6491] ? find_held_lock+0x2b/0x80 [ 128.618315][ T6491] ? wbc_attach_fdatawrite_inode+0x13a/0x190 [ 128.618343][ T6491] ? do_raw_spin_unlock+0x172/0x230 [ 128.618362][ T6491] ? _raw_spin_unlock+0x28/0x50 [ 128.618387][ T6491] filemap_fdatawrite_wbc+0x104/0x160 [ 128.618411][ T6491] __filemap_fdatawrite_range+0xb2/0xf0 [ 128.618438][ T6491] ? __pfx___filemap_fdatawrite_range+0x10/0x10 [ 128.618507][ T6491] file_write_and_wait_range+0xca/0x140 [ 128.618536][ T6491] ext4_sync_file+0x310/0xf10 [ 128.618566][ T6491] ? __pfx___up_read+0x10/0x10 [ 128.618595][ T6491] ? __pfx_ext4_sync_file+0x10/0x10 [ 128.618621][ T6491] vfs_fsync_range+0x136/0x220 [ 128.618644][ T6491] __do_sys_msync+0x3cb/0x5c0 [ 128.618675][ T6491] do_syscall_64+0xcd/0x230 [ 128.618704][ T6491] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 128.618723][ T6491] RIP: 0033:0x7f4e9198e169 [ 128.618740][ T6491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 128.618760][ T6491] RSP: 002b:00007f4e92841038 EFLAGS: 00000246 ORIG_RAX: 000000000000001a [ 128.618779][ T6491] RAX: ffffffffffffffda RBX: 00007f4e91bb5fa0 RCX: 00007f4e9198e169 [ 128.618792][ T6491] RDX: 0000000000000006 RSI: 0180000000000000 RDI: 000000001ffff000 [ 128.618826][ T6491] RBP: 00007f4e91a10a68 R08: 0000000000000000 R09: 0000000000000000 [ 128.618838][ T6491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 128.618851][ T6491] R13: 0000000000000000 R14: 00007f4e91bb5fa0 R15: 00007ffc7d9ae218 [ 128.618877][ T6491] [ 129.807716][ T6500] netlink: 4 bytes leftover after parsing attributes in process `syz.3.112'. [ 130.740448][ T5152] Bluetooth: hci3: unexpected subevent 0x0e length: 122 > 15 [ 130.748582][ T5152] Bluetooth: hci3: Unable to find connection for dst ea:f8:1b:f4:ea:6d sid 0xde [ 132.932576][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.939310][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.856054][ T6537] FAULT_INJECTION: forcing a failure. [ 133.856054][ T6537] name failslab, interval 1, probability 0, space 0, times 0 [ 133.868854][ T6537] CPU: 1 UID: 0 PID: 6537 Comm: syz.3.122 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 133.868874][ T6537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 133.868883][ T6537] Call Trace: [ 133.868888][ T6537] [ 133.868893][ T6537] dump_stack_lvl+0x16c/0x1f0 [ 133.868917][ T6537] should_fail_ex+0x512/0x640 [ 133.868933][ T6537] ? __kmalloc_noprof+0xbf/0x510 [ 133.868950][ T6537] ? lsm_blob_alloc+0x68/0x90 [ 133.868971][ T6537] should_failslab+0xc2/0x120 [ 133.868988][ T6537] __kmalloc_noprof+0xd2/0x510 [ 133.869007][ T6537] lsm_blob_alloc+0x68/0x90 [ 133.869027][ T6537] security_prepare_creds+0x30/0x270 [ 133.869047][ T6537] prepare_creds+0x56f/0x7d0 [ 133.869068][ T6537] copy_creds+0xa7/0xa50 [ 133.869090][ T6537] copy_process+0x10b1/0x91a0 [ 133.869107][ T6537] ? find_held_lock+0x2b/0x80 [ 133.869122][ T6537] ? schedule+0x2d7/0x3a0 [ 133.869139][ T6537] ? futex_wait_queue+0x24/0x220 [ 133.869156][ T6537] ? schedule+0xf1/0x3a0 [ 133.869172][ T6537] ? futex_wait_queue+0x14c/0x220 [ 133.869193][ T6537] ? __pfx_copy_process+0x10/0x10 [ 133.869209][ T6537] ? __pfx___futex_wait+0x10/0x10 [ 133.869230][ T6537] ? __pfx_futex_wake_mark+0x10/0x10 [ 133.869256][ T6537] kernel_clone+0xfc/0x960 [ 133.869275][ T6537] ? __pfx_kernel_clone+0x10/0x10 [ 133.869296][ T6537] ? __pfx_mt_find+0x10/0x10 [ 133.869319][ T6537] __do_sys_clone+0xce/0x120 [ 133.869336][ T6537] ? __pfx___do_sys_clone+0x10/0x10 [ 133.869362][ T6537] ? rcu_is_watching+0x12/0xc0 [ 133.869381][ T6537] do_syscall_64+0xcd/0x230 [ 133.869404][ T6537] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 133.869425][ T6537] RIP: 0033:0x7fa42ed8e169 [ 133.869445][ T6537] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 133.869467][ T6537] RSP: 002b:00007fa42cbf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 133.869488][ T6537] RAX: ffffffffffffffda RBX: 00007fa42efb5fa0 RCX: 00007fa42ed8e169 [ 133.869504][ T6537] RDX: 0000000000000000 RSI: 0000000000000081 RDI: 0000000000000002 [ 133.869517][ T6537] RBP: 00007fa42ee10a68 R08: 0000000000000003 R09: 0000000000000000 [ 133.869529][ T6537] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 133.869569][ T6537] R13: 0000000000000000 R14: 00007fa42efb5fa0 R15: 00007ffc41872ca8 [ 133.869588][ T6537] [ 134.216373][ T6541] FAULT_INJECTION: forcing a failure. [ 134.216373][ T6541] name failslab, interval 1, probability 0, space 0, times 0 [ 134.296961][ T6541] CPU: 0 UID: 0 PID: 6541 Comm: syz.3.123 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 134.296998][ T6541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 134.297013][ T6541] Call Trace: [ 134.297021][ T6541] [ 134.297031][ T6541] dump_stack_lvl+0x16c/0x1f0 [ 134.297071][ T6541] should_fail_ex+0x512/0x640 [ 134.297098][ T6541] ? __kmalloc_node_noprof+0xc5/0x500 [ 134.297132][ T6541] should_failslab+0xc2/0x120 [ 134.297164][ T6541] __kmalloc_node_noprof+0xd8/0x500 [ 134.297193][ T6541] ? rcu_is_watching+0x12/0xc0 [ 134.297217][ T6541] ? obj_cgroup_charge+0x365/0x640 [ 134.297247][ T6541] ? alloc_slab_obj_exts+0x41/0xa0 [ 134.297276][ T6541] alloc_slab_obj_exts+0x41/0xa0 [ 134.297300][ T6541] __memcg_slab_post_alloc_hook+0x27b/0x940 [ 134.297339][ T6541] ? kasan_save_track+0x14/0x30 [ 134.297370][ T6541] kmem_cache_alloc_noprof+0x307/0x3b0 [ 134.297400][ T6541] ? d_instantiate+0x77/0x90 [ 134.297426][ T6541] ? alloc_empty_file+0x55/0x1e0 [ 134.297465][ T6541] alloc_empty_file+0x55/0x1e0 [ 134.297506][ T6541] alloc_file_pseudo+0x13a/0x230 [ 134.297543][ T6541] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 134.297577][ T6541] ? alloc_fd+0x471/0x7d0 [ 134.297607][ T6541] __anon_inode_getfile+0xf7/0x370 [ 134.297639][ T6541] anon_inode_getfile_fmode+0x37/0xa0 [ 134.297665][ T6541] do_signalfd4+0x20f/0x420 [ 134.297692][ T6541] __x64_sys_signalfd+0x120/0x1a0 [ 134.297717][ T6541] ? __pfx___x64_sys_signalfd+0x10/0x10 [ 134.297740][ T6541] ? rcu_is_watching+0x12/0xc0 [ 134.297773][ T6541] do_syscall_64+0xcd/0x230 [ 134.297810][ T6541] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 134.297834][ T6541] RIP: 0033:0x7fa42ed8e169 [ 134.297855][ T6541] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 134.297879][ T6541] RSP: 002b:00007fa42cbf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000011a [ 134.297902][ T6541] RAX: ffffffffffffffda RBX: 00007fa42efb5fa0 RCX: 00007fa42ed8e169 [ 134.297919][ T6541] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 00000000ffffffff [ 134.297933][ T6541] RBP: 00007fa42ee10a68 R08: 0000000000000000 R09: 0000000000000000 [ 134.297947][ T6541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 134.297962][ T6541] R13: 0000000000000000 R14: 00007fa42efb5fa0 R15: 00007ffc41872ca8 [ 134.297994][ T6541] [ 135.415176][ T6549] i2c i2c-0: delete_device: Can't parse I2C address [ 136.029171][ T6560] i2c i2c-0: delete_device: Can't parse I2C address [ 136.552316][ T6567] net_ratelimit: 67 callbacks suppressed [ 136.552339][ T6567] openvswitch: netlink: Duplicate key (type 15). [ 136.699636][ T6575] FAULT_INJECTION: forcing a failure. [ 136.699636][ T6575] name failslab, interval 1, probability 0, space 0, times 0 [ 136.722618][ T6575] CPU: 1 UID: 0 PID: 6575 Comm: syz.3.135 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 136.722652][ T6575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 136.722666][ T6575] Call Trace: [ 136.722675][ T6575] [ 136.722684][ T6575] dump_stack_lvl+0x16c/0x1f0 [ 136.722725][ T6575] should_fail_ex+0x512/0x640 [ 136.722753][ T6575] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 136.722787][ T6575] should_failslab+0xc2/0x120 [ 136.722818][ T6575] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 136.722845][ T6575] ? __pfx___might_resched+0x10/0x10 [ 136.722873][ T6575] ? __anon_vma_prepare+0x344/0x5e0 [ 136.722905][ T6575] __anon_vma_prepare+0x344/0x5e0 [ 136.722930][ T6575] ? __pfx___pte_alloc+0x10/0x10 [ 136.722965][ T6575] __vmf_anon_prepare+0x11c/0x240 [ 136.723001][ T6575] do_pte_missing+0x1194/0x3fb0 [ 136.723027][ T6575] ? mtree_range_walk+0x718/0xc00 [ 136.723060][ T6575] ? find_held_lock+0x2b/0x80 [ 136.723088][ T6575] __handle_mm_fault+0x103d/0x2a40 [ 136.723124][ T6575] ? __pfx___handle_mm_fault+0x10/0x10 [ 136.723179][ T6575] handle_mm_fault+0x3fe/0xad0 [ 136.723212][ T6575] __get_user_pages+0x771/0x36f0 [ 136.723245][ T6575] ? __pfx_mt_find+0x10/0x10 [ 136.723280][ T6575] ? __pfx___get_user_pages+0x10/0x10 [ 136.723315][ T6575] populate_vma_page_range+0x278/0x3a0 [ 136.723350][ T6575] ? __pfx_populate_vma_page_range+0x10/0x10 [ 136.723375][ T6575] ? __pfx_find_vma_intersection+0x10/0x10 [ 136.723414][ T6575] ? do_mmap+0x69c/0x11b0 [ 136.723454][ T6575] __mm_populate+0x1d8/0x380 [ 136.723481][ T6575] ? __pfx___mm_populate+0x10/0x10 [ 136.723509][ T6575] ? up_write+0x1b2/0x520 [ 136.723547][ T6575] vm_mmap_pgoff+0x362/0x450 [ 136.723586][ T6575] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 136.723629][ T6575] ? __x64_sys_futex+0x1e0/0x4c0 [ 136.723655][ T6575] ? __x64_sys_futex+0x1e9/0x4c0 [ 136.723686][ T6575] ksys_mmap_pgoff+0x7d/0x5c0 [ 136.723721][ T6575] ? rcu_is_watching+0x12/0xc0 [ 136.723748][ T6575] __x64_sys_mmap+0x125/0x190 [ 136.723778][ T6575] do_syscall_64+0xcd/0x230 [ 136.723813][ T6575] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 136.723837][ T6575] RIP: 0033:0x7fa42ed8e169 [ 136.723858][ T6575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 136.723880][ T6575] RSP: 002b:00007fa42cbf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 136.723902][ T6575] RAX: ffffffffffffffda RBX: 00007fa42efb5fa0 RCX: 00007fa42ed8e169 [ 136.723918][ T6575] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 136.723933][ T6575] RBP: 00007fa42ee10a68 R08: 0000000000000002 R09: 0000000000008000 [ 136.723948][ T6575] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 136.723963][ T6575] R13: 0000000000000000 R14: 00007fa42efb5fa0 R15: 00007ffc41872ca8 [ 136.723996][ T6575] [ 137.538012][ T6585] netlink: set zone limit has 4 unknown bytes [ 137.561804][ T6583] netlink: 'syz.0.138': attribute type 2 has an invalid length. [ 137.618042][ T6590] i2c i2c-0: delete_device: Can't parse I2C address [ 137.722739][ T6592] netlink: 4 bytes leftover after parsing attributes in process `syz.1.141'. [ 138.905847][ T6620] FAULT_INJECTION: forcing a failure. [ 138.905847][ T6620] name failslab, interval 1, probability 0, space 0, times 0 [ 139.018685][ T6620] CPU: 0 UID: 0 PID: 6620 Comm: syz.2.147 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 139.018725][ T6620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 139.018740][ T6620] Call Trace: [ 139.018748][ T6620] [ 139.018757][ T6620] dump_stack_lvl+0x16c/0x1f0 [ 139.018796][ T6620] should_fail_ex+0x512/0x640 [ 139.018823][ T6620] ? fs_reclaim_acquire+0xae/0x150 [ 139.018859][ T6620] ? ext4_find_extent+0x844/0xa70 [ 139.018883][ T6620] should_failslab+0xc2/0x120 [ 139.018912][ T6620] __kmalloc_noprof+0xd2/0x510 [ 139.018940][ T6620] ? is_bpf_text_address+0x8a/0x1a0 [ 139.018975][ T6620] ext4_find_extent+0x844/0xa70 [ 139.018998][ T6620] ? is_bpf_text_address+0x94/0x1a0 [ 139.019033][ T6620] ext4_ext_map_blocks+0x27d/0x5d60 [ 139.019070][ T6620] ? stack_trace_save+0x8e/0xc0 [ 139.019094][ T6620] ? __pfx_stack_trace_save+0x10/0x10 [ 139.019127][ T6620] ? __pfx_ext4_ext_map_blocks+0x10/0x10 [ 139.019168][ T6620] ? __kasan_slab_alloc+0x89/0x90 [ 139.019194][ T6620] ? ext4_do_writepages+0x1432/0x3490 [ 139.019230][ T6620] ? __pfx___might_resched+0x10/0x10 [ 139.019267][ T6620] ? __pfx_down_write+0x10/0x10 [ 139.019297][ T6620] ? ext4_es_lookup_extent+0xc7/0xc50 [ 139.019335][ T6620] ext4_map_blocks+0x45b/0x1390 [ 139.019373][ T6620] ? __pfx_ext4_map_blocks+0x10/0x10 [ 139.019409][ T6620] ? trace_kmem_cache_alloc+0x28/0xc0 [ 139.019440][ T6620] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 139.019483][ T6620] ext4_do_writepages+0x1a2c/0x3490 [ 139.019532][ T6620] ? __pfx_ext4_do_writepages+0x10/0x10 [ 139.019575][ T6620] ? ext4_writepages+0x37a/0x7d0 [ 139.019597][ T6620] ext4_writepages+0x37a/0x7d0 [ 139.019620][ T6620] ? __pfx_ext4_writepages+0x10/0x10 [ 139.019652][ T6620] ? do_writepages+0x6b6/0x820 [ 139.019677][ T6620] ? __pfx_ext4_writepages+0x10/0x10 [ 139.019696][ T6620] do_writepages+0x1b2/0x820 [ 139.019722][ T6620] ? __pfx_do_writepages+0x10/0x10 [ 139.019747][ T6620] ? do_raw_spin_lock+0x12c/0x2b0 [ 139.019764][ T6620] ? find_held_lock+0x2b/0x80 [ 139.019784][ T6620] ? wbc_attach_fdatawrite_inode+0x13a/0x190 [ 139.019812][ T6620] ? do_raw_spin_unlock+0x172/0x230 [ 139.019830][ T6620] ? _raw_spin_unlock+0x28/0x50 [ 139.019855][ T6620] filemap_fdatawrite_wbc+0x104/0x160 [ 139.019879][ T6620] __filemap_fdatawrite_range+0xb2/0xf0 [ 139.019905][ T6620] ? __pfx___filemap_fdatawrite_range+0x10/0x10 [ 139.019975][ T6620] file_write_and_wait_range+0xca/0x140 [ 139.020004][ T6620] ext4_sync_file+0x310/0xf10 [ 139.020033][ T6620] ? __pfx___up_read+0x10/0x10 [ 139.020061][ T6620] ? __pfx_ext4_sync_file+0x10/0x10 [ 139.020088][ T6620] vfs_fsync_range+0x136/0x220 [ 139.020111][ T6620] __do_sys_msync+0x3cb/0x5c0 [ 139.020157][ T6620] do_syscall_64+0xcd/0x230 [ 139.020188][ T6620] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 139.020210][ T6620] RIP: 0033:0x7f4e9198e169 [ 139.020227][ T6620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 139.020247][ T6620] RSP: 002b:00007f4e92841038 EFLAGS: 00000246 ORIG_RAX: 000000000000001a [ 139.020266][ T6620] RAX: ffffffffffffffda RBX: 00007f4e91bb5fa0 RCX: 00007f4e9198e169 [ 139.020279][ T6620] RDX: 0000000000000006 RSI: 0180000000000000 RDI: 000000001ffff000 [ 139.020291][ T6620] RBP: 00007f4e91a10a68 R08: 0000000000000000 R09: 0000000000000000 [ 139.020303][ T6620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 139.020314][ T6620] R13: 0000000000000000 R14: 00007f4e91bb5fa0 R15: 00007ffc7d9ae218 [ 139.020341][ T6620] [ 139.888502][ T6608] zswap: compressor not available [ 140.765602][ T6662] netlink: zone id is out of range [ 140.797662][ T6662] netlink: zone id is out of range [ 140.802833][ T6662] netlink: zone id is out of range [ 140.853520][ T6662] netlink: zone id is out of range [ 140.859219][ T6662] netlink: zone id is out of range [ 140.877614][ T6662] netlink: zone id is out of range [ 140.887792][ T6662] netlink: zone id is out of range [ 140.893946][ T6662] netlink: zone id is out of range [ 141.281699][ T6677] netlink: 48 bytes leftover after parsing attributes in process `syz.1.155'. [ 141.393559][ T6677] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1935892845.25445.0), cmd(2) [ 142.260721][ T6687] i2c i2c-0: delete_device: Can't parse I2C address [ 142.547539][ T6691] FAULT_INJECTION: forcing a failure. [ 142.547539][ T6691] name fail_futex, interval 1, probability 0, space 0, times 1 [ 142.799096][ T6691] CPU: 0 UID: 0 PID: 6691 Comm: syz.0.159 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 142.799135][ T6691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 142.799150][ T6691] Call Trace: [ 142.799159][ T6691] [ 142.799170][ T6691] dump_stack_lvl+0x16c/0x1f0 [ 142.799212][ T6691] should_fail_ex+0x512/0x640 [ 142.799246][ T6691] get_futex_key+0x49e/0x1000 [ 142.799278][ T6691] ? __pfx_get_futex_key+0x10/0x10 [ 142.799319][ T6691] futex_wake+0xe7/0x4e0 [ 142.799349][ T6691] ? find_held_lock+0x2b/0x80 [ 142.799378][ T6691] ? __pfx_futex_wake+0x10/0x10 [ 142.799419][ T6691] ? __pfx_mt_find+0x10/0x10 [ 142.799458][ T6691] do_futex+0x1e3/0x350 [ 142.799487][ T6691] ? __pfx_do_futex+0x10/0x10 [ 142.799514][ T6691] ? file_check_and_advance_wb_err+0xc2/0x340 [ 142.799550][ T6691] __x64_sys_futex+0x1e0/0x4c0 [ 142.799583][ T6691] ? __pfx___x64_sys_futex+0x10/0x10 [ 142.799613][ T6691] ? rcu_is_watching+0x12/0xc0 [ 142.799648][ T6691] do_syscall_64+0xcd/0x230 [ 142.799685][ T6691] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 142.799710][ T6691] RIP: 0033:0x7f7f6338e169 [ 142.799730][ T6691] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 142.799754][ T6691] RSP: 002b:00007f7f641950e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 142.799778][ T6691] RAX: ffffffffffffffda RBX: 00007f7f635b5fa8 RCX: 00007f7f6338e169 [ 142.799796][ T6691] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7f635b5fac [ 142.799811][ T6691] RBP: 00007f7f635b5fa0 R08: 00007f7f64196000 R09: 0000000000000000 [ 142.799827][ T6691] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f7f635b5fac [ 142.799843][ T6691] R13: 0000000000000000 R14: 00007ffc8cf876f0 R15: 00007ffc8cf877d8 [ 142.799883][ T6691] [ 143.138017][ T6701] ptrace attach of "./syz-executor exec"[5848] was attempted by "./syz-executor exec"[6701] [ 143.578129][ T6707] ptrace attach of "./syz-executor exec"[5848] was attempted by ""[6707] [ 143.670178][ T6712] netlink: 16 bytes leftover after parsing attributes in process `syz.1.162'. [ 144.877842][ T5850] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 146.192723][ T30] audit: type=1800 audit(6040340382.842:2): pid=6743 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.171" name="lu_gp_id" dev="configfs" ino=10434 res=0 errno=0 [ 146.328870][ T5850] Bluetooth: hci1: unexpected subevent 0x0e length: 122 > 15 [ 146.336349][ T5850] Bluetooth: hci1: Unable to find connection for dst ea:f8:1b:f4:ea:6d sid 0xde [ 146.465005][ T6753] syz.2.170 uses obsolete (PF_INET,SOCK_PACKET) [ 146.582414][ T6745] FAULT_INJECTION: forcing a failure. [ 146.582414][ T6745] name failslab, interval 1, probability 0, space 0, times 0 [ 146.612723][ T6745] CPU: 0 UID: 0 PID: 6745 Comm: syz.1.172 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 146.612759][ T6745] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 146.612774][ T6745] Call Trace: [ 146.612782][ T6745] [ 146.612791][ T6745] dump_stack_lvl+0x16c/0x1f0 [ 146.612839][ T6745] should_fail_ex+0x512/0x640 [ 146.612867][ T6745] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 146.612900][ T6745] should_failslab+0xc2/0x120 [ 146.612933][ T6745] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 146.612962][ T6745] ? percpu_counter_add_batch+0xb8/0x1f0 [ 146.612986][ T6745] ? vm_area_dup+0x25/0x760 [ 146.613020][ T6745] vm_area_dup+0x25/0x760 [ 146.613050][ T6745] copy_process+0x7f67/0x91a0 [ 146.613107][ T6745] ? __pfx_copy_process+0x10/0x10 [ 146.613137][ T6745] ? __pfx___futex_wait+0x10/0x10 [ 146.613201][ T6745] kernel_clone+0xfc/0x960 [ 146.613234][ T6745] ? __pfx_kernel_clone+0x10/0x10 [ 146.613273][ T6745] ? __pfx_mt_find+0x10/0x10 [ 146.613318][ T6745] __do_sys_clone+0xce/0x120 [ 146.613349][ T6745] ? __pfx___do_sys_clone+0x10/0x10 [ 146.613400][ T6745] ? rcu_is_watching+0x12/0xc0 [ 146.613436][ T6745] do_syscall_64+0xcd/0x230 [ 146.613470][ T6745] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 146.613493][ T6745] RIP: 0033:0x7fc37378e169 [ 146.613512][ T6745] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 146.613535][ T6745] RSP: 002b:00007fc374606038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 146.613557][ T6745] RAX: ffffffffffffffda RBX: 00007fc3739b5fa0 RCX: 00007fc37378e169 [ 146.613573][ T6745] RDX: 0000000000000000 RSI: 0000000000000081 RDI: 0000000000000002 [ 146.613587][ T6745] RBP: 00007fc373810a68 R08: 0000000000000003 R09: 0000000000000000 [ 146.613601][ T6745] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 146.613615][ T6745] R13: 0000000000000000 R14: 00007fc3739b5fa0 R15: 00007fffa9d1fac8 [ 146.613648][ T6745] [ 147.361689][ T6776] FAULT_INJECTION: forcing a failure. [ 147.361689][ T6776] name failslab, interval 1, probability 0, space 0, times 0 [ 147.403228][ T6776] CPU: 0 UID: 0 PID: 6776 Comm: syz.1.177 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 147.403271][ T6776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 147.403286][ T6776] Call Trace: [ 147.403295][ T6776] [ 147.403305][ T6776] dump_stack_lvl+0x16c/0x1f0 [ 147.403350][ T6776] should_fail_ex+0x512/0x640 [ 147.403382][ T6776] ? __kmalloc_noprof+0xbf/0x510 [ 147.403416][ T6776] ? constrain_params_by_rules+0x175/0xca0 [ 147.403443][ T6776] should_failslab+0xc2/0x120 [ 147.403477][ T6776] __kmalloc_noprof+0xd2/0x510 [ 147.403507][ T6776] ? unwind_get_return_address+0x59/0xa0 [ 147.403548][ T6776] constrain_params_by_rules+0x175/0xca0 [ 147.403582][ T6776] ? stack_trace_save+0x8e/0xc0 [ 147.403614][ T6776] ? stack_depot_save_flags+0x28/0xa50 [ 147.403647][ T6776] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 147.403683][ T6776] ? __kasan_kmalloc+0xaa/0xb0 [ 147.403710][ T6776] ? snd_pcm_oss_change_params_locked+0x6f4/0x3b40 [ 147.403737][ T6776] ? snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 147.403762][ T6776] ? snd_pcm_oss_write+0x4c3/0xa10 [ 147.403807][ T6776] ? snd_interval_refine+0x2fa/0x580 [ 147.403847][ T6776] snd_pcm_hw_refine+0x7de/0xad0 [ 147.403881][ T6776] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 147.403926][ T6776] ? snd_interval_refine+0x2fa/0x580 [ 147.403964][ T6776] snd_pcm_oss_change_params_locked+0x2185/0x3b40 [ 147.404009][ T6776] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 147.404039][ T6776] ? snd_pcm_oss_write+0x4a2/0xa10 [ 147.404089][ T6776] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 147.404120][ T6776] snd_pcm_oss_write+0x4c3/0xa10 [ 147.404149][ T6776] ? bpf_lsm_file_permission+0x9/0x10 [ 147.404175][ T6776] ? security_file_permission+0x71/0x210 [ 147.404219][ T6776] vfs_write+0x25c/0x1180 [ 147.404245][ T6776] ? __pfx_snd_pcm_oss_write+0x10/0x10 [ 147.404280][ T6776] ? __pfx_vfs_write+0x10/0x10 [ 147.404305][ T6776] ? find_held_lock+0x2b/0x80 [ 147.404334][ T6776] ? __fget_files+0x204/0x3c0 [ 147.404365][ T6776] ? __fget_files+0x20e/0x3c0 [ 147.404401][ T6776] ksys_write+0x12a/0x240 [ 147.404427][ T6776] ? __pfx_ksys_write+0x10/0x10 [ 147.404454][ T6776] ? rcu_is_watching+0x12/0xc0 [ 147.404490][ T6776] do_syscall_64+0xcd/0x230 [ 147.404531][ T6776] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 147.404557][ T6776] RIP: 0033:0x7fc37378e169 [ 147.404580][ T6776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 147.404605][ T6776] RSP: 002b:00007fc374606038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 147.404632][ T6776] RAX: ffffffffffffffda RBX: 00007fc3739b5fa0 RCX: 00007fc37378e169 [ 147.404650][ T6776] RDX: 0000000000100085 RSI: 0000000000000000 RDI: 0000000000000003 [ 147.404665][ T6776] RBP: 00007fc373810a68 R08: 0000000000000000 R09: 0000000000000000 [ 147.404681][ T6776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 147.404696][ T6776] R13: 0000000000000000 R14: 00007fc3739b5fa0 R15: 00007fffa9d1fac8 [ 147.404730][ T6776] [ 147.704665][ C0] vkms_vblank_simulate: vblank timer overrun [ 149.026629][ T6793] netlink: 4 bytes leftover after parsing attributes in process `syz.1.181'. [ 149.340563][ T6803] i2c i2c-0: delete_device: Can't parse I2C address [ 150.748628][ T5152] Bluetooth: hci0: unexpected subevent 0x0e length: 122 > 15 [ 150.756135][ T5152] Bluetooth: hci0: Unable to find connection for dst ea:f8:1b:f4:ea:6d sid 0xde [ 151.673883][ T6840] FAULT_INJECTION: forcing a failure. [ 151.673883][ T6840] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 151.742901][ T6840] CPU: 0 UID: 0 PID: 6840 Comm: syz.3.196 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 151.742935][ T6840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 151.742948][ T6840] Call Trace: [ 151.742956][ T6840] [ 151.742965][ T6840] dump_stack_lvl+0x16c/0x1f0 [ 151.743000][ T6840] should_fail_ex+0x512/0x640 [ 151.743033][ T6840] should_fail_alloc_page+0xe7/0x130 [ 151.743065][ T6840] prepare_alloc_pages+0x3c2/0x610 [ 151.743105][ T6840] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 151.743150][ T6840] ? do_raw_spin_lock+0x12c/0x2b0 [ 151.743170][ T6840] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 151.743222][ T6840] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 151.743256][ T6840] ? policy_nodemask+0xea/0x4e0 [ 151.743289][ T6840] alloc_pages_mpol+0x1fb/0x550 [ 151.743319][ T6840] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 151.743349][ T6840] ? __mutex_trylock_common+0xe9/0x250 [ 151.743388][ T6840] alloc_pages_noprof+0x131/0x390 [ 151.743429][ T6840] get_free_pages_noprof+0xc/0x40 [ 151.743458][ T6840] usb_device_dump+0xcf/0x2460 [ 151.743494][ T6840] ? __mutex_lock+0x1ca/0xb90 [ 151.743536][ T6840] ? usb_device_read+0x1e9/0x320 [ 151.743572][ T6840] ? __pfx___mutex_lock+0x10/0x10 [ 151.743613][ T6840] ? idr_get_next+0xec/0x150 [ 151.743651][ T6840] usb_device_read+0x227/0x320 [ 151.743690][ T6840] ? __pfx_usb_device_read+0x10/0x10 [ 151.743725][ T6840] ? iovec_from_user+0xbb/0x140 [ 151.743754][ T6840] ? __debugfs_file_get+0x1fe/0x840 [ 151.743780][ T6840] ? __pfx___debugfs_file_get+0x10/0x10 [ 151.743818][ T6840] full_proxy_read+0x13c/0x200 [ 151.743845][ T6840] ? __pfx_full_proxy_read+0x10/0x10 [ 151.743872][ T6840] vfs_readv+0x6bc/0x8a0 [ 151.743892][ T6840] ? __pfx___mutex_trylock_common+0x10/0x10 [ 151.743933][ T6840] ? __pfx_vfs_readv+0x10/0x10 [ 151.743953][ T6840] ? __mutex_lock+0x1ca/0xb90 [ 151.743985][ T6840] ? __pfx___mutex_lock+0x10/0x10 [ 151.744024][ T6840] ? __fget_files+0x20e/0x3c0 [ 151.744043][ T6840] ? __fget_files+0x1f0/0x3c0 [ 151.744068][ T6840] ? do_readv+0x132/0x330 [ 151.744086][ T6840] do_readv+0x132/0x330 [ 151.744105][ T6840] ? __pfx_do_readv+0x10/0x10 [ 151.744122][ T6840] ? rcu_is_watching+0x12/0xc0 [ 151.744154][ T6840] do_syscall_64+0xcd/0x230 [ 151.744188][ T6840] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 151.744211][ T6840] RIP: 0033:0x7fa42ed8e169 [ 151.744229][ T6840] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 151.744248][ T6840] RSP: 002b:00007fa42cbf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 151.744269][ T6840] RAX: ffffffffffffffda RBX: 00007fa42efb5fa0 RCX: 00007fa42ed8e169 [ 151.744283][ T6840] RDX: 0000000000000006 RSI: 0000200000000040 RDI: 0000000000000003 [ 151.744295][ T6840] RBP: 00007fa42cbf6090 R08: 0000000000000000 R09: 0000000000000000 [ 151.744308][ T6840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 151.744320][ T6840] R13: 0000000000000000 R14: 00007fa42efb5fa0 R15: 00007ffc41872ca8 [ 151.744348][ T6840] [ 152.046214][ C0] vkms_vblank_simulate: vblank timer overrun [ 152.689350][ T6841] netlink: 186 bytes leftover after parsing attributes in process `syz.1.195'. [ 159.411657][ T6970] netlink: 'syz.1.226': attribute type 1 has an invalid length. [ 160.275918][ T6981] FAULT_INJECTION: forcing a failure. [ 160.275918][ T6981] name failslab, interval 1, probability 0, space 0, times 0 [ 160.302885][ T6981] CPU: 0 UID: 0 PID: 6981 Comm: syz.2.229 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 160.302923][ T6981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 160.302938][ T6981] Call Trace: [ 160.302946][ T6981] [ 160.302955][ T6981] dump_stack_lvl+0x16c/0x1f0 [ 160.302996][ T6981] should_fail_ex+0x512/0x640 [ 160.303025][ T6981] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 160.303059][ T6981] should_failslab+0xc2/0x120 [ 160.303090][ T6981] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 160.303121][ T6981] ? copy_signal+0x50/0x840 [ 160.303149][ T6981] ? _raw_spin_unlock_irq+0x23/0x50 [ 160.303182][ T6981] copy_signal+0x50/0x840 [ 160.303211][ T6981] copy_process+0x273f/0x91a0 [ 160.303241][ T6981] ? find_held_lock+0x2b/0x80 [ 160.303268][ T6981] ? schedule+0x2d7/0x3a0 [ 160.303316][ T6981] ? __pfx_copy_process+0x10/0x10 [ 160.303345][ T6981] ? __pfx___futex_wait+0x10/0x10 [ 160.303386][ T6981] ? __pfx_futex_wake_mark+0x10/0x10 [ 160.303425][ T6981] ? __pfx_blk_mq_flush_plug_list+0x10/0x10 [ 160.303462][ T6981] kernel_clone+0xfc/0x960 [ 160.303492][ T6981] ? __blk_flush_plug+0x2f3/0x4b0 [ 160.303519][ T6981] ? __pfx_kernel_clone+0x10/0x10 [ 160.303580][ T6981] __do_sys_clone+0xce/0x120 [ 160.303614][ T6981] ? __pfx___do_sys_clone+0x10/0x10 [ 160.303647][ T6981] ? __pfx___might_resched+0x10/0x10 [ 160.303691][ T6981] ? rcu_is_watching+0x12/0xc0 [ 160.303726][ T6981] do_syscall_64+0xcd/0x230 [ 160.303762][ T6981] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 160.303787][ T6981] RIP: 0033:0x7f4e9198e169 [ 160.303806][ T6981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 160.303830][ T6981] RSP: 002b:00007f4e92841038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 160.303854][ T6981] RAX: ffffffffffffffda RBX: 00007f4e91bb5fa0 RCX: 00007f4e9198e169 [ 160.303872][ T6981] RDX: 0000000000000000 RSI: 0000000000000081 RDI: 0000000000000002 [ 160.303887][ T6981] RBP: 00007f4e91a10a68 R08: 0000000000000003 R09: 0000000000000000 [ 160.303902][ T6981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 160.303916][ T6981] R13: 0000000000000000 R14: 00007f4e91bb5fa0 R15: 00007ffc7d9ae218 [ 160.303949][ T6981] [ 160.601634][ T6994] netlink: 186 bytes leftover after parsing attributes in process `syz.0.231'. [ 162.280687][ T7015] net_ratelimit: 69 callbacks suppressed [ 162.280708][ T7015] netlink: zone id is out of range [ 162.342157][ T7015] netlink: zone id is out of range [ 162.357611][ T7015] netlink: zone id is out of range [ 162.362770][ T7015] netlink: zone id is out of range [ 162.387550][ T7015] netlink: zone id is out of range [ 162.397729][ T7015] netlink: zone id is out of range [ 162.414672][ T7015] netlink: zone id is out of range [ 162.425133][ T7020] netlink: 48 bytes leftover after parsing attributes in process `syz.0.239'. [ 162.426472][ T7015] netlink: zone id is out of range [ 162.457651][ T7015] netlink: zone id is out of range [ 162.463047][ T7020] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(33554432.0.0), cmd(2) [ 162.464608][ T7015] netlink: zone id is out of range [ 162.585785][ T7027] FAULT_INJECTION: forcing a failure. [ 162.585785][ T7027] name failslab, interval 1, probability 0, space 0, times 0 [ 162.603450][ T7027] CPU: 1 UID: 0 PID: 7027 Comm: syz.0.241 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 162.603482][ T7027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 162.603494][ T7027] Call Trace: [ 162.603502][ T7027] [ 162.603510][ T7027] dump_stack_lvl+0x16c/0x1f0 [ 162.603545][ T7027] should_fail_ex+0x512/0x640 [ 162.603571][ T7027] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 162.603598][ T7027] should_failslab+0xc2/0x120 [ 162.603624][ T7027] __kmalloc_cache_noprof+0x6a/0x3e0 [ 162.603644][ T7027] ? trace_kmem_cache_alloc+0x28/0xc0 [ 162.603672][ T7027] ? kmem_cache_alloc_node_noprof+0x225/0x3b0 [ 162.603696][ T7027] ? blk_alloc_queue_stats+0x3f/0x110 [ 162.603731][ T7027] blk_alloc_queue_stats+0x3f/0x110 [ 162.603761][ T7027] blk_alloc_queue+0xda/0x760 [ 162.603780][ T7027] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 162.603810][ T7027] __blk_alloc_disk+0xa5/0x170 [ 162.603834][ T7027] ? __pfx___blk_alloc_disk+0x10/0x10 [ 162.603859][ T7027] ? __pfx___debug_object_init+0x10/0x10 [ 162.603906][ T7027] ? lockdep_init_map_type+0x5c/0x280 [ 162.603939][ T7027] ? lockdep_init_map_type+0x5c/0x280 [ 162.603974][ T7027] dm_create+0x4bf/0x1160 [ 162.604002][ T7027] dev_create+0x121/0x290 [ 162.604029][ T7027] ? __pfx_dev_create+0x10/0x10 [ 162.604065][ T7027] ctl_ioctl+0x6e7/0xd70 [ 162.604090][ T7027] ? __pfx_dev_create+0x10/0x10 [ 162.604118][ T7027] ? __pfx_ctl_ioctl+0x10/0x10 [ 162.604178][ T7027] ? __fget_files+0x20e/0x3c0 [ 162.604207][ T7027] dm_ctl_ioctl+0x22/0x30 [ 162.604231][ T7027] ? __pfx_dm_ctl_ioctl+0x10/0x10 [ 162.604256][ T7027] __x64_sys_ioctl+0x190/0x200 [ 162.604290][ T7027] do_syscall_64+0xcd/0x230 [ 162.604324][ T7027] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 162.604347][ T7027] RIP: 0033:0x7f7f6338e169 [ 162.604374][ T7027] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 162.604395][ T7027] RSP: 002b:00007f7f64195038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 162.604417][ T7027] RAX: ffffffffffffffda RBX: 