last executing test programs: 8.651511726s ago: executing program 0 (id=1550): unshare$auto(0x40000080) mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r0 = socket(0xa, 0x1, 0x100) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/net/bond0/bonding/primary_reselect\x00', 0x1e2142, 0x0) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) select$auto(0x800, 0x0, 0x0, &(0x7f0000000580)={[0xe83, 0x8, 0xfffffffffffffc01, 0x0, 0xfff9, 0x9, 0x14, 0x7fffffff, 0x8, 0x3fe, 0x4, 0x3, 0x5, 0x2, 0x5]}, 0x0) sendmmsg$auto(r2, &(0x7f00000003c0)={{0x0, 0x8f, 0x0, 0x5, &(0x7f0000000380), 0x100, 0x8}, 0x1a}, 0x3, 0x6) write$auto(r2, &(0x7f0000000200)='/de\xef\xe7audio1\x00', 0xa3d9) sendfile$auto(r1, r1, 0x0, 0x7fff) unshare$auto(0xa4) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x20b42, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r3, 0xc0045002, 0x0) r4 = socket(0x10, 0x2, 0xc) unshare$auto(0x40000080) r5 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) r6 = syz_genetlink_get_family_id$auto_nlctrl(0x0, 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='q\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="4cb245184f86db"], 0xf8}}, 0x10004010) sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x64f4040a6ccda016}, 0xc, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="fffffffd", @ANYRES16=r6, @ANYBLOB="00012cbd7000fcdbdf250a00000005000200000000000600010061c5000008000a000c000000060001005d00000008000a001803000006000100b438000008000a000100010008000a000200000008000a0006000000"], 0x5c}, 0x1, 0x0, 0x0, 0x220088c0}, 0x40) ioctl$auto_SNDCTL_SEQ_GETINCOUNT(r5, 0x80045105, &(0x7f0000000300)="48c9c499a9a55fc2a836723fb70537445460c9f0892a287c9eb350e6b7502695a40747d57c6d503a9321dfb65dfcdd31e011f135fea8b10f802afe673cf64aa66c9f61a38fcb31374ce2e32ab0609681ba696929e2d96bb3682b03969701b37156ff8b4721ea5f896578a106c1f2650052e1d1590d649f180185beeb9d020a557604128a5fd3fffe") ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r3, 0xc004500a, &(0x7f00000003c0)) syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x19, 0x4, 0x4, 0x800efc, 0x100000001, 0x80000c, 0x66b, 0x4, 0xfffffffffffffffa}, 0x6f4) mmap$auto(0x6, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000002) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) r7 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000380)='/proc/tty/drivers\x00', 0x2000, 0x0) read$auto(r7, &(0x7f0000000000)='/proc/scsi/sg/devices\x00', 0xc9e3) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000780)='/proc/self/net/rpc/auth.rpcsec.init/channel\x00', 0x441, 0x0) 6.973184842s ago: executing program 0 (id=1555): socket(0x2, 0x801, 0x100) mmap$auto(0x0, 0xdb33, 0xe2, 0xeb1, 0x405, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x1, 0x8, 0x84) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x1ff, 0xdf, 0x200000810, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0x200007, 0x19) madvise$auto(0x0, 0x2003f0, 0x15) write$auto(0x3, 0x0, 0x100082) io_uring_setup$auto(0x6, 0x0) madvise$auto(0x0, 0x200007, 0x19) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x66ba01, 0x0) socket(0xa, 0x3, 0x3a) r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000001080)='/dev/v4l-touch5\x00', 0x2040, 0x0) read$auto_v4l2_fops_v4l2_dev(r0, &(0x7f00000010c0)=""/22, 0x16) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x22442, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) bind$auto(0xffffffffffffffff, 0x0, 0x0) syz_genetlink_get_family_id$auto_nlctrl(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x2000c, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, 0x0, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x2, 0x1, 0x0) sysfs$auto(0x2, 0x0, 0x0) epoll_ctl$auto(0x5, 0x1, 0xffffffffffffffff, 0x0) write$auto(0x3, 0x0, 0xfffffdf4) rseq$auto(&(0x7f0000000080)={0x9, 0x8, 0x0, 0x7, 0xffffffff, 0x2}, 0x7ffd, 0xfffffff4, 0x8) write$auto(0x3, 0x0, 0x100082) 6.187920702s ago: executing program 2 (id=1559): mmap$auto(0x0, 0x480008, 0x100000000df, 0x9b72, 0x2, 0x8000) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto(r0, 0x4004550c, r0) 5.636515619s ago: executing program 0 (id=1560): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) unshare$auto(0x8000000) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/kernel/watchdog_cpumask\x00', 0x141241, 0x0) r1 = socket(0x2, 0x1, 0x106) setsockopt$auto_SO_DETACH_REUSEPORT_BPF(r1, 0xfffff001, 0x44, &(0x7f0000000100)='ethtool\x00', 0x5) setsockopt$auto(r1, 0x1, 0x21, 0x0, 0x9) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/net/teql0/statistics/rx_dropped\x00', 0x80000, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram12/queue/io_poll_delay\x00', 0x80000, 0x0) read$auto(r3, 0x0, 0x45b9) read$auto(r2, 0x0, 0x9) write$auto(r0, 0x0, 0x3) r4 = socket(0x10, 0x2, 0x0) r5 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC1D1c\x00', 0x1, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_HW_REFINE_OLD2(r5, 0xc1004110, &(0x7f0000000100)={0x38a, [0xc, 0x4, 0x7d], [{0x80000001, 0x400, 0x0, 0x0, 0x1}, {0x3ff, 0x7, 0x1, 0x0, 0x0, 0x1}, {0x7, 0x7, 0x1, 0x0, 0x1, 0x1}, {0x100, 0x4, 0x1, 0x0, 0x1, 0x1}, {0x1, 0x8, 0x1, 0x0, 0x1}, {0x3ff, 0x3, 0x1, 0x1, 0x1}, {0x1b2, 0x2, 0x1, 0x1, 0x1}, {0x4, 0x1, 0x1, 0x1, 0x1, 0x1}, {0x71c8717a, 0x38c8, 0x1, 0x0, 0x1}, {0x45, 0xffffffff, 0x0, 0x1, 0x1, 0x1}, {0x34, 0x7f, 0x0, 0x1}, {0x6, 0x4, 0x1}], 0x9, 0x2, 0xffffffc0, 0x8000, 0x7fff, 0xfffffffc, 0x3, "f8b6e453edf593cff92867c194dfa7ea77769d6eb62b13f03f12710d432e0654ed23caa4249660993299d8d135b37176c1e0c560dad19a2c99017cde053077f3"}) r6 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_WOL_SET(r4, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f00000003c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010027bd7000fcdbdf250a0000ff15000000140001"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'vcan0\x00'}) close_range$auto(0x2, 0x8, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x801, 0x100) connect$auto(0x3, &(0x7f0000000500)=@in={0x2, 0x0, @local}, 0x55) sendfile$auto(0x1, 0x3, 0x0, 0xc01) shmget$auto(0x0, 0xffffffffff000, 0x80) pivot_root$auto(&(0x7f0000000000)='\x00', &(0x7f0000000040)='^)\x00') openat$auto_trace_fops_debugfs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) close_range$auto(r7, r1, 0x2) munmap$auto(0x7ffc, 0x2) 5.39019718s ago: executing program 0 (id=1563): r0 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000040), 0x480, 0x0) openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/buffer_size_kb\x00', 0x40200, 0x0) ioctl$auto_BTRFS_IOC_SCAN_DEV(r0, 0x50009404, 0x0) syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000b80), 0xffffffffffffffff) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x600, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/netfs/volumes\x00', 0x0, 0x0) read$auto_proc_iter_file_ops_compat_inode(r1, &(0x7f0000000180)=""/250, 0xfa) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r2 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0) io_uring_setup$auto(0xc, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r2, 0x403c6f2b, 0x0) readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x8}, 0x8) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) read$auto(r2, 0x0, 0x1f40) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x3, 0x2020009, 0x3, 0x200000000000eb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x5, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x0, 0x0) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x1, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) clock_adjtime$auto(0x0, 0x0) mmap$auto(0x200, 0xe2, 0x4, 0x9b7f, 0xffffffffffffffff, 0x28000) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) 5.012917452s ago: executing program 2 (id=1565): mmap$auto(0x0, 0x4020009, 0x6, 0x14, 0xffffffffffffffff, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x11, 0x80003, 0x300) sendfile$auto(0x1, r0, 0x0, 0x8fb5) dup2$auto(0x0, 0x3) sysfs$auto(0x1000006, 0x1, 0x0) r1 = fcntl$auto(0x3, 0x4, 0xa553) ioctl$auto(0x3, 0x541b, r1) r2 = openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x42006, 0x0) write$auto(0xffffffffffffffff, 0x0, 0xc9c8) r3 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0) ioctl$auto_CEC_S_MODE(r3, 0x40046109, &(0x7f0000002c40)=0xd2) ioctl$auto_UDMABUF_CREATE(r1, 0x40187542, &(0x7f00000001c0)={r2, 0x476bfb01, 0xffffffff, 0x1ef4}) close_range$auto(r3, r4, 0x2) r5 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x3, 0x6, 0x0, 0x10000, 0x1, 0x2, {0x2100000000, 0x10000}, 0x3, 0x6, 0xffffffffffffffdd, 0x1008000, 0x0, 0x80000004, 0x83, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x1800}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r6 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r6, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) fsopen$auto(&(0x7f00000000c0)='/dev/net/tun\x00', 0x1) mmap$auto(0x0, 0x4, 0xdf, 0x9b72, 0x2, 0x8000) lseek$auto(r5, 0x7f, 0x2a21) sysfs$auto(0x2, 0x1, 0x0) r7 = fsopen$auto(0x0, 0x1) fsconfig$auto(r7, 0x8, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) r8 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) rseq$auto(&(0x7f0000000080)={0x9, 0x8, 0x0, 0x7, 0xffffffff, 0x2, "24229ba6405fe4fc8b"}, 0x7ffd, 0xfffffff4, 0x6) sendmsg$auto_IPVS_CMD_GET_SERVICE(r8, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x80800) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) 4.47759278s ago: executing program 1 (id=1567): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff) r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r1, 0x4, 0x7ff) ptrace$auto_PTRACE_SET_THREAD_AREA(0x1a, r1, 0x4, 0x8) sendmsg$auto_NL80211_CMD_GET_STATION(0xffffffffffffffff, &(0x7f0000001300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100a400}, 0xc, &(0x7f00000012c0)={&(0x7f00000000c0)={0xffffffffffffffb4, r0, 0x20, 0x70bd25, 0x25dfdbfd, {}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x6}, @NL80211_ATTR_TIMEOUT={0x8, 0x110, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x2400c041}, 0x20000080) 3.768623446s ago: executing program 1 (id=1569): mmap$auto(0x0, 0x480008, 0x100080000df, 0xfffffffffffffffc, 0x2, 0x3) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000d40), r0) sendmsg$auto_NFSD_CMD_THREADS_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, r1, 0x1, 0x70bd2d, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x400c801}, 0x4) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = socket(0xa, 0x6, 0x0) listen$auto(r2, 0x26da) close_range$auto(0x2, r2, 0x0) io_uring_setup$auto(0x1, 0x0) r3 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x20401, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x4604, 0x0) r4 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto(r4, 0x41045508, r4) 3.716945653s ago: executing program 2 (id=1570): r0 = socket(0xa, 0x1, 0x84) setreuid$auto(0x40, 0xa) futimesat$auto(0xda, 0x0, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) uname$auto(0x0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x11, 0x3, 0x2) r2 = getsockopt$auto(r1, 0x107, 0x8, 0x0, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000000380), 0xffffffffffffffff) sendmsg$auto_OVS_METER_CMD_GET(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000003c0)={0x1c, r3, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@OVS_METER_ATTR_MAX_METERS={0x8, 0x7, 0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x200c804) setsockopt$auto(0x3, 0x10000000084, 0x85, 0x0, 0x90) connect$auto(r0, &(0x7f0000000080)=@in={0x2, 0x3, @private=0xa010100}, 0x1) 3.533557882s ago: executing program 2 (id=1571): madvise$auto(0x0, 0xffffffffffff0001, 0x15) (fail_nth: 8) 3.51098849s ago: executing program 1 (id=1572): r0 = socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) setsockopt$auto(0x3, 0x8000000000000006, 0x22, 0x0, 0x7ffffc) sendfile$auto(r0, r0, &(0x7f0000000000)=0xfff, 0x8) madvise$auto(0x0, 0xffffffffffff0001, 0x15) 3.250226504s ago: executing program 2 (id=1573): close_range$auto(0x2, 0xa, 0x0) unshare$auto(0x40000080) r0 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000100), 0x105240, 0x0) r1 = socket(0x11, 0x80003, 0x300) sendfile$auto(0x1, r1, 0x0, 0x8fb5) dup2$auto(0x0, 0x3) sysfs$auto(0x1000006, 0x1, 0x0) fcntl$auto(0x3, 0x4, 0xa553) ioctl$auto(0x3, 0x541b, 0x10000000000402) open(0x0, 0x2002, 0x1) io_uring_register$auto_IORING_REGISTER_BUFFERS2(r0, 0xf, &(0x7f0000000040)="a1268fd1841f559ccdf171635cdc7127e3be822fe5c9c26488d9f3e51947a16d1d29d3b5b9419bd8a8ae26939d1b11fdfdf4ee6c6db722d23bec692f09f88935408751e4613fdf5a5d6e7522849735bf0d87fd7106d8a1e656aff8d8f6c33fceb9", 0x10) prctl$auto(0x23, 0x3, 0x2009, 0x0, 0x0) socket(0xa, 0x6, 0x0) mmap$auto(0x0, 0x202000d, 0x8000000002, 0xeb1, 0xffffffffffffffff, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/locks\x00', 0x0, 0x0) read$auto_proc_iter_file_ops_compat_inode(r2, &(0x7f0000000180)=""/250, 0xfa) unshare$auto(0x40000080) fcntl$auto(0x0, 0x407, 0x100000) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x0) mlock$auto(0x4, 0x0) unshare$auto(0x40000080) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='V'], 0x1ac}}, 0x40000) r3 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000002c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 