last executing test programs: 4.687143632s ago: executing program 1 (id=350): mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) socket(0x2, 0x1, 0x106) listen$auto(0x3, 0x81) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0xc) sync_file_range$auto(0x3fe0000000000, 0x7, 0x0, 0x0) ioctl$auto_TIOCGPTPEER2(0xffffffffffffffff, 0x5441, 0x0) syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000000040), 0xffffffffffffffff) capset$auto(0x0, &(0x7f0000000180)={0x1, 0x7, 0x6}) msgrcv$auto(0x0, 0x0, 0xff9, 0xfffffffffffffffc, 0xb4) msgsnd$auto(0x0, 0x0, 0x8, 0x9) 3.088417085s ago: executing program 1 (id=356): close_range$auto(0x2, 0xa, 0x0) r0 = io_uring_setup$auto(0x6, 0x0) (async) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffa, 0x8000) (async) r2 = socket(0x2, 0x801, 0x106) (async) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xffffffffffffffff, 0x8000) (async) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32) open(0x0, 0x22240, 0x19) (async, rerun: 32) r3 = socket(0x11, 0x80003, 0x300) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendto$auto(0x3, 0x0, 0x34, 0xfffffff9, &(0x7f0000000440)=@xdp={0x2c, 0x888, r4, 0x10}, 0x22) (async) fanotify_init$auto(0x5, 0x2000000000002) (async) socket(0x2, 0x801, 0x100) (async) connect$auto(0x3, &(0x7f00000000c0), 0x55) (async) setsockopt$auto(r2, 0x6, 0x3, 0x0, 0xa1) ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, 0x0) (async) read$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffffff, &(0x7f0000000200)=""/238, 0xee) ioctl$auto_SNDCTL_DSP_SYNC(r1, 0x5001, 0xfffffffffffffffc) (async) close_range$auto(0x2, 0x8, 0x0) (async, rerun: 64) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc000) (rerun: 64) prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x7fff, 0x0, 0x5, 0x7) (async) ioctl$auto(r0, 0x80046f45, 0xffffffffffffffff) mincore$auto(0x1000, 0x8003, 0x0) setsockopt$auto(0x3, 0x0, 0x20, 0x0, 0x28) 2.973212445s ago: executing program 3 (id=358): sendmsg$auto_TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000940)=ANY=[@ANYBLOB="68130000", @ANYBLOB="00012bbd7000fbdbdf25070000000a01098033d6b2f24ee018e9b9855ea5a93da0dbf50b4b8d86d9c820adfd997126489bd2546bfcc6fbff50c3bf8d7f45d1ebb9d89021906d31e536c6c0c92f519a0c83aea385552794c7882697d5a21c4da79315acddceacb346ab83e89a1645955894eef5f3c2c35e3124caac9166412cacae4bffc75d40f06baba4de4dbe5513052f62def8033ecf0fe621bc7a7f715aee786d0f3181c875c3977947736c9579f2a8135c790800c600", @ANYRESOCT=0x0, @ANYBLOB="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", @ANYRES32, @ANYBLOB="0000002800038008005e00", @ANYRES32, @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYBLOB="99f3a10396e315e1f108b34d1f100980b046b622a9dd59042c88a5c2dece45bb172c8508000d00", @ANYRES32, @ANYBLOB="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"], 0x1368}, 0x1, 0x0, 0x0, 0x80000}, 0x20080) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRNM\x99\x86\xdde\x1cJ\x99\x00\x00\x00,\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^B\xb8\xe4j\t3\xe4\x90\xcc\x9d\xc5\x0fo\x84\xf4\x89\v\xea\x1b\x95\xafQ;CL\"\x01@\x00\x00\x00\x00\f\x00\xc0\x13\xc8\xe2\xae\xf5\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8d\x81\x81O*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,8\x93\xba\x88\x93\x9d\xb6\x1a\x7f\xc0%\xb0\x83ROJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd6eWj\xdc\xac\x88\xf0\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\xfb\xba\xb2.$\'\x1e\x82\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\xff\xff\x00'/250, 0xfdf3, 0x39) 2.788185581s ago: executing program 3 (id=359): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) write$auto(0x3, 0x0, 0x100082) 2.783747243s ago: executing program 1 (id=367): syz_genetlink_get_family_id$auto_netdev(0x0, 0xffffffffffffffff) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x4000800) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/ksm/merge_across_nodes\x00', 0x103a01, 0x0) write$auto(0x3, 0x0, 0xfdef) 2.783297503s ago: executing program 2 (id=360): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) write$auto(0x3, 0x0, 0x100082) 2.719587671s ago: executing program 1 (id=361): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event2\x00', 0x2000, 0x0) socket(0x11, 0x3, 0x9) mmap$auto(0x0, 0x20009, 0xd, 0x15, 0x40000000000a5, 0x8000) r1 = socket(0x1e, 0x2e6562b13efde93d, 0x85) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'wg0\x00', 0x0}) sendto$auto(0x3, 0x0, 0x13, 0xfffffff9, &(0x7f0000000440)=@xdp={0x2c, 0x5, r2, 0x10}, 0x22) ioctl$auto(r0, 0x100451a, r0) ioctl$auto_EVIOCSCLOCKID(r0, 0x400445a0, &(0x7f0000000000)=0x1) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(0xffffffffffffffff, 0x7a0, 0x0) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x1) openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000240), 0x183440, 0x0) r3 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000040), 0x880c0, 0x0) ioctl$auto_USB_RAW_IOCTL_CONFIGURE(r3, 0x5509, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x0, r1, 0x2) socket(0xa, 0x2, 0x73) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) socket(0x9, 0x2, 0x2) bind$auto(0x3, 0x0, 0x6b) bind$auto(0x3, 0x0, 0x2) r4 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000140), 0x44002, 0x0) ioctl$auto_UI_END_FF_UPLOAD(r4, 0x406855c9, &(0x7f00000001c0)={0x3, 0xfffffffc, {0x3, 0x402, 0x1, {0x6, 0x4}, {0x7ff}, @ramp={0x0, 0x100, {0x7, 0x4, 0xd2, 0xfff}}}, {0x7, 0x40, 0x1ff, {0x801, 0x4}, {0x8000, 0x92}, @constant={0xd02, {0x613c, 0xae, 0x49c, 0x5}}}}) r5 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_MACSEC_CMD_UPD_RXSA(r5, &(0x7f0000006200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x4008000}, 0x44044) openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) 2.445277684s ago: executing program 2 (id=362): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/ext4/sda1/mb_stats\x00', 0x40000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume\x00', 0x189002, 0x0) openat$auto_l2cap_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x280, 0x0) openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, 0x0, 0x8042, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socket(0x2, 0x6, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/rpc/auth.unix.gid/content\x00', 0x20000, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x20000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) inotify_init1$auto(0x3000000000000) socket(0xa, 0x2, 0x3a) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x1c8b40, 0x0) openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x547402, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x482, 0x0) socketpair$auto(0x1e, 0x9, 0x8000000000000000, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) open(0x0, 0x22240, 0x55) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$auto(0x3, 0x80106f53, r0) 2.38159982s ago: executing program 3 (id=363): mmap$auto(0x5, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) getpgid(0x0) clock_nanosleep$auto(0xfffffffe, 0x1fe, &(0x7f0000000140)={0x0, 0x2800000a}, 0x0) write$auto(0x3, 0x0, 0x7fffffff) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/compaction_proactiveness\x00', 0x40001, 0x0) write$auto_proc_sys_file_operations_proc_sysctl(r0, 0x0, 0x0) setsockopt$auto(r0, 0xd, 0x4, &(0x7f00000000c0)='^}.}\x00', 0x3) write$auto(0x1, 0x0, 0x80000000) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) r1 = socket(0x2b, 0x1, 0x1) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x48, 0x80000000fffffffd, 0xfbc, 0x0, 0x0, 0x0, 0x6, 0x6, 0x8, 0x5, 0x7fffffff, 0x0, 0xffffffff80000000, 0x5, 0x61, 0x9}) r2 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0xa, 0x0) unshare$auto(0x40000080) r3 = prctl$auto(0x23, 0x3, 0x2009, 0x0, 0x0) socket(0xa, 0x6, 0x0) syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000400), r3) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000002ac0), r4) sendmsg$auto_NL802154_CMD_GET_WPAN_PHY(r4, &(0x7f0000002bc0)={0x0, 0x0, &(0x7f0000002b80)={&(0x7f0000002b00)={0x1c, r5, 0x1f97227bd58c1f83, 0x70bd2a, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}, 0x1, 0xa6, 0x0, 0x20004041}, 0x40004) ioctl$sock_SIOCGIFINDEX(r2, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r1, 0x0, 0x20000001) mmap$auto(0x0, 0x400005, 0xe3, 0x9b71, r1, 0x7) kill$auto(0x0, 0x21) 1.932970282s ago: executing program 0 (id=364): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0xf4, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) 1.840073792s ago: executing program 2 (id=365): mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) socket(0x2, 0x1, 0x106) listen$auto(0x3, 0x81) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0xc) sync_file_range$auto(0x3fe0000000000, 0x7, 0x0, 0x0) ioctl$auto_TIOCGPTPEER2(0xffffffffffffffff, 0x5441, 0x0) capset$auto(0x0, &(0x7f0000000180)={0x1, 0x7, 0x6}) msgrcv$auto(0x0, 0x0, 0xff9, 0xfffffffffffffffc, 0xb4) msgsnd$auto(0x0, 0x0, 0x8, 0x9) 1.800737867s ago: executing program 0 (id=366): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/loop12/queue/max_segments\x00', 0x800, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x2c, r3, 0x1, 0x2070bd26, 0x25dfdbf8, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x8, 0x1, 'HfR\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}]}, 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x80) sendmsg$auto_OVS_DP_CMD_GET(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, r3, 0x20, 0x70bd29, 0x25dfdbfc, {}, [@OVS_DP_ATTR_MASKS_CACHE_SIZE={0x8, 0x7, 0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x20000c7) read$auto(r0, 0x0, 0xb) 1.642379686s ago: executing program 2 (id=368): socket(0x18, 0x5, 0x2) bind$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x0, @multicast1}, 0x6b) r0 = socket(0x2a, 0x2, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/workqueue/cpumask\x00', 0x2, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r1 = socket(0x2, 0x1, 0x106) io_uring_setup$auto(0x6, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0x2, 0x6, 0x0) fcntl$auto_F_GETPIPE_SZ(r1, 0x408, 0x6) sysfs$auto(0x2, 0x0, 0x0) fsopen$auto(0x0, 0x1) epoll_create$auto(0x4) epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0) connect$auto(r1, &(0x7f00000001c0)=@in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xa}}, 0x54) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x100, 0x0) connect$auto(0x3, 0x0, 0x54) read$auto(r2, 0x0, 0x20) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb2, 0x403, 0x8000) r3 = socket(0x15, 0x5, 0x0) bind$auto(r3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) ustat$auto(0x801, 0x0) sendmsg$auto(r3, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0) write$auto(0x3, 0x0, 0x81) ioctl$auto(r0, 0x8912, 0x38) 1.608575405s ago: executing program 3 (id=369): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/ext4/sda1/mb_stats\x00', 0x40000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume\x00', 0x189002, 0x0) openat$auto_l2cap_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x280, 0x0) openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, 0x0, 0x8042, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socket(0x2, 0x6, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/rpc/auth.unix.gid/content\x00', 0x20000, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x20000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) inotify_init1$auto(0x3000000000000) socket(0xa, 0x2, 0x3a) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x1c8b40, 0x0) openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x482, 0x0) socketpair$auto(0x1e, 0x9, 0x8000000000000000, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) open(0x0, 0x22240, 0x55) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$auto(0x3, 0x6f3e, r0) 1.496672629s ago: executing program 0 (id=370): getsockopt$auto_SO_PEERCRED(0xffffffffffffffff, 0x80000001, 0x11, &(0x7f0000000000)='/sys/firmware/acpi/interrupts/gpe09\x00', 0x0) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dsp\x00', 0x20002, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f00000003c0)) ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000000)) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x2, 0x5, 0x0) semctl$auto(0x7, 0x2, 0x13, 0x1) r1 = socket(0xa, 0x801, 0x84) getsockopt$auto(r1, 0x84, 0x10, 0x0, 0x0) prctl$auto_PR_SET_SECCOMP(0x16, 0x10, 0x3, 0xd6, 0x400) setsockopt$auto(r0, 0x2, 0x28, 0x0, 0x108) close_range$auto(0x2, 0x8, 0x0) 1.27025345s ago: executing program 0 (id=372): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0x2, 0x1, 0x106) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) write$auto(0x3, 0x0, 0x100082) 1.260492709s ago: executing program 2 (id=373): mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) r0 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a4, 0xffff) mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000) madvise$auto(0x405, 0xffffffffffff0001, 0xffffffff) syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r0) sendmsg$auto_NL80211_CMD_RADAR_DETECT(0xffffffffffffffff, 0x0, 0x4008000) sendmsg$auto_NL80211_CMD_STOP_NAN(0xffffffffffffffff, 0x0, 0x815) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0) write$auto_seq_oss_f_ops_seq_oss(r1, &(0x7f0000000640)="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", 0xba0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) adjtimex$auto(&(0x7f00000005c0)={0xf332b6e, 0x0, 0x2000000000000000, 0x8, 0xd4, 0x7, 0x5, 0x0, 0x10001, 0x7, 0x2, {0x8, 0x10001}, 0x1, 0x6, 0xfffffffffffffffd, 0x1007ffd, 0x0, 0x80000004, 0xa, 0xffffefffffff628e, 0xa747, 0x1, 0x101800}) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, 0x0, 0x20100, 0x0) socket(0x2, 0x80002, 0x73) bind$auto(r2, 0x0, 0x6a) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) io_uring_setup$auto(0x6, 0x0) write$auto(r3, &(0x7f0000000340)='\xa3o\a`\f\f4\xc6\xe7\x8a\x16h\x80\xb5\xed\xe4\xec\xfe\xe50\xb9\xbb1/#\xdc\xdd\xed\xa2\x85\xa1\xd5\xf5\xfeG\xdcI\xe3c\xb8BS\x04Y\xc9N\x98\xc6I_E \xc8^T\x84Mh\xf4Y\xcc\xe4\x9al\x88\x8fX\xcb\xad\x1d*\xec\x1dG@H/N\xaa\x1b\xce\x8b\xff\xcfe\xac\xda\xb0\xbe;-y\x12\x13\x93\x1d\xb5>\x1c\x02Tv\x92\xc0\x1c\xaa\x8a8\x0e_Fv\x00\xdc\nfd\x16\xa6d\xa3z\xdf\xc7o+1\xf4Q\xf7i\xd6.\t\x10\x99\xc4\x06\xa3\xbf*\xbb\xe0H\xc9u+\x17\x93!\x1c\xc3\xcd\xc1y\xaf\xf1\xd1B\xaa[\x9d\xb6\xad\xe2\xff\x9b[{\xd1z\x18\xba\x7f\xb5\x10\xdd1\xf2\x9c\xb0=\xf09\r\xc3\x1b9\xbe\xa8\xe76[/<,\xe1\x90\xb3G}\x85E\xc6\x8ak4\xc3+\xf0\x9f\xe0F\x1b\xdb\x84\x17\xc0\x99\xf1\xb5,\x1f\x8a\xe7\x0f\xd7\xc2{>\xb9q\xc3\xa7\xaaF|\\4\x03Z\xecH\x99\xber\xab\xe6+>\x95\x86\x83\xfb\x16o\x98\xe0\xe9d\xa1z^}\xc7\x12\xe6b\xa2\xb1X\x062\x12\xec\x12.\xbb\x10\x11\xdb_Xo\xfc\xcd\x8av\x80\xf0!n\x8d\xee)\rm\xc5\xee\xd6\xde\xc7\xf8\xdf\xc1?