last executing test programs: 3m38.661325427s ago: executing program 3 (id=1760): r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x1000, 0x0) r1 = bpf$auto(0xd, 0x0, 0x6f5) mmap$auto(0x7ff, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) init_module$auto(0x0, 0xffff9, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) waitid$auto_P_PGID(0x2, r1, &(0x7f0000000000)={@siginfo_0_0={0xd, 0x4, 0x4b6f, @_kill={0xffffffffffffffff}}}, 0x0, &(0x7f0000000080)={{0x100000000, 0x4}, {0xfffffffffffffa8b, 0x44}, 0xd3, 0x1, 0x5, 0xfff, 0xfffffffffffffff9, 0x7, 0xbe2, 0x0, 0xfffffffffffffff8, 0x41, 0x0, 0xff, 0x8, 0xec22}) r3 = fcntl$auto(r0, 0x7fffffff, r2) madvise$auto(0x0, 0x8000000000000000, 0x15) madvise$auto(0x0, 0x2000000080000001, 0x3) mmap$auto(0x0, 0xffff, 0x0, 0xeb1, 0xfffffffffffffffa, 0x6) mmap$auto(0xfffffffffffffffc, 0x9, 0xe0, 0xa000000000019b72, r3, 0x8) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) statx$auto(0xffffff9c, 0x0, 0x1000, 0x1, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x3a) socket(0x29, 0x5, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x280, 0x0) ioctl$auto(r5, 0xc040563d, r4) madvise$auto(0x0, 0xffffffffffff0001, 0x15) fanotify_mark$auto(0x0, 0x1, 0x9, 0x4, 0x0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x80, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/v4l-subdev2\x00', 0x4000, 0x0) ioctl$auto(0x3, 0xc0585605, 0x38) madvise$auto(0x0, 0xffffffffffff0005, 0x19) 3m35.052177824s ago: executing program 3 (id=1770): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0) io_uring_setup$auto(0x2, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) socket(0x2b, 0x1, 0x1) io_uring_setup$auto(0x6, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) socket(0x2, 0x5, 0x0) bind$auto(0x3, 0x0, 0x6a) r1 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0x123000, 0x0) ioctl$auto_USB_RAW_IOCTL_EVENT_FETCH(r1, 0x80085502, &(0x7f00000001c0)=ANY=[@ANYBLOB="006cc19bee718100"]) pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00/\x00\x00\x00\xfd\xfdX\xd3\x1d\xf8\xbebZ\xddL\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\b\x00\x00\x00\x00\x00\x00?\x01\x88\v\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\b\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfded, 0x3) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000340)='/dev/sda\x00', 0x8001, 0x0) fallocate$auto(r2, 0x1, 0x0, 0x80000000) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x2000, 0x0) ioctl$auto_BLKROTATIONAL(r3, 0x127e, 0x0) fadvise64$auto_POSIX_FADV_WILLNEED(r3, 0x9, 0x200, 0x3) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000) write$auto(0xffffffffffffffff, 0x0, 0x81) write$auto(0x3, 0x0, 0x100082) ioctl$auto_SNDCTL_DSP_SETFMT(r4, 0xc0045005, &(0x7f0000000040)) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/netdevsim2/accept_ra_rt_info_min_plen\x00', 0x641a41, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/net/teql0/statistics/rx_dropped\x00', 0x80000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram12/queue/io_poll_delay\x00', 0x80000, 0x0) 3m33.598199602s ago: executing program 3 (id=1776): r0 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmallocinfo\x00', 0x100182, 0x0) pread64$auto(r0, &(0x7f0000000100)='\xb9+.\x00', 0x6, 0x801f) 3m32.766396894s ago: executing program 3 (id=1777): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0) io_uring_setup$auto(0x2, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) socket(0x2b, 0x1, 0x1) io_uring_setup$auto(0x6, 0x0) socket(0x2, 0x5, 0x0) bind$auto(0x3, 0x0, 0x6a) r1 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0x123000, 0x0) ioctl$auto_USB_RAW_IOCTL_EVENT_FETCH(r1, 0x80085502, &(0x7f00000001c0)=ANY=[@ANYBLOB="006cc19bee718100"]) pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00/\x00\x00\x00\xfd\xfdX\xd3\x1d\xf8\xbebZ\xddL\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\b\x00\x00\x00\x00\x00\x00?\x01\x88\v\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\b\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfded, 0x3) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000340)='/dev/sda\x00', 0x8001, 0x0) fallocate$auto(r2, 0x1, 0x0, 0x80000000) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x2000, 0x0) ioctl$auto_BLKROTATIONAL(r3, 0x127e, 0x0) fadvise64$auto_POSIX_FADV_WILLNEED(r3, 0x9, 0x200, 0x3) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000) write$auto(0xffffffffffffffff, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(0x3, 0x0, 0x100082) ioctl$auto_SNDCTL_DSP_SETFMT(r4, 0xc0045005, &(0x7f0000000040)) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/netdevsim2/accept_ra_rt_info_min_plen\x00', 0x641a41, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/net/teql0/statistics/rx_dropped\x00', 0x80000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram12/queue/io_poll_delay\x00', 0x80000, 0x0) 3m31.779264696s ago: executing program 3 (id=1782): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/icmp\x00', 0x20000, 0x0) pread64$auto(r0, 0x0, 0x1, 0xeb3) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) r2 = open(&(0x7f00000001c0)='./file0\x00', 0x4242, 0x11a) fanotify_mark$auto(0x0, 0x1, 0x3a, r2, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) dup2$auto(0x0, 0x3) ioctl$auto(0x3, 0x541b, 0x10000000000402) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x132, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0xfffffdef) shutdown$auto(0x200000003, 0x2) ioperm$auto(0x6cc8, 0x7, 0x8) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030000020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000080004001000000008000200", @ANYRES32=0x0, @ANYBLOB="0a0018"], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) close_range$auto(0x2, 0x8, 0x0) r3 = socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_SET_HW_TIMESTAMP(r3, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2080002}, 0xc, &(0x7f0000000280)={&(0x7f0000000100)={0x1c, r4, 0x20, 0x70bd2c, 0x25dfdbfe, {}, [@NL80211_ATTR_TDLS_OPERATION={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4008011}, 0x20000801) tkill$auto(0x80000000000001, 0x7) setresuid$auto(0x0, 0x8, 0x8000) shmget$auto(0x8, 0x10563, 0x568d1af2) 3m30.46654215s ago: executing program 3 (id=1785): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0) io_uring_setup$auto(0x2, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) socket(0x2b, 0x1, 0x1) io_uring_setup$auto(0x6, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) socket(0x2, 0x5, 0x0) bind$auto(0x3, 0x0, 0x6a) r1 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0x123000, 0x0) ioctl$auto_USB_RAW_IOCTL_EVENT_FETCH(r1, 0x80085502, &(0x7f00000001c0)=ANY=[@ANYBLOB="006cc19bee718100"]) pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00/\x00\x00\x00\xfd\xfdX\xd3\x1d\xf8\xbebZ\xddL\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\b\x00\x00\x00\x00\x00\x00?\x01\x88\v\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\b\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfded, 0x3) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000340)='/dev/sda\x00', 0x8001, 0x0) fallocate$auto(r2, 0x1, 0x0, 0x80000000) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x2000, 0x0) ioctl$auto_BLKROTATIONAL(r3, 0x127e, 0x0) fadvise64$auto_POSIX_FADV_WILLNEED(r3, 0x9, 0x200, 0x3) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000) write$auto(0xffffffffffffffff, 0x0, 0x81) write$auto(0x3, 0x0, 0x100082) ioctl$auto_SNDCTL_DSP_SETFMT(r4, 0xc0045005, &(0x7f0000000040)) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/netdevsim2/accept_ra_rt_info_min_plen\x00', 0x641a41, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/net/teql0/statistics/rx_dropped\x00', 0x80000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram12/queue/io_poll_delay\x00', 0x80000, 0x0) 3m29.958558627s ago: executing program 32 (id=1785): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0) io_uring_setup$auto(0x2, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) socket(0x2b, 0x1, 0x1) io_uring_setup$auto(0x6, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) socket(0x2, 0x5, 0x0) bind$auto(0x3, 0x0, 0x6a) r1 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0x123000, 0x0) ioctl$auto_USB_RAW_IOCTL_EVENT_FETCH(r1, 0x80085502, &(0x7f00000001c0)=ANY=[@ANYBLOB="006cc19bee718100"]) pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00/\x00\x00\x00\xfd\xfdX\xd3\x1d\xf8\xbebZ\xddL\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\b\x00\x00\x00\x00\x00\x00?\x01\x88\v\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\b\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfded, 0x3) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000340)='/dev/sda\x00', 0x8001, 0x0) fallocate$auto(r2, 0x1, 0x0, 0x80000000) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x2000, 0x0) ioctl$auto_BLKROTATIONAL(r3, 0x127e, 0x0) fadvise64$auto_POSIX_FADV_WILLNEED(r3, 0x9, 0x200, 0x3) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000) write$auto(0xffffffffffffffff, 0x0, 0x81) write$auto(0x3, 0x0, 0x100082) ioctl$auto_SNDCTL_DSP_SETFMT(r4, 0xc0045005, &(0x7f0000000040)) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/netdevsim2/accept_ra_rt_info_min_plen\x00', 0x641a41, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/net/teql0/statistics/rx_dropped\x00', 0x80000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram12/queue/io_poll_delay\x00', 0x80000, 0x0) 10.686396181s ago: executing program 0 (id=2294): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/perf_event_max_contexts_per_stack\x00', 0x202, 0x0) sendfile$auto(r0, r0, 0x0, 0x7fffe000) r1 = socket(0x10, 0x2, 0x0) r2 = socket(0x2, 0x3, 0x1) connect$auto(r2, &(0x7f0000000000), 0x55) sendmmsg$auto(r2, &(0x7f0000000200)={{&(0x7f0000000100), 0xf, 0x0, 0x2, 0x0, 0x800000000000003, 0xfffff2cf}, 0x6}, 0x2319, 0x5) syz_genetlink_get_family_id$auto_nlbl_mgmt(&(0x7f0000000040), r1) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_XRUN(0xffffffffffffffff, 0x4148, 0x0) mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) migrate_pages$auto(0x0, 0x8, 0x0, &(0x7f00000001c0)=0x7b) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r3, 0xc0045006, &(0x7f00000001c0)) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 9.743436029s ago: executing program 0 (id=2296): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) setrlimit$auto(0x1000000007, 0x0) epoll_create$auto(0x4) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x3ff, 0x0, 0x3, 0x5f, 0x0, 0x3}, 0x6f3) r0 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/1/msr\x00', 0xf82, 0x0) readv$auto(r0, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) fsopen$auto(&(0x7f0000000000)='nlctrl\x00', 0x3) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000) r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff) madvise$auto(0x6, 0x1, 0xb) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000280)=ANY=[@ANYBLOB="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", @ANYRES16=r1, @ANYBLOB="010325bd7000ffdbdf250a000000"], 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0xc040810) mmap$auto(0x9, 0x8000, 0x40000000000df, 0x15, 0x2, 0x8002) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x400c810}, 0x20000041) 9.722090209s ago: executing program 1 (id=2297): r0 = openat$auto_percpu_stats_fops_(0xffffffffffffff9c, 0x0, 0x300, 0x0) read$auto_percpu_stats_fops_(r0, &(0x7f0000000040)=""/49, 0x31) 9.166919131s ago: executing program 1 (id=2300): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/perf_event_max_contexts_per_stack\x00', 0x202, 0x0) sendfile$auto(r0, r0, 0x0, 0x7fffe000) r1 = socket(0x10, 0x2, 0x0) r2 = socket(0x2, 0x3, 0x1) connect$auto(r2, &(0x7f0000000000), 0x55) sendmmsg$auto(r2, &(0x7f0000000200)={{&(0x7f0000000100), 0xf, 0x0, 0x2, 0x0, 0x800000000000003, 0xfffff2cf}, 0x6}, 0x2319, 0x5) r3 = syz_genetlink_get_family_id$auto_nlbl_mgmt(&(0x7f0000000040), r1) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_XRUN(0xffffffffffffffff, 0x4148, 0x0) mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) migrate_pages$auto(0x0, 0x8, 0x0, &(0x7f00000001c0)=0x7b) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r4, 0xc0045006, &(0x7f00000001c0)) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) bpf$auto(0x1e, &(0x7f00000000c0)=@raw_tracepoint={0x1009, 0xffffffffffffffff, 0x0, 0x4}, 0x5) sendmsg$auto_NLBL_MGMT_C_ADDDEF(r2, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB, @ANYRES16=r3], 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x40080) add_key$auto(&(0x7f0000000180)='\x00', &(0x7f00000001c0)='NLBL_MGMT\x00', &(0x7f0000000240)="05fd94a29297de8b65a6e727150abbed29819ac1b9b733b9a94ced864e57c863b0d9e801d254de7f6cc6889edfa505c7dda7bc30859c2876ddbf7288d3e8d53fc207436df4172d34f7a290732fa03f4e4d814ee2cdfd43ae0e98ad4fafec2129c13dca0e6e7d5571b49a002df2746230785c7818", 0x7, 0x9) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mtdblock0\x00', 0x10d441, 0x0) 8.880016253s ago: executing program 2 (id=2301): close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x2, 0x1, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x9, 0xa, 0x3) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/net/pppoe\x00', 0x0, 0x0) pread64$auto(0xffffffffffffffff, &(0x7f0000000240)='/proc/thread-self/net/tcp6\x00\xd2)\x8e\x892\x82\x19\xfd\x03\xc3\x8d\xd7D\x8d\xa8\xcfM9\\\xd6\xcfUq\x05#\xed\x1c\xd1G\bz\xde5u4\xddS\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fB\x03\x00\x00\x00AW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\xdbk{\xaf\xeb\xa8\xbasG\xd3\x80\xb1G.\xec1\x96uP\x97\x8co\xb1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\xf7\xc4n\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\xc0S\f57\x83\xdd\xaa\xf0\x9c\xd3G\xe1', 0x7, 0x9) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000400), r1) sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='4\n\x00R', @ANYRES16=r2], 0x34}, 0x1, 0x0, 0x0, 0x34044040}, 0x4) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pci0000:00/0000:00:00.0/enable\x00', 0x18b042, 0x0) mprotect$auto(0x1ffff000, 0x7ff7fffffffffffe, 0x7ffffffc) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/vhci_hcd.12/usb34/34-0:1.0/ep_81/interval\x00', 0xe3102, 0x0) sendfile$auto(r0, r3, 0x0, 0x404) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r4 = socket(0x2, 0x801, 0x106) getsockopt$auto(r4, 0x6, 0x2, 0x0, 0x0) r5 = open(&(0x7f0000000040)='./file0\x00', 0x22240, 0x154) fcntl$auto(r5, 0x10, 0x0) fcntl$auto(0x3, 0x8, 0x9ebfffffffffffff) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) fcntl$auto(0x3, 0x400, 0x9ec0000000000000) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0) r6 = openat$auto_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/stats\x00', 0x800, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x2aa82, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) read$auto(r6, &(0x7f0000000080)='\x00Gn\x02\xff\xfdlw,\xaf\xb2@\x13O9\xd9d5++%\xff\xc6\xb9\x88n\xc1U\x86\xb1\xc1\x9b\xf6s\x0e\x1b\xa0N(F\xf8\xdf\xb4\x858\x8a\xaa\x00\x8a\xf08~\x03\x96\a\x00\x84h(\x14K\\\xceA\x8e', 0x4) fchmod$auto(0x0, 0x9b9a) 8.619910116s ago: executing program 2 (id=2302): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001300)={0x34, r1, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x8, 0x1, '.SR\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}, @OVS_DP_ATTR_MASKS_CACHE_SIZE={0x8, 0x7, 0x4}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000800}, 0x80) 8.036675015s ago: executing program 1 (id=2303): mmap$auto(0x0, 0x5, 0xdf, 0x1a, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) setsockopt$auto(0x3, 0x0, 0x15, 0x0, 0x28) syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000040), r0) r1 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) open(&(0x7f0000000000)='./file0\x00', 0xb6dc2, 0x84) fallocate$auto(0x8000000000000003, 0x0, 0x8000000d, 0x2cbd5d) madvise$auto(0x0, 0xffffffffffff0001, 0x15) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x806, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55) close_range$auto(0x2, 0x8, 0x0) newfstatat$auto(r1, &(0x7f0000000580), 0x0, 0x1000) socket(0x18, 0x1, 0x106) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) setsockopt$auto(0x3, 0x6, 0x21, 0x0, 0x10) unshare$auto(0x40000080) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x10b842, 0x0) write$auto(r2, &(0x7f0000000040)='\xce*+#\x00', 0x80) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) unshare$auto(0x100000001) io_uring_setup$auto(0x5, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0xa200, 0x0) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x8000, 0x0) read$auto(r3, 0x0, 0x9) close_range$auto(0x2, 0xa, 0x0) 7.398129533s ago: executing program 0 (id=2304): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) setrlimit$auto(0x1000000007, 0x0) epoll_create$auto(0x4) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x3ff, 0x0, 0x3, 0x5f, 0x0, 0x3}, 0x6f3) r0 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/1/msr\x00', 0xf82, 0x0) readv$auto(r0, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) fsopen$auto(&(0x7f0000000000)='nlctrl\x00', 0x3) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) clone$auto(0x21002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9) madvise$auto(0x6, 0x1, 0xb) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000280)=ANY=[@ANYBLOB="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", @ANYRES16, @ANYBLOB="010325bd7000ffdbdf250a000000"], 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0xc040810) mmap$auto(0x9, 0x8000, 0x40000000000df, 0x15, 0x2, 0x8002) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x400c810}, 0x20000041) 7.397610553s ago: executing program 2 (id=2305): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) setrlimit$auto(0x1000000007, 0x0) epoll_create$auto(0x4) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x3ff, 0x0, 0x3, 0x5f, 0x0, 0x3}, 0x6f3) r0 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/1/msr\x00', 0xf82, 0x0) readv$auto(r0, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) fsopen$auto(&(0x7f0000000000)='nlctrl\x00', 0x3) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) clone$auto(0x21002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9) madvise$auto(0x6, 0x1, 0xb) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000280)=ANY=[@ANYBLOB="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", @ANYRES16, @ANYBLOB="010325bd7000ffdbdf250a000000"], 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0xc040810) mmap$auto(0x9, 0x8000, 0x40000000000df, 0x15, 0x2, 0x8002) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x400c810}, 0x20000041) 5.149463872s ago: executing program 1 (id=2307): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/perf_event_max_contexts_per_stack\x00', 0x202, 0x0) sendfile$auto(r0, r0, 0x0, 0x7fffe000) r1 = socket(0x10, 0x2, 0x0) r2 = socket(0x2, 0x3, 0x1) connect$auto(r2, &(0x7f0000000000), 0x55) sendmmsg$auto(r2, &(0x7f0000000200)={{&(0x7f0000000100), 0xf, 0x0, 0x2, 0x0, 0x800000000000003, 0xfffff2cf}, 0x6}, 0x2319, 0x5) syz_genetlink_get_family_id$auto_nlbl_mgmt(&(0x7f0000000040), r1) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_XRUN(0xffffffffffffffff, 0x4148, 0x0) mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) migrate_pages$auto(0x0, 0x8, 0x0, &(0x7f00000001c0)=0x7b) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r3, 