last executing test programs: 2m49.557841221s ago: executing program 0 (id=2767): r0 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(0xffffffffffffffff, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000003180)=ANY=[@ANYRES16=r0, @ANYBLOB='\x00'/14], 0x14}, 0x1, 0x0, 0x0, 0x6000091}, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) r1 = open(&(0x7f0000000800)='./file0\x00', 0xe4201, 0x17c) fcntl$auto(r1, 0x400, 0x1) socket(0x1, 0x2, 0x40000008) unshare$auto(0x40000080) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ip6_mr_vif\x00', 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f00000000c0)=""/4087, 0xff7) mmap$auto(0x0, 0x20009, 0x7, 0xeb1, 0x0, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/mm/transparent_hugepage/shrink_underused\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000140)=""/1, 0x1) setsockopt$auto(0x400000000000003, 0x20000029, 0x21b, 0x0, 0x3) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd3/queue/iosched/write_expire\x00', 0x20681, 0x0) r4 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x30) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r5) sendmsg$auto_NL80211_CMD_GET_WIPHY(r5, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r6, @ANYBLOB="810b25bd7080fbdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004) recvmmsg$auto(r5, &(0x7f0000000180)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x2, 0x6}, 0x803}, 0x10a, 0x6, 0x0) r7 = openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/buffer_percent\x00', 0x1, 0x0) mmap$auto(0x2, 0x40000000008, 0x6, 0x7ffffffffffffffd, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0x3, 0x66) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) writev$auto(r7, &(0x7f00000035c0)={0x0, 0x4}, 0x9) fcntl$auto(r4, 0xfffffffd, 0x0) r8 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x40, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r8, 0xc1105517, &(0x7f00000001c0)={{@raw=0xfff, 0x100110d, 0xfffd, 0x6, "e927783f468fa2e92fe8ec7a46cbb766439daa1ee1aa0000000000040000660e0701000000fbfbffff8000"}, 0x6, 0x0, 0x4, @raw=0x404, @enumerated={0x55d3, 0x7, "bf154d70dcfcea02faacb07c4222db1f207fdb681dc9b0bf2c6c9ce16d51ebc73df6a7aa16659cd5e4dc8374caf945548e604179f1f87c3bd8701d3d5c3d998c", 0xffffffffffffffff, 0x91e0}, "a4699d30a05edbe0d28473c399a7dc920b153e9b1675451d7de94b4123f970bedd3460c667373fcc59b584d81592f6ab606c276852295e00af49e6de6e768034"}) 2m48.110992891s ago: executing program 0 (id=2773): socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r1, 0x40107447, &(0x7f00000000c0)={0xd, &(0x7f0000000000)={0x30, 0xf1, 0xb0}}) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x4, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) setsockopt$auto(0x400000000000003, 0x28, 0x6, 0x0, 0x56d) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0) prctl$auto_PR_SET_MM_ARG_END(0x9, 0x9, 0xffffffffffffffff, 0xd, 0x13) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capset$auto(&(0x7f0000000340)={0x19980330}, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) socket(0xa, 0x5, 0x94) io_uring_setup$auto(0x6, 0x0) mmap$auto(0xfffffffffffffff8, 0xfffffffffffffffa, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) 2m46.040132156s ago: executing program 0 (id=2777): socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x2200, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r3 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(r3, 0xc0603d06, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x4, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socket(0x28, 0x5, 0x0) setsockopt$auto(0x400000000000003, 0x28, 0x6, 0x0, 0x56d) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0) prctl$auto_PR_SET_MM_ARG_END(0x9, 0x9, 0xffffffffffffffff, 0xd, 0x13) capset$auto(&(0x7f0000000340)={0x19980330}, 0x0) open(0x0, 0x22240, 0x154) r4 = bpf$auto(0x7, 0x0, 0xa3) mmap$auto(0x0, 0x8, 0xdf, 0xeb1, r0, 0x8000) socket(0xa, 0x5, 0x94) select$auto(0x7ff, &(0x7f0000000100)={[0x1, 0x7fffffffffffffff, 0x9, 0x7fffffff, 0x2a7f, 0x2, 0x0, 0xfffffffffffffff1, 0x9, 0x8000001, 0xfff, 0x8, 0x2, 0x4, 0x2, 0x1]}, &(0x7f0000000180)={[0x8, 0x3ff, 0x10000, 0x8000000000000001, 0xfed, 0x4, 0xe5, 0x6, 0x52, 0xb25a, 0x3, 0x47ad, 0x5, 0x7, 0x2, 0x477]}, &(0x7f0000000200)={[0x7, 0x7, 0xe0f1, 0xe35, 0x9, 0x0, 0x7, 0x0, 0xc4d9, 0x7, 0x361, 0x7, 0xfffffffffffffffb, 0x8, 0xbf, 0xe]}, &(0x7f0000000040)={0x6e6f, 0x10}) mmap$auto(0xfffffffffffffff8, 0xfffffffffffffffa, 0xdf, 0xeb1, r4, 0x8000) 2m44.505067997s ago: executing program 0 (id=2779): connect$auto(0x3, 0x0, 0x54) openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, 0x0, 0x4c2801, 0x0) statmount$auto(0x0, 0x0, 0x7, 0x81) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) r1 = socket(0x15, 0x5, 0x0) write$auto(r1, 0x0, 0x8) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002dbd7000fddbdf250800030008000300", @ANYRES32=r4, @ANYRESOCT], 0x24}, 0x1, 0x0, 0x0, 0x5c5fd097f751b33e}, 0x80) sendmsg$auto(r1, &(0x7f0000001380)={&(0x7f0000000000)="c87c5d9b", 0x3d30, &(0x7f0000000080)={0x0, 0x3}, 0x2a, &(0x7f0000000380), 0x5, 0xd8d4}, 0xa) write$auto(0xffffffffffffffff, 0x0, 0x4) r5 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000040), 0x10a80, 0x0) ppoll$auto(&(0x7f0000000080)={0xffffffffffffffff, 0x7980, 0x6}, 0x2, 0x0, 0x0, 0x8) fcntl$auto(0x0, 0x407, 0x100000) r7 = socket(0xa, 0x2, 0x88) r8 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_SIOCSIFHWADDR(r6, 0x8924, 0x0) unshare$auto(0x8000000000000000) r9 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl802154(0x0, r0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000280)={'wg0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r10, r9, 0x4, 0x10401, r7, @relative_fd=r8, 0xe600}, 0xf) bpf$auto(0x4, 0x0, 0x2) 2m44.176445866s ago: executing program 0 (id=2781): r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000180), 0x101200, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000000c0)={{0x0, 0x2, 0x200800, 0xffffffff, 0xfffffffb}, "0dd7fd004929347eeeccdf0732f77b1f6de0d6d51768a257a97ca5e9ca6310ea"}) ioctl$auto_SNDRV_TIMER_IOCTL_PAUSE(0xffffffffffffffff, 0x54a3, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/ubifs/chk_fs\x00', 0x400, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vhci_hcd.10/usb30/ep_00/bmAttributes\x00', 0x12b5c0, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nbd15\x00', 0x204000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/machinecheck/machinecheck1/cmci_disabled\x00', 0x20102, 0x0) r1 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) fallocate$auto(r1, 0xa, 0xd, 0xcbd5f) memfd_secret$auto(0x0) mmap$auto(0x0, 0x8, 0xfffffffffffffffa, 0x13, 0x3, 0x0) pipe2$auto(0x0, 0x80) sendfile$auto(0x6, 0x3, 0x0, 0xc01) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) r2 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x40000, 0x91) read$auto(r2, 0x0, 0x1) write$auto(0x3, 0x0, 0x9) unshare$auto(0x40000080) unshare$auto(0x40000080) openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/ieee80211/phy5/netdev:wlan0/stations/08:02:11:00:00:01/vht_capa\x00', 0x40080, 0x0) r3 = socket(0x25, 0x1, 0x2) open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000300)={0x0}, 0x1, 0x0, 0x0, 0x8841}, 0x0) read$auto(0x3, 0x0, 0xf34) read$auto(r3, &(0x7f0000000040)='\x00', 0x10001) read$auto(0x3, 0x0, 0x80) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/asound/card1/cable#0\x00', 0x101440, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) syz_open_procfs$namespace(0x0, &(0x7f0000000340)='ns/ipc\x00') 2m43.656986696s ago: executing program 0 (id=2786): r0 = epoll_create$auto(0x8) epoll_pwait$auto(r0, 0x0, 0x4, 0x81, 0x0, 0x1) mbind$auto(0x7f, 0xffffffff80000000, 0x9, 0x0, 0x7fff, 0x0) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2) openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, 0x0, 0x142, 0x0) ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x1e9742, 0x0) madvise$auto(0x0, 0x2, 0x1d) r1 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x801, 0x0) write$auto_ftrace_subsystem_filter_fops_trace_events(r1, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x15, 0xfffffffffffffffa, 0x8000) openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/dynamic_events\x00', 0x80301, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x80000000000004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) getgroups$auto(0xc5f1, 0x0) swapon$auto(&(0x7f0000000140)='./cgroup.cpu/cgroup.clone_children\x00', 0x2) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/netlink\x00', 0x40080, 0x0) pread64$auto(r2, 0x0, 0x566, 0x80000000) close_range$auto(0x2, 0x8000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000) r3 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/numa_maps\x00', 0x20000, 0x0) pread64$auto(r3, 0x0, 0x28, 0x5) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="060000004272dee2c7672eb99b6ded2be07c2e9c360887d05d37650a655a28bfefa5ce580ced10224438e4bdfe432fb9c7d8bd87dfc44ed53706eb1022fa4bf0d63894573e3f19b4be805072b803", @ANYRES16=r5, @ANYBLOB="1b0026bd7000fedbdf250300000004000800100003800c00158008000100", @ANYRES32=r4, @ANYBLOB="12000100898771f1c19f1779048590822ad9000004000280"], 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0x4800) 2m28.424739154s ago: executing program 32 (id=2786): r0 = epoll_create$auto(0x8) epoll_pwait$auto(r0, 0x0, 0x4, 0x81, 0x0, 0x1) mbind$auto(0x7f, 0xffffffff80000000, 0x9, 0x0, 0x7fff, 0x0) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2) openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, 0x0, 0x142, 0x0) ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x1e9742, 0x0) madvise$auto(0x0, 0x2, 0x1d) r1 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x801, 0x0) write$auto_ftrace_subsystem_filter_fops_trace_events(r1, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x15, 0xfffffffffffffffa, 0x8000) openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/dynamic_events\x00', 0x80301, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x80000000000004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) getgroups$auto(0xc5f1, 0x0) swapon$auto(&(0x7f0000000140)='./cgroup.cpu/cgroup.clone_children\x00', 0x2) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/netlink\x00', 0x40080, 0x0) pread64$auto(r2, 0x0, 0x566, 0x80000000) close_range$auto(0x2, 0x8000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000) r3 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/numa_maps\x00', 0x20000, 0x0) pread64$auto(r3, 0x0, 0x28, 0x5) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="060000004272dee2c7672eb99b6ded2be07c2e9c360887d05d37650a655a28bfefa5ce580ced10224438e4bdfe432fb9c7d8bd87dfc44ed53706eb1022fa4bf0d63894573e3f19b4be805072b803", @ANYRES16=r5, @ANYBLOB="1b0026bd7000fedbdf250300000004000800100003800c00158008000100", @ANYRES32=r4, @ANYBLOB="12000100898771f1c19f1779048590822ad9000004000280"], 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0x4800) 12.772252493s ago: executing program 2 (id=3241): sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2006c8c1}, 0x14) socketpair$auto(0x101, 0x7, 0x1ff, &(0x7f0000000080)=0x200000) mmap$auto(0x0, 0xffffffffffff9b0d, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x11, 0x3, 0x9) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x2, 0x100) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0xffff8000, 0x80009, 0xb, 0x8000000008011, 0xffffffffffffffff, 0x9) io_uring_setup$auto(0x1, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) close_range$auto(r0, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)={0x1c, r3, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0xa}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004891}, 0xc000) fsconfig$auto_FSCONFIG_CMD_RECONFIGURE(r2, 0x7, &(0x7f0000000100)='.\x00', &(0x7f0000000140)="db5eb4e05e3e109a223efa77bfd3d6fe1ee9070c90ad6932aede24d8ff75413d5a3584564ac23e93fc1475adbb5931e89306d56338bcef506f78bf3dedd857be70c0ff0dc698fb307b51b6bb0b398aa108cfa269cda0f9aa4fcc3ad15a64e6867d256c", 0xf4) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3ff, 0x8000) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f00000001c0)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0) umount2$auto(&(0x7f0000000040)='.\x00', 0x4) umount2$auto(&(0x7f0000000000)='.\x00', 0x4) 11.249949232s ago: executing program 2 (id=3243): openat$auto_supply_map_fops_(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) preadv$auto(0x3, 0x0, 0x3, 0x10000, 0x10) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) read$auto_fake_panic_fops_(0xffffffffffffffff, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8ad00, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x5, 0x0) r0 = socket(0xa, 0x801, 0x84) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) msgctl$auto_IPC_INFO(0x100, 0x3, &(0x7f00000012c0)={{0x632, 0xffffffffffffffff, 0xee00, 0x1, 0x5, 0x1, 0x80}, 0x0, 0x0, 0x1b, 0x7, 0x5, 0x7, 0x1, 0xdd34, 0x7, 0x8, @raw=0xffff}) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) msgctl$auto_IPC_RMID(0xffff, 0x0, &(0x7f0000000280)={{0x4, r1, r2, 0xfffffffd, 0x9, 0xd, 0xb}, &(0x7f0000000200)=0x5, &(0x7f0000000240)=0x5, 0x1, 0x1, 0x6e, 0xe811, 0x5, 0x4, 0x5, 0x10, @raw=0x5, @raw=0x7}) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x54) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/loop11/hidden\x00', 0x2000, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) setsockopt$auto(r0, 0x1, 0x3f, 0x0, 0xb) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto(0xc8, 0x400454d1, 0x5c8d) sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, 0x0, 0x4c005) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0xffffffff, 0x0, 0x106, 0x0, 0x6c, 0x697c}, 0xed71390}, 0x9a6, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x1102, 0x0) 7.325737322s ago: executing program 2 (id=3252): r0 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(0xffffffffffffffff, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000003180)=ANY=[@ANYBLOB, @ANYRES16=r0, @ANYBLOB='\x00'/14], 0x14}, 0x1, 0x0, 0x0, 0x6000091}, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) r1 = open(&(0x7f0000000800)='./file0\x00', 0xe4201, 0x17c) fcntl$auto(r1, 0x400, 0x1) socket(0x1, 0x2, 0x40000008) unshare$auto(0x40000080) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ip6_mr_vif\x00', 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f00000000c0)=""/4087, 0xff7) mmap$auto(0x0, 0x20009, 0x7, 0xeb1, 0x0, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/ieee80211/phy2/power/control\x00', 0x600, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000140)=""/1, 0x1) setsockopt$auto(0x400000000000003, 0x2000002b, 0x8, 0x0, 0xd902) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd3/queue/iosched/write_expire\x00', 0x20681, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x30) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(0x0, r4) mlockall$auto(0x7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) move_pages$auto(0x0, 0xd0, 0x0, 0x0, 0x0, 0x2) bpf$auto(0x8, &(0x7f00000001c0)=@bpf_attr_0={0x7, 0xb5, 0x10, 0x4, 0x53400000, 0xffffffffffffffff, 0x9, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x2, 0x7, 0x7, 0x6}, 0x10) r5 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/038/001\x00', 0xa821, 0x0) ioctl$auto_USBDEVFS_SUBMITURB32(r5, 0x802c550a, &(0x7f00000001c0)=ANY=[]) 6.696995572s ago: executing program 4 (id=3257): mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004000)='/dev/audio\x00', 0x102, 0x0) ioctl$auto_SNDCTL_DSP_GETOSPACE(r0, 0x8010500c, &(0x7f00000003c0)="a3da15b3c1216e5b9e0d5178a3e7271e9f39a1ac721b26a9677e7782f87441a888d7be661b13e510b31f9f730ba6795e27d2dbb7eedfe4ac7b0799f13e9616751a89658ca9dfd4398f85a00e5edad195d71e8cea8fdfdce31bf343c1c69dc929131a365307927057f0ee302afffb45df0a558439ae67c0e0f9f133ebc52fa8c2fd401b46819afb4f287af3e05203735f763fb36a52cde57d8cc658d90c3c8100"/173) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x100000000002, 0x783, 0x3, 0x8000000008011, r1, 0x40) write$auto(0x3, 0x0, 0xfffffdef) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = socket(0x2b, 0x1, 0x1) r3 = socket(0x10, 0x2, 0x0) ioctl$auto_media_devnode_fops_mc_devnode(0xffffffffffffffff, 0x389, &(0x7f00000002c0)="c6b12f3671b8f60c90383f60b89b929f52ccdb6d2a3f0dc8f39acfc827825c190ceeaaa395d10a2b3fc25d5efbc42e8f60b3bbecd3e0bdea22a8800567bda196513e9cb87f03461046b9c7457704da74c7e878b2d315e308c15cb65f5b10d1f62dc4895872f99a9cbd77f6c2782b5888cec0f5f34a035ef440794187cbc0b1213f71209505e954f4ee05bbdad41904ab11c9263b35776d5614b021c7f37d3f51d72a3781cc9fcc75c3d0d6d7ce9f983e14e8b62590bcd6a9d845f60c229e54e52cfd494444e284401ee19d396ca446") sendmmsg$auto(r3, &(0x7f0000000080)={{0x0, 0xc, 0x0, 0xf3, 0x0, 0x7, 0x5}, 0x5b3}, 0x200, 0x100) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYRES32=r2, @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40) r4 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f00000027c0), 0x20900, 0x0) ioctl$auto_IOCTL_VMCI_QUEUEPAIR_DETACH(r4, 0x7aa, 0x0) recvmmsg$auto(r3, &(0x7f0000000280)={{0x0, 0x5, &(0x7f00000001c0)={0x0, 0xb4f}, 0x7, 0x0, 0x80000000, 0x6}, 0x80000001}, 0x801, 0x9, 0x0) setsockopt$auto(r2, 0x29, 0x20, 0x0, 0x20) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ram3\x00', 0x8001, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socketpair$auto(0x9, 0x1, 0x7ffffc, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0xd) open(0x0, 0x163340, 0x2a) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/workqueue/nvme-delete-wq/affinity_strict\x00', 0x183042, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/loop4\x00', 0x0, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) madvise$auto(0x108000, 0x800034, 0x200000b) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0) 6.536667641s ago: executing program 1 (id=3258): sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2006c8c1}, 0x14) socketpair$auto(0x101, 0x7, 0x1ff, &(0x7f0000000080)=0x200000) mmap$auto(0x0, 0xffffffffffff9b0d, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x11, 0x3, 0x9) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x2, 0x100) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0xffff8000, 0x80009, 0xb, 0x8000000008011, 0xffffffffffffffff, 0x9) io_uring_setup$auto(0x1, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) close_range$auto(r0, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)={0x1c, r3, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0xa}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004891}, 0xc000) fsconfig$auto_FSCONFIG_CMD_RECONFIGURE(r2, 0x7, &(0x7f0000000100)='.\x00', &(0x7f0000000140)="db5eb4e05e3e109a223efa77bfd3d6fe1ee9070c90ad6932aede24d8ff75413d5a3584564ac23e93fc1475adbb5931e89306d56338bcef506f78bf3dedd857be70c0ff0dc698fb307b51b6bb0b398aa108cfa269cda0f9aa4fcc3ad15a64e6867d256c", 0xf4) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3ff, 0x8000) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f00000001c0)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0) umount2$auto(&(0x7f0000000040)='.\x00', 0x4) umount2$auto(&(0x7f0000000000)='.