last executing test programs: 51.412377753s ago: executing program 0 (id=1916): close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r0 = socket(0xa, 0x3, 0x3) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x1, 0x6) socket(0x11, 0x80003, 0x300) socket(0x10, 0x2, 0x0) socket(0x2, 0x3, 0x2) socket(0x2, 0x3, 0x104) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, 0x0, 0x40, 0x0) socketpair$auto(0x3, 0x5, 0x7, 0x0) connect$auto(r0, 0x0, 0x55) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0x10, 0x3, 0x6) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x4004895}, 0x20000800) futex_waitv$auto(&(0x7f0000000000)={0xfffffffffffffffd, 0x7e4, 0x2}, 0x1, 0x0, 0x0, 0x623d) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) socket(0xa, 0x2, 0x88) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) 51.120152866s ago: executing program 0 (id=1917): openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video0\x00', 0x42146, 0x0) write$auto(0x3, 0x0, 0xfdef) mmap$auto(0x0, 0x2020009, 0x101, 0xeb1, 0xfffffffffffffffa, 0x7ffe) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0x20000000000000d4, 0x1, 0x6, 0x0, 0x7, 0x368a, 0x2, {0x100000000, 0x10000}, 0x5, 0x8, 0xfffffffffffffffd, 0x1007fff, 0x0, 0x8, 0x81, 0xdfffffffffff628e, 0x6, 0xdeb1, 0x808}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0) ioctl$auto(r1, 0x5453, r1) 50.321559753s ago: executing program 0 (id=1920): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_MEDIA_GET(r0, &(0x7f0000001c00)={0x0, 0xf0ff, &(0x7f0000000280)={&(0x7f00000004c0)={0x20, r1, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@typed={0x8, 0x1, 0x0, 0x0, @pid}]}]}, 0x20}}, 0x2000c880) 50.059413902s ago: executing program 0 (id=1923): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/mac802154_hwsim/ieee802154/phy1/net/wpan1/queues/tx-0/byte_queue_limits/stall_cnt\x00', 0x0, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000440)='/dev/ptywc\x00', 0x2300, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) getpid() openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/audit\x00', 0x200, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/pcmC0D0p\x00', 0xa00, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram4\x00', 0xdd01, 0x0) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00\x0e\x15F\xf7\x1a\xd1K+\xedy\xc6\x9bb\x94\xb4^\xc2\x83%\xfbw}\xfb_P\"\x19\xdfi\xe9hA|Q\x8a_F\x04:Q\x90\'\x06', &(0x7f0000000140)='nfsd\x00', 0x10000, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0xb101, 0x0) mount$auto(0x0, &(0x7f0000000740)='}[,&*}\x00', 0x0, 0xfffe, 0x0) ioctl$auto_BLKRRPART(r1, 0x125f, 0x0) open(0x0, 0x161342, 0x100) msync$auto(0x200000000000000, 0x1800000ff010000, 0x1) 48.978128553s ago: executing program 0 (id=1926): r0 = socket$nl_generic(0x10, 0x3, 0x10) poll$auto(&(0x7f0000003640)={r0, 0x4, 0xffff}, 0x4, 0x100000) r2 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000180), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'team_slave_1\x00', 0x0}) sendmsg$auto_NETDEV_CMD_QUEUE_GET(r1, &(0x7f00000039c0)={0x0, 0xa6ff, &(0x7f0000003980)={&(0x7f0000000000)={0x1c, r2, 0x301, 0x70bd2c, 0x25dfdbfd, {}, [@NETDEV_A_QUEUE_IFINDEX={0x8, 0x2, r3}]}, 0x1c}, 0x1, 0xffffffa6, 0x0, 0x20000000}, 0x40000) (fail_nth: 5) 48.422208019s ago: executing program 0 (id=1927): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x4a801, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/module/i915/parameters/mitigations\x00', 0x80302, 0x0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) r0 = eventfd$auto(0x80) readv$auto(r0, &(0x7f0000000380)={0x0, 0x8}, 0x4) read$auto(r0, 0x0, 0xcc9c) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) setresuid$auto(0x2, 0x7, 0x8080) ioctl$auto(0x3, 0x400454ca, 0x38) write$auto(r0, 0x0, 