3.215173189s ago: executing program 3 (id=1574): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x24, 0x0, 0x200, 0x70bd29, 0x25dfdbfb, {}, [@NFSD_A_SERVER_LEASETIME={0x8}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00211459a600fbdbdf250200000008000300000000001b0004"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000180), r0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_RADAR_DETECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x1c, r3, 0x1, 0x70bd25, 0x25dfdbfc, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24008000}, 0x20000840) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'erspan0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'netdevsim0\x00', 0x0}) r9 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r10}, 0x6a) r11 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r12}, 0x6a) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000000500)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000380)={0x110, r1, 0x100, 0x70bd26, 0x2, {}, [@ETHTOOL_A_CHANNELS_HEADER={0x64, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x9}]}, @ETHTOOL_A_CHANNELS_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}, @ETHTOOL_A_CHANNELS_HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}]}, @ETHTOOL_A_CHANNELS_HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xda}]}]}, 0x110}, 0x1, 0x0, 0x0, 0x4}, 0x40881) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x4, 0x7ff, 0x8, 0xeb1, 0x401, 0x200) sysfs$auto(0x2, 0xd, 0x0) r13 = fsopen$auto(0x0, 0x1) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) fsconfig$auto(r13, 0x3, &(0x7f0000000000)='Q**\x00', &(0x7f0000000040)="2b24c0bfbf", 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x1ac}}, 0x40000) io_uring_setup$auto(0x1, 0x0) 3.002200065s ago: executing program 3 (id=1575): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000040), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_macsec(&(0x7f00000000c0), 0xffffffffffffffff) r4 = geteuid() sendmsg$auto_MACSEC_CMD_UPD_RXSC(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x28, r3, 0x201, 0x70bd2a, 0x25dfdbfe, {}, [@MACSEC_ATTR_RXSC_CONFIG={0xc, 0x2, 0x0, 0x1, [@typed={0x8, 0x1, 0x0, 0x0, @uid=r4}]}, @MACSEC_ATTR_IFINDEX={0x8}]}, 0x28}}, 0x48010) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4040804) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0xb, 0x6, 0x76402f57, 0x0, 0x0, 0x0, 0x4, 0x40000000000f, 0x400, 0x40000402, 0x4, 0x9, 0xffffffff7fffffff, 0x9, 0x7, 0x20000010010b}) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) r6 = gettid() r7 = set_tid_address$auto(&(0x7f00000001c0)=0x1) msgctl$auto_MSG_STAT(0xc, 0xb, &(0x7f0000000200)={{0x13b, r4, 0xee01, 0x7, 0xa, 0xc, 0x6}, &(0x7f0000000140)=0x4, &(0x7f0000000180)=0x6, 0x0, 0x7, 0x6, 0x6b9a, 0x100000001, 0x5, 0x2, 0x9, @inferred=r6, @inferred=r7}) msgctl$auto_MSG_INFO(0x0, 0xc, &(0x7f0000000100)={{0x2, 0xee01, 0xffffffffffffffff, 0xb, 0xfffffff9, 0x0, 0xfff7}, &(0x7f0000000080)=0x9, &(0x7f00000000c0)=0x5, 0xf, 0x8000, 0x5, 0x4, 0x5, 0xe, 0x9, 0x1, @raw=0x7ff, @inferred=0xffffffffffffffff}) sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_GOV(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x7c, r1, 0x800, 0x70bd25, 0x25dfdbfd, {}, [@THERMAL_GENL_ATTR_CPU_CAPABILITY_PERFORMANCE={0x8, 0x16, 0x8}, @THERMAL_GENL_ATTR_CDEV_NAME={0x14, 0x12, 'vxcan1\x00'}, @THERMAL_GENL_ATTR_CDEV_MAX_STATE={0x8, 0x11, 0x4}, @THERMAL_GENL_ATTR_CDEV={0x3c, 0xe, 0x0, 0x1, [@typed={0x14, 0xd, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x3d}}, @typed={0x8, 0x34, 0x0, 0x0, @uid=r4}, @nested={0x14, 0x33, 0x0, 0x1, [@typed={0x8, 0x14d, 0x0, 0x0, @uid=r8}, @typed={0x8, 0xb2, 0x0, 0x0, @pid=0xffffffffffffffff}]}, @typed={0x8, 0x2e, 0x0, 0x0, @u32=0x3}]}, @THERMAL_GENL_ATTR_THRESHOLD_DIRECTION={0x8, 0x1a, 0x10}]}, 0x7c}, 0x1, 0x0, 0x0, 0x80}, 0x100080d4) socket(0x1d, 0x2, 0x7) 2.738924783s ago: executing program 3 (id=1576): mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) unshare$auto(0x40000080) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x48041, 0x0) write$auto(r0, 0x0, 0x7) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) r1 = openat$dir(0xffffffffffffff9c, 0x0, 0x280000, 0x100) r2 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$auto_SO_PEERNAME(r1, 0x4, 0x1c, 0x0, &(0x7f0000000100)=0x3) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x441, 0x0) unshare$auto(0x20000) r3 = syz_open_procfs$namespace(r2, 0x0) setns(r3, 0x0) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000180)='nfsd\x00', 0x8, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/graphics/fbcon/cursor_blink\x00', 0xa001, 0x0) write$auto(r4, 0x0, 0xd4d0) 2.675444289s ago: executing program 1 (id=1577): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) clone$auto(0x81000005, 0x6, 0xfffffffffffffffd, 0xffffffffffffffff, 0x80000001) move_pages$auto(0x0, 0xd0, 0x0, &(0x7f0000001140), 0x0, 0x2) r0 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x189002, 0x0) writev$auto(r0, &(0x7f0000000080)={&(0x7f0000000280)="7bae87e2a8", 0x107}, 0x4) openat$auto_binder_features_fops_(0xffffffffffffff9c, &(0x7f0000000040)='/dev/binderfs/features/oneway_spam_detection\x00', 0x608000, 0x0) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, 0x0, 0x0, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/fs/orangefs/stats/writes\x00', 0x101040, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000300)=""/6, 0x6) r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000005c0), 0x2000, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_STOP(r2, 0x54a1, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff) fcntl$auto_F_GETOWNER_UIDS(r2, 0x11, 0x8) write$auto_configfs_file_operations_configfs_internal(0xffffffffffffffff, &(0x7f0000000140)="8e", 0x1) mmap$auto(0x0, 0x40009, 0x1ff, 0x9b72, 0x7, 0x28000) socket(0x22, 0x2, 0x4) mmap$auto(0x0, 0xc, 0x800000000df, 0x9b7f, r2, 0x7ffd) getrandom$auto(0x0, 0x6000000, 0x3) semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0) close_range$auto(0x2, 0x8, 0x0) 1.963769095s ago: executing program 3 (id=1578): unshare$auto(0x40000080) mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r0 = socket(0xa, 0x1, 0x100) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/net/bond0/bonding/primary_reselect\x00', 0x1e2142, 0x0) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) select$auto(0x800, 0x0, 0x0, &(0x7f0000000580)={[0xe83, 0x8, 0xfffffffffffffc01, 0x0, 0xfff9, 0x9, 0x14, 0x7fffffff, 0x8, 0x3fe, 0x4, 0x3, 0x5, 0x2, 0x5]}, 0x0) sendmmsg$auto(r2, &(0x7f00000003c0)={{0x0, 0x8f, 0x0, 0x5, &(0x7f0000000380), 0x100, 0x8}, 0x1a}, 0x3, 0x6) write$auto(r2, &(0x7f0000000200)='/de\xef\xe7audio1\x00', 0xa3d9) sendfile$auto(r1, r1, 0x0, 0x7fff) unshare$auto(0xa4) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20b42, 0x0) r3 = socket(0x10, 0x2, 0xc) write$auto(0xffffffffffffffff, &(0x7f0000000200)='/de\xef\xe7audio1\x00', 0xa3d9) r4 = syz_genetlink_get_family_id$auto_nlctrl(0x0, 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='q\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="4cb245184f86db27df250a000a"], 0xf8}}, 0x10004010) sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x64f4040a6ccda016}, 0xc, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="fffffffd", @ANYRES16=r4, @ANYBLOB="00012cbd7000fcdbdf250a00000005000200000000000600010061c5000008000a000c000000060001005d00000008000a001803000006000100b438000008000a000100010008000a000200000008000a0006000000"], 0x5c}, 0x1, 0x0, 0x0, 0x220088c0}, 0x40) ioctl$auto_SNDCTL_SEQ_GETINCOUNT(0xffffffffffffffff, 0x80045105, &(0x7f0000000300)="48c9c499a9a55fc2a836723fb70537445460c9f0892a287c9eb350e6b7502695a40747d57c6d503a9321dfb65dfcdd31e011f135fea8b10f802afe673cf64aa66c9f61a38fcb31374ce2e32ab0609681ba696929e2d96bb3682b03969701b37156ff8b4721ea5f896578a106c1f2650052e1d1590d649f180185beeb9d020a557604128a5fd3fffe") mmap$auto(0x6, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000002) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000380)='/proc/tty/drivers\x00', 0x2000, 0x0) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000780)='/proc/self/net/rpc/auth.rpcsec.init/channel\x00', 0x441, 0x0) write$auto(r5, &(0x7f0000000000)='\\@-,@n', 0x60) 1.895692796s ago: executing program 1 (id=1579): read$auto(0xffffffffffffffff, 0x0, 0x20) r0 = prctl$auto_SECCOMP_MODE_STRICT(0xe4, 0x1, 0xffffffffffffffff, 0xffffffff, 0x8) writev$auto(r0, 0x0, 0x80000000) r1 = bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/mpls/platform_labels\x00', 0x202, 0x0) pwrite64$auto(r2, &(0x7f0000000040)='/proc/sys/user/max_fanotify_g\b\x00\x00\x00s@', 0x7, 0x7) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x2001, 0x0) mq_getsetattr$auto(r1, &(0x7f0000000140)={0x7ffffffe, 0x7, 0x7, 0x6}, 0x0) writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000340), 0x7111}, 0x8) 1.856257698s ago: executing program 0 (id=1580): r0 = socket(0x2, 0x5, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) listen$auto(0x3, 0x8d) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x4, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) select$auto(0x7ff, 0x0, 0x0, 0x0, &(0x7f0000000040)={0x6e6f, 0x10}) r3 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x3, 0x3}, 0x18, 0x0) bpf$auto(0x0, &(0x7f00000003c0)=@task_fd_query={0x5, r3, 0x7ff, 0x3, 0x0, 0x0, r3, 0x800000000000000}, 0x6f4) close_range$auto(0x2, 0x8, 0x0) 1.097370647s ago: executing program 2 (id=1581): unshare$auto(0x40000080) mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r0 = socket(0xa, 0x1, 0x100) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/net/bond0/bonding/primary_reselect\x00', 0x1e2142, 0x0) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) select$auto(0x800, 0x0, 0x0, &(0x7f0000000580)={[0xe83, 0x8, 0xfffffffffffffc01, 0x0, 0xfff9, 0x9, 0x14, 0x7fffffff, 0x8, 0x3fe, 0x4, 0x3, 0x5, 0x2, 0x5]}, 0x0) sendmmsg$auto(r2, &(0x7f00000003c0)={{0x0, 0x8f, 0x0, 0x5, &(0x7f0000000380), 0x100, 0x8}, 0x1a}, 0x3, 0x6) write$auto(r2, &(0x7f0000000200)='/de\xef\xe7audio1\x00', 0xa3d9) sendfile$auto(r1, r1, 0x0, 0x7fff) unshare$auto(0xa4) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x20b42, 0x0) r3 = socket(0x10, 0x2, 0xc) write$auto(0xffffffffffffffff, 0x0, 0xa3d9) r4 = syz_genetlink_get_family_id$auto_nlctrl(0x0, 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='q\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="4cb245184f86db27df250a000a"], 0xf8}}, 0x10004010) sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x64f4040a6ccda016}, 0xc, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="fffffffd", @ANYRES16=r4, @ANYBLOB="00012cbd7000fcdbdf250a00000005000200000000000600010061c5000008000a000c000000060001005d00000008000a001803000006000100b438000008000a000100010008000a000200000008000a0006000000"], 0x5c}, 0x1, 0x0, 0x0, 0x220088c0}, 0x40) ioctl$auto_SNDCTL_SEQ_GETINCOUNT(0xffffffffffffffff, 0x80045105, &(0x7f0000000300)="48c9c499a9a55fc2a836723fb70537445460c9f0892a287c9eb350e6b7502695a40747d57c6d503a9321dfb65dfcdd31e011f135fea8b10f802afe673cf64aa66c9f61a38fcb31374ce2e32ab0609681ba696929e2d96bb3682b03969701b37156ff8b4721ea5f896578a106c1f2650052e1d1590d649f180185beeb9d020a557604128a5fd3fffe") mmap$auto(0x6, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000002) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000380)='/proc/tty/drivers\x00', 0x2000, 0x0) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000780)='/proc/self/net/rpc/auth.rpcsec.init/channel\x00', 0x441, 0x0) write$auto(r5, &(0x7f0000000000)='\\@-,@n', 0x60) 821.589123ms ago: executing program 3 (id=1582): madvise$auto(0x3000000, 0xffffffffffff0005, 0x17) 643.177209ms ago: executing program 3 (id=1583): r0 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000080), 0x2100, 0x0) readv$auto(r0, &(0x7f0000000700)={0x0, 0x9}, 0x3) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) mmap$auto(0x5, 0x8, 0x7, 0x10, r1, 0x5) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/nbd4/queue/scheduler\x00', 0xe0281, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f00000000c0)='-7', 0x2) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) r3 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card2\x00', 0x40, 0x0) ioctl$auto(r3, 0x90006440, 0xc35) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) r4 = socket(0x2b, 0x1, 0x1) r5 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r4, 0x2) sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r4, 0x0, 0x20000001) mmap$auto(0x0, 0x400005, 0x400e3, 0x9b72, r4, 0x7) kill$auto(0x0, 0x21) close_range$auto(0x0, 0xfffffffffffff000, 0x2) mmap$auto(0x0, 0xff, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r6 = socket(0x21, 0x3, 0x1) setsockopt$auto(r6, 0x6, 0x24, 0x0, 0x40) shutdown$auto(0x200000003, 0x2) read$auto(0x3, 0x0, 0x8) madvise$auto(0x0, 0x2003f0, 0x15) close$auto(r5) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) 41.705705ms ago: executing program 1 (id=1584): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = prctl$auto_SIGCONT(0xfffffffa, 0x12, 0x0, 0x7, 0x739) ioctl$auto_SNDRV_RAWMIDI_IOCTL_STATUS32(r0, 0xc0245720, &(0x7f00000010c0)={0x3, 