last executing test programs: 12.206256257s ago: executing program 1 (id=1519): prctl$auto(0x29, 0x0, 0x0, 0x0, 0x0) (async, rerun: 32) r0 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x2, 0x0) (rerun: 32) read$auto(r0, 0x0, 0x0) 11.84821387s ago: executing program 1 (id=1521): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) unshare$auto(0x40000080) socket(0xa, 0x1, 0x84) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) socket(0x10, 0x2, 0x0) process_mrelease$auto(0xffffffffffffffff, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x8800) socket(0x1d, 0x2, 0x6) setsockopt$auto(0x3, 0x6a, 0x7, 0xffffffffffffffff, 0x3) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x0, 0x100000df, 0xd5a, 0x401, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0xa0900, 0x0) mincore$auto(0x1000, 0x8001, 0x0) fcntl$auto(0x8000000000000001, 0x7, 0x8) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) fcntl$auto(0x8000000000000001, 0x26, 0x8) close_range$auto(0x2, 0x8, 0x0) ptrace$auto(0x4206, 0x1, 0x0, 0x200005) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0xf000, 0x8, 0x1000000003, 0x9b72, 0x2, 0x8000) r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000100), 0x40040, 0x0) ioctl$auto_VHOST_SET_OWNER(r0, 0xaf01, 0x0) 7.779761967s ago: executing program 1 (id=1531): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) unshare$auto(0x40000080) socket(0xa, 0x1, 0x84) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) process_mrelease$auto(0xffffffffffffffff, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x8800) socket(0x1d, 0x2, 0x6) setsockopt$auto(0x3, 0x6a, 0x7, 0xffffffffffffffff, 0x3) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x0, 0x100000df, 0xd5a, 0x401, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0xa0900, 0x0) fcntl$auto(0x8000000000000001, 0x7, 0x8) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) fcntl$auto(0x8000000000000001, 0x26, 0x8) close_range$auto(0x2, 0x8, 0x0) ptrace$auto(0x4206, 0x1, 0x0, 0x200005) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0xf000, 0x8, 0x1000000003, 0x9b72, 0x2, 0x8000) r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000100), 0x40040, 0x0) ioctl$auto_VHOST_SET_OWNER(r0, 0xaf01, 0x0) 6.752952843s ago: executing program 2 (id=1535): r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) open(&(0x7f0000000100)='.\x00', 0x591083, 0x408) r1 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card0\x00', 0x20300, 0x0) ioctl$auto(r1, 0x64c5, r1) pipe$auto(&(0x7f0000000040)=r0) r2 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x1d, 0x2, 0x2) openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/bluetooth/hci7/hci7:201\x00', 0x4000, 0x0) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0) ioprio_set$auto(0x3, 0x0, 0x4b34) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x8081, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = open(0x0, 0xc0000, 0x1) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) r4 = socket(0x1d, 0x2, 0x2) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/bridge/bridge-nf-pass-vlan-input-dev\x00', 0x80200, 0x0) sendfile$auto(r5, r5, 0x0, 0x200) connect$auto(0x3, 0x0, 0x55) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) write$auto(0x3, 0x0, 0x5c8) socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x7, 0x16, 0x940, 0x1ffe0, 0x3, 0x6, 0x2, 0x9, 0x5, 0xfff, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, 0x1fe, 0x81) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYRESHEX=r2, @ANYRESDEC=r4], 0x3c}, 0x1, 0x0, 0x0, 0x20008001}, 0x4080000) r6 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r3, &(0x7f0000000480)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x54, 0x0, 0x8, 0x70bd2a, 0x25dfdbfc, {}, [@ETHTOOL_A_CHANNELS_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}]}, @ETHTOOL_A_CHANNELS_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x4008010}, 0x0) sendmmsg$auto(r6, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) fcntl$auto(0x0, 0x407, 0x100000) madvise$auto(0x4, 0xffffffffffff0005, 0x19) 5.622852926s ago: executing program 0 (id=1536): close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002) memfd_create$auto(&(0x7f0000000000)='^[#@-\x00', 0x3) openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/buffer_percent\x00', 0x1, 0x0) open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/fb0\x00', 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa001, 0x0) openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fb, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x1, 0x3, 0x11000000, 0x0, 0x7, 0x200000006d3c, 0x7ff, 0x10, 0xfffffffffffffffd]}, 0x0) 5.619201608s ago: executing program 1 (id=1537): socket$nl_generic(0x10, 0x3, 0x10) shutdown$auto(0xffffffffffffffff, 0x0) getsockopt$auto(0x3, 0x200000000001, 0x1f, 0x0, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0) write$auto_fuse_dev_operations_fuse_i(r0, &(0x7f0000000440)="110000000400000000000000", 0xc) openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) bpf$auto(0x14, &(0x7f0000000000)=@info={0x2800, 0x1ff, 0x2000000002}, 0xcf) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) write$auto(0x800000000000c8, 0x0, 0x1a) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) mmap$auto(0xffb3, 0x8, 0xdf, 0x1ff, 0x2, 0x8001) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) capset$auto(0x0, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r3, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r3, 0x7a0, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r3, 0x7a0, 0x6) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0x11, 0x0) fsconfig$auto(0xffffffffffffffff, 0x8, 0x0, 0x0, 0x0) open(0x0, 0x4242, 0xe1d2b27bdc14aabc) 5.063394161s ago: executing program 0 (id=1538): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/icmp6\x00', 0x0, 0x0) mmap$auto(0xfffffffffffffffc, 0x2020009, 0x7f, 0x200000000eb1, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0x18, 0x17) futex_requeue$auto(0x0, 0x80, 0xfefffc02, 0x101) r1 = fsmount$auto(0xffffffffffffffff, 0x81, 0xc185) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) socket(0x1d, 0x2, 0x6) r2 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r3, 0xfd}, 0x6a) sendmsg$auto_ETHTOOL_MSG_PLCA_GET_STATUS(0xffffffffffffffff, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f00000003c0)=ANY=[@ANYRES64=r1, @ANYRES64, @ANYRESHEX=r0, @ANYRES32=r4, @ANYRES8=r0, @ANYBLOB="6a0aaa657d8cbb72b50df8f8a78113d9468869cf9547d2f1af52823d8b41761e710ef6e28e50e1af0b3dd59ef425126e8fc2466df99856ee83b95961a644f9b291da65c648a9f82767af00e1c5a3fc9010304a18aae6a0504ae301d493990c0dc3f8343518d83fc4566b0598ef9b6f615f3470697f52beb9f598364089242acc171d7dec9d", @ANYBLOB="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"], 0x14}, 0x1, 0x0, 0x0, 0x24004000}, 0x200808c1) r5 = openat$auto_tracing_mark_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_marker\x00', 0x201, 0x0) writev$auto(r5, &(0x7f0000001040)={0x0, 0x7fff}, 0x9) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vcsa1\x00', 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="01002abd7000fcdbdf25280f5cede4961f7f38ce1e1ed813dd7c3aba0015f54253c8f213012c319b7807638d2149b0eb712355626366f4"], 0x14}, 0x1, 0x0, 0x0, 0x44805}, 0x20004000) sendmsg$auto_ETHTOOL_MSG_MM_SET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4008084}, 0x200080d1) write$auto_vcs_fops_vc_screen(r7, &(0x7f00000001c0), 0x0) unshare$auto(0x40000080) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0xd091) mmap$auto(0xffffffffffffffff, 0x400009, 0xdf, 0x9b72, 0x2, 0x10000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x4020009, 0xdc, 0xeb1, r6, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) read$auto_tun_fops_tun(0xffffffffffffffff, &(0x7f0000000340)=""/72, 0x48) ioctl$auto_TIOCSSERIAL(0xffffffffffffffff, 0x541e, &(0x7f00000001c0)="d833a386fb2560a7eabf0f17a96866bfec7d0b3b3c20d3a89241e0e801d9c9e35867267f64d7d26399efc70be0e9c1e66ac894ae1b5f26d8e2e2313e48aa3245b74ac30fbf39af1bb6093ca9f9cdd7df0299f166f1701bff4c44e37f350079d33a720b427ce86d347e88f6b1bd9a66fd0fd9090995172178b6182dbfc34e090995d292d730f03261129615a44cd0bce51de4204ac892b3a1c0a276a0b600048bb7bb36d57e21f41dfed0dfcdc44ae336e9a99e114cdf7c3086ef710c9a561ce42a888ac26a4da045809732c6f2055bc572e355d49a5cd0fe2b69fb2f365b6da70b3f749bf7a3002acec0f8") madvise$auto(0x0, 0x600007, 0x19) pread64$auto(r0, 0x0, 0xd, 0x80000000000b) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa3182, 0x0) 4.955235901s ago: executing program 2 (id=1539): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) unshare$auto(0x40000080) socket(0xa, 0x1, 0x84) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) socket(0x10, 0x2, 0x0) process_mrelease$auto(0xffffffffffffffff, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x8800) socket(0x1d, 0x2, 0x6) setsockopt$auto(0x3, 0x6a, 0x7, 0xffffffffffffffff, 0x3) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x0, 0x100000df, 0xd5a, 0x401, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0xa0900, 0x0) mincore$auto(0x1000, 0x8001, 0x0) fcntl$auto(0x8000000000000001, 0x7, 0x8) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) fcntl$auto(0x8000000000000001, 0x26, 0x8) close_range$auto(0x2, 0x8, 0x0) ptrace$auto(0x4206, 0x1, 0x0, 0x200005) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0xf000, 0x8, 0x1000000003, 0x9b72, 0x2, 0x8000) r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000100), 0x40040, 0x0) ioctl$auto_VHOST_SET_OWNER(r0, 0xaf01, 0x0) 4.580438921s ago: executing program 3 (id=1540): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x734f, 0x36, 0x67f, 0x1ffde, 0x7, 0x3, 0x20000002, 0xd, 0x3, 0x1, 0x2091, 0xb4, 0x9, 0x6, 0x6, 0x80, 0x4, 0x1cd7, 0x1000, 0x2000, 0x203, 0x0, 0x84}, 0x1fe, 0xd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x8040) keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8) keyctl$auto(0x1d, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x8) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/zswap/parameters/enabled\x00', 0x62, 0x0) write$auto(r0, &(0x7f0000000440)='O\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf0F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\xed\'\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0xb8c5) open(&(0x7f0000000100)='.\x00', 0x591002, 0x408) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000140), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0) read$auto(r1, 0x0, 0x6) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) init_module$auto(0x0, 0xffff9, 0x0) socket(0x2, 0x5, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) timer_create$auto(0x2, 0x0, 0x0) unshare$auto(0x200) r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000240)='ns/pid_for_children\x00') setns(r3, 0x0) syz_clone(0x98280000, 0x0, 0x0, 0x0, 0x0, 0x0) setpriority$auto(0x1, 0x0, 0x2) select$auto(0x1ff, 0x0, &(0x7f0000000080)={[0x209c, 0xe9e, 0x1000000000000005, 0x9, 0x250, 0x100000001, 0x275, 0x4dec, 0x1, 0x3f, 0xd, 0xd59, 0x6, 0xff, 0x21, 0x6]}, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) 4.502470848s ago: executing program 1 (id=1541): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000c00), r0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x0) sendmsg$auto_TCP_METRICS_CMD_DEL(r0, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000000)={0x14, r1, 0x901, 0x70bd27, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x40) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/devices/platform/dummy_hcd.1/usb2/bcdDevice\x00', 0x200, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000100)=""/246, 0xf6) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(r3, &(0x7f00000004c0)='-,,\x1a,#)[\'\xef\xf0(\x00', 0x8000000000000000) capget$auto(0x0, 0xfffffffffffffffe) r4 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/ext4/sda1/fc_info\x00', 0x800, 0x0) read$auto_fake_panic_fops_(r4, &(0x7f0000000040)=""/246, 0xf6) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/can/rcvlist_eff\x00', 0xb00, 0x0) pread64$auto(r5, 0x0, 0x594c, 0x9fffffffd) r6 = socket(0x26, 0x1, 0x2) setsockopt$auto(r6, 0x10f, 0x87, 0x0, 0x14) write$auto(r6, 0x0, 0x9) sendmsg$auto_GTP_CMD_DELPDP(r6, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="440000003f824ea5153c4856f0af0b87dc544e7946d49190", @ANYRES16=0x0, @ANYBLOB="000229bd7000fddbdf2501000000080004007f000001060006000700000014000c00000000000000000000000000000000010c0003000100010000000000"], 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x4000800) capset$auto(0x0, &(0x7f0000000180)={0x1, 0x7, 0x6}) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r9 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000003680)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_NEW_KEY(r9, &(0x7f00000048c0)={0x0, 0x0, &(0x7f0000004880)={&(0x7f0000000140)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010029bd7000fddbdf250a00000008000300", @ANYRES32=r10, @ANYBLOB="05003901"], 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x20000094) r11 = geteuid() sendmsg$auto_NL80211_CMD_SET_PMKSA(r6, &(0x7f0000000480)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="28020000", @ANYRES16=r8, @ANYBLOB="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", @ANYRES32=r11, @ANYBLOB="0400f300075055f18616fa6380691279d357dced7f660a588e7279b86663c56eb98a890388f36528a7c9417d8397b341e48d162fa95f0c18e617e6c51da2d297283b0334d8428b66607fff01b3d5cbc87a28f65319163de3a51a40d74443d6b05927b368eac65018f229c37c7612b9e29dfe2d593b729116374c7381ce19220c1b10181fb9ad66b64c170cd8367cd3dfe71f89ca39077005e0b59d34b206347eb3a3c0d10aaece4fc79baf03b59621b0323236b17b86e6409643ca556a5fe8382f65c8ea9170e5fea0eb6d988ad6560aa025faa89311260000000a00f9000b"], 0x228}, 0x1, 0x0, 0x0, 0x1}, 0xc0d5) ioctl$auto(r6, 0x4f51, r6) 4.309771188s ago: executing program 1 (id=1542): write$auto(0x800000000000c8, 0x0, 0x1a) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) shutdown$auto(0x200000003, 0x2) socket(0xa, 0x801, 0x106) setsockopt$auto(0x3, 0x6, 0x9, 0x0, 0xfb3) set_mempolicy$auto(0x8003, &(0x7f0000000280)=0x200000007b, 0x4) r0 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000002f80)='/dev/fuse\x00', 0x60000, 0x0) ioctl$auto_FUSE_DEV_IOC_BACKING_OPEN(r0, 0x4010e501, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000380)='/dev/cuse\x00', 0x0, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x40000000c07) madvise$auto(0x0, 0xffffffffffff0005, 0x19) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88\xf5s\x1cJ\x99\x8a>c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000100), 0x20400, 0x0) r2 = epoll_create$auto(0x3e) r3 = socket(0xa, 0x2, 0x3a) epoll_ctl$auto(r2, 0x1, r1, 0x0) renameat2$auto(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x4000) ioctl$auto_SNDRV_RAWMIDI_IOCTL_PVERSION(r2, 0x80045700, &(0x7f0000000200)=0xfff) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x800eb1, r3, 0x8000) r4 = openat$auto_bm_register_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000000), 0x2480, 0x0) io_uring_setup$auto(0x7, &(0x7f0000000040)={0x5, 0x3ff, 0x5968, 0xfffffffd, 0x1, 0x8, r4, [0xf5, 0x1, 0xf76], {0x3, 0x8, 0x5, 0x9, 0xfffffffa, 0x5, 0x156c, 0x7, 0x83}, {0x7ff, 0x13, 0x3b, 0x8, 0x5, 0x553, 0x3, 0x9, 0x4}}) keyctl$auto(0x7ff, 0x0, 0xee01, 0x0, 0x0) keyctl$auto(0x15, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x8) move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) mmap$auto(0x1, 0x20009, 0x4000000000e3, 0x17, 0x401, 0x8003) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) mmap$auto(0x0, 0xfffffffffffffffe, 0xdf, 0xeb1, 0x401, 0x7ffc) unshare$auto(0x40000080) 4.221292805s ago: executing program 3 (id=1543): bind$auto(0xffffffffffffffff, 0x0, 0x66) openat$auto_tracing_saved_cmdlines_fops_trace(0xffffffffffffff9c, 0x0, 0xa00, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) madvise$auto(0x0, 0xfffffffffffefffd, 0x17) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = open(0x0, 0x591002, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) vmsplice$auto(r1, 0x0, 0x2, 0x5) read$auto(r0, 0x0, 0x6) writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x7}, 0x3) ppoll$auto(0x0, 0x3, 0x0, 0x0, 0x8) unshare$auto(0x40000080) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) mprotect$auto(0x8000, 0x8, 0x8) close_range$auto(0x2, 0x8, 0x0) fstatfs$auto(0x0, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x7, 0x5, 0xeb1, 0x404, 0x1000000007ffe) r2 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$auto(r2, 0x5ed, 0x37, 0x0, 0x0) write$auto(0xca, &(0x7f0000000000)='\x04>\x01\x01\x00\x00\x00\x01\x00\xb6', 0x7f) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r3, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0ddb4819e9d0362e4c6665ebec7c20c8b93404a6a700f655f87069b26220ce350eff6ec77dcf91ec9fe27ae9db156e935ee3248ea553cdb38dbb029651e49f16b400f631fa", @ANYRES32=r5, @ANYBLOB="0800130000020000"], 0x28}, 0x1, 0x0, 0x0, 0x4089c}, 0x4004010) unshare$auto(0x40000080) open_by_handle_at$auto(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x1b}, 0x403) 3.646488188s ago: executing program 2 (id=1544): sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x78002, 0x0) write$auto(0x3, 0x0, 0x7fffffff) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/controlC2\x00', 0x80, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_TLV_COMMAND(r0, 0x5452, &(0x7f0000000080)={0x80, 0xbed0}) read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, 0x0, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptyq2\x00', 0x20000, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x240000c5}, 0x2000800) close_range$auto(0x2, 0x8, 0x7) io_uring_setup$auto(0x6, 0x0) r1 = socket(0x10, 0x2, 0x9) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200", @ANYBLOB="5de1523353"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x4, &(0x7f00000002c0)={0x0, 0x100008000c4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0xffffffff) r2 = io_uring_setup$auto(0x4, 0x0) close_range$auto(0x2, r2, 0x0) ioctl$auto_SG_EMULATED_HOST2(r2, 0x2203, &(0x7f0000000340)="7a804e159ec66f0efe1ee62db3b29ad1267a080aef1c499dc2cc2aaa53e7fd11838b45c824d4aaa60d607d4ccd295d24ac7444c3d1588aba552962887ff9aec8a4896a1d7b5f7a6a3684a9ac555621245f590d1e3875049dc188f916c697e7d4a06fdf3b9905afc634d7c3260c3efa60c789755df27e07f6e37b9c9ad3ba9bd7037102eb335a0f0641f270e07a7ef2094d34729969b22ffe00e7358597b0f63685813e6c24e2f3987630cb313466ef1ea177131e2ac58395fc6f478cfee6fc492f97ca47db78bfb7091884b3747f461962") openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0xb5bd, 0xe2, 0xeb5, r1, 0x8d9) mmap$auto(0x0, 0x810006, 0xffb, 0x8000000008011, 0x3, 0x8000) write$auto(0x3, 0x0, 0x100082) creat$auto(0x0, 0x81) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x400442, 0x0) write$auto(0x3, 0x0, 0x100082) readv$auto(0x3, &(0x7f00000001c0)={0x0, 0xf7}, 0x7) r3 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x4601, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0}, 0x7, 0x8, 0x5) preadv2$auto(0x3, &(0x7f0000000140)={0x0, 0x9}, 0x5, 0xffffffffffffffff, 0x7, 0x800002e) 2.917972232s ago: executing program 2 (id=1545): setreuid$auto(0x0, 0x20000000004) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x5) r0 = io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtd0ro\x00', 0x618240, 0x0) ioctl$auto_MEMISLOCKED(r1, 0x80084d17, &(0x7f0000000080)={0xfffffffc, 0x4f90}) close_range$auto(0x2, 0xa, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x1ffff000, 0x7, 0x100000000) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2) shmget$auto(0x8, 0x10563, 0x568d1af2) madvise$auto(0x0, 0xffffffffffff0004, 0x19) sendmsg$auto_IPVS_CMD_SET_CONFIG(r0, 0x0, 0x4c0a4) shmctl$auto(0x0, 0x0, 0xfffffffffffffffd) lsm_set_self_attr$auto(0x1, 0x0, 0x80, 0x0) io_setup$auto(0x1, 0x0) close_range$auto(0x2, 0x8000, 0x0) unshare$auto(0x10001) 2.624897322s ago: executing program 2 (id=1546): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = prctl$auto_PR_SET_VMA_ANON_NAME(0x4, 0x0, 0x0, 0x7a, 0x7) writev$auto(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x3}, 0x8) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) futex_requeue$auto(&(0x7f0000000080)={0x3, 0x39c3c00000000, 0xdd54}, 0x80800001, 0x1007fc, 0x80042001) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0xa2741, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/swaps\x00', 0x0, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="5e0027617c36720add70ab0343990f7d0bbc96dc0b"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) recvfrom$auto(0x3, 0x0, 0x2395, 0x40000100, 0x0, 0xfffffffffffffffd) epoll_create$auto(0x200) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) socket(0xa, 0x2, 0x0) socket(0xa, 0x3, 0xff) io_uring_setup$auto(0x3, 0x0) 2.478877632s ago: executing program 0 (id=1547): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x2, 0x801, 0x100) sendmsg$auto_IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, 0x0, 0x4048014) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) connect$auto(0x3, &(0x7f00000018c0), 0x55) readv$auto(r1, &(0x7f0000000480)={&(0x7f0000000440)="a22a7dee0c", 0x101}, 0x3) shutdown$auto(0x200000003, 0x2) sendmmsg$auto(0x3, 0x0, 0x2, 0x9) bind$auto(0x3, 0x0, 0x68) connect$auto(0x3, 0x0, 0x55) r2 = socket(0x2, 0xa, 0xa) sendmmsg$auto(r2, &(0x7f0000000200)={{&(0x7f0000000140), 0x101, 0x0, 0x7, 0x0, 0x3, 0x1}, 0x7}, 0x8, 0x7fff) r3 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000080), r2) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT(r4, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000000)={0x38, r5, 0x1, 0x70bd25, 0x25dfdbfd, {}, [@NBD_ATTR_SOCKETS={0x10, 0x7, 0x0, 0x1, [@nested={0xc, 0x1, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@generic='\x00\x00\x00\x00']}]}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x6}, @NBD_ATTR_BACKEND_IDENTIFIER={0x6, 0xa, ',!'