\x00', 0x4) 6.453683602s ago: executing program 3 (id=3259): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/virtual/net/bond0/bonding/arp_missed_max\x00', 0xc2900, 0x0) read$auto(r1, &(0x7f0000000040)='\xfd-:]:\x00', 0x7) r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) read$auto(0x3, 0x0, 0x80) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20000800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x8000}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x2000, 0x0) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20008841) sysfs$auto(0xffffffff, 0x0, 0x0) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) syz_genetlink_get_family_id$auto_tipcv2(0x0, 0xffffffffffffffff) r3 = syz_clone(0x1432a0091, 0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="19"], 0x1ac}}, 0x40000) unshare$auto(0x40000080) r4 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/system/node/node0/vmstat\x00', 0x40000, 0x0) mmap$auto(0xffffffffffffffff, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0x14, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x20007, 0xffff, 0xeb1, 0x405, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/rose5/duplex\x00', 0x800, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x7, 0x7352, 0x40, 0x65f, 0x1ffde, 0x7, 0x9, 0x4, 0x9, 0x3, 0x5, 0x8, 0x3000, 0xfffffffffffff001, 0x6, 0x10002, 0x80, 0x4, 0x0, 0x7, 0x1ffc, 0x5, 0x400, 0x84, 0x0, 0x0, 0x0, 0x26e}, 0x1fe, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)=ANY=[@ANYRES64=r3, @ANYBLOB='&\x00\x00', @ANYRES64=r5, @ANYBLOB='+', @ANYRESHEX=0x0, @ANYRES8=r3, @ANYRESDEC=0x0, @ANYBLOB="05e96ddb3c4f12c83c466fc48dba155a48be2ce084fa597abc04ab2b79c1c1f144138fbaece1fa212cfaad38d020350a3a37a2920bf2325748ecdbc4310df483a7c498a04d4940d26dc6c5cabe18075da22f4e820ff67573524cee3e8d7e881af874aef648fd02ed47fc4b01013ab1b1f52f6d9b58837252720ee652fc16d91b54a91d8a3f1b3b24f9cc397ae519df3242c17a2f933b226a24b29a1bd22750a2c3fc88116d368781de8394a4dd8c8b74", @ANYRESHEX=r4, @ANYRES32=r2], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) 5.963551195s ago: executing program 4 (id=3260): mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x400800}, 0x8) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'ip6gre0\x00', 0x0}) sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004540)={&(0x7f0000000140)={0x40, r3, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@OVS_DP_ATTR_IFINDEX={0x8, 0x9, r4}, @OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0x6}, @OVS_DP_ATTR_NAME={0x11, 0x1, 'ovs_\x12\xff\xfe\x00\x00\x00\x00\x00\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x2000000) (fail_nth: 6) 5.372991181s ago: executing program 4 (id=3261): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x37}}, 0x6e) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000) r1 = io_uring_setup$auto(0x1, 0x0) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram5\x00', 0x2000, 0x0) ioctl$auto_BLKRASET(r2, 0x1262, 0x0) sendmsg$auto_NL80211_CMD_PEER_MEASUREMENT_START(r0, 0x0, 0x4008080) r3 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) fsmount$auto(r3, 0x2, 0x3) write$auto(0x3, 0x0, 0xfffffdef) r4 = ioctl$auto_NS_GET_PID_IN_PIDNS(r1, 0x8004b708, &(0x7f0000000080)=0xfffffff7) r5 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000100), r1) sendmsg$auto_WG_CMD_GET_DEVICE(r4, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x58, r5, 0x400, 0x70bd25, 0x25dfdbfc, {}, [@WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e22}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'veth1_vlan\x00'}, @WGDEVICE_A_PRIVATE_KEY={0x28, 0x3, "88040bf6c90faec2c3aa15fa68ade4349bc638c77bfe6905e6e66cecdcbc0a052b233f7f"}]}, 0x58}, 0x1, 0x0, 0x0, 0x24040800}, 0x8000) unshare$auto(0x40000080) io_uring_setup$auto(0x6, 0x0) sendto$auto(0x3, 0x0, 0x2000f, 0x101, &(0x7f0000000000)=@in={0x2, 0x4e22, @loopback}, 0x1c) 5.323139413s ago: executing program 1 (id=3262): openat$auto_supply_map_fops_(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) preadv$auto(0x3, &(0x7f00000004c0)={0x0, 0x8000000}, 0x3, 0x10000, 0x10) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) read$auto_fake_panic_fops_(0xffffffffffffffff, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x5, 0x0) r0 = socket(0xa, 0x801, 0x84) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) msgctl$auto_IPC_INFO(0x100, 0x3, &(0x7f00000012c0)={{0x632, 0xffffffffffffffff, 0xee00, 0x1, 0x5, 0x1, 0x80}, 0x0, 0x0, 0x1b, 0x7, 0x5, 0x7, 0x1, 0xdd34, 0x7, 0x8, @raw=0xffff}) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) sendmsg$auto_IPVS_CMD_SET_SERVICE(0xffffffffffffffff, &(0x7f0000002ac0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x44050}, 0x4008000) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x54) (fail_nth: 1) ioctl$auto_BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/loop11/hidden\x00', 0x2000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000080)=""/177, 0xb1) lsm_list_modules$auto(0x0, 0x0, 0x0) setsockopt$auto(r0, 0x1, 0x3f, 0x0, 0xb) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000680), r3) recvmmsg$auto(0x3, 0x0, 0x10000, 0x1102, 0x0) 5.038054502s ago: executing program 2 (id=3263): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x4000804) syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000180), 0xffffffffffffffff) close_range$auto(0x2, 0xa, 0x0) r0 = socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) semctl$auto(0x7, 0x2, 0x13, 0x1) mmap$auto(0x0, 0xe98b, 0x7fffffffffffffff, 0xebf, r0, 0x8000) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8402, 0x0) r1 = socket(0x23, 0x2, 0x0) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x1, 0xd, 0x3000, 0x5, 0x4, 0x7fffffff, 0xffffffffffffffff, [], {0x6, 0x6, 0x3b5a, 0x21f, 0x102, 0x7ffffffb, 0x101, 0x8, 0x3}, {0x100, 0x1, 0x52, 0x405, 0x2, 0x60, 0x76c5, 0x8, 0x100000000}}) unshare$auto(0x40000080) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x202002, 0x0) sysfs$auto(0x2, 0x20, 0x0) fsopen$auto(0x0, 0x1) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xe, 0x1, 0x4, 0x7, 0x15f4da0a, 0x1, 0x7fff, 0x300000000000000, 0x80000001, 0xdc, 0x6d3c, 0x8, 0x2, 0x2e]}, 0x0) close_range$auto(0x2, 0x8, 0x0) getsockopt$auto_SO_DEBUG(r1, 0x6, 0x1, &(0x7f0000001340)='l2tp\x00', &(0x7f0000001380)=0x80000001) r3 = socket(0x10, 0x2, 0x0) setsockopt$auto_SO_INCOMING_CPU(r2, 0x1, 0x31, &(0x7f0000000140)='/dev/dvb/adapter0/frontend0\x00', 0x8) r4 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001500), 0xffffffffffffffff) r5 = open(&(0x7f0000000800)='./file0\x00', 0x62200, 0x60) socketpair$auto(0x4, 0x1d7b, 0xa1ed, &(0x7f00000013c0)=0x7) mmap$auto(0x9, 0x3, 0x8000000000000000, 0x13, r5, 0x34a) ioctl$auto_BTRFS_IOC_RESIZE(r5, 0x50009403, &(0x7f0000000340)={@raw=0x1, "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"}) sendmsg$auto_NETDEV_CMD_QUEUE_GET(r3, &(0x7f0000001640)={0x0, 0x0, &(0x7f0000001600)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1400005f38540c86821932b4a7580612c88af8febe8c67e7981f052229dfd4f251596384ab76953ffde688daa5b54614ce536eba544d4ea94ae830efb2f74c9a1d953491473b4e2a396338d8adcd026b2e92505ddc5f72c79be671e696f5cb4127082ea28511bff1ac2327bd2211135d253822741c610354c51806b2560424f2dcd2890f8e78e92d01e2f4909be0fe2f01540b01f6e7f69c7a18f30e7f7d3d9fe023a8752aea6c400333040518283a6753d7ee964a0f0c0255a20b1e1e6fbc57172669603b55175710084ea403dedc2e6b81a208aab43ecaa9627be4c2551d7728d5", @ANYRES16=r4, @ANYBLOB="010026bd7000fddbdf250a000000"], 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x810) lsm_list_modules$auto(0x0, 0x0, 0x0) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x4, 0x0, 0x6c, 0x697c}, 0xed71390}, 0x9a6, 0xff00) 4.253033627s ago: executing program 1 (id=3264): r0 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(0xffffffffffffffff, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000003180)=ANY=[@ANYBLOB, @ANYRES16=r0, @ANYBLOB='\x00'/14], 0x14}, 0x1, 0x0, 0x0, 0x6000091}, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) r1 = open(&(0x7f0000000800)='./file0\x00', 0xe4201, 0x17c) fcntl$auto(r1, 0x400, 0x1) socket(0x1, 0x2, 0x40000008) unshare$auto(0x40000080) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ip6_mr_vif\x00', 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f00000000c0)=""/4087, 0xff7) mmap$auto(0x0, 0x20009, 0x7, 0xeb1, 0x0, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/ieee80211/phy2/power/control\x00', 0x600, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000140)=""/1, 0x1) setsockopt$auto(0x400000000000003, 0x2000002b, 0x8, 0x0, 0xd902) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd3/queue/iosched/write_expire\x00', 0x20681, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x30) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(0x0, r4) mlockall$auto(0x7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) move_pages$auto(0x0, 0xd0, 0x0, 0x0, 0x0, 0x2) bpf$auto(0x8, &(0x7f00000001c0)=@bpf_attr_0={0x7, 0xb5, 0x10, 0x4, 0x53400000, 0xffffffffffffffff, 0x9, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x2, 0x7, 0x7, 0x6}, 0x10) r5 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/038/001\x00', 0xa821, 0x0) ioctl$auto_USBDEVFS_SUBMITURB32(r5, 0x802c550a, &(0x7f00000001c0)=ANY=[@ANYBLOB]) 3.377763172s ago: executing program 1 (id=3265): r0 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(0xffffffffffffffff, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000003180)=ANY=[@ANYBLOB="14000000", @ANYRES16=r0, @ANYBLOB], 0x14}, 0x1, 0x0, 0x0, 0x6000091}, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) r1 = open(&(0x7f0000000800)='./file0\x00', 0xe4201, 0x17c) fcntl$auto(r1, 0x400, 0x1) socket(0x1, 0x2, 0x40000008) unshare$auto(0x40000080) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ip6_mr_vif\x00', 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x7, 0xeb1, 0x0, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/ieee80211/phy2/power/control\x00', 0x600, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000140)=""/1, 0x1) setsockopt$auto(0x400000000000003, 0x2000002b, 0x8, 0x0, 0xd902) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd3/queue/iosched/write_expire\x00', 0x20681, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x30) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r3) mlockall$auto(0x7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) move_pages$auto(0x0, 0xd0, 0x0, 0x0, 0x0, 0x2) bpf$auto(0x8, &(0x7f00000001c0)=@bpf_attr_0={0x7, 0xb5, 0x10, 0x4, 0x53400000, 0xffffffffffffffff, 0x9, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x2, 0x7, 0x7, 0x6}, 0x10) r4 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/038/001\x00', 0xa821, 0x0) ioctl$auto_USBDEVFS_SUBMITURB32(r4, 0x802c550a, &(0x7f00000001c0)=ANY=[@ANYBLOB="028006000000000005"]) 3.170706128s ago: executing program 3 (id=3266): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/machinecheck/machinecheck0/monarch_timeout\x00', 0x2, 0x0) gettid() mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r1) unshare$auto(0x40000080) socket(0xa, 0x3, 0x3a) r2 = socket(0x1d, 0x2, 0x2) connect$auto(0x3, 0x0, 0x55) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/platform/i8042/serio1/resolution\x00', 0x183902, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) r3 = syz_genetlink_get_family_id$auto_netdev(&(0x7f00000010c0), r2) sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(r2, &(0x7f00000011c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000001180)={&(0x7f0000001100)={0x74, r3, 0x200, 0x70bd2d, 0x25dfdbfb, {}, [@NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x5}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x4}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0xfffffffffffffffc}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x2}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0xd}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x400}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x8}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x6}]}, 0x74}, 0x1, 0x0, 0x0, 0x800}, 0x4000000) write$auto(0x3, 0x0, 0xfdef) semctl$auto_SETALL(0x0, 0x9, 0x11, 0xff) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f00000000c0)=""/4096, 0x1000) setsockopt$auto(0x400000000000003, 0x29, 0xd0, 0x0, 0x4) madvise$auto(0x0, 0x2000040080000004, 0xe) mmap$auto(0x9, 0x4, 0x4000000000dd, 0x40eb2, 0x402, 0x300000000000) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080)) unshare$auto(0x9) setsockopt$auto(0x3, 0x29, 0x39, 0xffffffffffffffff, 0x1) r4 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r4, 0x0, 0x33, 0x0, 0x4) mmap$auto(0x0, 0x20000a, 0xffffffffffffffff, 0x40eb1, 0x602, 0x300000000000) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000140)="33aa0d7191af", 0x6) 2.360216946s ago: executing program 2 (id=3267): mmap$auto(0x8, 0x88b, 0xdf, 0x9b71, 0xffffffffffffffff, 0xab7) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) read$auto(r0, 0x0, 0x20) r1 = socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x938, 0x81, 0x0, 0x8) getsockopt$auto(r1, 0x84, 0x16, 0x0, 0x0) r2 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000240), 0x800, 0x0) ioctl$auto_I2C_SMBUS(r2, 0x720, 0xfffffffffffffffe) mmap$auto(0x0, 0x40009, 0xcf, 0x9b72, 0x7, 0x8) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r3 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r4 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x800006, 0x7) mkdir$auto(0x0, 0xe34e) chroot$auto(0x0) r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) ioctl$auto_XFS_IOC_ALLOCSP(r4, 0x4030580a, &(0x7f00000001c0)={0x1000, 0xaeb, 0xff, 0x8, 0x8, 0xffffffffffffffff}) prctl$auto(0x4, 0x8, r6, 0x7, 0x6) writev$auto(r5, &(0x7f0000000200)={0x0, 0x400800}, 0x8) r7 = ioctl$auto_TUNSETVNETHDRSZ2(0xffffffffffffffff, 0x400454d8, &(0x7f0000000340)=0x10) mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa) execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0) mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4) link$auto(&(0x7f0000000940)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2DW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xea\xa5\xff \xec\xe8\xca\xbf\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\v\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4N\xbb\xc2\xf8\x9c\xd0+t\x87r\x02\x05\xdb\xe4\xde\xed\x02\x00\x00\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00M\x83\xdb\xaf\xc4\xf23l\xae\xc5\x1d\xc4\xb0\x06\xd06\x1dX\x03\xe3\x9e\xd3\xd96\xcf\xd9\xa3\xcb\xd6B\xc3\x0f#\xd2\x1a\xf9L\xf5\x87My\xce\x19*\xde\x8d+#\x13\x15\xd3Y\x98\xe1\xc3@\x0e\x9c\xc2\xf8\b\xaf\x89\xe5\x00\x89-pWD\xb5&\xc9\x8e\x8d,\xb7}1\x84U\x18y\xa90\xf5\x80\x981U\x17\x14]\xc56j\xe7\x0e\xecBr\xa9]\"\xd36^m\x12\xb6\xbc\x80\xa4h{\xde\xcf\xf7d\x87rl\x11\xf7\x15\xcb~\xb9\x01\x0e\xd7O_\x91\xe1\xead\xee\xed]/p\xd6\xff\x17\xe4\aV\"I\xca\x90\xc7i\'\xa3R\x81\xf1}4\xbeU\x00\xa4\x1d\xea!Z\xd4|\xbe\x987\n!\x9b?\xb9l_\xd8$av\xfe%\xa2\xda\x82\x14\xc311;\xa4ob\x87\xdbY\xe2\x00', &(0x7f0000000b40)='./file0\x00') rename$auto(&(0x7f0000000680)=':,\x00', &(0x7f0000000480)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2DW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xea\xa5\xff \xec\xe8\xca\xbf\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\v\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4N\xbb\xc2\xf8\x9c\xd0+t\x87r\x02\x05\xdb\xe4\xde\xed\x02\x00\x00\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00M\x83\xdb\xaf\xc4\xf23l\xae\xc5\x1d\xc4\xb0\x06\xd06\x1dX\x03\xe3\x9e\xd3\xd96\xcf\xd9\xa3\xcb\xd6B\xc3\x0f#\xd2\x1a\xf9L\xf5\x87My\xce\x19*\xde\x8d+#\x13\x15\xd3Y\x98\xe1\xc3@\x0e\x9c\xc2\xf8\b\xaf\x89\xe5\x00\x89-pWD\xb5&\xc9\x8e\x8d,\xb7}1\x84U\x18y\xa90\xf5\x80\x981U\x17\x14]\xc56j\xe7\x0e\xecBr\xa9]\"\xd36^m\x12\xb6\xbc\x80\xa4h{\xde\xcf\xf7d\x87rl\x11\xf7\x15\xcb~\xb9\x01\x0e\xd7O_\x91\xe1\xead\xee\xed]/p\xd6\xff\x17\xe4\aV\"I\xca\x90\xc7i\'\xa3R\x81\xf1}4\xbeU\x00\xa4\x1d\xea!Z\xd4|\xbe\x987\n!\x9b?\xb9l_\xd8$av\xfe%\xa2\xda\x82\x14\xc311;\xa4ob\x87\xdbY\xe2\x00') read$auto_component_list_fops_(r7, &(0x7f00000002c0)=""/103, 0x44) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'syzkaller0\x00'}) 2.278957041s ago: executing program 3 (id=3268): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001700), r0) sendmsg$auto_NETDEV_CMD_DEV_GET(r0, &(0x7f0000001840)={0x0, 0x0, &(0x7f0000001800)={&(0x7f00000017c0)={0x14, r1, 0x301, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0xf0ffff, 0x0, 0x4005}, 0x28044004) (fail_nth: 6) 2.242666748s ago: executing program 2 (id=3269): mmap$auto(0x0, 0x2020009, 0x9, 0xeb3, 0xfffefffffffffffa, 0x8000) fcntl$auto(0xffffffffffffffff, 0x409, 0x40003f) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0x109042, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/swaps\x00', 0x0, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev3\x00', 0x149a81, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fe, 0x104, 0x7, 0x7, 0x1, 0x3, 0x15f4da06, 0x6, 0x3, 0x0, 0x5, 0x7, 0x6d3f, 0x1000002, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) ioctl$auto_XFS_IOC_GET_RESBLKS(r0, 0x80105873, &(0x7f0000000040)={0x7, 0x1}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) close_range$auto(0x2, 0x8, 0x0) unshare$auto(0x40000080) init_module$auto(0x0, 0xffff9, 0x0) 2.178996906s ago: executing program 4 (id=3270): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_MEDIA_GET(r0, &(0x7f00000003c0)={0x0, 0xf0, &(0x7f0000000140)={&(0x7f00000006c0)={0x14, r1, 0x701, 0x70bd29, 0x25dfdbfd, {0xb, 0x0, 0xffff}}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x10) 2.101012338s ago: executing program 3 (id=3271): sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2006c8c1}, 0x14) socketpair$auto(0x101, 0x7, 0x1ff, &(0x7f0000000080)=0x200000) mmap$auto(0x0, 0xffffffffffff9b0d, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x11, 0x3, 0x9) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x2, 0x100) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0xffff8000, 0x80009, 0xb, 0x8000000008011, 0xffffffffffffffff, 0x9) io_uring_setup$auto(0x1, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) close_range$auto(r0, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)={0x1c, r3, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0xa}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004891}, 0xc000) fsconfig$auto_FSCONFIG_CMD_RECONFIGURE(r2, 0x7, &(0x7f0000000100)='.\x00', &(0x7f0000000140)="db5eb4e05e3e109a223efa77bfd3d6fe1ee9070c90ad6932aede24d8ff75413d5a3584564ac23e93fc1475adbb5931e89306d56338bcef506f78bf3dedd857be70c0ff0dc698fb307b51b6bb0b398aa108cfa269cda0f9aa4fcc3ad15a64e6867d256c", 0xf4) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f00000001c0)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0) umount2$auto(&(0x7f0000000040)='.\x00', 0x4) umount2$auto(&(0x7f0000000000)='.\x00', 0x4) 1.813765616s ago: executing program 4 (id=3272): mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) socket(0x1e, 0x1, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, 0x0, 0x28082, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x1cb842, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0xe0742, 0x0) ioperm$auto(0x7, 0x6, 0x2) io_uring_enter$auto(0xffffffffffffffff, 0x1, 0x82400004, 0x4b, 0x0, 0xd) mmap$auto(0x80020001, 0x580f, 0x112f4a03, 0x800000000801e, 0x3, 0x3) getresgid$auto(0x0, &(0x7f0000000a40)=0x2, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xe0002, 0x0) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x40, 0x0) setsockopt$auto(r1, 0x1, 0x10, 0x0, 0xba) shmctl$auto_SHM_LOCK(0x1, 0xb, 0x0) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x810}, 0x4000080) close_range$auto(0x2, 0xa, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0) r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) read$auto(r2, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0xffd8) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) read$auto(r3, 0x0, 0x1d) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x400800}, 0x8) 1.288211608s ago: executing program 3 (id=3273): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram14\x00', 0x60742, 0x0) readahead$auto(r0, 0x10000000e, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) wait4$auto(0x0, &(0x7f0000000000)=0x9, 0x2, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x40001, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0x8004ae98, 0x0) preadv$auto(r1, &(0x7f00000000c0)={&(0x7f0000000080), 0x100000000}, 0x80000001, 0x6, 0x3) openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim0/max_vfs\x00', 0x400, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3) socket(0x10, 0x2, 0x0) memfd_create$auto(0x0, 0x4) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) sendmmsg$auto(r2, &(0x7f0000000000)={{0x0, 0x6, 0x0, 0x106, 0x0, 0x1, 0x3}, 0x57177fc5}, 0x9, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) socket(0xa, 0x3, 0x3a) socket(0xa, 0x2, 0x88) bpf$auto(0xfffffffe, &(0x7f0000000000)=@enable_stats={0x194ed38d}, 0xa3) syz_clone(0x100000, 0x0, 0x0, 0x0, 0x0, 0x0) 1.270653844s ago: executing program 1 (id=3281): r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) mmap$auto(0x400000000000000, 0xe983, 0x2df, 0x16, r0, 0xb) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/sctp/remaddr\x00', 0x101d00, 0x0) socket$nl_generic(0x10, 0x3, 0x10) memfd_create$auto(0x0, 0xa) r3 = socketpair$auto(0x1e, 0x0, 0x7, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0xa042, 0x0) unshare$auto(0x40000080) setitimer$auto(0x6, &(0x7f0000000380)={{0x10, 0x800000000000}, {0xffffffffffffbff6}}, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000640), r4) r5 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000c40), r4) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r4, &(0x7f0000001d40)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYBLOB="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", @ANYRES32=0x0, @ANYRESHEX=r3, @ANYRESOCT=r2, @ANYRES32=0x0, @ANYRES16=r1], 0x2024}, 0x1, 0x0, 0x0, 0x8000}, 0x80000) r6 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) fcntl$auto(r6, 0x400, 0x1) execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x0, 0x8000) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.12/usb33/33-0:1.0/ep_81/type\x00', 0x2600, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r7, &(0x7f0000000140)=""/12, 0xc) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/devices/virtual/block/ram10/events\x00', 0x4300, 0x0) r9 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) fcntl$auto(r9, 0x400, 0x1) r10 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0xa02, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r10, 0xc1105517, &(0x7f00000001c0)={{@inferred, 0x100110d, 0x10003, 0x6, "e927783f468fa2e92fe8ec7a46cbb766439daa1ee1aa00000000e1800000000000000000040000660e070100", @raw=0x3}, 0x6, 0x0, 0x4, @raw=0x404, @reserved="b28b4117ead73afaaec6ff77dc1cb5a40433cfb9913cf8f2d9b18673656493359f8a4b1f7d84e6a12f3c756bfb8d109f9c89e495ff6da5cb757e5fd61e238b80882e1ab868bbf1155729044c29e0c63987902a3d8e91bb3819d50cc9447962fc53432b1c6d9cecf7d9f3fb6f1c7e834eaf603f22d4fdecab69b2fe82c12f3e5c", "a4699d30a05edbe0d28473c399a7dc920b153e9b1675451d7de94b4123f970bedd3460c667373fcc59b584d81592f6ab606c276852295e00af49e6de6e768034"}) execve$auto(&(0x7f0000000300)='./file0\x00', 0x0, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r8, &(0x7f00000000c0)='-7', 0x2) 218.340688ms ago: executing program 1 (id=3274): sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2006c8c1}, 0x14) socketpair$auto(0x101, 0x7, 0x1ff, &(0x7f0000000080)=0x200000) mmap$auto(0x0, 0xffffffffffff9b0d, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x11, 0x3, 0x9) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x2, 0x100) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0xffff8000, 0x80009, 0xb, 0x8000000008011, 0xffffffffffffffff, 0x9) io_uring_setup$auto(0x1, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) close_range$auto(r0, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)={0x1c, r3, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0xa}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004891}, 0xc000) fsconfig$auto_FSCONFIG_CMD_RECONFIGURE(r2, 0x7, &(0x7f0000000100)='.\x00', &(0x7f0000000140)="db5eb4e05e3e109a223efa77bfd3d6fe1ee9070c90ad6932aede24d8ff75413d5a3584564ac23e93fc1475adbb5931e89306d56338bcef506f78bf3dedd857be70c0ff0dc698fb307b51b6bb0b398aa108cfa269cda0f9aa4fcc3ad15a64e6867d256c", 0xf4) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f00000001c0)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0) umount2$auto(&(0x7f0000000040)='.\x00', 0x4) umount2$auto(&(0x7f0000000000)='.