last executing test programs: 4.940760703s ago: executing program 1 (id=2255): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) truncate$auto(&(0x7f00000000c0)='./cgroup\x00', 0x100000000000001) lseek$auto(0xffffffffffffffff, 0xa4, 0x4) unshare$auto(0x40000080) io_uring_setup$auto(0x6, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000000140)='ns/ipc\x00') close_range$auto(0x2, 0x8, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) mlock$auto(0x7c89, 0x47fff) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/smaps_rollup\x00', 0x1a3000, 0x0) r0 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x80, 0x0) readv$auto(r0, &(0x7f0000000600)={0x0, 0xc}, 0x1da) ioctl$auto(0x3, 0x5aa8, 0x1) bind$auto(0xffffffffffffffff, 0x0, 0x10001) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) socket(0x15, 0x5, 0x0) socket(0x2, 0x1, 0x106) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f00000000c0)=""/40, 0x28) 2.532526228s ago: executing program 3 (id=2274): r0 = pipe$auto(&(0x7f0000001480)=0xffffffffffffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) r3 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_IOAM6_CMD_DUMP_NAMESPACES(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x14, r3, 0x70b, 0x70bd2a, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4008041}, 0x20000000) r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)) pidfd_send_signal$auto(r4, 0x0, 0x0, 0x4) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x101, 0x0, 0x5, 0x9ad}, 0x5}, 0x5, 0x20000000) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r5, &(0x7f0000000400)='/~e\x03\x00\x00\x00\x00\x00\x00\x00\x00', 0xa3e1) ioctl$auto_XFS_IOC_ALLOCSP(0xffffffffffffffff, 0x4030580a, &(0x7f0000000000)={0x6, 0x9, 0x9, 0x5}) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) semctl$auto(0x1ff, 0x2, 0x13, 0x1) clone3$auto(&(0x7f0000000000)={0x200, 0x5, 0x7, 0x2, 0x1, 0x87, 0x8, 0xb, 0x9, 0x2, 0xcb6}, 0xaa) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/dummy_hcd.1/usb2/version\x00', 0x800, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f00000014c0)=""/4096, 0x1000) setfsuid$auto(0x0) sendmsg$auto_NETDEV_CMD_NAPI_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0x1, 0x70bd2a, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x20008040}, 0x20000004) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0x2, 0x1, 0x0) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) vmsplice$auto(r1, &(0x7f0000000000)={0x0, 0x7}, 0x6, 0x2) write$auto(r0, &(0x7f0000000040)='.&[!):\x00', 0x100000000) 2.260716468s ago: executing program 2 (id=2275): socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/usbip-vudc.0/usbip_sockfd\x00', 0x103841, 0x0) mmap$auto(0x0, 0x400008, 0x8df, 0x13, 0x2, 0x4) close_range$auto(0x0, 0xfffffffffffff000, 0xa) r0 = fanotify_init$auto(0x602, 0x1) r1 = open(&(0x7f0000000000)='./file1\x00', 0x1652c2, 0xe1d2b27bdc14aa98) fanotify_mark$auto(0xffffffffffffffff, 0xfe4f, 0xf2a, r0, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x40342, 0x22) unlink$auto(&(0x7f0000000080)='./file0\x00') open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x0) socket(0x1d, 0x2, 0x6) r2 = socket(0x2, 0x2, 0x1) io_uring_setup$auto(0x6, 0x0) io_uring_setup$auto(0x6, 0x0) r3 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r3, 0x107, 0xa, 0x0, 0x1) socketpair$auto(0x4, 0x5, 0x8000000000000000, 0x0) sendmsg$auto_NLBL_MGMT_C_LISTALL(r2, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c003c4347656c9f72df50060000", @ANYRES16=0x0, @ANYBLOB="04002cbd7000fcdbdf2503000000080002000001000006000b00def40000080003000180000006000b000500000006000b0001fe000008000c00ec839701060001005c000000"], 0x4c}, 0x1, 0x0, 0x0, 0x10}, 0x8040) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r1) sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="c4000000", @ANYRES16=r5, @ANYBLOB="000226bd7000ffdbdf251f0000000800cb0000040000a6009c0017592562759660e0d537f2e50f9141cb5401319572f19338b82f55df5bc0130913ce682238e4278b482e131e44932f071516e7a2837ad39036313f593306eb44ff9aae550978b0644eafd6da0542e1a55153a6dd67f639690e3819d59dc167e1affd99cd4f9984975a90ffdfbeee61bbf4d236f300e1471f4f997586a0225db9c14f2cdb58e7b69c225e240a28fbfa3cd534797ba012aa51e5325c4d08ff863f9b6f0000"], 0xc4}, 0x1, 0x0, 0x0, 0x4000000}, 0x4) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/smbd_receive_credit_max\x00', 0x641, 0x0) io_uring_setup$auto(0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r6, 0x5423, 0x0) socketpair$auto(0x4, 0x1, 0x20000, 0x0) r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r7, 0x5423, 0x0) 2.087613526s ago: executing program 2 (id=2278): read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f00000000c0)=""/64, 0x40) 1.866190212s ago: executing program 2 (id=2279): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) unshare$auto(0x8000040000080) writev$auto(0x1, 0x0, 0x1) madvise$auto(0x100000000000004, 0x8, 0x19) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) io_uring_setup$auto(0x6, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x7, 0x1f, 0x7181, 0x1ffde, 0x7, 0x3, 0x9, 0x9, 0x3, 0x4, 0x1, 0xb4, 0x9, 0x8, 0x10003, 0x80, 0x4, 0x0, 0xa, 0x22000, 0x200, 0x0, 0x84, [0x3, 0x4, 0x0, 0x2, 0x0, 0x2000, 0x0, 0xe, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x4000, 0x0, 0x6, 0x0, 0xfffffffffffbfffd, 0x4, 0x1, 0x10000000000, 0x7, 0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x400000000005b8, 0x14ee, 0x0, 0x0, 0x0, 0x6, 0xffffffffffffffff, 0x88e, 0x8000000000008, 0xfffffffffffffffe, 0x9, 0xa38, 0x0, 0x3, 0xfffffffffffffffc, 0x2, 0x1, 0x4]}, 0x1fe, 0xd) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) r1 = socket(0x10, 0x2, 0x0) r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES16=r2], 0x1ac}}, 0x40000) 1.571438444s ago: executing program 3 (id=2281): close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0xdaa0, 0x1, 0x9}, 0x9, 0x0) landlock_restrict_self$auto(r0, 0x0) r1 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000000c0), 0x2802, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r1, 0xffffffffc0189436, &(0x7f0000000380)) 1.57071743s ago: executing program 0 (id=2282): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty12\x00', 0x800, 0x0) fstatfs$auto(r0, 0x0) r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) connect$auto(0x3, 0xfffffffffffffffe, 0x0) sendmsg$auto_WG_CMD_GET_DEVICE(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x400c810}, 0x200448c0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x101900, 0x0) r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/oom_adj\x00', 0x2040, 0x0) r3 = setfsuid$auto(0xee01) fchown$auto(r2, r3, 0x0) r4 = getegid() setregid$auto(r4, r4) r5 = clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) r6 = socket(0x23, 0x2, 0x0) getsockname$auto(r6, &(0x7f00000001c0), &(0x7f0000000040)=0xcf) prctl$auto_PR_GET_THP_DISABLE(0x2a, 0x1, r5, 0x8, 0x6) shmctl$auto(0x40, 0x8001, &(0x7f0000000100)={{0x0, r3, r4, 0x2, 0x7, 0xffffff17, 0x1}, 0x6, 0x7, 0x4, 0x7, @raw=0xab5d725, @inferred=r5, 0x5, 0x0, &(0x7f0000000080)="6cc77cb49b6e02905619d5fc4ff5a4354dbcb8db6e35836265dc85b0dad47de1fa1fc0ef6a8b4de60a3196b26b0bd4dd5e12b6da7a10bc73d2fe72f477ad41ea36", &(0x7f00000001c0)="b83d3e60e52786fb3a8cfffdbca9dced94e5cf14a7bcbfc78e2ea7e8a237a82a27cc9b5fbf48cbb14abc15eeade0c7f62c21a9a4fda0db3df547b80df40441bba874e54a5783ab94990cffdbdcb90a1ef7eb456e0c021586a8df276be8fe3c72aff7daa851c8f2f6ce0c5018764c89e813d6368869b15cf0225b0f243f5e62bed1197fa77974489c98cb83975d45b5bdb8bd46aeca6d39d179f3e3dcf3119e29d7883c02fdcbf57337ff5defe737c12669a483b90f5f0f197dd91d0fa1fad25c031c0114eee0333b"}) r7 = socket(0x11, 0x80003, 0x300) sendfile$auto(0x1, r7, 0x0, 0x8fb5) dup2$auto(0x0, 0x3) ioctl$auto(0x3, 0x541b, 0x10000000000402) ioctl$auto_MTDFILEMODE(r1, 0x4d13, 0x0) ioctl$auto(r0, 0x4b67, 0x1) 1.503992476s ago: executing program 3 (id=2283): mmap$auto(0x0, 0x7ff, 0x10000000000003, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x2, 0x3, 0x4) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) statx$auto(0x2, 0x0, 0x1000, 0x8, 0x0) r1 = socket(0x28, 0x1, 0x0) getsockopt$auto(r1, 0x28, 0x2, 0x0, 0x0) r2 = socket(0xa, 0x3, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="5e0027617c36720add70ab0343990f7d0bbc96dc0b"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'ip6gre0\x00', 0x0}) sendmsg$auto_OVS_DP_CMD_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004540)={&(0x7f0000000180)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002bbd7000ffdbdf250100000008000900", @ANYRES32=r5, @ANYBLOB="0800050006470000110001006f76735f00000000080002000000000000001bc7e3e8d5bcde320000", @ANYRES32=0x0, @ANYBLOB], 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x2000000) read$auto(r2, &(0x7f0000000040)='\x00', 0x10001) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) keyctl$auto(0xb, 0xfffffffffffffffd, 0xffffffeffffffffb, 0x2, 0x0) mmap$auto(0x80000001, 0x1ff, 0xdf, 0x40000000009b73, r0, 0x8000) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0) sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x52204b}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4000000}, 0x880) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0x200007, 0x19) select$auto(0x3, 0x0, &(0x7f0000000100)={[0x8, 0xb, 0x0, 0x9, 0xfffffffffffffffc, 0x83, 0x6, 0x2, 0x9, 0xffff, 0x4000000000000002, 0xd, 0x3, 0xfffffffffffffffe, 0x7, 0x1000000006]}, 0x0, 0x0) syslog$auto(0x2, &(0x7f0000000000)='-#:\x00[\xda\xe2\xc3L\xd30{Q\xecvP\x93\x87\x1e\xdd\x95\x1b\x19qI\vv\xacO*X0V\x93\x85\xff\xb2\xdd\xd8\xd5Kh\xfa\xa3\xc7\x9b}\xec\x1e\xdc\x80\x1fR\xc30\x9a\xae\\\'\x14\x98\x98\xc3iDv\x97\xdfTMt\xe5?\xd0\xcc\xb8\xfa\a\x7f\x7f\x00\x00\x00\x00\x00\x00\x00n_\xb1\x1c\x7f\xb0y\xec\xe2\xcc\x1a/\xfa{d\xe4BN\x9c\xb9\x87.\xfe\xe7&1j\xe6]\xc3\x9anE6\x81\xe4\xec\xfa\xefE\xf7\x17h\xf4pumR\xd55Dd(\x0f(b\x1aD\xf4\x03\xc3\\\xdf\x8f\xa8\x82\xab\x102\xd1\xaf\xcaT\x86\x171\x11Q4\x94\x9d\xf5\x9c\xe3\xaa\xf3\xd26i\xf9\xb2\xd9T\xc9\xfd\xba\x91^\x19\x95\xde\xbc \xa8\x98\xc3\xed\xe9,{\xd4\xa1\xe4p\xcf\b\f\xb4\xbe_\xf2\xbe\xef\v\xf1d\xdd\x0e\xfc\xc3\xeaqt\x94\xe7\xce\xf1\xc5\x94~\xf6Cx\x0e\x98\xc7gE>*\x9c%\xa0\\\x14\t\tv.\x1c\x1a\xf1\xba\xc0>\xf4Hc\xc3\xfa\x033\x8f\xb9(\n/\xcdo\xc2', 0xcf) close_range$auto(0x2, 0x8, 0x0) 1.369743185s ago: executing program 2 (id=2284): r0 = openat$auto_gpiolib_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x442, 0x0) pread64$auto(r0, 0x0, 0x8000000fffc, 0xa76b) (fail_nth: 1) 1.367365956s ago: executing program 3 (id=2285): close_range$auto(0x0, 0xfffffffffffff000, 0x2) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x2, 0x9, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29f, 0x100, 0x83, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x3, 0x3d, 0x3, 0x8, 0x100000000}}) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x2, 0x2, 0x0) open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'ipvlan1\x00'}) r0 = socket(0x2, 0xa, 0xa) futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) setsockopt$auto(0x3, 0x1, 0x29, 0x0, 0x28) sendmmsg$auto(r0, &(0x7f0000000300)={{&(0x7f0000000140), 0x12, &(0x7f0000000280)={0x0, 0x4e}, 0x7, 0x0, 0x3, 0x1}, 0x7}, 0x8, 0x7fff) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), r1) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000f40)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_SET_MESH(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r2, 0x1, 0x70bd28, 0x25dfdbf9, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r4}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x44010}, 0x0) setsockopt$auto_SO_BUF_LOCK(0xffffffffffffffff, 0x3, 0x48, &(0x7f0000000000)='}[\x00', 0x2) 890.543335ms ago: executing program 2 (id=2286): read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f00000000c0)=""/64, 0x40) 884.585585ms ago: executing program 3 (id=2287): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) sendmsg$auto_IEEE802154_LLSEC_SETPARAMS(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00032abd7000fe2199a5667f77f9468bcd29c2b7dbdf25250000000000070005000000050035000700000005000300650000083cdd8442e5dc8ae803f84b1abb3442148798a4dd9fce799982ea30f733c178198745dba9e218c182b5d0d959"], 0x23}}, 0x240400c1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) bpf$auto(0x0, &(0x7f00000001c0)=@link_update={0xffffffffffffffff, @new_prog_fd, 0x10}, 0x10) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x4}, 0x3, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) r0 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$auto_USB_RAW_IOCTL_EP_READ(r0, 0xc0085508, &(0x7f0000002700)={0x4, 0x1, 0x40}) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000080), 0xffffffffffffffff) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) r1 = syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r1, 0xa26, 0x4) r2 = socketpair$auto(0x1, 0x2, 0x1, 0x0) waitid$auto(0x2, r2, 0x0, 0x7, 0x0) bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) close_range$auto(0xffffffffffffffff, 0xfffffffffffff000, 0x5) socket(0x2, 0x1, 0x106) recvmmsg$auto(0x3, 0x0, 0x10000, 0x300, 0x0) 806.345897ms ago: executing program 2 (id=2288): r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x62081, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000100), 0x393383, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x8, 0x400000072, 0x100000000008b72, 0x1000000002, 0x8000000000000000) socket(0xa, 0x801, 0x84) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mlockall$auto(0x7) inotify_rm_watch$auto(0xffffffffffffffff, 0x84e4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyS1\x00', 0x20100, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/mtd/mtd0/mtdblock0/capability\x00', 0x103400, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000440)=""/4111, 0x100f) mmap$auto(0x0, 0x8, 0x439, 0x1b72, 0xffffffffffffffff, 0x7ffe) mprotect$auto(0x0, 0x2, 0x7) modify_ldt$auto(0x1, 0x0, 0x10) mmap$auto(0x0, 0x2020009, 0x7, 0xebf, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x5, 0x2) madvise$auto(0x0, 0x1010001, 0x1) madvise$auto(0x0, 0x5, 0x7) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0xa00, 0x0) setgroups$auto(0xe32, &(0x7f0000000040)=0x9) mprotect$auto(0x2, 0x7fffffffffffffff, 0x2000000040) uname$auto(&(0x7f0000000280)={"017a23d49d4e4f89b7bb66d0528142ad4998ea9c70c06d0408e91b30b0b0d300722823e67e78003cff84dfc2528569e4ca4367c6216df84c3958d96ed2c499caff", "1e2157148e99091f121521269985a6a599863e135818f2ccc77a864d50fd1b2447c13d33dfb37033d53d69c4ff062abf19efab53fd75a00d4af7dbdef66e913103", "1fa81ccc6ffd05b516bdc4046cdfee68955b5ae48f8a322b6a0e4d8233d9491029f04050fca8a76d8b02739e3347e73f0f398e219952ca06e6c78655a70e097917", "0749ebba3d6f1ed9c077eeeb6deae36535af268af804ea0614e6c5ef0445f6fb05bec835636e440d94396dbeef246ceff774a1af2e8884df1be20351da9874f6fa", "4fbb5ffd975d9cf0800c3bf9046b1351f7371fcaea1fac30b4de0ac23b4d950cba906c482378f4337fe941454b8dbd36e51d285c95a92a20bec5a9907616fad85e", "d802740973602ea52b49799bc04ddb3c4e8995a5f9bd70c8c718fc2ebd000048dd1195b4ac34305e0d8651eee2435736984e421114030659dddec147e0e6ee00"}) ppoll$auto(0x0, 0xd, 0x0, 0x0, 0x8) madvise$auto(0x0, 0x200007, 0x19) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x480dc1, 0x0) semctl$auto(0x4, 0x112e, 0x1ff, 0x9) setsockopt$auto(0x3, 0x10000000084, 0x1f, 0x0, 0x3ff) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x4000, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(r0, 0x10ae42, r1) 799.926002ms ago: executing program 0 (id=2289): close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mprotect$auto(0x20e, 0x1, 0x1) sysfs$auto(0x2, 0x17, 0x0) fsopen$auto(0x0, 0x1) socket(0x10, 0x2, 0x0) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="010600bd7000fbdbdf250a"], 0x1c}}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='>'], 0x1ac}}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x567, &(0x7f0000000140)={0x0, 0x40000000000c4}, 0x2, 0x0, 0xb, 0x1}, 0x5}, 0xfffffffb, 0x0) landlock_create_ruleset$auto(&(0x7f0000000000)={0xdaa0, 0x1, 0x9}, 0x9, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r1 = getpid() pidfd_open$auto(r1, 0x0) r2 = epoll_create$auto(0x3e) epoll_ctl$auto(r2, 0x1, 0x8000000000000000, 0x0) landlock_restrict_self$auto(r0, 0x0) r3 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000000c0), 0x2802, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r3, 0x2, &(0x7f0000000380)) 589.855533ms ago: executing program 0 (id=2290): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_gtp(0x0, r0) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x202, 0x0) sendfile$auto(r2, r2, 0x0, 0x1) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa0000, 0x0) write$auto(r3, 0x0, 0x8) r4 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) r5 = socket(0x10, 0x2, 0x0) r6 = syz_genetlink_get_family_id$auto_gtp(&(0x7f00000014c0), r5) r7 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000001580)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001540)={&(0x7f0000001500)={0x24, r6, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r7}, @GTPA_PEER_ADDRESS={0x8, 