}]}, 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x8880) sendmsg$auto_OVS_VPORT_CMD_DEL(r2, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000000c0)={&(0x7f0000000ac0)={0x22d4, r3, 0x4, 0x70bd27, 0x25dfdbfd, {}, [@OVS_VPORT_ATTR_UPCALL_PID={0x1004, 0x5, "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"}, @OVS_VPORT_ATTR_UPCALL_STATS={0x12bb, 0xa, 0x0, 0x1, [@nested={0x83, 0x72, 0x0, 0x1, [@nested={0x4, 0x13e}, @nested={0x4, 0xa2}, @generic="856062327c503f1d40c7369af16dbd8645468326e2516a4e9bcfc3004e6bcdd9d84bd5a82a4e8a90068957b835073fcc39315345e9ff1075f060cd91da9d1c41c5e964afdb4316c413d69e464cfc52babe0f9db1630f07cf9e70aec982b73726caa353032342266fdfe1d7b9b11300e74a1f3400908c6c"]}, @nested={0xc7, 0x13, 0x0, 0x1, [@generic="57ae55387c6b0c1007d01ad232bbea456d28fc9e8b93df6100226b9ed2e26927548fc0bdcb8383567467c21222c0ed2c996b4a64268783abc23d60acb85295c652209a0002449c45b342cc2be14d24f9185617b577b2aa2c525b7b6ffee7de956d4130412841b4822a07349a7ac0975e401f07511ead547a7331abedcb81bd9022eed9c2187f7265d039fa4ea758ea65e22f6ce58a723af7", @typed={0x9, 0x107, 0x0, 0x0, @str='-^++\x00'}, @typed={0xc, 0x88, 0x0, 0x0, @u64=0x4}, @generic="316bcc0a6e4c42", @typed={0xc, 0x9f, 0x0, 0x0, @u64=0xfff}]}, @generic="d091d4f3c9eb9ebddae32bed521beedbff3c7dec7badd3", @typed={0x42, 0x4e, 0x0, 0x0, @binary="daaff32c126b6044c9354ff3a8c539c7ab45a2df72e50da0c3bdf316dcf005f97bb91c9934e3d3dc592c2777d32e76530593f5af2660dcf02dbdaaaa3dc5"}, @generic="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", @nested={0x8, 0x7f, 0x0, 0x1, [@nested={0x4, 0xa1}]}, @generic="32371fbeb246a6eb8df38a33e51813408ca283d9e955004fa00975bdde4bc9e5d9d90c80a3fac068b4d129653f5b3715773018e0888854d724706010b9f86b5d4d5fb1fc2dd2cb84bf03108baec70ac86474c4d4a0318b2792ff9e57bf9166ca944119c5639c2342536376271e07be4362671eb1446cb137d77198355d43e47932629ceb8b5c143170ee8d4f5b23fe7e0d9cedea4251ac69b6215d61473ccddba52058eaa788749cee087f001e487b85d06aa0a7273c5bf0f3e6", @generic="957580abc811db61512eeb3fe9dc9e90823232dfaf99d1ebca97e80e3f0c84845915ef932d92d3e37bbe5b5735ff1d653a265f51bd302c950506b00af128767fa6b0ad2e8d06ece1b7256072a3c1d6"]}]}, 0x22d4}, 0x1, 0x0, 0x0, 0x11}, 0x80) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'veth1_virt_wifi\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'pimreg0\x00', 0x0}) sendmsg$auto_OVS_VPORT_CMD_GET(r0, &(0x7f0000000400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000003c0)={&(0x7f0000000100)={0x2ac, r3, 0x908, 0x70bd26, 0x25dfdbff, {}, [@OVS_VPORT_ATTR_OPTIONS={0x28, 0x4, 0x0, 0x1, [@nested={0x18, 0x12d, 0x0, 0x1, [@typed={0x4, 0xc}, @typed={0x8, 0xd0, 0x0, 0x0, @u32=0x35573238}, @typed={0x8, 0x13c, 0x0, 0x0, @fd=r0}]}, @typed={0x8, 0x69, 0x0, 0x0, @fd=r0}, @typed={0x4, 0xe8}]}, @OVS_VPORT_ATTR_IFINDEX={0x8, 0x8, r6}, @OVS_VPORT_ATTR_NAME={0x6, 0x3, '%\x00'}, @OVS_VPORT_ATTR_NETNSID={0x8, 0x9, 0x10000}, @OVS_VPORT_ATTR_IFINDEX={0x8, 0x8, r7}, @OVS_VPORT_ATTR_OPTIONS={0x24d, 0x4, 0x0, 0x1, [@generic="59ea723c7d01ba7c33dc270081703d5a4f426590e7c8e8c7d4692c76cd0b3f5968939e68b65bc4ec54578106c06fa29f80cc636022116ca0aa5b25d19060a7196ca2bef6d0656e50ef0acfe601568bbfdc30cdcb65620c8e68636f654725820f116e95c652ccf168c512c81c8ba3606cd7cb9cb3ab06b7256095b5c0f6b6370c3ab8960f78baff1f12bbd0f1fc3c1f9812cddb65f4cdf9b8075163ccc8ca1521030aacbb3be208445f8a49ec17303d5d8f38874d841c5e6a47c7251f62726131d8e43db7f830b6de1068f513d3925861a9c13f963ced864f3e94d6a0541a85677e8859675e1fb2a55d5b1e221a2a8686043f67", @typed={0x8, 0xe0, 0x0, 0x0, @ipv4=@local}, @generic="2c58d26f8dc138f8cdee368e20ecaae8f0a1e74ae74a71cf6911e76802033d007f1e2aabff250303d843377a8f", @typed={0xc, 0x149, 0x0, 0x0, @u64=0x6}, @nested={0x88, 0x102, 0x0, 0x1, [@nested={0x4, 0x13f}, @generic="8139eba55d1cb9034d03a3973f07d4e75847d283666911b1fa1781b76f04675887c3b9d7710ed01b0f393eca5adca0124e89afcccaf6463820e60d2b502b64de8477235b76aea4160bd533d86ba814c304068403a35b8f3cff48136b4f2d7a26fb6234544e2b742ee769868f", @typed={0x14, 0x90, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}]}, @generic="29b41e0c6ed46fbdfcbfea986eb51db31636735f4f5b0739c442e3062dbf25dd46328b14611829b1c15d9acddb7d692580d5ea05cab319e92009425dfe0c5ff638171f4d8d1861845d8c2cd13713e653303b90af48c7c2dec29ed3187477e3cfa1cf9c9a1c627bc6683fdb3b45c6faa6046899d774b311b9c457bc5d935a10b41c", @typed={0xc, 0xed, 0x0, 0x0, @u64=0x6}]}]}, 0x2ac}, 0x1, 0x0, 0x0, 0x1}, 0x40000) r8 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sysvipc/shm\x00', 0x181640, 0x0) r9 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/trace_options\x00', 0x80201, 0x0) write$auto(r9, 0x0, 0x2) pread64$auto(r8, 0x0, 0x12a, 0x8) 2.01283151s ago: executing program 0 (id=1548): close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002) memfd_create$auto(&(0x7f0000000000)='^[#@-\x00', 0x3) openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/buffer_percent\x00', 0x1, 0x0) open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/fb0\x00', 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/sound/ctl-led/mic/card0/reset\x00', 0xa001, 0x0) openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fb, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x1, 0x3, 0x11000000, 0x0, 0x7, 0x200000006d3c, 0x7ff, 0x10, 0xfffffffffffffffd]}, 0x0) 1.812745879s ago: executing program 0 (id=1549): close_range$auto(0x2, 0xa, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x5c, r1, 0x1, 0x70bd2d, 0x25dfdbf9, {}, [@L2TP_ATTR_ENCAP_TYPE={0x6}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x10}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x211e789c}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x8}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @ipv4={'\x00', '\xff\xff', @empty=0x1000000}}, @L2TP_ATTR_IP6_DADDR={0x14, 0x20, @ipv4={'\x00', '\xff\xff', @local}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x400c004) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000080)={0x124, r1, 0x400, 0x70bd2d, 0x25dfdbfe, {}, [@L2TP_ATTR_LNS_MODE={0x5, 0x14, 0x5}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0xa7a7}, @L2TP_ATTR_DATA_SEQ={0x5, 0x4, 0x4}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0xff7f}, @L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0x267}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x13}, @L2TP_ATTR_USING_IPSEC={0x5, 0x15, 0x9}, @L2TP_ATTR_L2SPEC_LEN={0x5, 0x6, 0x5}, @L2TP_ATTR_NONE={0xc4, 0x0, "d61445ecc5a5bfe103f3f58915217bf39461a02595c2a2ad45d8b23dfc4ec2c45cf42689726bccc959b1f5fe1e3f7028dcc92c6b688f3681fb070bd0e7e590fae8ae3087cf26d99b1c9ec58ee90c620041ab26aa6f91fbc1263055d0d13befaae26ae854bf77693409e84f66943d40a8fc13f3700420ca6eb11a30a9c819447cee20e2482cf55954c9b6ba4b7397da9e4d019b020de6ebb64b95e010c89e9b686cbdc93a58a1287357b9dd22af12b0eff0227349e17a9808bb00310265045d65"}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0xe}]}, 0x124}, 0x1, 0x0, 0x0, 0x20040040}, 0xc000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/v4l-subdev3\x00', 0x0, 0x0) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) ioctl$auto(0x3, 0xc0305602, 0x38) 1.575796251s ago: executing program 3 (id=1550): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x9, 0x400004, 0xe3, 0x9b72, 0x2, 0x7ffe) socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) pidfd_open$auto(0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/fib_trie\x00', 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_drm_crtc_crc_control_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000003500), 0x40002, 0x0) write$auto_drm_crtc_crc_control_fops_drm_debugfs_crc(r0, &(0x7f0000003540)='\n', 0x1) mmap$auto(0x0, 0xe983, 0xdf, 0x17, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) wait4$auto(r1, 0x0, 0x2, 0x0) r2 = socket(0x2a, 0x2, 0x1) connect$auto(r2, &(0x7f00000000c0)=@qipcrtr={0x2a, 0xffffffff, 0xfffffffe}, 0x55) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xe, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3) r3 = socket(0xa, 0x2, 0x88) bpf$auto(0x9, &(0x7f00000000c0)=@bpf_attr_4={0x3, r3, 0x6}, 0x9) r4 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) read$auto(r4, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) statmount$auto(0x0, 0x0, 0x227, 0x0) sysfs$auto(0x2, 0x10000000000002a, 0x0) socket(0x2, 0x80002, 0x73) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop7/trace/act_mask\x00', 0x402, 0x0) write$auto(r5, &(0x7f0000000100)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C', 0x4) socket(0xa, 0x1, 0x84) 1.574022083s ago: executing program 0 (id=1551): mmap$auto(0x1, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x200000008000) semctl$auto(0x9, 0x4, 0x0, 0x4100000c40) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x2, 0x3ff) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, 0x0, 0x4000000) lseek$auto(0xffffffffffffffff, 0xacb, 0x7) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r0 = prctl$auto(0x45, 0x17, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/de\xe5\xec\x9c\xbe\xeb\xaf\x87X/2\xa6id-\x1av/audis1\x00\xe2\x1d|\xb0\'%\xb9\xe2Te\xd9nOl\xf2\xdd0\x04\xb62\x8e\x8dtB\xaaOs\x04+\xbdu\xeb\x93v<$\x93\xf3\b2\xc7\xb5\'\xc0S\x84\x1eo\xba\x12\x86\xf7\x91\xf5\x1e\x03v7\xdc\xd0\fT\x17\xf8\xbbdU\x02\x99R\x15J\xb50\x9e\xcad\a\x97\xd5\x12\x8c\xe8\x04y\xd0j\xc8\x8b\xa9)\xbbb\xbf\xc2\xdd\xd4T?\xbe\xf8z\xd0\xbd\x12\xdf\\\x1d|T\xd6\xeb\"Z\x99&\xd3\x1d\x99kY\xb5M\x05\xd8\x11\xd3\xec\xfe\xc8U', 0xa3d9) unshare$auto(0x40000080) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x1, 0x0) r3 = prctl$auto(0x39, 0x1, 0x0, 0x0, 0x0) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000240), 0x80400, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x73) fcntl$auto(0x0, 0x0, 0x8001) r4 = openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000580), 0x500, 0x0) ioctl$auto_BCH_IOCTL_FSCK_OFFLINE(r4, 0x4018bc13, &(0x7f00000005c0)={0x0, 0x6, 0x1, [0x0]}) ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f0000000040)) connect$auto(r2, &(0x7f0000000280)=@isdn={0x22, 0x4, 0x3, 0x80, 0x4}, 0xb49e) r5 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f00000004c0), 0x2202, 0x0) ioctl$auto_USB_RAW_IOCTL_EP0_WRITE(r5, 0x40085503, &(0x7f0000000600)={0xd, 0xfffd, 0x10}) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) setresgid$auto(0x0, 0xee01, 0xffffffffffffffff) r6 = getegid() ioctl$auto_XFS_IOC_SWAPEXT(r3, 0xc0c0586d, &(0x7f0000000180)={0x7, @raw=0x4, @inferred=r3, 0x3c, 0x3, '\x00', {0x4, 0xff, 0xa, 0x0, r6, 0x8, 0x7, 0x9, {0x4, 0x5}, {0x40, 0x169}, {0x6, 0x6}, 0x0, 0x5c, 0x7fffffff, 0x40, 0x5, 0x800, 0x8, 0x5, 0x7, 0x81, '\x00', 0x5, 0x1, 0x8, 0x100}}) setregid$auto(r6, r6) close_range$auto(0x2, 0x8, 0x0) r7 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x100e42, 0x0) ioctl$auto_SG_GET_REQUEST_TABLE(r7, 0x2286, 0x0) 797.583899ms ago: executing program 3 (id=1552): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) fcntl$auto_F_SETOWN_EX(r0, 0xf, 0x87) 529.496871ms ago: executing program 3 (id=1553): mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x200, 0x2010000000000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x10, 0x2, 0x14) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14af"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xffffffffffffff14, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r0], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x200440c0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vcsa1\x00', 0x1, 0x0) write$auto(0x3, 0x0, 0xfffffdef) sendmsg$auto_MACSEC_CMD_DEL_RXSA(0xffffffffffffffff, 0x0, 0x20004010) openat$auto_component_list_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0x200000c4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB], 0x1ac}}, 0x40000) r2 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r2, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x6, 0x1}, 0x5}, 0x3, 0x0) 272.514963ms ago: executing program 3 (id=1554): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = io_uring_setup$auto(0x6, 0x0) close_range$auto(r0, r0, 0x5) mq_open$auto(&(0x7f0000000000)='.\xf1e4\xdf\x16\x95kxE\xd9x\x15\xb0\xf6V\x93\xb4E\x06\xc5}l', 0x400056a, 0x9, 0x0) ftruncate$auto(0x3, 0x700) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0xa, 0x0) r1 = socket(0xf, 0x2, 0x0) r2 = socket(0xa, 0x3, 0x2) connect$auto(r2, &(0x7f00000018c0)=@generic={0xa}, 0x55) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x139000, 0x3f) madvise$auto(0x1ffff000, 0x7, 0x100000000) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2) shmget$auto(0x8, 0x10563, 0x568d1af2) r3 = socket(0xa, 0x801, 0x84) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) setsockopt$auto(r3, 0x10000000084, 0x21, 0x0, 0x13) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r4 = socket(0x2, 0x5, 0x0) semctl$auto(0x7, 0x2, 0x13, 0x1) r5 = socket(0xa, 0x801, 0x84) getsockopt$auto(r5, 0x84, 0x10, 0x0, 0x0) setsockopt$auto(r4, 0x0, 0x2a, 0x0, 0x108) madvise$auto(0x0, 0xffffffffffff0004, 0x19) syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), r1) getpgid$auto(0x0) shmctl$auto(0x0, 0x0, 0xfffffffffffffffd) lsm_set_self_attr$auto(0x1, 0x0, 0x80, 0x0) close_range$auto(0x2, 0xa, 0x0) socket(0x10, 0x2, 0xc) 0s ago: executing program 2 (id=1555): mmap$auto(0x7, 0x2020009, 0x1000003, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x5, 0x0, 0xfffffffc, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, r0, 0x0) mmap$auto(0xfffffffffffffffc, 0x8, 0x2, 0x9b72, 0x5, 0x0) socket(0x18, 0x80000, 0xffffefff) setsockopt$auto(0x3, 0x0, 0xf, 0x0, 0xb) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card1/pcm0p/sub6/hw_params\x00', 0x501000, 0x0) mmap$auto(0x0, 0x40009, 0xdd, 0x9b72, 0x7, 0x28000) r2 = socket(0x15, 0x5, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_MACSEC_CMD_ADD_TXSA(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000240)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="010028bd7000fd04000000000000ae832802249ab7781e775a7eb08cac16271707f7f6b636a9af84a8fe3d525c20d30a16c8e2da509b7de3694f0176c5dc7e06e99e64a428f66ec4f0e665024adb9481b0f71a27ecd477fd78b128854ff72553166f2048b8fe2c739736922d3192f652c6d678bbb866123cee8e5c8328512e61be1acf8e2c64882dfda253fe247bba3057ee9051eb27dc6c2fe017ada6f992723e008a9e53e13e1566347ab73d690be538380ad3e384631fa822"], 0x14}, 0x1, 0x0, 0x0, 0x8c1}, 0x4000080) setsockopt$auto(r2, 0x114, 0x8, 0x0, 0x4) bind$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x6b) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0) sched_get_priority_max$auto(0x7) mmap$auto(0x100000000000, 0x7ffd, 0x19c, 0x14, 0xffffffffffffffff, 0x0) unshare$auto(0x40000080) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d) mmap$auto(0xd, 0x5, 0x6, 0x9b72, 0x2, 0x8000) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/vhci_hcd.1/usb12/12-0:1.0/usb12-port4/power/runtime_active_time\x00', 0x20000, 0x0) read$auto(r5, 0x0, 0x20) r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r6, &(0x7f0000000200)={0x0, 0x7}, 0x3) write$auto(r1, 0x0, 0x3) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) kernel console output (not intermixed with test programs): Unable to find connection for big 0xd2 [ 317.471156][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 317.478538][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 317.485971][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 317.494040][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 317.501529][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 317.508890][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 317.517106][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 317.524386][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 317.533126][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 317.533263][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 317.533386][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 317.533463][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 317.533547][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 317.533660][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 317.533784][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 317.533875][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 317.533987][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 317.534101][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 317.534171][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 317.534239][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 317.534326][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 317.534408][ T5153] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 317.711468][ T8941] RDS: rds_bind could not find a transport for 7bc:c94c:4e37:70c4:662f:6e75:6d61:5f6d, load rds_tcp or rds_rdma? [ 318.219734][ T8934] tty tty12: ldisc open failed (-12), clearing slot 11 [ 320.963775][ T8988] futex_wake_op: syz.0.807 tries to shift op by 64; fix this program [ 322.292472][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 322.300421][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 323.681921][ T9033] netlink: 28 bytes leftover after parsing attributes in process `syz.0.819'. [ 323.775257][ T9035] netlink: 64 bytes leftover after parsing attributes in process `syz.0.819'. [ 323.862664][ T9038] ptrace attach of "./syz-executor exec"[5852] was attempted by "./syz-executor exec"[9038] [ 324.286331][ T9049] FAULT_INJECTION: forcing a failure. [ 324.286331][ T9049] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 324.323177][ T9049] CPU: 1 UID: 0 PID: 9049 Comm: syz.2.824 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 324.323228][ T9049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 324.323255][ T9049] Call Trace: [ 324.323263][ T9049] [ 324.323273][ T9049] dump_stack_lvl+0x16c/0x1f0 [ 324.323316][ T9049] should_fail_ex+0x512/0x640 [ 324.323351][ T9049] _copy_from_user+0x2e/0xd0 [ 324.323391][ T9049] kstrtouint_from_user+0xd6/0x1d0 [ 324.323434][ T9049] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 324.323473][ T9049] ? __lock_acquire+0xaa4/0x1ba0 [ 324.323530][ T9049] proc_fail_nth_write+0x83/0x250 [ 324.323566][ T9049] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 324.323612][ T9049] vfs_write+0x25c/0x1180 [ 324.323645][ T9049] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 324.323685][ T9049] ? __pfx___mutex_lock+0x10/0x10 [ 324.323724][ T9049] ? __pfx_vfs_write+0x10/0x10 [ 324.323768][ T9049] ? __fget_files+0x20e/0x3c0 [ 324.323816][ T9049] ksys_write+0x12a/0x240 [ 324.323850][ T9049] ? __pfx_ksys_write+0x10/0x10 [ 324.323882][ T9049] ? rcu_is_watching+0x12/0xc0 [ 324.323924][ T9049] do_syscall_64+0xcd/0x260 [ 324.323964][ T9049] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 324.323990][ T9049] RIP: 0033:0x7f9c4af8bc1f [ 324.324010][ T9049] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 324.324033][ T9049] RSP: 002b:00007f9c4bd69030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 324.324057][ T9049] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9c4af8bc1f [ 324.324073][ T9049] RDX: 0000000000000001 RSI: 00007f9c4bd690a0 RDI: 0000000000000004 [ 324.324088][ T9049] RBP: 00007f9c4bd69090 R08: 0000000000000000 R09: 0000000000000000 [ 324.324102][ T9049] R10: 0000000000000005 R11: 0000000000000293 R12: 0000000000000002 [ 324.324116][ T9049] R13: 0000000000000000 R14: 00007f9c4b1a5fa0 R15: 00007fff8d879e88 [ 324.324149][ T9049] [ 327.464307][ T9084] usb usb8: usbfs: interface 0 claimed by hub while 'syz.2.834' sets config #0 [ 327.714311][ T9093] FAULT_INJECTION: forcing a failure. [ 327.714311][ T9093] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 327.746431][ T9093] CPU: 1 UID: 0 PID: 9093 Comm: syz.2.837 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 327.746474][ T9093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 327.746491][ T9093] Call Trace: [ 327.746500][ T9093] [ 327.746511][ T9093] dump_stack_lvl+0x16c/0x1f0 [ 327.746559][ T9093] should_fail_ex+0x512/0x640 [ 327.746600][ T9093] _copy_from_user+0x2e/0xd0 [ 327.746639][ T9093] copy_msghdr_from_user+0x98/0x160 [ 327.746680][ T9093] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 327.746738][ T9093] ___sys_sendmsg+0xfe/0x1d0 [ 327.746780][ T9093] ? __pfx____sys_sendmsg+0x10/0x10 [ 327.746866][ T9093] __sys_sendmsg+0x16d/0x220 [ 327.746907][ T9093] ? __pfx___sys_sendmsg+0x10/0x10 [ 327.746959][ T9093] ? rcu_is_watching+0x12/0xc0 [ 327.747009][ T9093] do_syscall_64+0xcd/0x260 [ 327.747057][ T9093] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 327.747087][ T9093] RIP: 0033:0x7f9c4af8d169 [ 327.747118][ T9093] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 327.747146][ T9093] RSP: 002b:00007f9c4bd69038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 327.747174][ T9093] RAX: ffffffffffffffda RBX: 00007f9c4b1a5fa0 RCX: 00007f9c4af8d169 [ 327.747193][ T9093] RDX: 0000000020008080 RSI: 00002000000012c0 RDI: 0000000000000003 [ 327.747211][ T9093] RBP: 00007f9c4bd69090 R08: 0000000000000000 R09: 0000000000000000 [ 327.747227][ T9093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 327.747244][ T9093] R13: 0000000000000000 R14: 00007f9c4b1a5fa0 R15: 00007fff8d879e88 [ 327.747281][ T9093] [ 330.156298][ T55] Bluetooth: hci3: unexpected subevent 0x01 length: 4 < 18 [ 330.310734][ T30] audit: type=1800 audit(6039327723.520:2): pid=9116 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.843" name="dbroot" dev="configfs" ino=19341 res=0 errno=0 [ 332.252604][ T9127] ptrace attach of "./syz-executor exec"[5845] was attempted by "./syz-executor exec"[9127] [ 333.541419][ T9143] usb usb8: usbfs: interface 0 claimed by hub while 'syz.2.848' sets config #0 [ 334.843438][ T9169] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 334.937918][ T9174] FAULT_INJECTION: forcing a failure. [ 334.937918][ T9174] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 334.982050][ T9174] CPU: 1 UID: 0 PID: 9174 Comm: syz.2.859 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 334.982093][ T9174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 334.982111][ T9174] Call Trace: [ 334.982120][ T9174] [ 334.982132][ T9174] dump_stack_lvl+0x16c/0x1f0 [ 334.982181][ T9174] should_fail_ex+0x512/0x640 [ 334.982235][ T9174] _copy_from_iter+0x2a4/0x15b0 [ 334.982288][ T9174] ? _copy_from_iter+0x161/0x15b0 [ 334.982326][ T9174] ? __pfx__copy_from_iter+0x10/0x10 [ 334.982366][ T9174] ? __pfx__copy_from_iter+0x10/0x10 [ 334.982413][ T9174] copy_page_from_iter+0xa5/0x120 [ 334.982454][ T9174] skb_copy_datagram_from_iter+0x2a0/0x740 [ 334.982504][ T9174] tun_get_user+0x17ac/0x3b10 [ 334.982563][ T9174] ? __pfx_tun_get_user+0x10/0x10 [ 334.982604][ T9174] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 334.982652][ T9174] ? find_held_lock+0x2b/0x80 [ 334.982692][ T9174] ? tun_get+0x191/0x370 [ 334.982737][ T9174] tun_chr_write_iter+0xdc/0x210 [ 334.982783][ T9174] vfs_write+0x5ba/0x1180 [ 334.982827][ T9174] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 334.982873][ T9174] ? __pfx_vfs_write+0x10/0x10 [ 334.982913][ T9174] ? find_held_lock+0x2b/0x80 [ 334.982975][ T9174] __x64_sys_pwrite64+0x1f4/0x250 [ 334.983022][ T9174] ? __pfx___x64_sys_pwrite64+0x10/0x10 [ 334.983077][ T9174] do_syscall_64+0xcd/0x260 [ 334.983123][ T9174] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 334.983154][ T9174] RIP: 0033:0x7f9c4af8d169 [ 334.983178][ T9174] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 334.983207][ T9174] RSP: 002b:00007f9c4bd69038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 334.983235][ T9174] RAX: ffffffffffffffda RBX: 00007f9c4b1a5fa0 RCX: 00007f9c4af8d169 [ 334.983261][ T9174] RDX: 000000000000fded RSI: 0000200000000080 RDI: 00000000000000c8 [ 334.983280][ T9174] RBP: 00007f9c4bd69090 R08: 0000000000000000 R09: 0000000000000000 [ 334.983298][ T9174] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 334.983316][ T9174] R13: 0000000000000001 R14: 00007f9c4b1a5fa0 R15: 00007fff8d879e88 [ 334.983354][ T9174] [ 337.186828][ T9212] netlink: 28 bytes leftover after parsing attributes in process `syz.1.872'. [ 337.310943][ T9212] team0: Port device team_slave_0 removed [ 339.583403][ T9241] FAULT_INJECTION: forcing a failure. [ 339.583403][ T9241] name failslab, interval 1, probability 0, space 0, times 0 [ 339.629545][ T9241] CPU: 0 UID: 0 PID: 9241 Comm: syz.1.881 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 339.629588][ T9241] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 339.629605][ T9241] Call Trace: [ 339.629614][ T9241] [ 339.629625][ T9241] dump_stack_lvl+0x16c/0x1f0 [ 339.629674][ T9241] should_fail_ex+0x512/0x640 [ 339.629707][ T9241] ? fs_reclaim_acquire+0xae/0x150 [ 339.629746][ T9241] ? tomoyo_encode2+0x100/0x3e0 [ 339.629784][ T9241] should_failslab+0xc2/0x120 [ 339.629813][ T9241] __kmalloc_noprof+0xd2/0x510 [ 339.629869][ T9241] tomoyo_encode2+0x100/0x3e0 [ 339.629915][ T9241] tomoyo_encode+0x29/0x50 [ 339.629954][ T9241] tomoyo_realpath_from_path+0x18f/0x6e0 [ 339.630000][ T9241] ? tomoyo_profile+0x47/0x60 [ 339.630065][ T9241] tomoyo_path_perm+0x274/0x460 [ 339.630099][ T9241] ? tomoyo_path_perm+0x260/0x460 [ 339.630136][ T9241] ? __pfx_tomoyo_path_perm+0x10/0x10 [ 339.630213][ T9241] ? __pfx_ima_file_check+0x10/0x10 [ 339.630254][ T9241] ? hook_file_truncate+0xc7/0x250 [ 339.630304][ T9241] security_file_truncate+0x84/0x1e0 [ 339.630346][ T9241] path_openat+0xc85/0x2d40 [ 339.630405][ T9241] ? __pfx_path_openat+0x10/0x10 [ 339.630460][ T9241] do_filp_open+0x20b/0x470 [ 339.630505][ T9241] ? __pfx_do_filp_open+0x10/0x10 [ 339.630583][ T9241] ? alloc_fd+0x471/0x7d0 [ 339.630637][ T9241] do_sys_openat2+0x11b/0x1d0 [ 339.630669][ T9241] ? __pfx_do_sys_openat2+0x10/0x10 [ 339.630706][ T9241] ? __fget_files+0x20e/0x3c0 [ 339.630762][ T9241] __x64_sys_openat+0x174/0x210 [ 339.630796][ T9241] ? __pfx___x64_sys_openat+0x10/0x10 [ 339.630827][ T9241] ? ksys_write+0x1b9/0x240 [ 339.630882][ T9241] do_syscall_64+0xcd/0x260 [ 339.630929][ T9241] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 339.630960][ T9241] RIP: 0033:0x7f21bfd8d169 [ 339.630983][ T9241] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 339.631010][ T9241] RSP: 002b:00007f21c0bbb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 339.631044][ T9241] RAX: ffffffffffffffda RBX: 00007f21bffa5fa0 RCX: 00007f21bfd8d169 [ 339.631062][ T9241] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 339.631080][ T9241] RBP: 00007f21c0bbb090 R08: 0000000000000000 R09: 0000000000000000 [ 339.631097][ T9241] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 339.631113][ T9241] R13: 0000000000000001 R14: 00007f21bffa5fa0 R15: 00007fffcac268f8 [ 339.631151][ T9241] [ 339.631239][ T9241] ERROR: Out of memory at tomoyo_realpath_from_path. [ 340.630154][ T55] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18 [ 340.725077][ T30] audit: type=1800 audit(6039327741.946:3): pid=9256 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.885" name="dbroot" dev="configfs" ino=20588 res=0 errno=0 [ 341.799952][ T9264] svc: failed to register nfsdv3 RPC service (errno 111). [ 341.821242][ T9264] svc: failed to register nfsaclv3 RPC service (errno 111). [ 342.924471][ T9279] netlink: 8 bytes leftover after parsing attributes in process `syz.0.891'. [ 343.392249][ T9289] netlink: 4 bytes leftover after parsing attributes in process `syz.1.894'. [ 343.436626][ T9289] netlink: 346 bytes leftover after parsing attributes in process `syz.1.894'. [ 346.080721][ T9324] netlink: 4 bytes leftover after parsing attributes in process `syz.3.906'. [ 346.154515][ T9324] netlink: 346 bytes leftover after parsing attributes in process `syz.3.906'. [ 346.393335][ T9337] Unable to find swap-space signature [ 347.956758][ T9355] Invalid ELF header magic: != ELF [ 348.147422][ T9367] ptrace attach of "./syz-executor exec"[5845] was attempted by "./syz-executor exec"[9367] [ 349.445956][ T9379] netlink: 4 bytes leftover after parsing attributes in process `syz.1.918'. [ 349.490300][ T9379] netlink: 346 bytes leftover after parsing attributes in process `syz.1.918'. [ 349.811415][ T9383] FAULT_INJECTION: forcing a failure. [ 349.811415][ T9383] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 349.857110][ T9383] CPU: 1 UID: 0 PID: 9383 Comm: syz.2.920 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 349.857170][ T9383] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 349.857187][ T9383] Call Trace: [ 349.857197][ T9383] [ 349.857209][ T9383] dump_stack_lvl+0x16c/0x1f0 [ 349.857256][ T9383] should_fail_ex+0x512/0x640 [ 349.857298][ T9383] _copy_to_user+0x32/0xd0 [ 349.857340][ T9383] simple_read_from_buffer+0xcb/0x170 [ 349.857386][ T9383] proc_fail_nth_read+0x197/0x270 [ 349.857429][ T9383] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 349.857474][ T9383] ? rw_verify_area+0xcf/0x680 [ 349.857510][ T9383] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 349.857553][ T9383] vfs_read+0x1de/0xc70 [ 349.857599][ T9383] ? __pfx___mutex_lock+0x10/0x10 [ 349.857643][ T9383] ? __pfx_vfs_read+0x10/0x10 [ 349.857697][ T9383] ? __fget_files+0x20e/0x3c0 [ 349.857751][ T9383] ksys_read+0x12a/0x240 [ 349.857792][ T9383] ? __pfx_ksys_read+0x10/0x10 [ 349.857830][ T9383] ? rcu_is_watching+0x12/0xc0 [ 349.857879][ T9383] do_syscall_64+0xcd/0x260 [ 349.857928][ T9383] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 349.857958][ T9383] RIP: 0033:0x7f9c4af8bb7c [ 349.857981][ T9383] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 349.858009][ T9383] RSP: 002b:00007f9c4bd69030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 349.858037][ T9383] RAX: ffffffffffffffda RBX: 00007f9c4b1a5fa0 RCX: 00007f9c4af8bb7c [ 349.858057][ T9383] RDX: 000000000000000f RSI: 00007f9c4bd690a0 RDI: 0000000000000003 [ 349.858074][ T9383] RBP: 00007f9c4bd69090 R08: 0000000000000000 R09: 0000000000000000 [ 349.858092][ T9383] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 349.858109][ T9383] R13: 0000000000000000 R14: 00007f9c4b1a5fa0 R15: 00007fff8d879e88 [ 349.858155][ T9383] [ 351.373252][ T9388] Invalid ELF header magic: != ELF [ 351.766579][ T9421] syz.3.929 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 351.787785][ T9419] netlink: 4 bytes leftover after parsing attributes in process `syz.2.928'. [ 351.981006][ T9419] netlink: 346 bytes leftover after parsing attributes in process `syz.2.928'. [ 352.654517][ T9439] netlink: set zone limit has 4 unknown bytes [ 353.502308][ T9448] FAULT_INJECTION: forcing a failure. [ 353.502308][ T9448] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 353.546238][ T9448] CPU: 0 UID: 0 PID: 9448 Comm: syz.3.937 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 353.546280][ T9448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 353.546296][ T9448] Call Trace: [ 353.546305][ T9448] [ 353.546315][ T9448] dump_stack_lvl+0x16c/0x1f0 [ 353.546370][ T9448] should_fail_ex+0x512/0x640 [ 353.546412][ T9448] _copy_from_user+0x2e/0xd0 [ 353.546454][ T9448] copy_msghdr_from_user+0x98/0x160 [ 353.546496][ T9448] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 353.546556][ T9448] ___sys_sendmsg+0xfe/0x1d0 [ 353.546637][ T9448] ? __pfx____sys_sendmsg+0x10/0x10 [ 353.546727][ T9448] __sys_sendmsg+0x16d/0x220 [ 353.546770][ T9448] ? __pfx___sys_sendmsg+0x10/0x10 [ 353.546823][ T9448] ? rcu_is_watching+0x12/0xc0 [ 353.546874][ T9448] do_syscall_64+0xcd/0x260 [ 353.546923][ T9448] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 353.546956][ T9448] RIP: 0033:0x7feeb3d8d169 [ 353.546980][ T9448] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 353.547009][ T9448] RSP: 002b:00007feeb4b35038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 353.547037][ T9448] RAX: ffffffffffffffda RBX: 00007feeb3fa5fa0 RCX: 00007feeb3d8d169 [ 353.547057][ T9448] RDX: 0000000004004094 RSI: 0000200000002e40 RDI: 0000000000000004 [ 353.547075][ T9448] RBP: 00007feeb4b35090 R08: 0000000000000000 R09: 0000000000000000 [ 353.547093][ T9448] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 353.547110][ T9448] R13: 0000000000000000 R14: 00007feeb3fa5fa0 R15: 00007ffd2a9e1de8 [ 353.547148][ T9448] [ 354.218012][ T9459] netlink: 4 bytes leftover after parsing attributes in process `syz.1.940'. [ 354.276658][ T9459] FAULT_INJECTION: forcing a failure. [ 354.276658][ T9459] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 354.402360][ T9459] CPU: 1 UID: 0 PID: 9459 Comm: syz.1.940 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 354.402405][ T9459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 354.402423][ T9459] Call Trace: [ 354.402433][ T9459] [ 354.402444][ T9459] dump_stack_lvl+0x16c/0x1f0 [ 354.402495][ T9459] should_fail_ex+0x512/0x640 [ 354.402537][ T9459] _copy_to_user+0x32/0xd0 [ 354.402581][ T9459] simple_read_from_buffer+0xcb/0x170 [ 354.402628][ T9459] proc_fail_nth_read+0x197/0x270 [ 354.402673][ T9459] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 354.402719][ T9459] ? rw_verify_area+0xcf/0x680 [ 354.402756][ T9459] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 354.402810][ T9459] vfs_read+0x1de/0xc70 [ 354.402859][ T9459] ? __pfx___mutex_lock+0x10/0x10 [ 354.402904][ T9459] ? __pfx_vfs_read+0x10/0x10 [ 354.402958][ T9459] ? __fget_files+0x20e/0x3c0 [ 354.403016][ T9459] ksys_read+0x12a/0x240 [ 354.403063][ T9459] ? __pfx_ksys_read+0x10/0x10 [ 354.403101][ T9459] ? rcu_is_watching+0x12/0xc0 [ 354.403152][ T9459] do_syscall_64+0xcd/0x260 [ 354.403202][ T9459] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 354.403234][ T9459] RIP: 0033:0x7f21bfd8bb7c [ 354.403258][ T9459] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 354.403285][ T9459] RSP: 002b:00007f21c0bbb030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 354.403313][ T9459] RAX: ffffffffffffffda RBX: 00007f21bffa5fa0 RCX: 00007f21bfd8bb7c [ 354.403333][ T9459] RDX: 000000000000000f RSI: 00007f21c0bbb0a0 RDI: 0000000000000003 [ 354.403351][ T9459] RBP: 00007f21c0bbb090 R08: 0000000000000000 R09: 0000000000000000 [ 354.403370][ T9459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 354.403387][ T9459] R13: 0000000000000000 R14: 00007f21bffa5fa0 R15: 00007fffcac268f8 [ 354.403427][ T9459] [ 354.978762][ T9467] netlink: 4 bytes leftover after parsing attributes in process `syz.1.942'. [ 355.018603][ T9473] FAULT_INJECTION: forcing a failure. [ 355.018603][ T9473] name failslab, interval 1, probability 0, space 0, times 0 [ 355.046683][ T9473] CPU: 1 UID: 0 PID: 9473 Comm: syz.3.944 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 355.046733][ T9473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 355.046751][ T9473] Call Trace: [ 355.046761][ T9473] [ 355.046773][ T9473] dump_stack_lvl+0x16c/0x1f0 [ 355.046823][ T9473] should_fail_ex+0x512/0x640 [ 355.046865][ T9473] should_failslab+0xc2/0x120 [ 355.046896][ T9473] __kmalloc_cache_noprof+0x6a/0x3e0 [ 355.046939][ T9473] ? __sctp_v6_cmp_addr+0x206/0x530 [ 355.046967][ T9473] ? sctp_add_bind_addr+0xae/0x3f0 [ 355.047013][ T9473] sctp_add_bind_addr+0xae/0x3f0 [ 355.047062][ T9473] sctp_copy_local_addr_list+0x39d/0x5a0 [ 355.047118][ T9473] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 355.047175][ T9473] ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360 [ 355.047241][ T9473] ? sctp_bind_addr_copy+0xe0/0x530 [ 355.047284][ T9473] sctp_bind_addr_copy+0xe0/0x530 [ 355.047337][ T9473] sctp_connect_new_asoc+0x1d7/0x790 [ 355.047377][ T9473] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 355.047419][ T9473] ? __ipv6_addr_type+0x225/0x300 [ 355.047450][ T9473] ? __ipv6_addr_type+0x225/0x300 [ 355.047485][ T9473] __sctp_connect+0x3f3/0xc60 [ 355.047525][ T9473] ? do_raw_spin_lock+0x12c/0x2b0 [ 355.047563][ T9473] ? __pfx___sctp_connect+0x10/0x10 [ 355.047600][ T9473] ? __pfx_sctp_inet_connect+0x10/0x10 [ 355.047638][ T9473] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 355.047675][ T9473] ? __pfx_sctp_inet_connect+0x10/0x10 [ 355.047707][ T9473] sctp_inet_connect+0x15f/0x200 [ 355.047752][ T9473] __sys_connect_file+0x13e/0x1a0 [ 355.047793][ T9473] __sys_connect+0x14d/0x170 [ 355.047827][ T9473] ? __pfx___sys_connect+0x10/0x10 [ 355.047878][ T9473] ? __pfx_ksys_write+0x10/0x10 [ 355.047920][ T9473] ? rcu_is_watching+0x12/0xc0 [ 355.047966][ T9473] __x64_sys_connect+0x72/0xb0 [ 355.047999][ T9473] ? lockdep_hardirqs_on+0x7c/0x110 [ 355.048042][ T9473] do_syscall_64+0xcd/0x260 [ 355.048090][ T9473] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 355.048122][ T9473] RIP: 0033:0x7feeb3d8d169 [ 355.048147][ T9473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 355.048176][ T9473] RSP: 002b:00007feeb4b14038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 355.048205][ T9473] RAX: ffffffffffffffda RBX: 00007feeb3fa6080 RCX: 00007feeb3d8d169 [ 355.048225][ T9473] RDX: 0000000000000055 RSI: 0000000000000000 RDI: 0000000000000003 [ 355.048243][ T9473] RBP: 00007feeb4b14090 R08: 0000000000000000 R09: 0000000000000000 [ 355.048261][ T9473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 355.048279][ T9473] R13: 0000000000000000 R14: 00007feeb3fa6080 R15: 00007ffd2a9e1de8 [ 355.048320][ T9473] [ 355.253516][ T9476] nfs4: Unknown parameter '' [ 355.479044][ T9467] netlink: 346 bytes leftover after parsing attributes in process `syz.1.942'. [ 355.696635][ T9468] ptrace attach of "./syz-executor exec"[5849] was attempted by "./syz-executor exec"[9468] [ 363.436534][ T9538] ptrace attach of "./syz-executor exec"[5841] was attempted by "./syz-executor exec"[9538] [ 365.169830][ T9552] netlink: 4 bytes leftover after parsing attributes in process `syz.1.957'. [ 365.243533][ T9564] Invalid ELF header magic: != ELF [ 365.259778][ T9558] netlink: 25 bytes leftover after parsing attributes in process `syz.1.957'. [ 366.790346][ T55] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 371.763741][ T9597] netlink: 4 bytes leftover after parsing attributes in process `syz.3.967'. [ 371.853747][ T9597] netlink: 346 bytes leftover after parsing attributes in process `syz.3.967'. [ 374.049555][ T9610] kexec: Could not allocate control_code_buffer [ 374.842868][ T9645] FAULT_INJECTION: forcing a failure. [ 374.842868][ T9645] name fail_futex, interval 1, probability 0, space 0, times 1 [ 374.964010][ T9645] CPU: 0 UID: 0 PID: 9645 Comm: syz.2.980 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 374.964057][ T9645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 374.964076][ T9645] Call Trace: [ 374.964086][ T9645] [ 374.964097][ T9645] dump_stack_lvl+0x16c/0x1f0 [ 374.964148][ T9645] should_fail_ex+0x512/0x640 [ 374.964189][ T9645] get_futex_key+0x49e/0x1000 [ 374.964237][ T9645] ? __pfx_get_futex_key+0x10/0x10 [ 374.964294][ T9645] futex_wake+0xe7/0x4e0 [ 374.964326][ T9645] ? __pfx_futex_wake+0x10/0x10 [ 374.964359][ T9645] ? kmem_cache_free+0x2d4/0x4d0 [ 374.964403][ T9645] ? fd_install+0x225/0x750 [ 374.964444][ T9645] ? putname+0x154/0x1a0 [ 374.964480][ T9645] do_futex+0x1e3/0x350 [ 374.964527][ T9645] ? __pfx_do_futex+0x10/0x10 [ 374.964575][ T9645] ? __sys_sendmsg+0x199/0x220 [ 374.964618][ T9645] __x64_sys_futex+0x1e0/0x4c0 [ 374.964668][ T9645] ? __pfx___x64_sys_futex+0x10/0x10 [ 374.964715][ T9645] ? rcu_is_watching+0x12/0xc0 [ 374.964764][ T9645] do_syscall_64+0xcd/0x260 [ 374.964821][ T9645] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 374.964849][ T9645] RIP: 0033:0x7f9c4af8d169 [ 374.964871][ T9645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 374.964897][ T9645] RSP: 002b:00007f9c4bd690e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 374.964924][ T9645] RAX: ffffffffffffffda RBX: 00007f9c4b1a5fa8 RCX: 00007f9c4af8d169 [ 374.964942][ T9645] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f9c4b1a5fac [ 374.964959][ T9645] RBP: 00007f9c4b1a5fa0 R08: 00007f9c4bd6a000 R09: 0000000000000000 [ 374.964976][ T9645] R10: 0000000000000009 R11: 0000000000000246 R12: 00007f9c4b1a5fac [ 374.964992][ T9645] R13: 0000000000000000 R14: 00007fff8d879da0 R15: 00007fff8d879e88 [ 374.965025][ T9645] [ 376.984222][ T9675] cgroup: fork rejected by pids controller in /syz2 [ 377.133663][ T9709] QAT: Device 0 not found syzkaller syzkaller login: [ 379.635798][ T9772] ptrace attach of "./syz-executor exec"[5841] was attempted by "./syz-executor exec"[9772] [ 380.494154][ T9781] netlink: 4 bytes leftover after parsing attributes in process `syz.2.995'. [ 380.672730][ T9781] netlink: 346 bytes leftover after parsing attributes in process `syz.2.995'. [ 380.703212][ T9783] FAULT_INJECTION: forcing a failure. [ 380.703212][ T9783] name failslab, interval 1, probability 0, space 0, times 0 [ 380.776245][ T9783] CPU: 0 UID: 0 PID: 9783 Comm: syz.1.996 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 380.776294][ T9783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 380.776314][ T9783] Call Trace: [ 380.776325][ T9783] [ 380.776338][ T9783] dump_stack_lvl+0x16c/0x1f0 [ 380.776391][ T9783] should_fail_ex+0x512/0x640 [ 380.776427][ T9783] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 380.776489][ T9783] should_failslab+0xc2/0x120 [ 380.776520][ T9783] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 380.776567][ T9783] ? __proc_create+0xc3/0x8c0 [ 380.776601][ T9783] ? __proc_create+0x2ce/0x8c0 [ 380.776641][ T9783] __proc_create+0x2ce/0x8c0 [ 380.776677][ T9783] ? __pfx___proc_create+0x10/0x10 [ 380.776720][ T9783] ? _raw_write_unlock+0x28/0x50 [ 380.776767][ T9783] proc_create_reg+0x7d/0x180 [ 380.776807][ T9783] proc_create_data+0x86/0x110 [ 380.776844][ T9783] ? __pfx_proc_create_data+0x10/0x10 [ 380.776884][ T9783] ? cache_register_net+0x137/0x5e0 [ 380.776932][ T9783] cache_register_net+0x1e0/0x5e0 [ 380.776976][ T9783] nfsd_export_init+0xb6/0x250 [ 380.777026][ T9783] ? __pfx_nfsd_net_init+0x10/0x10 [ 380.777092][ T9783] nfsd_net_init+0x33/0x3d0 [ 380.777145][ T9783] ? __pfx_nfsd_net_init+0x10/0x10 [ 380.777195][ T9783] ops_init+0x1df/0x5f0 [ 380.777245][ T9783] setup_net+0x21e/0x850 [ 380.777294][ T9783] ? __pfx_setup_net+0x10/0x10 [ 380.777335][ T9783] ? lockdep_init_map_type+0x5c/0x280 [ 380.777364][ T9783] ? __pfx_down_read_killable+0x10/0x10 [ 380.777400][ T9783] ? debug_mutex_init+0x37/0x70 [ 380.777443][ T9783] copy_net_ns+0x2a6/0x5f0 [ 380.777503][ T9783] create_new_namespaces+0x3ea/0xad0 [ 380.777558][ T9783] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 380.777610][ T9783] ksys_unshare+0x45b/0xa40 [ 380.777661][ T9783] ? __pfx_ksys_unshare+0x10/0x10 [ 380.777708][ T9783] ? xfd_validate_state+0x5d/0x180 [ 380.777746][ T9783] ? rcu_is_watching+0x12/0xc0 [ 380.777796][ T9783] __x64_sys_unshare+0x31/0x40 [ 380.777844][ T9783] do_syscall_64+0xcd/0x260 [ 380.777894][ T9783] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 380.777924][ T9783] RIP: 0033:0x7f21bfd8d169 [ 380.777948][ T9783] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 380.777979][ T9783] RSP: 002b:00007f21c0bbb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 380.778008][ T9783] RAX: ffffffffffffffda RBX: 00007f21bffa5fa0 RCX: 00007f21bfd8d169 [ 380.778028][ T9783] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 380.778046][ T9783] RBP: 00007f21bfe0e990 R08: 0000000000000000 R09: 0000000000000000 [ 380.778064][ T9783] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 380.778082][ T9783] R13: 0000000000000000 R14: 00007f21bffa5fa0 R15: 00007fffcac268f8 [ 380.778121][ T9783] [ 381.291962][ T9795] FAULT_INJECTION: forcing a failure. [ 381.291962][ T9795] name failslab, interval 1, probability 0, space 0, times 0 [ 381.401409][ T9795] CPU: 0 UID: 0 PID: 9795 Comm: syz.0.999 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 381.401454][ T9795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 381.401482][ T9795] Call Trace: [ 381.401493][ T9795] [ 381.401505][ T9795] dump_stack_lvl+0x16c/0x1f0 [ 381.401557][ T9795] should_fail_ex+0x512/0x640 [ 381.401595][ T9795] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 381.401643][ T9795] should_failslab+0xc2/0x120 [ 381.401674][ T9795] __kmalloc_cache_noprof+0x6a/0x3e0 [ 381.401718][ T9795] ? __io_uring_add_tctx_node+0x132/0x500 [ 381.401768][ T9795] __io_uring_add_tctx_node+0x132/0x500 [ 381.401814][ T9795] ? __pfx___io_uring_add_tctx_node+0x10/0x10 [ 381.401861][ T9795] ? __anon_inode_getfile+0x18b/0x370 [ 381.401917][ T9795] io_uring_setup+0x157c/0x2090 [ 381.401954][ T9795] ? __pfx_io_uring_setup+0x10/0x10 [ 381.401996][ T9795] ? find_held_lock+0x2b/0x80 [ 381.402055][ T9795] ? rcu_is_watching+0x12/0xc0 [ 381.402102][ T9795] __x64_sys_io_uring_setup+0xc2/0x170 [ 381.402137][ T9795] do_syscall_64+0xcd/0x260 [ 381.402188][ T9795] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 381.402221][ T9795] RIP: 0033:0x7f9b7b18d169 [ 381.402246][ T9795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 381.402276][ T9795] RSP: 002b:00007f9b78fd5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 381.402306][ T9795] RAX: ffffffffffffffda RBX: 00007f9b7b3a6080 RCX: 00007f9b7b18d169 [ 381.402327][ T9795] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 381.402345][ T9795] RBP: 00007f9b7b20e990 R08: 0000000000000000 R09: 0000000000000000 [ 381.402363][ T9795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 381.402380][ T9795] R13: 0000000000000000 R14: 00007f9b7b3a6080 R15: 00007ffdcc523048 [ 381.402424][ T9795] [ 381.686373][ T9802] ptrace attach of "./syz-executor exec"[5849] was attempted by "./syz-executor exec"[9802] [ 381.717236][ T9790] ima: policy update failed [ 381.762598][ T30] audit: type=1802 audit(6039327782.976:4): pid=9790 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.999" res=0 errno=0 [ 381.947050][ T9810] FAULT_INJECTION: forcing a failure. [ 381.947050][ T9810] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 381.966500][ T9810] CPU: 1 UID: 0 PID: 9810 Comm: syz.1.1002 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 381.966543][ T9810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 381.966560][ T9810] Call Trace: [ 381.966570][ T9810] [ 381.966581][ T9810] dump_stack_lvl+0x16c/0x1f0 [ 381.966632][ T9810] should_fail_ex+0x512/0x640 [ 381.966674][ T9810] _copy_from_user+0x2e/0xd0 [ 381.966716][ T9810] copy_msghdr_from_user+0x98/0x160 [ 381.966758][ T9810] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 381.966807][ T9810] ? __pfx__kstrtoull+0x10/0x10 [ 381.966864][ T9810] ___sys_sendmsg+0xfe/0x1d0 [ 381.966907][ T9810] ? __pfx____sys_sendmsg+0x10/0x10 [ 381.966968][ T9810] ? find_held_lock+0x2b/0x80 [ 381.967036][ T9810] __sys_sendmmsg+0x200/0x420 [ 381.967083][ T9810] ? __pfx___sys_sendmmsg+0x10/0x10 [ 381.967139][ T9810] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 381.967204][ T9810] ? fput+0x70/0xf0 [ 381.967235][ T9810] ? ksys_write+0x1b9/0x240 [ 381.967277][ T9810] ? __pfx_ksys_write+0x10/0x10 [ 381.967318][ T9810] ? rcu_is_watching+0x12/0xc0 [ 381.967368][ T9810] __x64_sys_sendmmsg+0x9c/0x100 [ 381.967432][ T9810] ? lockdep_hardirqs_on+0x7c/0x110 [ 381.967476][ T9810] do_syscall_64+0xcd/0x260 [ 381.967524][ T9810] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 381.967556][ T9810] RIP: 0033:0x7f21bfd8d169 [ 381.967585][ T9810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 381.967613][ T9810] RSP: 002b:00007f21c0b9a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 381.967642][ T9810] RAX: ffffffffffffffda RBX: 00007f21bffa6080 RCX: 00007f21bfd8d169 [ 381.967662][ T9810] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 381.967679][ T9810] RBP: 00007f21c0b9a090 R08: 0000000000000000 R09: 0000000000000000 [ 381.967697][ T9810] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000001 [ 381.967715][ T9810] R13: 0000000000000000 R14: 00007f21bffa6080 R15: 00007fffcac268f8 [ 381.967753][ T9810] [ 383.077917][ T9816] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1004'. [ 383.182749][ T9816] netlink: 346 bytes leftover after parsing attributes in process `syz.1.1004'. [ 383.654328][ T9820] ptrace attach of "./syz-executor exec"[5845] was attempted by "./syz-executor exec"[9820] [ 383.736780][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 383.744719][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 385.238753][ T9845] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1010'. [ 385.677827][ T9858] random: crng reseeded on system resumption [ 386.536294][ T9861] bond0: option all_slaves_active: invalid value () [ 386.699756][ T9845] kexec: Could not allocate control_code_buffer [ 386.907991][ T9868] FAULT_INJECTION: forcing a failure. [ 386.907991][ T9868] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 386.946287][ T9868] CPU: 0 UID: 0 PID: 9868 Comm: syz.1.1015 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 386.946331][ T9868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 386.946349][ T9868] Call Trace: [ 386.946359][ T9868] [ 386.946371][ T9868] dump_stack_lvl+0x16c/0x1f0 [ 386.946421][ T9868] should_fail_ex+0x512/0x640 [ 386.946463][ T9868] _copy_to_iter+0x477/0x15a0 [ 386.946512][ T9868] ? __pfx__copy_to_iter+0x10/0x10 [ 386.946558][ T9868] ? traverse.part.0.constprop.0+0x2c5/0x640 [ 386.946615][ T9868] seq_read_iter+0x719/0x12c0 [ 386.946661][ T9868] ? aa_file_perm+0x4d6/0xfb0 [ 386.946715][ T9868] seq_read+0x39e/0x4e0 [ 386.946755][ T9868] ? __pfx_seq_read+0x10/0x10 [ 386.946805][ T9868] ? get_pid_task+0xfc/0x250 [ 386.946849][ T9868] ? __pfx_seq_read+0x10/0x10 [ 386.946892][ T9868] proc_reg_read+0x11d/0x330 [ 386.946923][ T9868] ? __pfx_proc_reg_read+0x10/0x10 [ 386.946957][ T9868] vfs_read+0x1de/0xc70 [ 386.947016][ T9868] ? __pfx_vfs_read+0x10/0x10 [ 386.947056][ T9868] ? find_held_lock+0x2b/0x80 [ 386.947097][ T9868] ? __fget_files+0x204/0x3c0 [ 386.947148][ T9868] ? __fget_files+0x20e/0x3c0 [ 386.947190][ T9868] ? __fget_files+0x120/0x3c0 [ 386.947247][ T9868] __x64_sys_pread64+0x1f4/0x250 [ 386.947293][ T9868] ? __pfx___x64_sys_pread64+0x10/0x10 [ 386.947339][ T9868] ? rcu_is_watching+0x12/0xc0 [ 386.947389][ T9868] do_syscall_64+0xcd/0x260 [ 386.947440][ T9868] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 386.947472][ T9868] RIP: 0033:0x7f21bfd8d169 [ 386.947497][ T9868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 386.947528][ T9868] RSP: 002b:00007f21c0bbb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 386.947557][ T9868] RAX: ffffffffffffffda RBX: 00007f21bffa5fa0 RCX: 00007f21bfd8d169 [ 386.947577][ T9868] RDX: 000000000000012a RSI: 0000000000000000 RDI: 0000000000000004 [ 386.947594][ T9868] RBP: 00007f21c0bbb090 R08: 0000000000000000 R09: 0000000000000000 [ 386.947612][ T9868] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001 [ 386.947630][ T9868] R13: 0000000000000000 R14: 00007f21bffa5fa0 R15: 00007fffcac268f8 [ 386.947670][ T9868] [ 388.863406][ T9887] ptrace attach of "./syz-executor exec"[5845] was attempted by "./syz-executor exec"[9887] [ 391.685282][ T9932] FAULT_INJECTION: forcing a failure. [ 391.685282][ T9932] name failslab, interval 1, probability 0, space 0, times 0 [ 391.708666][ T9932] CPU: 0 UID: 0 PID: 9932 Comm: syz.1.1034 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 391.708709][ T9932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 391.708726][ T9932] Call Trace: [ 391.708736][ T9932] [ 391.708745][ T9932] dump_stack_lvl+0x16c/0x1f0 [ 391.708792][ T9932] should_fail_ex+0x512/0x640 [ 391.708824][ T9932] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 391.708866][ T9932] should_failslab+0xc2/0x120 [ 391.708892][ T9932] __kmalloc_cache_noprof+0x6a/0x3e0 [ 391.708928][ T9932] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 391.708976][ T9932] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 391.709024][ T9932] ? genl_start+0x1e8/0x980 [ 391.709052][ T9932] genl_start+0x1e8/0x980 [ 391.709081][ T9932] __netlink_dump_start+0x60b/0x990 [ 391.709127][ T9932] genl_family_rcv_msg_dumpit+0x1e2/0x2e0 [ 391.709157][ T9932] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 391.709184][ T9932] ? genl_rcv_msg+0x577/0x800 [ 391.709216][ T9932] ? __pfx_genl_get_cmd+0x10/0x10 [ 391.709256][ T9932] ? __pfx_genl_start+0x10/0x10 [ 391.709278][ T9932] ? __pfx_genl_dumpit+0x10/0x10 [ 391.709300][ T9932] ? __pfx_genl_done+0x10/0x10 [ 391.709328][ T9932] ? __local_bh_enable_ip+0xa4/0x120 [ 391.709363][ T9932] ? __dev_queue_xmit+0x896/0x43e0 [ 391.709391][ T9932] ? __radix_tree_lookup+0x21f/0x2c0 [ 391.709433][ T9932] genl_rcv_msg+0x46e/0x800 [ 391.709463][ T9932] ? __pfx_genl_rcv_msg+0x10/0x10 [ 391.709487][ T9932] ? __pfx___dev_queue_xmit+0x10/0x10 [ 391.709526][ T9932] ? __pfx_tipc_udp_nl_dump_remoteip+0x10/0x10 [ 391.709570][ T9932] ? __lock_acquire+0xaa4/0x1ba0 [ 391.709622][ T9932] netlink_rcv_skb+0x16a/0x440 [ 391.709662][ T9932] ? __pfx_genl_rcv_msg+0x10/0x10 [ 391.709689][ T9932] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 391.709748][ T9932] ? __pfx_down_read+0x10/0x10 [ 391.709774][ T9932] ? netlink_deliver_tap+0x1ae/0xd30 [ 391.709818][ T9932] genl_rcv+0x28/0x40 [ 391.709858][ T9932] netlink_unicast+0x53a/0x7f0 [ 391.709904][ T9932] ? __pfx_netlink_unicast+0x10/0x10 [ 391.709942][ T9932] ? __lock_acquire+0xaa4/0x1ba0 [ 391.709995][ T9932] netlink_sendmsg+0x8d1/0xdd0 [ 391.710042][ T9932] ? __pfx_netlink_sendmsg+0x10/0x10 [ 391.710097][ T9932] ____sys_sendmsg+0xa95/0xc70 [ 391.710144][ T9932] ? copy_msghdr_from_user+0x10a/0x160 [ 391.710179][ T9932] ? __pfx_____sys_sendmsg+0x10/0x10 [ 391.710241][ T9932] ___sys_sendmsg+0x134/0x1d0 [ 391.710280][ T9932] ? __pfx____sys_sendmsg+0x10/0x10 [ 391.710360][ T9932] __sys_sendmsg+0x16d/0x220 [ 391.710396][ T9932] ? __pfx___sys_sendmsg+0x10/0x10 [ 391.710442][ T9932] ? rcu_is_watching+0x12/0xc0 [ 391.710509][ T9932] do_syscall_64+0xcd/0x260 [ 391.710553][ T9932] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 391.710581][ T9932] RIP: 0033:0x7f21bfd8d169 [ 391.710609][ T9932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 391.710637][ T9932] RSP: 002b:00007f21c0bbb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 391.710663][ T9932] RAX: ffffffffffffffda RBX: 00007f21bffa5fa0 RCX: 00007f21bfd8d169 [ 391.710682][ T9932] RDX: 0000000020000080 RSI: 0000200000002540 RDI: 0000000000000003 [ 391.710699][ T9932] RBP: 00007f21c0bbb090 R08: 0000000000000000 R09: 0000000000000000 [ 391.710715][ T9932] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 391.710732][ T9932] R13: 0000000000000000 R14: 00007f21bffa5fa0 R15: 00007fffcac268f8 [ 391.710774][ T9932] [ 392.953186][ T9943] ptrace attach of "./syz-executor exec"[5841] was attempted by "./syz-executor exec"[9943] [ 397.876953][T10006] ptrace attach of "./syz-executor exec"[5841] was attempted by "./syz-executor exec"[10006] [ 399.328809][ T5153] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 399.707774][T10036] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1057'. [ 399.854590][T10036] netdevsim netdevsim1 netdevsim0: entered allmulticast mode [ 402.150223][T10056] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT [ 403.529252][T10078] ptrace attach of "./syz-executor exec"[5845] was attempted by "./syz-executor exec"[10078] [ 403.609606][T10082] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1069'. [ 403.921474][T10082] netlink: 346 bytes leftover after parsing attributes in process `syz.2.1069'. [ 407.449504][T10116] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1077'. [ 407.459579][T10117] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1077'. [ 407.476421][T10117] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1077'. [ 407.485714][T10117] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1077'. [ 407.539335][T10117] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1077'. [ 407.551058][T10116] FAULT_INJECTION: forcing a failure. [ 407.551058][T10116] name failslab, interval 1, probability 0, space 0, times 0 [ 407.564472][T10116] CPU: 1 UID: 0 PID: 10116 Comm: syz.3.1077 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 407.564514][T10116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 407.564531][T10116] Call Trace: [ 407.564540][T10116] [ 407.564550][T10116] dump_stack_lvl+0x16c/0x1f0 [ 407.564601][T10116] should_fail_ex+0x512/0x640 [ 407.564637][T10116] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 407.564690][T10116] should_failslab+0xc2/0x120 [ 407.564720][T10116] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 407.564769][T10116] ? __alloc_skb+0x2b2/0x380 [ 407.564813][T10116] __alloc_skb+0x2b2/0x380 [ 407.564850][T10116] ? __pfx___alloc_skb+0x10/0x10 [ 407.564894][T10116] ? __lock_acquire+0xaa4/0x1ba0 [ 407.564962][T10116] netlink_alloc_large_skb+0x69/0x130 [ 407.565012][T10116] netlink_sendmsg+0x6a1/0xdd0 [ 407.565066][T10116] ? __pfx_netlink_sendmsg+0x10/0x10 [ 407.565127][T10116] ____sys_sendmsg+0xa95/0xc70 [ 407.565180][T10116] ? copy_msghdr_from_user+0x10a/0x160 [ 407.565222][T10116] ? __pfx_____sys_sendmsg+0x10/0x10 [ 407.565278][T10116] ? __pfx__kstrtoull+0x10/0x10 [ 407.565337][T10116] ___sys_sendmsg+0x134/0x1d0 [ 407.565380][T10116] ? __pfx____sys_sendmsg+0x10/0x10 [ 407.565441][T10116] ? find_held_lock+0x2b/0x80 [ 407.565507][T10116] __sys_sendmmsg+0x200/0x420 [ 407.565553][T10116] ? __pfx___sys_sendmmsg+0x10/0x10 [ 407.565609][T10116] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 407.565675][T10116] ? fput+0x70/0xf0 [ 407.565704][T10116] ? ksys_write+0x1b9/0x240 [ 407.565746][T10116] ? __pfx_ksys_write+0x10/0x10 [ 407.565788][T10116] ? rcu_is_watching+0x12/0xc0 [ 407.565833][T10116] __x64_sys_sendmmsg+0x9c/0x100 [ 407.565874][T10116] ? lockdep_hardirqs_on+0x7c/0x110 [ 407.565917][T10116] do_syscall_64+0xcd/0x260 [ 407.565971][T10116] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 407.566002][T10116] RIP: 0033:0x7feeb3d8d169 [ 407.566027][T10116] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 407.566062][T10116] RSP: 002b:00007feeb4b35038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 407.566090][T10116] RAX: ffffffffffffffda RBX: 00007feeb3fa5fa0 RCX: 00007feeb3d8d169 [ 407.566110][T10116] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 407.566128][T10116] RBP: 00007feeb4b35090 R08: 0000000000000000 R09: 0000000000000000 [ 407.566147][T10116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 407.566165][T10116] R13: 0000000000000000 R14: 00007feeb3fa5fa0 R15: 00007ffd2a9e1de8 [ 407.566205][T10116] [ 407.896209][T10117] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1077'. [ 407.933796][T10117] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1077'. [ 408.002109][T10117] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1077'. [ 408.552822][T10126] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1078'. [ 408.759865][T10128] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1078'. [ 409.494846][T10137] bridge0: port 2(bridge_slave_1) entered disabled state [ 409.588065][T10137] bridge_slave_1 (unregistering): left allmulticast mode [ 409.599999][T10137] bridge_slave_1 (unregistering): left promiscuous mode [ 409.638717][T10137] bridge0: port 2(bridge_slave_1) entered disabled state [ 410.778395][T10160] ptrace attach of "./syz-executor exec"[5849] was attempted by "./syz-executor exec"[10160] [ 412.128226][T10187] sp0: Synchronizing with TNC [ 412.824934][T10185] bridge0: port 3(gretap0) entered blocking state [ 412.893631][T10185] bridge0: port 3(gretap0) entered disabled state [ 412.955266][T10185] gretap0: entered allmulticast mode [ 413.008416][T10185] gretap0: entered promiscuous mode [ 413.184227][T10185] bridge0: port 3(gretap0) entered blocking state [ 413.192159][T10185] bridge0: port 3(gretap0) entered forwarding state [ 414.237443][T10217] __nla_validate_parse: 6 callbacks suppressed [ 414.237466][T10217] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1100'. [ 416.891689][T10246] FAULT_INJECTION: forcing a failure. [ 416.891689][T10246] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 416.941168][T10246] CPU: 1 UID: 0 PID: 10246 Comm: syz.0.1108 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 416.941211][T10246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 416.941229][T10246] Call Trace: [ 416.941239][T10246] [ 416.941251][T10246] dump_stack_lvl+0x16c/0x1f0 [ 416.941301][T10246] should_fail_ex+0x512/0x640 [ 416.941343][T10246] _copy_to_user+0x32/0xd0 [ 416.941386][T10246] simple_read_from_buffer+0xcb/0x170 [ 416.941432][T10246] proc_fail_nth_read+0x197/0x270 [ 416.941478][T10246] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 416.941525][T10246] ? rw_verify_area+0xcf/0x680 [ 416.941563][T10246] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 416.941608][T10246] vfs_read+0x1de/0xc70 [ 416.941656][T10246] ? __pfx___mutex_lock+0x10/0x10 [ 416.941704][T10246] ? __pfx_vfs_read+0x10/0x10 [ 416.941757][T10246] ? __fget_files+0x20e/0x3c0 [ 416.941814][T10246] ksys_read+0x12a/0x240 [ 416.941856][T10246] ? __pfx_ksys_read+0x10/0x10 [ 416.941896][T10246] ? rcu_is_watching+0x12/0xc0 [ 416.941948][T10246] do_syscall_64+0xcd/0x260 [ 416.941999][T10246] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 416.942031][T10246] RIP: 0033:0x7f9b7b18bb7c [ 416.942064][T10246] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 416.942095][T10246] RSP: 002b:00007f9b78ff6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 416.942123][T10246] RAX: ffffffffffffffda RBX: 00007f9b7b3a5fa0 RCX: 00007f9b7b18bb7c [ 416.942144][T10246] RDX: 000000000000000f RSI: 00007f9b78ff60a0 RDI: 0000000000000005 [ 416.942162][T10246] RBP: 00007f9b78ff6090 R08: 0000000000000000 R09: 0000000000000000 [ 416.942180][T10246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 416.942198][T10246] R13: 0000000000000000 R14: 00007f9b7b3a5fa0 R15: 00007ffdcc523048 [ 416.942239][T10246] [ 417.513882][T10255] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1110'. [ 419.338070][T10285] ptrace attach of "./syz-executor exec"[5841] was attempted by "./syz-executor exec"[10285] [ 419.874639][T10301] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1121'. [ 422.207516][T10336] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1131'. [ 422.287217][T10339] random: crng reseeded on system resumption [ 424.383119][T10375] netlink: 'syz.1.1143': attribute type 19 has an invalid length. [ 424.434370][T10375] netlink: 114 bytes leftover after parsing attributes in process `syz.1.1143'. [ 426.912473][T10430] syz.0.1162(10430): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 430.487498][T10520] sg_write: process 1051 (syz.0.1187) changed security contexts after opening file descriptor, this is not allowed. [ 430.889779][T10513] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(5.0.65535), cmd(3) [ 431.195186][T10534] ptrace attach of "./syz-executor exec"[5852] was attempted by "./syz-executor exec"[10534] [ 431.399569][T10544] ptrace attach of "./syz-executor exec"[5841] was attempted by "./syz-executor exec"[10544] [ 431.789044][T10551] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1192'. [ 432.642399][T10571] kafs: addr_prefs: Invalid Command [ 433.349437][T10587] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1202'. [ 434.632502][T10602] FAULT_INJECTION: forcing a failure. [ 434.632502][T10602] name failslab, interval 1, probability 0, space 0, times 0 [ 434.681921][T10602] CPU: 1 UID: 0 PID: 10602 Comm: syz.2.1205 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 434.681971][T10602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 434.681991][T10602] Call Trace: [ 434.682003][T10602] [ 434.682016][T10602] dump_stack_lvl+0x16c/0x1f0 [ 434.682070][T10602] should_fail_ex+0x512/0x640 [ 434.682108][T10602] ? fs_reclaim_acquire+0xae/0x150 [ 434.682150][T10602] ? tomoyo_encode2+0x100/0x3e0 [ 434.682192][T10602] should_failslab+0xc2/0x120 [ 434.682224][T10602] __kmalloc_noprof+0xd2/0x510 [ 434.682283][T10602] tomoyo_encode2+0x100/0x3e0 [ 434.682334][T10602] tomoyo_encode+0x29/0x50 [ 434.682377][T10602] tomoyo_realpath_from_path+0x18f/0x6e0 [ 434.682427][T10602] ? tomoyo_profile+0x47/0x60 [ 434.682482][T10602] tomoyo_path_number_perm+0x245/0x580 [ 434.682525][T10602] ? tomoyo_path_number_perm+0x237/0x580 [ 434.682567][T10602] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 434.682650][T10602] ? find_held_lock+0x2b/0x80 [ 434.682693][T10602] ? hook_file_ioctl_common+0x145/0x410 [ 434.682737][T10602] ? __fget_files+0x20e/0x3c0 [ 434.682799][T10602] security_file_ioctl+0x9b/0x240 [ 434.682843][T10602] __x64_sys_ioctl+0xb7/0x200 [ 434.682886][T10602] do_syscall_64+0xcd/0x260 [ 434.682937][T10602] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 434.682970][T10602] RIP: 0033:0x7f9c4af8d169 [ 434.682996][T10602] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 434.683028][T10602] RSP: 002b:00007f9c4bd69038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 434.683058][T10602] RAX: ffffffffffffffda RBX: 00007f9c4b1a5fa0 RCX: 00007f9c4af8d169 [ 434.683081][T10602] RDX: 000000000000b65d RSI: 000000004030582b RDI: 0000000000000004 [ 434.683100][T10602] RBP: 00007f9c4b00e990 R08: 0000000000000000 R09: 0000000000000000 [ 434.683120][T10602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 434.683139][T10602] R13: 0000000000000000 R14: 00007f9c4b1a5fa0 R15: 00007fff8d879e88 [ 434.683181][T10602] [ 434.683254][T10602] ERROR: Out of memory at tomoyo_realpath_from_path. [ 434.978035][T10603] ptrace attach of "./syz-executor exec"[5845] was attempted by "./syz-executor exec"[10603] [ 436.576883][T10631] FAULT_INJECTION: forcing a failure. [ 436.576883][T10631] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 436.645479][T10631] CPU: 0 UID: 0 PID: 10631 Comm: syz.2.1213 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 436.645525][T10631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 436.645543][T10631] Call Trace: [ 436.645554][T10631] [ 436.645565][T10631] dump_stack_lvl+0x16c/0x1f0 [ 436.645617][T10631] should_fail_ex+0x512/0x640 [ 436.645669][T10631] _copy_from_user+0x2e/0xd0 [ 436.645710][T10631] copy_mnt_id_req+0xfc/0x260 [ 436.645751][T10631] __x64_sys_statmount+0x13a/0x670 [ 436.645789][T10631] ? fput+0x70/0xf0 [ 436.645819][T10631] ? __pfx___x64_sys_statmount+0x10/0x10 [ 436.645851][T10631] ? ksys_write+0x1b9/0x240 [ 436.645909][T10631] do_syscall_64+0xcd/0x260 [ 436.645959][T10631] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 436.645992][T10631] RIP: 0033:0x7f9c4af8d169 [ 436.646016][T10631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 436.646052][T10631] RSP: 002b:00007f9c4bd69038 EFLAGS: 00000246 ORIG_RAX: 00000000000001c9 [ 436.646079][T10631] RAX: ffffffffffffffda RBX: 00007f9c4b1a5fa0 RCX: 00007f9c4af8d169 [ 436.646098][T10631] RDX: 00007ffffffff000 RSI: 0000000000000000 RDI: 0000200000000000 [ 436.646117][T10631] RBP: 00007f9c4bd69090 R08: 0000000000000000 R09: 0000000000000000 [ 436.646136][T10631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 436.646152][T10631] R13: 0000000000000000 R14: 00007f9c4b1a5fa0 R15: 00007fff8d879e88 [ 436.646190][T10631] [ 437.279901][T10636] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1214'. [ 439.795604][ T30] audit: type=1800 audit(6039327841.046:5): pid=10668 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1222" name="discovery_nqn" dev="configfs" ino=26674 res=0 errno=0 [ 440.390337][T10677] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1226'. [ 440.427426][T10658] bridge0: port 2(team0) entered blocking state [ 440.433865][T10658] bridge0: port 2(team0) entered disabled state [ 440.486488][T10658] team0: entered allmulticast mode [ 440.491703][T10658] team_slave_0: entered allmulticast mode [ 440.612504][T10658] team_slave_1: entered allmulticast mode [ 440.691869][T10658] team0: entered promiscuous mode [ 440.790890][T10658] team_slave_0: entered promiscuous mode [ 440.806498][T10658] team_slave_1: entered promiscuous mode [ 440.813259][T10658] bridge0: port 2(team0) entered blocking state [ 440.819762][T10658] bridge0: port 2(team0) entered forwarding state [ 442.404416][T10702] ptrace attach of "./syz-executor exec"[5849] was attempted by "./syz-executor exec"[10702] [ 442.592880][T10709] Process accounting resumed [ 445.175798][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.184719][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 445.822798][T10748] netlink: 186 bytes leftover after parsing attributes in process `syz.2.1244'. [ 445.890493][T10752] ptrace attach of "./syz-executor exec"[5852] was attempted by "./syz-executor exec"[10752] [ 446.211854][T10760] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1246'. [ 446.720078][T10772] ip_vti0: entered allmulticast mode [ 448.604902][T10790] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT [ 448.975543][T10794] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1255'. [ 449.449551][ T55] Bluetooth: hci3: unexpected event 0x17 length: 123 > 6 [ 450.219378][T10801] ptrace attach of "./syz-executor exec"[5845] was attempted by "./syz-executor exec"[10801] [ 450.855959][T10822] Invalid ELF header magic: != ELF [ 452.519623][T10844] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1267'. [ 452.612899][T10849] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1268'. [ 455.039900][T10884] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1277'. [ 457.014894][T10921] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1287'. [ 458.670283][T10968] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1302'. [ 459.259918][T10974] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1303'. [ 459.602338][T10978] program syz.2.1305 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 459.701941][T10982] FAULT_INJECTION: forcing a failure. [ 459.701941][T10982] name failslab, interval 1, probability 0, space 0, times 0 [ 459.725309][T10982] CPU: 1 UID: 0 PID: 10982 Comm: syz.0.1306 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 459.725352][T10982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 459.725367][T10982] Call Trace: [ 459.725375][T10982] [ 459.725383][T10982] dump_stack_lvl+0x16c/0x1f0 [ 459.725422][T10982] should_fail_ex+0x512/0x640 [ 459.725448][T10982] ? __kvmalloc_node_noprof+0x122/0x600 [ 459.725485][T10982] should_failslab+0xc2/0x120 [ 459.725507][T10982] __kvmalloc_node_noprof+0x135/0x600 [ 459.725541][T10982] ? seq_read_iter+0x826/0x12c0 [ 459.725577][T10982] ? seq_read_iter+0x826/0x12c0 [ 459.725611][T10982] seq_read_iter+0x826/0x12c0 [ 459.725643][T10982] ? __mutex_trylock_common+0xe9/0x250 [ 459.725674][T10982] kernfs_fop_read_iter+0x40f/0x5a0 [ 459.725702][T10982] ? rw_verify_area+0xcf/0x680 [ 459.725733][T10982] vfs_read+0x8c8/0xc70 [ 459.725767][T10982] ? __pfx___mutex_lock+0x10/0x10 [ 459.725799][T10982] ? __pfx_vfs_read+0x10/0x10 [ 459.725848][T10982] ksys_read+0x12a/0x240 [ 459.725878][T10982] ? __pfx_ksys_read+0x10/0x10 [ 459.725907][T10982] ? rcu_is_watching+0x12/0xc0 [ 459.725943][T10982] do_syscall_64+0xcd/0x260 [ 459.725978][T10982] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 459.726001][T10982] RIP: 0033:0x7f9b7b18d169 [ 459.726019][T10982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 459.726050][T10982] RSP: 002b:00007f9b78ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 459.726077][T10982] RAX: ffffffffffffffda RBX: 00007f9b7b3a5fa0 RCX: 00007f9b7b18d169 [ 459.726096][T10982] RDX: 0000000000000072 RSI: 0000200000000040 RDI: 0000000000000004 [ 459.726117][T10982] RBP: 00007f9b78ff6090 R08: 0000000000000000 R09: 0000000000000000 [ 459.726131][T10982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 459.726145][T10982] R13: 0000000000000000 R14: 00007f9b7b3a5fa0 R15: 00007ffdcc523048 [ 459.726175][T10982] [ 459.952986][T10973] ptrace attach of "./syz-executor exec"[5852] was attempted by "./syz-executor exec"[10973] [ 460.271644][T10990] mkiss: ax0: crc mode is auto. [ 460.362557][T10990] netlink: zone id is out of range [ 460.377761][T10990] netlink: zone id is out of range [ 460.412609][T10990] netlink: zone id is out of range [ 460.428561][T10990] netlink: zone id is out of range [ 460.436152][T10990] netlink: zone id is out of range [ 460.456140][T10990] netlink: zone id is out of range [ 460.462031][T10990] netlink: zone id is out of range [ 460.467413][T10990] netlink: zone id is out of range [ 460.472989][T10990] netlink: zone id is out of range [ 460.480322][T10990] netlink: zone id is out of range [ 460.645433][T10995] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1309'. [ 460.757913][T10995] netlink: 354 bytes leftover after parsing attributes in process `syz.3.1309'. [ 462.112201][T11013] delete_channel: no stack [ 462.544484][T11023] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1315'. [ 462.940520][T11036] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1320'. [ 463.211021][T11031] ptrace attach of "./syz-executor exec"[5852] was attempted by "./syz-executor exec"[11031] [ 463.554483][T11041] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 463.592802][T11041] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 463.706479][T11041] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 463.774537][T11041] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 463.786267][T11041] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 463.831963][T11041] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 463.853974][T11041] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 465.339174][ T55] Bluetooth: hci0: command 0x0c1a tx timeout [ 465.662524][ T55] Bluetooth: hci1: command 0x0c1a tx timeout [ 465.826124][ T55] Bluetooth: hci2: command 0x0c1a tx timeout [ 465.886237][ T55] Bluetooth: hci3: command 0x0c1a tx timeout [ 465.956661][T11084] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1329'. [ 466.204850][T11087] FAULT_INJECTION: forcing a failure. [ 466.204850][T11087] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 466.307032][T11087] CPU: 0 UID: 0 PID: 11087 Comm: syz.3.1330 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 466.307087][T11087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 466.307106][T11087] Call Trace: [ 466.307116][T11087] [ 466.307136][T11087] dump_stack_lvl+0x16c/0x1f0 [ 466.307188][T11087] should_fail_ex+0x512/0x640 [ 466.307231][T11087] _copy_from_user+0x2e/0xd0 [ 466.307272][T11087] copy_msghdr_from_user+0x98/0x160 [ 466.307315][T11087] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 466.307385][T11087] ? __pfx__kstrtoull+0x10/0x10 [ 466.307480][T11087] ___sys_sendmsg+0xfe/0x1d0 [ 466.307548][T11087] ? __pfx____sys_sendmsg+0x10/0x10 [ 466.307637][T11087] ? find_held_lock+0x2b/0x80 [ 466.307725][T11087] __sys_sendmmsg+0x200/0x420 [ 466.307777][T11087] ? __pfx___sys_sendmmsg+0x10/0x10 [ 466.307850][T11087] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 466.307908][T11087] ? fput+0x70/0xf0 [ 466.307939][T11087] ? ksys_write+0x1b9/0x240 [ 466.307994][T11087] ? __pfx_ksys_write+0x10/0x10 [ 466.308059][T11087] ? rcu_is_watching+0x12/0xc0 [ 466.308102][T11087] __x64_sys_sendmmsg+0x9c/0x100 [ 466.308154][T11087] ? lockdep_hardirqs_on+0x7c/0x110 [ 466.308204][T11087] do_syscall_64+0xcd/0x260 [ 466.308250][T11087] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 466.308287][T11087] RIP: 0033:0x7feeb3d8d169 [ 466.308316][T11087] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 466.308352][T11087] RSP: 002b:00007feeb4b35038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 466.308381][T11087] RAX: ffffffffffffffda RBX: 00007feeb3fa5fa0 RCX: 00007feeb3d8d169 [ 466.308409][T11087] RDX: 0000000000000103 RSI: 0000200000000080 RDI: 0000000000000003 [ 466.308429][T11087] RBP: 00007feeb4b35090 R08: 0000000000000000 R09: 0000000000000000 [ 466.308452][T11087] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 466.308479][T11087] R13: 0000000000000000 R14: 00007feeb3fa5fa0 R15: 00007ffd2a9e1de8 [ 466.308517][T11087] [ 466.936510][T11095] FAULT_INJECTION: forcing a failure. [ 466.936510][T11095] name failslab, interval 1, probability 0, space 0, times 0 [ 466.949346][T11095] CPU: 1 UID: 0 PID: 11095 Comm: syz.0.1334 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 466.949388][T11095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 466.949407][T11095] Call Trace: [ 466.949418][T11095] [ 466.949430][T11095] dump_stack_lvl+0x16c/0x1f0 [ 466.949481][T11095] should_fail_ex+0x512/0x640 [ 466.949524][T11095] should_failslab+0xc2/0x120 [ 466.949573][T11095] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 466.949623][T11095] ? dst_alloc+0x99/0x1a0 [ 466.949664][T11095] dst_alloc+0x99/0x1a0 [ 466.949703][T11095] rt_dst_alloc+0x35/0x3a0 [ 466.949754][T11095] ip_route_output_key_hash_rcu+0x87a/0x28f0 [ 466.949804][T11095] ip_route_output_key_hash+0x137/0x2e0 [ 466.949840][T11095] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 466.949894][T11095] ? find_held_lock+0x2b/0x80 [ 466.949940][T11095] ip_route_output_flow+0x27/0x150 [ 466.949978][T11095] udp_sendmsg+0x1bc3/0x29e0 [ 466.950035][T11095] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 466.950089][T11095] ? __pfx_udp_sendmsg+0x10/0x10 [ 466.950132][T11095] ? is_bpf_text_address+0x8a/0x1a0 [ 466.950161][T11095] ? bpf_ksym_find+0x124/0x1c0 [ 466.950216][T11095] ? __lock_acquire+0xaa4/0x1ba0 [ 466.950267][T11095] ? __pfx___might_resched+0x10/0x10 [ 466.950311][T11095] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 466.950352][T11095] ? aa_sk_perm+0x2f4/0xb10 [ 466.950397][T11095] ? __import_iovec+0x1c8/0x660 [ 466.950437][T11095] ? __might_fault+0xe3/0x190 [ 466.950483][T11095] ? __might_fault+0x13b/0x190 [ 466.950533][T11095] ? __pfx_udp_sendmsg+0x10/0x10 [ 466.950578][T11095] inet_sendmsg+0x105/0x140 [ 466.950611][T11095] ____sys_sendmsg+0x973/0xc70 [ 466.950664][T11095] ? copy_msghdr_from_user+0x10a/0x160 [ 466.950706][T11095] ? __pfx_____sys_sendmsg+0x10/0x10 [ 466.950778][T11095] ___sys_sendmsg+0x134/0x1d0 [ 466.950823][T11095] ? __pfx____sys_sendmsg+0x10/0x10 [ 466.950918][T11095] __sys_sendmsg+0x16d/0x220 [ 466.950961][T11095] ? __pfx___sys_sendmsg+0x10/0x10 [ 466.951015][T11095] ? rcu_is_watching+0x12/0xc0 [ 466.951075][T11095] do_syscall_64+0xcd/0x260 [ 466.951126][T11095] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 466.951158][T11095] RIP: 0033:0x7f9b7b18d169 [ 466.951185][T11095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 466.951216][T11095] RSP: 002b:00007f9b78ff6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 466.951245][T11095] RAX: ffffffffffffffda RBX: 00007f9b7b3a5fa0 RCX: 00007f9b7b18d169 [ 466.951267][T11095] RDX: 000000000004c014 RSI: 00002000000000c0 RDI: 0000000000000003 [ 466.951286][T11095] RBP: 00007f9b78ff6090 R08: 0000000000000000 R09: 0000000000000000 [ 466.951304][T11095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 466.951322][T11095] R13: 0000000000000000 R14: 00007f9b7b3a5fa0 R15: 00007ffdcc523048 [ 466.951363][T11095] [ 467.118935][T11091] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1333'. [ 467.119034][ C1] vkms_vblank_simulate: vblank timer overrun [ 467.255091][ C1] vkms_vblank_simulate: vblank timer overrun [ 467.642204][T11103] db_root: cannot open: @*!:}Á-.!\#[./',- [ 467.740106][ T55] Bluetooth: hci1: command 0x0c1a tx timeout [ 467.887244][ T55] Bluetooth: hci2: command 0x0c1a tx timeout [ 467.966316][ T55] Bluetooth: hci3: command 0x0c1a tx timeout [ 467.977653][T11109] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1340'. [ 468.573414][T11130] FAULT_INJECTION: forcing a failure. [ 468.573414][T11130] name failslab, interval 1, probability 0, space 0, times 0 [ 468.696169][T11130] CPU: 0 UID: 0 PID: 11130 Comm: syz.2.1345 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 468.696220][T11130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 468.696241][T11130] Call Trace: [ 468.696252][T11130] [ 468.696265][T11130] dump_stack_lvl+0x16c/0x1f0 [ 468.696320][T11130] should_fail_ex+0x512/0x640 [ 468.696358][T11130] ? fs_reclaim_acquire+0xae/0x150 [ 468.696400][T11130] ? tomoyo_encode2+0x100/0x3e0 [ 468.696439][T11130] should_failslab+0xc2/0x120 [ 468.696466][T11130] __kmalloc_noprof+0xd2/0x510 [ 468.696514][T11130] ? d_absolute_path+0x136/0x1a0 [ 468.696557][T11130] tomoyo_encode2+0x100/0x3e0 [ 468.696619][T11130] tomoyo_encode+0x29/0x50 [ 468.696664][T11130] tomoyo_realpath_from_path+0x18f/0x6e0 [ 468.696724][T11130] tomoyo_check_open_permission+0x2ab/0x3c0 [ 468.696766][T11130] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 468.696849][T11130] ? find_held_lock+0x2b/0x80 [ 468.696903][T11130] tomoyo_file_open+0x6b/0x90 [ 468.696957][T11130] security_file_open+0x84/0x1e0 [ 468.697003][T11130] do_dentry_open+0x596/0x1c10 [ 468.697063][T11130] vfs_open+0x82/0x3f0 [ 468.697102][T11130] path_openat+0x1e5e/0x2d40 [ 468.697167][T11130] ? __pfx_path_openat+0x10/0x10 [ 468.697227][T11130] do_filp_open+0x20b/0x470 [ 468.697276][T11130] ? __pfx_do_filp_open+0x10/0x10 [ 468.697356][T11130] ? alloc_fd+0x471/0x7d0 [ 468.697413][T11130] do_sys_openat2+0x11b/0x1d0 [ 468.697448][T11130] ? __pfx_do_sys_openat2+0x10/0x10 [ 468.697500][T11130] __x64_sys_openat+0x174/0x210 [ 468.697537][T11130] ? __pfx___x64_sys_openat+0x10/0x10 [ 468.697575][T11130] ? rcu_is_watching+0x12/0xc0 [ 468.697635][T11130] do_syscall_64+0xcd/0x260 [ 468.697689][T11130] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 468.697723][T11130] RIP: 0033:0x7f9c4af8d169 [ 468.697749][T11130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 468.697781][T11130] RSP: 002b:00007f9c4bd48038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 468.697812][T11130] RAX: ffffffffffffffda RBX: 00007f9c4b1a6080 RCX: 00007f9c4af8d169 [ 468.697834][T11130] RDX: 0000000000124001 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 468.697855][T11130] RBP: 00007f9c4b00e990 R08: 0000000000000000 R09: 0000000000000000 [ 468.697873][T11130] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 468.697891][T11130] R13: 0000000000000000 R14: 00007f9c4b1a6080 R15: 00007fff8d879e88 [ 468.697932][T11130] [ 468.697964][T11130] ERROR: Out of memory at tomoyo_realpath_from_path. [ 469.006825][T11133] ptrace attach of "./syz-executor exec"[5845] was attempted by "./syz-executor exec"[11133] [ 469.094529][T11139] net_ratelimit: 10 callbacks suppressed [ 469.094555][T11139] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 469.528924][T11130] FAULT_INJECTION: forcing a failure. [ 469.528924][T11130] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 469.742852][T11130] CPU: 1 UID: 0 PID: 11130 Comm: syz.2.1345 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 469.742899][T11130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 469.742918][T11130] Call Trace: [ 469.742928][T11130] [ 469.742940][T11130] dump_stack_lvl+0x16c/0x1f0 [ 469.742996][T11130] should_fail_ex+0x512/0x640 [ 469.743037][T11130] should_fail_alloc_page+0xe7/0x130 [ 469.743071][T11130] prepare_alloc_pages+0x3c2/0x610 [ 469.743112][T11130] ? rcu_is_watching+0x12/0xc0 [ 469.743156][T11130] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 469.743217][T11130] ? __lock_acquire+0x5ca/0x1ba0 [ 469.743272][T11130] ? xas_create+0x1d7/0x1460 [ 469.743301][T11130] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 469.743371][T11130] ? __lock_acquire+0x5ca/0x1ba0 [ 469.743423][T11130] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 469.743463][T11130] ? policy_nodemask+0xea/0x4e0 [ 469.743520][T11130] alloc_pages_mpol+0x1fb/0x550 [ 469.743554][T11130] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 469.743588][T11130] ? filemap_get_entry+0x1a7/0x3b0 [ 469.743631][T11130] folio_alloc_noprof+0x20/0x2d0 [ 469.743669][T11130] filemap_alloc_folio_noprof+0x3a1/0x470 [ 469.743721][T11130] ? __pfx_filemap_alloc_folio_noprof+0x10/0x10 [ 469.743804][T11130] ? __filemap_get_folio+0x524/0xc10 [ 469.743848][T11130] __filemap_get_folio+0x5e9/0xc10 [ 469.743895][T11130] ioctx_alloc+0x761/0x2060 [ 469.743962][T11130] ? __pfx_ioctx_alloc+0x10/0x10 [ 469.744005][T11130] ? __might_fault+0x13b/0x190 [ 469.744067][T11130] __x64_sys_io_setup+0xc9/0x210 [ 469.744118][T11130] do_syscall_64+0xcd/0x260 [ 469.744169][T11130] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 469.744203][T11130] RIP: 0033:0x7f9c4af8d169 [ 469.744229][T11130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 469.744262][T11130] RSP: 002b:00007f9c4bd48038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 469.744293][T11130] RAX: ffffffffffffffda RBX: 00007f9c4b1a6080 RCX: 00007f9c4af8d169 [ 469.744316][T11130] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000ffff [ 469.744336][T11130] RBP: 00007f9c4b00e990 R08: 0000000000000000 R09: 0000000000000000 [ 469.744355][T11130] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 469.744375][T11130] R13: 0000000000000000 R14: 00007f9c4b1a6080 R15: 00007fff8d879e88 [ 469.744417][T11130] [ 470.076935][T11131] kexec: Could not allocate control_code_buffer [ 470.619247][T11152] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1350'. [ 470.878877][T11159] FAULT_INJECTION: forcing a failure. [ 470.878877][T11159] name failslab, interval 1, probability 0, space 0, times 0 [ 470.904852][T11159] CPU: 1 UID: 0 PID: 11159 Comm: syz.1.1353 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 470.904896][T11159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 470.904915][T11159] Call Trace: [ 470.904925][T11159] [ 470.904936][T11159] dump_stack_lvl+0x16c/0x1f0 [ 470.904986][T11159] should_fail_ex+0x512/0x640 [ 470.905019][T11159] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 470.905066][T11159] should_failslab+0xc2/0x120 [ 470.905094][T11159] __kmalloc_cache_noprof+0x6a/0x3e0 [ 470.905138][T11159] ? wq_sysfs_prep_attrs+0x8b/0x3d0 [ 470.905181][T11159] wq_sysfs_prep_attrs+0x8b/0x3d0 [ 470.905217][T11159] wq_affinity_strict_store+0xd1/0x1e0 [ 470.905262][T11159] ? __pfx_wq_affinity_strict_store+0x10/0x10 [ 470.905306][T11159] ? find_held_lock+0x2b/0x80 [ 470.905346][T11159] ? sysfs_file_kobj+0xe4/0x290 [ 470.905392][T11159] ? __pfx_wq_affinity_strict_store+0x10/0x10 [ 470.905435][T11159] dev_attr_store+0x55/0x80 [ 470.905466][T11159] ? __pfx_dev_attr_store+0x10/0x10 [ 470.905495][T11159] sysfs_kf_write+0xef/0x150 [ 470.905543][T11159] kernfs_fop_write_iter+0x351/0x510 [ 470.905580][T11159] ? __pfx_sysfs_kf_write+0x10/0x10 [ 470.905638][T11159] vfs_write+0x5ba/0x1180 [ 470.905684][T11159] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 470.905727][T11159] ? __pfx___mutex_lock+0x10/0x10 [ 470.905774][T11159] ? __pfx_vfs_write+0x10/0x10 [ 470.905848][T11159] ksys_write+0x12a/0x240 [ 470.905892][T11159] ? __pfx_ksys_write+0x10/0x10 [ 470.905933][T11159] ? rcu_is_watching+0x12/0xc0 [ 470.905985][T11159] do_syscall_64+0xcd/0x260 [ 470.906038][T11159] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 470.906068][T11159] RIP: 0033:0x7f21bfd8d169 [ 470.906093][T11159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 470.906123][T11159] RSP: 002b:00007f21c0bbb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 470.906151][T11159] RAX: ffffffffffffffda RBX: 00007f21bffa5fa0 RCX: 00007f21bfd8d169 [ 470.906172][T11159] RDX: 00000000000005c8 RSI: 0000000000000000 RDI: 0000000000000003 [ 470.906189][T11159] RBP: 00007f21c0bbb090 R08: 0000000000000000 R09: 0000000000000000 [ 470.906207][T11159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 470.906224][T11159] R13: 0000000000000000 R14: 00007f21bffa5fa0 R15: 00007fffcac268f8 [ 470.906266][T11159] [ 471.475953][T11164] Invalid ELF header magic: != ELF [ 471.480274][T11163] FAULT_INJECTION: forcing a failure. [ 471.480274][T11163] name failslab, interval 1, probability 0, space 0, times 0 [ 472.074540][T11163] CPU: 0 UID: 0 PID: 11163 Comm: syz.0.1355 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 472.074575][T11163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 472.074591][T11163] Call Trace: [ 472.074598][T11163] [ 472.074607][T11163] dump_stack_lvl+0x16c/0x1f0 [ 472.074647][T11163] should_fail_ex+0x512/0x640 [ 472.074673][T11163] ? fs_reclaim_acquire+0xae/0x150 [ 472.074706][T11163] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 472.074739][T11163] should_failslab+0xc2/0x120 [ 472.074760][T11163] __kmalloc_noprof+0xd2/0x510 [ 472.074802][T11163] tomoyo_realpath_from_path+0xc2/0x6e0 [ 472.074843][T11163] tomoyo_check_open_permission+0x2ab/0x3c0 [ 472.074872][T11163] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 472.074930][T11163] ? do_raw_spin_lock+0x12c/0x2b0 [ 472.074965][T11163] tomoyo_file_open+0x6b/0x90 [ 472.075009][T11163] security_file_open+0x84/0x1e0 [ 472.075041][T11163] do_dentry_open+0x596/0x1c10 [ 472.075083][T11163] vfs_open+0x82/0x3f0 [ 472.075109][T11163] path_openat+0x1e5e/0x2d40 [ 472.075154][T11163] ? __pfx_path_openat+0x10/0x10 [ 472.075195][T11163] do_filp_open+0x20b/0x470 [ 472.075229][T11163] ? __pfx_do_filp_open+0x10/0x10 [ 472.075291][T11163] ? _raw_spin_unlock+0x28/0x50 [ 472.075320][T11163] ? alloc_fd+0x471/0x7d0 [ 472.075360][T11163] do_sys_openat2+0x11b/0x1d0 [ 472.075384][T11163] ? __pfx_do_sys_openat2+0x10/0x10 [ 472.075420][T11163] __x64_sys_open+0x153/0x1e0 [ 472.075444][T11163] ? __pfx___x64_sys_open+0x10/0x10 [ 472.075475][T11163] ? rcu_is_watching+0x12/0xc0 [ 472.075506][T11163] do_syscall_64+0xcd/0x260 [ 472.075542][T11163] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 472.075567][T11163] RIP: 0033:0x7f9b7b18d169 [ 472.075585][T11163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 472.075608][T11163] RSP: 002b:00007f9b78fd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 472.075629][T11163] RAX: ffffffffffffffda RBX: 00007f9b7b3a6080 RCX: 00007f9b7b18d169 [ 472.075645][T11163] RDX: 0000000000000154 RSI: 0000000000022240 RDI: 0000200000000800 [ 472.075659][T11163] RBP: 00007f9b7b20e990 R08: 0000000000000000 R09: 0000000000000000 [ 472.075674][T11163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 472.075687][T11163] R13: 0000000000000000 R14: 00007f9b7b3a6080 R15: 00007ffdcc523048 [ 472.075716][T11163] [ 472.075726][T11163] ERROR: Out of memory at tomoyo_realpath_from_path. [ 472.964679][T11176] Process accounting paused [ 472.999098][T11179] ptrace attach of "./syz-executor exec"[5852] was attempted by "./syz-executor exec"[11179] [ 473.534847][T11194] FAULT_INJECTION: forcing a failure. [ 473.534847][T11194] name failslab, interval 1, probability 0, space 0, times 0 [ 473.574227][T11194] CPU: 1 UID: 0 PID: 11194 Comm: syz.0.1362 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 473.574274][T11194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 473.574293][T11194] Call Trace: [ 473.574303][T11194] [ 473.574316][T11194] dump_stack_lvl+0x16c/0x1f0 [ 473.574374][T11194] should_fail_ex+0x512/0x640 [ 473.574409][T11194] ? __kvmalloc_node_noprof+0x122/0x600 [ 473.574456][T11194] should_failslab+0xc2/0x120 [ 473.574486][T11194] __kvmalloc_node_noprof+0x135/0x600 [ 473.574531][T11194] ? find_held_lock+0x2b/0x80 [ 473.574569][T11194] ? __do_semtimedop+0x259b/0x4cd0 [ 473.574612][T11194] ? __do_semtimedop+0x259b/0x4cd0 [ 473.574645][T11194] __do_semtimedop+0x259b/0x4cd0 [ 473.574695][T11194] ? __pfx___do_semtimedop+0x10/0x10 [ 473.574762][T11194] ? do_semtimedop+0x1b4/0x2e0 [ 473.574793][T11194] do_semtimedop+0x1b4/0x2e0 [ 473.574829][T11194] ? __pfx_do_semtimedop+0x10/0x10 [ 473.574909][T11194] ? __fget_files+0x20e/0x3c0 [ 473.574965][T11194] __x64_sys_semtimedop+0x1b4/0x1f0 [ 473.575002][T11194] ? __pfx___x64_sys_semtimedop+0x10/0x10 [ 473.575037][T11194] ? rcu_is_watching+0x12/0xc0 [ 473.575084][T11194] do_syscall_64+0xcd/0x260 [ 473.575134][T11194] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 473.575167][T11194] RIP: 0033:0x7f9b7b18d169 [ 473.575191][T11194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 473.575222][T11194] RSP: 002b:00007f9b78ff6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000dc [ 473.575251][T11194] RAX: ffffffffffffffda RBX: 00007f9b7b3a5fa0 RCX: 00007f9b7b18d169 [ 473.575272][T11194] RDX: 0000000000000001 RSI: 0000200000000000 RDI: 0000000000000000 [ 473.575291][T11194] RBP: 00007f9b78ff6090 R08: 0000000000000000 R09: 0000000000000000 [ 473.575310][T11194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 473.575441][T11194] R13: 0000000000000000 R14: 00007f9b7b3a5fa0 R15: 00007ffdcc523048 [ 473.575489][T11194] [ 474.432009][T11202] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1364'. [ 477.892052][T11248] ptrace attach of "./syz-executor exec"[5845] was attempted by "./syz-executor exec"[11248] [ 478.703047][T11258] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1376'. [ 478.913800][T11260] FAULT_INJECTION: forcing a failure. [ 478.913800][T11260] name failslab, interval 1, probability 0, space 0, times 0 [ 478.983912][T11260] CPU: 1 UID: 0 PID: 11260 Comm: syz.2.1377 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 478.983956][T11260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 478.983974][T11260] Call Trace: [ 478.983984][T11260] [ 478.983996][T11260] dump_stack_lvl+0x16c/0x1f0 [ 478.984048][T11260] should_fail_ex+0x512/0x640 [ 478.984085][T11260] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 478.984139][T11260] should_failslab+0xc2/0x120 [ 478.984168][T11260] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 478.984218][T11260] ? __alloc_skb+0x2b2/0x380 [ 478.984263][T11260] __alloc_skb+0x2b2/0x380 [ 478.984298][T11260] ? __pfx___alloc_skb+0x10/0x10 [ 478.984342][T11260] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 478.984386][T11260] ? __lock_acquire+0xaa4/0x1ba0 [ 478.984443][T11260] netlink_alloc_large_skb+0x69/0x130 [ 478.984493][T11260] netlink_sendmsg+0x6a1/0xdd0 [ 478.984546][T11260] ? __pfx_netlink_sendmsg+0x10/0x10 [ 478.984609][T11260] ____sys_sendmsg+0xa95/0xc70 [ 478.984661][T11260] ? copy_msghdr_from_user+0x10a/0x160 [ 478.984702][T11260] ? __pfx_____sys_sendmsg+0x10/0x10 [ 478.984771][T11260] ___sys_sendmsg+0x134/0x1d0 [ 478.984814][T11260] ? __pfx____sys_sendmsg+0x10/0x10 [ 478.984914][T11260] __sys_sendmsg+0x16d/0x220 [ 478.984961][T11260] ? __pfx___sys_sendmsg+0x10/0x10 [ 478.985014][T11260] ? rcu_is_watching+0x12/0xc0 [ 478.985065][T11260] do_syscall_64+0xcd/0x260 [ 478.985115][T11260] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 478.985148][T11260] RIP: 0033:0x7f9c4af8d169 [ 478.985172][T11260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 478.985202][T11260] RSP: 002b:00007f9c4bd69038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 478.985231][T11260] RAX: ffffffffffffffda RBX: 00007f9c4b1a5fa0 RCX: 00007f9c4af8d169 [ 478.985251][T11260] RDX: 0000000000000004 RSI: 0000200000000440 RDI: 0000000000000003 [ 478.985268][T11260] RBP: 00007f9c4bd69090 R08: 0000000000000000 R09: 0000000000000000 [ 478.985287][T11260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 478.985304][T11260] R13: 0000000000000000 R14: 00007f9c4b1a5fa0 R15: 00007fff8d879e88 [ 478.985343][T11260] [ 482.568081][T11305] svc: failed to register nfsdv3 RPC service (errno 111). [ 482.569637][T11305] svc: failed to register nfsaclv3 RPC service (errno 111). [ 482.585932][T11309] FAULT_INJECTION: forcing a failure. [ 482.585932][T11309] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 482.585993][T11309] CPU: 1 UID: 0 PID: 11309 Comm: syz.1.1388 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 482.586036][T11309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 482.586053][T11309] Call Trace: [ 482.586062][T11309] [ 482.586073][T11309] dump_stack_lvl+0x16c/0x1f0 [ 482.586121][T11309] should_fail_ex+0x512/0x640 [ 482.586163][T11309] _copy_to_user+0x32/0xd0 [ 482.586207][T11309] simple_read_from_buffer+0xcb/0x170 [ 482.586253][T11309] proc_fail_nth_read+0x197/0x270 [ 482.586298][T11309] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 482.586345][T11309] ? rw_verify_area+0xcf/0x680 [ 482.586381][T11309] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 482.586424][T11309] vfs_read+0x1de/0xc70 [ 482.586471][T11309] ? __pfx___mutex_lock+0x10/0x10 [ 482.586516][T11309] ? __pfx_vfs_read+0x10/0x10 [ 482.586569][T11309] ? __fget_files+0x20e/0x3c0 [ 482.586627][T11309] ksys_read+0x12a/0x240 [ 482.586677][T11309] ? __pfx_ksys_read+0x10/0x10 [ 482.586732][T11309] do_syscall_64+0xcd/0x260 [ 482.586781][T11309] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 482.586813][T11309] RIP: 0033:0x7f21bfd8bb7c [ 482.586836][T11309] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 482.586865][T11309] RSP: 002b:00007f21c0bbb030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 482.586893][T11309] RAX: ffffffffffffffda RBX: 00007f21bffa5fa0 RCX: 00007f21bfd8bb7c [ 482.586912][T11309] RDX: 000000000000000f RSI: 00007f21c0bbb0a0 RDI: 0000000000000004 [ 482.586930][T11309] RBP: 00007f21c0bbb090 R08: 0000000000000000 R09: 0000000000000000 [ 482.586948][T11309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 482.586966][T11309] R13: 0000000000000000 R14: 00007f21bffa5fa0 R15: 00007fffcac268f8 [ 482.587006][T11309] [ 483.836483][ C0] vkms_vblank_simulate: vblank timer overrun [ 484.782283][T11329] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1395'. [ 485.211754][T11338] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1397'. [ 486.033649][T11340] ptrace attach of "./syz-executor exec"[5845] was attempted by "./syz-executor exec"[11340] [ 486.410403][T11353] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(5) [ 486.724697][T11358] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1399'. [ 488.980115][T11390] ptrace attach of "./syz-executor exec"[5849] was attempted by "./syz-executor exec"[11390] [ 489.536993][T11405] netlink: 'syz.1.1412': attribute type 1 has an invalid length. [ 489.694126][T11407] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1412'. [ 491.814123][T11430] FAULT_INJECTION: forcing a failure. [ 491.814123][T11430] name failslab, interval 1, probability 0, space 0, times 0 [ 491.878566][T11430] CPU: 1 UID: 0 PID: 11430 Comm: syz.3.1418 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 491.878613][T11430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 491.878632][T11430] Call Trace: [ 491.878642][T11430] [ 491.878654][T11430] dump_stack_lvl+0x16c/0x1f0 [ 491.878706][T11430] should_fail_ex+0x512/0x640 [ 491.878742][T11430] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 491.878795][T11430] should_failslab+0xc2/0x120 [ 491.878824][T11430] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 491.878874][T11430] ? __pmd_alloc+0xc3/0x870 [ 491.878915][T11430] __pmd_alloc+0xc3/0x870 [ 491.878949][T11430] ? find_held_lock+0x2b/0x80 [ 491.878993][T11430] __handle_mm_fault+0x948/0x2a40 [ 491.879050][T11430] ? __pfx___handle_mm_fault+0x10/0x10 [ 491.879118][T11430] ? find_vma+0xbf/0x140 [ 491.879151][T11430] ? __pfx_find_vma+0x10/0x10 [ 491.879191][T11430] handle_mm_fault+0x3fe/0xad0 [ 491.879243][T11430] do_user_addr_fault+0x7a6/0x1370 [ 491.879286][T11430] ? rcu_is_watching+0x12/0xc0 [ 491.879328][T11430] exc_page_fault+0x5c/0xc0 [ 491.879372][T11430] asm_exc_page_fault+0x26/0x30 [ 491.879402][T11430] RIP: 0010:rep_movs_alternative+0x30/0x90 [ 491.879439][T11430] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 [ 491.879469][T11430] RSP: 0018:ffffc900043d7db8 EFLAGS: 00050212 [ 491.879494][T11430] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000010 [ 491.879521][T11430] RDX: fffff5200087afd4 RSI: 0000000000000000 RDI: ffffc900043d7e90 [ 491.879545][T11430] RBP: 0000000000000010 R08: 0000000000000001 R09: fffff5200087afd3 [ 491.879564][T11430] R10: ffffc900043d7e9f R11: 0000000000000000 R12: 0000000000000000 [ 491.879583][T11430] R13: ffffc900043d7e90 R14: 1ffff9200087afc6 R15: ffffc900043d7e90 [ 491.879626][T11430] _copy_from_user+0x98/0xd0 [ 491.879668][T11430] write_ldt+0xfb/0xc30 [ 491.879709][T11430] ? __fget_files+0x20e/0x3c0 [ 491.879758][T11430] ? __pfx_write_ldt+0x10/0x10 [ 491.879799][T11430] ? fput+0x70/0xf0 [ 491.879829][T11430] ? ksys_write+0x1b9/0x240 [ 491.879871][T11430] ? __pfx_ksys_write+0x10/0x10 [ 491.879919][T11430] ? rcu_is_watching+0x12/0xc0 [ 491.879965][T11430] __x64_sys_modify_ldt+0xb1/0x170 [ 491.880008][T11430] do_syscall_64+0xcd/0x260 [ 491.880058][T11430] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 491.880089][T11430] RIP: 0033:0x7feeb3d8d169 [ 491.880113][T11430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 491.880144][T11430] RSP: 002b:00007feeb4b35038 EFLAGS: 00000246 ORIG_RAX: 000000000000009a [ 491.880171][T11430] RAX: ffffffffffffffda RBX: 00007feeb3fa5fa0 RCX: 00007feeb3d8d169 [ 491.880192][T11430] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000001 [ 491.880210][T11430] RBP: 00007feeb4b35090 R08: 0000000000000000 R09: 0000000000000000 [ 491.880228][T11430] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 491.880245][T11430] R13: 0000000000000000 R14: 00007feeb3fa5fa0 R15: 00007ffd2a9e1de8 [ 491.880285][T11430] [ 492.480430][T11435] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1421'. [ 492.610333][ T30] audit: type=1804 audit(6039327909.866:6): pid=11439 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1419" name=2F6E6577726F6F742F3339312F08 dev="tmpfs" ino=2070 res=1 errno=0 [ 494.841645][T11494] FAULT_INJECTION: forcing a failure. [ 494.841645][T11494] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 494.905161][T11494] CPU: 0 UID: 0 PID: 11494 Comm: syz.0.1437 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 494.905201][T11494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 494.905218][T11494] Call Trace: [ 494.905226][T11494] [ 494.905236][T11494] dump_stack_lvl+0x16c/0x1f0 [ 494.905284][T11494] should_fail_ex+0x512/0x640 [ 494.905325][T11494] _copy_from_user+0x2e/0xd0 [ 494.905366][T11494] copy_msghdr_from_user+0x98/0x160 [ 494.905409][T11494] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 494.905468][T11494] ___sys_sendmsg+0xfe/0x1d0 [ 494.905518][T11494] ? __pfx____sys_sendmsg+0x10/0x10 [ 494.905605][T11494] __sys_sendmsg+0x16d/0x220 [ 494.905662][T11494] ? __pfx___sys_sendmsg+0x10/0x10 [ 494.905708][T11494] ? rcu_is_watching+0x12/0xc0 [ 494.905752][T11494] do_syscall_64+0xcd/0x260 [ 494.905800][T11494] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 494.905830][T11494] RIP: 0033:0x7f9b7b18d169 [ 494.905855][T11494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 494.905885][T11494] RSP: 002b:00007f9b78ff6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 494.905914][T11494] RAX: ffffffffffffffda RBX: 00007f9b7b3a5fa0 RCX: 00007f9b7b18d169 [ 494.905935][T11494] RDX: 00000000000040c0 RSI: 0000200000000200 RDI: 0000000000000003 [ 494.905954][T11494] RBP: 00007f9b78ff6090 R08: 0000000000000000 R09: 0000000000000000 [ 494.905972][T11494] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 494.905990][T11494] R13: 0000000000000000 R14: 00007f9b7b3a5fa0 R15: 00007ffdcc523048 [ 494.906033][T11494] [ 494.908783][T11499] FAULT_INJECTION: forcing a failure. [ 494.908783][T11499] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 495.101959][T11499] CPU: 1 UID: 0 PID: 11499 Comm: syz.2.1439 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 495.102002][T11499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 495.102021][T11499] Call Trace: [ 495.102031][T11499] [ 495.102043][T11499] dump_stack_lvl+0x16c/0x1f0 [ 495.102095][T11499] should_fail_ex+0x512/0x640 [ 495.102139][T11499] should_fail_alloc_page+0xe7/0x130 [ 495.102172][T11499] prepare_alloc_pages+0x3c2/0x610 [ 495.102218][T11499] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 495.102272][T11499] ? __pfx_stack_trace_save+0x10/0x10 [ 495.102323][T11499] ? stack_depot_save_flags+0x28/0xa50 [ 495.102361][T11499] ? __lock_acquire+0xaa4/0x1ba0 [ 495.102417][T11499] ? kasan_save_stack+0x42/0x60 [ 495.102464][T11499] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 495.102512][T11499] ? alloc_ldt_struct+0x5d/0x1a0 [ 495.102550][T11499] ? __x64_sys_modify_ldt+0xb1/0x170 [ 495.102591][T11499] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 495.102647][T11499] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 