\x82\xca\xb6X\xe3\xfc\xf8\x1a\xe7U\xd6\f\x8e\x98+\x99\x1dqtV\xb4\x05\xa4ge', 0x110000a3d9) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) madvise$auto(0x0, 0x20499d, 0x9) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) open(0x0, 0xb22142, 0x30) socket(0x2b, 0x1, 0x1) socket(0x23, 0x2, 0x0) select$auto(0xfffffffa, 0x0, 0x0, &(0x7f0000000180)={[0x1ff, 0x7, 0xd, 0x1, 0xf, 0x3, 0x7fff, 0x1, 0x200000000000003, 0x7, 0x80000001, 0x5, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xdb\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x8b\xcf\xc5D\xcc', 0x6) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x0, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) 1.188252483s ago: executing program 3 (id=374): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/ext4/sda1/mb_stats\x00', 0x40000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume\x00', 0x189002, 0x0) openat$auto_l2cap_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x280, 0x0) openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, 0x0, 0x8042, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socket(0x2, 0x6, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/rpc/auth.unix.gid/content\x00', 0x20000, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x20000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) inotify_init1$auto(0x3000000000000) socket(0xa, 0x2, 0x3a) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x1c8b40, 0x0) openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x482, 0x0) socketpair$auto(0x1e, 0x9, 0x8000000000000000, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) open(0x0, 0x22240, 0x55) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$auto(0x3, 0x80106f53, r0) (fail_nth: 5) 1.046576982s ago: executing program 1 (id=375): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) (fail_nth: 5) 636.644299ms ago: executing program 3 (id=376): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/ext4/sda1/mb_stats\x00', 0x40000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume\x00', 0x189002, 0x0) openat$auto_l2cap_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x280, 0x0) openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, 0x0, 0x8042, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socket(0x2, 0x6, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/rpc/auth.unix.gid/content\x00', 0x20000, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x20000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) inotify_init1$auto(0x3000000000000) socket(0xa, 0x2, 0x3a) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x1c8b40, 0x0) openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x547402, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x482, 0x0) socketpair$auto(0x1e, 0x9, 0x8000000000000000, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) open(0x0, 0x22240, 0x55) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$auto(0x3, 0x80106f53, r0) 617.642338ms ago: executing program 0 (id=384): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0x2, 0x1, 0x106) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) write$auto(0x3, 0x0, 0x100082) 85.798574ms ago: executing program 2 (id=377): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x2, 0x3, 0xa) r1 = openat$auto_ptdump_fops_(0xffffffffffffff9c, 0x0, 0x24c0, 0x0) iopl$auto(0x3) uname$auto(&(0x7f00000002c0)={"6bce840283c061d483ea7853c990e1377e0ac7358e484af065cd0597f417a3f6c9ddddcd42d5f2fee4627cd8aeabad15fa6e12f5b5741fe2faed6ba6c9f68adadb", "2e783511360044c5f6dec1cae39b4cb9644011589091dfbf969ab1c43d27f85eca4af5cd178982ba678b224c25bc6ed75c367e04c89a39f14cae398f5631d6431f", "0570b460cd4609575bd5430339ab439ad51d47e2670ebe93f5a9edfb79177bbec178b0b2bae0bf1bd7bb755aea2dbf6b8157055e7e88939757f9852f94b71181c4", "bfdefdec1fc6c44b78c74a977f3999b22a9e55b42fceba444afb2d1369a2e0dd4b8a1134ecc9442f88c6edc4a7503591b23d4a72ca0599bf9b38d9d6980c1ce496", "ce94880ada5c71ac2ca3cc1b190d5ae2a9c4e65075e5efb3d041ef6b01ea12effd8212ebbd5ef7f8cd2067b6192522316832918b805ff273460d19b5dfbeda765d", "25b0590cdca04119c5c0ff92c44c010521163aaa1a90963fa92d1b515891ac8e475da978b57ce087b84accea10a3e08b8ee8f31baabd044f01e72f9cf1b20cf556"}) ioctl$auto(0xffffffffffffffff, 0xffff, r1) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x9f59) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40001, 0x0) r2 = openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter\x00', 0x40001, 0x0) write$auto_ftrace_event_filter_fops_trace_events(r2, 0x0, 0x0) openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/trigger\x00', 0x88083, 0xffeb) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = fsopen$auto(0x0, 0x1) swapon$auto(&(0x7f0000000100)='/dev/radio2\x00', 0x800) fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0) r5 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000080), r4) sendmsg$auto_L2TP_CMD_TUNNEL_MODIFY(r3, &(0x7f0000003980)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5], 0x1c}, 0x1, 0x0, 0x0, 0x8080}, 0x20008800) getsockopt$auto(r0, 0x0, 0x30, 0x0, 0x0) 1.60228ms ago: executing program 1 (id=378): mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) socket(0x2, 0x1, 0x106) listen$auto(0x3, 0x81) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0xc) sync_file_range$auto(0x3fe0000000000, 0x7, 0x0, 0x0) ioctl$auto_TIOCGPTPEER2(0xffffffffffffffff, 0x5441, 0x0) capset$auto(0x0, &(0x7f0000000180)={0x1, 0x7, 0x6}) msgrcv$auto(0x0, 0x0, 0xff9, 0xfffffffffffffffc, 0xb4) msgsnd$auto(0x0, 0x0, 0x8, 0x9) 0s ago: executing program 0 (id=379): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/ext4/sda1/mb_stats\x00', 0x40000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume\x00', 0x189002, 0x0) openat$auto_l2cap_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x280, 0x0) openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, 0x0, 0x8042, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socket(0x2, 0x6, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/rpc/auth.unix.gid/content\x00', 0x20000, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x20000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = inotify_init1$auto(0x2) socket(0xa, 0x2, 0x3a) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) write$auto_nsim_udp_tunnels_info_reset_fops_udp_tunnels(r0, &(0x7f0000000100)="569ff3590dd1efe3ee0fc3051e888ffd20dbcf8910c1acd49cecfc51ba12dbff84ee1edea4c75253f1ad963901e4cb6f8e613885ddabdcedde5b5a35545c8fd46fb3f279223603e47dc05f2c80276bb08a9663f7d1832869cd8f860191610041f167d4f839800fa24030e93d19502f6db07226f1d1b8af350fdf6599c754c54e499f753ebb0bd54cb8d9916ed2268cedeeaa89566559db9fd5576b6c936c82643e7a73cd55220151fd677f6ae088c9a34a26d345d0083e542f98a7c7e09bb8babd44219f3f2aa0c82d5bc9b12c81e6bb82e3ddeeab076abd28fa90342a", 0xdd) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x1c8b40, 0x0) openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x482, 0x0) socketpair$auto(0x1e, 0x9, 0x8000000000000000, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) open(0x0, 0x22240, 0x55) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$auto(0x3, 0x80106f53, r1) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.51' (ED25519) to the list of known hosts. [ 96.894197][ T5828] cgroup: Unknown subsys name 'net' [ 96.986308][ T927] cfg80211: failed to load regulatory.db [ 97.069286][ T5828] cgroup: Unknown subsys name 'cpuset' [ 97.078465][ T5828] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 98.886625][ T5828] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 101.327723][ T5845] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 101.335615][ T5845] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 101.345548][ T5845] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 101.372831][ T5850] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 101.381321][ T5849] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 101.391075][ T5850] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 101.398523][ T5849] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 101.406361][ T5849] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 101.413881][ T5850] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 101.422099][ T5849] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 101.423476][ T5851] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 101.430132][ T5849] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 101.438416][ T5851] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 101.445053][ T5849] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 101.450567][ T5851] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 101.459275][ T5849] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 101.464864][ T5851] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 101.471796][ T5849] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 101.478832][ T5851] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 101.508947][ T5851] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 102.109819][ T5839] chnl_net:caif_netlink_parms(): no params data found [ 102.129431][ T5840] chnl_net:caif_netlink_parms(): no params data found [ 102.162989][ T5838] chnl_net:caif_netlink_parms(): no params data found [ 102.213348][ T5837] chnl_net:caif_netlink_parms(): no params data found [ 102.479059][ T5840] bridge0: port 1(bridge_slave_0) entered blocking state [ 102.487007][ T5840] bridge0: port 1(bridge_slave_0) entered disabled state [ 102.495856][ T5840] bridge_slave_0: entered allmulticast mode [ 102.503345][ T5840] bridge_slave_0: entered promiscuous mode [ 102.512068][ T5839] bridge0: port 1(bridge_slave_0) entered blocking state [ 102.519725][ T5839] bridge0: port 1(bridge_slave_0) entered disabled state [ 102.527779][ T5839] bridge_slave_0: entered allmulticast mode [ 102.535740][ T5839] bridge_slave_0: entered promiscuous mode [ 102.543588][ T5838] bridge0: port 1(bridge_slave_0) entered blocking state [ 102.550965][ T5838] bridge0: port 1(bridge_slave_0) entered disabled state [ 102.558196][ T5838] bridge_slave_0: entered allmulticast mode [ 102.566585][ T5838] bridge_slave_0: entered promiscuous mode [ 102.589326][ T5840] bridge0: port 2(bridge_slave_1) entered blocking state [ 102.596667][ T5840] bridge0: port 2(bridge_slave_1) entered disabled state [ 102.603809][ T5840] bridge_slave_1: entered allmulticast mode [ 102.612582][ T5840] bridge_slave_1: entered promiscuous mode [ 102.620341][ T5839] bridge0: port 2(bridge_slave_1) entered blocking state [ 102.627598][ T5839] bridge0: port 2(bridge_slave_1) entered disabled state [ 102.635577][ T5839] bridge_slave_1: entered allmulticast mode [ 102.643090][ T5839] bridge_slave_1: entered promiscuous mode [ 102.650030][ T5838] bridge0: port 2(bridge_slave_1) entered blocking state [ 102.657920][ T5838] bridge0: port 2(bridge_slave_1) entered disabled state [ 102.665623][ T5838] bridge_slave_1: entered allmulticast mode [ 102.672946][ T5838] bridge_slave_1: entered promiscuous mode [ 102.750483][ T5837] bridge0: port 1(bridge_slave_0) entered blocking state [ 102.758242][ T5837] bridge0: port 1(bridge_slave_0) entered disabled state [ 102.765995][ T5837] bridge_slave_0: entered allmulticast mode [ 102.773292][ T5837] bridge_slave_0: entered promiscuous mode [ 102.799507][ T5840] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 102.824206][ T5838] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 102.835263][ T5837] bridge0: port 2(bridge_slave_1) entered blocking state [ 102.842558][ T5837] bridge0: port 2(bridge_slave_1) entered disabled state [ 102.850024][ T5837] bridge_slave_1: entered allmulticast mode [ 102.858414][ T5837] bridge_slave_1: entered promiscuous mode [ 102.881522][ T5840] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 102.894075][ T5839] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 102.906459][ T5838] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 102.974751][ T5839] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 103.003540][ T5837] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 103.017212][ T5837] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 103.029341][ T5840] team0: Port device team_slave_0 added [ 103.051742][ T5838] team0: Port device team_slave_0 added [ 103.074768][ T5840] team0: Port device team_slave_1 added [ 103.097992][ T5838] team0: Port device team_slave_1 added [ 103.106574][ T5839] team0: Port device team_slave_0 added [ 103.173192][ T5839] team0: Port device team_slave_1 added [ 103.182198][ T5837] team0: Port device team_slave_0 added [ 103.191989][ T5837] team0: Port device team_slave_1 added [ 103.215493][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 103.222455][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 103.249755][ T5838] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 103.290190][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 103.297194][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 103.324459][ T5840] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 103.336727][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 103.343713][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 103.369710][ T5838] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 103.410955][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 103.418307][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 103.444956][ T5840] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 103.475396][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 103.482368][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 103.508352][ T5839] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 103.520101][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 103.527484][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 103.546119][ T5848] Bluetooth: hci1: command tx timeout [ 103.553655][ T5837] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 103.559029][ T55] Bluetooth: hci0: command tx timeout [ 103.569554][ T5849] Bluetooth: hci2: command tx timeout [ 103.580750][ T5851] Bluetooth: hci3: command tx timeout [ 103.614888][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 103.621879][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 103.647990][ T5839] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 103.659798][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 103.667284][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 103.693408][ T5837] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 103.756192][ T5838] hsr_slave_0: entered promiscuous mode [ 103.762865][ T5838] hsr_slave_1: entered promiscuous mode [ 103.776294][ T5840] hsr_slave_0: entered promiscuous mode [ 103.782676][ T5840] hsr_slave_1: entered promiscuous mode [ 103.789240][ T5840] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 103.797118][ T5840] Cannot create hsr debugfs directory [ 103.876470][ T5839] hsr_slave_0: entered promiscuous mode [ 103.883014][ T5839] hsr_slave_1: entered promiscuous mode [ 103.889984][ T5839] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 103.897622][ T5839] Cannot create hsr debugfs directory [ 103.961136][ T5837] hsr_slave_0: entered promiscuous mode [ 103.967921][ T5837] hsr_slave_1: entered promiscuous mode [ 103.974081][ T5837] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 103.982813][ T5837] Cannot create hsr debugfs directory [ 104.456526][ T5840] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 