last executing test programs: 5.895941435s ago: executing program 3 (id=978): shmctl$auto_SHM_STAT_ANY(0x5, 0xf, &(0x7f0000001300)={{0x32, 0xffffffffffffffff, 0x0, 0x4, 0x5e5, 0x0, 0x4}, 0x7ff, 0x8000000000000000, 0x7, 0x4, @raw=0x9, @raw=0x1ff, 0x100, 0x0, &(0x7f0000000000)="2752cc89ccfdbd528062e8ed7f5b193c93fad5f0556e8688014e60fc8719b8c845b852377d5609d9edc133ed8d245f21d5ccefa797f86287ffa2", &(0x7f0000000300)="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"}) lstat$auto(0x0, &(0x7f0000000180)={0x0, 0x8, 0xffffffffffffffff, 0x65, r0, r1, 0x0, 0x1002, 0x8, 0x800000000000009, 0x40000402, 0x9, 0x8, 0x7, 0x100, 0x6, 0x200000100103}) mmap$auto(0x0, 0x2020009, 0x5, 0x10, 0xffffffffffffffff, 0x8000) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r3, 0x0, 0x5) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) unshare$auto(0x40000080) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) socket(0x10, 0x2, 0x6) close_range$auto(0x0, 0xffffffffffffffff, 0x2) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) sysfs$auto(0x2, 0x2b, 0x0) fsopen$auto(0x0, 0x1) socket(0x10, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nbd9\x00', 0x14f602, 0x0) statmount$auto(&(0x7f0000000000)={0x7e, @raw, 0x80000020, 0xd95, 0x2}, 0x0, 0x7ffffffff000, 0x0) r4 = socket(0xa, 0x3, 0x3c) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty48\x00', 0x800, 0x0) ioctl$auto(r5, 0x5609, r4) mmap$auto(0xfffffffffffffff8, 0x400008, 0xdf, 0x9b70, r2, 0x8000) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/dev\x00', 0x40100, 0x0) pread64$auto(r6, 0x0, 0x10001, 0x830) r7 = socket(0xa, 0x3, 0x3a) ioctl$auto(r7, 0x890c, 0x1) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) 4.416511132s ago: executing program 2 (id=984): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000) r1 = io_uring_setup$auto(0x1, 0x0) socket(0x1f, 0x2, 0x200000) sendmsg$auto_NL80211_CMD_PEER_MEASUREMENT_START(r0, 0x0, 0x4008080) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) write$auto(0x3, 0x0, 0xfffffdef) unshare$auto(0x40000080) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x3b87, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) openat$dir(0xffffffffffffff9c, 0x0, 0x381000, 0x100) ioctl$auto_RNDADDENTROPY2(r1, 0x40085203, &(0x7f0000000080)=[0x3, 0x4010]) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev3\x00', 0x169000, 0x0) ioctl$auto(r2, 0xc0285629, r2) close_range$auto(0x0, 0xfffffffffffff000, 0x2) open(0x0, 0x6041, 0x0) socket(0x6, 0x2, 0x6) r3 = semctl$auto_SETVAL(0x4, 0xfffffff7, 0x10, 0x0) pidfd_open$auto(r3, 0x5) r4 = socket(0x10, 0x3, 0xa) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'bond_slave_0\x00'}) unshare$auto(0x40000080) 4.397411819s ago: executing program 3 (id=985): setresuid$auto(0x8, 0x0, 0x4) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/binder/parameters/stop_on_user_error\x00', 0x2, 0x0) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) lsm_list_modules$auto(0x0, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) read$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffffff, 0x0, 0x0) pwrite64$auto(0xffffffffffffffff, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x89\x06s\x1cJ\x99\x00:\x00!\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x10, 0x6) openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x5400, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f0000000840)) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/bus/usb/drivers/usbtouchscreen/new_id\x00', 0xbce02, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_SNDRV_PCM_IOCTL_SW_PARAMS(0xffffffffffffffff, 0xc0884113, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x80000000000000a, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x6, 0x7) socket(0x2, 0x6, 0x0) shutdown$auto(0x200000003, 0x2) recvmmsg$auto(0x3, 0x0, 0x10000, 0x300, 0x0) setpriority$auto(0xfffffff7, 0x8, 0x8) 3.43499368s ago: executing program 0 (id=987): socket(0x23, 0x80805, 0x0) inotify_init1$auto(0x3000000000000) mmap$auto(0x0, 0x2020009, 0x126, 0xf8, 0xffffffffffffffff, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) bind$auto(0x3, &(0x7f0000000040)=@ethernet={0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1cc5087217524dd0}}, 0x6a) ioctl$auto(0x3, 0x89e0, 0x38) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x80081, 0x0) write$auto_seq_oss_f_ops_seq_oss(r0, &(0x7f00000002c0)="f618deadf7e888b1ff8bff71c49054428f819e30236ce79200d01532f2ed0d000000008d5d8e9dea0337f5095b82a54456f845800adbfbd11b66630e687bbca2612c912a6f57eb9f9944281954e2c5da22daf73acc711a3d9b6758b7a6e74bae890345225264da35ac3be11d2f555b8d08cef68f4a3aa938391dfbc0841813c93c41ee53b7e310c21563c1d8cbcde6549675fbe14b917c5b0a23069452100c3110990884271e91b8f6497e89091dc41c4cdd1769725f5f6d78aaac6367115bb64416e2894ed472", 0xc7) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0xffffffffffffffff, 0x8, 0x2) r1 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r1, 0xffffffffffdffe00, &(0x7f0000000140)=';') ioctl$auto(0x3, 0x541b, 0xfffffffffffff4e0) 2.93344886s ago: executing program 0 (id=988): openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x2002, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/interrupts\x00', 0x40440, 0x0) socketpair$auto(0x1d, 0x6, 0x8000000000000000, 0x0) read$auto_proc_iter_file_ops_compat_inode(r0, &(0x7f0000000080)=""/121, 0x79) (fail_nth: 2) socket(0x3, 0x1, 0x80000000) 2.722648362s ago: executing program 1 (id=989): r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df"], 0x1ac}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='R'], 0x1ac}}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x8) (fail_nth: 2) 2.379993927s ago: executing program 0 (id=990): r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYRESOCT=0x0, @ANYRES32=r0, @ANYRES8=r0], 0x1ac}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='R'], 0x1ac}}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x8) 2.189765026s ago: executing program 3 (id=991): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) init_module$auto(0x0, 0xffff9, 0x0) madvise$auto(0x0, 0x800000000000008, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x0) userfaultfd$auto(0x1) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) socket(0xa, 0x801, 0x84) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1, 0x1, 0x1) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) socket(0x2, 0x801, 0x106) io_uring_setup$auto(0x5, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socket(0xa, 0x2, 0x0) socket(0xa, 0x2, 0x3a) r0 = socket(0xa, 0x2, 0x88) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r0, @new_prog_fd=0x4, 0x4, @old_prog_fd=r0}, 0xa3) bpf$auto(0x4, &(0x7f0000000040)=@query={@target_ifindex, 0x7, 0x6, 0x9, 0x9, @prog_cnt=0x4, 0x0, 0x80000000, 0xc, 0x9, 0xffffffffffffff66}, 0x7) (fail_nth: 2) socket(0x2a, 0x2, 0x0) 2.189629505s ago: executing program 1 (id=992): socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x24004141) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x3}, 0xed7138c}, 0x7, 0x3f00) mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0x6, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0001, 0x0) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) sysfs$auto(0x2, 0x10000000000002f, 0x0) r0 = fsopen$auto(0x0, 0x1) fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0) r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0) shmctl$auto_SHM_INFO(0x7, 0xe, &(0x7f0000001080)={{0x5, 0x0, 0x0, 0xfffffff7, 0x2, 0x5, 0x6}, 0x400, 0x4, 0x1000, 0x1800000000000000, @raw=0x7, @raw=0x28e, 0x6, 0x0, &(0x7f0000000000)="fbfc5ab80473a07faab0aa0f45773e1aa1d2cb0584d814e78c", 0x0}) socket(0x18, 0x2, 0x0) pkey_free$auto(0x0) socket(0x1e, 0x2, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) socket(0x2, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffd]}, 0x0) 2.11597645s ago: executing program 0 (id=993): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x4040, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/domainname\x00', 0x88042, 0x0) mmap$auto(0x0, 0x40009, 0xde, 0x9b72, 0x7, 0x28000) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x8040, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) mbind$auto(0x1002000, 0x100000004, 0x7fff, 0x0, 0x2, 0x87) r1 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) mmap$auto(0x0, 0x81, 0xfffffffffffffffe, 0x9b72, r1, 0x7ffe) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x80800, 0x0) capset$auto(0x0, 0x0) capget$auto(0x0, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x1a9901, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/asound/card1/pcm0c/sub1/hw_params\x00', 0x3789e111c7529dab, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x480, 0x0) socket(0x15, 0x5, 0x0) sendmsg$auto_NL80211_CMD_STOP_AP(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0x1000001c}, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) sendfile$auto(0x1, 0x3, 0x0, 0xcd) syz_genetlink_get_family_id$auto_nl802154(0x0, 0xffffffffffffffff) sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008000}, 0x8044) link$auto(&(0x7f0000003240)='./file0\x00', &(0x7f0000003280)='./file2\x00') openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sysvipc/msg\x00', 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x29, 0x6, 0x704e) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) 1.962069949s ago: executing program 2 (id=994): openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x2002, 0x0) rt_sigaction$auto(0x3, &(0x7f0000000100)={&(0x7f0000000040)=0x0, 0x7ffd, 0x0, {0xffffffffffffffff}}, 0x0, 0x8) r0 = gettid() rt_sigqueueinfo$auto(r0, 0x3, &(0x7f0000000900)={@siginfo_0_0={0xfffffeff, 0x6, 0x1, @_sigchld={0xffffffffffffffff, 0x0, 0x3, 0x7fff, 0xef}}}) mmap$auto(0x0, 0x400008, 0x9, 0x9b72, 0x2, 0x8000) socket(0x2, 0x2, 0x0) ustat$auto(0x801, 0x0) setsockopt$auto(0x3, 0x1, 0x2d, 0x0, 0x8) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/interrupts\x00', 0x40440, 0x0) r2 = socketpair$auto(0x1d, 0xaab9, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x20009, 0xfffffffffffffffd, 0xeb2, 0x8, 0x1008000) socket(0xa, 0x3, 0x3a) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000140), r2) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000580)=ANY=[@ANYBLOB="ad2ee0a20e1cdb4a5998eff20c78b967c7fd9707b7af5e2e1a4e67d3455229de51cdfabb55218c3a17b868853c9f23f9c7ae1599a13d82e86de2129ee4fc0afe78ec1c0c11123a51c071ba3e1d29f81491b42769f3f53707cc50c347c8f6bee296c8000260f73eeb84a71836579d89991cf8ccd66725ed2002e2155a085b781914f8ecafbdec0994c0000000000000", @ANYRES16=r4, @ANYBLOB="010328b57000fbdbdf250a00000006000100170000005d4354b197eb142170f1533a2e80852295ca0b337da3baca8729bb09cefdfdb6cc71bdf7720e52be6d1b3bdc6dcbe47c655df83be9f06fd6c99cefad0d8cdf283a4670f5dc956b1adfe03b90ae08a5372cf4edd2aeda2b016474c95a7e384c7b022fb26bbc7b4f2a01d33b81dd29a87b89f34e0c85681d5719e97d835e6d3e07574656459479c413c22aa41856fb58f2adde5253e82dd82da9a9d672c66c58fca8655bcc9e32ec31a1598096d6dd5a3b9bc225937cebe354b552e12798da2fd5d1d793cc0036a68db74f9b7110ade269963057c409966d8d"], 0x1c}, 0x1, 0x0, 0x0, 0x400c01d}, 0x0) r5 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), r3) sendmsg$auto_MACSEC_CMD_UPD_TXSA(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYRESHEX=r1], 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x400c8d4) landlock_add_rule$auto(0xffffffffffffffff, 0x1, &(0x7f00000000c0)="a5a67f26c18e2d4dfa66b104b5f8cb7594ed644a576b371ada0f2d3a86bd93a15b36897db4d1bfcc2d3798eb1ab4c773", 0xfffffffb) mmap$auto(0x0, 0x5, 0x4000000000df, 0xeb1, 0x401, 0x8003) write$auto(0x3, 0x0, 0x100082) setns(0xffffffffffffffff, 0x0) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x4000080) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000380)='/dev/sequencer2\x00', 0x4202, 0x0) r6 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r6, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/hid_cougar/parameters/g6_is_space\x00', 0x129102, 0x0) write$auto(r7, &(0x7f0000000000)='y\x8c', 0x2) socketpair$auto(0x204, 0xaf1, 0x2, 0x0) 1.915883877s ago: executing program 1 (id=995): r0 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/block/nbd12/sched/read0_next_rq\x00', 0x480, 0x0) read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r0, &(0x7f0000000000)=""/78, 0x21) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/domainname\x00', 0x88042, 0x0) mmap$auto(0x0, 0x40009, 0xde, 0x9b72, 0x7, 0x28000) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) mbind$auto(0x2001, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) r3 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) ioctl$auto_VHOST_SET_VRING_ENDIAN2(r3, 0x4008af13, &(0x7f00000000c0)={0x2dfb, 0x8}) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card1/timer_source\x00', 0x20080, 0x0) pread64$auto(r5, 0x0, 0x1fffe001, 0xb) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) mmap$auto(0x0, 0x81, 0xfffffffffffffffe, 0x9b72, r4, 0x7ffe) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x80800, 0x0) capset$auto(0x0, 0x0) capget$auto(0x0, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x1a9901, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/dev_mcast\x00', 0x101000, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x101041, 0x0) socket(0x15, 0x5, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r6 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r6, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) sendfile$auto(0x1, 0x3, 0x0, 0xc01) sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008000}, 0x8044) link$auto(&(0x7f0000003240)='./file0\x00', &(0x7f0000003280)='./file2\x00') poll$auto(&(0x7f0000000080)={r1, 0x0, 0x5}, 0x5, 0x49) 1.563899135s ago: executing program 1 (id=996): socket(0x23, 0x80805, 0x0) inotify_init1$auto(0x3000000000000) mmap$auto(0x0, 0x2020009, 0x126, 0xf8, 0xffffffffffffffff, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) bind$auto(0x3, &(0x7f0000000040)=@ethernet={0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1cc5087217524dd0}}, 0x6a) ioctl$auto(0x3, 0x89e0, 0x38) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x80081, 0x0) write$auto_seq_oss_f_ops_seq_oss(r0, &(0x7f00000002c0)="f618deadf7e888b1ff8bff71c49054428f819e30236ce79200d01532f2ed0d000000008d5d8e9dea0337f5095b82a54456f845800adbfbd11b66630e687bbca2612c912a6f57eb9f9944281954e2c5da22daf73acc711a3d9b6758b7a6e74bae890345225264da35ac3be11d2f555b8d08cef68f4a3aa938391dfbc0841813c93c41ee53b7e310c21563c1d8cbcde6549675fbe14b917c5b0a23069452100c3110990884271e91b8f6497e89091dc41c4cdd1769725f5f6d78aaac6367115bb64416e2894ed472", 0xc7) unshare$auto(0x40000080) close_range$auto(0xffffffffffffffff, 0x8, 0x2) r1 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r1, 0xffffffffffdffe00, &(0x7f0000000140)=';') ioctl$auto(0x3, 0x541b, 0xfffffffffffff4e0) 1.436225167s ago: executing program 3 (id=997): r0 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/block/nbd12/sched/read0_next_rq\x00', 0x480, 0x0) read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r0, &(0x7f0000000000)=""/78, 0x21) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/domainname\x00', 0x88042, 0x0) mmap$auto(0x0, 0x40009, 0xde, 0x9b72, 0x7, 0x28000) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) mbind$auto(0x2001, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) r3 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) ioctl$auto_VHOST_SET_VRING_ENDIAN2(r3, 0x4008af13, &(0x7f00000000c0)={0x2dfb, 0x8}) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card1/timer_source\x00', 0x20080, 0x0) pread64$auto(r5, 0x0, 0x1fffe001, 0xb) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) mmap$auto(0x0, 0x81, 0xfffffffffffffffe, 0x9b72, r4, 0x7ffe) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x80800, 0x0) capset$auto(0x0, 0x0) capget$auto(0x0, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x1a9901, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/dev_mcast\x00', 0x101000, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x101041, 0x0) socket(0x15, 0x5, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r6 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r6, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) syz_genetlink_get_family_id$auto_nl802154(0x0, 0xffffffffffffffff) sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008000}, 0x8044) link$auto(&(0x7f0000003240)='./file0\x00', &(0x7f0000003280)='./file2\x00') poll$auto(&(0x7f0000000080)={r1, 0x0, 0x5}, 0x5, 0x49) 1.076804527s ago: executing program 0 (id=998): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f0000005380)={0x0, 0x0, &(0x7f0000005340)={&(0x7f0000000080)={0x1c, r1, 0x1, 0x870bd2b, 0x25dfdbfe, {}, [@NFSD_A_SERVER_SOCK_ADDR={0x8, 0x1, 0x0, 0x1, [@NFSD_A_SOCK_ADDR={0x4}]}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc000}, 0x20000000) 996.078421ms ago: executing program 2 (id=999): mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) socket(0xf, 0x3, 0x9) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) capget$auto(0x0, 0xfffffffffffffffe) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x261c2, 0x84) mmap$auto(0x1000000, 0x2, 0xfffffffffffffffe, 0x12, 0x2, 0x8000) socket(0x2, 0x80802, 0x0) connect$auto(0x3, &(0x7f0000000140), 0x55) sendmmsg$auto(0x3, 0x0, 0xfff, 0xff00) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyr4\x00', 0x0, 0x0) ioctl$auto(r0, 0x80045439, 0xffffffffffffffff) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) 771.297178ms ago: executing program 2 (id=1000): socket(0x10, 0x2, 0x0) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/rpc/nfs4.idtoname/channel\x00', 0x8f3b7a51b80ebd01, 0x0) write$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000040)="205c2020027e0dc0023af10e9bfa1babfa203753ca9a20370a", 0x19) ioctl$auto_USBDEVFS_CONTROL32(0xffffffffffffffff, 0xc0105500, 0x0) 644.866306ms ago: executing program 3 (id=1001): mseal$auto(0x0, 0x7dda, 0x0) 644.672968ms ago: executing program 0 (id=1002): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x3a}}, 0x6e) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000) r0 = io_uring_setup$auto(0x1, 0x0) socket(0x1f, 0x2, 0x200000) sendmsg$auto_NL80211_CMD_PEER_MEASUREMENT_START(0xffffffffffffffff, 0x0, 0x4008080) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) write$auto(0x3, 0x0, 0xfffffdef) unshare$auto(0x40000080) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x3b87, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) openat$dir(0xffffffffffffff9c, 0x0, 0x381000, 0x100) ioctl$auto_RNDADDENTROPY2(r0, 0x40085203, &(0x7f0000000080)=[0x3, 