\x00', 0x4) 199.297577ms ago: executing program 4 (id=3275): mmap$auto(0x0, 0x2020009, 0x9, 0xeb3, 0xfffefffffffffffa, 0x8000) fcntl$auto(0xffffffffffffffff, 0x409, 0x40003f) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0x109042, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/swaps\x00', 0x0, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev3\x00', 0x149a81, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fe, 0x104, 0x7, 0x7, 0x1, 0x3, 0x15f4da06, 0x6, 0x3, 0x0, 0x5, 0x7, 0x6d3f, 0x1000002, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) ioctl$auto_XFS_IOC_GET_RESBLKS(r0, 0x80105873, &(0x7f0000000040)={0x7, 0x1}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) close_range$auto(0x2, 0x8, 0x0) unshare$auto(0x40000080) init_module$auto(0x0, 0xffff9, 0x0) 0s ago: executing program 3 (id=3276): unshare$auto(0x40000080) socket(0x0, 0x6, 0x7fffffff) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) r0 = socket(0x28, 0x2, 0x1c00) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYRESOCT=r0], 0x14}}, 0x4000000) r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb1\x00', 0x0, 0x0) ioctl$auto_FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f00000000c0)="58fcb282bcbc38bfaef257e019406e8ec445cd4f7f7662ac0f8834baa918d5b3cea133243c4f2b9a39e536b67f5a1a2bfdf589da2b1c980e9ce53883444996d1721d7f3ae627c6c68118e15b5a753fd37910fbc02d898cfc8254c80582fc6184113a38c8937e") r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/cgroup.max.depth\x00', 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) read$auto(0x3, 0x0, 0x80) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/midiC2D2\x00', 0x1, 0x0) openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f00000001c0), 0x1cb803, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) r4 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x80100, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r4, 0x6f2a, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0xa, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x7, 0x10000000000007, 0xd, 0x1, 0xf, 0x80000001, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x10000007, 0x1, 0x5, 0x2]}, 0x0) unshare$auto(0x40001080) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/system/clocksource/clocksource0/available_clocksource\x00', 0x42400, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f00000001c0)=""/125, 0x7d) prctl$auto(0x39, 0x1, 0x0, 0x0, 0x0) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x40400, 0x0) io_uring_setup$auto(0x4bf15e08, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x0, 0x0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(r5, 0xc0305710, &(0x7f00000000c0)={0x1, 0xfa, 0x9, 0x1, 0x418, "e72171dd9872b555facc1e8f"}) kernel console output (not intermixed with test programs): ume_table: LEB size too small for a volume record [ 788.945669][T19084] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 788.962780][T19087] .SR: entered promiscuous mode [ 788.984400][T19088] Invalid ELF header magic: != ELF [ 789.733433][T19097] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2652'. [ 791.821139][T19138] Invalid ELF header magic: != ELF [ 792.355659][T19123] vhci_hcd: invalid port number 242 [ 792.391319][T19123] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 792.619264][T19159] FAULT_INJECTION: forcing a failure. [ 792.619264][T19159] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 792.632993][T19159] CPU: 0 UID: 0 PID: 19159 Comm: syz.1.2663 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 792.633028][T19159] Tainted: [U]=USER [ 792.633036][T19159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 792.633048][T19159] Call Trace: [ 792.633054][T19159] [ 792.633062][T19159] dump_stack_lvl+0x16c/0x1f0 [ 792.633097][T19159] should_fail_ex+0x512/0x640 [ 792.633126][T19159] strncpy_from_user+0x3b/0x2e0 [ 792.633150][T19159] getname_flags.part.0+0x8f/0x550 [ 792.633184][T19159] getname_flags+0x93/0xf0 [ 792.633206][T19159] user_path_at+0x24/0x60 [ 792.633228][T19159] __do_sys_pivot_root+0x1ed/0x1650 [ 792.633255][T19159] ? __fget_files+0x20e/0x3c0 [ 792.633280][T19159] ? __pfx___do_sys_pivot_root+0x10/0x10 [ 792.633309][T19159] ? __pfx_ksys_write+0x10/0x10 [ 792.633341][T19159] do_syscall_64+0xcd/0x230 [ 792.633373][T19159] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 792.633396][T19159] RIP: 0033:0x7f448ad8e969 [ 792.633413][T19159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 792.633434][T19159] RSP: 002b:00007f448bb20038 EFLAGS: 00000246 ORIG_RAX: 000000000000009b [ 792.633455][T19159] RAX: ffffffffffffffda RBX: 00007f448afb5fa0 RCX: 00007f448ad8e969 [ 792.633471][T19159] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000200000000000 [ 792.633485][T19159] RBP: 00007f448bb20090 R08: 0000000000000000 R09: 0000000000000000 [ 792.633499][T19159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 792.633512][T19159] R13: 0000000000000000 R14: 00007f448afb5fa0 R15: 00007ffe3ea3ebd8 [ 792.633552][T19159] [ 793.148624][T19164] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2667'. [ 793.727612][T19176] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 794.397164][T19190] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2672'. [ 794.730755][T19187] vhci_hcd: invalid port number 242 [ 794.736010][T19187] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 796.482602][T19227] netlink: 186 bytes leftover after parsing attributes in process `syz.3.2676'. [ 796.566723][T19205] Invalid ELF header magic: != ELF [ 797.480900][T19252] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 797.967424][T19264] ubi0: attaching mtd0 [ 797.981411][T19264] ubi0: scanning is finished [ 797.986192][T19264] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 798.112189][ T30] audit: type=1326 audit(4294967368.319:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19267 comm="syz.0.2686" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4d96b8e969 code=0x0 [ 798.133928][ C0] vkms_vblank_simulate: vblank timer overrun [ 798.167778][T19264] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 798.269644][T19273] Invalid ELF header magic: != ELF [ 798.352323][T19270] .SR: entered promiscuous mode [ 799.491051][T19293] netlink: 268 bytes leftover after parsing attributes in process `syz.0.2690'. [ 799.569027][T19293] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 800.597357][T19322] FAULT_INJECTION: forcing a failure. [ 800.597357][T19322] name failslab, interval 1, probability 0, space 0, times 0 [ 800.626212][T19322] CPU: 1 UID: 0 PID: 19322 Comm: syz.1.2696 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 800.626256][T19322] Tainted: [U]=USER [ 800.626264][T19322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 800.626279][T19322] Call Trace: [ 800.626287][T19322] [ 800.626297][T19322] dump_stack_lvl+0x16c/0x1f0 [ 800.626339][T19322] should_fail_ex+0x512/0x640 [ 800.626366][T19322] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 800.626396][T19322] should_failslab+0xc2/0x120 [ 800.626428][T19322] __kmalloc_cache_noprof+0x6a/0x3e0 [ 800.626452][T19322] ? device_add+0xccc/0x1a70 [ 800.626484][T19322] device_add+0xccc/0x1a70 [ 800.626515][T19322] ? __pfx_device_add+0x10/0x10 [ 800.626540][T19322] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 800.626576][T19322] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 800.626620][T19322] wiphy_register+0x1c9c/0x2850 [ 800.626645][T19322] ? netdev_run_todo+0x864/0x1320 [ 800.626678][T19322] ? __dev_printk+0x1a0/0x270 [ 800.626718][T19322] ? __pfx_wiphy_register+0x10/0x10 [ 800.626764][T19322] ieee80211_register_hw+0x2432/0x4020 [ 800.626802][T19322] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 800.626832][T19322] ? find_held_lock+0x2b/0x80 [ 800.626867][T19322] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 800.626903][T19322] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 800.626939][T19322] ? __hrtimer_setup+0x176/0x280 [ 800.626977][T19322] mac80211_hwsim_new_radio+0x3034/0x54d0 [ 800.627031][T19322] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 800.627069][T19322] hwsim_new_radio_nl+0xb51/0x12c0 [ 800.627100][T19322] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 800.627140][T19322] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 800.627178][T19322] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 800.627225][T19322] genl_family_rcv_msg_doit+0x206/0x2f0 [ 800.627253][T19322] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 800.627290][T19322] ? trace_cap_capable+0x18d/0x200 [ 800.627325][T19322] ? bpf_lsm_capable+0x9/0x10 [ 800.627351][T19322] ? security_capable+0x7e/0x260 [ 800.627377][T19322] ? ns_capable+0xd7/0x110 [ 800.627408][T19322] genl_rcv_msg+0x55c/0x800 [ 800.627436][T19322] ? __pfx_genl_rcv_msg+0x10/0x10 [ 800.627458][T19322] ? __pfx___dev_queue_xmit+0x10/0x10 [ 800.627484][T19322] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 800.627517][T19322] ? __lock_acquire+0xaa4/0x1ba0 [ 800.627556][T19322] netlink_rcv_skb+0x16a/0x440 [ 800.627590][T19322] ? __pfx_genl_rcv_msg+0x10/0x10 [ 800.627616][T19322] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 800.627667][T19322] ? __pfx_down_read+0x10/0x10 [ 800.627691][T19322] ? netlink_deliver_tap+0x1ae/0xd30 [ 800.627729][T19322] genl_rcv+0x28/0x40 [ 800.627762][T19322] netlink_unicast+0x53a/0x7f0 [ 800.627801][T19322] ? __pfx_netlink_unicast+0x10/0x10 [ 800.627832][T19322] ? __lock_acquire+0xaa4/0x1ba0 [ 800.627880][T19322] netlink_sendmsg+0x8d1/0xdd0 [ 800.627922][T19322] ? __pfx_netlink_sendmsg+0x10/0x10 [ 800.627972][T19322] ____sys_sendmsg+0xa95/0xc70 [ 800.627998][T19322] ? copy_msghdr_from_user+0x10a/0x160 [ 800.628028][T19322] ? __pfx_____sys_sendmsg+0x10/0x10 [ 800.628071][T19322] ___sys_sendmsg+0x134/0x1d0 [ 800.628104][T19322] ? __pfx____sys_sendmsg+0x10/0x10 [ 800.628183][T19322] __sys_sendmsg+0x16d/0x220 [ 800.628215][T19322] ? __pfx___sys_sendmsg+0x10/0x10 [ 800.628244][T19322] ? __x64_sys_futex+0x1e0/0x4c0 [ 800.628279][T19322] ? rcu_is_watching+0x12/0xc0 [ 800.628315][T19322] do_syscall_64+0xcd/0x230 [ 800.628350][T19322] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 800.628374][T19322] RIP: 0033:0x7f448ad8e969 [ 800.628395][T19322] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 800.628420][T19322] RSP: 002b:00007f448bb20038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 800.628444][T19322] RAX: ffffffffffffffda RBX: 00007f448afb5fa0 RCX: 00007f448ad8e969 [ 800.628460][T19322] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000006 [ 800.628475][T19322] RBP: 00007f448ae10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 800.628490][T19322] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 800.628504][T19322] R13: 0000000000000000 R14: 00007f448afb5fa0 R15: 00007ffe3ea3ebd8 [ 800.628538][T19322] [ 801.491208][T19339] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2699'. [ 802.289438][T19324] Invalid ELF header magic: != ELF [ 802.871490][T19360] openvswitch: netlink: Unknown nsh attribute 0 [ 803.500531][T19382] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2710'. [ 803.788987][T19383] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC:0 is already present [ 803.820082][T19386] vhci_hcd: invalid port number 242 [ 803.825474][T19386] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 803.997311][T19402] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 805.098487][T19425] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2713'. [ 805.919923][T19433] Invalid ELF header magic: != ELF [ 806.034582][T19440] Invalid ELF header magic: != ELF [ 807.395663][T19462] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2719'. [ 807.757361][T19474] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2721'. [ 808.052260][T19470] Invalid ELF header magic: != ELF [ 808.160931][T19479] vhci_hcd: invalid port number 242 [ 808.166270][T19479] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 808.395410][T19490] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 808.881531][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 808.888130][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 809.534514][T19504] Invalid ELF header magic: != ELF [ 809.748401][T19511] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2728'. [ 810.562006][T19521] Invalid ELF header magic: != ELF [ 814.143195][T19576] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2742'. [ 816.269390][T19593] Invalid ELF header magic: != ELF [ 818.161063][T19633] vhci_hcd: invalid port number 242 [ 818.172039][T19633] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 818.291154][T19637] vhci_hcd: invalid port number 242 [ 818.302457][T19637] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 820.333495][T19655] vhci_hcd: invalid port number 242 [ 820.452028][T19655] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 822.452884][T19689] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC:0 is already present [ 823.344627][T19723] FAULT_INJECTION: forcing a failure. [ 823.344627][T19723] name failslab, interval 1, probability 0, space 0, times 0 [ 823.359007][T19723] CPU: 0 UID: 0 PID: 19723 Comm: syz.1.2775 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 823.359038][T19723] Tainted: [U]=USER [ 823.359043][T19723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 823.359052][T19723] Call Trace: [ 823.359057][T19723] [ 823.359064][T19723] dump_stack_lvl+0x16c/0x1f0 [ 823.359090][T19723] should_fail_ex+0x512/0x640 [ 823.359107][T19723] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 823.359129][T19723] should_failslab+0xc2/0x120 [ 823.359149][T19723] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 823.359167][T19723] ? __kernfs_new_node+0xd2/0x8a0 [ 823.359185][T19723] __kernfs_new_node+0xd2/0x8a0 [ 823.359202][T19723] ? __pfx___kernfs_new_node+0x10/0x10 [ 823.359222][T19723] ? find_held_lock+0x2b/0x80 [ 823.359239][T19723] ? kernfs_root+0xee/0x2a0 [ 823.359257][T19723] kernfs_new_node+0x13c/0x1e0 [ 823.359277][T19723] __kernfs_create_file+0x53/0x350 [ 823.359300][T19723] sysfs_add_file_mode_ns+0x207/0x3c0 [ 823.359328][T19723] internal_create_group+0x578/0xf30 [ 823.359348][T19723] ? __pfx_internal_create_group+0x10/0x10 [ 823.359367][T19723] ? kernfs_create_link+0x1bd/0x240 [ 823.359390][T19723] internal_create_groups+0x9d/0x150 [ 823.359416][T19723] device_add+0xf30/0x1a70 [ 823.359437][T19723] ? __pfx_device_add+0x10/0x10 [ 823.359454][T19723] ? lockdep_init_map_type+0x5c/0x280 [ 823.359476][T19723] ? __init_waitqueue_head+0xca/0x150 [ 823.359495][T19723] netdev_register_kobject+0x182/0x3a0 [ 823.359521][T19723] register_netdevice+0x13dc/0x2270 [ 823.359546][T19723] ? __pfx_register_netdevice+0x10/0x10 [ 823.359572][T19723] internal_dev_create+0x2d3/0x520 [ 823.359589][T19723] ovs_vport_add+0x144/0x4d0 [ 823.359612][T19723] new_vport+0x16/0x1d0 [ 823.359632][T19723] ovs_dp_cmd_new+0x6ba/0xe60 [ 823.359656][T19723] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 823.359679][T19723] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 823.359705][T19723] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 823.359736][T19723] genl_family_rcv_msg_doit+0x206/0x2f0 [ 823.359753][T19723] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 823.359776][T19723] ? trace_cap_capable+0x18d/0x200 [ 823.359797][T19723] ? bpf_lsm_capable+0x9/0x10 [ 823.359814][T19723] ? security_capable+0x7e/0x260 [ 823.359829][T19723] ? ns_capable+0xd7/0x110 [ 823.359848][T19723] genl_rcv_msg+0x55c/0x800 [ 823.359865][T19723] ? __pfx_genl_rcv_msg+0x10/0x10 [ 823.359878][T19723] ? __pfx___dev_queue_xmit+0x10/0x10 [ 823.359895][T19723] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 823.359915][T19723] ? __lock_acquire+0xaa4/0x1ba0 [ 823.359939][T19723] netlink_rcv_skb+0x16a/0x440 [ 823.359959][T19723] ? __pfx_genl_rcv_msg+0x10/0x10 [ 823.359974][T19723] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 823.360022][T19723] ? __pfx_down_read+0x10/0x10 [ 823.360037][T19723] ? netlink_deliver_tap+0x1ae/0xd30 [ 823.360060][T19723] genl_rcv+0x28/0x40 [ 823.360081][T19723] netlink_unicast+0x53a/0x7f0 [ 823.360104][T19723] ? __pfx_netlink_unicast+0x10/0x10 [ 823.360123][T19723] ? __lock_acquire+0xaa4/0x1ba0 [ 823.360147][T19723] netlink_sendmsg+0x8d1/0xdd0 [ 823.360171][T19723] ? __pfx_netlink_sendmsg+0x10/0x10 [ 823.360200][T19723] ____sys_sendmsg+0xa95/0xc70 [ 823.360221][T19723] ? copy_msghdr_from_user+0x10a/0x160 [ 823.360243][T19723] ? __pfx_____sys_sendmsg+0x10/0x10 [ 823.360262][T19723] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 823.360287][T19723] ___sys_sendmsg+0x134/0x1d0 [ 823.360308][T19723] ? __pfx____sys_sendmsg+0x10/0x10 [ 823.360351][T19723] __sys_sendmsg+0x16d/0x220 [ 823.360370][T19723] ? __pfx___sys_sendmsg+0x10/0x10 [ 823.360394][T19723] ? __x64_sys_futex+0x1e0/0x4c0 [ 823.360415][T19723] ? rcu_is_watching+0x12/0xc0 [ 823.360436][T19723] do_syscall_64+0xcd/0x230 [ 823.360458][T19723] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 823.360473][T19723] RIP: 0033:0x7f448ad8e969 [ 823.360486][T19723] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 823.360500][T19723] RSP: 002b:00007f448bb20038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 823.360514][T19723] RAX: ffffffffffffffda RBX: 00007f448afb5fa0 RCX: 00007f448ad8e969 [ 823.360524][T19723] RDX: 0000000002000000 RSI: 0000200000000080 RDI: 0000000000000005 [ 823.360533][T19723] RBP: 00007f448ae10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 823.360541][T19723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 823.360550][T19723] R13: 0000000000000000 R14: 00007f448afb5fa0 R15: 00007ffe3ea3ebd8 [ 823.360568][T19723] [ 824.870468][T19735] vhci_hcd: invalid port number 242 [ 824.875735][T19735] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 826.286615][T19756] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2779'. [ 827.382396][T19784] Unable to find swap-space signature [ 827.529394][T19780] vhci_hcd: invalid port number 242 [ 827.534657][T19780] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 827.678700][T19786] FAULT_INJECTION: forcing a failure. [ 827.678700][T19786] name failslab, interval 1, probability 0, space 0, times 0 [ 827.704066][T19786] CPU: 0 UID: 0 PID: 19786 Comm: syz.2.2787 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 827.704115][T19786] Tainted: [U]=USER [ 827.704123][T19786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 827.704139][T19786] Call Trace: [ 827.704147][T19786] [ 827.704158][T19786] dump_stack_lvl+0x16c/0x1f0 [ 827.704206][T19786] should_fail_ex+0x512/0x640 [ 827.704237][T19786] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 827.704274][T19786] should_failslab+0xc2/0x120 [ 827.704318][T19786] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 827.704356][T19786] ? __kernfs_new_node+0xd2/0x8a0 [ 827.704389][T19786] __kernfs_new_node+0xd2/0x8a0 [ 827.704420][T19786] ? __pfx___kernfs_new_node+0x10/0x10 [ 827.704457][T19786] ? find_held_lock+0x2b/0x80 [ 827.704486][T19786] ? kernfs_root+0xee/0x2a0 [ 827.704520][T19786] kernfs_new_node+0x13c/0x1e0 [ 827.704558][T19786] __kernfs_create_file+0x53/0x350 [ 827.704600][T19786] sysfs_add_file_mode_ns+0x207/0x3c0 [ 827.704649][T19786] internal_create_group+0x578/0xf30 [ 827.704685][T19786] ? __pfx_internal_create_group+0x10/0x10 [ 827.704719][T19786] ? kernfs_create_link+0x1bd/0x240 [ 827.704762][T19786] internal_create_groups+0x9d/0x150 [ 827.704793][T19786] device_add+0xf30/0x1a70 [ 827.704828][T19786] ? __pfx_device_add+0x10/0x10 [ 827.704857][T19786] ? lockdep_init_map_type+0x5c/0x280 [ 827.704895][T19786] ? __init_waitqueue_head+0xca/0x150 [ 827.704929][T19786] netdev_register_kobject+0x182/0x3a0 [ 827.704975][T19786] register_netdevice+0x13dc/0x2270 [ 827.705021][T19786] ? __pfx_register_netdevice+0x10/0x10 [ 827.705070][T19786] internal_dev_create+0x2d3/0x520 [ 827.705100][T19786] ovs_vport_add+0x144/0x4d0 [ 827.705143][T19786] new_vport+0x16/0x1d0 [ 827.705176][T19786] ovs_dp_cmd_new+0x6ba/0xe60 [ 827.705221][T19786] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 827.705264][T19786] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 827.705321][T19786] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 827.705380][T19786] genl_family_rcv_msg_doit+0x206/0x2f0 [ 827.705410][T19786] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 827.705455][T19786] ? trace_cap_capable+0x18d/0x200 [ 827.705492][T19786] ? bpf_lsm_capable+0x9/0x10 [ 827.705524][T19786] ? security_capable+0x7e/0x260 [ 827.705553][T19786] ? ns_capable+0xd7/0x110 [ 827.705585][T19786] genl_rcv_msg+0x55c/0x800 [ 827.705615][T19786] ? __pfx_genl_rcv_msg+0x10/0x10 [ 827.705646][T19786] ? __pfx___dev_queue_xmit+0x10/0x10 [ 827.705678][T19786] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 827.705717][T19786] ? __lock_acquire+0xaa4/0x1ba0 [ 827.705759][T19786] netlink_rcv_skb+0x16a/0x440 [ 827.705795][T19786] ? __pfx_genl_rcv_msg+0x10/0x10 [ 827.705823][T19786] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 827.705877][T19786] ? __pfx_down_read+0x10/0x10 [ 827.705903][T19786] ? netlink_deliver_tap+0x1ae/0xd30 [ 827.705945][T19786] genl_rcv+0x28/0x40 [ 827.705983][T19786] netlink_unicast+0x53a/0x7f0 [ 827.706025][T19786] ? __pfx_netlink_unicast+0x10/0x10 [ 827.706060][T19786] ? __lock_acquire+0xaa4/0x1ba0 [ 827.706105][T19786] netlink_sendmsg+0x8d1/0xdd0 [ 827.706149][T19786] ? __pfx_netlink_sendmsg+0x10/0x10 [ 827.706201][T19786] ____sys_sendmsg+0xa95/0xc70 [ 827.706229][T19786] ? copy_msghdr_from_user+0x10a/0x160 [ 827.706264][T19786] ? __pfx_____sys_sendmsg+0x10/0x10 [ 827.706295][T19786] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 827.706347][T19786] ___sys_sendmsg+0x134/0x1d0 [ 827.706383][T19786] ? __pfx____sys_sendmsg+0x10/0x10 [ 827.706463][T19786] __sys_sendmsg+0x16d/0x220 [ 827.706500][T19786] ? __pfx___sys_sendmsg+0x10/0x10 [ 827.706533][T19786] ? __x64_sys_futex+0x1e0/0x4c0 [ 827.706572][T19786] ? rcu_is_watching+0x12/0xc0 [ 827.706609][T19786] do_syscall_64+0xcd/0x230 [ 827.706649][T19786] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 827.706675][T19786] RIP: 0033:0x7f6dba98e969 [ 827.706697][T19786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 827.706722][T19786] RSP: 002b:00007f6dbb86a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 827.706747][T19786] RAX: ffffffffffffffda RBX: 00007f6dbabb5fa0 RCX: 00007f6dba98e969 [ 827.706765][T19786] RDX: 0000000002000000 RSI: 0000200000000080 RDI: 0000000000000005 [ 827.706781][T19786] RBP: 00007f6dbaa10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 827.706797][T19786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 827.706811][T19786] R13: 0000000000000000 R14: 00007f6dbabb5fa0 R15: 00007ffdfc4f4978 [ 827.706845][T19786] [ 831.507731][T19823] vhci_hcd: invalid