0x8) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080)) 33.233382284s ago: executing program 32 (id=1927): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x4a801, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/module/i915/parameters/mitigations\x00', 0x80302, 0x0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) r0 = eventfd$auto(0x80) readv$auto(r0, &(0x7f0000000380)={0x0, 0x8}, 0x4) read$auto(r0, 0x0, 0xcc9c) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) setresuid$auto(0x2, 0x7, 0x8080) ioctl$auto(0x3, 0x400454ca, 0x38) write$auto(r0, 0x0, 0x8) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080)) 11.43140545s ago: executing program 3 (id=2021): mmap$auto(0x0, 0x400008, 0x400, 0x9b72, 0x2, 0x3) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0xa03, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f00000001c0)={{@inferred=0x0, 0x1, 0x40008, 0x7, "aab8e80600080043529f895cf5e8ec8f46cbb766439daa41e1aa00000000001200000000070a00"}, 0x6, 0x8, 0x7, @raw=0x1, @enumerated={0x4, 0xffff, "3a451db75512bd3527fc812ba5063f658f3a83495f2f7e8b4b84d579e75c002e35796b745e9f1f32cbfbdc296577c42c2257f3cdba1288075707bcc50e018166", 0x9e, 0x5}, "a4699d30a05edbe0d28473c399a7dc920b153e9b1675451d7de94b4123f970bedd3460c667373fcc59b584d81592f6ab606c276852295e00af49e6de6e768034"}) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_REMOVE(r0, 0xc0405519, &(0x7f00000000c0)={@inferred=r1, 0x7, 0xd, 0xa4, "e3eabf11dce36a2eac9cb4682c339b3ce615a9b97386d4462bc6553245da56e4978f37368e849db4a6e0aa4e", @raw=0xa2cfa1c}) r2 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) fcntl$auto_F_GET_RW_HINT(r2, 0x40b, 0x8) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/vivid.0/media12/power/control\x00', 0x2101, 0x0) write$auto_ocfs2_control_fops_stack_user(r3, &(0x7f0000000040)="72f3", 0x2) r4 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x20) read$auto(r4, 0x0, 0x1) ioctl$auto_IOCTL_VMCI_VERSION2(r2, 0x7a7, 0x0) setsockopt$auto_SO_PRIORITY(r2, 0xa, 0xc, &(0x7f0000000000)='/dev/vmci\x00', 0x7) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, 0x6) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) adjtimex$auto(0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/config.gz\x00', 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_IOCTL_VMCI_QUEUEPAIR_ALLOC(r2, 0x7a8, 0x0) close_range$auto(0x2, 0x8, 0x0) 10.727498863s ago: executing program 3 (id=2023): openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x8) r0 = socket(0xa, 0x5, 0x84) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb1, 0x401, 0x8000) getsockopt$auto(r0, 0x84, 0x14, 0x0, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) unshare$auto(0x40000080) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0xa) close_range$auto(0x2, 0x8, 0x0) process_vm_readv$auto(0x0, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) mmap$auto(0x0, 0x6, 0x10000000000, 0x11, 0x3, 0x0) madvise$auto(0x0, 0x1, 0x10) 9.17335868s ago: executing program 3 (id=2025): r0 = socket(0xa, 0x801, 0x84) getsockopt$auto(r0, 0x84, 0x82, 0x0, &(0x7f0000000300)=0x1000c) io_uring_register$auto(r0, 0x6f, &(0x7f0000000000)="0460eaf6aad0f67138b741fb8d6b0c97bdd7175404366f5277d677cb2840f4dafba445a5ba7d9e8cd36e0a75a2af3699e9308203e6accaf69d61ea39bc8096748a181982ec38316e232da11424321b54729794c1a3c0fe4f8cd7b44a04774a2bb25efded0f3799a2ebd09002d28c350350142337ca0b40c4c0f0233d1364e33c644acea0990bd57a0efbaa4016f3337e037d301b1b6cc09a1715228a870fa21659ca76c1fc9c45328079a049cb706125aa72838bb14e9bb63619aac724082374", 0x7) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) io_uring_setup$auto(0x6, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) read$auto(r1, 0x0, 0x7) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x800000) writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0xa}, 