last executing test programs: 6.393585156s ago: executing program 0 (id=997): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0) (async) r1 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x40400, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) socket(0x2b, 0x1, 0x1) (async) io_uring_register$auto(r1, 0x80000000, 0x0, 0x76a7ceb) (async) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r2, 0x4b64, 0x8000000000038) (async) r3 = openat$auto_l2cap_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) pread64$auto(r3, &(0x7f0000000000)='\x0e\x00\x00\x97\x10<\xac\x87\xcd\xfa\x93\xe8\xc7\xd6S\xe67\x90t\xd3U\x7f5\xbb\xd2H\xa9\x16\x82E(\x9f{\b\x1e%#}Ds\xb8\xeaZ\x17/\xf6\xc2\x97D', 0x8000000002, 0x0) (async) socket(0x2, 0x801, 0x100) (async) listen$auto(0x3, 0x81) (async) accept$auto(0x3, 0xffffffffffffffff, 0xffffffffffffffff) (async) recvmmsg$auto(r1, &(0x7f0000000280)={{&(0x7f00000000c0), 0x2, &(0x7f0000000040)={&(0x7f0000000180)="b0347cc0671123a33a110f9a041c4e1b706545fafefb324a995ecfe7a28c3bfd13a36ea4915775f2d6ef263a513a6c83f5560026e61456df73d38fe4caa35c85bc392a7c6b89ad8d33aa", 0x1}, 0x40, &(0x7f0000000200)="8d55e64205ddea3992c012e51337f6906911630e3495b858798df231a3a517fcc12153758437fce838723ae3364b6ac80a44fe2047608c11432479b04c096bbc91ec49ccb4d727b97bcf33454a1bfecd052a2ebd76c96377c84f3a9bbf6b6f", 0x0, 0x4}, 0x80}, 0x80, 0xd, &(0x7f00000002c0)={0x7, 0x4}) r4 = getsockopt$auto_SO_SNDTIMEO_NEW(r3, 0x7f, 0x43, &(0x7f0000000300)='\x00', &(0x7f0000000340)=0xfff) timerfd_settime$auto(r4, 0x78000000, &(0x7f0000000380)={{0x7, 0x2}, {0x6, 0xcd}}, &(0x7f00000003c0)={{0x1, 0xd}, {0x537f, 0x8e3}}) sendmsg$auto_NL802154_CMD_DEL_SEC_DEV(r4, &(0x7f0000000400)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x24, 0x0, 0x800, 0x70bd28, 0x100, {}, [@NL802154_ATTR_PAGE={0x5, 0x7, 0x80}, @NL802154_ATTR_IFTYPE={0x8, 0x5, 0xb}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000001}, 0x4815) (async) writev$auto(r0, &(0x7f0000000080)={&(0x7f0000000040), 0x1000}, 0x3) 6.260172931s ago: executing program 0 (id=999): close_range$auto(0x0, 0xfffffffffffff000, 0x2) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000) socket(0xa, 0x2, 0x3a) mmap$auto(0x0, 0x4, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) socket(0x29, 0x2, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/self/net/kcm_stats\x00', 0x8282, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) socket(0x1e, 0x4, 0x0) socketpair$auto(0xffffffff, 0x2, 0x8, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) ioctl$auto_TIOCSTI2(r0, 0x5412, 0x0) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x2, 0x4, 0x8201, 0x2, 0x8, 0xc, 0xe3, 0x4000000002, 0x3}, 0x6f4) r1 = socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000340)=ANY=[@ANYBLOB="13000300", @ANYRES16=0x0, @ANYBLOB="010027bd7000fcdbdf250a000000040002"], 0x18}, 0x1, 0x0, 0x0, 0x801}, 0x40) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="18000000", @ANYRES8=0x0, @ANYRES8=r1], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x80) r2 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000200)='/dev/usbmon0\x00', 0x80, 0x0) openat$auto_vga_arb_device_fops_vgaarb(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) select$auto(0x5, &(0x7f0000000080)={[0x4c, 0x0, 0x5, 0x7, 0x7, 0x5, 0x0, 0x7, 0x9, 0x4, 0x9, 0x8000, 0xff, 0xd8, 0x8, 0x800]}, 0x0, 0x0, 0x0) ioctl$auto_MON_IOCX_MFETCH(r2, 0xc0109207, &(0x7f0000000100)={0x0, 0x2000004, 0x7}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x2) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) 4.854337809s ago: executing program 0 (id=1004): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) (async) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) (async) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) (async) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) (async) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x8000) (async) r2 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) r3 = epoll_create$auto(0x4) (async) r4 = epoll_create$auto(0x3e) epoll_ctl$auto(r4, 0x1, r3, 0x0) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r2) r6 = getsid$auto(0x0) shmctl$auto(0x0, 0xfffffff9, &(0x7f0000000200)={{0x72, 0xffffffffffffffff, 0xee01, 0x82, 0x638, 0x0, 0x98a}, 0xb, 0x0, 0x9, 0x6f, @inferred=r6, @raw=0x8, 0x2b, 0x0, &(0x7f0000001d80), &(0x7f0000000140)="1080293e23fab7e94a8bfaf4423a6679956213b0c23340e67085d91a2bf39dd53660d2603d231fd1df8b443550a58b8a963cfe1facc018181cce91c50450d1935c6bb7dcca68fd0909bde1375630a4875933f9e3777faf2e0c627e17a54b36dd2ad487cd0f5dc98c366885650df05acd96817f56f9797427a7134f3b63b594bb4c05ae743754c230258acb40b43de61edf0cabe5b50390a650a511874da2ab59"}) sendmsg$auto_NL80211_CMD_FRAME_WAIT_CANCEL(r3, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000080)={&(0x7f0000002d80)={0x2ac, r5, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_EMA_RNR_ELEMS={0x144, 0x145, 0x0, 0x1, [@generic="19e37b", @generic, @generic="a5c5cdacf7c22822dd2ea5d92c2d4158eb7c8220ea449844591648b1a7c7275b65278573a70d923c74ee82c38b444210bb5f10c61db2922c95b5e6fc7f1f280b4057ca5960593a6310d1b951282790c99c8abe446e7095a6fe7ffc076f20e4ac6307233aaadfe738a176e9b34934a48582557f2402675c059b0e99087a9de89dc25ed7a3487d6509385358403330a33d0e1e9a9309ce03faa72141f5be377c44b5e255dd4a98870c5be8fdb8206b5ac30c65bd2bf90956b6f32b8e647480f9cab6cd1d481a719eb6dce3587514f586342bf264c11d405755cc1a173456d096290fa63a983e5b8156b7e6468974667b8a41108c656e", @typed={0xc, 0xbb, 0x0, 0x0, @u64=0x8}, @nested={0x3a, 0xaa, 0x0, 0x1, [@typed={0x8, 0x83, 0x0, 0x0, @uid=r7}, @generic="66bc", @nested={0x4, 0x16}, @nested={0x4, 0x3c}, @generic="fef3bc39de13562e118eb7ceaa4f", @generic, @generic="70c35a4105e7051f5e1f7f6b5571", @nested={0x4, 0xb3}, @nested={0x4, 0x10d}]}]}, @NL80211_ATTR_COLOR_CHANGE_ELEMS={0xc, 0x131, 0x0, 0x1, [@NL80211_ATTR_PUNCT_BITMAP={0x8, 0x142, 0x4}]}, @NL80211_ATTR_MAC_ADDRS={0x110, 0xa6, 0x0, 0x1, [@typed={0x8, 0xae, 0x0, 0x0, @u32=0x8000}, @nested={0x101, 0x6e, 0x0, 0x1, [@typed={0x8, 0x110, 0x0, 0x0, @pid=r6}, @typed={0xd, 0x138, 0x0, 0x0, @str='/dev/sda\x00'}, @nested={0x4, 0x2f}, @generic="1df4464a2421b765b27f88487c2774beaccad359e6d551f76b43280a36bc98e2488c2f98f9d509c765ec4400df5775e58abe6523c5990d84a3a8b532807e38df44a4197cd3fe75ae8488e576dcfced8b4e1f1870150383f7e545370909b9fae44cdadd5308e5bdf1702c89070def8305f1ead7c72fcb860fda488eaaa6b6f5f3dd102e47fd5bf6ce2ac3fc1990c153c57a4122b91670ea3bd736f4cbe39ef59263b5006dc083f031c29ef79ad22b4d7eea6b4259e8b9ec4fedd27954b1dfc5f45bfdaad3993959a7ede08d644bbad78ae47ce65627e30dd5bc", @nested={0x4}, @nested={0x4, 0x118}]}]}, @NL80211_ATTR_HE_CAPABILITY={0x35, 0x10d, "bbc7cbc3739e7b02c46946f9b87910c74c4712d0aa5c0eae733ac1cfc70050c8a7cc673906f64357d2cc789ebe69ac599d"}]}, 0x2ac}, 0x1, 0x0, 0x0, 0x11}, 0x8000) (async) mmap$auto(0x0, 0x8020009, 0xe2, 0xcb1, 0x401, 0x8040001008000) (async) timer_create$auto(0x2, 0x0, 0x0) (async) timer_settime$auto(0x0, 0x3, &(0x7f00000000c0)={{0x4, 0x4}, {0x0, 0x83}}, 0x0) (async) timer_delete$auto(0x0) (async) r8 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000) (async) io_uring_setup$auto(0x48, 0x0) (async) r9 = socket(0xa, 0x3, 0x73) setsockopt$auto(r9, 0xff, 0x7, 0x0, 0xfff) (async) ioctl$auto(r8, 0x5393, r2) (async) mmap$auto(0x0, 0x2, 0xdf, 0x9b72, 0x7, 0xfffffffffffffff9) r10 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001040)='/sys/devices/virtual/block/ram11/queue/discard_zeroes_data\x00', 0x105080, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r10, 0x0, 0x0) 4.586157212s ago: executing program 3 (id=1005): clock_getres$auto(0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/loginuid\x00', 0x3c8082, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2b, 0x1, 0x0) socket(0x2c, 0x3, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x7fffffff, 0x6, 0x0, 0x7, 0x3690, 0x2, {0xfffffffc, 0x10000}, 0x5, 0x6, 0x4, 0x1008000, 0x0, 0x80000080000004, 0x84, 0xffffffffffff6291, 0xffff, 0xdeb1, 0x806}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f00000000c0), r1) sendmsg$auto_TCP_METRICS_CMD_GET(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x28, r2, 0x1, 0x70bd27, 0x25dfdbff, {}, [@TCP_METRICS_ATTR_ADDR_IPV6={0x14, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}, 0x28}, 0x1, 0x0, 0x0, 0x20040014}, 0x24000000) recvmmsg$auto(0x3, 0x0, 0x11c00, 0x0, 0x0) 4.558393803s ago: executing program 1 (id=1006): r0 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/pcmC0D0c\x00', 0x101102, 0x0) mmap$auto(0x0, 0x2020009, 0x7, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async) openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) unshare$auto(0x40000080) (async) mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async) socket(0xa, 0x1, 0x100) (async) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x20b42, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, 0x0) (async) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) (async) setregid$auto(0x0, 0x3) (async) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) (async) r2 = getpgid(0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) socket(0x2, 0x1, 0x0) rt_tgsigqueueinfo$auto(0xffffffffffffffff, r2, 0x8, &(0x7f0000000100)={@siginfo_0_0={0x6, 0xe, 0x5, @_sigchld={r2, 0x0, 0x401, 0x5, 0x3}}}) open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40) execve$auto(&(0x7f0000000180)='./file0\x00', &(0x7f0000000100)=&(0x7f0000000080)='\xac\x00', &(0x7f0000000000)=&(0x7f0000000200)=' ') mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) r3 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000) (async) recvmmsg$auto(r3, &(0x7f0000000140)={{0x0, 0x1, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x200002, 0x10001}, 0x6}, 0xfffffff9, 0x10, 0x0) (async) r4 = gettid() process_vm_writev$auto(r4, 0x0, 0x3, 0x0, 0x4, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0xc) (async) ioctl$auto_SNDRV_PCM_IOCTL_TTSTAMP2(r0, 0x40044103, &(0x7f0000000080)=0x78) 3.598179978s ago: executing program 0 (id=1007): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x100000000000007, 0x0) r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x40080, 0x0) ioctl$auto_UI_DEV_SETUP(r2, 0x405c5503, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg1\x00', 0x40042, 0x0) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0x80040, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x0, 0x0) ioctl$auto(r4, 0x4b45, r3) sendmsg$auto_OVS_DP_CMD_DEL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)=ANY=[@ANYBLOB="24010000", @ANYRES16=0x0, @ANYBLOB="00042abd7000fddbdf250200000008000200", @ANYRES32=0x0, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x8040}, 0x8004) ioctl$auto_UI_DEV_CREATE(r2, 0x5501, 0x0) socket(0xa, 0x801, 0x84) close_range$auto(0x2, 0x8, 0x0) socket(0x848000000015, 0x5, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) adjtimex$auto(0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r5, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) socket(0x9, 0x2, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) 3.595334172s ago: executing program 3 (id=1008): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000) getsockopt$auto(0xffffffffffffffff, 0xa1, 0x3, 0x0, 0x0) syz_genetlink_get_family_id$auto_macsec(&(0x7f00000003c0), 0xffffffffffffffff) syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000040), r0) (async) syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000040), r0) r1 = semctl$auto_SEM_STAT_ANY(0xe, 0xfffffffb, 0x14, 0x7) sendmsg$auto_OVS_VPORT_CMD_GET(r0, 0x0, 0x2401c05c) (async) sendmsg$auto_OVS_VPORT_CMD_GET(r0, 0x0, 0x2401c05c) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x801, 0x0) (async) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x801, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff) r2 = socket(0x2, 0x1, 0x106) sendmsg$auto_OVS_VPORT_CMD_SET(r2, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4100}, 0x20000000) socket(0xa, 0x2, 0x0) (async) socket(0xa, 0x2, 0x0) sendto$auto(0xffffffffffffffff, 0x0, 0xe, 0x42, &(0x7f0000000040)=@ax25={0x3, @bcast, 0x6}, 0x16) getpgid(r1) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) (async) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) flock$auto(0xffffffffffffffff, 0x4) (async) flock$auto(0xffffffffffffffff, 0x4) socket(0x2, 0x3, 0x6) (async) socket(0x2, 0x3, 0x6) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, 0x0, 0x4000000) unshare$auto(0x40000080) socket(0x2b, 0x3, 0x1) (async) socket(0x2b, 0x3, 0x1) socket(0x28, 0x800, 0x5eb8ae40) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) r3 = open(&(0x7f0000000100)='./file0\x00', 0x76203, 0xe1d2b27bdc14aa9c) flock$auto(r3, 0x5) (async) flock$auto(r3, 0x5) 3.497806767s ago: executing program 1 (id=1010): mmap$auto(0x0, 0x20009, 0x4000000000e0, 0x40000000000eb1, 0x401, 0x8004) r0 = socket(0xa, 0x2, 0x88) setsockopt$auto(r0, 0x11, 0xb, 0x0, 0x8) 2.913965459s ago: executing program 1 (id=1011): mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000180)='nfsd\x00', 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x9e1, 0xeb1, 0xfffffffffffffffa, 0x8000) timer_create$auto(0x8, 0x0, 0x0) timer_settime$auto(0x0, 0x9, &(0x7f00000000c0)={{0x7fff, 0x30d}, {0x7, 0x4}}, 0x0) mmap$auto(0x0, 0x400005, 0xffffffffffffffde, 0x14, 0x2, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0x8000008, 0x4, 0x389d, 0x3, 0x26, 0x940, 0x1ffde, 0x3, 0x4, 0x902a, 0x29, 0x400005, 0x3, 0x4, 0xb0, 0x8, 0x9, 0x3, 0x5, 0x6, 0x80000000, 0xffffffff, 0x4, 0x0, 0x0, 0x0, [0x3, 0x3, 0x200000000, 0x400000000, 0x0, 0x3903, 0x0, 0x8, 0xd, 0x7, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffa, 0x0, 0x0, 0x0, 0x0, 0xffffffeffffffffe, 0xffffffff80000001, 0x0, 0xceb, 0xfffffffffffffffe, 0xfffffffffffffffc, 0xe539, 0x1, 0x96f, 0xffffffffffffffff, 0x1, 0x4001, 0x3, 0x0, 0x5, 0x8, 0x54c3, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x4, 0x0, 0xfffffffffffffffb, 0x3]}, 0xfffff7fffffffffa, 0x81) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = socket(0x28, 0x5, 0x0) bind$auto(r1, 0x0, 0x3) mlockall$auto(0x7) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x9, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r1, 0x80000000) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000100), 0xffffffffffffffff) openat$auto_iommufd_fops_main(0xffffffffffffff9c, 0x0, 0x80001, 0x0) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002dbd7000f9dbdf250100000005000d00100000000500070010000000080009009c781e2108000a000800000014001f000000000000000000c0feffff0000000014002000ff01fafffffd000000000003000000000600020001"], 0x78}, 0x1, 0x0, 0x0, 0x40000}, 0x400c004) r5 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0) write$auto_fuse_dev_operations_fuse_i(r5, &(0x7f00000005c0)="1100000005000000000000000001000000", 0x11) r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x2802, 0x0) r7 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r7, &(0x7f0000000440)="671d264add69b6440843b6e6688a2b5ad9df2669e6f9cd236532b20ed763ac8caf4bde4c30b530ac6ebbff950e1a647d6a1b4d", 0x33) writev$auto(r6, &(0x7f0000000200)={0x0, 0x7}, 0x3) timerfd_create$auto(0x8, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x82802, 0x0) timer_gettime$auto(0x0, 0x0) adjtimex$auto(&(0x7f0000000380)={0x8, 0x0, 0x2, 0xd, 0x5, 0x3, 0xd, 0x0, 0x4, 0x7, 0x800, {0x5, 0x2}, 0x2, 0x100000001, 0x8, 0x9, 0x0, 0x0, 0x7f, 0x3, 0x1, 0x40, 0x5}) 2.79764521s ago: executing program 2 (id=1012): mmap$auto(0x0, 0x2020009, 0x0, 0xeb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0) madvise$auto(0x0, 0x20499d, 0x9) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(r0, &(0x7f0000002f40)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYRESOCT=r0, @ANYRES8=r0, @ANYRESDEC=r0, @ANYRES32=r0, @ANYRES64=r0, @ANYRES16=r0, @ANYRESOCT=r0, @ANYRESDEC=r0, @ANYRESHEX=r0], 0x14}, 0x1, 0xffff0000, 0x0, 0x24048805}, 0x20040080) socket(0x1e, 0x1, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x121900, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) open(&(0x7f00000001c0)='./file1\x00', 0xb22142, 0x1) socket(0x2b, 0x1, 0x1) socket(0x23, 0x2, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x5, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) close_range$auto(0x2, 0x8, 0xfffffffe) socket(0x2, 0x1, 0x0) socket(0xa, 0x5, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/cpu1/cache/index2/size\x00', 0x180, 0x0) io_uring_setup$auto(0x6, 0x0) pipe$auto(0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback}, 0x55) prctl$auto_PR_SET_FPEXC(0xc, 0x4, 0x0, 0x1, 0x8001) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000180), 0xffffffffffffffff) 2.407468506s ago: executing program 0 (id=1013): r0 = socket(0x11, 0x3, 0x6) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, 0x0, 0x80100, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) setresuid$auto(0x2, 0x7, 0x0) ioctl$auto(r1, 0x5606, 0xffffffffffffffff) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x100, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) ioctl$auto(0x3, 0xae41, 0x38) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r0) sendmsg$auto_NL80211_CMD_SET_MESH_CONFIG(r0, &(0x7f0000000540)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000500)={&(0x7f0000000180)={0x37c, r5, 0x20, 0x70bd2a, 0x25dfdbfc, {}, [@NL80211_ATTR_BEACON_HEAD={0x35f, 0xe, "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"}, @NL80211_ATTR_BSS_SHORT_PREAMBLE={0x5}]}, 0x37c}}, 0x8841) ioctl$auto(0x3, 0xae41, r4) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/dummy_hcd.1/power/runtime_status\x00', 0x400, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000000100)=""/19, 0x13) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/blkio.bfq.sectors\x00', 0x182, 0x0) sendfile$auto(r7, r7, 0x0, 0x88) ioctl$auto_KVM_CREATE_VM(r2, 0x4138ae84, 0x0) 2.118508649s ago: executing program 2 (id=1014): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) socket(0x2, 0x1, 0x0) socket(0x2, 0x6, 0x0) sysfs$auto(0x2, 0x0, 0x0) epoll_create$auto(0x4) r0 = socket$nl_generic(0x10, 0x3, 0x10) epoll_ctl$auto(0x5, 0x1, r0, 0x0) read$auto_proc_pid_attr_operations_base(0xffffffffffffffff, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) epoll_ctl$auto(0x5, 0x3, r0, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) open(&(0x7f0000000040)='./file0\x00', 0x103040, 0x4) sysfs$auto(0x2, 0x44, 0x0) fsopen$auto(0x0, 0x1) preadv$auto(0x3, &(0x7f00000004c0)={0x0, 0x8000000}, 0x3, 0x10000, 0xc) sched_setattr$auto(0x0, &(0x7f00000002c0)={0x1000, 0x4e, 0x1d, 0xc, 0x6, 0x5f02, 0x82, 0x9, 0x877, 0x6}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0xa, 0x0) r1 = open(0x0, 0x261c2, 0x84) r2 = socket(0xa, 0x2, 0x88) close_range$auto(0x2, 0x8000, 0x0) socket(0xa, 0x5, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/mnt\x00') socket(0x25, 0x5, 0x0) bpf$auto(0x0, &(0x7f00000000c0)=@link_update={0xa, @new_map_fd=r2, 0x100, @old_prog_fd=r2}, 0x10) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r1, 0x0, 0x3}, 0xc) r3 = open(&(0x7f0000000080)='./file0\x00', 0x22000, 