port number 242 [ 831.512986][T19823] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 832.073049][T19837] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2798'. [ 832.489774][T19851] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 832.643659][T19838] Invalid ELF header magic: != ELF [ 832.652685][T19845] can: request_module (can-proto-0) failed. [ 835.019340][T19896] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 836.559746][T17762] Bluetooth: hci1: command 0x0406 tx timeout [ 839.252021][T19943] Invalid ELF header magic: != ELF [ 841.095214][T19972] Invalid ELF header magic: != ELF [ 843.615782][T17762] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 843.645931][T17762] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 843.660226][T17762] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 843.671879][T17762] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 843.681248][T17762] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 844.452761][T20012] chnl_net:caif_netlink_parms(): no params data found [ 844.880706][T20045] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 845.015519][T20012] bridge0: port 1(bridge_slave_0) entered blocking state [ 845.065565][T20012] bridge0: port 1(bridge_slave_0) entered disabled state [ 845.076105][T20012] bridge_slave_0: entered allmulticast mode [ 845.090980][T20012] bridge_slave_0: entered promiscuous mode [ 845.132634][T20012] bridge0: port 2(bridge_slave_1) entered blocking state [ 845.140775][T20012] bridge0: port 2(bridge_slave_1) entered disabled state [ 845.148502][T20012] bridge_slave_1: entered allmulticast mode [ 845.156208][T20012] bridge_slave_1: entered promiscuous mode [ 845.337992][T20012] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 845.449558][T20012] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 845.646567][T20012] team0: Port device team_slave_0 added [ 845.703721][T20012] team0: Port device team_slave_1 added [ 845.760819][T17762] Bluetooth: hci2: command tx timeout [ 846.130983][T20012] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 846.138882][T20012] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 846.183149][T20012] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 846.261547][T20012] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 846.274223][T20012] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 846.309871][T20012] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 846.479696][T20012] hsr_slave_0: entered promiscuous mode [ 846.496267][T20012] hsr_slave_1: entered promiscuous mode [ 846.509323][T20012] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 846.526433][T20012] Cannot create hsr debugfs directory [ 847.961704][T17762] Bluetooth: hci2: command tx timeout [ 848.135743][T20012] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 848.168589][T20012] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 848.178669][T20053] Invalid ELF header magic: != ELF [ 848.251700][T20012] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 848.428420][T20012] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 848.612554][T20082] usb usb38: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 848.623871][T20082] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 849.219008][T20012] 8021q: adding VLAN 0 to HW filter on device bond0 [ 849.322771][T20012] 8021q: adding VLAN 0 to HW filter on device team0 [ 849.544778][ T3448] bridge0: port 1(bridge_slave_0) entered blocking state [ 849.552032][ T3448] bridge0: port 1(bridge_slave_0) entered forwarding state [ 849.724798][T13520] bridge0: port 2(bridge_slave_1) entered blocking state [ 849.732049][T13520] bridge0: port 2(bridge_slave_1) entered forwarding state [ 849.748853][T20105] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 849.996771][T17762] Bluetooth: hci2: command tx timeout [ 850.126958][T20109] vhci_hcd: invalid port number 242 [ 850.135619][T20109] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 851.104625][T20012] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 852.076536][T17762] Bluetooth: hci2: command tx timeout [ 852.508630][T20012] veth0_vlan: entered promiscuous mode [ 852.665466][T20012] veth1_vlan: entered promiscuous mode [ 852.942571][T20163] vhci_hcd: invalid port number 242 [ 852.984244][T20163] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 853.040430][T20012] veth0_macvtap: entered promiscuous mode [ 853.209150][T20012] veth1_macvtap: entered promiscuous mode [ 853.346132][T20012] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 853.361906][T20012] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 853.372809][T20012] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 853.387067][T20012] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 853.399213][T20012] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 853.411153][T20012] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 853.421332][T20012] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 853.431952][T20012] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 853.444632][T20012] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 853.584816][T20012] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 853.615280][T20012] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 853.643482][T20012] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 853.673597][T20012] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 853.695193][T20012] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 853.720229][T20012] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 853.733743][T20012] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 853.801668][T20012] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 853.812863][T20012] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 853.839551][T20012] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 853.869048][T20012] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 854.747544][ T3448] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 854.755423][ T3448] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 854.824867][T13524] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 854.836801][T13524] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 855.271110][T20190] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2862'. [ 855.805802][T20201] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2865'. [ 856.837035][T20207] Invalid ELF header magic: != ELF [ 857.401170][T20233] CIFS mount error: No usable UNC path provided in device string! [ 857.401170][T20233] [ 857.446720][T20233] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 857.770272][T20220] Invalid ELF header magic: != ELF [ 858.352263][T20240] FAULT_INJECTION: forcing a failure. [ 858.352263][T20240] name failslab, interval 1, probability 0, space 0, times 0 [ 858.422459][T20240] CPU: 1 UID: 0 PID: 20240 Comm: syz.3.2871 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 858.422505][T20240] Tainted: [U]=USER [ 858.422514][T20240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 858.422530][T20240] Call Trace: [ 858.422540][T20240] [ 858.422551][T20240] dump_stack_lvl+0x16c/0x1f0 [ 858.422591][T20240] should_fail_ex+0x512/0x640 [ 858.422619][T20240] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 858.422654][T20240] should_failslab+0xc2/0x120 [ 858.422687][T20240] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 858.422716][T20240] ? __kernfs_new_node+0xd2/0x8a0 [ 858.422756][T20240] __kernfs_new_node+0xd2/0x8a0 [ 858.422785][T20240] ? __pfx___kernfs_new_node+0x10/0x10 [ 858.422821][T20240] ? find_held_lock+0x2b/0x80 [ 858.422850][T20240] ? kernfs_root+0xee/0x2a0 [ 858.422883][T20240] kernfs_new_node+0x13c/0x1e0 [ 858.422919][T20240] __kernfs_create_file+0x53/0x350 [ 858.422956][T20240] sysfs_add_file_mode_ns+0x207/0x3c0 [ 858.423002][T20240] internal_create_group+0x578/0xf30 [ 858.423035][T20240] ? __pfx_internal_create_group+0x10/0x10 [ 858.423065][T20240] ? kernfs_create_link+0x1bd/0x240 [ 858.423103][T20240] internal_create_groups+0x9d/0x150 [ 858.423133][T20240] device_add+0xf30/0x1a70 [ 858.423165][T20240] ? __pfx_device_add+0x10/0x10 [ 858.423199][T20240] ? lockdep_init_map_type+0x5c/0x280 [ 858.423236][T20240] ? __init_waitqueue_head+0xca/0x150 [ 858.423270][T20240] netdev_register_kobject+0x182/0x3a0 [ 858.423313][T20240] register_netdevice+0x13dc/0x2270 [ 858.423355][T20240] ? __pfx_register_netdevice+0x10/0x10 [ 858.423400][T20240] internal_dev_create+0x2d3/0x520 [ 858.423427][T20240] ovs_vport_add+0x144/0x4d0 [ 858.423466][T20240] new_vport+0x16/0x1d0 [ 858.423496][T20240] ovs_dp_cmd_new+0x6ba/0xe60 [ 858.423537][T20240] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 858.423577][T20240] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 858.423616][T20240] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 858.423663][T20240] genl_family_rcv_msg_doit+0x206/0x2f0 [ 858.423691][T20240] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 858.423729][T20240] ? trace_cap_capable+0x18d/0x200 [ 858.423772][T20240] ? bpf_lsm_capable+0x9/0x10 [ 858.423800][T20240] ? security_capable+0x7e/0x260 [ 858.423827][T20240] ? ns_capable+0xd7/0x110 [ 858.423859][T20240] genl_rcv_msg+0x55c/0x800 [ 858.423888][T20240] ? __pfx_genl_rcv_msg+0x10/0x10 [ 858.423911][T20240] ? __pfx___dev_queue_xmit+0x10/0x10 [ 858.423950][T20240] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 858.423988][T20240] ? __lock_acquire+0xaa4/0x1ba0 [ 858.424034][T20240] netlink_rcv_skb+0x16a/0x440 [ 858.424069][T20240] ? __pfx_genl_rcv_msg+0x10/0x10 [ 858.424097][T20240] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 858.424158][T20240] ? __pfx_down_read+0x10/0x10 [ 858.424180][T20240] ? netlink_deliver_tap+0x1ae/0xd30 [ 858.424228][T20240] genl_rcv+0x28/0x40 [ 858.424263][T20240] netlink_unicast+0x53a/0x7f0 [ 858.424312][T20240] ? __pfx_netlink_unicast+0x10/0x10 [ 858.424345][T20240] ? __lock_acquire+0xaa4/0x1ba0 [ 858.424396][T20240] netlink_sendmsg+0x8d1/0xdd0 [ 858.424439][T20240] ? __pfx_netlink_sendmsg+0x10/0x10 [ 858.424489][T20240] ____sys_sendmsg+0xa95/0xc70 [ 858.424513][T20240] ? copy_msghdr_from_user+0x10a/0x160 [ 858.424554][T20240] ? __pfx_____sys_sendmsg+0x10/0x10 [ 858.424585][T20240] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 858.424630][T20240] ___sys_sendmsg+0x134/0x1d0 [ 858.424666][T20240] ? __pfx____sys_sendmsg+0x10/0x10 [ 858.424750][T20240] __sys_sendmsg+0x16d/0x220 [ 858.424784][T20240] ? __pfx___sys_sendmsg+0x10/0x10 [ 858.424823][T20240] ? __x64_sys_futex+0x1e0/0x4c0 [ 858.424864][T20240] ? rcu_is_watching+0x12/0xc0 [ 858.424901][T20240] do_syscall_64+0xcd/0x230 [ 858.424939][T20240] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 858.424965][T20240] RIP: 0033:0x7f369e58e969 [ 858.424986][T20240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 858.425011][T20240] RSP: 002b:00007f369c3f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 858.425035][T20240] RAX: ffffffffffffffda RBX: 00007f369e7b5fa0 RCX: 00007f369e58e969 [ 858.425052][T20240] RDX: 0000000002000000 RSI: 0000200000000080 RDI: 0000000000000005 [ 858.425068][T20240] RBP: 00007f369e610ab1 R08: 0000000000000000 R09: 0000000000000000 [ 858.425084][T20240] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 858.425100][T20240] R13: 0000000000000000 R14: 00007f369e7b5fa0 R15: 00007fff386d2788 [ 858.425135][T20240] [ 860.004660][T20258] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2876'. [ 860.223390][T20255] vhci_hcd: invalid port number 242 [ 860.236925][T20255] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 860.990148][T20276] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 861.436186][T20279] zswap: compressor not available [ 862.061810][T20287] Invalid ELF header magic: != ELF [ 862.436640][T20298] vhci_hcd: invalid port number 242 [ 862.441999][T20298] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 862.778871][T20311] FAULT_INJECTION: forcing a failure. [ 862.778871][T20311] name failslab, interval 1, probability 0, space 0, times 0 [ 862.826685][T20311] CPU: 0 UID: 0 PID: 20311 Comm: syz.3.2886 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 862.826727][T20311] Tainted: [U]=USER [ 862.826736][T20311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 862.826750][T20311] Call Trace: [ 862.826759][T20311] [ 862.826769][T20311] dump_stack_lvl+0x16c/0x1f0 [ 862.826807][T20311] should_fail_ex+0x512/0x640 [ 862.826835][T20311] ? fs_reclaim_acquire+0xae/0x150 [ 862.826873][T20311] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 862.826905][T20311] should_failslab+0xc2/0x120 [ 862.826936][T20311] __kmalloc_noprof+0xd2/0x510 [ 862.826972][T20311] tomoyo_realpath_from_path+0xc2/0x6e0 [ 862.827007][T20311] ? tomoyo_profile+0x47/0x60 [ 862.827045][T20311] tomoyo_path2_perm+0x2a1/0x710 [ 862.827070][T20311] ? tomoyo_path2_perm+0x293/0x710 [ 862.827100][T20311] ? __pfx_tomoyo_path2_perm+0x10/0x10 [ 862.827164][T20311] ? hook_sb_pivotroot+0x1e5/0x320 [ 862.827190][T20311] ? putname+0x154/0x1a0 [ 862.827229][T20311] security_sb_pivotroot+0x8e/0x210 [ 862.827257][T20311] __do_sys_pivot_root+0x224/0x1650 [ 862.827288][T20311] ? __fget_files+0x20e/0x3c0 [ 862.827323][T20311] ? __pfx___do_sys_pivot_root+0x10/0x10 [ 862.827357][T20311] ? __pfx_ksys_write+0x10/0x10 [ 862.827393][T20311] do_syscall_64+0xcd/0x230 [ 862.827428][T20311] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 862.827453][T20311] RIP: 0033:0x7f369e58e969 [ 862.827473][T20311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 862.827497][T20311] RSP: 002b:00007f369c3f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000009b [ 862.827521][T20311] RAX: ffffffffffffffda RBX: 00007f369e7b5fa0 RCX: 00007f369e58e969 [ 862.827538][T20311] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000200000000000 [ 862.827554][T20311] RBP: 00007f369c3f6090 R08: 0000000000000000 R09: 0000000000000000 [ 862.827569][T20311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 862.827583][T20311] R13: 0000000000000000 R14: 00007f369e7b5fa0 R15: 00007fff386d2788 [ 862.827617][T20311] [ 862.827628][T20311] ERROR: Out of memory at tomoyo_realpath_from_path. [ 863.272215][T20309] usb usb38: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 863.298758][T20309] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 863.302398][T20319] syz.3.2887 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 863.459535][T20321] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 863.900193][T20326] usb usb38: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 863.907955][T20326] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 864.493654][T20336] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2890'. [ 864.606015][T20340] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 865.323811][T20362] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 865.859449][T20372] Invalid ELF header magic: != ELF [ 865.964110][T20374] FAULT_INJECTION: forcing a failure. [ 865.964110][T20374] name failslab, interval 1, probability 0, space 0, times 0 [ 866.036840][T20374] CPU: 1 UID: 0 PID: 20374 Comm: syz.1.2897 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 866.036886][T20374] Tainted: [U]=USER [ 866.036895][T20374] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 866.036911][T20374] Call Trace: [ 866.036920][T20374] [ 866.036931][T20374] dump_stack_lvl+0x16c/0x1f0 [ 866.036973][T20374] should_fail_ex+0x512/0x640 [ 866.037002][T20374] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 866.037034][T20374] should_failslab+0xc2/0x120 [ 866.037068][T20374] __kmalloc_cache_noprof+0x6a/0x3e0 [ 866.037106][T20374] ? device_add+0xccc/0x1a70 [ 866.037141][T20374] device_add+0xccc/0x1a70 [ 866.037175][T20374] ? __pfx_device_add+0x10/0x10 [ 866.037201][T20374] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 866.037240][T20374] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 866.037285][T20374] wiphy_register+0x1c9c/0x2850 [ 866.037312][T20374] ? netdev_run_todo+0x864/0x1320 [ 866.037348][T20374] ? __dev_printk+0x1a0/0x270 [ 866.037391][T20374] ? __pfx_wiphy_register+0x10/0x10 [ 866.037442][T20374] ieee80211_register_hw+0x2432/0x4020 [ 866.037484][T20374] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 866.037516][T20374] ? find_held_lock+0x2b/0x80 [ 866.037545][T20374] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 866.037581][T20374] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 866.037618][T20374] ? __hrtimer_setup+0x176/0x280 [ 866.037658][T20374] mac80211_hwsim_new_radio+0x3034/0x54d0 [ 866.037713][T20374] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 866.037756][T20374] hwsim_new_radio_nl+0xb51/0x12c0 [ 866.037792][T20374] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 866.037838][T20374] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 866.037881][T20374] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 866.037930][T20374] genl_family_rcv_msg_doit+0x206/0x2f0 [ 866.037977][T20374] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 866.038032][T20374] ? trace_cap_capable+0x18d/0x200 [ 866.038068][T20374] ? bpf_lsm_capable+0x9/0x10 [ 866.038104][T20374] ? security_capable+0x7e/0x260 [ 866.038132][T20374] ? ns_capable+0xd7/0x110 [ 866.038166][T20374] genl_rcv_msg+0x55c/0x800 [ 866.038196][T20374] ? __pfx_genl_rcv_msg+0x10/0x10 [ 866.038219][T20374] ? __pfx___dev_queue_xmit+0x10/0x10 [ 866.038248][T20374] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 866.038282][T20374] ? __lock_acquire+0xaa4/0x1ba0 [ 866.038322][T20374] netlink_rcv_skb+0x16a/0x440 [ 866.038357][T20374] ? __pfx_genl_rcv_msg+0x10/0x10 [ 866.038384][T20374] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 866.038438][T20374] ? __pfx_down_read+0x10/0x10 [ 866.038463][T20374] ? netlink_deliver_tap+0x1ae/0xd30 [ 866.038503][T20374] genl_rcv+0x28/0x40 [ 866.038537][T20374] netlink_unicast+0x53a/0x7f0 [ 866.038576][T20374] ? __pfx_netlink_unicast+0x10/0x10 [ 866.038608][T20374] ? __lock_acquire+0xaa4/0x1ba0 [ 866.038650][T20374] netlink_sendmsg+0x8d1/0xdd0 [ 866.038692][T20374] ? __pfx_netlink_sendmsg+0x10/0x10 [ 866.038745][T20374] ____sys_sendmsg+0xa95/0xc70 [ 866.038772][T20374] ? copy_msghdr_from_user+0x10a/0x160 [ 866.038806][T20374] ? __pfx_____sys_sendmsg+0x10/0x10 [ 866.038847][T20374] ___sys_sendmsg+0x134/0x1d0 [ 866.038883][T20374] ? __pfx____sys_sendmsg+0x10/0x10 [ 866.038963][T20374] __sys_sendmsg+0x16d/0x220 [ 866.038997][T20374] ? __pfx___sys_sendmsg+0x10/0x10 [ 866.039029][T20374] ? __x64_sys_futex+0x1e0/0x4c0 [ 866.039068][T20374] ? rcu_is_watching+0x12/0xc0 [ 866.039112][T20374] do_syscall_64+0xcd/0x230 [ 866.039152][T20374] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 866.039179][T20374] RIP: 0033:0x7f448ad8e969 [ 866.039201][T20374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 866.039226][T20374] RSP: 002b:00007f448bb20038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 866.039253][T20374] RAX: ffffffffffffffda RBX: 00007f448afb5fa0 RCX: 00007f448ad8e969 [ 866.039270][T20374] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000006 [ 866.039287][T20374] RBP: 00007f448ae10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 866.039304][T20374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 866.039320][T20374] R13: 0000000000000000 R14: 00007f448afb5fa0 R15: 00007ffe3ea3ebd8 [ 866.039356][T20374] [ 866.060878][T20379] program syz.2.2898 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 867.256055][T20399] FAULT_INJECTION: forcing a failure. [ 867.256055][T20399] name failslab, interval 1, probability 0, space 0, times 0 [ 867.283529][T20399] CPU: 1 UID: 0 PID: 20399 Comm: syz.4.2905 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 867.283568][T20399] Tainted: [U]=USER [ 867.283576][T20399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 867.283590][T20399] Call Trace: [ 867.283599][T20399] [ 867.283608][T20399] dump_stack_lvl+0x16c/0x1f0 [ 867.283646][T20399] should_fail_ex+0x512/0x640 [ 867.283672][T20399] ? __kmalloc_noprof+0xbf/0x510 [ 867.283699][T20399] ? kernfs_fop_write_iter+0x237/0x510 [ 867.283726][T20399] should_failslab+0xc2/0x120 [ 867.283754][T20399] __kmalloc_noprof+0xd2/0x510 [ 867.283786][T20399] kernfs_fop_write_iter+0x237/0x510 [ 867.283820][T20399] vfs_write+0x5ba/0x1180 [ 867.283846][T20399] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 867.283879][T20399] ? __pfx___mutex_lock+0x10/0x10 [ 867.283911][T20399] ? __pfx_vfs_write+0x10/0x10 [ 867.283956][T20399] ksys_write+0x12a/0x240 [ 867.283980][T20399] ? __pfx_ksys_write+0x10/0x10 [ 867.284010][T20399] ? rcu_is_watching+0x12/0xc0 [ 867.284044][T20399] do_syscall_64+0xcd/0x230 [ 867.284079][T20399] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 867.284104][T20399] RIP: 0033:0x7f418a58e969 [ 867.284125][T20399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 867.284148][T20399] RSP: 002b:00007f418b398038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 867.284171][T20399] RAX: ffffffffffffffda RBX: 00007f418a7b5fa0 RCX: 00007f418a58e969 [ 867.284187][T20399] RDX: 000000007fffffff RSI: 0000000000000000 RDI: 0000000000000003 [ 867.284201][T20399] RBP: 00007f418b398090 R08: 0000000000000000 R09: 0000000000000000 [ 867.284216][T20399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 867.284229][T20399] R13: 0000000000000000 R14: 00007f418a7b5fa0 R15: 00007ffe84cabbd8 [ 867.284263][T20399] [ 868.889261][T20406] Invalid ELF header magic: != ELF [ 869.431131][T20428] program syz.1.2909 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 869.783891][T20423] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 870.328713][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 870.335052][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 871.979556][T20462] vhci_hcd: invalid port number 242 [ 871.984811][T20462] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 873.060678][T20468] Invalid ELF header magic: != ELF [ 873.417748][T20476] Invalid ELF header magic: != ELF [ 873.743074][T20488] netlink: 860 bytes leftover after parsing attributes in process `syz.4.2920'. [ 875.320103][T20519] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2928'. [ 