104.472245][ T5840] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 104.484880][ T5840] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 104.506377][ T5840] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 104.554341][ T5838] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 104.578050][ T5838] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 104.597497][ T5838] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 104.622556][ T5838] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 104.687728][ T5839] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 104.724188][ T5839] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 104.736396][ T5839] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 104.747772][ T5839] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 104.870036][ T5837] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 104.898288][ T5837] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 104.926489][ T5837] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 104.938416][ T5837] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 104.998515][ T5840] 8021q: adding VLAN 0 to HW filter on device bond0 [ 105.059183][ T5840] 8021q: adding VLAN 0 to HW filter on device team0 [ 105.090284][ T53] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.097619][ T53] bridge0: port 1(bridge_slave_0) entered forwarding state [ 105.118060][ T5838] 8021q: adding VLAN 0 to HW filter on device bond0 [ 105.131314][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.138523][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 105.207941][ T5839] 8021q: adding VLAN 0 to HW filter on device bond0 [ 105.263800][ T5838] 8021q: adding VLAN 0 to HW filter on device team0 [ 105.296016][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.303240][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 105.317212][ T5839] 8021q: adding VLAN 0 to HW filter on device team0 [ 105.341636][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.348866][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 105.373776][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.380979][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 105.409610][ T5837] 8021q: adding VLAN 0 to HW filter on device bond0 [ 105.454338][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.461554][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 105.501167][ T5837] 8021q: adding VLAN 0 to HW filter on device team0 [ 105.551127][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.558351][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 105.609166][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.616380][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 105.626469][ T5851] Bluetooth: hci3: command tx timeout [ 105.631941][ T5851] Bluetooth: hci0: command tx timeout [ 105.638169][ T55] Bluetooth: hci1: command tx timeout [ 105.643682][ T55] Bluetooth: hci2: command tx timeout [ 105.823180][ T5840] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 106.037873][ T5840] veth0_vlan: entered promiscuous mode [ 106.077810][ T5840] veth1_vlan: entered promiscuous mode [ 106.151976][ T5840] veth0_macvtap: entered promiscuous mode [ 106.182961][ T5840] veth1_macvtap: entered promiscuous mode [ 106.203192][ T5839] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 106.273587][ T5838] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 106.291686][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 106.303172][ T5837] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 106.332902][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 106.352078][ T5839] veth0_vlan: entered promiscuous mode [ 106.363568][ T5840] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.373531][ T5840] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.382372][ T5840] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.391126][ T5840] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.436864][ T5839] veth1_vlan: entered promiscuous mode [ 106.542495][ T5837] veth0_vlan: entered promiscuous mode [ 106.572345][ T5838] veth0_vlan: entered promiscuous mode [ 106.607258][ T5839] veth0_macvtap: entered promiscuous mode [ 106.621417][ T3567] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 106.623135][ T5837] veth1_vlan: entered promiscuous mode [ 106.641729][ T3567] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 106.669507][ T5838] veth1_vlan: entered promiscuous mode [ 106.680698][ T5839] veth1_macvtap: entered promiscuous mode [ 106.736027][ T1090] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 106.744094][ T1090] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 106.793814][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 106.806631][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 106.819182][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 106.840475][ T5838] veth0_macvtap: entered promiscuous mode [ 106.855313][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 106.866056][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 106.880102][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 106.908960][ T5838] veth1_macvtap: entered promiscuous mode [ 106.919783][ T5839] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.933554][ T5839] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.945734][ T5839] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.949428][ T5840] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 106.969900][ T5839] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.988154][ T5837] veth0_macvtap: entered promiscuous mode [ 107.000899][ T5837] veth1_macvtap: entered promiscuous mode [ 107.057781][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 107.071015][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.087074][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 107.103236][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.117687][ T5901] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4'. [ 107.118708][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 107.177664][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 107.203630][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.244669][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 107.268477][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.282447][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 107.296987][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.310276][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 107.334540][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 107.345371][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.356566][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 107.370496][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.384180][ T5907] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 107.385991][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 107.401242][ T5906] bond0: option mode: unable to set because the bond device is up [ 107.431536][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 107.442661][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.453242][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 107.464169][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.476797][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 107.487445][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.499121][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 107.517498][ T5838] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.526857][ T5838] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.535779][ T5838] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.546391][ T5838] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.561944][ T1090] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.563750][ T5837] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.578899][ T5837] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.588495][ T5837] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.597880][ T5837] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.599290][ T1090] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.672227][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.680934][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.705188][ T55] Bluetooth: hci2: command tx timeout [ 107.710665][ T55] Bluetooth: hci0: command tx timeout [ 107.716298][ T5851] Bluetooth: hci1: command tx timeout [ 107.721747][ T5851] Bluetooth: hci3: command tx timeout [ 107.854100][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.879927][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.903508][ T1090] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.927697][ T1090] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.014973][ T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.022889][ T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.107403][ T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.131060][ T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.780746][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 108.914307][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 109.794454][ T55] Bluetooth: hci0: command tx timeout [ 109.799955][ T5851] Bluetooth: hci3: command tx timeout [ 109.807165][ T5848] Bluetooth: hci1: command tx timeout [ 109.807217][ T5849] Bluetooth: hci2: command tx timeout [ 110.591704][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 110.828553][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 110.838344][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 110.940167][ T5948] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 111.178589][ T5950] Zero length message leads to an empty skb [ 111.319229][ T5950] .SR: entered promiscuous mode [ 111.523786][ T5950] Invalid ELF header magic: != ELF [ 112.095697][ T5963] delete_channel: no stack [ 112.595637][ T5972] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 112.803217][ T5979] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 115.684894][ T6017] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input5 [ 116.757216][ T6042] ubi0: attaching mtd0 [ 116.762227][ T6039] mkiss: ax0: crc mode is auto. [ 116.783107][ T6042] ubi0: scanning is finished [ 116.803048][ T6042] ubi0: empty MTD device detected [ 116.868880][ T6042] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 116.959157][ T6040] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz.1.34: bg 4: bad block bitmap checksum [ 117.033435][ T6047] Invalid ELF header magic: != ELF [ 117.044820][ T6040] EXT4-fs (sda1): Delayed block allocation failed for inode 1924 at logical offset 0 with max blocks 1 with error 74 [ 117.158337][ T6040] EXT4-fs (sda1): This should not happen!! Data will be lost [ 117.158337][ T6040] [ 117.211117][ T6042] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 117.221512][ T6053] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1182798186.2149993074.1795541374), cmd(0) [ 117.259578][ T6053] ubi0: attaching mtd0 [ 117.263720][ T6053] ubi0 error: ubi_attach_mtd_dev: bad VID header (4198269) or data offsets (4198333) [ 118.932674][ T6036] vivid-003: ================= START STATUS ================= [ 118.959404][ T6036] vivid-003: Radio HW Seek Mode: Bounded [ 118.999630][ T6080] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input6 [ 119.008448][ T6036] vivid-003: Radio Programmable HW Seek: false [ 119.042988][ T6036] vivid-003: RDS Rx I/O Mode: Block I/O [ 119.087782][ T30] audit: type=1326 audit(1744548717.195:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6078 comm="syz.2.45" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6caa98d169 code=0x0 [ 119.160449][ T6036] vivid-003: Generate RBDS Instead of RDS: false [ 119.190562][ T6036] vivid-003: RDS Reception: true [ 119.197062][ T6079] FAULT_INJECTION: forcing a failure. [ 119.197062][ T6079] name failslab, interval 1, probability 0, space 0, times 1 [ 119.210094][ T6036] vivid-003: RDS Program Type: 0 inactive [ 119.219453][ T6036] vivid-003: RDS PS Name: inactive [ 119.240772][ T6079] CPU: 1 UID: 0 PID: 6079 Comm: syz.2.45 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 119.240817][ T6079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 119.240836][ T6079] Call Trace: [ 119.240847][ T6079] [ 119.240864][ T6079] dump_stack_lvl+0x16c/0x1f0 [ 119.240919][ T6079] should_fail_ex+0x512/0x640 [ 119.240958][ T6079] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 119.241015][ T6079] should_failslab+0xc2/0x120 [ 119.241046][ T6079] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 119.241098][ T6079] ? __kernfs_new_node+0xd2/0x8a0 [ 119.241155][ T6079] __kernfs_new_node+0xd2/0x8a0 [ 119.241212][ T6079] ? __pfx___kernfs_new_node+0x10/0x10 [ 119.241274][ T6079] ? find_held_lock+0x2b/0x80 [ 119.241324][ T6079] ? kernfs_root+0xee/0x2a0 [ 119.241383][ T6079] kernfs_new_node+0x13c/0x1e0 [ 119.241425][ T6079] __kernfs_create_file+0x53/0x350 [ 119.241473][ T6079] sysfs_add_file_mode_ns+0x207/0x3c0 [ 119.241533][ T6079] internal_create_group+0x578/0xf30 [ 119.241597][ T6079] ? __pfx_internal_create_group+0x10/0x10 [ 119.241656][ T6079] ? kernfs_create_link+0x1bd/0x240 [ 119.241705][ T6079] internal_create_groups+0x9d/0x150 [ 119.241762][ T6079] device_add+0x6d1/0x1a70 [ 119.241801][ T6079] ? __pfx_device_add+0x10/0x10 [ 119.241835][ T6079] ? lockdep_init_map_type+0x5c/0x280 [ 119.241867][ T6079] ? __init_waitqueue_head+0xca/0x150 [ 119.241914][ T6079] netdev_register_kobject+0x182/0x3a0 [ 119.241970][ T6079] register_netdevice+0x13dc/0x2270 [ 119.242026][ T6079] ? __pfx_register_netdevice+0x10/0x10 [ 119.242087][ T6079] __ip_tunnel_create+0x4a8/0x680 [ 119.242139][ T6079] ? __pfx___ip_tunnel_create+0x10/0x10 [ 119.242189][ T6079] ? read_word_at_a_time+0xe/0x20 [ 119.242230][ T6079] ip_tunnel_init_net+0x22f/0x7d0 [ 119.242285][ T6079] ? __pfx_ip_tunnel_init_net+0x10/0x10 [ 119.242350][ T6079] ? trace_kmalloc+0x2b/0xd0 [ 119.242384][ T6079] ? lockdep_init_map_type+0x5c/0x280 [ 119.242421][ T6079] ? __pfx_ipgre_tap_init_net+0x10/0x10 [ 119.242462][ T6079] ops_init+0x1df/0x5f0 [ 119.242511][ T6079] setup_net+0x21e/0x850 [ 119.242561][ T6079] ? __pfx_setup_net+0x10/0x10 [ 119.242603][ T6079] ? lockdep_init_map_type+0x5c/0x280 [ 119.242634][ T6079] ? __pfx_down_read_killable+0x10/0x10 [ 119.242670][ T6079] ? debug_mutex_init+0x37/0x70 [ 119.242715][ T6079] copy_net_ns+0x2a6/0x5f0 [ 119.242780][ T6079] create_new_namespaces+0x3ea/0xad0 [ 119.242835][ T6079] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 119.242884][ T6079] ksys_unshare+0x45b/0xa40 [ 119.242952][ T6079] ? __pfx_ksys_unshare+0x10/0x10 [ 119.243018][ T6079] ? xfd_validate_state+0x5d/0x180 [ 119.243058][ T6079] ? rcu_is_watching+0x12/0xc0 [ 119.243109][ T6079] __x64_sys_unshare+0x31/0x40 [ 119.243158][ T6079] do_syscall_64+0xcd/0x260 [ 119.243211][ T6079] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 119.243243][ T6079] RIP: 0033:0x7f6caa98d169 [ 119.243270][ T6079] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 119.243309][ T6079] RSP: 