0x9, 0x2, 0x4, 0x6, "5c35d14c807131f7208b397483eeb385"}) ioctl$auto_XFS_IOC_FSBULKSTAT(0xffffffffffffffff, 0xc0205865, &(0x7f0000001080)={&(0x7f0000000000)=0x1ff, 0x9, &(0x7f0000000040)="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", &(0x7f0000001040)=0x3}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x200007, 0x19) mprotect$auto(0x0, 0x806121, 0x6) 0s ago: executing program 0 (id=1585): openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0xff0f) kernel console output (not intermixed with test programs): 399] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 449.669696][T11399] ? process_measurement+0x1e7/0x2360 [ 449.669751][T11399] ? __lock_acquire+0x5ca/0x1ba0 [ 449.669795][T11399] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 449.669847][T11399] ? __lock_acquire+0x5ca/0x1ba0 [ 449.669896][T11399] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 449.669943][T11399] ? policy_nodemask+0xea/0x4e0 [ 449.669994][T11399] alloc_pages_mpol+0x1fb/0x550 [ 449.670036][T11399] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 449.670086][T11399] alloc_pages_noprof+0x131/0x390 [ 449.670128][T11399] __pmd_alloc+0x3f/0x870 [ 449.670172][T11399] ? find_held_lock+0x2b/0x80 [ 449.670207][T11399] __handle_mm_fault+0x948/0x2a40 [ 449.670251][T11399] ? __pfx___handle_mm_fault+0x10/0x10 [ 449.670307][T11399] ? find_vma+0xbf/0x140 [ 449.670349][T11399] ? __pfx_find_vma+0x10/0x10 [ 449.670398][T11399] handle_mm_fault+0x3fe/0xad0 [ 449.670439][T11399] do_user_addr_fault+0x7a6/0x1370 [ 449.670477][T11399] ? rcu_is_watching+0x12/0xc0 [ 449.670511][T11399] exc_page_fault+0x5c/0xc0 [ 449.670553][T11399] asm_exc_page_fault+0x26/0x30 [ 449.670582][T11399] RIP: 0010:rep_movs_alternative+0x11/0x90 [ 449.670617][T11399] Code: c3 cc cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f 8a 06 <88> 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f [ 449.670645][T11399] RSP: 0018:ffffc9000458fdb0 EFLAGS: 00050206 [ 449.670669][T11399] RAX: 000000000000002f RBX: 0000000000000005 RCX: 0000000000000005 [ 449.670686][T11399] RDX: ffffed1006468860 RSI: ffff8880323442fb RDI: 0000000000000000 [ 449.670705][T11399] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffed100646885f [ 449.670742][T11399] R10: ffff8880323442ff R11: 0000000000000000 R12: ffff8880323442fb [ 449.670762][T11399] R13: 0000000000000005 R14: 00007ffffffff000 R15: 0000000000000000 [ 449.670802][T11399] _copy_to_user+0xbb/0xd0 [ 449.670846][T11399] __do_sys_getcwd+0x483/0x930 [ 449.670902][T11399] ? __pfx___do_sys_getcwd+0x10/0x10 [ 449.670943][T11399] ? xfd_validate_state+0x5d/0x180 [ 449.670999][T11399] do_syscall_64+0xcd/0x230 [ 449.671048][T11399] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 449.671079][T11399] RIP: 0033:0x7f6fc798e169 [ 449.671102][T11399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 449.671131][T11399] RSP: 002b:00007f6fc87b0038 EFLAGS: 00000246 ORIG_RAX: 000000000000004f [ 449.671157][T11399] RAX: ffffffffffffffda RBX: 00007f6fc7bb5fa0 RCX: 00007f6fc798e169 [ 449.671177][T11399] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000000000000000 [ 449.671194][T11399] RBP: 00007f6fc87b0090 R08: 0000000000000000 R09: 0000000000000000 [ 449.671210][T11399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 449.671226][T11399] R13: 0000000000000000 R14: 00007f6fc7bb5fa0 R15: 00007ffe10747118 [ 449.671271][T11399] [ 450.474673][ T5849] Bluetooth: hci0: command 0x0406 tx timeout [ 451.274869][ T5849] Bluetooth: hci2: command 0x0406 tx timeout [ 451.281774][ T5856] Bluetooth: hci1: command 0x0406 tx timeout [ 451.357550][ T5849] Bluetooth: hci3: command 0x0406 tx timeout [ 452.027962][T11445] UHID_CREATE from different security context by process 1148 (syz.2.1070), this is not allowed. [ 452.554729][ T5849] Bluetooth: hci0: command 0x0406 tx timeout [ 453.150817][T11461] sp0: Synchronizing with TNC [ 453.354737][ T5849] Bluetooth: hci2: command 0x0406 tx timeout [ 453.360890][ T5856] Bluetooth: hci1: command 0x0406 tx timeout [ 453.434845][ T5849] Bluetooth: hci3: command 0x0406 tx timeout [ 453.517711][T11465] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 453.591283][T11465] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1076'. [ 453.663310][T11465] netlink: 'syz.2.1076': attribute type 1 has an invalid length. [ 454.644314][ T5849] Bluetooth: hci0: command 0x0406 tx timeout [ 457.995958][ T30] audit: type=1800 audit(6040056257.054:4): pid=11516 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1087" name="discovery_nqn" dev="configfs" ino=34702 res=0 errno=0 [ 459.092743][T11525] FAULT_INJECTION: forcing a failure. [ 459.092743][T11525] name failslab, interval 1, probability 0, space 0, times 0 [ 459.194569][T11525] CPU: 0 UID: 0 PID: 11525 Comm: syz.1.1088 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 459.194611][T11525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 459.194629][T11525] Call Trace: [ 459.194638][T11525] [ 459.194655][T11525] dump_stack_lvl+0x16c/0x1f0 [ 459.194705][T11525] should_fail_ex+0x512/0x640 [ 459.194741][T11525] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 459.194784][T11525] should_failslab+0xc2/0x120 [ 459.194824][T11525] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 459.194862][T11525] ? alloc_empty_file+0x55/0x1e0 [ 459.194909][T11525] alloc_empty_file+0x55/0x1e0 [ 459.194952][T11525] path_openat+0xe0/0x2d40 [ 459.194990][T11525] ? __x64_sys_openat+0x174/0x210 [ 459.195032][T11525] ? do_syscall_64+0xcd/0x230 [ 459.195074][T11525] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 459.195118][T11525] ? __pfx_path_openat+0x10/0x10 [ 459.195172][T11525] do_filp_open+0x20b/0x470 [ 459.195202][T11525] ? __pfx_do_filp_open+0x10/0x10 [ 459.195261][T11525] ? alloc_fd+0x471/0x7d0 [ 459.195298][T11525] do_sys_openat2+0x11b/0x1d0 [ 459.195340][T11525] ? __pfx_do_sys_openat2+0x10/0x10 [ 459.195385][T11525] ? __fget_files+0x20e/0x3c0 [ 459.195419][T11525] __x64_sys_openat+0x174/0x210 [ 459.195463][T11525] ? __pfx___x64_sys_openat+0x10/0x10 [ 459.195502][T11525] ? ksys_write+0x1b9/0x240 [ 459.195544][T11525] do_syscall_64+0xcd/0x230 [ 459.195588][T11525] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 459.195616][T11525] RIP: 0033:0x7fc4b4f8e169 [ 459.195638][T11525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 459.195665][T11525] RSP: 002b:00007fc4b5ed2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 459.195691][T11525] RAX: ffffffffffffffda RBX: 00007fc4b51b5fa0 RCX: 00007fc4b4f8e169 [ 459.195710][T11525] RDX: 0000000000000441 RSI: 0000200000000780 RDI: ffffffffffffff9c [ 459.195727][T11525] RBP: 00007fc4b5ed2090 R08: 0000000000000000 R09: 0000000000000000 [ 459.195743][T11525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 459.195758][T11525] R13: 0000000000000001 R14: 00007fc4b51b5fa0 R15: 00007ffea33dea38 [ 459.195793][T11525] [ 460.324396][T11539] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1092'. [ 460.909124][T11537] svc: failed to register nfsdv3 RPC service (errno 101). [ 460.971108][T11537] svc: failed to register nfsaclv3 RPC service (errno 512). [ 461.924949][ T5849] Bluetooth: hci3: Unable to find connection for big 0xd2 [ 464.662201][T11566] Invalid ELF header magic: != ELF [ 464.684687][T11567] Invalid ELF header magic: != ELF [ 465.256436][T11579] syz.1.1100 uses obsolete (PF_INET,SOCK_PACKET) [ 465.882991][T11587] : Can't lookup blockdev [ 468.745467][T11626] : Can't lookup blockdev [ 468.843099][ T5856] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 473.224031][T11660] netlink: 'syz.3.1117': attribute type 27 has an invalid length. [ 473.274262][T11660] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1117'. [ 474.267435][T11668] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1120'. [ 476.134400][T11711] FAULT_INJECTION: forcing a failure. [ 476.134400][T11711] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 476.225011][T11711] CPU: 0 UID: 0 PID: 11711 Comm: syz.1.1130 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 476.225060][T11711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 476.225078][T11711] Call Trace: [ 476.225088][T11711] [ 476.225099][T11711] dump_stack_lvl+0x16c/0x1f0 [ 476.225148][T11711] should_fail_ex+0x512/0x640 [ 476.225191][T11711] _copy_to_user+0x32/0xd0 [ 476.225235][T11711] simple_read_from_buffer+0xcb/0x170 [ 476.225290][T11711] proc_fail_nth_read+0x197/0x270 [ 476.225339][T11711] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 476.225389][T11711] ? rw_verify_area+0xcf/0x680 [ 476.225437][T11711] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 476.225484][T11711] vfs_read+0x1de/0xc70 [ 476.225521][T11711] ? __pfx___mutex_lock+0x10/0x10 [ 476.225566][T11711] ? __pfx_vfs_read+0x10/0x10 [ 476.225610][T11711] ? __fget_files+0x20e/0x3c0 [ 476.225652][T11711] ksys_read+0x12a/0x240 [ 476.225683][T11711] ? __pfx_ksys_read+0x10/0x10 [ 476.225712][T11711] ? rcu_is_watching+0x12/0xc0 [ 476.225756][T11711] do_syscall_64+0xcd/0x230 [ 476.225803][T11711] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 476.225835][T11711] RIP: 0033:0x7fc4b4f8cb7c [ 476.225859][T11711] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 476.225888][T11711] RSP: 002b:00007fc4b5ed2030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 476.225915][T11711] RAX: ffffffffffffffda RBX: 00007fc4b51b5fa0 RCX: 00007fc4b4f8cb7c [ 476.225934][T11711] RDX: 000000000000000f RSI: 00007fc4b5ed20a0 RDI: 0000000000000004 [ 476.225951][T11711] RBP: 00007fc4b5ed2090 R08: 0000000000000000 R09: 0000000000000000 [ 476.225967][T11711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 476.225983][T11711] R13: 0000000000000000 R14: 00007fc4b51b5fa0 R15: 00007ffea33dea38 [ 476.226021][T11711] [ 478.445857][T11740] can: request_module (can-proto-3) failed. [ 478.481367][T11745] : Can't lookup blockdev [ 479.674140][T11751] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1140'. [ 480.213435][T11766] FAULT_INJECTION: forcing a failure. [ 480.213435][T11766] name fail_futex, interval 1, probability 0, space 0, times 1 [ 480.270560][T11766] CPU: 1 UID: 0 PID: 11766 Comm: syz.2.1142 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 480.270604][T11766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 480.270622][T11766] Call Trace: [ 480.270632][T11766] [ 480.270643][T11766] dump_stack_lvl+0x16c/0x1f0 [ 480.270693][T11766] should_fail_ex+0x512/0x640 [ 480.270830][T11766] get_futex_key+0x49e/0x1000 [ 480.270878][T11766] ? __pfx_get_futex_key+0x10/0x10 [ 480.270916][T11766] ? find_held_lock+0x2b/0x80 [ 480.270967][T11766] ? __might_fault+0xe3/0x190 [ 480.271005][T11766] ? __might_fault+0xe3/0x190 [ 480.271040][T11766] ? __might_fault+0x13b/0x190 [ 480.271085][T11766] futex_wait_setup+0x78/0x290 [ 480.271140][T11766] __futex_wait+0x266/0x3c0 [ 480.271187][T11766] ? __pfx___futex_wait+0x10/0x10 [ 480.271239][T11766] ? __pfx_futex_wake_mark+0x10/0x10 [ 480.271289][T11766] ? seq_read_iter+0x6b/0x12c0 [ 480.271347][T11766] futex_wait+0xe8/0x380 [ 480.271392][T11766] ? __pfx_futex_wait+0x10/0x10 [ 480.271452][T11766] ? ksys_read+0x190/0x240 [ 480.271492][T11766] do_futex+0x229/0x350 [ 480.271526][T11766] ? __pfx_do_futex+0x10/0x10 [ 480.271568][T11766] __x64_sys_futex+0x1e0/0x4c0 [ 480.271605][T11766] ? fput+0x70/0xf0 [ 480.271639][T11766] ? __pfx___x64_sys_futex+0x10/0x10 [ 480.271671][T11766] ? ksys_read+0x1b9/0x240 [ 480.271698][T11766] ? __pfx_ksys_read+0x10/0x10 [ 480.271725][T11766] ? rcu_is_watching+0x12/0xc0 [ 480.271777][T11766] do_syscall_64+0xcd/0x230 [ 480.271822][T11766] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 480.271851][T11766] RIP: 0033:0x7f2d2a18e169 [ 480.271873][T11766] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 480.271900][T11766] RSP: 002b:00007f2d27ff60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 480.271926][T11766] RAX: ffffffffffffffda RBX: 00007f2d2a3b6168 RCX: 00007f2d2a18e169 [ 480.271944][T11766] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2d2a3b6168 [ 480.271961][T11766] RBP: 00007f2d2a3b6160 R08: 0000000000000000 R09: 0000000000000000 [ 480.271978][T11766] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2d2a3b616c [ 480.271994][T11766] R13: 0000000000000000 R14: 00007fff46d7ee30 R15: 00007fff46d7ef18 [ 480.272028][T11766] [ 480.828532][T11772] FAULT_INJECTION: forcing a failure. [ 480.828532][T11772] name failslab, interval 1, probability 0, space 0, times 0 [ 480.969719][T11772] CPU: 0 UID: 0 PID: 11772 Comm: syz.1.1144 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 480.969771][T11772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 480.969788][T11772] Call Trace: [ 480.969798][T11772] [ 480.969809][T11772] dump_stack_lvl+0x16c/0x1f0 [ 480.969876][T11772] should_fail_ex+0x512/0x640 [ 480.969913][T11772] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 480.969949][T11772] should_failslab+0xc2/0x120 [ 480.969991][T11772] __kmalloc_cache_noprof+0x6a/0x3e0 [ 480.970021][T11772] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 480.970062][T11772] ? lockdep_hardirqs_on+0x7c/0x110 [ 480.970103][T11772] ? __request_module+0x2ad/0x690 [ 