0x50) ppoll$auto(&(0x7f0000000240)={r3, 0xfffe, 0x9}, 0xf7, 0x0, &(0x7f00000002c0)={0x5}, 0x8) 2.101597856s ago: executing program 1 (id=1015): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0xaa102, 0x0) write$auto(r0, 0x0, 0x36) mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0x6, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0001, 0x0) r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0) shmctl$auto_SHM_INFO(0x7, 0xe, &(0x7f0000001080)={{0x5, 0x0, 0x0, 0xfffffff7, 0x2, 0x5, 0x6}, 0x400, 0x4, 0x1000, 0x1800000000000000, @raw=0x7, @raw=0x28e, 0x6, 0x0, &(0x7f0000000000)="fbfc5ab80473a07faab0aa0f45773e1aa1d2cb0584d814e78cefbf8c87e1a81785f0da9e2ff2f6e8a1274272b0edf384f85984942bc3da3bcbbcc2dba59e94", 0x0}) socket(0x15, 0x1, 0x0) socket(0x1e, 0x2, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x4000000000000, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) socket(0x2, 0x80002, 0x73) open(0x0, 0x2a4c0, 0x20) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x8000, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/midi2\x00', 0x103341, 0x0) ioctl$auto(0xffffffffffffffff, 0x40045542, r3) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) close_range$auto(0x2, 0x8, 0x0) mbind$auto(0x0, 0x100000004, 0x4, 0x0, 0x20000000000006, 0x2) 1.946929089s ago: executing program 0 (id=1016): r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) socket(0x2, 0x1, 0x0) sendmsg$auto_NL80211_CMD_SET_INTERFACE(r0, 0x0, 0x4000) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) madvise$auto(0x0, 0xffffffffffff0005, 0x19) munmap$auto(0x20001000, 0x7) poll$auto(&(0x7f0000000040)={0x3, 0x1, 0xa}, 0x5, 0x108) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000) getsockopt$auto_SO_TIMESTAMPING_OLD(r0, 0x8001, 0x25, &(0x7f0000000000)='\x00', &(0x7f00000000c0)=0x81) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x24044011}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, 0x0, 0x101002, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0xf1, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) clock_nanosleep$auto(0x2, 0x8, 0x0, 0x0) r1 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy0/netdev:wlan0/flags\x00', 0x1880, 0x0) read$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(r1, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) syz_genetlink_get_family_id$auto_batadv(&(0x7f00000001c0), r0) 1.621754596s ago: executing program 2 (id=1017): clock_getres$auto(0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/loginuid\x00', 0x3c8082, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2b, 0x1, 0x0) socket(0x2c, 0x3, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x7fffffff, 0x6, 0x0, 0x7, 0x3690, 0x2, {0xfffffffc, 0x10000}, 0x5, 0x6, 0x4, 0x1008000, 0x0, 0x80000080000004, 0x84, 0xffffffffffff6291, 0xffff, 0xdeb1, 0x806}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f00000000c0), r1) sendmsg$auto_TCP_METRICS_CMD_GET(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x28, r2, 0x1, 0x70bd27, 0x25dfdbff, {}, [@TCP_METRICS_ATTR_ADDR_IPV6={0x14, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}, 0x28}, 0x1, 0x0, 0x0, 0x20040014}, 0x24000000) recvmmsg$auto(0x3, 0x0, 0x11c00, 0x0, 0x0) 1.21769271s ago: executing program 3 (id=1018): madvise$auto_MADV_REMOVE(0x7, 0x2, 0x9) setreuid$auto(0x15, 0x0) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x301901, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_PVERSION(r0, 0x80045500, &(0x7f0000000040)=0x2) keyctl$auto(0x4, 0xfffff7ffffffffff, 0x0, 0x8, 0x8) 1.075111005s ago: executing program 3 (id=1019): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8) (async) rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x801, 0x100) io_uring_setup$auto(0x6, 0x0) (async) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) pipe$auto(0x0) write$auto(0x3, 0x0, 0x200ffd8) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ioctl$auto(r0, 0x2203, r0) (async) ioctl$auto(r0, 0x2203, r0) 985.143493ms ago: executing program 2 (id=1020): openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000040)='/dev/usbmon30\x00', 0x20102, 0x0) r0 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000080)='/dev/usbmon36\x00', 0x40201, 0x0) ioctl$auto_MON_IOCH_MFLUSH(r0, 0x9208, 0x0) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/fs/netfs/caches\x00', 0x20000, 0x0) lseek$auto(r1, 0x3, 0x1) r2 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x80882, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) r3 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000040), r2) sendmsg$auto_OVS_VPORT_CMD_GET(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)={0x28, r3, 0x1, 0x71bd27, 0x25dfdbfe, {}, [@OVS_VPORT_ATTR_OPTIONS={0x4}, @OVS_VPORT_ATTR_NAME={0xe, 0x3, 'ovs_vport\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x0) 954.33037ms ago: executing program 1 (id=1021): r0 = socket$nl_generic(0x10, 0x3, 0x10) (async) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000b80), 0xffffffffffffffff) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/loop6\x00', 0x2, 0x0) ioctl$auto_IOC_PR_REGISTER(r2, 0x401870c8, 0x0) (async) sendmsg$auto_NL80211_CMD_GET_WOWLAN(r0, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000000)={0x24, r1, 0x300, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x8}, @NL80211_ATTR_CH_SWITCH_COUNT={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x0) 789.798254ms ago: executing program 2 (id=1022): mmap$auto(0x0, 0x2020009, 0x0, 0xeb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0) madvise$auto(0x0, 0x20499d, 0x9) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(r0, &(0x7f0000002f40)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYRESOCT=r0, @ANYRES8=r0, @ANYRESDEC=r0, @ANYRES32=r0, @ANYRES64=r0, @ANYRES16=r0, @ANYRESOCT=r0, @ANYRESDEC=r0, @ANYRESHEX=r0], 0x14}, 0x1, 0xffff0000, 0x0, 0x24048805}, 0x20040080) socket(0x1e, 0x1, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x121900, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) open(&(0x7f00000001c0)='./file1\x00', 0xb22142, 0x1) socket(0x2b, 0x1, 0x1) socket(0x23, 0x2, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x5, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) close_range$auto(0x2, 0x8, 0xfffffffe) socket(0x2, 0x1, 0x0) socket(0xa, 0x5, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/cpu1/cache/index2/size\x00', 0x180, 0x0) io_uring_setup$auto(0x6, 0x0) pipe$auto(0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback}, 0x55) prctl$auto_PR_SET_FPEXC(0xc, 0x4, 0x0, 0x1, 0x8001) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000180), 0xffffffffffffffff) 589.558645ms ago: executing program 1 (id=1023): madvise$auto(0x0, 0xffffffffffff0001, 0x15) close_range$auto(0x2, 0x8, 0x0) socket(0x11, 0x3, 0x9) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mmap$auto(0x0, 0x202000d, 0x8000000002, 0xeb1, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x10000000000048, 0x0) r0 = fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0x4010ae67, r0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r2 = socket(0x2, 0x1, 0x106) socket(0x28, 0x1, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptyw1\x00', 0x20000, 0x0) ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB="2f212abd"], 0x14}}, 0x4000000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x20940, 0x0) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000180)={[0x1ff, 0x7, 0xd, 0x8000000000001, 0x948b, 0x4460, 0x15f4da0a, 0x1f, 0x7, 0x300000000000000, 0x1, 0x7, 0xfffffffffffffffd, 0x5, 0x2]}, 0x0) close_range$auto(0x2, 0x8, 0x0) shmget$auto(0x400, 0x10563, 0x568c12f2) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0xc76, 0x8000) clone$auto(0x100001002, 0x3, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0x100000000000027, 0x0) fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x1, 0xc, 0x4000000000df, 0x44eb2, r2, 0x300000000000) 338.5998ms ago: executing program 2 (id=1024): mmap$auto(0x0, 0x4020009, 0x40000000000db, 0xeb1, 0x401, 0x2) futex$auto(0x0, 0x10d, 0x8, 0x0, 0x0, 0x8) (async) futex$auto(0x0, 0x10d, 0x8, 0x0, 0x0, 0x8) madvise$auto(0x10000, 0xb05e, 0x4) set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7e, 0x4) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) ioperm$auto(0x7, 0x6, 0x2) (async) ioperm$auto(0x7, 0x6, 0x2) modify_ldt$auto(0x807ff0000000000, 0x0, 0x40100000000aa) unshare$auto(0x40000080) (async) unshare$auto(0x40000080) mmap$auto(0x0, 0x2, 0xffffffffffffffff, 0xeb1, 0x401, 0xffffffffffffffff) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kvm_amd/parameters/pause_filter_thresh\x00', 0x200, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0) write$auto_ocfs2_control_fops_stack_user(r1, &(0x7f0000003900)='\t', 0x1) socket(0xa, 0x1, 0x0) (async) r2 = socket(0xa, 0x1, 0x0) recvmmsg$auto(r2, &(0x7f0000000280)={{0x0, 0x1ff, &(0x7f0000000040)={0x0, 0xd}, 0x9, 0x0, 0x80000001, 0x2}, 0x1}, 0x80000000, 0x7956, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000140), r3) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x14, r4, 0x1, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20004041}, 0x4004040) (async) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x14, r4, 0x1, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20004041}, 0x4004040) read$auto(r0, 0x0, 0x1) openat$auto_dev_fops_plock(0xffffffffffffff9c, 0x0, 0x40, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000300)='/proc/sys/net/ipv6/icmp/ratemask\x00', 0x40, 0x0) mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x800000404, 0x8000) epoll_create$auto(0x4) (async) r5 = epoll_create$auto(0x4) epoll_ctl$auto(r5, 0xa245, r5, &(0x7f00000000c0)={0x81, 0x8}) ioperm$auto(0x7, 0x6, 0x2) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) (async) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) shutdown$auto(0x200000003, 0x2) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000380)='/dev/cuse\x00', 0x0, 0x0) (async) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000380)='/dev/cuse\x00', 0x0, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x40000000c07) (async) sendfile$auto(0x1, 0x3, 0x0, 0x40000000c07) madvise$auto(0x0, 0xffffffffffff0005, 0x19) 280.000323ms ago: executing program 3 (id=1025): socket(0x11, 0x3, 0x6) mmap$auto(0x4, 0x208006, 0x1000, 0x11, 0x602, 0x300000000000) r0 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000000), 0x80001, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x3b72, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) openat$auto_full_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) openat$auto_sc_seq_fops_netdebug(0xffffffffffffff9c, &(0x7f0000000180), 0x80000, 0x0) socket(0xa, 0x1, 0x84) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptya7\x00', 0x48140, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) select$auto(0x6, 0x0, &(0x7f0000000240)={[0x7ff, 0x2, 0x5, 0x800000000000000c, 0x8000000000000000, 0xfffffffffffffffb, 0xa72e, 0x5, 0x101, 0x5, 0x4000000000100, 0x400, 0x9, 0x8, 0x1, 0x7f]}, 0x0, 0x0) r2 = socket(0x1e, 0x5, 0x2) ioctl$auto(0x3, 0xae41, 0x38) r3 = socket(0xa, 0x3, 0x3a) ioctl$auto(r3, 0x890b, 0x1) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_VPORT_CMD_DEL(r4, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f00000041c0)={0x24, 0x0, 0x1, 0x70bd28, 0x25dfdbfb, {}, [@OVS_VPORT_ATTR_PORT_NO={0x8, 0x1, 0x4}, @OVS_VPORT_ATTR_IFINDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x40800}, 0x80) sendmsg$auto_OVS_VPORT_CMD_DEL(r3, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="07008dd4c1fa005e", @ANYRES16=0x0, @ANYBLOB="82012dbd7000fcdbdf25020000000800020006000000"], 0x1c}}, 0x20020045) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'gre0\x00', 0x0}) sendmsg$auto_OVS_VPORT_CMD_DEL(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000300)={&(0x7f0000000980)={0x394, 0x0, 0x100, 0x70bd25, 0x25dfdbfb, {}, [@OVS_VPORT_ATTR_IFINDEX={0x8, 0x8, r5}, @OVS_VPORT_ATTR_OPTIONS={0x96, 0x4, 0x0, 0x1, [@generic="04082e765330fba35fc2622cd90517c51a31aa8c172cb1ebfcca191c8f4e6e768aae15ccd6c2ff3c8907f88a9f3b9c3d4ea51871ead0fd9179d21d61d965ac2d02fc68d17766abf6a2225c7e8a28d880f0e7b0e870d7b28e1adcd4ce2c1d9cc6073905381f52dcbf7ea458b9d848f9f641be64c152606b98cf68bcbeb327d00fd96eac74f8b0c6a383c7799607eb0323500a"]}, @OVS_VPORT_ATTR_STATS={0x44, 0x6, {0x3, 0x3, 0x8, 0xbc0d, 0x0, 0x3, 0x100, 0x81ff}}, @OVS_VPORT_ATTR_OPTIONS={0xf8, 0x4, 0x0, 0x1, [@generic="b3caa976e3de35c3bcd5d7adfe6c97d6f29ca2ac436ed79db88ba218821117a9e2baa7a427c5fd92312e83f91b03ee83b8c263b1bb1eb3f00e643cbaf5c88da42dda85da20e82ca62dda466e3604d76c59e9e3e6ca27820d6893ddd6a3fb1b6519b5e2dd6fdfa09c366526a97d413f8ba57b434480159c16a4e24110862106b93a4e5cf3825fd28c09163dd5432aa3b927b12d943f65bbd8c12fcc4f2eb2218a49ba76520787994c88d8d351ee18761ae2709fd7f944951c16a6439a", @nested={0x38, 0x10a, 0x0, 0x1, [@typed={0x8, 0x3ffc, 0x0, 0x0, @fd}, @typed={0x14, 0x69, 0x0, 0x0, @ipv6=@loopback}, @typed={0xc, 0x28, 0x0, 0x0, @u64=0xc3}, @typed={0x8, 0x11, 0x0, 0x0, @u32=0x3}, @nested={0x4, 0x80}]}]}, @OVS_VPORT_ATTR_OPTIONS={0x160, 0x4, 0x0, 0x1, [@typed={0xc, 0xc6, 0x0, 0x0, @u64=0x401}, @nested={0x146, 0xe9, 0x0, 0x1, [@typed={0x8, 0x102, 0x0, 0x0, @u32=0x7631}, @nested={0xcd, 0x4b, 0x0, 0x1, [@generic="96cf0a5cabf0b0a8bf6f7cfcaaad3a81b557057fc087d7c9fcf160854a88ca71da41508605c7cc9569522116e6215a902db0526b7e39d33b5b59d4729760d9f5dbfc58944051c9dccd7ad4", @generic="48f1185ccb8ca4715bd1e701d022b3ccba81ae4497004bdad5627a0ae79d7b6712a7669e7f8d6579b905ce1a600a548995727d2371ef391625a272572c757a766b25e8325a51a5dbbe285e59b7917f5167dcc5b59c5f6ff3e5db", @nested={0x1e, 0x5e, 0x0, 0x1, [@nested={0xc, 0x11e, 0x0, 0x1, [@typed={0x8, 0x6d, 0x0, 0x0, @fd=r4}]}, @generic="cf133d374e58", @typed={0x8, 0x14c, 0x0, 0x0, @u32=0xa}]}, @typed={0x4, 0x107}]}, @generic="b1571f3ba9e64c399866119c6f914bae5b186a7afd64e677f8d95ac12fae66e78b13ba82bf041210c1a7cc6245b65def5376a65aa86b0d0e0dda6e1a6653f9ec2fa84a53c50c0ba19066b77b7216519ea16296fbeab24d8e27d53302361222d31bd32fc73d3ab0d74d4b"]}, @typed={0x8, 0x2c, 0x0, 0x0, @pid}]}, @OVS_VPORT_ATTR_STATS={0x44, 0x6, {0xfffffffffffffff0, 0x8000000000000001, 0x0, 0x1, 0xffffffffffffac8f}}]}, 0x394}, 0x1, 0x0, 0x0, 0x4048841}, 0x40001) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x80000, 0x4) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0x10002, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) 0s ago: executing program 3 (id=1026): unshare$auto(0x40000080) mmap$auto(0xfffffffffffffffe, 0x3, 0x4800000000df, 0x40eb1, 0x401, 0x300000000000) r0 = socket(0xa, 0x1, 0x100) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20b42, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, 0x0) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/asound/card0/pcm0c/sub7/info\x00', 0x0, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f00000003c0)="80e08ca631b90e5e9a4997a0a2f075172c2529fea5d2b4b06119e7cc493e3c68f5e114fe74f6ec1d4e94daec10b05cb281b0922bcba475cea32ccf0eda11471e9c15d15fbcc3bebe4bc005053b7459c5ecbae956634304a2b3c20d024a0df7b468626e493968743cc5ed35ab320b6ffd85d87720f947e83e96c03fca21e0c585095bf40d010cd4fba6c371232889fd43cb084df47b56ff93efb0f707d371175d4dcd1c13802f7a4550e4ef765842dadd3e2bc2df160655b78b5a9438f2f8be466e2b3782469b16c9310ff6307403770f5c225820d582ab93c7ca472e799fe10d61abbfc87ea3846f44cb04eef9ed7c16b2483588") setsockopt$auto(0x400000000000003, 0x29, 0x1c, 0x0, 0x56b) r3 = syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x6, 0x4, 0x4000000000df, 0x7fffffff, 0x401, 0x300000000002) setsockopt$auto_SO_MAX_PACING_RATE(r0, 0x3, 0x2f, &(0x7f0000000300)='\xba\xf13\xa4o\xd3\xd2\xe0v\x95\xe6mAk\x90\xa1\xfd\xb0\xe1\xa6W\x85py\x91Q\xe7\xc9\x05\xce\x17\xe6<0e\x12\xe8/\x16\xf0\xd2\xe5\x06[\vFb\xd6\xc0sTv*\xa6\x97\xb4\xcf\xc8d^\xb1\x7f\xeeH\xd2\xa8\xeb\xad\xdfw\xad\x1e\xcf\x13\xd2\xbbh\xb7\xb1\xa2\x14\xbe=Q\xf3\xd6\x85\x8as\x04\x93\x8c3\n\x9e\xcc\xbdP\x89\xee\xa8\x82\x03\x97\xe6^\x85#\x11T\x8dE\xba\nF\xc2\xe2\x06k\xf0~\xa3\x86h\xc2\xb8\xcfk\x1f', 0x4) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) r4 = getpgid(0x0) socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x3717, &(0x7f0000000240)=@link_update={r2, @new_map_fd=r2, 0x80000001, @old_map_fd=r1}, 0x2) socket(0x2, 0x1, 0x0) socket(0x2, 0x3, 0x6) socket(0x2, 0x5, 0x0) getsockopt$auto(0x4, 0x1, 0x4, 0xfffffffffffffffc, 0x0) rt_tgsigqueueinfo$auto(0xffffffffffffffff, r4, 0x8, &(0x7f0000000100)={@siginfo_0_0={0x6, 0xe, 0x5, @_sigchld={r4, 0x0, 0x401, 0x5, 0x3}}}) open(&(0x7f0000000140)='./file0\x00', 0x2ac00, 0x18) execve$auto(&(0x7f0000000180)='./file0\x00', &(0x7f0000000100)=&(0x7f0000000080), &(0x7f0000000080)=&(0x7f0000000200)=' ') ptrace$auto(0x4206, r3, 0x0, 0x5) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r5 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000040), 0x100, 0x0) ioctl$auto_USB_RAW_IOCTL_EP_SET_WEDGE(r5, 0x4004550f, 0x0) move_pages$auto(0x1, 0x233, 0x0, 0x0, 0x0, 0x8000000000000000) symlink$auto(0x0, &(0x7f0000000000)='\'--[[\x14+\\\x00') socket(0x10, 0x3, 0x6) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.10.26' (ED25519) to the list of known hosts. [ 84.473398][ T5828] cgroup: Unknown subsys name 'net' [ 84.610240][ T5828] cgroup: Unknown subsys name 'cpuset' [ 84.619977][ T5828] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 86.321921][ T5828] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 88.431384][ T5840] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 88.446133][ T5840] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 88.454544][ T5840] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 88.459388][ T5848] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 88.469330][ T5840] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 88.476117][ T5848] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 88.484036][ T5840] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 88.484398][ T5848] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 88.492254][ T5840] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 88.500578][ T5848] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 88.506620][ T5840] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 88.513136][ T5848] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 88.519971][ T5840] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 88.539685][ T5840] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 88.548104][ T5152] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 88.580192][ T55] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 88.588578][ T55] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 88.596242][ T55] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 88.604351][ T55] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 88.612426][ T55] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 89.096742][ T5837] chnl_net:caif_netlink_parms(): no params data found [ 89.220678][ T5838] chnl_net:caif_netlink_parms(): no params data found [ 89.284766][ T5847] chnl_net:caif_netlink_parms(): no params data