002b:00007f6cab79c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 119.243340][ T6079] RAX: ffffffffffffffda RBX: 00007f6caaba5fa0 RCX: 00007f6caa98d169 [ 119.243361][ T6079] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 119.243380][ T6079] RBP: 00007f6caaa0e990 R08: 0000000000000000 R09: 0000000000000000 [ 119.243398][ T6079] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 119.243415][ T6079] R13: 0000000000000000 R14: 00007f6caaba5fa0 R15: 00007ffd5be01618 [ 119.243457][ T6079] [ 119.614591][ T6036] vivid-003: RDS Radio Text: inactive [ 119.620243][ T6036] vivid-003: RDS Traffic Announcement: false inactive [ 119.635163][ T6036] vivid-003: RDS Traffic Program: false inactive [ 119.654296][ T6036] vivid-003: RDS Music: false inactive [ 119.659857][ T6036] vivid-003: ================== END STATUS ================== [ 120.625061][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 122.294694][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 122.303529][ T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!! [ 122.551079][ T6108] process 'syz.1.50' launched './file0' with NULL argv: empty string added [ 122.655038][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 123.489989][ T1103] EXT4-fs (sda1): Delayed block allocation failed for inode 1924 at logical offset 0 with max blocks 1 with error 117 [ 123.547581][ T1103] EXT4-fs (sda1): This should not happen!! Data will be lost [ 123.547581][ T1103] [ 124.065386][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 124.257785][ T6144] FAULT_INJECTION: forcing a failure. [ 124.257785][ T6144] name failslab, interval 1, probability 0, space 0, times 0 [ 124.273482][ T6144] CPU: 0 UID: 0 PID: 6144 Comm: syz.3.58 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 124.273526][ T6144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 124.273545][ T6144] Call Trace: [ 124.273555][ T6144] [ 124.273567][ T6144] dump_stack_lvl+0x16c/0x1f0 [ 124.273635][ T6144] should_fail_ex+0x512/0x640 [ 124.273671][ T6144] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 124.273724][ T6144] should_failslab+0xc2/0x120 [ 124.273754][ T6144] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 124.273801][ T6144] ? __proc_create+0xc3/0x8c0 [ 124.273834][ T6144] ? __proc_create+0x2ce/0x8c0 [ 124.273873][ T6144] __proc_create+0x2ce/0x8c0 [ 124.273908][ T6144] ? __pfx___proc_create+0x10/0x10 [ 124.273969][ T6144] proc_mkdir+0x81/0x170 [ 124.274003][ T6144] ? __pfx_proc_mkdir+0x10/0x10 [ 124.274045][ T6144] ? __pfx_sunrpc_init_net+0x10/0x10 [ 124.274081][ T6144] ? __pfx_sunrpc_init_net+0x10/0x10 [ 124.274110][ T6144] rpc_proc_init+0x7e/0xe0 [ 124.274144][ T6144] sunrpc_init_net+0x29/0x190 [ 124.274176][ T6144] ops_init+0x1df/0x5f0 [ 124.274232][ T6144] setup_net+0x21e/0x850 [ 124.274281][ T6144] ? __pfx_setup_net+0x10/0x10 [ 124.274324][ T6144] ? lockdep_init_map_type+0x5c/0x280 [ 124.274357][ T6144] ? __pfx_down_read_killable+0x10/0x10 [ 124.274392][ T6144] ? debug_mutex_init+0x37/0x70 [ 124.274439][ T6144] copy_net_ns+0x2a6/0x5f0 [ 124.274494][ T6144] create_new_namespaces+0x3ea/0xad0 [ 124.274549][ T6144] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 124.274602][ T6144] ksys_unshare+0x45b/0xa40 [ 124.274652][ T6144] ? __pfx_ksys_unshare+0x10/0x10 [ 124.274700][ T6144] ? xfd_validate_state+0x5d/0x180 [ 124.274737][ T6144] ? rcu_is_watching+0x12/0xc0 [ 124.274786][ T6144] __x64_sys_unshare+0x31/0x40 [ 124.274836][ T6144] do_syscall_64+0xcd/0x260 [ 124.274888][ T6144] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 124.274920][ T6144] RIP: 0033:0x7fb92098d169 [ 124.274960][ T6144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 124.274991][ T6144] RSP: 002b:00007fb921863038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 124.275021][ T6144] RAX: ffffffffffffffda RBX: 00007fb920ba5fa0 RCX: 00007fb92098d169 [ 124.275041][ T6144] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 124.275058][ T6144] RBP: 00007fb920a0e990 R08: 0000000000000000 R09: 0000000000000000 [ 124.275076][ T6144] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 124.275092][ T6144] R13: 0000000000000000 R14: 00007fb920ba5fa0 R15: 00007ffee23034a8 [ 124.275132][ T6144] [ 126.029244][ T6177] FAULT_INJECTION: forcing a failure. [ 126.029244][ T6177] name failslab, interval 1, probability 0, space 0, times 0 [ 126.074392][ T6177] CPU: 1 UID: 0 PID: 6177 Comm: syz.3.69 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 126.074440][ T6177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 126.074459][ T6177] Call Trace: [ 126.074470][ T6177] [ 126.074482][ T6177] dump_stack_lvl+0x16c/0x1f0 [ 126.074536][ T6177] should_fail_ex+0x512/0x640 [ 126.074573][ T6177] ? __kmalloc_noprof+0xbf/0x510 [ 126.074629][ T6177] ? ima_write_template_field_data+0x5d/0x1f0 [ 126.074669][ T6177] should_failslab+0xc2/0x120 [ 126.074700][ T6177] __kmalloc_noprof+0xd2/0x510 [ 126.074748][ T6177] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.074795][ T6177] ima_write_template_field_data+0x5d/0x1f0 [ 126.074844][ T6177] ima_eventdigest_init_common+0x154/0x430 [ 126.074889][ T6177] ? __pfx_ima_eventdigest_init_common+0x10/0x10 [ 126.074959][ T6177] ? rcu_is_watching+0x12/0xc0 [ 126.075000][ T6177] ? trace_kmalloc+0x2b/0xd0 [ 126.075031][ T6177] ? __kmalloc_noprof+0x242/0x510 [ 126.075089][ T6177] ima_alloc_init_template+0x39d/0x720 [ 126.075124][ T6177] ? rcu_is_watching+0x12/0xc0 [ 126.075168][ T6177] ima_store_measurement+0x1eb/0x5c0 [ 126.075205][ T6177] ? __pfx_ima_store_measurement+0x10/0x10 [ 126.075240][ T6177] ? vfs_getxattr_alloc+0xec/0x340 [ 126.075295][ T6177] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 126.075346][ T6177] process_measurement+0x1bd6/0x2360 [ 126.075401][ T6177] ? __pfx_process_measurement+0x10/0x10 [ 126.075449][ T6177] ? find_held_lock+0x2b/0x80 [ 126.075486][ T6177] ? rcu_is_watching+0x12/0xc0 [ 126.075519][ T6177] ? mod_objcg_state+0x52f/0x940 [ 126.075558][ T6177] ? lockdep_hardirqs_on+0x7c/0x110 [ 126.075625][ T6177] ? debug_mutex_init+0x37/0x70 [ 126.075660][ T6177] ? inode_to_bdi+0x9e/0x160 [ 126.075693][ T6177] ima_file_check+0xc5/0x110 [ 126.075745][ T6177] ? __pfx_ima_file_check+0x10/0x10 [ 126.075807][ T6177] security_file_post_open+0x8e/0x210 [ 126.075849][ T6177] path_openat+0x147d/0x2d40 [ 126.075910][ T6177] ? __pfx_path_openat+0x10/0x10 [ 126.075969][ T6177] do_filp_open+0x20b/0x470 [ 126.076018][ T6177] ? __pfx_do_filp_open+0x10/0x10 [ 126.076097][ T6177] ? alloc_fd+0x471/0x7d0 [ 126.076156][ T6177] do_sys_openat2+0x11b/0x1d0 [ 126.076191][ T6177] ? __pfx_do_sys_openat2+0x10/0x10 [ 126.076243][ T6177] __x64_sys_openat+0x174/0x210 [ 126.076280][ T6177] ? __pfx___x64_sys_openat+0x10/0x10 [ 126.076318][ T6177] ? rcu_is_watching+0x12/0xc0 [ 126.076371][ T6177] do_syscall_64+0xcd/0x260 [ 126.076424][ T6177] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.076456][ T6177] RIP: 0033:0x7fb92098d169 [ 126.076481][ T6177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 126.076511][ T6177] RSP: 002b:00007fb921863038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 126.076540][ T6177] RAX: ffffffffffffffda RBX: 00007fb920ba5fa0 RCX: 00007fb92098d169 [ 126.076561][ T6177] RDX: 0000000000040000 RSI: 00002000000001c0 RDI: ffffffffffffff9c [ 126.076581][ T6177] RBP: 00007fb920a0e990 R08: 0000000000000000 R09: 0000000000000000 [ 126.076599][ T6177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 126.076617][ T6177] R13: 0000000000000000 R14: 00007fb920ba5fa0 R15: 00007ffee23034a8 [ 126.076658][ T6177] [ 126.401767][ C1] vkms_vblank_simulate: vblank timer overrun [ 126.474508][ T30] audit: type=1804 audit(1744548724.595:3): pid=6177 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.3.69" name="/newroot/sys/kernel/debug/tracing/saved_cmdlines" dev="tracefs" ino=266 res=0 errno=0 [ 131.706593][ T6278] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input7 [ 131.774756][ T30] audit: type=1326 audit(1744548729.905:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6273 comm="syz.0.93" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f386db8d169 code=0x0 [ 131.867818][ T6275] FAULT_INJECTION: forcing a failure. [ 131.867818][ T6275] name failslab, interval 1, probability 0, space 0, times 0 [ 132.012593][ T6275] CPU: 0 UID: 0 PID: 6275 Comm: syz.0.93 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 132.012640][ T6275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 132.012659][ T6275] Call Trace: [ 132.012671][ T6275] [ 132.012684][ T6275] dump_stack_lvl+0x16c/0x1f0 [ 132.012745][ T6275] should_fail_ex+0x512/0x640 [ 132.012781][ T6275] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 132.012835][ T6275] should_failslab+0xc2/0x120 [ 132.012864][ T6275] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 132.012919][ T6275] ? __kernfs_new_node+0xd2/0x8a0 [ 132.012977][ T6275] __kernfs_new_node+0xd2/0x8a0 [ 132.013033][ T6275] ? __pfx___kernfs_new_node+0x10/0x10 [ 132.013095][ T6275] ? find_held_lock+0x2b/0x80 [ 132.013143][ T6275] ? kernfs_root+0xee/0x2a0 [ 132.013202][ T6275] kernfs_new_node+0x13c/0x1e0 [ 132.013244][ T6275] __kernfs_create_file+0x53/0x350 [ 132.013292][ T6275] sysfs_add_file_mode_ns+0x207/0x3c0 [ 132.013352][ T6275] internal_create_group+0x578/0xf30 [ 132.013421][ T6275] ? __pfx_internal_create_group+0x10/0x10 [ 132.013481][ T6275] ? kernfs_create_link+0x1bd/0x240 [ 132.013536][ T6275] internal_create_groups+0x9d/0x150 [ 132.013593][ T6275] device_add+0xf30/0x1a70 [ 132.013632][ T6275] ? __pfx_device_add+0x10/0x10 [ 132.013666][ T6275] ? lockdep_init_map_type+0x5c/0x280 [ 132.013699][ T6275] ? __init_waitqueue_head+0xca/0x150 [ 132.013758][ T6275] netdev_register_kobject+0x182/0x3a0 [ 132.013814][ T6275] register_netdevice+0x13dc/0x2270 [ 132.013872][ T6275] ? __pfx_register_netdevice+0x10/0x10 [ 132.013922][ T6275] ? net_generic+0xea/0x2a0 [ 132.013973][ T6275] register_netdev+0x34/0x50 [ 132.014019][ T6275] ip6_tnl_init_net+0x2c7/0x4d0 [ 132.014060][ T6275] ? __pfx_ip6_tnl_init_net+0x10/0x10 [ 132.014099][ T6275] ops_init+0x1df/0x5f0 [ 132.014150][ T6275] setup_net+0x21e/0x850 [ 132.014199][ T6275] ? __pfx_setup_net+0x10/0x10 [ 132.014245][ T6275] ? lockdep_init_map_type+0x5c/0x280 [ 132.014275][ T6275] ? __pfx_down_read_killable+0x10/0x10 [ 132.014310][ T6275] ? debug_mutex_init+0x37/0x70 [ 132.014363][ T6275] copy_net_ns+0x2a6/0x5f0 [ 132.014423][ T6275] create_new_namespaces+0x3ea/0xad0 [ 132.014481][ T6275] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 132.014532][ T6275] ksys_unshare+0x45b/0xa40 [ 132.014582][ T6275] ? __pfx_ksys_unshare+0x10/0x10 [ 132.014629][ T6275] ? xfd_validate_state+0x5d/0x180 [ 132.014667][ T6275] ? rcu_is_watching+0x12/0xc0 [ 132.014717][ T6275] __x64_sys_unshare+0x31/0x40 [ 132.014768][ T6275] do_syscall_64+0xcd/0x260 [ 132.014819][ T6275] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 132.014852][ T6275] RIP: 0033:0x7f386db8d169 [ 132.014876][ T6275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 132.014907][ T6275] RSP: 002b:00007f386ea26038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 132.014936][ T6275] RAX: ffffffffffffffda RBX: 00007f386dda5fa0 RCX: 00007f386db8d169 [ 132.014956][ T6275] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 132.014974][ T6275] RBP: 00007f386dc0e990 R08: 0000000000000000 R09: 0000000000000000 [ 132.014993][ T6275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 132.015010][ T6275] R13: 0000000000000000 R14: 00007f386dda5fa0 R15: 00007ffc0be16ed8 [ 132.015051][ T6275] [ 133.545282][ T6300] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1182798186.2149993074.1795541374), cmd(0) [ 133.575840][ T6300] ubi0: attaching mtd0 [ 133.580111][ T6300] ubi0 error: ubi_attach_mtd_dev: bad VID header (4198269) or data offsets (4198333) [ 134.161509][ T6309] mkiss: ax0: crc mode is auto. [ 134.195503][ T6310] ubi0: attaching mtd0 [ 134.212871][ T6310] ubi0: scanning is finished [ 134.223033][ T6310] ubi0: empty MTD device detected [ 134.228588][ T6310] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 134.342629][ T6313] Invalid ELF header magic: != ELF [ 134.392460][ T6311] EXT4-fs (sda1): Delayed block allocation failed for inode 1924 at logical offset 0 with max blocks 1 with error 117 [ 134.432052][ T6310] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 134.477317][ T6311] EXT4-fs (sda1): This should not happen!! Data will be lost [ 134.477317][ T6311] [ 135.927915][ T6337] bond0: option mode: unable to set because the bond device is up [ 135.955758][ T6337] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 135.994567][ T6308] vivid-003: ================= START STATUS ================= [ 136.002312][ T6308] vivid-003: Radio HW Seek Mode: Bounded [ 136.008925][ T6308] vivid-003: Radio Programmable HW Seek: false [ 136.028489][ T6308] vivid-003: RDS Rx I/O Mode: Block I/O [ 136.039826][ T6308] vivid-003: Generate RBDS Instead of RDS: false [ 136.048354][ T6308] vivid-003: RDS Reception: true [ 136.053539][ T6308] vivid-003: RDS Program Type: 0 inactive [ 136.063778][ T6308] vivid-003: RDS PS Name: inactive [ 136.073233][ T6308] vivid-003: RDS Radio Text: inactive [ 136.080593][ T6308] vivid-003: RDS Traffic Announcement: false inactive [ 136.090571][ T6308] vivid-003: RDS Traffic Program: false inactive [ 136.100028][ T6308] vivid-003: RDS Music: false inactive [ 136.116724][ T6308] vivid-003: ================== END STATUS ================== [ 136.490077][ T6346] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input8 [ 136.558446][ T30] audit: type=1326 audit(1744548734.675:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6343 comm="syz.1.108" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f72f118d169 code=0x0 [ 136.631602][ T6344] FAULT_INJECTION: forcing a failure. [ 136.631602][ T6344] name failslab, interval 1, probability 0, space 0, times 0 [ 136.659953][ T6344] CPU: 1 UID: 0 PID: 6344 Comm: syz.1.108 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 136.660002][ T6344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 136.660020][ T6344] Call Trace: [ 136.660031][ T6344] [ 136.660043][ T6344] dump_stack_lvl+0x16c/0x1f0 [ 136.660161][ T6344] should_fail_ex+0x512/0x640 [ 136.660200][ T6344] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 136.660255][ T6344] should_failslab+0xc2/0x120 [ 136.660286][ T6344] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 136.660338][ T6344] ? __kernfs_new_node+0xd2/0x8a0 [ 136.660397][ T6344] __kernfs_new_node+0xd2/0x8a0 [ 136.660453][ T6344] ? __pfx___kernfs_new_node+0x10/0x10 [ 136.660516][ T6344] ? find_held_lock+0x2b/0x80 [ 136.660559][ T6344] ? kernfs_root+0xee/0x2a0 [ 136.660619][ T6344] kernfs_new_node+0x13c/0x1e0 [ 136.660661][ T6344] __kernfs_create_file+0x53/0x350 [ 136.660710][ T6344] sysfs_add_file_mode_ns+0x207/0x3c0 [ 136.660770][ T6344] sysfs_merge_group+0x1aa/0x340 [ 136.660803][ T6344] ? __pfx_sysfs_merge_group+0x10/0x10 [ 136.660889][ T6344] ? __pfx_dev_add_physical_location+0x10/0x10 [ 136.660949][ T6344] ? bus_to_subsys+0x12d/0x160 [ 