480.970156][T11772] __request_module+0x2ad/0x690 [ 480.970205][T11772] ? __pfx___request_module+0x10/0x10 [ 480.970271][T11772] ? find_held_lock+0x2b/0x80 [ 480.970314][T11772] inet6_create+0xd92/0x1300 [ 480.970357][T11772] ? inet6_create+0x7f/0x1300 [ 480.970399][T11772] __sock_create+0x335/0x8d0 [ 480.970439][T11772] __sys_socket+0x14d/0x260 [ 480.970468][T11772] ? fput+0x70/0xf0 [ 480.970506][T11772] ? __pfx___sys_socket+0x10/0x10 [ 480.970536][T11772] ? ksys_write+0x1b9/0x240 [ 480.970568][T11772] ? __pfx_ksys_write+0x10/0x10 [ 480.970598][T11772] ? rcu_is_watching+0x12/0xc0 [ 480.970638][T11772] __x64_sys_socket+0x72/0xb0 [ 480.970667][T11772] ? lockdep_hardirqs_on+0x7c/0x110 [ 480.970710][T11772] do_syscall_64+0xcd/0x230 [ 480.970770][T11772] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 480.970800][T11772] RIP: 0033:0x7fc4b4f8e169 [ 480.970823][T11772] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 480.970852][T11772] RSP: 002b:00007fc4b5ed2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 480.970880][T11772] RAX: ffffffffffffffda RBX: 00007fc4b51b5fa0 RCX: 00007fc4b4f8e169 [ 480.970899][T11772] RDX: 0000000000000094 RSI: 0000000000000005 RDI: 000000000000000a [ 480.970916][T11772] RBP: 00007fc4b5ed2090 R08: 0000000000000000 R09: 0000000000000000 [ 480.970933][T11772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 480.970950][T11772] R13: 0000000000000000 R14: 00007fc4b51b5fa0 R15: 00007ffea33dea38 [ 480.970989][T11772] [ 482.033149][T11787] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1148'. [ 482.178755][T11787] veth0_macvtap: left promiscuous mode [ 482.518643][T11797] : Can't lookup blockdev [ 483.240394][T11807] FAULT_INJECTION: forcing a failure. [ 483.240394][T11807] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 483.279477][T11807] CPU: 0 UID: 0 PID: 11807 Comm: syz.2.1152 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 483.279519][T11807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 483.279542][T11807] Call Trace: [ 483.279551][T11807] [ 483.279562][T11807] dump_stack_lvl+0x16c/0x1f0 [ 483.279611][T11807] should_fail_ex+0x512/0x640 [ 483.279655][T11807] _copy_to_user+0x32/0xd0 [ 483.279699][T11807] simple_read_from_buffer+0xcb/0x170 [ 483.279750][T11807] proc_fail_nth_read+0x197/0x270 [ 483.279799][T11807] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 483.279849][T11807] ? rw_verify_area+0xcf/0x680 [ 483.279895][T11807] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 483.279943][T11807] vfs_read+0x1de/0xc70 [ 483.279980][T11807] ? __pfx___mutex_lock+0x10/0x10 [ 483.280026][T11807] ? __pfx_vfs_read+0x10/0x10 [ 483.280070][T11807] ? __fget_files+0x20e/0x3c0 [ 483.280112][T11807] ksys_read+0x12a/0x240 [ 483.280144][T11807] ? __pfx_ksys_read+0x10/0x10 [ 483.280173][T11807] ? rcu_is_watching+0x12/0xc0 [ 483.280217][T11807] do_syscall_64+0xcd/0x230 [ 483.280265][T11807] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 483.280295][T11807] RIP: 0033:0x7f2d2a18cb7c [ 483.280320][T11807] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 483.280349][T11807] RSP: 002b:00007f2d2af36030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 483.280377][T11807] RAX: ffffffffffffffda RBX: 00007f2d2a3b5fa0 RCX: 00007f2d2a18cb7c [ 483.280396][T11807] RDX: 000000000000000f RSI: 00007f2d2af360a0 RDI: 0000000000000004 [ 483.280417][T11807] RBP: 00007f2d2af36090 R08: 0000000000000000 R09: 0000000000000000 [ 483.280436][T11807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 483.280453][T11807] R13: 0000000000000000 R14: 00007f2d2a3b5fa0 R15: 00007fff46d7ef18 [ 483.280493][T11807] [ 484.379841][T11821] net_ratelimit: 5 callbacks suppressed [ 484.379865][T11821] netlink: zone id is out of range [ 484.403650][T11821] netlink: zone id is out of range [ 484.417393][T11821] netlink: zone id is out of range [ 484.439640][T11821] netlink: zone id is out of range [ 484.559849][T11821] netlink: set zone limit has 8 unknown bytes [ 487.370402][T11874] : Can't lookup blockdev [ 488.008483][T11880] uvcvideo: [Deprecated]: nodrop parameter will be eventually removed. [ 488.187190][T11885] FAULT_INJECTION: forcing a failure. [ 488.187190][T11885] name failslab, interval 1, probability 0, space 0, times 0 [ 488.200873][T11885] CPU: 0 UID: 0 PID: 11885 Comm: syz.0.1167 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 488.200915][T11885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 488.200933][T11885] Call Trace: [ 488.200942][T11885] [ 488.200953][T11885] dump_stack_lvl+0x16c/0x1f0 [ 488.201000][T11885] should_fail_ex+0x512/0x640 [ 488.201031][T11885] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 488.201068][T11885] should_failslab+0xc2/0x120 [ 488.201109][T11885] __kmalloc_cache_noprof+0x6a/0x3e0 [ 488.201140][T11885] ? lockdep_init_map_type+0x5c/0x280 [ 488.201183][T11885] ? squashfs_init_fs_context+0x43/0x140 [ 488.201235][T11885] squashfs_init_fs_context+0x43/0x140 [ 488.201282][T11885] ? __pfx_squashfs_init_fs_context+0x10/0x10 [ 488.201317][T11885] alloc_fs_context+0x54a/0x9c0 [ 488.201351][T11885] __x64_sys_fsopen+0xeb/0x240 [ 488.201383][T11885] do_syscall_64+0xcd/0x230 [ 488.201422][T11885] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 488.201448][T11885] RIP: 0033:0x7ff6dcb8e169 [ 488.201468][T11885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 488.201492][T11885] RSP: 002b:00007ff6dda44038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae [ 488.201515][T11885] RAX: ffffffffffffffda RBX: 00007ff6dcdb6160 RCX: 00007ff6dcb8e169 [ 488.201532][T11885] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 488.201546][T11885] RBP: 00007ff6dda44090 R08: 0000000000000000 R09: 0000000000000000 [ 488.201561][T11885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 488.201576][T11885] R13: 0000000000000000 R14: 00007ff6dcdb6160 R15: 00007ffd040353c8 [ 488.201608][T11885]                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     [ 540.191462][T12741] FAULT_INJECTION: forcing a failure. [ 540.191462][T12741] name failslab, interval 1, probability 0, space 0, times 0 [ 540.193895][T12741] CPU: 1 UID: 0 PID: 12741 Comm: syz.2.1357 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 540.193935][T12741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 540.193953][T12741] Call Trace: [ 540.193963][T12741] [ 540.193975][T12741] dump_stack_lvl+0x16c/0x1f0 [ 540.194022][T12741] should_fail_ex+0x512/0x640 [ 540.194065][T12741] should_failslab+0xc2/0x120 [ 540.194118][T12741] __kmalloc_cache_noprof+0x6a/0x3e0 [ 540.194150][T12741] ? sctp_add_bind_addr+0xae/0x3f0 [ 540.194198][T12741] sctp_add_bind_addr+0xae/0x3f0 [ 540.194261][T12741] sctp_copy_local_addr_list+0x39d/0x5a0 [ 540.194320][T12741] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 540.194377][T12741] ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360 [ 540.194446][T12741] ? sctp_bind_addr_copy+0xe0/0x530 [ 540.194489][T12741] sctp_bind_addr_copy+0xe0/0x530 [ 540.194543][T12741] sctp_connect_new_asoc+0x1d7/0x790 [ 540.194580][T12741] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 540.194618][T12741] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 540.194682][T12741] __sctp_connect+0x3f3/0xc60 [ 540.194722][T12741] ? do_raw_spin_lock+0x12c/0x2b0 [ 540.194753][T12741] ? __pfx___sctp_connect+0x10/0x10 [ 540.194791][T12741] ? __pfx_sctp_inet_connect+0x10/0x10 [ 540.194828][T12741] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 540.194878][T12741] ? __pfx_sctp_inet_connect+0x10/0x10 [ 540.194909][T12741] sctp_inet_connect+0x15f/0x200 [ 540.194946][T12741] __sys_connect_file+0x13e/0x1a0 [ 540.194987][T12741] __sys_connect+0x14d/0x170 [ 540.195023][T12741] ? __pfx___sys_connect+0x10/0x10 [ 540.195075][T12741] ? __pfx_ksys_write+0x10/0x10 [ 540.195106][T12741] ? rcu_is_watching+0x12/0xc0 [ 540.195145][T12741] __x64_sys_connect+0x72/0xb0 [ 540.195178][T12741] ? lockdep_hardirqs_on+0x7c/0x110 [ 540.195222][T12741] do_syscall_64+0xcd/0x230 [ 540.195271][T12741] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 540.195302][T12741] RIP: 0033:0x7f2d2a18e169 [ 540.195326][T12741] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 540.195357][T12741] RSP: 002b:00007f2d2af36038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 540.195385][T12741] RAX: ffffffffffffffda RBX: 00007f2d2a3b5fa0 RCX: 00007f2d2a18e169 [ 540.195406][T12741] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 540.195435][T12741] RBP: 00007f2d2af36090 R08: 0000000000000000 R09: 0000000000000000 [ 540.195455][T12741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 540.195473][T12741] R13: 0000000000000000 R14: 00007f2d2a3b5fa0 R15: 00007fff46d7ef18 [ 540.195514][T12741] [ 540.308640][T12743] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1358'. [ 540.363492][T12747] FAULT_INJECTION: forcing a failure. [ 540.363492][T12747] name failslab, interval 1, probability 0, space 0, times 0 [ 540.372810][T12747] CPU: 0 UID: 0 PID: 12747 Comm: syz.0.1359 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 540.372853][T12747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 540.372871][T12747] Call Trace: [ 540.372882][T12747] [ 540.372893][T12747] dump_stack_lvl+0x16c/0x1f0 [ 540.372943][T12747] should_fail_ex+0x512/0x640 [ 540.372981][T12747] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 540.373023][T12747] should_failslab+0xc2/0x120 [ 540.373066][T12747] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 540.373104][T12747] ? crng_make_state+0x48e/0x6d0 [ 540.373139][T12747] ? proc_net_ns_init+0x42/0x410 [ 540.373182][T12747] ? __pfx_proc_net_ns_init+0x10/0x10 [ 540.373223][T12747] proc_net_ns_init+0x42/0x410 [ 540.373264][T12747] ? __pfx_proc_net_ns_init+0x10/0x10 [ 540.373302][T12747] ops_init+0x1df/0x5f0 [ 540.373359][T12747] setup_net+0x21e/0x850 [ 540.373407][T12747] ? __pfx_setup_net+0x10/0x10 [ 540.373449][T12747] ? lockdep_init_map_type+0x5c/0x280 [ 540.373492][T12747] ? __pfx_down_read_killable+0x10/0x10 [ 540.373525][T12747] ? debug_mutex_init+0x37/0x70 [ 540.373562][T12747] copy_net_ns+0x2a6/0x5f0 [ 540.373655][T12747] create_new_namespaces+0x3ea/0xad0 [ 540.373704][T12747] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 540.373745][T12747] ksys_unshare+0x45b/0xa40 [ 540.373792][T12747] ? __pfx_ksys_unshare+0x10/0x10 [ 540.373837][T12747] ? ksys_write+0x1b9/0x240 [ 540.373884][T12747] __x64_sys_unshare+0x31/0x40 [ 540.373930][T12747] do_syscall_64+0xcd/0x230 [ 540.373980][T12747] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 540.374012][T12747] RIP: 0033:0x7ff6dcb8e169 [ 540.374037][T12747] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 540.374067][T12747] RSP: 002b:00007ff6dda86038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 540.374097][T12747] RAX: ffffffffffffffda RBX: 00007ff6dcdb5fa0 RCX: 00007ff6dcb8e169 [ 540.374118][T12747] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 540.374137][T12747] RBP: 00007ff6dda86090 R08: 0000000000000000 R09: 0000000000000000 [ 540.374156][T12747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 540.374174][T12747] R13: 0000000000000001 R14: 00007ff6dcdb5fa0 R15: 00007ffd040353c8 [ 540.374214][T12747] [ 541.507280][T12768] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1365'. [ 541.586963][T12769] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1365'. [ 542.119364][T12774] FAULT_INJECTION: forcing a failure. [ 542.119364][T12774] name failslab, interval 1, probability 0, space 0, times 0 [ 542.121510][T12774] CPU: 1 UID: 0 PID: 12774 Comm: syz.2.1366 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 542.121550][T12774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 542.121569][T12774] Call Trace: [ 542.121579][T12774] [ 542.121590][T12774] dump_stack_lvl+0x16c/0x1f0 [ 542.121640][T12774] should_fail_ex+0x512/0x640 [ 542.121675][T12774] ? fs_reclaim_acquire+0xae/0x150 [ 542.121729][T12774] ? tomoyo_encode2+0x100/0x3e0 [ 542.121773][T12774] should_failslab+0xc2/0x120 [ 542.121813][T12774] __kmalloc_noprof+0xd2/0x510 [ 542.121857][T12774] ? d_absolute_path+0x136/0x1a0 [ 542.121905][T12774] tomoyo_encode2+0x100/0x3e0 [ 542.121954][T12774] tomoyo_encode+0x29/0x50 [ 542.121996][T12774] tomoyo_realpath_from_path+0x18f/0x6e0 [ 542.122054][T12774] tomoyo_path_number_perm+0x245/0x580 [ 542.122092][T12774] ? tomoyo_path_number_perm+0x237/0x580 [ 542.122134][T12774] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 542.122175][T12774] ? find_held_lock+0x2b/0x80 [ 542.122295][T12774] ? find_held_lock+0x2b/0x80 [ 542.122327][T12774] ? hook_file_ioctl_common+0x145/0x410 [ 542.122372][T12774] ? __fget_files+0x20e/0x3c0 [ 542.122408][T12774] security_file_ioctl+0x9b/0x240 [ 542.122452][T12774] __x64_sys_ioctl+0xb7/0x200 [ 542.122501][T12774] do_syscall_64+0xcd/0x230 [ 542.122550][T12774] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 542.122581][T12774] RIP: 0033:0x7f2d2a18e169 [ 542.122604][T12774] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 542.122647][T12774] RSP: 002b:00007f2d2af36038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 542.122675][T12774] RAX: ffffffffffffffda RBX: 00007f2d2a3b5fa0 RCX: 00007f2d2a18e169 [ 542.122695][T12774] RDX: 