0xc0045006, &(0x7f00000001c0)) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 4.096387124s ago: executing program 1 (id=2308): mmap$auto(0x0, 0x5, 0xdf, 0x1a, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) setsockopt$auto(0x3, 0x0, 0x15, 0x0, 0x28) syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000040), r0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = open(0x0, 0x161342, 0x100) open(&(0x7f0000000000)='./file0\x00', 0xb6dc2, 0x84) fallocate$auto(0x8000000000000003, 0x0, 0x8000000d, 0x2cbd5d) madvise$auto(0x0, 0xffffffffffff0001, 0x15) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x806, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55) close_range$auto(0x2, 0x8, 0x0) newfstatat$auto(r1, &(0x7f0000000580), 0x0, 0x1000) socket(0x18, 0x1, 0x106) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) setsockopt$auto(0x3, 0x6, 0x21, 0x0, 0x10) unshare$auto(0x40000080) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x10b842, 0x0) write$auto(r2, &(0x7f0000000040)='\xce*+#\x00', 0x80) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) unshare$auto(0x100000001) io_uring_setup$auto(0x5, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0xa200, 0x0) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x8000, 0x0) read$auto(r3, 0x0, 0x9) close_range$auto(0x2, 0xa, 0x0) 3.836273744s ago: executing program 4 (id=2309): prctl$auto_PR_SET_MM_ENV_START(0xfc4, 0xa, 0xffffffffffffffff, 0x1, 0x9) mmap$auto(0x0, 0x20009, 0x410, 0xeb1, 0x401, 0x7) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/irq/12/hwirq\x00', 0x276002, 0x0) read$auto(r0, 0x0, 0x20) close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) mmap$auto(0x0, 0x8000, 0x8, 0xebf, r1, 0x8000) mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4) lstat$auto(&(0x7f0000000200)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) ioctl$auto(0x3, 0xae60, 0x10000000000402) ioctl$auto(0x3, 0x4020aea5, 0x38) ioctl$auto(0x3, 0x4040ae77, 0x38) openat$auto_ns_file_operations_nsfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/ns/cgroup\x00', 0x480, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001ec0)='/sys/power/mem_sleep\x00', 0x1a9402, 0x0) socket(0x18, 0x80802, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socket(0x15, 0x5, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/workqueue/nf_ft_offload_stats/affinity_scope\x00', 0x2, 0x0) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x80000, 0x0) 3.751032736s ago: executing program 2 (id=2310): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x20440, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000000c0)=""/82, 0x52) 3.643910855s ago: executing program 0 (id=2311): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) setrlimit$auto(0x1000000007, 0x0) epoll_create$auto(0x4) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x3ff, 0x0, 0x3, 0x5f, 0x0, 0x3}, 0x6f3) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000) r0 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff) madvise$auto(0x6, 0x1, 0xb) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000280)=ANY=[@ANYBLOB="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", @ANYRES16=r0, @ANYBLOB="010325bd7000ffdbdf250a000000"], 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0xc040810) mmap$auto(0x9, 0x8000, 0x40000000000df, 0x15, 0x2, 0x8002) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x400c810}, 0x20000041) 3.426406951s ago: executing program 2 (id=2312): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000500)='/sys/kernel/debug/usb/usbmon/16u\x00', 0x80800, 0x0) pread64$auto(r1, 0x0, 0x56, 0x7) r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000001640), r0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x2000000000000000) r3 = socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) setsockopt$auto(r3, 0x1, 0x12, 0x0, 0xeb66) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r0, &(0x7f0000001f40)={0x0, 0x0, &(0x7f0000001f00)={&(0x7f0000000000)=ANY=[@ANYBLOB="d729898c280000f1", @ANYRES16=r2, @ANYBLOB="010029bd7000fedbdf250d0000000c0006000100000000000000"], 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TCFLSH2(r5, 0x80045439, 0x0) ioctl$auto_TIOCSETD2(r4, 0x5423, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto(r4, 0x89f0, r4) prctl$auto_PR_SET_SHADOW_STACK_STATUS(0x4b, 0xb5d, 0x0, 0x9, 0x1) close_range$auto(r0, r0, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x4, 0x800, 0x10001) socket(0xa, 0x2, 0x0) setsockopt$auto(0x3, 0x0, 0x1a, 0xffffffffffffffff, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0xffffffffffff0005, 0x19) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001140)='/sys/devices/virtual/block/zram0/comp_algorithm\x00', 0x20b42, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x7fffffff, 0x70a) sethostname$auto(0x0, 0x7) 2.876281317s ago: executing program 4 (id=2313): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/perf_event_max_contexts_per_stack\x00', 0x202, 0x0) sendfile$auto(r0, r0, 0x0, 0x7fffe000) r1 = socket(0x10, 0x2, 0x0) r2 = socket(0x2, 0x3, 0x1) connect$auto(r2, &(0x7f0000000000), 0x55) sendmmsg$auto(r2, &(0x7f0000000200)={{&(0x7f0000000100), 0xf, 0x0, 0x2, 0x0, 0x800000000000003, 0xfffff2cf}, 0x6}, 0x2319, 0x5) r3 = syz_genetlink_get_family_id$auto_nlbl_mgmt(&(0x7f0000000040), r1) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_XRUN(0xffffffffffffffff, 0x4148, 0x0) mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) migrate_pages$auto(0x0, 0x8, 0x0, &(0x7f00000001c0)=0x7b) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r4, 0xc0045006, &(0x7f00000001c0)) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) bpf$auto(0x1e, &(0x7f00000000c0)=@raw_tracepoint={0x1009, 0xffffffffffffffff, 0x0, 0x4}, 0x5) sendmsg$auto_NLBL_MGMT_C_ADDDEF(r2, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB, @ANYRES16=r3], 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x40080) add_key$auto(&(0x7f0000000180)='\x00', &(0x7f00000001c0)='NLBL_MGMT\x00', &(0x7f0000000240)="05fd94a29297de8b65a6e727150abbed29819ac1b9b733b9a94ced864e57c863b0d9e801d254de7f6cc6889edfa505c7dda7bc30859c2876ddbf7288d3e8d53fc207436df4172d34f7a290732fa03f4e4d814ee2cdfd43ae0e98ad4fafec2129c13dca0e6e7d5571b49a002df2746230785c7818", 0x7, 0x9) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mtdblock0\x00', 0x10d441, 0x0) 2.701084242s ago: executing program 1 (id=2314): r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001300)={0x34, r2, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x8, 0x1, '.SR\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}, @OVS_DP_ATTR_MASKS_CACHE_SIZE={0x8, 0x7, 0x4}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000800}, 0x80) bpf$auto(0xd, 0x0, 0x6f5) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) init_module$auto(0x0, 0xffff9, 0x0) mmap$auto(0x0, 0x4000b, 0xdf, 0x9b72, 0x7, 0x28000) r3 = socket(0x10, 0x2, 0xf) close_range$auto(0x0, 0xffffeffe, 0x2) pipe$auto(0x0) socket(0xa, 0x3, 0xff) pipe$auto(0x0) bpf$auto(0x0, &(0x7f0000000080)=@bpf_attr_4={0x1e, r3, 0xffffffff, 0xffffffffffffffff}, 0xd) bpf$auto(0x4, &(0x7f0000000080)=@bpf_attr_3={0x5, 0x0, 0x702955be, 0x40000, 0x4, 0x5, 0x80, 0xe4, 0xfffff800, "05a9a4bd0052e300", 0x0, 0x10000, 0xffffffffffffffff, 0x7, 0x1ff, 0x4, 0x7, 0x10001, 0x0, 0x8001, @attach_prog_fd=r4, 0x7e, 0x4, 0xffffffffffffffff, 0x5, 0x3}, 0x5) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r5 = openat$auto_proc_auxv_operations_base(0xffffffffffffff9c, &(0x7f0000000500)='/proc/thread-self/auxv\x00', 0x8040, 0x0) readv$auto(r5, &(0x7f0000000900)={&(0x7f0000000800), 0x3ff}, 0x2) madvise$auto(0x0, 0x8000000000000000, 0x15) madvise$auto(0x0, 0x2000000080000001, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, 0x0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x80, 0x0) move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4) 2.240471921s ago: executing program 4 (id=2315): r0 = openat$auto_percpu_stats_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x300, 0x0) read$auto_percpu_stats_fops_(r0, 0x0, 0x0) 2.01643039s ago: executing program 4 (id=2316): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/vhci_hcd.11/usb31/bMaxPower\x00', 0x10b142, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) setsockopt$auto(0x3, 0x10000000084, 0x4, 0x0, 0x8) 1.809942167s ago: executing program 4 (id=2317): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/perf_event_max_contexts_per_stack\x00', 0x202, 0x0) sendfile$auto(r0, r0, 0x0, 0x7fffe000) r1 = socket(0x10, 0x2, 0x0) r2 = socket(0x2, 0x3, 0x1) connect$auto(r2, &(0x7f0000000000), 0x55) sendmmsg$auto(r2, &(0x7f0000000200)={{&(0x7f0000000100), 0xf, 0x0, 0x2, 0x0, 0x800000000000003, 0xfffff2cf}, 0x6}, 0x2319, 0x5) syz_genetlink_get_family_id$auto_nlbl_mgmt(&(0x7f0000000040), r1) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_XRUN(0xffffffffffffffff, 0x4148, 0x0) mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) migrate_pages$auto(0x0, 0x8, 0x0, &(0x7f00000001c0)=0x7b) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r3, 0xc0045006, &(0x7f00000001c0)) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 1.806855029s ago: executing program 0 (id=2325): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) setrlimit$auto(0x1000000007, 0x0) epoll_create$auto(0x4) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x3ff, 0x0, 0x3, 0x5f, 0x0, 0x3}, 0x6f3) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000) r0 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff) madvise$auto(0x6, 0x1, 0xb) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000280)=ANY=[@ANYBLOB="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", @ANYRES16=r0, @ANYBLOB="010325bd7000ffdbdf250a000000"], 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0xc040810) mmap$auto(0x9, 0x8000, 0x40000000000df, 0x15, 0x2, 0x8002) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x400c810}, 0x20000041) 1.710015548s ago: executing program 2 (id=2318): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) setrlimit$auto(0x1000000007, 0x0) epoll_create$auto(0x4) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x3ff, 0x0, 0x3, 0x5f, 0x0, 0x3}, 0x6f3) r0 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/1/msr\x00', 0xf82, 0x0) readv$auto(r0, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) fsopen$auto(&(0x7f0000000000)='nlctrl\x00', 0x3) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) clone$auto(0x21002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9) madvise$auto(0x6, 0x1, 0xb) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000280)=ANY=[@ANYBLOB="9241d77dfd04f4cdcd3c2e53e2688626b3313e56da9b2fa056d4a3ab1101f130e3ac04c3c4e910632095f8e05c1e8e45dbb37e49d1413e438507d2080c85d8c16a1df5fa535213c5d56f33d05f1b857f9b9310c9f7e3ecc86d32c5d7d0e5f3ab36f3f6d02dc35ac5ceb4e300735fc2d06d5361d55e3e8f4c2406000000ca8421a9056ca4d00680bf973ccaf16f5c615c41abc46dc2c99bcc9294d2b726a9aff378455d132576c8cea976d6cfd857b099cd3a274dabd6bfc3de0b485f6ed79af5ad4a45c99e0e0ec27ddcf8c73374e902288f90063aa10cdc36a08b9c3b5ef6b188c023174767c876be06ed87809a5b862f1c407eeffe19ca90c052843e3ac0aec18e413b296639a92efeafd8f86289379dd32b702811083d8b9c1b248a8838ad18966270a9624e092680348a868e9b0d0fc00f580a3bbfea237e98bd46bb433390efc155c3fd14eb632d98d7130c40feef2c335945da99ab70c928d52c826e26906c6420d7154554ddf2f3841c31c0f99cb602486ce2e120f489df45f6330dad", @ANYRES16, @ANYBLOB="010325bd7000ffdbdf250a000000"], 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0xc040810) mmap$auto(0x9, 0x8000, 0x40000000000df, 0x15, 0x2, 0x8002) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x400c810}, 0x20000041) 1.145566277s ago: executing program 4 (id=2319): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) setrlimit$auto(0x1000000007, 0x0) epoll_create$auto(0x4) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x3ff, 0x0, 0x3, 0x5f, 0x0, 0x3}, 0x6f3) r0 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/1/msr\x00', 0xf82, 0x0) readv$auto(r0, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) fsopen$auto(&(0x7f0000000000)='nlctrl\x00', 0x3) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) clone$auto(0x21002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9) madvise$auto(0x6, 0x1, 0xb) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000280)=ANY=[@ANYBLOB="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", @ANYRES16, @ANYBLOB="010325bd7000ffdbdf250a000000"], 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0xc040810) mmap$auto(0x9, 0x8000, 0x40000000000df, 0x15, 0x2, 0x8002) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x400c810}, 0x20000041) 0s ago: executing program 0 (id=2321): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) setrlimit$auto(0x1000000007, 0x0) epoll_create$auto(0x4) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x3ff, 0x0, 0x3, 0x5f, 0x0, 0x3}, 0x6f3) r0 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/1/msr\x00', 0xf82, 0x0) readv$auto(r0, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) fsopen$auto(&(0x7f0000000000)='nlctrl\x00', 0x3) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) kernel console output (not intermixed with test programs): 00000020 RSI: 0000000000000000 RDI: 0000000000000008 [ 453.330189][T11228] RBP: 00007f4141d7e090 R08: 0000000000000000 R09: 0000000000000000 [ 453.330209][T11228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 453.330230][T11228] R13: 0000000000000000 R14: 00007f41411a6080 R15: 00007ffcd3aa3648 [ 453.330272][T11228] [ 455.150810][ T55] Bluetooth: hci3: unexpected subevent 0x04 length: 122 > 11 [ 455.519807][T11258] netlink: get zone limit has 8 unknown bytes [ 457.358531][T11283] FAULT_INJECTION: forcing a failure. [ 457.358531][T11283] name failslab, interval 1, probability 0, space 0, times 0 [ 457.469073][T11283] CPU: 0 UID: 0 PID: 11283 Comm: syz.1.1101 Not tainted 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 457.469117][T11283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 457.469138][T11283] Call Trace: [ 457.469147][T11283] [ 457.469158][T11283] dump_stack_lvl+0x16c/0x1f0 [ 457.469213][T11283] should_fail_ex+0x50a/0x650 [ 457.469243][T11283] ? fs_reclaim_acquire+0xae/0x150 [ 457.469289][T11283] should_failslab+0xc2/0x120 [ 457.469330][T11283] __kmalloc_node_noprof+0xd1/0x510 [ 457.469385][T11283] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 457.469438][T11283] __kvmalloc_node_noprof+0xad/0x1a0 [ 457.469487][T11283] io_alloc_cache_init+0x33/0x170 [ 457.469538][T11283] io_uring_setup+0x5c0/0x2200 [ 457.469580][T11283] ? __pfx_io_uring_setup+0x10/0x10 [ 457.469616][T11283] ? do_futex+0x123/0x350 [ 457.469659][T11283] ? __pfx_do_futex+0x10/0x10 [ 457.469699][T11283] ? __pfx_do_sys_openat2+0x10/0x10 [ 457.469756][T11283] ? rcu_is_watching+0x12/0xc0 [ 457.469799][T11283] __x64_sys_io_uring_setup+0x98/0x140 [ 457.469838][T11283] do_syscall_64+0xcd/0x250 [ 457.469892][T11283] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 457.469940][T11283] RIP: 0033:0x7f04b398d169 [ 457.469965][T11283] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 457.469998][T11283] RSP: 002b:00007f04b17d5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 457.470029][T11283] RAX: ffffffffffffffda RBX: 00007f04b3ba6080 RCX: 00007f04b398d169 [ 457.470051][T11283] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 457.470071][T11283] RBP: 00007f04b3a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 457.470090][T11283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 457.470109][T11283] R13: 0000000000000000 R14: 00007f04b3ba6080 R15: 00007ffea9f4fbe8 [ 457.470150][T11283] [ 457.658293][ C0] vkms_vblank_simulate: vblank timer overrun [ 461.161610][T11337] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 465.777235][T11381] sock: sock_set_timeout: `syz.1.1128' (pid 11381) tries to set negative timeout [ 468.561233][T11420] svc: failed to register nfsdv3 RPC service (errno 111). [ 468.601368][T11420] svc: failed to register nfsaclv3 RPC service (errno 111). [ 468.653888][T11426] Invalid ELF header magic: != ELF [ 468.793913][ T55] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 469.254693][T11424] svc: failed to register nfsdv3 RPC service (errno 512). [ 469.442160][T11424] svc: failed to register nfsaclv3 RPC service (errno 512). [ 472.561806][T11480] svc: failed to register nfsdv3 RPC service (errno 111). [ 472.601119][T11480] svc: failed to register nfsaclv3 RPC service (errno 111). [ 472.760293][T11487] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1149'. [ 475.731681][T11540] svc: failed to register nfsdv3 RPC service (errno 111). [ 475.753117][T11540] svc: failed to register nfsaclv3 RPC service (errno 111). [ 478.856579][ T55] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18 [ 480.254667][T11630] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1180'. [ 481.412617][T11658] ubi4: attaching mtd0 [ 482.711959][T11687] svc: failed to register nfsdv3 RPC service (errno 111). [ 482.792220][T11687] svc: failed to register nfsaclv3 RPC service (errno 512). [ 486.776761][T11754] ptrace attach of "./syz-executor exec"[5834] was attempted by "./syz-executor exec"[11754] [ 487.251728][T11771] svc: failed to register nfsdv3 RPC service (errno 111). [ 487.374893][T11771] svc: failed to register nfsaclv3 RPC service (errno 111). [ 487.496717][T11775] Invalid ELF header magic: != ELF [ 490.919609][T11848] svc: failed to register nfsdv3 RPC service (errno 111). [ 490.974186][T11848] svc: failed to register nfsaclv3 RPC service (errno 111). [ 492.269801][T11877] FAULT_INJECTION: forcing a failure. [ 492.269801][T11877] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 492.310104][T11877] CPU: 1 UID: 0 PID: 11877 Comm: syz.1.1226 Not tainted 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 492.310147][T11877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 492.310167][T11877] Call Trace: [ 492.310176][T11877] [ 492.310187][T11877] dump_stack_lvl+0x16c/0x1f0 [ 492.310242][T11877] should_fail_ex+0x50a/0x650 [ 492.310278][T11877] _copy_from_user+0x2e/0xd0 [ 492.310315][T11877] copy_msghdr_from_user+0x99/0x160 [ 492.310368][T11877] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 492.310419][T11877] ? __lock_acquire+0xcc5/0x3c40 [ 492.310476][T11877] ? hlock_class+0x4e/0x130 [ 492.310510][T11877] ? __lock_acquire+0x15a9/0x3c40 [ 492.310566][T11877] ___sys_sendmsg+0xff/0x1e0 [ 492.310621][T11877] ? __pfx____sys_sendmsg+0x10/0x10 [ 492.310673][T11877] ? __pfx___lock_acquire+0x10/0x10 [ 492.310752][T11877] ? __pfx___might_resched+0x10/0x10 [ 492.310803][T11877] ? __might_fault+0xe3/0x190 [ 492.310842][T11877] __sys_sendmmsg+0x201/0x420 [ 492.310877][T11877] ? __pfx___sys_sendmmsg+0x10/0x10 [ 492.310923][T11877] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 492.310985][T11877] ? fput+0x67/0x440 [ 492.311015][T11877] ? ksys_write+0x1ba/0x250 [ 492.311058][T11877] ? __pfx_ksys_write+0x10/0x10 [ 492.311106][T11877] __x64_sys_sendmmsg+0x9c/0x100 [ 492.311134][T11877] ? lockdep_hardirqs_on+0x7c/0x110 [ 492.311178][T11877] do_syscall_64+0xcd/0x250 [ 492.311228][T11877] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 492.311273][T11877] RIP: 0033:0x7f04b398d169 [ 492.311297][T11877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 492.311327][T11877] RSP: 002b:00007f04b17f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 492.311357][T11877] RAX: ffffffffffffffda RBX: 