found [ 89.313640][ T5839] chnl_net:caif_netlink_parms(): no params data found [ 89.430177][ T5837] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.437747][ T5837] bridge0: port 1(bridge_slave_0) entered disabled state [ 89.445101][ T5837] bridge_slave_0: entered allmulticast mode [ 89.452615][ T5837] bridge_slave_0: entered promiscuous mode [ 89.495915][ T5837] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.503098][ T5837] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.510779][ T5837] bridge_slave_1: entered allmulticast mode [ 89.518593][ T5837] bridge_slave_1: entered promiscuous mode [ 89.627705][ T5837] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 89.637040][ T5838] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.644250][ T5838] bridge0: port 1(bridge_slave_0) entered disabled state [ 89.652625][ T5838] bridge_slave_0: entered allmulticast mode [ 89.660724][ T5838] bridge_slave_0: entered promiscuous mode [ 89.675015][ T5847] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.682357][ T5847] bridge0: port 1(bridge_slave_0) entered disabled state [ 89.689638][ T5847] bridge_slave_0: entered allmulticast mode [ 89.697303][ T5847] bridge_slave_0: entered promiscuous mode [ 89.709689][ T5837] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 89.735640][ T5838] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.742834][ T5838] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.750171][ T5838] bridge_slave_1: entered allmulticast mode [ 89.757615][ T5838] bridge_slave_1: entered promiscuous mode [ 89.777373][ T5847] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.784570][ T5847] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.792070][ T5847] bridge_slave_1: entered allmulticast mode [ 89.799417][ T5847] bridge_slave_1: entered promiscuous mode [ 89.878259][ T5837] team0: Port device team_slave_0 added [ 89.897616][ T5839] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.905534][ T5839] bridge0: port 1(bridge_slave_0) entered disabled state [ 89.912716][ T5839] bridge_slave_0: entered allmulticast mode [ 89.921664][ T5839] bridge_slave_0: entered promiscuous mode [ 89.932447][ T5847] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 89.944826][ T5847] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 89.956009][ T5837] team0: Port device team_slave_1 added [ 89.966449][ T5838] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 89.975851][ T5839] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.983037][ T5839] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.990423][ T5839] bridge_slave_1: entered allmulticast mode [ 89.998090][ T5839] bridge_slave_1: entered promiscuous mode [ 90.031843][ T5838] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 90.114919][ T5847] team0: Port device team_slave_0 added [ 90.124722][ T5847] team0: Port device team_slave_1 added [ 90.131684][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 90.139244][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 90.166508][ T5837] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 90.194545][ T5839] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 90.207342][ T5839] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 90.230407][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 90.237530][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 90.263665][ T5837] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 90.280508][ T5838] team0: Port device team_slave_0 added [ 90.324429][ T5838] team0: Port device team_slave_1 added [ 90.356535][ T5847] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 90.363528][ T5847] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 90.389862][ T5847] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 90.402555][ T5847] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 90.409961][ T5847] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 90.436696][ T5847] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 90.464813][ T5839] team0: Port device team_slave_0 added [ 90.473950][ T5839] team0: Port device team_slave_1 added [ 90.487905][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 90.494893][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 90.521430][ T5838] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 90.556060][ T5152] Bluetooth: hci2: command tx timeout [ 90.586056][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 90.593027][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 90.619109][ T5838] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 90.636035][ T55] Bluetooth: hci0: command tx timeout [ 90.640274][ T5837] hsr_slave_0: entered promiscuous mode [ 90.641728][ T55] Bluetooth: hci1: command tx timeout [ 90.648536][ T5837] hsr_slave_1: entered promiscuous mode [ 90.652768][ T5152] Bluetooth: hci3: command tx timeout [ 90.667363][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 90.674315][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 90.700817][ T5839] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 90.713922][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 90.721044][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 90.746999][ T5839] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 90.862288][ T5847] hsr_slave_0: entered promiscuous mode [ 90.869287][ T5847] hsr_slave_1: entered promiscuous mode [ 90.876443][ T5847] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 90.884177][ T5847] Cannot create hsr debugfs directory [ 90.950688][ T5838] hsr_slave_0: entered promiscuous mode [ 90.958068][ T5838] hsr_slave_1: entered promiscuous mode [ 90.964274][ T5838] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 90.971942][ T5838] Cannot create hsr debugfs directory [ 90.983785][ T5839] hsr_slave_0: entered promiscuous mode [ 90.991141][ T5839] hsr_slave_1: entered promiscuous mode [ 90.997402][ T5839] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 91.004986][ T5839] Cannot create hsr debugfs directory [ 91.443473][ T5837] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 91.457902][ T5837] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 91.469652][ T5837] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 91.491372][ T5837] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 91.551054][ T5847] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 91.563393][ T5847] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 91.589196][ T5847] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 91.609736][ T5847] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 91.661771][ T5838] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 91.690166][ T5838] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 91.728056][ T5838] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 91.753997][ T5838] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 91.808411][ T5839] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 91.829367][ T5839] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 91.843054][ T5839] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 91.867937][ T5837] 8021q: adding VLAN 0 to HW filter on device bond0 [ 91.874980][ T5839] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 91.959664][ T5837] 8021q: adding VLAN 0 to HW filter on device team0 [ 92.042915][ T1002] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.050362][ T1002] bridge0: port 1(bridge_slave_0) entered forwarding state [ 92.121293][ T5847] 8021q: adding VLAN 0 to HW filter on device bond0 [ 92.138377][ T1002] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.145669][ T1002] bridge0: port 2(bridge_slave_1) entered forwarding state [ 92.233445][ T5847] 8021q: adding VLAN 0 to HW filter on device team0 [ 92.311597][ T82] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.318812][ T82] bridge0: port 1(bridge_slave_0) entered forwarding state [ 92.339334][ T82] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.346629][ T82] bridge0: port 2(bridge_slave_1) entered forwarding state [ 92.365647][ T5839] 8021q: adding VLAN 0 to HW filter on device bond0 [ 92.387754][ T5838] 8021q: adding VLAN 0 to HW filter on device bond0 [ 92.471905][ T5839] 8021q: adding VLAN 0 to HW filter on device team0 [ 92.519912][ T1154] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.527103][ T1154] bridge0: port 1(bridge_slave_0) entered forwarding state [ 92.549728][ T5838] 8021q: adding VLAN 0 to HW filter on device team0 [ 92.574642][ T53] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.581797][ T53] bridge0: port 2(bridge_slave_1) entered forwarding state [ 92.622251][ T53] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.629462][ T53] bridge0: port 1(bridge_slave_0) entered forwarding state [ 92.637613][ T55] Bluetooth: hci2: command tx timeout [ 92.648407][ T53] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.655619][ T53] bridge0: port 2(bridge_slave_1) entered forwarding state [ 92.719278][ T55] Bluetooth: hci1: command tx timeout [ 92.719302][ T5844] Bluetooth: hci0: command tx timeout [ 92.733745][ T5152] Bluetooth: hci3: command tx timeout [ 92.763464][ T5839] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 92.774597][ T5839] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 92.985098][ T5837] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 93.111665][ T5837] veth0_vlan: entered promiscuous mode [ 93.132410][ T5837] veth1_vlan: entered promiscuous mode [ 93.191349][ T5847] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 93.236362][ T5839] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 93.273536][ T5837] veth0_macvtap: entered promiscuous mode [ 93.291396][ T5837] veth1_macvtap: entered promiscuous mode [ 93.341294][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 93.354794][ T5838] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 93.378976][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 93.394745][ T5839] veth0_vlan: entered promiscuous mode [ 93.429645][ T5847] veth0_vlan: entered promiscuous mode [ 93.438006][ T5837] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.449916][ T5837] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.458882][ T5837] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.467853][ T5837] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.491496][ T5839] veth1_vlan: entered promiscuous mode [ 93.505232][ T5847] veth1_vlan: entered promiscuous mode [ 93.644821][ T5839] veth0_macvtap: entered promiscuous mode [ 93.686672][ T5847] veth0_macvtap: entered promiscuous mode [ 93.703878][ T5838] veth0_vlan: entered promiscuous mode [ 93.712297][ T5839] veth1_macvtap: entered promiscuous mode [ 93.727782][ T1154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.737931][ T1154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.748782][ T5847] veth1_macvtap: entered promiscuous mode [ 93.811854][ T5838] veth1_vlan: entered promiscuous mode [ 93.830669][ T5847] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 93.842806][ T5847] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.858843][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 93.868446][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 93.879365][ T1107] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.889374][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.900457][ T1107] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.909558][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 93.921325][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.933361][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 93.952904][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.963875][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.976125][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 93.988890][ T5839] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.001380][ T5839] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.012077][ T5839] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.021387][ T5839] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.033257][ T5847] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 94.045055][ T5847] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.055723][ T5847] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 94.067095][ T5847] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.080827][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 94.105222][ T5847] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.115256][ T5847] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.122028][ T5837] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 94.127453][ T5847] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.151473][ T5847] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.297265][ T5838] veth0_macvtap: entered promiscuous mode [ 94.307673][ T5903] ALSA: mixer_oss: invalid OSS volume '.G+*@sys' [ 94.342113][ T5838] veth1_macvtap: entered promiscuous mode [ 94.452982][ T1107] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.493206][ T1107] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.507736][ T1002] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.519024][ T1002] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.542020][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 94.553385][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.566972][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 94.579494][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.590783][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 94.601714][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.613009][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 94.718959][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 94.729621][ T5152] Bluetooth: hci2: command tx timeout [ 94.742119][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.752468][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 94.768418][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.787524][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 94.800052][ T5152] Bluetooth: hci1: command tx timeout [ 94.806417][ T5152] Bluetooth: hci3: command tx timeout [ 94.811887][ T5152] Bluetooth: hci0: command tx timeout [ 94.813886][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.834089][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 94.845134][ T82] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.851449][ T5838] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.862652][ T5838] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.871459][ T5838] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.880581][ T5838] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.885298][ T82] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.948117][ T82] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.977690][ T82] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.264038][ T1107] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.286065][ T1107] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.418213][ T1167] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.469867][ T1167] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.025818][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 96.113529][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 96.797234][ T5152] Bluetooth: hci2: command tx timeout [ 96.875540][ T5152] Bluetooth: hci0: command tx timeout [ 96.881047][ T5152] Bluetooth: hci3: command tx timeout [ 96.886656][ T5844] Bluetooth: hci1: command tx timeout [ 97.036162][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 97.053760][ T24] cfg80211: failed to load regulatory.db [ 97.752143][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 97.763514][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 97.956885][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 97.965877][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 98.079066][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 98.276118][ T5961] mmap: syz.1.9 (5961) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 98.305701][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 98.314358][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 112.640706][ T5152] Bluetooth: hci1: unexpected event 0x23 length: 127 > 13 [ 113.616905][ T6184] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 114.985923][ T6215] ALSA: mixer_oss: invalid OSS volume '.G+*@sys' [ 115.155374][ T30] audit: type=1800 audit(1743638674.415:2): pid=6222 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.57" name="discovery_nqn" dev="configfs" ino=6828 res=0 errno=0 [ 116.516558][ T6247] Process accounting resumed [ 116.858261][ T6260] ALSA: mixer_oss: invalid OSS volume '.G+*@sys' [ 117.830905][ T6274] syz.2.68 (6274): /proc/6273/oom_adj is deprecated, please use /proc/6273/oom_score_adj instead. [ 118.735200][ T6296] netlink: 36 bytes leftover after parsing attributes in process `syz.1.73'. [ 118.758706][ T6296] netlink: 36 bytes leftover after parsing attributes in process `syz.1.73'. [ 118.791838][ T6296] netlink: 36 bytes leftover after parsing attributes in process `syz.1.73'. [ 118.817951][ T6296] netlink: 36 bytes leftover after parsing attributes in process `syz.1.73'. [ 118.837921][ T6296] netlink: 36 bytes leftover after parsing attributes in process `syz.1.73'. [ 118.855096][ T6297] netlink: 452 bytes leftover after parsing attributes in process `syz.3.69'. [ 118.869827][ T6296] netlink: 36 bytes leftover after parsing attributes in process `syz.1.73'. [ 118.888850][ T6296] netlink: 36 bytes leftover after parsing attributes in process `syz.1.73'. [ 118.901828][ T6296] netlink: 36 bytes leftover after parsing attributes in process `syz.1.73'. [ 118.946503][ T6296] netlink: 36 bytes leftover after parsing attributes in process `syz.1.73'. [ 120.138692][ T6317] ALSA: mixer_oss: invalid OSS volume '.G+*@sys' [ 122.685734][ T6358] ALSA: mixer_oss: invalid OSS volume '.G+*@sys' [ 123.948835][ T6375] FAULT_INJECTION: forcing a failure. [ 123.948835][ T6375] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 124.034428][ T6375] CPU: 0 UID: 0 PID: 6375 Comm: syz.1.90 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(full) [ 124.034472][ T6375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 124.034490][ T6375] Call Trace: [ 124.034499][ T6375] [ 124.034515][ T6375] dump_stack_lvl+0x16c/0x1f0 [ 124.034560][ T6375] should_fail_ex+0x512/0x640 [ 124.034617][ T6375] should_fail_alloc_page+0xe7/0x130 [ 124.034650][ T6375] prepare_alloc_pages+0x3c2/0x610 [ 124.034700][ T6375] ? rcu_is_watching+0x12/0xc0 [ 124.034742][ T6375] __alloc_frozen_pages_noprof+0x18d/0x2370 [ 124.034793][ T6375] ? kasan_save_stack+0x42/0x60 [ 124.034835][ T6375] ? kasan_save_stack+0x33/0x60 [ 124.034882][ T6375] ? cgroup_rstat_updated+0x2a/0xb20 [ 124.034931][ T6375] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 124.034986][ T6375] ? lru_gen_add_folio+0x1a4/0xef0 [ 124.035021][ T6375] ? __lock_acquire+0x5ca/0x1ba0 [ 124.035052][ T6375] ? __lock_acquire+0x5ca/0x1ba0 [ 124.035078][ T6375] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 124.035112][ T6375] ? policy_nodemask+0xea/0x4e0 [ 124.035143][ T6375] alloc_pages_mpol+0x1fb/0x550 [ 124.035173][ T6375] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 124.035209][ T6375] ? __lock_acquire+0x5ca/0x1ba0 [ 124.035243][ T6375] folio_alloc_mpol_noprof+0x36/0x2f0 [ 124.035281][ T6375] vma_alloc_folio_noprof+0xed/0x1e0 [ 124.035319][ T6375] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 124.035365][ T6375] do_pte_missing+0x223d/0x3fb0 [ 124.035423][ T6375] __handle_mm_fault+0x103d/0x2a40 [ 124.035477][ T6375] ? __pfx___handle_mm_fault+0x10/0x10 [ 124.035517][ T6375] ? __pte_offset_map_lock+0x155/0x2f0 [ 124.035550][ T6375] ? find_held_lock+0x2b/0x80 [ 124.035585][ T6375] ? find_held_lock+0x2b/0x80 [ 124.035648][ T6375] handle_mm_fault+0x3fe/0xad0 [ 124.035697][ T6375] __get_user_pages+0x771/0x36f0 [ 124.035746][ T6375] ? __pfx_mt_find+0x10/0x10 [ 124.035787][ T6375] ? __pfx___get_user_pages+0x10/0x10 [ 124.035840][ T6375] populate_vma_page_range+0x278/0x3a0 [ 124.035884][ T6375] ? __pfx_populate_vma_page_range+0x10/0x10 [ 124.035925][ T6375] ? __pfx_find_vma_intersection+0x10/0x10 [ 124.035964][ T6375] ? do_mmap+0x69c/0x11b0 [ 124.036003][ T6375] __mm_populate+0x1d8/0x380 [ 124.036046][ T6375] ? __pfx___mm_populate+0x10/0x10 [ 124.036089][ T6375] ? up_write+0x1b2/0x520 [ 124.036124][ T6375] vm_mmap_pgoff+0x362/0x450 [ 124.036164][ T6375] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 124.036214][ T6375] ? __x64_sys_futex+0x1e0/0x4c0 [ 124.036259][ T6375] ? __x64_sys_futex+0x1e9/0x4c0 [ 124.036308][ T6375] ksys_mmap_pgoff+0x7d/0x5c0 [ 124.036344][ T6375] ? rcu_is_watching+0x12/0xc0 [ 124.036385][ T6375] __x64_sys_mmap+0x125/0x190 [ 124.036424][ T6375] do_syscall_64+0xcd/0x260 [ 124.036466][ T6375] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 124.036496][ T6375] RIP: 0033:0x7fc76638d169 [ 124.036520][ T6375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 124.036548][ T6375] RSP: 002b:00007fc767200038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 124.036576][ T6375] RAX: ffffffffffffffda RBX: 00007fc7665a6080 RCX: 00007fc76638d169 [ 124.036595][ T6375] RDX: 00000000000000b3 RSI: 0000000000040008 RDI: 0000000000000000 [ 124.036613][ T6375] RBP: 00007fc76640e2a0 R08: 0000000000000004 R09: 0000000000028000 [ 124.036631][ T6375] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 124.036649][ T6375] R13: 0000000000000000 R14: 00007fc7665a6080 R15: 00007ffd9a707498 [ 124.036687][ T6375] [ 124.952125][ T6386] ALSA: mixer_oss: invalid OSS volume '.G+*@sys' [ 125.251883][ T6379] zswap: compressor not available [ 126.416308][ T6411] __nla_validate_parse: 58 callbacks suppressed [ 126.416330][ T6411] netlink: 4 bytes leftover after parsing attributes in process `syz.0.98'. [ 127.789922][ T6432] ALSA: mixer_oss: invalid OSS volume '.G+*@sys' [ 129.426500][ T6450] random: crng reseeded on system resumption [ 131.550861][ T6476] zram: Added device: zram1 [ 132.098931][ T6485] ALSA: mixer_oss: invalid OSS volume '.G+*@sys' [ 134.136208][ T6516] netlink: 4 bytes leftover after parsing attributes in process `syz.1.121'. [ 134.918601][ T6523] process 'syz.0.120' launched './file0' with NULL argv: empty string added [ 135.427220][ T6534] Invalid ELF header magic: != ELF [ 135.445545][ T6535] Invalid ELF header magic: != ELF [ 135.471055][ T6539] ALSA: mixer_oss: invalid OSS volume '.G+*@sys' [ 138.003930][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 138.011201][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 138.498328][ T6578] netlink: 452 bytes leftover after parsing attributes in process `syz.1.131'. [ 138.610683][ T6578] netlink: 452 bytes leftover after parsing attributes in process `syz.1.131'. [ 139.571439][ T6597] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 139.765518][ T6601] ALSA: mixer_oss: invalid OSS volume '.G+*@sys' [ 141.947164][ T6633] kafs: addr_prefs: Invalid Command [ 142.836727][ T6655] netlink: 4 bytes leftover after parsing attributes in process `syz.1.146'. [ 142.941339][ T6657] netlink: 4 bytes leftover after parsing attributes in process `syz.1.146'. [ 143.009983][ T6657] netlink: 4 bytes leftover after parsing attributes in process `syz.1.146'. [ 143.389553][ T6666] random: crng reseeded on system resumption [ 144.930653][ T6689] can: request_module (can-proto-5) failed. [ 146.844883][ T6674] Process accounting paused [ 150.007752][ T6753] WARNING! power/level is deprecated; use power/control instead [ 155.158329][ T6826] Debayer A: ================= START STATUS ================= [ 155.166254][ T6826] Debayer A: Debayer Mean Window Size: 3 [ 155.172204][ T6826] Debayer A: ================== END STATUS ================== [ 155.283019][ T6826] tipc: Started in network mode [ 155.322966][ T6826] tipc: Node identity ee00, cluster identity 4711 [ 155.361814][ T6826] tipc: Node number set to 60928 [ 156.665112][ T6843] FAULT_INJECTION: forcing a failure. [ 156.665112][ T6843] name failslab, interval 1, probability 0, space 0, times 1 [ 156.774591][ T6843] CPU: 1 UID: 0 PID: 6843 Comm: syz.0.184 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(full) [ 156.774628][ T6843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 156.774643][ T6843] Call Trace: [ 156.774651][ T6843] [ 156.774661][ T6843] dump_stack_lvl+0x16c/0x1f0 [ 156.774700][ T6843] should_fail_ex+0x512/0x640 [ 156.774729][ T6843] ? __kmalloc_noprof+0xbf/0x510 [ 156.774772][ T6843] ? kernfs_fop_write_iter+0x237/0x510 [ 156.774804][ T6843] should_failslab+0xc2/0x120 [ 156.774830][ T6843] __kmalloc_noprof+0xd2/0x510 [ 156.774879][ T6843] kernfs_fop_write_iter+0x237/0x510 [ 156.774918][ T6843] vfs_write+0x5ba/0x1180 [ 156.774956][ T6843] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 156.774992][ T6843] ? __pfx___mutex_lock+0x10/0x10 [ 156.775026][ T6843] ? __pfx_vfs_write+0x10/0x10 [ 156.775086][ T6843] ksys_write+0x12a/0x240 [ 156.775123][ T6843] ? __pfx_ksys_write+0x10/0x10 [ 156.775157][ T6843] ? rcu_is_watching+0x12/0xc0 [ 156.775199][ T6843] do_syscall_64+0xcd/0x260 [ 156.775234][ T6843] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 156.775259][ T6843] RIP: 0033:0x7fd850b8d169 [ 156.775278][ T6843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 156.775305][ T6843] RSP: 002b:00007fd851a2a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 156.775335][ T6843] RAX: ffffffffffffffda RBX: 00007fd850da5fa0 RCX: 00007fd850b8d169 [ 156.775351][ T6843] RDX: 0000000000000081 RSI: 0000200000000040 RDI: 0000000000000003 [ 156.775366][ T6843] RBP: 00007fd851a2a090 R08: 0000000000000000 R09: 0000000000000000 [ 156.775381][ T6843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 156.775396][ T6843] R13: 0000000000000000 R14: 00007fd850da5fa0 R15: 00007ffe34d3a268 [ 156.775430][ T6843] [ 160.181374][ T5152] Bluetooth: hci1: unexpected event 0x02 length: 726 > 260 [ 160.225103][ T6898] netlink: 28 bytes leftover after parsing attributes in process `syz.2.200'. [ 160.272933][ T6898] Zero length message leads to an empty skb [ 160.869087][ T6915] FAULT_INJECTION: forcing a failure. [ 160.869087][ T6915] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 160.917449][ T6915] CPU: 0 UID: 0 PID: 6915 Comm: syz.3.203 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(full) [ 160.917484][ T6915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 160.917500][ T6915] Call Trace: [ 160.917508][ T6915] [ 160.917518][ T6915] dump_stack_lvl+0x16c/0x1f0 [ 160.917556][ T6915] should_fail_ex+0x512/0x640 [ 160.917596][ T6915] _copy_to_user+0x32/0xd0 [ 160.917650][ T6915] simple_read_from_buffer+0xcb/0x170 [ 160.917697][ T6915] proc_fail_nth_read+0x197/0x270 [ 160.917760][ T6915] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 160.917807][ T6915] ? rw_verify_area+0xcf/0x680 [ 160.917844][ T6915] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 160.917888][ T6915] vfs_read+0x1de/0xc70 [ 160.917936][ T6915] ? __pfx___mutex_lock+0x10/0x10 [ 160.917976][ T6915] ? __pfx_vfs_read+0x10/0x10 [ 160.918029][ T6915] ? __fget_files+0x20e/0x3c0 [ 160.918087][ T6915] ksys_read+0x12a/0x240 [ 160.918137][ T6915] ? __pfx_ksys_read+0x10/0x10 [ 160.918178][ T6915] ? rcu_is_watching+0x12/0xc0 [ 160.918229][ T6915] do_syscall_64+0xcd/0x260 [ 160.918272][ T6915] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 160.918303][ T6915] RIP: 0033:0x7f554098bb7c [ 160.918326][ T6915] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 160.918355][ T6915] RSP: 002b:00007f55417bc030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 160.918383][ T6915] RAX: ffffffffffffffda RBX: 00007f5540ba5fa0 RCX: 00007f554098bb7c [ 160.918403][ T6915] RDX: 000000000000000f RSI: 00007f55417bc0a0 RDI: 0000000000000004 [ 160.918421][ T6915] RBP: 00007f55417bc090 R08: 0000000000000000 R09: 0000000000000000 [ 160.918439][ T6915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 160.918457][ T6915] R13: 0000000000000000 R14: 00007f5540ba5fa0 R15: 00007ffcd60a6a68 [ 160.918501][ T6915] [ 162.605176][ T6943] netlink: 16 bytes leftover after parsing attributes in process `syz.3.210'. [ 162.810386][ T6949] bridge0: port 3(bond0) entered blocking state [ 162.835752][ T6949] bridge0: port 3(bond0) entered disabled state [ 162.842210][ T6949] bond0: entered allmulticast mode [ 162.875651][ T6949] bond_slave_0: entered allmulticast mode [ 162.882284][ T6949] bond_slave_1: entered allmulticast mode [ 162.918337][ T6949] bond0: entered promiscuous mode [ 162.986606][ T6949] bond_slave_0: entered promiscuous mode [ 162.995577][ T6949] bond_slave_1: entered promiscuous mode [ 163.011188][ T6949] bridge0: port 3(bond0) entered blocking state [ 163.017856][ T6949] bridge0: port 3(bond0) entered forwarding state [ 163.612420][ T6965] netlink: 342 bytes leftover after parsing attributes in process `syz.0.216'. [ 163.727488][ T6967] netlink: 354 bytes leftover after parsing attributes in process `syz.0.216'. [ 163.786978][ T6967] netlink: 354 bytes leftover after parsing attributes in process `syz.0.216'. [ 163.806258][ T6967] netlink: 354 bytes leftover after parsing attributes in process `syz.0.216'. [ 163.828891][ T6967] netlink: 354 bytes leftover after parsing attributes in process `syz.0.216'. [ 163.848580][ T6967] netlink: 354 bytes leftover after parsing attributes in process `syz.0.216'. [ 163.868582][ T6967] netlink: 354 bytes leftover after parsing attributes in process `syz.0.216'. [ 163.884956][ T6967] netlink: 354 bytes leftover after parsing attributes in process `syz.0.216'. [ 166.426828][ T7007] __nla_validate_parse: 26 callbacks suppressed [ 166.426845][ T7007] netlink: 28 bytes leftover after parsing attributes in process `syz.3.225'. [ 167.235850][ T7016] netlink: 346 bytes leftover after parsing attributes in process `syz.0.228'. [ 167.320268][ T7016] netlink: 346 bytes leftover after parsing attributes in process `syz.0.228'. [ 168.316311][ T7046] ALSA: mixer_oss: invalid OSS volume '' [ 169.192774][ T7055] program syz.2.238 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 171.551089][ T7090] ALSA: mixer_oss: invalid OSS volume '' [ 172.411444][ T7104] ALSA: mixer_oss: invalid OSS volume '' [ 172.657515][ T7109] ALSA: mixer_oss: invalid OSS volume '' [ 173.012110][ T7113] FAULT_INJECTION: forcing a failure. [ 173.012110][ T7113] name failslab, interval 1, probability 0, space 0, times 0 [ 173.054046][ T7113] CPU: 0 UID: 0 PID: 7113 Comm: syz.3.251 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(full) [ 173.054084][ T7113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 173.054100][ T7113] Call Trace: [ 173.054109][ T7113] [ 173.054119][ T7113] dump_stack_lvl+0x16c/0x1f0 [ 173.054159][ T7113] should_fail_ex+0x512/0x640 [ 173.054188][ T7113] ? __kvmalloc_node_noprof+0x122/0x600 [ 173.054232][ T7113] should_failslab+0xc2/0x120 [ 173.054258][ T7113] __kvmalloc_node_noprof+0x135/0x600 [ 173.054297][ T7113] ? __pfx___mutex_lock+0x10/0x10 [ 173.054330][ T7113] ? traverse.part.0.constprop.0+0x392/0x640 [ 173.054376][ T7113] ? traverse.part.0.constprop.0+0x392/0x640 [ 173.054413][ T7113] traverse.part.0.constprop.0+0x392/0x640 [ 173.054463][ T7113] seq_read_iter+0x932/0x12c0 [ 173.054522][ T7113] ? aa_file_perm+0x4d6/0xfb0 [ 173.054571][ T7113] seq_read+0x39e/0x4e0 [ 173.054609][ T7113] ? __pfx_seq_read+0x10/0x10 [ 173.054656][ T7113] ? get_pid_task+0xfc/0x250 [ 173.054701][ T7113] full_proxy_read+0x13c/0x200 [ 173.054729][ T7113] ? __pfx_full_proxy_read+0x10/0x10 [ 173.054768][ T7113] vfs_read+0x1de/0xc70 [ 173.054817][ T7113] ? __pfx_vfs_read+0x10/0x10 [ 173.054854][ T7113] ? find_held_lock+0x2b/0x80 [ 173.054892][ T7113] ? __fget_files+0x204/0x3c0 [ 173.054941][ T7113] ? __fget_files+0x20e/0x3c0 [ 173.054981][ T7113] ? __fget_files+0x170/0x3c0 [ 173.055032][ T7113] __x64_sys_pread64+0x1f4/0x250 [ 173.055075][ T7113] ? __pfx___x64_sys_pread64+0x10/0x10 [ 173.055116][ T7113] ? rcu_is_watching+0x12/0xc0 [ 173.055164][ T7113] do_syscall_64+0xcd/0x260 [ 173.055204][ T7113] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 173.055233][ T7113] RIP: 0033:0x7f554098d169 [ 173.055256][ T7113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 173.055286][ T7113] RSP: 002b:00007f55417bc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 173.055311][ T7113] RAX: ffffffffffffffda RBX: 00007f5540ba5fa0 RCX: 00007f554098d169 [ 173.055329][ T7113] RDX: 000000001000f42d RSI: 0000000000000000 RDI: 0000000000000003 [ 173.055345][ T7113] RBP: 00007f55417bc090 R08: 0000000000000000 R09: 0000000000000000 [ 173.055361][ T7113] R10: 0000000000000100 R11: 0000000000000246 R12: 0000000000000001 [ 173.055378][ T7113] R13: 0000000000000000 R14: 00007f5540ba5fa0 R15: 00007ffcd60a6a68 [ 173.055416][ T7113] [ 175.960280][ T7162] netlink: zone id is out of range [ 175.977059][ T7162] netlink: zone id is out of range [ 175.993079][ T7162] netlink: zone id is out of range [ 176.012782][ T7162] netlink: zone id is out of range [ 176.026988][ T7162] netlink: zone id is out of range [ 176.054070][ T7162] netlink: zone id is out of range [ 176.074126][ T7162] netlink: zone id is out of range [ 176.083084][ T7162] netlink: zone id is out of range [ 176.097137][ T7162] netlink: zone id is out of range [ 176.104672][ T7162] netlink: zone id is out of range [ 176.539430][ T7170] FAULT_INJECTION: forcing a failure. [ 176.539430][ T7170] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 176.552702][ T7170] CPU: 1 UID: 0 PID: 7170 Comm: syz.1.265 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(full) [ 176.552736][ T7170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 176.552752][ T7170] Call Trace: [ 176.552760][ T7170] [ 176.552770][ T7170] dump_stack_lvl+0x16c/0x1f0 [ 176.552808][ T7170] should_fail_ex+0x512/0x640 [ 176.552842][ T7170] _copy_to_user+0x32/0xd0 [ 176.552877][ T7170] simple_read_from_buffer+0xcb/0x170 [ 176.552928][ T7170] proc_fail_nth_read+0x197/0x270 [ 176.552968][ T7170] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 176.553008][ T7170] ? rw_verify_area+0xcf/0x680 [ 176.553040][ T7170] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 176.553079][ T7170] vfs_read+0x1de/0xc70 [ 176.553121][ T7170] ? __pfx___mutex_lock+0x10/0x10 [ 176.553156][ T7170] ? __pfx_vfs_read+0x10/0x10 [ 176.553203][ T7170] ? __fget_files+0x20e/0x3c0 [ 176.553252][ T7170] ksys_read+0x12a/0x240 [ 176.553288][ T7170] ? __pfx_ksys_read+0x10/0x10 [ 176.553336][ T7170] do_syscall_64+0xcd/0x260 [ 176.553373][ T7170] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 176.553401][ T7170] RIP: 0033:0x7fc76638bb7c [ 176.553422][ T7170] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 176.553447][ T7170] RSP: 002b:00007fc767221030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 176.553471][ T7170] RAX: ffffffffffffffda RBX: 00007fc7665a5fa0 RCX: 00007fc76638bb7c [ 176.553488][ T7170] RDX: 000000000000000f RSI: 00007fc7672210a0 RDI: 0000000000000004 [ 176.553504][ T7170] RBP: 00007fc767221090 R08: 0000000000000000 R09: 0000000000000000 [ 176.553520][ T7170] R10: 0000000000000100 R11: 0000000000000246 R12: 0000000000000001 [ 176.553535][ T7170] R13: 0000000000000000 R14: 00007fc7665a5fa0 R15: 00007ffd9a707498 [ 176.553570][ T7170] [ 177.135791][ T7176] ALSA: mixer_oss: invalid OSS volume '' [ 177.455090][ T7172] netlink: 8 bytes leftover after parsing attributes in process `syz.0.264'. [ 178.468126][ T7181] Process accounting resumed [ 180.332405][ T7220] FAULT_INJECTION: forcing a failure. [ 180.332405][ T7220] name failslab, interval 1, probability 0, space 0, times 0 [ 180.349122][ T7220] CPU: 1 UID: 0 PID: 7220 Comm: syz.3.277 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(full) [ 180.349162][ T7220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 180.349183][ T7220] Call Trace: [ 180.349193][ T7220] [ 180.349207][ T7220] dump_stack_lvl+0x16c/0x1f0 [ 180.349249][ T7220] should_fail_ex+0x512/0x640 [ 180.349278][ T7220] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 180.349326][ T7220] should_failslab+0xc2/0x120 [ 180.349354][ T7220] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 180.349398][ T7220] ? seq_open+0x55/0x170 [ 180.349434][ T7220] ? __pfx_snd_info_seq_show+0x10/0x10 [ 180.349472][ T7220] seq_open+0x55/0x170 [ 180.349502][ T7220] ? __pfx_snd_info_seq_show+0x10/0x10 [ 180.349542][ T7220] single_open+0xfc/0x1f0 [ 180.349576][ T7220] snd_info_text_entry_open+0x175/0x2a0 [ 180.349619][ T7220] ? __pfx_snd_info_text_entry_open+0x10/0x10 [ 180.349660][ T7220] ? trace_kmem_cache_alloc+0x28/0xc0 [ 180.349690][ T7220] ? __pfx_apparmor_file_open+0x10/0x10 [ 180.349724][ T7220] ? proc_reg_open+0x21d/0x610 [ 180.349751][ T7220] ? __pfx_snd_info_text_entry_open+0x10/0x10 [ 180.349795][ T7220] proc_reg_open+0x286/0x610 [ 180.349823][ T7220] do_dentry_open+0x741/0x1c10 [ 180.349865][ T7220] ? __pfx_proc_reg_open+0x10/0x10 [ 180.349898][ T7220] vfs_open+0x82/0x3f0 [ 180.349932][ T7220] path_openat+0x1e5e/0x2d40 [ 180.349988][ T7220] ? __pfx_path_openat+0x10/0x10 [ 180.350040][ T7220] do_filp_open+0x20b/0x470 [ 180.350089][ T7220] ? __pfx_do_filp_open+0x10/0x10 [ 180.350159][ T7220] ? alloc_fd+0x471/0x7d0 [ 180.350211][ T7220] do_sys_openat2+0x11b/0x1d0 [ 180.350241][ T7220] ? __pfx_do_sys_openat2+0x10/0x10 [ 180.350286][ T7220] __x64_sys_openat+0x174/0x210 [ 180.350318][ T7220] ? __pfx___x64_sys_openat+0x10/0x10 [ 180.350351][ T7220] ? rcu_is_watching+0x12/0xc0 [ 180.350397][ T7220] do_syscall_64+0xcd/0x260 [ 180.350436][ T7220] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.350464][ T7220] RIP: 0033:0x7f554098d169 [ 180.350487][ T7220] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 180.350513][ T7220] RSP: 002b:00007f55417bc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 180.350539][ T7220] RAX: ffffffffffffffda RBX: 00007f5540ba5fa0 RCX: 00007f554098d169 [ 180.350558][ T7220] RDX: 00000000001c1080 RSI: 0000200000001080 RDI: ffffffffffffff9c [ 180.350576][ T7220] RBP: 00007f5540a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 180.350592][ T7220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 180.350609][ T7220] R13: 0000000000000000 R14: 00007f5540ba5fa0 R15: 00007ffcd60a6a68 [ 180.350645][ T7220] [ 182.875792][ T7258] ALSA: mixer_oss: invalid OSS volume '' [ 185.922856][ T5152] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 185.928882][ T7295] netlink: 4 bytes leftover after parsing attributes in process `syz.3.297'. [ 186.688064][ T7311] ALSA: mixer_oss: invalid OSS volume '' [ 190.837919][ T5152] Bluetooth: hci3: Unable to find connection for big 0xd2 [ 191.225730][ T7372] ALSA: mixer_oss: invalid OSS volume '' [ 191.258445][ T7376] netlink: 504 bytes leftover after parsing attributes in process `syz.3.313'. [ 191.343733][ T7377] netlink: 504 bytes leftover after parsing attributes in process `syz.3.313'. [ 191.636503][ T7376] block2mtd: parameter too long [ 194.572340][ T7412] could not allocate digest TFM handle [ 196.531871][ T7440] ALSA: mixer_oss: invalid OSS volume '' [ 197.142849][ T7444] netlink: 28 bytes leftover after parsing attributes in process `syz.0.328'. [ 198.758810][ T5844] Bluetooth: hci1: Unable to find connection for big 0xd2 [ 199.474276][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.506746][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 202.229850][ T7502] netlink: 28 bytes leftover after parsing attributes in process `syz.1.342'. [ 203.367127][ T7525] ptm ptm1: ldisc open failed (-12), clearing slot 1 [ 203.535389][ T7522] ALSA: mixer_oss: invalid OSS volume '' [ 203.718400][ T7532] netlink: 504 bytes leftover after parsing attributes in process `syz.0.350'. [ 203.767329][ T7532] netlink: 504 bytes leftover after parsing attributes in process `syz.0.350'. [ 204.170888][ T30] audit: type=1800 audit(6038606059.431:3): pid=7538 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.351" name="dummy_udc" dev="gadgetfs" ino=5118 res=0 errno=0 [ 206.313409][ T7550] could not allocate digest TFM handle [ 207.915675][ T7571] netlink: 28 bytes leftover after parsing attributes in process `syz.3.358'. [ 208.465905][ T7583] ALSA: mixer_oss: invalid OSS volume '' [ 208.672075][ T7584] Process accounting paused [ 211.759190][ T5849] Bluetooth: hci2: command 0x0406 tx timeout [ 211.759421][ T5848] Bluetooth: hci3: command 0x0406 tx timeout [ 211.765669][ T5849] Bluetooth: hci1: command 0x0406 tx timeout [ 211.771368][ T5848] Bluetooth: hci0: command 0x0406 tx timeout [ 212.052399][ T7621] FAULT_INJECTION: forcing a failure. [ 212.052399][ T7621] name failslab, interval 1, probability 0, space 0, times 0 [ 212.115096][ T7628] ALSA: mixer_oss: invalid OSS volume '' [ 212.197105][ T7621] CPU: 1 UID: 0 PID: 7621 Comm: syz.1.367 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(full) [ 212.197174][ T7621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 212.197204][ T7621] Call Trace: [ 212.197213][ T7621] [ 212.197225][ T7621] dump_stack_lvl+0x16c/0x1f0 [ 212.197271][ T7621] should_fail_ex+0x512/0x640 [ 212.197303][ T7621] ? __kmalloc_noprof+0xbf/0x510 [ 212.197352][ T7621] ? snd_seq_oss_readq_new+0x96/0x2c0 [ 212.197384][ T7621] should_failslab+0xc2/0x120 [ 212.197413][ T7621] __kmalloc_noprof+0xd2/0x510 [ 212.197474][ T7621] snd_seq_oss_readq_new+0x96/0x2c0 [ 212.197523][ T7621] snd_seq_oss_open+0x54b/0xa20 [ 212.197573][ T7621] odev_open+0x6f/0x90 [ 212.197608][ T7621] ? __pfx_odev_open+0x10/0x10 [ 212.197664][ T7621] soundcore_open+0x409/0x580 [ 212.197709][ T7621] ? __pfx_soundcore_open+0x10/0x10 [ 212.197750][ T7621] chrdev_open+0x231/0x6a0 [ 212.197798][ T7621] ? __pfx_apparmor_file_open+0x10/0x10 [ 212.197837][ T7621] ? __pfx_chrdev_open+0x10/0x10 [ 212.197891][ T7621] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 212.197945][ T7621] do_dentry_open+0x741/0x1c10 [ 212.197992][ T7621] ? __pfx_chrdev_open+0x10/0x10 [ 212.198051][ T7621] vfs_open+0x82/0x3f0 [ 212.198089][ T7621] path_openat+0x1e5e/0x2d40 [ 212.198157][ T7621] ? __pfx_path_openat+0x10/0x10 [ 212.198217][ T7621] do_filp_open+0x20b/0x470 [ 212.198267][ T7621] ? __pfx_do_filp_open+0x10/0x10 [ 212.198341][ T7621] ? alloc_fd+0x471/0x7d0 [ 212.198397][ T7621] do_sys_openat2+0x11b/0x1d0 [ 212.198431][ T7621] ? __pfx_do_sys_openat2+0x10/0x10 [ 212.198476][ T7621] ? __pfx___might_resched+0x10/0x10 [ 212.198534][ T7621] __x64_sys_openat+0x174/0x210 [ 212.198570][ T7621] ? __pfx___x64_sys_openat+0x10/0x10 [ 212.198608][ T7621] ? rcu_is_watching+0x12/0xc0 [ 212.198661][ T7621] do_syscall_64+0xcd/0x260 [ 212.198704][ T7621] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 212.198738][ T7621] RIP: 0033:0x7fc76638d169 [ 212.198764][ T7621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 212.198794][ T7621] RSP: 002b:00007fc767221038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 212.198845][ T7621] RAX: ffffffffffffffda RBX: 00007fc7665a5fa0 RCX: 00007fc76638d169 [ 212.198863][ T7621] RDX: 0000000000000080 RSI: 0000200000000500 RDI: ffffffffffffff9c [ 212.198881][ T7621] RBP: 00007fc76640e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 212.198897][ T7621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 212.198913][ T7621] R13: 0000000000000000 R14: 00007fc7665a5fa0 R15: 00007ffd9a707498 [ 212.198949][ T7621] [ 213.841947][ T7644] could not allocate digest TFM handle [ 216.628674][ T30] audit: type=1800 audit(6038606071.891:4): pid=7673 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.378" name="dummy_udc" dev="gadgetfs" ino=5118 res=0 errno=0 [ 217.156170][ T5840] Bluetooth: hci2: unexpected event 0x1d length: 1 < 5 [ 217.186736][ T7681] FAULT_INJECTION: forcing a failure. [ 217.186736][ T7681] name failslab, interval 1, probability 0, space 0, times 0 [ 217.275371][ T7681] CPU: 0 UID: 0 PID: 7681 Comm: syz.3.380 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(full) [ 217.275412][ T7681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 217.275428][ T7681] Call Trace: [ 217.275436][ T7681] [ 217.275446][ T7681] dump_stack_lvl+0x16c/0x1f0 [ 217.275486][ T7681] should_fail_ex+0x512/0x640 [ 217.275517][ T7681] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 217.275566][ T7681] should_failslab+0xc2/0x120 [ 217.275591][ T7681] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 217.275633][ T7681] ? __proc_create+0xc3/0x8c0 [ 217.275664][ T7681] ? __proc_create+0x2ce/0x8c0 [ 217.275699][ T7681] __proc_create+0x2ce/0x8c0 [ 217.275730][ T7681] ? __pfx___proc_create+0x10/0x10 [ 217.275775][ T7681] _proc_mkdir+0xb9/0x200 [ 217.275807][ T7681] ? __pfx__proc_mkdir+0x10/0x10 [ 217.275835][ T7681] ? trace_kmem_cache_alloc+0x28/0xc0 [ 217.275866][ T7681] ? crng_make_state+0x48e/0x6d0 [ 217.275903][ T7681] proc_net_ns_init+0x265/0x410 [ 217.275936][ T7681] ? __pfx_proc_net_ns_init+0x10/0x10 [ 217.275967][ T7681] ops_init+0x1df/0x5f0 [ 217.276007][ T7681] setup_net+0x21e/0x850 [ 217.276054][ T7681] ? __pfx_setup_net+0x10/0x10 [ 217.276089][ T7681] ? lockdep_init_map_type+0x5c/0x280 [ 217.276118][ T7681] ? __pfx_down_read_killable+0x10/0x10 [ 217.276162][ T7681] ? debug_mutex_init+0x37/0x70 [ 217.276220][ T7681] copy_net_ns+0x2a6/0x5f0 [ 217.276270][ T7681] create_new_namespaces+0x3ea/0xad0 [ 217.276323][ T7681] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 217.276371][ T7681] ksys_unshare+0x45b/0xa40 [ 217.276421][ T7681] ? __pfx_ksys_unshare+0x10/0x10 [ 217.276466][ T7681] ? xfd_validate_state+0x5d/0x180 [ 217.276501][ T7681] ? rcu_is_watching+0x12/0xc0 [ 217.276549][ T7681] __x64_sys_unshare+0x31/0x40 [ 217.276595][ T7681] do_syscall_64+0xcd/0x260 [ 217.276636][ T7681] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 217.276666][ T7681] RIP: 0033:0x7f554098d169 [ 217.276690][ T7681] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 217.276719][ T7681] RSP: 002b:00007f55417bc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 217.276747][ T7681] RAX: ffffffffffffffda RBX: 00007f5540ba5fa0 RCX: 00007f554098d169 [ 217.276767][ T7681] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 217.276785][ T7681] RBP: 00007f5540a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 217.276803][ T7681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 217.276820][ T7681] R13: 0000000000000000 R14: 00007f5540ba5fa0 R15: 00007ffcd60a6a68 [ 217.276858][ T7681] [ 217.541078][ C0] vkms_vblank_simulate: vblank timer overrun [ 218.269904][ T7693] ALSA: mixer_oss: invalid OSS volume '' [ 219.811647][ T7690] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xeffffd12 [ 220.471280][ T7723] ALSA: mixer_oss: invalid OSS volume '' [ 221.474622][ T7744] FAULT_INJECTION: forcing a failure. [ 221.474622][ T7744] name failslab, interval 1, probability 0, space 0, times 0 [ 221.539194][ T7744] CPU: 0 UID: 0 PID: 7744 Comm: syz.3.391 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(full) [ 221.539244][ T7744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 221.539265][ T7744] Call Trace: [ 221.539276][ T7744] [ 221.539289][ T7744] dump_stack_lvl+0x16c/0x1f0 [ 221.539337][ T7744] should_fail_ex+0x512/0x640 [ 221.539372][ T7744] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 221.539430][ T7744] should_failslab+0xc2/0x120 [ 221.539461][ T7744] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 221.539525][ T7744] ? vm_area_dup+0x25/0x760 [ 221.539573][ T7744] vm_area_dup+0x25/0x760 [ 221.539637][ T7744] copy_process+0x7f67/0x91a0 [ 221.539711][ T7744] ? __pfx_copy_process+0x10/0x10 [ 221.539758][ T7744] ? try_to_wake_up+0xa2f/0x1680 [ 221.539803][ T7744] ? plist_check_head+0xa3/0x150 [ 221.539829][ T7744] ? find_held_lock+0x2b/0x80 [ 221.539873][ T7744] ? wake_up_q+0xb0/0x160 [ 221.539906][ T7744] ? do_raw_spin_unlock+0x172/0x230 [ 221.539947][ T7744] kernel_clone+0xfc/0x960 [ 221.539991][ T7744] ? __pfx_futex_wake+0x10/0x10 [ 221.540020][ T7744] ? __pfx_kernel_clone+0x10/0x10 [ 221.540088][ T7744] __do_sys_clone+0xce/0x120 [ 221.540132][ T7744] ? __pfx___do_sys_clone+0x10/0x10 [ 221.540177][ T7744] ? ksys_semctl.constprop.0+0x152/0x2f0 [ 221.540226][ T7744] ? rcu_is_watching+0x12/0xc0 [ 221.540274][ T7744] do_syscall_64+0xcd/0x260 [ 221.540316][ T7744] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 221.540346][ T7744] RIP: 0033:0x7f554098d169 [ 221.540370][ T7744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 221.540398][ T7744] RSP: 002b:00007f55417bbfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 221.540425][ T7744] RAX: ffffffffffffffda RBX: 00007f5540ba5fa0 RCX: 00007f554098d169 [ 221.540445][ T7744] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 221.540462][ T7744] RBP: 00007f5540a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 221.540480][ T7744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 221.540497][ T7744] R13: 0000000000000000 R14: 00007f5540ba5fa0 R15: 00007ffcd60a6a68 [ 221.540536][ T7744] [ 221.760822][ C0] vkms_vblank_simulate: vblank timer overrun [ 221.885476][ T7749] ALSA: mixer_oss: invalid OSS volume '' [ 224.238263][ T7783] netlink: 4 bytes leftover after parsing attributes in process `syz.1.399'. [ 224.913444][ T7786] ALSA: mixer_oss: invalid OSS volume '' [ 227.026198][ T7808] ALSA: mixer_oss: invalid OSS volume '' [ 229.464885][ T7842] ALSA: mixer_oss: invalid OSS volume '' [ 230.859322][ T7861] ALSA: mixer_oss: invalid OSS volume '' [ 234.135556][ T7914] netlink: 330 bytes leftover after parsing attributes in process `syz.3.436'. [ 234.325426][ T7917] ALSA: mixer_oss: invalid OSS volume '' [ 238.852722][ T7976] Process accounting resumed [ 241.811610][ T8014] mkiss: ax0: crc mode is auto. [ 243.537421][ T8044] FAULT_INJECTION: forcing a failure. [ 243.537421][ T8044] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 244.004638][ T8044] CPU: 0 UID: 0 PID: 8044 Comm: syz.3.465 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(full) [ 244.004677][ T8044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 244.004694][ T8044] Call Trace: [ 244.004703][ T8044] [ 244.004713][ T8044] dump_stack_lvl+0x16c/0x1f0 [ 244.004755][ T8044] should_fail_ex+0x512/0x640 [ 244.004811][ T8044] _copy_to_user+0x32/0xd0 [ 244.004851][ T8044] simple_read_from_buffer+0xcb/0x170 [ 244.004898][ T8044] proc_fail_nth_read+0x197/0x270 [ 244.004943][ T8044] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 244.004990][ T8044] ? rw_verify_area+0xcf/0x680 [ 244.005026][ T8044] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 244.005070][ T8044] vfs_read+0x1de/0xc70 [ 244.005118][ T8044] ? __pfx___mutex_lock+0x10/0x10 [ 244.005157][ T8044] ? __pfx_vfs_read+0x10/0x10 [ 244.005210][ T8044] ? __fget_files+0x20e/0x3c0 [ 244.005277][ T8044] ksys_read+0x12a/0x240 [ 244.005317][ T8044] ? __pfx_ksys_read+0x10/0x10 [ 244.005357][ T8044] ? rcu_is_watching+0x12/0xc0 [ 244.005417][ T8044] do_syscall_64+0xcd/0x260 [ 244.005460][ T8044] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.005491][ T8044] RIP: 0033:0x7f554098bb7c [ 244.005514][ T8044] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 244.005544][ T8044] RSP: 002b:00007f55417bc030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 244.005571][ T8044] RAX: ffffffffffffffda RBX: 00007f5540ba5fa0 RCX: 00007f554098bb7c [ 244.005591][ T8044] RDX: 000000000000000f RSI: 00007f55417bc0a0 RDI: 0000000000000004 [ 244.005616][ T8044] RBP: 00007f55417bc090 R08: 0000000000000000 R09: 0000000000000000 [ 244.005634][ T8044] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 244.005652][ T8044] R13: 0000000000000000 R14: 00007f5540ba5fa0 R15: 00007ffcd60a6a68 [ 244.005692][ T8044] [ 244.191742][ C0] vkms_vblank_simulate: vblank timer overrun [ 246.511723][ T8073] FAULT_INJECTION: forcing a failure. [ 246.511723][ T8073] name failslab, interval 1, probability 0, space 0, times 0 [ 246.511817][ T8073] CPU: 1 UID: 0 PID: 8073 Comm: syz.1.471 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(full) [ 246.511853][ T8073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 246.511869][ T8073] Call Trace: [ 246.511878][ T8073] [ 246.511888][ T8073] dump_stack_lvl+0x16c/0x1f0 [ 246.511928][ T8073] should_fail_ex+0x512/0x640 [ 246.511959][ T8073] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 246.512008][ T8073] should_failslab+0xc2/0x120 [ 246.512036][ T8073] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 246.512080][ T8073] ? do_raw_read_unlock+0x44/0xe0 [ 246.512119][ T8073] ? ima_d_path+0xbd/0x2a0 [ 246.512171][ T8073] ima_d_path+0xbd/0x2a0 [ 246.512213][ T8073] ? vfs_getxattr_alloc+0xec/0x340 [ 246.512263][ T8073] ? __pfx_ima_d_path+0x10/0x10 [ 246.512316][ T8073] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 246.512366][ T8073] process_measurement+0x1b81/0x2360 [ 246.512421][ T8073] ? __pfx_process_measurement+0x10/0x10 [ 246.512462][ T8073] ? __lock_acquire+0x5ca/0x1ba0 [ 246.512542][ T8073] ? mtree_load+0x325/0xa40 [ 246.512585][ T8073] ima_file_mmap+0x1b1/0x1d0 [ 246.512627][ T8073] ? __pfx_ima_file_mmap+0x10/0x10 [ 246.512679][ T8073] security_mmap_file+0x88c/0x990 [ 246.512718][ T8073] __do_sys_remap_file_pages+0x2e2/0xac0 [ 246.512778][ T8073] ? __fget_files+0x20e/0x3c0 [ 246.512818][ T8073] ? __pfx___do_sys_remap_file_pages+0x10/0x10 [ 246.512858][ T8073] ? fput+0x70/0xf0 [ 246.512884][ T8073] ? ksys_write+0x1b9/0x240 [ 246.512921][ T8073] ? __pfx_ksys_write+0x10/0x10 [ 246.512957][ T8073] ? rcu_is_watching+0x12/0xc0 [ 246.513002][ T8073] do_syscall_64+0xcd/0x260 [ 246.513040][ T8073] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 246.513067][ T8073] RIP: 0033:0x7fc76638d169 [ 246.513088][ T8073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 246.513121][ T8073] RSP: 002b:00007fc767200038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d8 [ 246.513146][ T8073] RAX: ffffffffffffffda RBX: 00007fc7665a6080 RCX: 00007fc76638d169 [ 246.513164][ T8073] RDX: 0000000000000000 RSI: 0000000000001000 RDI: 0000000000006a27 [ 246.513180][ T8073] RBP: 00007fc767200090 R08: 000000000000066a R09: 0000000000000000 [ 246.513196][ T8073] R10: 0000000000000b74 R11: 0000000000000246 R12: 0000000000000001 [ 246.513211][ T8073] R13: 0000000000000000 R14: 00007fc7665a6080 R15: 00007ffd9a707498 [ 246.513246][ T8073] [ 247.387212][ T8088] netlink: 334 bytes leftover after parsing attributes in process `syz.1.474'. [ 247.387485][ T8088] netlink: 334 bytes leftover after parsing attributes in process `syz.1.474'. [ 248.275191][ C0] vkms_vblank_simulate: vblank timer overrun [ 248.500599][ T8098] openvswitch: netlink: IP tunnel dst address not specified [ 248.500874][ T8102] openvswitch: netlink: IP tunnel dst address not specified [ 249.820953][ T8116] FAULT_INJECTION: forcing a failure. [ 249.820953][ T8116] name failslab, interval 1, probability 0, space 0, times 0 [ 249.875382][ T8116] CPU: 0 UID: 0 PID: 8116 Comm: syz.1.487 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(full) [ 249.875421][ T8116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 249.875437][ T8116] Call Trace: [ 249.875446][ T8116] [ 249.875457][ T8116] dump_stack_lvl+0x16c/0x1f0 [ 249.875498][ T8116] should_fail_ex+0x512/0x640 [ 249.875528][ T8116] ? fs_reclaim_acquire+0xae/0x150 [ 249.875566][ T8116] ? ima_alloc_init_template+0xb5/0x720 [ 249.875611][ T8116] should_failslab+0xc2/0x120 [ 249.875638][ T8116] __kmalloc_noprof+0xd2/0x510 [ 249.875688][ T8116] ? find_held_lock+0x2b/0x80 [ 249.875731][ T8116] ima_alloc_init_template+0xb5/0x720 [ 249.875779][ T8116] ? take_dentry_name_snapshot+0x319/0x7d0 [ 249.875818][ T8116] ima_store_measurement+0x1eb/0x5c0 [ 249.875876][ T8116] ? __pfx_ima_store_measurement+0x10/0x10 [ 249.875925][ T8116] ? vfs_getxattr_alloc+0xec/0x340 [ 249.875980][ T8116] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 249.876026][ T8116] process_measurement+0x1bd6/0x2360 [ 249.876083][ T8116] ? __pfx_process_measurement+0x10/0x10 [ 249.876123][ T8116] ? __lock_acquire+0x5ca/0x1ba0 [ 249.876203][ T8116] ? mtree_load+0x325/0xa40 [ 249.876244][ T8116] ima_file_mmap+0x1b1/0x1d0 [ 249.876285][ T8116] ? __pfx_ima_file_mmap+0x10/0x10 [ 249.876336][ T8116] security_mmap_file+0x88c/0x990 [ 249.876374][ T8116] __do_sys_remap_file_pages+0x2e2/0xac0 [ 249.876424][ T8116] ? __fget_files+0x20e/0x3c0 [ 249.876465][ T8116] ? __pfx___do_sys_remap_file_pages+0x10/0x10 [ 249.876509][ T8116] ? fput+0x70/0xf0 [ 249.876536][ T8116] ? ksys_write+0x1b9/0x240 [ 249.876576][ T8116] ? __pfx_ksys_write+0x10/0x10 [ 249.876615][ T8116] ? rcu_is_watching+0x12/0xc0 [ 249.876662][ T8116] do_syscall_64+0xcd/0x260 [ 249.876701][ T8116] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 249.876730][ T8116] RIP: 0033:0x7fc76638d169 [ 249.876751][ T8116] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 249.876778][ T8116] RSP: 002b:00007fc7671df038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d8 [ 249.876805][ T8116] RAX: ffffffffffffffda RBX: 00007fc7665a6160 RCX: 00007fc76638d169 [ 249.876823][ T8116] RDX: 0000000000000000 RSI: 0000000000001000 RDI: 0000000000006a27 [ 249.876849][ T8116] RBP: 