495.102684][T11499] ? policy_nodemask+0xea/0x4e0 [ 495.102739][T11499] alloc_pages_mpol+0x1fb/0x550 [ 495.102771][T11499] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 495.102813][T11499] alloc_pages_noprof+0x131/0x390 [ 495.102841][T11499] get_zeroed_page_noprof+0x14/0x50 [ 495.102876][T11499] alloc_ldt_struct+0x9f/0x1a0 [ 495.102911][T11499] write_ldt+0x3c0/0xc30 [ 495.102947][T11499] ? __fget_files+0x20e/0x3c0 [ 495.102996][T11499] ? __pfx_write_ldt+0x10/0x10 [ 495.103034][T11499] ? fput+0x70/0xf0 [ 495.103063][T11499] ? ksys_write+0x1b9/0x240 [ 495.103105][T11499] ? __pfx_ksys_write+0x10/0x10 [ 495.103145][T11499] ? rcu_is_watching+0x12/0xc0 [ 495.103190][T11499] __x64_sys_modify_ldt+0xb1/0x170 [ 495.103232][T11499] do_syscall_64+0xcd/0x260 [ 495.103283][T11499] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 495.103323][T11499] RIP: 0033:0x7f9c4af8d169 [ 495.103347][T11499] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 495.103378][T11499] RSP: 002b:00007f9c4bd69038 EFLAGS: 00000246 ORIG_RAX: 000000000000009a [ 495.103406][T11499] RAX: ffffffffffffffda RBX: 00007f9c4b1a5fa0 RCX: 00007f9c4af8d169 [ 495.103427][T11499] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000001 [ 495.103444][T11499] RBP: 00007f9c4bd69090 R08: 0000000000000000 R09: 0000000000000000 [ 495.103463][T11499] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 495.103480][T11499] R13: 0000000000000000 R14: 00007f9c4b1a5fa0 R15: 00007fff8d879e88 [ 495.103520][T11499] [ 495.362726][ C1] vkms_vblank_simulate: vblank timer overrun [ 496.074107][T11529] Invalid ELF header magic: != ELF [ 496.177314][T11542] FAULT_INJECTION: forcing a failure. [ 496.177314][T11542] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 496.230073][T11542] CPU: 1 UID: 0 PID: 11542 Comm: syz.0.1449 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 496.230118][T11542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 496.230137][T11542] Call Trace: [ 496.230148][T11542] [ 496.230160][T11542] dump_stack_lvl+0x16c/0x1f0 [ 496.230211][T11542] should_fail_ex+0x512/0x640 [ 496.230253][T11542] _copy_from_user+0x2e/0xd0 [ 496.230294][T11542] move_addr_to_kernel+0x65/0x170 [ 496.230328][T11542] __copy_msghdr+0x386/0x470 [ 496.230378][T11542] copy_msghdr_from_user+0xc1/0x160 [ 496.230419][T11542] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 496.230468][T11542] ? __pfx__kstrtoull+0x10/0x10 [ 496.230524][T11542] ___sys_sendmsg+0xfe/0x1d0 [ 496.230567][T11542] ? __pfx____sys_sendmsg+0x10/0x10 [ 496.230627][T11542] ? find_held_lock+0x2b/0x80 [ 496.230697][T11542] __sys_sendmmsg+0x200/0x420 [ 496.230745][T11542] ? __pfx___sys_sendmmsg+0x10/0x10 [ 496.230799][T11542] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 496.230863][T11542] ? fput+0x70/0xf0 [ 496.230894][T11542] ? ksys_write+0x1b9/0x240 [ 496.230936][T11542] ? __pfx_ksys_write+0x10/0x10 [ 496.230978][T11542] ? rcu_is_watching+0x12/0xc0 [ 496.231024][T11542] __x64_sys_sendmmsg+0x9c/0x100 [ 496.231064][T11542] ? lockdep_hardirqs_on+0x7c/0x110 [ 496.231108][T11542] do_syscall_64+0xcd/0x260 [ 496.231157][T11542] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 496.231190][T11542] RIP: 0033:0x7f9b7b18d169 [ 496.231215][T11542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 496.231245][T11542] RSP: 002b:00007f9b78ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 496.231274][T11542] RAX: ffffffffffffffda RBX: 00007f9b7b3a5fa0 RCX: 00007f9b7b18d169 [ 496.231294][T11542] RDX: 0000000000000002 RSI: 00002000000001c0 RDI: 0000000000000003 [ 496.231312][T11542] RBP: 00007f9b78ff6090 R08: 0000000000000000 R09: 0000000000000000 [ 496.231331][T11542] R10: 0000000000000100 R11: 0000000000000246 R12: 0000000000000001 [ 496.231350][T11542] R13: 0000000000000000 R14: 00007f9b7b3a5fa0 R15: 00007ffdcc523048 [ 496.231398][T11542] [ 496.448310][ C1] vkms_vblank_simulate: vblank timer overrun [ 496.521529][T11537] ptrace attach of "./syz-executor exec"[5852] was attempted by "./syz-executor exec"[11537] [ 497.621702][T11572] FAULT_INJECTION: forcing a failure. [ 497.621702][T11572] name failslab, interval 1, probability 0, space 0, times 0 [ 497.666204][T11572] CPU: 1 UID: 0 PID: 11572 Comm: syz.2.1455 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 497.666253][T11572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 497.666271][T11572] Call Trace: [ 497.666280][T11572] [ 497.666292][T11572] dump_stack_lvl+0x16c/0x1f0 [ 497.666351][T11572] should_fail_ex+0x512/0x640 [ 497.666381][T11572] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 497.666423][T11572] should_failslab+0xc2/0x120 [ 497.666448][T11572] __kmalloc_cache_noprof+0x6a/0x3e0 [ 497.666485][T11572] ? nat_init_net+0x56/0x270 [ 497.666524][T11572] ? __pfx_nat_init_net+0x10/0x10 [ 497.666561][T11572] nat_init_net+0x56/0x270 [ 497.666598][T11572] ops_init+0x1df/0x5f0 [ 497.666641][T11572] setup_net+0x21e/0x850 [ 497.666685][T11572] ? __pfx_setup_net+0x10/0x10 [ 497.666726][T11572] ? lockdep_init_map_type+0x5c/0x280 [ 497.666757][T11572] ? __pfx_down_read_killable+0x10/0x10 [ 497.666792][T11572] ? debug_mutex_init+0x37/0x70 [ 497.666835][T11572] copy_net_ns+0x2a6/0x5f0 [ 497.666907][T11572] create_new_namespaces+0x3ea/0xad0 [ 497.666962][T11572] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 497.667013][T11572] ksys_unshare+0x45b/0xa40 [ 497.667063][T11572] ? __pfx_ksys_unshare+0x10/0x10 [ 497.667108][T11572] ? xfd_validate_state+0x5d/0x180 [ 497.667141][T11572] ? rcu_is_watching+0x12/0xc0 [ 497.667182][T11572] __x64_sys_unshare+0x31/0x40 [ 497.667223][T11572] do_syscall_64+0xcd/0x260 [ 497.667266][T11572] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 497.667293][T11572] RIP: 0033:0x7f9c4af8d169 [ 497.667325][T11572] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 497.667353][T11572] RSP: 002b:00007f9c4bd69038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 497.667379][T11572] RAX: ffffffffffffffda RBX: 00007f9c4b1a5fa0 RCX: 00007f9c4af8d169 [ 497.667397][T11572] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 497.667414][T11572] RBP: 00007f9c4b00e990 R08: 0000000000000000 R09: 0000000000000000 [ 497.667431][T11572] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 497.667447][T11572] R13: 0000000000000000 R14: 00007f9c4b1a5fa0 R15: 00007fff8d879e88 [ 497.667482][T11572] [ 497.898352][ C1] vkms_vblank_simulate: vblank timer overrun [ 500.352113][T11603] FAULT_INJECTION: forcing a failure. [ 500.352113][T11603] name failslab, interval 1, probability 0, space 0, times 0 [ 500.403820][T11603] CPU: 0 UID: 0 PID: 11603 Comm: syz.1.1463 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 500.403875][T11603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 500.403893][T11603] Call Trace: [ 500.403904][T11603] [ 500.403917][T11603] dump_stack_lvl+0x16c/0x1f0 [ 500.403978][T11603] should_fail_ex+0x512/0x640 [ 500.404013][T11603] ? __kmalloc_noprof+0xbf/0x510 [ 500.404064][T11603] ? sk_prot_alloc+0x1a8/0x2a0 [ 500.404110][T11603] should_failslab+0xc2/0x120 [ 500.404141][T11603] __kmalloc_noprof+0xd2/0x510 [ 500.404196][T11603] sk_prot_alloc+0x1a8/0x2a0 [ 500.404249][T11603] sk_alloc+0x36/0xc20 [ 500.404288][T11603] __netlink_create+0x5e/0x2c0 [ 500.404325][T11603] ? __wake_up+0x3f/0x60 [ 500.404372][T11603] netlink_create+0x39e/0x620 [ 500.404411][T11603] ? __pfx_genl_bind+0x10/0x10 [ 500.404459][T11603] ? __pfx_genl_unbind+0x10/0x10 [ 500.404504][T11603] ? __pfx_genl_release+0x10/0x10 [ 500.404537][T11603] __sock_create+0x335/0x8d0 [ 500.404575][T11603] __sys_socket+0x14d/0x260 [ 500.404607][T11603] ? __pfx___sys_socket+0x10/0x10 [ 500.404641][T11603] ? do_user_addr_fault+0x843/0x1370 [ 500.404685][T11603] __x64_sys_socket+0x72/0xb0 [ 500.404712][T11603] ? lockdep_hardirqs_on+0x7c/0x110 [ 500.404756][T11603] do_syscall_64+0xcd/0x260 [ 500.404806][T11603] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 500.404844][T11603] RIP: 0033:0x7f21bfd8f087 [ 500.404868][T11603] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 500.404898][T11603] RSP: 002b:00007f21c0bb9fa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 500.404928][T11603] RAX: ffffffffffffffda RBX: 00007f21bffa5fa0 RCX: 00007f21bfd8f087 [ 500.404949][T11603] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 500.404967][T11603] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 500.404986][T11603] R10: 0000200000000000 R11: 0000000000000286 R12: 0000000000000000 [ 500.405004][T11603] R13: 0000000000000000 R14: 00007f21bffa5fa0 R15: 00007fffcac268f8 [ 500.405044][T11603] [ 500.789952][T11606] ptrace attach of "./syz-executor exec"[5845] was attempted by "./syz-executor exec"[11606] [ 501.135928][T11612] FAULT_INJECTION: forcing a failure. [ 501.135928][T11612] name failslab, interval 1, probability 0, space 0, times 0 [ 501.185454][T11612] CPU: 0 UID: 0 PID: 11612 Comm: syz.2.1464 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 501.185503][T11612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 501.185522][T11612] Call Trace: [ 501.185533][T11612] [ 501.185545][T11612] dump_stack_lvl+0x16c/0x1f0 [ 501.185596][T11612] should_fail_ex+0x512/0x640 [ 501.185639][T11612] should_failslab+0xc2/0x120 [ 501.185671][T11612] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 501.185729][T11612] ? dst_alloc+0x99/0x1a0 [ 501.185771][T11612] ? __pfx_ip6_dst_gc+0x10/0x10 [ 501.185801][T11612] dst_alloc+0x99/0x1a0 [ 501.185841][T11612] ip6_rt_cache_alloc+0x1f6/0x8c0 [ 501.185891][T11612] ? __pfx_ip6_rt_cache_alloc+0x10/0x10 [ 501.185949][T11612] ip6_pol_route+0xd7b/0x1230 [ 501.186003][T11612] ? __pfx_ip6_pol_route+0x10/0x10 [ 501.186061][T11612] ? find_held_lock+0x2b/0x80 [ 501.186109][T11612] ? __pfx_ip6_pol_route_output+0x10/0x10 [ 501.186157][T11612] fib6_rule_lookup+0x24c/0x720 [ 501.186205][T11612] ? __pfx_fib6_rule_lookup+0x10/0x10 [ 501.186248][T11612] ? __kernel_text_address+0xd/0x40 [ 501.186284][T11612] ? unwind_get_return_address+0x59/0xa0 [ 501.186342][T11612] ? __lock_acquire+0x5ca/0x1ba0 [ 501.186402][T11612] ip6_route_output_flags+0x1d0/0x640 [ 501.186449][T11612] ip6_dst_lookup_tail.constprop.0+0x115a/0x2140 [ 501.186505][T11612] ? find_held_lock+0x2b/0x80 [ 501.186569][T11612] ? __pfx_ip6_dst_lookup_tail.constprop.0+0x10/0x10 [ 501.186628][T11612] ? __lock_acquire+0x5ca/0x1ba0 [ 501.186702][T11612] ip6_dst_lookup_flow+0x99/0x1d0 [ 501.186753][T11612] ? __pfx_ip6_dst_lookup_flow+0x10/0x10 [ 501.186799][T11612] ? find_held_lock+0x2b/0x80 [ 501.186840][T11612] ? rawv6_sendmsg+0xc33/0x4890 [ 501.186889][T11612] rawv6_sendmsg+0xf68/0x4890 [ 501.186927][T11612] ? up_write+0x1b2/0x520 [ 501.186977][T11612] ? __pfx_rawv6_sendmsg+0x10/0x10 [ 501.187016][T11612] ? __lock_acquire+0x5ca/0x1ba0 [ 501.187076][T11612] ? __lock_acquire+0x5ca/0x1ba0 [ 501.187148][T11612] ? __pfx___might_resched+0x10/0x10 [ 501.187212][T11612] ? __pfx_aa_sk_perm+0x10/0x10 [ 501.187248][T11612] ? __import_iovec+0x1c8/0x660 [ 501.187289][T11612] ? __might_fault+0xe3/0x190 [ 501.187336][T11612] ? __might_fault+0x13b/0x190 [ 501.187383][T11612] ? __pfx_rawv6_sendmsg+0x10/0x10 [ 501.187428][T11612] ? inet_sendmsg+0x119/0x140 [ 501.187456][T11612] inet_sendmsg+0x119/0x140 [ 501.187489][T11612] ____sys_sendmsg+0x973/0xc70 [ 501.187543][T11612] ? copy_msghdr_from_user+0x10a/0x160 [ 501.187584][T11612] ? __pfx_____sys_sendmsg+0x10/0x10 [ 501.187650][T11612] ? __pfx__kstrtoull+0x10/0x10 [ 501.187715][T11612] ___sys_sendmsg+0x134/0x1d0 [ 501.187760][T11612] ? __pfx____sys_sendmsg+0x10/0x10 [ 501.187824][T11612] ? find_held_lock+0x2b/0x80 [ 501.187893][T11612] __sys_sendmmsg+0x200/0x420 [ 501.187941][T11612] ? __pfx___sys_sendmmsg+0x10/0x10 [ 501.187999][T11612] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 501.188066][T11612] ? fput+0x70/0xf0 [ 501.188095][T11612] ? ksys_write+0x1b9/0x240 [ 501.188139][T11612] ? __pfx_ksys_write+0x10/0x10 [ 501.188181][T11612] ? rcu_is_watching+0x12/0xc0 [ 501.188229][T11612] __x64_sys_sendmmsg+0x9c/0x100 [ 501.188271][T11612] ? lockdep_hardirqs_on+0x7c/0x110 [ 501.188315][T11612] do_syscall_64+0xcd/0x260 [ 501.188366][T11612] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 501.188397][T11612] RIP: 0033:0x7f9c4af8d169 [ 501.188422][T11612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 501.188453][T11612] RSP: 002b:00007f9c4bd69038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 501.188482][T11612] RAX: ffffffffffffffda RBX: 00007f9c4b1a5fa0 RCX: 00007f9c4af8d169 [ 501.188503][T11612] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 501.188521][T11612] RBP: 00007f9c4bd69090 R08: 0000000000000000 R09: 0000000000000000 [ 501.188539][T11612] R10: 0000000007fffffe R11: 0000000000000246 R12: 0000000000000001 [ 501.188558][T11612] R13: 0000000000000000 R14: 00007f9c4b1a5fa0 R15: 00007fff8d879e88 [ 501.188600][T11612] [ 502.357554][T11626] FAULT_INJECTION: forcing a failure. [ 502.357554][T11626] name failslab, interval 1, probability 0, space 0, times 0 [ 502.393765][T11626] CPU: 0 UID: 0 PID: 11626 Comm: syz.3.1469 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 502.393809][T11626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 502.393836][T11626] Call Trace: [ 502.393846][T11626] [ 502.393858][T11626] dump_stack_lvl+0x16c/0x1f0 [ 502.393910][T11626] should_fail_ex+0x512/0x640 [ 502.393947][T11626] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 502.393995][T11626] should_failslab+0xc2/0x120 [ 502.394025][T11626] __kmalloc_cache_noprof+0x6a/0x3e0 [ 502.394070][T11626] ? trace_pid_list_alloc+0x27c/0x3f0 [ 502.394123][T11626] trace_pid_list_alloc+0x27c/0x3f0 [ 502.394176][T11626] trace_pid_write+0x10e/0x460 [ 502.394218][T11626] ? __pfx_trace_pid_write+0x10/0x10 [ 502.394252][T11626] ? __pfx___mutex_lock+0x10/0x10 [ 502.394302][T11626] ? update_last_data+0xb3/0x480 [ 502.394362][T11626] event_pid_write.isra.0+0x3cc/0x7c0 [ 502.394417][T11626] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 502.394481][T11626] vfs_write+0x25c/0x1180 [ 502.394522][T11626] ? __pfx_ftrace_event_pid_write+0x10/0x10 [ 502.394578][T11626] ? __pfx___mutex_lock+0x10/0x10 [ 502.394624][T11626] ? __pfx_vfs_write+0x10/0x10 [ 502.394679][T11626] ? __fget_files+0x20e/0x3c0 [ 502.394742][T11626] ksys_write+0x12a/0x240 [ 502.394785][T11626] ? __pfx_ksys_write+0x10/0x10 [ 502.394834][T11626] ? rcu_is_watching+0x12/0xc0 [ 502.394885][T11626] do_syscall_64+0xcd/0x260 [ 502.394936][T11626] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 502.394968][T11626] RIP: 0033:0x7feeb3d8d169 [ 502.394992][T11626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 502.395023][T11626] RSP: 002b:00007feeb4b35038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 502.395050][T11626] RAX: ffffffffffffffda RBX: 00007feeb3fa5fa0 RCX: 00007feeb3d8d169 [ 502.395070][T11626] RDX: 000000000000001d RSI: 0000200000000300 RDI: 0000000000000002 [ 502.395088][T11626] RBP: 00007feeb4b35090 R08: 0000000000000000 R09: 0000000000000000 [ 502.395107][T11626] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 502.395124][T11626] R13: 0000000000000000 R14: 00007feeb3fa5fa0 R15: 00007ffd2a9e1de8 [ 502.395166][T11626] [ 503.693511][T11629] Process accounting resumed [ 504.155218][T11659] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1475'. [ 504.256250][T11659] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 504.325652][T11664] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 504.432801][T11667] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1476'. [ 504.570807][T11659] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 505.801840][T11702] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1482'. [ 505.836248][T11702] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 505.892348][T11695] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 506.342658][T11702] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 506.612540][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 506.619092][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 506.734854][T11689] ICMPv6: process `syz.2.1480' is using deprecated sysctl (syscall) net.ipv6.neigh.macsec0.base_reachable_time - use net.ipv6.neigh.macsec0.base_reachable_time_ms instead [ 508.290242][T11744] vivid-003: ================= START STATUS ================= [ 508.369876][T11744] vivid-003: Radio HW Seek Mode: Bounded [ 508.375943][T11744] vivid-003: Radio Programmable HW Seek: false [ 508.496904][T11744] vivid-003: RDS Rx I/O Mode: Block I/O [ 508.502943][T11744] vivid-003: Generate RBDS Instead of RDS: false [ 508.544235][T11744] vivid-003: RDS Reception: true [ 508.564259][T11744] vivid-003: RDS Program Type: 0 inactive [ 508.593824][T11744] vivid-003: RDS PS Name: inactive [ 508.636896][T11744] vivid-003: RDS Radio Text: inactive [ 508.642474][T11744] vivid-003: RDS Traffic Announcement: false inactive [ 508.744028][T11757] FAULT_INJECTION: forcing a failure. [ 508.744028][T11757] name failslab, interval 1, probability 0, space 0, times 0 [ 508.769784][T11757] CPU: 1 UID: 0 PID: 11757 Comm: syz.1.1490 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 508.769829][T11757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 508.769849][T11757] Call Trace: [ 508.769859][T11757] [ 508.769871][T11757] dump_stack_lvl+0x16c/0x1f0 [ 508.769922][T11757] should_fail_ex+0x512/0x640 [ 508.769960][T11757] ? fs_reclaim_acquire+0xae/0x150 [ 508.770002][T11757] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 508.770047][T11757] should_failslab+0xc2/0x120 [ 508.770077][T11757] __kmalloc_noprof+0xd2/0x510 [ 508.770134][T11757] tomoyo_realpath_from_path+0xc2/0x6e0 [ 508.770182][T11757] ? tomoyo_profile+0x47/0x60 [ 508.770234][T11757] tomoyo_path_number_perm+0x245/0x580 [ 508.770270][T11757] ? tomoyo_path_number_perm+0x237/0x580 [ 508.770311][T11757] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 508.770372][T11757] ? find_held_lock+0x2b/0x80 [ 508.770458][T11757] ? find_held_lock+0x2b/0x80 [ 508.770498][T11757] ? hook_file_ioctl_common+0x145/0x410 [ 508.770543][T11757] ? __fget_files+0x20e/0x3c0 [ 508.770596][T11757] security_file_ioctl+0x9b/0x240 [ 508.770637][T11757] __x64_sys_ioctl+0xb7/0x200 [ 508.770680][T11757] do_syscall_64+0xcd/0x260 [ 508.770731][T11757] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 508.770764][T11757] RIP: 0033:0x7f21bfd8d169 [ 508.770789][T11757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 508.770820][T11757] RSP: 002b:00007f21c0b9a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 508.770849][T11757] RAX: ffffffffffffffda RBX: 00007f21bffa6080 RCX: 00007f21bfd8d169 [ 508.770869][T11757] RDX: 0000000000000038 RSI: 00000000400454ca RDI: 0000000000000003 [ 508.770887][T11757] RBP: 00007f21c0b9a090 R08: 0000000000000000 R09: 0000000000000000 [ 508.770905][T11757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 508.770924][T11757] R13: 0000000000000000 R14: 00007f21bffa6080 R15: 00007fffcac268f8 [ 508.770963][T11757] [ 508.776836][T11744] vivid-003: RDS Traffic Program: [ 508.910399][T11759] program syz.1.1490 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 508.957746][T11757] ERROR: Out of memory at tomoyo_realpath_from_path. [ 509.019771][T11744] false inactive [ 509.037040][T11744] vivid-003: RDS Music: false inactive [ 509.113630][T11757] IPVS: length: 24 != 25769803800 [ 509.122336][T11744] vivid-003: ================== END STATUS ================== [ 509.446437][ T55] Bluetooth: hci1: unexpected subevent 0x01 length: 4 < 18 [ 509.790862][T11766] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1492'. [ 509.961227][T11773] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 510.050271][T11766] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 510.523977][T11766] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 510.651956][T11779] program syz.2.1494 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 510.729149][T11782] IPVS: length: 24 != 25769803800 [ 510.757477][T11776] ptrace attach of "./syz-executor exec"[5841] was attempted by "./syz-executor exec"[11776] [ 511.419474][T11791] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1497'. [ 511.594935][T11797] FAULT_INJECTION: forcing a failure. [ 511.594935][T11797] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 511.659007][T11797] CPU: 1 UID: 0 PID: 11797 Comm: syz.1.1499 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 511.659058][T11797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 511.659076][T11797] Call Trace: [ 511.659087][T11797] [ 511.659099][T11797] dump_stack_lvl+0x16c/0x1f0 [ 511.659147][T11797] should_fail_ex+0x512/0x640 [ 511.659189][T11797] _copy_from_user+0x2e/0xd0 [ 511.659229][T11797] map_delete_elem+0x706/0xa10 [ 511.659279][T11797] ? __might_fault+0x90/0x190 [ 511.659326][T11797] ? __pfx_map_delete_elem+0x10/0x10 [ 511.659388][T11797] __sys_bpf+0x631/0x4d80 [ 511.659429][T11797] ? __pfx___sys_bpf+0x10/0x10 [ 511.659461][T11797] ? vfs_write+0x316/0x1180 [ 