00007f04b3ba5fa0 RCX: 00007f04b398d169 [ 492.311378][T11877] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 492.311397][T11877] RBP: 00007f04b17f6090 R08: 0000000000000000 R09: 0000000000000000 [ 492.311417][T11877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 492.311436][T11877] R13: 0000000000000000 R14: 00007f04b3ba5fa0 R15: 00007ffea9f4fbe8 [ 492.311484][T11877] [ 493.245487][T11889] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1228'. [ 493.356401][T11889] veth0_macvtap: left promiscuous mode [ 493.365514][T11889] macvtap0: entered promiscuous mode [ 493.365592][T11889] macvtap0: entered allmulticast mode [ 494.253442][T11919] svc: failed to register nfsdv3 RPC service (errno 111). [ 494.361138][T11919] svc: failed to register nfsaclv3 RPC service (errno 111). [ 494.699450][T11926] FAULT_INJECTION: forcing a failure. [ 494.699450][T11926] name failslab, interval 1, probability 0, space 0, times 0 [ 494.736612][T11926] CPU: 0 UID: 0 PID: 11926 Comm: syz.1.1234 Not tainted 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 494.736658][T11926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 494.736678][T11926] Call Trace: [ 494.736687][T11926] [ 494.736699][T11926] dump_stack_lvl+0x16c/0x1f0 [ 494.736755][T11926] should_fail_ex+0x50a/0x650 [ 494.736786][T11926] ? fs_reclaim_acquire+0xae/0x150 [ 494.736833][T11926] should_failslab+0xc2/0x120 [ 494.736864][T11926] kmem_cache_alloc_node_noprof+0x72/0x3c0 [ 494.736916][T11926] ? kasan_save_stack+0x42/0x60 [ 494.736961][T11926] ? __alloc_skb+0x2b1/0x380 [ 494.737026][T11926] __alloc_skb+0x2b1/0x380 [ 494.737076][T11926] ? __pfx___alloc_skb+0x10/0x10 [ 494.737123][T11926] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 494.737187][T11926] netlink_dump+0x699/0xd00 [ 494.737240][T11926] ? __pfx_netlink_dump+0x10/0x10 [ 494.737309][T11926] ? __asan_memset+0x23/0x50 [ 494.737353][T11926] ? genl_start+0x67d/0x960 [ 494.737391][T11926] __netlink_dump_start+0x6ca/0x970 [ 494.737446][T11926] genl_family_rcv_msg_dumpit+0x1e1/0x2e0 [ 494.737486][T11926] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 494.737523][T11926] ? __dev_queue_xmit+0x89b/0x43e0 [ 494.737573][T11926] ? __pfx_genl_get_cmd+0x10/0x10 [ 494.737624][T11926] ? __pfx_genl_start+0x10/0x10 [ 494.737653][T11926] ? __pfx_genl_dumpit+0x10/0x10 [ 494.737683][T11926] ? __pfx_genl_done+0x10/0x10 [ 494.737721][T11926] ? __radix_tree_lookup+0x21f/0x2c0 [ 494.737780][T11926] genl_rcv_msg+0x470/0x800 [ 494.737822][T11926] ? __pfx_genl_rcv_msg+0x10/0x10 [ 494.737857][T11926] ? __pfx_netdev_nl_page_pool_get_dumpit+0x10/0x10 [ 494.737913][T11926] netlink_rcv_skb+0x16b/0x440 [ 494.737962][T11926] ? __pfx_genl_rcv_msg+0x10/0x10 [ 494.738002][T11926] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 494.738068][T11926] ? down_read+0xc9/0x330 [ 494.738118][T11926] ? __pfx_down_read+0x10/0x10 [ 494.738169][T11926] ? netlink_deliver_tap+0x1ae/0xd30 [ 494.738222][T11926] genl_rcv+0x28/0x40 [ 494.738250][T11926] netlink_unicast+0x53c/0x7f0 [ 494.738304][T11926] ? __pfx_netlink_unicast+0x10/0x10 [ 494.738353][T11926] ? __phys_addr_symbol+0x30/0x80 [ 494.738385][T11926] ? __check_object_size+0x488/0x710 [ 494.738422][T11926] netlink_sendmsg+0x8b8/0xd70 [ 494.738478][T11926] ? __pfx_netlink_sendmsg+0x10/0x10 [ 494.738542][T11926] ____sys_sendmsg+0xaaf/0xc90 [ 494.738583][T11926] ? copy_msghdr_from_user+0x10b/0x160 [ 494.738636][T11926] ? __pfx_____sys_sendmsg+0x10/0x10 [ 494.738697][T11926] ___sys_sendmsg+0x135/0x1e0 [ 494.738754][T11926] ? __pfx____sys_sendmsg+0x10/0x10 [ 494.738826][T11926] ? __pfx_lock_release+0x10/0x10 [ 494.738871][T11926] ? trace_lock_acquire+0x14e/0x1f0 [ 494.738923][T11926] ? __fget_files+0x206/0x3a0 [ 494.738996][T11926] __sys_sendmsg+0x16e/0x220 [ 494.739027][T11926] ? __pfx___sys_sendmsg+0x10/0x10 [ 494.739107][T11926] do_syscall_64+0xcd/0x250 [ 494.739170][T11926] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 494.739215][T11926] RIP: 0033:0x7f04b398d169 [ 494.739241][T11926] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 494.739274][T11926] RSP: 002b:00007f04b17f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 494.739304][T11926] RAX: ffffffffffffffda RBX: 00007f04b3ba5fa0 RCX: 00007f04b398d169 [ 494.739325][T11926] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003 [ 494.739345][T11926] RBP: 00007f04b17f6090 R08: 0000000000000000 R09: 0000000000000000 [ 494.739365][T11926] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 494.739384][T11926] R13: 0000000000000000 R14: 00007f04b3ba5fa0 R15: 00007ffea9f4fbe8 [ 494.739426][T11926] [ 495.099546][ C0] vkms_vblank_simulate: vblank timer overrun [ 495.310688][ T30] audit: type=1800 audit(4294967496.169:5): pid=11932 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1237" name="dbroot" dev="configfs" ino=38540 res=0 errno=0 [ 497.498155][T11929] FAULT_INJECTION: forcing a failure. [ 497.498155][T11929] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 497.511403][T11929] CPU: 0 UID: 0 PID: 11929 Comm: syz.3.1235 Not tainted 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 497.511444][T11929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 497.511464][T11929] Call Trace: [ 497.511473][T11929] [ 497.511484][T11929] dump_stack_lvl+0x16c/0x1f0 [ 497.511537][T11929] should_fail_ex+0x50a/0x650 [ 497.511568][T11929] ? page_copy_sane+0xcd/0x2d0 [ 497.511603][T11929] copy_page_from_iter_atomic+0x39f/0x1920 [ 497.511652][T11929] ? mark_buffer_dirty+0x397/0x420 [ 497.511701][T11929] ? __pfx_copy_page_from_iter_atomic+0x10/0x10 [ 497.511740][T11929] ? fault_in_readable+0x1a7/0x200 [ 497.511783][T11929] ? __pfx_fault_in_readable+0x10/0x10 [ 497.511823][T11929] ? I_BDEV+0xd/0x20 [ 497.511853][T11929] ? inode_to_bdi+0x9e/0x160 [ 497.511905][T11929] iomap_file_buffered_write+0x633/0xc70 [ 497.511958][T11929] ? __pfx_iomap_file_buffered_write+0x10/0x10 [ 497.511996][T11929] ? find_held_lock+0x2d/0x110 [ 497.512041][T11929] ? __pfx_inode_set_ctime_current+0x10/0x10 [ 497.512105][T11929] ? preempt_count_add+0x76/0x150 [ 497.512146][T11929] ? mnt_put_write_access_file+0xc1/0xf0 [ 497.512197][T11929] blkdev_write_iter+0x574/0xdd0 [ 497.512259][T11929] vfs_write+0x5ae/0x1150 [ 497.512303][T11929] ? __pfx_blkdev_write_iter+0x10/0x10 [ 497.512349][T11929] ? __pfx_vfs_write+0x10/0x10 [ 497.512389][T11929] ? do_futex+0x123/0x350 [ 497.512430][T11929] ? __fget_files+0x40/0x3a0 [ 497.512494][T11929] ksys_write+0x12b/0x250 [ 497.512539][T11929] ? __pfx_ksys_write+0x10/0x10 [ 497.512595][T11929] do_syscall_64+0xcd/0x250 [ 497.512646][T11929] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 497.512691][T11929] RIP: 0033:0x7f4140f8d169 [ 497.512715][T11929] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 497.512762][T11929] RSP: 002b:00007f4141d9f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 497.512793][T11929] RAX: ffffffffffffffda RBX: 00007f41411a5fa0 RCX: 00007f4140f8d169 [ 497.512815][T11929] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 497.512834][T11929] RBP: 00007f414100e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 497.512866][T11929] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 497.512885][T11929] R13: 0000000000000000 R14: 00007f41411a5fa0 R15: 00007ffcd3aa3648 [ 497.512923][T11929] [ 497.754801][ C0] vkms_vblank_simulate: vblank timer overrun [ 498.832628][T11977] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1245'. [ 501.472553][ T55] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 504.730663][T12058] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1265'. [ 504.961142][T12064] netlink: 62 bytes leftover after parsing attributes in process `syz.1.1268'. [ 506.817539][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 506.825457][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 507.605779][T12140] FAULT_INJECTION: forcing a failure. [ 507.605779][T12140] name failslab, interval 1, probability 0, space 0, times 0 [ 507.632057][T12140] CPU: 1 UID: 0 PID: 12140 Comm: syz.2.1278 Not tainted 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 507.632101][T12140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 507.632116][T12140] Call Trace: [ 507.632123][T12140] [ 507.632131][T12140] dump_stack_lvl+0x16c/0x1f0 [ 507.632171][T12140] should_fail_ex+0x50a/0x650 [ 507.632204][T12140] should_failslab+0xc2/0x120 [ 507.632226][T12140] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 507.632263][T12140] ? skb_clone+0x190/0x3f0 [ 507.632288][T12140] skb_clone+0x190/0x3f0 [ 507.632311][T12140] netlink_deliver_tap+0xabd/0xd30 [ 507.632350][T12140] netlink_unicast+0x5e1/0x7f0 [ 507.632388][T12140] ? __pfx_netlink_unicast+0x10/0x10 [ 507.632424][T12140] ? __phys_addr_symbol+0x30/0x80 [ 507.632447][T12140] ? __check_object_size+0x488/0x710 [ 507.632473][T12140] netlink_sendmsg+0x8b8/0xd70 [ 507.632512][T12140] ? __pfx_netlink_sendmsg+0x10/0x10 [ 507.632558][T12140] ____sys_sendmsg+0xaaf/0xc90 [ 507.632587][T12140] ? copy_msghdr_from_user+0x10b/0x160 [ 507.632624][T12140] ? __pfx_____sys_sendmsg+0x10/0x10 [ 507.632664][T12140] ___sys_sendmsg+0x135/0x1e0 [ 507.632702][T12140] ? __pfx____sys_sendmsg+0x10/0x10 [ 507.632750][T12140] ? __pfx_lock_release+0x10/0x10 [ 507.632782][T12140] ? trace_lock_acquire+0x14e/0x1f0 [ 507.632817][T12140] ? __fget_files+0x206/0x3a0 [ 507.632858][T12140] __sys_sendmsg+0x16e/0x220 [ 507.632879][T12140] ? __pfx___sys_sendmsg+0x10/0x10 [ 507.632935][T12140] do_syscall_64+0xcd/0x250 [ 507.632972][T12140] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 507.633005][T12140] RIP: 0033:0x7f1e63b8d169 [ 507.633022][T12140] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 507.633045][T12140] RSP: 002b:00007f1e64a2c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 507.633066][T12140] RAX: ffffffffffffffda RBX: 00007f1e63da6320 RCX: 00007f1e63b8d169 [ 507.633081][T12140] RDX: 0000000000000810 RSI: 0000200000000140 RDI: 0000000000000003 [ 507.633095][T12140] RBP: 00007f1e64a2c090 R08: 0000000000000000 R09: 0000000000000000 [ 507.633109][T12140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 507.633122][T12140] R13: 0000000000000001 R14: 00007f1e63da6320 R15: 00007ffd587aba98 [ 507.633149][T12140] [ 508.587567][T12151] Setting dangerous option i915.mitigations - tainting kernel [ 508.632331][T12151] Bad "i915.mitigations=Ô$", 'Ô$' is unknown [ 509.748967][T12186] FAULT_INJECTION: forcing a failure. [ 509.748967][T12186] name failslab, interval 1, probability 0, space 0, times 0 [ 509.781112][T12186] CPU: 1 UID: 0 PID: 12186 Comm: syz.3.1289 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 509.781162][T12186] Tainted: [U]=USER [ 509.781172][T12186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 509.781190][T12186] Call Trace: [ 509.781200][T12186] [ 509.781211][T12186] dump_stack_lvl+0x16c/0x1f0 [ 509.781267][T12186] should_fail_ex+0x50a/0x650 [ 509.781297][T12186] ? fs_reclaim_acquire+0xae/0x150 [ 509.781340][T12186] ? tomoyo_encode2+0x100/0x3e0 [ 509.781383][T12186] should_failslab+0xc2/0x120 [ 509.781414][T12186] __kmalloc_noprof+0xcb/0x510 [ 509.781461][T12186] ? d_absolute_path+0x137/0x1b0 [ 509.781505][T12186] ? rcu_is_watching+0x12/0xc0 [ 509.781540][T12186] tomoyo_encode2+0x100/0x3e0 [ 509.781586][T12186] tomoyo_encode+0x29/0x50 [ 509.781626][T12186] tomoyo_realpath_from_path+0x19d/0x720 [ 509.781686][T12186] tomoyo_path_number_perm+0x248/0x590 [ 509.781721][T12186] ? tomoyo_path_number_perm+0x235/0x590 [ 509.781761][T12186] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 509.781831][T12186] ? __pfx_lock_release+0x10/0x10 [ 509.781871][T12186] ? trace_lock_acquire+0x14e/0x1f0 [ 509.781910][T12186] ? lock_acquire+0x2f/0xb0 [ 509.781949][T12186] ? __fget_files+0x40/0x3a0 [ 509.781995][T12186] ? __fget_files+0x206/0x3a0 [ 509.782042][T12186] security_file_ioctl+0x9b/0x240 [ 509.782082][T12186] __x64_sys_ioctl+0xb7/0x200 [ 509.782121][T12186] do_syscall_64+0xcd/0x250 [ 509.782168][T12186] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 509.782228][T12186] RIP: 0033:0x7f4140f8d169 [ 509.782252][T12186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 509.782284][T12186] RSP: 002b:00007f4141d9f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 509.782313][T12186] RAX: ffffffffffffffda RBX: 00007f41411a5fa0 RCX: 00007f4140f8d169 [ 509.782333][T12186] RDX: 0000000000000000 RSI: 0000000080085617 RDI: 0000000000000003 [ 509.782352][T12186] RBP: 00007f4141d9f090 R08: 0000000000000000 R09: 0000000000000000 [ 509.782371][T12186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 509.782390][T12186] R13: 0000000000000000 R14: 00007f41411a5fa0 R15: 00007ffcd3aa3648 [ 509.782429][T12186] [ 509.782507][T12186] ERROR: Out of memory at tomoyo_realpath_from_path. [ 512.097538][T12243] svc: failed to register nfsdv3 RPC service (errno 111). [ 512.129039][T12243] svc: failed to register nfsaclv3 RPC service (errno 111). [ 514.876679][T12302] rnbd_client L202: map_device: Unknown parameter or missing value '(' [ 515.056835][T12302] .SR: entered promiscuous mode [ 515.460554][T12314] svc: failed to register nfsdv3 RPC service (errno 111). [ 515.538856][T12314] svc: failed to register nfsaclv3 RPC service (errno 111). [ 518.599799][T12365] netlink: 346 bytes leftover after parsing attributes in process `syz.1.1325'. [ 519.540659][T12392] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1330'. [ 520.965055][T12406] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 521.260736][T12412] netlink: 1240 bytes leftover after parsing attributes in process `syz.2.1335'. [ 522.035097][T12426] netlink: get zone limit has 8 unknown bytes [ 523.123668][T12432] FAULT_INJECTION: forcing a failure. [ 523.123668][T12432] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 523.161046][T12432] CPU: 0 UID: 0 PID: 12432 Comm: syz.2.1341 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 523.161096][T12432] Tainted: [U]=USER [ 523.161107][T12432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 523.161130][T12432] Call Trace: [ 523.161140][T12432] [ 523.161152][T12432] dump_stack_lvl+0x16c/0x1f0 [ 523.161206][T12432] should_fail_ex+0x50a/0x650 [ 523.161242][T12432] _copy_to_user+0x32/0xd0 [ 523.161282][T12432] simple_read_from_buffer+0xd0/0x160 [ 523.161327][T12432] proc_fail_nth_read+0x198/0x270 [ 523.161368][T12432] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 523.161412][T12432] ? rw_verify_area+0xcf/0x680 [ 523.161451][T12432] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 523.161491][T12432] vfs_read+0x1df/0xbf0 [ 523.161535][T12432] ? __fget_files+0x1fc/0x3a0 [ 523.161583][T12432] ? __pfx___mutex_lock+0x10/0x10 [ 523.161632][T12432] ? __pfx_vfs_read+0x10/0x10 [ 523.161687][T12432] ? __fget_files+0x206/0x3a0 [ 523.161746][T12432] ksys_read+0x12b/0x250 [ 523.161787][T12432] ? __pfx_ksys_read+0x10/0x10 [ 523.161848][T12432] do_syscall_64+0xcd/0x250 [ 523.161900][T12432] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 523.161946][T12432] RIP: 0033:0x7f1e63b8bb7c [ 523.161971][T12432] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 523.162003][T12432] RSP: 002b:00007f1e64ab0030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 523.162033][T12432] RAX: ffffffffffffffda RBX: 00007f1e63da5fa0 RCX: 00007f1e63b8bb7c [ 523.162054][T12432] RDX: 000000000000000f RSI: 00007f1e64ab00a0 RDI: 0000000000000004 [ 523.162074][T12432] RBP: 00007f1e64ab0090 R08: 0000000000000000 R09: 0000000000000000 [ 523.162093][T12432] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000001 [ 523.162113][T12432] R13: 0000000000000000 R14: 00007f1e63da5fa0 R15: 00007ffd587aba98 [ 523.162153][T12432] [ 524.723295][T12449] FAULT_INJECTION: forcing a failure. [ 524.723295][T12449] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 524.901953][T12449] CPU: 1 UID: 0 PID: 12449 Comm: syz.1.1346 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 524.902004][T12449] Tainted: [U]=USER [ 524.902015][T12449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 524.902033][T12449] Call Trace: [ 524.902043][T12449] [ 524.902055][T12449] dump_stack_lvl+0x16c/0x1f0 [ 524.902108][T12449] should_fail_ex+0x50a/0x650 [ 524.902137][T12449] ? __pfx___might_resched+0x10/0x10 [ 524.902208][T12449] should_fail_alloc_page+0xe7/0x130 [ 524.902242][T12449] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 524.902284][T12449] ? hlock_class+0x4e/0x130 [ 524.902323][T12449] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 524.902379][T12449] ? __pfx_mark_lock+0x10/0x10 [ 524.902432][T12449] ? kasan_save_stack+0x33/0x60 [ 524.902478][T12449] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 524.902532][T12449] ? hlock_class+0x4e/0x130 [ 524.902564][T12449] ? hlock_class+0x4e/0x130 [ 524.902615][T12449] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 524.902661][T12449] ? policy_nodemask+0xea/0x4e0 [ 524.902690][T12449] alloc_pages_mpol+0x1fc/0x540 [ 524.902718][T12449] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 524.902746][T12449] ? find_held_lock+0x2d/0x110 [ 524.902781][T12449] alloc_pages_noprof+0x131/0x390 [ 524.902808][T12449] __pmd_alloc+0x3f/0x870 [ 524.902848][T12449] __handle_mm_fault+0x94a/0x2a40 [ 524.902900][T12449] ? __pfx___handle_mm_fault+0x10/0x10 [ 524.902939][T12449] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 524.903000][T12449] ? find_vma+0xc0/0x140 [ 524.903031][T12449] ? __pfx_find_vma+0x10/0x10 [ 524.903069][T12449] handle_mm_fault+0x3fa/0xaa0 [ 524.903116][T12449] do_user_addr_fault+0x7a3/0x13f0 [ 524.903164][T12449] exc_page_fault+0x5c/0xc0 [ 524.903202][T12449] asm_exc_page_fault+0x26/0x30 [ 524.903244][T12449] RIP: 0010:rep_movs_alternative+0x15/0x70 [ 524.903281][T12449] Code: cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 83 f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 <88> 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 [ 524.903311][T12449] RSP: 0018:ffffc90002f57af8 EFLAGS: 00050202 [ 524.903336][T12449] RAX: 0000000000000033 RBX: 0000000000000002 RCX: 0000000000000002 [ 524.903355][T12449] RDX: ffffed100fd26801 RSI: ffff88807e934000 RDI: 0000000000000000 [ 524.903376][T12449] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffed100fd26800 [ 524.903395][T12449] R10: ffff88807e934001 R11: 0000000000000002 R12: ffffc90002f57da0 [ 524.903415][T12449] R13: 0000000000000002 R14: ffff88807e934000 R15: 00007ffffffff000 [ 524.903458][T12449] _copy_to_iter+0x385/0x1560 [ 524.903495][T12449] ? trace_lock_acquire+0x14e/0x1f0 [ 524.903532][T12449] ? __pfx_lock_release+0x10/0x10 [ 524.903582][T12449] ? __pfx__copy_to_iter+0x10/0x10 [ 524.903616][T12449] ? __virt_addr_valid+0x1a4/0x590 [ 524.903654][T12449] ? __virt_addr_valid+0x5e/0x590 [ 524.903687][T12449] ? __phys_addr_symbol+0x30/0x80 [ 524.903718][T12449] ? __check_object_size+0x488/0x710 [ 524.903755][T12449] seq_read_iter+0xd00/0x12b0 [ 524.903810][T12449] kernfs_fop_read_iter+0x414/0x580 [ 524.903839][T12449] ? rw_verify_area+0xcf/0x680 [ 524.903877][T12449] vfs_read+0x886/0xbf0 [ 524.903919][T12449] ? __pfx_vfs_read+0x10/0x10 [ 524.903980][T12449] ksys_read+0x12b/0x250 [ 524.904016][T12449] ? __pfx_ksys_read+0x10/0x10 [ 524.904064][T12449] do_syscall_64+0xcd/0x250 [ 524.904106][T12449] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 524.904144][T12449] RIP: 0033:0x7f04b398d169 [ 524.904165][T12449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 524.904190][T12449] RSP: 