0x4, @multicast1}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000000) sendmsg$auto_GTP_CMD_NEWPDP(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, r6, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@GTPA_O_TEI={0x8, 0x9, 0x400}, @GTPA_NET_NS_FD={0x8}, @GTPA_FLOW={0x6, 0x6, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8840}, 0x40) tee$auto(r4, r1, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0xa, 0x3, 0x3b) read$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(r1, &(0x7f0000000000)=""/124, 0x7c) socket$nl_generic(0x10, 0x3, 0x10) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) sendmsg$auto_GTP_CMD_GETPDP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x28008000}, 0x240018d0) 457.949088ms ago: executing program 1 (id=2258): r0 = open(&(0x7f0000000140)='./file0\x00', 0x220c0, 0x20) chmod$auto(&(0x7f00000000c0)='./file0\x00', 0xf4ba) (async) execve$auto(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) (async) execve$auto(&(0x7f0000000080)='./file0\x00', &(0x7f0000000240)=&(0x7f0000000280)='team_slave_1\x00', 0x0) (async) execve$auto(&(0x7f0000000100)='./file0\x00', &(0x7f00000002c0)=&(0x7f0000000040)='team_slave_1\x00', &(0x7f00000001c0)=&(0x7f0000000180)='\xa4\x9ay\x11\x9f\x97\xc3*e\xabTc\xc7,\xc0\x85Xb\x000xffffffffffffffff) write$auto_ecryptfs_miscdev_fops_miscdev(r0, &(0x7f0000000040)="3dd840628e2c96965963b2ff09f47fcb5295b965cb0f72ecb261e07e8b2b23efb9e4dca84c0ab2574d73793f232b066bdc2e98d4f0328a1d79e91a4d192e3a625f028b0e6c0c96a65666da87a8734ceaf3277d031faf2ea2ededdd2840c377bff919984509185a9110b2df6a701dbe2efc57d63fde13b0f5622df38a3820ee694c44ca0b30f792547d4b4716f9397cbcac6a499835f669bdc1b1231fe4699bfbab23ab324816381157a416456f29bbd52ebce8c91a74b469807422b3dd7bebdc8ffbd8095e4c4d87349772eadd53c6fdbc62f2f11db79665c0", 0xd9) vmsplice$auto(r0, &(0x7f0000000000)={0x0, 0x7}, 0x6, 0x2) 303.648771ms ago: executing program 0 (id=2292): close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0xdaa0, 0x1, 0x9}, 0x9, 0x0) landlock_restrict_self$auto(r0, 0x0) r1 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000000c0), 0x2802, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r1, 0xffffffffc020660b, &(0x7f0000000380)) 281.335086ms ago: executing program 1 (id=2293): mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) r0 = socket(0x1e, 0x1, 0x0) shmctl$auto_IPC_RMID(0x8, 0x0, &(0x7f0000000180)={{0x5, 0xee01, 0x0, 0x7, 0x3, 0x10000, 0x3}, 0x9, 0xfffffffffffffffc, 0x9, 0xae, @raw=0xffffffff, @inferred, 0xff80, 0x0, &(0x7f0000000000)="e56ec6778ab126eb71f5742f02883350dbf411e790a8b0fad0811ddf3fca467c42d113adb7dc0de966ee27e4f6d209710f75f0def5a209a1e10a943bb83e39b188fd1f69a7ce3bab0085ee94b0c3183cb8e0ba82fed8e2c3694a7fff85e4579436717e2daa8e0f4122e90432c4cdd89f7d4f62152ef6bc", &(0x7f0000000080)="496f5940642c391903e72a721a58f291de49f653a30bb88ca7f4da1939f51557d739664297a4ee0a6cecb4da2ae1fd02f58c432b4ab9a3d91e94fbec83f8bec3e673913e9da0ac359ece4939e3a511609371360f9c146fbb670bf121366f3281f515e2ddb39cbe750e34096d1e97fe4bae1778f0f60abb15d83f89987d00d143eeb826196cdf87c5fe7b02beb3ec5e75da2f1d1e8b3b287184339dc3e4d6b31eee25270c24abfd91c7706278a79ab47fe7ca6f39d90319d9502531f7b12233446dadc604ce1ac9d0d029a6198bc98adb7f2977750c1686cba3749adf53b73953006d46908716ad9f59ef486f75b459e28159a6"}) shmctl$auto_IPC_STAT(0x3, 0x2, &(0x7f00000003c0)={{0x5, 0xffffffffffffffff, 0x0, 0x3, 0x1ff, 0x17, 0x4944}, 0x1000, 0x0, 0xbd, 0x6, @raw=0xffffff7e, @inferred, 0x1ff, 0x0, &(0x7f0000000200)="66bcb837b5eaf322ed01e82e4dc4b4ea415c5b65962efa5fab02b27674f10496ff3f64ab0b64f7bd858c791c8a3981b5fb709073d7caa7941c6c5c0b7e2d611e1d08d546174e49b6956406323cf618fcc56a61f1e69594dbbef012022f51f2074f78eec5cd6a55f8c51c2996f88a8e20e5e6a618d6eac6c5db90b3eea22b70068f8b31", &(0x7f00000002c0)="04dded3c24a88191107965b3ea228afedbc27f6c8983fbf4921bff4b063f282fc72f6fcec4d8f2a1b14180f01f6f85daff609970f85bb5dd64e29c82751613e1f93f17fe39954000e79b1924613f8ea58389a1db4e917f93cfb1a3071f6d023185aa37946dcecc5d020463e8bec122002cc6ac078a0f5246439a04c7727dc010c8ef50dcca529ab0f19d1a7922c7ab8124433486193a013234ef27049a4eed44df244e03b6bb3e1d68cc1ecff555bc8344cb3954297a848977ed5ce0dc6d9269630dd3dfd50f352912294da116c7982c8be0885436103bd10b3f51df6a7cc28557cca477d260cd6a3b42143dbfaa6fbae34c32"}) keyctl$auto_KEY_SPEC_USER_KEYRING(0x9, r1, r2, 0x0, 0xfffffffffffffffc) getrandom$auto(0xfffffffffffffffd, 0x8, 0x3) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r0, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) write$auto(0x3, 0x0, 0xd7d) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) (async) close_range$auto(0x2, 0xa, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) socket(0x1e, 0x4, 0x0) (async) socket(0x1e, 0x1, 0x0) (async) shmctl$auto_IPC_RMID(0x8, 0x0, &(0x7f0000000180)={{0x5, 0xee01, 0x0, 0x7, 0x3, 0x10000, 0x3}, 0x9, 0xfffffffffffffffc, 0x9, 0xae, @raw=0xffffffff, @inferred, 0xff80, 0x0, &(0x7f0000000000)="e56ec6778ab126eb71f5742f02883350dbf411e790a8b0fad0811ddf3fca467c42d113adb7dc0de966ee27e4f6d209710f75f0def5a209a1e10a943bb83e39b188fd1f69a7ce3bab0085ee94b0c3183cb8e0ba82fed8e2c3694a7fff85e4579436717e2daa8e0f4122e90432c4cdd89f7d4f62152ef6bc", &(0x7f0000000080)="496f5940642c391903e72a721a58f291de49f653a30bb88ca7f4da1939f51557d739664297a4ee0a6cecb4da2ae1fd02f58c432b4ab9a3d91e94fbec83f8bec3e673913e9da0ac359ece4939e3a511609371360f9c146fbb670bf121366f3281f515e2ddb39cbe750e34096d1e97fe4bae1778f0f60abb15d83f89987d00d143eeb826196cdf87c5fe7b02beb3ec5e75da2f1d1e8b3b287184339dc3e4d6b31eee25270c24abfd91c7706278a79ab47fe7ca6f39d90319d9502531f7b12233446dadc604ce1ac9d0d029a6198bc98adb7f2977750c1686cba3749adf53b73953006d46908716ad9f59ef486f75b459e28159a6"}) (async) shmctl$auto_IPC_STAT(0x3, 0x2, &(0x7f00000003c0)={{0x5, 0xffffffffffffffff, 0x0, 0x3, 0x1ff, 0x17, 0x4944}, 0x1000, 0x0, 0xbd, 0x6, @raw=0xffffff7e, @inferred, 0x1ff, 0x0, &(0x7f0000000200)="66bcb837b5eaf322ed01e82e4dc4b4ea415c5b65962efa5fab02b27674f10496ff3f64ab0b64f7bd858c791c8a3981b5fb709073d7caa7941c6c5c0b7e2d611e1d08d546174e49b6956406323cf618fcc56a61f1e69594dbbef012022f51f2074f78eec5cd6a55f8c51c2996f88a8e20e5e6a618d6eac6c5db90b3eea22b70068f8b31", &(0x7f00000002c0)="04dded3c24a88191107965b3ea228afedbc27f6c8983fbf4921bff4b063f282fc72f6fcec4d8f2a1b14180f01f6f85daff609970f85bb5dd64e29c82751613e1f93f17fe39954000e79b1924613f8ea58389a1db4e917f93cfb1a3071f6d023185aa37946dcecc5d020463e8bec122002cc6ac078a0f5246439a04c7727dc010c8ef50dcca529ab0f19d1a7922c7ab8124433486193a013234ef27049a4eed44df244e03b6bb3e1d68cc1ecff555bc8344cb3954297a848977ed5ce0dc6d9269630dd3dfd50f352912294da116c7982c8be0885436103bd10b3f51df6a7cc28557cca477d260cd6a3b42143dbfaa6fbae34c32"}) (async) keyctl$auto_KEY_SPEC_USER_KEYRING(0x9, r1, r2, 0x0, 0xfffffffffffffffc) (async) getrandom$auto(0xfffffffffffffffd, 0x8, 0x3) (async) get_robust_list$auto(0x0, 0x0, 0x0) (async) setsockopt$auto(r0, 0x10f, 0x87, 0x0, 0x14) (async) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) (async) write$auto(0x3, 0x0, 0xd7d) (async) 190.105205ms ago: executing program 1 (id=2294): close_range$auto(0x0, 0xfffffffffffff000, 0x2) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x2, 0x9, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29f, 0x100, 0x83, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x3, 0x3d, 0x3, 0x8, 0x100000000}}) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x2, 0x2, 0x0) open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'ipvlan1\x00'}) r0 = socket(0x2, 0xa, 0xa) futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) setsockopt$auto(0x3, 0x1, 0x29, 0x0, 0x28) sendmmsg$auto(r0, &(0x7f0000000300)={{&(0x7f0000000140), 0x12, &(0x7f0000000280)={0x0, 0x4e}, 0x7, 0x0, 0x3, 0x1}, 0x7}, 0x8, 0x7fff) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), r1) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000f40)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_SET_MESH(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r2, 0x1, 0x70bd28, 0x25dfdbf9, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r4}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x44010}, 0x0) setsockopt$auto_SO_BUF_LOCK(0xffffffffffffffff, 0x3, 0x48, &(0x7f0000000000)='}[\x00', 0x2) 189.390733ms ago: executing program 0 (id=2295): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x20440, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000000c0)=""/64, 0x40) 105.279468ms ago: executing program 1 (id=2296): r0 = openat$auto_gpiolib_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x442, 0x0) pread64$auto(r0, 0x0, 0x8000000fffc, 0xa76b) (fail_nth: 2) 58.868345ms ago: executing program 0 (id=2297): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) shmctl$auto_IPC_INFO(0x2, 0x3, &(0x7f0000000080)={{0x8, 0xffffffffffffffff, 0xee00, 0xea, 0x8, 0xa00, 0x4}, 0x7fff, 0x134, 0x9, 0x0, @inferred, @inferred=0xffffffffffffffff, 0x5, 0x0, &(0x7f0000000040)="92a778b8652f2e0d5485ad0986b645038dd8e50a3e87c1fd9434d52422fdac326e25f96737", &(0x7f0000000140)="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"}) setreuid$auto(r0, r0) r1 = pidfd_open$auto(0x1, 0x0) setns(r1, 0x2000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/platform/vidtv.0/i2c-0/i2c-dev/i2c-0/power/control\x00', 0x1c1102, 0x0) mmap$auto(0x8, 0x8, 0x850d, 0x6cf80010, 0xffffffffffffffff, 0x8000) unshare$auto(0x40000080) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x80011, 0x0) r3 = socketpair$auto(0x2, 0x2, 0x80000000, 0x0) mmap$auto(0x5, 0x8001, 0x4, 0xeb1, 0xffffffffffffffff, 0x4124) close_range$auto(r3, 0xfffffffffffff000, 0x1) r4 = socket$nl_generic(0x10, 0x3, 0x10) lsm_list_modules$auto(0x0, &(0x7f0000000100)=0xbefc, 0x0) ioctl$auto(r4, 0x89a0, 0x8) openat$auto_safesetid_uid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0) msync$auto(0x101fffeffe, 0x180000000000000, 0x400000004) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_congestion_control\x00', 0x121482, 0x0) acct$auto(&(0x7f0000000000)='/sys/devices/platform/i8042/serio1/resync_time\x00') setsockopt$auto_SO_ZEROCOPY(r2, 0x10001, 0x3c, &(0x7f0000000240)='/proc/sys/net/ipv4/tcp_congestion_control\x00', 0x800) acct$auto(0x0) ioctl$auto_SG_GET_VERSION_NUM(r1, 0x2282, &(0x7f00000002c0)="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") acct$auto(0x0) openat$auto_drm_crtc_crc_control_fops_drm_debugfs_crc(0xffffffffffffff9c, 0x0, 0x101001, 0x0) 0s ago: executing program 3 (id=2298): r0 = socket(0xa, 0x2, 0x88) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'bond0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r2, r1, 0x8, 0x1ff, r0, @relative_id=0x13, 0xe600}, 0x10) ioctl$auto(0xc8, 0x7fff, r0) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, &(0x7f0000000180)={0x20000040, 0x202, 0x9}) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty46\x00', 0x0, 0x0) ioctl$auto(r3, 0x4b2f, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/compaction_proactiveness\x00', 0x40001, 0x0) r4 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0) getdents64$auto(r4, 0x0, 0x400) r5 = syz_genetlink_get_family_id$auto_nfc(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$auto_NFC_CMD_FW_DOWNLOAD(r4, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000200)={&(0x7f0000000bc0)={0x10e8, r5, 0x300, 0x70bd26, 0x25dfdbfd, {}, [@NFC_ATTR_VENDOR_SUBCMD={0x8, 0x1e, 0x10000}, @NFC_ATTR_DEVICE_NAME={0x7, 0x2, '^H*'}, @NFC_ATTR_SE_APDU={0xa5, 0x19, "9d6597fc01bb08b84fec3807df67cc202c86c697eaa39399b73b7cc0fea872e0ccf9c95bb3cb63e66e8b51c92d11225db59447c2212fcf05805cd0fae2c069b3b77586f57b3975519531e3fc8808a7689535b026e864dfcba28a986433d73292bacb0bab7f50d9bf605b8bfa42596837aced0f8de59d954301982b5e06683c29d94083dcd06126486dfa9dc3b3e7ea1de9f497908eb2978fbf7502be0cf05f8a03"}, @NFC_ATTR_SE_INDEX={0x8, 0x15, 0x101}, @NFC_ATTR_TM_PROTOCOLS={0x8, 0xe, 0x1}, @NFC_ATTR_VENDOR_DATA={0x1004, 0x1f, "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"}, @NFC_ATTR_SE_INDEX={0x8, 0x15, 0x1}]}, 0x10e8}, 0x1, 0x0, 0x0, 0x44}, 0x4000840) r6 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000b80)='/proc/sys/kernel/kptr_restrict\x00', 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) read$auto(r6, 0x0, 0xb5) write$auto(0x3, 0x0, 0xfdef) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0x8, 0x1, 0x9}, 0x9, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r7 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0) ioctl$auto_EVIOCGMASK(r7, 0x80104592, &(0x7f0000000080)={0x2000, 0x800007, 0x5}) io_uring_setup$auto(0x6, 0x0) r8 = socket(0x11, 0x80003, 0x304) getsockopt$auto(r8, 0xd, 0x80000200, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0C0F:01/status\x00', 0x100, 0x0) kernel console output (not intermixed with test programs):                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      [ 444.043814][T13009] ovs_: entered promiscuous mode [ 444.074002][T13012] FAULT_INJECTION: forcing a failure. [ 444.074002][T13012] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 444.090905][T13012] CPU: 0 UID: 0 PID: 13012 Comm: syz.1.1651 Tainted: G U 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0 [ 444.090965][T13012] Tainted: [U]=USER [ 444.090976][T13012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 444.090995][T13012] Call Trace: [ 444.091004][T13012] [ 444.091015][T13012] dump_stack_lvl+0x16c/0x1f0 [ 444.091072][T13012] should_fail_ex+0x50a/0x650 [ 444.091110][T13012] ? __pfx___might_resched+0x10/0x10 [ 444.091154][T13012] should_fail_alloc_page+0xe7/0x130 [ 444.091198][T13012] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 444.091252][T13012] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 444.091308][T13012] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 444.091348][T13012] ? unwind_get_return_address+0x59/0xa0 [ 444.091395][T13012] ? arch_stack_walk+0xa7/0x100 [ 444.091450][T13012] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 444.091491][T13012] ? stack_trace_save+0x95/0xd0 [ 444.091541][T13012] ? __pfx_stack_trace_save+0x10/0x10 [ 444.091594][T13012] ? stack_depot_save_flags+0x28/0x9e0 [ 444.091646][T13012] ? kasan_save_stack+0x42/0x60 [ 444.091679][T13012] ? kasan_save_stack+0x33/0x60 [ 444.091713][T13012] ? kasan_save_track+0x14/0x30 [ 444.091745][T13012] ? kasan_save_free_info+0x3b/0x60 [ 444.091793][T13012] ? __kasan_slab_free+0x51/0x70 [ 444.091827][T13012] ? kmem_cache_free+0x2e2/0x4d0 [ 444.091860][T13012] ? alloc_vmap_area+0x1f87/0x2a60 [ 444.091906][T13012] ? __get_vm_area_node+0x19e/0x2f0 syzkaller [ 444.091969][T13012] ? __vmalloc_node_range_noprof+0x26a/0x1530 [ 444.092002][T13012] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 444.092047][T13012] ? policy_nodemask+0xea/0x4e0 [ 444.092088][T13012] alloc_pages_mpol+0x1fc/0x540 [ 444.092128][T13012] ? __pfx_alloc_pages_mpol+0x10/0x10 syzkaller login:[ 444.092166][T13012] ? __page_table_check_ptes_set+0x16b/0x3e0 [ 444.092206][T13012] ? do_raw_spin_lock+0x12d/0x2c0 [ 444.092251][T13012] ? __pfx___page_table_check_ptes_set+0x10/0x10 [ 444.092290][T13012] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 444.092339][T13012] alloc_pages_noprof+0x131/0x390 [ 444.092380][T13012] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 444.092412][T13012] get_free_pages_noprof+0xc/0x40 [ 444.092454][T13012] kasan_populate_vmalloc_pte+0x2d/0x160 [ 444.092486][T13012] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 444.092518][T13012] __apply_to_page_range+0x5fd/0xd30 [ 444.092552][T13012] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 444.092588][T13012] ? __pfx___apply_to_page_range+0x10/0x10 [ 444.092621][T13012] ? insert_vmap_area+0x2ef/0x4d0 [ 444.092667][T13012] alloc_vmap_area+0x93e/0x2a60 [ 444.092729][T13012] ? __pfx_alloc_vmap_area+0x10/0x10 [ 444.092783][T13012] __get_vm_area_node+0x19e/0x2f0 [ 444.092835][T13012] ? stack_depot_save_flags+0x28/0x9e0 [ 444.092875][T13012] __vmalloc_node_range_noprof+0x26a/0x1530 [ 444.092908][T13012] ? __snd_dma_alloc_pages+0x50/0x90 [ 444.092942][T13012] ? __mutex_trylock_common+0xea/0x250 [ 444.092989][T13012] ? rcu_is_watching+0x12/0xc0 [ 444.093037][T13012] ? lock_release+0x4e2/0x6f0 [ 444.093072][T13012] ? do_alloc_pages+0xd3/0x270 [ 444.093100][T13012] ? __pfx_lock_release+0x10/0x10 [ 444.093137][T13012] ? __snd_dma_alloc_pages+0x50/0x90 [ 444.093170][T13012] ? __mutex_lock+0x1cc/0xb10 [ 444.093229][T13012] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 444.093264][T13012] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 444.093318][T13012] ? __snd_dma_alloc_pages+0x50/0x90 [ 444.093351][T13012] vmalloc_noprof+0x6b/0x90 [ 444.093381][T13012] ? __snd_dma_alloc_pages+0x50/0x90 [ 444.093413][T13012] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 444.093449][T13012] __snd_dma_alloc_pages+0x50/0x90 [ 444.093483][T13012] snd_dma_alloc_dir_pages+0x151/0x240 [ 444.093519][T13012] do_alloc_pages+0x115/0x270 [ 444.093550][T13012] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 444.093584][T13012] snd_pcm_hw_params+0x15e6/0x1b20 [ 444.093617][T13012] ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0 [ 444.093667][T13012] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 444.093699][T13012] ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0 [ 444.093749][T13012] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 444.093799][T13012] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 444.093832][T13012] snd_pcm_oss_change_params_locked+0x1410/0x3a50 [ 444.093888][T13012] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 444.093935][T13012] ? __mutex_lock+0x1cc/0xb10 [ 444.093990][T13012] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 444.094037][T13012] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 444.094095][T13012] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 444.094143][T13012] ? __fget_files+0x40/0x3a0 [ 444.094176][T13012] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 444.094227][T13012] ? __fget_files+0x206/0x3a0 [ 444.094261][T13012] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 444.094308][T13012] __x64_sys_ioctl+0x190/0x200 [ 444.094355][T13012] do_syscall_64+0xcd/0x250 [ 444.094385][T13012] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 444.094430][T13012] RIP: 0033:0x7fe78938cde9 [ 444.094454][T13012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 444.094485][T13012] RSP: 002b:00007fe78a194038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 444.094516][T13012] RAX: ffffffffffffffda RBX: 00007fe7895a6080 RCX: 00007fe78938cde9 [ 444.094535][T13012] RDX: 00004000000000c0 RSI: 00000000c0045002 RDI: 0000000000000008 [ 444.094554][T13012] RBP: 00007fe78940e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 444.094572][T13012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 444.094590][T13012] R13: 0000000000000000 R14: 00007fe7895a6080 R15: 00007ffc4e532bc8 [ 444.094618][T13012] [ 444.094655][T13012] warn_alloc: 1 callbacks suppressed [ 444.094672][T13012] syz.1.1651: vmalloc error: size 2097152, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null) [ 444.411734][T13016] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1654'. [ 444.445777][T13012] ,cpuset= [ 444.925141][T13026] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1653'. [ 445.027002][T13012] /,mems_allowed=0-1 [ 445.032748][T13012] CPU: 1 UID: 0 PID: 13012 Comm: syz.1.1651 Tainted: G U 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0 [ 445.032799][T13012] Tainted: [U]=USER [ 445.032810][T13012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 445.032829][T13012] Call Trace: [ 445.032838][T13012] [ 445.032849][T13012] dump_stack_lvl+0x16c/0x1f0 [ 445.032917][T13012] warn_alloc+0x24d/0x3a0 [ 445.032955][T13012] ? __pfx_warn_alloc+0x10/0x10 [ 445.032993][T13012] ? kfree+0x2c4/0x4d0 [ 445.033024][T13012] ? __get_vm_area_node+0x1dc/0x2f0 [ 445.033080][T13012] __vmalloc_node_range_noprof+0xd24/0x1530 [ 445.033112][T13012] ? __mutex_trylock_common+0xea/0x250 [ 445.033152][T13012] ? rcu_is_watching+0x12/0xc0 [ 445.033202][T13012] ? lock_release+0x4e2/0x6f0 [ 445.033238][T13012] ? do_alloc_pages+0xd3/0x270 [ 445.033267][T13012] ? __pfx_lock_release+0x10/0x10 [ 445.033303][T13012] ? __snd_dma_alloc_pages+0x50/0x90 [ 445.033337][T13012] ? __mutex_lock+0x1cc/0xb10 [ 445.033387][T13012] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 445.033421][T13012] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 445.033476][T13012] ? __snd_dma_alloc_pages+0x50/0x90 [ 445.033510][T13012] vmalloc_noprof+0x6b/0x90 [ 445.033541][T13012] ? __snd_dma_alloc_pages+0x50/0x90 [ 445.033573][T13012] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 445.033608][T13012] __snd_dma_alloc_pages+0x50/0x90 [ 445.033641][T13012] snd_dma_alloc_dir_pages+0x151/0x240 [ 445.033676][T13012] do_alloc_pages+0x115/0x270 [ 445.033707][T13012] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 445.033742][T13012] snd_pcm_hw_params+0x15e6/0x1b20 [ 445.033780][T13012] ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0 [ 445.033841][T13012] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 445.033872][T13012] ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0 [ 445.033927][T13012] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 445.033976][T13012] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 445.034007][T13012] snd_pcm_oss_change_params_locked+0x1410/0x3a50 [ 445.034063][T13012] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 445.034109][T13012] ? __mutex_lock+0x1cc/0xb10 [ 445.034153][T13012] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 445.034197][T13012] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 445.034244][T13012] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 445.034290][T13012] ? __fget_files+0x40/0x3a0 [ 445.034321][T13012] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 445.034368][T13012] ? __fget_files+0x206/0x3a0 [ 445.034401][T13012] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 445.034445][T13012] __x64_sys_ioctl+0x190/0x200 [ 445.034491][T13012] do_syscall_64+0xcd/0x250 [ 445.034520][T13012] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 445.034583][T13012] RIP: 0033:0x7fe78938cde9 [ 445.034607][T13012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 445.034638][T13012] RSP: 002b:00007fe78a194038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 445.034667][T13012] RAX: ffffffffffffffda RBX: 00007fe7895a6080 RCX: 00007fe78938cde9 [ 445.034688][T13012] RDX: 00004000000000c0 RSI: 00000000c0045002 RDI: 0000000000000008 [ 445.034707][T13012] RBP: 00007fe78940e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 445.034726][T13012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 445.034744][T13012] R13: 0000000000000000 R14: 00007fe7895a6080 R15: 00007ffc4e532bc8 [ 445.034773][T13012] [ 445.443438][T13012] Mem-Info: [ 445.447256][T13012] active_anon:24502 inactive_anon:69546 isolated_anon:0 [ 445.447256][T13012] active_file:10603 inactive_file:46498 isolated_file:0 [ 445.447256][T13012] unevictable:768 dirty:33 writeback:0 [ 445.447256][T13012] slab_reclaimable:11198 slab_unreclaimable:95661 [ 445.447256][T13012] mapped:26283 shmem:74609 pagetables:971 [ 445.447256][T13012] sec_pagetables:0 bounce:0 [ 445.447256][T13012] kernel_misc_reclaimable:0 [ 445.447256][T13012] free:1239847 free_pcp:6215 free_cma:0 [ 445.474389][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.502973][T13012] Node 0 active_anon:98208kB inactive_anon:277884kB active_file:42412kB inactive_file:185984kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:105132kB dirty:132kB writeback:0kB shmem:296900kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12336kB pagetables:3884kB sec_pagetables:0kB all_unreclaimable? no [ 445.520294][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 445.551905][T13012] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 445.594631][T13012] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 445.629832][T13012] lowmem_reserve[]: 0 2490 2491 0 0 [ 445.636441][T13012] Node 0 DMA32 free:1049024kB boost:0kB min:34168kB low:42708kB high:51248kB reserved_highatomic:0KB active_anon:98172kB inactive_anon:277884kB active_file:42412kB inactive_file:185672kB unevictable:1536kB writepending:160kB present:3129332kB managed:2550584kB mlocked:0kB bounce:0kB free_pcp:10780kB local_pcp:7500kB free_cma:0kB [ 445.675266][T13012] lowmem_reserve[]: 0 0 0 0 0 [ 445.681445][T13012] Node 0 Normal free:0kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:36kB inactive_anon:0kB active_file:0kB inactive_file:312kB unevictable:0kB writepending:0kB present:1048580kB managed:364kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB [ 445.682713][T13026] team_slave_1 (unregistering): left promiscuous mode [ 445.713867][T13012] lowmem_reserve[]: 0 0 0 0 0 [ 445.713931][T13012] Node 1 Normal free:3895004kB boost:0kB min:55728kB low:69660kB high:83592kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:14124kB local_pcp:6800kB free_cma:0kB [ 445.763095][T13012] lowmem_reserve[]: 0 0 0 0 0 [ 445.768810][T13012] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 445.784130][T13012] Node 0 DMA32: 80*4kB (UME) 17*8kB (UM) 252*16kB (UME) 322*32kB (UME) 299*64kB (UME) 222*128kB (UME) 158*256kB (UME) 164*512kB (UME) 90*1024kB (UM) 4*2048kB (UME) 186*4096kB (ME) = 1048968kB [ 445.807237][T13012] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 445.821502][T13012] Node 1 Normal: 215*4kB (UME) 72*8kB (UME) 40*16kB (UME) 184*32kB (UME) 89*64kB (UME) 33*128kB (UME) 19*256kB (UM) 17*512kB (UME) 3*1024kB (ME) 5*2048kB (UE) 940*4096kB (UM) = 3895004kB [ 445.844263][T13012] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 445.855791][T13012] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 445.877244][T13012] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 445.890669][T13012] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB [ 445.900520][T13026] team_slave_1 (unregistering): left allmulticast mode [ 445.915634][T13012] 131820 total pagecache pages [ 445.926665][T13026] team0: Port device team_slave_1 removed [ 445.951004][T13012] 85 pages in swap cache [ 445.965974][T13012] Free swap = 111832kB [ 445.987578][T13012] Total swap = 124996kB [ 446.006918][T13012] 2097051 pages RAM [ 446.030771][T13012] 0 pages HighMem/MovableOnly [ 446.042181][T13012] 427683 pages reserved [ 446.047219][T13012] 0 pages cma reserved [ 446.228384][T13031] ubi: mtd0 is already attached to ubi0 [ 446.713197][T13061] FAULT_INJECTION: forcing a failure. [ 446.713197][T13061] name failslab, interval 1, probability 0, space 0, times 0 [ 446.751238][T13061] CPU: 0 UID: 0 PID: 13061 Comm: syz.2.1661 Tainted: G U 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0 [ 446.751292][T13061] Tainted: [U]=USER [ 446.751303][T13061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 446.751322][T13061] Call Trace: [ 446.751331][T13061] [ 446.751343][T13061] dump_stack_lvl+0x16c/0x1f0 [ 446.751400][T13061] should_fail_ex+0x50a/0x650 [ 446.751440][T13061] ? fs_reclaim_acquire+0xae/0x150 [ 446.751494][T13061] should_failslab+0xc2/0x120 [ 446.751534][T13061] __kmalloc_noprof+0xce/0x4f0 [ 446.751569][T13061] ? xfrm_hash_alloc+0xd1/0x100 [ 446.751616][T13061] xfrm_hash_alloc+0xd1/0x100 [ 446.751661][T13061] xfrm_state_init+0x160/0x630 [ 446.751707][T13061] ? __pfx_xfrm_net_init+0x10/0x10 [ 446.751767][T13061] xfrm_net_init+0x211/0xcb0 [ 446.751817][T13061] ? __pfx_xfrm_net_init+0x10/0x10 [ 446.751865][T13061] ops_init+0x1df/0x5f0 [ 446.751901][T13061] setup_net+0x21f/0x860 [ 446.751937][T13061] ? __pfx_setup_net+0x10/0x10 [ 446.751969][T13061] ? down_read_killable+0xcc/0x380 [ 446.752004][T13061] ? __pfx_down_read_killable+0x10/0x10 [ 446.752040][T13061] ? debug_mutex_init+0x37/0x70 [ 446.752090][T13061] copy_net_ns+0x2b4/0x6c0 [ 446.752131][T13061] create_new_namespaces+0x3ea/0xad0 [ 446.752182][T13061] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 446.752231][T13061] ksys_unshare+0x45d/0xa40 [ 446.752281][T13061] ? __pfx_ksys_unshare+0x10/0x10 [ 446.752330][T13061] ? xfd_validate_state+0x5d/0x180 [ 446.752372][T13061] ? rcu_is_watching+0x12/0xc0 [ 446.752421][T13061] __x64_sys_unshare+0x31/0x40 [ 446.752469][T13061] do_syscall_64+0xcd/0x250 [ 446.752500][T13061] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 446.752545][T13061] RIP: 0033:0x7f695718cde9 [ 446.752570][T13061] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 446.752602][T13061] RSP: 002b:00007f6958019038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 446.752631][T13061] RAX: ffffffffffffffda RBX: 00007f69573a6080 RCX: 00007f695718cde9 [ 446.752663][T13061] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 446.752680][T13061] RBP: 00007f695720e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 446.752697][T13061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 446.752723][T13061] R13: 0000000000000000 R14: 00007f69573a6080 R15: 00007ffc13caa998 [ 446.752752][T13061] [ 446.878451][T13031] Invalid ELF header magic: != ELF [ 447.777679][T13083] FAULT_INJECTION: forcing a failure. [ 447.777679][T13083] name failslab, interval 1, probability 0, space 0, times 0 [ 447.856933][T13083] CPU: 1 UID: 0 PID: 13083 Comm: syz.0.1667 Tainted: G U 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0 [ 447.856991][T13083] Tainted: [U]=USER [ 447.857002][T13083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 447.857020][T13083] Call Trace: [ 447.857030][T13083] [ 447.857042][T13083] dump_stack_lvl+0x16c/0x1f0 [ 447.857102][T13083] should_fail_ex+0x50a/0x650 [ 447.857141][T13083] ? fs_reclaim_acquire+0xae/0x150 [ 447.857192][T13083] should_failslab+0xc2/0x120 [ 447.857231][T13083] __kmalloc_cache_node_noprof+0x6f/0x3f0 [ 447.857267][T13083] ? __raw_spin_lock_init+0x3a/0x110 [ 447.857311][T13083] ? __alloc_workqueue+0x506/0x1810 [ 447.857363][T13083] __alloc_workqueue+0x506/0x1810 [ 447.857415][T13083] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 447.857464][T13083] alloc_workqueue+0xd3/0x200 [ 447.857514][T13083] ? __pfx_alloc_workqueue+0x10/0x10 [ 447.857569][T13083] ? __pfx___debug_object_init+0x10/0x10 [ 447.857624][T13083] nci_register_device+0x514/0xb80 [ 447.857666][T13083] ? __pfx_nci_register_device+0x10/0x10 [ 447.857705][T13083] ? lockdep_init_map_type+0x16d/0x7d0 [ 447.857752][T13083] virtual_ncidev_open+0x141/0x220 [ 447.857798][T13083] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 447.857844][T13083] misc_open+0x35a/0x420 [ 447.857880][T13083] ? __pfx_misc_open+0x10/0x10 [ 447.857926][T13083] chrdev_open+0x237/0x6a0 [ 447.857962][T13083] ? __pfx_apparmor_file_open+0x10/0x10 [ 447.857997][T13083] ? __pfx_chrdev_open+0x10/0x10 [ 447.858035][T13083] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 447.858101][T13083] do_dentry_open+0x735/0x1c40 [ 447.858132][T13083] ? __pfx_chrdev_open+0x10/0x10 [ 447.858167][T13083] ? inode_permission+0xdd/0x5f0 [ 447.858210][T13083] vfs_open+0x82/0x3f0 [ 447.858248][T13083] ? may_open+0x1f2/0x400 [ 447.858292][T13083] path_openat+0x1e88/0x2d80 [ 447.858330][T13083] ? __pfx_path_openat+0x10/0x10 [ 447.858366][T13083] do_filp_open+0x20c/0x470 [ 447.858398][T13083] ? __pfx_do_filp_open+0x10/0x10 [ 447.858443][T13083] ? alloc_fd+0x41f/0x760 [ 447.858477][T13083] do_sys_openat2+0x17a/0x1e0 [ 447.858517][T13083] ? __pfx_do_sys_openat2+0x10/0x10 [ 447.858559][T13083] ? __pfx___might_resched+0x10/0x10 [ 447.858603][T13083] __x64_sys_openat+0x175/0x210 [ 447.858646][T13083] ? __pfx___x64_sys_openat+0x10/0x10 [ 447.858690][T13083] ? rcu_is_watching+0x12/0xc0 [ 447.858736][T13083] ? rcu_is_watching+0x12/0xc0 [ 447.858784][T13083] do_syscall_64+0xcd/0x250 [ 447.858813][T13083] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 447.858875][T13083] RIP: 0033:0x7f801f78cde9 [ 447.858905][T13083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 447.858937][T13083] RSP: 002b:00007f802056d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 447.858969][T13083] RAX: ffffffffffffffda RBX: 00007f801f9a5fa0 RCX: 00007f801f78cde9 [ 447.858989][T13083] RDX: 0000000000000002 RSI: 0000400000000400 RDI: ffffffffffffff9c [ 447.859009][T13083] RBP: 00007f801f80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 447.859027][T13083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 447.859046][T13083] R13: 0000000000000000 R14: 00007f801f9a5fa0 R15: 00007ffc60a74ba8 [ 447.859075][T13083] [ 448.545451][T13102] base_sock_release(ffff888080928c00) sk=ffff888028a03000 [ 448.592517][T13102] base_sock_release(ffff888080928600) sk=ffff888028a02000 [ 451.061692][ T5846] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 451.061738][ T5846] Bluetooth: hci1: unexpected subevent 0x05 length: 725 > 12 [ 453.143588][ T5846] Bluetooth: hci1: command 0x0c1a tx timeout [ 454.259454][T13216] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1702'. [ 454.542904][T13227] vcan0: tx drop: invalid da for name 0x000000000000003f [ 454.644698][T13227] ieee80211 phy21: Selected rate control algorithm 'minstrel_ht' [ 454.893385][T13230] Invalid ELF header magic: != ELF [ 455.988510][T13238] vcan0: tx drop: invalid da for name 0x000000000000003f [ 456.071649][T13238] ieee80211 phy22: Selected rate control algorithm 'minstrel_ht' [ 456.940121][T13257] netlink: 74 bytes leftover after parsing attributes in process `syz.0.1711'. [ 457.349363][T13266] FAULT_INJECTION: forcing a failure. [ 457.349363][T13266] name fail_futex, interval 1, probability 0, space 0, times 0 [ 457.365026][T13266] CPU: 1 UID: 0 PID: 13266 Comm: syz.1.1714 Tainted: G U 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0 [ 457.365075][T13266] Tainted: [U]=USER [ 457.365086][T13266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 457.365104][T13266] Call Trace: [ 457.365114][T13266] [ 457.365124][T13266] dump_stack_lvl+0x16c/0x1f0 [ 457.365182][T13266] should_fail_ex+0x50a/0x650 [ 457.365223][T13266] get_futex_key+0x4a3/0x1000 [ 457.365276][T13266] ? __pfx_try_to_wake_up+0x10/0x10 [ 457.365315][T13266] ? __pfx_get_futex_key+0x10/0x10 [ 457.365365][T13266] ? plist_check_head+0xa3/0x150 [ 457.365413][T13266] futex_wake+0xe8/0x4e0 [ 457.365451][T13266] ? __pfx_futex_wake+0x10/0x10 [ 457.365495][T13266] ? kmem_cache_free+0x2e2/0x4d0 [ 457.365530][T13266] ? lock_acquire+0x2f/0xb0 [ 457.365565][T13266] ? putname+0x13c/0x180 [ 457.365606][T13266] do_futex+0x1e5/0x350 [ 457.365635][T13266] ? __pfx_do_futex+0x10/0x10 [ 457.365683][T13266] ? __pfx_lock_release+0x10/0x10 [ 457.365726][T13266] ? trace_lock_acquire+0x14e/0x1f0 [ 457.365758][T13266] __x64_sys_futex+0x1e1/0x4c0 [ 457.365793][T13266] ? __pfx___x64_sys_futex+0x10/0x10 [ 457.365825][T13266] ? rcu_is_watching+0x12/0xc0 [ 457.365873][T13266] ? rcu_is_watching+0x12/0xc0 [ 457.365922][T13266] do_syscall_64+0xcd/0x250 [ 457.365953][T13266] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 457.365998][T13266] RIP: 0033:0x7fe78938cde9 [ 457.366022][T13266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 457.366054][T13266] RSP: 002b:00007fe78a1940e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 457.366084][T13266] RAX: ffffffffffffffda RBX: 00007fe7895a6088 RCX: 00007fe78938cde9 [ 457.366105][T13266] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe7895a608c [ 457.366124][T13266] RBP: 00007fe7895a6080 R08: 00007fe78a1b6000 R09: 0000000000000000 [ 457.366143][T13266] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007fe7895a608c [ 457.366164][T13266] R13: 0000000000000000 R14: 00007ffc4e532ae0 R15: 00007ffc4e532bc8 [ 457.366193][T13266] [ 460.780969][T13306] Process accounting resumed [ 461.981147][T13336] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1734'. [ 462.042261][T13336] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1734'. [ 462.101612][T13336] netlink: 98 bytes leftover after parsing attributes in process `syz.1.1734'. [ 464.277898][T13373] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 465.259395][T13391] cifs: Unknown parameter 'T.ŸÜÛæ¨Å¼c[ŸÐê€$âæµÈ)ü±UóÑnEó-Ê™¾l®öÚ-ºŒ -¾_€™¯Ôåáª5Z äoåé¢mžÐfwYÍhº*/ÿxDlÝ©Š×ígÕkÇAí³ùÏ7ÍØØ9’ôXöa/fê_ÿAR£ˆ™‘ÈxM ‚v¬—pÿ±$^;ôØq‡3±«£n졵-6©+e„k„¾ñÇ<°kœcÔ)n.üeMÍ÷Na¨t®ÐSMÎÆ1,ëË¿ú&‰ [ 465.259395][T13391] H}þª6l2Íp(wml5Má:ß÷–¨;aQµÃâ‰×æ쀌æ¸' [ 465.320760][T13389] ieee80211 phy23: Selected rate control algorithm 'minstrel_ht' [ 467.478182][T13418] ubi: mtd0 is already attached to ubi0 [ 468.178325][T13420] Invalid ELF header magic: != ELF [ 468.650632][T13436] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 469.405822][T13471] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1762'. [ 472.152001][T13544] syz.2.1782 (13544): drop_caches: 0 [ 474.332232][T13561] openvswitch: HfR: Dropping previously announced user features [ 474.352950][T13561] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1788'. [ 474.383306][T13561] HfR: left promiscuous mode [ 474.539152][T13565] HfR: entered promiscuous mode [ 474.789092][T13586] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1794'. [ 475.521617][T13605] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 475.622462][T13605] CIFS mount error: No usable UNC path provided in device string! [ 475.622462][T13605] [ 475.622489][T13605] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 476.372382][T13630] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1805'. [ 476.511196][T13630] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1805'. [ 476.567457][T13630] netlink: 98 bytes leftover after parsing attributes in process `syz.2.1805'. [ 478.055539][T13677] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1819'. [ 478.080435][T13677] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1819'. [ 478.107500][T13677] netlink: 174 bytes leftover after parsing attributes in process `syz.1.1819'. [ 479.254156][T13710] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1829'. [ 479.276720][T13710] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1829'. [ 479.299514][T13710] netlink: 250 bytes leftover after parsing attributes in process `syz.1.1829'. [ 480.439291][T13751] sg_write: data in/out 79/64965 bytes for SCSI command 0x0-- guessing data in; [ 480.439291][T13751] program syz.2.1834 not setting count and/or reply_len properly [ 480.862962][T13764] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1839'. [ 481.982041][T13811] netlink: 'syz.1.1846': attribute type 1 has an invalid length. [ 482.010794][T13813] Invalid ELF header magic: != ELF [ 482.450951][T13821] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1849'. [ 482.464547][T13821] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1849'. [ 482.491765][T13821] netlink: 290 bytes leftover after parsing attributes in process `syz.1.1849'. [ 483.003169][T13833] Process accounting resumed [ 483.766212][T13852] Invalid ELF header magic: != ELF [ 484.957637][T13864] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1859'. [ 486.767396][T13900] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1870'. [ 486.796136][T13900] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1870'. [ 486.836903][T13900] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1870'. [ 487.192937][T13922] Process accounting resumed [ 487.469453][T13917] can: request_module (can-proto-0) failed. [ 488.412871][T13940] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1882'. [ 491.427235][T13990] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1892'. [ 497.676255][T14103] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1921'. [ 500.555023][T14157] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1932'. [ 500.577058][T14157] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1932'. [ 500.600011][T14157] netlink: 134 bytes leftover after parsing attributes in process `syz.2.1932'. [ 501.083802][T14162] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1933'. [ 501.979524][T14174] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1935'. [ 503.756859][T14206] Invalid ELF header magic: != ELF [ 504.255395][T14214] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1948'. [ 504.291959][T14214] nbd: must specify a size in bytes for the device [ 505.261504][T14231] Process accounting resumed [ 505.746584][T14244] FAULT_INJECTION: forcing a failure. [ 505.746584][T14244] name failslab, interval 1, probability 0, space 0, times 0 [ 505.770499][T14244] CPU: 1 UID: 0 PID: 14244 Comm: syz.0.1954 Tainted: G U 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0 [ 505.770553][T14244] Tainted: [U]=USER [ 505.770564][T14244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 505.770582][T14244] Call Trace: [ 505.770591][T14244] [ 505.770602][T14244] dump_stack_lvl+0x16c/0x1f0 [ 505.770658][T14244] should_fail_ex+0x50a/0x650 [ 505.770696][T14244] ? fs_reclaim_acquire+0xae/0x150 [ 505.770747][T14244] should_failslab+0xc2/0x120 [ 505.770785][T14244] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 505.770821][T14244] ? lock_acquire+0x2f/0xb0 [ 505.770857][T14244] ? __kernfs_new_node+0xd3/0x890 [ 505.770928][T14244] __kernfs_new_node+0xd3/0x890 [ 505.770980][T14244] ? lock_release+0x4e2/0x6f0 [ 505.771016][T14244] ? __pfx___kernfs_new_node+0x10/0x10 [ 505.771067][T14244] ? __pfx_lock_release+0x10/0x10 [ 505.771104][T14244] ? kernfs_add_one+0x39d/0x520 [ 505.771138][T14244] ? down_write+0x14e/0x200 [ 505.771170][T14244] ? up_write+0x1b2/0x520 [ 505.771213][T14244] kernfs_new_node+0x186/0x240 [ 505.771250][T14244] __kernfs_create_file+0x53/0x350 [ 505.771292][T14244] sysfs_add_file_mode_ns+0x1ff/0x3b0 [ 505.771351][T14244] internal_create_group+0x56c/0xf10 [ 505.771407][T14244] ? __pfx_internal_create_group+0x10/0x10 [ 505.771463][T14244] ? kernfs_create_link+0x1bd/0x240 [ 505.771507][T14244] internal_create_groups+0x9d/0x150 [ 505.771559][T14244] device_add+0x781/0x1a70 [ 505.771604][T14244] ? __pfx_device_add+0x10/0x10 [ 505.771647][T14244] ? rcu_is_watching+0x12/0xc0 [ 505.771694][T14244] ? lock_release+0x4e2/0x6f0 [ 505.771734][T14244] add_disk_fwnode+0x468/0x1320 [ 505.771790][T14244] zram_add+0x486/0x6b0 [ 505.771834][T14244] ? __pfx_zram_add+0x10/0x10 [ 505.771882][T14244] ? __pfx___mutex_lock+0x10/0x10 [ 505.771932][T14244] ? rcu_is_watching+0x12/0xc0 [ 505.771982][T14244] ? __pfx_hot_add_show+0x10/0x10 [ 505.772019][T14244] hot_add_show+0x21/0x80 [ 505.772055][T14244] class_attr_show+0x6f/0xa0 [ 505.772091][T14244] ? __pfx_class_attr_show+0x10/0x10 [ 505.772136][T14244] sysfs_kf_seq_show+0x223/0x3e0 [ 505.772174][T14244] seq_read_iter+0x4f4/0x12b0 [ 505.772219][T14244] kernfs_fop_read_iter+0x414/0x580 [ 505.772250][T14244] ? rw_verify_area+0xcf/0x680 [ 505.772289][T14244] vfs_read+0x886/0xbf0 [ 505.772313][T14244] ? __pfx_vfs_read+0x10/0x10 [ 505.772352][T14244] ksys_read+0x12b/0x250 [ 505.772376][T14244] ? __pfx_ksys_read+0x10/0x10 [ 505.772400][T14244] ? rcu_is_watching+0x12/0xc0 [ 505.772440][T14244] ? rcu_is_watching+0x12/0xc0 [ 505.772482][T14244] do_syscall_64+0xcd/0x250 [ 505.772507][T14244] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 505.772544][T14244] RIP: 0033:0x7f801f78cde9 [ 505.772564][T14244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 505.772590][T14244] RSP: 002b:00007f802056d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 505.772613][T14244] RAX: ffffffffffffffda RBX: 00007f801f9a5fa0 RCX: 00007f801f78cde9 [ 505.772631][T14244] RDX: 0000000000001004 RSI: 0000400000001ec0 RDI: 0000000000000007 [ 505.772646][T14244] RBP: 00007f801f80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 505.772662][T14244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 505.772677][T14244] R13: 0000000000000000 R14: 00007f801f9a5fa0 R15: 00007ffc60a74ba8 [ 505.772700][T14244] [ 506.948772][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 506.959352][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 508.019932][T14288] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1963'. [ 508.551120][T14297] netlink: 504 bytes leftover after parsing attributes in process `syz.1.1966'. [ 508.588886][T14297] netlink: 504 bytes leftover after parsing attributes in process `syz.1.1966'. [ 509.200709][T14311] ieee80211 !PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L,ªRsVÈ;: Selected rate control algorithm 'minstrel_ht' [ 509.218325][T14311] debugfs: Directory '!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L,ªRsVÈ;' with parent 'ieee80211' already present! [ 509.266452][T14313] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1972'. [ 509.344760][T14315] netlink: 142 bytes leftover after parsing attributes in process `syz.0.1972'. [ 510.877516][T14336] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1976'. [ 513.860448][T14392] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1987'. [ 514.604735][T14405] Setting dangerous option i915.request_timeout_ms - tainting kernel [ 516.176392][T14434] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1999'. [ 517.977237][T14483] FAULT_INJECTION: forcing a failure. [ 517.977237][T14483] name failslab, interval 1, probability 0, space 0, times 0 [ 518.036921][T14483] CPU: 0 UID: 0 PID: 14483 Comm: syz.2.2011 Tainted: G U 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0 [ 518.036973][T14483] Tainted: [U]=USER [ 518.036984][T14483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 518.037002][T14483] Call Trace: [ 518.037011][T14483] [ 518.037021][T14483] dump_stack_lvl+0x16c/0x1f0 [ 518.037078][T14483] should_fail_ex+0x50a/0x650 [ 518.037116][T14483] ? fs_reclaim_acquire+0xae/0x150 [ 518.037166][T14483] ? ima_add_digest_entry+0x52/0x530 [ 518.037202][T14483] should_failslab+0xc2/0x120 [ 518.037241][T14483] __kmalloc_cache_noprof+0x68/0x420 [ 518.037273][T14483] ? __pfx_lock_release+0x10/0x10 [ 518.037312][T14483] ima_add_digest_entry+0x52/0x530 [ 518.037351][T14483] ima_add_template_entry+0x45c/0x880 [ 518.037392][T14483] ? __pfx_ima_add_template_entry+0x10/0x10 [ 518.037429][T14483] ? __kmalloc_noprof+0x23b/0x4f0 [ 518.037466][T14483] ? ima_calc_field_array_hash+0x327/0x3c0 [ 518.037513][T14483] ima_store_template+0xdc/0x150 [ 518.037559][T14483] ima_store_measurement+0x223/0x5c0 [ 518.037604][T14483] ? __pfx_ima_store_measurement+0x10/0x10 [ 518.037656][T14483] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 518.037697][T14483] process_measurement+0x1bcb/0x2370 [ 518.037742][T14483] ? __pfx_process_measurement+0x10/0x10 [ 518.037781][T14483] ? local_lock_release+0x99/0x140 [ 518.037839][T14483] ? rcu_is_watching+0x12/0xc0 [ 518.037887][T14483] ? local_lock_acquire+0x10/0x150 [ 518.037926][T14483] ? rcu_is_watching+0x12/0xc0 [ 518.037973][T14483] ? trace_irq_enable.constprop.0+0xea/0x140 [ 518.038028][T14483] ? seq_open+0x116/0x170 [ 518.038068][T14483] ? inode_to_bdi+0x9e/0x160 [ 518.038099][T14483] ima_file_check+0xc6/0x110 [ 518.038135][T14483] ? __pfx_ima_file_check+0x10/0x10 [ 518.038178][T14483] security_file_post_open+0x8e/0x210 [ 518.038214][T14483] path_openat+0x147f/0x2d80 [ 518.038252][T14483] ? __pfx_path_openat+0x10/0x10 [ 518.038289][T14483] do_filp_open+0x20c/0x470 [ 518.038320][T14483] ? __pfx_do_filp_open+0x10/0x10 [ 518.038366][T14483] ? alloc_fd+0x41f/0x760 [ 518.038401][T14483] do_sys_openat2+0x17a/0x1e0 [ 518.038443][T14483] ? __pfx_do_sys_openat2+0x10/0x10 [ 518.038491][T14483] __x64_sys_openat+0x175/0x210 [ 518.038535][T14483] ? __pfx___x64_sys_openat+0x10/0x10 [ 518.038581][T14483] ? rcu_is_watching+0x12/0xc0 [ 518.038627][T14483] ? rcu_is_watching+0x12/0xc0 [ 518.038674][T14483] do_syscall_64+0xcd/0x250 [ 518.038705][T14483] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 518.038750][T14483] RIP: 0033:0x7f695718cde9 [ 518.038773][T14483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 518.038812][T14483] RSP: 002b:00007f695803a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 518.038841][T14483] RAX: ffffffffffffffda RBX: 00007f69573a5fa0 RCX: 00007f695718cde9 [ 518.038861][T14483] RDX: 0000000000002002 RSI: 0000400000002640 RDI: ffffffffffffff9c [ 518.038880][T14483] RBP: 00007f695720e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 518.038897][T14483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 518.038914][T14483] R13: 0000000000000000 R14: 00007f69573a5fa0 R15: 00007ffc13caa998 [ 518.038942][T14483] [ 518.038955][T14483] ima: OUT OF MEMORY ERROR creating queue entry [ 518.644760][T14498] Invalid ELF header magic: != ELF [ 518.787251][ T29] audit: type=1804 audit(4294967343.094:19): pid=14483 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.2.2011" name="/newroot/sys/kernel/debug/tracing/set_event_pid" dev="tracefs" ino=14 res=0 errno=0 [ 521.202465][T14530] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2023'. [ 522.900853][T14543] FAULT_INJECTION: forcing a failure. [ 522.900853][T14543] name failslab, interval 1, probability 0, space 0, times 0 [ 522.929611][T14543] CPU: 0 UID: 0 PID: 14543 Comm: syz.2.2026 Tainted: G U 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0 [ 522.929668][T14543] Tainted: [U]=USER [ 522.929680][T14543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 522.929700][T14543] Call Trace: [ 522.929708][T14543] [ 522.929719][T14543] dump_stack_lvl+0x16c/0x1f0 [ 522.929776][T14543] should_fail_ex+0x50a/0x650 [ 522.929815][T14543] ? fs_reclaim_acquire+0xae/0x150 [ 522.929872][T14543] should_failslab+0xc2/0x120 [ 522.929912][T14543] __kmalloc_noprof+0xce/0x4f0 [ 522.929947][T14543] ? ima_write_template_field_data+0xe9/0x1c0 [ 522.929984][T14543] ima_write_template_field_data+0xe9/0x1c0 [ 522.930019][T14543] ima_eventname_init_common.isra.0+0x113/0x1f0 [ 522.930055][T14543] ? __pfx_ima_eventname_init_common.isra.0+0x10/0x10 [ 522.930093][T14543] ? trace_kmalloc+0x2d/0xd0 [ 522.930138][T14543] ? __kmalloc_noprof+0x23b/0x4f0 [ 522.930173][T14543] ? ima_alloc_init_template+0x195/0x720 [ 522.930224][T14543] ima_alloc_init_template+0x399/0x720 [ 522.930274][T14543] ima_store_measurement+0x1ea/0x5c0 [ 522.930320][T14543] ? __pfx_ima_store_measurement+0x10/0x10 [ 522.930373][T14543] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 522.930413][T14543] process_measurement+0x1bcb/0x2370 [ 522.930459][T14543] ? __pfx_process_measurement+0x10/0x10 [ 522.930499][T14543] ? local_lock_release+0x99/0x140 [ 522.930540][T14543] ? rcu_is_watching+0x12/0xc0 [ 522.930597][T14543] ? local_lock_acquire+0x10/0x150 [ 522.930640][T14543] ? rcu_is_watching+0x12/0xc0 [ 522.930689][T14543] ? trace_irq_enable.constprop.0+0xea/0x140 [ 522.930750][T14543] ? seq_open+0x116/0x170 [ 522.930792][T14543] ? inode_to_bdi+0x9e/0x160 [ 522.930824][T14543] ima_file_check+0xc6/0x110 [ 522.930862][T14543] ? __pfx_ima_file_check+0x10/0x10 [ 522.930907][T14543] security_file_post_open+0x8e/0x210 [ 522.930944][T14543] path_openat+0x147f/0x2d80 [ 522.930983][T14543] ? __pfx_path_openat+0x10/0x10 [ 522.931021][T14543] do_filp_open+0x20c/0x470 [ 522.931054][T14543] ? __pfx_do_filp_open+0x10/0x10 [ 522.931100][T14543] ? alloc_fd+0x41f/0x760 [ 522.931136][T14543] do_sys_openat2+0x17a/0x1e0 [ 522.931178][T14543] ? __pfx_do_sys_openat2+0x10/0x10 [ 522.931229][T14543] __x64_sys_openat+0x175/0x210 [ 522.931273][T14543] ? __pfx___x64_sys_openat+0x10/0x10 [ 522.931319][T14543] ? rcu_is_watching+0x12/0xc0 [ 522.931367][T14543] ? rcu_is_watching+0x12/0xc0 [ 522.931417][T14543] do_syscall_64+0xcd/0x250 [ 522.931448][T14543] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 522.931494][T14543] RIP: 0033:0x7f695718cde9 [ 522.931518][T14543] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 522.931550][T14543] RSP: 002b:00007f695803a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 522.931587][T14543] RAX: ffffffffffffffda RBX: 00007f69573a5fa0 RCX: 00007f695718cde9 [ 522.931607][T14543] RDX: 0000000000002002 RSI: 0000400000002640 RDI: ffffffffffffff9c [ 522.931627][T14543] RBP: 00007f695720e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 522.931645][T14543] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 522.931662][T14543] R13: 0000000000000000 R14: 00007f69573a5fa0 R15: 00007ffc13caa998 [ 522.931690][T14543] [ 523.320030][ T29] audit: type=1804 audit(4294967347.244:20): pid=14543 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.2.2026" name="/newroot/sys/kernel/debug/tracing/set_event_pid" dev="tracefs" ino=14 res=0 errno=0 [ 523.957290][T14555] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2030'. [ 524.440304][T12702] syz.3.1605 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 524.482305][T14568] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2032'. [ 524.932932][T12702] CPU: 0 UID: 0 PID: 12702 Comm: syz.3.1605 Tainted: G U 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0 [ 524.932980][T12702] Tainted: [U]=USER [ 524.932989][T12702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 524.933008][T12702] Call Trace: [ 524.933017][T12702] [ 524.933027][T12702] dump_stack_lvl+0x16c/0x1f0 [ 524.933082][T12702] dump_header+0x101/0x930 [ 524.933131][T12702] oom_kill_process+0x270/0xa60 [ 524.933191][T12702] out_of_memory+0x351/0x1700 [ 524.933246][T12702] ? __pfx_out_of_memory+0x10/0x10 [ 524.933295][T12702] ? rcu_read_unlock+0x17/0x60 [ 524.933334][T12702] ? __pfx_lock_release+0x10/0x10 [ 524.933375][T12702] mem_cgroup_out_of_memory+0x207/0x270 [ 524.933423][T12702] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 524.933475][T12702] ? do_raw_spin_unlock+0x172/0x230 [ 524.933522][T12702] try_charge_memcg+0x54c/0xaf0 [ 524.933556][T12702] ? __pfx_try_charge_memcg+0x10/0x10 [ 524.933590][T12702] ? trace_lock_acquire+0x14e/0x1f0 [ 524.933616][T12702] ? get_mem_cgroup_from_mm+0x7f/0x5f0 [ 524.933662][T12702] ? lock_acquire+0x2f/0xb0 [ 524.933695][T12702] ? get_mem_cgroup_from_mm+0x7f/0x5f0 [ 524.933744][T12702] charge_memcg+0x8a/0x310 [ 524.933778][T12702] __mem_cgroup_charge+0x2b/0x1e0 [ 524.933816][T12702] shmem_alloc_and_add_folio+0x50a/0xc10 [ 524.933860][T12702] ? shmem_huge_global_enabled+0x72/0x6b0 [ 524.933900][T12702] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 524.933945][T12702] ? shmem_allowable_huge_orders+0xd0/0x410 [ 524.933993][T12702] shmem_get_folio_gfp+0x689/0x1530 [ 524.934037][T12702] ? rcu_is_watching+0x12/0xc0 [ 524.934083][T12702] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 524.934128][T12702] ? follow_page_pte+0x35d/0x1490 [ 524.934168][T12702] ? rcu_is_watching+0x12/0xc0 [ 524.934216][T12702] shmem_write_begin+0x161/0x300 [ 524.934264][T12702] ? __pfx_shmem_write_begin+0x10/0x10 [ 524.934310][T12702] ? timestamp_truncate+0x21f/0x2e0 [ 524.934346][T12702] ? balance_dirty_pages_ratelimited_flags+0x92/0x1270 [ 524.934390][T12702] generic_perform_write+0x2ba/0x920 [ 524.934438][T12702] ? __pfx_generic_perform_write+0x10/0x10 [ 524.934482][T12702] ? inode_needs_update_time.part.0+0x191/0x270 [ 524.934526][T12702] shmem_file_write_iter+0x10e/0x140 [ 524.934558][T12702] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 524.934590][T12702] __kernel_write_iter+0x318/0xa90 [ 524.934622][T12702] ? __pfx___kernel_write_iter+0x10/0x10 [ 524.934652][T12702] ? get_dump_page+0x15b/0x230 [ 524.934689][T12702] ? __pfx___might_resched+0x10/0x10 [ 524.934733][T12702] dump_user_range+0x389/0x8c0 [ 524.934782][T12702] ? __pfx_dump_user_range+0x10/0x10 [ 524.934827][T12702] ? elf_coredump_extra_notes_write+0xbe/0x430 [ 524.934875][T12702] ? __pfx_writenote+0x10/0x10 [ 524.934926][T12702] elf_core_dump+0x2787/0x3880 [ 524.934982][T12702] ? __pfx_elf_core_dump+0x10/0x10 [ 524.935030][T12702] ? kasan_save_stack+0x42/0x60 [ 524.935061][T12702] ? kasan_save_stack+0x33/0x60 [ 524.935092][T12702] ? kasan_save_track+0x14/0x30 [ 524.935125][T12702] ? __kasan_kmalloc+0xaa/0xb0 [ 524.935164][T12702] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 524.935193][T12702] ? do_coredump+0x1764/0x45d0 [ 524.935235][T12702] ? get_signal+0x23f3/0x2610 [ 524.935289][T12702] ? mas_ascend+0x519/0x930 [ 524.935348][T12702] ? rcu_is_watching+0x12/0xc0 [ 524.935393][T12702] ? trace_lock_acquire+0x14e/0x1f0 [ 524.935420][T12702] ? __pfx_sort+0x10/0x10 [ 524.935459][T12702] ? get_signal+0x23f3/0x2610 [ 524.935503][T12702] ? do_coredump+0x304f/0x45d0 [ 524.935546][T12702] do_coredump+0x304f/0x45d0 [ 524.935595][T12702] ? __pfx_do_coredump+0x10/0x10 [ 524.935636][T12702] ? irqentry_exit_to_user_mode+0x13f/0x280 [ 524.935717][T12702] ? rcu_is_watching+0x12/0xc0 [ 524.935766][T12702] get_signal+0x23f3/0x2610 [ 524.935812][T12702] ? __pfx_get_signal+0x10/0x10 [ 524.935854][T12702] ? rcu_is_watching+0x12/0xc0 [ 524.935900][T12702] ? trace_irq_disable.constprop.0+0xea/0x140 [ 524.935943][T12702] arch_do_signal_or_restart+0x90/0x7e0 [ 524.935977][T12702] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 524.936014][T12702] ? do_user_addr_fault+0xa4b/0x13f0 [ 524.936055][T12702] ? rcu_is_watching+0x12/0xc0 [ 524.936104][T12702] irqentry_exit_to_user_mode+0x13f/0x280 [ 524.936161][T12702] asm_exc_page_fault+0x26/0x30 [ 524.936202][T12702] RIP: 0033:0x21000 [ 524.936229][T12702] Code: Unable to access opcode bytes at 0x20fd6. [ 524.936242][T12702] RSP: 002b:000000000000000a EFLAGS: 00010246 [ 524.936265][T12702] RAX: 0000000000000000 RBX: 00007f37f7fa6240 RCX: 00007f37f7d8cde9 [ 524.936283][T12702] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46 [ 524.936301][T12702] RBP: 00007f37f7e0e2a0 R08: 0000000000000002 R09: 0000000000000000 [ 524.936318][T12702] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 524.936335][T12702] R13: 0000000000000000 R14: 00007f37f7fa6240 R15: 00007fff85a1d678 [ 524.936362][T12702] [ 525.579407][T12702] memory: usage 307200kB, limit 307200kB, failcnt 27043 [ 525.638831][T12702] memory+swap: usage 431300kB, limit 9007199254740988kB, failcnt 0 [ 525.762309][T12702] kmem: usage 3880kB, limit 9007199254740988kB, failcnt 0 [ 525.786905][T12702] Memory cgroup stats for /syz3: [ 525.787092][T12702] cache 309567488 [ 525.797528][T12702] rss 262144 [ 525.801448][T12702] rss_huge 0 [ 525.805302][T12702] shmem 309559296 [ 525.810122][T12702] mapped_file 3452928 [ 525.815190][T12702] dirty 0 [ 525.818731][T12702] writeback 0 [ 525.822813][T12702] workingset_refault_anon 7477 [ 525.856547][T12702] workingset_refault_file 3514 [ 525.862371][T12702] swap 127078400 [ 525.866817][T12702] swapcached 712704 [ 525.871554][T12702] pgpgin 932365 [ 525.875726][T12702] pgpgout 861653 [ 525.880094][T12702] pgfault 412871 [ 525.884441][T12702] pgmajfault 1251 [ 525.893955][T12702] inactive_anon 179224576 [ 525.899256][T12702] active_anon 131334144 [ 525.904719][T12702] inactive_file 8192 [ 525.909496][T12702] active_file 0 [ 525.913671][T12702] unevictable 0 [ 525.918077][T12702] hierarchical_memory_limit 314572800 [ 525.925165][T12702] hierarchical_memsw_limit 9223372036854771712 [ 525.953389][T12702] total_cache 309567488 [ 525.958434][T12702] total_rss 262144 [ 525.987330][T12702] total_rss_huge 0 [ 526.014745][T14587] zswap: compressor not available [ 526.022437][T14591] ieee80211 !PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L,ªRsVÈ;: Selected rate control algorithm 'minstrel_ht' [ 526.042933][T12702] total_shmem 309559296 [ 526.048039][T12702] total_mapped_file 3452928 [ 526.053523][T12702] total_dirty 0 [ 526.057749][T12702] total_writeback 0 [ 526.062482][T12702] total_workingset_refault_anon 7477 [ 526.068826][T12702] total_workingset_refault_file 3514 [ 526.075294][T12702] total_swap 127078400 [ 526.080218][T12702] total_swapcached 712704 [ 526.085621][T12702] total_pgpgin 932365 [ 526.092745][T12702] total_pgpgout 861653 [ 526.097743][T12702] total_pgfault 412871 [ 526.102706][T12702] total_pgmajfault 1251 [ 526.107713][T12702] total_inactive_anon 179224576 [ 526.113654][T12702] total_active_anon 131334144 [ 526.119422][T12702] total_inactive_file 8192 [ 526.124905][T12702] total_active_file 0 [ 526.142398][T14591] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L,ªRsVÈ;' [ 526.156643][T12702] total_unevictable 0 [ 526.169361][T12702] anon_cost 0 [ 526.173413][T12702] file_cost 0 [ 526.181978][T12702] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.1605,pid=12723,uid=0 [ 526.212928][T14591] CPU: 0 UID: 0 PID: 14591 Comm: syz.2.2036 Tainted: G U 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0 [ 526.212980][T14591] Tainted: [U]=USER [ 526.212990][T14591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 526.213008][T14591] Call Trace: [ 526.213017][T14591] [ 526.213028][T14591] dump_stack_lvl+0x16c/0x1f0 [ 526.213084][T14591] sysfs_warn_dup+0x7f/0xa0 [ 526.213131][T14591] sysfs_do_create_link_sd+0x124/0x140 [ 526.213180][T14591] sysfs_create_link+0x61/0xc0 [ 526.213228][T14591] device_add+0x62e/0x1a70 [ 526.213273][T14591] ? __pfx_device_add+0x10/0x10 [ 526.213322][T14591] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 526.213364][T14591] ? ieee80211_set_bitrate_flags+0x249/0x6a0 [ 526.213402][T14591] wiphy_register+0x1c7a/0x2860 [ 526.213443][T14591] ? netdev_run_todo+0x877/0x1320 [ 526.213492][T14591] ? __pfx_wiphy_register+0x10/0x10 [ 526.213540][T14591] ieee80211_register_hw+0x23ff/0x3ff0 [ 526.213585][T14591] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 526.213622][T14591] ? net_generic+0xea/0x2a0 [ 526.213667][T14591] ? lockdep_init_map_type+0x16d/0x7d0 [ 526.213705][T14591] ? net_generic+0x30/0x2a0 [ 526.213768][T14591] ? rcu_is_watching+0x12/0xc0 [ 526.213816][T14591] ? trace_hrtimer_init+0x1a6/0x230 [ 526.213858][T14591] ? __hrtimer_init+0x106/0x2c0 [ 526.213901][T14591] mac80211_hwsim_new_radio+0x2c47/0x56d0 [ 526.213963][T14591] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 526.214016][T14591] ? hwsim_new_radio_nl+0x9ff/0x12b0 [ 526.214071][T14591] hwsim_new_radio_nl+0xb42/0x12b0 [ 526.214121][T14591] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 526.214178][T14591] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 526.214234][T14591] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 526.214301][T14591] genl_family_rcv_msg_doit+0x202/0x2f0 [ 526.214357][T14591] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 526.214410][T14591] ? trace_cap_capable+0x1a2/0x210 [ 526.214464][T14591] ? bpf_lsm_capable+0x9/0x10 [ 526.214507][T14591] ? security_capable+0x7e/0x260 [ 526.214556][T14591] ? ns_capable+0xd7/0x110 [ 526.214597][T14591] genl_rcv_msg+0x565/0x800 [ 526.214628][T14591] ? __pfx_genl_rcv_msg+0x10/0x10 [ 526.214659][T14591] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 526.214715][T14591] netlink_rcv_skb+0x165/0x410 [ 526.214762][T14591] ? __pfx_genl_rcv_msg+0x10/0x10 [ 526.214792][T14591] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 526.214845][T14591] ? down_read+0xc9/0x330 [ 526.214875][T14591] ? __pfx_down_read+0x10/0x10 [ 526.214907][T14591] ? netlink_deliver_tap+0x1ae/0xca0 [ 526.214953][T14591] genl_rcv+0x28/0x40 [ 526.215000][T14591] netlink_unicast+0x53c/0x7f0 [ 526.215048][T14591] ? __pfx_netlink_unicast+0x10/0x10 [ 526.215096][T14591] ? __phys_addr_symbol+0x30/0x80 [ 526.215147][T14591] ? __check_object_size+0x488/0x710 [ 526.215191][T14591] netlink_sendmsg+0x8b8/0xd70 [ 526.215239][T14591] ? __pfx_netlink_sendmsg+0x10/0x10 [ 526.215299][T14591] ____sys_sendmsg+0x9ae/0xb40 [ 526.215344][T14591] ? copy_msghdr_from_user+0x10b/0x160 [ 526.215378][T14591] ? __pfx_____sys_sendmsg+0x10/0x10 [ 526.215425][T14591] ? __pfx___page_table_check_ptes_set+0x10/0x10 [ 526.215465][T14591] ? __folio_batch_add_and_move+0x612/0xc60 [ 526.215498][T14591] ? const_folio_flags+0x5b/0x100 [ 526.215549][T14591] ___sys_sendmsg+0x135/0x1e0 [ 526.215583][T14591] ? __pfx____sys_sendmsg+0x10/0x10 [ 526.215623][T14591] ? __pfx_lock_release+0x10/0x10 [ 526.215660][T14591] ? trace_lock_acquire+0x14e/0x1f0 [ 526.215688][T14591] ? lock_vma_under_rcu+0x6b9/0x980 [ 526.215724][T14591] ? __fget_files+0x206/0x3a0 [ 526.215761][T14591] __sys_sendmsg+0x16e/0x220 [ 526.215794][T14591] ? __pfx___sys_sendmsg+0x10/0x10 [ 526.215834][T14591] ? do_user_addr_fault+0x83d/0x13f0 [ 526.215876][T14591] ? rcu_is_watching+0x12/0xc0 [ 526.215926][T14591] do_syscall_64+0xcd/0x250 [ 526.215956][T14591] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 526.216001][T14591] RIP: 0033:0x7f695718cde9 [ 526.216024][T14591] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 526.216061][T14591] RSP: 002b:00007f6958019038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 526.216091][T14591] RAX: ffffffffffffffda RBX: 00007f69573a6080 RCX: 00007f695718cde9 [ 526.216111][T14591] RDX: 0000000004000800 RSI: 00004000000000c0 RDI: 0000000000000004 [ 526.216130][T14591] RBP: 00007f695720e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 526.216149][T14591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 526.216167][T14591] R13: 0000000000000001 R14: 00007f69573a6080 R15: 00007ffc13caa998 [ 526.216195][T14591] [ 526.777367][T12702] Memory cgroup out of memory: Killed process 12723 (syz.3.1605) total-vm:131688kB, anon-rss:1024kB, file-rss:23164kB, shmem-rss:3200kB, UID:0 pgtables:136kB oom_score_adj:1000 [ 527.506485][T14597] lo: entered allmulticast mode [ 527.980994][T14580] lo: left allmulticast mode [ 529.028794][T14622] Invalid ELF header magic: != ELF [ 529.504011][ T31] oom_reaper: reaped process 12723 (syz.3.1605), now anon-rss:24kB, file-rss:20496kB, shmem-rss:3200kB [ 530.594060][T14643] netlink: 338 bytes leftover after parsing attributes in process `syz.1.2048'. [ 532.995111][T14709] do_dccp_getsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app [ 533.152226][T14714] HfR: entered promiscuous mode [ 533.608225][T14716] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2069'. [ 535.331829][T14761] FAULT_INJECTION: forcing a failure. [ 535.331829][T14761] name failslab, interval 1, probability 0, space 0, times 0 [ 535.359924][T14761] CPU: 1 UID: 0 PID: 14761 Comm: syz.0.2080 Tainted: G U 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0 [ 535.359972][T14761] Tainted: [U]=USER [ 535.359982][T14761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 535.360000][T14761] Call Trace: [ 535.360009][T14761] [ 535.360019][T14761] dump_stack_lvl+0x16c/0x1f0 [ 535.360074][T14761] should_fail_ex+0x50a/0x650 [ 535.360111][T14761] ? fs_reclaim_acquire+0xae/0x150 [ 535.360170][T14761] should_failslab+0xc2/0x120 [ 535.360210][T14761] __kmalloc_noprof+0xce/0x4f0 [ 535.360244][T14761] ? d_absolute_path+0x137/0x1b0 [ 535.360284][T14761] ? tomoyo_encode2+0x100/0x3e0 [ 535.360324][T14761] tomoyo_encode2+0x100/0x3e0 [ 535.360363][T14761] tomoyo_realpath_from_path+0x1a7/0x710 [ 535.360408][T14761] tomoyo_path_number_perm+0x248/0x5b0 [ 535.360438][T14761] ? tomoyo_path_number_perm+0x235/0x5b0 [ 535.360471][T14761] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 535.360505][T14761] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 535.360555][T14761] ? preempt_count_add+0x76/0x150 [ 535.360604][T14761] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 535.360649][T14761] security_file_ioctl+0x9b/0x240 [ 535.360686][T14761] __x64_sys_ioctl+0xb7/0x200 [ 535.360733][T14761] do_syscall_64+0xcd/0x250 [ 535.360762][T14761] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 535.360807][T14761] RIP: 0033:0x7f801f78cde9 [ 535.360829][T14761] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 535.360863][T14761] RSP: 002b:00007f802056d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 535.360892][T14761] RAX: ffffffffffffffda RBX: 00007f801f9a5fa0 RCX: 00007f801f78cde9 [ 535.360912][T14761] RDX: 0000400000000380 RSI: 0000000000000002 RDI: 0000000000000001 [ 535.360930][T14761] RBP: 00007f802056d090 R08: 0000000000000000 R09: 0000000000000000 [ 535.360948][T14761] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 535.360965][T14761] R13: 0000000000000000 R14: 00007f801f9a5fa0 R15: 00007ffc60a74ba8 [ 535.360992][T14761] [ 535.361828][T14761] ERROR: Out of memory at tomoyo_realpath_from_path. [ 536.305357][T14783] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2088'. [ 536.413203][T14790] FAULT_INJECTION: forcing a failure. [ 536.413203][T14790] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 536.449437][T14790] CPU: 1 UID: 0 PID: 14790 Comm: syz.0.2090 Tainted: G U 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0 [ 536.449489][T14790] Tainted: [U]=USER [ 536.449504][T14790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 536.449522][T14790] Call Trace: [ 536.449530][T14790] [ 536.449540][T14790] dump_stack_lvl+0x16c/0x1f0 [ 536.449597][T14790] should_fail_ex+0x50a/0x650 [ 536.449642][T14790] _copy_to_user+0x32/0xd0 [ 536.449691][T14790] simple_read_from_buffer+0xd0/0x160 [ 536.449745][T14790] proc_fail_nth_read+0x198/0x270 [ 536.449794][T14790] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 536.449843][T14790] ? security_file_permission+0x71/0x210 [ 536.449880][T14790] ? rw_verify_area+0xcf/0x680 [ 536.449930][T14790] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 536.449978][T14790] vfs_read+0x1df/0xbf0 [ 536.450009][T14790] ? __pfx_vfs_read+0x10/0x10 [ 536.450052][T14790] ksys_read+0x12b/0x250 [ 536.450080][T14790] ? __pfx_ksys_read+0x10/0x10 [ 536.450113][T14790] ? rcu_is_watching+0x12/0xc0 [ 536.450160][T14790] ? rcu_is_watching+0x12/0xc0 [ 536.450233][T14790] do_syscall_64+0xcd/0x250 [ 536.450263][T14790] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 536.450311][T14790] RIP: 0033:0x7f801f78b7fc [ 536.450343][T14790] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 536.450375][T14790] RSP: 002b:00007f802056d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 536.450406][T14790] RAX: ffffffffffffffda RBX: 00007f801f9a5fa0 RCX: 00007f801f78b7fc [ 536.450429][T14790] RDX: 000000000000000f RSI: 00007f802056d0a0 RDI: 0000000000000002 [ 536.450450][T14790] RBP: 00007f802056d090 R08: 0000000000000000 R09: 0000000000000000 [ 536.450479][T14790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 536.450502][T14790] R13: 0000000000000000 R14: 00007f801f9a5fa0 R15: 00007ffc60a74ba8 [ 536.450528][T14790] [ 537.815569][ T29] audit: type=1800 audit(4294967362.124:21): pid=14820 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2096" name="dbroot" dev="configfs" ino=45972 res=0 errno=0 [ 537.816579][T14820] Process accounting resumed [ 537.992683][T14826] netlink: 338 bytes leftover after parsing attributes in process `syz.1.2097'. [ 538.334114][ T5846] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 538.344980][ T5846] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 538.355093][ T5846] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 538.376096][ T5846] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 538.388158][ T5846] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 538.398155][ T5846] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 538.658293][T14845] netlink: 'syz.2.2101': attribute type 1 has an invalid length. [ 538.713217][T14829] chnl_net:caif_netlink_parms(): no params data found [ 538.930561][T14829] bridge0: port 1(bridge_slave_0) entered blocking state [ 538.949564][T14829] bridge0: port 1(bridge_slave_0) entered disabled state [ 538.963657][T14829] bridge_slave_0: entered allmulticast mode [ 538.978195][T14829] bridge_slave_0: entered promiscuous mode [ 538.989118][T14829] bridge0: port 2(bridge_slave_1) entered blocking state [ 539.013139][T14829] bridge0: port 2(bridge_slave_1) entered disabled state [ 539.022061][T14829] bridge_slave_1: entered allmulticast mode [ 539.031410][T14829] bridge_slave_1: entered promiscuous mode [ 539.089171][T14857] Invalid ELF header magic: != ELF [ 539.120232][T14829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 539.155281][T14829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 539.224287][T14829] team0: Port device team_slave_0 added [ 539.246690][T14829] team0: Port device team_slave_1 added [ 539.311002][T14829] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 539.319770][T14829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 539.351235][T14829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 539.365388][T14829] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 539.374119][T14829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 539.405412][T14829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 539.523690][T14829] hsr_slave_0: entered promiscuous mode [ 539.540145][T14829] hsr_slave_1: entered promiscuous mode [ 539.559204][T14829] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 539.575874][T14829] Cannot create hsr debugfs directory [ 539.952806][T14829] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 540.046973][T14829] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 540.186113][T14829] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 540.334764][T14829] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 540.449375][ T5846] Bluetooth: hci3: command tx timeout [ 540.583046][T14868] caif:caif_disconnect_client(): nothing to disconnect [ 540.698959][T14829] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 540.771663][T14829] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 540.801566][T14829] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 540.822066][T14829] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 540.977878][T14829] 8021q: adding VLAN 0 to HW filter on device bond0 [ 541.018903][T14829] 8021q: adding VLAN 0 to HW filter on device team0 [ 541.122587][T14829] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 541.170087][T14829] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 541.224476][T14457] bridge0: port 1(bridge_slave_0) entered blocking state [ 541.233046][T14457] bridge0: port 1(bridge_slave_0) entered forwarding state [ 541.257978][T14457] bridge0: port 2(bridge_slave_1) entered blocking state [ 541.266574][T14457] bridge0: port 2(bridge_slave_1) entered forwarding state [ 541.627979][T14829] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 541.665333][T14829] veth0_vlan: entered promiscuous mode [ 541.684396][T14829] veth1_vlan: entered promiscuous mode [ 541.721288][T14829] veth0_macvtap: entered promiscuous mode [ 541.743922][T14829] veth1_macvtap: entered promiscuous mode [ 541.774848][T14829] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 541.819410][T14829] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 541.839398][T14829] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 541.863056][T14829] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 541.886485][T14829] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 541.901868][T14829] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 541.929584][T14829] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 541.962582][T14829] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 541.985634][T14829] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 542.009108][T14829] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 542.038870][T14829] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 542.065035][T14829] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 542.069647][T14876] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 542.084284][T14829] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 542.095884][T14829] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 542.118596][T14876] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 542.133466][T14876] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 542.147433][T14876] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 542.156529][T14876] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 542.171951][T14876] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 542.197719][T14829] ieee80211 phy27: Selected rate control algorithm 'minstrel_ht' [ 542.297605][T14829] ieee80211 phy28: Selected rate control algorithm 'minstrel_ht' [ 542.307515][T14457] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 542.318720][T14457] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 542.378390][T14457] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 542.392091][T14457] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 542.849610][ T5846] Bluetooth: hci0: command 0x0c1a tx timeout [ 543.074823][T14928] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2120'. [ 543.098003][T14928] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2120'. [ 543.160325][T14928] netlink: 134 bytes leftover after parsing attributes in process `syz.0.2120'. [ 543.461422][T14943] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2122'. [ 543.949990][T14954] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2126'. [ 544.129455][ T5846] Bluetooth: hci1: command 0x0c1a tx timeout [ 544.209545][ T5846] Bluetooth: hci3: command 0x040f tx timeout [ 544.209649][ T5845] Bluetooth: hci2: command 0x0c1a tx timeout [ 544.380251][T14958] nbd0: detected capacity change from 0 to 68719476736 [ 544.404666][ T6529] block nbd0: Send control failed (result -22) [ 544.431006][ T6529] block nbd0: Request send failed, requeueing [ 544.454929][ T5845] block nbd0: Receive control failed (result -32) [ 544.463713][T11652] block nbd0: Dead connection, failed to find a fallback [ 544.472249][T11652] block nbd0: shutting down sockets [ 544.478586][T11652] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 544.490021][T11652] Buffer I/O error on dev nbd0, logical block 0, async page read [ 544.499565][ T6529] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 544.510553][ T6529] Buffer I/O error on dev nbd0, logical block 0, async page read [ 544.520106][ T6529] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 544.531573][ T6529] Buffer I/O error on dev nbd0, logical block 0, async page read [ 544.541595][ T6529] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 544.559338][ T6529] Buffer I/O error on dev nbd0, logical block 0, async page read [ 544.568793][ T6529] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 544.580400][ T6529] Buffer I/O error on dev nbd0, logical block 0, async page read [ 544.590433][ T6529] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 544.601397][ T6529] Buffer I/O error on dev nbd0, logical block 0, async page read [ 544.615490][ T6529] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 544.626430][ T6529] Buffer I/O error on dev nbd0, logical block 0, async page read [ 544.635967][ T6529] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 544.637895][T14964] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2130'. [ 544.646971][ T6529] Buffer I/O error on dev nbd0, logical block 0, async page read [ 544.647082][ T6529] ldm_validate_partition_table(): Disk read failed. [ 544.647171][ T6529] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 544.647204][ T6529] Buffer I/O error on dev nbd0, logical block 0, async page read [ 544.697128][T14968] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2130'. [ 544.729490][ T6529] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 544.740588][ T6529] Buffer I/O error on dev nbd0, logical block 0, async page read [ 544.750187][ T6529] Dev nbd0: unable to read RDB block 0 [ 544.759248][T14964] netlink: 134 bytes leftover after parsing attributes in process `syz.0.2130'. [ 544.761657][ T6529] nbd0: unable to read partition table [ 544.780229][T14970] FAULT_INJECTION: forcing a failure. [ 544.780229][T14970] name failslab, interval 1, probability 0, space 0, times 0 [ 544.808406][ T6529] ldm_validate_partition_table(): Disk read failed. [ 544.827106][ T6529] Dev nbd0: unable to read RDB block 0 [ 544.846367][ T6529] nbd0: unable to read partition table [ 544.867444][T14970] CPU: 0 UID: 0 PID: 14970 Comm: syz.2.2132 Tainted: G U 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0 [ 544.867491][T14970] Tainted: [U]=USER [ 544.867501][T14970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 544.867518][T14970] Call Trace: [ 544.867527][T14970] [ 544.867537][T14970] dump_stack_lvl+0x16c/0x1f0 [ 544.867589][T14970] should_fail_ex+0x50a/0x650 [ 544.867626][T14970] ? fs_reclaim_acquire+0xae/0x150 [ 544.867677][T14970] should_failslab+0xc2/0x120 [ 544.867716][T14970] __kmalloc_noprof+0xce/0x4f0 [ 544.867751][T14970] ? tomoyo_realpath_from_path+0xbf/0x710 [ 544.867794][T14970] tomoyo_realpath_from_path+0xbf/0x710 [ 544.867835][T14970] ? tomoyo_path_number_perm+0x235/0x5b0 [ 544.867869][T14970] tomoyo_path_number_perm+0x248/0x5b0 [ 544.867898][T14970] ? tomoyo_path_number_perm+0x235/0x5b0 [ 544.867931][T14970] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 544.867963][T14970] ? rcu_is_watching+0x12/0xc0 [ 544.868027][T14970] ? preempt_count_add+0x76/0x150 [ 544.868067][T14970] ? __pfx_lock_release+0x10/0x10 [ 544.868101][T14970] ? trace_lock_acquire+0x14e/0x1f0 [ 544.868130][T14970] ? __fget_files+0x40/0x3a0 [ 544.868161][T14970] ? lock_acquire+0x2f/0xb0 [ 544.868192][T14970] ? __fget_files+0x40/0x3a0 [ 544.868252][T14970] ? __fget_files+0x206/0x3a0 [ 544.868286][T14970] security_file_ioctl+0x9b/0x240 [ 544.868320][T14970] __x64_sys_ioctl+0xb7/0x200 [ 544.868366][T14970] do_syscall_64+0xcd/0x250 [ 544.868395][T14970] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 544.868439][T14970] RIP: 0033:0x7f695718cde9 [ 544.868461][T14970] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 544.868489][T14970] RSP: 002b:00007f695803a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 544.868515][T14970] RAX: ffffffffffffffda RBX: 00007f69573a5fa0 RCX: 00007f695718cde9 [ 544.868534][T14970] RDX: 0000400000000080 RSI: 00000000c0104d04 RDI: 0000000000000003 [ 544.868551][T14970] RBP: 00007f695803a090 R08: 0000000000000000 R09: 0000000000000000 [ 544.868568][T14970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 544.868585][T14970] R13: 0000000000000000 R14: 00007f69573a5fa0 R15: 00007ffc13caa998 [ 544.868611][T14970] [ 544.868622][T14970] ERROR: Out of memory at tomoyo_realpath_from_path. [ 545.312194][T14986] Process accounting resumed [ 545.405564][T14990] FAULT_INJECTION: forcing a failure. [ 545.405564][T14990] name failslab, interval 1, probability 0, space 0, times 0 [ 545.447030][T14990] CPU: 1 UID: 0 PID: 14990 Comm: syz.2.2137 Tainted: G U 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0 [ 545.447080][T14990] Tainted: [U]=USER [ 545.447090][T14990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 545.447109][T14990] Call Trace: [ 545.447118][T14990] [ 545.447130][T14990] dump_stack_lvl+0x16c/0x1f0 [ 545.447269][T14990] should_fail_ex+0x50a/0x650 [ 545.447310][T14990] ? fs_reclaim_acquire+0xae/0x150 [ 545.447362][T14990] ? shrinker_alloc+0xf8/0xb00 [ 545.447412][T14990] should_failslab+0xc2/0x120 [ 545.447466][T14990] __kmalloc_cache_noprof+0x68/0x420 [ 545.447499][T14990] ? lock_release+0x4e2/0x6f0 [ 545.447536][T14990] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 545.447590][T14990] shrinker_alloc+0xf8/0xb00 [ 545.447640][T14990] ? rcu_is_watching+0x12/0xc0 [ 545.447687][T14990] ? trace_irq_enable.constprop.0+0xea/0x140 [ 545.447730][T14990] ? rcu_is_watching+0x12/0xc0 [ 545.447778][T14990] ? __pfx_shrinker_alloc+0x10/0x10 [ 545.447829][T14990] ? lockdep_init_map_type+0x16d/0x7d0 [ 545.447869][T14990] ? lockdep_init_map_type+0x16d/0x7d0 [ 545.447911][T14990] ? __raw_spin_lock_init+0x3a/0x110 [ 545.447955][T14990] ? __init_rwsem+0x12d/0x1b0 [ 545.447997][T14990] alloc_super+0x7cc/0xbd0 [ 545.448030][T14990] sget_fc+0x116/0xb90 [ 545.448059][T14990] ? __pfx_set_anon_super_fc+0x10/0x10 [ 545.448109][T14990] ? __pfx_mqueue_fill_super+0x10/0x10 [ 545.448156][T14990] get_tree_nodev+0x28/0x190 [ 545.448186][T14990] mqueue_get_tree+0xf1/0x130 [ 545.448227][T14990] vfs_get_tree+0x8b/0x340 [ 545.448272][T14990] fc_mount+0x16/0xc0 [ 545.448316][T14990] mq_init_ns+0x426/0x620 [ 545.448347][T14990] copy_ipcs+0x383/0x610 [ 545.448375][T14990] ? copy_utsname+0xab/0x480 [ 545.448414][T14990] create_new_namespaces+0x20a/0xad0 [ 545.448468][T14990] ? security_capable+0x7e/0x260 [ 545.448518][T14990] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 545.448568][T14990] ksys_unshare+0x45d/0xa40 [ 545.448618][T14990] ? __pfx_ksys_unshare+0x10/0x10 [ 545.448666][T14990] ? xfd_validate_state+0x5d/0x180 [ 545.448710][T14990] ? rcu_is_watching+0x12/0xc0 [ 545.448761][T14990] __x64_sys_unshare+0x31/0x40 [ 545.448810][T14990] do_syscall_64+0xcd/0x250 [ 545.448840][T14990] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 545.448885][T14990] RIP: 0033:0x7f695718cde9 [ 545.448908][T14990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 545.448939][T14990] RSP: 002b:00007f695803a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 545.448967][T14990] RAX: ffffffffffffffda RBX: 00007f69573a5fa0 RCX: 00007f695718cde9 [ 545.448985][T14990] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000400 [ 545.449002][T14990] RBP: 00007f695720e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 545.449020][T14990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 545.449037][T14990] R13: 0000000000000000 R14: 00007f69573a5fa0 R15: 00007ffc13caa998 [ 545.449064][T14990] [ 546.170709][T15014] FAULT_INJECTION: forcing a failure. [ 546.170709][T15014] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 546.189473][T15014] CPU: 1 UID: 0 PID: 15014 Comm: syz.2.2144 Tainted: G U 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0 [ 546.189519][T15014] Tainted: [U]=USER [ 546.189529][T15014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 546.189546][T15014] Call Trace: [ 546.189554][T15014] [ 546.189565][T15014] dump_stack_lvl+0x16c/0x1f0 [ 546.189618][T15014] should_fail_ex+0x50a/0x650 [ 546.189656][T15014] _copy_to_user+0x32/0xd0 [ 546.189699][T15014] simple_read_from_buffer+0xd0/0x160 [ 546.189749][T15014] proc_fail_nth_read+0x198/0x270 [ 546.189792][T15014] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 546.189835][T15014] ? security_file_permission+0x71/0x210 [ 546.189871][T15014] ? rw_verify_area+0xcf/0x680 [ 546.189912][T15014] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 546.189954][T15014] vfs_read+0x1df/0xbf0 [ 546.189982][T15014] ? __fget_files+0x1fc/0x3a0 [ 546.190012][T15014] ? __pfx___mutex_lock+0x10/0x10 [ 546.190061][T15014] ? __pfx_vfs_read+0x10/0x10 [ 546.190102][T15014] ? __fget_files+0x206/0x3a0 [ 546.190137][T15014] ksys_read+0x12b/0x250 [ 546.190165][T15014] ? __pfx_ksys_read+0x10/0x10 [ 546.190196][T15014] ? rcu_is_watching+0x12/0xc0 [ 546.190243][T15014] ? rcu_is_watching+0x12/0xc0 [ 546.190289][T15014] do_syscall_64+0xcd/0x250 [ 546.190319][T15014] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 546.190363][T15014] RIP: 0033:0x7f695718b7fc [ 546.190385][T15014] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 546.190415][T15014] RSP: 002b:00007f695803a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 546.190441][T15014] RAX: ffffffffffffffda RBX: 00007f69573a5fa0 RCX: 00007f695718b7fc [ 546.190459][T15014] RDX: 000000000000000f RSI: 00007f695803a0a0 RDI: 0000000000000005 [ 546.190475][T15014] RBP: 00007f695803a090 R08: 0000000000000000 R09: 0000000000000000 [ 546.190491][T15014] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 546.190507][T15014] R13: 0000000000000000 R14: 00007f69573a5fa0 R15: 00007ffc13caa998 [ 546.190532][T15014] [ 546.450407][ T5845] Bluetooth: hci3: command 0x040f tx timeout [ 546.657189][T15021] FAULT_INJECTION: forcing a failure. [ 546.657189][T15021] name failslab, interval 1, probability 0, space 0, times 0 [ 546.673119][T15021] CPU: 1 UID: 0 PID: 15021 Comm: syz.3.2148 Tainted: G U 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0 [ 546.673162][T15021] Tainted: [U]=USER [ 546.673172][T15021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 546.673189][T15021] Call Trace: [ 546.673198][T15021] [ 546.673208][T15021] dump_stack_lvl+0x16c/0x1f0 [ 546.673260][T15021] should_fail_ex+0x50a/0x650 [ 546.673305][T15021] ? fs_reclaim_acquire+0xae/0x150 [ 546.673354][T15021] should_failslab+0xc2/0x120 [ 546.673392][T15021] __kmalloc_noprof+0xce/0x4f0 [ 546.673425][T15021] ? d_absolute_path+0x137/0x1b0 [ 546.673464][T15021] ? tomoyo_encode2+0x100/0x3e0 [ 546.673504][T15021] tomoyo_encode2+0x100/0x3e0 [ 546.673541][T15021] tomoyo_realpath_from_path+0x1a7/0x710 [ 546.673586][T15021] tomoyo_path_number_perm+0x248/0x5b0 [ 546.673617][T15021] ? tomoyo_path_number_perm+0x235/0x5b0 [ 546.673649][T15021] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 546.673680][T15021] ? rcu_is_watching+0x12/0xc0 [ 546.673730][T15021] ? preempt_count_add+0x76/0x150 [ 546.673773][T15021] ? __pfx_lock_release+0x10/0x10 [ 546.673807][T15021] ? trace_lock_acquire+0x14e/0x1f0 [ 546.673835][T15021] ? __fget_files+0x40/0x3a0 [ 546.673867][T15021] ? lock_acquire+0x2f/0xb0 [ 546.673900][T15021] ? __fget_files+0x40/0x3a0 [ 546.673933][T15021] ? __fget_files+0x206/0x3a0 [ 546.673966][T15021] security_file_ioctl+0x9b/0x240 [ 546.674001][T15021] __x64_sys_ioctl+0xb7/0x200 [ 546.674049][T15021] do_syscall_64+0xcd/0x250 [ 546.674077][T15021] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 546.674121][T15021] RIP: 0033:0x7f37f7d8cde9 [ 546.674142][T15021] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 546.674169][T15021] RSP: 002b:00007f37f8bd8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 546.674192][T15021] RAX: ffffffffffffffda RBX: 00007f37f7fa5fa0 RCX: 00007f37f7d8cde9 [ 546.674209][T15021] RDX: 0000400000000080 RSI: 00000000c0104d04 RDI: 0000000000000003 [ 546.674225][T15021] RBP: 00007f37f8bd8090 R08: 0000000000000000 R09: 0000000000000000 [ 546.674240][T15021] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 546.674254][T15021] R13: 0000000000000000 R14: 00007f37f7fa5fa0 R15: 00007fff85a1d678 [ 546.674277][T15021] [ 546.674304][T15021] ERROR: Out of memory at tomoyo_realpath_from_path. [ 548.184392][T15080] nbd: must specify an index to disconnect [ 548.216036][T15083] FAULT_INJECTION: forcing a failure. [ 548.216036][T15083] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 548.282734][T15083] CPU: 0 UID: 0 PID: 15083 Comm: syz.3.2162 Tainted: G U 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0 [ 548.282782][T15083] Tainted: [U]=USER [ 548.282791][T15083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 548.282809][T15083] Call Trace: [ 548.282818][T15083] [ 548.282828][T15083] dump_stack_lvl+0x16c/0x1f0 [ 548.282880][T15083] should_fail_ex+0x50a/0x650 [ 548.282919][T15083] _copy_from_user+0x2e/0xd0 [ 548.282971][T15083] mtdchar_ioctl+0x5b4/0x2050 [ 548.283005][T15083] ? __pfx_mtdchar_ioctl+0x10/0x10 [ 548.283039][T15083] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 548.283072][T15083] ? __mutex_trylock_common+0xea/0x250 [ 548.283113][T15083] ? __pfx___mutex_trylock_common+0x10/0x10 [ 548.283153][T15083] ? mtdchar_unlocked_ioctl+0xa2/0xf0 [ 548.283191][T15083] ? __mutex_lock+0x1cc/0xb10 [ 548.283243][T15083] ? mtdchar_unlocked_ioctl+0xa2/0xf0 [ 548.283278][T15083] ? __pfx___mutex_lock+0x10/0x10 [ 548.283326][T15083] ? __pfx_lock_release+0x10/0x10 [ 548.283374][T15083] mtdchar_unlocked_ioctl+0xb0/0xf0 [ 548.283407][T15083] ? __pfx_mtdchar_unlocked_ioctl+0x10/0x10 [ 548.283442][T15083] __x64_sys_ioctl+0x190/0x200 [ 548.283490][T15083] do_syscall_64+0xcd/0x250 [ 548.283519][T15083] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 548.283563][T15083] RIP: 0033:0x7f37f7d8cde9 [ 548.283584][T15083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 548.283613][T15083] RSP: 002b:00007f37f8bd8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 548.283640][T15083] RAX: ffffffffffffffda RBX: 00007f37f7fa5fa0 RCX: 00007f37f7d8cde9 [ 548.283659][T15083] RDX: 0000400000000080 RSI: 00000000c0104d04 RDI: 0000000000000003 [ 548.283677][T15083] RBP: 00007f37f8bd8090 R08: 0000000000000000 R09: 0000000000000000 [ 548.283694][T15083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 548.283711][T15083] R13: 0000000000000000 R14: 00007f37f7fa5fa0 R15: 00007fff85a1d678 [ 548.283738][T15083] [ 548.499749][T15069] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 548.614461][T15069] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 548.700308][ T5845] Bluetooth: hci3: command 0x040f tx timeout [ 548.709382][T15069] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 548.716629][T15069] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 549.509758][T15116] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2171'. [ 549.809507][T12122] Bluetooth: hci0: command 0x0c1a tx timeout [ 550.012443][T15132] FAULT_INJECTION: forcing a failure. [ 550.012443][T15132] name failslab, interval 1, probability 0, space 0, times 0 [ 550.032767][T15132] CPU: 1 UID: 0 PID: 15132 Comm: syz.0.2174 Tainted: G U 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0 [ 550.032816][T15132] Tainted: [U]=USER [ 550.032826][T15132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 550.032844][T15132] Call Trace: [ 550.032853][T15132] [ 550.032864][T15132] dump_stack_lvl+0x16c/0x1f0 [ 550.032917][T15132] should_fail_ex+0x50a/0x650 [ 550.032961][T15132] ? fs_reclaim_acquire+0xae/0x150 [ 550.033011][T15132] should_failslab+0xc2/0x120 [ 550.033051][T15132] __kmalloc_noprof+0xce/0x4f0 [ 550.033085][T15132] ? mtdchar_readoob.isra.0+0x1a3/0x3d0 [ 550.033121][T15132] mtdchar_readoob.isra.0+0x1a3/0x3d0 [ 550.033154][T15132] ? __pfx_mtdchar_readoob.isra.0+0x10/0x10 [ 550.033191][T15132] ? __might_fault+0xe3/0x190 [ 550.033236][T15132] mtdchar_ioctl+0xc19/0x2050 [ 550.033268][T15132] ? __pfx_mtdchar_ioctl+0x10/0x10 [ 550.033300][T15132] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 550.033333][T15132] ? __mutex_trylock_common+0xea/0x250 [ 550.033372][T15132] ? __pfx___mutex_trylock_common+0x10/0x10 [ 550.033410][T15132] ? mtdchar_unlocked_ioctl+0xa2/0xf0 [ 550.033448][T15132] ? __mutex_lock+0x1cc/0xb10 [ 550.033497][T15132] ? mtdchar_unlocked_ioctl+0xa2/0xf0 [ 550.033532][T15132] ? __pfx___mutex_lock+0x10/0x10 [ 550.033579][T15132] ? __pfx_lock_release+0x10/0x10 [ 550.033625][T15132] mtdchar_unlocked_ioctl+0xb0/0xf0 [ 550.033658][T15132] ? __pfx_mtdchar_unlocked_ioctl+0x10/0x10 [ 550.033692][T15132] __x64_sys_ioctl+0x190/0x200 [ 550.033739][T15132] do_syscall_64+0xcd/0x250 [ 550.033768][T15132] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 550.033811][T15132] RIP: 0033:0x7f152f78cde9 [ 550.033833][T15132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 550.033863][T15132] RSP: 002b:00007f15305aa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 550.033891][T15132] RAX: ffffffffffffffda RBX: 00007f152f9a5fa0 RCX: 00007f152f78cde9 [ 550.033909][T15132] RDX: 0000400000000080 RSI: 00000000c0104d04 RDI: 0000000000000003 [ 550.033927][T15132] RBP: 00007f15305aa090 R08: 0000000000000000 R09: 0000000000000000 [ 550.033944][T15132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 550.033969][T15132] R13: 0000000000000000 R14: 00007f152f9a5fa0 R15: 00007fff67279498 [ 550.033996][T15132] [ 550.772860][T12122] Bluetooth: hci3: command 0x040f tx timeout [ 550.772874][ T5846] Bluetooth: hci2: command 0x0c1a tx timeout [ 550.772914][ T5846] Bluetooth: hci1: command 0x0c1a tx timeout [ 551.720362][T15166] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2182'. [ 551.750298][T15166] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2182'. [ 551.772538][T15166] netlink: 134 bytes leftover after parsing attributes in process `syz.0.2182'. [ 551.910337][T15171] FAULT_INJECTION: forcing a failure. [ 551.910337][T15171] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 551.947039][T15171] CPU: 1 UID: 0 PID: 15171 Comm: syz.0.2184 Tainted: G U 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0 [ 551.947089][T15171] Tainted: [U]=USER [ 551.947099][T15171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 551.947116][T15171] Call Trace: [ 551.947125][T15171] [ 551.947136][T15171] dump_stack_lvl+0x16c/0x1f0 [ 551.947187][T15171] should_fail_ex+0x50a/0x650 [ 551.947229][T15171] _copy_to_user+0x32/0xd0 [ 551.947273][T15171] simple_read_from_buffer+0xd0/0x160 [ 551.947324][T15171] proc_fail_nth_read+0x198/0x270 [ 551.947369][T15171] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 551.947414][T15171] ? security_file_permission+0x71/0x210 [ 551.947451][T15171] ? rw_verify_area+0xcf/0x680 [ 551.947497][T15171] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 551.947539][T15171] vfs_read+0x1df/0xbf0 [ 551.947567][T15171] ? __fget_files+0x1fc/0x3a0 [ 551.947598][T15171] ? __pfx___mutex_lock+0x10/0x10 [ 551.947647][T15171] ? __pfx_vfs_read+0x10/0x10 [ 551.947681][T15171] ? __fget_files+0x206/0x3a0 [ 551.947716][T15171] ksys_read+0x12b/0x250 [ 551.947744][T15171] ? __pfx_ksys_read+0x10/0x10 [ 551.947773][T15171] ? rcu_is_watching+0x12/0xc0 [ 551.947828][T15171] ? rcu_is_watching+0x12/0xc0 [ 551.947872][T15171] do_syscall_64+0xcd/0x250 [ 551.947902][T15171] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 551.947945][T15171] RIP: 0033:0x7f152f78b7fc [ 551.947968][T15171] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 551.947997][T15171] RSP: 002b:00007f15305aa030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 551.948026][T15171] RAX: ffffffffffffffda RBX: 00007f152f9a5fa0 RCX: 00007f152f78b7fc [ 551.948045][T15171] RDX: 000000000000000f RSI: 00007f15305aa0a0 RDI: 0000000000000004 [ 551.948062][T15171] RBP: 00007f15305aa090 R08: 0000000000000000 R09: 0000000000000000 [ 551.948079][T15171] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 551.948096][T15171] R13: 0000000000000000 R14: 00007f152f9a5fa0 R15: 00007fff67279498 [ 551.948122][T15171] [ 552.672839][T15177] sd 0:0:1:0: PR command failed: 1026 [ 552.679470][T15177] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 552.687557][T15177] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 552.849355][ T5846] Bluetooth: hci3: command 0x040f tx timeout [ 555.087188][T15244] FAULT_INJECTION: forcing a failure. [ 555.087188][T15244] name failslab, interval 1, probability 0, space 0, times 0 [ 555.102825][T15244] CPU: 1 UID: 0 PID: 15244 Comm: syz.2.2209 Tainted: G U 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0 [ 555.102873][T15244] Tainted: [U]=USER [ 555.102884][T15244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 555.102901][T15244] Call Trace: [ 555.102909][T15244] [ 555.102919][T15244] dump_stack_lvl+0x16c/0x1f0 [ 555.102973][T15244] should_fail_ex+0x50a/0x650 [ 555.103013][T15244] ? fs_reclaim_acquire+0xae/0x150 [ 555.103068][T15244] ? tbl_mask_cache_alloc+0xa1/0x200 [ 555.103108][T15244] should_failslab+0xc2/0x120 [ 555.103148][T15244] __kmalloc_cache_noprof+0x68/0x420 [ 555.103186][T15244] tbl_mask_cache_alloc+0xa1/0x200 [ 555.103225][T15244] ovs_flow_tbl_init+0x24/0x600 [ 555.103263][T15244] ? kasan_save_track+0x14/0x30 [ 555.103296][T15244] ovs_dp_cmd_new+0x252/0xe50 [ 555.103342][T15244] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 555.103389][T15244] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 555.103447][T15244] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 555.103516][T15244] genl_family_rcv_msg_doit+0x202/0x2f0 [ 555.103571][T15244] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 555.103624][T15244] ? trace_cap_capable+0x1a2/0x210 [ 555.103678][T15244] ? bpf_lsm_capable+0x9/0x10 [ 555.103723][T15244] ? security_capable+0x7e/0x260 [ 555.103771][T15244] ? ns_capable+0xd7/0x110 [ 555.103813][T15244] genl_rcv_msg+0x565/0x800 [ 555.103845][T15244] ? __pfx_genl_rcv_msg+0x10/0x10 [ 555.103875][T15244] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 555.103924][T15244] netlink_rcv_skb+0x165/0x410 [ 555.103971][T15244] ? __pfx_genl_rcv_msg+0x10/0x10 [ 555.104003][T15244] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 555.104056][T15244] ? down_read+0xc9/0x330 [ 555.104087][T15244] ? __pfx_down_read+0x10/0x10 [ 555.104118][T15244] ? netlink_deliver_tap+0x1ae/0xca0 [ 555.104164][T15244] genl_rcv+0x28/0x40 [ 555.104211][T15244] netlink_unicast+0x53c/0x7f0 [ 555.104258][T15244] ? __pfx_netlink_unicast+0x10/0x10 [ 555.104305][T15244] ? __phys_addr_symbol+0x30/0x80 [ 555.104356][T15244] ? __check_object_size+0x488/0x710 [ 555.104397][T15244] netlink_sendmsg+0x8b8/0xd70 [ 555.104442][T15244] ? __pfx_netlink_sendmsg+0x10/0x10 [ 555.104496][T15244] ____sys_sendmsg+0x9ae/0xb40 [ 555.104549][T15244] ? copy_msghdr_from_user+0x10b/0x160 [ 555.104582][T15244] ? __pfx_____sys_sendmsg+0x10/0x10 [ 555.104634][T15244] ___sys_sendmsg+0x135/0x1e0 [ 555.104668][T15244] ? __pfx____sys_sendmsg+0x10/0x10 [ 555.104708][T15244] ? __pfx_lock_release+0x10/0x10 [ 555.104745][T15244] ? trace_lock_acquire+0x14e/0x1f0 [ 555.104780][T15244] ? __fget_files+0x206/0x3a0 [ 555.104816][T15244] __sys_sendmsg+0x16e/0x220 [ 555.104848][T15244] ? __pfx___sys_sendmsg+0x10/0x10 [ 555.104879][T15244] ? __x64_sys_futex+0x1e1/0x4c0 [ 555.104917][T15244] ? rcu_is_watching+0x12/0xc0 [ 555.104965][T15244] ? rcu_is_watching+0x12/0xc0 [ 555.105015][T15244] do_syscall_64+0xcd/0x250 [ 555.105046][T15244] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 555.105091][T15244] RIP: 0033:0x7f695718cde9 [ 555.105115][T15244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 555.105146][T15244] RSP: 002b:00007f695803a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 555.105175][T15244] RAX: ffffffffffffffda RBX: 00007f69573a5fa0 RCX: 00007f695718cde9 [ 555.105196][T15244] RDX: 0000000002000000 RSI: 0000400000000080 RDI: 0000000000000009 [ 555.105216][T15244] RBP: 00007f695720e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 555.105234][T15244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 555.105252][T15244] R13: 0000000000000000 R14: 00007f69573a5fa0 R15: 00007ffc13caa998 [ 555.105281][T15244] [ 556.389997][T15264] netlink: 338 bytes leftover after parsing attributes in process `syz.2.2216'. [ 556.421745][T15264] netlink: 338 bytes leftover after parsing attributes in process `syz.2.2216'. [ 556.462768][T15264] netlink: 166 bytes leftover after parsing attributes in process `syz.2.2216'. [ 556.871317][ T29] audit: type=1326 audit(4294967381.184:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15271 comm="syz.0.2219" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f152f78cde9 code=0x0 [ 557.634651][T15301] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2226'. [ 557.710534][T15271] Process accounting resumed [ 557.850673][T15306] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2228'. [ 558.284585][T15328] ptrace attach of "./syz-executor exec"[5832] was attempted by "./syz-executor exec"[15328] [ 559.164077][ T29] audit: type=1800 audit(4294967383.474:23): pid=15351 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2242" name="dbroot" dev="configfs" ino=50427 res=0 errno=0 [ 560.242661][T15386] netlink: 338 bytes leftover after parsing attributes in process `syz.1.2253'. [ 561.352978][ T5845] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 561.378784][ T5845] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 561.389894][ T5845] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 561.400341][ T5845] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 561.409357][ T5845] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 561.418006][ T5845] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 561.454349][T15407] netlink: 156 bytes