00007f7f635b5fa0 RCX: 00007f7f6338e169 [ 162.604432][ T7027] RDX: 00002000000001c0 RSI: fffffffffffffd03 RDI: 0000000000000003 [ 162.604447][ T7027] RBP: 00007f7f64195090 R08: 0000000000000000 R09: 0000000000000000 [ 162.604460][ T7027] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 162.604474][ T7027] R13: 0000000000000000 R14: 00007f7f635b5fa0 R15: 00007ffc8cf877d8 [ 162.604505][ T7027] [ 162.850481][ C1] vkms_vblank_simulate: vblank timer overrun [ 163.185895][ T7035] i2c i2c-0: delete_device: Can't parse I2C address [ 164.221405][ T7068] mmap: syz.0.248 (7068) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 166.504541][ T7078] kexec: Could not allocate control_code_buffer [ 166.701728][ T5152] Bluetooth: hci0: unexpected subevent 0x0e length: 122 > 15 [ 166.709321][ T5152] Bluetooth: hci0: Unable to find connection for dst ea:f8:1b:f4:ea:6d sid 0xde [ 167.299872][ T7114] FAULT_INJECTION: forcing a failure. [ 167.299872][ T7114] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 167.411259][ T7114] CPU: 1 UID: 0 PID: 7114 Comm: syz.0.258 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 167.411296][ T7114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 167.411310][ T7114] Call Trace: [ 167.411318][ T7114] [ 167.411329][ T7114] dump_stack_lvl+0x16c/0x1f0 [ 167.411371][ T7114] should_fail_ex+0x512/0x640 [ 167.411405][ T7114] should_fail_alloc_page+0xe7/0x130 [ 167.411442][ T7114] prepare_alloc_pages+0x3c2/0x610 [ 167.411479][ T7114] ? rcu_is_watching+0x12/0xc0 [ 167.411510][ T7114] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 167.411542][ T7114] ? kasan_save_stack+0x33/0x60 [ 167.411573][ T7114] ? cgroup_rstat_updated+0x2a/0xb20 [ 167.411606][ T7114] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 167.411643][ T7114] ? lru_gen_add_folio+0x1a4/0xef0 [ 167.411680][ T7114] ? __lock_acquire+0x5ca/0x1ba0 [ 167.411715][ T7114] ? __lock_acquire+0x5ca/0x1ba0 [ 167.411747][ T7114] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 167.411783][ T7114] ? policy_nodemask+0xea/0x4e0 [ 167.411817][ T7114] alloc_pages_mpol+0x1fb/0x550 [ 167.411850][ T7114] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 167.411882][ T7114] ? __lock_acquire+0x5ca/0x1ba0 [ 167.411919][ T7114] folio_alloc_mpol_noprof+0x36/0x2f0 [ 167.411957][ T7114] vma_alloc_folio_noprof+0xed/0x1e0 [ 167.411996][ T7114] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 167.412070][ T7114] do_pte_missing+0x223d/0x3fb0 [ 167.412112][ T7114] __handle_mm_fault+0x103d/0x2a40 [ 167.412151][ T7114] ? __pfx___handle_mm_fault+0x10/0x10 [ 167.412178][ T7114] ? __pte_offset_map_lock+0x155/0x2f0 [ 167.412214][ T7114] ? find_held_lock+0x2b/0x80 [ 167.412237][ T7114] ? find_held_lock+0x2b/0x80 [ 167.412285][ T7114] handle_mm_fault+0x3fe/0xad0 [ 167.412318][ T7114] __get_user_pages+0x771/0x36f0 [ 167.412352][ T7114] ? __pfx_mt_find+0x10/0x10 [ 167.412388][ T7114] ? __pfx___get_user_pages+0x10/0x10 [ 167.412425][ T7114] populate_vma_page_range+0x278/0x3a0 [ 167.412452][ T7114] ? __pfx_populate_vma_page_range+0x10/0x10 [ 167.412477][ T7114] ? __pfx_find_vma_intersection+0x10/0x10 [ 167.412515][ T7114] ? do_mmap+0x69c/0x11b0 [ 167.412555][ T7114] __mm_populate+0x1d8/0x380 [ 167.412582][ T7114] ? __pfx___mm_populate+0x10/0x10 [ 167.412610][ T7114] ? up_write+0x1b2/0x520 [ 167.412649][ T7114] vm_mmap_pgoff+0x362/0x450 [ 167.412689][ T7114] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 167.412733][ T7114] ? __x64_sys_futex+0x1e0/0x4c0 [ 167.412759][ T7114] ? __x64_sys_futex+0x1e9/0x4c0 [ 167.412792][ T7114] ksys_mmap_pgoff+0x7d/0x5c0 [ 167.412828][ T7114] ? rcu_is_watching+0x12/0xc0 [ 167.412857][ T7114] __x64_sys_mmap+0x125/0x190 [ 167.412888][ T7114] do_syscall_64+0xcd/0x230 [ 167.412925][ T7114] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 167.412950][ T7114] RIP: 0033:0x7f7f6338e169 [ 167.412970][ T7114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 167.412993][ T7114] RSP: 002b:00007f7f64195038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 167.413023][ T7114] RAX: ffffffffffffffda RBX: 00007f7f635b5fa0 RCX: 00007f7f6338e169 [ 167.413041][ T7114] RDX: fffffffffffffffb RSI: 0000000000400008 RDI: 0000000000000000 [ 167.413057][ T7114] RBP: 00007f7f63410a68 R08: 0000000000000002 R09: 0000000000008000 [ 167.413072][ T7114] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 167.413088][ T7114] R13: 0000000000000000 R14: 00007f7f635b5fa0 R15: 00007ffc8cf877d8 [ 167.413122][ T7114] [ 169.486642][ T5850] Bluetooth: hci3: unexpected subevent 0x0e length: 122 > 15 [ 169.496376][ T5850] Bluetooth: hci3: Unable to find connection for dst ea:f8:1b:f4:ea:6d sid 0xde [ 169.744042][ T7153] i2c i2c-0: delete_device: Can't parse I2C address [ 172.167853][ T5152] Bluetooth: hci3: unexpected subevent 0x0e length: 122 > 15 [ 172.175345][ T5152] Bluetooth: hci3: Unable to find connection for dst ea:f8:1b:f4:ea:6d sid 0xde [ 174.296430][ T7209] FAULT_INJECTION: forcing a failure. [ 174.296430][ T7209] name fail_futex, interval 1, probability 0, space 0, times 0 [ 174.361025][ T7209] CPU: 0 UID: 0 PID: 7209 Comm: syz.1.280 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 174.361062][ T7209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 174.361076][ T7209] Call Trace: [ 174.361084][ T7209] [ 174.361093][ T7209] dump_stack_lvl+0x16c/0x1f0 [ 174.361133][ T7209] should_fail_ex+0x512/0x640 [ 174.361166][ T7209] get_futex_key+0x49e/0x1000 [ 174.361198][ T7209] ? __pfx_get_futex_key+0x10/0x10 [ 174.361225][ T7209] ? cgroup_rstat_updated+0x2a/0xb20 [ 174.361261][ T7209] futex_wake+0xe7/0x4e0 [ 174.361290][ T7209] ? __up_read+0x1f8/0x750 [ 174.361323][ T7209] ? __pfx_futex_wake+0x10/0x10 [ 174.361352][ T7209] ? do_user_addr_fault+0x829/0x1370 [ 174.361385][ T7209] ? do_user_addr_fault+0x843/0x1370 [ 174.361414][ T7209] do_futex+0x1e3/0x350 [ 174.361442][ T7209] ? __pfx_do_futex+0x10/0x10 [ 174.361467][ T7209] ? irqentry_exit+0x3b/0x90 [ 174.361496][ T7209] ? lockdep_hardirqs_on+0x7c/0x110 [ 174.361534][ T7209] __x64_sys_futex+0x1e0/0x4c0 [ 174.361563][ T7209] ? arch_syscall_is_vdso_sigreturn+0xb6/0x230 [ 174.361589][ T7209] ? __pfx___x64_sys_futex+0x10/0x10 [ 174.361617][ T7209] ? syscall_user_dispatch+0x78/0x140 [ 174.361659][ T7209] do_syscall_64+0xcd/0x230 [ 174.361701][ T7209] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 174.361726][ T7209] RIP: 0033:0x7fc37378e169 [ 174.361746][ T7209] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 174.361770][ T7209] RSP: 002b:00007fc3746060e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 174.361793][ T7209] RAX: ffffffffffffffda RBX: 00007fc3739b5fa8 RCX: 00007fc37378e169 [ 174.361810][ T7209] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc3739b5fac [ 174.361826][ T7209] RBP: 00007fc3739b5fa0 R08: 00007fc374607000 R09: 0000000000000000 [ 174.361841][ T7209] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc3739b5fac [ 174.361856][ T7209] R13: 0000000000000000 R14: 00007fffa9d1f9e0 R15: 00007fffa9d1fac8 [ 174.361888][ T7209] [ 174.569924][ C0] vkms_vblank_simulate: vblank timer overrun [ 175.872038][ T7225] i2c i2c-0: delete_device: Can't parse I2C address [ 175.921458][ T7218] netlink: 186 bytes leftover after parsing attributes in process `syz.2.282'. [ 177.239385][ T7230] netlink: 8 bytes leftover after parsing attributes in process `syz.0.285'. [ 177.317753][ T7230] netlink: 8 bytes leftover after parsing attributes in process `syz.0.285'. [ 178.164483][ T7250] FAULT_INJECTION: forcing a failure. [ 178.164483][ T7250] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 178.293630][ T7250] CPU: 1 UID: 0 PID: 7250 Comm: syz.2.293 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 178.293668][ T7250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 178.293683][ T7250] Call Trace: [ 178.293691][ T7250] [ 178.293702][ T7250] dump_stack_lvl+0x16c/0x1f0 [ 178.293744][ T7250] should_fail_ex+0x512/0x640 [ 178.293779][ T7250] should_fail_alloc_page+0xe7/0x130 [ 178.293816][ T7250] prepare_alloc_pages+0x3c2/0x610 [ 178.293855][ T7250] ? rcu_is_watching+0x12/0xc0 [ 178.293885][ T7250] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 178.293917][ T7250] ? kasan_save_stack+0x33/0x60 [ 178.293947][ T7250] ? cgroup_rstat_updated+0x2a/0xb20 [ 178.293977][ T7250] ? rcu_is_watching+0x12/0xc0 [ 178.294002][ T7250] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 178.294032][ T7250] ? __mod_zone_page_state+0xcc/0x1a0 [ 178.294062][ T7250] ? lru_gen_add_folio+0x1a4/0xef0 [ 178.294099][ T7250] ? __lock_acquire+0x5ca/0x1ba0 [ 178.294137][ T7250] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 178.294185][ T7250] ? policy_nodemask+0xea/0x4e0 [ 178.294221][ T7250] alloc_pages_mpol+0x1fb/0x550 [ 178.294255][ T7250] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 178.294288][ T7250] ? __lock_acquire+0x5ca/0x1ba0 [ 178.294328][ T7250] folio_alloc_mpol_noprof+0x36/0x2f0 [ 178.294365][ T7250] vma_alloc_folio_noprof+0xed/0x1e0 [ 178.294400][ T7250] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 178.294444][ T7250] do_pte_missing+0x223d/0x3fb0 [ 178.294484][ T7250] __handle_mm_fault+0x103d/0x2a40 [ 178.294520][ T7250] ? __pfx___handle_mm_fault+0x10/0x10 [ 178.294545][ T7250] ? __pte_offset_map_lock+0x155/0x2f0 [ 178.294581][ T7250] ? find_held_lock+0x2b/0x80 [ 178.294604][ T7250] ? find_held_lock+0x2b/0x80 [ 178.294652][ T7250] handle_mm_fault+0x3fe/0xad0 [ 178.294685][ T7250] __get_user_pages+0x771/0x36f0 [ 178.294718][ T7250] ? __pfx_mt_find+0x10/0x10 [ 178.294755][ T7250] ? __pfx___get_user_pages+0x10/0x10 [ 178.294791][ T7250] populate_vma_page_range+0x278/0x3a0 [ 178.294820][ T7250] ? __pfx_populate_vma_page_range+0x10/0x10 [ 178.294844][ T7250] ? __pfx_find_vma_intersection+0x10/0x10 [ 178.294882][ T7250] ? do_mmap+0x69c/0x11b0 [ 178.294921][ T7250] __mm_populate+0x1d8/0x380 [ 178.294948][ T7250] ? __pfx___mm_populate+0x10/0x10 [ 178.294976][ T7250] ? up_write+0x1b2/0x520 [ 178.295038][ T7250] vm_mmap_pgoff+0x362/0x450 [ 178.295082][ T7250] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 178.295127][ T7250] ? __x64_sys_futex+0x1e0/0x4c0 [ 178.295152][ T7250] ? __x64_sys_futex+0x1e9/0x4c0 [ 178.295192][ T7250] ksys_mmap_pgoff+0x7d/0x5c0 [ 178.295230][ T7250] ? rcu_is_watching+0x12/0xc0 [ 178.295260][ T7250] __x64_sys_mmap+0x125/0x190 [ 178.295292][ T7250] do_syscall_64+0xcd/0x230 [ 178.295326][ T7250] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 178.295350][ T7250] RIP: 0033:0x7f4e9198e169 [ 178.295372][ T7250] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 178.295395][ T7250] RSP: 002b:00007f4e92841038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 178.295417][ T7250] RAX: ffffffffffffffda RBX: 00007f4e91bb5fa0 RCX: 00007f4e9198e169 [ 178.295434][ T7250] RDX: fffffffffffffffb RSI: 0000000000400008 RDI: 0000000000000000 [ 178.295449][ T7250] RBP: 00007f4e91a10a68 R08: 0000000000000002 R09: 0000000000008000 [ 178.295463][ T7250] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 178.295478][ T7250] R13: 0000000000000000 R14: 00007f4e91bb5fa0 R15: 00007ffc7d9ae218 [ 178.295511][ T7250] [ 179.424121][ T7254] netlink: 186 bytes leftover after parsing attributes in process `syz.1.294'. [ 181.442269][ T7289] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„ [ 181.995967][ T30] audit: type=1800 audit(6040340450.608:3): pid=7293 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.297" name="SYSV0000000a" dev="hugetlbfs" ino=0 res=0 errno=0 [ 182.337754][ T7296] FAULT_INJECTION: forcing a failure. [ 182.337754][ T7296] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 182.388438][ T7296] CPU: 1 UID: 0 PID: 7296 Comm: syz.3.300 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 182.388472][ T7296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 182.388484][ T7296] Call Trace: [ 182.388491][ T7296] [ 182.388503][ T7296] dump_stack_lvl+0x16c/0x1f0 [ 182.388538][ T7296] should_fail_ex+0x512/0x640 [ 182.388568][ T7296] should_fail_alloc_page+0xe7/0x130 [ 182.388599][ T7296] prepare_alloc_pages+0x3c2/0x610 [ 182.388631][ T7296] ? look_up_lock_class+0x6b/0x150 [ 182.388662][ T7296] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 182.388696][ T7296] ? __lock_acquire+0xaa4/0x1ba0 [ 182.388734][ T7296] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 182.388775][ T7296] ? find_held_lock+0x2b/0x80 [ 182.388799][ T7296] ? process_measurement+0x4a6/0x23e0 [ 182.388829][ T7296] ? down_write+0x14d/0x200 [ 182.388860][ T7296] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 182.388895][ T7296] ? policy_nodemask+0xea/0x4e0 [ 182.388925][ T7296] alloc_pages_mpol+0x1fb/0x550 [ 182.388955][ T7296] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 182.388991][ T7296] alloc_pages_noprof+0x131/0x390 [ 182.389019][ T7296] __pmd_alloc+0x3f/0x870 [ 182.389047][ T7296] ? find_held_lock+0x2b/0x80 [ 182.389075][ T7296] __handle_mm_fault+0x948/0x2a40 [ 182.389111][ T7296] ? __pfx___handle_mm_fault+0x10/0x10 [ 182.389157][ T7296] ? find_vma+0xbf/0x140 [ 182.389187][ T7296] ? __pfx_find_vma+0x10/0x10 [ 182.389220][ T7296] handle_mm_fault+0x3fe/0xad0 [ 182.389250][ T7296] do_user_addr_fault+0x7a6/0x1370 [ 182.389279][ T7296] ? rcu_is_watching+0x12/0xc0 [ 182.389304][ T7296] exc_page_fault+0x5c/0xc0 [ 182.389334][ T7296] asm_exc_page_fault+0x26/0x30 [ 182.389356][ T7296] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 182.389381][ T7296] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 182.389402][ T7296] RSP: 0018:ffffc90003057bb0 EFLAGS: 00050206 [ 182.389421][ T7296] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000001000 [ 182.389435][ T7296] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88803559c000 [ 182.389449][ T7296] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed1006ab39ff [ 182.389463][ T7296] R10: ffff88803559cfff R11: 0000000000000000 R12: 0000000000000000 [ 182.389476][ T7296] R13: ffffc90003057da0 R14: 0000000000001000 R15: ffff88803559c000 [ 182.389510][ T7296] _copy_from_iter+0x391/0x15b0 [ 182.389548][ T7296] ? __pfx__copy_from_iter+0x10/0x10 [ 182.389578][ T7296] ? rcu_is_watching+0x12/0xc0 [ 182.389601][ T7296] ? trace_kmalloc+0x2b/0xd0 [ 182.389630][ T7296] ? __kmalloc_noprof+0x242/0x510 [ 182.389666][ T7296] kernfs_fop_write_iter+0x19a/0x510 [ 182.389702][ T7296] vfs_write+0x5ba/0x1180 [ 182.389728][ T7296] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 182.389759][ T7296] ? __pfx___mutex_lock+0x10/0x10 [ 182.389789][ T7296] ? __pfx_vfs_write+0x10/0x10 [ 182.389837][ T7296] ksys_write+0x12a/0x240 [ 182.389861][ T7296] ? __pfx_ksys_write+0x10/0x10 [ 182.389882][ T7296] ? rcu_is_watching+0x12/0xc0 [ 182.389916][ T7296] do_syscall_64+0xcd/0x230 [ 182.389951][ T7296] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 182.389973][ T7296] RIP: 0033:0x7fa42ed8e169 [ 182.389990][ T7296] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 182.390010][ T7296] RSP: 002b:00007fa42cbf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 182.390029][ T7296] RAX: ffffffffffffffda RBX: 00007fa42efb5fa0 RCX: 00007fa42ed8e169 [ 182.390045][ T7296] RDX: 000000001c61fe90 RSI: 0000000000000000 RDI: 0000000000000004 [ 182.390059][ T7296] RBP: 00007fa42cbf6090 R08: 0000000000000000 R09: 0000000000000000 [ 182.390081][ T7296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 182.390094][ T7296] R13: 0000000000000000 R14: 00007fa42efb5fa0 R15: 00007ffc41872ca8 [ 182.390127][ T7296] [ 185.895998][ T7346] FAULT_INJECTION: forcing a failure. [ 185.895998][ T7346] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 185.910304][ T7348] FAULT_INJECTION: forcing a failure. [ 185.910304][ T7348] name fail_futex, interval 1, probability 0, space 0, times 0 [ 185.946292][ T7348] CPU: 1 UID: 0 PID: 7348 Comm: syz.0.313 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 185.946328][ T7348] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 185.946342][ T7348] Call Trace: [ 185.946350][ T7348] [ 185.946359][ T7348] dump_stack_lvl+0x16c/0x1f0 [ 185.946399][ T7348] should_fail_ex+0x512/0x640 [ 185.946428][ T7348] ? kasan_save_track+0x14/0x30 [ 185.946458][ T7348] get_futex_key+0x49e/0x1000 [ 185.946484][ T7348] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 185.946514][ T7348] ? __pfx_get_futex_key+0x10/0x10 [ 185.946555][ T7348] futex_wake+0xe7/0x4e0 [ 185.946599][ T7348] ? __pfx_futex_wake+0x10/0x10 [ 185.946638][ T7348] ? rcu_is_watching+0x12/0xc0 [ 185.946665][ T7348] do_futex+0x1e3/0x350 [ 185.946693][ T7348] ? __pfx_do_futex+0x10/0x10 [ 185.946723][ T7348] ? putname+0x154/0x1a0 [ 185.946759][ T7348] __x64_sys_futex+0x1e0/0x4c0 [ 185.946791][ T7348] ? __pfx___x64_sys_futex+0x10/0x10 [ 185.946818][ T7348] ? syscall_user_dispatch+0x78/0x140 [ 185.946863][ T7348] do_syscall_64+0xcd/0x230 [ 185.946898][ T7348] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 185.946922][ T7348] RIP: 0033:0x7f7f6338e169 [ 185.946942][ T7348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 185.946964][ T7348] RSP: 002b:00007f7f641950e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 185.946986][ T7348] RAX: ffffffffffffffda RBX: 00007f7f635b5fa8 RCX: 00007f7f6338e169 [ 185.947003][ T7348] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7f635b5fac [ 185.947018][ T7348] RBP: 00007f7f635b5fa0 R08: 00007f7f64196000 R09: 0000000000000000 [ 185.947034][ T7348] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f7f635b5fac [ 185.947048][ T7348] R13: 0000000000000000 R14: 00007ffc8cf876f0 R15: 00007ffc8cf877d8 [ 185.947078][ T7348] [ 186.133358][ C1] vkms_vblank_simulate: vblank timer overrun [ 186.245760][ T7346] CPU: 0 UID: 0 PID: 7346 Comm: syz.2.311 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 186.245813][ T7346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 186.245843][ T7346] Call Trace: [ 186.245859][ T7346] [ 186.245869][ T7346] dump_stack_lvl+0x16c/0x1f0 [ 186.245924][ T7346] should_fail_ex+0x512/0x640 [ 186.245967][ T7346] should_fail_alloc_page+0xe7/0x130 [ 186.246004][ T7346] prepare_alloc_pages+0x3c2/0x610 [ 186.246042][ T7346] ? rcu_is_watching+0x12/0xc0 [ 186.246071][ T7346] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 186.246110][ T7346] ? __lock_acquire+0x5ca/0x1ba0 [ 186.246155][ T7346] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 186.246201][ T7346] ? __lock_acquire+0x5ca/0x1ba0 [ 186.246236][ T7346] ? __lock_acquire+0x5ca/0x1ba0 [ 186.246268][ T7346] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 186.246305][ T7346] ? policy_nodemask+0xea/0x4e0 [ 186.246338][ T7346] alloc_pages_mpol+0x1fb/0x550 [ 186.246371][ T7346] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 186.246402][ T7346] ? __lock_acquire+0x5ca/0x1ba0 [ 186.246440][ T7346] folio_alloc_mpol_noprof+0x36/0x2f0 [ 186.246477][ T7346] vma_alloc_folio_noprof+0xed/0x1e0 [ 186.246512][ T7346] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 186.246556][ T7346] do_pte_missing+0x223d/0x3fb0 [ 186.246595][ T7346] __handle_mm_fault+0x103d/0x2a40 [ 186.246641][ T7346] ? __pfx___handle_mm_fault+0x10/0x10 [ 186.246667][ T7346] ? __pte_offset_map_lock+0x155/0x2f0 [ 186.246719][ T7346] ? find_held_lock+0x2b/0x80 [ 186.246743][ T7346] ? find_held_lock+0x2b/0x80 [ 186.246801][ T7346] handle_mm_fault+0x3fe/0xad0 [ 186.246835][ T7346] __get_user_pages+0x771/0x36f0 [ 186.246870][ T7346] ? __pfx_mt_find+0x10/0x10 [ 186.246907][ T7346] ? __pfx___get_user_pages+0x10/0x10 [ 186.246944][ T7346] populate_vma_page_range+0x278/0x3a0 [ 186.246974][ T7346] ? __pfx_populate_vma_page_range+0x10/0x10 [ 186.246998][ T7346] ? __pfx_find_vma_intersection+0x10/0x10 [ 186.247036][ T7346] ? do_mmap+0x69c/0x11b0 [ 186.247075][ T7346] __mm_populate+0x1d8/0x380 [ 186.247102][ T7346] ? __pfx___mm_populate+0x10/0x10 [ 186.247131][ T7346] ? up_write+0x1b2/0x520 [ 186.247169][ T7346] vm_mmap_pgoff+0x362/0x450 [ 186.247210][ T7346] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 186.247253][ T7346] ? __x64_sys_futex+0x1e0/0x4c0 [ 186.247279][ T7346] ? __x64_sys_futex+0x1e9/0x4c0 [ 186.247311][ T7346] ksys_mmap_pgoff+0x7d/0x5c0 [ 186.247347][ T7346] ? rcu_is_watching+0x12/0xc0 [ 186.247375][ T7346] __x64_sys_mmap+0x125/0x190 [ 186.247406][ T7346] do_syscall_64+0xcd/0x230 [ 186.247445][ T7346] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 186.247469][ T7346] RIP: 0033:0x7f4e9198e169 [ 186.247487][ T7346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 186.247510][ T7346] RSP: 002b:00007f4e92841038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 186.247533][ T7346] RAX: ffffffffffffffda RBX: 00007f4e91bb5fa0 RCX: 00007f4e9198e169 [ 186.247548][ T7346] RDX: fffffffffffffffb RSI: 0000000000400008 RDI: 0000000000000000 [ 186.247563][ T7346] RBP: 00007f4e91a10a68 R08: 0000000000000002 R09: 0000000000008000 [ 186.247578][ T7346] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 186.247591][ T7346] R13: 0000000000000000 R14: 00007f4e91bb5fa0 R15: 00007ffc7d9ae218 [ 186.247624][ T7346] [ 187.313494][ T30] audit: type=1800 audit(6040340455.978:4): pid=7353 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.314" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0 [ 188.152456][ T7384] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 188.200081][ T7385] netlink: 338 bytes leftover after parsing attributes in process `syz.1.321'. [ 188.350038][ T7384] netlink: 338 bytes leftover after parsing attributes in process `syz.1.321'. [ 189.272276][ T7408] process 'syz.3.327' launched '/dev/fd/6' with NULL argv: empty string added [ 189.485979][ T7412] FAULT_INJECTION: forcing a failure. [ 189.485979][ T7412] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 189.509688][ T7412] CPU: 0 UID: 0 PID: 7412 Comm: syz.3.329 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 189.509723][ T7412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 189.509738][ T7412] Call Trace: [ 189.509746][ T7412] [ 189.509755][ T7412] dump_stack_lvl+0x16c/0x1f0 [ 189.509796][ T7412] should_fail_ex+0x512/0x640 [ 189.509830][ T7412] should_fail_alloc_page+0xe7/0x130 [ 189.509864][ T7412] prepare_alloc_pages+0x3c2/0x610 [ 189.509904][ T7412] ? rcu_is_watching+0x12/0xc0 [ 189.509932][ T7412] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 189.509964][ T7412] ? kasan_save_stack+0x33/0x60 [ 189.509994][ T7412] ? cgroup_rstat_updated+0x2a/0xb20 [ 189.510022][ T7412] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 189.510057][ T7412] ? lru_gen_add_folio+0x1a4/0xef0 [ 189.510091][ T7412] ? __lock_acquire+0x5ca/0x1ba0 [ 189.510124][ T7412] ? __lock_acquire+0x5ca/0x1ba0 [ 189.510153][ T7412] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 189.510188][ T7412] ? policy_nodemask+0xea/0x4e0 [ 189.510221][ T7412] alloc_pages_mpol+0x1fb/0x550 [ 189.510253][ T7412] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 189.510284][ T7412] ? __lock_acquire+0x5ca/0x1ba0 [ 189.510333][ T7412] folio_alloc_mpol_noprof+0x36/0x2f0 [ 189.510368][ T7412] vma_alloc_folio_noprof+0xed/0x1e0 [ 189.510402][ T7412] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 189.510446][ T7412] do_pte_missing+0x223d/0x3fb0 [ 189.510484][ T7412] __handle_mm_fault+0x103d/0x2a40 [ 189.510519][ T7412] ? __pfx___handle_mm_fault+0x10/0x10 [ 189.510541][ T7412] ? __pte_offset_map_lock+0x155/0x2f0 [ 189.510572][ T7412] ? find_held_lock+0x2b/0x80 [ 189.510592][ T7412] ? find_held_lock+0x2b/0x80 [ 189.510634][ T7412] handle_mm_fault+0x3fe/0xad0 [ 189.510666][ T7412] __get_user_pages+0x771/0x36f0 [ 189.510698][ T7412] ? __pfx_mt_find+0x10/0x10 [ 189.510732][ T7412] ? __pfx___get_user_pages+0x10/0x10 [ 189.510768][ T7412] populate_vma_page_range+0x278/0x3a0 [ 189.510796][ T7412] ? __pfx_populate_vma_page_range+0x10/0x10 [ 189.510820][ T7412] ? __pfx_find_vma_intersection+0x10/0x10 [ 189.510855][ T7412] ? do_mmap+0x69c/0x11b0 [ 189.510893][ T7412] __mm_populate+0x1d8/0x380 [ 189.510919][ T7412] ? __pfx___mm_populate+0x10/0x10 [ 189.510947][ T7412] ? up_write+0x1b2/0x520 [ 189.510984][ T7412] vm_mmap_pgoff+0x362/0x450 [ 189.511023][ T7412] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 189.511065][ T7412] ? __x64_sys_futex+0x1e0/0x4c0 [ 189.511090][ T7412] ? __x64_sys_futex+0x1e9/0x4c0 [ 189.511122][ T7412] ksys_mmap_pgoff+0x7d/0x5c0 [ 189.511158][ T7412] ? rcu_is_watching+0x12/0xc0 [ 189.511187][ T7412] __x64_sys_mmap+0x125/0x190 [ 189.511218][ T7412] do_syscall_64+0xcd/0x230 [ 189.511255][ T7412] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 189.511280][ T7412] RIP: 0033:0x7fa42ed8e169 [ 189.511309][ T7412] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 189.511333][ T7412] RSP: 002b:00007fa42cbf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 189.511357][ T7412] RAX: ffffffffffffffda RBX: 00007fa42efb5fa0 RCX: 00007fa42ed8e169 [ 189.511374][ T7412] RDX: fffffffffffffffb RSI: 0000000000400008 RDI: 0000000000000000 [ 189.511389][ T7412] RBP: 00007fa42ee10a68 R08: 0000000000000002 R09: 0000000000008000 [ 189.511403][ T7412] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 189.511417][ T7412] R13: 0000000000000000 R14: 00007fa42efb5fa0 R15: 00007ffc41872ca8 [ 189.511448][ T7412] [ 190.144269][ T7406] netlink: 186 bytes leftover after parsing attributes in process `syz.2.326'. [ 190.685850][ T7431] i2c i2c-0: delete_device: Can't parse I2C address [ 190.788619][ T7433] net_ratelimit: 62 callbacks suppressed [ 190.788639][ T7433] netlink: zone id is out of range [ 190.879981][ T7433] netlink: zone id is out of range [ 190.885212][ T7433] netlink: zone id is out of range [ 190.890982][ T7433] netlink: zone id is out of range [ 190.896202][ T7433] netlink: zone id is out of range [ 190.902513][ T7433] netlink: zone id is out of range [ 190.911636][ T7433] netlink: zone id is out of range [ 190.924412][ T7433] netlink: zone id is out of range [ 190.956516][ T7433] netlink: zone id is out of range [ 191.005824][ T7433] netlink: zone id is out of range [ 193.291441][ T7485] FAULT_INJECTION: forcing a failure. [ 193.291441][ T7485] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 193.307516][ T7485] CPU: 1 UID: 0 PID: 7485 Comm: syz.1.344 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 193.307550][ T7485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 193.307565][ T7485] Call Trace: [ 193.307573][ T7485] [ 193.307583][ T7485] dump_stack_lvl+0x16c/0x1f0 [ 193.307625][ T7485] should_fail_ex+0x512/0x640 [ 193.307660][ T7485] should_fail_alloc_page+0xe7/0x130 [ 193.307696][ T7485] prepare_alloc_pages+0x3c2/0x610 [ 193.307736][ T7485] ? rcu_is_watching+0x12/0xc0 [ 193.307766][ T7485] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 193.307803][ T7485] ? lock_acquire+0x179/0x350 [ 193.307834][ T7485] ? find_held_lock+0x2b/0x80 [ 193.307866][ T7485] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 193.307899][ T7485] ? finish_task_switch.isra.0+0x221/0xc10 [ 193.307927][ T7485] ? rcu_is_watching+0x12/0xc0 [ 193.307957][ T7485] ? __lock_acquire+0x5ca/0x1ba0 [ 193.307991][ T7485] ? __lock_acquire+0x5ca/0x1ba0 [ 193.308024][ T7485] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 193.308067][ T7485] ? policy_nodemask+0xea/0x4e0 [ 193.308104][ T7485] alloc_pages_mpol+0x1fb/0x550 [ 193.308139][ T7485] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 193.308172][ T7485] ? __lock_acquire+0x5ca/0x1ba0 [ 193.308211][ T7485] folio_alloc_mpol_noprof+0x36/0x2f0 [ 193.308250][ T7485] vma_alloc_folio_noprof+0xed/0x1e0 [ 193.308285][ T7485] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 193.308331][ T7485] do_pte_missing+0x223d/0x3fb0 [ 193.308371][ T7485] __handle_mm_fault+0x103d/0x2a40 [ 193.308409][ T7485] ? __pfx___handle_mm_fault+0x10/0x10 [ 193.308434][ T7485] ? __pte_offset_map_lock+0x155/0x2f0 [ 193.308469][ T7485] ? find_held_lock+0x2b/0x80 [ 193.308493][ T7485] ? find_held_lock+0x2b/0x80 [ 193.308542][ T7485] handle_mm_fault+0x3fe/0xad0 [ 193.308575][ T7485] __get_user_pages+0x771/0x36f0 [ 193.308609][ T7485] ? __pfx_mt_find+0x10/0x10 [ 193.308645][ T7485] ? __pfx___get_user_pages+0x10/0x10 [ 193.308683][ T7485] populate_vma_page_range+0x278/0x3a0 [ 193.308711][ T7485] ? __pfx_populate_vma_page_range+0x10/0x10 [ 193.308736][ T7485] ? __pfx_find_vma_intersection+0x10/0x10 [ 193.308774][ T7485] ? do_mmap+0x69c/0x11b0 [ 193.308814][ T7485] __mm_populate+0x1d8/0x380 [ 193.308838][ T7485] ? __pfx___mm_populate+0x10/0x10 [ 193.308861][ T7485] ? up_write+0x1b2/0x520 [ 193.308894][ T7485] vm_mmap_pgoff+0x362/0x450 [ 193.308929][ T7485] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 193.308966][ T7485] ? __x64_sys_futex+0x1e0/0x4c0 [ 193.308991][ T7485] ? __x64_sys_futex+0x1e9/0x4c0 [ 193.309023][ T7485] ksys_mmap_pgoff+0x7d/0x5c0 [ 193.309056][ T7485] ? rcu_is_watching+0x12/0xc0 [ 193.309092][ T7485] __x64_sys_mmap+0x125/0x190 [ 193.309121][ T7485] do_syscall_64+0xcd/0x230 [ 193.309155][ T7485] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 193.309176][ T7485] RIP: 0033:0x7fc37378e169 [ 193.309194][ T7485] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 193.309217][ T7485] RSP: 002b:00007fc374606038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 193.309241][ T7485] RAX: ffffffffffffffda RBX: 00007fc3739b5fa0 RCX: 00007fc37378e169 [ 193.309258][ T7485] RDX: fffffffffffffffb RSI: 0000000000400008 RDI: 0000000000000000 [ 193.309289][ T7485] RBP: 00007fc373810a68 R08: 0000000000000002 R09: 0000000000008000 [ 193.309388][ T7485] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 193.309413][ T7485] R13: 0000000000000000 R14: 00007fc3739b5fa0 R15: 00007fffa9d1fac8 [ 193.309446][ T7485] [ 193.658365][ C1] vkms_vblank_simulate: vblank timer overrun [ 194.385719][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.397626][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.337331][ T7499] FAULT_INJECTION: forcing a failure. [ 195.337331][ T7499] name fail_futex, interval 1, probability 0, space 0, times 0 [ 195.467091][ T7499] CPU: 0 UID: 0 PID: 7499 Comm: syz.1.347 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 195.467128][ T7499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 195.467141][ T7499] Call Trace: [ 195.467149][ T7499] [ 195.467160][ T7499] dump_stack_lvl+0x16c/0x1f0 [ 195.467200][ T7499] should_fail_ex+0x512/0x640 [ 195.467223][ T7499] get_futex_key+0x49e/0x1000 [ 195.467241][ T7499] ? __pfx_get_futex_key+0x10/0x10 [ 195.467258][ T7499] ? folio_unlock+0x7d/0xd0 [ 195.467278][ T7499] futex_wait_setup+0x78/0x290 [ 195.467315][ T7499] __futex_wait+0x266/0x3c0 [ 195.467346][ T7499] ? __pfx___futex_wait+0x10/0x10 [ 195.467382][ T7499] ? __pfx_futex_wake_mark+0x10/0x10 [ 195.467431][ T7499] futex_wait+0xe8/0x380 [ 195.467461][ T7499] ? __pfx_futex_wait+0x10/0x10 [ 195.467503][ T7499] ? do_user_addr_fault+0x843/0x1370 [ 195.467531][ T7499] do_futex+0x229/0x350 [ 195.467556][ T7499] ? __pfx_do_futex+0x10/0x10 [ 195.467580][ T7499] ? irqentry_exit+0x3b/0x90 [ 195.467608][ T7499] ? lockdep_hardirqs_on+0x7c/0x110 [ 195.467646][ T7499] __x64_sys_futex+0x1e0/0x4c0 [ 195.467676][ T7499] ? arch_syscall_is_vdso_sigreturn+0xb6/0x230 [ 195.467702][ T7499] ? __pfx___x64_sys_futex+0x10/0x10 [ 195.467730][ T7499] ? syscall_user_dispatch+0x78/0x140 [ 195.467773][ T7499] do_syscall_64+0xcd/0x230 [ 195.467826][ T7499] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 195.467851][ T7499] RIP: 0033:0x7fc37378e169 [ 195.467866][ T7499] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 195.467879][ T7499] RSP: 002b:00007fc3746060e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 195.467893][ T7499] RAX: ffffffffffffffda RBX: 00007fc3739b5fa8 RCX: 00007fc37378e169 [ 195.467903][ T7499] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fc3739b5fa8 [ 195.467911][ T7499] RBP: 00007fc3739b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 195.467920][ T7499] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc3739b5fac [ 195.467928][ T7499] R13: 0000000000000000 R14: 