00007fc7671df090 R08: 000000000000066a R09: 0000000000000000 [ 249.876866][ T8116] R10: 0000000000000b74 R11: 0000000000000246 R12: 0000000000000001 [ 249.876883][ T8116] R13: 0000000000000000 R14: 00007fc7665a6160 R15: 00007ffd9a707498 [ 249.876920][ T8116] [ 249.985476][ T30] audit: type=1804 audit(6038606105.141:5): pid=8116 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.1.487" name="dev/zero" dev="tmpfs" ino=1423 res=0 errno=0 [ 249.991176][ C0] vkms_vblank_simulate: vblank timer overrun [ 250.161930][ C0] vkms_vblank_simulate: vblank timer overrun [ 250.167971][ C0] hrtimer: interrupt took 282721225 ns [ 250.268030][ C0] vkms_vblank_simulate: vblank timer overrun [ 251.594850][ T8126] random: crng reseeded on system resumption [ 253.337150][ T8144] FAULT_INJECTION: forcing a failure. [ 253.337150][ T8144] name failslab, interval 1, probability 0, space 0, times 0 [ 253.379733][ T8144] CPU: 1 UID: 0 PID: 8144 Comm: syz.0.484 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(full) [ 253.379783][ T8144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 253.379802][ T8144] Call Trace: [ 253.379812][ T8144] [ 253.379824][ T8144] dump_stack_lvl+0x16c/0x1f0 [ 253.379870][ T8144] should_fail_ex+0x512/0x640 [ 253.379904][ T8144] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 253.379964][ T8144] should_failslab+0xc2/0x120 [ 253.379994][ T8144] __kmalloc_cache_noprof+0x6a/0x3e0 [ 253.380038][ T8144] ? drm_atomic_state_alloc+0xb8/0x120 [ 253.380079][ T8144] drm_atomic_state_alloc+0xb8/0x120 [ 253.380113][ T8144] drm_client_modeset_commit_atomic+0xcc/0x7e0 [ 253.380186][ T8144] ? __pfx___might_resched+0x10/0x10 [ 253.380236][ T8144] ? rcu_is_watching+0x12/0xc0 [ 253.380277][ T8144] ? trace_contention_end+0xdd/0x130 [ 253.380310][ T8144] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 253.380411][ T8144] drm_client_modeset_commit_locked+0x14d/0x580 [ 253.380471][ T8144] drm_client_modeset_commit+0x4f/0x80 [ 253.380525][ T8144] __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200 [ 253.380577][ T8144] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 253.380617][ T8144] drm_fbdev_client_restore+0x2c/0x40 [ 253.380666][ T8144] drm_client_dev_restore+0x1f3/0x2a0 [ 253.380724][ T8144] drm_release+0x2c4/0x360 [ 253.380774][ T8144] ? __pfx_drm_release+0x10/0x10 [ 253.380830][ T8144] __fput+0x3ff/0xb70 [ 253.380874][ T8144] task_work_run+0x14d/0x240 [ 253.380913][ T8144] ? __pfx_task_work_run+0x10/0x10 [ 253.380963][ T8144] get_signal+0x1d1/0x26d0 [ 253.381023][ T8144] ? __pfx_get_signal+0x10/0x10 [ 253.381066][ T8144] ? task_work_add+0x1d5/0x360 [ 253.381102][ T8144] ? __pfx_task_work_add+0x10/0x10 [ 253.381143][ T8144] arch_do_signal_or_restart+0x8f/0x7d0 [ 253.381195][ T8144] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 253.381277][ T8144] ? __pfx_do_readv+0x10/0x10 [ 253.381316][ T8144] ? rcu_is_watching+0x12/0xc0 [ 253.381366][ T8144] syscall_exit_to_user_mode+0x150/0x2a0 [ 253.381410][ T8144] do_syscall_64+0xda/0x260 [ 253.381455][ T8144] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 253.381488][ T8144] RIP: 0033:0x7fd850b8d169 [ 253.381512][ T8144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 253.381542][ T8144] RSP: 002b:00007fd851a2a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 253.381570][ T8144] RAX: fffffffffffffe00 RBX: 00007fd850da5fa0 RCX: 00007fd850b8d169 [ 253.381603][ T8144] RDX: 0000000000000007 RSI: 00002000000001c0 RDI: 0000000000000003 [ 253.381622][ T8144] RBP: 00007fd851a2a090 R08: 0000000000000000 R09: 0000000000000000 [ 253.381640][ T8144] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 253.381658][ T8144] R13: 0000000000000000 R14: 00007fd850da5fa0 R15: 00007ffe34d3a268 [ 253.381700][ T8144] [ 259.976529][ T8213] ALSA: mixer_oss: invalid OSS volume '' [ 260.891455][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 260.898248][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 263.743996][ T8260] capability: warning: `syz.2.513' uses 32-bit capabilities (legacy support in use) [ 263.958667][ T30] audit: type=1800 audit(6038606119.221:6): pid=8272 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.513" name="members" dev="configfs" ino=16237 res=0 errno=0 [ 264.519011][ T8257] ALSA: mixer_oss: invalid OSS volume '' [ 266.048565][ T30] audit: type=1800 audit(6038606121.311:7): pid=8298 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.523" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 267.183967][ T8290] tty tty4: ldisc open failed (-12), clearing slot 3 [ 267.365857][ T8310] tty tty17: ldisc open failed (-12), clearing slot 16 [ 267.400852][ T8316] nvme_fcloop: unknown parameter or missing value '^/]' [ 268.457680][ T8327] ALSA: mixer_oss: invalid OSS volume '' [ 268.875725][ T8338] netlink: 4 bytes leftover after parsing attributes in process `syz.3.531'. [ 268.934757][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 268.941386][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 269.101038][ T8342] Process accounting paused [ 269.368452][ T8336] ptrace attach of "./syz-executor exec"[5837] was attempted by "./syz-executor exec"[8336] [ 269.795721][ T8359] FAULT_INJECTION: forcing a failure. [ 269.795721][ T8359] name failslab, interval 1, probability 0, space 0, times 0 [ 269.848383][ T8359] CPU: 1 UID: 0 PID: 8359 Comm: syz.1.536 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(full) [ 269.848431][ T8359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 269.848451][ T8359] Call Trace: [ 269.848461][ T8359] [ 269.848473][ T8359] dump_stack_lvl+0x16c/0x1f0 [ 269.848519][ T8359] should_fail_ex+0x512/0x640 [ 269.848554][ T8359] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 269.848603][ T8359] should_failslab+0xc2/0x120 [ 269.848635][ T8359] __kmalloc_cache_noprof+0x6a/0x3e0 [ 269.848682][ T8359] ? sctp_endpoint_new+0x11f/0xcd0 [ 269.848733][ T8359] sctp_endpoint_new+0x11f/0xcd0 [ 269.848797][ T8359] sctp_init_sock+0xe2d/0x1330 [ 269.848837][ T8359] ? __pfx_sctp_v6_init_sock+0x10/0x10 [ 269.848880][ T8359] sctp_v6_init_sock+0x16/0x70 [ 269.848919][ T8359] ? __pfx_sctp_v6_init_sock+0x10/0x10 [ 269.848960][ T8359] inet6_create+0xb2d/0x1300 [ 269.848998][ T8359] ? inet6_create+0x7f/0x1300 [ 269.849049][ T8359] __sock_create+0x335/0x8d0 [ 269.849108][ T8359] __sys_socket+0x14d/0x260 [ 269.849159][ T8359] ? __pfx___sys_socket+0x10/0x10 [ 269.849212][ T8359] ? rcu_is_watching+0x12/0xc0 [ 269.849260][ T8359] __x64_sys_socket+0x72/0xb0 [ 269.849309][ T8359] ? lockdep_hardirqs_on+0x7c/0x110 [ 269.849347][ T8359] do_syscall_64+0xcd/0x260 [ 269.849390][ T8359] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 269.849422][ T8359] RIP: 0033:0x7fc76638d169 [ 269.849447][ T8359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 269.849478][ T8359] RSP: 002b:00007fc767221038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 269.849508][ T8359] RAX: ffffffffffffffda RBX: 00007fc7665a5fa0 RCX: 00007fc76638d169 [ 269.849529][ T8359] RDX: 0000000000000084 RSI: 0000000000000001 RDI: 000000000000000a [ 269.849546][ T8359] RBP: 00007fc76640e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 269.849565][ T8359] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 269.849583][ T8359] R13: 0000000000000000 R14: 00007fc7665a5fa0 R15: 00007ffd9a707498 [ 269.849623][ T8359] [ 271.104733][ T8385] syz.0.541 uses obsolete (PF_INET,SOCK_PACKET) [ 271.159713][ T8384] QAT: failed to copy from user cfg_data. [ 271.170544][ T8384] snd_aloop snd_aloop.0: control 16781581:65535:6:'x?F/zF˷fC:8 is already present [ 271.369619][ T8389] ubi0: attaching mtd0 [ 271.373217][ T8389] ubi0: scanning is finished [ 271.373253][ T8389] ubi0: empty MTD device detected [ 271.746728][ T8389] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 271.746770][ T8389] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 271.746800][ T8389] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 271.746826][ T8389] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 271.746852][ T8389] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 271.746877][ T8389] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 271.746902][ T8389] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 4238866813 [ 271.746932][ T8389] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 271.747839][ T8397] ubi0: background thread "ubi_bgt0d" started, PID 8397 [ 271.944253][ T8380] tty tty17: ldisc open failed (-12), clearing slot 16 [ 271.963904][ T8387] ALSA: mixer_oss: invalid OSS volume '' [ 273.016002][ T8407] netlink: 186 bytes leftover after parsing attributes in process `syz.2.545'. [ 274.880779][ T8431] FAULT_INJECTION: forcing a failure. [ 274.880779][ T8431] name failslab, interval 1, probability 0, space 0, times 0 [ 274.924489][ T8431] CPU: 0 UID: 0 PID: 8431 Comm: syz.3.552 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(full) [ 274.924532][ T8431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 274.924550][ T8431] Call Trace: [ 274.924560][ T8431] [ 274.924571][ T8431] dump_stack_lvl+0x16c/0x1f0 [ 274.924615][ T8431] should_fail_ex+0x512/0x640 [ 274.924647][ T8431] ? __kmalloc_noprof+0xbf/0x510 [ 274.924697][ T8431] ? lsm_blob_alloc+0x68/0x90 [ 274.924740][ T8431] should_failslab+0xc2/0x120 [ 274.924770][ T8431] __kmalloc_noprof+0xd2/0x510 [ 274.924836][ T8431] lsm_blob_alloc+0x68/0x90 [ 274.924881][ T8431] security_prepare_creds+0x30/0x270 [ 274.924925][ T8431] prepare_creds+0x56f/0x7d0 [ 274.924963][ T8431] copy_creds+0xa7/0xa50 [ 274.925001][ T8431] copy_process+0x10b1/0x91a0 [ 274.925062][ T8431] ? preempt_schedule_thunk+0x16/0x30 [ 274.925105][ T8431] ? __pfx_copy_process+0x10/0x10 [ 274.925153][ T8431] ? try_to_wake_up+0xa2f/0x1680 [ 274.925195][ T8431] ? __pfx_try_to_wake_up+0x10/0x10 [ 274.925238][ T8431] ? plist_check_head+0xa3/0x150 [ 274.925262][ T8431] ? find_held_lock+0x2b/0x80 [ 274.925304][ T8431] ? wake_up_q+0xb0/0x160 [ 274.925337][ T8431] ? do_raw_spin_unlock+0x172/0x230 [ 274.925375][ T8431] kernel_clone+0xfc/0x960 [ 274.925419][ T8431] ? __pfx_futex_wake+0x10/0x10 [ 274.925445][ T8431] ? __pfx_kernel_clone+0x10/0x10 [ 274.925486][ T8431] ? __pfx_vfs_writev+0x10/0x10 [ 274.925567][ T8431] __do_sys_clone+0xce/0x120 [ 274.925624][ T8431] ? __pfx___do_sys_clone+0x10/0x10 [ 274.925687][ T8431] ? rcu_is_watching+0x12/0xc0 [ 274.925734][ T8431] do_syscall_64+0xcd/0x260 [ 274.925780][ T8431] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 274.925810][ T8431] RIP: 0033:0x7f554098d169 [ 274.925832][ T8431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 274.925857][ T8431] RSP: 002b:00007f55417bbfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 274.925884][ T8431] RAX: ffffffffffffffda RBX: 00007f5540ba5fa0 RCX: 00007f554098d169 [ 274.925902][ T8431] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 274.925918][ T8431] RBP: 00007f5540a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 274.925935][ T8431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 274.925952][ T8431] R13: 0000000000000000 R14: 00007f5540ba5fa0 R15: 00007ffcd60a6a68 [ 274.925989][ T8431] [ 275.164590][ C0] vkms_vblank_simulate: vblank timer overrun [ 275.272512][ C0] vkms_vblank_simulate: vblank timer overrun [ 277.935483][ T8485] ALSA: mixer_oss: invalid OSS volume '' [ 278.240551][ T8477] ALSA: mixer_oss: invalid OSS volume '' [ 280.491982][ T8514] netlink: 12 bytes leftover after parsing attributes in process `syz.1.572'. [ 280.510295][ T8515] HfR: entered promiscuous mode [ 280.561964][ T8514] HfR: left promiscuous mode [ 280.705681][ T8515] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 281.088741][ T8523] ALSA: mixer_oss: invalid OSS volume '' [ 282.294303][ T8526] ptrace attach of "./syz-executor exec"[5847] was attempted by "./syz-executor exec"[8526] [ 283.995745][ T8524] ALSA: mixer_oss: invalid OSS volume '' [ 284.396211][ T8570] ALSA: mixer_oss: invalid OSS volume '' syzkaller syzkaller login: [ 285.398057][ T8585] program syz.2.585 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 287.206286][ T8610] ALSA: mixer_oss: invalid OSS volume '' [ 287.420206][ T8610] ubi: mtd0 is already attached to ubi0 [ 289.249209][ T8629] ALSA: mixer_oss: invalid OSS volume '' [ 291.820709][ T8650] HfR: entered promiscuous mode [ 291.879135][ T8650] netlink: 12 bytes leftover after parsing attributes in process `syz.3.602'. [ 291.913161][ T8650] HfR: left promiscuous mode [ 292.019790][ T8653] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 292.165642][ T8655] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input6 [ 293.006789][ T8674] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 293.013661][ T8674] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 296.833568][ T8703] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 296.854461][ T8703] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 297.111624][ T8703] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 297.126598][ T8704] ALSA: mixer_oss: invalid OSS volume '' [ 297.134866][ T8703] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 297.225980][ T8703] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 297.247634][ T8703] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 297.364929][ T8703] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 297.375443][ T8703] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 297.566153][ T8722] HfR: entered promiscuous mode [ 297.619771][ T8722] netlink: 12 bytes leftover after parsing attributes in process `syz.0.616'. [ 297.672900][ T8725] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 297.701014][ T8722] HfR: left promiscuous mode [ 298.729074][ T5840] Bluetooth: hci1: command 0x0406 tx timeout [ 299.125345][ T5840] Bluetooth: hci2: command 0x0406 tx timeout [ 299.277555][ T5840] Bluetooth: hci0: command 0x0406 tx timeout [ 299.475270][ T5840] Bluetooth: hci3: command 0x0406 tx timeout [ 300.814770][ T5840] Bluetooth: hci1: command 0x0406 tx timeout [ 301.130907][ T8749] Process accounting resumed [ 301.205579][ T5840] Bluetooth: hci2: command 0x0406 tx timeout [ 301.355611][ T5840] Bluetooth: hci0: command 0x0406 tx timeout [ 301.515341][ T5840] Bluetooth: hci3: command 0x0406 tx timeout [ 301.953107][ T8773] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input7 [ 305.130332][ T30] audit: type=1800 audit(6038606160.391:8): pid=8807 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.635" name="dummy_udc" dev="gadgetfs" ino=5118 res=0 errno=0 [ 308.492889][ T5840] Bluetooth: hci2: Malformed LE Event: 0x02 [ 309.809905][ T8861] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input8 [ 313.505497][ T8896] ALSA: mixer_oss: invalid OSS volume '' [ 313.976201][ T8900] ALSA: mixer_oss: invalid OSS volume '' [ 314.145505][ T8900] ubi: mtd0 is already attached to ubi0 [ 319.074354][ T8941] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input9 [ 319.592967][ T8950] ALSA: mixer_oss: invalid OSS volume '' [ 322.336217][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 322.342689][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 326.904290][ T9019] ALSA: mixer_oss: invalid OSS volume '' [ 327.053113][ T9014] zswap: compressor not available [ 329.262429][ T9057] netlink: 28 bytes leftover after parsing attributes in process `syz.0.690'. [ 331.426654][ T9089] FAULT_INJECTION: forcing a failure. [ 331.426654][ T9089] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 331.479880][ T9089] CPU: 0 UID: 0 PID: 9089 Comm: syz.2.698 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(full) [ 331.479950][ T9089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 331.479967][ T9089] Call Trace: [ 331.479976][ T9089] [ 331.479987][ T9089] dump_stack_lvl+0x16c/0x1f0 [ 331.480032][ T9089] should_fail_ex+0x512/0x640 [ 331.480071][ T9089] _copy_to_user+0x32/0xd0 [ 331.480110][ T9089] put_user_ifreq+0xeb/0x150 [ 331.480155][ T9089] sock_do_ioctl+0x230/0x280 [ 331.480200][ T9089] ? __pfx_sock_do_ioctl+0x10/0x10 [ 331.480271][ T9089] sock_ioctl+0x227/0x6b0 [ 331.480319][ T9089] ? __pfx_sock_ioctl+0x10/0x10 [ 331.480381][ T9089] ? hook_file_ioctl_common+0x145/0x410 [ 331.480422][ T9089] ? __fget_files+0x20e/0x3c0 [ 331.480503][ T9089] ? __pfx_sock_ioctl+0x10/0x10 [ 331.480557][ T9089] __x64_sys_ioctl+0x190/0x200 [ 331.480602][ T9089] do_syscall_64+0xcd/0x260 [ 331.480647][ T9089] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 331.480680][ T9089] RIP: 0033:0x7f4eba78d169 [ 331.480706][ T9089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 331.480738][ T9089] RSP: 002b:00007f4ebb55f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 331.480769][ T9089] RAX: ffffffffffffffda RBX: 00007f4eba9a5fa0 RCX: 00007f4eba78d169 [ 331.480791][ T9089] RDX: 0000200000000100 RSI: 0000000000008933 RDI: 0000000000000006 [ 331.480811][ T9089] RBP: 00007f4eba80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 331.480830][ T9089] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 331.480850][ T9089] R13: 0000000000000000 R14: 00007f4eba9a5fa0 R15: 00007ffff57e9448 [ 331.480891][ T9089] [ 331.655690][ C0] vkms_vblank_simulate: vblank timer overrun [ 332.192894][ T9083] Process accounting paused [ 333.344969][ T9108] ima: policy update failed [ 333.392488][ T9119] ALSA: mixer_oss: invalid OSS volume '' [ 333.400073][ T30] audit: type=1802 audit(6038606188.661:9): pid=9108 uid=2 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.701" res=0 errno=0 [ 333.825550][ T9127] netlink: 36 bytes leftover after parsing attributes in process `syz.2.705'. [ 335.697100][ T9165] FAULT_INJECTION: forcing a failure. [ 335.697100][ T9165] name failslab, interval 1, probability 0, space 0, times 0 [ 335.739855][ T9165] CPU: 1 UID: 0 PID: 9165 Comm: syz.0.713 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(full) [ 335.739895][ T9165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 335.739912][ T9165] Call Trace: [ 335.739921][ T9165] [ 335.739931][ T9165] dump_stack_lvl+0x16c/0x1f0 [ 335.739973][ T9165] should_fail_ex+0x512/0x640 [ 335.740004][ T9165] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 335.740053][ T9165] should_failslab+0xc2/0x120 [ 335.740081][ T9165] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 335.740125][ T9165] ? __pfx___might_resched+0x10/0x10 [ 335.740166][ T9165] ? __anon_vma_prepare+0x344/0x5e0 [ 335.740215][ T9165] __anon_vma_prepare+0x344/0x5e0 [ 335.740256][ T9165] ? __pfx___pte_alloc+0x10/0x10 [ 335.740291][ T9165] __vmf_anon_prepare+0x11c/0x240 [ 335.740340][ T9165] do_pte_missing+0x1194/0x3fb0 [ 335.740386][ T9165] ? _raw_spin_unlock+0x28/0x50 [ 335.740416][ T9165] ? __pmd_alloc+0x3c2/0x870 [ 335.740453][ T9165] __handle_mm_fault+0x103d/0x2a40 [ 335.740506][ T9165] ? __pfx___handle_mm_fault+0x10/0x10 [ 335.740581][ T9165] handle_mm_fault+0x3fe/0xad0 [ 335.740629][ T9165] __get_user_pages+0x771/0x36f0 [ 335.740675][ T9165] ? __pfx_mt_find+0x10/0x10 [ 335.740715][ T9165] ? __pfx___get_user_pages+0x10/0x10 [ 335.740765][ T9165] populate_vma_page_range+0x278/0x3a0 [ 335.740808][ T9165] ? __pfx_populate_vma_page_range+0x10/0x10 [ 335.740847][ T9165] ? __pfx_find_vma_intersection+0x10/0x10 [ 335.740884][ T9165] ? do_mmap+0x69c/0x11b0 [ 335.740923][ T9165] __mm_populate+0x1d8/0x380 [ 335.740964][ T9165] ? __pfx___mm_populate+0x10/0x10 [ 335.741017][ T9165] ? up_write+0x1b2/0x520 [ 335.741051][ T9165] vm_mmap_pgoff+0x362/0x450 [ 335.741087][ T9165] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 335.741127][ T9165] ? __x64_sys_futex+0x1e0/0x4c0 [ 335.741166][ T9165] ? __x64_sys_futex+0x1e9/0x4c0 [ 335.741211][ T9165] ksys_mmap_pgoff+0x7d/0x5c0 [ 335.741242][ T9165] ? rcu_is_watching+0x12/0xc0 [ 335.741279][ T9165] __x64_sys_mmap+0x125/0x190 [ 335.741321][ T9165] do_syscall_64+0xcd/0x260 [ 335.741359][ T9165] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 335.741387][ T9165] RIP: 0033:0x7fd850b8d169 [ 335.741407][ T9165] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 335.741433][ T9165] RSP: 002b:00007fd8519e8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 335.741458][ T9165] RAX: ffffffffffffffda RBX: 00007fd850da6160 RCX: 00007fd850b8d169 [ 335.741475][ T9165] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 335.741491][ T9165] RBP: 00007fd850c0e2a0 R08: 0000000000000002 R09: 0000000000008000 [ 335.741507][ T9165] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 335.741523][ T9165] R13: 0000000000000000 R14: 00007fd850da6160 R15: 00007ffe34d3a268 [ 335.741558][ T9165] [ 336.836328][ T9193] ALSA: mixer_oss: invalid OSS volume '' [ 339.051835][ T9211] netlink: 504 bytes leftover after parsing attributes in process `syz.1.721'. [ 339.085960][ T9211] netlink: 350 bytes leftover after parsing attributes in process `syz.1.721'. [ 339.528134][ T9219] FAULT_INJECTION: forcing a failure. [ 339.528134][ T9219] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 339.528196][ T9219] CPU: 1 UID: 0 PID: 9219 Comm: syz.1.724 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(full) [ 339.528236][ T9219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 339.528255][ T9219] Call Trace: [ 339.528265][ T9219] [ 339.528276][ T9219] dump_stack_lvl+0x16c/0x1f0 [ 339.528322][ T9219] should_fail_ex+0x512/0x640 [ 339.528365][ T9219] should_fail_alloc_page+0xe7/0x130 [ 339.528400][ T9219] prepare_alloc_pages+0x3c2/0x610 [ 339.528449][ T9219] ? vc_allocate+0x489/0x880 [ 339.528496][ T9219] __alloc_frozen_pages_noprof+0x18d/0x2370 [ 339.528557][ T9219] ? stack_trace_save+0x8e/0xc0 [ 339.528614][ T9219] ? __lock_acquire+0xaa4/0x1ba0 [ 339.528644][ T9219] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 339.528702][ T9219] ? fb_var_to_videomode+0x4c9/0x690 [ 339.528759][ T9219] ? __pfx_fb_match_mode+0x10/0x10 [ 339.528801][ T9219] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 339.528848][ T9219] ? lockdep_hardirqs_on+0x7c/0x110 [ 339.528902][ T9219] ? vc_allocate+0x489/0x880 [ 339.528952][ T9219] __alloc_pages_noprof+0xb/0x1b0 [ 339.529015][ T9219] ___kmalloc_large_node+0x82/0x1e0 [ 339.529050][ T9219] ? con_is_visible+0x65/0x150 [ 339.529089][ T9219] __kmalloc_large_node_noprof+0x1c/0x70 [ 339.529129][ T9219] __kmalloc_noprof.cold+0xc/0x61 [ 339.529180][ T9219] vc_allocate+0x489/0x880 [ 339.529234][ T9219] ? __pfx_vc_allocate+0x10/0x10 [ 339.529287][ T9219] con_install+0xa1/0x600 [ 339.529331][ T9219] ? __pfx_con_install+0x10/0x10 [ 339.529380][ T9219] ? __pfx_con_install+0x10/0x10 [ 339.529423][ T9219] tty_init_dev.part.0+0x99/0x500 [ 339.529452][ T9219] tty_open+0xadc/0xfb0 [ 339.529484][ T9219] ? __pfx_tty_open+0x10/0x10 [ 339.529509][ T9219] ? chrdev_open+0x58c/0x6a0 [ 339.529559][ T9219] ? __pfx_tty_open+0x10/0x10 [ 339.529583][ T9219] chrdev_open+0x231/0x6a0 [ 339.529628][ T9219] ? __pfx_chrdev_open+0x10/0x10 [ 339.529676][ T9219] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 339.529730][ T9219] do_dentry_open+0x741/0x1c10 [ 339.529771][ T9219] ? __pfx_chrdev_open+0x10/0x10 [ 339.529824][ T9219] vfs_open+0x82/0x3f0 [ 339.529876][ T9219] path_openat+0x1e5e/0x2d40 [ 339.529938][ T9219] ? __pfx_path_openat+0x10/0x10 [ 339.529993][ T9219] do_filp_open+0x20b/0x470 [ 339.530040][ T9219] ? __pfx_do_filp_open+0x10/0x10 [ 339.530115][ T9219] ? alloc_fd+0x471/0x7d0 [ 339.530170][ T9219] do_sys_openat2+0x11b/0x1d0 [ 339.530202][ T9219] ? __pfx_do_sys_openat2+0x10/0x10 [ 339.530251][ T9219] __x64_sys_openat+0x174/0x210 [ 339.530285][ T9219] ? __pfx___x64_sys_openat+0x10/0x10 [ 339.530320][ T9219] ? rcu_is_watching+0x12/0xc0 [ 339.530367][ T9219] do_syscall_64+0xcd/0x260 [ 339.530410][ T9219] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 339.530440][ T9219] RIP: 0033:0x7fc76638d169 [ 339.530463][ T9219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 339.530492][ T9219] RSP: 002b:00007fc767221038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 339.530519][ T9219] RAX: ffffffffffffffda RBX: 00007fc7665a5fa0 RCX: 00007fc76638d169 [ 339.530548][ T9219] RDX: 0000000000040000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 339.530565][ T9219] RBP: 00007fc76640e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 339.530582][ T9219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 339.530615][ T9219] R13: 0000000000000000 R14: 00007fc7665a5fa0 R15: 00007ffd9a707498 [ 339.530653][ T9219] [ 339.576162][ T9197] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 339.941028][ T9197] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 339.975471][ T9197] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 339.982463][ T9197] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 340.085303][ T55] Bluetooth: hci1: command 0x0406 tx timeout [ 341.506130][ T9253] ALSA: mixer_oss: invalid OSS volume '' [ 342.005602][ T55] Bluetooth: hci3: command 0x0406 tx timeout [ 342.011737][ T55] Bluetooth: hci0: command 0x0406 tx timeout [ 342.017960][ T5840] Bluetooth: hci2: command 0x0406 tx timeout [ 343.965299][ T30] audit: type=1326 audit(6038606199.211:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9294 comm="syz.1.735" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc76638d169 code=0x0 [ 347.760518][ T9344] random: crng reseeded on system resumption [ 348.593379][ T9344] random: crng reseeded on system resumption [ 348.668099][ T55] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 348.668146][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 348.686542][ T55] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 348.686634][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 348.700331][ T55] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 348.700365][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 348.715579][ T55] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 348.715635][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 348.728952][ T55] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 348.728985][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 348.745598][ T55] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 348.745658][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 348.759039][ T55] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 348.759075][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 348.774045][ T55] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 348.774100][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 348.787445][ T55] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 348.787476][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 348.802393][ T55] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 348.802447][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 348.815748][ T55] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 348.815780][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 348.830684][ T55] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 348.830738][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 348.845795][ T55] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 348.845825][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 348.860791][ T55] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 348.860848][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 348.874113][ T55] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 348.874144][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 348.889184][ T55] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 348.889245][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 348.902559][ T55] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 348.902592][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 348.917488][ T55] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 348.917538][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 348.930762][ T55] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 348.930794][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 348.947402][ T55] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 348.947454][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 348.960778][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 348.968480][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 348.974582][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 348.982245][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 348.988414][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 348.996114][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 349.002227][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 349.009872][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 349.016066][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 349.023700][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 349.030057][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 349.037987][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 349.045950][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 349.053589][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 349.059725][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 349.067391][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 349.073484][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 349.081151][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 349.087273][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 349.094886][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 349.101039][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 349.108704][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 349.114821][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 349.122693][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 349.128997][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 349.136665][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 349.142818][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 349.152406][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 349.158566][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 349.166212][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 349.172312][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 349.179974][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 349.186161][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 349.193837][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 349.200051][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 349.207747][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 349.213893][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 349.221580][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 349.227731][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 349.235458][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 349.241542][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 349.250638][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 349.256743][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 349.264342][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 349.270509][ T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 349.279802][ T55] Bluetooth: hci0: Malformed LE Event: 0x0d [ 353.673631][ T9431] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 353.758256][ T9437] FAULT_INJECTION: forcing a failure. [ 353.758256][ T9437] name failslab, interval 1, probability 0, space 0, times 0 [ 354.052560][ T9439] Invalid ELF header magic: != ELF [ 354.155271][ T9437] CPU: 1 UID: 0 PID: 9437 Comm: syz.2.763 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(full) [ 354.155309][ T9437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 354.155325][ T9437] Call Trace: [ 354.155334][ T9437] [ 354.155344][ T9437] dump_stack_lvl+0x16c/0x1f0 [ 354.155385][ T9437] should_fail_ex+0x512/0x640 [ 354.155421][ T9437] ? fs_reclaim_acquire+0xae/0x150 [ 354.155458][ T9437] ? tomoyo_encode2+0x100/0x3e0 [ 354.155492][ T9437] should_failslab+0xc2/0x120 [ 354.155519][ T9437] __kmalloc_noprof+0xd2/0x510 [ 354.155561][ T9437] ? d_absolute_path+0x136/0x1a0 [ 354.155598][ T9437] tomoyo_encode2+0x100/0x3e0 [ 354.155636][ T9437] tomoyo_encode+0x29/0x50 [ 354.155669][ T9437] tomoyo_realpath_from_path+0x18f/0x6e0 [ 354.155715][ T9437] tomoyo_mount_acl+0x1ae/0x850 [ 354.155747][ T9437] ? kernel_text_address+0x8d/0x100 [ 354.155780][ T9437] ? __kernel_text_address+0xd/0x40 [ 354.155813][ T9437] ? unwind_get_return_address+0x59/0xa0 [ 354.155851][ T9437] ? arch_stack_walk+0xa6/0x100 [ 354.155890][ T9437] ? __pfx_tomoyo_mount_acl+0x10/0x10 [ 354.155964][ T9437] ? tomoyo_domain+0xbb/0x150 [ 354.156004][ T9437] ? tomoyo_profile+0x47/0x60 [ 354.156048][ T9437] tomoyo_mount_permission+0x16d/0x420 [ 354.156082][ T9437] ? tomoyo_mount_permission+0x14f/0x420 [ 354.156118][ T9437] ? __pfx_tomoyo_mount_permission+0x10/0x10 [ 354.156172][ T9437] security_sb_mount+0x9b/0x260 [ 354.156203][ T9437] path_mount+0x128/0x1f30 [ 354.156232][ T9437] ? kmem_cache_free+0x2d4/0x4d0 [ 354.156274][ T9437] ? __pfx_path_mount+0x10/0x10 [ 354.156306][ T9437] ? putname+0x154/0x1a0 [ 354.156339][ T9437] __x64_sys_mount+0x28d/0x310 [ 354.156369][ T9437] ? __pfx___x64_sys_mount+0x10/0x10 [ 354.156402][ T9437] ? rcu_is_watching+0x12/0xc0 [ 354.156450][ T9437] do_syscall_64+0xcd/0x260 [ 354.156490][ T9437] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 354.156517][ T9437] RIP: 0033:0x7f4eba78d169 [ 354.156539][ T9437] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 354.156565][ T9437] RSP: 002b:00007f4ebb53e038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 354.156590][ T9437] RAX: ffffffffffffffda RBX: 00007f4eba9a6080 RCX: 00007f4eba78d169 [ 354.156607][ T9437] RDX: 0000200000000100 RSI: 00002000000000c0 RDI: 0000000000000000 [ 354.156624][ T9437] RBP: 00007f4eba80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 354.156639][ T9437] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000 [ 354.156655][ T9437] R13: 0000000000000000 R14: 00007f4eba9a6080 R15: 00007ffff57e9448 [ 354.156689][ T9437] [ 354.156713][ T9437] ERROR: Out of memory at tomoyo_realpath_from_path. [ 355.069730][ T9454] ALSA: mixer_oss: invalid OSS volume '' [ 358.917204][ T9483] netlink: 28 bytes leftover after parsing attributes in process `syz.2.774'. [ 359.360512][ T9490] ALSA: mixer_oss: invalid OSS volume '' [ 362.453421][ T9532] IPVS: length: 150994944 != 15703474184 [ 362.809958][ T9533] netlink: 544 bytes leftover after parsing attributes in process `syz.2.786'. [ 363.695923][ T9546] ALSA: mixer_oss: invalid OSS volume '' [ 364.227618][ T9544] delete_channel: no stack [ 364.312479][ T9547] Process accounting resumed [ 365.655086][ T9580] FAULT_INJECTION: forcing a failure. [ 365.655086][ T9580] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 365.720589][ T9585] FAULT_INJECTION: forcing a failure. [ 365.720589][ T9585] name failslab, interval 1, probability 0, space 0, times 0 [ 365.733926][ T9585] CPU: 1 UID: 0 PID: 9585 Comm: syz.1.797 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(full) [ 365.733971][ T9585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 365.733990][ T9585] Call Trace: [ 365.734001][ T9585] [ 365.734012][ T9585] dump_stack_lvl+0x16c/0x1f0 [ 365.734059][ T9585] should_fail_ex+0x512/0x640 [ 365.734094][ T9585] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 365.734152][ T9585] should_failslab+0xc2/0x120 [ 365.734185][ T9585] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 365.734238][ T9585] ? __d_alloc+0x31/0xaa0 [ 365.734276][ T9585] __d_alloc+0x31/0xaa0 [ 365.734312][ T9585] d_alloc_pseudo+0x1c/0xc0 [ 365.734364][ T9585] alloc_file_pseudo+0xcf/0x230 [ 365.734403][ T9585] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 365.734442][ T9585] ? alloc_fd+0x471/0x7d0 [ 365.734496][ T9585] __anon_inode_getfile+0xf7/0x370 [ 365.734556][ T9585] anon_inode_getfile_fmode+0x37/0xa0 [ 365.734610][ T9585] __do_sys_fanotify_init+0x8e3/0xb80 [ 365.734655][ T9585] do_syscall_64+0xcd/0x260 [ 365.734700][ T9585] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 365.734733][ T9585] RIP: 0033:0x7fc76638d169 [ 365.734759][ T9585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 365.734791][ T9585] RSP: 002b:00007fc767221038 EFLAGS: 00000246 ORIG_RAX: 000000000000012c [ 365.734823][ T9585] RAX: ffffffffffffffda RBX: 00007fc7665a5fa0 RCX: 00007fc76638d169 [ 365.734845][ T9585] RDX: 0000000000000000 RSI: 0002000000000002 RDI: 0000000000000005 [ 365.734865][ T9585] RBP: 00007fc76640e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 365.734884][ T9585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 365.734903][ T9585] R13: 0000000000000000 R14: 00007fc7665a5fa0 R15: 00007ffd9a707498 [ 365.734944][ T9585] [ 365.918814][ T9580] CPU: 1 UID: 0 PID: 9580 Comm: syz.2.796 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(full) [ 365.918857][ T9580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 365.918875][ T9580] Call Trace: [ 365.918885][ T9580] [ 365.918897][ T9580] dump_stack_lvl+0x16c/0x1f0 [ 365.918952][ T9580] should_fail_ex+0x512/0x640 [ 365.919009][ T9580] should_fail_alloc_page+0xe7/0x130 [ 365.919041][ T9580] prepare_alloc_pages+0x3c2/0x610 [ 365.919080][ T9580] ? rcu_is_watching+0x12/0xc0 [ 365.919123][ T9580] __alloc_frozen_pages_noprof+0x18d/0x2370 [ 365.919189][ T9580] ? kasan_save_stack+0x42/0x60 [ 365.919234][ T9580] ? kasan_save_stack+0x33/0x60 [ 365.919277][ T9580] ? kasan_save_track+0x14/0x30 [ 365.919329][ T9580] ? __kasan_kmalloc+0xaa/0xb0 [ 365.919370][ T9580] ? __kvmalloc_node_noprof+0x279/0x600 [ 365.919413][ T9580] ? relay_open_buf.part.0+0x194/0xb90 [ 365.919459][ T9580] ? relay_open+0x653/0xad0 [ 365.919502][ T9580] ? do_blk_trace_setup+0x503/0xb50 [ 365.919538][ T9580] ? blk_trace_setup+0xed/0x1b0 [ 365.919574][ T9580] ? blk_trace_ioctl+0x146/0x280 [ 365.919614][ T9580] ? blkdev_ioctl+0x108/0x6d0 [ 365.919656][ T9580] ? __x64_sys_ioctl+0x190/0x200 [ 365.919691][ T9580] ? do_syscall_64+0xcd/0x260 [ 365.919727][ T9580] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 365.919766][ T9580] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 365.919851][ T9580] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 