511.659501][T11797] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 511.659552][T11797] ? __pfx_vfs_write+0x10/0x10 [ 511.659595][T11797] ? do_sys_openat2+0x157/0x1d0 [ 511.659651][T11797] ? ksys_write+0x1b9/0x240 [ 511.659708][T11797] ? __pfx_ksys_write+0x10/0x10 [ 511.659749][T11797] ? rcu_is_watching+0x12/0xc0 [ 511.659794][T11797] __x64_sys_bpf+0x78/0xc0 [ 511.659829][T11797] ? lockdep_hardirqs_on+0x7c/0x110 [ 511.659872][T11797] do_syscall_64+0xcd/0x260 [ 511.659921][T11797] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 511.659952][T11797] RIP: 0033:0x7f21bfd8d169 [ 511.659975][T11797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 511.660022][T11797] RSP: 002b:00007f21c0bbb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 511.660052][T11797] RAX: ffffffffffffffda RBX: 00007f21bffa5fa0 RCX: 00007f21bfd8d169 [ 511.660073][T11797] RDX: 000000000000000c RSI: 00002000000001c0 RDI: 0000000000000003 [ 511.660091][T11797] RBP: 00007f21c0bbb090 R08: 0000000000000000 R09: 0000000000000000 [ 511.660110][T11797] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 511.660133][T11797] R13: 0000000000000000 R14: 00007f21bffa5fa0 R15: 00007fffcac268f8 [ 511.660173][T11797] [ 512.812928][T11818] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1504'. [ 512.871578][T11815] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1503'. [ 512.885095][T11809] ptrace attach of "./syz-executor exec"[5852] was attempted by "./syz-executor exec"[11809] [ 512.908495][T11815] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1503'. [ 512.940193][T11822] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 512.973620][T11815] tc_dump_action: action bad kind [ 513.016420][T11818] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 513.303468][T11818] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 513.351615][T11799] ptrace attach of "./syz-executor exec"[5841] was attempted by "./syz-executor exec"[11799] [ 513.862119][T11831] FAULT_INJECTION: forcing a failure. [ 513.862119][T11831] name failslab, interval 1, probability 0, space 0, times 0 [ 513.926130][T11831] CPU: 0 UID: 0 PID: 11831 Comm: syz.2.1505 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 513.926176][T11831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 513.926194][T11831] Call Trace: [ 513.926204][T11831] [ 513.926215][T11831] dump_stack_lvl+0x16c/0x1f0 [ 513.926267][T11831] should_fail_ex+0x512/0x640 [ 513.926301][T11831] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 513.926350][T11831] should_failslab+0xc2/0x120 [ 513.926379][T11831] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 513.926428][T11831] ? prepare_creds+0x2c/0x7d0 [ 513.926467][T11831] prepare_creds+0x2c/0x7d0 [ 513.926503][T11831] lookup_user_key+0x399/0x1300 [ 513.926545][T11831] ? __pfx_lookup_user_key+0x10/0x10 [ 513.926585][T11831] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 513.926639][T11831] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 513.926695][T11831] ? fput+0x70/0xf0 [ 513.926725][T11831] ? ksys_write+0x1b9/0x240 [ 513.926774][T11831] keyctl_keyring_link+0x22/0xe0 [ 513.926805][T11831] __do_sys_keyctl+0x2c5/0x590 [ 513.926842][T11831] do_syscall_64+0xcd/0x260 [ 513.926891][T11831] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 513.926924][T11831] RIP: 0033:0x7f9c4af8d169 [ 513.926947][T11831] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 513.926978][T11831] RSP: 002b:00007f9c4bd69038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 513.927008][T11831] RAX: ffffffffffffffda RBX: 00007f9c4b1a5fa0 RCX: 00007f9c4af8d169 [ 513.927029][T11831] RDX: ffffffffffffffff RSI: ffffffffffffffff RDI: 0000000000000008 [ 513.927049][T11831] RBP: 00007f9c4bd69090 R08: 0000000000000006 R09: 0000000000000000 [ 513.927067][T11831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 513.927085][T11831] R13: 0000000000000001 R14: 00007f9c4b1a5fa0 R15: 00007fff8d879e88 [ 513.927124][T11831] [ 516.215509][T11859] FAULT_INJECTION: forcing a failure. [ 516.215509][T11859] name failslab, interval 1, probability 0, space 0, times 0 [ 516.262139][T11859] CPU: 0 UID: 0 PID: 11859 Comm: syz.0.1511 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 516.262185][T11859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 516.262204][T11859] Call Trace: [ 516.262214][T11859] [ 516.262226][T11859] dump_stack_lvl+0x16c/0x1f0 [ 516.262278][T11859] should_fail_ex+0x512/0x640 [ 516.262313][T11859] ? __kvmalloc_node_noprof+0x122/0x600 [ 516.262362][T11859] should_failslab+0xc2/0x120 [ 516.262392][T11859] __kvmalloc_node_noprof+0x135/0x600 [ 516.262449][T11859] ? __pfx___mutex_lock+0x10/0x10 [ 516.262496][T11859] ? traverse.part.0.constprop.0+0x392/0x640 [ 516.262548][T11859] ? traverse.part.0.constprop.0+0x392/0x640 [ 516.262590][T11859] traverse.part.0.constprop.0+0x392/0x640 [ 516.262648][T11859] seq_read_iter+0x932/0x12c0 [ 516.262693][T11859] ? aa_file_perm+0x4d6/0xfb0 [ 516.262745][T11859] seq_read+0x39e/0x4e0 [ 516.262784][T11859] ? __pfx_seq_read+0x10/0x10 [ 516.262831][T11859] ? get_pid_task+0xfc/0x250 [ 516.262875][T11859] ? __pfx_seq_read+0x10/0x10 [ 516.262915][T11859] proc_reg_read+0x23d/0x330 [ 516.262944][T11859] ? __pfx_proc_reg_read+0x10/0x10 [ 516.262977][T11859] vfs_read+0x1de/0xc70 [ 516.263025][T11859] ? __pfx_vfs_read+0x10/0x10 [ 516.263064][T11859] ? find_held_lock+0x2b/0x80 [ 516.263103][T11859] ? __fget_files+0x204/0x3c0 [ 516.263154][T11859] ? __fget_files+0x20e/0x3c0 [ 516.263194][T11859] ? __fget_files+0x120/0x3c0 [ 516.263251][T11859] __x64_sys_pread64+0x1f4/0x250 [ 516.263298][T11859] ? __pfx___x64_sys_pread64+0x10/0x10 [ 516.263342][T11859] ? rcu_is_watching+0x12/0xc0 [ 516.263391][T11859] do_syscall_64+0xcd/0x260 [ 516.263444][T11859] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 516.263475][T11859] RIP: 0033:0x7f9b7b18d169 [ 516.263500][T11859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 516.263530][T11859] RSP: 002b:00007f9b78ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 516.263559][T11859] RAX: ffffffffffffffda RBX: 00007f9b7b3a5fa0 RCX: 00007f9b7b18d169 [ 516.263580][T11859] RDX: 000000000000594c RSI: 0000000000000000 RDI: 0000000000000003 [ 516.263599][T11859] RBP: 00007f9b78ff6090 R08: 0000000000000000 R09: 0000000000000000 [ 516.263618][T11859] R10: 00000009fffffffd R11: 0000000000000246 R12: 0000000000000001 [ 516.263637][T11859] R13: 0000000000000000 R14: 00007f9b7b3a5fa0 R15: 00007ffdcc523048 [ 516.263675][T11859] [ 518.039292][T11854] bdi 43:96: the stable_pages_required attribute has been removed. Use the stable_writes queue attribute instead. [ 518.156824][T11854] ICMPv6: process `syz.3.1510' is using deprecated sysctl (syscall) net.ipv6.neigh.macsec0.base_reachable_time - use net.ipv6.neigh.macsec0.base_reachable_time_ms instead [ 518.346479][T11893] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1517'. [ 518.390455][T11893] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 518.479767][T11892] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 519.238607][T11893] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 520.129536][T11915] ptrace attach of "./syz-executor exec"[5852] was attempted by "./syz-executor exec"[11915] [ 520.948574][T11931] ptrace attach of "./syz-executor exec"[5849] was attempted by "./syz-executor exec"[11931] [ 524.091210][T11954] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1533'. [ 524.101017][T11954] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 524.224987][T11958] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 524.608743][T11949] ptrace attach of "./syz-executor exec"[5852] was attempted by "./syz-executor exec"[11949] [ 524.805693][T11954] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 526.762732][T11972] ima: policy update failed [ 526.811531][ T30] audit: type=1802 audit(6039327952.021:7): pid=11972 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1537" res=0 errno=0 [ 526.909134][T11984] ptrace attach of "./syz-executor exec"[5849] was attempted by "./syz-executor exec"[11984] [ 527.611471][ T55] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 530.113156][T12039] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT [ 530.977898][T12045] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1553'. [ 531.488614][T12048] [ 531.491097][T12048] ====================================================== [ 531.498153][T12048] WARNING: possible circular locking dependency detected [ 531.505218][T12048] 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 Not tainted [ 531.512370][T12048] ------------------------------------------------------ [ 531.519450][T12048] syz.3.1554/12048 is trying to acquire lock: [ 531.525573][T12048] ffff88805db5bf98 (sk_lock-AF_INET){+.+.}-{0:0}, at: sockopt_lock_sock+0x54/0x70 [ 531.535578][T12048] [ 531.535578][T12048] but task is already holding lock: [ 531.543415][T12048] ffffffff9012dae8 (rtnl_mutex){+.+.}-{4:4}, at: do_ip_setsockopt+0xf6/0x3240 [ 531.552378][T12048] [ 531.552378][T12048] which lock already depends on the new lock. [ 531.552378][T12048] [ 531.562889][T12048] [ 531.562889][T12048] the existing dependency chain (in reverse order) is: [ 531.571923][T12048] [ 531.571923][T12048] -> #2 (rtnl_mutex){+.+.}-{4:4}: [ 531.579200][T12048] __mutex_lock+0x199/0xb90 [ 531.584273][T12048] do_ipv6_setsockopt+0x2042/0x4420 [ 531.590042][T12048] ipv6_setsockopt+0xcb/0x170 [ 531.595299][T12048] tcp_setsockopt+0xa4/0x100 [ 531.600441][T12048] smc_setsockopt+0x1b3/0xa00 [ 531.605682][T12048] do_sock_setsockopt+0x221/0x470 [ 531.611285][T12048] __sys_setsockopt+0x1a0/0x230 [ 531.616692][T12048] __x64_sys_setsockopt+0xbd/0x160 [ 531.622357][T12048] do_syscall_64+0xcd/0x260 [ 531.627429][T12048] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 531.633885][T12048] [ 531.633885][T12048] -> #1 (&smc->clcsock_release_lock){+.+.}-{4:4}: [ 531.642781][T12048] __mutex_lock+0x199/0xb90 [ 531.647850][T12048] smc_switch_to_fallback+0x2d/0x9f0 [ 531.653697][T12048] smc_sendmsg+0x13d/0x520 [ 531.658828][T12048] ____sys_sendmsg+0xa95/0xc70 [ 531.664148][T12048] ___sys_sendmsg+0x134/0x1d0 [ 531.669374][T12048] __sys_sendmsg+0x16d/0x220 [ 531.674514][T12048] do_syscall_64+0xcd/0x260 [ 531.679927][T12048] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 531.686377][T12048] [ 531.686377][T12048] -> #0 (sk_lock-AF_INET){+.+.}-{0:0}: [ 531.694054][T12048] __lock_acquire+0x1173/0x1ba0 [ 531.699470][T12048] lock_acquire+0x179/0x350 [ 531.704541][T12048] lock_sock_nested+0x41/0xf0 [ 531.709769][T12048] sockopt_lock_sock+0x54/0x70 [ 531.715081][T12048] do_ip_setsockopt+0xfe/0x3240 [ 531.720480][T12048] ip_setsockopt+0x59/0xf0 [ 531.725442][T12048] sctp_setsockopt+0x169/0xb870 [ 531.730844][T12048] do_sock_setsockopt+0x221/0x470 [ 531.736425][T12048] __sys_setsockopt+0x1a0/0x230 [ 531.741821][T12048] __x64_sys_setsockopt+0xbd/0x160 [ 531.747575][T12048] do_syscall_64+0xcd/0x260 [ 531.752652][T12048] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 531.759116][T12048] [ 531.759116][T12048] other info that might help us debug this: [ 531.759116][T12048] [ 531.769356][T12048] Chain exists of: [ 531.769356][T12048] sk_lock-AF_INET --> &smc->clcsock_release_lock --> rtnl_mutex [ 531.769356][T12048] [ 531.783482][T12048] Possible unsafe locking scenario: [ 531.783482][T12048] [ 531.790957][T12048] CPU0 CPU1 [ 531.796339][T12048] ---- ---- [ 531.801725][T12048] lock(rtnl_mutex); [ 531.805738][T12048] lock(&smc->clcsock_release_lock); [ 531.813653][T12048] lock(rtnl_mutex); [ 531.820185][T12048] lock(sk_lock-AF_INET); [ 531.824643][T12048] [ 531.824643][T12048] *** DEADLOCK *** [ 531.824643][T12048] [ 531.832821][T12048] 1 lock held by syz.3.1554/12048: [ 531.837970][T12048] #0: ffffffff9012dae8 (rtnl_mutex){+.+.}-{4:4}, at: do_ip_setsockopt+0xf6/0x3240 [ 531.847338][T12048] [ 531.847338][T12048] stack backtrace: [ 531.853276][T12048] CPU: 0 UID: 0 PID: 12048 Comm: syz.3.1554 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 531.853313][T12048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 531.853329][T12048] Call Trace: [ 531.853338][T12048] [ 531.853348][T12048] dump_stack_lvl+0x116/0x1f0 [ 531.853397][T12048] print_circular_bug+0x275/0x350 [ 531.853441][T12048] check_noncircular+0x14c/0x170 [ 531.853485][T12048] __lock_acquire+0x1173/0x1ba0 [ 531.853531][T12048] ? do_ip_setsockopt+0xf6/0x3240 [ 531.853558][T12048] lock_acquire+0x179/0x350 [ 531.853580][T12048] ? sockopt_lock_sock+0x54/0x70 [ 531.853618][T12048] lock_sock_nested+0x41/0xf0 [ 531.853649][T12048] ? sockopt_lock_sock+0x54/0x70 [ 531.853682][T12048] sockopt_lock_sock+0x54/0x70 [ 531.853714][T12048] do_ip_setsockopt+0xfe/0x3240 [ 531.853738][T12048] ? futex_unqueue+0xba/0x140 [ 531.853775][T12048] ? __pfx_do_ip_setsockopt+0x10/0x10 [ 531.853800][T12048] ? __pfx___futex_wait+0x10/0x10 [ 531.853825][T12048] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 531.853865][T12048] ip_setsockopt+0x59/0xf0 [ 531.853891][T12048] sctp_setsockopt+0x169/0xb870 [ 531.853923][T12048] ? __pfx_sctp_setsockopt+0x10/0x10 [ 531.853951][T12048] ? __lock_acquire+0x5ca/0x1ba0 [ 531.853991][T12048] ? __pfx_aa_sk_perm+0x10/0x10 [ 531.854024][T12048] ? sock_common_setsockopt+0x2e/0xf0 [ 531.854064][T12048] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 531.854105][T12048] do_sock_setsockopt+0x221/0x470 [ 531.854147][T12048] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 531.854196][T12048] __sys_setsockopt+0x1a0/0x230 [ 531.854229][T12048] __x64_sys_setsockopt+0xbd/0x160 [ 531.854261][T12048] ? do_syscall_64+0x91/0x260 [ 531.854298][T12048] ? lockdep_hardirqs_on+0x7c/0x110 [ 531.854334][T12048] do_syscall_64+0xcd/0x260 [ 531.854380][T12048] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 531.854406][T12048] RIP: 0033:0x7feeb3d8d169 [ 531.854427][T12048] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 531.854452][T12048] RSP: 002b:00007feeb4b14038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 531.854477][T12048] RAX: ffffffffffffffda RBX: 00007feeb3fa6080 RCX: 00007feeb3d8d169 [ 531.854494][T12048] RDX: 000000000000002a RSI: 0000000000000000 RDI: 0000000000000004 [ 531.854511][T12048] RBP: 00007feeb3e0e990 R08: 0000000000000108 R09: 0000000000000000 [ 531.854526][T12048] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 531.854542][T12048] R13: 0000000000000000 R14: 00007feeb3fa6080 R15: 00007ffd2a9e1de8 [ 531.854566][T12048] [ 532.161138][T12053] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1556'. [ 532.199593][T12053] FAULT_INJECTION: forcing a failure. [ 532.199593][T12053] name failslab, interval 1, probability 0, space 0, times 0 [ 532.240866][T12053] CPU: 1 UID: 0 PID: 12053 Comm: syz.1.1556 Not tainted 6.15.0-rc1-syzkaller-00173-g0c7cae12f67c #0 PREEMPT(full) [ 532.240909][T12053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 532.240928][T12053] Call Trace: [ 532.240937][T12053] [ 532.240948][T12053] dump_stack_lvl+0x16c/0x1f0 [ 532.240998][T12053] should_fail_ex+0x512/0x640 [ 532.241044][T12053] should_failslab+0xc2/0x120 [ 532.241074][T12053] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 532.241122][T12053] ? notifier_call_chain+0xb9/0x410 [ 532.241168][T12053] ? call_netdevice_notifiers_info+0xbe/0x140 [ 532.241220][T12053] ? __alloc_skb+0x2b2/0x380 [ 532.241255][T12053] ? nl80211_del_interface+0xec/0x190 [ 532.241290][T12053] __alloc_skb+0x2b2/0x380 [ 532.241326][T12053] ? __pfx___alloc_skb+0x10/0x10 [ 532.241368][T12053] cfg80211_del_sta_sinfo+0x184/0x540 [ 532.241416][T12053] ? __pfx_cfg80211_del_sta_sinfo+0x10/0x10 [ 532.241486][T12053] __sta_info_destroy_part2+0x31c/0x540 [ 532.241537][T12053] __sta_info_flush+0x521/0x740 [ 532.241587][T12053] ? __pfx___sta_info_flush+0x10/0x10 [ 532.241641][T12053] ieee80211_ibss_disconnect+0x165/0x8f0 [ 532.241675][T12053] ? cfg80211_pmsr_wdev_down+0x115/0x160 [ 532.241709][T12053] ? rcu_is_watching+0x12/0xc0 [ 532.241748][T12053] ? cfg80211_pmsr_wdev_down+0x115/0x160 [ 532.241784][T12053] ieee80211_ibss_leave+0x4a/0x160 [ 532.241820][T12053] cfg80211_leave_ibss+0x1ac/0x480 [ 532.241866][T12053] cfg80211_leave+0x135/0x3f0 [ 532.241902][T12053] cfg80211_netdev_notifier_call+0x2c9/0x10f0 [ 532.241942][T12053] ? trace_sched_exit_tp+0xde/0x130 [ 532.241989][T12053] ? __pfx_cfg80211_netdev_notifier_call+0x10/0x10 [ 532.242037][T12053] ? __schedule+0x1186/0x5de0 [ 532.242074][T12053] ? console_flush_all+0x4e9/0xc60 [ 532.242114][T12053] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 532.242157][T12053] ? __pfx___schedule+0x10/0x10 [ 532.242197][T12053] ? rcu_is_watching+0x12/0xc0 [ 532.242235][T12053] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 532.242268][T12053] ? netdevice_event+0x278/0x9d0 [ 532.242297][T12053] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 532.242330][T12053] ? inetdev_event+0x180/0x18a0 [ 532.242373][T12053] ? igmp_netdev_event+0x7b/0x8c0 [ 532.242410][T12053] ? ib_netdevice_event+0xfc/0x330 [ 532.242445][T12053] ? __pfx_igmp_netdev_event+0x10/0x10 [ 532.242482][T12053] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 532.242513][T12053] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 532.242545][T12053] ? ipmr_device_event+0x1bc/0x230 [ 532.242584][T12053] notifier_call_chain+0xb9/0x410 [ 532.242628][T12053] ? __pfx_cfg80211_netdev_notifier_call+0x10/0x10 [ 532.242667][T12053] ? __pfx___might_resched+0x10/0x10 [ 532.242714][T12053] call_netdevice_notifiers_info+0xbe/0x140 [ 532.242767][T12053] __dev_close_many+0xff/0x770 [ 532.242793][T12053] ? __mutex_trylock_common+0xe9/0x250 [ 532.242824][T12053] ? __pfx___dev_close_many+0x10/0x10 [ 532.242850][T12053] ? __pfx___mutex_trylock_common+0x10/0x10 [ 532.242881][T12053] ? __pfx___might_resched+0x10/0x10 [ 532.242926][T12053] dev_close_many+0x233/0x630 [ 532.242954][T12053] ? nl80211_del_interface+0xb9/0x190 [ 532.242985][T12053] ? rcu_is_watching+0x12/0xc0 [ 532.243144][T12053] ? lock_release+0x201/0x2f0 [ 532.243172][T12053] ? __pfx_dev_close_many+0x10/0x10 [ 532.243202][T12053] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 532.243249][T12053] netif_close+0x17f/0x230 [ 532.243285][T12053] ? __pfx_netif_close+0x10/0x10 [ 532.243318][T12053] dev_close+0xaa/0x240 [ 532.243362][T12053] nl80211_del_interface+0xec/0x190 [ 532.243395][T12053] genl_family_rcv_msg_doit+0x206/0x2f0 [ 532.243427][T12053] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 532.243459][T12053] ? trace_cap_capable+0x18d/0x200 [ 532.243492][T12053] ? bpf_lsm_capable+0x9/0x10 [ 532.243539][T12053] ? security_capable+0x7e/0x260 [ 532.243568][T12053] ? ns_capable+0xd7/0x110 [ 532.243609][T12053] genl_rcv_msg+0x55c/0x800 [ 532.243640][T12053] ? __pfx_genl_rcv_msg+0x10/0x10 [ 532.243669][T12053] ? __pfx___dev_queue_xmit+0x10/0x10 [ 532.243701][T12053] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 532.243744][T12053] ? __pfx_nl80211_del_interface+0x10/0x10 [ 532.243777][T12053] ? __pfx_nl80211_post_doit+0x10/0x10 [ 532.243829][T12053] netlink_rcv_skb+0x16a/0x440 [ 532.243888][T12053] ? __pfx_genl_rcv_msg+0x10/0x10 [ 532.243919][T12053] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 532.243965][T12053] ? rcu_is_watching+0x12/0xc0 [ 532.244011][T12053] ? __pfx_down_read+0x10/0x10 [ 532.244039][T12053] ? netlink_deliver_tap+0x1ae/0xd30 [ 532.244084][T12053] genl_rcv+0x28/0x40 [ 532.244129][T12053] netlink_unicast+0x53a/0x7f0 [ 532.244179][T12053] ? __pfx_netlink_unicast+0x10/0x10 [ 532.244230][T12053] netlink_sendmsg+0x8d1/0xdd0 [ 532.244291][T12053] ? __pfx_netlink_sendmsg+0x10/0x10 [ 532.244345][T12053] ____sys_sendmsg+0xa95/0xc70 [ 532.244397][T12053] ? copy_msghdr_from_user+0x10a/0x160 [ 532.244438][T12053] ? __pfx_____sys_sendmsg+0x10/0x10 [ 532.244485][T12053] ? __pfx_kstrtouint+0x10/0x10 [ 532.244537][T12053] ? kstrtouint_from_user+0x13c/0x1d0 [ 532.244587][T12053] ___sys_sendmsg+0x134/0x1d0 [ 532.244628][T12053] ? __pfx____sys_sendmsg+0x10/0x10 [ 532.244675][T12053] ? rcu_is_watching+0x12/0xc0 [ 532.244725][T12053] __sys_sendmsg+0x16d/0x220 [ 532.244767][T12053] ? __pfx___sys_sendmsg+0x10/0x10 [ 532.244812][T12053] ? rcu_is_watching+0x12/0xc0 [ 532.244851][T12053] ? rcu_is_watching+0x12/0xc0 [ 532.244893][T12053] do_syscall_64+0xcd/0x260 [ 532.244941][T12053] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 532.244973][T12053] RIP: 0033:0x7f21bfd8d169 [ 532.244997][T12053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 532.245028][T12053] RSP: 002b:00007f21c0bbb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 532.245057][T12053] RAX: ffffffffffffffda RBX: 00007f21bffa5fa0 RCX: 00007f21bfd8d169 [ 532.245077][T12053] RDX: 0000000000000080 RSI: 0000200000000080 RDI: 0000000000000009 [ 532.245096][T12053] RBP: 00007f21c0bbb090 R08: 0000000000000000 R09: 0000000000000000 [ 532.245115][T12053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 532.245133][T12053] R13: 0000000000000000 R14: 00007f21bffa5fa0 R15: 00007fffcac268f8 [ 532.245161][T12053]