0x4010]) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev3\x00', 0x169000, 0x0) ioctl$auto(r1, 0xc0285629, r1) close_range$auto(0x0, 0xfffffffffffff000, 0x2) open(0x0, 0x6041, 0x0) socket(0x6, 0x2, 0x6) r2 = semctl$auto_SETVAL(0x4, 0xfffffff7, 0x10, 0x0) pidfd_open$auto(r2, 0x5) r3 = socket(0x10, 0x3, 0xa) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'bond_slave_0\x00'}) unshare$auto(0x40000080) 638.839344ms ago: executing program 2 (id=1003): socket(0x10, 0x2, 0x0) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/rpc/nfs4.idtoname/channel\x00', 0x8f3b7a51b80ebd01, 0x0) write$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000040)="205c2020027e0dc0023af10e9bfa1babfa203753ca9a20370a", 0x19) (fail_nth: 3) ioctl$auto_USBDEVFS_CONTROL32(0xffffffffffffffff, 0xc0105500, 0x0) 528.021017ms ago: executing program 3 (id=1004): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) init_module$auto(0x0, 0xffff9, 0x0) madvise$auto(0x0, 0x800000000000008, 0x1) r0 = socket(0x1d, 0x2, 0x6) r1 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r2, 0xfd}, 0x6a) sendmsg$auto_ETHTOOL_MSG_PSE_SET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[], 0x9c}, 0x1, 0x0, 0x0, 0x4}, 0x810) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x0) userfaultfd$auto(0x1) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) socket(0xa, 0x801, 0x84) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1, 0x1, 0x1) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) socket(0x2, 0x801, 0x106) io_uring_setup$auto(0x5, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socket(0xa, 0x2, 0x0) socket(0xa, 0x2, 0x3a) socket(0xa, 0x2, 0x88) 131.007113ms ago: executing program 1 (id=1005): r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x280, 0x0) connect$auto(r0, &(0x7f0000000000)=@hci={0x1f, 0x4, 0x6}, 0x7ff) r1 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r1, 0x0, &(0x7f0000000080)="5c880e7e8ae83cbb1f8e81f915b8a4b8e82959ee539953ee6371ef79e65ffcac6d56fe9d2fb8ebcbf06eac51e1d0dccb75f571e3655f4e9a368412e7f9e43ac28902e2d0c2d0e945683f70e537353dfacefbcdc6ecbd0acdaa9ae0b4c18338339d7105a89506af1f190bb1ed48ae205df8019f287ab6761da80a635e08e716300ae850c9406b8895ead8f4714719a89ca763d881ffd20d57ccfa3ccbf1362fa9d0682785dcf04b09c7dfe0d243c1d59b0bf50df4ac3c104c03ee7b745809984f146e0883cfa0c2352414f45934b69dec56e952") mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) r3 = open(&(0x7f0000000080)='./file0\x00', 0xeee00, 0x31) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/pcrypt/pencrypt/serial_cpumask\x00', 0xa001, 0x0) write$auto(r4, 0x0, 0x3) lseek$auto(r3, 0x7fffffffffffffff, 0x3) write$auto_nsim_dev_take_snapshot_fops_dev(r3, &(0x7f0000000180)="cb1d0621d53e0878a8c88d124509b0427712c333c8b3f96b6a309e04afc2c07bdf56952d5186faeb5249445b623bede364be52a65bdc2e646bd80fddfed6bea5acab8f8a45dff61ad3633fb0a64e7d06e9f0e4ffb8a6a16da3ea218d6bc7dccc6b90db1abc2097f2cec3a796a53680f2f179cb1f2422bb5ddfe704ba", 0x7c) ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0) 130.78766ms ago: executing program 2 (id=1006): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x4040, 0x0) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/domainname\x00', 0x88042, 0x0) mmap$auto(0x0, 0x40009, 0xde, 0x9b72, 0x7, 0x28000) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x8040, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) mbind$auto(0x1002000, 0x100000004, 0x7fff, 0x0, 0x2, 0x87) r2 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) mmap$auto(0x0, 0x81, 0xfffffffffffffffe, 0x9b72, r2, 0x7ffe) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x80800, 0x0) capset$auto(0x0, 0x0) capget$auto(0x0, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x1a9901, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/asound/card1/pcm0c/sub1/hw_params\x00', 0x3789e111c7529dab, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x480, 0x0) socket(0x15, 0x5, 0x0) sendmsg$auto_NL80211_CMD_STOP_AP(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0x1000001c}, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) sendfile$auto(0x1, 0x3, 0x0, 0xcd) syz_genetlink_get_family_id$auto_nl802154(0x0, 0xffffffffffffffff) sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008000}, 0x8044) poll$auto(&(0x7f0000000080)={r0, 0x0, 0x5}, 0x5, 0x49) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sysvipc/msg\x00', 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x29, 0x6, 0x704e) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) 0s ago: executing program 1 (id=1007): r0 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_SET_WIPHY(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010026bd7000fddbdf250200fd0008000300", @ANYRES32=r3, @ANYBLOB="0c000200"], 0x28}, 0x1, 0x0, 0x0, 0x4004081}, 0x20000084) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ttyS2\x00', 0x1, 0x0) ioctl$auto_TIOCVHANGUP2(r5, 0x5437, 0x0) write$auto(r5, 0x0, 0x9) r6 = syz_genetlink_get_family_id$auto_handshake(&(0x7f0000000180), r4) socket(0x2, 0x1, 0x106) shutdown$auto(0x200000003, 0x2) poll$auto(&(0x7f0000000d40)={0x3, 0xc16, 0xa}, 0x5, 0x400) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000280), r7) sendmsg$auto_HWSIM_CMD_REGISTER(r7, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f000002acc0)=ANY=[@ANYBLOB="1c4d0100", @ANYRES16=r8, @ANYBLOB="010028bd7000fddbdf250100000008000a00000400000800040003000000040018000800040081000000086b1c80046b0580"], 0x14d1c}, 0x1, 0x0, 0x0, 0x1}, 0x0) sendmsg$auto_HANDSHAKE_CMD_DONE(r2, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="ed432f91d7eee283fe1e2aa90de4a9ffffff0996c64e", @ANYRES16=r6, @ANYBLOB="00022bbd7000fbdbdf250300000008000100060900000800010007000000080003000700000008000200", @ANYRES32=r0, @ANYBLOB="08000300ffff0000"], 0x3c}, 0x1, 0x0, 0x0, 0x48000}, 0x20000044) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r9 = socket(0x2, 0x3, 0xa) getsockopt$auto(r9, 0x0, 0x30, 0x0, &(0x7f0000000040)=0xdbb) r10 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000280), r10) write$auto(r0, 0x0, 0x0) kernel console output (not intermixed with test programs): ][ T7331] ? find_held_lock+0x2b/0x80 [ 173.926503][ T7331] ? hook_file_ioctl_common+0x145/0x410 [ 173.926545][ T7331] ? __fget_files+0x20e/0x3c0 [ 173.926595][ T7331] security_file_ioctl+0x9b/0x240 [ 173.926636][ T7331] __x64_sys_ioctl+0xb7/0x200 [ 173.926686][ T7331] do_syscall_64+0xcd/0x260 [ 173.926736][ T7331] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 173.926766][ T7331] RIP: 0033:0x7fd85bf8d169 [ 173.926790][ T7331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 173.926818][ T7331] RSP: 002b:00007fd85cd03038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 173.926846][ T7331] RAX: ffffffffffffffda RBX: 00007fd85c1a5fa0 RCX: 00007fd85bf8d169 [ 173.926864][ T7331] RDX: 0000000000000000 RSI: 0000000000005437 RDI: 0000000000000003 [ 173.926880][ T7331] RBP: 00007fd85cd03090 R08: 0000000000000000 R09: 0000000000000000 [ 173.926897][ T7331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 173.926913][ T7331] R13: 0000000000000000 R14: 00007fd85c1a5fa0 R15: 00007ffe0b36f638 [ 173.926952][ T7331] [ 174.135968][ C0] vkms_vblank_simulate: vblank timer overrun [ 174.151303][ T7331] ERROR: Out of memory at tomoyo_realpath_from_path. [ 174.157949][ T7333] FAULT_INJECTION: forcing a failure. [ 174.157949][ T7333] name failslab, interval 1, probability 0, space 0, times 0 [ 174.158039][ T7333] CPU: 1 UID: 0 PID: 7333 Comm: syz.0.429 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 174.158082][ T7333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 174.158100][ T7333] Call Trace: [ 174.158110][ T7333] [ 174.158122][ T7333] dump_stack_lvl+0x16c/0x1f0 [ 174.158182][ T7333] should_fail_ex+0x512/0x640 [ 174.158224][ T7333] ? fs_reclaim_acquire+0xae/0x150 [ 174.158276][ T7333] should_failslab+0xc2/0x120 [ 174.158310][ T7333] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 174.158371][ T7333] ? ima_alloc_tfm+0x21a/0x2e0 [ 174.158427][ T7333] ? ima_collect_measurement+0x4b5/0xa40 [ 174.158470][ T7333] krealloc_noprof+0x1fb/0x380 [ 174.158532][ T7333] ima_collect_measurement+0x4b5/0xa40 [ 174.158582][ T7333] ? __pfx_ima_collect_measurement+0x10/0x10 [ 174.158645][ T7333] ? trace_contention_end+0xdd/0x130 [ 174.158683][ T7333] ? __mutex_lock+0x1ca/0xb90 [ 174.158747][ T7333] ? is_bad_inode+0xd/0x40 [ 174.158795][ T7333] ? xattr_resolve_name+0x27b/0x3f0 [ 174.158856][ T7333] ? vfs_getxattr_alloc+0xec/0x340 [ 174.158920][ T7333] ? ima_get_hash_algo+0x27c/0x400 [ 174.158969][ T7333] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 174.159030][ T7333] ? process_measurement+0x129e/0x2360 [ 174.159083][ T7333] process_measurement+0x129e/0x2360 [ 174.159153][ T7333] ? __pfx_process_measurement+0x10/0x10 [ 174.159206][ T7333] ? __lock_acquire+0x5ca/0x1ba0 [ 174.159242][ T7333] ? init_file+0x93/0x4c0 [ 174.159274][ T7333] ? alloc_empty_file+0x73/0x1e0 [ 174.159311][ T7333] ? hugetlb_file_setup+0x4cd/0x620 [ 174.159355][ T7333] ? ksys_mmap_pgoff+0x189/0x5c0 [ 174.159395][ T7333] ? __x64_sys_mmap+0x125/0x190 [ 174.159497][ T7333] ima_file_mmap+0x1b1/0x1d0 [ 174.159553][ T7333] ? __pfx_ima_file_mmap+0x10/0x10 [ 174.159622][ T7333] security_mmap_file+0x88c/0x990 [ 174.159675][ T7333] vm_mmap_pgoff+0xec/0x450 [ 174.159742][ T7333] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 174.159783][ T7333] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 174.159828][ T7333] ? hugetlbfs_get_inode+0x31f/0x730 [ 174.159885][ T7333] ksys_mmap_pgoff+0x1c8/0x5c0 [ 174.159928][ T7333] ? rcu_is_watching+0x12/0xc0 [ 174.159978][ T7333] __x64_sys_mmap+0x125/0x190 [ 174.160024][ T7333] do_syscall_64+0xcd/0x260 [ 174.160082][ T7333] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 174.160118][ T7333] RIP: 0033:0x7f563918d169 [ 174.160148][ T7333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 174.160183][ T7333] RSP: 002b:00007f5639fea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 174.160215][ T7333] RAX: ffffffffffffffda RBX: 00007f56393a5fa0 RCX: 00007f563918d169 [ 174.160240][ T7333] RDX: 00004000000020df RSI: 0000000000000004 RDI: 0000000000000000 [ 174.160263][ T7333] RBP: 00007f563920e2a0 R08: 0000000000000402 R09: 0000300000000000 [ 174.160286][ T7333] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000 [ 174.160308][ T7333] R13: 0000000000000000 R14: 00007f56393a5fa0 R15: 00007fff9e704038 [ 174.160354][ T7333] [ 174.175902][ T30] audit: type=1800 audit(6039146138.959:3): pid=7333 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.429" name="anon_hugepage" dev="hugetlbfs" ino=13927 res=0 errno=0 [ 174.706677][ T7335] Invalid ELF header magic: != ELF [ 174.749691][ T7339] virtio-pci 0000:00:04.0: [Firmware Bug]: Overriding NUMA node to 0. Contact your vendor for updates. [ 175.453426][ T7366] netlink: 342 bytes leftover after parsing attributes in process `syz.1.438'. [ 175.933058][ T7380] FAULT_INJECTION: forcing a failure. [ 175.933058][ T7380] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 175.951877][ T7380] CPU: 0 UID: 0 PID: 7380 Comm: syz.2.443 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 175.951926][ T7380] Tainted: [I]=FIRMWARE_WORKAROUND [ 175.951937][ T7380] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 175.951953][ T7380] Call Trace: [ 175.951962][ T7380] [ 175.951972][ T7380] dump_stack_lvl+0x16c/0x1f0 [ 175.952021][ T7380] should_fail_ex+0x512/0x640 [ 175.952061][ T7380] _copy_from_user+0x2e/0xd0 [ 175.952100][ T7380] copy_msghdr_from_user+0x98/0x160 [ 175.952140][ T7380] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 175.952199][ T7380] ___sys_sendmsg+0xfe/0x1d0 [ 175.952239][ T7380] ? __pfx____sys_sendmsg+0x10/0x10 [ 175.952326][ T7380] __sys_sendmsg+0x16d/0x220 [ 175.952366][ T7380] ? __pfx___sys_sendmsg+0x10/0x10 [ 175.952420][ T7380] ? rcu_is_watching+0x12/0xc0 [ 175.952469][ T7380] do_syscall_64+0xcd/0x260 [ 175.952517][ T7380] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 175.952548][ T7380] RIP: 0033:0x7fd85bf8d169 [ 175.952582][ T7380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 175.952611][ T7380] RSP: 002b:00007fd85cd03038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 175.952639][ T7380] RAX: ffffffffffffffda RBX: 00007fd85c1a5fa0 RCX: 00007fd85bf8d169 [ 175.952658][ T7380] RDX: 000000000400c854 RSI: 0000200000000300 RDI: 0000000000000003 [ 175.952676][ T7380] RBP: 00007fd85cd03090 R08: 0000000000000000 R09: 0000000000000000 [ 175.952692][ T7380] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 175.952708][ T7380] R13: 0000000000000000 R14: 00007fd85c1a5fa0 R15: 00007ffe0b36f638 [ 175.952746][ T7380] [ 176.163440][ T7384] bridge0: port 3(bond0) entered blocking state [ 176.171063][ T7384] bridge0: port 3(bond0) entered disabled state [ 176.183836][ T7384] bond0: entered allmulticast mode [ 176.189274][ T7384] bond_slave_0: entered allmulticast mode [ 176.211896][ T7384] bond_slave_1: entered allmulticast mode [ 176.226796][ T7384] bond0: entered promiscuous mode [ 176.233148][ T7384] bond_slave_0: entered promiscuous mode [ 176.252022][ T7384] bond_slave_1: entered promiscuous mode [ 176.264725][ T7384] bridge0: port 3(bond0) entered blocking state [ 176.271201][ T7384] bridge0: port 3(bond0) entered forwarding state [ 176.420125][ T7391] netlink: 342 bytes leftover after parsing attributes in process `syz.3.447'. [ 176.596252][ T7397] bridge0: port 3(bond0) entered blocking state [ 176.611052][ T7397] bridge0: port 3(bond0) entered disabled state [ 176.625455][ T7397] bond0: entered allmulticast mode [ 176.636725][ T7397] bond_slave_0: entered allmulticast mode [ 176.649966][ T7397] bond_slave_1: entered allmulticast mode [ 176.667235][ T7397] bond0: entered promiscuous mode [ 176.682277][ T7397] bond_slave_0: entered promiscuous mode [ 176.695769][ T7397] bond_slave_1: entered promiscuous mode [ 176.709529][ T7397] bridge0: port 3(bond0) entered blocking state [ 176.716075][ T7397] bridge0: port 3(bond0) entered forwarding state [ 177.315027][ T7408] netlink: 330 bytes leftover after parsing attributes in process `syz.1.452'. [ 177.439043][ T7415] bridge0: port 4(bond0) entered blocking state [ 177.464968][ T7415] bridge0: port 4(bond0) entered disabled state [ 177.472547][ T7415] bond0: entered allmulticast mode [ 177.479771][ T7415] bond_slave_0: entered allmulticast mode [ 177.486123][ T7415] bond_slave_1: entered allmulticast mode [ 177.504588][ T7415] bond0: entered promiscuous mode [ 177.510000][ T7415] bond_slave_0: entered promiscuous mode [ 177.526236][ T7415] bond_slave_1: entered promiscuous mode [ 177.536662][ T7415] bridge0: port 4(bond0) entered blocking state [ 177.543129][ T7415] bridge0: port 4(bond0) entered forwarding state [ 177.896541][ T7419] FAULT_INJECTION: forcing a failure. [ 177.896541][ T7419] name failslab, interval 1, probability 0, space 0, times 0 [ 177.953924][ T7419] CPU: 1 UID: 0 PID: 7419 Comm: syz.1.456 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 177.953977][ T7419] Tainted: [I]=FIRMWARE_WORKAROUND [ 177.953988][ T7419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 177.954005][ T7419] Call Trace: [ 177.954015][ T7419] [ 177.954027][ T7419] dump_stack_lvl+0x16c/0x1f0 [ 177.954083][ T7419] should_fail_ex+0x512/0x640 [ 177.954119][ T7419] ? fs_reclaim_acquire+0xae/0x150 [ 177.954166][ T7419] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 177.954211][ T7419] should_failslab+0xc2/0x120 [ 177.954241][ T7419] __kmalloc_noprof+0xd2/0x510 [ 177.954300][ T7419] tomoyo_realpath_from_path+0xc2/0x6e0 [ 177.954350][ T7419] ? tomoyo_profile+0x47/0x60 [ 177.954404][ T7419] tomoyo_path_number_perm+0x245/0x580 [ 177.954440][ T7419] ? tomoyo_path_number_perm+0x237/0x580 [ 177.954481][ T7419] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 177.954522][ T7419] ? find_held_lock+0x2b/0x80 [ 177.954602][ T7419] ? find_held_lock+0x2b/0x80 [ 177.954642][ T7419] ? hook_file_ioctl_common+0x145/0x410 [ 177.954686][ T7419] ? __fget_files+0x20e/0x3c0 [ 177.954740][ T7419] security_file_ioctl+0x9b/0x240 [ 177.954782][ T7419] __x64_sys_ioctl+0xb7/0x200 [ 177.954823][ T7419] do_syscall_64+0xcd/0x260 [ 177.954872][ T7419] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 177.954905][ T7419] RIP: 0033:0x7f1564b8d169 [ 177.954930][ T7419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 177.954959][ T7419] RSP: 002b:00007f15649f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 177.954988][ T7419] RAX: ffffffffffffffda RBX: 00007f1564da5fa0 RCX: 00007f1564b8d169 [ 177.955008][ T7419] RDX: 0000000000000038 RSI: 000000004020aea5 RDI: 0000000000000003 [ 177.955025][ T7419] RBP: 00007f15649f7090 R08: 0000000000000000 R09: 0000000000000000 [ 177.955043][ T7419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 177.955060][ T7419] R13: 0000000000000000 R14: 00007f1564da5fa0 R15: 00007ffff55f0338 [ 177.955143][ T7419] [ 178.069689][ T7419] ERROR: Out of memory at tomoyo_realpath_from_path. [ 178.488432][ T7430] Invalid ELF header magic: != ELF [ 178.971311][ T7445] netlink: 330 bytes leftover after parsing attributes in process `syz.3.464'. [ 179.046926][ T7452] FAULT_INJECTION: forcing a failure. [ 179.046926][ T7452] name failslab, interval 1, probability 0, space 0, times 0 [ 179.078497][ T7452] CPU: 1 UID: 0 PID: 7452 Comm: syz.0.466 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 179.078548][ T7452] Tainted: [I]=FIRMWARE_WORKAROUND [ 179.078559][ T7452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 179.078576][ T7452] Call Trace: [ 179.078586][ T7452] [ 179.078597][ T7452] dump_stack_lvl+0x16c/0x1f0 [ 179.078646][ T7452] should_fail_ex+0x512/0x640 [ 179.078681][ T7452] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 179.078726][ T7452] should_failslab+0xc2/0x120 [ 179.078756][ T7452] __kmalloc_cache_noprof+0x6a/0x3e0 [ 179.078798][ T7452] ? resv_map_alloc+0x7e/0x400 [ 179.078834][ T7452] resv_map_alloc+0x7e/0x400 [ 179.078867][ T7452] hugetlbfs_get_inode+0x33f/0x730 [ 179.078901][ T7452] ? __fget_files+0x20e/0x3c0 [ 179.078950][ T7452] hugetlb_file_setup+0x15b/0x620 [ 179.079002][ T7452] ksys_mmap_pgoff+0x189/0x5c0 [ 179.079039][ T7452] ? rcu_is_watching+0x12/0xc0 [ 179.079081][ T7452] __x64_sys_mmap+0x125/0x190 [ 179.079121][ T7452] do_syscall_64+0xcd/0x260 [ 179.079167][ T7452] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 179.079197][ T7452] RIP: 0033:0x7f563918d169 [ 179.079221][ T7452] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 179.079248][ T7452] RSP: 