365.919884][ T9580] ? policy_nodemask+0xea/0x4e0 [ 365.919914][ T9580] alloc_pages_mpol+0x1fb/0x550 [ 365.919943][ T9580] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 365.919969][ T9580] ? __kvmalloc_node_noprof+0x296/0x600 [ 365.920011][ T9580] ? trace_kmalloc+0x2b/0xd0 [ 365.920039][ T9580] ? __kmalloc_noprof.cold+0x4f/0x61 [ 365.920074][ T9580] ? relay_open_buf.part.0+0x194/0xb90 [ 365.920122][ T9580] alloc_pages_noprof+0x131/0x390 [ 365.920151][ T9580] relay_open_buf.part.0+0x262/0xb90 [ 365.920209][ T9580] relay_open+0x653/0xad0 [ 365.920253][ T9580] ? debugfs_create_file_full+0x41/0x60 [ 365.920296][ T9580] do_blk_trace_setup+0x503/0xb50 [ 365.920345][ T9580] blk_trace_setup+0xed/0x1b0 [ 365.920383][ T9580] ? __pfx_blk_trace_setup+0x10/0x10 [ 365.920421][ T9580] ? __pfx_snprintf+0x10/0x10 [ 365.920473][ T9580] blk_trace_ioctl+0x146/0x280 [ 365.920513][ T9580] ? __pfx_blk_trace_ioctl+0x10/0x10 [ 365.920559][ T9580] ? find_held_lock+0x2b/0x80 [ 365.920595][ T9580] ? hook_file_ioctl_common+0x145/0x410 [ 365.920629][ T9580] blkdev_ioctl+0x108/0x6d0 [ 365.920672][ T9580] ? __pfx_blkdev_ioctl+0x10/0x10 [ 365.920720][ T9580] ? __pfx_blkdev_ioctl+0x10/0x10 [ 365.920765][ T9580] __x64_sys_ioctl+0x190/0x200 [ 365.920803][ T9580] do_syscall_64+0xcd/0x260 [ 365.920841][ T9580] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 365.920868][ T9580] RIP: 0033:0x7f4eba78d169 [ 365.920890][ T9580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 365.920916][ T9580] RSP: 002b:00007f4ebb53e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 365.920943][ T9580] RAX: ffffffffffffffda RBX: 00007f4eba9a6080 RCX: 00007f4eba78d169 [ 365.920961][ T9580] RDX: 0000200000000180 RSI: 00000000c0481273 RDI: 0000000000000006 [ 365.920978][ T9580] RBP: 00007f4eba80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 365.920994][ T9580] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 365.921011][ T9580] R13: 0000000000000000 R14: 00007f4eba9a6080 R15: 00007ffff57e9448 [ 365.921047][ T9580] [ 367.289876][ T9604] ALSA: mixer_oss: invalid OSS volume '' [ 368.356136][ T9605] netlink: 28 bytes leftover after parsing attributes in process `syz.3.802'. [ 369.936388][ T9623] netlink: 8 bytes leftover after parsing attributes in process `syz.0.808'. [ 371.253965][ T9633] netlink: 28 bytes leftover after parsing attributes in process `syz.0.809'. [ 371.358764][ T9633] bridge0: port 2(bridge_slave_1) entered disabled state [ 371.368350][ T9633] bridge0: port 1(bridge_slave_0) entered disabled state [ 371.451929][ T9633] bridge0: entered promiscuous mode [ 372.238467][ T9657] ubi: mtd0 is already attached to ubi0 [ 373.100296][ T9670] ALSA: mixer_oss: invalid OSS volume '' [ 374.282030][ T9689] sd 0:0:1:0: PR command failed: 1026 [ 374.313980][ T9689] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 374.364551][ T9689] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 376.736564][ T9732] ALSA: mixer_oss: invalid OSS volume '' [ 376.759533][ T9718] netlink: 4 bytes leftover after parsing attributes in process `syz.3.827'. [ 377.836439][ T9753] netlink: 4 bytes leftover after parsing attributes in process `syz.0.834'. [ 378.258113][ T9766] netlink: 342 bytes leftover after parsing attributes in process `syz.1.837'. [ 378.309526][ T9768] netlink: 342 bytes leftover after parsing attributes in process `syz.1.837'. [ 378.346573][ T9766] netlink: 'syz.1.837': attribute type 2 has an invalid length. [ 378.355126][ T9766] netlink: 'syz.1.837': attribute type 3 has an invalid length. [ 378.367093][ T9766] netlink: 98 bytes leftover after parsing attributes in process `syz.1.837'. [ 379.802332][ T9795] ALSA: mixer_oss: invalid OSS volume '' [ 381.169023][ T9820] zswap: compressor not available [ 381.284466][ T9828] bond0: option all_slaves_active: invalid value () [ 382.626012][ T9858] ALSA: mixer_oss: invalid OSS volume '' [ 383.764331][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 383.764446][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 383.852507][ T9894] zero sized request [ 383.852630][ T9890] zero sized request [ 384.316544][ T9892] ubi: mtd0 is already attached to ubi0 [ 385.034459][ T9913] ALSA: mixer_oss: invalid OSS volume '' [ 387.449122][ T9970] ALSA: mixer_oss: invalid OSS volume '' [ 388.738015][ T9999] netlink: 'syz.1.887': attribute type 2 has an invalid length. [ 391.609851][T10037] ALSA: mixer_oss: invalid OSS volume '' [ 392.537440][T10046] : Can't lookup blockdev [ 392.742789][T10057] netlink: 8 bytes leftover after parsing attributes in process `syz.2.897'. [ 393.066003][T10055] netlink: 8 bytes leftover after parsing attributes in process `syz.2.897'. [ 394.531414][T10078] Process accounting paused [ 394.782476][T10089] Invalid ELF header magic: != ELF [ 395.704860][T10104] netlink: 'syz.1.908': attribute type 1 has an invalid length. [ 395.776059][T10109] ALSA: mixer_oss: invalid OSS volume '' [ 400.487604][ T55] bt_warn_ratelimited: 23 callbacks suppressed [ 400.487627][ T55] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 400.493937][ T55] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 400.509042][ T55] bt_err_ratelimited: 23 callbacks suppressed [ 400.509062][ T55] Bluetooth: hci2: Unknown advertising packet type: 0x7f [ 400.515288][ T55] Bluetooth: hci2: Unknown advertising packet type: 0x74 [ 400.523360][ T55] Bluetooth: hci2: adv larger than maximum supported [ 400.530649][ T55] Bluetooth: hci2: Unknown advertising packet type: 0x20 [ 400.537531][ T55] Bluetooth: hci2: adv larger than maximum supported [ 400.544666][ T55] Bluetooth: hci2: adv larger than maximum supported [ 400.553235][ T55] Bluetooth: hci2: Malformed LE Event: 0x0d [ 402.526132][T10209] ALSA: mixer_oss: invalid OSS volume '' [ 406.424625][T10279] ALSA: mixer_oss: invalid OSS volume '' [ 407.260069][T10292] nvme_fcloop: unknown parameter or missing value '^/]' [ 408.985562][T10315] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11 [ 409.403829][T10328] FAULT_INJECTION: forcing a failure. [ 409.403829][T10328] name failslab, interval 1, probability 0, space 0, times 0 [ 409.433534][T10328] CPU: 1 UID: 0 PID: 10328 Comm: syz.3.954 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(full) [ 409.433581][T10328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 409.433600][T10328] Call Trace: [ 409.433610][T10328] [ 409.433630][T10328] dump_stack_lvl+0x16c/0x1f0 [ 409.433677][T10328] should_fail_ex+0x512/0x640 [ 409.433711][T10328] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 409.433767][T10328] should_failslab+0xc2/0x120 [ 409.433798][T10328] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 409.433849][T10328] ? lockdep_init_map_type+0x5c/0x280 [ 409.433879][T10328] ? __d_alloc+0x31/0xaa0 [ 409.433915][T10328] __d_alloc+0x31/0xaa0 [ 409.433949][T10328] d_alloc_pseudo+0x1c/0xc0 [ 409.433988][T10328] alloc_file_pseudo+0xcf/0x230 [ 409.434026][T10328] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 409.434062][T10328] ? alloc_fd+0x471/0x7d0 [ 409.434115][T10328] sock_alloc_file+0x50/0x210 [ 409.434159][T10328] __sys_socket+0x1c0/0x260 [ 409.434219][T10328] ? __pfx___sys_socket+0x10/0x10 [ 409.434270][T10328] ? do_user_addr_fault+0x843/0x1370 [ 409.434310][T10328] __x64_sys_socket+0x72/0xb0 [ 409.434356][T10328] ? lockdep_hardirqs_on+0x7c/0x110 [ 409.434392][T10328] do_syscall_64+0xcd/0x260 [ 409.434432][T10328] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 409.434462][T10328] RIP: 0033:0x7f554098f087 [ 409.434485][T10328] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 409.434513][T10328] RSP: 002b:00007f55417bafa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 409.434558][T10328] RAX: ffffffffffffffda RBX: 00007f5540ba5fa0 RCX: 00007f554098f087 [ 409.434579][T10328] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 409.434598][T10328] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 409.434624][T10328] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000000 [ 409.434643][T10328] R13: 0000000000000000 R14: 00007f5540ba5fa0 R15: 00007ffcd60a6a68 [ 409.434683][T10328] [ 409.637180][ C1] vkms_vblank_simulate: vblank timer overrun [ 410.027989][T10318] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12 [ 411.060393][T10342] Invalid ELF header magic: != ELF [ 411.259579][T10352] netlink: 93 bytes leftover after parsing attributes in process `syz.1.960'. [ 414.201354][T10404] netlink: 24 bytes leftover after parsing attributes in process `syz.0.972'. [ 414.295538][T10405] erspan0: entered allmulticast mode [ 415.087021][T10425] ALSA: mixer_oss: invalid OSS volume '' [ 416.110183][T10435] netlink: 4 bytes leftover after parsing attributes in process `syz.3.978'. [ 416.145692][T10434] netlink: 4 bytes leftover after parsing attributes in process `syz.3.978'. [ 416.446726][ T24] Process accounting resumed [ 417.133640][T10461] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88807800e758 pfn:0x7800e [ 417.187804][T10461] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 417.238272][T10461] memcg:ffff88805f42fc01 [ 417.252801][T10461] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 417.353860][T10461] page_type: f5(slab) [ 417.405400][T10461] raw: 00fff00000000040 ffff888140408780 0000000000000000 dead000000000001 [ 417.430505][T10461] raw: ffff88807800e758 0000000000150012 00000000f5000000 ffff88805f42fc01 [ 417.533137][T10461] head: 00fff00000000040 ffff888140408780 0000000000000000 dead000000000001 [ 417.554813][T10461] head: ffff88807800e758 0000000000150012 00000000f5000000 ffff88805f42fc01 [ 417.564391][T10461] head: 00fff00000000001 ffffea0001e00381 00000000ffffffff 00000000ffffffff [ 417.576618][T10461] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 417.595110][T10464] could not allocate digest TFM handle [ 417.601954][T10461] page dumped because: unmovable page [ 417.611025][T10461] page_owner tracks the page as allocated [ 417.732561][T10461] page last allocated via order 1, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5839, tgid 5839 (syz-executor), ts 88377810075, free_ts 34642193392 [ 417.996946][T10461] post_alloc_hook+0x181/0x1b0 [ 418.071872][T10475] ALSA: mixer_oss: invalid OSS volume '' [ 418.112024][T10461] get_page_from_freelist+0x1193/0x39b0 [ 418.160117][T10461] __alloc_frozen_pages_noprof+0x263/0x2370 [ 418.232288][T10461] alloc_pages_mpol+0x1fb/0x550 [ 418.252740][T10461] new_slab+0x23c/0x330 [ 418.275285][T10461] ___slab_alloc+0xd9c/0x1940 [ 418.280138][T10461] __slab_alloc.constprop.0+0x56/0xb0 [ 418.324674][T10461] kmem_cache_alloc_lru_noprof+0xf4/0x3b0 [ 418.348188][T10461] __d_alloc+0x31/0xaa0 [ 418.376977][T10461] d_alloc+0x4a/0x1e0 [ 418.405305][T10461] d_alloc_parallel+0xe3/0x12e0 [ 418.422391][T10461] __lookup_slow+0x193/0x460 [ 418.435934][T10461] lookup_one_len+0x17f/0x1b0 [ 418.440708][T10461] start_creating.part.0+0x12f/0x3a0 [ 418.446207][T10461] debugfs_create_dir+0x6c/0x5f0 [ 418.451937][T10461] hci_register_dev+0x2f2/0xc60 [ 418.457426][T10461] page last free pid 1 tgid 1 stack trace: [ 418.463561][T10461] __free_frozen_pages+0x69d/0xff0 [ 418.476710][T10461] free_contig_range+0x135/0x3f0 [ 418.481936][T10461] destroy_args+0x66f/0x830 [ 418.489916][T10461] debug_vm_pgtable+0x130e/0x2d50 [ 418.496525][T10461] do_one_initcall+0x120/0x6e0 [ 418.501580][T10461] kernel_init_freeable+0x5c2/0x900 [ 418.511461][T10461] kernel_init+0x1c/0x2b0 [ 418.517169][T10461] ret_from_fork+0x45/0x80 [ 418.521818][T10461] ret_from_fork_asm+0x1a/0x30 [ 419.880991][T10519] mkiss: ax0: crc mode is auto. [ 419.952570][T10522] netlink: 28 bytes leftover after parsing attributes in process `syz.1.998'. [ 420.614282][T10534] ALSA: mixer_oss: invalid OSS volume '' [ 422.579851][T10567] input: isc as /devices/virtual/input/input13 [ 423.439868][T10595] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1011'. [ 424.284085][T10604] ALSA: mixer_oss: invalid OSS volume '' [ 426.365660][T10645] [ 426.368034][T10645] ====================================================== [ 426.375046][T10645] WARNING: possible circular locking dependency detected [ 426.382072][T10645] 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 Not tainted [ 426.388863][T10645] ------------------------------------------------------ [ 426.395915][T10645] syz.3.1026/10645 is trying to acquire lock: [ 426.402010][T10645] ffffffff9012bee8 (rtnl_mutex){+.+.}-{4:4}, at: do_ipv6_setsockopt+0x2042/0x4420 [ 426.411323][T10645] [ 426.411323][T10645] but task is already holding lock: [ 426.418708][T10645] ffff888033b90aa0 (&smc->clcsock_release_lock){+.+.}-{4:4}, at: smc_setsockopt+0x100/0xa00 [ 426.428963][T10645] [ 426.428963][T10645] which lock already depends on the new lock. [ 426.428963][T10645] [ 426.439383][T10645] [ 426.439383][T10645] the existing dependency chain (in reverse order) is: [ 426.448407][T10645] [ 426.448407][T10645] -> #2 (&smc->clcsock_release_lock){+.+.}-{4:4}: [ 426.457044][T10645] __mutex_lock+0x199/0xb90 [ 426.462100][T10645] smc_switch_to_fallback+0x2d/0x9f0 [ 426.467933][T10645] smc_sendmsg+0x13d/0x520 [ 426.472931][T10645] ____sys_sendmsg+0xa95/0xc70 [ 426.478258][T10645] ___sys_sendmsg+0x134/0x1d0 [ 426.483488][T10645] __sys_sendmsg+0x16d/0x220 [ 426.488621][T10645] do_syscall_64+0xcd/0x260 [ 426.493690][T10645] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 426.500167][T10645] [ 426.500167][T10645] -> #1 (sk_lock-AF_INET){+.+.}-{0:0}: [ 426.507935][T10645] lock_sock_nested+0x41/0xf0 [ 426.513175][T10645] sockopt_lock_sock+0x54/0x70 [ 426.518476][T10645] do_ip_getsockopt+0x13e4/0x2220 [ 426.524054][T10645] ip_getsockopt+0x9b/0x1e0 [ 426.529103][T10645] raw_getsockopt+0x4d/0x1f0 [ 426.534240][T10645] do_sock_getsockopt+0x3fc/0x800 [ 426.539813][T10645] __sys_getsockopt+0x12f/0x260 [ 426.545202][T10645] __x64_sys_getsockopt+0xbd/0x160 [ 426.550858][T10645] do_syscall_64+0xcd/0x260 [ 426.555903][T10645] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 426.562333][T10645] [ 426.562333][T10645] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 426.569582][T10645] __lock_acquire+0x1173/0x1ba0 [ 426.574966][T10645] lock_acquire+0x179/0x350 [ 426.580002][T10645] __mutex_lock+0x199/0xb90 [ 426.585047][T10645] do_ipv6_setsockopt+0x2042/0x4420 [ 426.590793][T10645] ipv6_setsockopt+0xcb/0x170 [ 426.596014][T10645] tcp_setsockopt+0xa4/0x100 [ 426.601131][T10645] smc_setsockopt+0x1b3/0xa00 [ 426.606353][T10645] do_sock_setsockopt+0x221/0x470 [ 426.611922][T10645] __sys_setsockopt+0x1a0/0x230 [ 426.617306][T10645] __x64_sys_setsockopt+0xbd/0x160 [ 426.622949][T10645] do_syscall_64+0xcd/0x260 [ 426.627997][T10645] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 426.634425][T10645] [ 426.634425][T10645] other info that might help us debug this: [ 426.634425][T10645] [ 426.644674][T10645] Chain exists of: [ 426.644674][T10645] rtnl_mutex --> sk_lock-AF_INET --> &smc->clcsock_release_lock [ 426.644674][T10645] [ 426.658282][T10645] Possible unsafe locking scenario: [ 426.658282][T10645] [ 426.665746][T10645] CPU0 CPU1 [ 426.671118][T10645] ---- ---- [ 426.676491][T10645] lock(&smc->clcsock_release_lock); [ 426.681884][T10645] lock(sk_lock-AF_INET); [ 426.688840][T10645] lock(&smc->clcsock_release_lock); [ 426.696747][T10645] lock(rtnl_mutex); [ 426.700746][T10645] [ 426.700746][T10645] *** DEADLOCK *** [ 426.700746][T10645] [ 426.708910][T10645] 1 lock held by syz.3.1026/10645: [ 426.714029][T10645] #0: ffff888033b90aa0 (&smc->clcsock_release_lock){+.+.}-{4:4}, at: smc_setsockopt+0x100/0xa00 [ 426.724615][T10645] [ 426.724615][T10645] stack backtrace: [ 426.730515][T10645] CPU: 0 UID: 0 PID: 10645 Comm: syz.3.1026 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(full) [ 426.730549][T10645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 426.730565][T10645] Call Trace: [ 426.730575][T10645] [ 426.730585][T10645] dump_stack_lvl+0x116/0x1f0 [ 426.730621][T10645] print_circular_bug+0x275/0x350 [ 426.730666][T10645] check_noncircular+0x14c/0x170 [ 426.730711][T10645] __lock_acquire+0x1173/0x1ba0 [ 426.730741][T10645] lock_acquire+0x179/0x350 [ 426.730764][T10645] ? do_ipv6_setsockopt+0x2042/0x4420 [ 426.730800][T10645] ? __pfx___might_resched+0x10/0x10 [ 426.730844][T10645] ? __lock_acquire+0xaa4/0x1ba0 [ 426.730869][T10645] __mutex_lock+0x199/0xb90 [ 426.730901][T10645] ? do_ipv6_setsockopt+0x2042/0x4420 [ 426.730934][T10645] ? dequeue_entity+0xad7/0x1450 [ 426.730966][T10645] ? do_ipv6_setsockopt+0x2042/0x4420 [ 426.731000][T10645] ? __pfx___mutex_lock+0x10/0x10 [ 426.731033][T10645] ? find_held_lock+0x2b/0x80 [ 426.731066][T10645] ? finish_task_switch.isra.0+0x21c/0xc10 [ 426.731116][T10645] ? finish_task_switch.isra.0+0x221/0xc10 [ 426.731151][T10645] ? finish_task_switch.isra.0+0x2fa/0xc10 [ 426.731187][T10645] ? do_ipv6_setsockopt+0x2042/0x4420 [ 426.731219][T10645] ? rtnl_lock+0x9/0x20 [ 426.731257][T10645] do_ipv6_setsockopt+0x2042/0x4420 [ 426.731294][T10645] ? __pfx_do_ipv6_setsockopt+0x10/0x10 [ 426.731328][T10645] ? __lock_acquire+0xaa4/0x1ba0 [ 426.731356][T10645] ? __mutex_trylock_common+0xe9/0x250 [ 426.731381][T10645] ? __pfx___mutex_trylock_common+0x10/0x10 [ 426.731407][T10645] ? __pfx___might_resched+0x10/0x10 [ 426.731443][T10645] ? rcu_is_watching+0x12/0xc0 [ 426.731475][T10645] ? trace_contention_end+0xdd/0x130 [ 426.731499][T10645] ? __mutex_lock+0x1ca/0xb90 [ 426.731531][T10645] ? smc_setsockopt+0x100/0xa00 [ 426.731570][T10645] ? __pfx___mutex_lock+0x10/0x10 [ 426.731604][T10645] ? ipv6_setsockopt+0xcb/0x170 [ 426.731635][T10645] ipv6_setsockopt+0xcb/0x170 [ 426.731668][T10645] tcp_setsockopt+0xa4/0x100 [ 426.731695][T10645] smc_setsockopt+0x1b3/0xa00 [ 426.731733][T10645] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 426.731773][T10645] ? __pfx_smc_setsockopt+0x10/0x10 [ 426.731812][T10645] ? errseq_sample+0x53/0x70 [ 426.731851][T10645] ? __pfx_smc_setsockopt+0x10/0x10 [ 426.731890][T10645] do_sock_setsockopt+0x221/0x470 [ 426.731927][T10645] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 426.731972][T10645] __sys_setsockopt+0x1a0/0x230 [ 426.732003][T10645] __x64_sys_setsockopt+0xbd/0x160 [ 426.732030][T10645] ? do_syscall_64+0x91/0x260 [ 426.732062][T10645] ? lockdep_hardirqs_on+0x7c/0x110 [ 426.732092][T10645] do_syscall_64+0xcd/0x260 [ 426.732125][T10645] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 426.732152][T10645] RIP: 0033:0x7f554098d169 [ 426.732172][T10645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 426.732196][T10645] RSP: 002b:00007f554177a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 426.732237][T10645] RAX: ffffffffffffffda RBX: 00007f5540ba6160 RCX: 00007f554098d169 [ 426.732255][T10645] RDX: 000000000000001b RSI: 0000000000000029 RDI: 0400000000000003 [ 426.732271][T10645] RBP: 00007f5540a0e2a0 R08: 000000000000056b R09: 0000000000000000 [ 426.732287][T10645] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 426.732302][T10645] R13: 0000000000000000 R14: 00007f5540ba6160 R15: 00007ffcd60a6a68 [ 426.732326][T10645]