0000000000000003 RSI: 0000000041045508 RDI: 0000000000000003 [ 542.122712][T12774] RBP: 00007f2d2af36090 R08: 0000000000000000 R09: 0000000000000000 [ 542.122728][T12774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 542.122744][T12774] R13: 0000000000000000 R14: 00007f2d2a3b5fa0 R15: 00007fff46d7ef18 [ 542.122788][T12774] [ 542.122813][T12774] ERROR: Out of memory at tomoyo_realpath_from_path. [ 542.769691][T12789] netlink: 'syz.2.1369': attribute type 10 has an invalid length. [ 542.771104][T12789] netlink: 230 bytes leftover after parsing attributes in process `syz.2.1369'. [ 542.782179][T12789] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check. [ 545.115003][T12818] : Can't lookup blockdev [ 548.722339][T12869] FAULT_INJECTION: forcing a failure. [ 548.722339][T12869] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 548.724697][T12869] CPU: 0 UID: 0 PID: 12869 Comm: syz.0.1385 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 548.724735][T12869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 548.724758][T12869] Call Trace: [ 548.724765][T12869] [ 548.724773][T12869] dump_stack_lvl+0x16c/0x1f0 [ 548.724809][T12869] should_fail_ex+0x512/0x640 [ 548.724840][T12869] _copy_from_user+0x2e/0xd0 [ 548.724870][T12869] snd_rawmidi_kernel_write1+0x50a/0x8a0 [ 548.724905][T12869] snd_rawmidi_write+0x26e/0xc10 [ 548.724938][T12869] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 548.724964][T12869] ? __pfx_default_wake_function+0x10/0x10 [ 548.724991][T12869] ? bpf_lsm_file_permission+0x9/0x10 [ 548.725012][T12869] ? security_file_permission+0x71/0x210 [ 548.725044][T12869] ? rw_verify_area+0xcf/0x680 [ 548.725082][T12869] vfs_write+0x25c/0x1180 [ 548.725103][T12869] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 548.725133][T12869] ? __pfx_vfs_write+0x10/0x10 [ 548.725154][T12869] ? find_held_lock+0x2b/0x80 [ 548.725178][T12869] ? __fget_files+0x204/0x3c0 [ 548.725203][T12869] ? __fget_files+0x20e/0x3c0 [ 548.725231][T12869] ksys_write+0x205/0x240 [ 548.725254][T12869] ? __pfx_ksys_write+0x10/0x10 [ 548.725285][T12869] do_syscall_64+0xcd/0x230 [ 548.725320][T12869] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 548.725341][T12869] RIP: 0033:0x7ff6dcb8e169 [ 548.725357][T12869] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 548.725380][T12869] RSP: 002b:00007ff6dda65038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 548.725400][T12869] RAX: ffffffffffffffda RBX: 00007ff6dcdb6080 RCX: 00007ff6dcb8e169 [ 548.725414][T12869] RDX: 000000100000a3d9 RSI: 0000200000000400 RDI: 0000000000000005 [ 548.725429][T12869] RBP: 00007ff6dda65090 R08: 0000000000000000 R09: 0000000000000000 [ 548.725442][T12869] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 548.725455][T12869] R13: 0000000000000001 R14: 00007ff6dcdb6080 R15: 00007ffd040353c8 [ 548.725483][T12869] [ 550.462622][T12909] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 550.520985][T12909] CIFS mount error: No usable UNC path provided in device string! [ 550.520985][T12909] [ 550.535011][T12909] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 553.601265][T12943] misc userio: No port type given on /dev/userio [ 554.428803][T12952] FAULT_INJECTION: forcing a failure. [ 554.428803][T12952] name failslab, interval 1, probability 0, space 0, times 0 [ 554.448972][T12952] CPU: 1 UID: 0 PID: 12952 Comm: syz.3.1405 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 554.449014][T12952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 554.449032][T12952] Call Trace: [ 554.449041][T12952] [ 554.449052][T12952] dump_stack_lvl+0x16c/0x1f0 [ 554.449099][T12952] should_fail_ex+0x512/0x640 [ 554.449136][T12952] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 554.449179][T12952] should_failslab+0xc2/0x120 [ 554.449221][T12952] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 554.449258][T12952] ? d_instantiate+0x77/0x90 [ 554.449293][T12952] ? alloc_empty_file+0x55/0x1e0 [ 554.449342][T12952] alloc_empty_file+0x55/0x1e0 [ 554.449387][T12952] alloc_file_pseudo+0x13a/0x230 [ 554.449438][T12952] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 554.449484][T12952] ? hugetlbfs_get_inode+0x31f/0x730 [ 554.449528][T12952] hugetlb_file_setup+0x4cd/0x620 [ 554.449572][T12952] ksys_mmap_pgoff+0x189/0x5c0 [ 554.449633][T12952] __x64_sys_mmap+0x125/0x190 [ 554.449670][T12952] do_syscall_64+0xcd/0x230 [ 554.449719][T12952] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 554.449746][T12952] RIP: 0033:0x7f6fc798e169 [ 554.449769][T12952] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 554.449799][T12952] RSP: 002b:00007f6fc87b0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 554.449826][T12952] RAX: ffffffffffffffda RBX: 00007f6fc7bb5fa0 RCX: 00007f6fc798e169 [ 554.449845][T12952] RDX: 00004000000000df RSI: 0000000000000003 RDI: 0000000000000000 [ 554.449863][T12952] RBP: 00007f6fc87b0090 R08: 0000000000000401 R09: 0000300000000000 [ 554.449883][T12952] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000001 [ 554.449901][T12952] R13: 0000000000000001 R14: 00007f6fc7bb5fa0 R15: 00007ffe10747118 [ 554.449937][T12952] [ 554.851133][T12958] FAULT_INJECTION: forcing a failure. [ 554.851133][T12958] name failslab, interval 1, probability 0, space 0, times 0 [ 554.922361][T12958] CPU: 0 UID: 0 PID: 12958 Comm: syz.3.1408 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 554.922411][T12958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 554.922431][T12958] Call Trace: [ 554.922441][T12958] [ 554.922453][T12958] dump_stack_lvl+0x16c/0x1f0 [ 554.922506][T12958] should_fail_ex+0x512/0x640 [ 554.922543][T12958] ? fs_reclaim_acquire+0xae/0x150 [ 554.922597][T12958] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 554.922643][T12958] should_failslab+0xc2/0x120 [ 554.922689][T12958] __kmalloc_noprof+0xd2/0x510 [ 554.922737][T12958] tomoyo_realpath_from_path+0xc2/0x6e0 [ 554.922796][T12958] tomoyo_check_open_permission+0x2ab/0x3c0 [ 554.922838][T12958] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 554.922921][T12958] ? find_held_lock+0x2b/0x80 [ 554.922965][T12958] tomoyo_file_open+0x6b/0x90 [ 554.922997][T12958] security_file_open+0x84/0x1e0 [ 554.923042][T12958] do_dentry_open+0x596/0x1c10 [ 554.923091][T12958] vfs_open+0x82/0x3f0 [ 554.923139][T12958] path_openat+0x1e5e/0x2d40 [ 554.923189][T12958] ? __pfx_path_openat+0x10/0x10 [ 554.923234][T12958] do_filp_open+0x20b/0x470 [ 554.923268][T12958] ? __pfx_do_filp_open+0x10/0x10 [ 554.923333][T12958] ? alloc_fd+0x471/0x7d0 [ 554.923374][T12958] do_sys_openat2+0x11b/0x1d0 [ 554.923421][T12958] ? __pfx_do_sys_openat2+0x10/0x10 [ 554.923483][T12958] __x64_sys_openat+0x174/0x210 [ 554.923529][T12958] ? __pfx___x64_sys_openat+0x10/0x10 [ 554.923577][T12958] ? rcu_is_watching+0x12/0xc0 [ 554.923622][T12958] do_syscall_64+0xcd/0x230 [ 554.923679][T12958] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 554.923711][T12958] RIP: 0033:0x7f6fc798e169 [ 554.923752][T12958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 554.923784][T12958] RSP: 002b:00007f6fc878f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 554.923827][T12958] RAX: ffffffffffffffda RBX: 00007f6fc7bb6080 RCX: 00007f6fc798e169 [ 554.923846][T12958] RDX: 00000000001c1041 RSI: 0000000000000000 RDI: ffffffffffffff9c [ 554.923865][T12958] RBP: 00007f6fc7a10a68 R08: 0000000000000000 R09: 0000000000000000 [ 554.923901][T12958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 554.923920][T12958] R13: 0000000000000000 R14: 00007f6fc7bb6080 R15: 00007ffe10747118 [ 554.923962][T12958] [ 554.923974][T12958] ERROR: Out of memory at tomoyo_realpath_from_path. [ 555.293146][T12960] mmap: syz.0.1409 (12960): VmData 39751680 exceed data ulimit 3. Update limits or use boot option ignore_rlimit_data. [ 557.205400][T12987] FAULT_INJECTION: forcing a failure. [ 557.205400][T12987] name failslab, interval 1, probability 0, space 0, times 0 [ 557.223149][T12987] CPU: 1 UID: 0 PID: 12987 Comm: syz.2.1410 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 557.223190][T12987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 557.223207][T12987] Call Trace: [ 557.223216][T12987] [ 557.223227][T12987] dump_stack_lvl+0x16c/0x1f0 [ 557.223271][T12987] should_fail_ex+0x512/0x640 [ 557.223302][T12987] ? fs_reclaim_acquire+0xae/0x150 [ 557.223354][T12987] ? tomoyo_encode2+0x100/0x3e0 [ 557.223389][T12987] should_failslab+0xc2/0x120 [ 557.223423][T12987] __kmalloc_noprof+0xd2/0x510 [ 557.223465][T12987] ? d_absolute_path+0x136/0x1a0 [ 557.223511][T12987] tomoyo_encode2+0x100/0x3e0 [ 557.223553][T12987] tomoyo_encode+0x29/0x50 [ 557.223588][T12987] tomoyo_realpath_from_path+0x18f/0x6e0 [ 557.223636][T12987] tomoyo_check_open_permission+0x2ab/0x3c0 [ 557.223671][T12987] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 557.223737][T12987] ? do_raw_spin_lock+0x12c/0x2b0 [ 557.223770][T12987] tomoyo_file_open+0x6b/0x90 [ 557.223796][T12987] security_file_open+0x84/0x1e0 [ 557.223832][T12987] do_dentry_open+0x596/0x1c10 [ 557.223871][T12987] vfs_open+0x82/0x3f0 [ 557.223911][T12987] path_openat+0x1e5e/0x2d40 [ 557.223951][T12987] ? __pfx_path_openat+0x10/0x10 [ 557.223988][T12987] do_filp_open+0x20b/0x470 [ 557.224015][T12987] ? __pfx_do_filp_open+0x10/0x10 [ 557.224068][T12987] ? alloc_fd+0x471/0x7d0 [ 557.224101][T12987] do_sys_openat2+0x11b/0x1d0 [ 557.224137][T12987] ? __pfx_do_sys_openat2+0x10/0x10 [ 557.224190][T12987] ? __fget_files+0x20e/0x3c0 [ 557.224222][T12987] __x64_sys_openat+0x174/0x210 [ 557.224260][T12987] ? __pfx___x64_sys_openat+0x10/0x10 [ 557.224302][T12987] ? ksys_write+0x1b9/0x240 [ 557.224340][T12987] do_syscall_64+0xcd/0x230 [ 557.224381][T12987] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 557.224407][T12987] RIP: 0033:0x7f2d2a18e169 [ 557.224428][T12987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 557.224461][T12987] RSP: 002b:00007f2d2af36038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 557.224500][T12987] RAX: ffffffffffffffda RBX: 00007f2d2a3b5fa0 RCX: 00007f2d2a18e169 [ 557.224519][T12987] RDX: 0000000000020b42 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 557.224537][T12987] RBP: 00007f2d2af36090 R08: 0000000000000000 R09: 0000000000000000 [ 557.224553][T12987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 557.224570][T12987] R13: 0000000000000001 R14: 00007f2d2a3b5fa0 R15: 00007fff46d7ef18 [ 557.224610][T12987] [ 557.524805][ C1] vkms_vblank_simulate: vblank timer overrun [ 557.594955][T12987] ERROR: Out of memory at tomoyo_realpath_from_path. [ 561.654817][T13035] : Can't lookup blockdev [ 562.050834][T13047] FAULT_INJECTION: forcing a failure. [ 562.050834][T13047] name failslab, interval 1, probability 0, space 0, times 0 [ 562.138053][T13047] CPU: 1 UID: 0 PID: 13047 Comm: syz.0.1430 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 562.138096][T13047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 562.138114][T13047] Call Trace: [ 562.138125][T13047] [ 562.138136][T13047] dump_stack_lvl+0x16c/0x1f0 [ 562.138183][T13047] should_fail_ex+0x512/0x640 [ 562.138217][T13047] ? __kmalloc_noprof+0xbf/0x510 [ 562.138258][T13047] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 562.138312][T13047] should_failslab+0xc2/0x120 [ 562.138354][T13047] __kmalloc_noprof+0xd2/0x510 [ 562.138384][T13047] ? __pfx___mutex_trylock_common+0x10/0x10 [ 562.138430][T13047] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 562.138484][T13047] genl_family_rcv_msg_doit+0xbf/0x2f0 [ 562.138530][T13047] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 562.138576][T13047] ? trace_cap_capable+0x18d/0x200 [ 562.138620][T13047] ? bpf_lsm_capable+0x9/0x10 [ 562.138655][T13047] ? security_capable+0x7e/0x260 [ 562.138687][T13047] ? ns_capable+0xd7/0x110 [ 562.138726][T13047] genl_rcv_msg+0x55c/0x800 [ 562.138762][T13047] ? __pfx_genl_rcv_msg+0x10/0x10 [ 562.138789][T13047] ? __pfx___dev_queue_xmit+0x10/0x10 [ 562.138851][T13047] ? __pfx_l2tp_nl_cmd_tunnel_create+0x10/0x10 [ 562.138907][T13047] ? __lock_acquire+0xaa4/0x1ba0 [ 562.138960][T13047] netlink_rcv_skb+0x16a/0x440 [ 562.139008][T13047] ? __pfx_genl_rcv_msg+0x10/0x10 [ 562.139042][T13047] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 562.139110][T13047] ? __pfx_down_read+0x10/0x10 [ 562.139140][T13047] ? netlink_deliver_tap+0x1ae/0xd30 [ 562.139190][T13047] genl_rcv+0x28/0x40 [ 562.139237][T13047] netlink_unicast+0x53a/0x7f0 [ 562.139298][T13047] ? __pfx_netlink_unicast+0x10/0x10 [ 562.139337][T13047] ? __lock_acquire+0xaa4/0x1ba0 [ 562.139388][T13047] netlink_sendmsg+0x8d1/0xdd0 [ 562.139440][T13047] ? __pfx_netlink_sendmsg+0x10/0x10 [ 562.139499][T13047] ____sys_sendmsg+0xa95/0xc70 [ 562.139529][T13047] ? copy_msghdr_from_user+0x10a/0x160 [ 562.139569][T13047] ? __pfx_____sys_sendmsg+0x10/0x10 [ 562.139617][T13047] ___sys_sendmsg+0x134/0x1d0 [ 562.139661][T13047] ? __pfx____sys_sendmsg+0x10/0x10 [ 562.139751][T13047] __sys_sendmsg+0x16d/0x220 [ 562.139793][T13047] ? __pfx___sys_sendmsg+0x10/0x10 [ 562.139850][T13047] ? rcu_is_watching+0x12/0xc0 [ 562.139888][T13047] do_syscall_64+0xcd/0x230 [ 562.139950][T13047] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 