136.660993][ T6344] dpm_sysfs_add+0x237/0x280 [ 136.661028][ T6344] device_add+0x9a6/0x1a70 [ 136.661067][ T6344] ? __pfx_device_add+0x10/0x10 [ 136.661102][ T6344] ? lockdep_init_map_type+0x5c/0x280 [ 136.661137][ T6344] ? __init_waitqueue_head+0xca/0x150 [ 136.661187][ T6344] netdev_register_kobject+0x182/0x3a0 [ 136.661245][ T6344] register_netdevice+0x13dc/0x2270 [ 136.661304][ T6344] ? __pfx_register_netdevice+0x10/0x10 [ 136.661367][ T6344] __ip_tunnel_create+0x4a8/0x680 [ 136.661418][ T6344] ? __pfx___ip_tunnel_create+0x10/0x10 [ 136.661470][ T6344] ? read_word_at_a_time+0xe/0x20 [ 136.661510][ T6344] ip_tunnel_init_net+0x22f/0x7d0 [ 136.661565][ T6344] ? __pfx_ip_tunnel_init_net+0x10/0x10 [ 136.661623][ T6344] ? trace_kmalloc+0x2b/0xd0 [ 136.661657][ T6344] ? lockdep_init_map_type+0x5c/0x280 [ 136.661695][ T6344] ? __pfx_ipgre_tap_init_net+0x10/0x10 [ 136.661737][ T6344] ops_init+0x1df/0x5f0 [ 136.661804][ T6344] setup_net+0x21e/0x850 [ 136.661880][ T6344] ? __pfx_setup_net+0x10/0x10 [ 136.661924][ T6344] ? lockdep_init_map_type+0x5c/0x280 [ 136.661957][ T6344] ? __pfx_down_read_killable+0x10/0x10 [ 136.661995][ T6344] ? debug_mutex_init+0x37/0x70 [ 136.662042][ T6344] copy_net_ns+0x2a6/0x5f0 [ 136.662097][ T6344] create_new_namespaces+0x3ea/0xad0 [ 136.662155][ T6344] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 136.662206][ T6344] ksys_unshare+0x45b/0xa40 [ 136.662258][ T6344] ? __pfx_ksys_unshare+0x10/0x10 [ 136.662306][ T6344] ? xfd_validate_state+0x5d/0x180 [ 136.662345][ T6344] ? rcu_is_watching+0x12/0xc0 [ 136.662397][ T6344] __x64_sys_unshare+0x31/0x40 [ 136.662447][ T6344] do_syscall_64+0xcd/0x260 [ 136.662498][ T6344] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 136.662530][ T6344] RIP: 0033:0x7f72f118d169 [ 136.662556][ T6344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 136.662587][ T6344] RSP: 002b:00007f72f1fb5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 136.662616][ T6344] RAX: ffffffffffffffda RBX: 00007f72f13a5fa0 RCX: 00007f72f118d169 [ 136.662636][ T6344] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 136.662655][ T6344] RBP: 00007f72f120e990 R08: 0000000000000000 R09: 0000000000000000 [ 136.662673][ T6344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 136.662691][ T6344] R13: 0000000000000000 R14: 00007f72f13a5fa0 R15: 00007fffbd7c4d68 [ 136.662734][ T6344] [ 137.648309][ T6358] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1182798186.2149993074.1795541374), cmd(0) [ 137.671801][ T6361] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9 [ 137.733693][ T6363] ubi0: attaching mtd0 [ 137.783031][ T6363] ubi0 error: ubi_attach_mtd_dev: bad VID header (4198269) or data offsets (4198333) [ 137.952333][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 137.967920][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 138.737940][ T6377] ubi0: attaching mtd0 [ 138.795980][ T6377] ubi0: scanning is finished [ 138.837851][ T6377] ubi0: empty MTD device detected [ 138.845414][ T6377] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 138.937400][ T6380] Invalid ELF header magic: != ELF [ 139.108934][ T6386] bond0: option mode: unable to set because the bond device is up [ 139.143376][ T6386] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 139.169256][ T6377] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 139.502752][ T6395] .SR: entered promiscuous mode [ 139.639832][ T6397] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 139.670740][ T6395] Invalid ELF header magic: != ELF [ 143.348647][ T5849] Bluetooth: hci2: unexpected event 0x3e length: 508 > 260 [ 143.348690][ T5849] Bluetooth: hci2: unexpected subevent 0x02 length: 507 > 260 [ 143.368104][ T5849] Bluetooth: hci2: Dropping invalid advertising data [ 143.375388][ T5849] Bluetooth: hci2: unknown advertising packet type: 0xe9 [ 143.409202][ T6459] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1182798186.2149993074.1795541374), cmd(0) [ 143.429793][ T6459] ubi0: attaching mtd0 [ 143.433922][ T6459] ubi0 error: ubi_attach_mtd_dev: bad VID header (4198269) or data offsets (4198333) [ 143.611225][ T6452] .SR: entered promiscuous mode [ 143.765798][ T6466] netlink: 28 bytes leftover after parsing attributes in process `syz.3.144'. [ 144.043413][ T6469] FAULT_INJECTION: forcing a failure. [ 144.043413][ T6469] name failslab, interval 1, probability 0, space 0, times 0 [ 144.057258][ T6469] CPU: 0 UID: 0 PID: 6469 Comm: syz.2.145 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 144.057299][ T6469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 144.057326][ T6469] Call Trace: [ 144.057336][ T6469] [ 144.057347][ T6469] dump_stack_lvl+0x16c/0x1f0 [ 144.057396][ T6469] should_fail_ex+0x512/0x640 [ 144.057431][ T6469] ? fs_reclaim_acquire+0xae/0x150 [ 144.057471][ T6469] ? tomoyo_encode2+0x100/0x3e0 [ 144.057511][ T6469] should_failslab+0xc2/0x120 [ 144.057541][ T6469] __kmalloc_noprof+0xd2/0x510 [ 144.057596][ T6469] tomoyo_encode2+0x100/0x3e0 [ 144.057642][ T6469] tomoyo_encode+0x29/0x50 [ 144.057682][ T6469] tomoyo_realpath_from_path+0x18f/0x6e0 [ 144.057730][ T6469] ? tomoyo_profile+0x47/0x60 [ 144.057781][ T6469] tomoyo_path_number_perm+0x245/0x580 [ 144.057815][ T6469] ? tomoyo_path_number_perm+0x237/0x580 [ 144.057854][ T6469] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 144.057893][ T6469] ? find_held_lock+0x2b/0x80 [ 144.057970][ T6469] ? find_held_lock+0x2b/0x80 [ 144.058010][ T6469] ? hook_file_ioctl_common+0x145/0x410 [ 144.058054][ T6469] ? __fget_files+0x20e/0x3c0 [ 144.058107][ T6469] security_file_ioctl+0x9b/0x240 [ 144.058148][ T6469] __x64_sys_ioctl+0xb7/0x200 [ 144.058191][ T6469] do_syscall_64+0xcd/0x260 [ 144.058241][ T6469] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 144.058273][ T6469] RIP: 0033:0x7f6caa98d169 [ 144.058298][ T6469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 144.058335][ T6469] RSP: 002b:00007f6cab79c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 144.058363][ T6469] RAX: ffffffffffffffda RBX: 00007f6caaba5fa0 RCX: 00007f6caa98d169 [ 144.058383][ T6469] RDX: 0000000000000000 RSI: 000000004048aecb RDI: 0000000000000004 [ 144.058400][ T6469] RBP: 00007f6cab79c090 R08: 0000000000000000 R09: 0000000000000000 [ 144.058418][ T6469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 144.058435][ T6469] R13: 0000000000000000 R14: 00007f6caaba5fa0 R15: 00007ffd5be01618 [ 144.058474][ T6469] [ 144.058500][ T6469] ERROR: Out of memory at tomoyo_realpath_from_path. [ 144.093161][ T6460] Invalid ELF header magic: != ELF [ 145.112212][ T6494] netlink: 322 bytes leftover after parsing attributes in process `syz.3.152'. [ 146.420317][ T6512] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1182798186.2149993074.1795541374), cmd(0) [ 146.474863][ T6512] ubi0: attaching mtd0 [ 146.479016][ T6512] ubi0 error: ubi_attach_mtd_dev: bad VID header (4198269) or data offsets (4198333) [ 146.873521][ T6526] tty tty45: ldisc open failed (-12), clearing slot 44 [ 147.324046][ T6533] FAULT_INJECTION: forcing a failure. [ 147.324046][ T6533] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 147.397983][ T6533] CPU: 1 UID: 0 PID: 6533 Comm: syz.3.159 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 147.398027][ T6533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 147.398045][ T6533] Call Trace: [ 147.398054][ T6533] [ 147.398066][ T6533] dump_stack_lvl+0x16c/0x1f0 [ 147.398123][ T6533] should_fail_ex+0x512/0x640 [ 147.398166][ T6533] _copy_from_user+0x2e/0xd0 [ 147.398207][ T6533] kvm_arch_vcpu_ioctl+0x3b8/0x4f00 [ 147.398257][ T6533] ? stack_trace_save+0x8e/0xc0 [ 147.398301][ T6533] ? stack_depot_save_flags+0x28/0xa50 [ 147.398339][ T6533] ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10 [ 147.398383][ T6533] ? __lock_acquire+0xaa4/0x1ba0 [ 147.398439][ T6533] ? kasan_save_stack+0x42/0x60 [ 147.398484][ T6533] ? kasan_save_stack+0x33/0x60 [ 147.398526][ T6533] ? kasan_save_track+0x14/0x30 [ 147.398569][ T6533] ? kasan_save_free_info+0x3b/0x60 [ 147.398605][ T6533] ? __kasan_slab_free+0x51/0x70 [ 147.398651][ T6533] ? kfree+0x2b6/0x4d0 [ 147.398687][ T6533] ? tomoyo_path_number_perm+0x470/0x580 [ 147.398723][ T6533] ? security_file_ioctl+0x9b/0x240 [ 147.398758][ T6533] ? __x64_sys_ioctl+0xb7/0x200 [ 147.398801][ T6533] ? __lock_acquire+0xaa4/0x1ba0 [ 147.398867][ T6533] ? __mutex_trylock_common+0xe9/0x250 [ 147.398905][ T6533] ? __pfx___might_resched+0x10/0x10 [ 147.398952][ T6533] ? rcu_is_watching+0x12/0xc0 [ 147.398992][ T6533] ? trace_contention_end+0xdd/0x130 [ 147.399027][ T6533] ? __mutex_lock+0x1ca/0xb90 [ 147.399078][ T6533] ? kvm_vcpu_ioctl+0x27e/0x1680 [ 147.399138][ T6533] ? __pfx___mutex_lock+0x10/0x10 [ 147.399199][ T6533] ? tomoyo_path_number_perm+0x18d/0x580 [ 147.399242][ T6533] ? kvm_vcpu_ioctl+0x1232/0x1680 [ 147.399289][ T6533] kvm_vcpu_ioctl+0x1232/0x1680 [ 147.399345][ T6533] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 147.399426][ T6533] ? find_held_lock+0x2b/0x80 [ 147.399464][ T6533] ? hook_file_ioctl_common+0x145/0x410 [ 147.399508][ T6533] ? __fget_files+0x20e/0x3c0 [ 147.399558][ T6533] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 147.399610][ T6533] __x64_sys_ioctl+0x190/0x200 [ 147.399650][ T6533] do_syscall_64+0xcd/0x260 [ 147.399701][ T6533] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 147.399732][ T6533] RIP: 0033:0x7fb92098d169 [ 147.399756][ T6533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 147.399785][ T6533] RSP: 002b:00007fb921863038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 147.399815][ T6533] RAX: ffffffffffffffda RBX: 00007fb920ba5fa0 RCX: 00007fb92098d169 [ 147.399835][ T6533] RDX: 0000000000000000 RSI: 000000004048aecb RDI: 0000000000000004 [ 147.399854][ T6533] RBP: 00007fb921863090 R08: 0000000000000000 R09: 0000000000000000 [ 147.399872][ T6533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 147.399890][ T6533] R13: 0000000000000000 R14: 00007fb920ba5fa0 R15: 00007ffee23034a8 [ 147.399931][ T6533] [ 148.200726][ T6546] bond0: option mode: unable to set because the bond device is up [ 148.213691][ T6546] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 149.440926][ T6580] mmap: syz.2.170 (6580) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 149.512124][ T6579] capability: warning: `syz.1.172' uses 32-bit capabilities (legacy support in use) [ 149.565607][ T6581] netlink: 146 bytes leftover after parsing attributes in process `syz.1.172'. [ 150.888237][ T6586] FAULT_INJECTION: forcing a failure. [ 150.888237][ T6586] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 150.922132][ T6586] CPU: 1 UID: 0 PID: 6586 Comm: syz.1.173 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 150.922174][ T6586] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 150.922192][ T6586] Call Trace: [ 150.922203][ T6586] [ 150.922214][ T6586] dump_stack_lvl+0x16c/0x1f0 [ 150.922264][ T6586] should_fail_ex+0x512/0x640 [ 150.922306][ T6586] _copy_to_user+0x32/0xd0 [ 150.922348][ T6586] simple_read_from_buffer+0xcb/0x170 [ 150.922395][ T6586] proc_fail_nth_read+0x197/0x270 [ 150.922439][ T6586] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 150.922486][ T6586] ? rw_verify_area+0xcf/0x680 [ 150.922523][ T6586] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 150.922568][ T6586] vfs_read+0x1de/0xc70 [ 150.922617][ T6586] ? __pfx___mutex_lock+0x10/0x10 [ 150.922687][ T6586] ? __pfx_vfs_read+0x10/0x10 [ 150.922742][ T6586] ? __fget_files+0x20e/0x3c0 [ 150.922801][ T6586] ksys_read+0x12a/0x240 [ 150.922845][ T6586] ? __pfx_ksys_read+0x10/0x10 [ 150.922901][ T6586] do_syscall_64+0xcd/0x260 [ 150.922952][ T6586] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 150.922982][ T6586] RIP: 0033:0x7f72f118bb7c [ 150.923006][ T6586] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 150.923036][ T6586] RSP: 002b:00007f72f1fb5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 150.923064][ T6586] RAX: ffffffffffffffda RBX: 00007f72f13a5fa0 RCX: 00007f72f118bb7c [ 150.923084][ T6586] RDX: 000000000000000f RSI: 00007f72f1fb50a0 RDI: 0000000000000005 [ 150.923113][ T6586] RBP: 00007f72f1fb5090 R08: 0000000000000000 R09: 0000000000000000 [ 150.923132][ T6586] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 150.923149][ T6586] R13: 0000000000000000 R14: 00007f72f13a5fa0 R15: 00007fffbd7c4d68 [ 150.923189][ T6586] [ 151.357672][ T6593] netlink: 8 bytes leftover after parsing attributes in process `syz.2.175'. [ 153.974384][ T12] EXT4-fs (sda1): Delayed block allocation failed for inode 1924 at logical offset 0 with max blocks 1 with error 117 [ 154.082421][ T6649] netlink: 132 bytes leftover after parsing attributes in process `syz.3.188'. [ 154.324351][ T12] EXT4-fs (sda1): This should not happen!! Data will be lost [ 154.324351][ T12] [ 154.706032][ T6654] openvswitch: netlink: Geneve option length err (len 256, max 255). [ 154.949797][ T6658] bond0: option mode: unable to set because the bond device is up [ 154.991368][ T6659] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 156.366773][ T6689] netlink: 146 bytes leftover after parsing attributes in process `syz.2.199'. [ 156.951266][ T6702] openvswitch: netlink: IPv4 tunnel dst address is zero [ 157.050006][ T6704] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1182798186.2149993074.1795541374), cmd(0) [ 157.107082][ T6708] ubi0: attaching mtd0 [ 157.124449][ T6708] ubi0 error: ubi_attach_mtd_dev: bad VID header (4198269) or data offsets (4198333) [ 157.349643][ T6714] bond0: option mode: unable to set because the bond device is up [ 157.369876][ T6714] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 158.639929][ T6742] netlink: 12 bytes leftover after parsing attributes in process `syz.3.215'. [ 158.939779][ T6750] ima: policy update failed [ 158.967837][ T30] audit: type=1802 audit(6039516053.083:6): pid=6750 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.217" res=0 errno=0 [ 158.979786][ T6760] bond0: option mode: unable to set because the bond device is up [ 158.997293][ T6760] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 159.146865][ T6737] sp0: Synchronizing with TNC [ 159.166413][ T6763] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 161.291202][ T6803] bond0: option mode: unable to set because the bond device is up [ 161.325912][ T6803] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 162.394475][ T6818] openvswitch: netlink: IPv4 tunnel dst address is zero [ 162.739069][ T6823] cifs: Unknown parameter '' [ 163.001359][ T6828] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1182798186.2149993074.1795541374), cmd(0) [ 163.463826][ T6845] bond0: option mode: unable to set because the bond device is up [ 163.485751][ T6845] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 163.779616][ T6851] openvswitch: netlink: IPv4 tunnel dst address is zero [ 164.496252][ T1103] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u8:6: bg 1: bad block bitmap checksum [ 164.587172][ T1103] EXT4-fs (sda1): Delayed block allocation failed for inode 1930 at logical