875.350065][T20519] mac80211_hwsim hwsim46 wlan1: entered allmulticast mode [ 875.792995][T20533] vhci_hcd: invalid port number 242 [ 875.806003][T20533] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 876.183001][T20538] ptrace attach of "./syz-executor exec"[17760] was attempted by "./syz-executor exec"[20538] [ 876.704613][T20545] Invalid ELF header magic: != ELF [ 877.521392][T17762] Bluetooth: hci0: command 0x0406 tx timeout [ 877.677980][T20558] ovs_: entered promiscuous mode [ 878.667610][T20573] Invalid ELF header magic: != ELF [ 879.159155][T20593] vhci_hcd: invalid port number 242 [ 879.164389][T20593] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 879.537691][ T30] audit: type=1326 audit(4294967309.249:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20600 comm="syz.3.2945" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f369e58e969 code=0x0 [ 880.600006][T20622] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2950'. [ 880.870956][T20621] vhci_hcd: invalid port number 242 [ 880.939803][T20621] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 881.759547][T20644] FAULT_INJECTION: forcing a failure. [ 881.759547][T20644] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 881.776772][T20644] CPU: 0 UID: 0 PID: 20644 Comm: syz.1.2951 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 881.776809][T20644] Tainted: [U]=USER [ 881.776818][T20644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 881.776832][T20644] Call Trace: [ 881.776840][T20644] [ 881.776849][T20644] dump_stack_lvl+0x16c/0x1f0 [ 881.776885][T20644] should_fail_ex+0x512/0x640 [ 881.776917][T20644] _copy_from_user+0x2e/0xd0 [ 881.776948][T20644] copy_msghdr_from_user+0x98/0x160 [ 881.776979][T20644] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 881.777025][T20644] ___sys_sendmsg+0xfe/0x1d0 [ 881.777057][T20644] ? __pfx____sys_sendmsg+0x10/0x10 [ 881.777127][T20644] __sys_sendmsg+0x16d/0x220 [ 881.777158][T20644] ? __pfx___sys_sendmsg+0x10/0x10 [ 881.777210][T20644] do_syscall_64+0xcd/0x230 [ 881.777246][T20644] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 881.777270][T20644] RIP: 0033:0x7f448ad8e969 [ 881.777290][T20644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 881.777312][T20644] RSP: 002b:00007f4488bf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 881.777335][T20644] RAX: ffffffffffffffda RBX: 00007f448afb6080 RCX: 00007f448ad8e969 [ 881.777352][T20644] RDX: 0000000000000080 RSI: 0000200000000080 RDI: 0000000000000003 [ 881.777367][T20644] RBP: 00007f4488bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 881.777388][T20644] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 881.777403][T20644] R13: 0000000000000001 R14: 00007f448afb6080 R15: 00007ffe3ea3ebd8 [ 881.777431][T20644] [ 882.792822][T20663] Invalid ELF header magic: != ELF [ 883.270477][T20662] netlink: 860 bytes leftover after parsing attributes in process `syz.3.2954'. [ 883.869957][T20687] FAULT_INJECTION: forcing a failure. [ 883.869957][T20687] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 883.915098][T20687] CPU: 0 UID: 0 PID: 20687 Comm: syz.4.2960 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 883.915140][T20687] Tainted: [U]=USER [ 883.915148][T20687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 883.915162][T20687] Call Trace: [ 883.915171][T20687] [ 883.915181][T20687] dump_stack_lvl+0x16c/0x1f0 [ 883.915218][T20687] should_fail_ex+0x512/0x640 [ 883.915250][T20687] _copy_from_iter+0x2a4/0x15b0 [ 883.915284][T20687] ? policy_nodemask+0xea/0x4e0 [ 883.915311][T20687] ? __pfx__copy_from_iter+0x10/0x10 [ 883.915341][T20687] ? alloc_pages_mpol+0x25a/0x550 [ 883.915371][T20687] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 883.915415][T20687] copy_page_from_iter+0xa5/0x120 [ 883.915449][T20687] anon_pipe_write+0xbe7/0x1a70 [ 883.915490][T20687] ? __pfx_anon_pipe_write+0x10/0x10 [ 883.915520][T20687] ? apparmor_file_permission+0x251/0x400 [ 883.915549][T20687] ? bpf_lsm_file_permission+0x9/0x10 [ 883.915572][T20687] ? security_file_permission+0x71/0x210 [ 883.915604][T20687] ? rw_verify_area+0xcf/0x680 [ 883.915643][T20687] vfs_write+0x5ba/0x1180 [ 883.915669][T20687] ? __pfx_anon_pipe_write+0x10/0x10 [ 883.915699][T20687] ? __pfx_vfs_write+0x10/0x10 [ 883.915721][T20687] ? find_held_lock+0x2b/0x80 [ 883.915768][T20687] ksys_write+0x205/0x240 [ 883.915792][T20687] ? __pfx_ksys_write+0x10/0x10 [ 883.915828][T20687] do_syscall_64+0xcd/0x230 [ 883.915864][T20687] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 883.915889][T20687] RIP: 0033:0x7f418a58e969 [ 883.915908][T20687] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 883.915932][T20687] RSP: 002b:00007f418b377038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 883.915955][T20687] RAX: ffffffffffffffda RBX: 00007f418a7b6080 RCX: 00007f418a58e969 [ 883.915972][T20687] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000001 [ 883.915986][T20687] RBP: 00007f418b377090 R08: 0000000000000000 R09: 0000000000000000 [ 883.916001][T20687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 883.916015][T20687] R13: 0000000000000001 R14: 00007f418a7b6080 R15: 00007ffe84cabbd8 [ 883.916047][T20687] [ 885.459434][T20711] netlink: 74 bytes leftover after parsing attributes in process `syz.3.2966'. [ 885.658386][T20690] Invalid ELF header magic: != ELF [ 885.857520][T20706] ovs_: entered promiscuous mode [ 888.920496][T20751] Invalid ELF header magic: != ELF [ 889.364967][T20736] Invalid ELF header magic: != ELF [ 890.670745][T20784] FAULT_INJECTION: forcing a failure. [ 890.670745][T20784] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 890.736597][T20784] CPU: 1 UID: 0 PID: 20784 Comm: syz.1.2978 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 890.736639][T20784] Tainted: [U]=USER [ 890.736648][T20784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 890.736663][T20784] Call Trace: [ 890.736671][T20784] [ 890.736681][T20784] dump_stack_lvl+0x16c/0x1f0 [ 890.736718][T20784] should_fail_ex+0x512/0x640 [ 890.736750][T20784] should_fail_alloc_page+0xe7/0x130 [ 890.736783][T20784] prepare_alloc_pages+0x3c2/0x610 [ 890.736824][T20784] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 890.736855][T20784] ? copy_splice_read+0x1a8/0xba0 [ 890.736888][T20784] ? stack_trace_save+0x8e/0xc0 [ 890.736914][T20784] ? __pfx_stack_trace_save+0x10/0x10 [ 890.736939][T20784] ? stack_depot_save_flags+0x28/0xa50 [ 890.736968][T20784] ? bpf_ksym_find+0x124/0x1c0 [ 890.736996][T20784] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 890.737023][T20784] ? kasan_save_stack+0x33/0x60 [ 890.737048][T20784] ? __kasan_kmalloc+0xaa/0xb0 [ 890.737073][T20784] ? copy_splice_read+0x1a8/0xba0 [ 890.737104][T20784] ? do_splice_read+0x282/0x370 [ 890.737134][T20784] ? splice_direct_to_actor+0x2a1/0xa30 [ 890.737167][T20784] ? do_splice_direct+0x174/0x240 [ 890.737198][T20784] ? do_sendfile+0xafd/0xe50 [ 890.737219][T20784] ? __x64_sys_sendfile64+0x1d8/0x220 [ 890.737246][T20784] ? do_syscall_64+0xcd/0x230 [ 890.737302][T20784] alloc_pages_bulk_noprof+0x703/0x13b0 [ 890.737342][T20784] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 890.737379][T20784] ? trace_kmalloc+0x2b/0xd0 [ 890.737408][T20784] ? __kmalloc_noprof+0x242/0x510 [ 890.737443][T20784] copy_splice_read+0x1e1/0xba0 [ 890.737491][T20784] ? __pfx_copy_splice_read+0x10/0x10 [ 890.737528][T20784] ? look_up_lock_class+0x6b/0x150 [ 890.737563][T20784] ? lockdep_init_map_type+0x5c/0x280 [ 890.737597][T20784] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 890.737624][T20784] ? __pfx_copy_splice_read+0x10/0x10 [ 890.737657][T20784] do_splice_read+0x282/0x370 [ 890.737694][T20784] splice_direct_to_actor+0x2a1/0xa30 [ 890.737731][T20784] ? __pfx_direct_splice_actor+0x10/0x10 [ 890.737772][T20784] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 890.737805][T20784] ? get_pid_task+0xfc/0x250 [ 890.737847][T20784] do_splice_direct+0x174/0x240 [ 890.737882][T20784] ? __pfx_do_splice_direct+0x10/0x10 [ 890.737917][T20784] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 890.737955][T20784] ? rw_verify_area+0xcf/0x680 [ 890.737993][T20784] do_sendfile+0xafd/0xe50 [ 890.738023][T20784] ? __pfx_do_sendfile+0x10/0x10 [ 890.738047][T20784] ? __fget_files+0x20e/0x3c0 [ 890.738079][T20784] __x64_sys_sendfile64+0x1d8/0x220 [ 890.738107][T20784] ? ksys_write+0x1b9/0x240 [ 890.738131][T20784] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 890.738158][T20784] ? rcu_is_watching+0x12/0xc0 [ 890.738192][T20784] do_syscall_64+0xcd/0x230 [ 890.738226][T20784] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 890.738251][T20784] RIP: 0033:0x7f448ad8e969 [ 890.738270][T20784] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 890.738293][T20784] RSP: 002b:00007f448bb20038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 890.738316][T20784] RAX: ffffffffffffffda RBX: 00007f448afb5fa0 RCX: 00007f448ad8e969 [ 890.738333][T20784] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003 [ 890.738348][T20784] RBP: 00007f448bb20090 R08: 0000000000000000 R09: 0000000000000000 [ 890.738362][T20784] R10: 000000007ffff001 R11: 0000000000000246 R12: 0000000000000001 [ 890.738377][T20784] R13: 0000000000000000 R14: 00007f448afb5fa0 R15: 00007ffe3ea3ebd8 [ 890.738410][T20784] [ 891.396775][T20778] netlink: 860 bytes leftover after parsing attributes in process `syz.2.2974'. [ 892.497198][T20823] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 893.400435][T20833] FAULT_INJECTION: forcing a failure. [ 893.400435][T20833] name failslab, interval 1, probability 0, space 0, times 0 [ 893.416462][T20833] CPU: 1 UID: 0 PID: 20833 Comm: syz.2.2985 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 893.416491][T20833] Tainted: [U]=USER [ 893.416496][T20833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 893.416505][T20833] Call Trace: [ 893.416510][T20833] [ 893.416517][T20833] dump_stack_lvl+0x16c/0x1f0 [ 893.416540][T20833] should_fail_ex+0x512/0x640 [ 893.416557][T20833] ? fs_reclaim_acquire+0xae/0x150 [ 893.416579][T20833] ? tomoyo_encode2+0x100/0x3e0 [ 893.416598][T20833] should_failslab+0xc2/0x120 [ 893.416616][T20833] __kmalloc_noprof+0xd2/0x510 [ 893.416635][T20833] tomoyo_encode2+0x100/0x3e0 [ 893.416656][T20833] tomoyo_encode+0x29/0x50 [ 893.416673][T20833] tomoyo_realpath_from_path+0x18f/0x6e0 [ 893.416693][T20833] ? tomoyo_profile+0x47/0x60 [ 893.416716][T20833] tomoyo_path2_perm+0x2a1/0x710 [ 893.416731][T20833] ? tomoyo_path2_perm+0x293/0x710 [ 893.416748][T20833] ? __pfx_tomoyo_path2_perm+0x10/0x10 [ 893.416781][T20833] ? hook_sb_pivotroot+0x1e5/0x320 [ 893.416796][T20833] ? putname+0x154/0x1a0 [ 893.416818][T20833] security_sb_pivotroot+0x8e/0x210 [ 893.416834][T20833] __do_sys_pivot_root+0x224/0x1650 [ 893.416851][T20833] ? __fget_files+0x20e/0x3c0 [ 893.416867][T20833] ? __pfx___do_sys_pivot_root+0x10/0x10 [ 893.416886][T20833] ? __pfx_ksys_write+0x10/0x10 [ 893.416906][T20833] do_syscall_64+0xcd/0x230 [ 893.416927][T20833] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 893.416942][T20833] RIP: 0033:0x7f6dba98e969 [ 893.416954][T20833] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 893.416968][T20833] RSP: 002b:00007f6dbb86a038 EFLAGS: 00000246 ORIG_RAX: 000000000000009b [ 893.416981][T20833] RAX: ffffffffffffffda RBX: 00007f6dbabb5fa0 RCX: 00007f6dba98e969 [ 893.416991][T20833] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000200000000000 [ 893.417000][T20833] RBP: 00007f6dbb86a090 R08: 0000000000000000 R09: 0000000000000000 [ 893.417008][T20833] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 893.417016][T20833] R13: 0000000000000000 R14: 00007f6dbabb5fa0 R15: 00007ffdfc4f4978 [ 893.417034][T20833] [ 893.417049][T20833] ERROR: Out of memory at tomoyo_realpath_from_path. [ 894.099077][T20834] Invalid ELF header magic: != ELF [ 894.732129][T20856] FAULT_INJECTION: forcing a failure. [ 894.732129][T20856] name fail_futex, interval 1, probability 0, space 0, times 0 [ 894.760802][T20856] CPU: 0 UID: 0 PID: 20856 Comm: syz.1.2989 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 894.760840][T20856] Tainted: [U]=USER [ 894.760848][T20856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 894.760863][T20856] Call Trace: [ 894.760871][T20856] [ 894.760881][T20856] dump_stack_lvl+0x16c/0x1f0 [ 894.760917][T20856] should_fail_ex+0x512/0x640 [ 894.760949][T20856] get_futex_key+0x49e/0x1000 [ 894.760978][T20856] ? __pfx_get_futex_key+0x10/0x10 [ 894.761013][T20856] futex_wake+0xe7/0x4e0 [ 894.761044][T20856] ? __pfx_futex_wake+0x10/0x10 [ 894.761070][T20856] ? trace_kmalloc+0x2b/0xd0 [ 894.761097][T20856] ? __kmalloc_noprof+0x242/0x510 [ 894.761136][T20856] ? commit_creds+0x6e3/0x1040 [ 894.761173][T20856] do_futex+0x1e3/0x350 [ 894.761199][T20856] ? __pfx_do_futex+0x10/0x10 [ 894.761227][T20856] ? cap_task_prctl+0x2af/0xa80 [ 894.761256][T20856] __x64_sys_futex+0x1e0/0x4c0 [ 894.761288][T20856] ? __pfx___x64_sys_futex+0x10/0x10 [ 894.761316][T20856] ? __pfx___do_sys_prctl+0x10/0x10 [ 894.761337][T20856] ? rcu_is_watching+0x12/0xc0 [ 894.761370][T20856] do_syscall_64+0xcd/0x230 [ 894.761405][T20856] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 894.761430][T20856] RIP: 0033:0x7f448ad8e969 [ 894.761449][T20856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 894.761471][T20856] RSP: 002b:00007f448bb200e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 894.761493][T20856] RAX: ffffffffffffffda RBX: 00007f448afb5fa8 RCX: 00007f448ad8e969 [ 894.761510][T20856] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f448afb5fac [ 894.761525][T20856] RBP: 00007f448afb5fa0 R08: 00007f448bb21000 R09: 0000000000000000 [ 894.761539][T20856] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f448afb5fac [ 894.761554][T20856] R13: 0000000000000000 R14: 00007ffe3ea3eaf0 R15: 00007ffe3ea3ebd8 [ 894.761586][T20856] [ 895.031243][T20857] FAULT_INJECTION: forcing a failure. [ 895.031243][T20857] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 895.045299][T20857] CPU: 0 UID: 0 PID: 20857 Comm: syz.1.2989 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 895.045337][T20857] Tainted: [U]=USER [ 895.045345][T20857] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 895.045357][T20857] Call Trace: [ 895.045365][T20857] [ 895.045374][T20857] dump_stack_lvl+0x16c/0x1f0 [ 895.045412][T20857] should_fail_ex+0x512/0x640 [ 895.045444][T20857] should_fail_alloc_page+0xe7/0x130 [ 895.045477][T20857] prepare_alloc_pages+0x3c2/0x610 [ 895.045512][T20857] ? rcu_is_watching+0x12/0xc0 [ 895.045540][T20857] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 895.045577][T20857] ? cgroup_rstat_updated+0x2a/0xb20 [ 895.045609][T20857] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 895.045644][T20857] ? lru_gen_add_folio+0x1a4/0xef0 [ 895.045677][T20857] ? __lock_acquire+0x5ca/0x1ba0 [ 895.045711][T20857] ? __lock_acquire+0x5ca/0x1ba0 [ 895.045739][T20857] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 895.045773][T20857] ? policy_nodemask+0xea/0x4e0 [ 895.045806][T20857] alloc_pages_mpol+0x1fb/0x550 [ 895.045836][T20857] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 895.045866][T20857] ? __lock_acquire+0x5ca/0x1ba0 [ 895.045902][T20857] folio_alloc_mpol_noprof+0x36/0x2f0 [ 895.045937][T20857] vma_alloc_folio_noprof+0xed/0x1e0 [ 895.045969][T20857] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 895.046013][T20857] do_pte_missing+0x223d/0x3fb0 [ 895.046050][T20857] __handle_mm_fault+0x103d/0x2a40 [ 895.046086][T20857] ? __pfx___handle_mm_fault+0x10/0x10 [ 895.046117][T20857] ? __pte_offset_map_lock+0x155/0x2f0 [ 895.046149][T20857] ? find_held_lock+0x2b/0x80 [ 895.046171][T20857] ? find_held_lock+0x2b/0x80 [ 895.046218][T20857] handle_mm_fault+0x3fe/0xad0 [ 895.046248][T20857] __get_user_pages+0x771/0x36f0 [ 895.046281][T20857] ? __pfx_mt_find+0x10/0x10 [ 895.046313][T20857] ? __pfx___get_user_pages+0x10/0x10 [ 895.046347][T20857] populate_vma_page_range+0x278/0x3a0 [ 895.046371][T20857] ? __pfx_populate_vma_page_range+0x10/0x10 [ 895.046391][T20857] ? __pfx_find_vma_intersection+0x10/0x10 [ 895.046425][T20857] ? do_mmap+0x69c/0x11b0 [ 895.046459][T20857] __mm_populate+0x1d8/0x380 [ 895.046485][T20857] ? __pfx___mm_populate+0x10/0x10 [ 895.046512][T20857] ? up_write+0x1b2/0x520 [ 895.046549][T20857] vm_mmap_pgoff+0x362/0x450 [ 895.046588][T20857] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 895.046629][T20857] ? __x64_sys_futex+0x1e0/0x4c0 [ 895.046654][T20857] ? __x64_sys_futex+0x1e9/0x4c0 [ 895.046686][T20857] ksys_mmap_pgoff+0x7d/0x5c0 [ 895.046720][T20857] ? rcu_is_watching+0x12/0xc0 [ 895.046747][T20857] __x64_sys_mmap+0x125/0x190 [ 895.046778][T20857] do_syscall_64+0xcd/0x230 [ 895.046813][T20857] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 895.046837][T20857] RIP: 0033:0x7f448ad8e969 [ 895.046858][T20857] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 895.046882][T20857] RSP: 002b:00007f4488bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 895.046904][T20857] RAX: ffffffffffffffda RBX: 00007f448afb6080 RCX: 00007f448ad8e969 [ 895.046920][T20857] RDX: 00000000000000df RSI: 0000000000400009 RDI: 0000000000000000 [ 895.046935][T20857] RBP: 00007f448ae10ab1 R08: 8000000000000003 R09: 0000000000008000 [ 895.046950][T20857] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 895.046965][T20857] R13: 0000000000000000 R14: 00007f448afb6080 R15: 00007ffe3ea3ebd8 [ 895.046998][T20857] [ 896.723965][T20871] openvswitch: ovs_: Dropping previously announced user features [ 897.175210][T20896] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 898.059379][T20898] Invalid ELF header magic: != ELF [ 898.557979][T20918] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 898.726861][T20899] Invalid ELF header magic: != ELF [ 900.240872][T20932] FAULT_INJECTION: forcing a failure. [ 900.240872][T20932] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 900.440750][T20932] CPU: 0 UID: 0 PID: 20932 Comm: syz.4.3002 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 900.440793][T20932] Tainted: [U]=USER [ 900.440802][T20932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 900.440816][T20932] Call Trace: [ 900.440825][T20932] [ 900.440836][T20932] dump_stack_lvl+0x16c/0x1f0 [ 900.440874][T20932] should_fail_ex+0x512/0x640 [ 900.440908][T20932] _copy_from_iter+0x2a4/0x15b0 [ 900.440947][T20932] ? __pfx__copy_from_iter+0x10/0x10 [ 900.440978][T20932] ? rcu_is_watching+0x12/0xc0 [ 900.441004][T20932] ? trace_kmalloc+0x2b/0xd0 [ 900.441034][T20932] ? __kmalloc_noprof+0x242/0x510 [ 900.441071][T20932] kernfs_fop_write_iter+0x19a/0x510 [ 900.441109][T20932] vfs_write+0x5ba/0x1180 [ 900.441136][T20932] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 900.441170][T20932] ? __pfx___mutex_lock+0x10/0x10 [ 900.441203][T20932] ? __pfx_vfs_write+0x10/0x10 [ 900.441252][T20932] ksys_write+0x12a/0x240 [ 900.441276][T20932] ? __pfx_ksys_write+0x10/0x10 [ 900.441299][T20932] ? rcu_is_watching+0x12/0xc0 [ 900.441333][T20932] do_syscall_64+0xcd/0x230 [ 900.441369][T20932] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 900.441393][T20932] RIP: 0033:0x7f418a58e969 [ 900.441413][T20932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 900.441437][T20932] RSP: 002b:00007f418b398038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 900.441460][T20932] RAX: ffffffffffffffda RBX: 00007f418a7b5fa0 RCX: 00007f418a58e969 [ 900.441477][T20932] RDX: 000000007fffffff RSI: 0000000000000000 RDI: 0000000000000003 [ 900.441492][T20932] RBP: 00007f418b398090 R08: 0000000000000000 R09: 0000000000000000 [ 900.441507][T20932] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 900.441522][T20932] R13: 0000000000000000 R14: 00007f418a7b5fa0 R15: 00007ffe84cabbd8 [ 900.441555][T20932] [ 900.902078][T20929] svc: failed to register nfsdv3 RPC service (errno 111). [ 900.915851][T20929] svc: failed to register nfsaclv3 RPC service (errno 111). [ 901.185376][T20940] openvswitch: netlink: IP tunnel dst address not specified [ 901.780237][T20952] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 901.845326][T20946] ovs_: entered promiscuous mode [ 903.356729][T20958] Invalid ELF header magic: != ELF [ 903.591589][T20989] [U]  [ 903.594850][T20989] [U] [ 903.597569][T20989] [U] [ 903.600290][T20989] [U] [ 903.626645][T20989] [U] [ 903.629414][T20989] [U] [ 903.632139][T20989] [U] [ 903.634878][T20989] [U] [ 903.657015][T20989] [U] [ 903.659867][T20989] [U] [ 903.662580][T20989] [U] [ 903.665289][T20989] [U] [ 903.706518][T20990] [U] [ 904.319395][T15504] Bluetooth: hci4: Unable to find connection for big 0xd2 [ 907.410272][T21019] input input18: cannot allocate more than FF_MAX_EFFECTS effects [ 911.076438][T21062] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 911.237774][T21079] FAULT_INJECTION: forcing a failure. [ 911.237774][T21079] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 911.297386][T21079] CPU: 1 UID: 0 PID: 21079 Comm: syz.1.3031 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 911.297430][T21079] Tainted: [U]=USER [ 911.297439][T21079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 911.297453][T21079] Call Trace: [ 911.297461][T21079] [ 911.297471][T21079] dump_stack_lvl+0x16c/0x1f0 [ 911.297509][T21079] should_fail_ex+0x512/0x640 [ 911.297542][T21079] _copy_from_iter+0x2a4/0x15b0 [ 911.297575][T21079] ? __alloc_skb+0x200/0x380 [ 911.297604][T21079] ? __pfx__copy_from_iter+0x10/0x10 [ 911.297637][T21079] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 911.297668][T21079] ? __lock_acquire+0xaa4/0x1ba0 [ 911.297709][T21079] netlink_sendmsg+0x829/0xdd0 [ 911.297747][T21079] ? __pfx_netlink_sendmsg+0x10/0x10 [ 911.297792][T21079] ____sys_sendmsg+0xa95/0xc70 [ 911.297817][T21079] ? copy_msghdr_from_user+0x10a/0x160 [ 911.297857][T21079] ? __pfx_____sys_sendmsg+0x10/0x10 [ 911.297897][T21079] ___sys_sendmsg+0x134/0x1d0 [ 911.297929][T21079] ? __pfx____sys_sendmsg+0x10/0x10 [ 911.298001][T21079] __sys_sendmsg+0x16d/0x220 [ 911.298031][T21079] ? __pfx___sys_sendmsg+0x10/0x10 [ 911.298083][T21079] do_syscall_64+0xcd/0x230 [ 911.298120][T21079] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 