562.139995][T13047] RIP: 0033:0x7ff6dcb8e169 [ 562.140018][T13047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 562.140047][T13047] RSP: 002b:00007ff6dda86038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 562.140075][T13047] RAX: ffffffffffffffda RBX: 00007ff6dcdb5fa0 RCX: 00007ff6dcb8e169 [ 562.140096][T13047] RDX: 000000000400c004 RSI: 0000200000000140 RDI: 0000000000000003 [ 562.140114][T13047] RBP: 00007ff6dda86090 R08: 0000000000000000 R09: 0000000000000000 [ 562.140133][T13047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 562.140149][T13047] R13: 0000000000000000 R14: 00007ff6dcdb5fa0 R15: 00007ffd040353c8 [ 562.140189][T13047] [ 563.077497][T13054] : Can't lookup blockdev [ 565.657275][T13090] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1439'. [ 565.814345][T13095] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1441'. [ 565.885118][T13097] FAULT_INJECTION: forcing a failure. [ 565.885118][T13097] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 565.907867][T13097] CPU: 0 UID: 0 PID: 13097 Comm: syz.1.1442 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 565.907908][T13097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 565.907926][T13097] Call Trace: [ 565.907936][T13097] [ 565.907947][T13097] dump_stack_lvl+0x16c/0x1f0 [ 565.907996][T13097] should_fail_ex+0x512/0x640 [ 565.908039][T13097] _copy_to_user+0x32/0xd0 [ 565.908080][T13097] simple_read_from_buffer+0xcb/0x170 [ 565.908133][T13097] proc_fail_nth_read+0x197/0x270 [ 565.908179][T13097] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 565.908227][T13097] ? rw_verify_area+0xcf/0x680 [ 565.908274][T13097] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 565.908320][T13097] vfs_read+0x1de/0xc70 [ 565.908373][T13097] ? __pfx___mutex_lock+0x10/0x10 [ 565.908419][T13097] ? __pfx_vfs_read+0x10/0x10 [ 565.908462][T13097] ? __fget_files+0x20e/0x3c0 [ 565.908503][T13097] ksys_read+0x12a/0x240 [ 565.908535][T13097] ? __pfx_ksys_read+0x10/0x10 [ 565.908564][T13097] ? rcu_is_watching+0x12/0xc0 [ 565.908607][T13097] do_syscall_64+0xcd/0x230 [ 565.908656][T13097] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 565.908686][T13097] RIP: 0033:0x7fc4b4f8cb7c [ 565.908710][T13097] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 565.908739][T13097] RSP: 002b:00007fc4b5ed2030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 565.908768][T13097] RAX: ffffffffffffffda RBX: 00007fc4b51b5fa0 RCX: 00007fc4b4f8cb7c [ 565.908788][T13097] RDX: 000000000000000f RSI: 00007fc4b5ed20a0 RDI: 0000000000000004 [ 565.908806][T13097] RBP: 00007fc4b5ed2090 R08: 0000000000000000 R09: 0000000000000000 [ 565.908830][T13097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 565.908853][T13097] R13: 0000000000000000 R14: 00007fc4b51b5fa0 R15: 00007ffea33dea38 [ 565.908893][T13097] [ 566.858612][T13107] svc: failed to register nfsdv3 RPC service (errno 111). [ 566.898029][T13107] svc: failed to register nfsaclv3 RPC service (errno 111). [ 568.004558][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 568.012271][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 568.192870][T13129] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input10 [ 568.617103][T13138] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1451'. [ 568.781730][T13134] HfR: entered promiscuous mode [ 569.473050][T13142] FAULT_INJECTION: forcing a failure. [ 569.473050][T13142] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 569.527176][T13142] CPU: 1 UID: 0 PID: 13142 Comm: syz.1.1452 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 569.527218][T13142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 569.527235][T13142] Call Trace: [ 569.527244][T13142] [ 569.527255][T13142] dump_stack_lvl+0x16c/0x1f0 [ 569.527301][T13142] should_fail_ex+0x512/0x640 [ 569.527341][T13142] should_fail_alloc_page+0xe7/0x130 [ 569.527381][T13142] prepare_alloc_pages+0x3c2/0x610 [ 569.527436][T13142] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 569.527486][T13142] ? __lock_acquire+0x5ca/0x1ba0 [ 569.527531][T13142] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 569.527580][T13142] ? mark_held_locks+0x49/0x80 [ 569.527650][T13142] ? filemap_get_entry+0x1a7/0x3b0 [ 569.527700][T13142] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 569.527748][T13142] ? policy_nodemask+0xea/0x4e0 [ 569.527792][T13142] alloc_pages_mpol+0x1fb/0x550 [ 569.527834][T13142] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 569.527875][T13142] ? _raw_spin_unlock+0x28/0x50 [ 569.527913][T13142] ? swap_entry_swapped+0x122/0x190 [ 569.527952][T13142] ? __pfx_swap_entry_swapped+0x10/0x10 [ 569.527999][T13142] folio_alloc_mpol_noprof+0x36/0x2f0 [ 569.528049][T13142] __read_swap_cache_async+0x3b6/0x5a0 [ 569.528090][T13142] ? __pfx___read_swap_cache_async+0x10/0x10 [ 569.528125][T13142] ? swp_swap_info+0xb0/0x130 [ 569.528168][T13142] ? __pfx_swp_swap_info+0x10/0x10 [ 569.528219][T13142] swap_cluster_readahead+0x3eb/0x710 [ 569.528263][T13142] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 569.528323][T13142] ? get_vma_policy+0x242/0x3c0 [ 569.528370][T13142] swapin_readahead+0x13a/0xd60 [ 569.528415][T13142] ? __pfx_swapin_readahead+0x10/0x10 [ 569.528446][T13142] ? __filemap_get_folio+0x333/0xc10 [ 569.528500][T13142] ? swap_cache_get_folio+0x1df/0x450 [ 569.528541][T13142] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 569.528572][T13142] ? __pfx_get_swap_device+0x10/0x10 [ 569.528613][T13142] ? do_swap_page+0x127/0x6030 [ 569.528664][T13142] do_swap_page+0x67e/0x6030 [ 569.528733][T13142] ? __pfx_do_swap_page+0x10/0x10 [ 569.528776][T13142] ? ___pte_offset_map+0x1bc/0x540 [ 569.528818][T13142] ? mt_find+0x757/0xa30 [ 569.528869][T13142] ? __pfx_default_wake_function+0x10/0x10 [ 569.528911][T13142] ? __pfx_mt_find+0x10/0x10 [ 569.528962][T13142] __collapse_huge_page_swapin+0x12d/0x670 [ 569.529016][T13142] ? __pfx___collapse_huge_page_swapin+0x10/0x10 [ 569.529085][T13142] ? hugepage_vma_revalidate.isra.0+0x2b7/0x570 [ 569.529128][T13142] ? mm_find_pmd+0x15f/0x1b0 [ 569.529165][T13142] collapse_huge_page+0x5e4/0x3450 [ 569.529218][T13142] ? __lock_acquire+0xaa4/0x1ba0 [ 569.529270][T13142] ? __pfx_collapse_huge_page+0x10/0x10 [ 569.529324][T13142] ? do_raw_spin_lock+0x12c/0x2b0 [ 569.529353][T13142] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 569.529404][T13142] ? rcu_is_watching+0x12/0xc0 [ 569.529443][T13142] ? __pte_offset_map_lock+0x155/0x2f0 [ 569.529492][T13142] ? find_held_lock+0x2b/0x80 [ 569.529525][T13142] ? hpage_collapse_scan_pmd+0xc4b/0x14b0 [ 569.529584][T13142] hpage_collapse_scan_pmd+0xc88/0x14b0 [ 569.529644][T13142] ? __pfx_hpage_collapse_scan_pmd+0x10/0x10 [ 569.529707][T13142] madvise_collapse+0x702/0xb20 [ 569.529759][T13142] ? mtree_range_walk+0x718/0xc00 [ 569.529797][T13142] ? __pfx_madvise_collapse+0x10/0x10 [ 569.529850][T13142] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 569.529912][T13142] madvise_vma_behavior+0xca3/0x1d50 [ 569.529962][T13142] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 569.530006][T13142] ? find_vma_prev+0xda/0x160 [ 569.530031][T13142] ? __pfx_find_vma_prev+0x10/0x10 [ 569.530056][T13142] ? get_pid_task+0xfc/0x250 [ 569.530106][T13142] ? proc_fail_nth_write+0x9f/0x250 [ 569.530157][T13142] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 569.530199][T13142] madvise_walk_vmas+0x1ce/0x2c0 [ 569.530240][T13142] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 569.530290][T13142] madvise_do_behavior+0x12b/0x3b0 [ 569.530331][T13142] ? __pfx___might_resched+0x10/0x10 [ 569.530367][T13142] ? __pfx_madvise_do_behavior+0x10/0x10 [ 569.530441][T13142] ? fput+0x70/0xf0 [ 569.530487][T13142] do_madvise+0x10b/0x170 [ 569.530542][T13142] __x64_sys_madvise+0xa9/0x110 [ 569.530586][T13142] ? lockdep_hardirqs_on+0x7c/0x110 [ 569.530629][T13142] do_syscall_64+0xcd/0x230 [ 569.530677][T13142] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 569.530707][T13142] RIP: 0033:0x7fc4b4f8e169 [ 569.530731][T13142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 569.530761][T13142] RSP: 002b:00007fc4b5ed2038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 569.530789][T13142] RAX: ffffffffffffffda RBX: 00007fc4b51b5fa0 RCX: 00007fc4b4f8e169 [ 569.530810][T13142] RDX: 0000000000000019 RSI: 0000000000200007 RDI: 0000000000000000 [ 569.530828][T13142] RBP: 00007fc4b5ed2090 R08: 0000000000000000 R09: 0000000000000000 [ 569.530847][T13142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 569.530864][T13142] R13: 0000000000000000 R14: 00007fc4b51b5fa0 R15: 00007ffea33dea38 [ 569.530904][T13142] [ 571.555373][T13171] : Can't lookup blockdev [ 572.143496][T13178] FAULT_INJECTION: forcing a failure. [ 572.143496][T13178] name fail_futex, interval 1, probability 0, space 0, times 0 [ 572.160634][T13178] CPU: 0 UID: 0 PID: 13178 Comm: syz.2.1459 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 572.160676][T13178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 572.160694][T13178] Call Trace: [ 572.160704][T13178] [ 572.160716][T13178] dump_stack_lvl+0x16c/0x1f0 [ 572.160766][T13178] should_fail_ex+0x512/0x640 [ 572.160810][T13178] get_futex_key+0xabc/0x1000 [ 572.160850][T13178] ? __pfx_get_futex_key+0x10/0x10 [ 572.160900][T13178] futex_wake+0xe7/0x4e0 [ 572.160940][T13178] ? rcu_is_watching+0x12/0xc0 [ 572.160976][T13178] ? __pfx_futex_wake+0x10/0x10 [ 572.161038][T13178] do_futex+0x1e3/0x350 [ 572.161077][T13178] ? __pfx_do_futex+0x10/0x10 [ 572.161110][T13178] ? __might_fault+0xe3/0x190 [ 572.161161][T13178] mm_release+0x24e/0x300 [ 572.161201][T13178] do_exit+0x898/0x2c30 [ 572.161243][T13178] ? __pfx_futex_wake_mark+0x10/0x10 [ 572.161294][T13178] ? __pfx_do_exit+0x10/0x10 [ 572.161341][T13178] ? do_raw_spin_lock+0x12c/0x2b0 [ 572.161367][T13178] ? find_held_lock+0x2b/0x80 [ 572.161414][T13178] do_group_exit+0xd3/0x2a0 [ 572.161463][T13178] get_signal+0x2673/0x26d0 [ 572.161517][T13178] ? __pfx_get_signal+0x10/0x10 [ 572.161555][T13178] ? do_futex+0x122/0x350 [ 572.161592][T13178] ? __pfx_do_futex+0x10/0x10 [ 572.161632][T13178] arch_do_signal_or_restart+0x8f/0x7a0 [ 572.161682][T13178] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 572.161742][T13178] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 572.161796][T13178] syscall_exit_to_user_mode+0x150/0x2a0 [ 572.161845][T13178] do_syscall_64+0xda/0x230 [ 572.161910][T13178] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 572.161942][T13178] RIP: 0033:0x7f2d2a18e169 [ 572.161967][T13178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 572.161997][T13178] RSP: 002b:00007f2d2af360e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 572.162026][T13178] RAX: fffffffffffffe00 RBX: 00007f2d2a3b5fa8 RCX: 00007f2d2a18e169 [ 572.162047][T13178] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2d2a3b5fa8 [ 572.162066][T13178] RBP: 00007f2d2a3b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 572.162086][T13178] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2d2a3b5fac [ 572.162104][T13178] R13: 0000000000000000 R14: 00007fff46d7ee30 R15: 00007fff46d7ef18 [ 572.162155][T13178] [ 573.167084][T13185] svc: failed to register nfsdv3 RPC service (errno 111). [ 573.217131][T13185] svc: failed to register nfsaclv3 RPC service (errno 111). [ 575.136553][T13217] : Can't lookup blockdev [ 576.947586][T13246] FAULT_INJECTION: forcing a failure. [ 576.947586][T13246] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 576.966147][T13246] CPU: 0 UID: 0 PID: 13246 Comm: syz.0.1478 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 576.966191][T13246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 576.966210][T13246] Call Trace: [ 576.966220][T13246] [ 576.966231][T13246] dump_stack_lvl+0x16c/0x1f0 [ 576.966280][T13246] should_fail_ex+0x512/0x640 [ 576.966324][T13246] _copy_to_user+0x32/0xd0 [ 576.966368][T13246] simple_read_from_buffer+0xcb/0x170 [ 576.966423][T13246] proc_fail_nth_read+0x197/0x270 [ 576.966472][T13246] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 576.966522][T13246] ? rw_verify_area+0xcf/0x680 [ 576.966570][T13246] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 576.966618][T13246] vfs_read+0x1de/0xc70 [ 576.966656][T13246] ? __pfx___mutex_lock+0x10/0x10 [ 576.966703][T13246] ? __pfx_vfs_read+0x10/0x10 [ 576.966747][T13246] ? __fget_files+0x20e/0x3c0 [ 576.966790][T13246] ksys_read+0x12a/0x240 [ 576.966820][T13246] ? __pfx_ksys_read+0x10/0x10 [ 576.966851][T13246] ? rcu_is_watching+0x12/0xc0 [ 576.966896][T13246] do_syscall_64+0xcd/0x230 [ 576.966945][T13246] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 576.966977][T13246] RIP: 0033:0x7ff6dcb8cb7c [ 576.967001][T13246] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 576.967038][T13246] RSP: 002b:00007ff6dda86030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 576.967066][T13246] RAX: ffffffffffffffda RBX: 00007ff6dcdb5fa0 RCX: 00007ff6dcb8cb7c [ 576.967087][T13246] RDX: 000000000000000f RSI: 00007ff6dda860a0 RDI: 0000000000000003 [ 576.967107][T13246] RBP: 00007ff6dda86090 R08: 0000000000000000 R09: 0000000000000000 [ 576.967126][T13246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 576.967145][T13246] R13: 0000000000000000 R14: 00007ff6dcdb5fa0 R15: 00007ffd040353c8 [ 576.967185][T13246] [ 577.298497][T13224] kexec: Could not allocate control_code_buffer [ 577.773825][T13256] netlink: 186 bytes leftover after parsing attributes in process `syz.2.1481'. [ 580.628620][T13307] : Can't lookup blockdev [ 581.952771][T13339] netlink: 322 bytes leftover after parsing attributes in process `syz.2.1500'. [ 582.593372][T13357] GUP no longer grows the stack in syz.1.1503 (13357): 200000-401000 (1f0000) [ 582.652890][T13357] CPU: 0 UID: 0 PID: 13357 Comm: syz.1.1503 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 582.652932][T13357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 582.652949][T13357] Call Trace: [ 582.652959][T13357] [ 582.652970][T13357] dump_stack_lvl+0x16c/0x1f0 [ 582.653020][T13357] gup_vma_lookup+0x1d2/0x220 [ 582.653071][T13357] __get_user_pages+0x234/0x36f0 [ 582.653117][T13357] ? __pfx___get_user_pages+0x10/0x10 [ 582.653152][T13357] ? __kernel_write_iter+0x5a5/0xa90 [ 582.653193][T13357] get_dump_page+0x257/0x3d0 [ 582.653224][T13357] ? __pfx_get_dump_page+0x10/0x10 [ 582.653256][T13357] ? dump_user_range+0x73d/0xb30 [ 582.653308][T13357] dump_user_range+0x1c3/0xb30 [ 582.653364][T13357] ? __pfx_dump_user_range+0x10/0x10 [ 582.653422][T13357] ? elf_coredump_extra_notes_write+0xbd/0x430 [ 582.653462][T13357] ? __pfx_writenote+0x10/0x10 [ 582.653515][T13357] elf_core_dump+0x288a/0x3a90 [ 582.653578][T13357] ? __pfx_elf_core_dump+0x10/0x10 [ 582.653639][T13357] ? kasan_save_stack+0x42/0x60 [ 582.653670][T13357] ? kasan_save_stack+0x33/0x60 [ 582.653710][T13357] ? kasan_save_track+0x14/0x30 [ 582.653741][T13357] ? __kasan_kmalloc+0xaa/0xb0 [ 582.653773][T13357] ? do_coredump+0x17aa/0x4480 [ 582.653812][T13357] ? get_signal+0x22e3/0x26d0 [ 582.653847][T13357] ? arch_do_signal_or_restart+0x8f/0x7a0 [ 582.653902][T13357] ? 