002b:00007f5639fea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 179.079276][ T7452] RAX: ffffffffffffffda RBX: 00007f56393a5fa0 RCX: 00007f563918d169 [ 179.079295][ T7452] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000 [ 179.079313][ T7452] RBP: 00007f5639fea090 R08: 0000000000000402 R09: 0000300000000000 [ 179.079332][ T7452] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000001 [ 179.079349][ T7452] R13: 0000000000000000 R14: 00007f56393a5fa0 R15: 00007fff9e704038 [ 179.079386][ T7452] [ 179.457305][ T7457] FAULT_INJECTION: forcing a failure. [ 179.457305][ T7457] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 179.484639][ T7457] CPU: 0 UID: 0 PID: 7457 Comm: syz.0.468 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 179.484686][ T7457] Tainted: [I]=FIRMWARE_WORKAROUND [ 179.484696][ T7457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 179.484713][ T7457] Call Trace: [ 179.484722][ T7457] [ 179.484734][ T7457] dump_stack_lvl+0x16c/0x1f0 [ 179.484784][ T7457] should_fail_ex+0x512/0x640 [ 179.484824][ T7457] _copy_to_user+0x32/0xd0 [ 179.484865][ T7457] simple_read_from_buffer+0xcb/0x170 [ 179.484912][ T7457] proc_fail_nth_read+0x197/0x270 [ 179.484965][ T7457] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 179.485011][ T7457] ? rw_verify_area+0xcf/0x680 [ 179.485047][ T7457] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 179.485088][ T7457] vfs_read+0x1de/0xc70 [ 179.485136][ T7457] ? __pfx___mutex_lock+0x10/0x10 [ 179.485180][ T7457] ? __pfx_vfs_read+0x10/0x10 [ 179.485232][ T7457] ? __fget_files+0x20e/0x3c0 [ 179.485289][ T7457] ksys_read+0x12a/0x240 [ 179.485328][ T7457] ? __pfx_ksys_read+0x10/0x10 [ 179.485364][ T7457] ? rcu_is_watching+0x12/0xc0 [ 179.485413][ T7457] do_syscall_64+0xcd/0x260 [ 179.485460][ T7457] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 179.485488][ T7457] RIP: 0033:0x7f563918bb7c [ 179.485511][ T7457] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 179.485540][ T7457] RSP: 002b:00007f5639fea030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 179.485567][ T7457] RAX: ffffffffffffffda RBX: 00007f56393a5fa0 RCX: 00007f563918bb7c [ 179.485585][ T7457] RDX: 000000000000000f RSI: 00007f5639fea0a0 RDI: 0000000000000004 [ 179.485602][ T7457] RBP: 00007f5639fea090 R08: 0000000000000000 R09: 0000000000000000 [ 179.485618][ T7457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 179.485633][ T7457] R13: 0000000000000000 R14: 00007f56393a5fa0 R15: 00007fff9e704038 [ 179.485672][ T7457] [ 180.214370][ T7460] KVM: debugfs: duplicate directory 7460-3 [ 180.252577][ T7460] KVM: debugfs: duplicate directory 7460-4 [ 180.281382][ T7460] KVM: debugfs: duplicate directory 7460-5 [ 180.317770][ T7460] KVM: debugfs: duplicate directory 7460-6 [ 180.352569][ T7460] KVM: debugfs: duplicate directory 7460-7 [ 180.429817][ T7474] Invalid ELF header magic: != ELF [ 180.981527][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 181.263177][ T5850] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 181.348747][ T7489] netlink: 330 bytes leftover after parsing attributes in process `syz.2.475'. [ 182.046252][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 182.184137][ T7513] Invalid ELF header magic: != ELF [ 182.967359][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 183.568868][ T7533] usbip-vudc usbip-vudc.0: gadget not bound [ 184.655198][ T7545] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 185.057783][ T7554] Invalid ELF header magic: != ELF [ 185.771850][ T7563] FAULT_INJECTION: forcing a failure. [ 185.771850][ T7563] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 185.818855][ T7563] CPU: 1 UID: 0 PID: 7563 Comm: syz.0.493 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 185.818906][ T7563] Tainted: [I]=FIRMWARE_WORKAROUND [ 185.818917][ T7563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 185.818935][ T7563] Call Trace: [ 185.818944][ T7563] [ 185.818955][ T7563] dump_stack_lvl+0x16c/0x1f0 [ 185.819003][ T7563] should_fail_ex+0x512/0x640 [ 185.819045][ T7563] _copy_from_user+0x2e/0xd0 [ 185.819086][ T7563] copy_msghdr_from_user+0x98/0x160 [ 185.819128][ T7563] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 185.819178][ T7563] ? __pfx__kstrtoull+0x10/0x10 [ 185.819235][ T7563] ___sys_sendmsg+0xfe/0x1d0 [ 185.819277][ T7563] ? __pfx____sys_sendmsg+0x10/0x10 [ 185.819343][ T7563] ? find_held_lock+0x2b/0x80 [ 185.819410][ T7563] __sys_sendmmsg+0x200/0x420 [ 185.819458][ T7563] ? __pfx___sys_sendmmsg+0x10/0x10 [ 185.819514][ T7563] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 185.819578][ T7563] ? fput+0x70/0xf0 [ 185.819614][ T7563] ? ksys_write+0x1b9/0x240 [ 185.819657][ T7563] ? __pfx_ksys_write+0x10/0x10 [ 185.819698][ T7563] ? rcu_is_watching+0x12/0xc0 [ 185.819743][ T7563] __x64_sys_sendmmsg+0x9c/0x100 [ 185.819784][ T7563] ? lockdep_hardirqs_on+0x7c/0x110 [ 185.819826][ T7563] do_syscall_64+0xcd/0x260 [ 185.819874][ T7563] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 185.819905][ T7563] RIP: 0033:0x7f563918d169 [ 185.819929][ T7563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 185.819958][ T7563] RSP: 002b:00007f5639fea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 185.819987][ T7563] RAX: ffffffffffffffda RBX: 00007f56393a5fa0 RCX: 00007f563918d169 [ 185.820006][ T7563] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003 [ 185.820023][ T7563] RBP: 00007f5639fea090 R08: 0000000000000000 R09: 0000000000000000 [ 185.820040][ T7563] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001 [ 185.820057][ T7563] R13: 0000000000000000 R14: 00007f56393a5fa0 R15: 00007fff9e704038 [ 185.820096][ T7563] [ 186.034664][ C1] vkms_vblank_simulate: vblank timer overrun [ 186.187389][ T7566] netlink: 342 bytes leftover after parsing attributes in process `syz.2.495'. [ 186.278526][ T7574] netlink: 342 bytes leftover after parsing attributes in process `syz.2.495'. [ 186.838244][ T7588] Invalid ELF header magic: != ELF [ 187.552678][ T7606] netlink: 'syz.1.505': attribute type 1 has an invalid length. [ 187.685639][ T7605] mkiss: ax0: crc mode is auto. [ 188.303232][ T7621] FAULT_INJECTION: forcing a failure. [ 188.303232][ T7621] name failslab, interval 1, probability 0, space 0, times 0 [ 188.355418][ T7621] CPU: 0 UID: 0 PID: 7621 Comm: syz.1.508 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 188.355471][ T7621] Tainted: [I]=FIRMWARE_WORKAROUND [ 188.355482][ T7621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 188.355498][ T7621] Call Trace: [ 188.355509][ T7621] [ 188.355520][ T7621] dump_stack_lvl+0x16c/0x1f0 [ 188.355569][ T7621] should_fail_ex+0x512/0x640 [ 188.355605][ T7621] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 188.355659][ T7621] should_failslab+0xc2/0x120 [ 188.355693][ T7621] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 188.355740][ T7621] ? shmem_alloc_inode+0x25/0x50 [ 188.355779][ T7621] ? __pfx_shmem_alloc_inode+0x10/0x10 [ 188.355813][ T7621] shmem_alloc_inode+0x25/0x50 [ 188.355847][ T7621] alloc_inode+0x61/0x240 [ 188.355882][ T7621] new_inode+0x22/0x1c0 [ 188.355913][ T7621] ? trace_cap_capable+0x18d/0x200 [ 188.355948][ T7621] shmem_get_inode+0x19a/0xfb0 [ 188.355989][ T7621] ? __vm_enough_memory+0x184/0x3f0 [ 188.356031][ T7621] __shmem_file_setup+0x16f/0x300 [ 188.356080][ T7621] shmem_zero_setup+0x93/0x1a0 [ 188.356113][ T7621] __mmap_region+0x2036/0x27c0 [ 188.356173][ T7621] ? __pfx___mmap_region+0x10/0x10 [ 188.356219][ T7621] ? bpf_ksym_find+0x124/0x1c0 [ 188.356270][ T7621] ? __kernel_text_address+0xd/0x40 [ 188.356308][ T7621] ? unwind_get_return_address+0x59/0xa0 [ 188.356416][ T7621] ? trace_cap_capable+0x18d/0x200 [ 188.356450][ T7621] ? cap_capable+0xb3/0x250 [ 188.356487][ T7621] mmap_region+0x1ab/0x3f0 [ 188.356543][ T7621] do_mmap+0xd8e/0x11b0 [ 188.356588][ T7621] ? __pfx_do_mmap+0x10/0x10 [ 188.356625][ T7621] ? __pfx_down_write_killable+0x10/0x10 [ 188.356684][ T7621] vm_mmap_pgoff+0x281/0x450 [ 188.356727][ T7621] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 188.356767][ T7621] ? __fget_files+0x20e/0x3c0 [ 188.356823][ T7621] ksys_mmap_pgoff+0x7d/0x5c0 [ 188.356856][ T7621] ? __pfx_ksys_write+0x10/0x10 [ 188.356904][ T7621] __x64_sys_mmap+0x125/0x190 [ 188.356946][ T7621] do_syscall_64+0xcd/0x260 [ 188.356995][ T7621] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 188.357026][ T7621] RIP: 0033:0x7f1564b8d169 [ 188.357051][ T7621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 188.357080][ T7621] RSP: 002b:00007f15649f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 188.357108][ T7621] RAX: ffffffffffffffda RBX: 00007f1564da5fa0 RCX: 00007f1564b8d169 [ 188.357128][ T7621] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000 [ 188.357151][ T7621] RBP: 00007f15649f7090 R08: fffffffffffffffa R09: 0000000000008000 [ 188.357171][ T7621] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000001 [ 188.357189][ T7621] R13: 0000000000000000 R14: 00007f1564da5fa0 R15: 00007ffff55f0338 [ 188.357229][ T7621] [ 188.401270][ T7620] Invalid ELF header magic: != ELF [ 188.692514][ T7625] mtrr: base(0x1010101000) is not aligned on a size(0x101000) boundary [ 189.293538][ T7637] FAULT_INJECTION: forcing a failure. [ 189.293538][ T7637] name failslab, interval 1, probability 0, space 0, times 0 [ 189.385889][ T7637] CPU: 0 UID: 0 PID: 7637 Comm: syz.2.514 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 189.385941][ T7637] Tainted: [I]=FIRMWARE_WORKAROUND [ 189.385951][ T7637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 189.385968][ T7637] Call Trace: [ 189.385978][ T7637] [ 189.385989][ T7637] dump_stack_lvl+0x16c/0x1f0 [ 189.386039][ T7637] should_fail_ex+0x512/0x640 [ 189.386074][ T7637] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 189.386121][ T7637] should_failslab+0xc2/0x120 [ 189.386150][ T7637] __kmalloc_cache_noprof+0x6a/0x3e0 [ 189.386189][ T7637] ? evm_inode_alloc_security+0x49/0xc0 [ 189.386236][ T7637] ? security_inode_alloc+0xcf/0x2b0 [ 189.386276][ T7637] ? alloc_pipe_info+0x10e/0x590 [ 189.386331][ T7637] alloc_pipe_info+0x10e/0x590 [ 189.386383][ T7637] create_pipe_files+0x8c/0x930 [ 189.386417][ T7637] do_pipe2+0xaf/0x1c0 [ 189.386443][ T7637] ? __pfx_do_pipe2+0x10/0x10 [ 189.386472][ T7637] ? __pfx_ksys_write+0x10/0x10 [ 189.386524][ T7637] __x64_sys_pipe+0x33/0x50 [ 189.386552][ T7637] do_syscall_64+0xcd/0x260 [ 189.386600][ T7637] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 189.386632][ T7637] RIP: 0033:0x7fd85bf8d169 [ 189.386656][ T7637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 189.386685][ T7637] RSP: 002b:00007fd85cd03038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016 [ 189.386714][ T7637] RAX: ffffffffffffffda RBX: 00007fd85c1a5fa0 RCX: 00007fd85bf8d169 [ 189.386733][ T7637] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 189.386750][ T7637] RBP: 00007fd85cd03090 R08: 0000000000000000 R09: 0000000000000000 [ 189.386767][ T7637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 189.386784][ T7637] R13: 0000000000000000 R14: 00007fd85c1a5fa0 R15: 00007ffe0b36f638 [ 189.386821][ T7637] [ 189.720381][ T7640] FAULT_INJECTION: forcing a failure. [ 189.720381][ T7640] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 189.776053][ T7640] CPU: 1 UID: 0 PID: 7640 Comm: syz.3.516 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 189.776107][ T7640] Tainted: [I]=FIRMWARE_WORKAROUND [ 189.776125][ T7640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 189.776142][ T7640] Call Trace: [ 189.776153][ T7640] [ 189.776164][ T7640] dump_stack_lvl+0x16c/0x1f0 [ 189.776214][ T7640] should_fail_ex+0x512/0x640 [ 189.776257][ T7640] _copy_from_user+0x2e/0xd0 [ 189.776298][ T7640] __sys_bpf+0x21d/0x4d80 [ 189.776339][ T7640] ? __pfx___sys_bpf+0x10/0x10 [ 189.776372][ T7640] ? vfs_write+0x316/0x1180 [ 189.776412][ T7640] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 189.776466][ T7640] ? __pfx_vfs_write+0x10/0x10 [ 189.776510][ T7640] ? do_sys_openat2+0x157/0x1d0 [ 189.776566][ T7640] ? ksys_write+0x1b9/0x240 [ 189.776609][ T7640] ? __pfx_ksys_write+0x10/0x10 [ 189.776648][ T7640] ? rcu_is_watching+0x12/0xc0 [ 189.776694][ T7640] __x64_sys_bpf+0x78/0xc0 [ 189.776730][ T7640] ? lockdep_hardirqs_on+0x7c/0x110 [ 189.776771][ T7640] do_syscall_64+0xcd/0x260 [ 189.776820][ T7640] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 189.776851][ T7640] RIP: 0033:0x7ff5a358d169 [ 189.776875][ T7640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 189.776904][ T7640] RSP: 002b:00007ff5a433e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 189.776932][ T7640] RAX: ffffffffffffffda RBX: 00007ff5a37a5fa0 RCX: 00007ff5a358d169 [ 189.776953][ T7640] RDX: 0000000000000007 RSI: 0000200000000040 RDI: 0000000000000004 [ 189.776971][ T7640] RBP: 00007ff5a433e090 R08: 0000000000000000 R09: 0000000000000000 [ 189.776988][ T7640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 189.777013][ T7640] R13: 0000000000000000 R14: 00007ff5a37a5fa0 R15: 00007fff90f7d748 [ 189.777053][ T7640] [ 190.230404][ T7633] syz.1.513 (7633): /proc/7633/oom_adj is deprecated, please use /proc/7633/oom_score_adj instead. [ 190.558476][ T7649] Invalid ELF header magic: != ELF [ 191.760360][ T7666] netlink: 4 bytes leftover after parsing attributes in process `syz.2.525'. [ 192.029049][ T7670] netlink: 346 bytes leftover after parsing attributes in process `syz.2.526'. [ 192.380470][ T7679] Invalid ELF header magic: != ELF [ 193.308714][ T7693] FAULT_INJECTION: forcing a failure. [ 193.308714][ T7693] name failslab, interval 1, probability 0, space 0, times 0 [ 193.339934][ T7693] CPU: 1 UID: 0 PID: 7693 Comm: syz.3.534 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 193.339994][ T7693] Tainted: [I]=FIRMWARE_WORKAROUND [ 193.340005][ T7693] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 193.340023][ T7693] Call Trace: [ 193.340033][ T7693] [ 193.340045][ T7693] dump_stack_lvl+0x16c/0x1f0 [ 193.340097][ T7693] should_fail_ex+0x512/0x640 [ 193.340133][ T7693] ? __kmalloc_noprof+0xbf/0x510 [ 193.340184][ T7693] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 193.340239][ T7693] should_failslab+0xc2/0x120 [ 193.340269][ T7693] __kmalloc_noprof+0xd2/0x510 [ 193.340315][ T7693] ? kasan_quarantine_put+0x10a/0x240 [ 193.340369][ T7693] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 193.340434][ T7693] genl_family_rcv_msg_doit+0xbf/0x2f0 [ 193.340490][ T7693] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 193.340542][ T7693] ? trace_cap_capable+0x18d/0x200 [ 193.340584][ T7693] ? bpf_lsm_capable+0x9/0x10 [ 193.340629][ T7693] ? security_capable+0x7e/0x260 [ 193.340661][ T7693] ? ns_capable+0xd7/0x110 [ 193.340705][ T7693] genl_rcv_msg+0x55c/0x800 [ 193.340740][ T7693] ? __pfx_genl_rcv_msg+0x10/0x10 [ 193.340769][ T7693] ? __pfx___dev_queue_xmit+0x10/0x10 [ 193.340804][ T7693] ? __pfx_ovs_meter_cmd_del+0x10/0x10 [ 193.340851][ T7693] ? __lock_acquire+0xaa4/0x1ba0 [ 193.340888][ T7693] netlink_rcv_skb+0x16a/0x440 [ 193.340932][ T7693] ? __pfx_genl_rcv_msg+0x10/0x10 [ 193.340971][ T7693] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 193.341037][ T7693] ? __pfx_down_read+0x10/0x10 [ 193.341089][ T7693] ? netlink_deliver_tap+0x1ae/0xd30 [ 193.341139][ T7693] genl_rcv+0x28/0x40 [ 193.341185][ T7693] netlink_unicast+0x53a/0x7f0 [ 193.341237][ T7693] ? __pfx_netlink_unicast+0x10/0x10 [ 193.341280][ T7693] ? __lock_acquire+0xaa4/0x1ba0 [ 193.341319][ T7693] netlink_sendmsg+0x8d1/0xdd0 [ 193.341373][ T7693] ? __pfx_netlink_sendmsg+0x10/0x10 [ 193.341437][ T7693] ____sys_sendmsg+0xa95/0xc70 [ 193.341489][ T7693] ? copy_msghdr_from_user+0x10a/0x160 [ 193.341530][ T7693] ? __pfx_____sys_sendmsg+0x10/0x10 [ 193.341600][ T7693] ___sys_sendmsg+0x134/0x1d0 [ 193.341645][ T7693] ? __pfx____sys_sendmsg+0x10/0x10 [ 193.341765][ T7693] __sys_sendmsg+0x16d/0x220 [ 193.341808][ T7693] ? __pfx___sys_sendmsg+0x10/0x10 [ 193.341863][ T7693] ? rcu_is_watching+0x12/0xc0 [ 193.341915][ T7693] do_syscall_64+0xcd/0x260 [ 193.341973][ T7693] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 193.342006][ T7693] RIP: 0033:0x7ff5a358d169 [ 193.342030][ T7693] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 193.342060][ T7693] RSP: 002b:00007ff5a433e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 193.342089][ T7693] RAX: ffffffffffffffda RBX: 00007ff5a37a5fa0 RCX: 00007ff5a358d169 [ 193.342109][ T7693] RDX: 0000000000004000 RSI: 0000200000001180 RDI: 0000000000000003 [ 193.342127][ T7693] RBP: 00007ff5a433e090 R08: 0000000000000000 R09: 0000000000000000 [ 193.342145][ T7693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 193.342161][ T7693] R13: 0000000000000000 R14: 00007ff5a37a5fa0 R15: 00007fff90f7d748 [ 193.342201][ T7693] [ 194.208887][ T7698] GUP no longer grows the stack in syz.2.536 (7698): 14000-401000 (4000) [ 194.217733][ T7698] CPU: 1 UID: 0 PID: 7698 Comm: syz.2.536 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 194.217781][ T7698] Tainted: [I]=FIRMWARE_WORKAROUND [ 194.217792][ T7698] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 194.217809][ T7698] Call Trace: [ 194.217819][ T7698] [ 194.217830][ T7698] dump_stack_lvl+0x16c/0x1f0 [ 194.217887][ T7698] gup_vma_lookup+0x1d2/0x220 [ 194.217926][ T7698] __get_user_pages+0x234/0x36f0 [ 194.217977][ T7698] ? process_vm_rw_core.constprop.0+0x1d8/0x9a0 [ 194.218006][ T7698] ? look_up_lock_class+0x59/0x150 [ 194.218049][ T7698] ? __pfx___get_user_pages+0x10/0x10 [ 194.218088][ T7698] ? process_vm_rw+0x2ff/0x360 [ 194.218114][ T7698] ? __x64_sys_process_vm_readv+0xe2/0x1c0 [ 194.218142][ T7698] ? do_syscall_64+0xcd/0x260 [ 194.218199][ T7698] __gup_longterm_locked+0x20d/0x1850 [ 194.218253][ T7698] ? __pfx___gup_longterm_locked+0x10/0x10 [ 194.218314][ T7698] pin_user_pages_remote+0xed/0x140 [ 194.218358][ T7698] ? __pfx_pin_user_pages_remote+0x10/0x10 [ 194.218398][ T7698] ? mm_access+0x22d/0x2e0 [ 194.218455][ T7698] process_vm_rw_core.constprop.0+0x41b/0x9a0 [ 194.218505][ T7698] ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10 [ 194.218540][ T7698] ? iovec_from_user+0xbb/0x140 [ 194.218601][ T7698] ? iovec_from_user+0xbb/0x140 [ 194.218646][ T7698] process_vm_rw+0x2ff/0x360 [ 194.218679][ T7698] ? __pfx_process_vm_rw+0x10/0x10 [ 194.218719][ T7698] ? ksys_write+0x190/0x240 [ 194.218800][ T7698] ? ksys_write+0x1b9/0x240 [ 194.218842][ T7698] ? __pfx_ksys_write+0x10/0x10 [ 194.218895][ T7698] __x64_sys_process_vm_readv+0xe2/0x1c0 [ 194.218928][ T7698] ? do_syscall_64+0x91/0x260 [ 194.218972][ T7698] ? lockdep_hardirqs_on+0x7c/0x110 [ 194.219014][ T7698] do_syscall_64+0xcd/0x260 [ 194.219062][ T7698] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 194.219093][ T7698] RIP: 0033:0x7fd85bf8d169 [ 194.219118][ T7698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 194.219147][ T7698] RSP: 002b:00007fd85cd03038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136 [ 194.219174][ T7698] RAX: ffffffffffffffda RBX: 00007fd85c1a5fa0 RCX: 00007fd85bf8d169 [ 194.219193][ T7698] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 00000000000001b8 [ 194.219211][ T7698] RBP: 00007fd85cd03090 R08: 0000000000000003 R09: 0000000000000000 [ 194.219229][ T7698] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001 [ 194.219246][ T7698] R13: 0000000000000000 R14: 00007fd85c1a5fa0 R15: 00007ffe0b36f638 [ 194.219286][ T7698] [ 194.219304][ T7698] FAULT_INJECTION: forcing a failure. [ 194.219304][ T7698] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 194.529343][ T7698] CPU: 0 UID: 0 PID: 7698 Comm: syz.2.536 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 194.529393][ T7698] Tainted: [I]=FIRMWARE_WORKAROUND [ 194.529404][ T7698] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 194.529420][ T7698] Call Trace: [ 194.529430][ T7698] [ 194.529442][ T7698] dump_stack_lvl+0x16c/0x1f0 [ 194.529491][ T7698] should_fail_ex+0x512/0x640 [ 194.529534][ T7698] _copy_to_iter+0x477/0x15a0 [ 194.529583][ T7698] ? __pfx__copy_to_iter+0x10/0x10 [ 194.529635][ T7698] ? __up_read+0x1f8/0x750 [ 194.529666][ T7698] ? __pfx_pin_user_pages_remote+0x10/0x10 [ 194.529705][ T7698] ? mm_access+0x22d/0x2e0 [ 194.529748][ T7698] ? __pfx___up_read+0x10/0x10 [ 194.529785][ T7698] copy_page_to_iter+0xf1/0x180 [ 194.529831][ T7698] process_vm_rw_core.constprop.0+0x5ad/0x9a0 [ 194.529881][ T7698] ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10 [ 194.529917][ T7698] ? iovec_from_user+0xbb/0x140 [ 194.529975][ T7698] ? iovec_from_user+0xbb/0x140 [ 194.530019][ T7698] process_vm_rw+0x2ff/0x360 [ 194.530051][ T7698] ? __pfx_process_vm_rw+0x10/0x10 [ 194.530090][ T7698] ? ksys_write+0x190/0x240 [ 194.530170][ T7698] ? ksys_write+0x1b9/0x240 [ 194.530212][ T7698] ? __pfx_ksys_write+0x10/0x10 [ 194.530260][ T7698] __x64_sys_process_vm_readv+0xe2/0x1c0 [ 194.530291][ T7698] ? do_syscall_64+0x91/0x260 [ 194.530337][ T7698] ? lockdep_hardirqs_on+0x7c/0x110 [ 194.530378][ T7698] do_syscall_64+0xcd/0x260 [ 194.530425][ T7698] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 194.530456][ T7698] RIP: 0033:0x7fd85bf8d169 [ 194.530480][ T7698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 194.530509][ T7698] RSP: 002b:00007fd85cd03038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136 [ 194.530538][ T7698] RAX: ffffffffffffffda RBX: 00007fd85c1a5fa0 RCX: 00007fd85bf8d169 [ 194.530558][ T7698] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 00000000000001b8 [ 194.530575][ T7698] RBP: 00007fd85cd03090 R08: 0000000000000003 R09: 0000000000000000 [ 194.530593][ T7698] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001 [ 194.530617][ T7698] R13: 0000000000000000 R14: 00007fd85c1a5fa0 R15: 00007ffe0b36f638 [ 194.530657][ T7698] [ 194.771947][ T7702] Invalid ELF header magic: != ELF [ 195.115666][ T7711] FAULT_INJECTION: forcing a failure. [ 195.115666][ T7711] name failslab, interval 1, probability 0, space 0, times 0 [ 195.165858][ T7711] CPU: 1 UID: 0 PID: 7711 Comm: syz.2.539 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 195.165909][ T7711] Tainted: [I]=FIRMWARE_WORKAROUND [ 195.165919][ T7711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 195.165936][ T7711] Call Trace: [ 195.165946][ T7711] [ 195.165957][ T7711] dump_stack_lvl+0x16c/0x1f0 [ 195.166006][ T7711] should_fail_ex+0x512/0x640 [ 195.166041][ T7711] ? __kmalloc_noprof+0xbf/0x510 [ 195.166090][ T7711] ? __trace_probe_log_err+0xff/0x370 [ 195.166135][ T7711] should_failslab+0xc2/0x120 [ 195.166165][ T7711] __kmalloc_noprof+0xd2/0x510 [ 195.166210][ T7711] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 195.166266][ T7711] __trace_probe_log_err+0xff/0x370 [ 195.166310][ T7711] ? traceprobe_parse_event_name+0x2c3/0x6f0 [ 195.166366][ T7711] __trace_eprobe_create+0xb38/0x1930 [ 195.166407][ T7711] ? trace_probe_create+0x7d/0x100 [ 195.166456][ T7711] ? trace_parse_run_command+0x1a6/0x3e0 [ 195.166486][ T7711] ? do_syscall_64+0xcd/0x260 [ 195.166540][ T7711] ? __pfx___trace_eprobe_create+0x10/0x10 [ 195.166638][ T7711] ? trace_kmalloc+0x2b/0xd0 [ 195.166668][ T7711] ? __kmalloc_noprof+0x242/0x510 [ 195.166726][ T7711] ? argv_split+0x36e/0x440 [ 195.166766][ T7711] ? __pfx___trace_eprobe_create+0x10/0x10 [ 195.166803][ T7711] trace_probe_create+0xec/0x100 [ 195.166852][ T7711] ? __pfx_trace_probe_create+0x10/0x10 [ 195.166911][ T7711] create_dyn_event+0xeb/0x1c0 [ 195.166954][ T7711] trace_parse_run_command+0x1a6/0x3e0 [ 195.166982][ T7711] ? __pfx_create_dyn_event+0x10/0x10 [ 195.167029][ T7711] vfs_write+0x25c/0x1180 [ 195.167070][ T7711] ? __pfx_dyn_event_write+0x10/0x10 [ 195.167116][ T7711] ? __pfx___mutex_lock+0x10/0x10 [ 195.167158][ T7711] ? __pfx_vfs_write+0x10/0x10 [ 195.167214][ T7711] ? __fget_files+0x20e/0x3c0 [ 195.167273][ T7711] ksys_write+0x12a/0x240 [ 195.167317][ T7711] ? __pfx_ksys_write+0x10/0x10 [ 195.167357][ T7711] ? rcu_is_watching+0x12/0xc0 [ 195.167408][ T7711] do_syscall_64+0xcd/0x260 [ 195.167456][ T7711] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 195.167487][ T7711] RIP: 0033:0x7fd85bf8d169 [ 195.167517][ T7711] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 195.167546][ T7711] RSP: 002b:00007fd85cd03038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 195.167575][ T7711] RAX: ffffffffffffffda RBX: 00007fd85c1a5fa0 RCX: 00007fd85bf8d169 [ 195.167594][ T7711] RDX: 0000000000000014 RSI: 0000200000000140 RDI: 0000000000000003 [ 195.167612][ T7711] RBP: 00007fd85cd03090 R08: 0000000000000000 R09: 0000000000000000 [ 195.167629][ T7711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 195.167646][ T7711] R13: 0000000000000000 R14: 00007fd85c1a5fa0 R15: 00007ffe0b36f638 [ 195.167686][ T7711] [ 196.077724][ T7725] FAULT_INJECTION: forcing a failure. [ 196.077724][ T7725] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 196.146028][ T7725] CPU: 1 UID: 0 PID: 7725 Comm: syz.0.544 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 196.146078][ T7725] Tainted: [I]=FIRMWARE_WORKAROUND [ 196.146090][ T7725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 196.146106][ T7725] Call Trace: [ 196.146116][ T7725] [ 196.146127][ T7725] dump_stack_lvl+0x16c/0x1f0 [ 196.146177][ T7725] should_fail_ex+0x512/0x640 [ 196.146219][ T7725] _copy_from_user+0x2e/0xd0 [ 196.146261][ T7725] copy_msghdr_from_user+0x98/0x160 [ 196.146304][ T7725] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 196.146352][ T7725] ? __pfx__kstrtoull+0x10/0x10 [ 196.146408][ T7725] ___sys_sendmsg+0xfe/0x1d0 [ 196.146451][ T7725] ? __pfx____sys_sendmsg+0x10/0x10 [ 196.146518][ T7725] ? find_held_lock+0x2b/0x80 [ 196.146585][ T7725] __sys_sendmmsg+0x200/0x420 [ 196.146632][ T7725] ? __pfx___sys_sendmmsg+0x10/0x10 [ 196.146688][ T7725] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 196.146753][ T7725] ? fput+0x70/0xf0 [ 196.146789][ T7725] ? ksys_write+0x1b9/0x240 [ 196.146831][ T7725] ? __pfx_ksys_write+0x10/0x10 [ 196.146872][ T7725] ? rcu_is_watching+0x12/0xc0 [ 196.146918][ T7725] __x64_sys_sendmmsg+0x9c/0x100 [ 196.146959][ T7725] ? lockdep_hardirqs_on+0x7c/0x110 [ 196.147002][ T7725] do_syscall_64+0xcd/0x260 [ 196.147050][ T7725] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 196.147082][ T7725] RIP: 0033:0x7f563918d169 [ 196.147106][ T7725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 196.147135][ T7725] RSP: 002b:00007f5639fea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 196.147163][ T7725] RAX: ffffffffffffffda RBX: 00007f56393a5fa0 RCX: 00007f563918d169 [ 196.147182][ T7725] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003 [ 196.147203][ T7725] RBP: 00007f5639fea090 R08: 0000000000000000 R09: 0000000000000000 [ 196.147220][ T7725] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001 [ 196.147237][ T7725] R13: 0000000000000000 R14: 00007f56393a5fa0 R15: 00007fff9e704038 [ 196.147275][ T7725] [ 197.300606][ T7739] Invalid ELF header magic: != ELF [ 199.521461][ T7766] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 199.548808][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.555201][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 201.570953][ T7805] netlink: 330 bytes leftover after parsing attributes in process `syz.2.565'. [ 202.154933][ T7822] Invalid ELF header magic: != ELF [ 202.692416][ T7836] FAULT_INJECTION: forcing a failure. [ 202.692416][ T7836] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 202.753431][ T7836] CPU: 0 UID: 0 PID: 7836 Comm: syz.3.576 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 202.753483][ T7836] Tainted: [I]=FIRMWARE_WORKAROUND [ 202.753495][ T7836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 202.753513][ T7836] Call Trace: [ 202.753523][ T7836] [ 202.753534][ T7836] dump_stack_lvl+0x16c/0x1f0 [ 202.753584][ T7836] should_fail_ex+0x512/0x640 [ 202.753626][ T7836] _copy_to_user+0x32/0xd0 [ 202.753670][ T7836] simple_read_from_buffer+0xcb/0x170 [ 202.753717][ T7836] proc_fail_nth_read+0x197/0x270 [ 202.753763][ T7836] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 202.753810][ T7836] ? rw_verify_area+0xcf/0x680 [ 202.754005][ T7836] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 202.754052][ T7836] vfs_read+0x1de/0xc70 [ 202.754109][ T7836] ? __pfx___mutex_lock+0x10/0x10 [ 202.754155][ T7836] ? __pfx_vfs_read+0x10/0x10 [ 202.754210][ T7836] ? __fget_files+0x20e/0x3c0 [ 202.754266][ T7836] ksys_read+0x12a/0x240 [ 202.754307][ T7836] ? __pfx_ksys_read+0x10/0x10 [ 202.754362][ T7836] do_syscall_64+0xcd/0x260 [ 202.754410][ T7836] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.754441][ T7836] RIP: 0033:0x7ff5a358bb7c [ 202.754466][ T7836] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 202.754496][ T7836] RSP: 002b:00007ff5a433e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 202.754525][ T7836] RAX: ffffffffffffffda RBX: 00007ff5a37a5fa0 RCX: 00007ff5a358bb7c [ 202.754544][ T7836] RDX: 000000000000000f RSI: 00007ff5a433e0a0 RDI: 0000000000000004 [ 202.754562][ T7836] RBP: 00007ff5a433e090 R08: 0000000000000000 R09: 0000000000000000 [ 202.754579][ T7836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 202.754595][ T7836] R13: 0000000000000000 R14: 00007ff5a37a5fa0 R15: 00007fff90f7d748 [ 202.754635][ T7836] [ 203.036726][ T7838] netlink: 330 bytes leftover after parsing attributes in process `syz.1.577'. [ 203.272165][ T7849] FAULT_INJECTION: forcing a failure. [ 203.272165][ T7849] name failslab, interval 1, probability 0, space 0, times 0 [ 203.298045][ T7849] CPU: 0 UID: 0 PID: 7849 Comm: syz.2.582 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 203.298097][ T7849] Tainted: [I]=FIRMWARE_WORKAROUND [ 203.298108][ T7849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 203.298125][ T7849] Call Trace: [ 203.298134][ T7849] [ 203.298146][ T7849] dump_stack_lvl+0x16c/0x1f0 [ 203.298195][ T7849] should_fail_ex+0x512/0x640 [ 203.298230][ T7849] ? fs_reclaim_acquire+0xae/0x150 [ 203.298270][ T7849] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 203.298313][ T7849] should_failslab+0xc2/0x120 [ 203.298341][ T7849] __kmalloc_noprof+0xd2/0x510 [ 203.298397][ T7849] tomoyo_realpath_from_path+0xc2/0x6e0 [ 203.298444][ T7849] ? tomoyo_profile+0x47/0x60 [ 203.298495][ T7849] tomoyo_path_number_perm+0x245/0x580 [ 203.298529][ T7849] ? tomoyo_path_number_perm+0x237/0x580 [ 203.298569][ T7849] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 203.298607][ T7849] ? find_held_lock+0x2b/0x80 [ 203.298682][ T7849] ? find_held_lock+0x2b/0x80 [ 203.298718][ T7849] ? hook_file_ioctl_common+0x145/0x410 [ 203.298760][ T7849] ? __fget_files+0x20e/0x3c0 [ 203.298817][ T7849] security_file_ioctl+0x9b/0x240 [ 203.298856][ T7849] __x64_sys_ioctl+0xb7/0x200 [ 203.298896][ T7849] do_syscall_64+0xcd/0x260 [ 203.298940][ T7849] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 203.298970][ T7849] RIP: 0033:0x7fd85bf8d169 [ 203.298992][ T7849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 203.299020][ T7849] RSP: 002b:00007fd85cd03038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 203.299052][ T7849] RAX: ffffffffffffffda RBX: 00007fd85c1a5fa0 RCX: 00007fd85bf8d169 [ 203.299071][ T7849] RDX: 0000000000000000 RSI: 00000000000007b9 RDI: 0000000000000003 [ 203.299088][ T7849] RBP: 00007fd85cd03090 R08: 0000000000000000 R09: 0000000000000000 [ 203.299104][ T7849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 203.299120][ T7849] R13: 0000000000000000 R14: 00007fd85c1a5fa0 R15: 00007ffe0b36f638 [ 203.299158][ T7849] [ 203.299199][ T7849] ERROR: Out of memory at tomoyo_realpath_from_path. [ 203.786387][ T7865] FAULT_INJECTION: forcing a failure. [ 203.786387][ T7865] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 203.800101][ T7865] CPU: 1 UID: 0 PID: 7865 Comm: syz.0.586 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 203.800143][ T7865] Tainted: [I]=FIRMWARE_WORKAROUND [ 203.800152][ T7865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 203.800166][ T7865] Call Trace: [ 203.800175][ T7865] [ 203.800184][ T7865] dump_stack_lvl+0x16c/0x1f0 [ 203.800225][ T7865] should_fail_ex+0x512/0x640 [ 203.800260][ T7865] _copy_from_user+0x2e/0xd0 [ 203.800293][ T7865] copy_msghdr_from_user+0x98/0x160 [ 203.800327][ T7865] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 203.800366][ T7865] ? __pfx__kstrtoull+0x10/0x10 [ 203.800411][ T7865] ___sys_sendmsg+0xfe/0x1d0 [ 203.800445][ T7865] ? __pfx____sys_sendmsg+0x10/0x10 [ 203.800493][ T7865] ? find_held_lock+0x2b/0x80 [ 203.800546][ T7865] __sys_sendmmsg+0x200/0x420 [ 203.800582][ T7865] ? __pfx___sys_sendmmsg+0x10/0x10 [ 203.800626][ T7865] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 203.800677][ T7865] ? fput+0x70/0xf0 [ 203.800701][ T7865] ? ksys_write+0x1b9/0x240 [ 203.800764][ T7865] ? __pfx_ksys_write+0x10/0x10 [ 203.800803][ T7865] ? rcu_is_watching+0x12/0xc0 [ 203.800847][ T7865] __x64_sys_sendmmsg+0x9c/0x100 [ 203.800886][ T7865] ? lockdep_hardirqs_on+0x7c/0x110 [ 203.800927][ T7865] do_syscall_64+0xcd/0x260 [ 203.800973][ T7865] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 203.801002][ T7865] RIP: 0033:0x7f563918d169 [ 203.801026][ T7865] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 203.801055][ T7865] RSP: 002b:00007f5639fea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 203.801079][ T7865] RAX: ffffffffffffffda RBX: 00007f56393a5fa0 RCX: 00007f563918d169 [ 203.801095][ T7865] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 203.801110][ T7865] RBP: 00007f5639fea090 R08: 0000000000000000 R09: 0000000000000000 [ 203.801125][ T7865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 203.801139][ T7865] R13: 0000000000000000 R14: 00007f56393a5fa0 R15: 00007fff9e704038 [ 203.801171][ T7865] [ 204.067633][ T7869] netlink: 338 bytes leftover after parsing attributes in process `syz.0.587'. [ 204.287739][ T7876] netlink: 330 bytes leftover after parsing attributes in process `syz.1.588'. [ 204.687557][ T7888] FAULT_INJECTION: forcing a failure. [ 204.687557][ T7888] name failslab, interval 1, probability 0, space 0, times 0 [ 204.726520][ T7888] CPU: 1 UID: 0 PID: 7888 Comm: syz.2.594 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 204.726569][ T7888] Tainted: [I]=FIRMWARE_WORKAROUND [ 204.726580][ T7888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 204.726598][ T7888] Call Trace: [ 204.726607][ T7888] [ 204.726619][ T7888] dump_stack_lvl+0x16c/0x1f0 [ 204.726667][ T7888] should_fail_ex+0x512/0x640 [ 204.726712][ T7888] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 204.726764][ T7888] should_failslab+0xc2/0x120 [ 204.726793][ T7888] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 204.726841][ T7888] ? getname_flags.part.0+0x48/0x540 [ 204.726883][ T7888] getname_flags.part.0+0x48/0x540 [ 204.726920][ T7888] getname_flags+0x93/0xf0 [ 204.726962][ T7888] user_path_at+0x24/0x60 [ 204.727006][ T7888] __x64_sys_mount+0x1fc/0x310 [ 204.727038][ T7888] ? __pfx___x64_sys_mount+0x10/0x10 [ 204.727066][ T7888] ? rcu_is_watching+0x12/0xc0 [ 204.727117][ T7888] do_syscall_64+0xcd/0x260 [ 204.727165][ T7888] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 204.727198][ T7888] RIP: 0033:0x7fd85bf8d169 [ 204.727221][ T7888] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 204.727249][ T7888] RSP: 002b:00007fd85cd03038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 204.727283][ T7888] RAX: ffffffffffffffda RBX: 00007fd85c1a5fa0 RCX: 00007fd85bf8d169 [ 204.727302][ T7888] RDX: 00002000000001c0 RSI: 0000200000000180 RDI: 0000000000000000 [ 204.727320][ T7888] RBP: 00007fd85cd03090 R08: 0000000000000000 R09: 0000000000000000 [ 204.727336][ T7888] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001 [ 204.727352][ T7888] R13: 0000000000000000 R14: 00007fd85c1a5fa0 R15: 00007ffe0b36f638 [ 204.727389][ T7888] [ 204.930762][ T7893] kAFS: No cell specified [ 205.629840][ T7908] netlink: 330 bytes leftover after parsing attributes in process `syz.1.600'. [ 207.982145][ T7943] netlink: 330 bytes leftover after parsing attributes in process `syz.0.611'. [ 209.615209][ T7986] FAULT_INJECTION: forcing a failure. [ 209.615209][ T7986] name failslab, interval 1, probability 0, space 0, times 0 [ 209.646408][ T7986] CPU: 0 UID: 0 PID: 7986 Comm: syz.0.621 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 209.646465][ T7986] Tainted: [I]=FIRMWARE_WORKAROUND [ 209.646477][ T7986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 209.646496][ T7986] Call Trace: [ 209.646506][ T7986] [ 209.646518][ T7986] dump_stack_lvl+0x16c/0x1f0 [ 209.646579][ T7986] should_fail_ex+0x512/0x640 [ 209.646617][ T7986] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 209.646671][ T7986] should_failslab+0xc2/0x120 [ 209.646703][ T7986] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 209.646755][ T7986] ? do_kmem_cache_create+0x1b3/0x730 [ 209.646794][ T7986] do_kmem_cache_create+0x1b3/0x730 [ 209.646822][ T7986] ? __kmem_cache_create_args+0x205/0x390 [ 209.646878][ T7986] __kmem_cache_create_args+0x225/0x390 [ 209.646932][ T7986] mon_text_open+0x313/0x4f0 [ 209.646972][ T7986] ? __pfx_mon_text_open+0x10/0x10 [ 209.647009][ T7986] ? __debugfs_file_get+0x1fe/0x840 [ 209.647045][ T7986] ? __pfx_mon_text_ctor+0x10/0x10 [ 209.647084][ T7986] ? __pfx_apparmor_file_open+0x10/0x10 [ 209.647124][ T7986] ? lockdown_is_locked_down+0x3f/0x130 [ 209.647169][ T7986] ? bpf_lsm_locked_down+0x9/0x10 [ 209.647222][ T7986] ? __pfx_mon_text_open+0x10/0x10 [ 209.647258][ T7986] full_proxy_open_regular+0x1b6/0x360 [ 209.647301][ T7986] do_dentry_open+0x741/0x1c10 [ 209.647355][ T7986] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 209.647404][ T7986] vfs_open+0x82/0x3f0 [ 209.647443][ T7986] path_openat+0x1e5e/0x2d40 [ 209.647509][ T7986] ? __pfx_path_openat+0x10/0x10 [ 209.647576][ T7986] do_filp_open+0x20b/0x470 [ 209.647626][ T7986] ? __pfx_do_filp_open+0x10/0x10 [ 209.647708][ T7986] ? alloc_fd+0x471/0x7d0 [ 209.647767][ T7986] do_sys_openat2+0x11b/0x1d0 [ 209.647803][ T7986] ? __pfx_do_sys_openat2+0x10/0x10 [ 209.647855][ T7986] __x64_sys_openat+0x174/0x210 [ 209.647892][ T7986] ? __pfx___x64_sys_openat+0x10/0x10 [ 209.647930][ T7986] ? syscall_user_dispatch+0x78/0x140 [ 209.647980][ T7986] do_syscall_64+0xcd/0x260 [ 209.648031][ T7986] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 209.648064][ T7986] RIP: 0033:0x7f563918d169 [ 209.648090][ T7986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 209.648121][ T7986] RSP: 002b:00007f5639fea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 209.648152][ T7986] RAX: ffffffffffffffda RBX: 00007f56393a5fa0 RCX: 00007f563918d169 [ 209.648172][ T7986] RDX: 0000000000000003 RSI: 00002000000002c0 RDI: ffffffffffffff9c [ 209.648192][ T7986] RBP: 00007f563920e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 209.648210][ T7986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 209.648228][ T7986] R13: 0000000000000000 R14: 00007f56393a5fa0 R15: 00007fff9e704038 [ 209.648269][ T7986] [ 209.955536][ T7986] __kmem_cache_create_args(mon_text_ffff888027352800) failed with error -22 [ 209.965668][ T7986] CPU: 0 UID: 0 PID: 7986 Comm: syz.0.621 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 209.965720][ T7986] Tainted: [I]=FIRMWARE_WORKAROUND [ 209.965731][ T7986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 209.965749][ T7986] Call Trace: [ 209.965759][ T7986] [ 209.965770][ T7986] dump_stack_lvl+0x16c/0x1f0 [ 209.965822][ T7986] __kmem_cache_create_args+0x125/0x390 [ 209.965879][ T7986] mon_text_open+0x313/0x4f0 [ 209.965921][ T7986] ? __pfx_mon_text_open+0x10/0x10 [ 209.965957][ T7986] ? __debugfs_file_get+0x1fe/0x840 [ 209.965992][ T7986] ? __pfx_mon_text_ctor+0x10/0x10 [ 209.966030][ T7986] ? __pfx_apparmor_file_open+0x10/0x10 [ 209.966070][ T7986] ? lockdown_is_locked_down+0x3f/0x130 [ 209.966116][ T7986] ? bpf_lsm_locked_down+0x9/0x10 [ 209.966166][ T7986] ? __pfx_mon_text_open+0x10/0x10 [ 209.966201][ T7986] full_proxy_open_regular+0x1b6/0x360 [ 209.966253][ T7986] do_dentry_open+0x741/0x1c10 [ 209.966302][ T7986] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 209.966350][ T7986] vfs_open+0x82/0x3f0 [ 209.966390][ T7986] path_openat+0x1e5e/0x2d40 [ 209.966455][ T7986] ? __pfx_path_openat+0x10/0x10 [ 209.966516][ T7986] do_filp_open+0x20b/0x470 [ 209.966567][ T7986] ? __pfx_do_filp_open+0x10/0x10 [ 209.966647][ T7986] ? alloc_fd+0x471/0x7d0 [ 209.966706][ T7986] do_sys_openat2+0x11b/0x1d0 [ 209.966741][ T7986] ? __pfx_do_sys_openat2+0x10/0x10 [ 209.966792][ T7986] __x64_sys_openat+0x174/0x210 [ 209.966828][ T7986] ? __pfx___x64_sys_openat+0x10/0x10 [ 209.966866][ T7986] ? syscall_user_dispatch+0x78/0x140 [ 209.966916][ T7986] do_syscall_64+0xcd/0x260 [ 209.966967][ T7986] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 209.966999][ T7986] RIP: 0033:0x7f563918d169 [ 209.967026][ T7986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 209.967058][ T7986] RSP: 002b:00007f5639fea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 209.967089][ T7986] RAX: ffffffffffffffda RBX: 00007f56393a5fa0 RCX: 00007f563918d169 [ 209.967110][ T7986] RDX: 0000000000000003 RSI: 00002000000002c0 RDI: ffffffffffffff9c [ 209.967130][ T7986] RBP: 00007f563920e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 209.967150][ T7986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 209.967169][ T7986] R13: 0000000000000000 R14: 00007f56393a5fa0 R15: 00007fff9e704038 [ 209.967218][ T7986] [ 210.348363][ T7971] mmap: syz.2.617 (7971) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 211.217648][ T8008] netlink: 28 bytes leftover after parsing attributes in process `syz.1.626'. [ 211.280473][ T8008] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 211.360425][ T8008] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 211.764628][ T8018] netlink: 28 bytes leftover after parsing attributes in process `syz.0.630'. [ 212.691319][ T8031] netlink: 330 bytes leftover after parsing attributes in process `syz.0.633'. [ 212.893748][ T8037] FAULT_INJECTION: forcing a failure. [ 212.893748][ T8037] name failslab, interval 1, probability 0, space 0, times 0 [ 212.955883][ T8037] CPU: 0 UID: 0 PID: 8037 Comm: syz.1.635 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 212.955934][ T8037] Tainted: [I]=FIRMWARE_WORKAROUND [ 212.955945][ T8037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 212.955961][ T8037] Call Trace: [ 212.955970][ T8037] [ 212.955981][ T8037] dump_stack_lvl+0x16c/0x1f0 [ 212.956031][ T8037] should_fail_ex+0x512/0x640 [ 212.956066][ T8037] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 212.956119][ T8037] should_failslab+0xc2/0x120 [ 212.956148][ T8037] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 212.956192][ T8037] ? __pfx_validate_mm+0x10/0x10 [ 212.956236][ T8037] ? vm_area_dup+0x25/0x760 [ 212.956290][ T8037] vm_area_dup+0x25/0x760 [ 212.956332][ T8037] __split_vma+0x17f/0x1030 [ 212.956378][ T8037] ? mas_next_slot+0x12d3/0x21b0 [ 212.956425][ T8037] ? __pfx___split_vma+0x10/0x10 [ 212.956490][ T8037] vms_gather_munmap_vmas+0x392/0x1310 [ 212.956560][ T8037] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 212.956616][ T8037] ? __pfx_copy_vma+0x10/0x10 [ 212.956673][ T8037] do_vmi_align_munmap+0x27c/0x7d0 [ 212.956723][ T8037] ? __pfx_do_vmi_align_munmap+0x10/0x10 [ 212.956836][ T8037] do_vmi_munmap+0x208/0x3e0 [ 212.956890][ T8037] move_vma+0xb67/0x1740 [ 212.956947][ T8037] ? __pfx_move_vma+0x10/0x10 [ 212.957000][ T8037] ? mm_get_unmapped_area_vmflags+0x97/0xe0 [ 212.957055][ T8037] ? vrm_set_new_addr+0x208/0x290 [ 212.957107][ T8037] __do_sys_mremap+0xe38/0x15d0 [ 212.957161][ T8037] ? __pfx___do_sys_mremap+0x10/0x10 [ 212.957211][ T8037] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 212.957271][ T8037] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 212.957325][ T8037] ? __fget_files+0x20e/0x3c0 [ 212.957402][ T8037] do_syscall_64+0xcd/0x260 [ 212.957452][ T8037] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 212.957483][ T8037] RIP: 0033:0x7f1564b8d169 [ 212.957507][ T8037] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 212.957537][ T8037] RSP: 002b:00007f15649f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 212.957566][ T8037] RAX: ffffffffffffffda RBX: 00007f1564da5fa0 RCX: 00007f1564b8d169 [ 212.957585][ T8037] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000200000000000 [ 212.957602][ T8037] RBP: 00007f15649f7090 R08: 0000000100000000 R09: 0000000000000000 [ 212.957620][ T8037] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 212.957637][ T8037] R13: 0000000000000001 R14: 00007f1564da5fa0 R15: 00007ffff55f0338 [ 212.957677][ T8037] [ 213.709274][ T8055] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 213.732811][ T8055] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 215.093164][ T8078] Invalid ELF header magic: != ELF [ 215.385991][ T8087] netlink: 330 bytes leftover after parsing attributes in process `syz.3.644'. [ 215.819023][ T8096] FAULT_INJECTION: forcing a failure. [ 215.819023][ T8096] name failslab, interval 1, probability 0, space 0, times 0 [ 215.896841][ T8096] CPU: 0 UID: 0 PID: 8096 Comm: syz.0.647 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 215.896891][ T8096] Tainted: [I]=FIRMWARE_WORKAROUND [ 215.896902][ T8096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 215.896918][ T8096] Call Trace: [ 215.896927][ T8096] [ 215.896945][ T8096] dump_stack_lvl+0x16c/0x1f0 [ 215.896994][ T8096] should_fail_ex+0x512/0x640 [ 215.897035][ T8096] should_failslab+0xc2/0x120 [ 215.897065][ T8096] __kmalloc_cache_noprof+0x6a/0x3e0 [ 215.897107][ T8096] ? __sctp_v6_cmp_addr+0x206/0x530 [ 215.897155][ T8096] ? sctp_add_bind_addr+0xae/0x3f0 [ 215.897201][ T8096] sctp_add_bind_addr+0xae/0x3f0 [ 215.897248][ T8096] sctp_copy_local_addr_list+0x39d/0x5a0 [ 215.897303][ T8096] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 215.897358][ T8096] ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360 [ 215.897418][ T8096] ? sctp_bind_addr_copy+0xe0/0x530 [ 215.897458][ T8096] sctp_bind_addr_copy+0xe0/0x530 [ 215.897510][ T8096] sctp_connect_new_asoc+0x1d7/0x790 [ 215.897548][ T8096] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 215.897586][ T8096] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 215.897623][ T8096] ? sctp_get_af_specific+0x62/0x70 [ 215.897674][ T8096] __sctp_connect+0x3f3/0xc60 [ 215.897712][ T8096] ? do_raw_spin_lock+0x12c/0x2b0 [ 215.897749][ T8096] ? __pfx___sctp_connect+0x10/0x10 [ 215.897790][ T8096] ? __pfx_sctp_inet_connect+0x10/0x10 [ 215.897824][ T8096] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 215.897861][ T8096] ? __pfx_sctp_inet_connect+0x10/0x10 [ 215.897892][ T8096] sctp_inet_connect+0x15f/0x200 [ 215.897935][ T8096] __sys_connect_file+0x13e/0x1a0 [ 215.897976][ T8096] __sys_connect+0x14d/0x170 [ 215.898010][ T8096] ? __pfx___sys_connect+0x10/0x10 [ 215.898061][ T8096] ? __pfx_ksys_write+0x10/0x10 [ 215.898103][ T8096] ? rcu_is_watching+0x12/0xc0 [ 215.898150][ T8096] __x64_sys_connect+0x72/0xb0 [ 215.898183][ T8096] ? lockdep_hardirqs_on+0x7c/0x110 [ 215.898225][ T8096] do_syscall_64+0xcd/0x260 [ 215.898274][ T8096] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 215.898306][ T8096] RIP: 0033:0x7f563918d169 [ 215.898329][ T8096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 215.898359][ T8096] RSP: 002b:00007f5639fea038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 215.898387][ T8096] RAX: ffffffffffffffda RBX: 00007f56393a5fa0 RCX: 00007f563918d169 [ 215.898406][ T8096] RDX: 0000000000000055 RSI: 00002000000018c0 RDI: 0000000000000003 [ 215.898424][ T8096] RBP: 00007f5639fea090 R08: 0000000000000000 R09: 0000000000000000 [ 215.898441][ T8096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 215.898457][ T8096] R13: 0000000000000000 R14: 00007f56393a5fa0 R15: 00007fff9e704038 [ 215.898496][ T8096] [ 217.647094][ T8115] Invalid ELF header magic: != ELF [ 218.201013][ T8123] netlink: 330 bytes leftover after parsing attributes in process `syz.1.656'. [ 218.516763][ T8135] synth uevent: /bus/usb/drivers/pctv452e: unknown uevent action string [ 220.323695][ T8156] Invalid ELF header magic: != ELF [ 220.583299][ T8161] netlink: 28 bytes leftover after parsing attributes in process `syz.0.665'. [ 220.694303][ T8161] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 220.916285][ T8169] netlink: 8 bytes leftover after parsing attributes in process `syz.1.669'. [ 220.929919][ T8161] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 221.056899][ T8167] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input9 [ 223.122870][ T8197] netlink: 146 bytes leftover after parsing attributes in process `syz.3.677'. [ 226.302607][ T8243] can: request_module (can-proto-0) failed. [ 226.563907][ T8252] netlink: 146 bytes leftover after parsing attributes in process `syz.0.690'. [ 226.930668][ T8261] FAULT_INJECTION: forcing a failure. [ 226.930668][ T8261] name failslab, interval 1, probability 0, space 0, times 0 [ 226.931136][ T8261] CPU: 1 UID: 0 PID: 8261 Comm: syz.3.692 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 226.931185][ T8261] Tainted: [I]=FIRMWARE_WORKAROUND [ 226.931196][ T8261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 226.931213][ T8261] Call Trace: [ 226.931223][ T8261] [ 226.931233][ T8261] dump_stack_lvl+0x16c/0x1f0 [ 226.931282][ T8261] should_fail_ex+0x512/0x640 [ 226.931316][ T8261] ? __kvmalloc_node_noprof+0x122/0x600 [ 226.931366][ T8261] should_failslab+0xc2/0x120 [ 226.931396][ T8261] __kvmalloc_node_noprof+0x135/0x600 [ 226.931439][ T8261] ? __lock_acquire+0xaa4/0x1ba0 [ 226.931467][ T8261] ? seq_read_iter+0x826/0x12c0 [ 226.931516][ T8261] ? seq_read_iter+0x826/0x12c0 [ 226.931554][ T8261] seq_read_iter+0x826/0x12c0 [ 226.931594][ T8261] ? __mutex_trylock_common+0xe9/0x250 [ 226.931641][ T8261] proc_reg_read_iter+0x21d/0x310 [ 226.931675][ T8261] vfs_read+0x8c8/0xc70 [ 226.931724][ T8261] ? __pfx___mutex_lock+0x10/0x10 [ 226.931778][ T8261] ? __pfx_vfs_read+0x10/0x10 [ 226.931849][ T8261] ksys_read+0x12a/0x240 [ 226.931892][ T8261] ? __pfx_ksys_read+0x10/0x10 [ 226.931947][ T8261] do_syscall_64+0xcd/0x260 [ 226.931995][ T8261] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 226.932027][ T8261] RIP: 0033:0x7ff5a358d169 [ 226.932051][ T8261] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 226.932081][ T8261] RSP: 002b:00007ff5a431d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 226.932108][ T8261] RAX: ffffffffffffffda RBX: 00007ff5a37a6080 RCX: 00007ff5a358d169 [ 226.932133][ T8261] RDX: 0000000000000079 RSI: 0000200000000080 RDI: 0000000000000003 [ 226.932152][ T8261] RBP: 00007ff5a431d090 R08: 0000000000000000 R09: 0000000000000000 [ 226.932170][ T8261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 226.932188][ T8261] R13: 0000000000000001 R14: 00007ff5a37a6080 R15: 00007fff90f7d748 [ 226.932229][ T8261] [ 226.955550][ T8259] can: request_module (can-proto-0) failed. [ 227.963316][ T8278] Invalid ELF header magic: != ELF [ 228.000741][ T8280] Invalid ELF header magic: != ELF [ 228.121329][ T8278] FAULT_INJECTION: forcing a failure. [ 228.121329][ T8278] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 228.161601][ T8278] CPU: 1 UID: 0 PID: 8278 Comm: syz.2.698 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 228.161651][ T8278] Tainted: [I]=FIRMWARE_WORKAROUND [ 228.161663][ T8278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 228.161680][ T8278] Call Trace: [ 228.161690][ T8278] [ 228.161702][ T8278] dump_stack_lvl+0x16c/0x1f0 [ 228.161751][ T8278] should_fail_ex+0x512/0x640 [ 228.161795][ T8278] _copy_from_user+0x2e/0xd0 [ 228.161836][ T8278] __sys_bpf+0x21d/0x4d80 [ 228.161876][ T8278] ? __pfx___sys_bpf+0x10/0x10 [ 228.161915][ T8278] ? vfs_write+0x316/0x1180 [ 228.161954][ T8278] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 228.162002][ T8278] ? __pfx_vfs_write+0x10/0x10 [ 228.162047][ T8278] ? do_sys_openat2+0x157/0x1d0 [ 228.162101][ T8278] ? ksys_write+0x1b9/0x240 [ 228.162142][ T8278] ? __pfx_ksys_write+0x10/0x10 [ 228.162182][ T8278] ? rcu_is_watching+0x12/0xc0 [ 228.162229][ T8278] __x64_sys_bpf+0x78/0xc0 [ 228.162264][ T8278] ? lockdep_hardirqs_on+0x7c/0x110 [ 228.162306][ T8278] do_syscall_64+0xcd/0x260 [ 228.162354][ T8278] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 228.162385][ T8278] RIP: 0033:0x7fd85bf8d169 [ 228.162410][ T8278] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 228.162441][ T8278] RSP: 002b:00007fd85cd03038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 228.162470][ T8278] RAX: ffffffffffffffda RBX: 00007fd85c1a5fa0 RCX: 00007fd85bf8d169 [ 228.162489][ T8278] RDX: 0000000000000007 RSI: 0000200000000040 RDI: 0000000000000004 [ 228.162506][ T8278] RBP: 00007fd85cd03090 R08: 0000000000000000 R09: 0000000000000000 [ 228.162524][ T8278] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 228.162540][ T8278] R13: 0000000000000000 R14: 00007fd85c1a5fa0 R15: 00007ffe0b36f638 [ 228.162578][ T8278] [ 228.620375][ T8295] FAULT_INJECTION: forcing a failure. [ 228.620375][ T8295] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 228.679472][ T8295] CPU: 1 UID: 0 PID: 8295 Comm: syz.0.703 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 228.679524][ T8295] Tainted: [I]=FIRMWARE_WORKAROUND [ 228.679535][ T8295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 228.679554][ T8295] Call Trace: [ 228.679563][ T8295] [ 228.679575][ T8295] dump_stack_lvl+0x16c/0x1f0 [ 228.679623][ T8295] should_fail_ex+0x512/0x640 [ 228.679665][ T8295] _copy_from_user+0x2e/0xd0 [ 228.679706][ T8295] clear_refs_write+0xea/0xb70 [ 228.679761][ T8295] ? __pfx_clear_refs_write+0x10/0x10 [ 228.679817][ T8295] ? __lock_acquire+0xaa4/0x1ba0 [ 228.679851][ T8295] ? get_pid_task+0xfc/0x250 [ 228.679911][ T8295] vfs_write+0x25c/0x1180 [ 228.679953][ T8295] ? __pfx_clear_refs_write+0x10/0x10 [ 228.680005][ T8295] ? __pfx___mutex_lock+0x10/0x10 [ 228.680051][ T8295] ? __pfx_vfs_write+0x10/0x10 [ 228.680107][ T8295] ? __fget_files+0x20e/0x3c0 [ 228.680166][ T8295] ksys_write+0x12a/0x240 [ 228.680208][ T8295] ? __pfx_ksys_write+0x10/0x10 [ 228.680266][ T8295] do_syscall_64+0xcd/0x260 [ 228.680314][ T8295] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 228.680346][ T8295] RIP: 0033:0x7f563918d169 [ 228.680371][ T8295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 228.680401][ T8295] RSP: 002b:00007f5639fc9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 228.680429][ T8295] RAX: ffffffffffffffda RBX: 00007f56393a6080 RCX: 00007f563918d169 [ 228.680450][ T8295] RDX: 00000000ffffff4b RSI: 0000000000000000 RDI: 0000000000000002 [ 228.680469][ T8295] RBP: 00007f5639fc9090 R08: 0000000000000000 R09: 0000000000000000 [ 228.680486][ T8295] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 228.680504][ T8295] R13: 0000000000000001 R14: 00007f56393a6080 R15: 00007fff9e704038 [ 228.680544][ T8295] [ 229.549833][ T8309] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input10 [ 230.080030][ T8319] Invalid ELF header magic: != ELF [ 230.495615][ T8331] Invalid ELF header magic: != ELF [ 231.022003][ T8345] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input11 [ 231.556080][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 231.566186][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 232.370071][ T8414] netlink: 342 bytes leftover after parsing attributes in process `syz.3.743'. [ 233.080888][ T8429] openvswitch: netlink: Missing valid actions attribute. [ 233.551433][ T8437] Invalid ELF header magic: != ELF [ 234.153589][ T8458] syz.3.753 uses obsolete (PF_INET,SOCK_PACKET) [ 235.065169][ T8475] Invalid ELF header magic: != ELF [ 235.610146][ T8494] netlink: 330 bytes leftover after parsing attributes in process `syz.2.762'. [ 235.917112][ T8472] tipc: can't start tipc receive workqueue [ 237.359645][ T8527] netlink: 330 bytes leftover after parsing attributes in process `syz.0.775'. [ 237.810631][ T8541] FAULT_INJECTION: forcing a failure. [ 237.810631][ T8541] name failslab, interval 1, probability 0, space 0, times 0 [ 237.832652][ T8541] CPU: 1 UID: 0 PID: 8541 Comm: syz.3.779 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 237.832711][ T8541] Tainted: [I]=FIRMWARE_WORKAROUND [ 237.832724][ T8541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 237.832743][ T8541] Call Trace: [ 237.832754][ T8541] [ 237.832766][ T8541] dump_stack_lvl+0x16c/0x1f0 [ 237.832822][ T8541] should_fail_ex+0x512/0x640 [ 237.832860][ T8541] ? fs_reclaim_acquire+0xae/0x150 [ 237.832904][ T8541] ? ima_alloc_init_template+0xb5/0x720 [ 237.832943][ T8541] should_failslab+0xc2/0x120 [ 237.832974][ T8541] __kmalloc_noprof+0xd2/0x510 [ 237.833026][ T8541] ? find_held_lock+0x2b/0x80 [ 237.833076][ T8541] ima_alloc_init_template+0xb5/0x720 [ 237.833111][ T8541] ? take_dentry_name_snapshot+0x319/0x7d0 [ 237.833156][ T8541] ima_store_measurement+0x1eb/0x5c0 [ 237.833193][ T8541] ? __pfx_ima_store_measurement+0x10/0x10 [ 237.833230][ T8541] ? vfs_getxattr_alloc+0xec/0x340 [ 237.833291][ T8541] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 237.833347][ T8541] process_measurement+0x1bd6/0x2360 [ 237.833413][ T8541] ? __pfx_process_measurement+0x10/0x10 [ 237.833461][ T8541] ? __lock_acquire+0x5ca/0x1ba0 [ 237.833495][ T8541] ? init_file+0x93/0x4c0 [ 237.833524][ T8541] ? alloc_empty_file+0x73/0x1e0 [ 237.833557][ T8541] ? hugetlb_file_setup+0x4cd/0x620 [ 237.833598][ T8541] ? ksys_mmap_pgoff+0x189/0x5c0 [ 237.833632][ T8541] ? __x64_sys_mmap+0x125/0x190 [ 237.833731][ T8541] ima_file_mmap+0x1b1/0x1d0 [ 237.833780][ T8541] ? __pfx_ima_file_mmap+0x10/0x10 [ 237.833841][ T8541] security_mmap_file+0x88c/0x990 [ 237.833887][ T8541] vm_mmap_pgoff+0xec/0x450 [ 237.833930][ T8541] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 237.833971][ T8541] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 237.834010][ T8541] ? hugetlbfs_get_inode+0x31f/0x730 [ 237.834063][ T8541] ksys_mmap_pgoff+0x1c8/0x5c0 [ 237.834102][ T8541] ? rcu_is_watching+0x12/0xc0 [ 237.834146][ T8541] __x64_sys_mmap+0x125/0x190 [ 237.834188][ T8541] do_syscall_64+0xcd/0x260 [ 237.834236][ T8541] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 237.834266][ T8541] RIP: 0033:0x7ff5a358d169 [ 237.834291][ T8541] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 237.834322][ T8541] RSP: 002b:00007ff5a433e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 237.834351][ T8541] RAX: ffffffffffffffda RBX: 00007ff5a37a5fa0 RCX: 00007ff5a358d169 [ 237.834373][ T8541] RDX: 00004000000000df RSI: 0000000000000004 RDI: bb23000000000000 [ 237.834394][ T8541] RBP: 00007ff5a360e2a0 R08: 0000000000000401 R09: 0000300000000000 [ 237.834415][ T8541] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000 [ 237.834434][ T8541] R13: 0000000000000000 R14: 00007ff5a37a5fa0 R15: 00007fff90f7d748 [ 237.834476][ T8541] [ 237.834725][ T30] audit: type=1804 audit(6039146202.629:4): pid=8541 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.3.779" name="anon_hugepage" dev="hugetlbfs" ino=24884 res=0 errno=0 [ 238.142362][ T8549] netlink: 342 bytes leftover after parsing attributes in process `syz.1.781'. [ 238.153082][ T8547] FAULT_INJECTION: forcing a failure. [ 238.153082][ T8547] name failslab, interval 1, probability 0, space 0, times 0 [ 238.169693][ T8547] CPU: 1 UID: 0 PID: 8547 Comm: syz.2.776 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 238.169754][ T8547] Tainted: [I]=FIRMWARE_WORKAROUND [ 238.169767][ T8547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 238.169786][ T8547] Call Trace: [ 238.169796][ T8547] [ 238.169807][ T8547] dump_stack_lvl+0x16c/0x1f0 [ 238.169861][ T8547] should_fail_ex+0x512/0x640 [ 238.169898][ T8547] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 238.169954][ T8547] should_failslab+0xc2/0x120 [ 238.169985][ T8547] __kmalloc_cache_noprof+0x6a/0x3e0 [ 238.170029][ T8547] ? find_held_lock+0x2b/0x80 [ 238.170070][ T8547] ? resv_map_alloc+0x46/0x400 [ 238.170107][ T8547] resv_map_alloc+0x46/0x400 [ 238.170141][ T8547] hugetlbfs_get_inode+0x33f/0x730 [ 238.170185][ T8547] hugetlb_file_setup+0x15b/0x620 [ 238.170230][ T8547] __do_sys_memfd_create+0x3fc/0x8a0 [ 238.170270][ T8547] do_syscall_64+0xcd/0x260 [ 238.170321][ T8547] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 238.170353][ T8547] RIP: 0033:0x7fd85bf8d169 [ 238.170378][ T8547] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 238.170408][ T8547] RSP: 002b:00007fd8599b2038 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 238.170439][ T8547] RAX: ffffffffffffffda RBX: 00007fd85c1a6240 RCX: 00007fd85bf8d169 [ 238.170459][ T8547] RDX: 0000000000000000 RSI: 000000000000000d RDI: 0000000000000000 [ 238.170476][ T8547] RBP: 00007fd85c00e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 238.170494][ T8547] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 238.170511][ T8547] R13: 0000000000000000 R14: 00007fd85c1a6240 R15: 00007ffe0b36f638 [ 238.170575][ T8547] [ 238.838801][ T8564] netlink: 330 bytes leftover after parsing attributes in process `syz.3.785'. [ 239.147846][ T8566] FAULT_INJECTION: forcing a failure. [ 239.147846][ T8566] name failslab, interval 1, probability 0, space 0, times 0 [ 239.163275][ T8566] CPU: 0 UID: 0 PID: 8566 Comm: syz.3.787 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 239.163326][ T8566] Tainted: [I]=FIRMWARE_WORKAROUND [ 239.163337][ T8566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 239.163355][ T8566] Call Trace: [ 239.163365][ T8566] [ 239.163376][ T8566] dump_stack_lvl+0x16c/0x1f0 [ 239.163427][ T8566] should_fail_ex+0x512/0x640 [ 239.163463][ T8566] ? fs_reclaim_acquire+0xae/0x150 [ 239.163504][ T8566] ? tomoyo_encode2+0x100/0x3e0 [ 239.163546][ T8566] should_failslab+0xc2/0x120 [ 239.163575][ T8566] __kmalloc_noprof+0xd2/0x510 [ 239.163632][ T8566] tomoyo_encode2+0x100/0x3e0 [ 239.163681][ T8566] tomoyo_encode+0x29/0x50 [ 239.163721][ T8566] tomoyo_realpath_from_path+0x18f/0x6e0 [ 239.163770][ T8566] ? tomoyo_profile+0x47/0x60 [ 239.163822][ T8566] tomoyo_path_number_perm+0x245/0x580 [ 239.163857][ T8566] ? tomoyo_path_number_perm+0x237/0x580 [ 239.163897][ T8566] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 239.163944][ T8566] ? find_held_lock+0x2b/0x80 [ 239.164019][ T8566] ? find_held_lock+0x2b/0x80 [ 239.164057][ T8566] ? hook_file_ioctl_common+0x145/0x410 [ 239.164101][ T8566] ? __fget_files+0x20e/0x3c0 [ 239.164153][ T8566] security_file_ioctl+0x9b/0x240 [ 239.164194][ T8566] __x64_sys_ioctl+0xb7/0x200 [ 239.164235][ T8566] do_syscall_64+0xcd/0x260 [ 239.164282][ T8566] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.164312][ T8566] RIP: 0033:0x7ff5a358d169 [ 239.164335][ T8566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 239.164365][ T8566] RSP: 002b:00007ff5a433e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 239.164394][ T8566] RAX: ffffffffffffffda RBX: 00007ff5a37a5fa0 RCX: 00007ff5a358d169 [ 239.164415][ T8566] RDX: 0000000000000038 RSI: 000000000000ae41 RDI: 0000000000000003 [ 239.164432][ T8566] RBP: 00007ff5a433e090 R08: 0000000000000000 R09: 0000000000000000 [ 239.164451][ T8566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 239.164468][ T8566] R13: 0000000000000000 R14: 00007ff5a37a5fa0 R15: 00007fff90f7d748 [ 239.164509][ T8566] [ 239.164535][ T8566] ERROR: Out of memory at tomoyo_realpath_from_path. [ 239.225746][ T8569] FAULT_INJECTION: forcing a failure. [ 239.225746][ T8569] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 239.426097][ T8569] CPU: 1 UID: 0 PID: 8569 Comm: syz.2.788 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 239.426149][ T8569] Tainted: [I]=FIRMWARE_WORKAROUND [ 239.426160][ T8569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 239.426179][ T8569] Call Trace: [ 239.426189][ T8569] [ 239.426200][ T8569] dump_stack_lvl+0x16c/0x1f0 [ 239.426251][ T8569] should_fail_ex+0x512/0x640 [ 239.426294][ T8569] _copy_from_user+0x2e/0xd0 [ 239.426336][ T8569] kstrtouint_from_user+0xd6/0x1d0 [ 239.426386][ T8569] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 239.426435][ T8569] ? __lock_acquire+0xaa4/0x1ba0 [ 239.426485][ T8569] proc_fail_nth_write+0x83/0x250 [ 239.426529][ T8569] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 239.426584][ T8569] vfs_write+0x25c/0x1180 [ 239.426625][ T8569] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 239.426683][ T8569] ? __pfx___mutex_lock+0x10/0x10 [ 239.426729][ T8569] ? __pfx_vfs_write+0x10/0x10 [ 239.426784][ T8569] ? __fget_files+0x20e/0x3c0 [ 239.426841][ T8569] ksys_write+0x12a/0x240 [ 239.426889][ T8569] ? __pfx_ksys_write+0x10/0x10 [ 239.426944][ T8569] do_syscall_64+0xcd/0x260 [ 239.426994][ T8569] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.427026][ T8569] RIP: 0033:0x7fd85bf8bc1f [ 239.427050][ T8569] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 239.427082][ T8569] RSP: 002b:00007fd859df6030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 239.427110][ T8569] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fd85bf8bc1f [ 239.427130][ T8569] RDX: 0000000000000001 RSI: 00007fd859df60a0 RDI: 0000000000000004 [ 239.427149][ T8569] RBP: 00007fd859df6090 R08: 0000000000000000 R09: 0000000000000000 [ 239.427167][ T8569] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 239.427185][ T8569] R13: 0000000000000001 R14: 00007fd85c1a6080 R15: 00007ffe0b36f638 [ 239.427226][ T8569] [ 239.809294][ T8572] FAULT_INJECTION: forcing a failure. [ 239.809294][ T8572] name failslab, interval 1, probability 0, space 0, times 0 [ 239.862137][ T8572] CPU: 0 UID: 0 PID: 8572 Comm: syz.2.789 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 239.862190][ T8572] Tainted: [I]=FIRMWARE_WORKAROUND [ 239.862201][ T8572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 239.862219][ T8572] Call Trace: [ 239.862229][ T8572] [ 239.862241][ T8572] dump_stack_lvl+0x16c/0x1f0 [ 239.862291][ T8572] should_fail_ex+0x512/0x640 [ 239.862325][ T8572] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 239.862378][ T8572] should_failslab+0xc2/0x120 [ 239.862406][ T8572] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 239.862456][ T8572] ? __alloc_skb+0x2b2/0x380 [ 239.862500][ T8572] __alloc_skb+0x2b2/0x380 [ 239.862546][ T8572] ? __pfx___alloc_skb+0x10/0x10 [ 239.862589][ T8572] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 239.862634][ T8572] ? __lock_acquire+0xaa4/0x1ba0 [ 239.862669][ T8572] netlink_alloc_large_skb+0x69/0x130 [ 239.862717][ T8572] netlink_sendmsg+0x6a1/0xdd0 [ 239.862770][ T8572] ? __pfx_netlink_sendmsg+0x10/0x10 [ 239.862832][ T8572] ____sys_sendmsg+0xa95/0xc70 [ 239.862886][ T8572] ? copy_msghdr_from_user+0x10a/0x160 [ 239.862927][ T8572] ? __pfx_____sys_sendmsg+0x10/0x10 [ 239.862997][ T8572] ___sys_sendmsg+0x134/0x1d0 [ 239.863041][ T8572] ? __pfx____sys_sendmsg+0x10/0x10 [ 239.863131][ T8572] __sys_sendmsg+0x16d/0x220 [ 239.863174][ T8572] ? __pfx___sys_sendmsg+0x10/0x10 [ 239.863227][ T8572] ? rcu_is_watching+0x12/0xc0 [ 239.863279][ T8572] do_syscall_64+0xcd/0x260 [ 239.863328][ T8572] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.863360][ T8572] RIP: 0033:0x7fd85bf8d169 [ 239.863384][ T8572] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 239.863414][ T8572] RSP: 002b:00007fd85cd03038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 239.863443][ T8572] RAX: ffffffffffffffda RBX: 00007fd85c1a5fa0 RCX: 00007fd85bf8d169 [ 239.863463][ T8572] RDX: 0000000000048000 RSI: 0000200000000100 RDI: 0000000000000003 [ 239.863482][ T8572] RBP: 00007fd85cd03090 R08: 0000000000000000 R09: 0000000000000000 [ 239.863499][ T8572] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 239.863523][ T8572] R13: 0000000000000000 R14: 00007fd85c1a5fa0 R15: 00007ffe0b36f638 [ 239.863563][ T8572] [ 240.289403][ T8582] netlink: 342 bytes leftover after parsing attributes in process `syz.2.792'. [ 240.546721][ T8593] netlink: 330 bytes leftover after parsing attributes in process `syz.2.795'. [ 240.912884][ T8600] ======================================================= [ 240.912884][ T8600] WARNING: The mand mount option has been deprecated and [ 240.912884][ T8600] and is ignored by this kernel. Remove the mand [ 240.912884][ T8600] option from the mount to silence this warning. [ 240.912884][ T8600] ======================================================= [ 241.925504][ T8616] netlink: 342 bytes leftover after parsing attributes in process `syz.0.803'. [ 242.598205][ T8630] netlink: 330 bytes leftover after parsing attributes in process `syz.0.806'. [ 242.737771][ T8638] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 243.027370][ T8651] netlink: 342 bytes leftover after parsing attributes in process `syz.1.813'. [ 245.311777][ T8689] netlink: 330 bytes leftover after parsing attributes in process `syz.1.819'. [ 246.348063][ T8719] netlink: 342 bytes leftover after parsing attributes in process `syz.0.828'. [ 246.361839][ T8719] netlink: 8 bytes leftover after parsing attributes in process `syz.0.828'. [ 246.627474][ T8724] FAULT_INJECTION: forcing a failure. [ 246.627474][ T8724] name failslab, interval 1, probability 0, space 0, times 0 [ 246.665798][ T8724] CPU: 0 UID: 0 PID: 8724 Comm: syz.0.829 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 246.665848][ T8724] Tainted: [I]=FIRMWARE_WORKAROUND [ 246.665860][ T8724] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 246.665881][ T8724] Call Trace: [ 246.665891][ T8724] [ 246.665905][ T8724] dump_stack_lvl+0x16c/0x1f0 [ 246.665954][ T8724] should_fail_ex+0x512/0x640 [ 246.665989][ T8724] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 246.666041][ T8724] should_failslab+0xc2/0x120 [ 246.666069][ T8724] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 246.666117][ T8724] ? __alloc_skb+0x2b2/0x380 [ 246.666159][ T8724] __alloc_skb+0x2b2/0x380 [ 246.666194][ T8724] ? __pfx___alloc_skb+0x10/0x10 [ 246.666242][ T8724] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 246.666286][ T8724] ? __lock_acquire+0xaa4/0x1ba0 [ 246.666321][ T8724] netlink_alloc_large_skb+0x69/0x130 [ 246.666370][ T8724] netlink_sendmsg+0x6a1/0xdd0 [ 246.666421][ T8724] ? __pfx_netlink_sendmsg+0x10/0x10 [ 246.666478][ T8724] ____sys_sendmsg+0xa95/0xc70 [ 246.666528][ T8724] ? copy_msghdr_from_user+0x10a/0x160 [ 246.666568][ T8724] ? __pfx_____sys_sendmsg+0x10/0x10 [ 246.666637][ T8724] ___sys_sendmsg+0x134/0x1d0 [ 246.666681][ T8724] ? __pfx____sys_sendmsg+0x10/0x10 [ 246.666772][ T8724] __sys_sendmsg+0x16d/0x220 [ 246.666814][ T8724] ? __pfx___sys_sendmsg+0x10/0x10 [ 246.666868][ T8724] ? rcu_is_watching+0x12/0xc0 [ 246.666919][ T8724] do_syscall_64+0xcd/0x260 [ 246.666969][ T8724] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 246.667002][ T8724] RIP: 0033:0x7f563918d169 [ 246.667027][ T8724] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 246.667057][ T8724] RSP: 002b:00007f5639fea038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 246.667087][ T8724] RAX: ffffffffffffffda RBX: 00007f56393a5fa0 RCX: 00007f563918d169 [ 246.667107][ T8724] RDX: 000000000400c854 RSI: 0000200000000300 RDI: 0000000000000003 [ 246.667126][ T8724] RBP: 00007f5639fea090 R08: 0000000000000000 R09: 0000000000000000 [ 246.667144][ T8724] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 246.667161][ T8724] R13: 0000000000000000 R14: 00007f56393a5fa0 R15: 00007fff9e704038 [ 246.667200][ T8724] [ 247.412408][ T8728] netlink: 330 bytes leftover after parsing attributes in process `syz.0.830'. [ 248.241410][ T8743] FAULT_INJECTION: forcing a failure. [ 248.241410][ T8743] name failslab, interval 1, probability 0, space 0, times 0 [ 248.265874][ T8743] CPU: 1 UID: 0 PID: 8743 Comm: syz.2.835 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 248.265929][ T8743] Tainted: [I]=FIRMWARE_WORKAROUND [ 248.265940][ T8743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 248.265959][ T8743] Call Trace: [ 248.265970][ T8743] [ 248.265982][ T8743] dump_stack_lvl+0x16c/0x1f0 [ 248.266033][ T8743] should_fail_ex+0x512/0x640 [ 248.266078][ T8743] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 248.266126][ T8743] should_failslab+0xc2/0x120 [ 248.266157][ T8743] __kmalloc_cache_noprof+0x6a/0x3e0 [ 248.266202][ T8743] ? tracing_open+0x328/0xf90 [ 248.266252][ T8743] tracing_open+0x328/0xf90 [ 248.266293][ T8743] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 248.266348][ T8743] do_dentry_open+0x741/0x1c10 [ 248.266396][ T8743] ? __pfx_tracing_open+0x10/0x10 [ 248.266447][ T8743] vfs_open+0x82/0x3f0 [ 248.266485][ T8743] path_openat+0x1e5e/0x2d40 [ 248.266549][ T8743] ? __pfx_path_openat+0x10/0x10 [ 248.266608][ T8743] do_filp_open+0x20b/0x470 [ 248.266658][ T8743] ? __pfx_do_filp_open+0x10/0x10 [ 248.266736][ T8743] ? alloc_fd+0x471/0x7d0 [ 248.266794][ T8743] do_sys_openat2+0x11b/0x1d0 [ 248.266828][ T8743] ? __pfx_do_sys_openat2+0x10/0x10 [ 248.266878][ T8743] __x64_sys_openat+0x174/0x210 [ 248.266915][ T8743] ? __pfx___x64_sys_openat+0x10/0x10 [ 248.266953][ T8743] ? rcu_is_watching+0x12/0xc0 [ 248.267005][ T8743] do_syscall_64+0xcd/0x260 [ 248.267064][ T8743] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 248.267098][ T8743] RIP: 0033:0x7fd85bf8d169 [ 248.267124][ T8743] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 248.267156][ T8743] RSP: 002b:00007fd85cd03038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 248.267187][ T8743] RAX: ffffffffffffffda RBX: 00007fd85c1a5fa0 RCX: 00007fd85bf8d169 [ 248.267208][ T8743] RDX: 0000000000004000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 248.267229][ T8743] RBP: 00007fd85c00e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 248.267247][ T8743] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 248.267265][ T8743] R13: 0000000000000000 R14: 00007fd85c1a5fa0 R15: 00007ffe0b36f638 [ 248.267303][ T8743] [ 249.400967][ T8758] FAULT_INJECTION: forcing a failure. [ 249.400967][ T8758] name failslab, interval 1, probability 0, space 0, times 0 [ 249.459568][ T8767] netlink: 330 bytes leftover after parsing attributes in process `syz.1.840'. [ 249.472522][ T8758] CPU: 0 UID: 0 PID: 8758 Comm: syz.3.839 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 249.472571][ T8758] Tainted: [I]=FIRMWARE_WORKAROUND [ 249.472580][ T8758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 249.472594][ T8758] Call Trace: [ 249.472602][ T8758] [ 249.472613][ T8758] dump_stack_lvl+0x16c/0x1f0 [ 249.472666][ T8758] should_fail_ex+0x512/0x640 [ 249.472696][ T8758] ? fs_reclaim_acquire+0xae/0x150 [ 249.472730][ T8758] ? tomoyo_encode2+0x100/0x3e0 [ 249.472763][ T8758] should_failslab+0xc2/0x120 [ 249.472787][ T8758] __kmalloc_noprof+0xd2/0x510 [ 249.472834][ T8758] tomoyo_encode2+0x100/0x3e0 [ 249.472873][ T8758] tomoyo_encode+0x29/0x50 [ 249.472907][ T8758] tomoyo_realpath_from_path+0x18f/0x6e0 [ 249.472948][ T8758] ? tomoyo_profile+0x47/0x60 [ 249.472991][ T8758] tomoyo_path_number_perm+0x245/0x580 [ 249.473020][ T8758] ? tomoyo_path_number_perm+0x237/0x580 [ 249.473053][ T8758] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 249.473085][ T8758] ? find_held_lock+0x2b/0x80 [ 249.473148][ T8758] ? find_held_lock+0x2b/0x80 [ 249.473179][ T8758] ? hook_file_ioctl_common+0x145/0x410 [ 249.473214][ T8758] ? __fget_files+0x20e/0x3c0 [ 249.473257][ T8758] security_file_ioctl+0x9b/0x240 [ 249.473290][ T8758] __x64_sys_ioctl+0xb7/0x200 [ 249.473324][ T8758] do_syscall_64+0xcd/0x260 [ 249.473365][ T8758] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 249.473391][ T8758] RIP: 0033:0x7ff5a358d169 [ 249.473412][ T8758] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 249.473437][ T8758] RSP: 002b:00007ff5a433e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 249.473462][ T8758] RAX: ffffffffffffffda RBX: 00007ff5a37a5fa0 RCX: 00007ff5a358d169 [ 249.473478][ T8758] RDX: 0000000000000038 RSI: 000000004020aea5 RDI: 0000000000000003 [ 249.473494][ T8758] RBP: 00007ff5a433e090 R08: 0000000000000000 R09: 0000000000000000 [ 249.473510][ T8758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 249.473524][ T8758] R13: 0000000000000000 R14: 00007ff5a37a5fa0 R15: 00007fff90f7d748 [ 249.473558][ T8758] [ 249.473582][ T8758] ERROR: Out of memory at tomoyo_realpath_from_path. [ 250.947652][ T8806] netlink: 330 bytes leftover after parsing attributes in process `syz.1.853'. [ 251.394839][ T8813] netlink: 40 bytes leftover after parsing attributes in process `syz.3.855'. [ 252.705254][ T8840] netlink: 330 bytes leftover after parsing attributes in process `syz.0.864'. [ 253.809149][ T8859] FAULT_INJECTION: forcing a failure. [ 253.809149][ T8859] name failslab, interval 1, probability 0, space 0, times 0 [ 254.031163][ T8859] CPU: 0 UID: 0 PID: 8859 Comm: syz.3.868 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 254.031220][ T8859] Tainted: [I]=FIRMWARE_WORKAROUND [ 254.031233][ T8859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 254.031265][ T8859] Call Trace: [ 254.031276][ T8859] [ 254.031288][ T8859] dump_stack_lvl+0x16c/0x1f0 [ 254.031342][ T8859] should_fail_ex+0x512/0x640 [ 254.031380][ T8859] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 254.031430][ T8859] should_failslab+0xc2/0x120 [ 254.031461][ T8859] __kmalloc_cache_noprof+0x6a/0x3e0 [ 254.031507][ T8859] ? tracing_open+0x328/0xf90 [ 254.031557][ T8859] tracing_open+0x328/0xf90 [ 254.031600][ T8859] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 254.031655][ T8859] do_dentry_open+0x741/0x1c10 [ 254.031703][ T8859] ? __pfx_tracing_open+0x10/0x10 [ 254.031755][ T8859] vfs_open+0x82/0x3f0 [ 254.031793][ T8859] path_openat+0x1e5e/0x2d40 [ 254.031856][ T8859] ? __pfx_path_openat+0x10/0x10 [ 254.031922][ T8859] do_filp_open+0x20b/0x470 [ 254.031972][ T8859] ? __pfx_do_filp_open+0x10/0x10 [ 254.032051][ T8859] ? alloc_fd+0x471/0x7d0 [ 254.032116][ T8859] do_sys_openat2+0x11b/0x1d0 [ 254.032151][ T8859] ? __pfx_do_sys_openat2+0x10/0x10 [ 254.032203][ T8859] __x64_sys_openat+0x174/0x210 [ 254.032249][ T8859] ? __pfx___x64_sys_openat+0x10/0x10 [ 254.032289][ T8859] ? rcu_is_watching+0x12/0xc0 [ 254.032341][ T8859] do_syscall_64+0xcd/0x260 [ 254.032393][ T8859] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 254.032427][ T8859] RIP: 0033:0x7ff5a358d169 [ 254.032453][ T8859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 254.032486][ T8859] RSP: 002b:00007ff5a433e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 254.032518][ T8859] RAX: ffffffffffffffda RBX: 00007ff5a37a5fa0 RCX: 00007ff5a358d169 [ 254.032539][ T8859] RDX: 0000000000004000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 254.032559][ T8859] RBP: 00007ff5a360e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 254.032578][ T8859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 254.032596][ T8859] R13: 0000000000000000 R14: 00007ff5a37a5fa0 R15: 00007fff90f7d748 [ 254.032637][ T8859] [ 254.259672][ C0] vkms_vblank_simulate: vblank timer overrun [ 254.925637][ T8873] Invalid ELF header magic: != ELF [ 255.608228][ T8883] mkiss: ax0: crc mode is auto. [ 256.816593][ T8904] FAULT_INJECTION: forcing a failure. [ 256.816593][ T8904] name failslab, interval 1, probability 0, space 0, times 0 [ 256.839675][ T8904] CPU: 0 UID: 0 PID: 8904 Comm: syz.0.881 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 256.839727][ T8904] Tainted: [I]=FIRMWARE_WORKAROUND [ 256.839738][ T8904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 256.839757][ T8904] Call Trace: [ 256.839766][ T8904] [ 256.839779][ T8904] dump_stack_lvl+0x16c/0x1f0 [ 256.839828][ T8904] should_fail_ex+0x512/0x640 [ 256.839863][ T8904] ? __kvmalloc_node_noprof+0x122/0x600 [ 256.839913][ T8904] should_failslab+0xc2/0x120 [ 256.839943][ T8904] __kvmalloc_node_noprof+0x135/0x600 [ 256.839989][ T8904] ? __sys_bpf+0x269a/0x4d80 [ 256.840032][ T8904] ? __sys_bpf+0x269a/0x4d80 [ 256.840070][ T8904] __sys_bpf+0x269a/0x4d80 [ 256.840112][ T8904] ? __pfx___sys_bpf+0x10/0x10 [ 256.840146][ T8904] ? vfs_write+0x316/0x1180 [ 256.840185][ T8904] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 256.840239][ T8904] ? __pfx_vfs_write+0x10/0x10 [ 256.840283][ T8904] ? do_sys_openat2+0x157/0x1d0 [ 256.840339][ T8904] ? ksys_write+0x1b9/0x240 [ 256.840381][ T8904] ? __pfx_ksys_write+0x10/0x10 [ 256.840419][ T8904] ? rcu_is_watching+0x12/0xc0 [ 256.840465][ T8904] __x64_sys_bpf+0x78/0xc0 [ 256.840501][ T8904] ? lockdep_hardirqs_on+0x7c/0x110 [ 256.840543][ T8904] do_syscall_64+0xcd/0x260 [ 256.840590][ T8904] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 256.840621][ T8904] RIP: 0033:0x7f563918d169 [ 256.840646][ T8904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 256.840677][ T8904] RSP: 002b:00007f5639fea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 256.840706][ T8904] RAX: ffffffffffffffda RBX: 00007f56393a5fa0 RCX: 00007f563918d169 [ 256.840727][ T8904] RDX: 0000000000000007 RSI: 0000200000000040 RDI: 0000000000000004 [ 256.840745][ T8904] RBP: 00007f5639fea090 R08: 0000000000000000 R09: 0000000000000000 [ 256.840763][ T8904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 256.840781][ T8904] R13: 0000000000000000 R14: 00007f56393a5fa0 R15: 00007fff9e704038 [ 256.840820][ T8904] [ 257.411450][ T8911] netlink: 330 bytes leftover after parsing attributes in process `syz.2.883'. [ 259.354340][ T8947] netlink: 330 bytes leftover after parsing attributes in process `syz.0.893'. [ 259.383299][ T8945] netlink: 330 bytes leftover after parsing attributes in process `syz.1.894'. [ 259.655266][ C0] vcan0: j1939_tp_rxtimer: 0xffff8880271cbc00: rx timeout, send abort [ 259.665855][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff8880271cbc00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 259.734184][ C0] vcan0: j1939_tp_rxtimer: 0xffff8880271c8800: rx timeout, send abort [ 259.742734][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff8880271c8800: 0x40000: (3) A timeout occurred and this is the connection abort to close the session. [ 260.491499][ T8969] FAULT_INJECTION: forcing a failure. [ 260.491499][ T8969] name failslab, interval 1, probability 0, space 0, times 0 [ 260.491573][ T8969] CPU: 1 UID: 0 PID: 8969 Comm: syz.3.898 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 260.491623][ T8969] Tainted: [I]=FIRMWARE_WORKAROUND [ 260.491641][ T8969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 260.491660][ T8969] Call Trace: [ 260.491670][ T8969] [ 260.491682][ T8969] dump_stack_lvl+0x16c/0x1f0 [ 260.491736][ T8969] should_fail_ex+0x512/0x640 [ 260.491774][ T8969] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 260.491824][ T8969] should_failslab+0xc2/0x120 [ 260.491855][ T8969] __kmalloc_cache_noprof+0x6a/0x3e0 [ 260.491901][ T8969] ? device_create_groups_vargs+0x8a/0x270 [ 260.491945][ T8969] device_create_groups_vargs+0x8a/0x270 [ 260.491993][ T8969] device_create+0xed/0x130 [ 260.492030][ T8969] ? __pfx_device_create+0x10/0x10 [ 260.492063][ T8969] ? do_raw_spin_lock+0x12c/0x2b0 [ 260.492103][ T8969] ? is_console_locked+0x9/0x20 [ 260.492149][ T8969] ? con_is_visible+0x65/0x150 [ 260.492191][ T8969] ? csi_J+0x54a/0xad0 [ 260.492246][ T8969] vcs_make_sysfs+0x32/0x80 [ 260.492291][ T8969] vc_allocate+0x501/0x880 [ 260.492342][ T8969] ? __pfx_vc_allocate+0x10/0x10 [ 260.492403][ T8969] con_install+0xa1/0x600 [ 260.492457][ T8969] ? __pfx_con_install+0x10/0x10 [ 260.492514][ T8969] ? __pfx_con_install+0x10/0x10 [ 260.492566][ T8969] tty_init_dev.part.0+0x99/0x500 [ 260.492604][ T8969] tty_open+0xa50/0xf90 [ 260.492645][ T8969] ? __pfx_tty_open+0x10/0x10 [ 260.492677][ T8969] ? chrdev_open+0x58c/0x6a0 [ 260.492734][ T8969] ? __pfx_tty_open+0x10/0x10 [ 260.492765][ T8969] chrdev_open+0x231/0x6a0 [ 260.492818][ T8969] ? __pfx_chrdev_open+0x10/0x10 [ 260.492871][ T8969] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 260.492928][ T8969] do_dentry_open+0x741/0x1c10 [ 260.492982][ T8969] ? __pfx_chrdev_open+0x10/0x10 [ 260.493044][ T8969] vfs_open+0x82/0x3f0 [ 260.493083][ T8969] path_openat+0x1e5e/0x2d40 [ 260.493150][ T8969] ? __pfx_path_openat+0x10/0x10 [ 260.493209][ T8969] do_filp_open+0x20b/0x470 [ 260.493257][ T8969] ? __pfx_do_filp_open+0x10/0x10 [ 260.493342][ T8969] ? alloc_fd+0x471/0x7d0 [ 260.493400][ T8969] do_sys_openat2+0x11b/0x1d0 [ 260.493434][ T8969] ? __pfx_do_sys_openat2+0x10/0x10 [ 260.493484][ T8969] __x64_sys_openat+0x174/0x210 [ 260.493519][ T8969] ? __pfx___x64_sys_openat+0x10/0x10 [ 260.493556][ T8969] ? rcu_is_watching+0x12/0xc0 [ 260.493610][ T8969] do_syscall_64+0xcd/0x260 [ 260.493661][ T8969] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 260.493694][ T8969] RIP: 0033:0x7ff5a358d169 [ 260.493719][ T8969] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 260.493751][ T8969] RSP: 002b:00007ff5a431d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 260.493779][ T8969] RAX: ffffffffffffffda RBX: 00007ff5a37a6080 RCX: 00007ff5a358d169 [ 260.493800][ T8969] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 260.493819][ T8969] RBP: 00007ff5a360e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 260.493838][ T8969] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 260.493856][ T8969] R13: 0000000000000000 R14: 00007ff5a37a6080 R15: 00007fff90f7d748 [ 260.493898][ T8969] [ 260.985705][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 261.162894][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 262.011053][ T8983] netlink: 330 bytes leftover after parsing attributes in process `syz.0.903'. [ 263.437912][ T9011] FAULT_INJECTION: forcing a failure. [ 263.437912][ T9011] name failslab, interval 1, probability 0, space 0, times 0 [ 263.587072][ T9011] CPU: 1 UID: 0 PID: 9011 Comm: syz.0.909 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 263.587125][ T9011] Tainted: [I]=FIRMWARE_WORKAROUND [ 263.587136][ T9011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 263.587159][ T9011] Call Trace: [ 263.587169][ T9011] [ 263.587180][ T9011] dump_stack_lvl+0x16c/0x1f0 [ 263.587230][ T9011] should_fail_ex+0x512/0x640 [ 263.587264][ T9011] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 263.587311][ T9011] should_failslab+0xc2/0x120 [ 263.587341][ T9011] __kmalloc_cache_noprof+0x6a/0x3e0 [ 263.587391][ T9011] ? kvm_dev_ioctl+0x1396/0x1ad0 [ 263.587439][ T9011] kvm_dev_ioctl+0x1396/0x1ad0 [ 263.587494][ T9011] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 263.587548][ T9011] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 263.587592][ T9011] __x64_sys_ioctl+0x190/0x200 [ 263.587635][ T9011] do_syscall_64+0xcd/0x260 [ 263.587685][ T9011] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 263.587717][ T9011] RIP: 0033:0x7f563918d169 [ 263.587741][ T9011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 263.587771][ T9011] RSP: 002b:00007f5639fa8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 263.587799][ T9011] RAX: ffffffffffffffda RBX: 00007f56393a6160 RCX: 00007f563918d169 [ 263.587819][ T9011] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 000000000000000b [ 263.587837][ T9011] RBP: 00007f563920e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 263.587855][ T9011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 263.587873][ T9011] R13: 0000000000000000 R14: 00007f56393a6160 R15: 00007fff9e704038 [ 263.587912][ T9011] [ 264.408541][ T9034] netlink: 330 bytes leftover after parsing attributes in process `syz.2.917'. [ 266.147163][ T9058] FAULT_INJECTION: forcing a failure. [ 266.147163][ T9058] name failslab, interval 1, probability 0, space 0, times 0 [ 266.195783][ T9058] CPU: 1 UID: 0 PID: 9058 Comm: syz.3.924 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 266.195837][ T9058] Tainted: [I]=FIRMWARE_WORKAROUND [ 266.195848][ T9058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 266.195867][ T9058] Call Trace: [ 266.195878][ T9058] [ 266.195889][ T9058] dump_stack_lvl+0x16c/0x1f0 [ 266.195945][ T9058] should_fail_ex+0x512/0x640 [ 266.195981][ T9058] ? fs_reclaim_acquire+0xae/0x150 [ 266.196023][ T9058] ? tomoyo_encode2+0x100/0x3e0 [ 266.196065][ T9058] should_failslab+0xc2/0x120 [ 266.196095][ T9058] __kmalloc_noprof+0xd2/0x510 [ 266.196144][ T9058] ? d_absolute_path+0x136/0x1a0 [ 266.196187][ T9058] tomoyo_encode2+0x100/0x3e0 [ 266.196238][ T9058] tomoyo_encode+0x29/0x50 [ 266.196280][ T9058] tomoyo_realpath_from_path+0x18f/0x6e0 [ 266.196337][ T9058] tomoyo_path_number_perm+0x245/0x580 [ 266.196373][ T9058] ? tomoyo_path_number_perm+0x237/0x580 [ 266.196422][ T9058] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 266.196463][ T9058] ? find_held_lock+0x2b/0x80 [ 266.196544][ T9058] ? find_held_lock+0x2b/0x80 [ 266.196583][ T9058] ? hook_file_ioctl_common+0x145/0x410 [ 266.196628][ T9058] ? __fget_files+0x20e/0x3c0 [ 266.196682][ T9058] security_file_ioctl+0x9b/0x240 [ 266.196722][ T9058] __x64_sys_ioctl+0xb7/0x200 [ 266.196766][ T9058] do_syscall_64+0xcd/0x260 [ 266.196814][ T9058] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 266.196847][ T9058] RIP: 0033:0x7ff5a358d169 [ 266.196872][ T9058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 266.196904][ T9058] RSP: 002b:00007ff5a433e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 266.196933][ T9058] RAX: ffffffffffffffda RBX: 00007ff5a37a5fa0 RCX: 00007ff5a358d169 [ 266.196953][ T9058] RDX: 0000000000000000 RSI: 00000000000007b9 RDI: 0000000000000003 [ 266.196971][ T9058] RBP: 00007ff5a433e090 R08: 0000000000000000 R09: 0000000000000000 [ 266.196989][ T9058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 266.197007][ T9058] R13: 0000000000000000 R14: 00007ff5a37a5fa0 R15: 00007fff90f7d748 [ 266.197047][ T9058] [ 266.197158][ T9058] ERROR: Out of memory at tomoyo_realpath_from_path. [ 267.443228][ T9074] netlink: 330 bytes leftover after parsing attributes in process `syz.0.926'. [ 267.539464][ T9077] netlink: 338 bytes leftover after parsing attributes in process `syz.2.928'. [ 267.931126][ T9085] FAULT_INJECTION: forcing a failure. [ 267.931126][ T9085] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 267.975806][ T9085] CPU: 1 UID: 0 PID: 9085 Comm: syz.3.931 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 267.975860][ T9085] Tainted: [I]=FIRMWARE_WORKAROUND [ 267.975872][ T9085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 267.975889][ T9085] Call Trace: [ 267.975899][ T9085] [ 267.975910][ T9085] dump_stack_lvl+0x16c/0x1f0 [ 267.975960][ T9085] should_fail_ex+0x512/0x640 [ 267.976010][ T9085] strncpy_from_user+0x3b/0x2e0 [ 267.976048][ T9085] getname_flags.part.0+0x8b/0x540 [ 267.976090][ T9085] getname_flags+0x93/0xf0 [ 267.976132][ T9085] user_path_at+0x24/0x60 [ 267.976178][ T9085] __x64_sys_mount+0x1fc/0x310 [ 267.976210][ T9085] ? __pfx___x64_sys_mount+0x10/0x10 [ 267.976239][ T9085] ? rcu_is_watching+0x12/0xc0 [ 267.976290][ T9085] do_syscall_64+0xcd/0x260 [ 267.976338][ T9085] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 267.976370][ T9085] RIP: 0033:0x7ff5a358d169 [ 267.976395][ T9085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 267.976425][ T9085] RSP: 002b:00007ff5a433e038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 267.976455][ T9085] RAX: ffffffffffffffda RBX: 00007ff5a37a5fa0 RCX: 00007ff5a358d169 [ 267.976475][ T9085] RDX: 00002000000001c0 RSI: 0000200000000180 RDI: 0000000000000000 [ 267.976495][ T9085] RBP: 00007ff5a433e090 R08: 0000000000000000 R09: 0000000000000000 [ 267.976514][ T9085] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001 [ 267.976532][ T9085] R13: 0000000000000000 R14: 00007ff5a37a5fa0 R15: 00007fff90f7d748 [ 267.976572][ T9085] [ 268.909000][ T9109] netlink: 'syz.2.935': attribute type 11 has an invalid length. [ 268.960689][ T9109] netlink: 330 bytes leftover after parsing attributes in process `syz.2.935'. [ 269.688393][ T9116] netlink: 330 bytes leftover after parsing attributes in process `syz.1.937'. [ 270.828668][ T9140] FAULT_INJECTION: forcing a failure. [ 270.828668][ T9140] name failslab, interval 1, probability 0, space 0, times 0 [ 270.856108][ T9140] CPU: 0 UID: 0 PID: 9140 Comm: syz.0.945 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 270.856160][ T9140] Tainted: [I]=FIRMWARE_WORKAROUND [ 270.856172][ T9140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 270.856188][ T9140] Call Trace: [ 270.856198][ T9140] [ 270.856209][ T9140] dump_stack_lvl+0x16c/0x1f0 [ 270.856260][ T9140] should_fail_ex+0x512/0x640 [ 270.856295][ T9140] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 270.856348][ T9140] should_failslab+0xc2/0x120 [ 270.856378][ T9140] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 270.856426][ T9140] ? ptlock_alloc+0x1f/0x70 [ 270.856473][ T9140] ptlock_alloc+0x1f/0x70 [ 270.856514][ T9140] pte_alloc_one+0x6d/0x380 [ 270.856556][ T9140] __do_fault+0x320/0x490 [ 270.856589][ T9140] do_pte_missing+0x1031/0x3fb0 [ 270.856636][ T9140] ? do_raw_spin_unlock+0x172/0x230 [ 270.856676][ T9140] ? __pmd_alloc+0x3c2/0x870 [ 270.856718][ T9140] __handle_mm_fault+0x103d/0x2a40 [ 270.856774][ T9140] ? __pfx___handle_mm_fault+0x10/0x10 [ 270.856853][ T9140] handle_mm_fault+0x3fe/0xad0 [ 270.856905][ T9140] __get_user_pages+0x771/0x36f0 [ 270.856958][ T9140] ? __pfx_mt_find+0x10/0x10 [ 270.857013][ T9140] ? __pfx___get_user_pages+0x10/0x10 [ 270.857067][ T9140] populate_vma_page_range+0x278/0x3a0 [ 270.857113][ T9140] ? __pfx_populate_vma_page_range+0x10/0x10 [ 270.857154][ T9140] ? __pfx_find_vma_intersection+0x10/0x10 [ 270.857195][ T9140] ? do_mmap+0x69c/0x11b0 [ 270.857236][ T9140] __mm_populate+0x1d8/0x380 [ 270.857280][ T9140] ? __pfx___mm_populate+0x10/0x10 [ 270.857325][ T9140] ? up_write+0x1b2/0x520 [ 270.857363][ T9140] vm_mmap_pgoff+0x362/0x450 [ 270.857404][ T9140] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 270.857447][ T9140] ? __fget_files+0x20e/0x3c0 [ 270.857501][ T9140] ksys_mmap_pgoff+0x32c/0x5c0 [ 270.857537][ T9140] ? __pfx_ksys_write+0x10/0x10 [ 270.857577][ T9140] ? rcu_is_watching+0x12/0xc0 [ 270.857620][ T9140] __x64_sys_mmap+0x125/0x190 [ 270.857662][ T9140] do_syscall_64+0xcd/0x260 [ 270.857710][ T9140] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 270.857741][ T9140] RIP: 0033:0x7f563918d169 [ 270.857768][ T9140] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 270.857798][ T9140] RSP: 002b:00007f5639fea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 270.857827][ T9140] RAX: ffffffffffffffda RBX: 00007f56393a5fa0 RCX: 00007f563918d169 [ 270.857848][ T9140] RDX: 0000000000000ffb RSI: 0000000000005810 RDI: 0000000000000000 [ 270.857866][ T9140] RBP: 00007f5639fea090 R08: 0000000000000003 R09: 0000000000000000 [ 270.857886][ T9140] R10: 0008000000008011 R11: 0000000000000246 R12: 0000000000000001 [ 270.857904][ T9140] R13: 0000000000000000 R14: 00007f56393a5fa0 R15: 00007fff9e704038 [ 270.857942][ T9140] [ 272.477916][ T9156] netlink: 330 bytes leftover after parsing attributes in process `syz.0.949'. [ 272.944416][ T9161] netlink: 338 bytes leftover after parsing attributes in process `syz.1.950'. [ 274.042292][ T9188] netlink: 330 bytes leftover after parsing attributes in process `syz.2.959'. [ 274.524702][ T9198] process 'syz.2.961' launched '/dev/fd/0' with NULL argv: empty string added [ 277.063544][ T9239] netlink: 28 bytes leftover after parsing attributes in process `syz.2.971'. [ 277.086528][ T9239] veth1_macvtap: left promiscuous mode [ 277.755302][ T9251] netlink: 8 bytes leftover after parsing attributes in process `syz.3.976'. [ 278.934333][ T9274] FAULT_INJECTION: forcing a failure. [ 278.934333][ T9274] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 278.991519][ T9274] CPU: 1 UID: 0 PID: 9274 Comm: syz.0.981 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 278.991598][ T9274] Tainted: [I]=FIRMWARE_WORKAROUND [ 278.991617][ T9274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 278.991649][ T9274] Call Trace: [ 278.991660][ T9274] [ 278.991671][ T9274] dump_stack_lvl+0x16c/0x1f0 [ 278.991722][ T9274] should_fail_ex+0x512/0x640 [ 278.991766][ T9274] _copy_from_user+0x2e/0xd0 [ 278.991809][ T9274] move_addr_to_kernel+0x65/0x170 [ 278.991844][ T9274] __copy_msghdr+0x386/0x470 [ 278.991886][ T9274] copy_msghdr_from_user+0xc1/0x160 [ 278.991929][ T9274] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 278.991978][ T9274] ? __pfx__kstrtoull+0x10/0x10 [ 278.992043][ T9274] ___sys_sendmsg+0xfe/0x1d0 [ 278.992086][ T9274] ? __pfx____sys_sendmsg+0x10/0x10 [ 278.992148][ T9274] ? find_held_lock+0x2b/0x80 [ 278.992214][ T9274] __sys_sendmmsg+0x200/0x420 [ 278.992260][ T9274] ? __pfx___sys_sendmmsg+0x10/0x10 [ 278.992317][ T9274] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 278.992382][ T9274] ? fput+0x70/0xf0 [ 278.992414][ T9274] ? ksys_write+0x1b9/0x240 [ 278.992462][ T9274] ? __pfx_ksys_write+0x10/0x10 [ 278.992504][ T9274] ? rcu_is_watching+0x12/0xc0 [ 278.992550][ T9274] __x64_sys_sendmmsg+0x9c/0x100 [ 278.992592][ T9274] ? lockdep_hardirqs_on+0x7c/0x110 [ 278.992636][ T9274] do_syscall_64+0xcd/0x260 [ 278.992683][ T9274] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 278.992714][ T9274] RIP: 0033:0x7f563918d169 [ 278.992739][ T9274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 278.992770][ T9274] RSP: 002b:00007f5639fea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 278.992800][ T9274] RAX: ffffffffffffffda RBX: 00007f56393a5fa0 RCX: 00007f563918d169 [ 278.992820][ T9274] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000004 [ 278.992838][ T9274] RBP: 00007f5639fea090 R08: 0000000000000000 R09: 0000000000000000 [ 278.992855][ T9274] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001 [ 278.992873][ T9274] R13: 0000000000000000 R14: 00007f56393a5fa0 R15: 00007fff9e704038 [ 278.992911][ T9274] [ 281.038323][ T9312] FAULT_INJECTION: forcing a failure. [ 281.038323][ T9312] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 281.100585][ T9312] CPU: 0 UID: 0 PID: 9312 Comm: syz.0.988 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 281.100640][ T9312] Tainted: [I]=FIRMWARE_WORKAROUND [ 281.100652][ T9312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 281.100671][ T9312] Call Trace: [ 281.100681][ T9312] [ 281.100692][ T9312] dump_stack_lvl+0x16c/0x1f0 [ 281.100744][ T9312] should_fail_ex+0x512/0x640 [ 281.100786][ T9312] _copy_to_iter+0x2a4/0x15a0 [ 281.100832][ T9312] ? find_held_lock+0x2b/0x80 [ 281.100873][ T9312] ? __pfx__copy_to_iter+0x10/0x10 [ 281.100912][ T9312] ? show_interrupts+0x7bb/0xb00 [ 281.100944][ T9312] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 281.100989][ T9312] ? show_interrupts+0x7cc/0xb00 [ 281.101026][ T9312] seq_read_iter+0xcf8/0x12c0 [ 281.101084][ T9312] proc_reg_read_iter+0x21d/0x310 [ 281.101124][ T9312] vfs_read+0x8c8/0xc70 [ 281.101172][ T9312] ? __pfx___mutex_lock+0x10/0x10 [ 281.101215][ T9312] ? __pfx_vfs_read+0x10/0x10 [ 281.101284][ T9312] ksys_read+0x12a/0x240 [ 281.101324][ T9312] ? __pfx_ksys_read+0x10/0x10 [ 281.101377][ T9312] do_syscall_64+0xcd/0x260 [ 281.101424][ T9312] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 281.101455][ T9312] RIP: 0033:0x7f563918d169 [ 281.101479][ T9312] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 281.101508][ T9312] RSP: 002b:00007f5639fc9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 281.101537][ T9312] RAX: ffffffffffffffda RBX: 00007f56393a6080 RCX: 00007f563918d169 [ 281.101556][ T9312] RDX: 0000000000000079 RSI: 0000200000000080 RDI: 0000000000000003 [ 281.101573][ T9312] RBP: 00007f5639fc9090 R08: 0000000000000000 R09: 0000000000000000 [ 281.101590][ T9312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 281.101607][ T9312] R13: 0000000000000001 R14: 00007f56393a6080 R15: 00007fff9e704038 [ 281.101646][ T9312] [ 281.301015][ T9310] can: request_module (can-proto-0) failed. [ 281.720860][ T9319] Invalid ELF header magic: != ELF [ 281.814945][ T9319] FAULT_INJECTION: forcing a failure. [ 281.814945][ T9319] name failslab, interval 1, probability 0, space 0, times 0 [ 281.894570][ T9319] CPU: 1 UID: 0 PID: 9319 Comm: syz.3.991 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 281.894625][ T9319] Tainted: [I]=FIRMWARE_WORKAROUND [ 281.894637][ T9319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 281.894654][ T9319] Call Trace: [ 281.894665][ T9319] [ 281.894677][ T9319] dump_stack_lvl+0x16c/0x1f0 [ 281.894734][ T9319] should_fail_ex+0x512/0x640 [ 281.894770][ T9319] ? __kvmalloc_node_noprof+0x122/0x600 [ 281.894821][ T9319] should_failslab+0xc2/0x120 [ 281.894850][ T9319] __kvmalloc_node_noprof+0x135/0x600 [ 281.894898][ T9319] ? __sys_bpf+0x269a/0x4d80 [ 281.894941][ T9319] ? __sys_bpf+0x269a/0x4d80 [ 281.894975][ T9319] __sys_bpf+0x269a/0x4d80 [ 281.895022][ T9319] ? __pfx___sys_bpf+0x10/0x10 [ 281.895057][ T9319] ? vfs_write+0x316/0x1180 [ 281.895098][ T9319] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 281.895153][ T9319] ? __pfx_vfs_write+0x10/0x10 [ 281.895199][ T9319] ? do_sys_openat2+0x157/0x1d0 [ 281.895255][ T9319] ? ksys_write+0x1b9/0x240 [ 281.895299][ T9319] ? __pfx_ksys_write+0x10/0x10 [ 281.895341][ T9319] ? rcu_is_watching+0x12/0xc0 [ 281.895389][ T9319] __x64_sys_bpf+0x78/0xc0 [ 281.895425][ T9319] ? lockdep_hardirqs_on+0x7c/0x110 [ 281.895470][ T9319] do_syscall_64+0xcd/0x260 [ 281.895518][ T9319] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 281.895550][ T9319] RIP: 0033:0x7ff5a358d169 [ 281.895581][ T9319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 281.895612][ T9319] RSP: 002b:00007ff5a433e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 281.895640][ T9319] RAX: ffffffffffffffda RBX: 00007ff5a37a5fa0 RCX: 00007ff5a358d169 [ 281.895658][ T9319] RDX: 0000000000000007 RSI: 0000200000000040 RDI: 0000000000000004 [ 281.895674][ T9319] RBP: 00007ff5a433e090 R08: 0000000000000000 R09: 0000000000000000 [ 281.895691][ T9319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 281.895707][ T9319] R13: 0000000000000000 R14: 00007ff5a37a5fa0 R15: 00007fff90f7d748 [ 281.895744][ T9319] [ 282.851674][ T30] audit: type=1800 audit(4294967302.760:5): pid=9343 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.999" name=22050820 dev="tmpfs" ino=1411 res=0 errno=0 [ 283.218403][ T9354] FAULT_INJECTION: forcing a failure. [ 283.218403][ T9354] name failslab, interval 1, probability 0, space 0, times 0 [ 283.260745][ T9354] CPU: 0 UID: 0 PID: 9354 Comm: syz.2.1003 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 283.260798][ T9354] Tainted: [I]=FIRMWARE_WORKAROUND [ 283.260809][ T9354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 283.260828][ T9354] Call Trace: [ 283.260838][ T9354] [ 283.260849][ T9354] dump_stack_lvl+0x16c/0x1f0 [ 283.260904][ T9354] should_fail_ex+0x512/0x640 [ 283.260939][ T9354] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 283.260987][ T9354] should_failslab+0xc2/0x120 [ 283.261016][ T9354] __kmalloc_cache_noprof+0x6a/0x3e0 [ 283.261060][ T9354] ? idtoname_parse+0x15b/0x700 [ 283.261093][ T9354] ? stack_trace_save+0x8e/0xc0 [ 283.261139][ T9354] idtoname_parse+0x15b/0x700 [ 283.261172][ T9354] ? arch_stack_walk+0xa6/0x100 [ 283.261215][ T9354] ? __pfx_idtoname_parse+0x10/0x10 [ 283.261250][ T9354] ? kasan_save_stack+0x42/0x60 [ 283.261295][ T9354] ? kasan_save_stack+0x33/0x60 [ 283.261337][ T9354] ? kasan_save_track+0x14/0x30 [ 283.261379][ T9354] ? __kasan_kmalloc+0xaa/0xb0 [ 283.261422][ T9354] ? __kvmalloc_node_noprof+0x279/0x600 [ 283.261465][ T9354] ? cache_write_procfs+0xd2/0x160 [ 283.261496][ T9354] ? proc_reg_write+0x23d/0x330 [ 283.261526][ T9354] ? ksys_write+0x12a/0x240 [ 283.261566][ T9354] ? do_syscall_64+0xcd/0x260 [ 283.261609][ T9354] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 283.261694][ T9354] ? find_held_lock+0x2b/0x80 [ 283.261732][ T9354] ? __might_fault+0xe3/0x190 [ 283.261780][ T9354] ? __might_fault+0xe3/0x190 [ 283.261825][ T9354] ? __might_fault+0x13b/0x190 [ 283.261897][ T9354] cache_do_downcall+0xdd/0x160 [ 283.261932][ T9354] cache_write_procfs+0xf0/0x160 [ 283.261967][ T9354] ? __pfx_cache_write_procfs+0x10/0x10 [ 283.262002][ T9354] proc_reg_write+0x23d/0x330 [ 283.262038][ T9354] vfs_write+0x25c/0x1180 [ 283.262077][ T9354] ? __pfx_proc_reg_write+0x10/0x10 [ 283.262115][ T9354] ? __pfx___mutex_lock+0x10/0x10 [ 283.262160][ T9354] ? __pfx_vfs_write+0x10/0x10 [ 283.262216][ T9354] ? __fget_files+0x20e/0x3c0 [ 283.262274][ T9354] ksys_write+0x12a/0x240 [ 283.262316][ T9354] ? __pfx_ksys_write+0x10/0x10 [ 283.262357][ T9354] ? rcu_is_watching+0x12/0xc0 [ 283.262409][ T9354] do_syscall_64+0xcd/0x260 [ 283.262457][ T9354] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 283.262488][ T9354] RIP: 0033:0x7fd85bf8d169 [ 283.262512][ T9354] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 283.262543][ T9354] RSP: 002b:00007fd85cd03038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 283.262572][ T9354] RAX: ffffffffffffffda RBX: 00007fd85c1a5fa0 RCX: 00007fd85bf8d169 [ 283.262592][ T9354] RDX: 0000000000000019 RSI: 0000200000000040 RDI: 0000000000000004 [ 283.262610][ T9354] RBP: 00007fd85cd03090 R08: 0000000000000000 R09: 0000000000000000 [ 283.262629][ T9354] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 283.262646][ T9354] R13: 0000000000000000 R14: 00007fd85c1a5fa0 R15: 00007ffe0b36f638 [ 283.262687][ T9354] [ 283.658424][ T9357] Invalid ELF header magic: != ELF [ 283.765520][ T9364] netlink: 57828 bytes leftover after parsing attributes in process `syz.1.1007'. [ 283.886481][ T9364] [ 283.888881][ T9364] ====================================================== [ 283.895934][ T9364] WARNING: possible circular locking dependency detected [ 283.902992][ T9364] 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 Tainted: G I [ 283.911703][ T9364] ------------------------------------------------------ [ 283.918750][ T9364] syz.1.1007/9364 is trying to acquire lock: [ 283.924763][ T9364] ffff888078fae0d8 (sk_lock-AF_INET){+.+.}-{0:0}, at: sockopt_lock_sock+0x54/0x70 [ 283.934065][ T9364] [ 283.934065][ T9364] but task is already holding lock: [ 283.941441][ T9364] ffffffff9012d9e8 (rtnl_mutex){+.+.}-{4:4}, at: do_ip_getsockopt+0x1843/0x2220 [ 283.950563][ T9364] [ 283.950563][ T9364] which lock already depends on the new lock. [ 283.950563][ T9364] [ 283.960993][ T9364] [ 283.960993][ T9364] the existing dependency chain (in reverse order) is: [ 283.970038][ T9364] [ 283.970038][ T9364] -> #1 (rtnl_mutex){+.+.}-{4:4}: [ 283.977306][ T9364] __mutex_lock+0x199/0xb90 [ 283.982378][ T9364] smc_vlan_by_tcpsk+0x251/0x620 [ 283.987956][ T9364] __smc_connect+0x44b/0x4880 [ 283.993199][ T9364] smc_connect_work+0x54c/0xae0 [ 283.998620][ T9364] process_one_work+0x9cc/0x1b70 [ 284.004133][ T9364] worker_thread+0x6c8/0xf10 [ 284.009293][ T9364] kthread+0x3c2/0x780 [ 284.013928][ T9364] ret_from_fork+0x45/0x80 [ 284.018929][ T9364] ret_from_fork_asm+0x1a/0x30 [ 284.024272][ T9364] [ 284.024272][ T9364] -> #0 (sk_lock-AF_INET){+.+.}-{0:0}: [ 284.031954][ T9364] __lock_acquire+0x1173/0x1ba0 [ 284.037349][ T9364] lock_acquire+0x179/0x350 [ 284.042385][ T9364] lock_sock_nested+0x41/0xf0 [ 284.047609][ T9364] sockopt_lock_sock+0x54/0x70 [ 284.052926][ T9364] do_ip_getsockopt+0x13e4/0x2220 [ 284.058489][ T9364] ip_getsockopt+0x9b/0x1e0 [ 284.063526][ T9364] raw_getsockopt+0x4d/0x1f0 [ 284.068653][ T9364] do_sock_getsockopt+0x3fc/0x800 [ 284.074230][ T9364] __sys_getsockopt+0x12f/0x260 [ 284.079624][ T9364] __x64_sys_getsockopt+0xbd/0x160 [ 284.085283][ T9364] do_syscall_64+0xcd/0x260 [ 284.090337][ T9364] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 284.096776][ T9364] [ 284.096776][ T9364] other info that might help us debug this: [ 284.096776][ T9364] [ 284.107020][ T9364] Possible unsafe locking scenario: [ 284.107020][ T9364] [ 284.114481][ T9364] CPU0 CPU1 [ 284.119858][ T9364] ---- ---- [ 284.125233][ T9364] lock(rtnl_mutex); [ 284.129235][ T9364] lock(sk_lock-AF_INET); [ 284.136187][ T9364] lock(rtnl_mutex); [ 284.142707][ T9364] lock(sk_lock-AF_INET); [ 284.147141][ T9364] [ 284.147141][ T9364] *** DEADLOCK *** [ 284.147141][ T9364] [ 284.155290][ T9364] 1 lock held by syz.1.1007/9364: [ 284.160324][ T9364] #0: ffffffff9012d9e8 (rtnl_mutex){+.+.}-{4:4}, at: do_ip_getsockopt+0x1843/0x2220 [ 284.169855][ T9364] [ 284.169855][ T9364] stack backtrace: [ 284.175765][ T9364] CPU: 1 UID: 0 PID: 9364 Comm: syz.1.1007 Tainted: G I 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 284.175806][ T9364] Tainted: [I]=FIRMWARE_WORKAROUND [ 284.175816][ T9364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 284.175832][ T9364] Call Trace: [ 284.175841][ T9364] [ 284.175851][ T9364] dump_stack_lvl+0x116/0x1f0 [ 284.175896][ T9364] print_circular_bug+0x275/0x350 [ 284.175939][ T9364] check_noncircular+0x14c/0x170 [ 284.175983][ T9364] __lock_acquire+0x1173/0x1ba0 [ 284.176009][ T9364] ? do_ip_getsockopt+0x1843/0x2220 [ 284.176036][ T9364] lock_acquire+0x179/0x350 [ 284.176059][ T9364] ? sockopt_lock_sock+0x54/0x70 [ 284.176097][ T9364] lock_sock_nested+0x41/0xf0 [ 284.176128][ T9364] ? sockopt_lock_sock+0x54/0x70 [ 284.176161][ T9364] sockopt_lock_sock+0x54/0x70 [ 284.176193][ T9364] do_ip_getsockopt+0x13e4/0x2220 [ 284.176220][ T9364] ? __pfx_do_ip_getsockopt+0x10/0x10 [ 284.176246][ T9364] ? schedule+0x2d7/0x3a0 [ 284.176279][ T9364] ? schedule+0xf1/0x3a0 [ 284.176309][ T9364] ? futex_wait_queue+0x14c/0x220 [ 284.176333][ T9364] ? futex_unqueue+0xba/0x140 [ 284.176369][ T9364] ? __futex_wait+0x323/0x3c0 [ 284.176393][ T9364] ? __pfx___futex_wait+0x10/0x10 [ 284.176422][ T9364] ? __lock_acquire+0xaa4/0x1ba0 [ 284.176446][ T9364] ? __pfx___might_resched+0x10/0x10 [ 284.176487][ T9364] ip_getsockopt+0x9b/0x1e0 [ 284.176512][ T9364] ? __pfx_ip_getsockopt+0x10/0x10 [ 284.176535][ T9364] ? __might_fault+0xe3/0x190 [ 284.176574][ T9364] ? __might_fault+0x13b/0x190 [ 284.176618][ T9364] raw_getsockopt+0x4d/0x1f0 [ 284.176641][ T9364] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 284.176682][ T9364] do_sock_getsockopt+0x3fc/0x800 [ 284.176724][ T9364] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 284.176763][ T9364] ? __fget_files+0x204/0x3c0 [ 284.176807][ T9364] __sys_getsockopt+0x12f/0x260 [ 284.176842][ T9364] __x64_sys_getsockopt+0xbd/0x160 [ 284.176877][ T9364] ? do_syscall_64+0x91/0x260 [ 284.176914][ T9364] ? lockdep_hardirqs_on+0x7c/0x110 [ 284.176949][ T9364] do_syscall_64+0xcd/0x260 [ 284.176986][ T9364] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 284.177014][ T9364] RIP: 0033:0x7f1564b8d169 [ 284.177035][ T9364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 284.177061][ T9364] RSP: 002b:00007f15649f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 284.177085][ T9364] RAX: ffffffffffffffda RBX: 00007f1564da5fa0 RCX: 00007f1564b8d169 [ 284.177103][ T9364] RDX: 0000000000000030 RSI: 0000000000000000 RDI: 0000000000000007 [ 284.177118][ T9364] RBP: 00007f1564c0e2a0 R08: 0000200000000040 R09: 0000000000000000 [ 284.177135][ T9364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 284.177150][ T9364] R13: 0000000000000000 R14: 00007f1564da5fa0 R15: 00007ffff55f0338 [ 284.177175][ T9364] [ 284.532897][ T9363] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium