last executing test programs: 7.364263197s ago: executing program 2 (id=355): statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x3, 0x44f, 0x7, 0x1, 0x1007181, 0x8a0d, 0x7, 0x7, 0x7, 0x89, 0x26, 0x4, 0x200000000001, 0xfffffffffffff343, 0xfffffffffffffffa, 0x500000000000000, 0x0, 0x0, 0x0, 0x6, 0xe, 0x22000, 0x9, 0x0, 0x84, 0x0, 0x244, 0xe, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x6, 0x40, 0x0, 0x0, 0x824, 0x0, 0x7f]}, 0x6, 0xd) r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r0, 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) ioctl$auto_FS_IOC_GETFSUUID(0xffffffffffffffff, 0x80111500, 0xffffffffffffffff) madvise$auto(0x0, 0xffffffffffff0005, 0x19) futex$auto(0x0, 0x8d, 0x0, 0x0, 0x0, 0x100) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/usbip-vudc.0/usbip_sockfd\x00', 0x103841, 0x0) r2 = getgid() shmctl$auto_IPC_RMID(0x7, 0x0, &(0x7f0000000380)={{0x1, 0x0, 0xee01, 0x4, 0x400, 0x400}, 0x5, 0xffff, 0x63, 0xfffffffffffffffd, @raw=0xf, @raw=0x7f, 0x0, 0x0, &(0x7f0000000080)="95e37313f7cafc718b458a0ae546a137a3ff794424afa7377f657f26c997268afe093617f8dad427b190907252afcc3c9a3d308dacb063585988eee4dcacf9e1a7b4583254f7fd60c6981cecce3673cc4bae58741c066e4552559566432e2e96649534fb205f9ad464526ae9be3e5685d492eed9b5a6f18d6a731271622fc02adf7531784aac26f613aa1d9a5c2b93801960e9b4a1c9a4561c75ffc62bebe32578f9706d05bc7d5fdeaff84bc028508db8c0c06efe6aebe5bb8213ce42f5737585c64a161412ba9d872a58207e9093f996ce6f14a0f47ad3d0525f27e867c795af200c5274abecc8b6b076cc961ce5dc43", &(0x7f00000004c0)="b6bf5cea5219bf46cddfa0c44f243c9659891ce61f4c3bdc27e7c4edf740323d4c5460a621514dadd5273f5d69571fe77abafe2a1d54273f1e6cb8e5fbfd81a1d771489189d21136c5dbf0d16e51f18b93e73cd75791259484e2b5f369c561e6b154347e17ada3e5a1781c955116067ada75625431cebcbfedf9b6a6dd2ebf0d5aa0021ef62a015dd88f233e6f3db0a183a26ccc03f14b4dc3fbf32e8b0a0102d55f648a4b9dfca056d9f56c6e7f8e30336eca61b45bcbfe359f52191d43b01c1c909a66bd337d093177f4"}) setresgid$auto(0xffffffffffffffff, r2, r3) setresuid$auto(0xffffffffffffffff, 0x8, 0x8000) setfsuid$auto(0x0) openat$auto_proc_tid_children_operations_internal(0xffffffffffffff9c, &(0x7f0000000400), 0x2181, 0x0) setresuid$auto(0x0, 0x8, 0x8000) getsockopt$auto(0xffffffffffffffff, 0x2, 0x3, 0x0, &(0x7f0000000040)=0x101) ioctl$auto__ctl_fops_dm_ioctl(r1, 0x1, &(0x7f00000005c0)) unshare$auto(0x40000080) socket(0xa, 0x1, 0x84) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8081, 0x0) close_range$auto(0x2, 0x8, 0x0) 6.131349743s ago: executing program 2 (id=362): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0) getdents64$auto(r1, 0x0, 0x400) r2 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) read$auto_mISDN_fops_timerdev(r2, 0x0, 0x0) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r3 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x336648d5}, 0x9, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/uevent\x00', 0x800, 0x0) landlock_add_rule$auto(r3, 0x1, 0x0, 0x0) landlock_restrict_self$auto(r0, 0x0) close_range$auto(0x0, 0xffffffffffffffff, 0x2) 5.9587355s ago: executing program 2 (id=364): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa3182, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x40009, 0x0) madvise$auto(0x0, 0x200007, 0x19) (fail_nth: 3) 5.56422459s ago: executing program 2 (id=367): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/net/rose13/testing\x00', 0x387103, 0x0) write$auto(r0, &(0x7f0000000100)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C', 0x4) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0xfffffffffffffff9, 0xb2fa, 0x6f, 0x110, r0, 0x40000000f) r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x3) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0xfffffffffffffffd, 0x0, 0xdf, 0xeb1, 0x2, 0x8000) mmap$auto(0x9f, 0x4020011, 0x400e3, 0xfffffffffffffffb, r1, 0x10000000008000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) munmap$auto(0x2, 0x1a525c0f) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0x7, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368d, 0x2, {0x100000000, 0xffff}, 0x55, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000005, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804}) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) madvise$auto(0x0, 0xffffffffffff0005, 0x19) 4.730843746s ago: executing program 3 (id=369): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000) io_uring_setup$auto(0x3, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) socket(0x2, 0x1, 0x0) mq_open$auto(0x0, 0x5, 0x3, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000840)='/proc/sys/vm/dirty_background_ratio\x00', 0x80000, 0x0) socket(0x15, 0x5, 0x0) sendto$auto(0x3, 0x0, 0x2000f, 0x0, 0x0, 0x1c) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x800, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) sendto$auto(0x3, 0x0, 0x18, 0x101, 0x0, 0x1c) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) gettimeofday$auto(0x0, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) getcwd$auto(0x0, 0xffffffffffffffff) openat2$dir(0xffffffffffffff9c, 0x0, &(0x7f0000000240)={0x8040, 0xc9, 0xa}, 0x18) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_SOCK_GET(r0, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000002280)={&(0x7f0000000080)=ANY=[@ANYBLOB="7fcca4ac4e151d0596adedba3fd72c24303ba504d08435cb161c8000d1a41464cf11914e", @ANYRES16=r1, @ANYBLOB="8d4329bd7000ffdbdf2506000000"], 0x14}, 0x1, 0x0, 0x0, 0x42010}, 0x8cc) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000340), 0x108800, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) mprotect$auto(0x0, 0x5, 0x8) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/interrupts\x00', 0x202, 0x0) close_range$auto(0x2, 0x8, 0x0) 4.209019702s ago: executing program 0 (id=370): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) capget$auto(0x0, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) 3.463728707s ago: executing program 1 (id=372): statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x3, 0x44f, 0x7, 0x1, 0x1007181, 0x8a0d, 0x7, 0x7, 0x7, 0x89, 0x26, 0x4, 0x200000000001, 0xfffffffffffff343, 0xfffffffffffffffa, 0x500000000000000, 0x0, 0x0, 0x0, 0x6, 0xe, 0x22000, 0x9, 0x0, 0x84, 0x0, 0x244, 0xe, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x6, 0x40, 0x0, 0x0, 0x824, 0x0, 0x7f]}, 0x6, 0xd) r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r0, 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) ioctl$auto_FS_IOC_GETFSUUID(0xffffffffffffffff, 0x80111500, 0xffffffffffffffff) madvise$auto(0x0, 0xffffffffffff0005, 0x19) futex$auto(0x0, 0x8d, 0x0, 0x0, 0x0, 0x100) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/usbip-vudc.0/usbip_sockfd\x00', 0x103841, 0x0) r2 = getgid() shmctl$auto_IPC_RMID(0x7, 0x0, &(0x7f0000000380)={{0x1, 0x0, 0xee01, 0x4, 0x400, 0x400}, 0x5, 0xffff, 0x63, 0xfffffffffffffffd, @raw=0xf, @raw=0x7f, 0x0, 0x0, &(0x7f0000000080)="95e37313f7cafc718b458a0ae546a137a3ff794424afa7377f657f26c997268afe093617f8dad427b190907252afcc3c9a3d308dacb063585988eee4dcacf9e1a7b4583254f7fd60c6981cecce3673cc4bae58741c066e4552559566432e2e96649534fb205f9ad464526ae9be3e5685d492eed9b5a6f18d6a731271622fc02adf7531784aac26f613aa1d9a5c2b93801960e9b4a1c9a4561c75ffc62bebe32578f9706d05bc7d5fdeaff84bc028508db8c0c06efe6aebe5bb8213ce42f5737585c64a161412ba9d872a58207e9093f996ce6f14a0f47ad3d0525f27e867c795af200c5274abecc8b6b076cc961ce5dc43", &(0x7f00000004c0)="b6bf5cea5219bf46cddfa0c44f243c9659891ce61f4c3bdc27e7c4edf740323d4c5460a621514dadd5273f5d69571fe77abafe2a1d54273f1e6cb8e5fbfd81a1d771489189d21136c5dbf0d16e51f18b93e73cd75791259484e2b5f369c561e6b154347e17ada3e5a1781c955116067ada75625431cebcbfedf9b6a6dd2ebf0d5aa0021ef62a015dd88f233e6f3db0a183a26ccc03f14b4dc3fbf32e8b0a0102d55f648a4b9dfca056d9f56c6e7f8e30336eca61b45bcbfe359f52191d43b01c1c909a66bd337d093177f4"}) setresgid$auto(0xffffffffffffffff, r2, r3) setresuid$auto(0xffffffffffffffff, 0x8, 0x8000) setfsuid$auto(0x0) openat$auto_proc_tid_children_operations_internal(0xffffffffffffff9c, &(0x7f0000000400), 0x2181, 0x0) setresuid$auto(0x0, 0x8, 0x8000) getsockopt$auto(0xffffffffffffffff, 0x2, 0x3, 0x0, &(0x7f0000000040)=0x101) ioctl$auto__ctl_fops_dm_ioctl(r1, 0x1, &(0x7f00000005c0)) unshare$auto(0x40000080) socket(0xa, 0x1, 0x84) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8081, 0x0) close_range$auto(0x2, 0x8, 0x0) 3.404255651s ago: executing program 0 (id=373): statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x3, 0x44f, 0x7, 0x1, 0x1007181, 0x8a0d, 0x7, 0x7, 0x7, 0x89, 0x26, 0x4, 0x200000000001, 0xfffffffffffff343, 0xfffffffffffffffa, 0x500000000000000, 0x0, 0x0, 0x0, 0x6, 0xe, 0x22000, 0x9, 0x0, 0x84, 0x0, 0x244, 0xe, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x6, 0x40, 0x0, 0x0, 0x824, 0x0, 0x7f]}, 0x6, 0xd) r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r0, 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) ioctl$auto_FS_IOC_GETFSUUID(0xffffffffffffffff, 0x80111500, 0xffffffffffffffff) madvise$auto(0x0, 0xffffffffffff0005, 0x19) futex$auto(0x0, 0x8d, 0x0, 0x0, 0x0, 0x100) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/usbip-vudc.0/usbip_sockfd\x00', 0x103841, 0x0) r2 = getgid() shmctl$auto_IPC_RMID(0x7, 0x0, &(0x7f0000000380)={{0x1, 0x0, 0xee01, 0x4, 0x400, 0x400}, 0x5, 0xffff, 0x63, 0xfffffffffffffffd, @raw=0xf, @raw=0x7f, 0x0, 0x0, &(0x7f0000000080)="95e37313f7cafc718b458a0ae546a137a3ff794424afa7377f657f26c997268afe093617f8dad427b190907252afcc3c9a3d308dacb063585988eee4dcacf9e1a7b4583254f7fd60c6981cecce3673cc4bae58741c066e4552559566432e2e96649534fb205f9ad464526ae9be3e5685d492eed9b5a6f18d6a731271622fc02adf7531784aac26f613aa1d9a5c2b93801960e9b4a1c9a4561c75ffc62bebe32578f9706d05bc7d5fdeaff84bc028508db8c0c06efe6aebe5bb8213ce42f5737585c64a161412ba9d872a58207e9093f996ce6f14a0f47ad3d0525f27e867c795af200c5274abecc8b6b076cc961ce5dc43", &(0x7f00000004c0)="b6bf5cea5219bf46cddfa0c44f243c9659891ce61f4c3bdc27e7c4edf740323d4c5460a621514dadd5273f5d69571fe77abafe2a1d54273f1e6cb8e5fbfd81a1d771489189d21136c5dbf0d16e51f18b93e73cd75791259484e2b5f369c561e6b154347e17ada3e5a1781c955116067ada75625431cebcbfedf9b6a6dd2ebf0d5aa0021ef62a015dd88f233e6f3db0a183a26ccc03f14b4dc3fbf32e8b0a0102d55f648a4b9dfca056d9f56c6e7f8e30336eca61b45bcbfe359f52191d43b01c1c909a66bd337d093177f4"}) setresgid$auto(0xffffffffffffffff, r2, r3) setresuid$auto(0xffffffffffffffff, 0x8, 0x8000) setfsuid$auto(0x0) openat$auto_proc_tid_children_operations_internal(0xffffffffffffff9c, &(0x7f0000000400), 0x2181, 0x0) setresuid$auto(0x0, 0x8, 0x8000) getsockopt$auto(0xffffffffffffffff, 0x2, 0x3, 0x0, &(0x7f0000000040)=0x101) ioctl$auto__ctl_fops_dm_ioctl(r1, 0x1, &(0x7f00000005c0)) unshare$auto(0x40000080) socket(0xa, 0x1, 0x84) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8081, 0x0) close_range$auto(0x2, 0x8, 0x0) 3.359819513s ago: executing program 3 (id=374): pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88\xf5s\x1cJ\x99\x8a>c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3) (fail_nth: 3) 3.120945024s ago: executing program 3 (id=375): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = io_uring_setup$auto(0x6, 0x0) r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_VHOST_SET_FEATURES(r1, 0x4008af00, &(0x7f0000000000)=0x200000000) read$auto(r1, 0x0, 0x3ff) close_range$auto(0x2, 0x8000, 0x0) socket(0x10, 0x3, 0x6) r2 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x800, 0x0) readv$auto(r4, &(0x7f00000003c0)={0x0, 0x1}, 0x3) ioctl$auto_posix_clock_file_operations_posix_clock(0xffffffffffffffff, 0x2c9, &(0x7f0000000280)="950a50179c5b37cab6d0a04bc1842d4aea27aa49547ac30446cd9cb93320907edfef38e69cde2705d83511740e592bfb4bd9a23dd8fa4353eb56284f208ca35046607425369da117dd11eefac319152eaf12c97e6608e180b1033ea209553f613e339e3eb0a2c2519ce9f522d0518b4a55022e59f5a2b544db6b5fd32b7a87e93892609d084495369141dfea1adb1cabb09abae6fa39ce935f5cb1fb7bcc91d81ac7838f6a584b") r5 = socket(0x10, 0x2, 0x4) ioctl$auto(r5, 0x7, r3) socket(0x2, 0x801, 0x84) r6 = wait4$auto(0x0, &(0x7f0000000080)=0x8c3, 0x3, &(0x7f0000000400)={{0x7f}, {0x9, 0x7}, 0x8, 0x2, 0xfffffffffffffffa, 0x4, 0x0, 0x3, 0x6, 0x81, 0x2, 0x1000, 0x9, 0x5a1, 0x4, 0x7}) bpf$auto(0x8, &(0x7f00000004c0)=@task_fd_query={r6, r0, 0x1fa, 0x4000004, 0xb, 0x100, r1, 0xb, 0x8}, 0x1000001) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) bpf$auto(0x1, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x7}, 0xc) sendmsg$auto_HSR_C_GET_NODE_STATUS(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000001080)=ANY=[@ANYBLOB="14000000", @ANYBLOB="010327"], 0x14}, 0x1, 0x0, 0x0, 0x4804}, 0x4c010) 2.870126414s ago: executing program 2 (id=376): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 32) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/system/cpu/kernel_max\x00', 0x200, 0x0) (async, rerun: 32) read$auto(0x3, 0x0, 0xf34) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) r0 = clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) (async) close_range$auto(0x2, 0x8, 0x0) (async) open(0x0, 0x22040, 0x75) (async) socket(0xa, 0x2, 0x3a) write$auto(0x3, 0x0, 0xfffffdef) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000009c0)='/proc/self/net/icmp6\x00', 0x8000, 0x0) read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000e80)=""/215, 0xd7) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async, rerun: 32) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) (async, rerun: 32) r2 = signalfd$auto(r1, &(0x7f0000000000)={0xc9}, 0x4) (async, rerun: 64) memfd_secret$auto(0x0) (async, rerun: 64) socket(0x2b, 0x1, 0x1) bind$auto(0x3, 0x0, 0x6b) socket(0x10, 0x3, 0x6) mmap$auto(0x0, 0x7e, 0x1, 0xeb1, 0x401, 0x8000) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=0x0, @ANYRES32=r1, @ANYRESDEC=r0, @ANYRES64=r2], 0x3c}, 0x1, 0x0, 0x0, 0x20000000}, 0x800) (async) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) mmap$auto(0x3, 0x2020009, 0x100000001, 0x15, 0xffffffffffffffff, 0x9) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) (async) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async, rerun: 64) write$auto(0x3, 0x0, 0x7fffffff) (async, rerun: 64) write$auto(0x1, 0x0, 0x80000000) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) 2.825932305s ago: executing program 3 (id=377): mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) prctl$auto(0x35, 0x8, 0x0, 0x0, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01018000000000000025830000000800030800080000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060006004000000006000600050000000a0001000180c200000e0000"], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x40) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800) io_uring_setup$auto(0x6, 0x0) read$auto(0x3, 0x0, 0x80) write$auto(0xca, &(0x7f00000000c0)='\x04>2\x04!\xe2\x00\x94\xf2\xa2\x00\x00', 0x7e) 2.546153971s ago: executing program 1 (id=378): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ILA_CMD_ADD(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f00000001c0)={0x14, r1, 0x1, 0x70bd27, 0x25dfdbfd, {0x1, 0x0, 0xffff}}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) 2.389911657s ago: executing program 1 (id=379): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd12/queue/max_segment_size\x00', 0x600, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)=""/213, 0xd5) 2.313146716s ago: executing program 0 (id=380): open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) rseq$auto(&(0x7f0000000080)={0x9, 0x8, 0x0, 0x7, 0xffffffff, 0x2, "24229ba6405fe4fc8b79b54d7e17"}, 0x7ffd, 0xfffffff4, 0x6) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) (async) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) open(0x0, 0xeee00, 0x31) (async) open(0x0, 0xeee00, 0x31) mmap$auto(0x0, 0x5, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) mmap$auto(0x0, 0x5, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) open(0x0, 0x1e1401, 0xe5) (async) open(0x0, 0x1e1401, 0xe5) gettid() (async) r0 = gettid() rt_sigtimedwait$auto(&(0x7f0000000000)={0x86e}, 0x0, 0x0, 0x8) tkill$auto(r0, 0x7) write$auto(0x3, 0x0, 0x100082) (async) write$auto(0x3, 0x0, 0x100082) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) mmap$auto(0x0, 0xc, 0xbc5, 0x13, 0x3, 0x8000) (async) mmap$auto(0x0, 0xc, 0xbc5, 0x13, 0x3, 0x8000) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) clone$auto(0x8001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) r1 = socket(0xa, 0x2, 0x73) r2 = socket(0x1, 0x3, 0x0) quotactl_fd$auto(r2, 0x80000401, 0xfffffffb, 0x0) (async) quotactl_fd$auto(r2, 0x80000401, 0xfffffffb, 0x0) getsockname$auto(r1, 0x0, &(0x7f0000000280)=0xaea) mlockall$auto(0x7) mmap$auto(0x0, 0x200004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) memfd_create$auto(&(0x7f0000000000)='A\x00\x00\x00\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\f\x00\x00\v\x00E\xdb\x81\xd9\xd8\xe640\xc6\xa4Sr\x82\xcc\"K\xe1IIT\x00\x00\x00', 0xe) rseq$auto(0x0, 0x8000, 0x0, 0x6) finit_module$auto(0x3, 0xfffffffffffffffe, 0x400000000004) 2.16759563s ago: executing program 1 (id=381): mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NCSI_CMD_SET_PACKAGE_MASK(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c004}, 0x40080c0) r1 = signalfd4$auto(r0, 0x0, 0x1, 0x1) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x800, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000500)='/dev/video0\x00', 0x880, 0x0) r2 = getgid() stat$auto(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)={0x7fff, 0xfe, 0x40, 0xffffffff, 0xffffffffffffffff, r2, 0x0, 0xfffffffffffffff8, 0x200, 0xffffffffffffffff, 0x5, 0x5, 0x6, 0x3, 0x7, 0x7, 0x101}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) clone$auto(0x7fff, 0x200, 0x0, 0x0, 0xf) process_madvise$auto(0x3, 0x0, 0xb, 0x40000c15, 0x8000000000000000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffd]}, 0x0) (fail_nth: 2) signalfd$auto(r1, 0x0, 0x8) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pppol2tp\x00', 0x100, 0x0) 1.953020235s ago: executing program 0 (id=382): r0 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC1D1p\x00', 0x100, 0x0) socket(0x28, 0x5, 0x0) (async) mmap$auto(0x0, 0xfff, 0xdf, 0xeb1, 0x401, 0x8000) r1 = socket(0x2, 0x6, 0x0) (async) setitimer$auto(0xfffffffc, &(0x7f0000000000)={{0xffffffffffffffff, 0x7}, {0x7fffffffffffffff, 0x3}}, 0x0) (async) r2 = epoll_create$auto(0x4) socketpair$auto(0x1, 0x3, 0x8000000000000000, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x1, 0x3, 0x0, 0x80000001, 0x7, 0x6d39, 0x5, 0x2, 0x1]}, 0x0) (async) socket(0x10, 0x3, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ioctl$auto_XFS_IOC_FREESP(r2, 0x4030580b, &(0x7f0000000180)={0x30, 0x3, 0x2, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff}) ptrace$auto(0xb199, r3, 0x7, 0x6) (async) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff) (async) sendmsg$auto_NL80211_CMD_ADD_LINK_STA(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="10000000", @ANYBLOB="5b339c109cbba65e4f4b1ce0e9e2ecb017a9e6ae886a0f94de301e962e76b8d3d37666afa2e49110abebf21b6d3e92831bc90ff54e56ac480c8bd14ce7ec038896428a37c8b9e6e4d79f36e09a5d8848ebfa173a1ddeb1ab06a6bdbe0ea67a3c56c24a615afdd68d77939b8a09", @ANYBLOB="010025bd7000fbdbdf2596000000"], 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x40) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async) epoll_ctl$auto(r2, 0x1, r1, 0x0) (async) mmap$auto(0xfffffffffffffffe, 0x4002021009, 0xf1, 0x5f2, 0xfffffffffffffffa, 0x8000) (async) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0) ioctl$auto_I2C_SLAVE(0xffffffffffffffff, 0x703, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r4, 0x0, 0x20) r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) io_cancel$auto(0x64, &(0x7f0000000000)={0x6, 0x9, 0x7, 0x4, 0x1, 0x409691, 0x5a43, 0x0, 0x5, 0x10, 0x7f, 0x4}, 0x0) (async) writev$auto(r5, &(0x7f0000000200)={0x0, 0x7}, 0x3) (async) mmap$auto(0x0, 0x8, 0x3, 0x9b72, 0x2, 0x8000) (async) msync$auto(0x1ffff000, 0x180000000000000, 0x6) (async) close_range$auto(0x2, 0x8, 0x0) (async) ioctl$auto_SNDRV_PCM_IOCTL_READI_FRAMES(r0, 0x80184151, 0x0) 1.842080964s ago: executing program 3 (id=383): mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NCSI_CMD_SET_PACKAGE_MASK(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c004}, 0x40080c0) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x8f, 0x6, 0xc, 0xd, 0xb, r0, 0x0, "cf5f6a0d0609efde1bbbc78f917d2a00", 0x0, r0, 0x1, 0x0, 0xfff, 0x2, r0}, 0x10) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/028/001\x00', 0xa901, 0x0) semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0) ioctl$auto_USBDEVFS_SUBMITURB32(r1, 0x802c550a, &(0x7f00000001c0)=ANY=[@ANYBLOB="020000000000000005"]) close_range$auto(0x2, 0x8, 0x0) signalfd4$auto(r0, 0x0, 0x1, 0x1) semget$auto(0x8, 0x3, 0xfffffffe) semget$auto(0x8, 0x9, 0x2) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x800, 0x0) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pppoe\x00', 0x28000, 0x0) r3 = socket(0x10, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@nl=@unspec, 0x5d) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB='$'], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4) sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x8) read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000e80)=""/215, 0xd7) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x208002, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000500)='/dev/video0\x00', 0x880, 0x0) r4 = getgid() stat$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000340)={0x80000001, 0xfe, 0x40, 0xffffffff, 0x0, r4, 0x0, 0xfffffffffffffff8, 0x200, 0xffffffffffffffff, 0x842, 0x5, 0x2, 0x3, 0x7, 0x80007, 0x101}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) process_madvise$auto(0x3, 0x0, 0xb, 0x4, 0xeffffffd) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000180)={[0x3, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x5, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x100000009, 0x2, 0xfffffffffffffffd]}, 0x0) 1.399084178s ago: executing program 2 (id=384): r0 = socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) get_mempolicy$auto(0x0, 0x0, 0x81, 0x8, 0x2) r1 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000080), 0x8000, 0x0) ioctl$auto_I2C_SMBUS(r1, 0x720, 0xfffffffffffffffe) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, r0, 0x8000) openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, 0x0, 0x28002, 0x0) socket(0x23, 0xa, 0x0) adjtimex$auto(&(0x7f0000000140)={0x7fffffff, 0x0, 0x8, 0x704, 0x7, 0xe, 0x1, 0x0, 0x3, 0x5, 0x6, {0x2, 0x99}, 0x2, 0x5, 0x9571, 0x1, 0x0, 0x8000000000000001, 0x2, 0x5, 0x5, 0x83, 0xe}) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) prctl$auto_PR_GET_CHILD_SUBREAPER(0x25, 0x4d69, 0xffffffffffffffff, 0x8, 0x2) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ptyac\x00', 0x20000, 0x0) ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/ip6_vti0/stable_secret\x00', 0x2, 0x0) pwrite64$auto(r3, &(0x7f0000000040)='.\'*&\x04!\x00', 0x1, 0x8) bpf$auto(0x16, 0xffffffffffffffff, 0x0) setsockopt$auto_SO_PEEK_OFF(r3, 0x4, 0x2a, &(0x7f0000000240)=')::\x00', 0x1ff) sendmsg$auto_NL80211_CMD_SET_POWER_SAVE(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000002c0)={&(0x7f0000002e80)=ANY=[@ANYBLOB="69e7e400", @ANYRES16=0x0, @ANYBLOB="000428bd7000fbdbdf253d00000049012d801400f90000000000000000000000ffffffffffff8700328008004600", @ANYRES32=0x0, @ANYBLOB="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"], 0x188}, 0x1, 0x0, 0x0, 0x400c000}, 0x4800) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000) prctl$auto(0x16, 0x2, 0x2, 0x4000000d, 0x100) socket$nl_generic(0x10, 0x3, 0x10) prctl$auto(0x3c, 0x9, 0xffffffffffffffff, 0x1, 0x9) sendmmsg$auto(0x3, 0x0, 0x9a5, 0x47ffff7a) openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) 1.168892762s ago: executing program 1 (id=385): mlockall$auto(0x7) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) memfd_create$auto(0x0, 0x9) write$auto(0x3, 0x0, 0xfffffdef) (async) openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, 0x0, 0x48002, 0x0) (async) write$auto(0x3, 0x0, 0x1) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket(0xa, 0x80002, 0x73) (async) socket(0x2, 0x80805, 0x0) (async) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df"], 0x1ac}}, 0x0) (async) getsockname$auto(0x3, &(0x7f00000002c0), &(0x7f0000000180)=0x4) (async) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_UPDATE_FT_IES(r1, &(0x7f0000000140)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000100)={&(0x7f00000002c0)={0x4a8, 0x0, 0x300, 0x70bd2d, 0x25dfdbfc, {}, [@NL80211_ATTR_BSS_BASIC_RATES={0x1a, 0x24, "985e4af6a6fef12ce2d16a39fe645329122c187f58ea"}, @NL80211_ATTR_S1G_CAPABILITY_MASK={0x24, 0x129, "3cc93e415ee3c7115e0119d909f83d0f07c4135568f0d9fdfe39b6ea36e1382e"}, @NL80211_ATTR_PROBE_RESP={0x35a, 0x91, "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"}, @NL80211_ATTR_ASSOC_MLD_EXT_CAPA_OPS={0x6, 0x151, 0x6}, @NL80211_ATTR_BEACON_TAIL={0x61, 0xf, "d6c92536f1c07f4474900ed1eda0d8c4f4dd056b19f53a2891aebea430c148b1573eaf5d09a84c99a4841daea8fd677d5e6b612f03afd81d35fce191959ec2f492ebf238e36d8d9119ea4c6f629efec32d948ce5c9e50e930b9904f589"}, @NL80211_ATTR_CNTDWN_OFFS_BEACON={0x8a, 0xba, "1750c85bf6312c8da3d0a2c0af43339f58301c9416bd9458d41339c6cb702c7e32d56b4a77bdf5bd488e8950f453961687df1dcd58d5e3d559e4ad9878b414ecdddf0e4edc063b8348dd7e0096febab1de75a8afcaeca0a043a2ea870978d14b07ce32e3c3cd4cbd48e9c64db5362195df384d323f2e556a4199eeb45ed84e24fba541d3b2cc"}]}, 0x4a8}, 0x1, 0x0, 0x0, 0x40001}, 0x0) (async) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r2, 0x80045432, 0x7) finit_module$auto(0x3, 0xfffffffffffffffe, 0x2) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/pci0000:00/0000:00:03.0/consistent_dma_mask_bits\x00', 0x0, 0x0) (async) r3 = io_uring_setup$auto(0x4, 0x0) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (async) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000040)=""/81, 0x51) 804.449745ms ago: executing program 0 (id=386): r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="4c91f2c388", 0x5) 651.465887ms ago: executing program 0 (id=387): statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x3, 0x44f, 0x7, 0x1, 0x1007181, 0x8a0d, 0x7, 0x7, 0x7, 0x89, 0x26, 0x4, 0x200000000001, 0xfffffffffffff343, 0xfffffffffffffffa, 0x500000000000000, 0x0, 0x0, 0x0, 0x6, 0xe, 0x22000, 0x9, 0x0, 0x84, 0x0, 0x244, 0xe, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x6, 0x40, 0x0, 0x0, 0x824, 0x0, 0x7f]}, 0x6, 0xd) r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r0, 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) ioctl$auto_FS_IOC_GETFSUUID(0xffffffffffffffff, 0x80111500, 0xffffffffffffffff) madvise$auto(0x0, 0xffffffffffff0005, 0x19) futex$auto(0x0, 0x8d, 0x0, 0x0, 0x0, 0x100) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/usbip-vudc.0/usbip_sockfd\x00', 0x103841, 0x0) r2 = getgid() shmctl$auto_IPC_RMID(0x7, 0x0, &(0x7f0000000380)={{0x1, 0x0, 0xee01, 0x4, 0x400, 0x400}, 0x5, 0xffff, 0x63, 0xfffffffffffffffd, @raw=0xf, @raw=0x7f, 0x0, 0x0, &(0x7f0000000080)="95e37313f7cafc718b458a0ae546a137a3ff794424afa7377f657f26c997268afe093617f8dad427b190907252afcc3c9a3d308dacb063585988eee4dcacf9e1a7b4583254f7fd60c6981cecce3673cc4bae58741c066e4552559566432e2e96649534fb205f9ad464526ae9be3e5685d492eed9b5a6f18d6a731271622fc02adf7531784aac26f613aa1d9a5c2b93801960e9b4a1c9a4561c75ffc62bebe32578f9706d05bc7d5fdeaff84bc028508db8c0c06efe6aebe5bb8213ce42f5737585c64a161412ba9d872a58207e9093f996ce6f14a0f47ad3d0525f27e867c795af200c5274abecc8b6b076cc961ce5dc43", &(0x7f00000004c0)="b6bf5cea5219bf46cddfa0c44f243c9659891ce61f4c3bdc27e7c4edf740323d4c5460a621514dadd5273f5d69571fe77abafe2a1d54273f1e6cb8e5fbfd81a1d771489189d21136c5dbf0d16e51f18b93e73cd75791259484e2b5f369c561e6b154347e17ada3e5a1781c955116067ada75625431cebcbfedf9b6a6dd2ebf0d5aa0021ef62a015dd88f233e6f3db0a183a26ccc03f14b4dc3fbf32e8b0a0102d55f648a4b9dfca056d9f56c6e7f8e30336eca61b45bcbfe359f52191d43b01c1c909a66bd337d093177f4"}) setresgid$auto(0xffffffffffffffff, r2, r3) setresuid$auto(0xffffffffffffffff, 0x8, 0x8000) setfsuid$auto(0x0) openat$auto_proc_tid_children_operations_internal(0xffffffffffffff9c, &(0x7f0000000400), 0x2181, 0x0) setresuid$auto(0x0, 0x8, 0x8000) getsockopt$auto(0xffffffffffffffff, 0x2, 0x3, 0x0, &(0x7f0000000040)=0x101) ioctl$auto__ctl_fops_dm_ioctl(r1, 0x1, &(0x7f00000005c0)="0c0a3bdbc97bf287e267d041cd75a7b6e4c4af94989c0a0631b4c5d30e61a3b2c3032040d6a0bc825504cf53f66ac93826a02f88013f5a01e6f3e4fb80b7cdfccf4d48d9bb785e385ecb99ee817346e0bf9d12df345ffc44c35d0000130cc032ada3d111fb676354c3cfe00d") unshare$auto(0x40000080) socket(0xa, 0x1, 0x84) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8081, 0x0) close_range$auto(0x2, 0x8, 0x0) 132.529227ms ago: executing program 3 (id=388): r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="4c91f2c388", 0x5) (fail_nth: 1) 0s ago: executing program 1 (id=389): r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r0, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/sys/fs/inode-state\x00', 0x0, 0x0) bpf$auto(0x9, &(0x7f0000000a40)=@prog_bind_map={0xffffffffffffffff, 0xffffffffffffffff, 0x2f}, 0x121) r1 = socket(0x2, 0x3, 0xa) getsockopt$auto(r1, 0x0, 0x30, 0x0, &(0x7f0000000040)=0xdbb) socket(0x2, 0x1, 0x0) (async) socket(0x2, 0x1, 0x0) socket(0x2, 0x6, 0x0) (async) socket(0x2, 0x6, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000100)=@link_update={r2, @new_prog_fd=0x4, 0x4, @old_map_fd}, 0xa3) (async) bpf$auto(0x0, &(0x7f0000000100)=@link_update={r2, @new_prog_fd=0x4, 0x4, @old_map_fd}, 0xa3) epoll_create$auto(0x7) (async) epoll_create$auto(0x7) r3 = socket$nl_generic(0x10, 0x3, 0x10) epoll_ctl$auto(0x5, 0x1, r3, 0x0) close_range$auto(0x2, 0xa, 0x0) kernel console output (not intermixed with test programs): slave_1 [ 96.750679][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.778376][ T5843] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 96.807424][ T5842] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 96.834625][ T5839] team0: Port device team_slave_0 added [ 96.844231][ T5839] team0: Port device team_slave_1 added [ 96.922478][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 96.929536][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.946903][ T10] cfg80211: failed to load regulatory.db [ 96.957685][ T5839] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 96.974938][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 96.981924][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.008646][ T5837] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 97.022601][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 97.029611][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.055552][ T5837] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 97.069416][ T5842] team0: Port device team_slave_0 added [ 97.079191][ T5842] team0: Port device team_slave_1 added [ 97.095999][ T5845] Bluetooth: hci0: command tx timeout [ 97.118414][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 97.125751][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.152041][ T5839] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 97.178306][ T5845] Bluetooth: hci1: command tx timeout [ 97.178329][ T5846] Bluetooth: hci2: command tx timeout [ 97.178643][ T5849] Bluetooth: hci3: command tx timeout [ 97.206668][ T5843] hsr_slave_0: entered promiscuous mode [ 97.213288][ T5843] hsr_slave_1: entered promiscuous mode [ 97.307444][ T5839] hsr_slave_0: entered promiscuous mode [ 97.313858][ T5839] hsr_slave_1: entered promiscuous mode [ 97.320398][ T5839] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 97.328234][ T5839] Cannot create hsr debugfs directory [ 97.334482][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 97.341912][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.368010][ T5842] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 97.408630][ T5837] hsr_slave_0: entered promiscuous mode [ 97.415415][ T5837] hsr_slave_1: entered promiscuous mode [ 97.421595][ T5837] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 97.429244][ T5837] Cannot create hsr debugfs directory [ 97.436232][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 97.443248][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.469281][ T5842] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 97.702355][ T5842] hsr_slave_0: entered promiscuous mode [ 97.709413][ T5842] hsr_slave_1: entered promiscuous mode [ 97.715860][ T5842] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 97.723446][ T5842] Cannot create hsr debugfs directory [ 98.011956][ T5843] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 98.049949][ T5843] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 98.078884][ T5843] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 98.098669][ T5843] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 98.146399][ T5839] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 98.159380][ T5839] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 98.170539][ T5839] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 98.199847][ T5839] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 98.285487][ T5837] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 98.300249][ T5837] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 98.311028][ T5837] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 98.326220][ T5837] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 98.433896][ T5842] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 98.470008][ T5842] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 98.482531][ T5842] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 98.498503][ T5842] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 98.589197][ T5843] 8021q: adding VLAN 0 to HW filter on device bond0 [ 98.657593][ T5839] 8021q: adding VLAN 0 to HW filter on device bond0 [ 98.677843][ T5843] 8021q: adding VLAN 0 to HW filter on device team0 [ 98.712211][ T5837] 8021q: adding VLAN 0 to HW filter on device bond0 [ 98.724674][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.731970][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 98.748951][ T1090] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.756132][ T1090] bridge0: port 2(bridge_slave_1) entered forwarding state [ 98.782391][ T5839] 8021q: adding VLAN 0 to HW filter on device team0 [ 98.813884][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.821080][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 98.838826][ T5837] 8021q: adding VLAN 0 to HW filter on device team0 [ 98.863074][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.870259][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 98.880636][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.887872][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 98.905909][ T1090] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.913070][ T1090] bridge0: port 2(bridge_slave_1) entered forwarding state [ 98.979492][ T5842] 8021q: adding VLAN 0 to HW filter on device bond0 [ 99.055523][ T5843] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 99.071762][ T5842] 8021q: adding VLAN 0 to HW filter on device team0 [ 99.101338][ T53] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.108554][ T53] bridge0: port 1(bridge_slave_0) entered forwarding state [ 99.178373][ T5849] Bluetooth: hci0: command tx timeout [ 99.183870][ T5837] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 99.204920][ T5837] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 99.238658][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.245913][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 99.255584][ T5849] Bluetooth: hci1: command tx timeout [ 99.256541][ T5845] Bluetooth: hci3: command tx timeout [ 99.261007][ T5849] Bluetooth: hci2: command tx timeout [ 99.596425][ T5839] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 99.620599][ T5843] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 99.752852][ T5839] veth0_vlan: entered promiscuous mode [ 99.793403][ T5837] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 99.819716][ T5843] veth0_vlan: entered promiscuous mode [ 99.838592][ T5839] veth1_vlan: entered promiscuous mode [ 99.853972][ T5843] veth1_vlan: entered promiscuous mode [ 99.882500][ T5842] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 99.941101][ T5839] veth0_macvtap: entered promiscuous mode [ 99.970016][ T5839] veth1_macvtap: entered promiscuous mode [ 99.992177][ T5837] veth0_vlan: entered promiscuous mode [ 100.030949][ T5837] veth1_vlan: entered promiscuous mode [ 100.048700][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 100.071098][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 100.088241][ T5843] veth0_macvtap: entered promiscuous mode [ 100.099378][ T5843] veth1_macvtap: entered promiscuous mode [ 100.109854][ T5839] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.120577][ T5839] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.129506][ T5839] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.142238][ T5839] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.153032][ T5842] veth0_vlan: entered promiscuous mode [ 100.169452][ T5842] veth1_vlan: entered promiscuous mode [ 100.234511][ T5843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 100.246512][ T5843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.258338][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 100.292210][ T5837] veth0_macvtap: entered promiscuous mode [ 100.311902][ T5842] veth0_macvtap: entered promiscuous mode [ 100.320463][ T5843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 100.331717][ T5843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.343047][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 