00007fffa9d1f9e0 R15: 00007fffa9d1fac8 [ 195.467945][ T7499] [ 197.153470][ T7524] snd_virmidi snd_virmidi.0: control 8:131081:3:IAªƒ>/Æ[k<÷ÎÇmgx­Ž¬<Ú57dÀ6Cî°ÿÈÝ:129 is already present [ 201.110221][ T7551] FAULT_INJECTION: forcing a failure. [ 201.110221][ T7551] name failslab, interval 1, probability 0, space 0, times 0 [ 201.157607][ T7551] CPU: 0 UID: 0 PID: 7551 Comm: syz.0.356 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 201.157644][ T7551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 201.157659][ T7551] Call Trace: [ 201.157667][ T7551] [ 201.157676][ T7551] dump_stack_lvl+0x16c/0x1f0 [ 201.157715][ T7551] should_fail_ex+0x512/0x640 [ 201.157742][ T7551] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 201.157773][ T7551] should_failslab+0xc2/0x120 [ 201.157804][ T7551] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 201.157832][ T7551] ? mas_alloc_nodes+0x18b/0x8b0 [ 201.157865][ T7551] mas_alloc_nodes+0x18b/0x8b0 [ 201.157902][ T7551] mas_node_count_gfp+0x105/0x130 [ 201.157935][ T7551] mas_preallocate+0x53e/0xcd0 [ 201.157965][ T7551] ? __pfx_mas_preallocate+0x10/0x10 [ 201.157999][ T7551] ? vm_area_alloc+0x1f/0x160 [ 201.158029][ T7551] ? lockdep_init_map_type+0x5c/0x280 [ 201.158070][ T7551] __mmap_region+0x139b/0x27c0 [ 201.158103][ T7551] ? __pfx___mmap_region+0x10/0x10 [ 201.158129][ T7551] ? finish_task_switch.isra.0+0x221/0xc10 [ 201.158159][ T7551] ? __schedule+0x1186/0x5de0 [ 201.158238][ T7551] ? trace_cap_capable+0x18d/0x200 [ 201.158265][ T7551] ? cap_capable+0xb3/0x250 [ 201.158290][ T7551] mmap_region+0x1ab/0x3f0 [ 201.158325][ T7551] do_mmap+0xd8e/0x11b0 [ 201.158377][ T7551] ? __pfx_do_mmap+0x10/0x10 [ 201.158418][ T7551] ? __pfx_down_write_killable+0x10/0x10 [ 201.158464][ T7551] vm_mmap_pgoff+0x281/0x450 [ 201.158508][ T7551] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 201.158541][ T7551] ? putname+0x154/0x1a0 [ 201.158577][ T7551] ? __x64_sys_futex+0x1e0/0x4c0 [ 201.158604][ T7551] ? __x64_sys_futex+0x1e9/0x4c0 [ 201.158637][ T7551] ksys_mmap_pgoff+0x7d/0x5c0 [ 201.158672][ T7551] ? syscall_user_dispatch+0x78/0x140 [ 201.158711][ T7551] __x64_sys_mmap+0x125/0x190 [ 201.158742][ T7551] do_syscall_64+0xcd/0x230 [ 201.158778][ T7551] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 201.158803][ T7551] RIP: 0033:0x7f7f6338e169 [ 201.158824][ T7551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 201.158848][ T7551] RSP: 002b:00007f7f64195038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 201.158873][ T7551] RAX: ffffffffffffffda RBX: 00007f7f635b5fa0 RCX: 00007f7f6338e169 [ 201.158889][ T7551] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000 [ 201.158905][ T7551] RBP: 00007f7f63410a68 R08: fffffffffffffffa R09: 0000000000008000 [ 201.158920][ T7551] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 201.158934][ T7551] R13: 0000000000000000 R14: 00007f7f635b5fa0 R15: 00007ffc8cf877d8 [ 201.158966][ T7551] [ 201.219267][ T7557] FAULT_INJECTION: forcing a failure. [ 201.219267][ T7557] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 201.468066][ T7557] CPU: 0 UID: 0 PID: 7557 Comm: syz.2.357 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 201.468100][ T7557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 201.468114][ T7557] Call Trace: [ 201.468122][ T7557] [ 201.468131][ T7557] dump_stack_lvl+0x16c/0x1f0 [ 201.468171][ T7557] should_fail_ex+0x512/0x640 [ 201.468206][ T7557] should_fail_alloc_page+0xe7/0x130 [ 201.468239][ T7557] prepare_alloc_pages+0x3c2/0x610 [ 201.468277][ T7557] ? rcu_is_watching+0x12/0xc0 [ 201.468306][ T7557] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 201.468338][ T7557] ? kasan_save_stack+0x33/0x60 [ 201.468376][ T7557] ? cgroup_rstat_updated+0x2a/0xb20 [ 201.468409][ T7557] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 201.468451][ T7557] ? __lock_acquire+0x5ca/0x1ba0 [ 201.468487][ T7557] ? __lock_acquire+0x5ca/0x1ba0 [ 201.468519][ T7557] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 201.468555][ T7557] ? policy_nodemask+0xea/0x4e0 [ 201.468589][ T7557] alloc_pages_mpol+0x1fb/0x550 [ 201.468621][ T7557] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 201.468653][ T7557] ? __lock_acquire+0x5ca/0x1ba0 [ 201.468691][ T7557] folio_alloc_mpol_noprof+0x36/0x2f0 [ 201.468728][ T7557] vma_alloc_folio_noprof+0xed/0x1e0 [ 201.468762][ T7557] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 201.468808][ T7557] do_pte_missing+0x223d/0x3fb0 [ 201.468847][ T7557] __handle_mm_fault+0x103d/0x2a40 [ 201.468884][ T7557] ? __pfx___handle_mm_fault+0x10/0x10 [ 201.468909][ T7557] ? __pte_offset_map_lock+0x155/0x2f0 [ 201.468943][ T7557] ? find_held_lock+0x2b/0x80 [ 201.468967][ T7557] ? find_held_lock+0x2b/0x80 [ 201.469015][ T7557] handle_mm_fault+0x3fe/0xad0 [ 201.469048][ T7557] __get_user_pages+0x771/0x36f0 [ 201.469082][ T7557] ? __pfx_mt_find+0x10/0x10 [ 201.469118][ T7557] ? __pfx___get_user_pages+0x10/0x10 [ 201.469155][ T7557] populate_vma_page_range+0x278/0x3a0 [ 201.469183][ T7557] ? __pfx_populate_vma_page_range+0x10/0x10 [ 201.469207][ T7557] ? __pfx_find_vma_intersection+0x10/0x10 [ 201.469245][ T7557] ? do_mmap+0x69c/0x11b0 [ 201.469285][ T7557] __mm_populate+0x1d8/0x380 [ 201.469312][ T7557] ? __pfx___mm_populate+0x10/0x10 [ 201.469346][ T7557] ? up_write+0x1b2/0x520 [ 201.469385][ T7557] vm_mmap_pgoff+0x362/0x450 [ 201.469425][ T7557] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 201.469468][ T7557] ? __x64_sys_futex+0x1e0/0x4c0 [ 201.469494][ T7557] ? __x64_sys_futex+0x1e9/0x4c0 [ 201.469526][ T7557] ksys_mmap_pgoff+0x7d/0x5c0 [ 201.469562][ T7557] ? rcu_is_watching+0x12/0xc0 [ 201.469589][ T7557] __x64_sys_mmap+0x125/0x190 [ 201.469620][ T7557] do_syscall_64+0xcd/0x230 [ 201.469655][ T7557] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 201.469680][ T7557] RIP: 0033:0x7f4e9198e169 [ 201.469700][ T7557] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 201.469724][ T7557] RSP: 002b:00007f4e92841038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 201.469747][ T7557] RAX: ffffffffffffffda RBX: 00007f4e91bb5fa0 RCX: 00007f4e9198e169 [ 201.469765][ T7557] RDX: fffffffffffffffb RSI: 0000000000400008 RDI: 0000000000000000 [ 201.469780][ T7557] RBP: 00007f4e91a10a68 R08: 0000000000000002 R09: 0000000000008000 [ 201.469795][ T7557] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 201.469810][ T7557] R13: 0000000000000000 R14: 00007f4e91bb5fa0 R15: 00007ffc7d9ae218 [ 201.469844][ T7557] [ 202.693363][ T7566] net_ratelimit: 49 callbacks suppressed [ 202.693387][ T7566] netlink: zone id is out of range [ 202.728320][ T7566] netlink: zone id is out of range [ 202.750270][ T7566] netlink: zone id is out of range [ 202.800435][ T7566] netlink: zone id is out of range [ 202.805608][ T7566] netlink: zone id is out of range [ 202.832809][ T7566] netlink: zone id is out of range [ 202.861269][ T7566] netlink: zone id is out of range [ 202.866448][ T7566] netlink: zone id is out of range [ 202.889615][ T7566] netlink: zone id is out of range [ 202.894788][ T7566] netlink: zone id is out of range [ 205.515794][ T7600] FAULT_INJECTION: forcing a failure. [ 205.515794][ T7600] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 205.599276][ T7600] CPU: 0 UID: 0 PID: 7600 Comm: syz.0.367 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 205.599314][ T7600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 205.599329][ T7600] Call Trace: [ 205.599338][ T7600] [ 205.599348][ T7600] dump_stack_lvl+0x16c/0x1f0 [ 205.599390][ T7600] should_fail_ex+0x512/0x640 [ 205.599424][ T7600] should_fail_alloc_page+0xe7/0x130 [ 205.599460][ T7600] prepare_alloc_pages+0x3c2/0x610 [ 205.599498][ T7600] ? rcu_is_watching+0x12/0xc0 [ 205.599527][ T7600] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 205.599560][ T7600] ? kasan_save_stack+0x33/0x60 [ 205.599591][ T7600] ? cgroup_rstat_updated+0x2a/0xb20 [ 205.599625][ T7600] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 205.599667][ T7600] ? lru_gen_add_folio+0x1a4/0xef0 [ 205.599703][ T7600] ? __lock_acquire+0x5ca/0x1ba0 [ 205.599737][ T7600] ? __lock_acquire+0x5ca/0x1ba0 [ 205.599769][ T7600] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 205.599806][ T7600] ? policy_nodemask+0xea/0x4e0 [ 205.599849][ T7600] alloc_pages_mpol+0x1fb/0x550 [ 205.599885][ T7600] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 205.599919][ T7600] ? __lock_acquire+0x5ca/0x1ba0 [ 205.599959][ T7600] folio_alloc_mpol_noprof+0x36/0x2f0 [ 205.599999][ T7600] vma_alloc_folio_noprof+0xed/0x1e0 [ 205.600035][ T7600] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 205.600090][ T7600] do_pte_missing+0x223d/0x3fb0 [ 205.600131][ T7600] __handle_mm_fault+0x103d/0x2a40 [ 205.600170][ T7600] ? __pfx___handle_mm_fault+0x10/0x10 [ 205.600196][ T7600] ? __pte_offset_map_lock+0x155/0x2f0 [ 205.600234][ T7600] ? find_held_lock+0x2b/0x80 [ 205.600257][ T7600] ? find_held_lock+0x2b/0x80 [ 205.600305][ T7600] handle_mm_fault+0x3fe/0xad0 [ 205.600339][ T7600] __get_user_pages+0x771/0x36f0 [ 205.600373][ T7600] ? __pfx_mt_find+0x10/0x10 [ 205.600410][ T7600] ? __pfx___get_user_pages+0x10/0x10 [ 205.600448][ T7600] populate_vma_page_range+0x278/0x3a0 [ 205.600477][ T7600] ? __pfx_populate_vma_page_range+0x10/0x10 [ 205.600502][ T7600] ? __pfx_find_vma_intersection+0x10/0x10 [ 205.600540][ T7600] ? do_mmap+0x69c/0x11b0 [ 205.600581][ T7600] __mm_populate+0x1d8/0x380 [ 205.600608][ T7600] ? __pfx___mm_populate+0x10/0x10 [ 205.600636][ T7600] ? up_write+0x1b2/0x520 [ 205.600676][ T7600] vm_mmap_pgoff+0x362/0x450 [ 205.600717][ T7600] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 205.600762][ T7600] ? __x64_sys_futex+0x1e0/0x4c0 [ 205.600788][ T7600] ? __x64_sys_futex+0x1e9/0x4c0 [ 205.600822][ T7600] ksys_mmap_pgoff+0x7d/0x5c0 [ 205.600866][ T7600] ? rcu_is_watching+0x12/0xc0 [ 205.600895][ T7600] __x64_sys_mmap+0x125/0x190 [ 205.600928][ T7600] do_syscall_64+0xcd/0x230 [ 205.600965][ T7600] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 205.600990][ T7600] RIP: 0033:0x7f7f6338e169 [ 205.601012][ T7600] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 205.601037][ T7600] RSP: 002b:00007f7f64195038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 205.601067][ T7600] RAX: ffffffffffffffda RBX: 00007f7f635b5fa0 RCX: 00007f7f6338e169 [ 205.601084][ T7600] RDX: fffffffffffffffb RSI: 0000000000400008 RDI: 0000000000000000 [ 205.601100][ T7600] RBP: 00007f7f63410a68 R08: 0000000000000002 R09: 0000000000008000 [ 205.601116][ T7600] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 205.601131][ T7600] R13: 0000000000000000 R14: 00007f7f635b5fa0 R15: 00007ffc8cf877d8 [ 205.601167][ T7600] [ 206.967571][ T7597] netlink: 186 bytes leftover after parsing attributes in process `syz.2.372'. [ 207.285415][ T7615] FAULT_INJECTION: forcing a failure. [ 207.285415][ T7615] name failslab, interval 1, probability 0, space 0, times 0 [ 207.331783][ T7615] CPU: 1 UID: 0 PID: 7615 Comm: syz.1.376 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 207.331817][ T7615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 207.331830][ T7615] Call Trace: [ 207.331838][ T7615] [ 207.331847][ T7615] dump_stack_lvl+0x16c/0x1f0 [ 207.331884][ T7615] should_fail_ex+0x512/0x640 [ 207.331910][ T7615] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 207.331949][ T7615] should_failslab+0xc2/0x120 [ 207.331978][ T7615] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 207.332006][ T7615] ? __alloc_skb+0x2b2/0x380 [ 207.332039][ T7615] __alloc_skb+0x2b2/0x380 [ 207.332066][ T7615] ? __pfx___alloc_skb+0x10/0x10 [ 207.332098][ T7615] ? __lock_acquire+0xaa4/0x1ba0 [ 207.332135][ T7615] netlink_alloc_large_skb+0x69/0x130 [ 207.332169][ T7615] netlink_sendmsg+0x6a1/0xdd0 [ 207.332206][ T7615] ? __pfx_netlink_sendmsg+0x10/0x10 [ 207.332250][ T7615] ____sys_sendmsg+0xa95/0xc70 [ 207.332274][ T7615] ? copy_msghdr_from_user+0x10a/0x160 [ 207.332303][ T7615] ? __pfx_____sys_sendmsg+0x10/0x10 [ 207.332342][ T7615] ___sys_sendmsg+0x134/0x1d0 [ 207.332373][ T7615] ? __pfx____sys_sendmsg+0x10/0x10 [ 207.332445][ T7615] __sys_sendmsg+0x16d/0x220 [ 207.332475][ T7615] ? __pfx___sys_sendmsg+0x10/0x10 [ 207.332515][ T7615] ? rcu_is_watching+0x12/0xc0 [ 207.332548][ T7615] do_syscall_64+0xcd/0x230 [ 207.332582][ T7615] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 207.332605][ T7615] RIP: 0033:0x7fc37378e169 [ 207.332624][ T7615] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 207.332646][ T7615] RSP: 002b:00007fc374606038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 207.332669][ T7615] RAX: ffffffffffffffda RBX: 00007fc3739b5fa0 RCX: 00007fc37378e169 [ 207.332684][ T7615] RDX: 0000000004004094 RSI: 0000200000002e40 RDI: 0000000000000003 [ 207.332699][ T7615] RBP: 00007fc374606090 R08: 0000000000000000 R09: 0000000000000000 [ 207.332713][ T7615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 207.332727][ T7615] R13: 0000000000000000 R14: 00007fc3739b5fa0 R15: 00007fffa9d1fac8 [ 207.332758][ T7615] [ 207.859145][ T7622] net_ratelimit: 108 callbacks suppressed [ 207.859166][ T7622] netlink: zone id is out of range [ 207.968043][ T7622] netlink: zone id is out of range [ 207.973218][ T7622] netlink: zone id is out of range [ 208.066677][ T7622] netlink: zone id is out of range [ 208.072875][ T7622] netlink: zone id is out of range [ 208.081219][ T7622] netlink: zone id is out of range [ 208.086344][ T7622] netlink: zone id is out of range [ 208.091868][ T7622] netlink: zone id is out of range [ 208.096992][ T7622] netlink: zone id is out of range [ 208.105492][ T7622] netlink: zone id is out of range [ 208.535501][ T7623] netlink: 186 bytes leftover after parsing attributes in process `syz.0.375'. [ 208.954381][ T7630] Invalid ELF header magic: != ELF [ 209.252739][ T7637] netlink: 338 bytes leftover after parsing attributes in process `syz.1.383'. [ 209.273751][ T7638] netlink: 338 bytes leftover after parsing attributes in process `syz.1.383'. [ 211.072821][ T5850] Bluetooth: hci3: unexpected subevent 0x0e length: 122 > 15 [ 211.082859][ T5850] Bluetooth: hci3: Unable to find connection for dst ea:f8:1b:f4:ea:6d sid 0xde [ 211.571407][ T30] audit: type=1800 audit(6040340504.241:5): pid=7670 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.394" name="lu_gp_id" dev="configfs" ino=15095 res=0 errno=0 [ 211.934903][ T7679] i2c i2c-0: delete_device: Can't parse I2C address [ 212.152465][ T7681] FAULT_INJECTION: forcing a failure. [ 212.152465][ T7681] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 212.209574][ T7681] CPU: 0 UID: 0 PID: 7681 Comm: syz.2.396 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 212.209611][ T7681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 212.209626][ T7681] Call Trace: [ 212.209634][ T7681] [ 212.209644][ T7681] dump_stack_lvl+0x16c/0x1f0 [ 212.209686][ T7681] should_fail_ex+0x512/0x640 [ 212.209722][ T7681] should_fail_alloc_page+0xe7/0x130 [ 212.209758][ T7681] prepare_alloc_pages+0x3c2/0x610 [ 212.209795][ T7681] ? rcu_is_watching+0x12/0xc0 [ 212.209825][ T7681] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 212.209857][ T7681] ? kasan_save_stack+0x33/0x60 [ 212.209889][ T7681] ? cgroup_rstat_updated+0x2a/0xb20 [ 212.209922][ T7681] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 212.209958][ T7681] ? lru_gen_add_folio+0x1a4/0xef0 [ 212.209994][ T7681] ? __lock_acquire+0x5ca/0x1ba0 [ 212.210029][ T7681] ? __lock_acquire+0x5ca/0x1ba0 [ 212.210061][ T7681] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 212.210097][ T7681] ? policy_nodemask+0xea/0x4e0 [ 212.210131][ T7681] alloc_pages_mpol+0x1fb/0x550 [ 212.210163][ T7681] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 212.210194][ T7681] ? __lock_acquire+0x5ca/0x1ba0 [ 212.210231][ T7681] folio_alloc_mpol_noprof+0x36/0x2f0 [ 212.210269][ T7681] vma_alloc_folio_noprof+0xed/0x1e0 [ 212.210304][ T7681] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 212.210350][ T7681] do_pte_missing+0x223d/0x3fb0 [ 212.210389][ T7681] __handle_mm_fault+0x103d/0x2a40 [ 212.210426][ T7681] ? __pfx___handle_mm_fault+0x10/0x10 [ 212.210452][ T7681] ? __pte_offset_map_lock+0x155/0x2f0 [ 212.210487][ T7681] ? find_held_lock+0x2b/0x80 [ 212.210510][ T7681] ? find_held_lock+0x2b/0x80 [ 212.210568][ T7681] handle_mm_fault+0x3fe/0xad0 [ 212.210602][ T7681] __get_user_pages+0x771/0x36f0 [ 212.210637][ T7681] ? __pfx_mt_find+0x10/0x10 [ 212.210675][ T7681] ? __pfx___get_user_pages+0x10/0x10 [ 212.210712][ T7681] populate_vma_page_range+0x278/0x3a0 [ 212.210742][ T7681] ? __pfx_populate_vma_page_range+0x10/0x10 [ 212.210767][ T7681] ? __pfx_find_vma_intersection+0x10/0x10 [ 212.210805][ T7681] ? do_mmap+0x69c/0x11b0 [ 212.210845][ T7681] __mm_populate+0x1d8/0x380 [ 212.210872][ T7681] ? __pfx___mm_populate+0x10/0x10 [ 212.210900][ T7681] ? up_write+0x1b2/0x520 [ 212.210938][ T7681] vm_mmap_pgoff+0x362/0x450 [ 212.210977][ T7681] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 212.211022][ T7681] ? __x64_sys_futex+0x1e0/0x4c0 [ 212.211048][ T7681] ? __x64_sys_futex+0x1e9/0x4c0 [ 212.211081][ T7681] ksys_mmap_pgoff+0x7d/0x5c0 [ 212.211117][ T7681] ? rcu_is_watching+0x12/0xc0 [ 212.211145][ T7681] __x64_sys_mmap+0x125/0x190 [ 212.211175][ T7681] do_syscall_64+0xcd/0x230 [ 212.211213][ T7681] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 212.211237][ T7681] RIP: 0033:0x7f4e9198e169 [ 212.211259][ T7681] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 212.211284][ T7681] RSP: 002b:00007f4e92841038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 212.211308][ T7681] RAX: ffffffffffffffda RBX: 00007f4e91bb5fa0 RCX: 00007f4e9198e169 [ 212.211326][ T7681] RDX: fffffffffffffffb RSI: 0000000000400008 RDI: 0000000000000000 [ 212.211343][ T7681] RBP: 00007f4e91a10a68 R08: 0000000000000002 R09: 0000000000008000 [ 212.211359][ T7681] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 212.211374][ T7681] R13: 0000000000000000 R14: 00007f4e91bb5fa0 R15: 00007ffc7d9ae218 [ 212.211407][ T7681] [ 214.096020][ T7704] ecryptfs_miscdev_write: Invalid packet size [0] [ 214.132963][ T7704] ecryptfs_miscdev_write: Invalid packet size [0] [ 214.148600][ T7702] i2c i2c-0: delete_device: Can't parse I2C address [ 214.234297][ T7704] ecryptfs_miscdev_write: Invalid packet size [0] [ 214.304001][ T7704] ecryptfs_miscdev_write: Invalid packet size [0] [ 214.394128][ T7704] ecryptfs_miscdev_write: Invalid packet size [0] [ 214.463895][ T7704] ecryptfs_miscdev_write: Invalid packet size [0] [ 214.491742][ T7704] ecryptfs_miscdev_write: Invalid packet size [0] [ 214.610452][ T7704] ecryptfs_miscdev_write: Invalid packet size [0] [ 214.674971][ T7704] ecryptfs_miscdev_write: Invalid packet size [0] [ 214.903402][ T7704] ecryptfs_miscdev_write: Invalid packet size [0] [ 214.910392][ T7721] input: f¬ as /devices/virtual/input/input5 [ 215.241267][ T7729] net_ratelimit: 49 callbacks suppressed [ 215.241288][ T7729] netlink: zone id is out of range [ 215.253285][ T7729] netlink: zone id is out of range [ 215.258710][ T7729] netlink: zone id is out of range [ 215.264791][ T7729] netlink: zone id is out of range [ 215.273605][ T7729] netlink: zone id is out of range [ 215.282772][ T7729] netlink: zone id is out of range [ 215.288180][ T7729] netlink: zone id is out of range [ 215.293447][ T7729] netlink: zone id is out of range [ 215.302239][ T7729] netlink: zone id is out of range [ 215.327693][ T7729] netlink: zone id is out of range [ 215.559090][ T5152] Bluetooth: hci2: unexpected subevent 0x0e length: 122 > 15 [ 215.566562][ T5152] Bluetooth: hci2: Unable to find connection for dst ea:f8:1b:f4:ea:6d sid 0xde [ 215.970435][ T7707] kexec: Could not allocate control_code_buffer [ 219.792010][ T7818] kAFS: No cell specified [ 227.010484][ T7910] netlink: 'syz.3.452': attribute type 9 has an invalid length. [ 227.132263][ T7915] netlink: 36 bytes leftover after parsing attributes in process `syz.3.452'. [ 227.410383][ T7921] net_ratelimit: 49 callbacks suppressed [ 227.410406][ T7921] netlink: zone id is out of range [ 227.467038][ T7921] netlink: zone id is out of range [ 227.514705][ T7921] netlink: zone id is out of range [ 227.531019][ T7921] netlink: zone id is out of range [ 227.586029][ T7921] netlink: zone id is out of range [ 227.621780][ T7921] netlink: zone id is out of range [ 227.681267][ T7921] netlink: zone id is out of range [ 227.686442][ T7921] netlink: zone id is out of range [ 227.726006][ T7921] netlink: zone id is out of range [ 227.731842][ T7921] netlink: zone id is out of range [ 229.864741][ T7955] FAULT_INJECTION: forcing a failure. [ 229.864741][ T7955] name failslab, interval 1, probability 0, space 0, times 0 [ 229.917719][ T7955] CPU: 0 UID: 0 PID: 7955 Comm: syz.1.463 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 229.917756][ T7955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 229.917772][ T7955] Call Trace: [ 229.917781][ T7955] [ 229.917791][ T7955] dump_stack_lvl+0x16c/0x1f0 [ 229.917832][ T7955] should_fail_ex+0x512/0x640 [ 229.917861][ T7955] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 229.917897][ T7955] should_failslab+0xc2/0x120 [ 229.917926][ T7955] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 229.917956][ T7955] ? alloc_inode+0x61/0x240 [ 229.917990][ T7955] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 229.918023][ T7955] alloc_inode+0x61/0x240 [ 229.918054][ T7955] new_inode+0x22/0x1c0 [ 229.918082][ T7955] ? start_creating.part.0+0x25d/0x3a0 [ 229.918116][ T7955] __debugfs_create_file+0x11c/0x6b0 [ 229.918153][ T7955] debugfs_create_file_full+0x41/0x60 [ 229.918192][ T7955] kvm_dev_ioctl+0x14ff/0x1ad0 [ 229.918236][ T7955] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 229.918279][ T7955] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 229.918313][ T7955] __x64_sys_ioctl+0x190/0x200 [ 229.918350][ T7955] do_syscall_64+0xcd/0x230 [ 229.918386][ T7955] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 229.918425][ T7955] RIP: 0033:0x7fc37378e169 [ 229.918446][ T7955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 229.918472][ T7955] RSP: 002b:00007fc374606038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 229.918496][ T7955] RAX: ffffffffffffffda RBX: 00007fc3739b5fa0 RCX: 00007fc37378e169 [ 229.918514][ T7955] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000007 [ 229.918530][ T7955] RBP: 00007fc373810a68 R08: 0000000000000000 R09: 0000000000000000 [ 229.918546][ T7955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 229.918562][ T7955] R13: 0000000000000000 R14: 00007fc3739b5fa0 R15: 00007fffa9d1fac8 [ 229.918597][ T7955] [ 229.918606][ T7955] debugfs: out of free dentries, can not create file 'max_mmu_rmap_size' [ 230.257781][ T5850] Bluetooth: hci1: unexpected event 0x04 length: 442 > 10 [ 230.257822][ T5850] Bluetooth: unknown link type 178 [ 230.277592][ T5850] Bluetooth: hci1: connection err: -111 [ 231.197654][ T7973] syz.0.465 (7973) used greatest stack depth: 20600 bytes left [ 232.450139][ T7994] netlink: 338 bytes leftover after parsing attributes in process `syz.3.472'. [ 232.525431][ T7997] netlink: 'syz.3.472': attribute type 3 has an invalid length. [ 233.224338][ T8010] netlink: 4 bytes leftover after parsing attributes in process `syz.1.477'. [ 233.233446][ T5850] Bluetooth: hci1: unexpected subevent 0x0e length: 122 > 15 [ 233.247164][ T5850] Bluetooth: hci1: Unable to find connection for dst ea:f8:1b:f4:ea:6d sid 0xde [ 233.952573][ T8022] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(6.0.4), cmd(3) [ 234.027175][ T8022] FAULT_INJECTION: forcing a failure. [ 234.027175][ T8022] name failslab, interval 1, probability 0, space 0, times 0 [ 234.048064][ T8022] CPU: 1 UID: 0 PID: 8022 Comm: syz.1.480 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 234.048103][ T8022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 234.048118][ T8022] Call Trace: [ 234.048128][ T8022] [ 234.048138][ T8022] dump_stack_lvl+0x16c/0x1f0 [ 234.048179][ T8022] should_fail_ex+0x512/0x640 [ 234.048218][ T8022] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 234.048253][ T8022] should_failslab+0xc2/0x120 [ 234.048286][ T8022] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 234.048317][ T8022] ? ptlock_alloc+0x1f/0x70 [ 234.048347][ T8022] ptlock_alloc+0x1f/0x70 [ 234.048373][ T8022] pte_alloc_one+0x6d/0x380 [ 234.048403][ T8022] do_pte_missing+0x1c0b/0x3fb0 [ 234.048431][ T8022] ? do_raw_spin_unlock+0x172/0x230 [ 234.048458][ T8022] ? __pmd_alloc+0x3c2/0x870 [ 234.048492][ T8022] ? find_held_lock+0x2b/0x80 [ 234.048521][ T8022] __handle_mm_fault+0x103d/0x2a40 [ 234.048559][ T8022] ? __pfx___handle_mm_fault+0x10/0x10 [ 234.048607][ T8022] ? find_vma+0xbf/0x140 [ 234.048639][ T8022] ? __pfx_find_vma+0x10/0x10 [ 234.048677][ T8022] handle_mm_fault+0x3fe/0xad0 [ 234.048711][ T8022] do_user_addr_fault+0x7a6/0x1370 [ 234.048740][ T8022] ? rcu_is_watching+0x12/0xc0 [ 234.048769][ T8022] exc_page_fault+0x5c/0xc0 [ 234.048802][ T8022] asm_exc_page_fault+0x26/0x30 [ 234.048825][ T8022] RIP: 0010:__get_user_nocheck_1+0x6/0x20 [ 234.048856][ T8022] Code: c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 01 cb 0f ae e8 <0f> b6 10 31 c0 0f 01 ca c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 [ 234.048880][ T8022] RSP: 0018:ffffc9000bde7ea8 EFLAGS: 00050202 [ 234.048909][ T8022] RAX: 0000000000000007 RBX: 0000000000000020 RCX: ffffc90004d82000 [ 234.048927][ T8022] RDX: 0000000000080000 RSI: ffffffff812bfbc6 RDI: ffffc9000bde7f58 [ 234.048944][ T8022] RBP: ffff88807dfcda00 R08: 0000000000000005 R09: 0000000000000000 [ 234.048959][ T8022] R10: 0000000000000000 R11: 0000000000000000 R12: 00000000000000ca [ 234.048975][ T8022] R13: ffffc9000bde7f58 R14: 0000000000000000 R15: 0000000000000000 [ 234.049002][ T8022] ? arch_syscall_is_vdso_sigreturn+0xb6/0x230 [ 234.049034][ T8022] syscall_user_dispatch+0x78/0x140 [ 234.049078][ T8022] syscall_trace_enter+0x5e/0x260 [ 234.049115][ T8022] do_syscall_64+0x1ee/0x230 [ 234.049151][ T8022] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 234.049176][ T8022] RIP: 0033:0x7fc37378e169 [ 234.049203][ T8022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 234.049227][ T8022] RSP: 002b:00007fc3746060e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 234.049251][ T8022] RAX: ffffffffffffffda RBX: 00007fc3739b5fa8 RCX: 00007fc37378e169 [ 234.049268][ T8022] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc3739b5fac [ 234.049284][ T8022] RBP: 00007fc3739b5fa0 R08: 00007fc374607000 R09: 0000000000000000 [ 234.049300][ T8022] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc3739b5fac [ 234.049316][ T8022] R13: 0000000000000000 R14: 00007fffa9d1f9e0 R15: 00007fffa9d1fac8 [ 234.049350][ T8022] [ 234.359249][ C1] vkms_vblank_simulate: vblank timer overrun [ 234.763221][ T8024] netlink: 48 bytes leftover after parsing attributes in process `syz.3.481'. [ 236.704565][ T8037] net_ratelimit: 28 callbacks suppressed [ 236.704587][ T8037] netlink: zone id is out of range [ 236.756264][ T8037] netlink: zone id is out of range [ 236.773687][ T8037] netlink: zone id is out of range [ 236.787459][ T8037] netlink: zone id is out of range [ 236.792709][ T8037] netlink: zone id is out of range [ 236.802817][ T8037] netlink: zone id is out of range [ 236.809286][ T8037] netlink: zone id is out of range [ 236.814488][ T8037] netlink: zone id is out of range [ 236.838286][ T8037] netlink: zone id is out of range [ 236.848414][ T8037] netlink: zone id is out of range [ 237.077154][ T5152] Bluetooth: hci1: unexpected subevent 0x0e length: 122 > 15 [ 237.089091][ T5152] Bluetooth: hci1: Unable to find connection for dst ea:f8:1b:f4:ea:6d sid 0xde [ 239.512549][ T8073] FAULT_INJECTION: forcing a failure. [ 239.512549][ T8073] name failslab, interval 1, probability 0, space 0, times 0 [ 239.555794][ T8073] CPU: 1 UID: 0 PID: 8073 Comm: syz.1.495 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 239.555836][ T8073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 239.555854][ T8073] Call Trace: [ 239.555863][ T8073] [ 239.555873][ T8073] dump_stack_lvl+0x16c/0x1f0 [ 239.555916][ T8073] should_fail_ex+0x512/0x640 [ 239.555947][ T8073] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 239.555984][ T8073] should_failslab+0xc2/0x120 [ 239.556019][ T8073] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 239.556052][ T8073] ? vm_area_dup+0x25/0x760 [ 239.556089][ T8073] vm_area_dup+0x25/0x760 [ 239.556124][ T8073] copy_process+0x7f67/0x91a0 [ 239.556185][ T8073] ? __pfx_copy_process+0x10/0x10 [ 239.556218][ T8073] ? __pfx___futex_wait+0x10/0x10 [ 239.556285][ T8073] kernel_clone+0xfc/0x960 [ 239.556324][ T8073] ? __pfx_kernel_clone+0x10/0x10 [ 239.556368][ T8073] ? __pfx_mt_find+0x10/0x10 [ 239.556418][ T8073] __do_sys_clone+0xce/0x120 [ 239.556465][ T8073] ? __pfx___do_sys_clone+0x10/0x10 [ 239.556525][ T8073] ? rcu_is_watching+0x12/0xc0 [ 239.556565][ T8073] do_syscall_64+0xcd/0x230 [ 239.556607][ T8073] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.556634][ T8073] RIP: 0033:0x7fc37378e169 [ 239.556655][ T8073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 239.556680][ T8073] RSP: 002b:00007fc374606038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 239.556704][ T8073] RAX: ffffffffffffffda RBX: 00007fc3739b5fa0 RCX: 00007fc37378e169 [ 239.556722][ T8073] RDX: 0000000000000000 RSI: 0000000000000081 RDI: 0000000000000002 [ 239.556738][ T8073] RBP: 00007fc373810a68 R08: 0000000000000003 R09: 0000000000000000 [ 239.556755][ T8073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 239.556770][ T8073] R13: 0000000000000000 R14: 00007fc3739b5fa0 R15: 00007fffa9d1fac8 [ 239.556805][ T8073] [ 240.037654][ T8065] kexec: Could not allocate control_code_buffer [ 240.991742][ T5152] Bluetooth: hci3: unexpected subevent 0x0e length: 122 > 15 [ 241.000096][ T5152] Bluetooth: hci3: Unable to find connection for dst ea:f8:1b:f4:ea:6d sid 0xde [ 242.320126][ T8096] netlink: 186 bytes leftover after parsing attributes in process `syz.1.503'. [ 242.933772][ T30] audit: type=1800 audit(6040340559.602:6): pid=8120 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.507" name="lu_gp_id" dev="configfs" ino=18866 res=0 errno=0 [ 243.610567][ T7722] syz.0.404 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 243.655158][ T8134] FAULT_INJECTION: forcing a failure. [ 243.655158][ T8134] name failslab, interval 1, probability 0, space 0, times 0 [ 243.686521][ T8134] CPU: 0 UID: 0 PID: 8134 Comm: syz.3.511 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 243.686560][ T8134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 243.686591][ T8134] Call Trace: [ 243.686601][ T8134] [ 243.686610][ T8134] dump_stack_lvl+0x16c/0x1f0 [ 243.686653][ T8134] should_fail_ex+0x512/0x640 [ 243.686681][ T8134] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 243.686721][ T8134] should_failslab+0xc2/0x120 [ 243.686752][ T8134] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 243.686781][ T8134] ? alloc_inode+0xc3/0x240 [ 243.686816][ T8134] alloc_inode+0xc3/0x240 [ 243.686847][ T8134] iget_locked+0x2e4/0x830 [ 243.686882][ T8134] ? __pfx_iget_locked+0x10/0x10 [ 243.686914][ T8134] ? find_held_lock+0x2b/0x80 [ 243.686938][ T8134] ? kernfs_root+0xee/0x2a0 [ 243.686969][ T8134] kernfs_get_inode+0x48/0x460 [ 243.686992][ T8134] kernfs_iop_lookup+0x1a7/0x2d0 [ 243.687020][ T8134] ? __pfx_kernfs_iop_lookup+0x10/0x10 [ 243.687046][ T8134] lookup_open.isra.0+0x4d7/0x1580 [ 243.687090][ T8134] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 243.687163][ T8134] ? mnt_get_write_access+0x20c/0x300 [ 243.687206][ T8134] path_openat+0x905/0x2d40 [ 243.687247][ T8134] ? __pfx_path_openat+0x10/0x10 [ 243.687285][ T8134] do_filp_open+0x20b/0x470 [ 243.687312][ T8134] ? __pfx_do_filp_open+0x10/0x10 [ 243.687364][ T8134] ? alloc_fd+0x471/0x7d0 [ 243.687401][ T8134] do_sys_openat2+0x11b/0x1d0 [ 243.687433][ T8134] ? __pfx_do_sys_openat2+0x10/0x10 [ 243.687476][ T8134] __x64_sys_openat+0x174/0x210 [ 243.687509][ T8134] ? __pfx___x64_sys_openat+0x10/0x10 [ 243.687543][ T8134] ? rcu_is_watching+0x12/0xc0 [ 243.687579][ T8134] do_syscall_64+0xcd/0x230 [ 243.687615][ T8134] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 243.687642][ T8134] RIP: 0033:0x7fa42ed8e169 [ 243.687662][ T8134] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 243.687686][ T8134] RSP: 002b:00007fa42cbd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 243.687712][ T8134] RAX: ffffffffffffffda RBX: 00007fa42efb6080 RCX: 00007fa42ed8e169 [ 243.687730][ T8134] RDX: 0000000000124001 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 243.687746][ T8134] RBP: 00007fa42ee10a68 R08: 0000000000000000 R09: 0000000000000000 [ 243.687762][ T8134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 243.687777][ T8134] R13: 0000000000000000 R14: 00007fa42efb6080 R15: 00007ffc41872ca8 [ 243.687810][ T8134] [ 243.737583][ T7722] CPU: 1 UID: 0 PID: 7722 Comm: syz.0.404 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 243.737620][ T7722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 243.737634][ T7722] Call Trace: [ 243.737642][ T7722] [ 243.737650][ T7722] dump_stack_lvl+0x16c/0x1f0 [ 243.737687][ T7722] dump_header+0x101/0x930 [ 243.737723][ T7722] oom_kill_process+0x270/0xa60 [ 243.737757][ T7722] out_of_memory+0x350/0x1700 [ 243.737795][ T7722] ? __pfx_out_of_memory+0x10/0x10 [ 243.737835][ T7722] mem_cgroup_out_of_memory+0x205/0x270 [ 243.737869][ T7722] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 243.737911][ T7722] ? do_raw_spin_unlock+0x172/0x230 [ 243.737939][ T7722] try_charge_memcg+0xa07/0x10c0 [ 243.737975][ T7722] ? __pfx_try_charge_memcg+0x10/0x10 [ 243.738004][ T7722] ? __print_lock_name+0x51/0xe0 [ 243.738028][ T7722] ? rcu_read_unlock+0x17/0x60 [ 243.738066][ T7722] charge_memcg+0x8a/0x230 [ 243.738095][ T7722] __mem_cgroup_charge+0x2b/0x1e0 [ 243.738128][ T7722] shmem_alloc_and_add_folio+0x514/0xc20 [ 243.738164][ T7722] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 243.738195][ T7722] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 243.738230][ T7722] shmem_get_folio_gfp+0x687/0x1530 [ 243.738263][ T7722] ? __lock_acquire+0xaa4/0x1ba0 [ 243.738292][ T7722] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 243.738321][ T7722] ? __pte_offset_map_lock+0x155/0x2f0 [ 243.738370][ T7722] shmem_write_begin+0x160/0x300 [ 243.738402][ T7722] ? __pfx_shmem_write_begin+0x10/0x10 [ 243.738431][ T7722] ? balance_dirty_pages_ratelimited_flags+0x92/0x1260 [ 243.738456][ T7722] ? __pfx_timestamp_truncate+0x10/0x10 [ 243.738485][ T7722] generic_perform_write+0x3cd/0x930 [ 243.738525][ T7722] ? __pfx_generic_perform_write+0x10/0x10 [ 243.738555][ T7722] ? inode_needs_update_time.part.0+0x191/0x270 [ 243.738589][ T7722] shmem_file_write_iter+0x10e/0x140 [ 243.738623][ T7722] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 243.738653][ T7722] __kernel_write_iter+0x317/0xa90 [ 243.738680][ T7722] ? __pfx___kernel_write_iter+0x10/0x10 [ 243.738702][ T7722] ? __up_read+0x1f8/0x750 [ 243.738738][ T7722] ? dump_user_range+0x73d/0xb30 [ 243.738777][ T7722] dump_user_range+0x418/0xb30 [ 243.738816][ T7722] ? __pfx_dump_user_range+0x10/0x10 [ 243.738849][ T7722] ? elf_coredump_extra_notes_write+0xbd/0x430 [ 243.738882][ T7722] ? __pfx_writenote+0x10/0x10 [ 243.738923][ T7722] elf_core_dump+0x288a/0x3a90 [ 243.738973][ T7722] ? __pfx_elf_core_dump+0x10/0x10 [ 243.739005][ T7722] ? kasan_save_stack+0x42/0x60 [ 243.739028][ T7722] ? kasan_save_stack+0x33/0x60 [ 243.739050][ T7722] ? kasan_save_track+0x14/0x30 [ 243.739073][ T7722] ? __kasan_kmalloc+0xaa/0xb0 [ 243.739095][ T7722] ? do_coredump+0x17aa/0x4480 [ 243.739122][ T7722] ? get_signal+0x22e3/0x26d0 [ 243.739146][ T7722] ? arch_do_signal_or_restart+0x8f/0x7a0 [ 243.739185][ T7722] ? 0xffffffffff600000 [ 243.739261][ T7722] ? do_coredump+0x3183/0x4480 [ 243.739289][ T7722] do_coredump+0x3183/0x4480 [ 243.739331][ T7722] ? __pfx_do_coredump+0x10/0x10 [ 243.739369][ T7722] ? stack_trace_save+0x8e/0xc0 [ 243.739393][ T7722] ? __pfx_stack_trace_save+0x10/0x10 [ 243.739417][ T7722] ? stack_depot_save_flags+0x28/0xa50 [ 243.739444][ T7722] ? __lock_acquire+0xaa4/0x1ba0 [ 243.739481][ T7722] ? __kasan_slab_free+0x51/0x70 [ 243.739505][ T7722] ? kmem_cache_free+0x2d4/0x4d0 [ 243.739528][ T7722] ? __sigqueue_free+0xba/0x2a0 [ 243.739557][ T7722] ? get_signal+0xcba/0x26d0 [ 243.739580][ T7722] ? arch_do_signal_or_restart+0x8f/0x7a0 [ 243.739658][ T7722] ? proc_coredump_connector+0x2d1/0x4f0 [ 243.739686][ T7722] ? __pfx_proc_coredump_connector+0x10/0x10 [ 243.739722][ T7722] ? rcu_is_watching+0x12/0xc0 [ 243.739750][ T7722] get_signal+0x22e3/0x26d0 [ 243.739789][ T7722] ? __pfx_get_signal+0x10/0x10 [ 243.739816][ T7722] ? __pfx_force_sig+0x10/0x10 [ 243.739849][ T7722] arch_do_signal_or_restart+0x8f/0x7a0 [ 243.739882][ T7722] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 243.739923][ T7722] ? trace_irq_disable.constprop.0+0xd4/0x120 [ 243.739955][ T7722] ? do_error_trap+0x214/0x240 [ 243.739993][ T7722] irqentry_exit_to_user_mode+0x13f/0x280 [ 243.740026][ T7722] asm_exc_stack_segment+0x26/0x30 [ 243.740047][ T7722] RIP: 0033:0x7f7f6338e171 [ 243.740067][ T7722] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 243.740089][ T7722] RSP: 002b:004000000000000a EFLAGS: 00010217 [ 243.740108][ T7722] RAX: 0000000000000000 RBX: 00007f7f635b6240 RCX: 00007f7f6338e169 [ 243.740122][ T7722] RDX: ffffffffffffffff RSI: 004000000000000a RDI: 0000000000008001 [ 243.740137][ T7722] RBP: 00007f7f63410a68 R08: 000000000000000b R09: 0000000000000000 [ 243.740151][ T7722] R10: ffffffffff600000 R11: 0000000000000246 R12: 0000000000000000 [ 243.740165][ T7722] R13: 0000000000000000 R14: 00007f7f635b6240 R15: 00007ffc8cf877d8 [ 243.740186][ T7722] ? 0xffffffffff600000 [ 243.740212][ T7722] [ 243.760620][ T7722] memory: usage 307200kB, limit 307200kB, failcnt 26951 [ 244.192256][ T5850] Bluetooth: hci3: unexpected subevent 0x0e length: 122 > 15 [ 244.198372][ T7722] memory+swap: usage 432176kB, limit 9007199254740988kB, failcnt 0 [ 244.205705][ T5850] Bluetooth: hci3: Unable to find connection for dst ea:f8:1b:f4:ea:6d sid 0xde [ 244.210073][ T7722] kmem: usage 3384kB, limit 9007199254740988kB, failcnt 0 [ 244.455400][ T8142] FAULT_INJECTION: forcing a failure. [ 244.455400][ T8142] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 244.484582][ T7722] Memory cgroup stats for /syz0: [ 244.485145][ T7722] cache 306638848 [ 244.485159][ T7722] rss 4456448 [ 244.485168][ T7722] rss_huge 0 [ 244.485178][ T7722] shmem 306634752 [ 244.485188][ T7722] mapped_file 9007104 [ 244.485198][ T7722] dirty 0 [ 244.485207][ T7722] writeback 0 [ 244.485217][ T7722] workingset_refault_anon 228 [ 244.485228][ T7722] workingset_refault_file 321 [ 244.485238][ T7722] swap 127975424 [ 244.485248][ T7722] swapcached 20480 [ 244.485258][ T7722] pgpgin 480049 [ 244.485267][ T7722] pgpgout 406139 [ 244.485277][ T7722] pgfault 160567 [ 244.485287][ T7722] pgmajfault 155 [ 244.485297][ T7722] inactive_anon 89317376 [ 244.485307][ T7722] active_anon 221786112 [ 244.485325][ T7722] inactive_file 4096 [ 244.485335][ T7722] active_file 0 [ 244.485345][ T7722] unevictable 0 [ 244.485355][ T7722] hierarchical_memory_limit 314572800 [ 244.485366][ T7722] hierarchical_memsw_limit 9223372036854771712 [ 244.485378][ T7722] total_cache 306638848 [ 244.485387][ T7722] total_rss 4456448 [ 244.485398][ T7722] total_rss_huge 0 [ 244.485407][ T7722] total_shmem 306634752 [ 244.485418][ T7722] total_mapped_file 9007104 [ 244.485429][ T7722] total_dirty 0 [ 244.485438][ T7722] total_writeback 0 [ 244.485448][ T7722] total_workingset_refault_anon 228 [ 244.485459][ T7722] total_workingset_refault_file 321 [ 244.485470][ T7722] total_swap 127975424 [ 244.485480][ T7722] total_swapcached 20480 [ 244.485491][ T7722] total_pgpgin 480049 [ 244.485500][ T7722] total_pgpgout 406139 [ 244.485511][ T7722] total_pgfault 160567 [ 244.485521][ T7722] total_pgmajfault 155 [ 244.485531][ T7722] total_inactive_anon 89317376 [ 244.485542][ T7722] total_active_anon 221786112 [ 244.485553][ T7722] total_inactive_file 4096 [ 244.485563][ T7722] total_active_file 0 [ 244.485573][ T7722] total_unevictable 0 [ 244.485583][ T7722] anon_cost 0 [ 244.485593][ T7722] file_cost 0 [ 244.485603][ T7722] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.404,pid=7722,uid=0 [ 244.485905][ T7722] Memory cgroup out of memory: Killed process 7722 (syz.0.404) total-vm:164300kB, anon-rss:1060kB, file-rss:53316kB, shmem-rss:8896kB, UID:0 pgtables:320kB oom_score_adj:1000 [ 244.609371][ T8142] CPU: 1 UID: 0 PID: 8142 Comm: syz.3.511 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 244.609412][ T8142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 244.609427][ T8142] Call Trace: [ 244.609436][ T8142] [ 244.609446][ T8142] dump_stack_lvl+0x16c/0x1f0 [ 244.609487][ T8142] should_fail_ex+0x512/0x640 [ 244.609521][ T8142] should_fail_alloc_page+0xe7/0x130 [ 244.609558][ T8142] prepare_alloc_pages+0x3c2/0x610 [ 244.609596][ T8142] ? rcu_is_watching+0x12/0xc0 [ 244.609625][ T8142] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 244.609663][ T8142] ? __lock_acquire+0x5ca/0x1ba0 [ 244.609700][ T8142] ? xas_create+0x1d7/0x1460 [ 244.609724][ T8142] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 244.609756][ T8142] ? cgroup_rstat_updated+0x2a/0xb20 [ 244.609799][ T8142] ? __lock_acquire+0x5ca/0x1ba0 [ 244.609830][ T8142] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 244.609867][ T8142] ? policy_nodemask+0xea/0x4e0 [ 244.609924][ T8142] alloc_pages_mpol+0x1fb/0x550 [ 244.609960][ T8142] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 244.609997][ T8142] ? filemap_get_entry+0x1a7/0x3b0 [ 244.610040][ T8142] folio_alloc_noprof+0x20/0x2d0 [ 244.610076][ T8142] filemap_alloc_folio_noprof+0x3a1/0x470 [ 244.610109][ T8142] ? __pfx_filemap_alloc_folio_noprof+0x10/0x10 [ 244.610138][ T8142] ? rcu_is_watching+0x12/0xc0 [ 244.610169][ T8142] __filemap_get_folio+0x5e9/0xc10 [ 244.610212][ T8142] ioctx_alloc+0x761/0x2060 [ 244.610264][ T8142] ? __pfx_ioctx_alloc+0x10/0x10 [ 244.610304][ T8142] ? __might_fault+0x13b/0x190 [ 244.610347][ T8142] __x64_sys_io_setup+0xc9/0x210 [ 244.610387][ T8142] do_syscall_64+0xcd/0x230 [ 244.610431][ T8142] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.610456][ T8142] RIP: 0033:0x7fa42ed8e169 [ 244.610478][ T8142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 244.610504][ T8142] RSP: 002b:00007fa42c36e038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 244.610529][ T8142] RAX: ffffffffffffffda RBX: 00007fa42efb6320 RCX: 00007fa42ed8e169 [ 244.610547][ T8142] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000ffff [ 244.610562][ T8142] RBP: 00007fa42ee10a68 R08: 0000000000000000 R09: 0000000000000000 [ 244.610577][ T8142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 244.610592][ T8142] R13: 0000000000000000 R14: 00007fa42efb6320 R15: 00007ffc41872ca8 [ 244.610626][ T8142] [ 246.162681][ T8151] FAULT_INJECTION: forcing a failure. [ 246.162681][ T8151] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 246.162718][ T8151] CPU: 0 UID: 0 PID: 8151 Comm: syz.1.514 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 246.162747][ T8151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 246.162760][ T8151] Call Trace: [ 246.162767][ T8151] [ 246.162776][ T8151] dump_stack_lvl+0x16c/0x1f0 [ 246.162811][ T8151] should_fail_ex+0x512/0x640 [ 246.162843][ T8151] _copy_from_user+0x2e/0xd0 [ 246.162873][ T8151] copy_from_sockptr_offset.constprop.0+0x136/0x170 [ 246.162900][ T8151] ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10 [ 246.162947][ T8151] mptcp_setsockopt+0xe64/0x30e0 [ 246.162977][ T8151] ? __pfx_mptcp_setsockopt+0x10/0x10 [ 246.163001][ T8151] ? __lock_acquire+0x5ca/0x1ba0 [ 246.163031][ T8151] ? __pfx_aa_sk_perm+0x10/0x10 [ 246.163059][ T8151] ? find_held_lock+0x2b/0x80 [ 246.163086][ T8151] ? sock_common_setsockopt+0x2e/0xf0 [ 246.163121][ T8151] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 246.163155][ T8151] do_sock_setsockopt+0x221/0x470 [ 246.163187][ T8151] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 246.163240][ T8151] __sys_setsockopt+0x120/0x1a0 [ 246.163275][ T8151] __x64_sys_setsockopt+0xbd/0x160 [ 246.163302][ T8151] ? do_syscall_64+0x91/0x230 [ 246.163334][ T8151] ? lockdep_hardirqs_on+0x7c/0x110 [ 246.163364][ T8151] do_syscall_64+0xcd/0x230 [ 246.163398][ T8151] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 246.163422][ T8151] RIP: 0033:0x7fc37378e169 [ 246.163442][ T8151] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 246.163464][ T8151] RSP: 002b:00007fc3745e5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 246.163486][ T8151] RAX: ffffffffffffffda RBX: 00007fc3739b6080 RCX: 00007fc37378e169 [ 246.163502][ T8151] RDX: 0000000000000009 RSI: 0000000000000001 RDI: 0000000000000003 [ 246.163515][ T8151] RBP: 00007fc3745e5090 R08: 000000000000eb66 R09: 0000000000000000 [ 246.163530][ T8151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 246.163544][ T8151] R13: 0000000000000001 R14: 00007fc3739b6080 R15: 00007fffa9d1fac8 [ 246.163574][ T8151] [ 246.286645][ T7713] syz.0.404 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 246.286683][ T7713] CPU: 1 UID: 0 PID: 7713 Comm: syz.0.404 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 246.286713][ T7713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 246.286726][ T7713] Call Trace: [ 246.286733][ T7713] [ 246.286743][ T7713] dump_stack_lvl+0x16c/0x1f0 [ 246.286777][ T7713] dump_header+0x101/0x930 [ 246.286812][ T7713] oom_kill_process+0x270/0xa60 [ 246.286848][ T7713] out_of_memory+0x350/0x1700 [ 246.286886][ T7713] ? __pfx_out_of_memory+0x10/0x10 [ 246.286927][ T7713] mem_cgroup_out_of_memory+0x205/0x270 [ 246.286963][ T7713] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 246.287006][ T7713] ? do_raw_spin_unlock+0x172/0x230 [ 246.287035][ T7713] try_charge_memcg+0xa07/0x10c0 [ 246.287073][ T7713] ? __pfx_try_charge_memcg+0x10/0x10 [ 246.287103][ T7713] ? __print_lock_name+0x51/0xe0 [ 246.287128][ T7713] ? rcu_read_unlock+0x17/0x60 [ 246.287179][ T7713] charge_memcg+0x8a/0x230 [ 246.287208][ T7713] __mem_cgroup_charge+0x2b/0x1e0 [ 246.287242][ T7713] shmem_alloc_and_add_folio+0x514/0xc20 [ 246.287283][ T7713] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 246.287313][ T7713] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 246.287347][ T7713] shmem_get_folio_gfp+0x687/0x1530 [ 246.287383][ T7713] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 246.287410][ T7713] ? timestamp_truncate+0x21e/0x2d0 [ 246.287442][ T7713] shmem_write_begin+0x160/0x300 [ 246.287475][ T7713] ? __pfx_shmem_write_begin+0x10/0x10 [ 246.287506][ T7713] ? balance_dirty_pages_ratelimited_flags+0x92/0x1260 [ 246.287537][ T7713] generic_perform_write+0x3cd/0x930 [ 246.287577][ T7713] ? __pfx_generic_perform_write+0x10/0x10 [ 246.287610][ T7713] ? generic_update_time+0xcf/0xf0 [ 246.287636][ T7713] ? mnt_put_write_access_file+0x45/0xf0 [ 246.287664][ T7713] shmem_file_write_iter+0x10e/0x140 [ 246.287699][ T7713] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 246.287730][ T7713] __kernel_write_iter+0x317/0xa90 [ 246.287758][ T7713] ? __pfx___kernel_write_iter+0x10/0x10 [ 246.287782][ T7713] ? __up_read+0x1f8/0x750 [ 246.287817][ T7713] ? dump_user_range+0x73d/0xb30 [ 246.287856][ T7713] dump_user_range+0x418/0xb30 [ 246.287895][ T7713] ? __pfx_dump_user_range+0x10/0x10 [ 246.287929][ T7713] ? elf_coredump_extra_notes_write+0xbd/0x430 [ 246.287960][ T7713] ? __pfx_writenote+0x10/0x10 [ 246.288001][ T7713] elf_core_dump+0x288a/0x3a90 [ 246.288051][ T7713] ? __pfx_elf_core_dump+0x10/0x10 [ 246.288080][ T7713] ? kasan_save_stack+0x42/0x60 [ 246.288100][ T7713] ? kasan_save_stack+0x33/0x60 [ 246.288119][ T7713] ? kasan_save_track+0x14/0x30 [ 246.288138][ T7713] ? __kasan_kmalloc+0xaa/0xb0 [ 246.288168][ T7713] ? do_coredump+0x17aa/0x4480 [ 246.288195][ T7713] ? get_signal+0x22e3/0x26d0 [ 246.288220][ T7713] ? arch_do_signal_or_restart+0x8f/0x7a0 [ 246.288259][ T7713] ? 