911.298144][T21079] RIP: 0033:0x7f448ad8e969 [ 911.298164][T21079] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 911.298186][T21079] RSP: 002b:00007f448bb20038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 911.298210][T21079] RAX: ffffffffffffffda RBX: 00007f448afb5fa0 RCX: 00007f448ad8e969 [ 911.298227][T21079] RDX: 0000000002000000 RSI: 0000200000000080 RDI: 0000000000000005 [ 911.298243][T21079] RBP: 00007f448bb20090 R08: 0000000000000000 R09: 0000000000000000 [ 911.298258][T21079] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 911.298272][T21079] R13: 0000000000000000 R14: 00007f448afb5fa0 R15: 00007ffe3ea3ebd8 [ 911.298305][T21079] [ 911.646568][T21074] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC:0 is already present [ 912.811559][T21088] input input19: cannot allocate more than FF_MAX_EFFECTS effects [ 916.554300][T21144] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 916.931092][T21155] Invalid ELF header magic: != ELF [ 917.626625][T21146] vhci_hcd: invalid port number 242 [ 917.668169][T21146] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 917.900624][T21142] usbip-vudc usbip-vudc.0: gadget not bound [ 918.068423][T21164] Invalid ELF header magic: != ELF [ 918.269910][T21173] netlink: 130 bytes leftover after parsing attributes in process `syz.3.3047'. [ 918.331495][T21177] FAULT_INJECTION: forcing a failure. [ 918.331495][T21177] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 918.380118][T21177] CPU: 1 UID: 0 PID: 21177 Comm: syz.4.3048 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 918.380159][T21177] Tainted: [U]=USER [ 918.380168][T21177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 918.380192][T21177] Call Trace: [ 918.380201][T21177] [ 918.380210][T21177] dump_stack_lvl+0x16c/0x1f0 [ 918.380248][T21177] should_fail_ex+0x512/0x640 [ 918.380280][T21177] _copy_from_iter+0x2a4/0x15b0 [ 918.380313][T21177] ? __alloc_skb+0x200/0x380 [ 918.380344][T21177] ? __pfx__copy_from_iter+0x10/0x10 [ 918.380377][T21177] ? __lock_acquire+0xaa4/0x1ba0 [ 918.380416][T21177] netlink_sendmsg+0x829/0xdd0 [ 918.380456][T21177] ? __pfx_netlink_sendmsg+0x10/0x10 [ 918.380502][T21177] ____sys_sendmsg+0xa95/0xc70 [ 918.380526][T21177] ? copy_msghdr_from_user+0x10a/0x160 [ 918.380557][T21177] ? __pfx_____sys_sendmsg+0x10/0x10 [ 918.380596][T21177] ___sys_sendmsg+0x134/0x1d0 [ 918.380629][T21177] ? __pfx____sys_sendmsg+0x10/0x10 [ 918.380701][T21177] __sys_sendmsg+0x16d/0x220 [ 918.380732][T21177] ? __pfx___sys_sendmsg+0x10/0x10 [ 918.380773][T21177] ? rcu_is_watching+0x12/0xc0 [ 918.380806][T21177] do_syscall_64+0xcd/0x230 [ 918.380841][T21177] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 918.380865][T21177] RIP: 0033:0x7f418a58e969 [ 918.380885][T21177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 918.380909][T21177] RSP: 002b:00007f418b398038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 918.380931][T21177] RAX: ffffffffffffffda RBX: 00007f418a7b5fa0 RCX: 00007f418a58e969 [ 918.380948][T21177] RDX: 0000000028044004 RSI: 0000200000001840 RDI: 0000000000000003 [ 918.380964][T21177] RBP: 00007f418b398090 R08: 0000000000000000 R09: 0000000000000000 [ 918.380983][T21177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 918.380998][T21177] R13: 0000000000000000 R14: 00007f418a7b5fa0 R15: 00007ffe84cabbd8 [ 918.381030][T21177] [ 919.116175][T21176] vhci_hcd: invalid port number 242 [ 919.129071][T21176] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 919.289637][T21188] vhci_hcd: invalid port number 242 [ 919.294908][T21188] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 919.453202][T21193] vhci_hcd: invalid port number 242 [ 919.474537][T21193] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 921.426101][T21207] FAULT_INJECTION: forcing a failure. [ 921.426101][T21207] name failslab, interval 1, probability 0, space 0, times 0 [ 921.453244][T21207] CPU: 1 UID: 0 PID: 21207 Comm: syz.4.3056 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 921.453283][T21207] Tainted: [U]=USER [ 921.453290][T21207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 921.453308][T21207] Call Trace: [ 921.453319][T21207] [ 921.453330][T21207] dump_stack_lvl+0x16c/0x1f0 [ 921.453366][T21207] should_fail_ex+0x512/0x640 [ 921.453393][T21207] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 921.453421][T21207] should_failslab+0xc2/0x120 [ 921.453451][T21207] __kmalloc_cache_noprof+0x6a/0x3e0 [ 921.453473][T21207] ? trace_kmalloc+0x2b/0xd0 [ 921.453502][T21207] ? __kvmalloc_node_noprof+0x296/0x600 [ 921.453526][T21207] ? rps_default_mask_sysctl+0x19e/0x230 [ 921.453559][T21207] rps_default_mask_sysctl+0x19e/0x230 [ 921.453588][T21207] proc_sys_call_handler+0x3bf/0x5c0 [ 921.453618][T21207] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 921.453666][T21207] vfs_write+0x5ba/0x1180 [ 921.453690][T21207] ? __pfx_proc_sys_write+0x10/0x10 [ 921.453717][T21207] ? __pfx___mutex_lock+0x10/0x10 [ 921.453749][T21207] ? __pfx_vfs_write+0x10/0x10 [ 921.453796][T21207] ksys_write+0x12a/0x240 [ 921.453820][T21207] ? __pfx_ksys_write+0x10/0x10 [ 921.453842][T21207] ? rcu_is_watching+0x12/0xc0 [ 921.453877][T21207] do_syscall_64+0xcd/0x230 [ 921.453911][T21207] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 921.453935][T21207] RIP: 0033:0x7f418a58e969 [ 921.453954][T21207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 921.453976][T21207] RSP: 002b:00007f418b398038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 921.453999][T21207] RAX: ffffffffffffffda RBX: 00007f418a7b5fa0 RCX: 00007f418a58e969 [ 921.454015][T21207] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 921.454028][T21207] RBP: 00007f418b398090 R08: 0000000000000000 R09: 0000000000000000 [ 921.454042][T21207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 921.454056][T21207] R13: 0000000000000000 R14: 00007f418a7b5fa0 R15: 00007ffe84cabbd8 [ 921.454089][T21207] [ 922.542193][T21212] Invalid ELF header magic: != ELF [ 923.531695][T21229] usbip-vudc usbip-vudc.0: gadget not bound [ 923.852696][T21243] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3064'. [ 923.954395][T21247] FAULT_INJECTION: forcing a failure. [ 923.954395][T21247] name failslab, interval 1, probability 0, space 0, times 0 [ 923.968316][T21247] CPU: 1 UID: 0 PID: 21247 Comm: syz.2.3065 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 923.968357][T21247] Tainted: [U]=USER [ 923.968365][T21247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 923.968379][T21247] Call Trace: [ 923.968388][T21247] [ 923.968398][T21247] dump_stack_lvl+0x16c/0x1f0 [ 923.968434][T21247] should_fail_ex+0x512/0x640 [ 923.968461][T21247] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 923.968494][T21247] should_failslab+0xc2/0x120 [ 923.968532][T21247] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 923.968560][T21247] ? __alloc_skb+0x2b2/0x380 [ 923.968596][T21247] __alloc_skb+0x2b2/0x380 [ 923.968624][T21247] ? __pfx___alloc_skb+0x10/0x10 [ 923.968657][T21247] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 923.968689][T21247] ? __lock_acquire+0xaa4/0x1ba0 [ 923.968725][T21247] netlink_alloc_large_skb+0x69/0x130 [ 923.968759][T21247] netlink_sendmsg+0x6a1/0xdd0 [ 923.968796][T21247] ? __pfx_netlink_sendmsg+0x10/0x10 [ 923.968841][T21247] ____sys_sendmsg+0xa95/0xc70 [ 923.968866][T21247] ? copy_msghdr_from_user+0x10a/0x160 [ 923.968896][T21247] ? __pfx_____sys_sendmsg+0x10/0x10 [ 923.968936][T21247] ___sys_sendmsg+0x134/0x1d0 [ 923.968969][T21247] ? __pfx____sys_sendmsg+0x10/0x10 [ 923.969041][T21247] __sys_sendmsg+0x16d/0x220 [ 923.969071][T21247] ? __pfx___sys_sendmsg+0x10/0x10 [ 923.969112][T21247] ? rcu_is_watching+0x12/0xc0 [ 923.969146][T21247] do_syscall_64+0xcd/0x230 [ 923.969181][T21247] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 923.969205][T21247] RIP: 0033:0x7f6dba98e969 [ 923.969224][T21247] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 923.969247][T21247] RSP: 002b:00007f6dbb86a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 923.969270][T21247] RAX: ffffffffffffffda RBX: 00007f6dbabb5fa0 RCX: 00007f6dba98e969 [ 923.969287][T21247] RDX: 0000000000000080 RSI: 0000200000000080 RDI: 0000000000000003 [ 923.969302][T21247] RBP: 00007f6dbb86a090 R08: 0000000000000000 R09: 0000000000000000 [ 923.969316][T21247] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 923.969331][T21247] R13: 0000000000000000 R14: 00007f6dbabb5fa0 R15: 00007ffdfc4f4978 [ 923.969363][T21247] [ 924.386663][T21250] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3066'. [ 924.432877][T21239] block2mtd: parameter too long [ 925.602066][T21261] vhci_hcd: invalid port number 242 [ 925.650782][T21261] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 927.739401][T21292] FAULT_INJECTION: forcing a failure. [ 927.739401][T21292] name failslab, interval 1, probability 0, space 0, times 0 [ 927.766655][T21292] CPU: 0 UID: 0 PID: 21292 Comm: syz.2.3076 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 927.766700][T21292] Tainted: [U]=USER [ 927.766709][T21292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 927.766724][T21292] Call Trace: [ 927.766733][T21292] [ 927.766744][T21292] dump_stack_lvl+0x16c/0x1f0 [ 927.766784][T21292] should_fail_ex+0x512/0x640 [ 927.766814][T21292] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 927.766845][T21292] should_failslab+0xc2/0x120 [ 927.766879][T21292] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 927.766910][T21292] ? __kernfs_new_node+0xd2/0x8a0 [ 927.766939][T21292] __kernfs_new_node+0xd2/0x8a0 [ 927.766966][T21292] ? __pfx___kernfs_new_node+0x10/0x10 [ 927.766999][T21292] ? find_held_lock+0x2b/0x80 [ 927.767027][T21292] ? kernfs_root+0xee/0x2a0 [ 927.767059][T21292] kernfs_new_node+0x13c/0x1e0 [ 927.767093][T21292] __kernfs_create_file+0x53/0x350 [ 927.767125][T21292] sysfs_add_file_mode_ns+0x207/0x3c0 [ 927.767170][T21292] internal_create_group+0x578/0xf30 [ 927.767206][T21292] ? __pfx_internal_create_group+0x10/0x10 [ 927.767237][T21292] ? kernfs_create_link+0x1bd/0x240 [ 927.767275][T21292] internal_create_groups+0x9d/0x150 [ 927.767304][T21292] device_add+0xf30/0x1a70 [ 927.767335][T21292] ? __pfx_device_add+0x10/0x10 [ 927.767370][T21292] ? lockdep_init_map_type+0x5c/0x280 [ 927.767405][T21292] ? __init_waitqueue_head+0xca/0x150 [ 927.767439][T21292] netdev_register_kobject+0x182/0x3a0 [ 927.767478][T21292] register_netdevice+0x13dc/0x2270 [ 927.767520][T21292] ? __pfx_register_netdevice+0x10/0x10 [ 927.767562][T21292] internal_dev_create+0x2d3/0x520 [ 927.767588][T21292] ovs_vport_add+0x144/0x4d0 [ 927.767625][T21292] new_vport+0x16/0x1d0 [ 927.767653][T21292] ovs_dp_cmd_new+0x6ba/0xe60 [ 927.767690][T21292] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 927.767726][T21292] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 927.767764][T21292] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 927.767809][T21292] genl_family_rcv_msg_doit+0x206/0x2f0 [ 927.767843][T21292] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 927.767883][T21292] ? trace_cap_capable+0x18d/0x200 [ 927.767918][T21292] ? bpf_lsm_capable+0x9/0x10 [ 927.767944][T21292] ? security_capable+0x7e/0x260 [ 927.767970][T21292] ? ns_capable+0xd7/0x110 [ 927.768000][T21292] genl_rcv_msg+0x55c/0x800 [ 927.768028][T21292] ? __pfx_genl_rcv_msg+0x10/0x10 [ 927.768052][T21292] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 927.768085][T21292] ? __lock_acquire+0xaa4/0x1ba0 [ 927.768123][T21292] netlink_rcv_skb+0x16a/0x440 [ 927.768156][T21292] ? __pfx_genl_rcv_msg+0x10/0x10 [ 927.768182][T21292] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 927.768232][T21292] ? __pfx_down_read+0x10/0x10 [ 927.768264][T21292] genl_rcv+0x28/0x40 [ 927.768296][T21292] netlink_unicast+0x53a/0x7f0 [ 927.768332][T21292] ? __pfx_netlink_unicast+0x10/0x10 [ 927.768373][T21292] ? __lock_acquire+0xaa4/0x1ba0 [ 927.768416][T21292] netlink_sendmsg+0x8d1/0xdd0 [ 927.768456][T21292] ? __pfx_netlink_sendmsg+0x10/0x10 [ 927.768504][T21292] ____sys_sendmsg+0xa95/0xc70 [ 927.768531][T21292] ? copy_msghdr_from_user+0x10a/0x160 [ 927.768561][T21292] ? __pfx_____sys_sendmsg+0x10/0x10 [ 927.768590][T21292] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 927.768631][T21292] ___sys_sendmsg+0x134/0x1d0 [ 927.768664][T21292] ? __pfx____sys_sendmsg+0x10/0x10 [ 927.768740][T21292] __sys_sendmsg+0x16d/0x220 [ 927.768770][T21292] ? __pfx___sys_sendmsg+0x10/0x10 [ 927.768800][T21292] ? __x64_sys_futex+0x1e0/0x4c0 [ 927.768838][T21292] ? rcu_is_watching+0x12/0xc0 [ 927.768874][T21292] do_syscall_64+0xcd/0x230 [ 927.768910][T21292] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 927.768936][T21292] RIP: 0033:0x7f6dba98e969 [ 927.768957][T21292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 927.768983][T21292] RSP: 002b:00007f6dbb86a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 927.769006][T21292] RAX: ffffffffffffffda RBX: 00007f6dbabb5fa0 RCX: 00007f6dba98e969 [ 927.769023][T21292] RDX: 0000000002000000 RSI: 0000200000000080 RDI: 0000000000000005 [ 927.769040][T21292] RBP: 00007f6dbaa10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 927.769074][T21292] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 927.769090][T21292] R13: 0000000000000000 R14: 00007f6dbabb5fa0 R15: 00007ffdfc4f4978 [ 927.769124][T21292] [ 931.442324][T21379] FAULT_INJECTION: forcing a failure. [ 931.442324][T21379] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 931.526560][T21379] CPU: 1 UID: 0 PID: 21379 Comm: syz.1.3089 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 931.526603][T21379] Tainted: [U]=USER [ 931.526611][T21379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 931.526626][T21379] Call Trace: [ 931.526634][T21379] [ 931.526644][T21379] dump_stack_lvl+0x16c/0x1f0 [ 931.526682][T21379] should_fail_ex+0x512/0x640 [ 931.526715][T21379] _copy_to_user+0x32/0xd0 [ 931.526746][T21379] simple_read_from_buffer+0xcb/0x170 [ 931.526785][T21379] proc_fail_nth_read+0x197/0x270 [ 931.526821][T21379] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 931.526857][T21379] ? rw_verify_area+0xcf/0x680 [ 931.526890][T21379] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 931.526924][T21379] vfs_read+0x1de/0xc70 [ 931.526954][T21379] ? __pfx___mutex_lock+0x10/0x10 [ 931.526993][T21379] ? __pfx_vfs_read+0x10/0x10 [ 931.527027][T21379] ? __fget_files+0x20e/0x3c0 [ 931.527061][T21379] ksys_read+0x12a/0x240 [ 931.527084][T21379] ? __pfx_ksys_read+0x10/0x10 [ 931.527119][T21379] do_syscall_64+0xcd/0x230 [ 931.527155][T21379] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 931.527179][T21379] RIP: 0033:0x7f448ad8d37c [ 931.527199][T21379] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 931.527223][T21379] RSP: 002b:00007f4488bf6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 931.527245][T21379] RAX: ffffffffffffffda RBX: 00007f448afb6080 RCX: 00007f448ad8d37c [ 931.527262][T21379] RDX: 000000000000000f RSI: 00007f4488bf60a0 RDI: 0000000000000004 [ 931.527277][T21379] RBP: 00007f4488bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 931.527292][T21379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 931.527307][T21379] R13: 0000000000000001 R14: 00007f448afb6080 R15: 00007ffe3ea3ebd8 [ 931.527341][T21379] [ 931.764720][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 931.771360][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 931.872345][T21383] FAULT_INJECTION: forcing a failure. [ 931.872345][T21383] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 931.931889][T21383] CPU: 0 UID: 0 PID: 21383 Comm: syz.4.3090 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 931.931930][T21383] Tainted: [U]=USER [ 931.931938][T21383] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 931.931951][T21383] Call Trace: [ 931.931959][T21383] [ 931.931969][T21383] dump_stack_lvl+0x16c/0x1f0 [ 931.932006][T21383] should_fail_ex+0x512/0x640 [ 931.932038][T21383] _copy_from_iter+0x2a4/0x15b0 [ 931.932075][T21383] ? __pfx__copy_from_iter+0x10/0x10 [ 931.932105][T21383] ? rcu_is_watching+0x12/0xc0 [ 931.932130][T21383] ? trace_kmalloc+0x2b/0xd0 [ 931.932159][T21383] ? __kmalloc_noprof+0x242/0x510 [ 931.932194][T21383] kernfs_fop_write_iter+0x19a/0x510 [ 931.932230][T21383] vfs_write+0x5ba/0x1180 [ 931.932255][T21383] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 931.932290][T21383] ? __pfx_vfs_write+0x10/0x10 [ 931.932317][T21383] ? __pfx_do_sys_openat2+0x10/0x10 [ 931.932364][T21383] ksys_write+0x12a/0x240 [ 931.932388][T21383] ? __pfx_ksys_write+0x10/0x10 [ 931.932410][T21383] ? syscall_user_dispatch+0x78/0x140 [ 931.932453][T21383] do_syscall_64+0xcd/0x230 [ 931.932488][T21383] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 931.932511][T21383] RIP: 0033:0x7f418a58e969 [ 931.932529][T21383] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 931.932551][T21383] RSP: 002b:00007f418b377038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 931.932574][T21383] RAX: ffffffffffffffda RBX: 00007f418a7b6080 RCX: 00007f418a58e969 [ 931.932590][T21383] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003 [ 931.932604][T21383] RBP: 00007f418b377090 R08: 0000000000000000 R09: 0000000000000000 [ 931.932618][T21383] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 931.932633][T21383] R13: 0000000000000000 R14: 00007f418a7b6080 R15: 00007ffe84cabbd8 [ 931.932665][T21383] [ 932.229383][T21374] vhci_hcd: invalid port number 242 [ 932.234689][T21374] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 935.618825][T21417] vhci_hcd: invalid port number 242 [ 935.624889][T21417] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 935.749421][T21428] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3099'. [ 935.760459][T21428] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3099'. [ 936.053361][T21430] openvswitch: ovs_: Dropping previously announced user features [ 936.498419][T21453] FAULT_INJECTION: forcing a failure. [ 936.498419][T21453] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 936.580605][T21453] CPU: 0 UID: 0 PID: 21453 Comm: syz.4.3105 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 936.580647][T21453] Tainted: [U]=USER [ 936.580655][T21453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 936.580668][T21453] Call Trace: [ 936.580676][T21453] [ 936.580685][T21453] dump_stack_lvl+0x16c/0x1f0 [ 936.580721][T21453] should_fail_ex+0x512/0x640 [ 936.580751][T21453] should_fail_alloc_page+0xe7/0x130 [ 936.580785][T21453] prepare_alloc_pages+0x3c2/0x610 [ 936.580826][T21453] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 936.580855][T21453] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 936.580887][T21453] ? __lock_acquire+0x5ca/0x1ba0 [ 936.580928][T21453] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 936.580959][T21453] ? register_lock_class+0x41/0x4c0 [ 936.580997][T21453] ? __lock_acquire+0xaa4/0x1ba0 [ 936.581031][T21453] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 936.581063][T21453] ? policy_nodemask+0xea/0x4e0 [ 936.581094][T21453] alloc_pages_mpol+0x1fb/0x550 [ 936.581123][T21453] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 936.581151][T21453] ? find_held_lock+0x2b/0x80 [ 936.581180][T21453] ? __pfx___pollwait+0x10/0x10 [ 936.581212][T21453] alloc_pages_noprof+0x131/0x390 [ 936.581243][T21453] get_free_pages_noprof+0xc/0x40 [ 936.581273][T21453] __pollwait+0x295/0x490 [ 936.581309][T21453] ? __pfx___pollwait+0x10/0x10 [ 936.581339][T21453] unix_dgram_poll+0x7f/0x770 [ 936.581361][T21453] ? __pfx_unix_dgram_poll+0x10/0x10 [ 936.581381][T21453] sock_poll+0x15d/0x510 [ 936.581403][T21453] ? __pfx_sock_poll+0x10/0x10 [ 936.581420][T21453] do_select+0xd67/0x17d0 [ 936.581461][T21453] ? __pfx_do_select+0x10/0x10 [ 936.581495][T21453] ? __pfx___pollwait+0x10/0x10 [ 936.581540][T21453] ? __pfx_pollwake+0x10/0x10 [ 936.581576][T21453] ? __pfx_pollwake+0x10/0x10 [ 936.581612][T21453] ? __pfx_pollwake+0x10/0x10 [ 936.581648][T21453] ? __pfx_pollwake+0x10/0x10 [ 936.581683][T21453] ? __pfx_pollwake+0x10/0x10 [ 936.581719][T21453] ? __pfx_pollwake+0x10/0x10 [ 936.581755][T21453] ? __pfx_pollwake+0x10/0x10 [ 936.581790][T21453] ? __pfx_pollwake+0x10/0x10 [ 936.581826][T21453] ? __pfx_pollwake+0x10/0x10 [ 936.581861][T21453] ? find_held_lock+0x2b/0x80 [ 936.581884][T21453] ? __might_fault+0xe3/0x190 [ 936.581910][T21453] ? __might_fault+0xe3/0x190 [ 936.581934][T21453] ? __might_fault+0x13b/0x190 [ 936.581972][T21453] ? core_sys_select+0x440/0xbe0 [ 936.581993][T21453] core_sys_select+0x440/0xbe0 [ 936.582022][T21453] ? __pfx_core_sys_select+0x10/0x10 [ 936.582051][T21453] ? proc_fail_nth_write+0x9f/0x250 [ 936.582112][T21453] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 936.582153][T21453] kern_select+0x15d/0x1e0 [ 936.582175][T21453] ? __pfx_kern_select+0x10/0x10 [ 936.582202][T21453] ? __pfx_ksys_write+0x10/0x10 [ 936.582232][T21453] __x64_sys_select+0xbd/0x160 [ 936.582252][T21453] ? do_syscall_64+0x91/0x230 [ 936.582282][T21453] ? lockdep_hardirqs_on+0x7c/0x110 [ 936.582312][T21453] do_syscall_64+0xcd/0x230 [ 936.582351][T21453] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 936.582375][T21453] RIP: 0033:0x7f418a58e969 [ 936.582394][T21453] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 936.582416][T21453] RSP: 002b:00007f418b356038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 936.582437][T21453] RAX: ffffffffffffffda RBX: 00007f418a7b6160 RCX: 00007f418a58e969 [ 936.582453][T21453] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 936.582467][T21453] RBP: 00007f418b356090 R08: 0000000000000000 R09: 0000000000000000 [ 936.582481][T21453] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001 [ 936.582495][T21453] R13: 0000000000000001 R14: 00007f418a7b6160 R15: 00007ffe84cabbd8 [ 936.582532][T21453] [ 937.475120][T21445] Invalid ELF header magic: != ELF [ 937.615137][T21464] Invalid ELF header magic: != ELF [ 939.596164][T21511] vhci_hcd: invalid port number 242 [ 939.623069][T21511] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 940.149879][T21520] [U]  [ 940.152752][T21520] [U] [ 940.155481][T21520] [U] [ 