0xffffffffff600000 [ 582.653994][T13357] ? do_coredump+0x3183/0x4480 [ 582.654033][T13357] do_coredump+0x3183/0x4480 [ 582.654093][T13357] ? __pfx_do_coredump+0x10/0x10 [ 582.654139][T13357] ? stack_trace_save+0x8e/0xc0 [ 582.654172][T13357] ? __pfx_stack_trace_save+0x10/0x10 [ 582.654205][T13357] ? stack_depot_save_flags+0x28/0xa50 [ 582.654244][T13357] ? __lock_acquire+0xaa4/0x1ba0 [ 582.654293][T13357] ? __kasan_slab_free+0x51/0x70 [ 582.654327][T13357] ? kmem_cache_free+0x2d4/0x4d0 [ 582.654359][T13357] ? __sigqueue_free+0xba/0x2a0 [ 582.654401][T13357] ? get_signal+0xcba/0x26d0 [ 582.654438][T13357] ? arch_do_signal_or_restart+0x8f/0x7a0 [ 582.654539][T13357] ? proc_coredump_connector+0x2d1/0x4f0 [ 582.654577][T13357] ? __pfx_proc_coredump_connector+0x10/0x10 [ 582.654625][T13357] ? rcu_is_watching+0x12/0xc0 [ 582.654662][T13357] get_signal+0x22e3/0x26d0 [ 582.654717][T13357] ? force_sig_fault+0xc4/0x100 [ 582.654767][T13357] ? __pfx_get_signal+0x10/0x10 [ 582.654811][T13357] arch_do_signal_or_restart+0x8f/0x7a0 [ 582.654852][T13357] ? trace_irq_disable.constprop.0+0xd4/0x120 [ 582.654894][T13357] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 582.654960][T13357] irqentry_exit_to_user_mode+0x13f/0x280 [ 582.655004][T13357] asm_exc_page_fault+0x26/0x30 [ 582.655030][T13357] RIP: 0033:0x401000 [ 582.655055][T13357] Code: Unable to access opcode bytes at 0x400fd6. [ 582.655067][T13357] RSP: 002b:000000000000000a EFLAGS: 00010202 [ 582.655089][T13357] RAX: 0000000000000000 RBX: 00007fc4b51b5fa0 RCX: 00007fc4b4f8e169 [ 582.655106][T13357] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46 [ 582.655121][T13357] RBP: 00007fc4b5010a68 R08: 0000000000000002 R09: 0000000000000000 [ 582.655137][T13357] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 582.655151][T13357] R13: 0000000000000000 R14: 00007fc4b51b5fa0 R15: 00007ffea33dea38 [ 582.655188][T13357] [ 584.497081][ T5856] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 585.297055][T13393] FAULT_INJECTION: forcing a failure. [ 585.297055][T13393] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 585.333215][T13393] CPU: 0 UID: 0 PID: 13393 Comm: syz.0.1511 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 585.333256][T13393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 585.333273][T13393] Call Trace: [ 585.333282][T13393] [ 585.333293][T13393] dump_stack_lvl+0x16c/0x1f0 [ 585.333337][T13393] should_fail_ex+0x512/0x640 [ 585.333395][T13393] _copy_to_user+0x32/0xd0 [ 585.333438][T13393] simple_read_from_buffer+0xcb/0x170 [ 585.333490][T13393] proc_fail_nth_read+0x197/0x270 [ 585.333536][T13393] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 585.333583][T13393] ? rw_verify_area+0xcf/0x680 [ 585.333629][T13393] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 585.333676][T13393] vfs_read+0x1de/0xc70 [ 585.333713][T13393] ? __pfx___mutex_lock+0x10/0x10 [ 585.333756][T13393] ? __pfx_vfs_read+0x10/0x10 [ 585.333805][T13393] ? __fget_files+0x20e/0x3c0 [ 585.333846][T13393] ksys_read+0x12a/0x240 [ 585.333877][T13393] ? __pfx_ksys_read+0x10/0x10 [ 585.333920][T13393] do_syscall_64+0xcd/0x230 [ 585.333968][T13393] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 585.333998][T13393] RIP: 0033:0x7ff6dcb8cb7c [ 585.334022][T13393] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 585.334051][T13393] RSP: 002b:00007ff6dda86030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 585.334078][T13393] RAX: ffffffffffffffda RBX: 00007ff6dcdb5fa0 RCX: 00007ff6dcb8cb7c [ 585.334096][T13393] RDX: 000000000000000f RSI: 00007ff6dda860a0 RDI: 0000000000000004 [ 585.334114][T13393] RBP: 00007ff6dda86090 R08: 0000000000000000 R09: 0000000000000000 [ 585.334132][T13393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 585.334149][T13393] R13: 0000000000000000 R14: 00007ff6dcdb5fa0 R15: 00007ffd040353c8 [ 585.334196][T13393] [ 585.616681][T13395] svc: failed to register nfsdv3 RPC service (errno 101). [ 585.645904][T13395] svc: failed to register nfsaclv3 RPC service (errno 101). [ 587.056431][T13425] : Can't lookup blockdev [ 591.598242][T13483] FAULT_INJECTION: forcing a failure. [ 591.598242][T13483] name failslab, interval 1, probability 0, space 0, times 0 [ 591.658452][T13483] CPU: 0 UID: 0 PID: 13483 Comm: syz.0.1527 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 591.658497][T13483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 591.658514][T13483] Call Trace: [ 591.658523][T13483] [ 591.658534][T13483] dump_stack_lvl+0x16c/0x1f0 [ 591.658583][T13483] should_fail_ex+0x512/0x640 [ 591.658618][T13483] ? __kvmalloc_node_noprof+0x122/0x600 [ 591.658656][T13483] should_failslab+0xc2/0x120 [ 591.658695][T13483] __kvmalloc_node_noprof+0x135/0x600 [ 591.658731][T13483] ? __pfx_net_ctl_permissions+0x10/0x10 [ 591.658779][T13483] ? proc_sys_call_handler+0x2a6/0x5c0 [ 591.658821][T13483] ? proc_sys_call_handler+0x2a6/0x5c0 [ 591.658854][T13483] proc_sys_call_handler+0x2a6/0x5c0 [ 591.658891][T13483] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 591.658935][T13483] ? rw_verify_area+0xcf/0x680 [ 591.658987][T13483] vfs_read+0x8c8/0xc70 [ 591.659029][T13483] ? __pfx___mutex_lock+0x10/0x10 [ 591.659074][T13483] ? __pfx_vfs_read+0x10/0x10 [ 591.659129][T13483] ksys_read+0x12a/0x240 [ 591.659161][T13483] ? __pfx_ksys_read+0x10/0x10 [ 591.659189][T13483] ? rcu_is_watching+0x12/0xc0 [ 591.659232][T13483] do_syscall_64+0xcd/0x230 [ 591.659298][T13483] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 591.659341][T13483] RIP: 0033:0x7ff6dcb8e169 [ 591.659365][T13483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 591.659393][T13483] RSP: 002b:00007ff6dda44038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 591.659439][T13483] RAX: ffffffffffffffda RBX: 00007ff6dcdb6160 RCX: 00007ff6dcb8e169 [ 591.659460][T13483] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000004 [ 591.659479][T13483] RBP: 00007ff6dcc10a68 R08: 0000000000000000 R09: 0000000000000000 [ 591.659497][T13483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 591.659515][T13483] R13: 0000000000000000 R14: 00007ff6dcdb6160 R15: 00007ffd040353c8 [ 591.659555][T13483] [ 592.530073][T13506] FAULT_INJECTION: forcing a failure. [ 592.530073][T13506] name failslab, interval 1, probability 0, space 0, times 0 [ 592.574734][T13506] CPU: 0 UID: 0 PID: 13506 Comm: syz.2.1535 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 592.574781][T13506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 592.574798][T13506] Call Trace: [ 592.574808][T13506] [ 592.574819][T13506] dump_stack_lvl+0x16c/0x1f0 [ 592.574881][T13506] should_fail_ex+0x512/0x640 [ 592.574923][T13506] should_failslab+0xc2/0x120 [ 592.574964][T13506] __kmalloc_cache_noprof+0x6a/0x3e0 [ 592.574997][T13506] ? sctp_add_bind_addr+0xae/0x3f0 [ 592.575051][T13506] sctp_add_bind_addr+0xae/0x3f0 [ 592.575097][T13506] sctp_copy_local_addr_list+0x39d/0x5a0 [ 592.575151][T13506] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 592.575204][T13506] ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360 [ 592.575262][T13506] ? sctp_bind_addr_copy+0xe0/0x530 [ 592.575302][T13506] sctp_bind_addr_copy+0xe0/0x530 [ 592.575360][T13506] sctp_connect_new_asoc+0x1d7/0x790 [ 592.575398][T13506] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 592.575437][T13506] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 592.575484][T13506] ? sctp_get_af_specific+0x62/0x70 [ 592.575540][T13506] __sctp_connect+0x3f3/0xc60 [ 592.575578][T13506] ? do_raw_spin_lock+0x12c/0x2b0 [ 592.575608][T13506] ? __pfx___sctp_connect+0x10/0x10 [ 592.575644][T13506] ? __pfx_sctp_inet_connect+0x10/0x10 [ 592.575680][T13506] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 592.575728][T13506] ? __pfx_sctp_inet_connect+0x10/0x10 [ 592.575759][T13506] sctp_inet_connect+0x15f/0x200 [ 592.575794][T13506] __sys_connect_file+0x13e/0x1a0 [ 592.575835][T13506] __sys_connect+0x14d/0x170 [ 592.575869][T13506] ? __pfx___sys_connect+0x10/0x10 [ 592.575919][T13506] ? __pfx_ksys_write+0x10/0x10 [ 592.575949][T13506] ? rcu_is_watching+0x12/0xc0 [ 592.575987][T13506] __x64_sys_connect+0x72/0xb0 [ 592.576025][T13506] ? lockdep_hardirqs_on+0x7c/0x110 [ 592.576068][T13506] do_syscall_64+0xcd/0x230 [ 592.576114][T13506] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 592.576145][T13506] RIP: 0033:0x7f2d2a18e169 [ 592.576169][T13506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 592.576197][T13506] RSP: 002b:00007f2d2af36038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 592.576225][T13506] RAX: ffffffffffffffda RBX: 00007f2d2a3b5fa0 RCX: 00007f2d2a18e169 [ 592.576245][T13506] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 592.576264][T13506] RBP: 00007f2d2af36090 R08: 0000000000000000 R09: 0000000000000000 [ 592.576281][T13506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 592.576299][T13506] R13: 0000000000000000 R14: 00007f2d2a3b5fa0 R15: 00007fff46d7ef18 [ 592.576339][T13506] [ 592.963935][T13512] FAULT_INJECTION: forcing a failure. [ 592.963935][T13512] name failslab, interval 1, probability 0, space 0, times 0 [ 593.055590][T13512] CPU: 1 UID: 0 PID: 13512 Comm: syz.0.1538 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 593.055633][T13512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 593.055650][T13512] Call Trace: [ 593.055659][T13512] [ 593.055670][T13512] dump_stack_lvl+0x16c/0x1f0 [ 593.055719][T13512] should_fail_ex+0x512/0x640 [ 593.055754][T13512] ? __kmalloc_noprof+0xbf/0x510 [ 593.055793][T13512] ? ethnl_default_doit+0x1c2/0xed0 [ 593.055829][T13512] should_failslab+0xc2/0x120 [ 593.055869][T13512] __kmalloc_noprof+0xd2/0x510 [ 593.055921][T13512] ethnl_default_doit+0x1c2/0xed0 [ 593.055960][T13512] ? __nla_parse+0x40/0x60 [ 593.056004][T13512] ? __pfx_ethnl_default_doit+0x10/0x10 [ 593.056044][T13512] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 593.056098][T13512] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 593.056160][T13512] genl_family_rcv_msg_doit+0x206/0x2f0 [ 593.056210][T13512] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 593.056260][T13512] ? genl_get_cmd+0x194/0x580 [ 593.056316][T13512] ? __local_bh_enable_ip+0xa4/0x120 [ 593.056354][T13512] ? __dev_queue_xmit+0x896/0x43e0 [ 593.056385][T13512] ? __radix_tree_lookup+0x21f/0x2c0 [ 593.056433][T13512] genl_rcv_msg+0x55c/0x800 [ 593.056466][T13512] ? __pfx_genl_rcv_msg+0x10/0x10 [ 593.056492][T13512] ? __pfx___dev_queue_xmit+0x10/0x10 [ 593.056524][T13512] ? __pfx_ethnl_default_doit+0x10/0x10 [ 593.056565][T13512] ? __lock_acquire+0xaa4/0x1ba0 [ 593.056612][T13512] netlink_rcv_skb+0x16a/0x440 [ 593.056677][T13512] ? __pfx_genl_rcv_msg+0x10/0x10 [ 593.056709][T13512] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 593.056774][T13512] ? __pfx_down_read+0x10/0x10 [ 593.056804][T13512] ? netlink_deliver_tap+0x1ae/0xd30 [ 593.056851][T13512] genl_rcv+0x28/0x40 [ 593.056897][T13512] netlink_unicast+0x53a/0x7f0 [ 593.056954][T13512] ? __pfx_netlink_unicast+0x10/0x10 [ 593.056994][T13512] ? __lock_acquire+0xaa4/0x1ba0 [ 593.057046][T13512] netlink_sendmsg+0x8d1/0xdd0 [ 593.057094][T13512] ? __pfx_netlink_sendmsg+0x10/0x10 [ 593.057154][T13512] ____sys_sendmsg+0xa95/0xc70 [ 