0xffffffffff600000 [ 246.288339][ T7713] ? do_coredump+0x3183/0x4480 [ 246.288368][ T7713] do_coredump+0x3183/0x4480 [ 246.288413][ T7713] ? __pfx_do_coredump+0x10/0x10 [ 246.288446][ T7713] ? stack_trace_save+0x8e/0xc0 [ 246.288472][ T7713] ? __pfx_stack_trace_save+0x10/0x10 [ 246.288497][ T7713] ? stack_depot_save_flags+0x28/0xa50 [ 246.288526][ T7713] ? __lock_acquire+0xaa4/0x1ba0 [ 246.288565][ T7713] ? __kasan_slab_free+0x51/0x70 [ 246.288591][ T7713] ? kmem_cache_free+0x2d4/0x4d0 [ 246.288615][ T7713] ? __sigqueue_free+0xba/0x2a0 [ 246.288643][ T7713] ? get_signal+0xcba/0x26d0 [ 246.288666][ T7713] ? arch_do_signal_or_restart+0x8f/0x7a0 [ 246.288747][ T7713] ? proc_coredump_connector+0x2d1/0x4f0 [ 246.288776][ T7713] ? __pfx_proc_coredump_connector+0x10/0x10 [ 246.288814][ T7713] ? rcu_is_watching+0x12/0xc0 [ 246.288843][ T7713] get_signal+0x22e3/0x26d0 [ 246.288883][ T7713] ? __pfx_get_signal+0x10/0x10 [ 246.288910][ T7713] ? __pfx_force_sig+0x10/0x10 [ 246.288943][ T7713] arch_do_signal_or_restart+0x8f/0x7a0 [ 246.288979][ T7713] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 246.289021][ T7713] ? trace_irq_disable.constprop.0+0xd4/0x120 [ 246.289055][ T7713] ? do_error_trap+0x214/0x240 [ 246.289095][ T7713] irqentry_exit_to_user_mode+0x13f/0x280 [ 246.289130][ T7713] asm_exc_stack_segment+0x26/0x30 [ 246.289158][ T7713] RIP: 0033:0x7f7f6338e171 [ 246.289178][ T7713] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 246.289200][ T7713] RSP: 002b:004000000000000a EFLAGS: 00010217 [ 246.289220][ T7713] RAX: 0000000000000000 RBX: 00007f7f635b6240 RCX: 00007f7f6338e169 [ 246.289235][ T7713] RDX: ffffffffffffffff RSI: 004000000000000a RDI: 0000000000008001 [ 246.289250][ T7713] RBP: 00007f7f63410a68 R08: 000000000000000b R09: 0000000000000000 [ 246.289265][ T7713] R10: ffffffffff600000 R11: 0000000000000246 R12: 0000000000000000 [ 246.289279][ T7713] R13: 0000000000000000 R14: 00007f7f635b6240 R15: 00007ffc8cf877d8 [ 246.289301][ T7713] ? 0xffffffffff600000 [ 246.289329][ T7713] [ 246.341158][ T7713] memory: usage 307200kB, limit 307200kB, failcnt 28066 [ 246.341183][ T7713] memory+swap: usage 432164kB, limit 9007199254740988kB, failcnt 0 [ 246.341200][ T7713] kmem: usage 3384kB, limit 9007199254740988kB, failcnt 0 [ 246.341215][ T7713] Memory cgroup stats for /syz0: [ 246.341359][ T7713] cache 306638848 [ 246.341371][ T7713] rss 4452352 [ 246.341380][ T7713] rss_huge 0 [ 246.341389][ T7713] shmem 306634752 [ 246.341398][ T7713] mapped_file 9007104 [ 246.341408][ T7713] dirty 0 [ 246.341417][ T7713] writeback 0 [ 246.341425][ T7713] workingset_refault_anon 228 [ 246.344314][ T7713] workingset_refault_file 321 [ 246.344329][ T7713] swap 127963136 [ 246.344338][ T7713] swapcached 20480 [ 246.344348][ T7713] pgpgin 480049 [ 246.344358][ T7713] pgpgout 406139 [ 246.344367][ T7713] pgfault 160567 [ 246.344377][ T7713] pgmajfault 155 [ 246.344387][ T7713] inactive_anon 34205696 [ 246.344396][ T7713] active_anon 276897792 [ 246.344407][ T7713] inactive_file 4096 [ 246.344417][ T7713] active_file 0 [ 246.344426][ T7713] unevictable 0 [ 246.344436][ T7713] hierarchical_memory_limit 314572800 [ 246.344447][ T7713] hierarchical_memsw_limit 9223372036854771712 [ 246.344458][ T7713] total_cache 306638848 [ 246.344468][ T7713] total_rss 4452352 [ 246.344478][ T7713] total_rss_huge 0 [ 246.344487][ T7713] total_shmem 306634752 [ 246.344497][ T7713] total_mapped_file 9007104 [ 246.344507][ T7713] total_dirty 0 [ 246.344517][ T7713] total_writeback 0 [ 246.344527][ T7713] total_workingset_refault_anon 228 [ 246.344538][ T7713] total_workingset_refault_file 321 [ 246.344548][ T7713] total_swap 127963136 [ 246.344559][ T7713] total_swapcached 20480 [ 246.344569][ T7713] total_pgpgin 480049 [ 246.344579][ T7713] total_pgpgout 406139 [ 246.344587][ T7713] total_pgfault 160567 [ 246.344598][ T7713] total_pgmajfault 155 [ 246.344606][ T7713] total_inactive_anon 34205696 [ 246.344616][ T7713] total_active_anon 276897792 [ 246.344626][ T7713] total_inactive_file 4096 [ 246.344635][ T7713] total_active_file 0 [ 246.344644][ T7713] total_unevictable 0 [ 246.344653][ T7713] anon_cost 0 [ 246.344662][ T7713] file_cost 0 [ 246.344672][ T7713] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.404,pid=7717,uid=0 [ 246.344863][ T7713] Memory cgroup out of memory: Killed process 7717 (syz.0.404) total-vm:164300kB, anon-rss:980kB, file-rss:53300kB, shmem-rss:8896kB, UID:0 pgtables:320kB oom_score_adj:1000 [ 247.281669][ T8164] sctp: [Deprecated]: syz.1.519 (pid 8164) Use of struct sctp_assoc_value in delayed_ack socket option. [ 247.281669][ T8164] Use struct sctp_sack_info instead [ 247.296216][ T8138] tty tty12: ldisc open failed (-12), clearing slot 11 [ 248.215140][ T8134] Console: switching to colour VGA+ 80x25 [ 248.346430][ T8141] ================================================================== [ 248.346452][ T8141] BUG: KASAN: slab-out-of-bounds in fbcon_prepare_logo+0xa03/0xc70 [ 248.346488][ T8141] Read of size 6 at addr ffff88802fabb5f6 by task syz.3.511/8141 [ 248.346511][ T8141] [ 248.346523][ T8141] CPU: 1 UID: 0 PID: 8141 Comm: syz.3.511 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 248.346556][ T8141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 248.346572][ T8141] Call Trace: [ 248.346580][ T8141] [ 248.346589][ T8141] dump_stack_lvl+0x116/0x1f0 [ 248.346625][ T8141] print_report+0xc3/0x670 [ 248.346655][ T8141] ? __virt_addr_valid+0x5e/0x590 [ 248.346689][ T8141] ? __phys_addr+0xc6/0x150 [ 248.346727][ T8141] ? fbcon_prepare_logo+0xa03/0xc70 [ 248.346756][ T8141] kasan_report+0xe0/0x110 [ 248.346787][ T8141] ? fbcon_prepare_logo+0xa03/0xc70 [ 248.346816][ T8141] kasan_check_range+0xef/0x1a0 [ 248.346853][ T8141] __asan_memcpy+0x23/0x60 [ 248.346878][ T8141] fbcon_prepare_logo+0xa03/0xc70 [ 248.346908][ T8141] fbcon_init+0xd77/0x1900 [ 248.346933][ T8141] ? __pfx_drm_fb_helper_set_par+0x10/0x10 [ 248.346970][ T8141] visual_init+0x31d/0x620 [ 248.347001][ T8141] do_bind_con_driver.isra.0+0x57a/0xbf0 [ 248.347041][ T8141] store_bind+0x61d/0x760 [ 248.347077][ T8141] ? sysfs_file_kobj+0xe4/0x290 [ 248.347111][ T8141] ? __pfx_store_bind+0x10/0x10 [ 248.347144][ T8141] dev_attr_store+0x55/0x80 [ 248.347168][ T8141] ? __pfx_dev_attr_store+0x10/0x10 [ 248.347191][ T8141] sysfs_kf_write+0xef/0x150 [ 248.347225][ T8141] kernfs_fop_write_iter+0x351/0x510 [ 248.347255][ T8141] ? __pfx_sysfs_kf_write+0x10/0x10 [ 248.347290][ T8141] vfs_write+0x5ba/0x1180 [ 248.347315][ T8141] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 248.347347][ T8141] ? __pfx___mutex_lock+0x10/0x10 [ 248.347380][ T8141] ? __pfx_vfs_write+0x10/0x10 [ 248.347415][ T8141] ksys_write+0x12a/0x240 [ 248.347439][ T8141] ? __pfx_ksys_write+0x10/0x10 [ 248.347461][ T8141] ? rcu_is_watching+0x12/0xc0 [ 248.347489][ T8141] do_syscall_64+0xcd/0x230 [ 248.347522][ T8141] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 248.347546][ T8141] RIP: 0033:0x7fa42ed8e169 [ 248.347565][ T8141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 248.347591][ T8141] RSP: 002b:00007fa42c791038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 248.347615][ T8141] RAX: ffffffffffffffda RBX: 00007fa42efb6240 RCX: 00007fa42ed8e169 [ 248.347633][ T8141] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 248.347649][ T8141] RBP: 00007fa42ee10a68 R08: 0000000000000000 R09: 0000000000000000 [ 248.347662][ T8141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 248.347675][ T8141] R13: 0000000000000000 R14: 00007fa42efb6240 R15: 00007ffc41872ca8 [ 248.347696][ T8141] [ 248.347703][ T8141] [ 248.347708][ T8141] Allocated by task 5855: [ 248.347719][ T8141] kasan_save_stack+0x33/0x60 [ 248.347782][ T8141] kasan_save_track+0x14/0x30 [ 248.347807][ T8141] __kasan_kmalloc+0xaa/0xb0 [ 248.347833][ T8141] __kmalloc_noprof+0x223/0x510 [ 248.347860][ T8141] security_inode_init_security+0x13f/0x390 [ 248.347897][ T8141] shmem_mknod+0x22e/0x450 [ 248.347918][ T8141] lookup_open.isra.0+0x11d0/0x1580 [ 248.347950][ T8141] path_openat+0x905/0x2d40 [ 248.347972][ T8141] do_filp_open+0x20b/0x470 [ 248.347993][ T8141] do_sys_openat2+0x11b/0x1d0 [ 248.348021][ T8141] __x64_sys_openat+0x174/0x210 [ 248.348051][ T8141] do_syscall_64+0xcd/0x230 [ 248.348079][ T8141] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 248.348100][ T8141] [ 248.348106][ T8141] Freed by task 5855: [ 248.348117][ T8141] kasan_save_stack+0x33/0x60 [ 248.348139][ T8141] kasan_save_track+0x14/0x30 [ 248.348163][ T8141] kasan_save_free_info+0x3b/0x60 [ 248.348195][ T8141] __kasan_slab_free+0x51/0x70 [ 248.348220][ T8141] kfree+0x2b6/0x4d0 [ 248.348239][ T8141] security_inode_init_security+0x2eb/0x390 [ 248.348272][ T8141] shmem_mknod+0x22e/0x450 [ 248.348292][ T8141] lookup_open.isra.0+0x11d0/0x1580 [ 248.348323][ T8141] path_openat+0x905/0x2d40 [ 248.348344][ T8141] do_filp_open+0x20b/0x470 [ 248.348365][ T8141] do_sys_openat2+0x11b/0x1d0 [ 248.348395][ T8141] __x64_sys_openat+0x174/0x210 [ 248.348425][ T8141] do_syscall_64+0xcd/0x230 [ 248.348455][ T8141] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 248.348477][ T8141] [ 248.348483][ T8141] The buggy address belongs to the object at ffff88802fabb580 [ 248.348483][ T8141] which belongs to the cache kmalloc-64 of size 64 [ 248.348502][ T8141] The buggy address is located 54 bytes to the right of [ 248.348502][ T8141] allocated 64-byte region [ffff88802fabb580, ffff88802fabb5c0) [ 248.348527][ T8141] [ 248.348533][ T8141] The buggy address belongs to the physical page: [ 248.348551][ T8141] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2fabb [ 248.348574][ T8141] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 248.348593][ T8141] page_type: f5(slab) [ 248.348618][ T8141] raw: 00fff00000000000 ffff88801b4418c0 ffffea0000a32840 dead000000000004 [ 248.348641][ T8141] raw: 0000000000000000 0000000080200020 00000000f5000000 0000000000000000 [ 248.348656][ T8141] page dumped because: kasan: bad access detected [ 248.348667][ T8141] page_owner tracks the page as allocated [ 248.348675][ T8141] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5189, tgid 5189 (init), ts 28488983948, free_ts 26841615811 [ 248.348713][ T8141] post_alloc_hook+0x181/0x1b0 [ 248.348737][ T8141] get_page_from_freelist+0x135c/0x3920 [ 248.348768][ T8141] __alloc_frozen_pages_noprof+0x263/0x23a0 [ 248.348796][ T8141] alloc_pages_mpol+0x1fb/0x550 [ 248.348821][ T8141] new_slab+0x244/0x340 [ 248.348840][ T8141] ___slab_alloc+0xd9c/0x1940 [ 248.348860][ T8141] __slab_alloc.constprop.0+0x56/0xb0 [ 248.348883][ T8141] __kmalloc_node_track_caller_noprof+0x2ee/0x510 [ 248.348911][ T8141] krealloc_noprof+0x1fb/0x380 [ 248.348936][ T8141] ima_collect_measurement+0x4b5/0xa40 [ 248.348959][ T8141] process_measurement+0x11fa/0x23e0 [ 248.348991][ T8141] ima_bprm_check+0xe7/0x210 [ 248.349020][ T8141] security_bprm_check+0xa5/0x1e0 [ 248.349040][ T8141] bprm_execve+0x810/0x1650 [ 248.349058][ T8141] do_execveat_common.isra.0+0x4a5/0x610 [ 248.349080][ T8141] __x64_sys_execve+0x8e/0xb0 [ 248.349101][ T8141] page last free pid 1 tgid 1 stack trace: [ 248.349113][ T8141] __free_frozen_pages+0x69d/0xff0 [ 248.349135][ T8141] kasan_depopulate_vmalloc_pte+0x63/0x80 [ 248.349160][ T8141] __apply_to_page_range+0x617/0xd60 [ 248.349180][ T8141] kasan_release_vmalloc+0xd1/0xe0 [ 248.349201][ T8141] purge_vmap_node+0x1cb/0xa70 [ 248.349231][ T8141] __purge_vmap_area_lazy+0x9d1/0xc90 [ 248.349262][ T8141] _vm_unmap_aliases+0x43b/0x670 [ 248.349292][ T8141] change_page_attr_set_clr+0x252/0x4a0 [ 248.349316][ T8141] set_memory_nx+0xb5/0x110 [ 248.349338][ T8141] free_init_pages+0x79/0xd0 [ 248.349366][ T8141] free_kernel_image_pages+0x24/0x50 [ 248.349391][ T8141] kernel_init+0x30/0x2b0 [ 248.349410][ T8141] ret_from_fork+0x45/0x80 [ 248.349430][ T8141] ret_from_fork_asm+0x1a/0x30 [ 248.349464][ T8141] [ 248.349469][ T8141] Memory state around the buggy address: [ 248.349481][ T8141] ffff88802fabb480: 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc fc [ 248.349498][ T8141] ffff88802fabb500: 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc fc [ 248.349515][ T8141] >ffff88802fabb580: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 248.349527][ T8141] ^ [ 248.349541][ T8141] ffff88802fabb600: 00 00 00 00 04 fc fc fc fc fc fc fc fc fc fc fc [ 248.349558][ T8141] ffff88802fabb680: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 248.349572][ T8141] ================================================================== [ 248.350151][ T8141] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 248.350169][ T8141] CPU: 1 UID: 0 PID: 8141 Comm: syz.3.511 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(full) [ 248.350202][ T8141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 248.350216][ T8141] Call Trace: [ 248.350224][ T8141] [ 248.350234][ T8141] dump_stack_lvl+0x3d/0x1f0 [ 248.350269][ T8141] panic+0x71c/0x800 [ 248.350305][ T8141] ? __pfx_panic+0x10/0x10 [ 248.350338][ T8141] ? irqentry_exit+0x3b/0x90 [ 248.350369][ T8141] ? lockdep_hardirqs_on+0x7c/0x110 [ 248.350400][ T8141] ? preempt_schedule_thunk+0x16/0x30 [ 248.350426][ T8141] ? fbcon_prepare_logo+0xa03/0xc70 [ 248.350450][ T8141] ? preempt_schedule_common+0x44/0xc0 [ 248.350483][ T8141] ? fbcon_prepare_logo+0xa03/0xc70 [ 248.350507][ T8141] check_panic_on_warn+0xab/0xb0 [ 248.350542][ T8141] end_report+0x107/0x170 [ 248.350571][ T8141] kasan_report+0xee/0x110 [ 248.350601][ T8141] ? fbcon_prepare_logo+0xa03/0xc70 [ 248.350629][ T8141] kasan_check_range+0xef/0x1a0 [ 248.350663][ T8141] __asan_memcpy+0x23/0x60 [ 248.350685][ T8141] fbcon_prepare_logo+0xa03/0xc70 [ 248.350716][ T8141] fbcon_init+0xd77/0x1900 [ 248.350749][ T8141] ? __pfx_drm_fb_helper_set_par+0x10/0x10 [ 248.350791][ T8141] visual_init+0x31d/0x620 [ 248.350824][ T8141] do_bind_con_driver.isra.0+0x57a/0xbf0 [ 248.350861][ T8141] store_bind+0x61d/0x760 [ 248.350890][ T8141] ? sysfs_file_kobj+0xe4/0x290 [ 248.350922][ T8141] ? __pfx_store_bind+0x10/0x10 [ 248.350953][ T8141] dev_attr_store+0x55/0x80 [ 248.350977][ T8141] ? __pfx_dev_attr_store+0x10/0x10 [ 248.350999][ T8141] sysfs_kf_write+0xef/0x150 [ 248.351033][ T8141] kernfs_fop_write_iter+0x351/0x510 [ 248.351063][ T8141] ? __pfx_sysfs_kf_write+0x10/0x10 [ 248.351099][ T8141] vfs_write+0x5ba/0x1180 [ 248.351124][ T8141] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 248.351156][ T8141] ? __pfx___mutex_lock+0x10/0x10 [ 248.351189][ T8141] ? __pfx_vfs_write+0x10/0x10 [ 248.351223][ T8141] ksys_write+0x12a/0x240 [ 248.351248][ T8141] ? __pfx_ksys_write+0x10/0x10 [ 248.351271][ T8141] ? rcu_is_watching+0x12/0xc0 [ 248.351300][ T8141] do_syscall_64+0xcd/0x230 [ 248.351332][ T8141] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 248.351354][ T8141] RIP: 0033:0x7fa42ed8e169 [ 248.351373][ T8141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 248.351394][ T8141] RSP: 002b:00007fa42c791038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 248.351415][ T8141] RAX: ffffffffffffffda RBX: 00007fa42efb6240 RCX: 00007fa42ed8e169 [ 248.351431][ T8141] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 248.351446][ T8141] RBP: 00007fa42ee10a68 R08: 0000000000000000 R09: 0000000000000000 [ 248.351461][ T8141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 248.351475][ T8141] R13: 0000000000000000 R14: 00007fa42efb6240 R15: 00007ffc41872ca8 [ 248.351497][ T8141] [ 248.351769][ T8141] Kernel Offset: disabled