940.158206][T21520] [U] [ 940.167214][T21520] [U] [ 940.169998][T21520] [U] [ 940.172696][T21520] [U] [ 940.175397][T21520] [U] [ 940.207526][T21520] [U] [ 940.210290][T21520] [U] [ 940.213016][T21520] [U] [ 940.215859][T21520] [U] [ 940.252218][T21523] [U] [ 943.143298][T21572] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 943.220485][T21574] [U]  [ 943.223349][T21574] [U] [ 943.226428][T21574] [U] [ 943.229142][T21574] [U] [ 943.251250][T21574] [U] [ 943.254022][T21574] [U] [ 943.256744][T21574] [U] [ 943.259464][T21574] [U] [ 943.334332][T21580] [U] [ 943.689460][T21583] [U]  [ 943.692320][T21583] [U] [ 943.695052][T21583] [U] [ 943.697797][T21583] [U] [ 943.736639][T21583] [U] [ 943.739410][T21583] [U] [ 943.742127][T21583] [U] [ 943.744849][T21583] [U] [ 943.799484][T21583] [U] [ 943.802244][T21583] [U] [ 943.804961][T21583] [U] [ 943.807709][T21583] [U] [ 943.889904][T21584] [U] [ 944.001933][T21589] FAULT_INJECTION: forcing a failure. [ 944.001933][T21589] name failslab, interval 1, probability 0, space 0, times 0 [ 944.017428][T21589] CPU: 0 UID: 0 PID: 21589 Comm: syz.1.3128 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 944.017466][T21589] Tainted: [U]=USER [ 944.017475][T21589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 944.017488][T21589] Call Trace: [ 944.017497][T21589] [ 944.017507][T21589] dump_stack_lvl+0x16c/0x1f0 [ 944.017545][T21589] should_fail_ex+0x512/0x640 [ 944.017570][T21589] ? fs_reclaim_acquire+0xae/0x150 [ 944.017607][T21589] ? tomoyo_encode2+0x100/0x3e0 [ 944.017637][T21589] should_failslab+0xc2/0x120 [ 944.017678][T21589] __kmalloc_noprof+0xd2/0x510 [ 944.017705][T21589] ? d_absolute_path+0x136/0x1a0 [ 944.017740][T21589] tomoyo_encode2+0x100/0x3e0 [ 944.017776][T21589] tomoyo_encode+0x29/0x50 [ 944.017806][T21589] tomoyo_realpath_from_path+0x18f/0x6e0 [ 944.017852][T21589] tomoyo_path_number_perm+0x245/0x580 [ 944.017879][T21589] ? tomoyo_path_number_perm+0x237/0x580 [ 944.017910][T21589] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 944.017940][T21589] ? find_held_lock+0x2b/0x80 [ 944.017995][T21589] ? find_held_lock+0x2b/0x80 [ 944.018019][T21589] ? hook_file_ioctl_common+0x145/0x410 [ 944.018053][T21589] ? __fget_files+0x20e/0x3c0 [ 944.018082][T21589] security_file_ioctl+0x9b/0x240 [ 944.018113][T21589] __x64_sys_ioctl+0xb7/0x200 [ 944.018148][T21589] do_syscall_64+0xcd/0x230 [ 944.018183][T21589] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 944.018206][T21589] RIP: 0033:0x7f448ad8e969 [ 944.018225][T21589] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 944.018249][T21589] RSP: 002b:00007f448bb20038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 944.018271][T21589] RAX: ffffffffffffffda RBX: 00007f448afb5fa0 RCX: 00007f448ad8e969 [ 944.018288][T21589] RDX: 0000000000000000 RSI: 0000000080045400 RDI: 0000000000000003 [ 944.018303][T21589] RBP: 00007f448bb20090 R08: 0000000000000000 R09: 0000000000000000 [ 944.018318][T21589] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 944.018333][T21589] R13: 0000000000000000 R14: 00007f448afb5fa0 R15: 00007ffe3ea3ebd8 [ 944.018366][T21589] [ 944.019914][T21589] ERROR: Out of memory at tomoyo_realpath_from_path. [ 944.307859][T21592] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3130'. [ 945.248193][T21616] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 945.287778][T21615] svc: failed to register nfsdv3 RPC service (errno 111). [ 945.306092][T21615] svc: failed to register nfsaclv3 RPC service (errno 111). [ 945.783601][T21625] [U]  [ 945.786519][T21625] [U] [ 945.789237][T21625] [U] [ 945.791950][T21625] [U] [ 945.809850][T21625] [U] [ 945.812617][T21625] [U] [ 945.815355][T21625] [U] [ 945.818097][T21625] [U] [ 945.828569][T21625] [U] [ 945.831421][T21625] [U] [ 945.834142][T21625] [U] [ 945.836866][T21625] [U] [ 945.859022][T21625] [U] [ 945.861804][T21625] [U] [ 945.864529][T21625] [U] [ 945.867257][T21625] [U] [ 945.889940][T21631] [U] [ 946.059860][T21637] FAULT_INJECTION: forcing a failure. [ 946.059860][T21637] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 946.095610][T21637] CPU: 1 UID: 0 PID: 21637 Comm: syz.2.3144 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 946.095649][T21637] Tainted: [U]=USER [ 946.095657][T21637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 946.095670][T21637] Call Trace: [ 946.095678][T21637] [ 946.095688][T21637] dump_stack_lvl+0x16c/0x1f0 [ 946.095724][T21637] should_fail_ex+0x512/0x640 [ 946.095755][T21637] should_fail_alloc_page+0xe7/0x130 [ 946.095785][T21637] prepare_alloc_pages+0x3c2/0x610 [ 946.095816][T21637] ? look_up_lock_class+0x6b/0x150 [ 946.095852][T21637] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 946.095886][T21637] ? __lock_acquire+0xaa4/0x1ba0 [ 946.095926][T21637] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 946.095970][T21637] ? find_held_lock+0x2b/0x80 [ 946.095994][T21637] ? process_measurement+0x4a6/0x23e0 [ 946.096027][T21637] ? down_write+0x14d/0x200 [ 946.096059][T21637] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 946.096092][T21637] ? policy_nodemask+0xea/0x4e0 [ 946.096124][T21637] alloc_pages_mpol+0x1fb/0x550 [ 946.096155][T21637] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 946.096196][T21637] alloc_pages_noprof+0x131/0x390 [ 946.096226][T21637] __pmd_alloc+0x3f/0x870 [ 946.096261][T21637] ? find_held_lock+0x2b/0x80 [ 946.096286][T21637] __handle_mm_fault+0x948/0x2a40 [ 946.096322][T21637] ? __pfx___handle_mm_fault+0x10/0x10 [ 946.096367][T21637] ? find_vma+0xbf/0x140 [ 946.096397][T21637] ? __pfx_find_vma+0x10/0x10 [ 946.096439][T21637] handle_mm_fault+0x3fe/0xad0 [ 946.096472][T21637] do_user_addr_fault+0x7a6/0x1370 [ 946.096504][T21637] ? rcu_is_watching+0x12/0xc0 [ 946.096532][T21637] exc_page_fault+0x5c/0xc0 [ 946.096564][T21637] asm_exc_page_fault+0x26/0x30 [ 946.096587][T21637] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 946.096615][T21637] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 946.096637][T21637] RSP: 0018:ffffc9000c227bb0 EFLAGS: 00050206 [ 946.096657][T21637] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000001000 [ 946.096672][T21637] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8880522a4000 [ 946.096687][T21637] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100a4549ff [ 946.096700][T21637] R10: ffff8880522a4fff R11: 0000000000000000 R12: 0000000000000000 [ 946.096714][T21637] R13: ffffc9000c227da0 R14: 0000000000001000 R15: ffff8880522a4000 [ 946.096746][T21637] _copy_from_iter+0x391/0x15b0 [ 946.096779][T21637] ? __pfx__copy_from_iter+0x10/0x10 [ 946.096809][T21637] ? rcu_is_watching+0x12/0xc0 [ 946.096832][T21637] ? trace_kmalloc+0x2b/0xd0 [ 946.096860][T21637] ? __kmalloc_noprof+0x242/0x510 [ 946.096894][T21637] kernfs_fop_write_iter+0x19a/0x510 [ 946.096931][T21637] vfs_write+0x5ba/0x1180 [ 946.096958][T21637] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 946.096987][T21637] ? __pfx___mutex_lock+0x10/0x10 [ 946.097015][T21637] ? __pfx_vfs_write+0x10/0x10 [ 946.097062][T21637] ksys_write+0x12a/0x240 [ 946.097086][T21637] ? __pfx_ksys_write+0x10/0x10 [ 946.097109][T21637] ? rcu_is_watching+0x12/0xc0 [ 946.097143][T21637] do_syscall_64+0xcd/0x230 [ 946.097178][T21637] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 946.097202][T21637] RIP: 0033:0x7f6dba98e969 [ 946.097222][T21637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 946.097245][T21637] RSP: 002b:00007f6dbb86a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 946.097267][T21637] RAX: ffffffffffffffda RBX: 00007f6dbabb5fa0 RCX: 00007f6dba98e969 [ 946.097284][T21637] RDX: 000000007fffffff RSI: 0000000000000000 RDI: 0000000000000003 [ 946.097299][T21637] RBP: 00007f6dbb86a090 R08: 0000000000000000 R09: 0000000000000000 [ 946.097314][T21637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 946.097328][T21637] R13: 0000000000000000 R14: 00007f6dbabb5fa0 R15: 00007ffdfc4f4978 [ 946.097362][T21637] [ 948.211764][T21665] Invalid ELF header magic: != ELF [ 949.777297][T21685] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 950.011036][T21681] svc: failed to register nfsdv3 RPC service (errno 111). [ 950.036446][T21681] svc: failed to register nfsaclv3 RPC service (errno 111). [ 951.355674][T21718] Invalid ELF header magic: != ELF [ 951.595563][T21717] svc: failed to register nfsdv3 RPC service (errno 111). [ 951.646913][T21717] svc: failed to register nfsaclv3 RPC service (errno 111). [ 952.162973][T21730] openvswitch: ovs_: Dropping previously announced user features [ 952.576238][T21725] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3162'. [ 952.782332][T21745] svc: failed to register nfsdv3 RPC service (errno 111). [ 952.848599][T21745] svc: failed to register nfsaclv3 RPC service (errno 111). [ 953.873642][T21769] Invalid ELF header magic: != ELF [ 954.334013][T21757] FAULT_INJECTION: forcing a failure. [ 954.334013][T21757] name failslab, interval 1, probability 0, space 0, times 0 [ 954.353799][T21757] CPU: 0 UID: 0 PID: 21757 Comm: syz.1.3166 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 954.353838][T21757] Tainted: [U]=USER [ 954.353848][T21757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 954.353863][T21757] Call Trace: [ 954.353872][T21757] [ 954.353889][T21757] dump_stack_lvl+0x16c/0x1f0 [ 954.353930][T21757] should_fail_ex+0x512/0x640 [ 954.353959][T21757] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 954.353991][T21757] should_failslab+0xc2/0x120 [ 954.354024][T21757] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 954.354053][T21757] ? __kernfs_new_node+0xd2/0x8a0 [ 954.354084][T21757] __kernfs_new_node+0xd2/0x8a0 [ 954.354111][T21757] ? __pfx___kernfs_new_node+0x10/0x10 [ 954.354146][T21757] ? find_held_lock+0x2b/0x80 [ 954.354174][T21757] ? kernfs_root+0xee/0x2a0 [ 954.354207][T21757] kernfs_new_node+0x13c/0x1e0 [ 954.354243][T21757] __kernfs_create_file+0x53/0x350 [ 954.354281][T21757] sysfs_add_file_mode_ns+0x207/0x3c0 [ 954.354328][T21757] sysfs_merge_group+0x1aa/0x340 [ 954.354356][T21757] ? __pfx_sysfs_merge_group+0x10/0x10 [ 954.354388][T21757] ? __pfx_dev_add_physical_location+0x10/0x10 [ 954.354426][T21757] ? bus_to_subsys+0x12d/0x160 [ 954.354462][T21757] dpm_sysfs_add+0x237/0x280 [ 954.354488][T21757] device_add+0x9a6/0x1a70 [ 954.354521][T21757] ? __pfx_device_add+0x10/0x10 [ 954.354547][T21757] ? lockdep_init_map_type+0x5c/0x280 [ 954.354582][T21757] ? __init_waitqueue_head+0xca/0x150 [ 954.354616][T21757] rfkill_register+0x1ad/0xb40 [ 954.354646][T21757] nfc_register_device+0x11f/0x3c0 [ 954.354686][T21757] nci_register_device+0x7f1/0xb80 [ 954.354718][T21757] ? __pfx_nci_register_device+0x10/0x10 [ 954.354755][T21757] ? lockdep_init_map_type+0x5c/0x280 [ 954.354796][T21757] virtual_ncidev_open+0x141/0x220 [ 954.354826][T21757] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 954.354855][T21757] misc_open+0x35a/0x420 [ 954.354894][T21757] ? __pfx_misc_open+0x10/0x10 [ 954.354926][T21757] chrdev_open+0x231/0x6a0 [ 954.354955][T21757] ? __pfx_apparmor_file_open+0x10/0x10 [ 954.354988][T21757] ? __pfx_chrdev_open+0x10/0x10 [ 954.355019][T21757] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 954.355064][T21757] do_dentry_open+0x741/0x1c10 [ 954.355094][T21757] ? __pfx_chrdev_open+0x10/0x10 [ 954.355130][T21757] vfs_open+0x82/0x3f0 [ 954.355172][T21757] path_openat+0x1e5e/0x2d40 [ 954.355219][T21757] ? __pfx_path_openat+0x10/0x10 [ 954.355257][T21757] do_filp_open+0x20b/0x470 [ 954.355285][T21757] ? __pfx_do_filp_open+0x10/0x10 [ 954.355341][T21757] ? alloc_fd+0x471/0x7d0 [ 954.355377][T21757] do_sys_openat2+0x11b/0x1d0 [ 954.355412][T21757] ? __pfx_do_sys_openat2+0x10/0x10 [ 954.355461][T21757] __x64_sys_openat+0x174/0x210 [ 954.355496][T21757] ? __pfx___x64_sys_openat+0x10/0x10 [ 954.355533][T21757] ? rcu_is_watching+0x12/0xc0 [ 954.355570][T21757] do_syscall_64+0xcd/0x230 [ 954.355608][T21757] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 954.355632][T21757] RIP: 0033:0x7f448ad8e969 [ 954.355654][T21757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 954.355680][T21757] RSP: 002b:00007f4488bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 954.355706][T21757] RAX: ffffffffffffffda RBX: 00007f448afb6080 RCX: 00007f448ad8e969 [ 954.355724][T21757] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 954.355741][T21757] RBP: 00007f448ae10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 954.355757][T21757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 954.355774][T21757] R13: 0000000000000000 R14: 00007f448afb6080 R15: 00007ffe3ea3ebd8 [ 954.355810][T21757] [ 954.860467][T21787] svc: failed to register nfsdv3 RPC service (errno 111). [ 954.896509][T21787] svc: failed to register nfsaclv3 RPC service (errno 111). [ 955.586467][T21800] FAULT_INJECTION: forcing a failure. [ 955.586467][T21800] name failslab, interval 1, probability 0, space 0, times 0 [ 955.616414][T21800] CPU: 0 UID: 0 PID: 21800 Comm: syz.2.3170 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 955.616457][T21800] Tainted: [U]=USER [ 955.616465][T21800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 955.616481][T21800] Call Trace: [ 955.616489][T21800] [ 955.616498][T21800] dump_stack_lvl+0x16c/0x1f0 [ 955.616545][T21800] should_fail_ex+0x512/0x640 [ 955.616574][T21800] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 955.616607][T21800] should_failslab+0xc2/0x120 [ 955.616638][T21800] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 955.616667][T21800] ? __kernfs_new_node+0xd2/0x8a0 [ 955.616698][T21800] __kernfs_new_node+0xd2/0x8a0 [ 955.616726][T21800] ? __pfx___kernfs_new_node+0x10/0x10 [ 955.616759][T21800] ? find_held_lock+0x2b/0x80 [ 955.616786][T21800] ? kernfs_root+0xee/0x2a0 [ 955.616817][T21800] kernfs_new_node+0x13c/0x1e0 [ 955.616850][T21800] __kernfs_create_file+0x53/0x350 [ 955.616886][T21800] sysfs_add_file_mode_ns+0x207/0x3c0 [ 955.616930][T21800] internal_create_group+0x578/0xf30 [ 955.616965][T21800] ? __pfx_internal_create_group+0x10/0x10 [ 955.616996][T21800] ? kernfs_create_link+0x1bd/0x240 [ 955.617034][T21800] internal_create_groups+0x9d/0x150 [ 955.617063][T21800] device_add+0xf30/0x1a70 [ 955.617095][T21800] ? __pfx_device_add+0x10/0x10 [ 955.617121][T21800] ? lockdep_init_map_type+0x5c/0x280 [ 955.617155][T21800] ? __init_waitqueue_head+0xca/0x150 [ 955.617186][T21800] netdev_register_kobject+0x182/0x3a0 [ 955.617227][T21800] register_netdevice+0x13dc/0x2270 [ 955.617269][T21800] ? __pfx_register_netdevice+0x10/0x10 [ 955.617314][T21800] internal_dev_create+0x2d3/0x520 [ 955.617340][T21800] ovs_vport_add+0x144/0x4d0 [ 955.617378][T21800] new_vport+0x16/0x1d0 [ 955.617411][T21800] ovs_dp_cmd_new+0x6ba/0xe60 [ 955.617454][T21800] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 955.617491][T21800] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 955.617535][T21800] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 955.617581][T21800] genl_family_rcv_msg_doit+0x206/0x2f0 [ 955.617609][T21800] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 955.617642][T21800] ? trace_cap_capable+0x18d/0x200 [ 955.617672][T21800] ? bpf_lsm_capable+0x9/0x10 [ 955.617695][T21800] ? security_capable+0x7e/0x260 [ 955.617717][T21800] ? ns_capable+0xd7/0x110 [ 955.617746][T21800] genl_rcv_msg+0x55c/0x800 [ 955.617773][T21800] ? __pfx_genl_rcv_msg+0x10/0x10 [ 955.617796][T21800] ? __pfx___dev_queue_xmit+0x10/0x10 [ 955.617822][T21800] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 955.617852][T21800] ? __lock_acquire+0xaa4/0x1ba0 [ 955.617888][T21800] netlink_rcv_skb+0x16a/0x440 [ 955.617918][T21800] ? __pfx_genl_rcv_msg+0x10/0x10 [ 955.617941][T21800] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 955.617985][T21800] ? __pfx_down_read+0x10/0x10 [ 955.618007][T21800] ? netlink_deliver_tap+0x1ae/0xd30 [ 955.618042][T21800] genl_rcv+0x28/0x40 [ 955.618071][T21800] netlink_unicast+0x53a/0x7f0 [ 955.618104][T21800] ? __pfx_netlink_unicast+0x10/0x10 [ 955.618132][T21800] ? __lock_acquire+0xaa4/0x1ba0 [ 955.618170][T21800] netlink_sendmsg+0x8d1/0xdd0 [ 955.618205][T21800] ? __pfx_netlink_sendmsg+0x10/0x10 [ 955.618250][T21800] ____sys_sendmsg+0xa95/0xc70 [ 955.618274][T21800] ? copy_msghdr_from_user+0x10a/0x160 [ 955.618305][T21800] ? __pfx_____sys_sendmsg+0x10/0x10 [ 955.618337][T21800] ? try_to_wake_up+0xa2f/0x1680 [ 955.618370][T21800] ___sys_sendmsg+0x134/0x1d0 [ 955.618402][T21800] ? __pfx____sys_sendmsg+0x10/0x10 [ 955.618477][T21800] __sys_sendmsg+0x16d/0x220 [ 955.618508][T21800] ? __pfx___sys_sendmsg+0x10/0x10 [ 955.618552][T21800] ? __x64_sys_futex+0x1e0/0x4c0 [ 955.618591][T21800] ? rcu_is_watching+0x12/0xc0 [ 955.618625][T21800] do_syscall_64+0xcd/0x230 [ 955.618663][T21800] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 955.618686][T21800] RIP: 0033:0x7f6dba98e969 [ 955.618708][T21800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 955.618733][T21800] RSP: 002b:00007f6dbb86a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 955.618758][T21800] RAX: ffffffffffffffda RBX: 00007f6dbabb5fa0 RCX: 00007f6dba98e969 [ 955.618775][T21800] RDX: 0000000002000000 RSI: 0000200000000080 RDI: 0000000000000005 [ 955.618790][T21800] RBP: 00007f6dbaa10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 955.618803][T21800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 955.618816][T21800] R13: 0000000000000000 R14: 00007f6dbabb5fa0 R15: 00007ffdfc4f4978 [ 955.618849][T21800] [ 956.980815][T21819] svc: failed to register nfsdv3 RPC service (errno 111). [ 957.052020][T21819] svc: failed to register nfsaclv3 RPC service (errno 111). [ 957.199879][T21821] vhci_hcd: invalid port number 242 [ 957.205364][T21821] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 957.215801][ T30] audit: type=1800 audit(4294967386.927:39): pid=21826 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3175" name="dummy_udc" dev="gadgetfs" ino=7188 res=0 errno=0 [ 958.099237][T21848] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 960.159823][T21868] svc: failed to register nfsdv3 RPC service (errno 111). [ 960.193911][T21868] svc: failed to register nfsaclv3 RPC service (errno 111). [ 960.349038][T21874] vhci_hcd: invalid port number 242 [ 960.354305][T21874] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 960.475014][T21878] svc: failed to register nfsdv3 RPC service (errno 111). [ 960.526447][T21878] svc: failed to register nfsaclv3 RPC service (errno 111). [ 960.952724][T21893] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3188'. [ 961.428832][T21884] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC:0 is already present [ 961.535613][T21908] openvswitch: ovs_: Dropping previously announced user features [ 962.770182][T21925] vhci_hcd: invalid port number 242 [ 962.775441][T21925] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 963.296830][ T30] audit: type=1800 audit(4294967393.007:40): pid=21935 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3196" name="dummy_udc" dev="gadgetfs" ino=7188 res=0 errno=0 [ 964.465261][T21956] [U]  [ 964.468110][T21956] [U] [ 964.470826][T21956] [U] [ 964.473535][T21956] [U] [ 964.488895][T21954] vhci_hcd: invalid port number 242 [ 964.489728][T21956] [U] [ 964.494119][T21954] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 964.496816][T21956] [U] [ 964.506886][T21956] [U] [ 964.509607][T21956] [U] [ 964.550725][T21959] [U] [ 965.481628][T21968] openvswitch: ovs_: Dropping previously announced user features [ 966.149104][T21982] Invalid ELF header magic: != ELF [ 967.602361][T22002] vhci_hcd: invalid port number 242 [ 967.623304][T22002] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 967.885416][T22011] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 969.148395][T22027] svc: failed to register nfsdv3 RPC service (errno 111). [ 969.166443][T22027] svc: failed to register nfsaclv3 RPC service (errno 111). [ 969.595159][T22029] svc: failed to register nfsdv3 RPC service (errno 111). [ 969.615800][T22029] svc: failed to register nfsaclv3 RPC service (errno 111). [ 969.693545][T17762] Bluetooth: hci2: command 0x0406 tx timeout [ 969.829557][T22037] Invalid ELF header magic: != ELF [ 970.043813][T22038] Invalid ELF header magic: != ELF [ 970.917778][T22060] [U]  [ 970.920643][T22060] [U] [ 970.923367][T22060] [U] [ 970.926082][T22060] [U] [ 971.003364][T22062] [U] [ 971.480218][T22065] ubi0: attaching mtd0 [ 971.507573][T22065] ubi0: scanning is finished [ 971.599174][T22065] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 971.697600][T22066] openvswitch: .SR: Dropping previously announced user features [ 971.804458][T22069] Invalid ELF header magic: != ELF [ 971.828229][T22065] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 972.443890][T22078] svc: failed to register nfsdv3 RPC service (errno 111). [ 972.471429][T22078] svc: failed to register nfsaclv3 RPC service (errno 111). [ 972.611728][T22076] vhci_hcd: invalid port number 242 [ 972.659664][T22076] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 973.848658][T22098] Invalid ELF header magic: != ELF [ 974.644970][T22117] [U]  [ 974.647856][T22117] [U] [ 974.650576][T22117] [U] [ 974.653362][T22117] [U] [ 974.710565][T22117] [U] [ 974.713335][T22117] [U] [ 974.716051][T22117] [U] [ 974.718775][T22117] [U] [ 974.794659][T22118] [U] [ 977.024452][T22143] FAULT_INJECTION: forcing a failure. [ 977.024452][T22143] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 977.038159][T22143] CPU: 1 UID: 0 PID: 22143 Comm: syz.2.3237 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 977.038196][T22143] Tainted: [U]=USER [ 977.038204][T22143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 977.038218][T22143] Call Trace: [ 977.038226][T22143] [ 977.038235][T22143] dump_stack_lvl+0x16c/0x1f0 [ 977.038258][T22143] should_fail_ex+0x512/0x640 [ 977.038278][T22143] _copy_from_user+0x2e/0xd0 [ 977.038297][T22143] core_sys_select+0x35a/0xbe0 [ 977.038315][T22143] ? __pfx_core_sys_select+0x10/0x10 [ 977.038331][T22143] ? proc_fail_nth_write+0x9f/0x250 [ 977.038366][T22143] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 977.038390][T22143] kern_select+0x15d/0x1e0 [ 