002b:00007f04b17d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 524.904214][T12449] RAX: ffffffffffffffda RBX: 00007f04b3ba6080 RCX: 00007f04b398d169 [ 524.904232][T12449] RDX: 0000000000000020 RSI: 0000000000000000 RDI: 0000000000000008 [ 524.904248][T12449] RBP: 00007f04b17d5090 R08: 0000000000000000 R09: 0000000000000000 [ 524.904265][T12449] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 524.904280][T12449] R13: 0000000000000000 R14: 00007f04b3ba6080 R15: 00007ffea9f4fbe8 [ 524.904315][T12449] [ 526.870982][T12450] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 526.903498][T12450] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 526.931380][T12450] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 526.950072][T12450] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 528.007453][ T55] Bluetooth: hci0: command 0x0c1a tx timeout [ 528.961267][ T55] Bluetooth: hci1: command 0x0c1a tx timeout [ 528.967477][ T55] Bluetooth: hci3: command 0x0c1a tx timeout [ 528.971112][ T5845] Bluetooth: hci2: command 0x0c1a tx timeout [ 528.977668][T12470] batman_adv: Routing algorithm '' is not supported [ 530.003727][T12538] ima: policy update failed [ 530.030998][ T30] audit: type=1802 audit(4294967530.889:6): pid=12538 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm=20 res=0 errno=0 [ 530.272303][ T5845] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 532.359291][T12592] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1374'. [ 536.663997][T12633] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 536.723774][T12633] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 536.741873][T12633] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 536.748043][T12633] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 537.779394][T12669] FAULT_INJECTION: forcing a failure. [ 537.779394][T12669] name fail_futex, interval 1, probability 0, space 0, times 1 [ 537.835512][T12669] CPU: 1 UID: 0 PID: 12669 Comm: syz.1.1390 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 537.835559][T12669] Tainted: [U]=USER [ 537.835568][T12669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 537.835586][T12669] Call Trace: [ 537.835595][T12669] [ 537.835606][T12669] dump_stack_lvl+0x16c/0x1f0 [ 537.835661][T12669] should_fail_ex+0x50a/0x650 [ 537.835690][T12669] ? __count_memcg_events+0x439/0x5c0 [ 537.835741][T12669] should_fail_futex+0x4c/0x60 [ 537.835779][T12669] __x64_sys_futex+0x260/0x4c0 [ 537.835822][T12669] ? __pfx___x64_sys_futex+0x10/0x10 [ 537.835863][T12669] ? rcu_is_watching+0x12/0xc0 [ 537.835908][T12669] do_syscall_64+0xcd/0x250 [ 537.835959][T12669] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 537.836003][T12669] RIP: 0033:0x7f04b398d169 [ 537.836027][T12669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 537.836058][T12669] RSP: 002b:00007ffea9f4fd48 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 537.836087][T12669] RAX: ffffffffffffffda RBX: 00000000000834d0 RCX: 00007f04b398d169 [ 537.836107][T12669] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f04b3ba5fac [ 537.836127][T12669] RBP: 0000000000000032 R08: 00007f04b46f0000 R09: 0000000da9f5003f [ 537.836146][T12669] R10: 00007ffea9f4fe40 R11: 0000000000000246 R12: 00007f04b3ba5fac [ 537.836166][T12669] R13: 00007ffea9f4fe40 R14: 0000000000083502 R15: 00007ffea9f4fe60 [ 537.836204][T12669] [ 538.721151][ T5848] Bluetooth: hci0: command 0x0c1a tx timeout [ 538.721163][ T5845] Bluetooth: hci2: command 0x0c1a tx timeout [ 538.741699][T12690] FAULT_INJECTION: forcing a failure. [ 538.741699][T12690] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 538.771104][T12690] CPU: 1 UID: 0 PID: 12690 Comm: syz.2.1393 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 538.771165][T12690] Tainted: [U]=USER [ 538.771175][T12690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 538.771193][T12690] Call Trace: [ 538.771203][T12690] [ 538.771215][T12690] dump_stack_lvl+0x16c/0x1f0 [ 538.771268][T12690] should_fail_ex+0x50a/0x650 [ 538.771306][T12690] _copy_to_user+0x32/0xd0 [ 538.771345][T12690] simple_read_from_buffer+0xd0/0x160 [ 538.771389][T12690] proc_fail_nth_read+0x198/0x270 [ 538.771436][T12690] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 538.771479][T12690] ? rw_verify_area+0xcf/0x680 [ 538.771519][T12690] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 538.771559][T12690] vfs_read+0x1df/0xbf0 [ 538.771604][T12690] ? __fget_files+0x1fc/0x3a0 [ 538.771651][T12690] ? __pfx___mutex_lock+0x10/0x10 [ 538.771700][T12690] ? __pfx_vfs_read+0x10/0x10 [ 538.771756][T12690] ? __fget_files+0x206/0x3a0 [ 538.771813][T12690] ksys_read+0x12b/0x250 [ 538.771857][T12690] ? __pfx_ksys_read+0x10/0x10 [ 538.771899][T12690] ? syscall_user_dispatch+0x7a/0x130 [ 538.771963][T12690] do_syscall_64+0xcd/0x250 [ 538.772014][T12690] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 538.772060][T12690] RIP: 0033:0x7f1e63b8bb7c [ 538.772085][T12690] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 538.772117][T12690] RSP: 002b:00007f1e64ab0030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 538.772153][T12690] RAX: ffffffffffffffda RBX: 00007f1e63da5fa0 RCX: 00007f1e63b8bb7c [ 538.772174][T12690] RDX: 000000000000000f RSI: 00007f1e64ab00a0 RDI: 0000000000000004 [ 538.772194][T12690] RBP: 00007f1e64ab0090 R08: 0000000000000000 R09: 0000000000000000 [ 538.772214][T12690] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 538.772233][T12690] R13: 0000000000000000 R14: 00007f1e63da5fa0 R15: 00007ffd587aba98 [ 538.772273][T12690] [ 539.001076][ T5848] Bluetooth: hci1: command 0x0c1a tx timeout [ 539.007281][ T5848] Bluetooth: hci3: command 0x0c1a tx timeout [ 541.012144][T12746] FAULT_INJECTION: forcing a failure. [ 541.012144][T12746] name failslab, interval 1, probability 0, space 0, times 0 [ 541.031079][T12746] CPU: 1 UID: 0 PID: 12746 Comm: syz.1.1403 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 541.031124][T12746] Tainted: [U]=USER [ 541.031134][T12746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 541.031153][T12746] Call Trace: [ 541.031161][T12746] [ 541.031173][T12746] dump_stack_lvl+0x16c/0x1f0 [ 541.031227][T12746] should_fail_ex+0x50a/0x650 [ 541.031256][T12746] ? fs_reclaim_acquire+0xae/0x150 [ 541.031298][T12746] ? vkms_plane_duplicate_state+0x45/0x130 [ 541.031329][T12746] should_failslab+0xc2/0x120 [ 541.031358][T12746] __kmalloc_cache_noprof+0x68/0x410 [ 541.031400][T12746] ? ww_mutex_lock+0x37/0x160 [ 541.031453][T12746] vkms_plane_duplicate_state+0x45/0x130 [ 541.031485][T12746] drm_atomic_get_plane_state+0x20b/0x590 [ 541.031532][T12746] drm_client_modeset_commit_atomic+0x23f/0x7f0 [ 541.031574][T12746] ? drm_client_modeset_commit_locked+0x4c/0x580 [ 541.031623][T12746] ? trace_contention_end+0xee/0x140 [ 541.031689][T12746] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 541.031763][T12746] ? __pfx___mutex_lock+0x10/0x10 [ 541.031823][T12746] drm_client_modeset_commit_locked+0x14d/0x580 [ 541.031885][T12746] drm_client_modeset_commit+0x4f/0x80 [ 541.031944][T12746] drm_fb_helper_lastclose+0xc7/0x160 [ 541.031981][T12746] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 541.032033][T12746] drm_fbdev_client_restore+0x2c/0x40 [ 541.032083][T12746] drm_client_dev_restore+0x188/0x2a0 [ 541.032144][T12746] drm_release+0x2c2/0x360 [ 541.032197][T12746] ? __pfx_drm_release+0x10/0x10 [ 541.032234][T12746] __fput+0x3ff/0xb70 [ 541.032276][T12746] task_work_run+0x14e/0x250 [ 541.032321][T12746] ? __pfx_task_work_run+0x10/0x10 [ 541.032365][T12746] ? __pfx_ksys_write+0x10/0x10 [ 541.032418][T12746] syscall_exit_to_user_mode+0x27b/0x2a0 [ 541.032466][T12746] do_syscall_64+0xda/0x250 [ 541.032516][T12746] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 541.032580][T12746] RIP: 0033:0x7f04b398d169 [ 541.032605][T12746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 541.032637][T12746] RSP: 002b:00007f04b17f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 541.032666][T12746] RAX: 0000000000000007 RBX: 00007f04b3ba5fa0 RCX: 00007f04b398d169 [ 541.032687][T12746] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 541.032706][T12746] RBP: 00007f04b17f6090 R08: 0000000000000000 R09: 0000000000000000 [ 541.032725][T12746] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000002 [ 541.032745][T12746] R13: 0000000000000000 R14: 00007f04b3ba5fa0 R15: 00007ffea9f4fbe8 [ 541.032790][T12746] [ 543.305535][T12803] Line length is too long: Should be less than 4094 vlan1tyS0rsU©_ZªÙ6*jjúœtzz°±ùa­#Y°¹ÿ"^MoO©½ßÙ\ó M4Á9Aicv0 $Ï "M[ 543.483890][T12806] FAULT_INJECTION: forcing a failure. [ 543.483890][T12806] name fail_futex, interval 1, probability 0, space 0, times 0 [ 543.541584][T12806] CPU: 1 UID: 0 PID: 12806 Comm: syz.0.1412 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 543.541635][T12806] Tainted: [U]=USER [ 543.541645][T12806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 543.541675][T12806] Call Trace: [ 543.541684][T12806] [ 543.541697][T12806] dump_stack_lvl+0x16c/0x1f0 [ 543.541750][T12806] should_fail_ex+0x50a/0x650 [ 543.541780][T12806] ? __kasan_slab_free+0x51/0x70 [ 543.541832][T12806] ? kfree+0x2c4/0x4d0 [ 543.541879][T12806] get_futex_key+0x4a3/0x1000 [ 543.541916][T12806] ? hlock_class+0x4e/0x130 [ 543.541954][T12806] ? __pfx_get_futex_key+0x10/0x10 [ 543.541995][T12806] ? __pfx_mark_lock+0x10/0x10 [ 543.542055][T12806] futex_wait_setup+0x78/0x290 [ 543.542119][T12806] __futex_wait+0x267/0x3c0 [ 543.542172][T12806] ? __pfx___futex_wait+0x10/0x10 [ 543.542229][T12806] ? __pfx_futex_wake_mark+0x10/0x10 [ 543.542286][T12806] ? tomoyo_path_number_perm+0x190/0x590 [ 543.542333][T12806] futex_wait+0xe9/0x380 [ 543.542380][T12806] ? __pfx_futex_wait+0x10/0x10 [ 543.542436][T12806] ? __fget_files+0x40/0x3a0 [ 543.542494][T12806] do_futex+0x22b/0x350 [ 543.542535][T12806] ? __pfx_do_futex+0x10/0x10 [ 543.542574][T12806] ? __pfx_lock_release+0x10/0x10 [ 543.542619][T12806] ? trace_lock_acquire+0x14e/0x1f0 [ 543.542670][T12806] __x64_sys_futex+0x1e1/0x4c0 [ 543.542718][T12806] ? __pfx___x64_sys_futex+0x10/0x10 [ 543.542775][T12806] do_syscall_64+0xcd/0x250 [ 543.542828][T12806] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 543.542875][T12806] RIP: 0033:0x7f2fee78d169 [ 543.542899][T12806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 543.542932][T12806] RSP: 002b:00007f2fef5b90e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 543.542962][T12806] RAX: ffffffffffffffda RBX: 00007f2fee9a6088 RCX: 00007f2fee78d169 [ 543.542983][T12806] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2fee9a6088 [ 543.543001][T12806] RBP: 00007f2fee9a6080 R08: 0000000000000000 R09: 0000000000000000 ./file0[ 543.543020][T12806] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2fee9a608c [ 543.543039][T12806] R13: 0000000000000000 R14: 00007ffe786550d0 R15: 00007ffe786551b8 [ 543.543078][T12806] ó+ësgÅSý¿+@zÜ ì¬Ø¨d±n5Wã‚ L7©êÇé‚uµ°¨1rTˆ¬þ ´ÚþD&¦ÏÕïL«Îa%j(Q³Ú­ZŽŽ,OCy‚{éߦQÀ§D“ê¼€®Qà‡hJ‘i3¿“$ ^µÝSŠšõ+¬p:]þïéŽú ¥a[¾hM¹XMsôÉù‰ª*0ùÄõJýÔ,+ó¦XÑ#E ôaîpB¨•¼;òQ¥oÓ¤­!13À9²Êm]P¬®@oä0òî‚ýoiãg"ò Eó75„kömá°ŠgðrF0™R³íFèåU»WžݶÏb¸\-ÏG¼3Ð&9¨ýÉo«.ÎÞ>K µ4÷ZÍî|Ñó™;×Ó¨ˆè!zp>숟†;„ŒõNï…ÑO¾µW_Ÿû̃+õ˱#BðµÿJmš˜Øµ‚sc®ÚR†‡‹ÂM‰ |jyÂŒl¯+ðR©¤JÙbOì§ãTªaãt˜¥Ìi?3(±ƹÈÊ:ݵb7ZmFEx9&v/0·¨þ‹€{¥«±ÿé…΋­7£Z‰†ñ’{·U íùW•eÄúÙ8÷Žà-ê–ØÿØ@R£¹ØEm3GÀøp+å22Š¨ï}üþÍØ~¼ÌäØßhAo‹·Pñ©êårƒtù;ÓûSy(zô²¹[8Çפ։AjL£ù„ñèË<¡zì\»|”²0à&å'%Y|íçDcŸWvŽE×þò5ݼz·”ˆ`p˜N.’?™ÎÄóuXÿEÖq"Ùã“l’tÊö4Ù±;±ÁüãÙ£X·¥;+ŽZû° Ô¤tS~„ …`aùš?ÖT«¼¶-”M¿sî ã~µ8ªCñcm½dc»|¼¢þUÖâñ_ì¥éG.Ì…2L‘S¸Ž @[¯¹?dDÉK4šÇLòc´—ÃQ©ò™†ŽFTAL’˜ §,Ì{-Ñk‰š\ÞAöóíR))ÁÖÚIï)yÔʱ²3M ;~œ;‹âW¦2l»Ld,óèQJh›§«—Ä ?Ú¶ÂÝëù@ÚÔ‚•²!à'røÃàGÿ™^Á@¬0Û-ÕL„vyä¿vÐë­ÀÝpùÁW§-ÌUÌÇ=èÄ zòÁT—Y RzÎËðÈ—´•_¡Î9#0,Ùs;ÏbBßQ<ÀÈ!ÝI€‚!#Â2 Ö㨀,ä$ XÎþ¦ãß»Z Æ¿fòxcü]êõÛ‚¢&\htP¥~ÌœÐÙ]ï×å)}"&ó£¥5 #°Z\G¸¶Ið‚€½]|t,¡dû·y§ÿߥí¤ÏH¡BH›Ë‡Sõ mÍÎÕsÖÃϾ´& n];9$àˆóÔ¦)„:i® ÷gßôg\ºÓ<˜#gtèþªPR¬þƒÕ\%% =¢ŸÝ%@ÛwÌZ,×yÇ)°7è+-Çõn\ìg4–‡Y£æÀn9ëítõaˆæ,pžÆ*/VìFEµAkI¸LƒH¬ÑæÝ.™JV…V`"Åâ6ÇÊÄùÛ<µ`:à=ê¦jk ñÄ3S!*—$‘—u§Th d4w"”Í3ÔŠ)’°°I´Çxôý„%$F 2ÐX¬•&t©­£¬˜[ 544.377454][ T5845] Bluetooth: hci1: unexpected event 0x1d length: 6 > 5 [ 547.591620][T12900] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1432'. [ 548.552404][T12938] FAULT_INJECTION: forcing a failure. [ 548.552404][T12938] name failslab, interval 1, probability 0, space 0, times 0 [ 548.592779][T12939] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1435'. [ 548.653238][T12938] CPU: 1 UID: 0 PID: 12938 Comm: syz.1.1437 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 548.653295][T12938] Tainted: [U]=USER [ 548.653306][T12938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 548.653326][T12938] Call Trace: [ 548.653335][T12938] [ 548.653348][T12938] dump_stack_lvl+0x16c/0x1f0 [ 548.653400][T12938] should_fail_ex+0x50a/0x650 [ 548.653432][T12938] ? fs_reclaim_acquire+0xae/0x150 [ 548.653475][T12938] should_failslab+0xc2/0x120 [ 548.653505][T12938] kmem_cache_alloc_node_noprof+0x72/0x3c0 [ 548.653555][T12938] ? __alloc_skb+0x2b1/0x380 [ 548.653611][T12938] __alloc_skb+0x2b1/0x380 [ 548.653660][T12938] ? __pfx___alloc_skb+0x10/0x10 [ 548.653713][T12938] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 548.653765][T12938] netlink_alloc_large_skb+0x69/0x130 [ 548.653821][T12938] netlink_sendmsg+0x689/0xd70 [ 548.653876][T12938] ? __pfx_netlink_sendmsg+0x10/0x10 [ 548.653938][T12938] ____sys_sendmsg+0xaaf/0xc90 [ 548.653978][T12938] ? copy_msghdr_from_user+0x10b/0x160 [ 548.654024][T12938] ? __pfx_____sys_sendmsg+0x10/0x10 [ 548.654071][T12938] ___sys_sendmsg+0x135/0x1e0 [ 548.654115][T12938] ? __pfx____sys_sendmsg+0x10/0x10 [ 548.654170][T12938] ? __pfx_lock_release+0x10/0x10 [ 548.654208][T12938] ? trace_lock_acquire+0x14e/0x1f0 [ 548.654249][T12938] ? __fget_files+0x206/0x3a0 [ 548.654301][T12938] __sys_sendmsg+0x16e/0x220 [ 548.654326][T12938] ? __pfx___sys_sendmsg+0x10/0x10 [ 548.654388][T12938] do_syscall_64+0xcd/0x250 [ 548.654431][T12938] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 548.654469][T12938] RIP: 0033:0x7f04b398d169 [ 548.654488][T12938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 548.654514][T12938] RSP: 002b:00007f04b1772038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 548.654540][T12938] RAX: ffffffffffffffda RBX: 00007f04b3ba6320 RCX: 00007f04b398d169 [ 548.654558][T12938] RDX: 0000000000000080 RSI: 0000200000000080 RDI: 0000000000000006 [ 548.654574][T12938] RBP: 00007f04b1772090 R08: 0000000000000000 R09: 0000000000000000 [ 548.654590][T12938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 548.654606][T12938] R13: 0000000000000001 R14: 00007f04b3ba6320 R15: 00007ffea9f4fbe8 [ 548.654637][T12938] [ 549.005642][T12947] netlink: 'syz.0.1438': attribute type 1 has an invalid length. [ 551.304416][T13007] ptrace attach of "./syz-executor exec"[5835] was attempted by "./syz-executor exec"[13007] [ 552.678317][T13034] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1451'. [ 553.246026][T13051] FAULT_INJECTION: forcing a failure. [ 553.246026][T13051] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 553.349477][T13051] CPU: 0 UID: 0 PID: 13051 Comm: syz.2.1456 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 553.349533][T13051] Tainted: [U]=USER [ 553.349544][T13051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 553.349564][T13051] Call Trace: [ 553.349575][T13051] [ 553.349588][T13051] dump_stack_lvl+0x16c/0x1f0 [ 553.349646][T13051] should_fail_ex+0x50a/0x650 [ 553.349679][T13051] ? __pfx___might_resched+0x10/0x10 [ 553.349738][T13051] should_fail_alloc_page+0xe7/0x130 [ 553.349773][T13051] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 553.349818][T13051] ? __pfx_mark_lock+0x10/0x10 [ 553.349870][T13051] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 553.349942][T13051] ? __pfx_mark_lock+0x10/0x10 [ 553.349989][T13051] ? __pfx___lock_acquire+0x10/0x10 [ 553.350038][T13051] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 553.350123][T13051] ? __mutex_trylock_common+0xea/0x250 [ 553.350176][T13051] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 553.350232][T13051] ? policy_nodemask+0xea/0x4e0 [ 553.350268][T13051] alloc_pages_mpol+0x1fc/0x540 [ 553.350303][T13051] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 553.350334][T13051] ? serial8250_set_sleep+0x78/0xa50 [ 553.350400][T13051] alloc_pages_noprof+0x131/0x390 [ 553.350436][T13051] get_zeroed_page_noprof+0x14/0x50 [ 553.350476][T13051] uart_startup+0x1fb/0x1340 [ 553.350535][T13051] uart_port_activate+0xe8/0x190 [ 553.350585][T13051] ? __pfx_uart_port_activate+0x10/0x10 [ 553.350633][T13051] tty_port_open+0x153/0x1f0 [ 553.350687][T13051] uart_open+0x41/0x60 [ 553.350722][T13051] ? __pfx_uart_open+0x10/0x10 [ 553.350756][T13051] tty_open+0x3dd/0xf80 [ 553.350811][T13051] ? __pfx_tty_open+0x10/0x10 [ 553.350857][T13051] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 553.350895][T13051] ? lock_acquire+0x2f/0xb0 [ 553.350936][T13051] ? chrdev_open+0x80/0x6a0 [ 553.350990][T13051] ? __pfx_tty_open+0x10/0x10 [ 553.351036][T13051] chrdev_open+0x237/0x6a0 [ 553.351093][T13051] ? __pfx_apparmor_file_open+0x10/0x10 [ 553.351139][T13051] ? __pfx_chrdev_open+0x10/0x10 [ 553.351194][T13051] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 553.351259][T13051] do_dentry_open+0x735/0x1c40 [ 553.351309][T13051] ? __pfx_chrdev_open+0x10/0x10 [ 553.351371][T13051] vfs_open+0x82/0x3f0 [ 553.351403][T13051] ? may_open+0x1f2/0x400 [ 553.351454][T13051] path_openat+0x1e88/0x2d80 [ 553.351518][T13051] ? __pfx_path_openat+0x10/0x10 [ 553.351568][T13051] ? __pfx___lock_acquire+0x10/0x10 [ 553.351613][T13051] ? lock_acquire.part.0+0x11b/0x380 [ 553.351662][T13051] ? find_held_lock+0x2d/0x110 [ 553.351703][T13051] do_filp_open+0x20c/0x470 [ 553.351754][T13051] ? __pfx_do_filp_open+0x10/0x10 [ 553.351800][T13051] ? find_held_lock+0x2d/0x110 [ 553.351866][T13051] ? alloc_fd+0x41f/0x760 [ 553.351925][T13051] do_sys_openat2+0x17a/0x1e0 [ 553.351961][T13051] ? __pfx_do_sys_openat2+0x10/0x10 [ 553.352001][T13051] ? __pfx___might_resched+0x10/0x10 [ 553.352065][T13051] __x64_sys_openat+0x175/0x210 [ 553.352109][T13051] ? __pfx___x64_sys_openat+0x10/0x10 [ 553.352145][T13051] ? ksys_mmap_pgoff+0x85/0x5c0 [ 553.352206][T13051] do_syscall_64+0xcd/0x250 [ 553.352262][T13051] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 553.352309][T13051] RIP: 0033:0x7f1e63b8d169 [ 553.352336][T13051] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 553.352369][T13051] RSP: 002b:00007f1e64ab0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 553.352400][T13051] RAX: ffffffffffffffda RBX: 00007f1e63da5fa0 RCX: 00007f1e63b8d169 [ 553.352420][T13051] RDX: 0000000000044000 RSI: 00002000000000c0 RDI: ffffffffffffff9c [ 553.352440][T13051] RBP: 00007f1e63c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 553.352461][T13051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 553.352479][T13051] R13: 0000000000000000 R14: 00007f1e63da5fa0 R15: 00007ffd587aba98 [ 553.352523][T13051] [ 555.899734][T13089] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1463'. [ 555.929609][T13089] bridge_slave_1: left allmulticast mode [ 555.970671][T13089] bridge_slave_1: left promiscuous mode [ 555.990241][T13089] bridge0: port 2(bridge_slave_1) entered disabled state [ 556.105221][T13089] bridge_slave_0: left allmulticast mode [ 556.131225][T13089] bridge_slave_0: left promiscuous mode [ 556.156503][T13089] bridge0: port 1(bridge_slave_0) entered disabled state [ 556.240402][T13097] svc: failed to register nfsdv3 RPC service (errno 111). [ 556.277113][T13097] svc: failed to register nfsaclv3 RPC service (errno 111). [ 559.778292][T13157] ubi4: attaching mtd0 [ 560.469682][T13191] svc: failed to register nfsdv3 RPC service (errno 111). [ 560.490081][T13191] svc: failed to register nfsaclv3 RPC service (errno 111). [ 560.788644][T13197] sock: sock_timestamping_bind_phc: sock not bind to device [ 560.808123][T13196] sock: sock_timestamping_bind_phc: sock not bind to device [ 560.908445][T13199] HfR: entered promiscuous mode [ 560.953803][T13196] openvswitch: HfR: Dropping previously announced user features [ 563.559904][T13244] svc: failed to register nfsdv3 RPC service (errno 111). [ 563.584793][T13244] svc: failed to register nfsaclv3 RPC service (errno 111). [ 564.752373][ T5845] Bluetooth: hci0: unexpected subevent 0x01 length: 4 < 18 [ 565.401886][T13279] ptrace attach of "./syz-executor exec"[5836] was attempted by "./syz-executor exec"[13279] [ 565.701660][T13288] kexec: Could not allocate control_code_buffer [ 567.231140][T13313] svc: failed to register nfsdv3 RPC service (errno 111). [ 567.337804][T13313] svc: failed to register nfsaclv3 RPC service (errno 111). [ 567.720678][T13335] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1506'. [ 567.814193][T13335] veth0_macvtap: left promiscuous mode [ 568.246026][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 568.252519][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 569.643012][T13370] ptrace attach of "./syz-executor exec"[5837] was attempted by ""[13370] [ 569.886737][T13376] syz.0.1515 (13376): /proc/13375/oom_adj is deprecated, please use /proc/13375/oom_score_adj instead. [ 570.481188][T13388] svc: failed to register nfsdv3 RPC service (errno 111). [ 570.536065][T13388] svc: failed to register nfsaclv3 RPC service (errno 111). [ 570.657411][T13401] netlink: 350 bytes leftover after parsing attributes in process `syz.0.1519'. [ 571.220660][T13415] FAULT_INJECTION: forcing a failure. [ 571.220660][T13415] name failslab, interval 1, probability 0, space 0, times 0 [ 571.249626][T13415] CPU: 0 UID: 0 PID: 13415 Comm: syz.3.1521 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 571.249675][T13415] Tainted: [U]=USER [ 571.249686][T13415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 571.249704][T13415] Call Trace: [ 571.249714][T13415] [ 571.249725][T13415] dump_stack_lvl+0x16c/0x1f0 [ 571.249776][T13415] should_fail_ex+0x50a/0x650 [ 571.249805][T13415] ? fs_reclaim_acquire+0xae/0x150 [ 571.249848][T13415] ? memcg_list_lru_alloc+0x29f/0x730 [ 571.249882][T13415] should_failslab+0xc2/0x120 [ 571.249912][T13415] __kmalloc_noprof+0xcb/0x510 [ 571.249959][T13415] ? fc_mount+0x16/0xc0 [ 571.250003][T13415] memcg_list_lru_alloc+0x29f/0x730 [ 571.250046][T13415] ? __pfx_memcg_list_lru_alloc+0x10/0x10 [ 571.250080][T13415] ? trace_lock_acquire+0x14e/0x1f0 [ 571.250119][T13415] ? lock_acquire+0x2f/0xb0 [ 571.250178][T13415] ? get_mem_cgroup_from_objcg+0xe1/0x210 [ 571.250229][T13415] __memcg_slab_post_alloc_hook+0x12c/0x9b0 [ 571.250268][T13415] ? kasan_save_track+0x14/0x30 [ 571.250319][T13415] kmem_cache_alloc_lru_noprof+0x363/0x3d0 [ 571.250381][T13415] ? mqueue_alloc_inode+0x25/0x50 [ 571.250438][T13415] ? __pfx_mqueue_fill_super+0x10/0x10 [ 571.250489][T13415] ? __pfx_mqueue_alloc_inode+0x10/0x10 [ 571.250547][T13415] mqueue_alloc_inode+0x25/0x50 [ 571.250597][T13415] alloc_inode+0x5d/0x230 [ 571.250627][T13415] new_inode+0x22/0x210 [ 571.250659][T13415] ? __pfx_mqueue_fill_super+0x10/0x10 [ 571.250712][T13415] mqueue_get_inode+0x2e/0xd50 [ 571.250762][T13415] ? sget_fc+0x808/0xc20 [ 571.250807][T13415] ? __pfx_mqueue_fill_super+0x10/0x10 [ 571.250860][T13415] mqueue_fill_super+0x112/0x210 [ 571.250915][T13415] get_tree_nodev+0xda/0x190 [ 571.250962][T13415] mqueue_get_tree+0xf1/0x130 [ 571.251014][T13415] vfs_get_tree+0x8b/0x340 [ 571.251051][T13415] fc_mount+0x16/0xc0 [ 571.251087][T13415] mq_init_ns+0x426/0x620 [ 571.251128][T13415] copy_ipcs+0x383/0x610 [ 571.251162][T13415] ? copy_utsname+0xab/0x470 [ 571.251212][T13415] create_new_namespaces+0x20a/0xad0 [ 571.251265][T13415] ? security_capable+0x7e/0x260 [ 571.251304][T13415] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 571.251360][T13415] ksys_unshare+0x45d/0xa40 [ 571.251395][T13415] ? __pfx_ksys_unshare+0x10/0x10 [ 571.251426][T13415] ? xfd_validate_state+0x5d/0x180 [ 571.251485][T13415] __x64_sys_unshare+0x31/0x40 [ 571.251537][T13415] do_syscall_64+0xcd/0x250 [ 571.251587][T13415] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 571.251630][T13415] RIP: 0033:0x7f4140f8d169 [ 571.251654][T13415] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 571.251684][T13415] RSP: 002b:00007f4141d7e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 571.251713][T13415] RAX: ffffffffffffffda RBX: 00007f41411a6080 RCX: 00007f4140f8d169 [ 571.251734][T13415] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000400 [ 571.251753][T13415] RBP: 00007f414100e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 571.251772][T13415] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 571.251791][T13415] R13: 0000000000000000 R14: 00007f41411a6080 R15: 00007ffcd3aa3648 [ 571.251830][T13415] [ 574.172057][T13464] ======================================================= [ 574.172057][T13464] WARNING: The mand mount option has been deprecated and [ 574.172057][T13464] and is ignored by this kernel. Remove the mand [ 574.172057][T13464] option from the mount to silence this warning. [ 574.172057][T13464] ======================================================= [ 574.258567][T13405] kexec: Could not allocate control_code_buffer [ 574.584954][T13470] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1530'. [ 574.618655][T13475] svc: failed to register nfsdv3 RPC service (errno 111). [ 574.644688][T13477] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1532'. [ 574.673856][T13475] svc: failed to register nfsaclv3 RPC service (errno 111). [ 575.598203][T13503] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1539'. [ 575.780821][T13514] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1540'. [ 577.882184][T13562] svc: failed to register nfsdv3 RPC service (errno 111). [ 577.892259][T13562] svc: failed to register nfsaclv3 RPC service (errno 111). [ 577.946070][T13558] vivid-003: ================= START STATUS ================= [ 577.957863][T13558] vivid-003: Radio HW Seek Mode: Bounded [ 577.968037][T13558] vivid-003: Radio Programmable HW Seek: false [ 577.991704][T13558] vivid-003: RDS Rx I/O Mode: Block I/O [ 578.021031][T13558] vivid-003: Generate RBDS Instead of RDS: false [ 578.074064][T13558] vivid-003: RDS Reception: true [ 578.094483][T13558] vivid-003: RDS Program Type: 0 inactive [ 578.100365][T13558] vivid-003: RDS PS Name: inactive [ 578.144719][T13558] vivid-003: RDS Radio Text: inactive [ 578.155183][T13558] vivid-003: RDS Traffic Announcement: false inactive [ 578.167684][T13558] vivid-003: RDS Traffic Program: false inactive [ 578.180277][T13558] vivid-003: RDS Music: false inactive [ 578.210808][T13558] vivid-003: ================== END STATUS ================== [ 579.042522][ T5845] Bluetooth: hci1: unexpected event 0x1d length: 6 > 5 [ 579.767988][T13607] lo: entered allmulticast mode [ 579.835633][T13609] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1554'. [ 579.883213][T13609] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 580.295567][T13616] FAULT_INJECTION: forcing a failure. [ 580.295567][T13616] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 580.377140][T13616] CPU: 0 UID: 0 PID: 13616 Comm: syz.2.1555 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 580.377189][T13616] Tainted: [U]=USER [ 580.377199][T13616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 580.377218][T13616] Call Trace: [ 580.377226][T13616] [ 580.377237][T13616] dump_stack_lvl+0x16c/0x1f0 [ 580.377304][T13616] should_fail_ex+0x50a/0x650 [ 580.377352][T13616] ? __pfx___might_resched+0x10/0x10 [ 580.377409][T13616] should_fail_alloc_page+0xe7/0x130 [ 580.377443][T13616] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 580.377494][T13616] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 580.377549][T13616] ? __pfx_mark_lock+0x10/0x10 [ 580.377591][T13616] ? hlock_class+0x4e/0x130 [ 580.377626][T13616] ? hlock_class+0x4e/0x130 [ 580.377658][T13616] ? mark_lock+0xb5/0xc60 [ 580.377719][T13616] ? hlock_class+0x4e/0x130 [ 580.377750][T13616] ? mark_lock+0xb5/0xc60 [ 580.377790][T13616] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 580.377841][T13616] ? hlock_class+0x4e/0x130 [ 580.377871][T13616] ? mark_lock+0xb5/0xc60 [ 580.377908][T13616] ? __pfx_mark_lock+0x10/0x10 [ 580.377969][T13616] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 580.378019][T13616] ? policy_nodemask+0xea/0x4e0 [ 580.378052][T13616] alloc_pages_mpol+0x1fc/0x540 [ 580.378083][T13616] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 580.378114][T13616] ? find_held_lock+0x2d/0x110 [ 580.378156][T13616] folio_alloc_mpol_noprof+0x36/0x2f0 [ 580.378196][T13616] shmem_alloc_folio+0x135/0x160 [ 580.378268][T13616] shmem_alloc_and_add_folio+0x48e/0xc10 [ 580.378312][T13616] ? shmem_huge_global_enabled+0x72/0x6b0 [ 580.378345][T13616] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 580.378386][T13616] ? shmem_allowable_huge_orders+0xd0/0x410 [ 580.378433][T13616] shmem_get_folio_gfp+0x689/0x1530 [ 580.378491][T13616] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 580.378531][T13616] ? filemap_map_pages+0xf92/0x16b0 [ 580.378574][T13616] shmem_fault+0x200/0xae0 [ 580.378613][T13616] ? __pfx_shmem_fault+0x10/0x10 [ 580.378656][T13616] ? do_pte_missing+0xde9/0x3e10 [ 580.378707][T13616] ? __pfx_lock_release+0x10/0x10 [ 580.378757][T13616] __do_fault+0x10a/0x490 [ 580.378794][T13616] do_pte_missing+0xecf/0x3e10 [ 580.378855][T13616] __handle_mm_fault+0x103c/0x2a40 [ 580.378912][T13616] ? __pfx___handle_mm_fault+0x10/0x10 [ 580.378956][T13616] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 580.379023][T13616] ? find_vma+0xc0/0x140 [ 580.379059][T13616] ? __pfx_find_vma+0x10/0x10 [ 580.379102][T13616] handle_mm_fault+0x3fa/0xaa0 [ 580.379155][T13616] do_user_addr_fault+0x7a3/0x13f0 [ 580.379209][T13616] exc_page_fault+0x5c/0xc0 [ 580.379255][T13616] asm_exc_page_fault+0x26/0x30 [ 580.379297][T13616] RIP: 0010:rep_movs_alternative+0x4a/0x70 [ 580.379334][T13616] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1 [ 580.379365][T13616] RSP: 0018:ffffc9000b4a7b28 EFLAGS: 00050206 [ 580.379390][T13616] RAX: 0000000000000001 RBX: 000000000000fdef RCX: 000000000000bdef [ 580.379409][T13616] RDX: ffffed1009ba9fbe RSI: 0000000000004000 RDI: ffff88804dd44000 [ 580.379429][T13616] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed1009ba9fbd [ 580.379447][T13616] R10: ffff88804dd4fdee R11: 0000000000000000 R12: ffffc9000b4a7da0 [ 580.379466][T13616] R13: 000000000000fdef R14: ffff88804dd40000 R15: 00007ffffffff000 [ 580.379507][T13616] _copy_from_iter+0x385/0x1560 [ 580.379544][T13616] ? trace_lock_acquire+0x14e/0x1f0 [ 580.379585][T13616] ? __pfx__copy_from_iter+0x10/0x10 [ 580.379615][T13616] ? __virt_addr_valid+0x1a4/0x590 [ 580.379653][T13616] ? __virt_addr_valid+0x5e/0x590 [ 580.379683][T13616] ? __phys_addr+0xc6/0x150 [ 580.379717][T13616] ? __phys_addr_symbol+0x30/0x80 [ 580.379748][T13616] ? __check_object_size+0x488/0x710 [ 580.379784][T13616] proc_sys_call_handler+0x31e/0x5a0 [ 580.379836][T13616] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 580.379900][T13616] vfs_write+0x5ae/0x1150 [ 580.379945][T13616] ? __pfx_proc_sys_write+0x10/0x10 [ 580.379994][T13616] ? __pfx___mutex_lock+0x10/0x10 [ 580.380039][T13616] ? __pfx_vfs_write+0x10/0x10 [ 580.380107][T13616] ksys_write+0x12b/0x250 [ 580.380149][T13616] ? __pfx_ksys_write+0x10/0x10 [ 580.380205][T13616] do_syscall_64+0xcd/0x250 [ 580.380253][T13616] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 580.380295][T13616] RIP: 0033:0x7f1e63b8d169 [ 580.380318][T13616] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 580.380348][T13616] RSP: 002b:00007f1e64ab0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 580.380375][T13616] RAX: ffffffffffffffda RBX: 00007f1e63da5fa0 RCX: 00007f1e63b8d169 [ 580.380395][T13616] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003 [ 580.380413][T13616] RBP: 00007f1e64ab0090 R08: 0000000000000000 R09: 0000000000000000 [ 580.380432][T13616] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 580.380450][T13616] R13: 0000000000000000 R14: 00007f1e63da5fa0 R15: 00007ffd587aba98 [ 580.380492][T13616] [ 581.135424][T13609] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 581.495011][T13607] lo: left allmulticast mode [ 581.630514][ T5845] Bluetooth: hci1: unexpected event 0x1d length: 6 > 5 [ 583.771693][T13672] svc: failed to register nfsdv3 RPC service (errno 111). [ 584.053923][T13672] svc: failed to register nfsaclv3 RPC service (errno 512). [ 587.926900][T13728] FAULT_INJECTION: forcing a failure. [ 587.926900][T13728] name failslab, interval 1, probability 0, space 0, times 0 [ 588.021192][T13728] CPU: 1 UID: 0 PID: 13728 Comm: syz.3.1573 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 588.021246][T13728] Tainted: [U]=USER [ 588.021256][T13728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 588.021275][T13728] Call Trace: [ 588.021302][T13728] [ 588.021314][T13728] dump_stack_lvl+0x16c/0x1f0 [ 588.021369][T13728] should_fail_ex+0x50a/0x650 [ 588.021401][T13728] ? fs_reclaim_acquire+0xae/0x150 [ 588.021445][T13728] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 588.021484][T13728] should_failslab+0xc2/0x120 [ 588.021516][T13728] __kmalloc_noprof+0xcb/0x510 [ 588.021566][T13728] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xa8/0x290 [ 588.021613][T13728] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 588.021660][T13728] genl_start+0x18e/0x960 [ 588.021699][T13728] __netlink_dump_start+0x607/0x970 [ 588.021762][T13728] genl_family_rcv_msg_dumpit+0x1e1/0x2e0 [ 588.021804][T13728] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 588.021852][T13728] ? __pfx_genl_get_cmd+0x10/0x10 [ 588.021903][T13728] ? __pfx_genl_start+0x10/0x10 [ 588.021933][T13728] ? __pfx_genl_dumpit+0x10/0x10 [ 588.021963][T13728] ? __pfx_genl_done+0x10/0x10 [ 588.022001][T13728] ? __radix_tree_lookup+0x21f/0x2c0 [ 588.022054][T13728] genl_rcv_msg+0x470/0x800 [ 588.022094][T13728] ? __pfx_genl_rcv_msg+0x10/0x10 [ 588.022129][T13728] ? __pfx_smcd_nl_get_device+0x10/0x10 [ 588.022186][T13728] netlink_rcv_skb+0x16b/0x440 [ 588.022238][T13728] ? __pfx_genl_rcv_msg+0x10/0x10 [ 588.022274][T13728] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 588.022344][T13728] ? down_read+0xc9/0x330 [ 588.022395][T13728] ? __pfx_down_read+0x10/0x10 [ 588.022450][T13728] ? rcu_is_watching+0x12/0xc0 [ 588.022493][T13728] genl_rcv+0x28/0x40 [ 588.022520][T13728] netlink_unicast+0x53c/0x7f0 [ 588.022577][T13728] ? __pfx_netlink_unicast+0x10/0x10 [ 588.022630][T13728] ? __phys_addr_symbol+0x30/0x80 [ 588.022663][T13728] ? __check_object_size+0x488/0x710 [ 588.022702][T13728] netlink_sendmsg+0x8b8/0xd70 [ 588.022766][T13728] ? __pfx_netlink_sendmsg+0x10/0x10 [ 588.022834][T13728] ____sys_sendmsg+0xaaf/0xc90 [ 588.022876][T13728] ? copy_msghdr_from_user+0x10b/0x160 [ 588.022931][T13728] ? __pfx_____sys_sendmsg+0x10/0x10 [ 588.022992][T13728] ___sys_sendmsg+0x135/0x1e0 [ 588.023048][T13728] ? __pfx____sys_sendmsg+0x10/0x10 [ 588.023120][T13728] ? __pfx_lock_release+0x10/0x10 [ 588.023167][T13728] ? trace_lock_acquire+0x14e/0x1f0 [ 588.023220][T13728] ? __fget_files+0x206/0x3a0 [ 588.023280][T13728] __sys_sendmsg+0x16e/0x220 [ 588.023311][T13728] ? __pfx___sys_sendmsg+0x10/0x10 [ 588.023363][T13728] ? __pfx___schedule+0x10/0x10 [ 588.023432][T13728] do_syscall_64+0xcd/0x250 [ 588.023485][T13728] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 588.023531][T13728] RIP: 0033:0x7f4140f8d169 [ 588.023556][T13728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 588.023586][T13728] RSP: 002b:00007f4141d3c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 588.023617][T13728] RAX: ffffffffffffffda RBX: 00007f41411a6240 RCX: 00007f4140f8d169 [ 588.023639][T13728] RDX: 0000000000000810 RSI: 0000200000000140 RDI: 0000000000000003 [ 588.023659][T13728] RBP: 00007f4141d3c090 R08: 0000000000000000 R09: 0000000000000000 [ 588.023679][T13728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 588.023698][T13728] R13: 0000000000000000 R14: 00007f41411a6240 R15: 00007ffcd3aa3648 [ 588.023741][T13728] [ 590.036325][T13753] svc: failed to register nfsdv3 RPC service (errno 111). [ 590.110787][T13753] svc: failed to register nfsaclv3 RPC service (errno 111). [ 591.618262][T13786] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1580'. [ 591.670052][T13786] bridge_slave_1: left allmulticast mode [ 591.718487][T13786] bridge_slave_1: left promiscuous mode [ 591.775875][T13786] bridge0: port 2(bridge_slave_1) entered disabled state [ 591.814575][T13791] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1580'. [ 591.958705][T13786] bridge_slave_0: left allmulticast mode [ 592.005583][T13786] bridge_slave_0: left promiscuous mode [ 592.043233][T13786] bridge0: port 1(bridge_slave_0) entered disabled state [ 593.080425][T13804] svc: failed to register nfsdv3 RPC service (errno 111). [ 593.145825][T13804] svc: failed to register nfsaclv3 RPC service (errno 111). [ 594.688222][T13852] synth uevent: /bus/memstick: unknown uevent action string [ 594.756095][T13857] synth uevent: /bus/memstick: unknown uevent action string [ 594.771008][T13857] synth uevent: /bus/memstick: unknown uevent action string [ 595.296590][T13868] svc: failed to register nfsdv3 RPC service (errno 111). [ 595.406198][T13868] svc: failed to register nfsaclv3 RPC service (errno 111). [ 597.401051][T13911] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1609'. [ 598.511150][T13919] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1611'. [ 598.839451][T13923] svc: failed to register nfsdv3 RPC service (errno 111). [ 598.873829][T13923] svc: failed to register nfsaclv3 RPC service (errno 111). [ 601.038084][T13976] FAULT_INJECTION: forcing a failure. [ 601.038084][T13976] name failslab, interval 1, probability 0, space 0, times 0 [ 601.096082][T13976] CPU: 1 UID: 0 PID: 13976 Comm: syz.0.1620 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 601.096137][T13976] Tainted: [U]=USER [ 601.096149][T13976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 601.096168][T13976] Call Trace: [ 601.096178][T13976] [ 601.096189][T13976] dump_stack_lvl+0x16c/0x1f0 [ 601.096245][T13976] should_fail_ex+0x50a/0x650 [ 601.096289][T13976] ? fs_reclaim_acquire+0xae/0x150 [ 601.096330][T13976] ? sctp_auth_shkey_create+0x87/0x1f0 [ 601.096374][T13976] should_failslab+0xc2/0x120 [ 601.096404][T13976] __kmalloc_cache_noprof+0x68/0x410 [ 601.096450][T13976] ? lockdep_init_map_type+0x16d/0x7d0 [ 601.096507][T13976] sctp_auth_shkey_create+0x87/0x1f0 [ 601.096575][T13976] sctp_endpoint_new+0x54a/0xc90 [ 601.096661][T13976] sctp_init_sock+0xe2c/0x1330 [ 601.096705][T13976] ? sock_init_data_uid+0x7f6/0xa00 [ 601.096749][T13976] ? __pfx_sctp_init_sock+0x10/0x10 [ 601.096793][T13976] inet_create+0x94a/0x10a0 [ 601.096827][T13976] ? inet_create+0x90/0x10a0 [ 601.096865][T13976] __sock_create+0x335/0x8d0 [ 601.096913][T13976] __sys_socket+0x14f/0x260 [ 601.096955][T13976] ? __pfx___sys_socket+0x10/0x10 [ 601.096998][T13976] ? rcu_is_watching+0x12/0xc0 [ 601.097040][T13976] __x64_sys_socket+0x72/0xb0 [ 601.097097][T13976] ? lockdep_hardirqs_on+0x7c/0x110 [ 601.097139][T13976] do_syscall_64+0xcd/0x250 [ 601.097188][T13976] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 601.097231][T13976] RIP: 0033:0x7f2fee78d169 [ 601.097254][T13976] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 601.097284][T13976] RSP: 002b:00007f2fef5da038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 601.097331][T13976] RAX: ffffffffffffffda RBX: 00007f2fee9a5fa0 RCX: 00007f2fee78d169 [ 601.097352][T13976] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000002 [ 601.097371][T13976] RBP: 00007f2fee80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 601.097391][T13976] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 601.097410][T13976] R13: 0000000000000000 R14: 00007f2fee9a5fa0 R15: 00007ffe786551b8 [ 601.097449][T13976] [ 601.518738][T13984] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1622'. [ 601.746375][T13988] svc: failed to register nfsdv3 RPC service (errno 111). [ 601.837458][T13993] netlink: get zone limit has 8 unknown bytes [ 601.846159][T13988] svc: failed to register nfsaclv3 RPC service (errno 111). [ 603.069639][T14014] FAULT_INJECTION: forcing a failure. [ 603.069639][T14014] name failslab, interval 1, probability 0, space 0, times 0 [ 603.170004][T14014] CPU: 1 UID: 0 PID: 14014 Comm: syz.2.1630 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 603.170054][T14014] Tainted: [U]=USER [ 603.170064][T14014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 603.170082][T14014] Call Trace: [ 603.170091][T14014] [ 603.170103][T14014] dump_stack_lvl+0x16c/0x1f0 [ 603.170156][T14014] should_fail_ex+0x50a/0x650 [ 603.170187][T14014] ? fs_reclaim_acquire+0xae/0x150 [ 603.170231][T14014] should_failslab+0xc2/0x120 [ 603.170279][T14014] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 603.170331][T14014] ? __pmd_alloc+0xc3/0x870 [ 603.170392][T14014] __pmd_alloc+0xc3/0x870 [ 603.170437][T14014] __handle_mm_fault+0x94a/0x2a40 [ 603.170505][T14014] ? __pfx___handle_mm_fault+0x10/0x10 [ 603.170552][T14014] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 603.170624][T14014] ? find_vma+0xc0/0x140 [ 603.170662][T14014] ? __pfx_find_vma+0x10/0x10 [ 603.170707][T14014] handle_mm_fault+0x3fa/0xaa0 [ 603.170764][T14014] do_user_addr_fault+0x7a3/0x13f0 [ 603.170819][T14014] exc_page_fault+0x5c/0xc0 [ 603.170869][T14014] asm_exc_page_fault+0x26/0x30 [ 603.170909][T14014] RIP: 0010:rep_movs_alternative+0x15/0x70 [ 603.170947][T14014] Code: cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 83 f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 <88> 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 [ 603.170978][T14014] RSP: 0018:ffffc90002f47af8 EFLAGS: 00050202 [ 603.171004][T14014] RAX: 0000000000000033 RBX: 0000000000000002 RCX: 0000000000000002 [ 603.171023][T14014] RDX: ffffed1006047001 RSI: ffff888030238000 RDI: 0000000000000000 [ 603.171044][T14014] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffed1006047000 [ 603.171063][T14014] R10: ffff888030238001 R11: 0000000000000002 R12: ffffc90002f47da0 [ 603.171083][T14014] R13: 0000000000000002 R14: ffff888030238000 R15: 00007ffffffff000 [ 603.171126][T14014] _copy_to_iter+0x385/0x1560 [ 603.171164][T14014] ? trace_lock_acquire+0x14e/0x1f0 [ 603.171201][T14014] ? __pfx_lock_release+0x10/0x10 [ 603.171248][T14014] ? __pfx__copy_to_iter+0x10/0x10 [ 603.171281][T14014] ? __virt_addr_valid+0x1a4/0x590 [ 603.171321][T14014] ? __virt_addr_valid+0x5e/0x590 [ 603.171353][T14014] ? __phys_addr_symbol+0x30/0x80 [ 603.171385][T14014] ? __check_object_size+0x488/0x710 [ 603.171423][T14014] seq_read_iter+0xd00/0x12b0 [ 603.171489][T14014] kernfs_fop_read_iter+0x414/0x580 [ 603.171524][T14014] ? rw_verify_area+0xcf/0x680 [ 603.171568][T14014] vfs_read+0x886/0xbf0 [ 603.171618][T14014] ? __pfx_vfs_read+0x10/0x10 [ 603.171689][T14014] ksys_read+0x12b/0x250 [ 603.171733][T14014] ? __pfx_ksys_read+0x10/0x10 [ 603.171789][T14014] do_syscall_64+0xcd/0x250 [ 603.171839][T14014] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 603.171884][T14014] RIP: 0033:0x7f1e63b8d169 [ 603.171907][T14014] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 603.171955][T14014] RSP: 002b:00007f1e64a8f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 603.171984][T14014] RAX: ffffffffffffffda RBX: 00007f1e63da6080 RCX: 00007f1e63b8d169 [ 603.172006][T14014] RDX: 0000000000000020 RSI: 0000000000000000 RDI: 0000000000000008 [ 603.172025][T14014] RBP: 00007f1e64a8f090 R08: 0000000000000000 R09: 0000000000000000 [ 603.172045][T14014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 603.172064][T14014] R13: 0000000000000000 R14: 00007f1e63da6080 R15: 00007ffd587aba98 [ 603.172107][T14014] [ 604.612299][ T5845] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 605.972714][T14069] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1637'. [ 606.468820][T14076] svc: failed to register nfsdv3 RPC service (errno 111). [ 606.508784][T14076] svc: failed to register nfsaclv3 RPC service (errno 111). [ 608.717216][T14104] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 608.763942][T14104] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 608.793635][T14104] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 608.828863][T14104] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 610.401095][ T5845] Bluetooth: hci0: command 0x0c1a tx timeout [ 610.801117][ T5845] Bluetooth: hci2: command 0x0c1a tx timeout [ 610.801129][ T5848] Bluetooth: hci3: command 0x0c1a tx timeout [ 610.884898][ T5845] Bluetooth: hci1: command 0x0c1a tx timeout [ 611.269582][T14156] svc: failed to register nfsdv3 RPC service (errno 111). [ 611.305622][T14156] svc: failed to register nfsaclv3 RPC service (errno 111). [ 611.905800][T14164] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1654'. [ 613.557010][T14190] zswap: compressor not available [ 614.588486][T14232] svc: failed to register nfsdv3 RPC service (errno 111). [ 614.668094][T14232] svc: failed to register nfsaclv3 RPC service (errno 111). [ 618.562052][T14316] svc: failed to register nfsdv3 RPC service (errno 111). [ 618.591547][T14316] svc: failed to register nfsaclv3 RPC service (errno 111). [ 619.130543][T14322] zswap: compressor not available [ 620.857484][T14374] svc: failed to register nfsdv3 RPC service (errno 111). [ 620.928011][T14374] svc: failed to register nfsaclv3 RPC service (errno 111). [ 622.226159][T14418] FAULT_INJECTION: forcing a failure. [ 622.226159][T14418] name failslab, interval 1, probability 0, space 0, times 0 [ 622.240482][T14418] CPU: 0 UID: 0 PID: 14418 Comm: syz.3.1699 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 622.240529][T14418] Tainted: [U]=USER [ 622.240539][T14418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 622.240557][T14418] Call Trace: [ 622.240566][T14418] [ 622.240577][T14418] dump_stack_lvl+0x16c/0x1f0 [ 622.240630][T14418] should_fail_ex+0x50a/0x650 [ 622.240659][T14418] ? fs_reclaim_acquire+0xae/0x150 [ 622.240701][T14418] ? kernfs_fop_write_iter+0x223/0x500 [ 622.240733][T14418] should_failslab+0xc2/0x120 [ 622.240781][T14418] __kmalloc_noprof+0xcb/0x510 [ 622.240820][T14418] ? rcu_is_watching+0x12/0xc0 [ 622.240853][T14418] kernfs_fop_write_iter+0x223/0x500 [ 622.240891][T14418] vfs_write+0x5ae/0x1150 [ 622.240931][T14418] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 622.240966][T14418] ? __pfx___mutex_lock+0x10/0x10 [ 622.241008][T14418] ? __pfx_vfs_write+0x10/0x10 [ 622.241062][T14418] ksys_write+0x12b/0x250 [ 622.241094][T14418] ? __pfx_ksys_write+0x10/0x10 [ 622.241136][T14418] do_syscall_64+0xcd/0x250 [ 622.241175][T14418] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 622.241209][T14418] RIP: 0033:0x7f4140f8d169 [ 622.241227][T14418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 622.241252][T14418] RSP: 002b:00007f4141d9f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 622.241274][T14418] RAX: ffffffffffffffda RBX: 00007f41411a5fa0 RCX: 00007f4140f8d169 [ 622.241289][T14418] RDX: 000000000000ffd8 RSI: 0000000000000000 RDI: 0000000000000003 [ 622.241304][T14418] RBP: 00007f4141d9f090 R08: 0000000000000000 R09: 0000000000000000 [ 622.241336][T14418] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 622.241351][T14418] R13: 0000000000000000 R14: 00007f41411a5fa0 R15: 00007ffcd3aa3648 [ 622.241382][T14418] [ 622.642167][T14422] svc: failed to register nfsdv3 RPC service (errno 111). [ 622.655357][T14422] svc: failed to register nfsaclv3 RPC service (errno 111). [ 622.679559][T14424] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1701'. [ 622.693499][T14424] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1701'. [ 624.929890][T14488] program syz.3.1714 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 625.301321][T14491] svc: failed to register nfsdv3 RPC service (errno 111). [ 625.318978][T14491] svc: failed to register nfsaclv3 RPC service (errno 111). [ 627.518460][T14537] openvswitch: netlink: nsh attr 1 has unexpected len 14 expected 8 [ 628.458841][T14569] svc: failed to register nfsdv3 RPC service (errno 111). [ 628.486701][T14569] svc: failed to register nfsaclv3 RPC service (errno 111). [ 629.061527][T14576] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 629.071800][T14576] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 629.103663][T14576] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 629.126554][T14576] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 629.687230][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 629.694579][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 630.964795][ T5848] Bluetooth: hci0: command 0x0c1a tx timeout [ 631.121225][ T5845] Bluetooth: hci1: command 0x0c1a tx timeout [ 631.127326][ T5845] Bluetooth: hci3: command 0x0c1a tx timeout [ 631.133493][ T5848] Bluetooth: hci2: command 0x0c1a tx timeout [ 631.957363][T14644] svc: failed to register nfsdv3 RPC service (errno 111). [ 632.131171][T14644] svc: failed to register nfsaclv3 RPC service (errno 111). [ 632.946986][T14666] FAULT_INJECTION: forcing a failure. [ 632.946986][T14666] name failslab, interval 1, probability 0, space 0, times 0 [ 632.981067][T14666] CPU: 0 UID: 0 PID: 14666 Comm: syz.0.1747 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 632.981127][T14666] Tainted: [U]=USER [ 632.981138][T14666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 632.981158][T14666] Call Trace: [ 632.981167][T14666] [ 632.981180][T14666] dump_stack_lvl+0x16c/0x1f0 [ 632.981233][T14666] should_fail_ex+0x50a/0x650 [ 632.981263][T14666] ? fs_reclaim_acquire+0xae/0x150 [ 632.981306][T14666] should_failslab+0xc2/0x120 [ 632.981337][T14666] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 632.981386][T14666] ? down_write+0x14e/0x200 [ 632.981415][T14666] ? vm_area_dup+0x21/0x2f0 [ 632.981471][T14666] vm_area_dup+0x21/0x2f0 [ 632.981520][T14666] copy_process+0x776f/0x8c50 [ 632.981581][T14666] ? __pfx_copy_process+0x10/0x10 [ 632.981611][T14666] ? __pfx___futex_wait+0x10/0x10 [ 632.981662][T14666] ? try_to_wake_up+0x158/0x1490 [ 632.981740][T14666] kernel_clone+0xfd/0x960 [ 632.981775][T14666] ? __pfx_kernel_clone+0x10/0x10 [ 632.981828][T14666] ? 0xffffffffff600000 [ 632.981854][T14666] __do_sys_clone+0xcf/0x120 [ 632.981885][T14666] ? __pfx___do_sys_clone+0x10/0x10 [ 632.981920][T14666] ? 0xffffffffff600000 [ 632.981958][T14666] ? rcu_is_watching+0x12/0xc0 [ 632.982005][T14666] do_syscall_64+0xcd/0x250 [ 632.982055][T14666] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 632.982107][T14666] RIP: 0033:0x7f2fee78d169 [ 632.982131][T14666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 632.982162][T14666] RSP: 002b:00007f2fef5b9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 632.982192][T14666] RAX: ffffffffffffffda RBX: 00007f2fee9a6080 RCX: 00007f2fee78d169 [ 632.982214][T14666] RDX: ffffffffffffffff RSI: 0000000000000005 RDI: 0000000000000009 [ 632.982234][T14666] RBP: 00007f2fee80e2a0 R08: 0000000000000004 R09: 0000000000000000 [ 632.982254][T14666] R10: ffffffffff600000 R11: 0000000000000246 R12: 0000000000000000 [ 632.982274][T14666] R13: 0000000000000000 R14: 00007f2fee9a6080 R15: 00007ffe786551b8 [ 632.982301][T14666] ? 0xffffffffff600000 [ 632.982333][T14666] [ 633.477717][T14665] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(1) [ 633.560692][T14681] FAULT_INJECTION: forcing a failure. [ 633.560692][T14681] name failslab, interval 1, probability 0, space 0, times 0 [ 633.605855][T14681] CPU: 0 UID: 0 PID: 14681 Comm: syz.2.1752 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 633.605904][T14681] Tainted: [U]=USER [ 633.605913][T14681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 633.605931][T14681] Call Trace: [ 633.605940][T14681] [ 633.605952][T14681] dump_stack_lvl+0x16c/0x1f0 [ 633.606004][T14681] should_fail_ex+0x50a/0x650 [ 633.606035][T14681] ? fs_reclaim_acquire+0xae/0x150 [ 633.606080][T14681] ? vkms_plane_duplicate_state+0x87/0x130 [ 633.606113][T14681] should_failslab+0xc2/0x120 [ 633.606144][T14681] __kmalloc_cache_noprof+0x68/0x410 [ 633.606200][T14681] vkms_plane_duplicate_state+0x87/0x130 [ 633.606236][T14681] drm_atomic_get_plane_state+0x20b/0x590 [ 633.606286][T14681] drm_client_modeset_commit_atomic+0x23f/0x7f0 [ 633.606330][T14681] ? drm_client_modeset_commit_locked+0x4c/0x580 [ 633.606381][T14681] ? trace_contention_end+0xee/0x140 [ 633.606430][T14681] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 633.606505][T14681] ? __pfx___mutex_lock+0x10/0x10 [ 633.606563][T14681] drm_client_modeset_commit_locked+0x14d/0x580 [ 633.606614][T14681] drm_client_modeset_commit+0x4f/0x80 [ 633.606657][T14681] drm_fb_helper_lastclose+0xc7/0x160 [ 633.606692][T14681] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 633.606767][T14681] drm_fbdev_client_restore+0x2c/0x40 [ 633.606819][T14681] drm_client_dev_restore+0x188/0x2a0 [ 633.606871][T14681] drm_release+0x2c2/0x360 [ 633.606915][T14681] ? __pfx_drm_release+0x10/0x10 [ 633.606960][T14681] __fput+0x3ff/0xb70 [ 633.607004][T14681] task_work_run+0x14e/0x250 [ 633.607052][T14681] ? __pfx_task_work_run+0x10/0x10 [ 633.607098][T14681] ? __pfx_ksys_write+0x10/0x10 [ 633.607155][T14681] syscall_exit_to_user_mode+0x27b/0x2a0 [ 633.607207][T14681] do_syscall_64+0xda/0x250 [ 633.607260][T14681] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 633.607307][T14681] RIP: 0033:0x7f1e63b8d169 [ 633.607332][T14681] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 633.607364][T14681] RSP: 002b:00007f1e64ab0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 633.607395][T14681] RAX: 0000000000000007 RBX: 00007f1e63da5fa0 RCX: 00007f1e63b8d169 [ 633.607416][T14681] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 633.607436][T14681] RBP: 00007f1e64ab0090 R08: 0000000000000000 R09: 0000000000000000 [ 633.607456][T14681] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000002 [ 633.607476][T14681] R13: 0000000000000000 R14: 00007f1e63da5fa0 R15: 00007ffd587aba98 [ 633.607521][T14681] [ 634.918377][T14704] svc: failed to register nfsdv3 RPC service (errno 111). [ 635.001388][T14704] svc: failed to register nfsaclv3 RPC service (errno 111). [ 636.609910][ T55] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 638.968803][T14813] svc: failed to register nfsdv3 RPC service (errno 111). [ 639.081212][T14813] svc: failed to register nfsaclv3 RPC service (errno 111). [ 641.964130][T14882] svc: failed to register nfsdv3 RPC service (errno 111). [ 642.038961][T14882] svc: failed to register nfsaclv3 RPC service (errno 111). [ 642.248032][T14892] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1779'. [ 642.660475][T14900] netlink: 326 bytes leftover after parsing attributes in process `syz.3.1782'. [ 642.739775][T14908] .SR: entered promiscuous mode [ 642.899132][T14908] Invalid ELF header magic: != ELF [ 644.838621][ T3006] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 645.169730][T14965] svc: failed to register nfsdv3 RPC service (errno 111). [ 645.220649][T14965] svc: failed to register nfsaclv3 RPC service (errno 111). [ 645.564533][ T5845] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 645.585711][ T5845] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 645.605970][ T5845] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 645.636449][ T5845] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 645.651978][ T5845] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 645.661249][ T5845] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 646.135089][ T3006] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 646.503884][T14981] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1792'. [ 646.614924][ T3006] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 647.072472][ T3006] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 647.762792][ T55] Bluetooth: hci3: command tx timeout [ 649.841254][ T55] Bluetooth: hci3: command tx timeout [ 651.249563][ T3006] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 651.360131][ T3006] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 651.469923][ T3006] bond0 (unregistering): Released all slaves [ 651.921136][ T55] Bluetooth: hci3: command tx timeout [ 652.122044][T14998] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1793'. [ 652.208662][ T3006] hsr_slave_0: left promiscuous mode [ 652.243674][ T3006] hsr_slave_1: left promiscuous mode [ 652.256580][ T3006] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 652.273377][ T3006] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 652.336382][ T3006] veth1_macvtap: left promiscuous mode [ 652.345045][ T3006] veth1_vlan: left promiscuous mode [ 652.352783][ T3006] veth0_vlan: left promiscuous mode [ 654.001141][ T55] Bluetooth: hci3: command tx timeout [ 656.545941][ T3006] team0 (unregistering): Port device team_slave_1 removed [ 656.695380][ T3006] team0 (unregistering): Port device team_slave_0 removed [ 658.540783][T14970] chnl_net:caif_netlink_parms(): no params data found [ 658.877825][T14970] bridge0: port 1(bridge_slave_0) entered blocking state [ 658.895281][T14970] bridge0: port 1(bridge_slave_0) entered disabled state [ 658.904674][T14970] bridge_slave_0: entered allmulticast mode [ 658.916549][T14970] bridge_slave_0: entered promiscuous mode [ 658.926518][T14970] bridge0: port 2(bridge_slave_1) entered blocking state [ 658.938066][T14970] bridge0: port 2(bridge_slave_1) entered disabled state [ 658.947196][T14970] bridge_slave_1: entered allmulticast mode [ 658.958873][T14970] bridge_slave_1: entered promiscuous mode [ 659.099820][T14970] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 659.152326][T14970] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 659.339560][T14970] team0: Port device team_slave_0 added [ 659.366102][T14970] team0: Port device team_slave_1 added [ 659.456355][T14970] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 659.488117][T14970] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 659.564248][T14970] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 659.603268][T14970] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 659.610282][T14970] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 659.677990][T15059] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1798'. [ 659.687558][T14970] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 659.882395][T14970] hsr_slave_0: entered promiscuous mode [ 659.889236][T14970] hsr_slave_1: entered promiscuous mode [ 659.921785][T14970] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 659.940982][T14970] Cannot create hsr debugfs directory [ 660.587430][T14970] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 660.598406][T14970] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 660.625722][T14970] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 660.675124][T14970] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 661.030674][T14970] 8021q: adding VLAN 0 to HW filter on device bond0 [ 661.136055][T14970] 8021q: adding VLAN 0 to HW filter on device team0 [ 661.264280][ T6276] bridge0: port 1(bridge_slave_0) entered blocking state [ 661.271502][ T6276] bridge0: port 1(bridge_slave_0) entered forwarding state [ 661.337467][ T6276] bridge0: port 2(bridge_slave_1) entered blocking state [ 661.344710][ T6276] bridge0: port 2(bridge_slave_1) entered forwarding state [ 662.437559][T15113] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1808'. [ 662.506539][T14970] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 663.464377][T14970] veth0_vlan: entered promiscuous mode [ 663.520805][T14970] veth1_vlan: entered promiscuous mode [ 663.638590][T14970] veth0_macvtap: entered promiscuous mode [ 663.658077][T14970] veth1_macvtap: entered promiscuous mode [ 663.714613][T14970] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 663.774808][T14970] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 663.822980][T14970] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 663.860428][T14970] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 663.912984][T14970] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 663.913016][T14970] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 663.922899][T14970] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 663.925543][T14970] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 663.925573][T14970] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 663.925591][T14970] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 663.925614][T14970] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 663.925632][T14970] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 663.925655][T14970] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 663.926679][T14970] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 663.929344][T14970] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 663.929434][T14970] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 663.929482][T14970] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 663.929528][T14970] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 664.268698][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 664.268730][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 664.380097][T12018] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 664.380142][T12018] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 673.276725][T15326] svc: failed to register nfsdv3 RPC service (errno 111). [ 673.330221][T15326] svc: failed to register nfsaclv3 RPC service (errno 111). [ 673.405222][T15328] ubi4: attaching mtd0 [ 678.817145][T15409] svc: failed to register nfsdv3 RPC service (errno 111). [ 678.855748][T15409] svc: failed to register nfsaclv3 RPC service (errno 111). [ 684.594550][T15492] svc: failed to register nfsdv3 RPC service (errno 111). [ 684.662458][T15492] svc: failed to register nfsaclv3 RPC service (errno 111). [ 689.325973][T15590] svc: failed to register nfsdv3 RPC service (errno 111). [ 689.461205][T15590] svc: failed to register nfsaclv3 RPC service (errno 512). [ 691.125182][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 691.141017][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 692.896554][T15648] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1883'. [ 692.921125][T15648] bridge_slave_1: left allmulticast mode [ 692.927898][T15648] bridge_slave_1: left promiscuous mode [ 692.941352][T15648] bridge0: port 2(bridge_slave_1) entered disabled state [ 693.012816][T15648] bridge_slave_0: left allmulticast mode [ 693.046650][T15648] bridge_slave_0: left promiscuous mode [ 693.091252][T15648] bridge0: port 1(bridge_slave_0) entered disabled state [ 702.110596][T15772] netlink: get zone limit has 8 unknown bytes [ 706.142098][T15855] svc: failed to register nfsdv3 RPC service (errno 111). [ 706.233934][T15855] svc: failed to register nfsaclv3 RPC service (errno 111). [ 708.359755][T15901] Invalid ELF header magic: != ELF [ 710.113037][ T55] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 714.207817][T15944] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT [ 720.910256][T16020] svc: failed to register nfsdv3 RPC service (errno 111). [ 720.934428][T16020] svc: failed to register nfsaclv3 RPC service (errno 111). [ 723.893121][T16076] svc: failed to register nfsdv3 RPC service (errno 111). [ 723.939722][T16076] svc: failed to register nfsaclv3 RPC service (errno 111). [ 724.681841][T16085] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1958'. [ 728.378670][T16103] Invalid ELF header magic: != ELF [ 729.826317][T16105] FAULT_INJECTION: forcing a failure. [ 729.826317][T16105] name failslab, interval 1, probability 0, space 0, times 0 [ 729.846654][T16105] CPU: 0 UID: 0 PID: 16105 Comm: syz.1.1971 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 729.846703][T16105] Tainted: [U]=USER [ 729.846716][T16105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 729.846733][T16105] Call Trace: [ 729.846743][T16105] [ 729.846755][T16105] dump_stack_lvl+0x16c/0x1f0 [ 729.846810][T16105] should_fail_ex+0x50a/0x650 [ 729.846842][T16105] ? fs_reclaim_acquire+0xae/0x150 [ 729.846888][T16105] should_failslab+0xc2/0x120 [ 729.846919][T16105] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 729.846977][T16105] ? find_held_lock+0x2d/0x110 [ 729.847012][T16105] ? sk_prot_alloc+0x60/0x2a0 [ 729.847054][T16105] sk_prot_alloc+0x60/0x2a0 [ 729.847094][T16105] sk_alloc+0x36/0xc20 [ 729.847143][T16105] smc_create+0x114/0x2a0 [ 729.847178][T16105] __sock_create+0x335/0x8d0 [ 729.847226][T16105] __sys_socket+0x14f/0x260 [ 729.847268][T16105] ? __pfx___sys_socket+0x10/0x10 [ 729.847322][T16105] ? syscall_user_dispatch+0x7a/0x130 [ 729.847383][T16105] __x64_sys_socket+0x72/0xb0 [ 729.847426][T16105] do_syscall_64+0xcd/0x250 [ 729.847477][T16105] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 729.847524][T16105] RIP: 0033:0x7f04b398d169 [ 729.847548][T16105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 729.847579][T16105] RSP: 002b:00007f04b17d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 729.847605][T16105] RAX: ffffffffffffffda RBX: 00007f04b3ba6080 RCX: 00007f04b398d169 [ 729.847623][T16105] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000002b [ 729.847639][T16105] RBP: 00007f04b3a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 729.847704][T16105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 729.847721][T16105] R13: 0000000000000000 R14: 00007f04b3ba6080 R15: 00007ffea9f4fbe8 [ 729.847754][T16105] [ 734.114553][T16181] Invalid ELF header magic: != ELF [ 741.493764][T16300] Invalid ELF header magic: != ELF [ 741.912331][T16310] svc: failed to register nfsdv3 RPC service (errno 111). [ 741.951045][T16310] svc: failed to register nfsaclv3 RPC service (errno 111). [ 744.912840][T16359] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2008'. [ 744.930369][T16359] bridge_slave_1: left allmulticast mode [ 744.940456][T16359] bridge_slave_1: left promiscuous mode [ 744.965056][T16359] bridge0: port 2(bridge_slave_1) entered disabled state [ 744.983332][T16359] bridge_slave_0: left allmulticast mode [ 744.989278][T16359] bridge_slave_0: left promiscuous mode [ 744.995485][T16359] bridge0: port 1(bridge_slave_0) entered disabled state [ 747.031248][T16381] svc: failed to register nfsdv3 RPC service (errno 111). [ 747.102626][T16381] svc: failed to register nfsaclv3 RPC service (errno 111). [ 747.776531][T16392] svc: failed to register nfsdv3 RPC service (errno 111). [ 747.881125][T16392] svc: failed to register nfsaclv3 RPC service (errno 111). [ 749.582651][T16429] svc: failed to register nfsdv3 RPC service (errno 111). [ 749.629180][T16429] svc: failed to register nfsaclv3 RPC service (errno 111). [ 752.564628][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 752.571201][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 752.701612][T16490] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2033'. [ 752.955401][T16493] FAULT_INJECTION: forcing a failure. [ 752.955401][T16493] name failslab, interval 1, probability 0, space 0, times 0 [ 752.999735][T16493] CPU: 1 UID: 0 PID: 16493 Comm: syz.1.2033 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 752.999790][T16493] Tainted: [U]=USER [ 752.999801][T16493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 752.999822][T16493] Call Trace: [ 752.999832][T16493] [ 752.999845][T16493] dump_stack_lvl+0x16c/0x1f0 [ 752.999905][T16493] should_fail_ex+0x50a/0x650 [ 752.999938][T16493] ? fs_reclaim_acquire+0xae/0x150 [ 752.999987][T16493] should_failslab+0xc2/0x120 [ 753.000020][T16493] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 753.000072][T16493] ? down_write+0x14e/0x200 [ 753.000101][T16493] ? vm_area_dup+0x53/0x2f0 [ 753.000159][T16493] vm_area_dup+0x53/0x2f0 [ 753.000212][T16493] copy_process+0x776f/0x8c50 [ 753.000283][T16493] ? __pfx_copy_process+0x10/0x10 [ 753.000315][T16493] ? __pfx___futex_wait+0x10/0x10 [ 753.000404][T16493] kernel_clone+0xfd/0x960 [ 753.000440][T16493] ? __pfx_kernel_clone+0x10/0x10 [ 753.000498][T16493] __do_sys_clone+0xcf/0x120 [ 753.000532][T16493] ? __pfx___do_sys_clone+0x10/0x10 [ 753.000587][T16493] ? rcu_is_watching+0x12/0xc0 [ 753.000636][T16493] do_syscall_64+0xcd/0x250 [ 753.000690][T16493] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 753.000739][T16493] RIP: 0033:0x7f04b398d169 [ 753.000765][T16493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 753.000804][T16493] RSP: 002b:00007f04b17d4fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 753.000832][T16493] RAX: ffffffffffffffda RBX: 00007f04b3ba6080 RCX: 00007f04b398d169 [ 753.000855][T16493] RDX: 0000000000000000 RSI: ffffffffffffff10 RDI: 0000000000000000 [ 753.000874][T16493] RBP: 00007f04b3a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 753.000893][T16493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 753.000912][T16493] R13: 0000000000000000 R14: 00007f04b3ba6080 R15: 00007ffea9f4fbe8 [ 753.000955][T16493] [ 753.401570][T16498] svc: failed to register nfsdv3 RPC service (errno 111). [ 753.492701][T16498] svc: failed to register nfsaclv3 RPC service (errno 111). [ 755.112148][T16540] ptrace attach of "./syz-executor exec"[5836] was attempted by "./syz-executor exec"[16540] [ 757.412189][T16587] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2049'. [ 757.853220][T16587] FAULT_INJECTION: forcing a failure. [ 757.853220][T16587] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 757.966163][T16587] CPU: 1 UID: 0 PID: 16587 Comm: syz.2.2049 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 757.966216][T16587] Tainted: [U]=USER [ 757.966228][T16587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 757.966248][T16587] Call Trace: [ 757.966257][T16587] [ 757.966269][T16587] dump_stack_lvl+0x16c/0x1f0 [ 757.966324][T16587] should_fail_ex+0x50a/0x650 [ 757.966355][T16587] ? __pfx___might_resched+0x10/0x10 [ 757.966413][T16587] should_fail_alloc_page+0xe7/0x130 [ 757.966449][T16587] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 757.966516][T16587] ? register_lock_class+0xb1/0x1240 [ 757.966572][T16587] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 757.966651][T16587] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 757.966712][T16587] ? hlock_class+0x4e/0x130 [ 757.966747][T16587] ? __lock_acquire+0x15a9/0x3c40 [ 757.966808][T16587] ? hlock_class+0x4e/0x130 [ 757.966850][T16587] ? mark_lock+0xb5/0xc60 [ 757.966895][T16587] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 757.966953][T16587] ? policy_nodemask+0xea/0x4e0 [ 757.966990][T16587] alloc_pages_mpol+0x1fc/0x540 [ 757.967026][T16587] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 757.967064][T16587] ? find_held_lock+0x2d/0x110 [ 757.967105][T16587] alloc_pages_noprof+0x131/0x390 [ 757.967140][T16587] pte_alloc_one+0x20/0x390 [ 757.967194][T16587] __pte_alloc+0x6e/0x3d0 [ 757.967234][T16587] ? __pfx___pte_alloc+0x10/0x10 [ 757.967273][T16587] ? __pfx___might_resched+0x10/0x10 [ 757.967336][T16587] copy_page_range+0x3661/0x55e0 [ 757.967428][T16587] ? __pfx_copy_page_range+0x10/0x10 [ 757.967475][T16587] ? find_held_lock+0x2d/0x110 [ 757.967521][T16587] ? __pfx_lock_release+0x10/0x10 [ 757.967565][T16587] ? lock_acquire+0x2f/0xb0 [ 757.967611][T16587] ? copy_process+0x7c12/0x8c50 [ 757.967649][T16587] ? down_write+0x14e/0x200 [ 757.967685][T16587] ? up_write+0x1b2/0x520 [ 757.967742][T16587] copy_process+0x7ccb/0x8c50 [ 757.967806][T16587] ? __pfx_copy_process+0x10/0x10 [ 757.967846][T16587] ? __pfx___futex_wait+0x10/0x10 [ 757.967944][T16587] kernel_clone+0xfd/0x960 [ 757.967980][T16587] ? __pfx_kernel_clone+0x10/0x10 [ 757.968036][T16587] __do_sys_clone+0xcf/0x120 [ 757.968068][T16587] ? __pfx___do_sys_clone+0x10/0x10 [ 757.968121][T16587] ? rcu_is_watching+0x12/0xc0 [ 757.968169][T16587] do_syscall_64+0xcd/0x250 [ 757.968222][T16587] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 757.968268][T16587] RIP: 0033:0x7f1e63b8d169 [ 757.968294][T16587] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 757.968326][T16587] RSP: 002b:00007f1e64aaffe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 757.968358][T16587] RAX: ffffffffffffffda RBX: 00007f1e63da5fa0 RCX: 00007f1e63b8d169 [ 757.968379][T16587] RDX: 0000000000000000 RSI: ffffffffffffff10 RDI: 0000000000000000 [ 757.968400][T16587] RBP: 00007f1e63c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 757.968420][T16587] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 757.968439][T16587] R13: 0000000000000000 R14: 00007f1e63da5fa0 R15: 00007ffd587aba98 [ 757.968481][T16587] [ 759.537352][T16608] svc: failed to register nfsdv3 RPC service (errno 111). [ 759.657179][T16608] svc: failed to register nfsaclv3 RPC service (errno 111). [ 761.215430][T16641] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2061'. [ 761.464250][T16646] Invalid ELF header magic: != ELF [ 765.589964][T16688] Invalid ELF header magic: != ELF [ 765.943027][T16688] FAULT_INJECTION: forcing a failure. [ 765.943027][T16688] name failslab, interval 1, probability 0, space 0, times 0 [ 765.981218][T16688] CPU: 1 UID: 0 PID: 16688 Comm: syz.0.2074 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 765.981289][T16688] Tainted: [U]=USER [ 765.981303][T16688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 765.981329][T16688] Call Trace: [ 765.981339][T16688] [ 765.981350][T16688] dump_stack_lvl+0x16c/0x1f0 [ 765.981408][T16688] should_fail_ex+0x50a/0x650 [ 765.981439][T16688] ? fs_reclaim_acquire+0xae/0x150 [ 765.981487][T16688] should_failslab+0xc2/0x120 [ 765.981517][T16688] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 765.981566][T16688] ? find_held_lock+0x2d/0x110 [ 765.981598][T16688] ? sk_prot_alloc+0x60/0x2a0 [ 765.981640][T16688] sk_prot_alloc+0x60/0x2a0 [ 765.981678][T16688] sk_alloc+0x36/0xc20 [ 765.981726][T16688] smc_create+0x114/0x2a0 [ 765.981761][T16688] __sock_create+0x335/0x8d0 [ 765.981807][T16688] __sys_socket+0x14f/0x260 [ 765.981853][T16688] ? __pfx___sys_socket+0x10/0x10 [ 765.981895][T16688] ? rcu_is_watching+0x12/0xc0 [ 765.981935][T16688] __x64_sys_socket+0x72/0xb0 [ 765.981975][T16688] ? lockdep_hardirqs_on+0x7c/0x110 [ 765.982020][T16688] do_syscall_64+0xcd/0x250 [ 765.982072][T16688] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 765.982117][T16688] RIP: 0033:0x7f2fee78d169 [ 765.982141][T16688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 765.982172][T16688] RSP: 002b:00007f2fef5da038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 765.982201][T16688] RAX: ffffffffffffffda RBX: 00007f2fee9a5fa0 RCX: 00007f2fee78d169 [ 765.982221][T16688] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000002b [ 765.982240][T16688] RBP: 00007f2fee80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 765.982259][T16688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 765.982279][T16688] R13: 0000000000000000 R14: 00007f2fee9a5fa0 R15: 00007ffe786551b8 [ 765.982325][T16688] [ 766.936004][T16706] Invalid ELF header magic: != ELF [ 767.711687][T16708] FAULT_INJECTION: forcing a failure. [ 767.711687][T16708] name failslab, interval 1, probability 0, space 0, times 0 [ 767.784725][T16708] CPU: 0 UID: 0 PID: 16708 Comm: syz.0.2079 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 767.784779][T16708] Tainted: [U]=USER [ 767.784792][T16708] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 767.784811][T16708] Call Trace: [ 767.784820][T16708] [ 767.784833][T16708] dump_stack_lvl+0x16c/0x1f0 [ 767.784889][T16708] should_fail_ex+0x50a/0x650 [ 767.784934][T16708] ? fs_reclaim_acquire+0xae/0x150 [ 767.784980][T16708] ? lsm_blob_alloc+0x68/0x90 [ 767.785032][T16708] should_failslab+0xc2/0x120 [ 767.785064][T16708] __kmalloc_noprof+0xcb/0x510 [ 767.785124][T16708] lsm_blob_alloc+0x68/0x90 [ 767.785177][T16708] security_sk_alloc+0x30/0x270 [ 767.785227][T16708] sk_prot_alloc+0xfb/0x2a0 [ 767.785268][T16708] sk_alloc+0x36/0xc20 [ 767.785318][T16708] smc_create+0x114/0x2a0 [ 767.785353][T16708] __sock_create+0x335/0x8d0 [ 767.785419][T16708] __sys_socket+0x14f/0x260 [ 767.785463][T16708] ? __pfx___sys_socket+0x10/0x10 [ 767.785518][T16708] ? syscall_user_dispatch+0x7a/0x130 [ 767.785577][T16708] __x64_sys_socket+0x72/0xb0 [ 767.785621][T16708] do_syscall_64+0xcd/0x250 [ 767.785672][T16708] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 767.785719][T16708] RIP: 0033:0x7f2fee78d169 [ 767.785743][T16708] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 767.785775][T16708] RSP: 002b:00007f2fef5b9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 767.785806][T16708] RAX: ffffffffffffffda RBX: 00007f2fee9a6080 RCX: 00007f2fee78d169 [ 767.785827][T16708] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000002b [ 767.785846][T16708] RBP: 00007f2fee80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 767.785866][T16708] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 767.785885][T16708] R13: 0000000000000000 R14: 00007f2fee9a6080 R15: 00007ffe786551b8 [ 767.785929][T16708] [ 770.081068][ T5845] Bluetooth: hci3: command 0x0406 tx timeout [ 772.232713][T16784] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2085'. [ 774.445644][T16811] Invalid ELF header magic: != ELF [ 775.439548][T16828] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2095'. [ 781.496534][T16906] rnbd_client L202: map_device: Unknown parameter or missing value '(' [ 781.683863][T16906] .SR: entered promiscuous mode [ 785.182035][ T55] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 786.121672][T16986] rnbd_client L202: map_device: Unknown parameter or missing value '(' [ 786.307254][T16986] .SR: entered promiscuous mode [ 786.989673][T16989] Invalid ELF header magic: != ELF [ 787.440703][T16996] svc: failed to register nfsdv3 RPC service (errno 111). [ 787.483568][T16996] svc: failed to register nfsaclv3 RPC service (errno 111). [ 789.912710][T17035] rnbd_client L202: map_device: Unknown parameter or missing value '(' [ 790.027407][T17035] openvswitch: .SR: Dropping previously announced user features [ 790.470772][ T55] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 793.137087][ T55] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 793.154611][T17070] FAULT_INJECTION: forcing a failure. [ 793.154611][T17070] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 793.174869][T17070] CPU: 1 UID: 0 PID: 17070 Comm: syz.4.2139 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 793.174919][T17070] Tainted: [U]=USER [ 793.174930][T17070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 793.174950][T17070] Call Trace: [ 793.174959][T17070] [ 793.174971][T17070] dump_stack_lvl+0x16c/0x1f0 [ 793.175026][T17070] should_fail_ex+0x50a/0x650 [ 793.175058][T17070] ? page_copy_sane+0xcd/0x2d0 [ 793.175094][T17070] copy_page_from_iter_atomic+0x39f/0x1920 [ 793.175145][T17070] ? mark_buffer_dirty+0x397/0x420 [ 793.175197][T17070] ? __pfx_copy_page_from_iter_atomic+0x10/0x10 [ 793.175238][T17070] ? fault_in_readable+0x1a7/0x200 [ 793.175285][T17070] ? __pfx_fault_in_readable+0x10/0x10 [ 793.175330][T17070] ? I_BDEV+0xd/0x20 [ 793.175360][T17070] ? inode_to_bdi+0x9e/0x160 [ 793.175414][T17070] iomap_file_buffered_write+0x633/0xc70 [ 793.175468][T17070] ? __pfx_iomap_file_buffered_write+0x10/0x10 [ 793.175508][T17070] ? find_held_lock+0x2d/0x110 [ 793.175543][T17070] ? __pfx_inode_set_ctime_current+0x10/0x10 [ 793.175607][T17070] ? preempt_count_add+0x76/0x150 [ 793.175651][T17070] ? mnt_put_write_access_file+0xc1/0xf0 [ 793.175713][T17070] blkdev_write_iter+0x574/0xdd0 [ 793.175768][T17070] vfs_write+0x5ae/0x1150 [ 793.175816][T17070] ? __pfx_blkdev_write_iter+0x10/0x10 [ 793.175867][T17070] ? __pfx_vfs_write+0x10/0x10 [ 793.175911][T17070] ? do_futex+0x123/0x350 [ 793.175955][T17070] ? __fget_files+0x40/0x3a0 [ 793.176022][T17070] ksys_write+0x12b/0x250 [ 793.176068][T17070] ? __pfx_ksys_write+0x10/0x10 [ 793.176127][T17070] do_syscall_64+0xcd/0x250 [ 793.176182][T17070] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 793.176229][T17070] RIP: 0033:0x7f9fc198d169 [ 793.176255][T17070] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 793.176289][T17070] RSP: 002b:00007f9fc28aa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 793.176320][T17070] RAX: ffffffffffffffda RBX: 00007f9fc1ba5fa0 RCX: 00007f9fc198d169 [ 793.176343][T17070] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 793.176363][T17070] RBP: 00007f9fc1a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 793.176384][T17070] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 793.176404][T17070] R13: 0000000000000000 R14: 00007f9fc1ba5fa0 R15: 00007fff402ebc28 [ 793.176443][T17070] [ 793.420373][ C1] vkms_vblank_simulate: vblank timer overrun [ 794.047527][T17114] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2149'. [ 794.303680][T17120] FAULT_INJECTION: forcing a failure. [ 794.303680][T17120] name failslab, interval 1, probability 0, space 0, times 0 [ 794.303815][T17120] CPU: 0 UID: 0 PID: 17120 Comm: syz.1.2149 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 794.303863][T17120] Tainted: [U]=USER [ 794.303873][T17120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 794.303897][T17120] Call Trace: [ 794.303906][T17120] [ 794.303918][T17120] dump_stack_lvl+0x16c/0x1f0 [ 794.303974][T17120] should_fail_ex+0x50a/0x650 [ 794.304006][T17120] ? fs_reclaim_acquire+0xae/0x150 [ 794.304053][T17120] should_failslab+0xc2/0x120 [ 794.304084][T17120] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 794.304134][T17120] ? down_write+0x14e/0x200 [ 794.304163][T17120] ? vm_area_dup+0x21/0x2f0 [ 794.304220][T17120] vm_area_dup+0x21/0x2f0 [ 794.304269][T17120] copy_process+0x776f/0x8c50 [ 794.304328][T17120] ? __pfx_copy_process+0x10/0x10 [ 794.304359][T17120] ? __pfx___futex_wait+0x10/0x10 [ 794.304409][T17120] ? try_to_wake_up+0x158/0x1490 [ 794.304487][T17120] kernel_clone+0xfd/0x960 [ 794.304522][T17120] ? __pfx_kernel_clone+0x10/0x10 [ 794.304578][T17120] __do_sys_clone+0xcf/0x120 [ 794.304617][T17120] ? __pfx___do_sys_clone+0x10/0x10 [ 794.304671][T17120] ? rcu_is_watching+0x12/0xc0 [ 794.304719][T17120] do_syscall_64+0xcd/0x250 [ 794.304772][T17120] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 794.304819][T17120] RIP: 0033:0x7f04b398d169 [ 794.304845][T17120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 794.304877][T17120] RSP: 002b:00007f04b17d4fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 794.304909][T17120] RAX: ffffffffffffffda RBX: 00007f04b3ba6080 RCX: 00007f04b398d169 [ 794.304930][T17120] RDX: 0000000000000000 RSI: ffffffffffffff10 RDI: 0000000000000000 [ 794.304951][T17120] RBP: 00007f04b3a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 794.304971][T17120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 794.304990][T17120] R13: 0000000000000000 R14: 00007f04b3ba6080 R15: 00007ffea9f4fbe8 [ 794.305033][T17120] [ 794.558798][T17129] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 794.601850][T17125] svc: failed to register nfsdv3 RPC service (errno 111). [ 794.664284][T17125] svc: failed to register nfsaclv3 RPC service (errno 111). [ 796.949807][T17177] svc: failed to register nfsdv3 RPC service (errno 111). [ 797.001963][T17177] svc: failed to register nfsaclv3 RPC service (errno 111). [ 798.884340][T17189] batman_adv: Routing algorithm '' is not supported [ 799.545762][T17235] svc: failed to register nfsdv3 RPC service (errno 111). [ 799.604086][T17235] svc: failed to register nfsaclv3 RPC service (errno 111). [ 800.883880][T17262] svc: failed to register nfsdv3 RPC service (errno 111). [ 800.921885][T17262] svc: failed to register nfsaclv3 RPC service (errno 111). [ 801.189065][T17270] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2177'. [ 802.718402][T17268] batman_adv: Routing algorithm '' is not supported [ 803.048447][T17309] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2187'. [ 804.302300][T17319] svc: failed to register nfsdv3 RPC service (errno 111). [ 804.428294][T17319] svc: failed to register nfsaclv3 RPC service (errno 111). [ 805.915757][ T55] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 806.091009][ T55] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 807.626644][T17363] Invalid ELF header magic: != ELF [ 807.714945][T17362] openvswitch: .SR: Dropping previously announced user features [ 807.987971][T17366] svc: failed to register nfsdv3 RPC service (errno 111). [ 808.067916][T17366] svc: failed to register nfsaclv3 RPC service (errno 111). [ 809.013010][T17376] svc: failed to register nfsdv3 RPC service (errno 111). [ 809.028601][T17376] svc: failed to register nfsaclv3 RPC service (errno 111). [ 809.396076][T17388] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2203'. [ 812.158659][ T55] Bluetooth: hci1: unexpected event 0x1d length: 6 > 5 [ 812.507928][T17437] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2214'. [ 814.004955][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 814.011542][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 819.396904][T17540] openvswitch: .SR: Dropping previously announced user features [ 819.636628][T17542] Invalid ELF header magic: != ELF [ 819.785116][T17545] debugfs: Directory 'pty244' with parent 'caif_serial' already present! [ 820.010976][ T55] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 825.221660][T17616] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2239'. [ 831.760480][T17712] openvswitch: .SR: Dropping previously announced user features [ 835.676338][T17789] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2262'. [ 836.031121][T17796] openvswitch: .SR: Dropping previously announced user features [ 839.071022][T17842] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2276'. [ 839.306626][T17846] openvswitch: .SR: Dropping previously announced user features [ 842.190195][T17901] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2289'. [ 842.767215][T17910] openvswitch: .SR: Dropping previously announced user features [ 843.696935][T17925] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2294'. [ 844.198622][T17936] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2295'. [ 845.420705][T17957] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2300'. [ 845.773646][T17967] openvswitch: .SR: Dropping previously announced user features [ 849.320522][T18021] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2307'. [ 851.552230][T18049] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2313'. [ 851.802258][T18053] openvswitch: .SR: Dropping previously announced user features [ 852.020724][T18053] Invalid ELF header magic: != ELF [ 852.472062][T18066] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2317'. [ 854.370685][ T5845] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 854.391157][ T5845] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 854.403214][ T5845] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 854.411420][ T5845] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 854.421469][ T5845] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 854.428880][ T5845] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 854.781973][T16226] ------------[ cut here ]------------ [ 854.787578][T16226] ODEBUG: free active (active state 0) object: ffff888035115248 object type: timer_list hint: hci_devcd_timeout+0x0/0x2f0 [ 854.927949][T16226] WARNING: CPU: 1 PID: 16226 at lib/debugobjects.c:612 debug_print_object+0x1a2/0x2b0 [ 854.937790][T16226] Modules linked in: [ 854.941755][T16226] CPU: 1 UID: 0 PID: 16226 Comm: syz.1.1997 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 854.954166][T16226] Tainted: [U]=USER [ 854.957984][T16226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 854.968433][T16226] RIP: 0010:debug_print_object+0x1a2/0x2b0 [ 854.974369][T16226] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 48 8b 14 dd c0 6a d3 8b 41 56 4c 89 e6 48 c7 c7 40 5f d3 8b e8 ef 3c b2 fc 90 <0f> 0b 90 90 58 83 05 36 dd 9a 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d [ 854.994197][T16226] RSP: 0018:ffffc90005167768 EFLAGS: 00010286 [ 855.000357][T16226] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817a2269 [ 855.008595][T16226] RDX: ffff88802a5e9e00 RSI: ffffffff817a2276 RDI: 0000000000000001 [ 855.016791][T16226] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000 [ 855.024875][T16226] R10: 0000000000000001 R11: 0000000000000001 R12: ffffffff8bd365e0 [ 855.032974][T16226] R13: ffffffff8b6fba80 R14: ffffffff8a5fa530 R15: ffffc90005167878 [ 855.041301][T16226] FS: 0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 855.050276][T16226] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 855.057464][T16226] CR2: 000000000000f000 CR3: 0000000053fee000 CR4: 00000000003526f0 [ 855.065669][T16226] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 855.073775][T16226] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 855.081898][T16226] Call Trace: [ 855.085218][T16226] [ 855.088194][T16226] ? __warn+0xea/0x3c0 [ 855.092420][T16226] ? preempt_schedule_notrace+0x62/0xe0 [ 855.098029][T16226] ? debug_print_object+0x1a2/0x2b0 [ 855.103319][T16226] ? report_bug+0x3c0/0x580 [ 855.107890][T16226] ? handle_bug+0x54/0xa0 [ 855.112347][T16226] ? exc_invalid_op+0x17/0x50 [ 855.117131][T16226] ? asm_exc_invalid_op+0x1a/0x20 [ 855.122282][T16226] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 855.127814][T16226] ? __warn_printk+0x199/0x350 [ 855.132720][T16226] ? __warn_printk+0x1a6/0x350 [ 855.137560][T16226] ? debug_print_object+0x1a2/0x2b0 [ 855.142993][T16226] ? debug_print_object+0x1a1/0x2b0 [ 855.148258][T16226] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 855.153867][T16226] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 855.159747][T16226] debug_check_no_obj_freed+0x4b7/0x600 [ 855.165454][T16226] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 855.171775][T16226] ? kmem_cache_free+0x2e2/0x4d0 [ 855.176785][T16226] ? kfree_skbmem+0x1a4/0x1f0 [ 855.181645][T16226] kfree+0x29f/0x4d0 [ 855.185605][T16226] ? hci_release_dev+0x4d9/0x600 [ 855.190581][T16226] hci_release_dev+0x4d9/0x600 [ 855.195489][T16226] ? __pfx_hci_release_dev+0x10/0x10 [ 855.200970][T16226] ? rcu_is_watching+0x12/0xc0 [ 855.205769][T16226] ? kfree+0x260/0x4d0 [ 855.209882][T16226] bt_host_release+0x6a/0xb0 [ 855.214571][T16226] ? __pfx_bt_host_release+0x10/0x10 [ 855.219895][T16226] device_release+0xa1/0x240 [ 855.224576][T16226] kobject_put+0x1e4/0x5a0 [ 855.229049][T16226] ? __pfx_vhci_release+0x10/0x10 [ 855.234241][T16226] put_device+0x1f/0x30 [ 855.238436][T16226] vhci_release+0x81/0xf0 [ 855.242850][T16226] __fput+0x3ff/0xb70 [ 855.246991][T16226] task_work_run+0x14e/0x250 [ 855.251700][T16226] ? __pfx_task_work_run+0x10/0x10 [ 855.256869][T16226] do_exit+0xad8/0x2db0 [ 855.261173][T16226] ? get_signal+0x1d3e/0x26c0 [ 855.265965][T16226] ? __pfx_do_exit+0x10/0x10 [ 855.270661][T16226] ? cgroup_update_frozen_flag+0x107/0x210 [ 855.276671][T16226] do_group_exit+0xd3/0x2a0 [ 855.281381][T16226] get_signal+0x24ed/0x26c0 [ 855.286037][T16226] ? __pfx_hrtimer_nanosleep+0x10/0x10 [ 855.291701][T16226] ? __pfx_get_signal+0x10/0x10 [ 855.296625][T16226] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 855.301936][T16226] arch_do_signal_or_restart+0x90/0x7e0 [ 855.307547][T16226] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 855.313842][T16226] ? __pfx___x64_sys_clock_nanosleep+0x10/0x10 [ 855.320069][T16226] syscall_exit_to_user_mode+0x150/0x2a0 [ 855.325833][T16226] do_syscall_64+0xda/0x250 [ 855.330561][T16226] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 855.336613][T16226] RIP: 0033:0x7f04b39bfa25 [ 855.341314][T16226] Code: Unable to access opcode bytes at 0x7f04b39bf9fb. [ 855.348506][T16226] RSP: 002b:00007f04b17f5f80 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6 [ 855.357163][T16226] RAX: fffffffffffffdfc RBX: 00007f04b3ba5fa0 RCX: 00007f04b39bfa25 [ 855.365283][T16226] RDX: 00007f04b17f5fc0 RSI: 0000000000000000 RDI: 0000000000000000 [ 855.373357][T16226] RBP: 00007f04b3a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 855.381553][T16226] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 855.389667][T16226] R13: 0000000000000000 R14: 00007f04b3ba5fa0 R15: 00007ffea9f4fbe8 [ 855.398203][T16226] [ 855.401545][T16226] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 855.408833][T16226] CPU: 1 UID: 0 PID: 16226 Comm: syz.1.1997 Tainted: G U 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 855.421089][T16226] Tainted: [U]=USER [ 855.424925][T16226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 855.435104][T16226] Call Trace: [ 855.438390][T16226] [ 855.441359][T16226] dump_stack_lvl+0x3d/0x1f0 [ 855.445985][T16226] panic+0x71d/0x800 [ 855.449915][T16226] ? __pfx_panic+0x10/0x10 [ 855.454347][T16226] ? show_trace_log_lvl+0x29d/0x3d0 [ 855.459580][T16226] ? check_panic_on_warn+0x1f/0xb0 [ 855.464726][T16226] ? debug_print_object+0x1a2/0x2b0 [ 855.469948][T16226] check_panic_on_warn+0xab/0xb0 [ 855.474920][T16226] __warn+0xf6/0x3c0 [ 855.478829][T16226] ? preempt_schedule_notrace+0x62/0xe0 [ 855.484411][T16226] ? debug_print_object+0x1a2/0x2b0 [ 855.489631][T16226] report_bug+0x3c0/0x580 [ 855.493997][T16226] handle_bug+0x54/0xa0 [ 855.498190][T16226] exc_invalid_op+0x17/0x50 [ 855.502732][T16226] asm_exc_invalid_op+0x1a/0x20 [ 855.507616][T16226] RIP: 0010:debug_print_object+0x1a2/0x2b0 [ 855.513470][T16226] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 48 8b 14 dd c0 6a d3 8b 41 56 4c 89 e6 48 c7 c7 40 5f d3 8b e8 ef 3c b2 fc 90 <0f> 0b 90 90 58 83 05 36 dd 9a 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d [ 855.533105][T16226] RSP: 0018:ffffc90005167768 EFLAGS: 00010286 [ 855.539212][T16226] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817a2269 [ 855.547201][T16226] RDX: ffff88802a5e9e00 RSI: ffffffff817a2276 RDI: 0000000000000001 [ 855.555195][T16226] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000 [ 855.563183][T16226] R10: 0000000000000001 R11: 0000000000000001 R12: ffffffff8bd365e0 [ 855.571168][T16226] R13: ffffffff8b6fba80 R14: ffffffff8a5fa530 R15: ffffc90005167878 [ 855.579163][T16226] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 855.584664][T16226] ? __warn_printk+0x199/0x350 [ 855.589442][T16226] ? __warn_printk+0x1a6/0x350 [ 855.594232][T16226] ? debug_print_object+0x1a1/0x2b0 [ 855.599467][T16226] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 855.604970][T16226] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 855.610812][T16226] debug_check_no_obj_freed+0x4b7/0x600 [ 855.616410][T16226] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 855.622537][T16226] ? kmem_cache_free+0x2e2/0x4d0 [ 855.627507][T16226] ? kfree_skbmem+0x1a4/0x1f0 [ 855.632223][T16226] kfree+0x29f/0x4d0 [ 855.636141][T16226] ? hci_release_dev+0x4d9/0x600 [ 855.641113][T16226] hci_release_dev+0x4d9/0x600 [ 855.645912][T16226] ? __pfx_hci_release_dev+0x10/0x10 [ 855.651219][T16226] ? rcu_is_watching+0x12/0xc0 [ 855.655996][T16226] ? kfree+0x260/0x4d0 [ 855.660087][T16226] bt_host_release+0x6a/0xb0 [ 855.664700][T16226] ? __pfx_bt_host_release+0x10/0x10 [ 855.670016][T16226] device_release+0xa1/0x240 [ 855.674653][T16226] kobject_put+0x1e4/0x5a0 [ 855.679100][T16226] ? __pfx_vhci_release+0x10/0x10 [ 855.684222][T16226] put_device+0x1f/0x30 [ 855.688404][T16226] vhci_release+0x81/0xf0 [ 855.692786][T16226] __fput+0x3ff/0xb70 [ 855.696791][T16226] task_work_run+0x14e/0x250 [ 855.701406][T16226] ? __pfx_task_work_run+0x10/0x10 [ 855.706569][T16226] do_exit+0xad8/0x2db0 [ 855.710742][T16226] ? get_signal+0x1d3e/0x26c0 [ 855.715492][T16226] ? __pfx_do_exit+0x10/0x10 [ 855.720097][T16226] ? cgroup_update_frozen_flag+0x107/0x210 [ 855.725951][T16226] do_group_exit+0xd3/0x2a0 [ 855.730490][T16226] get_signal+0x24ed/0x26c0 [ 855.735048][T16226] ? __pfx_hrtimer_nanosleep+0x10/0x10 [ 855.740525][T16226] ? __pfx_get_signal+0x10/0x10 [ 855.745406][T16226] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 855.750637][T16226] arch_do_signal_or_restart+0x90/0x7e0 [ 855.756200][T16226] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 855.762453][T16226] ? __pfx___x64_sys_clock_nanosleep+0x10/0x10 [ 855.768639][T16226] syscall_exit_to_user_mode+0x150/0x2a0 [ 855.774310][T16226] do_syscall_64+0xda/0x250 [ 855.778858][T16226] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 855.784778][T16226] RIP: 0033:0x7f04b39bfa25 [ 855.789203][T16226] Code: Unable to access opcode bytes at 0x7f04b39bf9fb. [ 855.796226][T16226] RSP: 002b:00007f04b17f5f80 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6 [ 855.804665][T16226] RAX: fffffffffffffdfc RBX: 00007f04b3ba5fa0 RCX: 00007f04b39bfa25 [ 855.812647][T16226] RDX: 00007f04b17f5fc0 RSI: 0000000000000000 RDI: 0000000000000000 [ 855.820629][T16226] RBP: 00007f04b3a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 855.828615][T16226] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 855.836598][T16226] R13: 0000000000000000 R14: 00007f04b3ba5fa0 R15: 00007ffea9f4fbe8 [ 855.844593][T16226] [ 855.847949][T16226] Kernel Offset: disabled [ 855.852285][T16226] Rebooting in 86400 seconds..