100.361476][ T5837] veth1_macvtap: entered promiscuous mode [ 100.389261][ T5843] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.401480][ T5843] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.410349][ T5843] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.419291][ T5843] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.434516][ T5842] veth1_macvtap: entered promiscuous mode [ 100.457626][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 100.468561][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.530226][ T1155] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 100.533034][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 100.550280][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.560453][ T1155] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.561687][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 100.579234][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.590579][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 100.604227][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 100.619337][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.629467][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 100.640065][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.651363][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 100.678098][ T5842] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 100.690303][ T5842] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.702011][ T5842] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 100.713467][ T5842] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.723438][ T5842] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 100.736750][ T5842] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.748324][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 100.759477][ T5837] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.769084][ T5837] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.780476][ T5837] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.789529][ T5837] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.836991][ T5842] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 100.851577][ T5842] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.863534][ T5842] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 100.875604][ T5842] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.885636][ T5842] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 100.896421][ T5842] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.908719][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 100.942036][ T5839] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 100.942843][ T5842] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.967452][ T5842] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.976320][ T5842] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.985462][ T5842] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.061560][ T1090] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.080213][ T1090] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.157761][ T1090] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.175767][ T1090] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.246299][ T1090] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.256585][ T5846] Bluetooth: hci0: command tx timeout [ 101.266716][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.267383][ T1090] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.288730][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.337692][ T5846] Bluetooth: hci3: command tx timeout [ 101.337744][ T5849] Bluetooth: hci2: command tx timeout [ 101.343141][ T5846] Bluetooth: hci1: command tx timeout [ 101.385107][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.397388][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.511278][ T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.522420][ T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.798492][ T5912] process 'syz.1.6' launched ':,' with NULL argv: empty string added [ 101.891478][ T5915] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4'. [ 101.970410][ T5920] FAULT_INJECTION: forcing a failure. [ 101.970410][ T5920] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 102.010697][ T5920] CPU: 0 UID: 0 PID: 5920 Comm: syz.0.1 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 102.010745][ T5920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 102.010767][ T5920] Call Trace: [ 102.010776][ T5920] [ 102.010792][ T5920] dump_stack_lvl+0x16c/0x1f0 [ 102.010845][ T5920] should_fail_ex+0x512/0x640 [ 102.010886][ T5920] _copy_to_user+0x32/0xd0 [ 102.010928][ T5920] simple_read_from_buffer+0xcb/0x170 [ 102.010974][ T5920] proc_fail_nth_read+0x197/0x270 [ 102.011018][ T5920] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 102.011064][ T5920] ? rw_verify_area+0xcf/0x680 [ 102.011101][ T5920] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 102.011144][ T5920] vfs_read+0x1de/0xc70 [ 102.011200][ T5920] ? __pfx___mutex_lock+0x10/0x10 [ 102.011247][ T5920] ? __pfx_vfs_read+0x10/0x10 [ 102.011299][ T5920] ? __fget_files+0x20e/0x3c0 [ 102.011364][ T5920] ksys_read+0x12a/0x240 [ 102.011407][ T5920] ? __pfx_ksys_read+0x10/0x10 [ 102.011447][ T5920] ? rcu_is_watching+0x12/0xc0 [ 102.011499][ T5920] do_syscall_64+0xcd/0x260 [ 102.011549][ T5920] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 102.011580][ T5920] RIP: 0033:0x7f77cb18bb7c [ 102.011604][ T5920] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 102.011634][ T5920] RSP: 002b:00007f77cbf33030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 102.011662][ T5920] RAX: ffffffffffffffda RBX: 00007f77cb3a5fa0 RCX: 00007f77cb18bb7c [ 102.011682][ T5920] RDX: 000000000000000f RSI: 00007f77cbf330a0 RDI: 0000000000000004 [ 102.011700][ T5920] RBP: 00007f77cbf33090 R08: 0000000000000000 R09: 0000000000000000 [ 102.011719][ T5920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 102.011736][ T5920] R13: 0000000000000000 R14: 00007f77cb3a5fa0 R15: 00007ffcc31f27c8 [ 102.011776][ T5920] [ 102.614673][ T5927] syz.0.7 uses obsolete (PF_INET,SOCK_PACKET) [ 102.736882][ T5923] mmap: syz.1.6 (5923) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 103.335519][ T5846] Bluetooth: hci0: command tx timeout [ 103.415902][ T5846] Bluetooth: hci1: command tx timeout [ 103.421371][ T5846] Bluetooth: hci2: command tx timeout [ 103.421646][ T5849] Bluetooth: hci3: command tx timeout [ 104.292763][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 105.184693][ T5959] Process accounting resumed [ 105.945288][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 105.997003][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 106.168344][ T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!! [ 106.195154][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 106.340892][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 106.443258][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 106.455156][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 106.463394][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 106.545486][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 106.999382][ T5998] MTRR 1 not used [ 107.020323][ T5997] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 111.170018][ T6089] FAULT_INJECTION: forcing a failure. [ 111.170018][ T6089] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 111.212334][ T6089] CPU: 0 UID: 0 PID: 6089 Comm: syz.0.50 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 111.212396][ T6089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 111.212422][ T6089] Call Trace: [ 111.212437][ T6089] [ 111.212454][ T6089] dump_stack_lvl+0x16c/0x1f0 [ 111.212508][ T6089] should_fail_ex+0x512/0x640 [ 111.212551][ T6089] should_fail_alloc_page+0xe7/0x130 [ 111.212584][ T6089] prepare_alloc_pages+0x3c2/0x610 [ 111.212623][ T6089] ? __lock_acquire+0x5ca/0x1ba0 [ 111.212676][ T6089] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 111.212733][ T6089] ? look_up_lock_class+0x59/0x150 [ 111.212779][ T6089] ? register_lock_class+0x41/0x4c0 [ 111.212810][ T6089] ? find_held_lock+0x2b/0x80 [ 111.212852][ T6089] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 111.212902][ T6089] ? look_up_lock_class+0x59/0x150 [ 111.212948][ T6089] ? register_lock_class+0x41/0x4c0 [ 111.212989][ T6089] ? __lock_acquire+0xaa4/0x1ba0 [ 111.213040][ T6089] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 111.213071][ T6089] ? policy_nodemask+0xea/0x4e0 [ 111.213116][ T6089] alloc_pages_mpol+0x1fb/0x550 [ 111.213142][ T6089] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 111.213163][ T6089] ? __pfx___might_resched+0x10/0x10 [ 111.213210][ T6089] alloc_pages_noprof+0x131/0x390 [ 111.213235][ T6089] __pmd_alloc+0x3f/0x870 [ 111.213269][ T6089] huge_pte_alloc+0x292/0x3a0 [ 111.213313][ T6089] hugetlb_fault+0x373/0x2e90 [ 111.213353][ T6089] ? __pfx_hugetlb_fault+0x10/0x10 [ 111.213400][ T6089] ? find_vma+0xbf/0x140 [ 111.213426][ T6089] ? __pfx_find_vma+0x10/0x10 [ 111.213458][ T6089] handle_mm_fault+0x95d/0xad0 [ 111.213500][ T6089] do_user_addr_fault+0x7a6/0x1370 [ 111.213535][ T6089] ? rcu_is_watching+0x12/0xc0 [ 111.213571][ T6089] exc_page_fault+0x5c/0xc0 [ 111.213606][ T6089] asm_exc_page_fault+0x26/0x30 [ 111.213631][ T6089] RIP: 0010:copy_iovec_from_user+0x84/0x170 [ 111.213663][ T6089] Code: e8 41 10 f0 fc 4d 85 ff 0f 85 c6 00 00 00 e8 83 15 f0 fc 0f 01 cb 0f ae e8 49 bf 00 00 00 00 00 fc ff df e8 6e 15 f0 fc 31 db <48> 8b 45 08 31 ff 89 de 49 89 c6 e8 9c 10 f0 fc 85 db 0f 85 b1 00 [ 111.213687][ T6089] RSP: 0018:ffffc9000afc78f0 EFLAGS: 00050246 [ 111.213707][ T6089] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff84cb272f [ 111.213723][ T6089] RDX: ffff88802e300000 RSI: ffffffff84cb2752 RDI: 0000000000000006 [ 111.213740][ T6089] RBP: 0000000000000000 R08: 0000000000000006 R09: 0000000000000000 [ 111.213754][ T6089] R10: 0000000000000060 R11: 0000000000000000 R12: ffffc9000afc7b60 [ 111.213770][ T6089] R13: 0000000000000006 R14: 00007ffffffff000 R15: dffffc0000000000 [ 111.213795][ T6089] ? copy_iovec_from_user+0x5f/0x170 [ 111.213825][ T6089] ? copy_iovec_from_user+0x82/0x170 [ 111.213866][ T6089] iovec_from_user+0xa2/0x140 [ 111.213903][ T6089] __import_iovec+0x88/0x660 [ 111.213945][ T6089] import_iovec+0x109/0x140 [ 111.213982][ T6089] copy_msghdr_from_user+0xf9/0x160 [ 111.214017][ T6089] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 111.214071][ T6089] ? __pfx__kstrtoull+0x10/0x10 [ 111.214116][ T6089] ___sys_sendmsg+0xfe/0x1d0 [ 111.214151][ T6089] ? __pfx____sys_sendmsg+0x10/0x10 [ 111.214200][ T6089] ? find_held_lock+0x2b/0x80 [ 111.214252][ T6089] __sys_sendmmsg+0x200/0x420 [ 111.214289][ T6089] ? __pfx___sys_sendmmsg+0x10/0x10 [ 111.214338][ T6089] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 111.214390][ T6089] ? fput+0x70/0xf0 [ 111.214414][ T6089] ? ksys_write+0x1b9/0x240 [ 111.214448][ T6089] ? __pfx_ksys_write+0x10/0x10 [ 111.214480][ T6089] ? rcu_is_watching+0x12/0xc0 [ 111.214516][ T6089] __x64_sys_sendmmsg+0x9c/0x100 [ 111.214548][ T6089] ? lockdep_hardirqs_on+0x7c/0x110 [ 111.214583][ T6089] do_syscall_64+0xcd/0x260 [ 111.214623][ T6089] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.214647][ T6089] RIP: 0033:0x7f77cb18d169 [ 111.214666][ T6089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 111.214688][ T6089] RSP: 002b:00007f77cbf33038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 111.214709][ T6089] RAX: ffffffffffffffda RBX: 00007f77cb3a5fa0 RCX: 00007f77cb18d169 [ 111.214725][ T6089] RDX: 0000000000000003 RSI: 0000200000000140 RDI: 0000000000000003 [ 111.214740][ T6089] RBP: 00007f77cbf33090 R08: 0000000000000000 R09: 0000000000000000 [ 111.214754][ T6089] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001 [ 111.214769][ T6089] R13: 0000000000000000 R14: 00007f77cb3a5fa0 R15: 00007ffcc31f27c8 [ 111.214800][ T6089] [ 112.227864][ T6102] FAULT_INJECTION: forcing a failure. [ 112.227864][ T6102] name failslab, interval 1, probability 0, space 0, times 0 [ 112.265159][ T6102] CPU: 0 UID: 0 PID: 6102 Comm: syz.0.55 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 112.265205][ T6102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 112.265221][ T6102] Call Trace: [ 112.265230][ T6102] [ 112.265240][ T6102] dump_stack_lvl+0x16c/0x1f0 [ 112.265287][ T6102] should_fail_ex+0x512/0x640 [ 112.265320][ T6102] ? __kvmalloc_node_noprof+0x122/0x600 [ 112.265367][ T6102] should_failslab+0xc2/0x120 [ 112.265393][ T6102] __kvmalloc_node_noprof+0x135/0x600 [ 112.265435][ T6102] ? trace_kmalloc+0x2b/0xd0 [ 112.265462][ T6102] ? __kvmalloc_node_noprof+0x1a1/0x600 [ 112.265500][ T6102] ? io_alloc_cache_init+0x33/0x170 [ 112.265544][ T6102] ? io_alloc_cache_init+0x33/0x170 [ 112.265582][ T6102] io_alloc_cache_init+0x33/0x170 [ 112.265624][ T6102] io_rsrc_cache_init+0x40/0x50 [ 112.265657][ T6102] io_uring_setup+0x68b/0x2090 [ 112.265687][ T6102] ? __pfx_io_uring_setup+0x10/0x10 [ 112.265713][ T6102] ? do_futex+0x122/0x350 [ 112.265754][ T6102] ? __pfx_do_futex+0x10/0x10 [ 112.265797][ T6102] ? __pfx___might_resched+0x10/0x10 [ 112.265850][ T6102] ? rcu_is_watching+0x12/0xc0 [ 112.265893][ T6102] __x64_sys_io_uring_setup+0xc2/0x170 [ 112.265923][ T6102] do_syscall_64+0xcd/0x260 [ 112.265968][ T6102] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.265996][ T6102] RIP: 0033:0x7f77cb18d169 [ 112.266019][ T6102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 112.266045][ T6102] RSP: 002b:00007f77cbf33038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 112.266071][ T6102] RAX: ffffffffffffffda RBX: 00007f77cb3a5fa0 RCX: 00007f77cb18d169 [ 112.266089][ T6102] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000009 [ 112.266104][ T6102] RBP: 00007f77cb20e990 R08: 0000000000000000 R09: 0000000000000000 [ 112.266120][ T6102] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 112.266144][ T6102] R13: 0000000000000000 R14: 00007f77cb3a5fa0 R15: 00007ffcc31f27c8 [ 112.266178][ T6102] [ 112.919121][ T6106] FAULT_INJECTION: forcing a failure. [ 112.919121][ T6106] name failslab, interval 1, probability 0, space 0, times 0 [ 112.951051][ T6106] CPU: 1 UID: 0 PID: 6106 Comm: syz.0.56 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 112.951095][ T6106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 112.951113][ T6106] Call Trace: [ 112.951123][ T6106] [ 112.951134][ T6106] dump_stack_lvl+0x16c/0x1f0 [ 112.951185][ T6106] should_fail_ex+0x512/0x640 [ 112.951220][ T6106] ? __kvmalloc_node_noprof+0x122/0x600 [ 112.951270][ T6106] should_failslab+0xc2/0x120 [ 112.951300][ T6106] __kvmalloc_node_noprof+0x135/0x600 [ 112.951347][ T6106] ? io_uring_setup+0x377/0x2090 [ 112.951386][ T6106] ? io_uring_setup+0x377/0x2090 [ 112.951413][ T6106] io_uring_setup+0x377/0x2090 [ 112.951449][ T6106] ? __pfx_io_uring_setup+0x10/0x10 [ 112.951477][ T6106] ? __pfx_vfs_write+0x10/0x10 [ 112.951522][ T6106] ? do_sys_openat2+0x157/0x1d0 [ 112.951554][ T6106] ? __pfx_do_sys_openat2+0x10/0x10 [ 112.951590][ T6106] ? __pfx___might_resched+0x10/0x10 [ 112.951650][ T6106] ? ksys_write+0x1b9/0x240 [ 112.951693][ T6106] ? __pfx_ksys_write+0x10/0x10 [ 112.951734][ T6106] ? rcu_is_watching+0x12/0xc0 [ 112.951780][ T6106] __x64_sys_io_uring_setup+0xc2/0x170 [ 112.951821][ T6106] do_syscall_64+0xcd/0x260 [ 112.951871][ T6106] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.951903][ T6106] RIP: 0033:0x7f77cb18d169 [ 112.951927][ T6106] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 112.951968][ T6106] RSP: 002b:00007f77cbf33038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 112.951996][ T6106] RAX: ffffffffffffffda RBX: 00007f77cb3a5fa0 RCX: 00007f77cb18d169 [ 112.952015][ T6106] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000009 [ 112.952031][ T6106] RBP: 00007f77cbf33090 R08: 0000000000000000 R09: 0000000000000000 [ 112.952049][ T6106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 112.952067][ T6106] R13: 0000000000000000 R14: 00007f77cb3a5fa0 R15: 00007ffcc31f27c8 [ 112.952105][ T6106] [ 113.772847][ T6111] zswap: compressor not available [ 113.947640][ T6117] zswap: compressor not available [ 113.954713][ T6118] FAULT_INJECTION: forcing a failure. [ 113.954713][ T6118] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 114.001294][ T6118] CPU: 0 UID: 0 PID: 6118 Comm: syz.3.60 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 114.001335][ T6118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 114.001351][ T6118] Call Trace: [ 114.001361][ T6118] [ 114.001372][ T6118] dump_stack_lvl+0x16c/0x1f0 [ 114.001422][ T6118] should_fail_ex+0x512/0x640 [ 114.001464][ T6118] _copy_to_iter+0x2a4/0x15a0 [ 114.001504][ T6118] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 114.001555][ T6118] ? __pfx__copy_to_iter+0x10/0x10 [ 114.001595][ T6118] ? kernfs_seq_stop+0xcd/0x120 [ 114.001640][ T6118] ? kernfs_put_active+0x86/0xe0 [ 114.001676][ T6118] seq_read_iter+0xcf8/0x12c0 [ 114.001735][ T6118] kernfs_fop_read_iter+0x40f/0x5a0 [ 114.001773][ T6118] ? rw_verify_area+0xcf/0x680 [ 114.001814][ T6118] vfs_read+0x8c8/0xc70 [ 114.001860][ T6118] ? __pfx___mutex_lock+0x10/0x10 [ 114.001903][ T6118] ? __pfx_vfs_read+0x10/0x10 [ 114.001972][ T6118] ksys_read+0x12a/0x240 [ 114.002020][ T6118] ? __pfx_ksys_read+0x10/0x10 [ 114.002058][ T6118] ? rcu_is_watching+0x12/0xc0 [ 114.002108][ T6118] do_syscall_64+0xcd/0x260 [ 114.002155][ T6118] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 114.002185][ T6118] RIP: 0033:0x7fb8be58d169 [ 114.002206][ T6118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 114.002233][ T6118] RSP: 002b:00007fb8bf404038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 114.002259][ T6118] RAX: ffffffffffffffda RBX: 00007fb8be7a6080 RCX: 00007fb8be58d169 [ 114.002278][ T6118] RDX: 0000000000001000 RSI: 0000200000000180 RDI: 0000000000000004 [ 114.002296][ T6118] RBP: 00007fb8bf404090 R08: 0000000000000000 R09: 0000000000000000 [ 114.002313][ T6118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 114.002335][ T6118] R13: 0000000000000000 R14: 00007fb8be7a6080 R15: 00007fffb7c28748 [ 114.002374][ T6118] [ 114.261782][ T6127] FAULT_INJECTION: forcing a failure. [ 114.261782][ T6127] name failslab, interval 1, probability 0, space 0, times 0 [ 114.448178][ T6127] CPU: 1 UID: 0 PID: 6127 Comm: syz.1.61 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 114.448224][ T6127] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 114.448243][ T6127] Call Trace: [ 114.448253][ T6127] [ 114.448265][ T6127] dump_stack_lvl+0x16c/0x1f0 [ 114.448317][ T6127] should_fail_ex+0x512/0x640 [ 114.448353][ T6127] ? __kmalloc_node_noprof+0xc5/0x500 [ 114.448407][ T6127] should_failslab+0xc2/0x120 [ 114.448438][ T6127] __kmalloc_node_noprof+0xd8/0x500 [ 114.448484][ T6127] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 114.448513][ T6127] ? alloc_slab_obj_exts+0x41/0xa0 [ 114.448560][ T6127] alloc_slab_obj_exts+0x41/0xa0 [ 114.448619][ T6127] new_slab+0x284/0x330 [ 114.448662][ T6127] ___slab_alloc+0xd9c/0x1940 [ 114.448699][ T6127] ? alloc_tty_struct+0x96/0x8c0 [ 114.448732][ T6127] ? new_slab+0x2c1/0x330 [ 114.448787][ T6127] ? alloc_tty_struct+0x96/0x8c0 [ 114.448818][ T6127] ? __slab_alloc.constprop.0+0x56/0xb0 [ 114.448859][ T6127] __slab_alloc.constprop.0+0x56/0xb0 [ 114.448908][ T6127] __kmalloc_cache_noprof+0xfb/0x3e0 [ 114.448960][ T6127] ? alloc_tty_struct+0x96/0x8c0 [ 114.448999][ T6127] alloc_tty_struct+0x96/0x8c0 [ 114.449034][ T6127] ? __pfx_alloc_tty_struct+0x10/0x10 [ 114.449079][ T6127] tty_init_dev.part.0+0x1e/0x500 [ 114.449115][ T6127] tty_open+0xa50/0xf90 [ 114.449155][ T6127] ? __pfx_tty_open+0x10/0x10 [ 114.449187][ T6127] ? chrdev_open+0x58c/0x6a0 [ 114.449242][ T6127] ? __pfx_tty_open+0x10/0x10 [ 114.449274][ T6127] chrdev_open+0x231/0x6a0 [ 114.449324][ T6127] ? __pfx_chrdev_open+0x10/0x10 [ 114.449378][ T6127] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 114.449433][ T6127] do_dentry_open+0x741/0x1c10 [ 114.449479][ T6127] ? __pfx_chrdev_open+0x10/0x10 [ 114.449538][ T6127] vfs_open+0x82/0x3f0 [ 114.449576][ T6127] path_openat+0x1e5e/0x2d40 [ 114.449638][ T6127] ? __pfx_path_openat+0x10/0x10 [ 114.449697][ T6127] do_filp_open+0x20b/0x470 [ 114.449746][ T6127] ? __pfx_do_filp_open+0x10/0x10 [ 114.449824][ T6127] ? alloc_fd+0x471/0x7d0 [ 114.449880][ T6127] do_sys_openat2+0x11b/0x1d0 [ 114.449921][ T6127] ? __pfx_do_sys_openat2+0x10/0x10 [ 114.449971][ T6127] __x64_sys_openat+0x174/0x210 [ 114.450008][ T6127] ? __pfx___x64_sys_openat+0x10/0x10 [ 114.450043][ T6127] ? rcu_is_watching+0x12/0xc0 [ 114.450094][ T6127] do_syscall_64+0xcd/0x260 [ 114.450145][ T6127] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 114.450182][ T6127] RIP: 0033:0x7fc174d8d169 [ 114.450208][ T6127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 114.450238][ T6127] RSP: 002b:00007fc175c73038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 114.450268][ T6127] RAX: ffffffffffffffda RBX: 00007fc174fa6080 RCX: 00007fc174d8d169 [ 114.450288][ T6127] RDX: 0000000000040000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 114.450308][ T6127] RBP: 00007fc174e0e990 R08: 0000000000000000 R09: 0000000000000000 [ 114.450327][ T6127] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 114.450345][ T6127] R13: 0000000000000000 R14: 00007fc174fa6080 R15: 00007ffd8a6341c8 [ 114.450385][ T6127] [ 114.953546][ T6136] Zero length message leads to an empty skb [ 115.194673][ T30] audit: type=1800 audit(1744354515.072:2): pid=6140 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.65" name="discovery_nqn" dev="configfs" ino=7816 res=0 errno=0 [ 115.473458][ T6151] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 116.023706][ T6167] FAULT_INJECTION: forcing a failure. [ 116.023706][ T6167] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 116.044863][ T6167] CPU: 1 UID: 0 PID: 6167 Comm: syz.3.73 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 116.044904][ T6167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 116.044921][ T6167] Call Trace: [ 116.044931][ T6167] [ 116.044942][ T6167] dump_stack_lvl+0x16c/0x1f0 [ 116.044992][ T6167] should_fail_ex+0x512/0x640 [ 116.045034][ T6167] _copy_from_user+0x2e/0xd0 [ 116.045075][ T6167] map_update_elem+0x741/0x920 [ 116.045132][ T6167] ? __pfx_map_update_elem+0x10/0x10 [ 116.045203][ T6167] __sys_bpf+0x1616/0x4d80 [ 116.045242][ T6167] ? __pfx___sys_bpf+0x10/0x10 [ 116.045275][ T6167] ? vfs_write+0x316/0x1180 [ 116.045313][ T6167] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 116.045364][ T6167] ? __pfx_vfs_write+0x10/0x10 [ 116.045407][ T6167] ? do_sys_openat2+0x157/0x1d0 [ 116.045458][ T6167] ? ksys_write+0x1b9/0x240 [ 116.045499][ T6167] ? __pfx_ksys_write+0x10/0x10 [ 116.045539][ T6167] ? rcu_is_watching+0x12/0xc0 [ 116.045583][ T6167] __x64_sys_bpf+0x78/0xc0 [ 116.045617][ T6167] ? lockdep_hardirqs_on+0x7c/0x110 [ 116.045659][ T6167] do_syscall_64+0xcd/0x260 [ 116.045706][ T6167] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.045737][ T6167] RIP: 0033:0x7fb8be58d169 [ 116.045760][ T6167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 116.045796][ T6167] RSP: 002b:00007fb8bf425038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 116.045824][ T6167] RAX: ffffffffffffffda RBX: 00007fb8be7a5fa0 RCX: 00007fb8be58d169 [ 116.045844][ T6167] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002 [ 116.045862][ T6167] RBP: 00007fb8bf425090 R08: 0000000000000000 R09: 0000000000000000 [ 116.045880][ T6167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 116.045897][ T6167] R13: 0000000000000000 R14: 00007fb8be7a5fa0 R15: 00007fffb7c28748 [ 116.045936][ T6167] [ 116.766471][ T6171] FAULT_INJECTION: forcing a failure. [ 116.766471][ T6171] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 116.830169][ T6171] CPU: 1 UID: 0 PID: 6171 Comm: syz.2.74 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 116.830214][ T6171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 116.830244][ T6171] Call Trace: [ 116.830254][ T6171] [ 116.830268][ T6171] dump_stack_lvl+0x16c/0x1f0 [ 116.830318][ T6171] should_fail_ex+0x512/0x640 [ 116.830360][ T6171] should_fail_alloc_page+0xe7/0x130 [ 116.830394][ T6171] prepare_alloc_pages+0x3c2/0x610 [ 116.830433][ T6171] ? rcu_is_watching+0x12/0xc0 [ 116.830485][ T6171] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 116.830557][ T6171] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 116.830605][ T6171] ? do_raw_spin_lock+0x12c/0x2b0 [ 116.830642][ T6171] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 116.830675][ T6171] ? cgroup_rstat_updated+0x2a/0xb20 [ 116.830715][ T6171] ? find_held_lock+0x2b/0x80 [ 116.830765][ T6171] ? __lock_acquire+0xaa4/0x1ba0 [ 116.830815][ T6171] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 116.830851][ T6171] ? policy_nodemask+0xea/0x4e0 [ 116.830904][ T6171] alloc_pages_mpol+0x1fb/0x550 [ 116.830936][ T6171] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 116.830976][ T6171] folio_alloc_mpol_noprof+0x36/0x2f0 [ 116.831013][ T6171] shmem_alloc_folio+0x135/0x160 [ 116.831056][ T6171] shmem_alloc_and_add_folio+0x499/0xc20 [ 116.831115][ T6171] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 116.831169][ T6171] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 116.831225][ T6171] shmem_get_folio_gfp+0x687/0x1530 [ 116.831283][ T6171] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 116.831332][ T6171] ? filemap_map_pages+0xf6c/0x1680 [ 116.831361][ T6171] shmem_fault+0x1fe/0xa30 [ 116.831403][ T6171] ? __pfx_shmem_fault+0x10/0x10 [ 116.831456][ T6171] ? __pfx_filemap_map_pages+0x10/0x10 [ 116.831492][ T6171] __do_fault+0x10a/0x490 [ 116.831519][ T6171] do_pte_missing+0x1031/0x3fb0 [ 116.831560][ T6171] ? __handle_mm_fault+0x1010/0x2a40 [ 116.831609][ T6171] __handle_mm_fault+0x103d/0x2a40 [ 116.831655][ T6171] ? __pfx___handle_mm_fault+0x10/0x10 [ 116.831712][ T6171] ? find_vma+0xbf/0x140 [ 116.831739][ T6171] ? __pfx_find_vma+0x10/0x10 [ 116.831770][ T6171] handle_mm_fault+0x3fe/0xad0 [ 116.831814][ T6171] do_user_addr_fault+0x7a6/0x1370 [ 116.831849][ T6171] ? rcu_is_watching+0x12/0xc0 [ 116.831883][ T6171] exc_page_fault+0x5c/0xc0 [ 116.831919][ T6171] asm_exc_page_fault+0x26/0x30 [ 116.831943][ T6171] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 116.831973][ T6171] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 116.831997][ T6171] RSP: 0018:ffffc90004c5f448 EFLAGS: 00050202 [ 116.832018][ T6171] RAX: 0000000000000001 RBX: 0000000000007fd8 RCX: 0000000000004fd8 [ 116.832034][ T6171] RDX: ffffed100f974ffb RSI: 000000000000b000 RDI: ffff88807cba3000 [ 116.832050][ T6171] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100f974ffa [ 116.832065][ T6171] R10: ffff88807cba7fd7 R11: 0000000000000000 R12: 0000000000008000 [ 116.832080][ T6171] R13: ffffc90004c5fc58 R14: 000000000000ffd8 R15: ffff88807cba0000 [ 116.832119][ T6171] _copy_from_iter+0x391/0x15b0 [ 116.832154][ T6171] ? policy_nodemask+0xea/0x4e0 [ 116.832199][ T6171] ? __pfx__copy_from_iter+0x10/0x10 [ 116.832229][ T6171] ? alloc_pages_mpol+0x25a/0x550 [ 116.832253][ T6171] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 116.832287][ T6171] ip_generic_getfrag+0xf7/0x270 [ 116.832323][ T6171] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 116.832362][ T6171] ? sk_page_frag_refill+0x6c/0x300 [ 116.832392][ T6171] __ip_append_data+0x13e9/0x41e0 [ 116.832435][ T6171] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 116.832505][ T6171] ? __pfx___ip_append_data+0x10/0x10 [ 116.832551][ T6171] ip_make_skb+0x27f/0x300 [ 116.832593][ T6171] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 116.832634][ T6171] ? __pfx_ip_make_skb+0x10/0x10 [ 116.832698][ T6171] ? udp_sendmsg+0x189a/0x29e0 [ 116.832732][ T6171] udp_sendmsg+0x189a/0x29e0 [ 116.832774][ T6171] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 116.832815][ T6171] ? __pfx_udp_sendmsg+0x10/0x10 [ 116.832848][ T6171] ? __lock_acquire+0x5ca/0x1ba0 [ 116.832905][ T6171] ? __pfx___might_resched+0x10/0x10 [ 116.832947][ T6171] ? aa_sk_perm+0x2f4/0xb10 [ 116.832987][ T6171] ? __pfx_udp_sendmsg+0x10/0x10 [ 116.833024][ T6171] inet_sendmsg+0x105/0x140 [ 116.833049][ T6171] sock_write_iter+0x4aa/0x5b0 [ 116.833091][ T6171] ? __pfx_sock_write_iter+0x10/0x10 [ 116.833144][ T6171] ? bpf_lsm_file_permission+0x9/0x10 [ 116.833176][ T6171] ? security_file_permission+0x71/0x210 [ 116.833210][ T6171] ? rw_verify_area+0xcf/0x680 [ 116.833244][ T6171] vfs_write+0x5ba/0x1180 [ 116.833290][ T6171] ? __pfx_sock_write_iter+0x10/0x10 [ 116.833332][ T6171] ? __pfx_vfs_write+0x10/0x10 [ 116.833362][ T6171] ? find_held_lock+0x2b/0x80 [ 116.833411][ T6171] ksys_write+0x205/0x240 [ 116.833443][ T6171] ? __pfx_ksys_write+0x10/0x10 [ 116.833481][ T6171] ? rcu_is_watching+0x12/0xc0 [ 116.833519][ T6171] do_syscall_64+0xcd/0x260 [ 116.833577][ T6171] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.833602][ T6171] RIP: 0033:0x7fb0a338d169 [ 116.833622][ T6171] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 116.833657][ T6171] RSP: 002b:00007fb0a415b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 116.833679][ T6171] RAX: ffffffffffffffda RBX: 00007fb0a35a5fa0 RCX: 00007fb0a338d169 [ 116.833695][ T6171] RDX: 000000000000ffd8 RSI: 0000000000000000 RDI: 0000000000000003 [ 116.833710][ T6171] RBP: 00007fb0a340e990 R08: 0000000000000000 R09: 0000000000000000 [ 116.833724][ T6171] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 116.833737][ T6171] R13: 0000000000000000 R14: 00007fb0a35a5fa0 R15: 00007ffc2c5f2898 [ 116.833767][ T6171] [ 118.113861][ T6195] FAULT_INJECTION: forcing a failure. [ 118.113861][ T6195] name fail_futex, interval 1, probability 0, space 0, times 1 [ 118.184932][ T6195] CPU: 1 UID: 0 PID: 6195 Comm: syz.3.81 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 118.184977][ T6195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 118.184995][ T6195] Call Trace: [ 118.185005][ T6195] [ 118.185016][ T6195] dump_stack_lvl+0x16c/0x1f0 [ 118.185085][ T6195] should_fail_ex+0x512/0x640 [ 118.185150][ T6195] get_futex_key+0x49e/0x1000 [ 118.185198][ T6195] ? find_held_lock+0x2b/0x80 [ 118.185250][ T6195] ? __pfx_get_futex_key+0x10/0x10 [ 118.185307][ T6195] ? rcu_is_watching+0x12/0xc0 [ 118.185374][ T6195] ? __local_bh_enable_ip+0xa4/0x120 [ 118.185461][ T6195] ? lockdep_hardirqs_on+0x7c/0x110 [ 118.185516][ T6195] ? vsock_connect+0x572/0xee0 [ 118.185575][ T6195] ? __local_bh_enable_ip+0xa4/0x120 [ 118.185624][ T6195] futex_wake+0xe7/0x4e0 [ 118.185655][ T6195] ? __pfx_vsock_connect+0x10/0x10 [ 118.185734][ T6195] ? __pfx_futex_wake+0x10/0x10 [ 118.185772][ T6195] ? __might_fault+0xe3/0x190 [ 118.185866][ T6195] ? __might_fault+0x13b/0x190 [ 118.185971][ T6195] do_futex+0x1e3/0x350 [ 118.186043][ T6195] ? __pfx_do_futex+0x10/0x10 [ 118.186112][ T6195] ? fput+0x70/0xf0 [ 118.186157][ T6195] ? __sys_connect+0xf1/0x170 [ 118.186233][ T6195] __x64_sys_futex+0x1e0/0x4c0 [ 118.186302][ T6195] ? __pfx___x64_sys_futex+0x10/0x10 [ 118.186371][ T6195] ? rcu_is_watching+0x12/0xc0 [ 118.186447][ T6195] do_syscall_64+0xcd/0x260 [ 118.186519][ T6195] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.186554][ T6195] RIP: 0033:0x7fb8be58d169 [ 118.186601][ T6195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 118.186633][ T6195] RSP: 002b:00007fb8bf4250e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 118.186663][ T6195] RAX: ffffffffffffffda RBX: 00007fb8be7a5fa8 RCX: 00007fb8be58d169 [ 118.186684][ T6195] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb8be7a5fac [ 118.186703][ T6195] RBP: 00007fb8be7a5fa0 R08: 00007fb8bf426000 R09: 0000000000000000 [ 118.186722][ T6195] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007fb8be7a5fac [ 118.186753][ T6195] R13: 0000000000000000 R14: 00007fffb7c28660 R15: 00007fffb7c28748 [ 118.186794][ T6195] [ 118.253302][ T6200] FAULT_INJECTION: forcing a failure. [ 118.253302][ T6200] name fail_futex, interval 1, probability 0, space 0, times 0 [ 118.460389][ T6200] CPU: 1 UID: 0 PID: 6200 Comm: syz.2.83 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 118.460433][ T6200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 118.460459][ T6200] Call Trace: [ 118.460470][ T6200] [ 118.460481][ T6200] dump_stack_lvl+0x16c/0x1f0 [ 118.460551][ T6200] should_fail_ex+0x512/0x640 [ 118.460593][ T6200] get_futex_key+0x49e/0x1000 [ 118.460642][ T6200] ? __pfx_get_futex_key+0x10/0x10 [ 118.460702][ T6200] futex_wake+0xe7/0x4e0 [ 118.460735][ T6200] ? __pfx_futex_wake+0x10/0x10 [ 118.460765][ T6200] ? rcu_is_watching+0x12/0xc0 [ 118.460831][ T6200] do_futex+0x1e3/0x350 [ 118.460875][ T6200] ? __pfx_do_futex+0x10/0x10 [ 118.460923][ T6200] ? __pfx___might_resched+0x10/0x10 [ 118.460971][ T6200] __x64_sys_futex+0x1e0/0x4c0 [ 118.461017][ T6200] ? __pfx_blkcg_maybe_throttle_current+0x10/0x10 [ 118.461070][ T6200] ? __pfx___x64_sys_futex+0x10/0x10 [ 118.461113][ T6200] ? ksys_mmap_pgoff+0x85/0x5c0 [ 118.461149][ T6200] ? rcu_is_watching+0x12/0xc0 [ 118.461197][ T6200] do_syscall_64+0xcd/0x260 [ 118.461246][ T6200] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.461277][ T6200] RIP: 0033:0x7fb0a338d169 [ 118.461313][ T6200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 118.461343][ T6200] RSP: 002b:00007fb0a413a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 118.461371][ T6200] RAX: ffffffffffffffda RBX: 00007fb0a35a6088 RCX: 00007fb0a338d169 [ 118.461391][ T6200] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb0a35a608c [ 118.461409][ T6200] RBP: 00007fb0a35a6080 R08: 00007fb0a415c000 R09: 0000000000000000 [ 118.461446][ T6200] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb0a35a608c [ 118.461465][ T6200] R13: 0000000000000000 R14: 00007ffc2c5f27b0 R15: 00007ffc2c5f2898 [ 118.461505][ T6200] [ 118.853365][ T6210] program syz.2.87 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 119.232494][ T30] audit: type=1804 audit(1744354519.122:3): pid=6221 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.89" name="/newroot/sys/kernel/tracing/trace_options" dev="tracefs" ino=1133 res=1 errno=0 [ 119.785518][ T6230] netlink: 28 bytes leftover after parsing attributes in process `syz.3.92'. [ 119.833858][ T6230] bridge0: port 2(bridge_slave_1) entered disabled state [ 120.045915][ T6230] bridge_slave_1 (unregistering): left allmulticast mode [ 120.053199][ T6230] bridge_slave_1 (unregistering): left promiscuous mode [ 120.071335][ T6230] bridge0: port 2(bridge_slave_1) entered disabled state [ 121.089251][ T6244] Process accounting resumed [ 121.249003][ T6249] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input5 [ 121.760436][ T6259] FAULT_INJECTION: forcing a failure. [ 121.760436][ T6259] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 121.793982][ T6259] CPU: 0 UID: 0 PID: 6259 Comm: syz.2.100 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 121.794021][ T6259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 121.794037][ T6259] Call Trace: [ 121.794046][ T6259] [ 121.794056][ T6259] dump_stack_lvl+0x16c/0x1f0 [ 121.794103][ T6259] should_fail_ex+0x512/0x640 [ 121.794142][ T6259] _copy_to_user+0x32/0xd0 [ 121.794182][ T6259] simple_read_from_buffer+0xcb/0x170 [ 121.794230][ T6259] proc_fail_nth_read+0x197/0x270 [ 121.794271][ T6259] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 121.794313][ T6259] ? rw_verify_area+0xcf/0x680 [ 121.794347][ T6259] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 121.794387][ T6259] vfs_read+0x1de/0xc70 [ 121.794430][ T6259] ? __pfx___mutex_lock+0x10/0x10 [ 121.794472][ T6259] ? __pfx_vfs_read+0x10/0x10 [ 121.794521][ T6259] ? __fget_files+0x20e/0x3c0 [ 121.794574][ T6259] ksys_read+0x12a/0x240 [ 121.794612][ T6259] ? __pfx_ksys_read+0x10/0x10 [ 121.794649][ T6259] ? rcu_is_watching+0x12/0xc0 [ 121.794696][ T6259] do_syscall_64+0xcd/0x260 [ 121.794740][ T6259] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.794768][ T6259] RIP: 0033:0x7fb0a338bb7c [ 121.794790][ T6259] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 121.794820][ T6259] RSP: 002b:00007fb0a415b030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 121.794845][ T6259] RAX: ffffffffffffffda RBX: 00007fb0a35a5fa0 RCX: 00007fb0a338bb7c [ 121.794863][ T6259] RDX: 000000000000000f RSI: 00007fb0a415b0a0 RDI: 0000000000000004 [ 121.794879][ T6259] RBP: 00007fb0a415b090 R08: 0000000000000000 R09: 0000000000000000 [ 121.794894][ T6259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 121.794910][ T6259] R13: 0000000000000000 R14: 00007fb0a35a5fa0 R15: 00007ffc2c5f2898 [ 121.794946][ T6259] [ 121.999531][ T6260] FAULT_INJECTION: forcing a failure. [ 121.999531][ T6260] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 122.066387][ T6260] CPU: 1 UID: 0 PID: 6260 Comm: syz.1.101 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 122.066426][ T6260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 122.066442][ T6260] Call Trace: [ 122.066451][ T6260] [ 122.066461][ T6260] dump_stack_lvl+0x16c/0x1f0 [ 122.066508][ T6260] should_fail_ex+0x512/0x640 [ 122.066546][ T6260] _copy_from_user+0x2e/0xd0 [ 122.066584][ T6260] kvm_arch_vm_ioctl+0xa99/0x1cf0 [ 122.066632][ T6260] ? __pfx_kvm_arch_vm_ioctl+0x10/0x10 [ 122.066679][ T6260] ? __lock_acquire+0x5ca/0x1ba0 [ 122.066731][ T6260] ? __lock_acquire+0x5ca/0x1ba0 [ 122.066785][ T6260] ? __lock_acquire+0x5ca/0x1ba0 [ 122.066838][ T6260] ? __lock_acquire+0x5ca/0x1ba0 [ 122.066912][ T6260] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 122.066986][ T6260] ? is_bpf_text_address+0x94/0x1a0 [ 122.067014][ T6260] ? kernel_text_address+0x8d/0x100 [ 122.067049][ T6260] ? __kernel_text_address+0xd/0x40 [ 122.067083][ T6260] ? unwind_get_return_address+0x59/0xa0 [ 122.067122][ T6260] ? arch_stack_walk+0xa6/0x100 [ 122.067178][ T6260] ? stack_trace_save+0x8e/0xc0 [ 122.067218][ T6260] ? __pfx_stack_trace_save+0x10/0x10 [ 122.067256][ T6260] ? stack_depot_save_flags+0x28/0xa50 [ 122.067293][ T6260] ? __lock_acquire+0xaa4/0x1ba0 [ 122.067345][ T6260] ? kasan_save_stack+0x42/0x60 [ 122.067391][ T6260] ? kasan_save_stack+0x33/0x60 [ 122.067431][ T6260] ? kasan_save_track+0x14/0x30 [ 122.067472][ T6260] ? kasan_save_free_info+0x3b/0x60 [ 122.067506][ T6260] ? __kasan_slab_free+0x51/0x70 [ 122.067548][ T6260] ? kfree+0x2b6/0x4d0 [ 122.067583][ T6260] ? tomoyo_path_number_perm+0x470/0x580 [ 122.067615][ T6260] ? security_file_ioctl+0x9b/0x240 [ 122.067650][ T6260] ? __x64_sys_ioctl+0xb7/0x200 [ 122.067684][ T6260] ? do_syscall_64+0xcd/0x260 [ 122.067732][ T6260] kvm_vm_ioctl+0x1985/0x3d40 [ 122.067785][ T6260] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 122.067844][ T6260] ? kasan_quarantine_put+0x10a/0x240 [ 122.067886][ T6260] ? lockdep_hardirqs_on+0x7c/0x110 [ 122.067928][ T6260] ? find_held_lock+0x2b/0x80 [ 122.067972][ T6260] ? tomoyo_path_number_perm+0x295/0x580 [ 122.068010][ T6260] ? tomoyo_path_number_perm+0x18d/0x580 [ 122.068046][ T6260] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 122.068081][ T6260] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 122.068115][ T6260] ? do_vfs_ioctl+0x512/0x1990 [ 122.068151][ T6260] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 122.068223][ T6260] ? find_held_lock+0x2b/0x80 [ 122.068256][ T6260] ? hook_file_ioctl_common+0x145/0x410 [ 122.068294][ T6260] ? __fget_files+0x20e/0x3c0 [ 122.068358][ T6260] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 122.068396][ T6260] __x64_sys_ioctl+0x190/0x200 [ 122.068435][ T6260] do_syscall_64+0xcd/0x260 [ 122.068482][ T6260] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.068512][ T6260] RIP: 0033:0x7fc174d8d169 [ 122.068535][ T6260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 122.068564][ T6260] RSP: 002b:00007fc175c94038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 122.068592][ T6260] RAX: ffffffffffffffda RBX: 00007fc174fa5fa0 RCX: 00007fc174d8d169 [ 122.068610][ T6260] RDX: 0000000000000004 RSI: 000000004048aec9 RDI: 0000000000000003 [ 122.068627][ T6260] RBP: 00007fc175c94090 R08: 0000000000000000 R09: 0000000000000000 [ 122.068644][ T6260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 122.068660][ T6260] R13: 0000000000000000 R14: 00007fc174fa5fa0 R15: 00007ffd8a6341c8 [ 122.068698][ T6260] [ 122.455384][ T6262] netlink: 186 bytes leftover after parsing attributes in process `syz.3.102'. [ 122.850388][ T6273] FAULT_INJECTION: forcing a failure. [ 122.850388][ T6273] name failslab, interval 1, probability 0, space 0, times 0 [ 122.875572][ T6273] CPU: 0 UID: 0 PID: 6273 Comm: syz.2.107 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 122.875614][ T6273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 122.875631][ T6273] Call Trace: [ 122.875641][ T6273] [ 122.875652][ T6273] dump_stack_lvl+0x16c/0x1f0 [ 122.875700][ T6273] should_fail_ex+0x512/0x640 [ 122.875735][ T6273] ? __kmalloc_noprof+0xbf/0x510 [ 122.875784][ T6273] ? copy_splice_read+0x1a8/0xba0 [ 122.875822][ T6273] should_failslab+0xc2/0x120 [ 122.875851][ T6273] __kmalloc_noprof+0xd2/0x510 [ 122.875916][ T6273] copy_splice_read+0x1a8/0xba0 [ 122.875955][ T6273] ? __pfx_pipe_to_null+0x10/0x10 [ 122.875988][ T6273] ? __pfx_copy_splice_read+0x10/0x10 [ 122.876024][ T6273] ? pipe_unlock+0x4a/0x70 [ 122.876068][ T6273] ? __pfx_splice_from_pipe+0x10/0x10 [ 122.876160][ T6273] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 122.876204][ T6273] ? __pfx_copy_splice_read+0x10/0x10 [ 122.876243][ T6273] do_splice_read+0x282/0x370 [ 122.876284][ T6273] splice_direct_to_actor+0x2a1/0xa30 [ 122.876326][ T6273] ? __pfx_direct_splice_actor+0x10/0x10 [ 122.876374][ T6273] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 122.876412][ T6273] ? get_pid_task+0xfc/0x250 [ 122.876449][ T6273] do_splice_direct+0x174/0x240 [ 122.876489][ T6273] ? __pfx_do_splice_direct+0x10/0x10 [ 122.876529][ T6273] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 122.876569][ T6273] ? bpf_lsm_file_permission+0x9/0x10 [ 122.876605][ T6273] ? security_file_permission+0x71/0x210 [ 122.876644][ T6273] ? rw_verify_area+0xcf/0x680 [ 122.876682][ T6273] do_sendfile+0xafd/0xe50 [ 122.876727][ T6273] ? __pfx_do_sendfile+0x10/0x10 [ 122.876765][ T6273] ? __fget_files+0x20e/0x3c0 [ 122.876816][ T6273] __x64_sys_sendfile64+0x1d8/0x220 [ 122.876842][ T6273] ? ksys_write+0x1b9/0x240 [ 122.876898][ T6273] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 122.876944][ T6273] ? rcu_is_watching+0x12/0xc0 [ 122.876993][ T6273] do_syscall_64+0xcd/0x260 [ 122.877042][ T6273] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.877072][ T6273] RIP: 0033:0x7fb0a338d169 [ 122.877096][ T6273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 122.877129][ T6273] RSP: 002b:00007fb0a413a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 122.877156][ T6273] RAX: ffffffffffffffda RBX: 00007fb0a35a6080 RCX: 00007fb0a338d169 [ 122.877175][ T6273] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000005 [ 122.877192][ T6273] RBP: 00007fb0a413a090 R08: 0000000000000000 R09: 0000000000000000 [ 122.877209][ T6273] R10: 0010000800000003 R11: 0000000000000246 R12: 0000000000000001 [ 122.877226][ T6273] R13: 0000000000000000 R14: 00007fb0a35a6080 R15: 00007ffc2c5f2898 [ 122.877264][ T6273] [ 124.022696][ T6293] FAULT_INJECTION: forcing a failure. [ 124.022696][ T6293] name failslab, interval 1, probability 0, space 0, times 0 [ 124.044303][ T6291] HSR: entered promiscuous mode [ 124.057288][ T6293] CPU: 0 UID: 0 PID: 6293 Comm: syz.3.114 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 124.057330][ T6293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 124.057347][ T6293] Call Trace: [ 124.057357][ T6293] [ 124.057369][ T6293] dump_stack_lvl+0x16c/0x1f0 [ 124.057421][ T6293] should_fail_ex+0x512/0x640 [ 124.057456][ T6293] ? fs_reclaim_acquire+0xae/0x150 [ 124.057497][ T6293] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 124.057540][ T6293] should_failslab+0xc2/0x120 [ 124.057570][ T6293] __kmalloc_noprof+0xd2/0x510 [ 124.057616][ T6293] ? trace_kmalloc+0x2b/0xd0 [ 124.057646][ T6293] ? __kmalloc_noprof+0x242/0x510 [ 124.057698][ T6293] tomoyo_realpath_from_path+0xc2/0x6e0 [ 124.057747][ T6293] ? tomoyo_fill_path_info+0x233/0x420 [ 124.057782][ T6293] tomoyo_mount_acl+0x1ae/0x850 [ 124.057818][ T6293] ? kernel_text_address+0x8d/0x100 [ 124.057856][ T6293] ? __kernel_text_address+0xd/0x40 [ 124.057891][ T6293] ? unwind_get_return_address+0x59/0xa0 [ 124.057933][ T6293] ? arch_stack_walk+0xa6/0x100 [ 124.057977][ T6293] ? __pfx_tomoyo_mount_acl+0x10/0x10 [ 124.058072][ T6293] ? tomoyo_domain+0xbb/0x150 [ 124.058119][ T6293] ? tomoyo_profile+0x47/0x60 [ 124.058171][ T6293] tomoyo_mount_permission+0x16d/0x420 [ 124.058209][ T6293] ? tomoyo_mount_permission+0x14f/0x420 [ 124.058252][ T6293] ? __pfx_tomoyo_mount_permission+0x10/0x10 [ 124.058317][ T6293] security_sb_mount+0x9b/0x260 [ 124.058353][ T6293] path_mount+0x128/0x1f30 [ 124.058385][ T6293] ? kmem_cache_free+0x2d4/0x4d0 [ 124.058428][ T6293] ? __pfx_path_mount+0x10/0x10 [ 124.058463][ T6293] ? putname+0x154/0x1a0 [ 124.058498][ T6293] __x64_sys_mount+0x28d/0x310 [ 124.058528][ T6293] ? __pfx___x64_sys_mount+0x10/0x10 [ 124.058571][ T6293] do_syscall_64+0xcd/0x260 [ 124.058620][ T6293] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 124.058651][ T6293] RIP: 0033:0x7fb8be58d169 [ 124.058676][ T6293] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 124.058705][ T6293] RSP: 002b:00007fb8bf425038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 124.058733][ T6293] RAX: ffffffffffffffda RBX: 00007fb8be7a5fa0 RCX: 00007fb8be58d169 [ 124.058753][ T6293] RDX: 00002000000001c0 RSI: 0000200000000180 RDI: 0000000000000000 [ 124.058771][ T6293] RBP: 00007fb8bf425090 R08: 0000000000000000 R09: 0000000000000000 [ 124.058789][ T6293] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001 [ 124.058806][ T6293] R13: 0000000000000000 R14: 00007fb8be7a5fa0 R15: 00007fffb7c28748 [ 124.058846][ T6293] [ 124.058857][ T6293] ERROR: Out of memory at tomoyo_realpath_from_path. [ 124.199324][ T6298] netlink: 8 bytes leftover after parsing attributes in process `syz.1.116'. [ 124.365812][ T6301] netlink: 'syz.1.116': attribute type 1 has an invalid length. syzkaller syzkaller login: [ 124.997792][ T6312] kAFS: No cell specified [ 125.287246][ T6317] ima: policy update failed [ 125.404879][ T30] audit: type=1802 audit(6039321821.209:4): pid=6317 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.120" res=0 errno=0 [ 125.665717][ T6300] netlink: 12 bytes leftover after parsing attributes in process `syz.2.117'. [ 126.730166][ T6340] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size [ 127.516052][ T6355] netlink: 28 bytes leftover after parsing attributes in process `syz.1.130'. [ 127.811719][ T6355] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 128.212782][ T6355] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 128.748714][ T6391] netlink: 4 bytes leftover after parsing attributes in process `syz.2.136'. [ 129.819988][ T6416] netlink: 28 bytes leftover after parsing attributes in process `syz.0.140'. [ 129.844268][ T6416] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 131.097736][ T6439] bdi 43:96: the stable_pages_required attribute has been removed. Use the stable_writes queue attribute instead. [ 131.508852][ T6447] zswap: compressor not available [ 131.606036][ T5849] Bluetooth: hci1: unexpected subevent 0x04 length: 122 > 11 [ 132.183780][ T6472] netlink: 36 bytes leftover after parsing attributes in process `syz.0.156'. [ 132.623721][ T6484] Invalid ELF header magic: != ELF [ 132.670760][ T6478] Invalid ELF header magic: != ELF [ 133.824262][ T5849] Bluetooth: hci2: unexpected subevent 0x04 length: 122 > 11 [ 134.173153][ T6521] FAULT_INJECTION: forcing a failure. [ 134.173153][ T6521] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 134.200839][ T6521] CPU: 0 UID: 0 PID: 6521 Comm: syz.3.170 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 134.200884][ T6521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 134.200903][ T6521] Call Trace: [ 134.200913][ T6521] [ 134.200924][ T6521] dump_stack_lvl+0x16c/0x1f0 [ 134.200975][ T6521] should_fail_ex+0x512/0x640 [ 134.201016][ T6521] should_fail_alloc_page+0xe7/0x130 [ 134.201049][ T6521] prepare_alloc_pages+0x3c2/0x610 [ 134.201094][ T6521] ? rcu_is_watching+0x12/0xc0 [ 134.201138][ T6521] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 134.201195][ T6521] ? do_raw_spin_lock+0x12c/0x2b0 [ 134.201232][ T6521] ? find_held_lock+0x2b/0x80 [ 134.201276][ T6521] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 134.201326][ T6521] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 134.201367][ T6521] ? stack_depot_save_flags+0x3e6/0xa50 [ 134.201414][ T6521] ? kasan_save_stack+0x42/0x60 [ 134.201464][ T6521] ? __lock_acquire+0xaa4/0x1ba0 [ 134.201511][ T6521] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 134.201546][ T6521] ? policy_nodemask+0xea/0x4e0 [ 134.201598][ T6521] alloc_pages_mpol+0x1fb/0x550 [ 134.201629][ T6521] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 134.201655][ T6521] ? __page_table_check_ptes_set+0x1ae/0x420 [ 134.201706][ T6521] ? find_held_lock+0x2b/0x80 [ 134.201751][ T6521] alloc_pages_noprof+0x131/0x390 [ 134.201781][ T6521] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 134.201824][ T6521] get_free_pages_noprof+0xc/0x40 [ 134.201854][ T6521] kasan_populate_vmalloc_pte+0x2d/0x160 [ 134.201898][ T6521] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 134.201953][ T6521] __apply_to_page_range+0x5f9/0xd30 [ 134.201992][ T6521] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 134.202039][ T6521] ? __pfx___apply_to_page_range+0x10/0x10 [ 134.202076][ T6521] ? alloc_vmap_area+0x872/0x2970 [ 134.202122][ T6521] alloc_vmap_area+0x919/0x2970 [ 134.202188][ T6521] ? __pfx_alloc_vmap_area+0x10/0x10 [ 134.202235][ T6521] __get_vm_area_node+0x1a7/0x300 [ 134.202277][ T6521] __vmalloc_node_range_noprof+0x277/0x1540 [ 134.202318][ T6521] ? __do_sys_listmount+0x1c2/0xed0 [ 134.202383][ T6521] ? __do_sys_listmount+0x1c2/0xed0 [ 134.202430][ T6521] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 134.202483][ T6521] __kvmalloc_node_noprof+0x2ff/0x600 [ 134.202545][ T6521] ? __do_sys_listmount+0x1c2/0xed0 [ 134.202587][ T6521] ? __do_sys_listmount+0x1c2/0xed0 [ 134.202636][ T6521] ? __do_sys_listmount+0x1c2/0xed0 [ 134.202684][ T6521] __do_sys_listmount+0x1c2/0xed0 [ 134.202729][ T6521] ? __x64_sys_futex+0x1e0/0x4c0 [ 134.202769][ T6521] ? __x64_sys_futex+0x1e9/0x4c0 [ 134.202811][ T6521] ? __pfx___do_sys_listmount+0x10/0x10 [ 134.202851][ T6521] ? xfd_validate_state+0x5d/0x180 [ 134.202897][ T6521] do_syscall_64+0xcd/0x260 [ 134.202943][ T6521] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 134.202972][ T6521] RIP: 0033:0x7fb8be58d169 [ 134.203003][ T6521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 134.203032][ T6521] RSP: 002b:00007fb8bf3e3038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 134.203059][ T6521] RAX: ffffffffffffffda RBX: 00007fb8be7a6160 RCX: 00007fb8be58d169 [ 134.203078][ T6521] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000140 [ 134.203103][ T6521] RBP: 00007fb8be60e990 R08: 0000000000000000 R09: 0000000000000000 [ 134.203120][ T6521] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 134.203137][ T6521] R13: 0000000000000000 R14: 00007fb8be7a6160 R15: 00007fffb7c28748 [ 134.203175][ T6521] [ 134.203422][ T6521] syz.3.170: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 134.573858][ T6521] CPU: 0 UID: 0 PID: 6521 Comm: syz.3.170 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 134.573899][ T6521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 134.573916][ T6521] Call Trace: [ 134.573926][ T6521] [ 134.573938][ T6521] dump_stack_lvl+0x16c/0x1f0 [ 134.573988][ T6521] warn_alloc+0x248/0x3a0 [ 134.574038][ T6521] ? __pfx_warn_alloc+0x10/0x10 [ 134.574095][ T6521] ? kfree+0x2b6/0x4d0 [ 134.574143][ T6521] ? __get_vm_area_node+0x1e5/0x300 [ 134.574190][ T6521] __vmalloc_node_range_noprof+0xd31/0x1540 [ 134.574244][ T6521] ? __do_sys_listmount+0x1c2/0xed0 [ 134.574295][ T6521] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 134.574353][ T6521] __kvmalloc_node_noprof+0x2ff/0x600 [ 134.574398][ T6521] ? __do_sys_listmount+0x1c2/0xed0 [ 134.574441][ T6521] ? __do_sys_listmount+0x1c2/0xed0 [ 134.574489][ T6521] ? __do_sys_listmount+0x1c2/0xed0 [ 134.574528][ T6521] __do_sys_listmount+0x1c2/0xed0 [ 134.574577][ T6521] ? __x64_sys_futex+0x1e0/0x4c0 [ 134.574619][ T6521] ? __x64_sys_futex+0x1e9/0x4c0 [ 134.574662][ T6521] ? __pfx___do_sys_listmount+0x10/0x10 [ 134.574704][ T6521] ? xfd_validate_state+0x5d/0x180 [ 134.574754][ T6521] do_syscall_64+0xcd/0x260 [ 134.574807][ T6521] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 134.574871][ T6521] RIP: 0033:0x7fb8be58d169 [ 134.574900][ T6521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 134.574930][ T6521] RSP: 002b:00007fb8bf3e3038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 134.574957][ T6521] RAX: ffffffffffffffda RBX: 00007fb8be7a6160 RCX: 00007fb8be58d169 [ 134.574977][ T6521] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000140 [ 134.574996][ T6521] RBP: 00007fb8be60e990 R08: 0000000000000000 R09: 0000000000000000 [ 134.575014][ T6521] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 134.575031][ T6521] R13: 0000000000000000 R14: 00007fb8be7a6160 R15: 00007fffb7c28748 [ 134.575075][ T6521] [ 134.575397][ T6521] Mem-Info: [ 134.575419][ T6521] active_anon:36560 inactive_anon:0 isolated_anon:0 [ 134.575419][ T6521] active_file:10074 inactive_file:38332 isolated_file:0 [ 134.575419][ T6521] unevictable:768 dirty:524 writeback:0 [ 134.575419][ T6521] slab_reclaimable:9792 slab_unreclaimable:94530 [ 134.575419][ T6521] mapped:40720 shmem:30827 pagetables:1128 [ 134.575419][ T6521] sec_pagetables:0 bounce:0 [ 134.575419][ T6521] kernel_misc_reclaimable:0 [ 134.575419][ T6521] free:1313558 free_pcp:512 free_cma:0 [ 134.575504][ T6521] Node 0 active_anon:146240kB inactive_anon:0kB active_file:40296kB inactive_file:153256kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:162880kB dirty:2092kB writeback:0kB shmem:121772kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10956kB pagetables:4512kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 134.575590][ T6521] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 134.575670][ T6521] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 134.575822][ T6521] lowmem_reserve[]: 0 2482 2483 2483 2483 [ 134.575879][ T6521] Node 0 DMA32 free:1332788kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB active_anon:146192kB inactive_anon:0kB active_file:40296kB inactive_file:151680kB unevictable:1536kB writepending:2092kB present:3129332kB managed:2541676kB mlocked:0kB bounce:0kB free_pcp:1448kB local_pcp:812kB free_cma:0kB [ 134.575966][ T6521] lowmem_reserve[]: 0 0 1 1 1 [ 134.576025][ T6521] Node 0 Normal free:12kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1576kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB [ 134.576116][ T6521] lowmem_reserve[]: 0 0 0 0 0 [ 134.576176][ T6521] Node 1 Normal free:3906072kB boost:0kB min:55784kB low:69728kB high:83672kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:592kB local_pcp:0kB free_cma:0kB [ 134.576262][ T6521] lowmem_reserve[]: 0 0 0 0 0 [ 134.576321][ T6521] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 134.576520][ T6521] Node 0 DMA32: 467*4kB (UME) 413*8kB (UME) 352*16kB (UME) 23*32kB (E) 52*64kB (UE) 20*128kB (UME) 4*256kB (UE) 7*512kB (UME) 8*1024kB (UME) 4*2048kB (UE) 316*4096kB (UM) = 1332756kB [ 134.576797][ T6521] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB [ 134.577008][ T6521] Node 1 Normal: 205*4kB (UE) 51*8kB (UME) 8*16kB (UME) 214*32kB (UME) 105*64kB (UME) 36*128kB (UME) 18*256kB (UM) 8*512kB (UM) 3*1024kB (UME) 2*2048kB (UE) 945*4096kB (UM) = 3906124kB [ 134.577297][ T6521] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 134.577323][ T6521] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 134.577349][ T6521] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 134.577376][ T6521] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 134.577403][ T6521] 79233 total pagecache pages [ 134.577415][ T6521] 0 pages in swap cache [ 134.577427][ T6521] Free swap = 124996kB [ 134.577439][ T6521] Total swap = 124996kB [ 134.577452][ T6521] 2097051 pages RAM [ 134.577463][ T6521] 0 pages HighMem/MovableOnly [ 134.577474][ T6521] 429590 pages reserved [ 134.577486][ T6521] 0 pages cma reserved [ 135.282179][ T6545] netlink: 8 bytes leftover after parsing attributes in process `syz.1.177'. [ 136.104351][ T5849] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 136.944544][ T5845] Bluetooth: hci3: unexpected subevent 0x04 length: 122 > 11 [ 137.135745][ T6571] netlink: 338 bytes leftover after parsing attributes in process `syz.3.184'. [ 137.222712][ T6571] team_slave_0: entered allmulticast mode [ 137.850573][ T6575] FAULT_INJECTION: forcing a failure. [ 137.850573][ T6575] name fail_futex, interval 1, probability 0, space 0, times 0 [ 137.869344][ T6575] CPU: 1 UID: 0 PID: 6575 Comm: syz.1.185 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 137.869386][ T6575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 137.869404][ T6575] Call Trace: [ 137.869413][ T6575] [ 137.869425][ T6575] dump_stack_lvl+0x16c/0x1f0 [ 137.869482][ T6575] should_fail_ex+0x512/0x640 [ 137.869525][ T6575] get_futex_key+0xabc/0x1000 [ 137.869574][ T6575] ? __pfx_get_futex_key+0x10/0x10 [ 137.869632][ T6575] futex_wake_op+0x129/0xd40 [ 137.869669][ T6575] ? get_pid_task+0x106/0x250 [ 137.869700][ T6575] ? __pfx_futex_wake_op+0x10/0x10 [ 137.869755][ T6575] ? ksys_write+0x190/0x240 [ 137.869807][ T6575] do_futex+0x2e9/0x350 [ 137.869852][ T6575] ? __pfx_do_futex+0x10/0x10 [ 137.869908][ T6575] __x64_sys_futex+0x1e0/0x4c0 [ 137.869962][ T6575] ? fput+0x70/0xf0 [ 137.869989][ T6575] ? __pfx___x64_sys_futex+0x10/0x10 [ 137.870031][ T6575] ? ksys_write+0x1b9/0x240 [ 137.870073][ T6575] ? __pfx_ksys_write+0x10/0x10 [ 137.870114][ T6575] ? rcu_is_watching+0x12/0xc0 [ 137.870163][ T6575] do_syscall_64+0xcd/0x260 [ 137.870210][ T6575] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 137.870242][ T6575] RIP: 0033:0x7fc174d8d169 [ 137.870266][ T6575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 137.870295][ T6575] RSP: 002b:00007fc175c94038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 137.870323][ T6575] RAX: ffffffffffffffda RBX: 00007fc174fa5fa0 RCX: 00007fc174d8d169 [ 137.870344][ T6575] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000200000000040 [ 137.870362][ T6575] RBP: 00007fc175c94090 R08: 00002000000002c0 R09: 00000000c0040000 [ 137.870381][ T6575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 137.870399][ T6575] R13: 0000000000000000 R14: 00007fc174fa5fa0 R15: 00007ffd8a6341c8 [ 137.870439][ T6575] [ 138.201269][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 138.208037][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 138.715837][ T6589] FAULT_INJECTION: forcing a failure. [ 138.715837][ T6589] name failslab, interval 1, probability 0, space 0, times 0 [ 138.781166][ T6589] CPU: 1 UID: 0 PID: 6589 Comm: syz.3.191 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 138.781206][ T6589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 138.781223][ T6589] Call Trace: [ 138.781233][ T6589] [ 138.781244][ T6589] dump_stack_lvl+0x16c/0x1f0 [ 138.781292][ T6589] should_fail_ex+0x512/0x640 [ 138.781324][ T6589] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 138.781374][ T6589] should_failslab+0xc2/0x120 [ 138.781401][ T6589] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 138.781447][ T6589] ? alloc_empty_file+0x55/0x1e0 [ 138.781484][ T6589] alloc_empty_file+0x55/0x1e0 [ 138.781518][ T6589] path_openat+0xe0/0x2d40 [ 138.781559][ T6589] ? __x64_sys_openat+0x174/0x210 [ 138.781590][ T6589] ? do_syscall_64+0xcd/0x260 [ 138.781633][ T6589] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 138.781687][ T6589] ? __pfx_path_openat+0x10/0x10 [ 138.781740][ T6589] do_filp_open+0x20b/0x470 [ 138.781785][ T6589] ? __pfx_do_filp_open+0x10/0x10 [ 138.781858][ T6589] ? alloc_fd+0x471/0x7d0 [ 138.781911][ T6589] do_sys_openat2+0x11b/0x1d0 [ 138.781943][ T6589] ? __pfx_do_sys_openat2+0x10/0x10 [ 138.781979][ T6589] ? __fget_files+0x20e/0x3c0 [ 138.782031][ T6589] __x64_sys_openat+0x174/0x210 [ 138.782064][ T6589] ? __pfx___x64_sys_openat+0x10/0x10 [ 138.782096][ T6589] ? ksys_write+0x1b9/0x240 [ 138.782157][ T6589] do_syscall_64+0xcd/0x260 [ 138.782204][ T6589] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 138.782233][ T6589] RIP: 0033:0x7fb8be58d169 [ 138.782256][ T6589] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 138.782283][ T6589] RSP: 002b:00007fb8bf425038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 138.782310][ T6589] RAX: ffffffffffffffda RBX: 00007fb8be7a5fa0 RCX: 00007fb8be58d169 [ 138.782329][ T6589] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 138.782347][ T6589] RBP: 00007fb8bf425090 R08: 0000000000000000 R09: 0000000000000000 [ 138.782364][ T6589] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 138.782381][ T6589] R13: 0000000000000001 R14: 00007fb8be7a5fa0 R15: 00007fffb7c28748 [ 138.782438][ T6589] [ 139.287849][ T5845] Bluetooth: hci3: unexpected subevent 0x04 length: 122 > 11 [ 139.426257][ T6600] could not allocate digest TFM handle [ 139.989873][ T6612] netlink: 28 bytes leftover after parsing attributes in process `syz.3.195'. [ 140.151156][ T6613] Invalid ELF header magic: != ELF [ 140.884165][ T6630] FAULT_INJECTION: forcing a failure. [ 140.884165][ T6630] name failslab, interval 1, probability 0, space 0, times 0 [ 140.905413][ T6630] CPU: 0 UID: 0 PID: 6630 Comm: syz.1.203 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 140.905453][ T6630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 140.905470][ T6630] Call Trace: [ 140.905480][ T6630] [ 140.905491][ T6630] dump_stack_lvl+0x16c/0x1f0 [ 140.905540][ T6630] should_fail_ex+0x512/0x640 [ 140.905574][ T6630] ? fs_reclaim_acquire+0xae/0x150 [ 140.905615][ T6630] should_failslab+0xc2/0x120 [ 140.905643][ T6630] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 140.905690][ T6630] ? jbd2__journal_start+0x193/0x6a0 [ 140.905723][ T6630] ? __pfx___might_resched+0x10/0x10 [ 140.905768][ T6630] jbd2__journal_start+0x193/0x6a0 [ 140.905804][ T6630] __ext4_journal_start_sb+0x195/0x690 [ 140.905868][ T6630] ? ext4_dirty_inode+0xa1/0x130 [ 140.905898][ T6630] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 140.905928][ T6630] ext4_dirty_inode+0xa1/0x130 [ 140.905956][ T6630] ? rcu_is_watching+0x12/0xc0 [ 140.905995][ T6630] __mark_inode_dirty+0x1eb/0xe50 [ 140.906036][ T6630] generic_update_time+0xcf/0xf0 [ 140.906069][ T6630] file_modified+0x207/0x240 [ 140.906103][ T6630] ext4_fallocate+0x176/0x3810 [ 140.906151][ T6630] ? __pfx_ext4_fallocate+0x10/0x10 [ 140.906183][ T6630] vfs_fallocate+0x608/0x10b0 [ 140.906240][ T6630] ? __pfx_vfs_fallocate+0x10/0x10 [ 140.906286][ T6630] ? madvise_vma_behavior+0x1ad7/0x1d50 [ 140.906320][ T6630] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 140.906361][ T6630] madvise_vma_behavior+0x1a75/0x1d50 [ 140.906403][ T6630] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 140.906441][ T6630] ? find_vma_prev+0xda/0x160 [ 140.906478][ T6630] ? __pfx_find_vma_prev+0x10/0x10 [ 140.906514][ T6630] ? get_pid_task+0xfc/0x250 [ 140.906555][ T6630] ? proc_fail_nth_write+0x9f/0x250 [ 140.906607][ T6630] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 140.906638][ T6630] madvise_walk_vmas+0x1ce/0x2c0 [ 140.906672][ T6630] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 140.906716][ T6630] madvise_do_behavior+0x12b/0x3b0 [ 140.906747][ T6630] ? __pfx___might_resched+0x10/0x10 [ 140.906792][ T6630] ? __pfx_madvise_do_behavior+0x10/0x10 [ 140.906841][ T6630] ? fput+0x70/0xf0 [ 140.906879][ T6630] do_madvise+0x10b/0x170 [ 140.906915][ T6630] __x64_sys_madvise+0xa9/0x110 [ 140.906950][ T6630] ? lockdep_hardirqs_on+0x7c/0x110 [ 140.906995][ T6630] do_syscall_64+0xcd/0x260 [ 140.907045][ T6630] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 140.907089][ T6630] RIP: 0033:0x7fc174d8d169 [ 140.907114][ T6630] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 140.907142][ T6630] RSP: 002b:00007fc175c94038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 140.907170][ T6630] RAX: ffffffffffffffda RBX: 00007fc174fa5fa0 RCX: 00007fc174d8d169 [ 140.907189][ T6630] RDX: 0000000000000009 RSI: 00000000008031ca RDI: 000000110c230000 [ 140.907206][ T6630] RBP: 00007fc175c94090 R08: 0000000000000000 R09: 0000000000000000 [ 140.907229][ T6630] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 140.907245][ T6630] R13: 0000000000000001 R14: 00007fc174fa5fa0 R15: 00007ffd8a6341c8 [ 140.907285][ T6630] [ 142.768091][ T5845] Bluetooth: hci3: unexpected subevent 0x04 length: 122 > 11 [ 142.933805][ C0] vcan0: j1939_tp_rxtimer: 0xffff888032d9c400: rx timeout, send abort [ 142.943429][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888032d9c400: 0x40000: (3) A timeout occurred and this is the connection abort to close the session. [ 143.190476][ T6661] netlink: 4 bytes leftover after parsing attributes in process `syz.1.211'. [ 145.457304][ T6695] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 145.463616][ T6695] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 145.491790][ T6695] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 145.505109][ T6695] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 145.512264][ T6695] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 145.550067][ T6695] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 145.582427][ T6695] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 145.612981][ T6695] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 145.620303][ T6695] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 145.637309][ T6695] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 145.669247][ T6695] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 145.688083][ T6695] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 145.729004][ T6695] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 145.882600][ T5845] Bluetooth: hci1: unexpected subevent 0x04 length: 122 > 11 [ 146.857323][ T6720] FAULT_INJECTION: forcing a failure. [ 146.857323][ T6720] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 146.883045][ T6720] CPU: 1 UID: 0 PID: 6720 Comm: syz.1.229 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 146.883091][ T6720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 146.883110][ T6720] Call Trace: [ 146.883119][ T6720] [ 146.883131][ T6720] dump_stack_lvl+0x16c/0x1f0 [ 146.883184][ T6720] should_fail_ex+0x512/0x640 [ 146.883228][ T6720] should_fail_alloc_page+0xe7/0x130 [ 146.883261][ T6720] prepare_alloc_pages+0x3c2/0x610 [ 146.883306][ T6720] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 146.883356][ T6720] ? stack_trace_save+0x8e/0xc0 [ 146.883399][ T6720] ? __pfx_stack_trace_save+0x10/0x10 [ 146.883439][ T6720] ? stack_depot_save_flags+0x28/0xa50 [ 146.883479][ T6720] ? __alloc_frozen_pages_noprof+0x298/0x23a0 [ 146.883531][ T6720] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 146.883577][ T6720] ? __kasan_slab_alloc+0x89/0x90 [ 146.883624][ T6720] ? __pmd_alloc+0xc3/0x870 [ 146.883666][ T6720] ? handle_mm_fault+0x3fe/0xad0 [ 146.883705][ T6720] ? do_user_addr_fault+0x7a6/0x1370 [ 146.883740][ T6720] ? exc_page_fault+0x5c/0xc0 [ 146.883779][ T6720] ? asm_exc_page_fault+0x26/0x30 [ 146.883808][ T6720] ? rep_movs_alternative+0x4a/0x90 [ 146.883840][ T6720] ? _copy_from_iter+0x391/0x15b0 [ 146.883875][ T6720] ? netlink_sendmsg+0x829/0xdd0 [ 146.883937][ T6720] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 146.883978][ T6720] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 146.884013][ T6720] ? policy_nodemask+0xea/0x4e0 [ 146.884065][ T6720] alloc_pages_mpol+0x1fb/0x550 [ 146.884095][ T6720] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 146.884124][ T6720] ? cgroup_rstat_updated+0x2a/0xb20 [ 146.884171][ T6720] alloc_pages_noprof+0x131/0x390 [ 146.884200][ T6720] pte_alloc_one+0x19/0x380 [ 146.884240][ T6720] do_pte_missing+0x1c0b/0x3fb0 [ 146.884282][ T6720] ? do_raw_spin_unlock+0x172/0x230 [ 146.884320][ T6720] ? __pmd_alloc+0x3c2/0x870 [ 146.884352][ T6720] ? find_held_lock+0x2b/0x80 [ 146.884394][ T6720] __handle_mm_fault+0x103d/0x2a40 [ 146.884446][ T6720] ? __pfx___handle_mm_fault+0x10/0x10 [ 146.884513][ T6720] ? find_vma+0xbf/0x140 [ 146.884543][ T6720] ? __pfx_find_vma+0x10/0x10 [ 146.884581][ T6720] handle_mm_fault+0x3fe/0xad0 [ 146.884629][ T6720] do_user_addr_fault+0x7a6/0x1370 [ 146.884673][ T6720] ? rcu_is_watching+0x12/0xc0 [ 146.884715][ T6720] exc_page_fault+0x5c/0xc0 [ 146.884757][ T6720] asm_exc_page_fault+0x26/0x30 [ 146.884785][ T6720] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 146.884823][ T6720] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 146.884851][ T6720] RSP: 0018:ffffc9001984f7d8 EFLAGS: 00050206 [ 146.884875][ T6720] RAX: 0000000000000001 RBX: 00000000000000c4 RCX: 00000000000000c4 [ 146.884892][ T6720] RDX: ffffed1003e5e881 RSI: 0000000000000000 RDI: ffff88801f2f4340 [ 146.884910][ T6720] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed1003e5e880 [ 146.884927][ T6720] R10: ffff88801f2f4403 R11: 0000000000000000 R12: 0000000000000000 [ 146.884943][ T6720] R13: ffffc9001984fd60 R14: 00000000000000c4 R15: ffff88801f2f4340 [ 146.884984][ T6720] _copy_from_iter+0x391/0x15b0 [ 146.885027][ T6720] ? __alloc_skb+0x200/0x380 [ 146.885064][ T6720] ? __pfx__copy_from_iter+0x10/0x10 [ 146.885104][ T6720] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 146.885144][ T6720] ? __lock_acquire+0xaa4/0x1ba0 [ 146.885202][ T6720] netlink_sendmsg+0x829/0xdd0 [ 146.885252][ T6720] ? __pfx_netlink_sendmsg+0x10/0x10 [ 146.885310][ T6720] ____sys_sendmsg+0xa95/0xc70 [ 146.885359][ T6720] ? copy_msghdr_from_user+0x10a/0x160 [ 146.885397][ T6720] ? __pfx_____sys_sendmsg+0x10/0x10 [ 146.885451][ T6720] ? __pfx__kstrtoull+0x10/0x10 [ 146.885506][ T6720] ___sys_sendmsg+0x134/0x1d0 [ 146.885546][ T6720] ? __pfx____sys_sendmsg+0x10/0x10 [ 146.885604][ T6720] ? find_held_lock+0x2b/0x80 [ 146.885672][ T6720] __sys_sendmmsg+0x200/0x420 [ 146.885716][ T6720] ? __pfx___sys_sendmmsg+0x10/0x10 [ 146.885769][ T6720] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 146.885829][ T6720] ? fput+0x70/0xf0 [ 146.885856][ T6720] ? ksys_write+0x1b9/0x240 [ 146.885896][ T6720] ? __pfx_ksys_write+0x10/0x10 [ 146.885933][ T6720] ? rcu_is_watching+0x12/0xc0 [ 146.885975][ T6720] __x64_sys_sendmmsg+0x9c/0x100 [ 146.886013][ T6720] ? lockdep_hardirqs_on+0x7c/0x110 [ 146.886053][ T6720] do_syscall_64+0xcd/0x260 [ 146.886098][ T6720] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 146.886127][ T6720] RIP: 0033:0x7fc174d8d169 [ 146.886149][ T6720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 146.886176][ T6720] RSP: 002b:00007fc175c94038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 146.886201][ T6720] RAX: ffffffffffffffda RBX: 00007fc174fa5fa0 RCX: 00007fc174d8d169 [ 146.886221][ T6720] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 146.886238][ T6720] RBP: 00007fc175c94090 R08: 0000000000000000 R09: 0000000000000000 [ 146.886256][ T6720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 146.886273][ T6720] R13: 0000000000000000 R14: 00007fc174fa5fa0 R15: 00007ffd8a6341c8 [ 146.886311][ T6720] [ 147.519852][ T5845] Bluetooth: hci0: command 0x0c1a tx timeout [ 147.575518][ T5845] Bluetooth: hci2: command 0x0c1a tx timeout [ 147.656624][ T5845] Bluetooth: hci1: command 0x0c1a tx timeout [ 147.740692][ T5845] Bluetooth: hci3: command 0x0c1a tx timeout [ 148.136455][ T5845] Bluetooth: hci2: unexpected subevent 0x04 length: 122 > 11 [ 148.434773][ T6752] uvcvideo: [Deprecated]: nodrop parameter will be eventually removed. [ 148.806267][ T6756] FAULT_INJECTION: forcing a failure. [ 148.806267][ T6756] name failslab, interval 1, probability 0, space 0, times 0 [ 148.849389][ T6756] CPU: 0 UID: 0 PID: 6756 Comm: syz.1.239 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 148.849433][ T6756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 148.849451][ T6756] Call Trace: [ 148.849460][ T6756] [ 148.849472][ T6756] dump_stack_lvl+0x16c/0x1f0 [ 148.849522][ T6756] should_fail_ex+0x512/0x640 [ 148.849558][ T6756] ? fs_reclaim_acquire+0xae/0x150 [ 148.849602][ T6756] ? tomoyo_encode2+0x100/0x3e0 [ 148.849642][ T6756] should_failslab+0xc2/0x120 [ 148.849671][ T6756] __kmalloc_noprof+0xd2/0x510 [ 148.849734][ T6756] tomoyo_encode2+0x100/0x3e0 [ 148.849782][ T6756] tomoyo_encode+0x29/0x50 [ 148.849822][ T6756] tomoyo_realpath_from_path+0x18f/0x6e0 [ 148.849871][ T6756] ? tomoyo_profile+0x47/0x60 [ 148.849922][ T6756] tomoyo_path_number_perm+0x245/0x580 [ 148.849957][ T6756] ? tomoyo_path_number_perm+0x237/0x580 [ 148.849998][ T6756] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 148.850037][ T6756] ? find_held_lock+0x2b/0x80 [ 148.850112][ T6756] ? find_held_lock+0x2b/0x80 [ 148.850150][ T6756] ? hook_file_ioctl_common+0x145/0x410 [ 148.850193][ T6756] ? __fget_files+0x20e/0x3c0 [ 148.850245][ T6756] security_file_ioctl+0x9b/0x240 [ 148.850286][ T6756] __x64_sys_ioctl+0xb7/0x200 [ 148.850338][ T6756] do_syscall_64+0xcd/0x260 [ 148.850386][ T6756] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 148.850416][ T6756] RIP: 0033:0x7fc174d8d169 [ 148.850439][ T6756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 148.850468][ T6756] RSP: 002b:00007fc175c94038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 148.850496][ T6756] RAX: ffffffffffffffda RBX: 00007fc174fa5fa0 RCX: 00007fc174d8d169 [ 148.850514][ T6756] RDX: 0000000000000004 RSI: 00000000c0086202 RDI: 0000000000000003 [ 148.850531][ T6756] RBP: 00007fc175c94090 R08: 0000000000000000 R09: 0000000000000000 [ 148.850548][ T6756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 148.850564][ T6756] R13: 0000000000000000 R14: 00007fc174fa5fa0 R15: 00007ffd8a6341c8 [ 148.850622][ T6756] [ 148.851807][ T6756] ERROR: Out of memory at tomoyo_realpath_from_path. [ 149.173280][ T6742] kexec: Could not allocate control_code_buffer [ 149.575023][ T5845] Bluetooth: hci0: command 0x0c1a tx timeout [ 149.655078][ T5845] Bluetooth: hci2: command 0x0c1a tx timeout [ 149.735137][ T5845] Bluetooth: hci1: command 0x0c1a tx timeout [ 149.820794][ T5845] Bluetooth: hci3: command 0x0c1a tx timeout [ 149.943222][ T6776] FAULT_INJECTION: forcing a failure. [ 149.943222][ T6776] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 149.994997][ T6776] CPU: 0 UID: 0 PID: 6776 Comm: syz.0.245 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 149.995040][ T6776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 149.995057][ T6776] Call Trace: [ 149.995067][ T6776] [ 149.995078][ T6776] dump_stack_lvl+0x16c/0x1f0 [ 149.995126][ T6776] should_fail_ex+0x512/0x640 [ 149.995166][ T6776] _copy_from_user+0x2e/0xd0 [ 149.995226][ T6776] snd_pcm_oss_write2+0x1c2/0x410 [ 149.995260][ T6776] ? __pfx_snd_pcm_oss_write2+0x10/0x10 [ 149.995289][ T6776] ? snd_pcm_kernel_ioctl+0x267/0x2e0 [ 149.995328][ T6776] ? snd_pcm_oss_prepare+0x11e/0x220 [ 149.995383][ T6776] snd_pcm_oss_write+0x711/0xa10 [ 149.995418][ T6776] ? security_file_permission+0x71/0x210 [ 149.995469][ T6776] vfs_write+0x25c/0x1180 [ 149.995508][ T6776] ? __pfx_snd_pcm_oss_write+0x10/0x10 [ 149.995560][ T6776] ? __pfx_vfs_write+0x10/0x10 [ 149.995599][ T6776] ? find_held_lock+0x2b/0x80 [ 149.995645][ T6776] ? __fget_files+0x204/0x3c0 [ 149.995694][ T6776] ? __fget_files+0x20e/0x3c0 [ 149.995748][ T6776] ksys_write+0x12a/0x240 [ 149.995791][ T6776] ? __pfx_ksys_write+0x10/0x10 [ 149.995845][ T6776] do_syscall_64+0xcd/0x260 [ 149.995893][ T6776] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.995923][ T6776] RIP: 0033:0x7f77cb18d169 [ 149.995946][ T6776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 149.995977][ T6776] RSP: 002b:00007f77c8fd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 149.996004][ T6776] RAX: ffffffffffffffda RBX: 00007f77cb3a6240 RCX: 00007f77cb18d169 [ 149.996022][ T6776] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 149.996039][ T6776] RBP: 00007f77c8fd5090 R08: 0000000000000000 R09: 0000000000000000 [ 149.996055][ T6776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 149.996072][ T6776] R13: 0000000000000001 R14: 00007f77cb3a6240 R15: 00007ffcc31f27c8 [ 149.996111][ T6776] [ 150.723129][ T5845] Bluetooth: hci2: unexpected subevent 0x04 length: 122 > 11 [ 150.864350][ T6793] netlink: 28 bytes leftover after parsing attributes in process `syz.3.249'. [ 150.947911][ T6796] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 150.982457][ T6793] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 151.079638][ T6793] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 151.187041][ T6774] Process accounting paused [ 151.452806][ T6807] syz.1.254 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 151.648525][ T6814] netlink: 4 bytes leftover after parsing attributes in process `syz.0.258'. [ 151.658004][ T5845] Bluetooth: hci0: command 0x0c1a tx timeout [ 151.679223][ T6811] FAULT_INJECTION: forcing a failure. [ 151.679223][ T6811] name failslab, interval 1, probability 0, space 0, times 0 [ 151.680736][ T6814] netlink: 25 bytes leftover after parsing attributes in process `syz.0.258'. [ 151.707071][ T6817] FAULT_INJECTION: forcing a failure. [ 151.707071][ T6817] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 151.735230][ T5845] Bluetooth: hci2: command 0x0c1a tx timeout [ 151.751886][ T6811] CPU: 0 UID: 0 PID: 6811 Comm: syz.2.255 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 151.751930][ T6811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 151.751948][ T6811] Call Trace: [ 151.751958][ T6811] [ 151.751970][ T6811] dump_stack_lvl+0x16c/0x1f0 [ 151.752020][ T6811] should_fail_ex+0x512/0x640 [ 151.752055][ T6811] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 151.752102][ T6811] should_failslab+0xc2/0x120 [ 151.752131][ T6811] __kmalloc_cache_noprof+0x6a/0x3e0 [ 151.752171][ T6811] ? allocate_file_region_entries+0x15b/0x620 [ 151.752219][ T6811] ? allocate_file_region_entries+0x1a0/0x620 [ 151.752273][ T6811] allocate_file_region_entries+0x1a0/0x620 [ 151.752338][ T6811] ? __pfx_allocate_file_region_entries+0x10/0x10 [ 151.752401][ T6811] region_chg+0x85/0x140 [ 151.752450][ T6811] __vma_reservation_common+0x43b/0x740 [ 151.752503][ T6811] ? __pfx___vma_reservation_common+0x10/0x10 [ 151.752567][ T6811] alloc_hugetlb_folio+0x839/0x13a0 [ 151.752611][ T6811] ? __pfx_alloc_hugetlb_folio+0x10/0x10 [ 151.752645][ T6811] ? do_raw_spin_unlock+0x172/0x230 [ 151.752689][ T6811] ? __filemap_get_folio+0x333/0xc10 [ 151.752724][ T6811] ? huge_pte_alloc+0x22e/0x3a0 [ 151.752767][ T6811] hugetlb_fault+0x1f7a/0x2e90 [ 151.752815][ T6811] ? __pfx_hugetlb_fault+0x10/0x10 [ 151.752873][ T6811] ? find_vma+0xbf/0x140 [ 151.752904][ T6811] ? __pfx_find_vma+0x10/0x10 [ 151.752943][ T6811] handle_mm_fault+0x95d/0xad0 [ 151.752995][ T6811] do_user_addr_fault+0x7a6/0x1370 [ 151.753037][ T6811] ? rcu_is_watching+0x12/0xc0 [ 151.753081][ T6811] exc_page_fault+0x5c/0xc0 [ 151.753125][ T6811] asm_exc_page_fault+0x26/0x30 [ 151.753153][ T6811] RIP: 0010:__get_user_8+0x14/0x30 [ 151.753189][ T6811] Code: ca c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 ba 00 f0 ff ff ff 7f 00 00 48 39 d0 48 0f 47 c2 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 [ 151.753218][ T6811] RSP: 0018:ffffc90002fc7d68 EFLAGS: 00050287 [ 151.753242][ T6811] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffc90002fc7d0c [ 151.753260][ T6811] RDX: 00007ffffffff000 RSI: ffffffff82213f01 RDI: ffffffff8bf45240 [ 151.753287][ T6811] RBP: 0000000000000000 R08: 3b8f596bbd88045d R09: 0000000000000001 [ 151.753306][ T6811] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 151.753324][ T6811] R13: 0000000000000117 R14: 0000000000000000 R15: ffff888026bebc00 [ 151.753358][ T6811] ? kernel_move_pages+0x391/0x1430 [ 151.753399][ T6811] kernel_move_pages+0x39f/0x1430 [ 151.753434][ T6811] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 151.753491][ T6811] ? __pfx_kernel_move_pages+0x10/0x10 [ 151.753538][ T6811] ? fput+0x70/0xf0 [ 151.753568][ T6811] ? ksys_write+0x1b9/0x240 [ 151.753610][ T6811] ? __pfx_ksys_write+0x10/0x10 [ 151.753657][ T6811] __x64_sys_move_pages+0xe0/0x1c0 [ 151.753691][ T6811] ? do_syscall_64+0x91/0x260 [ 151.753734][ T6811] ? lockdep_hardirqs_on+0x7c/0x110 [ 151.753777][ T6811] do_syscall_64+0xcd/0x260 [ 151.753826][ T6811] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 151.753856][ T6811] RIP: 0033:0x7fb0a338d169 [ 151.753880][ T6811] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 151.753909][ T6811] RSP: 002b:00007fb0a413a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000117 [ 151.753936][ T6811] RAX: ffffffffffffffda RBX: 00007fb0a35a6080 RCX: 00007fb0a338d169 [ 151.753955][ T6811] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000000 [ 151.753972][ T6811] RBP: 00007fb0a413a090 R08: 0000000000000000 R09: 0000000000000002 [ 151.753989][ T6811] R10: 00002000000003c0 R11: 0000000000000246 R12: 0000000000000001 [ 151.754007][ T6811] R13: 0000000000000001 R14: 00007fb0a35a6080 R15: 00007ffc2c5f2898 [ 151.754047][ T6811] [ 151.775852][ T6817] CPU: 1 UID: 0 PID: 6817 Comm: syz.1.256 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 151.775897][ T6817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 151.775917][ T6817] Call Trace: [ 151.775927][ T6817] [ 151.775940][ T6817] dump_stack_lvl+0x16c/0x1f0 [ 151.775995][ T6817] should_fail_ex+0x512/0x640 [ 151.776040][ T6817] _copy_from_user+0x2e/0xd0 [ 151.776083][ T6817] map_update_elem+0x741/0x920 [ 151.776143][ T6817] ? __pfx_map_update_elem+0x10/0x10 [ 151.776208][ T6817] __sys_bpf+0x1616/0x4d80 [ 151.776249][ T6817] ? __pfx___sys_bpf+0x10/0x10 [ 151.776285][ T6817] ? vfs_write+0x316/0x1180 [ 151.776327][ T6817] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 151.776384][ T6817] ? __pfx_vfs_write+0x10/0x10 [ 151.776429][ T6817] ? do_sys_openat2+0x157/0x1d0 [ 151.776488][ T6817] ? ksys_write+0x1b9/0x240 [ 151.776540][ T6817] ? __pfx_ksys_write+0x10/0x10 [ 151.776584][ T6817] ? rcu_is_watching+0x12/0xc0 [ 151.776632][ T6817] __x64_sys_bpf+0x78/0xc0 [ 151.776669][ T6817] ? lockdep_hardirqs_on+0x7c/0x110 [ 151.776715][ T6817] do_syscall_64+0xcd/0x260 [ 151.776767][ T6817] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 151.776799][ T6817] RIP: 0033:0x7fc174d8d169 [ 151.776823][ T6817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 151.776854][ T6817] RSP: 002b:00007fc175c94038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 151.776889][ T6817] RAX: ffffffffffffffda RBX: 00007fc174fa5fa0 RCX: 00007fc174d8d169 [ 151.776911][ T6817] RDX: 000000000000000c RSI: 00002000000001c0 RDI: 0000000000000002 [ 151.776933][ T6817] RBP: 00007fc175c94090 R08: 0000000000000000 R09: 0000000000000000 [ 151.776951][ T6817] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 151.776971][ T6817] R13: 0000000000000000 R14: 00007fc174fa5fa0 R15: 00007ffd8a6341c8 [ 151.777012][ T6817] [ 152.319341][ T5845] Bluetooth: hci1: command 0x0c1a tx timeout [ 152.329655][ T5849] Bluetooth: hci3: command 0x0c1a tx timeout [ 152.508978][ T6820] FAULT_INJECTION: forcing a failure. [ 152.508978][ T6820] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 152.591088][ T6820] CPU: 0 UID: 0 PID: 6820 Comm: syz.1.260 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 152.591140][ T6820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 152.591158][ T6820] Call Trace: [ 152.591167][ T6820] [ 152.591178][ T6820] dump_stack_lvl+0x16c/0x1f0 [ 152.591225][ T6820] should_fail_ex+0x512/0x640 [ 152.591265][ T6820] _copy_from_user+0x2e/0xd0 [ 152.591303][ T6820] copy_msghdr_from_user+0x98/0x160 [ 152.591361][ T6820] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 152.591411][ T6820] ? __lock_acquire+0x5ca/0x1ba0 [ 152.591468][ T6820] ___sys_recvmsg+0xdb/0x1a0 [ 152.591508][ T6820] ? __pfx____sys_recvmsg+0x10/0x10 [ 152.591553][ T6820] ? find_held_lock+0x2b/0x80 [ 152.591616][ T6820] do_recvmmsg+0x2fe/0x740 [ 152.591661][ T6820] ? __pfx_do_recvmmsg+0x10/0x10 [ 152.591710][ T6820] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 152.591768][ T6820] ? __fget_files+0x20e/0x3c0 [ 152.591822][ T6820] __x64_sys_recvmmsg+0x22a/0x280 [ 152.591867][ T6820] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 152.591907][ T6820] ? rcu_is_watching+0x12/0xc0 [ 152.591956][ T6820] do_syscall_64+0xcd/0x260 [ 152.592005][ T6820] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 152.592036][ T6820] RIP: 0033:0x7fc174d8d169 [ 152.592059][ T6820] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 152.592087][ T6820] RSP: 002b:00007fc175c73038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 152.592136][ T6820] RAX: ffffffffffffffda RBX: 00007fc174fa6080 RCX: 00007fc174d8d169 [ 152.592156][ T6820] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 152.592173][ T6820] RBP: 00007fc175c73090 R08: 0000000000000000 R09: 0000000000000000 [ 152.592191][ T6820] R10: 000000000000001c R11: 0000000000000246 R12: 0000000000000001 [ 152.592208][ T6820] R13: 0000000000000000 R14: 00007fc174fa6080 R15: 00007ffd8a6341c8 [ 152.592246][ T6820] [ 153.728329][ T5849] Bluetooth: hci0: unexpected subevent 0x04 length: 122 > 11 [ 153.815637][ T5849] Bluetooth: hci2: command 0x0c1a tx timeout [ 154.655869][ T6839] netlink: 12 bytes leftover after parsing attributes in process `syz.1.264'. [ 154.748709][ T6864] FAULT_INJECTION: forcing a failure. [ 154.748709][ T6864] name failslab, interval 1, probability 0, space 0, times 0 [ 154.790517][ T6871] netlink: 4 bytes leftover after parsing attributes in process `syz.2.273'. [ 154.812879][ T6864] CPU: 0 UID: 0 PID: 6864 Comm: syz.3.271 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 154.812919][ T6864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 154.812936][ T6864] Call Trace: [ 154.812946][ T6864] [ 154.812957][ T6864] dump_stack_lvl+0x16c/0x1f0 [ 154.813005][ T6864] should_fail_ex+0x512/0x640 [ 154.813046][ T6864] should_failslab+0xc2/0x120 [ 154.813075][ T6864] __kmalloc_cache_noprof+0x6a/0x3e0 [ 154.813114][ T6864] ? __pfx_sctp_get_port_local+0x10/0x10 [ 154.813158][ T6864] ? sctp_bind_addr_match+0x193/0x300 [ 154.813200][ T6864] ? sctp_add_bind_addr+0xae/0x3f0 [ 154.813245][ T6864] sctp_add_bind_addr+0xae/0x3f0 [ 154.813291][ T6864] sctp_do_bind+0x2d6/0x700 [ 154.813330][ T6864] sctp_connect_new_asoc+0x5fd/0x790 [ 154.813369][ T6864] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 154.813409][ T6864] ? __ipv6_addr_type+0x225/0x300 [ 154.813436][ T6864] ? __ipv6_addr_type+0x225/0x300 [ 154.813469][ T6864] __sctp_connect+0x3f3/0xc60 [ 154.813506][ T6864] ? do_raw_spin_lock+0x12c/0x2b0 [ 154.813541][ T6864] ? __pfx___sctp_connect+0x10/0x10 [ 154.813576][ T6864] ? __pfx_sctp_inet_connect+0x10/0x10 [ 154.813611][ T6864] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 154.813646][ T6864] ? __pfx_sctp_inet_connect+0x10/0x10 [ 154.813678][ T6864] sctp_inet_connect+0x15f/0x200 [ 154.813712][ T6864] __sys_connect_file+0x13e/0x1a0 [ 154.813751][ T6864] __sys_connect+0x14d/0x170 [ 154.813784][ T6864] ? __pfx___sys_connect+0x10/0x10 [ 154.813840][ T6864] ? __pfx_ksys_write+0x10/0x10 [ 154.813901][ T6864] ? rcu_is_watching+0x12/0xc0 [ 154.813967][ T6864] __x64_sys_connect+0x72/0xb0 [ 154.814041][ T6864] ? lockdep_hardirqs_on+0x7c/0x110 [ 154.814085][ T6864] do_syscall_64+0xcd/0x260 [ 154.814133][ T6864] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 154.814171][ T6864] RIP: 0033:0x7fb8be58d169 [ 154.814196][ T6864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 154.814225][ T6864] RSP: 002b:00007fb8bf425038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 154.814254][ T6864] RAX: ffffffffffffffda RBX: 00007fb8be7a5fa0 RCX: 00007fb8be58d169 [ 154.814274][ T6864] RDX: 0000000000000055 RSI: 0000000000000000 RDI: 0000000000000003 [ 154.814291][ T6864] RBP: 00007fb8bf425090 R08: 0000000000000000 R09: 0000000000000000 [ 154.814309][ T6864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 154.814326][ T6864] R13: 0000000000000000 R14: 00007fb8be7a5fa0 R15: 00007fffb7c28748 [ 154.814365][ T6864] [ 155.228297][ T6877] netlink: 4 bytes leftover after parsing attributes in process `syz.2.275'. [ 155.238572][ T6877] netlink: 25 bytes leftover after parsing attributes in process `syz.2.275'. [ 155.407296][ T6879] netlink: 4 bytes leftover after parsing attributes in process `syz.0.277'. [ 155.600371][ T5849] Bluetooth: hci0: unexpected subevent 0x04 length: 122 > 11 [ 156.936482][ T6896] kexec: Could not allocate control_code_buffer [ 157.065027][ T6919] netlink: 4 bytes leftover after parsing attributes in process `syz.0.290'. [ 157.648081][ T6931] ======================================================= [ 157.648081][ T6931] WARNING: The mand mount option has been deprecated and [ 157.648081][ T6931] and is ignored by this kernel. Remove the mand [ 157.648081][ T6931] option from the mount to silence this warning. [ 157.648081][ T6931] ======================================================= [ 157.787171][ T6934] netlink: 4 bytes leftover after parsing attributes in process `syz.3.294'. [ 157.831529][ T5849] Bluetooth: hci3: unexpected subevent 0x04 length: 122 > 11 [ 158.435613][ T6946] netlink: 4 bytes leftover after parsing attributes in process `syz.1.299'. [ 158.644214][ T6953] FAULT_INJECTION: forcing a failure. [ 158.644214][ T6953] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 158.658743][ T6953] CPU: 1 UID: 0 PID: 6953 Comm: syz.1.301 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 158.658786][ T6953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 158.658804][ T6953] Call Trace: [ 158.658823][ T6953] [ 158.658835][ T6953] dump_stack_lvl+0x16c/0x1f0 [ 158.658886][ T6953] should_fail_ex+0x512/0x640 [ 158.658929][ T6953] should_fail_alloc_page+0xe7/0x130 [ 158.658962][ T6953] prepare_alloc_pages+0x3c2/0x610 [ 158.659008][ T6953] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 158.659066][ T6953] ? lockdep_unlock+0x64/0xe0 [ 158.659107][ T6953] ? __lock_acquire+0xf7f/0x1ba0 [ 158.659164][ T6953] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 158.659217][ T6953] ? __mutex_trylock_common+0xe9/0x250 [ 158.659254][ T6953] ? __pfx___might_resched+0x10/0x10 [ 158.659300][ T6953] ? rcu_is_watching+0x12/0xc0 [ 158.659338][ T6953] ? trace_contention_end+0xdd/0x130 [ 158.659368][ T6953] ? __mutex_lock+0x1ca/0xb90 [ 158.659411][ T6953] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 158.659446][ T6953] ? policy_nodemask+0xea/0x4e0 [ 158.659500][ T6953] alloc_pages_mpol+0x1fb/0x550 [ 158.659531][ T6953] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 158.659572][ T6953] alloc_pages_noprof+0x131/0x390 [ 158.659604][ T6953] get_free_pages_noprof+0xc/0x40 [ 158.659634][ T6953] configfs_write_iter+0x365/0x4e0 [ 158.659675][ T6953] do_iter_readv_writev+0x654/0x950 [ 158.659719][ T6953] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 158.659780][ T6953] vfs_writev+0x353/0xdc0 [ 158.659822][ T6953] ? __pfx___mutex_trylock_common+0x10/0x10 [ 158.659856][ T6953] ? __pfx___might_resched+0x10/0x10 [ 158.659906][ T6953] ? __pfx_vfs_writev+0x10/0x10 [ 158.659945][ T6953] ? __mutex_lock+0x1ca/0xb90 [ 158.660000][ T6953] ? __pfx___mutex_lock+0x10/0x10 [ 158.660064][ T6953] ? __fget_files+0x20e/0x3c0 [ 158.660104][ T6953] ? __fget_files+0x120/0x3c0 [ 158.660158][ T6953] ? do_writev+0x132/0x330 [ 158.660193][ T6953] do_writev+0x132/0x330 [ 158.660234][ T6953] ? __pfx_do_writev+0x10/0x10 [ 158.660271][ T6953] ? rcu_is_watching+0x12/0xc0 [ 158.660321][ T6953] do_syscall_64+0xcd/0x260 [ 158.660370][ T6953] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 158.660401][ T6953] RIP: 0033:0x7fc174d8d169 [ 158.660424][ T6953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 158.660452][ T6953] RSP: 002b:00007fc175c94038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 158.660480][ T6953] RAX: ffffffffffffffda RBX: 00007fc174fa5fa0 RCX: 00007fc174d8d169 [ 158.660499][ T6953] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000004 [ 158.660516][ T6953] RBP: 00007fc175c94090 R08: 0000000000000000 R09: 0000000000000000 [ 158.660534][ T6953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 158.660550][ T6953] R13: 0000000000000000 R14: 00007fc174fa5fa0 R15: 00007ffd8a6341c8 [ 158.660591][ T6953] [ 159.359795][ T6956] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input6 [ 160.206625][ T5849] Bluetooth: hci3: unexpected subevent 0x04 length: 122 > 11 [ 160.267979][ T6985] nbd: must specify a size in bytes for the device [ 160.843681][ T6997] FAULT_INJECTION: forcing a failure. [ 160.843681][ T6997] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 160.880027][ T6997] CPU: 1 UID: 0 PID: 6997 Comm: syz.0.313 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 160.880070][ T6997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 160.880087][ T6997] Call Trace: [ 160.880097][ T6997] [ 160.880108][ T6997] dump_stack_lvl+0x16c/0x1f0 [ 160.880158][ T6997] should_fail_ex+0x512/0x640 [ 160.880200][ T6997] _copy_to_user+0x32/0xd0 [ 160.880243][ T6997] simple_read_from_buffer+0xcb/0x170 [ 160.880291][ T6997] proc_fail_nth_read+0x197/0x270 [ 160.880336][ T6997] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 160.880382][ T6997] ? rw_verify_area+0xcf/0x680 [ 160.880419][ T6997] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 160.880463][ T6997] vfs_read+0x1de/0xc70 [ 160.880511][ T6997] ? __pfx___mutex_lock+0x10/0x10 [ 160.880556][ T6997] ? __pfx_vfs_read+0x10/0x10 [ 160.880618][ T6997] ? __fget_files+0x20e/0x3c0 [ 160.880677][ T6997] ksys_read+0x12a/0x240 [ 160.880717][ T6997] ? __pfx_ksys_read+0x10/0x10 [ 160.880758][ T6997] ? rcu_is_watching+0x12/0xc0 [ 160.880808][ T6997] do_syscall_64+0xcd/0x260 [ 160.880858][ T6997] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 160.880889][ T6997] RIP: 0033:0x7f77cb18bb7c [ 160.880913][ T6997] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 160.880941][ T6997] RSP: 002b:00007f77cbf12030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 160.880968][ T6997] RAX: ffffffffffffffda RBX: 00007f77cb3a6080 RCX: 00007f77cb18bb7c [ 160.880988][ T6997] RDX: 000000000000000f RSI: 00007f77cbf120a0 RDI: 0000000000000004 [ 160.881006][ T6997] RBP: 00007f77cbf12090 R08: 0000000000000000 R09: 0000000000000000 [ 160.881023][ T6997] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 160.881041][ T6997] R13: 0000000000000001 R14: 00007f77cb3a6080 R15: 00007ffcc31f27c8 [ 160.881086][ T6997] [ 161.611906][ T5849] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 162.169882][ T7027] netlink: 4 bytes leftover after parsing attributes in process `syz.3.322'. [ 162.710665][ T30] audit: type=1800 audit(6039321858.599:5): pid=7039 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.325" name="lu_gp_id" dev="configfs" ino=11902 res=0 errno=0 [ 162.712172][ T7039] kstrtoul() returned -22 for lu_gp_id [ 163.145139][ T5845] Bluetooth: hci1: unexpected subevent 0x04 length: 122 > 11 [ 163.189026][ T7042] delete_channel: no stack [ 164.509576][ T7064] sp0: Synchronizing with TNC [ 164.642916][ T7074] FAULT_INJECTION: forcing a failure. [ 164.642916][ T7074] name failslab, interval 1, probability 0, space 0, times 0 [ 164.656133][ T7074] CPU: 0 UID: 0 PID: 7074 Comm: syz.2.335 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 164.656173][ T7074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 164.656190][ T7074] Call Trace: [ 164.656199][ T7074] [ 164.656211][ T7074] dump_stack_lvl+0x16c/0x1f0 [ 164.656268][ T7074] should_fail_ex+0x512/0x640 [ 164.656303][ T7074] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 164.656355][ T7074] should_failslab+0xc2/0x120 [ 164.656384][ T7074] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 164.656432][ T7074] ? __alloc_skb+0x2b2/0x380 [ 164.656476][ T7074] __alloc_skb+0x2b2/0x380 [ 164.656512][ T7074] ? __pfx___alloc_skb+0x10/0x10 [ 164.656553][ T7074] ? find_held_lock+0x2b/0x80 [ 164.656594][ T7074] ? is_bpf_text_address+0x8a/0x1a0 [ 164.656626][ T7074] alloc_skb_with_frags+0xe0/0x860 [ 164.656669][ T7074] ? is_bpf_text_address+0x94/0x1a0 [ 164.656707][ T7074] sock_alloc_send_pskb+0x7fb/0x990 [ 164.656745][ T7074] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 164.656792][ T7074] ? __pfx_sock_alloc_send_pskb+0x10/0x10 [ 164.656829][ T7074] ? find_held_lock+0x2b/0x80 [ 164.656867][ T7074] ? dev_get_by_index+0x17c/0x380 [ 164.656917][ T7074] packet_sendmsg+0x1ff7/0x56f0 [ 164.656971][ T7074] ? __pfx___might_resched+0x10/0x10 [ 164.657015][ T7074] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 164.657054][ T7074] ? __pfx_packet_sendmsg+0x10/0x10 [ 164.657082][ T7074] ? __might_fault+0xe3/0x190 [ 164.657132][ T7074] ? audit_mount.constprop.0+0x230/0x570 [ 164.657184][ T7074] __sys_sendto+0x495/0x510 [ 164.657222][ T7074] ? __pfx___sys_sendto+0x10/0x10 [ 164.657300][ T7074] ? ksys_write+0x1b9/0x240 [ 164.657343][ T7074] ? __pfx_ksys_write+0x10/0x10 [ 164.657383][ T7074] ? rcu_is_watching+0x12/0xc0 [ 164.657428][ T7074] __x64_sys_sendto+0xe0/0x1c0 [ 164.657462][ T7074] ? do_syscall_64+0x91/0x260 [ 164.657504][ T7074] ? lockdep_hardirqs_on+0x7c/0x110 [ 164.657547][ T7074] do_syscall_64+0xcd/0x260 [ 164.657594][ T7074] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 164.657625][ T7074] RIP: 0033:0x7fb0a338d169 [ 164.657650][ T7074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 164.657679][ T7074] RSP: 002b:00007fb0a413a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 164.657708][ T7074] RAX: ffffffffffffffda RBX: 00007fb0a35a6080 RCX: 00007fb0a338d169 [ 164.657728][ T7074] RDX: 0000000000000013 RSI: 0000000000000000 RDI: 0000000000000003 [ 164.657745][ T7074] RBP: 00007fb0a413a090 R08: 0000200000000440 R09: 0000000000000022 [ 164.657764][ T7074] R10: 00000000fffffff5 R11: 0000000000000246 R12: 0000000000000001 [ 164.657781][ T7074] R13: 0000000000000000 R14: 00007fb0a35a6080 R15: 00007ffc2c5f2898 [ 164.657821][ T7074] [ 164.756399][ T7066] netlink: 4 bytes leftover after parsing attributes in process `syz.3.333'. [ 165.147709][ T7081] kafs: addr_prefs: Invalid Command [ 165.749660][ T5845] Bluetooth: hci1: unexpected subevent 0x04 length: 122 > 11 [ 166.227067][ T7093] ima: Unable to open file: /sys/kernel/security/integrity/ima/policy (-26) [ 166.231947][ T7090] ima: policy update failed [ 166.251267][ T30] audit: type=1802 audit(6039321862.139:6): pid=7090 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.341" res=0 errno=0 [ 166.458085][ T7097] FAULT_INJECTION: forcing a failure. [ 166.458085][ T7097] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 166.503106][ T7097] CPU: 0 UID: 0 PID: 7097 Comm: syz.0.343 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 166.503147][ T7097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 166.503165][ T7097] Call Trace: [ 166.503174][ T7097] [ 166.503185][ T7097] dump_stack_lvl+0x16c/0x1f0 [ 166.503235][ T7097] should_fail_ex+0x512/0x640 [ 166.503275][ T7097] _copy_to_iter+0x477/0x15a0 [ 166.503320][ T7097] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 166.503370][ T7097] ? __pfx__copy_to_iter+0x10/0x10 [ 166.503427][ T7097] seq_read_iter+0xcf8/0x12c0 [ 166.503488][ T7097] seq_read+0x39e/0x4e0 [ 166.503530][ T7097] ? __pfx_seq_read+0x10/0x10 [ 166.503580][ T7097] ? get_pid_task+0xfc/0x250 [ 166.503627][ T7097] ? __pfx_seq_read+0x10/0x10 [ 166.503667][ T7097] proc_reg_read+0x23d/0x330 [ 166.503696][ T7097] ? __pfx_proc_reg_read+0x10/0x10 [ 166.503729][ T7097] vfs_read+0x1de/0xc70 [ 166.503778][ T7097] ? __pfx___mutex_lock+0x10/0x10 [ 166.503823][ T7097] ? __pfx_vfs_read+0x10/0x10 [ 166.503877][ T7097] ? __fget_files+0x20e/0x3c0 [ 166.503933][ T7097] ksys_read+0x12a/0x240 [ 166.503974][ T7097] ? __pfx_ksys_read+0x10/0x10 [ 166.504014][ T7097] ? rcu_is_watching+0x12/0xc0 [ 166.504078][ T7097] do_syscall_64+0xcd/0x260 [ 166.504151][ T7097] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 166.504182][ T7097] RIP: 0033:0x7f77cb18d169 [ 166.504206][ T7097] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 166.504235][ T7097] RSP: 002b:00007f77cbf33038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 166.504263][ T7097] RAX: ffffffffffffffda RBX: 00007f77cb3a5fa0 RCX: 00007f77cb18d169 [ 166.504283][ T7097] RDX: 00000000000000d2 RSI: 0000200000000180 RDI: 0000000000000003 [ 166.504300][ T7097] RBP: 00007f77cbf33090 R08: 0000000000000000 R09: 0000000000000000 [ 166.504318][ T7097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 166.504335][ T7097] R13: 0000000000000000 R14: 00007f77cb3a5fa0 R15: 00007ffcc31f27c8 [ 166.504375][ T7097] [ 166.991624][ T7103] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 167.684591][ T5845] Bluetooth: hci0: unexpected subevent 0x04 length: 122 > 11 [ 169.748390][ T5845] Bluetooth: hci0: unexpected subevent 0x04 length: 122 > 11 [ 172.651240][ T5845] Bluetooth: hci0: unexpected subevent 0x04 length: 122 > 11 [ 173.433243][ T7219] FAULT_INJECTION: forcing a failure. [ 173.433243][ T7219] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 173.554993][ T7219] CPU: 0 UID: 0 PID: 7219 Comm: syz.1.381 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 173.555033][ T7219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 173.555049][ T7219] Call Trace: [ 173.555058][ T7219] [ 173.555069][ T7219] dump_stack_lvl+0x16c/0x1f0 [ 173.555116][ T7219] should_fail_ex+0x512/0x640 [ 173.555155][ T7219] should_fail_alloc_page+0xe7/0x130 [ 173.555187][ T7219] prepare_alloc_pages+0x3c2/0x610 [ 173.555232][ T7219] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 173.555284][ T7219] ? check_path.constprop.0+0x24/0x50 [ 173.555331][ T7219] ? save_trace+0x4e/0x380 [ 173.555371][ T7219] ? add_lock_to_list+0x9d/0x130 [ 173.555422][ T7219] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 173.555470][ T7219] ? __lock_acquire+0xf7f/0x1ba0 [ 173.555540][ T7219] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 173.555575][ T7219] ? policy_nodemask+0xea/0x4e0 [ 173.555626][ T7219] alloc_pages_mpol+0x1fb/0x550 [ 173.555655][ T7219] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 173.555686][ T7219] ? find_held_lock+0x2b/0x80 [ 173.555730][ T7219] alloc_pages_noprof+0x131/0x390 [ 173.555759][ T7219] ? __pfx___pollwait+0x10/0x10 [ 173.555795][ T7219] get_free_pages_noprof+0xc/0x40 [ 173.555825][ T7219] __pollwait+0x295/0x490 [ 173.555867][ T7219] ? __pfx___pollwait+0x10/0x10 [ 173.555905][ T7219] pidfd_poll+0x92/0x3f0 [ 173.555944][ T7219] ? __pfx_pidfd_poll+0x10/0x10 [ 173.555980][ T7219] do_select+0xd67/0x17d0 [ 173.556048][ T7219] ? __pfx_do_select+0x10/0x10 [ 173.556093][ T7219] ? __pfx___pollwait+0x10/0x10 [ 173.556137][ T7219] ? __pfx_pollwake+0x10/0x10 [ 173.556181][ T7219] ? __pfx_pollwake+0x10/0x10 [ 173.556225][ T7219] ? __pfx_pollwake+0x10/0x10 [ 173.556268][ T7219] ? __pfx_pollwake+0x10/0x10 [ 173.556311][ T7219] ? __pfx_pollwake+0x10/0x10 [ 173.556355][ T7219] ? __pfx_pollwake+0x10/0x10 [ 173.556398][ T7219] ? __pfx_pollwake+0x10/0x10 [ 173.556446][ T7219] ? __pfx_pollwake+0x10/0x10 [ 173.556490][ T7219] ? __pfx_pollwake+0x10/0x10 [ 173.556532][ T7219] ? find_held_lock+0x2b/0x80 [ 173.556569][ T7219] ? __might_fault+0xe3/0x190 [ 173.556613][ T7219] ? __might_fault+0xe3/0x190 [ 173.556656][ T7219] ? __might_fault+0x13b/0x190 [ 173.556713][ T7219] ? core_sys_select+0x440/0xbe0 [ 173.556751][ T7219] core_sys_select+0x440/0xbe0 [ 173.556814][ T7219] ? __pfx_core_sys_select+0x10/0x10 [ 173.556861][ T7219] ? proc_fail_nth_write+0x9f/0x250 [ 173.556931][ T7219] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 173.556983][ T7219] kern_select+0x15d/0x1e0 [ 173.557023][ T7219] ? __pfx_kern_select+0x10/0x10 [ 173.557068][ T7219] ? __pfx_ksys_write+0x10/0x10 [ 173.557105][ T7219] ? rcu_is_watching+0x12/0xc0 [ 173.557146][ T7219] __x64_sys_select+0xbd/0x160 [ 173.557184][ T7219] ? do_syscall_64+0x91/0x260 [ 173.557225][ T7219] ? lockdep_hardirqs_on+0x7c/0x110 [ 173.557264][ T7219] do_syscall_64+0xcd/0x260 [ 173.557308][ T7219] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 173.557338][ T7219] RIP: 0033:0x7fc174d8d169 [ 173.557359][ T7219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 173.557387][ T7219] RSP: 002b:00007fc175c94038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 173.557420][ T7219] RAX: ffffffffffffffda RBX: 00007fc174fa5fa0 RCX: 00007fc174d8d169 [ 173.557439][ T7219] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 173.557456][ T7219] RBP: 00007fc175c94090 R08: 0000000000000000 R09: 0000000000000000 [ 173.557473][ T7219] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001 [ 173.557491][ T7219] R13: 0000000000000000 R14: 00007fc174fa5fa0 R15: 00007ffd8a6341c8 [ 173.557528][ T7219] [ 175.366515][ T7252] FAULT_INJECTION: forcing a failure. [ 175.366515][ T7252] name failslab, interval 1, probability 0, space 0, times 0 [ 175.414956][ T7252] CPU: 0 UID: 0 PID: 7252 Comm: syz.3.388 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 175.415019][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 175.415036][ T7252] Call Trace: [ 175.415045][ T7252] [ 175.415056][ T7252] dump_stack_lvl+0x16c/0x1f0 [ 175.415120][ T7252] should_fail_ex+0x512/0x640 [ 175.415155][ T7252] ? __kvmalloc_node_noprof+0x122/0x600 [ 175.415203][ T7252] should_failslab+0xc2/0x120 [ 175.415232][ T7252] __kvmalloc_node_noprof+0x135/0x600 [ 175.415278][ T7252] ? file_tty_write.constprop.0+0x6ed/0x9b0 [ 175.415336][ T7252] ? file_tty_write.constprop.0+0x6ed/0x9b0 [ 175.415385][ T7252] file_tty_write.constprop.0+0x6ed/0x9b0 [ 175.415447][ T7252] redirected_tty_write+0xd4/0x150 [ 175.415499][ T7252] vfs_write+0x5ba/0x1180 [ 175.415543][ T7252] ? __pfx_redirected_tty_write+0x10/0x10 [ 175.415597][ T7252] ? __pfx_vfs_write+0x10/0x10 [ 175.415636][ T7252] ? find_held_lock+0x2b/0x80 [ 175.415702][ T7252] ksys_write+0x12a/0x240 [ 175.415743][ T7252] ? __pfx_ksys_write+0x10/0x10 [ 175.415782][ T7252] ? rcu_is_watching+0x12/0xc0 [ 175.415832][ T7252] do_syscall_64+0xcd/0x260 [ 175.415882][ T7252] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 175.415913][ T7252] RIP: 0033:0x7fb8be58d169 [ 175.415937][ T7252] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 175.415966][ T7252] RSP: 002b:00007fb8bf425038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 175.416003][ T7252] RAX: ffffffffffffffda RBX: 00007fb8be7a5fa0 RCX: 00007fb8be58d169 [ 175.416024][ T7252] RDX: 0000000000000005 RSI: 0000200000000000 RDI: 0000000000000003 [ 175.416043][ T7252] RBP: 00007fb8bf425090 R08: 0000000000000000 R09: 0000000000000000 [ 175.416062][ T7252] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 175.416080][ T7252] R13: 0000000000000000 R14: 00007fb8be7a5fa0 R15: 00007fffb7c28748 [ 175.416121][ T7252] [ 175.643002][ T7256] [ 175.645380][ T7256] ====================================================== [ 175.652403][ T7256] WARNING: possible circular locking dependency detected [ 175.659429][ T7256] 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 Not tainted [ 175.666547][ T7256] ------------------------------------------------------ [ 175.673564][ T7256] syz.1.389/7256 is trying to acquire lock: [ 175.679479][ T7256] ffff888145ac6e58 (sk_lock-AF_INET){+.+.}-{0:0}, at: sockopt_lock_sock+0x54/0x70 [ 175.688746][ T7256] [ 175.688746][ T7256] but task is already holding lock: [ 175.696109][ T7256] ffffffff9012dae8 (rtnl_mutex){+.+.}-{4:4}, at: do_ip_getsockopt+0x1843/0x2220 [ 175.705184][ T7256] [ 175.705184][ T7256] which lock already depends on the new lock. [ 175.705184][ T7256] [ 175.715584][ T7256] [ 175.715584][ T7256] the existing dependency chain (in reverse order) is: [ 175.724596][ T7256] [ 175.724596][ T7256] -> #1 (rtnl_mutex){+.+.}-{4:4}: [ 175.731838][ T7256] __mutex_lock+0x199/0xb90 [ 175.736900][ T7256] smc_vlan_by_tcpsk+0x251/0x620 [ 175.742381][ T7256] __smc_connect+0x44b/0x4880 [ 175.747598][ T7256] smc_connect+0x2fc/0x760 [ 175.752551][ T7256] __sys_connect_file+0x13e/0x1a0 [ 175.758117][ T7256] __sys_connect+0x14d/0x170 [ 175.763261][ T7256] __x64_sys_connect+0x72/0xb0 [ 175.768582][ T7256] do_syscall_64+0xcd/0x260 [ 175.773634][ T7256] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 175.780065][ T7256] [ 175.780065][ T7256] -> #0 (sk_lock-AF_INET){+.+.}-{0:0}: [ 175.787734][ T7256] __lock_acquire+0x1173/0x1ba0 [ 175.793154][ T7256] lock_acquire+0x179/0x350 [ 175.798201][ T7256] lock_sock_nested+0x41/0xf0 [ 175.803417][ T7256] sockopt_lock_sock+0x54/0x70 [ 175.808721][ T7256] do_ip_getsockopt+0x13e4/0x2220 [ 175.814276][ T7256] ip_getsockopt+0x9b/0x1e0 [ 175.819309][ T7256] raw_getsockopt+0x4d/0x1f0 [ 175.824432][ T7256] do_sock_getsockopt+0x3fc/0x800 [ 175.830009][ T7256] __sys_getsockopt+0x12f/0x260 [ 175.835403][ T7256] __x64_sys_getsockopt+0xbd/0x160 [ 175.841068][ T7256] do_syscall_64+0xcd/0x260 [ 175.846116][ T7256] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 175.852545][ T7256] [ 175.852545][ T7256] other info that might help us debug this: [ 175.852545][ T7256] [ 175.862775][ T7256] Possible unsafe locking scenario: [ 175.862775][ T7256] [ 175.870227][ T7256] CPU0 CPU1 [ 175.875595][ T7256] ---- ---- [ 175.880960][ T7256] lock(rtnl_mutex); [ 175.884959][ T7256] lock(sk_lock-AF_INET); [ 175.891910][ T7256] lock(rtnl_mutex); [ 175.898448][ T7256] lock(sk_lock-AF_INET); [ 175.902874][ T7256] [ 175.902874][ T7256] *** DEADLOCK *** [ 175.902874][ T7256] [ 175.911016][ T7256] 1 lock held by syz.1.389/7256: [ 175.915956][ T7256] #0: ffffffff9012dae8 (rtnl_mutex){+.+.}-{4:4}, at: do_ip_getsockopt+0x1843/0x2220 [ 175.925466][ T7256] [ 175.925466][ T7256] stack backtrace: [ 175.931356][ T7256] CPU: 0 UID: 0 PID: 7256 Comm: syz.1.389 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 175.931387][ T7256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 175.931401][ T7256] Call Trace: [ 175.931409][ T7256] [ 175.931418][ T7256] dump_stack_lvl+0x116/0x1f0 [ 175.931453][ T7256] print_circular_bug+0x275/0x350 [ 175.931491][ T7256] check_noncircular+0x14c/0x170 [ 175.931531][ T7256] __lock_acquire+0x1173/0x1ba0 [ 175.931571][ T7256] ? do_ip_getsockopt+0x1843/0x2220 [ 175.931595][ T7256] lock_acquire+0x179/0x350 [ 175.931615][ T7256] ? sockopt_lock_sock+0x54/0x70 [ 175.931649][ T7256] lock_sock_nested+0x41/0xf0 [ 175.931677][ T7256] ? sockopt_lock_sock+0x54/0x70 [ 175.931706][ T7256] sockopt_lock_sock+0x54/0x70 [ 175.931735][ T7256] do_ip_getsockopt+0x13e4/0x2220 [ 175.931760][ T7256] ? __pfx_do_ip_getsockopt+0x10/0x10 [ 175.931783][ T7256] ? schedule+0x2d7/0x3a0 [ 175.931813][ T7256] ? schedule+0xf1/0x3a0 [ 175.931841][ T7256] ? futex_wait_queue+0x14c/0x220 [ 175.931862][ T7256] ? futex_unqueue+0xba/0x140 [ 175.931893][ T7256] ? __futex_wait+0x323/0x3c0 [ 175.931923][ T7256] ? __pfx___futex_wait+0x10/0x10 [ 175.931957][ T7256] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 175.931991][ T7256] ? __lock_acquire+0xaa4/0x1ba0 [ 175.932048][ T7256] ? __pfx___might_resched+0x10/0x10 [ 175.932087][ T7256] ip_getsockopt+0x9b/0x1e0 [ 175.932112][ T7256] ? __pfx_ip_getsockopt+0x10/0x10 [ 175.932135][ T7256] ? __might_fault+0xe3/0x190 [ 175.932172][ T7256] ? __might_fault+0x13b/0x190 [ 175.932214][ T7256] raw_getsockopt+0x4d/0x1f0 [ 175.932235][ T7256] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 175.932275][ T7256] do_sock_getsockopt+0x3fc/0x800 [ 175.932315][ T7256] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 175.932353][ T7256] ? __fget_files+0x204/0x3c0 [ 175.932396][ T7256] __sys_getsockopt+0x12f/0x260 [ 175.932429][ T7256] __x64_sys_getsockopt+0xbd/0x160 [ 175.932459][ T7256] ? do_syscall_64+0x91/0x260 [ 175.932495][ T7256] ? lockdep_hardirqs_on+0x7c/0x110 [ 175.932529][ T7256] do_syscall_64+0xcd/0x260 [ 175.932566][ T7256] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 175.932592][ T7256] RIP: 0033:0x7fc174d8d169 [ 175.932611][ T7256] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 175.932654][ T7256] RSP: 002b:00007fc175c94038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 175.932677][ T7256] RAX: ffffffffffffffda RBX: 00007fc174fa5fa0 RCX: 00007fc174d8d169 [ 175.932694][ T7256] RDX: 0000000000000030 RSI: 0000000000000000 RDI: 0000000000000005 [ 175.932709][ T7256] RBP: 00007fc174e0e990 R08: 0000200000000040 R09: 0000000000000000 [ 175.932725][ T7256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 175.932740][ T7256] R13: 0000000000000000 R14: 00007fc174fa5fa0 R15: 00007ffd8a6341c8 [ 175.932764][ T7256]