offset 1388 with max blocks 27 with error 74 [ 164.628313][ T1103] EXT4-fs (sda1): This should not happen!! Data will be lost [ 164.628313][ T1103] [ 164.824066][ T1103] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u8:6: bg 2: bad block bitmap checksum [ 164.849713][ T1103] EXT4-fs (sda1): Delayed block allocation failed for inode 1932 at logical offset 944 with max blocks 80 with error 74 [ 164.862691][ T1103] EXT4-fs (sda1): This should not happen!! Data will be lost [ 164.862691][ T1103] [ 164.886989][ T1103] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u8:6: bg 3: bad block bitmap checksum [ 164.901624][ T1103] EXT4-fs (sda1): Delayed block allocation failed for inode 1934 at logical offset 956 with max blocks 35 with error 74 [ 164.953121][ T1103] EXT4-fs (sda1): This should not happen!! Data will be lost [ 164.953121][ T1103] [ 165.924095][ T6894] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1182798186.2149993074.1795541374), cmd(0) [ 166.489799][ T6900] FAULT_INJECTION: forcing a failure. [ 166.489799][ T6900] name failslab, interval 1, probability 0, space 0, times 0 [ 166.502610][ T6900] CPU: 0 UID: 0 PID: 6900 Comm: syz.2.254 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 166.502653][ T6900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 166.502672][ T6900] Call Trace: [ 166.502683][ T6900] [ 166.502695][ T6900] dump_stack_lvl+0x16c/0x1f0 [ 166.502749][ T6900] should_fail_ex+0x512/0x640 [ 166.502785][ T6900] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 166.502839][ T6900] should_failslab+0xc2/0x120 [ 166.502870][ T6900] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 166.502918][ T6900] ? _raw_spin_unlock+0x28/0x50 [ 166.502956][ T6900] ? alloc_empty_file+0x55/0x1e0 [ 166.502995][ T6900] alloc_empty_file+0x55/0x1e0 [ 166.503038][ T6900] dentry_open+0x46/0xd0 [ 166.503070][ T6900] open_namespace+0xff/0x190 [ 166.503117][ T6900] ? __pfx_open_namespace+0x10/0x10 [ 166.503175][ T6900] ns_ioctl+0x496/0xe50 [ 166.503221][ T6900] ? __pfx_ns_ioctl+0x10/0x10 [ 166.503267][ T6900] ? __fget_files+0x20e/0x3c0 [ 166.503321][ T6900] ? __pfx_ns_ioctl+0x10/0x10 [ 166.503370][ T6900] __x64_sys_ioctl+0x190/0x200 [ 166.503412][ T6900] do_syscall_64+0xcd/0x260 [ 166.503463][ T6900] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 166.503495][ T6900] RIP: 0033:0x7f6caa98d169 [ 166.503521][ T6900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 166.503551][ T6900] RSP: 002b:00007f6cab79c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 166.503581][ T6900] RAX: ffffffffffffffda RBX: 00007f6caaba5fa0 RCX: 00007f6caa98d169 [ 166.503601][ T6900] RDX: 0000000000000000 RSI: 000000000000b701 RDI: 0000000000000003 [ 166.503619][ T6900] RBP: 00007f6caaa0e990 R08: 0000000000000000 R09: 0000000000000000 [ 166.503637][ T6900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 166.503654][ T6900] R13: 0000000000000000 R14: 00007f6caaba5fa0 R15: 00007ffd5be01618 [ 166.503692][ T6900] [ 166.694760][ C0] vkms_vblank_simulate: vblank timer overrun [ 167.473002][ T6915] syz.1.259 uses obsolete (PF_INET,SOCK_PACKET) [ 168.731928][ T6934] Setting dangerous option i915.mitigations - tainting kernel [ 168.777532][ T6934] Bad "i915.mitigations=$ys/devices/virtual/mtd/mtd0/bitflip_threshold", '$ys/devices/virtual/mtd/mtd0/bitflip_threshold' is unknown [ 168.782992][ T6939] netlink: 330 bytes leftover after parsing attributes in process `syz.1.263'. [ 170.379578][ T6969] bond0: option mode: unable to set because the bond device is up [ 170.626734][ T6969] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 171.403085][ T6989] EXT4-fs (sda1): Delayed block allocation failed for inode 1924 at logical offset 0 with max blocks 1 with error 117 [ 171.543519][ T6989] EXT4-fs (sda1): This should not happen!! Data will be lost [ 171.543519][ T6989] [ 171.693120][ T6989] ptrace attach of "./syz-executor exec"[5840] was attempted by "./syz-executor exec"[6989] [ 171.914118][ T7004] FAULT_INJECTION: forcing a failure. [ 171.914118][ T7004] name fail_futex, interval 1, probability 0, space 0, times 1 [ 171.938273][ T7004] CPU: 1 UID: 0 PID: 7004 Comm: syz.1.278 Tainted: G U 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 171.938329][ T7004] Tainted: [U]=USER [ 171.938340][ T7004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 171.938359][ T7004] Call Trace: [ 171.938369][ T7004] [ 171.938381][ T7004] dump_stack_lvl+0x16c/0x1f0 [ 171.938435][ T7004] should_fail_ex+0x512/0x640 [ 171.938479][ T7004] get_futex_key+0x49e/0x1000 [ 171.938547][ T7004] ? __pfx_get_futex_key+0x10/0x10 [ 171.938597][ T7004] ? find_held_lock+0x2b/0x80 [ 171.938646][ T7004] futex_wake+0xe7/0x4e0 [ 171.938692][ T7004] ? do_raw_spin_lock+0x12c/0x2b0 [ 171.938729][ T7004] ? __pfx_futex_wake+0x10/0x10 [ 171.938756][ T7004] ? find_held_lock+0x2b/0x80 [ 171.938797][ T7004] ? __pfx_mntput_no_expire+0x10/0x10 [ 171.938856][ T7004] do_futex+0x1e3/0x350 [ 171.938902][ T7004] ? __pfx_do_futex+0x10/0x10 [ 171.938959][ T7004] __x64_sys_futex+0x1e0/0x4c0 [ 171.939007][ T7004] ? __fget_files+0x20e/0x3c0 [ 171.939051][ T7004] ? __pfx___x64_sys_futex+0x10/0x10 [ 171.939113][ T7004] do_syscall_64+0xcd/0x260 [ 171.939165][ T7004] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 171.939197][ T7004] RIP: 0033:0x7f72f118d169 [ 171.939222][ T7004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 171.939252][ T7004] RSP: 002b:00007f72f1fb50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 171.939281][ T7004] RAX: ffffffffffffffda RBX: 00007f72f13a5fa8 RCX: 00007f72f118d169 [ 171.939302][ T7004] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f72f13a5fac [ 171.939321][ T7004] RBP: 00007f72f13a5fa0 R08: 00007f72f1fb6000 R09: 0000000000000000 [ 171.939341][ T7004] R10: 0000000000000004 R11: 0000000000000246 R12: 00007f72f13a5fac [ 171.939376][ T7004] R13: 0000000000000000 R14: 00007fffbd7c4c80 R15: 00007fffbd7c4d68 [ 171.939417][ T7004] [ 172.587729][ T7026] bond0: option mode: unable to set because the bond device is up [ 172.633032][ T7026] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 174.438257][ T7053] FAULT_INJECTION: forcing a failure. [ 174.438257][ T7053] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 174.451645][ T7053] CPU: 0 UID: 0 PID: 7053 Comm: syz.3.293 Tainted: G U 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 174.451681][ T7053] Tainted: [U]=USER [ 174.451688][ T7053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 174.451702][ T7053] Call Trace: [ 174.451710][ T7053] [ 174.451719][ T7053] dump_stack_lvl+0x16c/0x1f0 [ 174.451757][ T7053] should_fail_ex+0x512/0x640 [ 174.451788][ T7053] strncpy_from_user+0x3b/0x2e0 [ 174.451814][ T7053] getname_flags.part.0+0x8b/0x540 [ 174.451844][ T7053] getname_flags+0x93/0xf0 [ 174.451874][ T7053] do_sys_openat2+0xb8/0x1d0 [ 174.451898][ T7053] ? __pfx_do_sys_openat2+0x10/0x10 [ 174.451933][ T7053] __x64_sys_openat+0x174/0x210 [ 174.451958][ T7053] ? __pfx___x64_sys_openat+0x10/0x10 [ 174.451985][ T7053] ? rcu_is_watching+0x12/0xc0 [ 174.452021][ T7053] do_syscall_64+0xcd/0x260 [ 174.452057][ T7053] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 174.452080][ T7053] RIP: 0033:0x7fb92098d169 [ 174.452097][ T7053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 174.452119][ T7053] RSP: 002b:00007fb921863038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 174.452140][ T7053] RAX: ffffffffffffffda RBX: 00007fb920ba5fa0 RCX: 00007fb92098d169 [ 174.452155][ T7053] RDX: 0000000000000802 RSI: 00002000000010c0 RDI: ffffffffffffff9c [ 174.452169][ T7053] RBP: 00007fb920a0e990 R08: 0000000000000000 R09: 0000000000000000 [ 174.452183][ T7053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 174.452196][ T7053] R13: 0000000000000000 R14: 00007fb920ba5fa0 R15: 00007ffee23034a8 [ 174.452226][ T7053] [ 175.327962][ T7074] bond0: option mode: unable to set because the bond device is up [ 175.368215][ T7074] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 175.398703][ T5849] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 175.398749][ T5849] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 175.413975][ T5849] Bluetooth: hci2: Unknown advertising packet type: 0x7f [ 175.414015][ T5849] Bluetooth: hci2: adv larger than maximum supported [ 175.423401][ T5849] Bluetooth: hci2: Malformed LE Event: 0x0d [ 176.320249][ T7094] warning: `syz.3.308' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 176.398136][ T7101] netlink: 4 bytes leftover after parsing attributes in process `syz.2.307'. [ 176.464636][ T7101] netlink: 4 bytes leftover after parsing attributes in process `syz.2.307'. [ 176.516593][ T7101] netlink: 4 bytes leftover after parsing attributes in process `syz.2.307'. [ 176.530229][ T7103] FAULT_INJECTION: forcing a failure. [ 176.530229][ T7103] name failslab, interval 1, probability 0, space 0, times 0 [ 176.553382][ T7103] CPU: 0 UID: 0 PID: 7103 Comm: syz.0.305 Tainted: G U 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 176.553438][ T7103] Tainted: [U]=USER [ 176.553449][ T7103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 176.553467][ T7103] Call Trace: [ 176.553478][ T7103] [ 176.553491][ T7103] dump_stack_lvl+0x16c/0x1f0 [ 176.553544][ T7103] should_fail_ex+0x512/0x640 [ 176.553582][ T7103] ? fs_reclaim_acquire+0xae/0x150 [ 176.553624][ T7103] ? tomoyo_encode2+0x100/0x3e0 [ 176.553666][ T7103] should_failslab+0xc2/0x120 [ 176.553696][ T7103] __kmalloc_noprof+0xd2/0x510 [ 176.553755][ T7103] tomoyo_encode2+0x100/0x3e0 [ 176.553805][ T7103] tomoyo_encode+0x29/0x50 [ 176.553848][ T7103] tomoyo_realpath_from_path+0x18f/0x6e0 [ 176.553907][ T7103] tomoyo_check_open_permission+0x2ab/0x3c0 [ 176.553945][ T7103] ? init_file+0x93/0x4c0 [ 176.553975][ T7103] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 176.554013][ T7103] ? ns_ioctl+0x496/0xe50 [ 176.554058][ T7103] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 176.554130][ T7103] ? do_raw_spin_lock+0x12c/0x2b0 [ 176.554180][ T7103] tomoyo_file_open+0x6b/0x90 [ 176.554236][ T7103] security_file_open+0x84/0x1e0 [ 176.554280][ T7103] do_dentry_open+0x596/0x1c10 [ 176.554329][ T7103] ? lockdep_init_map_type+0x5c/0x280 [ 176.554375][ T7103] vfs_open+0x82/0x3f0 [ 176.554414][ T7103] dentry_open+0x71/0xd0 [ 176.554447][ T7103] open_namespace+0xff/0x190 [ 176.554493][ T7103] ? __pfx_open_namespace+0x10/0x10 [ 176.554552][ T7103] ns_ioctl+0x496/0xe50 [ 176.554598][ T7103] ? __pfx_ns_ioctl+0x10/0x10 [ 176.554645][ T7103] ? __fget_files+0x20e/0x3c0 [ 176.554698][ T7103] ? __pfx_ns_ioctl+0x10/0x10 [ 176.554745][ T7103] __x64_sys_ioctl+0x190/0x200 [ 176.554787][ T7103] do_syscall_64+0xcd/0x260 [ 176.554840][ T7103] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 176.554873][ T7103] RIP: 0033:0x7f386db8d169 [ 176.554899][ T7103] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 176.554929][ T7103] RSP: 002b:00007f386ea26038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 176.554960][ T7103] RAX: ffffffffffffffda RBX: 00007f386dda5fa0 RCX: 00007f386db8d169 [ 176.554981][ T7103] RDX: 0000000000000000 RSI: 000000000000b701 RDI: 0000000000000003 [ 176.554999][ T7103] RBP: 00007f386dc0e990 R08: 0000000000000000 R09: 0000000000000000 [ 176.555017][ T7103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 176.555035][ T7103] R13: 0000000000000000 R14: 00007f386dda5fa0 R15: 00007ffc0be16ed8 [ 176.555075][ T7103] [ 176.843852][ T7103] ERROR: Out of memory at tomoyo_realpath_from_path. [ 176.913353][ T7101] netlink: 4 bytes leftover after parsing attributes in process `syz.2.307'. [ 177.059274][ T7101] netlink: 4 bytes leftover after parsing attributes in process `syz.2.307'. [ 177.068682][ T7101] netlink: 4 bytes leftover after parsing attributes in process `syz.2.307'. [ 177.078082][ T7101] netlink: 4 bytes leftover after parsing attributes in process `syz.2.307'. [ 177.089040][ T7101] netlink: 4 bytes leftover after parsing attributes in process `syz.2.307'. [ 177.098261][ T7101] netlink: 4 bytes leftover after parsing attributes in process `syz.2.307'. [ 177.107437][ T7101] netlink: 4 bytes leftover after parsing attributes in process `syz.2.307'. [ 178.188503][ T7131] FAULT_INJECTION: forcing a failure. [ 178.188503][ T7131] name failslab, interval 1, probability 0, space 0, times 0 [ 178.221100][ T7131] CPU: 0 UID: 0 PID: 7131 Comm: syz.1.315 Tainted: G U 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 178.221151][ T7131] Tainted: [U]=USER [ 178.221161][ T7131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 178.221178][ T7131] Call Trace: [ 178.221189][ T7131] [ 178.221200][ T7131] dump_stack_lvl+0x16c/0x1f0 [ 178.221253][ T7131] should_fail_ex+0x512/0x640 [ 178.221288][ T7131] ? fs_reclaim_acquire+0xae/0x150 [ 178.221329][ T7131] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 178.221373][ T7131] should_failslab+0xc2/0x120 [ 178.221403][ T7131] __kmalloc_noprof+0xd2/0x510 [ 178.221459][ T7131] tomoyo_realpath_from_path+0xc2/0x6e0 [ 178.221507][ T7131] ? tomoyo_profile+0x47/0x60 [ 178.221559][ T7131] tomoyo_path_number_perm+0x245/0x580 [ 178.221594][ T7131] ? tomoyo_path_number_perm+0x237/0x580 [ 178.221635][ T7131] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 178.221675][ T7131] ? find_held_lock+0x2b/0x80 [ 178.221752][ T7131] ? find_held_lock+0x2b/0x80 [ 178.221790][ T7131] ? hook_file_ioctl_common+0x145/0x410 [ 178.221833][ T7131] ? __fget_files+0x20e/0x3c0 [ 178.221887][ T7131] security_file_ioctl+0x9b/0x240 [ 178.221927][ T7131] __x64_sys_ioctl+0xb7/0x200 [ 178.221974][ T7131] do_syscall_64+0xcd/0x260 [ 178.222024][ T7131] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 178.222056][ T7131] RIP: 0033:0x7f72f118d169 [ 178.222080][ T7131] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 178.222109][ T7131] RSP: 002b:00007f72f1fb5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 178.222139][ T7131] RAX: ffffffffffffffda RBX: 00007f72f13a5fa0 RCX: 00007f72f118d169 [ 178.222159][ T7131] RDX: 0000000000000004 RSI: 0000000080106f53 RDI: 0000000000000003 [ 178.222178][ T7131] RBP: 00007f72f1fb5090 R08: 0000000000000000 R09: 0000000000000000 [ 178.222197][ T7131] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 178.222215][ T7131] R13: 0000000000000000 R14: 00007f72f13a5fa0 R15: 00007fffbd7c4d68 [ 178.222257][ T7131] [ 178.222268][ T7131] ERROR: Out of memory at tomoyo_realpath_from_path. [ 179.070379][ T7150] FAULT_INJECTION: forcing a failure. [ 179.070379][ T7150] name failslab, interval 1, probability 0, space 0, times 0 [ 179.129725][ T7150] CPU: 1 UID: 0 PID: 7150 Comm: syz.1.322 Tainted: G U 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 179.129775][ T7150] Tainted: [U]=USER [ 179.129785][ T7150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 179.129802][ T7150] Call Trace: [ 179.129811][ T7150] [ 179.129824][ T7150] dump_stack_lvl+0x16c/0x1f0 [ 179.129875][ T7150] should_fail_ex+0x512/0x640 [ 179.129911][ T7150] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 179.129964][ T7150] should_failslab+0xc2/0x120 [ 179.129994][ T7150] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 179.130039][ T7150] ? vma_merge_new_range+0x3f8/0xc10 [ 179.130085][ T7150] ? vm_area_alloc+0x1f/0x160 [ 179.130141][ T7150] vm_area_alloc+0x1f/0x160 [ 179.130184][ T7150] __mmap_region+0xfd0/0x27c0 [ 179.130237][ T7150] ? __pfx___mmap_region+0x10/0x10 [ 179.130283][ T7150] ? bpf_ksym_find+0x124/0x1c0 [ 179.130334][ T7150] ? __kernel_text_address+0xd/0x40 [ 179.130371][ T7150] ? unwind_get_return_address+0x59/0xa0 [ 179.130479][ T7150] ? trace_cap_capable+0x18d/0x200 [ 179.130514][ T7150] ? cap_capable+0xb3/0x250 [ 179.130550][ T7150] mmap_region+0x32b/0x3f0 [ 179.130607][ T7150] do_mmap+0xd8e/0x11b0 [ 179.130652][ T7150] ? __pfx_do_mmap+0x10/0x10 [ 179.130689][ T7150] ? __pfx_down_write_killable+0x10/0x10 [ 179.130729][ T7150] vm_mmap_pgoff+0x281/0x450 [ 179.130775][ T7150] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 179.130819][ T7150] ? __fget_files+0x20e/0x3c0 [ 179.130874][ T7150] ksys_mmap_pgoff+0x32c/0x5c0 [ 179.130910][ T7150] ? __pfx_ksys_write+0x10/0x10 [ 179.130952][ T7150] ? rcu_is_watching+0x12/0xc0 [ 179.130994][ T7150] __x64_sys_mmap+0x125/0x190 [ 179.131036][ T7150] do_syscall_64+0xcd/0x260 [ 179.131087][ T7150] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 179.131119][ T7150] RIP: 0033:0x7f72f118d169 [ 179.131152][ T7150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 179.131181][ T7150] RSP: 002b:00007f72f1fb5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 179.131210][ T7150] RAX: ffffffffffffffda RBX: 00007f72f13a5fa0 RCX: 00007f72f118d169 [ 179.131230][ T7150] RDX: 0000000000000ffb RSI: 0000000000810004 RDI: 0000000000000000 [ 179.131247][ T7150] RBP: 00007f72f1fb5090 R08: 0000000000000003 R09: 0000000000008000 [ 179.131265][ T7150] R10: 0008000000008011 R11: 0000000000000246 R12: 0000000000000001 [ 179.131283][ T7150] R13: 0000000000000000 R14: 00007f72f13a5fa0 R15: 00007fffbd7c4d68 [ 179.131322][ T7150] [ 179.261928][ T7156] EXT4-fs (sda1): Delayed block allocation failed for inode 1924 at logical offset 0 with max blocks 1 with error 117 [ 179.431312][ T7156] EXT4-fs (sda1): This should not happen!! Data will be lost [ 179.431312][ T7156] [ 179.822064][ T7152] ptrace attach of "./syz-executor exec"[5838] was attempted by "./syz-executor exec"[7152] [ 180.598604][ T7185] ima: policy update failed [ 180.603333][ T30] audit: type=1802 audit(6039516074.723:7): pid=7185 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.332" res=0 errno=0 [ 180.814106][ T7196] FAULT_INJECTION: forcing a failure. [ 180.814106][ T7196] name failslab, interval 1, probability 0, space 0, times 0 [ 180.860543][ T7196] CPU: 0 UID: 0 PID: 7196 Comm: syz.0.337 Tainted: G U 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 180.860594][ T7196] Tainted: [U]=USER [ 180.860604][ T7196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 180.860622][ T7196] Call Trace: [ 180.860632][ T7196] [ 180.860643][ T7196] dump_stack_lvl+0x16c/0x1f0 [ 180.860693][ T7196] should_fail_ex+0x512/0x640 [ 180.860729][ T7196] ? __kvmalloc_node_noprof+0x122/0x600 [ 180.860779][ T7196] should_failslab+0xc2/0x120 [ 180.860809][ T7196] __kvmalloc_node_noprof+0x135/0x600 [ 180.860857][ T7196] ? seq_read_iter+0x826/0x12c0 [ 180.860907][ T7196] ? seq_read_iter+0x826/0x12c0 [ 180.860946][ T7196] seq_read_iter+0x826/0x12c0 [ 180.860991][ T7196] ? __mutex_trylock_common+0xe9/0x250 [ 180.861040][ T7196] kernfs_fop_read_iter+0x40f/0x5a0 [ 180.861080][ T7196] ? rw_verify_area+0xcf/0x680 [ 180.861123][ T7196] vfs_read+0x8c8/0xc70 [ 180.861171][ T7196] ? __pfx___mutex_lock+0x10/0x10 [ 180.861219][ T7196] ? __pfx_vfs_read+0x10/0x10 [ 180.861289][ T7196] ksys_read+0x12a/0x240 [ 180.861331][ T7196] ? __pfx_ksys_read+0x10/0x10 [ 180.861372][ T7196] ? rcu_is_watching+0x12/0xc0 [ 180.861424][ T7196] do_syscall_64+0xcd/0x260 [ 180.861473][ T7196] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.861505][ T7196] RIP: 0033:0x7f386db8d169 [ 180.861529][ T7196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 180.861558][ T7196] RSP: 002b:00007f386ea26038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 180.861587][ T7196] RAX: ffffffffffffffda RBX: 00007f386dda5fa0 RCX: 00007f386db8d169 [ 180.861607][ T7196] RDX: 000000000000000b RSI: 0000000000000000 RDI: 0000000000000003 [ 180.861625][ T7196] RBP: 00007f386ea26090 R08: 0000000000000000 R09: 0000000000000000 [ 180.861644][ T7196] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 180.861662][ T7196] R13: 0000000000000000 R14: 00007f386dda5fa0 R15: 00007ffc0be16ed8 [ 180.861704][ T7196] [ 181.139073][ T7206] FAULT_INJECTION: forcing a failure. [ 181.139073][ T7206] name failslab, interval 1, probability 0, space 0, times 0 [ 181.219254][ T7206] CPU: 1 UID: 0 PID: 7206 Comm: syz.1.339 Tainted: G U 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 181.219305][ T7206] Tainted: [U]=USER [ 181.219316][ T7206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 181.219333][ T7206] Call Trace: [ 181.219343][ T7206] [ 181.219354][ T7206] dump_stack_lvl+0x16c/0x1f0 [ 181.219407][ T7206] should_fail_ex+0x512/0x640 [ 181.219442][ T7206] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 181.219494][ T7206] should_failslab+0xc2/0x120 [ 181.219525][ T7206] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 181.219574][ T7206] ? mas_alloc_nodes+0x18b/0x8b0 [ 181.219622][ T7206] mas_alloc_nodes+0x18b/0x8b0 [ 181.219671][ T7206] mas_node_count_gfp+0x105/0x130 [ 181.219716][ T7206] mas_preallocate+0x53e/0xcd0 [ 181.219755][ T7206] ? __pfx_mas_preallocate+0x10/0x10 [ 181.219796][ T7206] ? vm_area_alloc+0x1f/0x160 [ 181.219839][ T7206] ? lockdep_init_map_type+0x5c/0x280 [ 181.219875][ T7206] __mmap_region+0x139b/0x27c0 [ 181.219929][ T7206] ? __pfx___mmap_region+0x10/0x10 [ 181.219982][ T7206] ? bpf_ksym_find+0x124/0x1c0 [ 181.220032][ T7206] ? __kernel_text_address+0xd/0x40 [ 181.220069][ T7206] ? unwind_get_return_address+0x59/0xa0 [ 181.220175][ T7206] ? trace_cap_capable+0x18d/0x200 [ 181.220208][ T7206] ? cap_capable+0xb3/0x250 [ 181.220245][ T7206] mmap_region+0x32b/0x3f0 [ 181.220306][ T7206] do_mmap+0xd8e/0x11b0 [ 181.220352][ T7206] ? __pfx_do_mmap+0x10/0x10 [ 181.220390][ T7206] ? __pfx_down_write_killable+0x10/0x10 [ 181.220429][ T7206] vm_mmap_pgoff+0x281/0x450 [ 181.220474][ T7206] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 181.220518][ T7206] ? __fget_files+0x20e/0x3c0 [ 181.220571][ T7206] ksys_mmap_pgoff+0x32c/0x5c0 [ 181.220607][ T7206] ? __pfx_ksys_write+0x10/0x10 [ 181.220649][ T7206] ? rcu_is_watching+0x12/0xc0 [ 181.220692][ T7206] __x64_sys_mmap+0x125/0x190 [ 181.220733][ T7206] do_syscall_64+0xcd/0x260 [ 181.220782][ T7206] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 181.220814][ T7206] RIP: 0033:0x7f72f118d169 [ 181.220838][ T7206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 181.220867][ T7206] RSP: 002b:00007f72f1fb5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 181.220896][ T7206] RAX: ffffffffffffffda RBX: 00007f72f13a5fa0 RCX: 00007f72f118d169 [ 181.220915][ T7206] RDX: 0000000000000ffb RSI: 0000000000810004 RDI: 0000000000000000 [ 181.220933][ T7206] RBP: 00007f72f1fb5090 R08: 0000000000000003 R09: 0000000000008000 [ 181.220951][ T7206] R10: 0008000000008011 R11: 0000000000000246 R12: 0000000000000001 [ 181.220975][ T7206] R13: 0000000000000000 R14: 00007f72f13a5fa0 R15: 00007fffbd7c4d68 [ 181.221015][ T7206] [ 181.821745][ T7214] FAULT_INJECTION: forcing a failure. [ 181.821745][ T7214] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 181.860430][ T7214] CPU: 0 UID: 0 PID: 7214 Comm: syz.0.342 Tainted: G U 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 181.860480][ T7214] Tainted: [U]=USER [ 181.860490][ T7214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 181.860506][ T7214] Call Trace: [ 181.860516][ T7214] [ 181.860527][ T7214] dump_stack_lvl+0x16c/0x1f0 [ 181.860576][ T7214] should_fail_ex+0x512/0x640 [ 181.860618][ T7214] _copy_from_user+0x2e/0xd0 [ 181.860658][ T7214] dvb_usercopy+0x27e/0x340 [ 181.860689][ T7214] ? __pfx_dvb_frontend_do_ioctl+0x10/0x10 [ 181.860723][ T7214] ? __pfx_dvb_usercopy+0x10/0x10 [ 181.860770][ T7214] ? __fget_files+0x20e/0x3c0 [ 181.860823][ T7214] dvb_frontend_ioctl+0x50/0x80 [ 181.860868][ T7214] ? __pfx_dvb_frontend_ioctl+0x10/0x10 [ 181.860917][ T7214] __x64_sys_ioctl+0x190/0x200 [ 181.860968][ T7214] do_syscall_64+0xcd/0x260 [ 181.861019][ T7214] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 181.861051][ T7214] RIP: 0033:0x7f386db8d169 [ 181.861075][ T7214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 181.861105][ T7214] RSP: 002b:00007f386ea26038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 181.861134][ T7214] RAX: ffffffffffffffda RBX: 00007f386dda5fa0 RCX: 00007f386db8d169 [ 181.861154][ T7214] RDX: 0000000000000004 RSI: 0000000080106f53 RDI: 0000000000000003 [ 181.861171][ T7214] RBP: 00007f386ea26090 R08: 0000000000000000 R09: 0000000000000000 [ 181.861189][ T7214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 181.861206][ T7214] R13: 0000000000000000 R14: 00007f386dda5fa0 R15: 00007ffc0be16ed8 [ 181.861246][ T7214] [ 183.197489][ T7248] FAULT_INJECTION: forcing a failure. [ 183.197489][ T7248] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 183.213229][ T7248] CPU: 0 UID: 0 PID: 7248 Comm: syz.0.353 Tainted: G U 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 183.213277][ T7248] Tainted: [U]=USER [ 183.213288][ T7248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 183.213306][ T7248] Call Trace: [ 183.213316][ T7248] [ 183.213327][ T7248] dump_stack_lvl+0x16c/0x1f0 [ 183.213378][ T7248] should_fail_ex+0x512/0x640 [ 183.213420][ T7248] _copy_to_iter+0x2a4/0x15a0 [ 183.213462][ T7248] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 183.213516][ T7248] ? __pfx__copy_to_iter+0x10/0x10 [ 183.213556][ T7248] ? kernfs_seq_stop+0xcd/0x120 [ 183.213601][ T7248] ? kernfs_put_active+0x86/0xe0 [ 183.213639][ T7248] seq_read_iter+0xcf8/0x12c0 [ 183.213698][ T7248] kernfs_fop_read_iter+0x40f/0x5a0 [ 183.213737][ T7248] ? rw_verify_area+0xcf/0x680 [ 183.213788][ T7248] vfs_read+0x8c8/0xc70 [ 183.213835][ T7248] ? __pfx___mutex_lock+0x10/0x10 [ 183.213888][ T7248] ? __pfx_vfs_read+0x10/0x10 [ 183.213958][ T7248] ksys_read+0x12a/0x240 [ 183.214001][ T7248] ? __pfx_ksys_read+0x10/0x10 [ 183.214041][ T7248] ? rcu_is_watching+0x12/0xc0 [ 183.214093][ T7248] do_syscall_64+0xcd/0x260 [ 183.214147][ T7248] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 183.214180][ T7248] RIP: 0033:0x7f386db8d169 [ 183.214205][ T7248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 183.214233][ T7248] RSP: 002b:00007f386ea26038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 183.214259][ T7248] RAX: ffffffffffffffda RBX: 00007f386dda5fa0 RCX: 00007f386db8d169 [ 183.214279][ T7248] RDX: 000000000000000b RSI: 0000000000000000 RDI: 0000000000000003 [ 183.214295][ T7248] RBP: 00007f386ea26090 R08: 0000000000000000 R09: 0000000000000000 [ 183.214313][ T7248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 183.214329][ T7248] R13: 0000000000000000 R14: 00007f386dda5fa0 R15: 00007ffc0be16ed8 [ 183.214369][ T7248] [ 183.582992][ T7252] FAULT_INJECTION: forcing a failure. [ 183.582992][ T7252] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 183.596683][ T7252] CPU: 0 UID: 0 PID: 7252 Comm: syz.2.355 Tainted: G U 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 183.596718][ T7252] Tainted: [U]=USER [ 183.596726][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 183.596739][ T7252] Call Trace: [ 183.596746][ T7252] [ 183.596753][ T7252] dump_stack_lvl+0x16c/0x1f0 [ 183.596791][ T7252] should_fail_ex+0x512/0x640 [ 183.596820][ T7252] should_fail_alloc_page+0xe7/0x130 [ 183.596843][ T7252] prepare_alloc_pages+0x3c2/0x610 [ 183.596875][ T7252] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 183.596925][ T7252] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 183.596959][ T7252] ? rcu_is_watching+0x12/0xc0 [ 183.596999][ T7252] ? mas_destroy+0x5de/0xa20 [ 183.597021][ T7252] ? perf_event_mmap+0xbb/0xd40 [ 183.597045][ T7252] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 183.597070][ T7252] ? policy_nodemask+0xea/0x4e0 [ 183.597109][ T7252] alloc_pages_mpol+0x1fb/0x550 [ 183.597130][ T7252] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 183.597160][ T7252] alloc_pages_noprof+0x131/0x390 [ 183.597181][ T7252] __pmd_alloc+0x3f/0x870 [ 183.597211][ T7252] __handle_mm_fault+0x948/0x2a40 [ 183.597250][ T7252] ? __pfx___handle_mm_fault+0x10/0x10 [ 183.597305][ T7252] handle_mm_fault+0x3fe/0xad0 [ 183.597341][ T7252] __get_user_pages+0x771/0x36f0 [ 183.597376][ T7252] ? __pfx_mt_find+0x10/0x10 [ 183.597412][ T7252] ? __pfx___get_user_pages+0x10/0x10 [ 183.597450][ T7252] populate_vma_page_range+0x278/0x3a0 [ 183.597482][ T7252] ? __pfx_populate_vma_page_range+0x10/0x10 [ 183.597511][ T7252] ? __pfx_find_vma_intersection+0x10/0x10 [ 183.597539][ T7252] ? do_mmap+0x69c/0x11b0 [ 183.597574][ T7252] __mm_populate+0x1d8/0x380 [ 183.597604][ T7252] ? __pfx___mm_populate+0x10/0x10 [ 183.597636][ T7252] ? up_write+0x1b2/0x520 [ 183.597662][ T7252] vm_mmap_pgoff+0x362/0x450 [ 183.597691][ T7252] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 183.597722][ T7252] ? __fget_files+0x20e/0x3c0 [ 183.597759][ T7252] ksys_mmap_pgoff+0x32c/0x5c0 [ 183.597784][ T7252] ? __pfx_ksys_write+0x10/0x10 [ 183.597813][ T7252] ? rcu_is_watching+0x12/0xc0 [ 183.597842][ T7252] __x64_sys_mmap+0x125/0x190 [ 183.597871][ T7252] do_syscall_64+0xcd/0x260 [ 183.597906][ T7252] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 183.597929][ T7252] RIP: 0033:0x7f6caa98d169 [ 183.597947][ T7252] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 183.597968][ T7252] RSP: 002b:00007f6cab79c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 183.597988][ T7252] RAX: ffffffffffffffda RBX: 00007f6caaba5fa0 RCX: 00007f6caa98d169 [ 183.598003][ T7252] RDX: 0000000000000ffb RSI: 0000000000810004 RDI: 0000000000000000 [ 183.598017][ T7252] RBP: 00007f6cab79c090 R08: 0000000000000003 R09: 0000000000008000 [ 183.598030][ T7252] R10: 0008000000008011 R11: 0000000000000246 R12: 0000000000000001 [ 183.598044][ T7252] R13: 0000000000000000 R14: 00007f6caaba5fa0 R15: 00007ffd5be01618 [ 183.598072][ T7252] [ 184.648149][ T7277] FAULT_INJECTION: forcing a failure. [ 184.648149][ T7277] name failslab, interval 1, probability 0, space 0, times 0 [ 184.708919][ T7277] CPU: 0 UID: 0 PID: 7277 Comm: syz.0.371 Tainted: G U 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 184.708970][ T7277] Tainted: [U]=USER [ 184.708980][ T7277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 184.708998][ T7277] Call Trace: [ 184.709008][ T7277] [ 184.709020][ T7277] dump_stack_lvl+0x16c/0x1f0 [ 184.709072][ T7277] should_fail_ex+0x512/0x640 [ 184.709108][ T7277] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 184.709160][ T7277] should_failslab+0xc2/0x120 [ 184.709189][ T7277] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 184.709238][ T7277] ? __pmd_alloc+0xc3/0x870 [ 184.709282][ T7277] __pmd_alloc+0xc3/0x870 [ 184.709323][ T7277] __handle_mm_fault+0x948/0x2a40 [ 184.709380][ T7277] ? __pfx___handle_mm_fault+0x10/0x10 [ 184.709459][ T7277] handle_mm_fault+0x3fe/0xad0 [ 184.709511][ T7277] __get_user_pages+0x771/0x36f0 [ 184.709562][ T7277] ? __pfx_mt_find+0x10/0x10 [ 184.709611][ T7277] ? __pfx___get_user_pages+0x10/0x10 [ 184.709665][ T7277] populate_vma_page_range+0x278/0x3a0 [ 184.709710][ T7277] ? __pfx_populate_vma_page_range+0x10/0x10 [ 184.709761][ T7277] ? __pfx_find_vma_intersection+0x10/0x10 [ 184.709802][ T7277] ? do_mmap+0x69c/0x11b0 [ 184.709844][ T7277] __mm_populate+0x1d8/0x380 [ 184.709889][ T7277] ? __pfx___mm_populate+0x10/0x10 [ 184.709934][ T7277] ? up_write+0x1b2/0x520 [ 184.709973][ T7277] vm_mmap_pgoff+0x362/0x450 [ 184.710014][ T7277] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 184.710059][ T7277] ? __fget_files+0x20e/0x3c0 [ 184.710110][ T7277] ksys_mmap_pgoff+0x32c/0x5c0 [ 184.710143][ T7277] ? __pfx_ksys_write+0x10/0x10 [ 184.710183][ T7277] ? rcu_is_watching+0x12/0xc0 [ 184.710227][ T7277] __x64_sys_mmap+0x125/0x190 [ 184.710269][ T7277] do_syscall_64+0xcd/0x260 [ 184.710319][ T7277] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.710351][ T7277] RIP: 0033:0x7f386db8d169 [ 184.710375][ T7277] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 184.710405][ T7277] RSP: 002b:00007f386ea26038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 184.710434][ T7277] RAX: ffffffffffffffda RBX: 00007f386dda5fa0 RCX: 00007f386db8d169 [ 184.710454][ T7277] RDX: 0000000000000ffb RSI: 0000000000810004 RDI: 0000000000000000 [ 184.710472][ T7277] RBP: 00007f386ea26090 R08: 0000000000000003 R09: 0000000000008000 [ 184.710491][ T7277] R10: 0008000000008011 R11: 0000000000000246 R12: 0000000000000001 [ 184.710509][ T7277] R13: 0000000000000000 R14: 00007f386dda5fa0 R15: 00007ffc0be16ed8 [ 184.710550][ T7277] [ 185.386240][ T13] EXT4-fs (sda1): Delayed block allocation failed for inode 1924 at logical offset 0 with max blocks 1 with error 117 [ 185.426993][ T7291] HfR: entered promiscuous mode [ 185.444645][ T13] EXT4-fs (sda1): This should not happen!! Data will be lost [ 185.444645][ T13] [ 186.026596][ T7309] FAULT_INJECTION: forcing a failure. [ 186.026596][ T7309] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 186.064553][ T7309] CPU: 1 UID: 0 PID: 7309 Comm: syz.3.374 Tainted: G U 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 186.064601][ T7309] Tainted: [U]=USER [ 186.064610][ T7309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 186.064626][ T7309] Call Trace: [ 186.064635][ T7309] [ 186.064646][ T7309] dump_stack_lvl+0x16c/0x1f0 [ 186.064697][ T7309] should_fail_ex+0x512/0x640 [ 186.064746][ T7309] _copy_from_user+0x2e/0xd0 [ 186.064787][ T7309] memdup_user+0x6b/0xe0 [ 186.064818][ T7309] dvb_get_property.isra.0+0x162/0x650 [ 186.064854][ T7309] ? __pfx_dvb_get_property.isra.0+0x10/0x10 [ 186.064883][ T7309] ? kasan_save_stack+0x42/0x60 [ 186.064926][ T7309] ? kasan_save_stack+0x33/0x60 [ 186.064966][ T7309] ? kasan_save_track+0x14/0x30 [ 186.065066][ T7309] ? kasan_quarantine_put+0x10a/0x240 [ 186.065110][ T7309] ? lockdep_hardirqs_on+0x7c/0x110 [ 186.065168][ T7309] dvb_frontend_handle_ioctl+0x143e/0x3060 [ 186.065210][ T7309] ? __pfx_dvb_frontend_handle_ioctl+0x10/0x10 [ 186.065246][ T7309] ? do_raw_spin_lock+0x12c/0x2b0 [ 186.065284][ T7309] ? find_held_lock+0x2b/0x80 [ 186.065326][ T7309] ? rcu_is_watching+0x12/0xc0 [ 186.065365][ T7309] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 186.065407][ T7309] ? lockdep_hardirqs_on+0x7c/0x110 [ 186.065456][ T7309] dvb_frontend_do_ioctl+0x1c8/0x2f0 [ 186.065494][ T7309] dvb_usercopy+0x164/0x340 [ 186.065525][ T7309] ? __pfx_dvb_frontend_do_ioctl+0x10/0x10 [ 186.065559][ T7309] ? __pfx_dvb_usercopy+0x10/0x10 [ 186.065604][ T7309] ? __fget_files+0x20e/0x3c0 [ 186.065657][ T7309] dvb_frontend_ioctl+0x50/0x80 [ 186.065704][ T7309] ? __pfx_dvb_frontend_ioctl+0x10/0x10 [ 186.065761][ T7309] __x64_sys_ioctl+0x190/0x200 [ 186.065803][ T7309] do_syscall_64+0xcd/0x260 [ 186.065853][ T7309] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 186.065884][ T7309] RIP: 0033:0x7fb92098d169 [ 186.065909][ T7309] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 186.065938][ T7309] RSP: 002b:00007fb921863038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 186.065968][ T7309] RAX: ffffffffffffffda RBX: 00007fb920ba5fa0 RCX: 00007fb92098d169 [ 186.065988][ T7309] RDX: 0000000000000004 RSI: 0000000080106f53 RDI: 0000000000000003 [ 186.066006][ T7309] RBP: 00007fb921863090 R08: 0000000000000000 R09: 0000000000000000 [ 186.066024][ T7309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 186.066041][ T7309] R13: 0000000000000000 R14: 00007fb920ba5fa0 R15: 00007ffee23034a8 [ 186.066080][ T7309] [ 186.096144][ T7313] FAULT_INJECTION: forcing a failure. [ 186.096144][ T7313] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 186.428623][ T7313] CPU: 0 UID: 0 PID: 7313 Comm: syz.1.375 Tainted: G U 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 186.428672][ T7313] Tainted: [U]=USER [ 186.428682][ T7313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 186.428699][ T7313] Call Trace: [ 186.428709][ T7313] [ 186.428720][ T7313] dump_stack_lvl+0x16c/0x1f0 [ 186.428772][ T7313] should_fail_ex+0x512/0x640 [ 186.428814][ T7313] should_fail_alloc_page+0xe7/0x130 [ 186.428847][ T7313] prepare_alloc_pages+0x3c2/0x610 [ 186.428894][ T7313] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 186.428947][ T7313] ? __pfx_stack_trace_save+0x10/0x10 [ 186.428989][ T7313] ? stack_depot_save_flags+0x28/0xa50 [ 186.429037][ T7313] ? kasan_save_stack+0x42/0x60 [ 186.429081][ T7313] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 186.429127][ T7313] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 186.429175][ T7313] ? __handle_mm_fault+0x948/0x2a40 [ 186.429217][ T7313] ? __get_user_pages+0x771/0x36f0 [ 186.429252][ T7313] ? populate_vma_page_range+0x278/0x3a0 [ 186.429293][ T7313] ? __mm_populate+0x1d8/0x380 [ 186.429332][ T7313] ? vm_mmap_pgoff+0x362/0x450 [ 186.429364][ T7313] ? ksys_mmap_pgoff+0x32c/0x5c0 [ 186.429395][ T7313] ? __x64_sys_mmap+0x125/0x190 [ 186.429430][ T7313] ? do_syscall_64+0xcd/0x260 [ 186.429501][ T7313] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 186.429538][ T7313] ? policy_nodemask+0xea/0x4e0 [ 186.429591][ T7313] alloc_pages_mpol+0x1fb/0x550 [ 186.429622][ T7313] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 186.429657][ T7313] ? cgroup_rstat_updated+0x2a/0xb20 [ 186.429706][ T7313] alloc_pages_noprof+0x131/0x390 [ 186.429738][ T7313] pte_alloc_one+0x19/0x380 [ 186.429779][ T7313] do_pte_missing+0x1c0b/0x3fb0 [ 186.429824][ T7313] ? do_raw_spin_unlock+0x172/0x230 [ 186.429864][ T7313] ? __pmd_alloc+0x3c2/0x870 [ 186.429904][ T7313] __handle_mm_fault+0x103d/0x2a40 [ 186.429960][ T7313] ? __pfx___handle_mm_fault+0x10/0x10 [ 186.430040][ T7313] handle_mm_fault+0x3fe/0xad0 [ 186.430093][ T7313] __get_user_pages+0x771/0x36f0 [ 186.430145][ T7313] ? __pfx_mt_find+0x10/0x10 [ 186.430194][ T7313] ? __pfx___get_user_pages+0x10/0x10 [ 186.430251][ T7313] populate_vma_page_range+0x278/0x3a0 [ 186.430298][ T7313] ? __pfx_populate_vma_page_range+0x10/0x10 [ 186.430339][ T7313] ? __pfx_find_vma_intersection+0x10/0x10 [ 186.430379][ T7313] ? do_mmap+0x69c/0x11b0 [ 186.430421][ T7313] __mm_populate+0x1d8/0x380 [ 186.430471][ T7313] ? __pfx___mm_populate+0x10/0x10 [ 186.430516][ T7313] ? up_write+0x1b2/0x520 [ 186.430555][ T7313] vm_mmap_pgoff+0x362/0x450 [ 186.430596][ T7313] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 186.430641][ T7313] ? __fget_files+0x20e/0x3c0 [ 186.430695][ T7313] ksys_mmap_pgoff+0x32c/0x5c0 [ 186.430731][ T7313] ? __pfx_ksys_write+0x10/0x10 [ 186.430771][ T7313] ? rcu_is_watching+0x12/0xc0 [ 186.430812][ T7313] __x64_sys_mmap+0x125/0x190 [ 186.430853][ T7313] do_syscall_64+0xcd/0x260 [ 186.430903][ T7313] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 186.430934][ T7313] RIP: 0033:0x7f72f118d169 [ 186.430959][ T7313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 186.430988][ T7313] RSP: 002b:00007f72f1fb5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 186.431016][ T7313] RAX: ffffffffffffffda RBX: 00007f72f13a5fa0 RCX: 00007f72f118d169 [ 186.431035][ T7313] RDX: 0000000000000ffb RSI: 0000000000810004 RDI: 0000000000000000 [ 186.431053][ T7313] RBP: 00007f72f1fb5090 R08: 0000000000000003 R09: 0000000000008000 [ 186.431071][ T7313] R10: 0008000000008011 R11: 0000000000000246 R12: 0000000000000001 [ 186.431089][ T7313] R13: 0000000000000000 R14: 00007f72f13a5fa0 R15: 00007fffbd7c4d68 [ 186.431128][ T7313] [ 187.158253][ T7323] [ 187.160659][ T7323] ====================================================== [ 187.167711][ T7323] WARNING: possible circular locking dependency detected [ 187.174764][ T7323] 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 Tainted: G U [ 187.183664][ T7323] ------------------------------------------------------ [ 187.190699][ T7323] syz.2.377/7323 is trying to acquire lock: [ 187.196600][ T7323] ffff888145ad3f18 (sk_lock-AF_INET){+.+.}-{0:0}, at: sockopt_lock_sock+0x54/0x70 [ 187.205879][ T7323] [ 187.205879][ T7323] but task is already holding lock: [ 187.213254][ T7323] ffffffff9012e528 (rtnl_mutex){+.+.}-{4:4}, at: do_ip_getsockopt+0x1843/0x2220 [ 187.222396][ T7323] [ 187.222396][ T7323] which lock already depends on the new lock. [ 187.222396][ T7323] [ 187.232839][ T7323] [ 187.232839][ T7323] the existing dependency chain (in reverse order) is: [ 187.241887][ T7323] [ 187.241887][ T7323] -> #2 (rtnl_mutex){+.+.}-{4:4}: [ 187.249167][ T7323] __mutex_lock+0x199/0xb90 [ 187.254257][ T7323] do_ip_setsockopt+0xf6/0x3240 [ 187.259683][ T7323] ip_setsockopt+0x59/0xf0 [ 187.264668][ T7323] ipv6_setsockopt+0x155/0x170 [ 187.269982][ T7323] tcp_setsockopt+0xa4/0x100 [ 187.275116][ T7323] smc_setsockopt+0x1b3/0xa00 [ 187.280339][ T7323] do_sock_setsockopt+0x221/0x470 [ 187.285922][ T7323] __sys_setsockopt+0x1a0/0x230 [ 187.291321][ T7323] __x64_sys_setsockopt+0xbd/0x160 [ 187.296997][ T7323] do_syscall_64+0xcd/0x260 [ 187.302060][ T7323] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.308496][ T7323] [ 187.308496][ T7323] -> #1 (&smc->clcsock_release_lock){+.+.}-{4:4}: [ 187.317223][ T7323] __mutex_lock+0x199/0xb90 [ 187.322282][ T7323] smc_switch_to_fallback+0x2d/0x9f0 [ 187.328112][ T7323] smc_sendmsg+0x13d/0x520 [ 187.333066][ T7323] ____sys_sendmsg+0xa95/0xc70 [ 187.338370][ T7323] ___sys_sendmsg+0x134/0x1d0 [ 187.343721][ T7323] __sys_sendmsg+0x16d/0x220 [ 187.348876][ T7323] do_syscall_64+0xcd/0x260 [ 187.353957][ T7323] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.360403][ T7323] [ 187.360403][ T7323] -> #0 (sk_lock-AF_INET){+.+.}-{0:0}: [ 187.368085][ T7323] __lock_acquire+0x1173/0x1ba0 [ 187.373498][ T7323] lock_acquire+0x179/0x350 [ 187.378555][ T7323] lock_sock_nested+0x41/0xf0 [ 187.383788][ T7323] sockopt_lock_sock+0x54/0x70 [ 187.389099][ T7323] do_ip_getsockopt+0x13e4/0x2220 [ 187.394665][ T7323] ip_getsockopt+0x9b/0x1e0 [ 187.399704][ T7323] raw_getsockopt+0x4d/0x1f0 [ 187.404834][ T7323] do_sock_getsockopt+0x3fc/0x800 [ 187.410413][ T7323] __sys_getsockopt+0x12f/0x260 [ 187.415808][ T7323] __x64_sys_getsockopt+0xbd/0x160 [ 187.421467][ T7323] do_syscall_64+0xcd/0x260 [ 187.426529][ T7323] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.432971][ T7323] [ 187.432971][ T7323] other info that might help us debug this: [ 187.432971][ T7323] [ 187.443209][ T7323] Chain exists of: [ 187.443209][ T7323] sk_lock-AF_INET --> &smc->clcsock_release_lock --> rtnl_mutex [ 187.443209][ T7323] [ 187.456803][ T7323] Possible unsafe locking scenario: [ 187.456803][ T7323] [ 187.464263][ T7323] CPU0 CPU1 [ 187.469651][ T7323] ---- ---- [ 187.475026][ T7323] lock(rtnl_mutex); [ 187.479051][ T7323] lock(&smc->clcsock_release_lock); [ 187.486963][ T7323] lock(rtnl_mutex); [ 187.493489][ T7323] lock(sk_lock-AF_INET); [ 187.497927][ T7323] [ 187.497927][ T7323] *** DEADLOCK *** [ 187.497927][ T7323] [ 187.506078][ T7323] 1 lock held by syz.2.377/7323: [ 187.511022][ T7323] #0: ffffffff9012e528 (rtnl_mutex){+.+.}-{4:4}, at: do_ip_getsockopt+0x1843/0x2220 [ 187.520745][ T7323] [ 187.520745][ T7323] stack backtrace: [ 187.526649][ T7323] CPU: 1 UID: 0 PID: 7323 Comm: syz.2.377 Tainted: G U 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT(full) [ 187.526688][ T7323] Tainted: [U]=USER [ 187.526696][ T7323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 187.526711][ T7323] Call Trace: [ 187.526719][ T7323] [ 187.526728][ T7323] dump_stack_lvl+0x116/0x1f0 [ 187.526769][ T7323] print_circular_bug+0x275/0x350 [ 187.526811][ T7323] check_noncircular+0x14c/0x170 [ 187.526855][ T7323] __lock_acquire+0x1173/0x1ba0 [ 187.526899][ T7323] ? do_ip_getsockopt+0x1843/0x2220 [ 187.526928][ T7323] lock_acquire+0x179/0x350 [ 187.526949][ T7323] ? sockopt_lock_sock+0x54/0x70 [ 187.526988][ T7323] lock_sock_nested+0x41/0xf0 [ 187.527019][ T7323] ? sockopt_lock_sock+0x54/0x70 [ 187.527052][ T7323] sockopt_lock_sock+0x54/0x70 [ 187.527085][ T7323] do_ip_getsockopt+0x13e4/0x2220 [ 187.527113][ T7323] ? __pfx_do_ip_getsockopt+0x10/0x10 [ 187.527142][ T7323] ? __pfx___resched_curr+0x10/0x10 [ 187.527175][ T7323] ? preempt_schedule_common+0x44/0xc0 [ 187.527211][ T7323] ? preempt_schedule_thunk+0x16/0x30 [ 187.527241][ T7323] ? try_to_wake_up+0xa2f/0x1680 [ 187.527275][ T7323] ? __lock_acquire+0xaa4/0x1ba0 [ 187.527319][ T7323] ? __pfx___might_resched+0x10/0x10 [ 187.527359][ T7323] ip_getsockopt+0x9b/0x1e0 [ 187.527385][ T7323] ? __pfx_ip_getsockopt+0x10/0x10 [ 187.527409][ T7323] ? __might_fault+0xe3/0x190 [ 187.527448][ T7323] ? __might_fault+0x13b/0x190 [ 187.527491][ T7323] raw_getsockopt+0x4d/0x1f0 [ 187.527514][ T7323] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 187.527556][ T7323] do_sock_getsockopt+0x3fc/0x800 [ 187.527604][ T7323] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 187.527644][ T7323] ? __fget_files+0x204/0x3c0 [ 187.527689][ T7323] __sys_getsockopt+0x12f/0x260 [ 187.527724][ T7323] __x64_sys_getsockopt+0xbd/0x160 [ 187.527755][ T7323] ? do_syscall_64+0x91/0x260 [ 187.527793][ T7323] ? lockdep_hardirqs_on+0x7c/0x110 [ 187.527829][ T7323] do_syscall_64+0xcd/0x260 [ 187.527868][ T7323] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.527894][ T7323] RIP: 0033:0x7f6caa98d169 [ 187.527915][ T7323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 187.527939][ T7323] RSP: 002b:00007f6cab79c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 187.527962][ T7323] RAX: ffffffffffffffda RBX: 00007f6caaba5fa0 RCX: 00007f6caa98d169 [ 187.527979][ T7323] RDX: 0000000000000030 RSI: 0000000000000000 RDI: 0000000000000003 [ 187.527994][ T7323] RBP: 00007f6caaa0e990 R08: 0000000000000000 R09: 0000000000000000 [ 187.528010][ T7323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 187.528025][ T7323] R13: 0000000000000000 R14: 00007f6caaba5fa0 R15: 00007ffd5be01618 [ 187.528048][ T7323]