593.057184][T13512] ? copy_msghdr_from_user+0x10a/0x160 [ 593.057224][T13512] ? __pfx_____sys_sendmsg+0x10/0x10 [ 593.057273][T13512] ___sys_sendmsg+0x134/0x1d0 [ 593.057316][T13512] ? __pfx____sys_sendmsg+0x10/0x10 [ 593.057404][T13512] __sys_sendmsg+0x16d/0x220 [ 593.057447][T13512] ? __pfx___sys_sendmsg+0x10/0x10 [ 593.057501][T13512] ? rcu_is_watching+0x12/0xc0 [ 593.057563][T13512] do_syscall_64+0xcd/0x230 [ 593.057612][T13512] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 593.057644][T13512] RIP: 0033:0x7ff6dcb8e169 [ 593.057669][T13512] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 593.057698][T13512] RSP: 002b:00007ff6dda86038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 593.057727][T13512] RAX: ffffffffffffffda RBX: 00007ff6dcdb5fa0 RCX: 00007ff6dcb8e169 [ 593.057748][T13512] RDX: 00000000000400d8 RSI: 00002000000000c0 RDI: 0000000000000003 [ 593.057766][T13512] RBP: 00007ff6dda86090 R08: 0000000000000000 R09: 0000000000000000 [ 593.057784][T13512] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 593.057803][T13512] R13: 0000000000000000 R14: 00007ff6dcdb5fa0 R15: 00007ffd040353c8 [ 593.057845][T13512] [ 595.178997][T13549] FAULT_INJECTION: forcing a failure. [ 595.178997][T13549] name failslab, interval 1, probability 0, space 0, times 0 [ 595.219574][T13549] CPU: 0 UID: 0 PID: 13549 Comm: syz.2.1548 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 595.219618][T13549] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 595.219637][T13549] Call Trace: [ 595.219646][T13549] [ 595.219658][T13549] dump_stack_lvl+0x16c/0x1f0 [ 595.219708][T13549] should_fail_ex+0x512/0x640 [ 595.219745][T13549] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 595.219788][T13549] should_failslab+0xc2/0x120 [ 595.219831][T13549] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 595.219868][T13549] ? __proc_create+0xc3/0x8c0 [ 595.219905][T13549] ? __proc_create+0x2ce/0x8c0 [ 595.219946][T13549] __proc_create+0x2ce/0x8c0 [ 595.219985][T13549] ? __pfx___proc_create+0x10/0x10 [ 595.220022][T13549] ? _raw_write_unlock+0x28/0x50 [ 595.220062][T13549] ? proc_register+0x314/0x5f0 [ 595.220114][T13549] _proc_mkdir+0xb9/0x200 [ 595.220159][T13549] ? __pfx__proc_mkdir+0x10/0x10 [ 595.220206][T13549] ? __pfx_netfilter_net_init+0x10/0x10 [ 595.220244][T13549] netfilter_net_init+0x37b/0x4b0 [ 595.220279][T13549] ? sysctl_net_init+0x27/0x30 [ 595.220325][T13549] ops_init+0x1df/0x5f0 [ 595.220373][T13549] setup_net+0x21e/0x850 [ 595.220423][T13549] ? __pfx_setup_net+0x10/0x10 [ 595.220465][T13549] ? lockdep_init_map_type+0x5c/0x280 [ 595.220512][T13549] ? __pfx_down_read_killable+0x10/0x10 [ 595.220557][T13549] ? debug_mutex_init+0x37/0x70 [ 595.220594][T13549] copy_net_ns+0x2a6/0x5f0 [ 595.220647][T13549] create_new_namespaces+0x3ea/0xad0 [ 595.220696][T13549] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 595.220737][T13549] ksys_unshare+0x45b/0xa40 [ 595.220785][T13549] ? __pfx_ksys_unshare+0x10/0x10 [ 595.220830][T13549] ? ksys_write+0x1b9/0x240 [ 595.220864][T13549] ? rcu_is_watching+0x12/0xc0 [ 595.220906][T13549] __x64_sys_unshare+0x31/0x40 [ 595.220958][T13549] do_syscall_64+0xcd/0x230 [ 595.221007][T13549] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 595.221039][T13549] RIP: 0033:0x7f2d2a18e169 [ 595.221065][T13549] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 595.221096][T13549] RSP: 002b:00007f2d2af36038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 595.221125][T13549] RAX: ffffffffffffffda RBX: 00007f2d2a3b5fa0 RCX: 00007f2d2a18e169 [ 595.221146][T13549] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 595.221164][T13549] RBP: 00007f2d2af36090 R08: 0000000000000000 R09: 0000000000000000 [ 595.221183][T13549] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 595.221200][T13549] R13: 0000000000000001 R14: 00007f2d2a3b5fa0 R15: 00007fff46d7ef18 [ 595.221240][T13549] [ 595.221352][T13549] cannot create netfilter proc entry [ 596.903337][T13576] netlink: zone id is out of range [ 597.003652][T13576] netlink: zone id is out of range [ 597.041232][T13576] netlink: zone id is out of range [ 597.069291][T13576] netlink: zone id is out of range [ 597.146300][T13576] netlink: zone id is out of range [ 597.152582][T13576] netlink: zone id is out of range [ 597.168909][T13576] netlink: zone id is out of range [ 597.252704][T13576] netlink: set zone limit has 8 unknown bytes [ 597.710206][T13585] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1556'. [ 598.811731][T13608] __vm_enough_memory: pid: 13608, comm: syz.0.1560, bytes: 4503599627366400 not enough memory for the allocation [ 599.026800][T13614] : Can't lookup blockdev [ 601.409554][T13658] netlink: 'syz.3.1575': attribute type 1 has an invalid length. [ 601.978104][ T30] audit: type=1800 audit(4294967426.910:6): pid=13665 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1577" name="discovery_nqn" dev="configfs" ino=44867 res=0 errno=0 [ 602.176477][T13655] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 602.234918][T13655] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 602.295027][T13655] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 602.334878][T13655] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 602.342244][T13655] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 603.434533][ T5849] Bluetooth: hci0: command 0x0406 tx timeout [ 604.314885][ T5849] Bluetooth: hci1: command 0x0406 tx timeout [ 604.394677][ T5849] Bluetooth: hci3: command 0x0406 tx timeout [ 604.394714][ T5856] Bluetooth: hci2: command 0x0406 tx timeout [ 604.524665][T13699] [ 604.527501][T13699] ====================================================== [ 604.535949][T13699] WARNING: possible circular locking dependency detected [ 604.544383][T13699] 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 Not tainted [ 604.552926][T13699] ------------------------------------------------------ [ 604.561344][T13699] syz.3.1583/13699 is trying to acquire lock: [ 604.568618][T13699] ffff888025bb7ad8 (&q->elevator_lock){+.+.}-{4:4}, at: elv_iosched_store+0x201/0x5f0 [ 604.580131][T13699] [ 604.580131][T13699] but task is already holding lock: [ 604.588963][T13699] ffff888025bb75a8 (&q->q_usage_counter(io)#53){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20 [ 604.602454][T13699] [ 604.602454][T13699] which lock already depends on the new lock. [ 604.602454][T13699] [ 604.614933][T13699] [ 604.614933][T13699] the existing dependency chain (in reverse order) is: [ 604.625745][T13699] [ 604.625745][T13699] -> #2 (&q->q_usage_counter(io)#53){++++}-{0:0}: [ 604.636090][T13699] blk_alloc_queue+0x619/0x760 [ 604.642444][T13699] blk_mq_alloc_queue+0x179/0x290 [ 604.649101][T13699] __blk_mq_alloc_disk+0x29/0x120 [ 604.655769][T13699] nbd_dev_add+0x49d/0xbb0 [ 604.661717][T13699] nbd_init+0x181/0x320 [ 604.667336][T13699] do_one_initcall+0x120/0x6e0 [ 604.673686][T13699] kernel_init_freeable+0x5c2/0x900 [ 604.680555][T13699] kernel_init+0x1c/0x2b0 [ 604.686391][T13699] ret_from_fork+0x45/0x80 [ 604.692333][T13699] ret_from_fork_asm+0x1a/0x30 [ 604.698698][T13699] [ 604.698698][T13699] -> #1 (fs_reclaim){+.+.}-{0:0}: [ 604.707353][T13699] fs_reclaim_acquire+0x102/0x150 [ 604.714027][T13699] kmem_cache_alloc_noprof+0x53/0x3b0 [ 604.721124][T13699] __kernfs_new_node+0xd2/0x8a0 [ 604.727582][T13699] kernfs_new_node+0x13c/0x1e0 [ 604.733926][T13699] kernfs_create_dir_ns+0x4c/0x1a0 [ 604.740687][T13699] sysfs_create_dir_ns+0x13a/0x2b0 [ 604.747445][T13699] kobject_add_internal+0x2c4/0x9b0 [ 604.754320][T13699] kobject_add+0x16e/0x240 [ 604.760238][T13699] elv_register_queue+0xd3/0x2a0 [ 604.766786][T13699] blk_register_queue+0x3c4/0x560 [ 604.773450][T13699] add_disk_fwnode+0x911/0x13a0 [ 604.779903][T13699] nbd_dev_add+0x78e/0xbb0 [ 604.785841][T13699] nbd_init+0x181/0x320 [ 604.791460][T13699] do_one_initcall+0x120/0x6e0 [ 604.797823][T13699] kernel_init_freeable+0x5c2/0x900 [ 604.804695][T13699] kernel_init+0x1c/0x2b0 [ 604.810512][T13699] ret_from_fork+0x45/0x80 [ 604.816437][T13699] ret_from_fork_asm+0x1a/0x30 [ 604.822792][T13699] [ 604.822792][T13699] -> #0 (&q->elevator_lock){+.+.}-{4:4}: [ 604.832186][T13699] __lock_acquire+0x1173/0x1ba0 [ 604.838644][T13699] lock_acquire+0x179/0x350 [ 604.844685][T13699] __mutex_lock+0x199/0xb90 [ 604.850726][T13699] elv_iosched_store+0x201/0x5f0 [ 604.857290][T13699] queue_attr_store+0x270/0x310 [ 604.863744][T13699] sysfs_kf_write+0xef/0x150 [ 604.869893][T13699] kernfs_fop_write_iter+0x351/0x510 [ 604.876868][T13699] vfs_write+0x5ba/0x1180 [ 604.882690][T13699] ksys_write+0x12a/0x240 [ 604.888506][T13699] do_syscall_64+0xcd/0x230 [ 604.894547][T13699] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 604.902264][T13699] [ 604.902264][T13699] other info that might help us debug this: [ 604.902264][T13699] [ 604.914525][T13699] Chain exists of: [ 604.914525][T13699] &q->elevator_lock --> fs_reclaim --> &q->q_usage_counter(io)#53 [ 604.914525][T13699] [ 604.931038][T13699] Possible unsafe locking scenario: [ 604.931038][T13699] [ 604.939973][T13699] CPU0 CPU1 [ 604.946433][T13699] ---- ---- [ 604.952861][T13699] lock(&q->q_usage_counter(io)#53); [ 604.959329][T13699] lock(fs_reclaim); [ 604.967132][T13699] lock(&q->q_usage_counter(io)#53); [ 604.976612][T13699] lock(&q->elevator_lock); [ 604.982224][T13699] [ 604.982224][T13699] *** DEADLOCK *** [ 604.982224][T13699] [ 604.991984][T13699] 6 locks held by syz.3.1583/13699: [ 604.998209][T13699] #0: ffff8880289e3978 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370 [ 605.009103][T13699] #1: ffff888035a16420 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x240 [ 605.019911][T13699] #2: ffff88807dffd488 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510 [ 605.031652][T13699] #3: ffff8881437264b8 (kn->active#143){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510 [ 605.043805][T13699] #4: ffff888025bb75a8 (&q->q_usage_counter(io)#53){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20 [ 605.057821][T13699] #5: ffff888025bb75e0 (&q->q_usage_counter(queue)#5){+.+.}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20 [ 605.072089][T13699] [ 605.072089][T13699] stack backtrace: [ 605.079149][T13699] CPU: 0 UID: 0 PID: 13699 Comm: syz.3.1583 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 605.079182][T13699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 605.079198][T13699] Call Trace: [ 605.079206][T13699] [ 605.079215][T13699] dump_stack_lvl+0x116/0x1f0 [ 605.079253][T13699] print_circular_bug+0x275/0x350 [ 605.079289][T13699] check_noncircular+0x14c/0x170 [ 605.079326][T13699] __lock_acquire+0x1173/0x1ba0 [ 605.079366][T13699] lock_acquire+0x179/0x350 [ 605.079400][T13699] ? elv_iosched_store+0x201/0x5f0 [ 605.079426][T13699] ? __pfx___might_resched+0x10/0x10 [ 605.079456][T13699] ? do_raw_spin_lock+0x12c/0x2b0 [ 605.079479][T13699] __mutex_lock+0x199/0xb90 [ 605.079516][T13699] ? elv_iosched_store+0x201/0x5f0 [ 605.079542][T13699] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 605.079574][T13699] ? elv_iosched_store+0x201/0x5f0 [ 605.079598][T13699] ? lockdep_hardirqs_on+0x7c/0x110 [ 605.079633][T13699] ? __pfx___mutex_lock+0x10/0x10 [ 605.079672][T13699] ? __pfx_autoremove_wake_function+0x10/0x10 [ 605.079709][T13699] ? elv_iosched_store+0x201/0x5f0 [ 605.079733][T13699] elv_iosched_store+0x201/0x5f0 [ 605.079759][T13699] ? __pfx_elv_iosched_store+0x10/0x10 [ 605.079786][T13699] ? __mutex_trylock_common+0xe9/0x250 [ 605.079823][T13699] ? __pfx_elv_iosched_store+0x10/0x10 [ 605.079848][T13699] queue_attr_store+0x270/0x310 [ 605.079883][T13699] ? __pfx_queue_attr_store+0x10/0x10 [ 605.079924][T13699] ? find_held_lock+0x2b/0x80 [ 605.079949][T13699] ? sysfs_file_kobj+0xe4/0x290 [ 605.079987][T13699] ? __pfx_queue_attr_store+0x10/0x10 [ 605.080021][T13699] sysfs_kf_write+0xef/0x150 [ 605.080083][T13699] kernfs_fop_write_iter+0x351/0x510 [ 605.080123][T13699] ? __pfx_sysfs_kf_write+0x10/0x10 [ 605.080164][T13699] vfs_write+0x5ba/0x1180 [ 605.080192][T13699] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 605.080228][T13699] ? __pfx___mutex_lock+0x10/0x10 [ 605.080266][T13699] ? __pfx_vfs_write+0x10/0x10 [ 605.080301][T13699] ksys_write+0x12a/0x240 [ 605.080327][T13699] ? __pfx_ksys_write+0x10/0x10 [ 605.080353][T13699] ? rcu_is_watching+0x12/0xc0 [ 605.080383][T13699] do_syscall_64+0xcd/0x230 [ 605.080422][T13699] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 605.080448][T13699] RIP: 0033:0x7f6fc798e169 [ 605.080469][T13699] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 605.080495][T13699] RSP: 002b:00007f6fc878f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 605.080519][T13699] RAX: ffffffffffffffda RBX: 00007f6fc7bb6080 RCX: 00007f6fc798e169 [ 605.080537][T13699] RDX: 0000000000000002 RSI: 00002000000000c0 RDI: 0000000000000005 [ 605.080553][T13699] RBP: 00007f6fc7a10a68 R08: 0000000000000000 R09: 0000000000000000 [ 605.080568][T13699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 605.080583][T13699] R13: 0000000000000000 R14: 00007f6fc7bb6080 R15: 00007ffe10747118 [ 605.080608][T13699] [ 605.514515][ T5856] Bluetooth: hci0: command 0x0406 tx timeout