977.038402][T22143] ? __pfx_kern_select+0x10/0x10 [ 977.038418][T22143] ? __pfx_ksys_write+0x10/0x10 [ 977.038431][T22143] ? rcu_is_watching+0x12/0xc0 [ 977.038449][T22143] __x64_sys_select+0xbd/0x160 [ 977.038460][T22143] ? do_syscall_64+0x91/0x230 [ 977.038479][T22143] ? lockdep_hardirqs_on+0x7c/0x110 [ 977.038496][T22143] do_syscall_64+0xcd/0x230 [ 977.038516][T22143] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 977.038531][T22143] RIP: 0033:0x7f6dba98e969 [ 977.038543][T22143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 977.038556][T22143] RSP: 002b:00007f6dbb828038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 977.038570][T22143] RAX: ffffffffffffffda RBX: 00007f6dbabb6160 RCX: 00007f6dba98e969 [ 977.038579][T22143] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 977.038587][T22143] RBP: 00007f6dbb828090 R08: 0000000000000000 R09: 0000000000000000 [ 977.038595][T22143] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001 [ 977.038603][T22143] R13: 0000000000000000 R14: 00007f6dbabb6160 R15: 00007ffdfc4f4978 [ 977.038621][T22143] [ 977.655610][T22150] [U]  [ 977.658481][T22150] [U] [ 977.661211][T22150] [U] [ 977.663939][T22150] [U] [ 977.702019][T22150] [U] [ 977.704779][T22150] [U] [ 977.707517][T22150] [U] [ 977.710247][T22150] [U] [ 977.723962][T22154] [U] [ 978.649753][T22166] svc: failed to register nfsdv3 RPC service (errno 111). [ 978.727732][T22166] svc: failed to register nfsaclv3 RPC service (errno 111). [ 980.451643][T22177] Invalid ELF header magic: != ELF [ 980.907231][T22196] openvswitch: ovs_: Dropping previously announced user features [ 983.567089][T22221] FAULT_INJECTION: forcing a failure. [ 983.567089][T22221] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 983.649775][T22221] CPU: 1 UID: 0 PID: 22221 Comm: syz.4.3253 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 983.649818][T22221] Tainted: [U]=USER [ 983.649827][T22221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 983.649841][T22221] Call Trace: [ 983.649850][T22221] [ 983.649859][T22221] dump_stack_lvl+0x16c/0x1f0 [ 983.649896][T22221] should_fail_ex+0x512/0x640 [ 983.649928][T22221] _copy_to_user+0x32/0xd0 [ 983.649968][T22221] simple_read_from_buffer+0xcb/0x170 [ 983.650006][T22221] proc_fail_nth_read+0x197/0x270 [ 983.650041][T22221] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 983.650077][T22221] ? rw_verify_area+0xcf/0x680 [ 983.650110][T22221] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 983.650144][T22221] vfs_read+0x1de/0xc70 [ 983.650173][T22221] ? __pfx___mutex_lock+0x10/0x10 [ 983.650205][T22221] ? __pfx_vfs_read+0x10/0x10 [ 983.650238][T22221] ? __fget_files+0x20e/0x3c0 [ 983.650272][T22221] ksys_read+0x12a/0x240 [ 983.650296][T22221] ? __pfx_ksys_read+0x10/0x10 [ 983.650330][T22221] do_syscall_64+0xcd/0x230 [ 983.650364][T22221] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 983.650389][T22221] RIP: 0033:0x7f418a58d37c [ 983.650408][T22221] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 983.650431][T22221] RSP: 002b:00007f418b398030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 983.650454][T22221] RAX: ffffffffffffffda RBX: 00007f418a7b5fa0 RCX: 00007f418a58d37c [ 983.650471][T22221] RDX: 000000000000000f RSI: 00007f418b3980a0 RDI: 0000000000000003 [ 983.650486][T22221] RBP: 00007f418b398090 R08: 0000000000000000 R09: 0000000000000000 [ 983.650501][T22221] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 983.650515][T22221] R13: 0000000000000001 R14: 00007f418a7b5fa0 R15: 00007ffe84cabbd8 [ 983.650549][T22221] [ 984.394534][T22232] svc: failed to register nfsdv3 RPC service (errno 111). [ 984.423291][T22232] svc: failed to register nfsaclv3 RPC service (errno 111). [ 984.735526][T22246] FAULT_INJECTION: forcing a failure. [ 984.735526][T22246] name failslab, interval 1, probability 0, space 0, times 0 [ 984.759681][T22246] CPU: 0 UID: 0 PID: 22246 Comm: syz.4.3260 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 984.759727][T22246] Tainted: [U]=USER [ 984.759735][T22246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 984.759749][T22246] Call Trace: [ 984.759757][T22246] [ 984.759767][T22246] dump_stack_lvl+0x16c/0x1f0 [ 984.759804][T22246] should_fail_ex+0x512/0x640 [ 984.759830][T22246] ? __kmalloc_noprof+0xbf/0x510 [ 984.759858][T22246] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 984.759896][T22246] should_failslab+0xc2/0x120 [ 984.759926][T22246] __kmalloc_noprof+0xd2/0x510 [ 984.759952][T22246] ? kasan_quarantine_put+0x10a/0x240 [ 984.759984][T22246] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 984.760028][T22246] genl_family_rcv_msg_doit+0xbf/0x2f0 [ 984.760054][T22246] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 984.760099][T22246] ? trace_cap_capable+0x18d/0x200 [ 984.760132][T22246] ? bpf_lsm_capable+0x9/0x10 [ 984.760157][T22246] ? security_capable+0x7e/0x260 [ 984.760182][T22246] ? ns_capable+0xd7/0x110 [ 984.760211][T22246] genl_rcv_msg+0x55c/0x800 [ 984.760238][T22246] ? __pfx_genl_rcv_msg+0x10/0x10 [ 984.760259][T22246] ? __pfx___dev_queue_xmit+0x10/0x10 [ 984.760285][T22246] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 984.760318][T22246] ? __lock_acquire+0xaa4/0x1ba0 [ 984.760356][T22246] netlink_rcv_skb+0x16a/0x440 [ 984.760388][T22246] ? __pfx_genl_rcv_msg+0x10/0x10 [ 984.760412][T22246] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 984.760461][T22246] ? __pfx_down_read+0x10/0x10 [ 984.760484][T22246] ? netlink_deliver_tap+0x1ae/0xd30 [ 984.760519][T22246] genl_rcv+0x28/0x40 [ 984.760551][T22246] netlink_unicast+0x53a/0x7f0 [ 984.760587][T22246] ? __pfx_netlink_unicast+0x10/0x10 [ 984.760617][T22246] ? __lock_acquire+0xaa4/0x1ba0 [ 984.760655][T22246] netlink_sendmsg+0x8d1/0xdd0 [ 984.760693][T22246] ? __pfx_netlink_sendmsg+0x10/0x10 [ 984.760738][T22246] ____sys_sendmsg+0xa95/0xc70 [ 984.760763][T22246] ? copy_msghdr_from_user+0x10a/0x160 [ 984.760793][T22246] ? __pfx_____sys_sendmsg+0x10/0x10 [ 984.760832][T22246] ___sys_sendmsg+0x134/0x1d0 [ 984.760864][T22246] ? __pfx____sys_sendmsg+0x10/0x10 [ 984.760936][T22246] __sys_sendmsg+0x16d/0x220 [ 984.760967][T22246] ? __pfx___sys_sendmsg+0x10/0x10 [ 984.761006][T22246] ? rcu_is_watching+0x12/0xc0 [ 984.761040][T22246] do_syscall_64+0xcd/0x230 [ 984.761073][T22246] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 984.761102][T22246] RIP: 0033:0x7f418a58e969 [ 984.761123][T22246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 984.761144][T22246] RSP: 002b:00007f418b398038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 984.761166][T22246] RAX: ffffffffffffffda RBX: 00007f418a7b5fa0 RCX: 00007f418a58e969 [ 984.761188][T22246] RDX: 0000000002000000 RSI: 0000200000000080 RDI: 0000000000000005 [ 984.761203][T22246] RBP: 00007f418b398090 R08: 0000000000000000 R09: 0000000000000000 [ 984.761218][T22246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 984.761231][T22246] R13: 0000000000000000 R14: 00007f418a7b5fa0 R15: 00007ffe84cabbd8 [ 984.761260][T22246] [ 985.675740][T22266] FAULT_INJECTION: forcing a failure. [ 985.675740][T22266] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 985.732419][T22266] CPU: 1 UID: 0 PID: 22266 Comm: syz.1.3262 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 985.732460][T22266] Tainted: [U]=USER [ 985.732469][T22266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 985.732483][T22266] Call Trace: [ 985.732491][T22266] [ 985.732501][T22266] dump_stack_lvl+0x16c/0x1f0 [ 985.732538][T22266] should_fail_ex+0x512/0x640 [ 985.732571][T22266] _copy_from_user+0x2e/0xd0 [ 985.732602][T22266] move_addr_to_kernel+0x65/0x170 [ 985.732630][T22266] __sys_connect+0xaf/0x170 [ 985.732656][T22266] ? __pfx___sys_connect+0x10/0x10 [ 985.732695][T22266] ? __pfx_ksys_write+0x10/0x10 [ 985.732718][T22266] ? rcu_is_watching+0x12/0xc0 [ 985.732751][T22266] __x64_sys_connect+0x72/0xb0 [ 985.732776][T22266] ? lockdep_hardirqs_on+0x7c/0x110 [ 985.732815][T22266] do_syscall_64+0xcd/0x230 [ 985.732850][T22266] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 985.732875][T22266] RIP: 0033:0x7f448ad8e969 [ 985.732894][T22266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 985.732917][T22266] RSP: 002b:00007f4488bf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 985.732941][T22266] RAX: ffffffffffffffda RBX: 00007f448afb6080 RCX: 00007f448ad8e969 [ 985.732957][T22266] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 985.732972][T22266] RBP: 00007f4488bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 985.732987][T22266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 985.733002][T22266] R13: 0000000000000000 R14: 00007f448afb6080 R15: 00007ffe3ea3ebd8 [ 985.733035][T22266] [ 987.831358][T22300] vhci_hcd: invalid port number 242 [ 987.866574][T22300] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 988.630941][T22311] svc: failed to register nfsdv3 RPC service (errno 111). [ 988.746146][T22311] svc: failed to register nfsaclv3 RPC service (errno 111). [ 989.636399][T22316] Invalid ELF header magic: != ELF [ 989.781646][T22340] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 990.989375][T22356] svc: failed to register nfsdv3 RPC service (errno 111). [ 991.041777][T22356] svc: failed to register nfsaclv3 RPC service (errno 111). [ 991.276570][ T31] INFO: task syz.0.2786:19781 blocked for more than 143 seconds. [ 991.284803][ T31] Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 [ 991.294382][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 991.304673][ T31] task:syz.0.2786 state:D stack:26984 pid:19781 tgid:19778 ppid:18146 task_flags:0x400740 flags:0x00000004 [ 991.317198][ T31] Call Trace: [ 991.320481][ T31] [ 991.323405][ T31] __schedule+0x116f/0x5de0 [ 991.331648][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 991.345403][ T31] ? __pfx___schedule+0x10/0x10 [ 991.350784][ T31] ? find_held_lock+0x2b/0x80 [ 991.355657][ T31] ? schedule+0x2d7/0x3a0 [ 991.362904][ T31] schedule+0xe7/0x3a0 [ 991.367494][ T31] schedule_timeout+0x257/0x290 [ 991.376996][ T31] ? __pfx_schedule_timeout+0x10/0x10 [ 991.384787][ T31] ? rcu_is_watching+0x12/0xc0 [ 991.409454][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 991.432883][ T31] __wait_for_common+0x2fc/0x4e0 [ 991.498617][ T31] ? __pfx_schedule_timeout+0x10/0x10 [ 991.516133][ T31] ? __pfx___wait_for_common+0x10/0x10 [ 991.529288][ T31] ? __pfx_try_to_wake_up+0x10/0x10 [ 991.542294][ T31] ? rcu_is_watching+0x12/0xc0 [ 991.577813][ T31] wait_for_completion_state+0x1c/0x40 [ 991.615202][ T31] do_coredump+0x887/0x4480 [ 991.659120][ T31] ? __kernel_text_address+0xd/0x40 [ 991.696346][ T31] ? unwind_get_return_address+0x59/0xa0 [ 991.705826][ T31] ? __pfx_do_coredump+0x10/0x10 [ 991.712286][T22353] Invalid ELF header magic: != ELF [ 991.716280][ T31] ? stack_trace_save+0x8e/0xc0 [ 991.732645][ T31] ? __pfx_stack_trace_save+0x10/0x10 [ 991.738256][ T31] ? stack_depot_save_flags+0x28/0xa50 [ 991.743940][ T31] ? __lock_acquire+0xaa4/0x1ba0 [ 991.749168][ T31] ? kasan_save_stack+0x42/0x60 [ 991.754361][ T31] ? kasan_save_stack+0x33/0x60 [ 991.760678][ T31] ? kasan_save_track+0x14/0x30 [ 991.765737][ T31] ? kasan_save_free_info+0x3b/0x60 [ 991.771719][ T31] ? __kasan_slab_free+0x51/0x70 [ 991.776906][ T31] ? kmem_cache_free+0x2d4/0x4d0 [ 991.782011][ T31] ? __sigqueue_free+0xba/0x2a0 [ 991.787116][ T31] ? get_signal+0xcba/0x26d0 [ 991.791848][ T31] ? arch_do_signal_or_restart+0x8f/0x7a0 [ 991.797884][ T31] ? proc_coredump_connector+0x2d1/0x4f0 [ 991.803648][ T31] ? __pfx_proc_coredump_connector+0x10/0x10 [ 991.857812][ T31] ? rcu_is_watching+0x12/0xc0 [ 991.886344][ T31] get_signal+0x22e3/0x26d0 [ 991.898579][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 991.929938][ T31] ? __pfx_get_signal+0x10/0x10 [ 991.951014][ T31] ? force_sig_info_to_task+0x3a0/0x660 [ 991.966708][ T31] arch_do_signal_or_restart+0x8f/0x7a0 [ 991.972321][ T31] ? __pfx_force_exit_sig+0x10/0x10 [ 991.994968][ T31] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 992.009682][ T31] ? syscall_user_dispatch+0x12c/0x140 [ 992.027965][ T31] syscall_exit_to_user_mode+0x150/0x2a0 [ 992.033674][ T31] do_syscall_64+0xda/0x230 [ 992.060208][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 992.066169][ T31] RIP: 0033:0x7f4d96b8e969 [ 992.071668][ T31] RSP: 002b:00007f4d97a570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 992.080493][ T31] RAX: ffffffffffffffda RBX: 00007f4d96db6088 RCX: 00007f4d96b8e969 [ 992.088919][ T31] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f4d96db608c [ 992.097081][ T31] RBP: 00007f4d96db6080 R08: 00007f4d97a79000 R09: 0000000000000000 [ 992.105169][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4d96db608c [ 992.113199][ T31] R13: 0000000000000000 R14: 00007fffe83d6120 R15: 00007fffe83d6208 [ 992.121378][ T31] [ 992.134261][ T31] [ 992.134261][ T31] Showing all locks held in the system: [ 992.175480][ T31] 1 lock held by khungtaskd/31: [ 992.193233][ T31] #0: ffffffff8e3bf440 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0 [ 992.205519][ T31] 2 locks held by kworker/u9:3/5847: [ 992.210916][ T31] #0: ffff888025c86148 ((wq_completion)nbd0-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70 [ 992.222140][ T31] #1: ffffc900040bfd18 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70 [ 992.233737][ T31] 2 locks held by kworker/u9:5/5853: [ 992.251320][ T31] #0: ffff888025c93148 ((wq_completion)nbd1-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70 [ 992.271735][ T31] #1: ffffc900040ffd18 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70 [ 992.283349][ T31] 4 locks held by kworker/u8:24/13525: [ 992.293510][ T31] #0: ffff88801c2f6148 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70 [ 992.304575][ T31] #1: ffffc900192afd18 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70 [ 992.320072][ T31] #2: ffffffff90116c50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xc9/0xb30 [ 992.331508][ T31] #3: ffffffff9012cae8 (rtnl_mutex){+.+.}-{4:4}, at: mpls_net_exit+0x83/0x350 [ 992.343701][ T31] 2 locks held by getty/17367: [ 992.349469][ T31] #0: ffff8880359220a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 992.362986][ T31] #1: ffffc9000f1032f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0 [ 992.374284][ T31] 1 lock held by syz.0.2786/19779: [ 992.383681][ T31] 3 locks held by syz.4.3275/22350: [ 992.390171][ T31] #0: ffffffff90116c50 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x286/0x5f0 [ 992.403712][ T31] #1: ffffffff9012cae8 (rtnl_mutex){+.+.}-{4:4}, at: setup_net+0x3f9/0x850 [ 992.413887][ T31] #2: ffffffff8e3ca978 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x280/0x3c0 [ 992.430341][ T31] [ 992.433023][ T31] ============================================= [ 992.433023][ T31] [ 992.444696][ T31] NMI backtrace for cpu 0 [ 992.444718][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 992.444752][ T31] Tainted: [U]=USER [ 992.444760][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 992.444774][ T31] Call Trace: [ 992.444782][ T31] [ 992.444791][ T31] dump_stack_lvl+0x116/0x1f0 [ 992.444827][ T31] nmi_cpu_backtrace+0x27b/0x390 [ 992.444852][ T31] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 992.444883][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 992.444908][ T31] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 992.444937][ T31] watchdog+0xf70/0x12c0 [ 992.444974][ T31] ? __pfx_watchdog+0x10/0x10 [ 992.445003][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 992.445035][ T31] ? __kthread_parkme+0x19e/0x250 [ 992.445066][ T31] ? __pfx_watchdog+0x10/0x10 [ 992.445096][ T31] kthread+0x3c2/0x780 [ 992.445129][ T31] ? __pfx_kthread+0x10/0x10 [ 992.445164][ T31] ? __pfx_kthread+0x10/0x10 [ 992.445194][ T31] ? __pfx_kthread+0x10/0x10 [ 992.445225][ T31] ? __pfx_kthread+0x10/0x10 [ 992.445255][ T31] ? rcu_is_watching+0x12/0xc0 [ 992.445280][ T31] ? __pfx_kthread+0x10/0x10 [ 992.445312][ T31] ret_from_fork+0x45/0x80 [ 992.445334][ T31] ? __pfx_kthread+0x10/0x10 [ 992.445365][ T31] ret_from_fork_asm+0x1a/0x30 [ 992.445413][ T31] [ 992.445422][ T31] Sending NMI from CPU 0 to CPUs 1: [ 992.589747][ C1] NMI backtrace for cpu 1 [ 992.589767][ C1] CPU: 1 UID: 0 PID: 19779 Comm: syz.0.2786 Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 992.589798][ C1] Tainted: [U]=USER [ 992.589805][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 992.589817][ C1] RIP: 0010:__kasan_check_read+0x8/0x20 [ 992.589842][ C1] Code: 60 48 c7 c7 40 cf a3 8d 5b 5d 41 5c e9 31 e2 7a ff 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 0c 24 <89> f6 31 d2 e9 7f f0 ff ff 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f [ 992.589862][ C1] RSP: 0018:ffffc9000c8ef1e8 EFLAGS: 00000246 [ 992.589879][ C1] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffffff8b6fd7c1 [ 992.589892][ C1] RDX: 1ffff1100f2b9a1c RSI: 0000000000000008 RDI: ffffffff90866910 [ 992.589906][ C1] RBP: ffffc9000c8ef3a0 R08: 0000000000000001 R09: 0000000000000001 [ 992.589918][ C1] R10: ffffffff90866917 R11: 000000005ba0baaf R12: 0000000000000001 [ 992.589932][ C1] R13: ffffffff8b703a04 R14: ffffffff817553d0 R15: ffffc9000c8ef4b8 [ 992.589946][ C1] FS: 00007f4d97a786c0(0000) GS:ffff888124abf000(0000) knlGS:0000000000000000 [ 992.589966][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 992.589980][ C1] CR2: 0000200000db2000 CR3: 000000005d9b8000 CR4: 00000000003526f0 [ 992.589993][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 992.590006][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 992.590018][ C1] Call Trace: [ 992.590025][ C1] [ 992.590033][ C1] __schedule+0xe1/0x5de0 [ 992.590068][ C1] ? __pfx___schedule+0x10/0x10 [ 992.590099][ C1] ? preempt_schedule_thunk+0x16/0x30 [ 992.590120][ C1] ? __pfx_sha256_transform_rorx+0x10/0x10 [ 992.590146][ C1] preempt_schedule_common+0x44/0xc0 [ 992.590172][ C1] preempt_schedule_thunk+0x16/0x30 [ 992.590195][ C1] ? kernel_fpu_end+0x59/0x70 [ 992.590218][ C1] __local_bh_enable_ip+0x107/0x120 [ 992.590242][ C1] kernel_fpu_end+0x5e/0x70 [ 992.590264][ C1] _sha256_update+0xc3/0xf0 [ 992.590289][ C1] ima_calc_file_hash_tfm+0x300/0x3d0 [ 992.590310][ C1] ? __pfx_ima_calc_file_hash_tfm+0x10/0x10 [ 992.590347][ C1] ? stack_trace_save+0x8e/0xc0 [ 992.590370][ C1] ? ima_alloc_tfm+0x21a/0x2e0 [ 992.590402][ C1] ? generic_fillattr+0x6bf/0x940 [ 992.590429][ C1] ima_calc_file_hash+0x1ba/0x490 [ 992.590450][ C1] ima_collect_measurement+0x897/0xa40 [ 992.590475][ C1] ? __pfx_ima_collect_measurement+0x10/0x10 [ 992.590505][ C1] ? trace_contention_end+0xdd/0x130 [ 992.590533][ C1] ? __mutex_lock+0x1ca/0xb90 [ 992.590559][ C1] ? is_bad_inode+0xd/0x40 [ 992.590586][ C1] ? xattr_resolve_name+0x27b/0x3f0 [ 992.590618][ C1] ? vfs_getxattr_alloc+0xec/0x340 [ 992.590641][ C1] ? ima_get_hash_algo+0x27c/0x400 [ 992.590667][ C1] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 992.590697][ C1] ? process_measurement+0x11fa/0x23e0 [ 992.590725][ C1] process_measurement+0x11fa/0x23e0 [ 992.590758][ C1] ? __pfx_process_measurement+0x10/0x10 [ 992.590785][ C1] ? __lock_acquire+0x5ca/0x1ba0 [ 992.590811][ C1] ? init_file+0x93/0x4c0 [ 992.590833][ C1] ? alloc_empty_file+0x73/0x1e0 [ 992.590858][ C1] ? hugetlb_file_setup+0x4cd/0x620 [ 992.590883][ C1] ? ksys_mmap_pgoff+0x189/0x5c0 [ 992.590910][ C1] ? __x64_sys_mmap+0x125/0x190 [ 992.590953][ C1] ima_file_mmap+0x1b1/0x1d0 [ 992.590981][ C1] ? __pfx_ima_file_mmap+0x10/0x10 [ 992.591012][ C1] security_mmap_file+0x88c/0x990 [ 992.591039][ C1] vm_mmap_pgoff+0xec/0x450 [ 992.591068][ C1] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 992.591095][ C1] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 992.591122][ C1] ? hugetlbfs_get_inode+0x31f/0x730 [ 992.591151][ C1] ksys_mmap_pgoff+0x1c8/0x5c0 [ 992.591179][ C1] ? rcu_is_watching+0x12/0xc0 [ 992.591201][ C1] __x64_sys_mmap+0x125/0x190 [ 992.591223][ C1] do_syscall_64+0xcd/0x230 [ 992.591251][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 992.591272][ C1] RIP: 0033:0x7f4d96b8e969 [ 992.591288][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 992.591307][ C1] RSP: 002b:00007f4d97a78038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 992.591325][ C1] RAX: ffffffffffffffda RBX: 00007f4d96db5fa0 RCX: 00007f4d96b8e969 [ 992.591339][ C1] RDX: 00004000000000df RSI: 0080000000000004 RDI: 0000000000000000 [ 992.591352][ C1] RBP: 00007f4d96c10ab1 R08: 0000000000000402 R09: 0000300000000000 [ 992.591365][ C1] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000 [ 992.591384][ C1] R13: 0000000000000000 R14: 00007f4d96db5fa0 R15: 00007fffe83d6208 [ 992.591404][ C1] [ 992.591902][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 993.053576][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G U 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 993.066966][ T31] Tainted: [U]=USER [ 993.070765][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 993.080818][ T31] Call Trace: [ 993.084096][ T31] [ 993.087030][ T31] dump_stack_lvl+0x3d/0x1f0 [ 993.091642][ T31] panic+0x71c/0x800 [ 993.095563][ T31] ? __pfx_panic+0x10/0x10 [ 993.100006][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 993.105399][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 993.111385][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 993.116846][ T31] ? watchdog+0xdda/0x12c0 [ 993.121268][ T31] ? watchdog+0xdcd/0x12c0 [ 993.125715][ T31] watchdog+0xdeb/0x12c0 [ 993.129985][ T31] ? __pfx_watchdog+0x10/0x10 [ 993.134676][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 993.139889][ T31] ? __kthread_parkme+0x19e/0x250 [ 993.144924][ T31] ? __pfx_watchdog+0x10/0x10 [ 993.149615][ T31] kthread+0x3c2/0x780 [ 993.153694][ T31] ? __pfx_kthread+0x10/0x10 [ 993.158295][ T31] ? __pfx_kthread+0x10/0x10 [ 993.162889][ T31] ? __pfx_kthread+0x10/0x10 [ 993.167486][ T31] ? __pfx_kthread+0x10/0x10 [ 993.172083][ T31] ? rcu_is_watching+0x12/0xc0 [ 993.176845][ T31] ? __pfx_kthread+0x10/0x10 [ 993.181440][ T31] ret_from_fork+0x45/0x80 [ 993.185854][ T31] ? __pfx_kthread+0x10/0x10 [ 993.190471][ T31] ret_from_fork_asm+0x1a/0x30 [ 993.195263][ T31] [ 993.199743][ T31] Kernel Offset: disabled [ 993.204073][ T31] Rebooting in 86400 seconds..