leftover after parsing attributes in process `syz.2.2257'. [ 561.624161][T15404] chnl_net:caif_netlink_parms(): no params data found [ 561.743289][T15404] bridge0: port 1(bridge_slave_0) entered blocking state [ 561.754376][T15404] bridge0: port 1(bridge_slave_0) entered disabled state [ 561.763730][T15404] bridge_slave_0: entered allmulticast mode [ 561.772537][T15404] bridge_slave_0: entered promiscuous mode [ 561.781473][T15404] bridge0: port 2(bridge_slave_1) entered blocking state [ 561.790478][T15404] bridge0: port 2(bridge_slave_1) entered disabled state [ 561.799098][T15404] bridge_slave_1: entered allmulticast mode [ 561.807419][T15404] bridge_slave_1: entered promiscuous mode [ 561.844869][T15404] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 561.858418][T15404] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 561.890604][T15404] team0: Port device team_slave_0 added [ 561.900430][T15404] team0: Port device team_slave_1 added [ 561.923882][T15404] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 561.959754][T15404] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 562.019328][T15404] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 562.048116][T15404] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 562.060019][T15404] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 562.134627][T15404] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 562.241805][T15404] hsr_slave_0: entered promiscuous mode [ 562.252071][T15404] hsr_slave_1: entered promiscuous mode [ 562.259779][T15404] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 562.279090][T15404] Cannot create hsr debugfs directory [ 562.412828][T15404] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 562.420743][T15444] cgroup: fork rejected by pids controller in /syz2 [ 562.437463][T15445] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2268'. [ 562.628181][T15404] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 562.694534][T15404] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 562.755830][T15404] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 562.864845][T15528] mkiss: ax0: crc mode is auto. [ 562.929576][T15404] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 562.944678][T15404] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 562.966887][T15404] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 562.978347][T15404] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 563.066315][T15404] 8021q: adding VLAN 0 to HW filter on device bond0 [ 563.131722][T15404] 8021q: adding VLAN 0 to HW filter on device team0 [ 563.155541][ T6311] bridge0: port 1(bridge_slave_0) entered blocking state [ 563.164089][ T6311] bridge0: port 1(bridge_slave_0) entered forwarding state [ 563.196145][ T6311] bridge0: port 2(bridge_slave_1) entered blocking state [ 563.204742][ T6311] bridge0: port 2(bridge_slave_1) entered forwarding state [ 563.238844][T15404] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 563.487027][T15404] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 563.495721][ T5846] Bluetooth: hci4: command tx timeout [ 563.617801][T15404] veth0_vlan: entered promiscuous mode [ 563.638154][T15404] veth1_vlan: entered promiscuous mode [ 563.650195][T15551] netlink: 338 bytes leftover after parsing attributes in process `syz.2.2279'. [ 563.693248][T15404] veth0_macvtap: entered promiscuous mode [ 563.703577][T15551] netlink: 338 bytes leftover after parsing attributes in process `syz.2.2279'. [ 563.727238][T15404] veth1_macvtap: entered promiscuous mode [ 563.765302][T15404] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 563.789666][T15404] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 563.818248][T15404] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 563.833038][T15404] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 563.848830][T15404] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 563.866045][T15404] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 563.909713][T15404] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 563.922374][T15551] netlink: 210 bytes leftover after parsing attributes in process `syz.2.2279'. [ 563.951134][T15404] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 563.989365][T15404] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 564.036362][T15404] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 564.066013][T15570] FAULT_INJECTION: forcing a failure. [ 564.066013][T15570] name failslab, interval 1, probability 0, space 0, times 0 [ 564.069407][T15404] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 564.099338][T15404] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 564.100366][T15570] CPU: 0 UID: 0 PID: 15570 Comm: syz.2.2284 Tainted: G U 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0 [ 564.100421][T15570] Tainted: [U]=USER [ 564.100431][T15570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 564.100451][T15570] Call Trace: [ 564.100461][T15570] [ 564.100471][T15570] dump_stack_lvl+0x16c/0x1f0 [ 564.100529][T15570] should_fail_ex+0x50a/0x650 [ 564.100569][T15570] ? fs_reclaim_acquire+0xae/0x150 [ 564.100622][T15570] should_failslab+0xc2/0x120 [ 564.100663][T15570] __kmalloc_node_noprof+0xd1/0x520 [ 564.100702][T15570] ? __pfx___mutex_lock+0x10/0x10 [ 564.100753][T15570] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 564.100789][T15570] __kvmalloc_node_noprof+0xad/0x1a0 [ 564.100822][T15570] traverse.part.0.constprop.0+0x392/0x640 [ 564.100881][T15570] ? __pfx_lock_release+0x10/0x10 [ 564.100919][T15570] ? trace_lock_acquire+0x14e/0x1f0 [ 564.100953][T15570] seq_read_iter+0x934/0x12b0 [ 564.101003][T15570] ? aa_file_perm+0x4d5/0xfe0 [ 564.101045][T15570] seq_read+0x39f/0x4e0 [ 564.101093][T15570] ? lock_release+0x4e2/0x6f0 [ 564.101129][T15570] ? __pfx_seq_read+0x10/0x10 [ 564.101184][T15570] ? trace_lock_acquire+0x14e/0x1f0 [ 564.101217][T15570] ? lock_acquire+0x2f/0xb0 [ 564.101258][T15570] ? apparmor_file_permission+0x251/0x400 [ 564.101315][T15570] full_proxy_read+0x13c/0x200 [ 564.101367][T15570] ? __pfx_full_proxy_read+0x10/0x10 [ 564.101426][T15570] vfs_read+0x1df/0xbf0 [ 564.101457][T15570] ? __fget_files+0x1fc/0x3a0 [ 564.101489][T15570] ? __pfx_lock_release+0x10/0x10 [ 564.101527][T15570] ? __pfx_vfs_read+0x10/0x10 [ 564.101556][T15570] ? __fget_files+0x40/0x3a0 [ 564.101589][T15570] ? lock_acquire+0x2f/0xb0 [ 564.101624][T15570] ? __fget_files+0x40/0x3a0 [ 564.101659][T15570] ? __fget_files+0x206/0x3a0 [ 564.101696][T15570] __x64_sys_pread64+0x1f6/0x250 [ 564.101729][T15570] ? __pfx___x64_sys_pread64+0x10/0x10 [ 564.101764][T15570] ? rcu_is_watching+0x12/0xc0 [ 564.101813][T15570] ? rcu_is_watching+0x12/0xc0 [ 564.101863][T15570] do_syscall_64+0xcd/0x250 [ 564.101894][T15570] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 564.101941][T15570] RIP: 0033:0x7f695718cde9 [ 564.101963][T15570] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 564.101995][T15570] RSP: 002b:00007f695803a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 564.102025][T15570] RAX: ffffffffffffffda RBX: 00007f69573a5fa0 RCX: 00007f695718cde9 [ 564.102046][T15570] RDX: 000008000000fffc RSI: 0000000000000000 RDI: 0000000000000003 [ 564.102065][T15570] RBP: 00007f695803a090 R08: 0000000000000000 R09: 0000000000000000 [ 564.102085][T15570] R10: 000000000000a76b R11: 0000000000000246 R12: 0000000000000001 [ 564.102104][T15570] R13: 0000000000000000 R14: 00007f69573a5fa0 R15: 00007ffc13caa998 [ 564.102133][T15570] [ 564.474002][T15404] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 564.487124][T15404] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 564.557271][T15404] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 564.570064][T15404] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 564.583069][T15404] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 564.594253][T15404] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 564.659080][T15404] ieee80211 phy29: Selected rate control algorithm 'minstrel_ht' [ 564.707640][ T7767] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 564.724811][T15404] ieee80211 phy30: Selected rate control algorithm 'minstrel_ht' [ 564.738729][ T7767] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 564.805246][ T7756] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 564.833534][ T7756] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 565.350376][T15605] FAULT_INJECTION: forcing a failure. [ 565.350376][T15605] name failslab, interval 1, probability 0, space 0, times 0 [ 565.397714][T15605] CPU: 0 UID: 0 PID: 15605 Comm: syz.1.2296 Tainted: G U 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0 [ 565.397763][T15605] Tainted: [U]=USER [ 565.397773][T15605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 565.397788][T15605] Call Trace: [ 565.397797][T15605] [ 565.397807][T15605] dump_stack_lvl+0x16c/0x1f0 [ 565.397858][T15605] should_fail_ex+0x50a/0x650 [ 565.397894][T15605] ? fs_reclaim_acquire+0xae/0x150 [ 565.397940][T15605] ? gpiolib_seq_start+0x69/0x270 [ 565.397984][T15605] should_failslab+0xc2/0x120 [ 565.398023][T15605] __kmalloc_cache_noprof+0x68/0x420 [ 565.398054][T15605] ? mutex_lock_io_nested+0x8b1/0x8e0 [ 565.398101][T15605] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 565.398133][T15605] gpiolib_seq_start+0x69/0x270 [ 565.398178][T15605] traverse.part.0.constprop.0+0xac/0x640 [ 565.398229][T15605] ? __pfx_lock_release+0x10/0x10 [ 565.398268][T15605] seq_read_iter+0x934/0x12b0 [ 565.398316][T15605] ? aa_file_perm+0x4d5/0xfe0 [ 565.398356][T15605] seq_read+0x39f/0x4e0 [ 565.398398][T15605] ? lock_release+0x4e2/0x6f0 [ 565.398433][T15605] ? __pfx_seq_read+0x10/0x10 [ 565.398479][T15605] ? trace_lock_acquire+0x14e/0x1f0 [ 565.398516][T15605] ? lock_acquire+0x2f/0xb0 [ 565.398554][T15605] ? apparmor_file_permission+0x251/0x400 [ 565.398606][T15605] full_proxy_read+0x13c/0x200 [ 565.398654][T15605] ? __pfx_full_proxy_read+0x10/0x10 [ 565.398703][T15605] vfs_read+0x1df/0xbf0 [ 565.398732][T15605] ? __fget_files+0x1fc/0x3a0 [ 565.398763][T15605] ? __pfx_lock_release+0x10/0x10 [ 565.398798][T15605] ? __pfx_vfs_read+0x10/0x10 [ 565.398826][T15605] ? __fget_files+0x40/0x3a0 [ 565.398855][T15605] ? lock_acquire+0x2f/0xb0 [ 565.398887][T15605] ? __fget_files+0x40/0x3a0 [ 565.398920][T15605] ? __fget_files+0x206/0x3a0 [ 565.398955][T15605] __x64_sys_pread64+0x1f6/0x250 [ 565.398988][T15605] ? __pfx___x64_sys_pread64+0x10/0x10 [ 565.399021][T15605] ? rcu_is_watching+0x12/0xc0 [ 565.399065][T15605] ? rcu_is_watching+0x12/0xc0 [ 565.399112][T15605] do_syscall_64+0xcd/0x250 [ 565.399140][T15605] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 565.399182][T15605] RIP: 0033:0x7eff98d8cde9 [ 565.399205][T15605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 565.399234][T15605] RSP: 002b:00007eff99c08038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 565.399266][T15605] RAX: ffffffffffffffda RBX: 00007eff98fa5fa0 RCX: 00007eff98d8cde9 [ 565.399284][T15605] RDX: 000008000000fffc RSI: 0000000000000000 RDI: 0000000000000003 [ 565.399301][T15605] RBP: 00007eff99c08090 R08: 0000000000000000 R09: 0000000000000000 [ 565.399319][T15605] R10: 000000000000a76b R11: 0000000000000246 R12: 0000000000000001 [ 565.399336][T15605] R13: 0000000000000000 R14: 00007eff98fa5fa0 R15: 00007ffdab24c4c8 [ 565.399362][T15605] [ 565.733363][ C0] vkms_vblank_simulate: vblank timer overrun [ 565.774374][ T5846] Bluetooth: hci4: command tx timeout [ 565.807311][T15605] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN PTI [ 565.822508][T15605] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 565.832611][T15605] CPU: 0 UID: 0 PID: 15605 Comm: syz.1.2296 Tainted: G U 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0 [ 565.847309][T15605] Tainted: [U]=USER [ 565.851867][T15605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 565.863935][T15605] RIP: 0010:gpiolib_seq_stop+0x4c/0xe0 [ 565.870510][T15605] Code: 48 c1 ea 03 80 3c 02 00 0f 85 98 00 00 00 48 8b 9b e0 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 8d 7b 04 48 89 fa 48 c1 ea 03 <0f> b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 04 84 d2 75 60 8b [ 565.894061][T15605] RSP: 0018:ffffc90004f2fa58 EFLAGS: 00010247 [ 565.901351][T15605] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffff88807e9b3140 [ 565.910921][T15605] RDX: 0000000000000000 RSI: ffffffff84f0cf1e RDI: 0000000000000004 [ 565.920488][T15605] RBP: 0000000000000000 R08: 0000000000000dc0 R09: 00000000ffffffff [ 565.930073][T15605] R10: ffffffff8e37e593 R11: 0000000000000001 R12: ffffffff8bd6adc0 [ 565.939671][T15605] R13: 0000000000000000 R14: 0000000000000000 R15: ffffc90004f2fc40 [ 565.949236][T15605] FS: 00007eff99c086c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 565.959959][T15605] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 565.967903][T15605] CR2: 0000555582667808 CR3: 000000004773c000 CR4: 00000000003526f0 [ 565.977475][T15605] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 565.987044][T15605] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 565.996619][T15605] Call Trace: [ 566.000555][T15605] [ 566.004071][T15605] ? die_addr+0x3b/0xa0 [ 566.009074][T15605] ? exc_general_protection+0x155/0x230 [ 566.015763][T15605] ? asm_exc_general_protection+0x26/0x30 [ 566.022657][T15605] ? gpiolib_seq_stop+0xe/0xe0 [ 566.028387][T15605] ? gpiolib_seq_stop+0x4c/0xe0 [ 566.034228][T15605] ? gpiolib_seq_stop+0xe/0xe0 [ 566.039963][T15605] traverse.part.0.constprop.0+0x2bd/0x640 [ 566.046955][T15605] ? __pfx_lock_release+0x10/0x10 [ 566.052993][T15605] seq_read_iter+0x934/0x12b0 [ 566.058626][T15605] ? aa_file_perm+0x4d5/0xfe0 [ 566.064251][T15605] seq_read+0x39f/0x4e0 [ 566.069255][T15605] ? lock_release+0x4e2/0x6f0 [ 566.074883][T15605] ? __pfx_seq_read+0x10/0x10 [ 566.080535][T15605] ? trace_lock_acquire+0x14e/0x1f0 [ 566.086779][T15605] ? lock_acquire+0x2f/0xb0 [ 566.092198][T15605] ? apparmor_file_permission+0x251/0x400 [ 566.099087][T15605] full_proxy_read+0x13c/0x200 [ 566.104831][T15605] ? __pfx_full_proxy_read+0x10/0x10 [ 566.111199][T15605] vfs_read+0x1df/0xbf0 [ 566.116227][T15605] ? __fget_files+0x1fc/0x3a0 [ 566.121845][T15605] ? __pfx_lock_release+0x10/0x10 [ 566.127883][T15605] ? __pfx_vfs_read+0x10/0x10 [ 566.133513][T15605] ? __fget_files+0x40/0x3a0 [ 566.139049][T15605] ? lock_acquire+0x2f/0xb0 [ 566.144470][T15605] ? __fget_files+0x40/0x3a0 [ 566.149992][T15605] ? __fget_files+0x206/0x3a0 [ 566.155617][T15605] __x64_sys_pread64+0x1f6/0x250 [ 566.161550][T15605] ? __pfx___x64_sys_pread64+0x10/0x10 [ 566.168104][T15605] ? rcu_is_watching+0x12/0xc0 [ 566.173850][T15605] ? rcu_is_watching+0x12/0xc0 [ 566.179597][T15605] do_syscall_64+0xcd/0x250 [ 566.185009][T15605] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 566.192115][T15605] RIP: 0033:0x7eff98d8cde9 [ 566.197434][T15605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 566.220997][T15605] RSP: 002b:00007eff99c08038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 566.231100][T15605] RAX: ffffffffffffffda RBX: 00007eff98fa5fa0 RCX: 00007eff98d8cde9 [ 566.240673][T15605] RDX: 000008000000fffc RSI: 0000000000000000 RDI: 0000000000000003 [ 566.250245][T15605] RBP: 00007eff99c08090 R08: 0000000000000000 R09: 0000000000000000 [ 566.259811][T15605] R10: 000000000000a76b R11: 0000000000000246 R12: 0000000000000001 [ 566.269381][T15605] R13: 0000000000000000 R14: 00007eff98fa5fa0 R15: 00007ffdab24c4c8 [ 566.278961][T15605] [ 566.282584][T15605] Modules linked in: [ 566.287345][ C0] vkms_vblank_simulate: vblank timer overrun [ 566.295766][T15605] ---[ end trace 0000000000000000 ]--- SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 566.441298][T15605] RIP: 0010:gpiolib_seq_stop+0x4c/0xe0 [ 566.447951][T15605] Code: 48 c1 ea 03 80 3c 02 00 0f 85 98 00 00 00 48 8b 9b e0 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 8d 7b 04 48 89 fa 48 c1 ea 03 <0f> b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 04 84 d2 75 60 8b [ 566.604016][T15614] Process accounting resumed [ 566.628783][T15605] RSP: 0018:ffffc90004f2fa58 EFLAGS: 00010247 [ 566.644463][T15605] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffff88807e9b3140 [ 566.679405][T15605] RDX: 0000000000000000 RSI: ffffffff84f0cf1e RDI: 0000000000000004 [ 566.689041][T15605] RBP: 0000000000000000 R08: 0000000000000dc0 R09: 00000000ffffffff [ 566.698798][T15605] R10: ffffffff8e37e593 R11: 0000000000000001 R12: ffffffff8bd6adc0 [ 566.708962][T15605] R13: 0000000000000000 R14: 0000000000000000 R15: ffffc90004f2fc40 [ 566.718638][T15605] FS: 00007eff99c086c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 566.729669][T15605] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 566.737609][T15605] CR2: 00000000005c5000 CR3: 000000004773c000 CR4: 00000000003526f0 [ 566.747388][T15605] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 566.757369][T15605] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 566.767263][T15605] Kernel panic - not syncing: Fatal exception [ 566.774698][T15605] Kernel Offset: disabled [ 566.779883][T15605] Rebooting in 86400 seconds..