0x5) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) r2 = socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) poll$auto(&(0x7f0000000480)={r2, 0x8000, 0xff81}, 0x7, 0x54b) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r3, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto(0x3, 0x0, 0xfdef) clock_nanosleep$auto(0x8, 0x1, 0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000) close_range$auto(0x2, 0x8, 0x0) 8.216428183s ago: executing program 3 (id=2028): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_ptdump_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x40200, 0x0) read$auto_ptdump_fops_(r0, &(0x7f0000000080)=""/52, 0x34) 7.964823944s ago: executing program 2 (id=2031): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) pidfd_open$auto(0x1, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x18500, 0x0) r0 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(0xffffffffffffffff, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000003180)=ANY=[@ANYBLOB, @ANYRES16=r0, @ANYBLOB='\x00'/14], 0x14}, 0x1, 0x0, 0x0, 0x6000091}, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) r1 = open(&(0x7f0000000800)='./file0\x00', 0xe4201, 0x17c) fcntl$auto(r1, 0x400, 0x1) socket(0x1, 0x2, 0x40000008) unshare$auto(0x40000080) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f00000000c0)=""/4087, 0xff7) mmap$auto(0x0, 0x20009, 0x7, 0xeb1, 0x0, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/devices/virtual/ieee80211/phy2/power/control\x00', 0x40601, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000140)=""/1, 0x1) setsockopt$auto(0x400000000000003, 0x2000002b, 0x8, 0x0, 0xd902) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd3/queue/iosched/write_expire\x00', 0x20681, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x30) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(0x0, r4) mlockall$auto(0x7) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) clock_gettime$auto(0x1, 0x0) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r5, 0x5609, 0x7) mmap$auto(0x0, 0x400008, 0x1000000000df, 0x9b72, 0x2, 0x8008000) move_pages$auto(0x0, 0xd0, 0x0, 0x0, 0x0, 0x2) bpf$auto(0x8, &(0x7f00000001c0)=@bpf_attr_0={0x7, 0xb5, 0x10, 0x4, 0x53400000, 0xffffffffffffffff, 0x9, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x2, 0x7, 0x7, 0x6}, 0x10) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/038/001\x00', 0xa821, 0x0) 7.916774987s ago: executing program 1 (id=2032): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) socket(0x6, 0x800, 0x7) openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000f40)={'batadv0\x00'}) sendmsg$auto_BATADV_CMD_SET_MESH(0xffffffffffffffff, 0x0, 0x0) read$auto(r0, 0x0, 0x20) write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000180)="09fb31", 0x3) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) r2 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0) getdents64$auto(r2, 0x0, 0x400) read$auto_binder_features_fops_(r2, &(0x7f0000000040), 0x0) ioctl$auto_SNDCTL_DSP_GETODELAY(0xffffffffffffffff, 0x80045017, &(0x7f0000000240)) ioctl$auto_VHOST_SET_VRING_KICK(0xffffffffffffffff, 0x4008af20, &(0x7f00000000c0)={0x800, r0}) mkdir$auto(&(0x7f0000000080)='./file0\x00', 0x1) rename$auto(&(0x7f0000000480)='./file0\x00', 0x0) unshare$auto(0x40000080) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r4 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r3, 0x4b72, r4) 6.757030701s ago: executing program 4 (id=2033): capset$auto(0x0, 0x0) bpf$auto_BPF_PROG_LOAD(0x5, &(0x7f0000000280)=@link_update={0xffffffffffffffff, @new_map_fd, 0x3, @old_map_fd}, 0x606b38c3) mmap$auto(0x78aa, 0x401, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) select$auto(0x0, &(0x7f0000000040)={[0x1, 0x4, 0x800034, 0x9, 0x0, 0x1, 0x800, 0x3, 0x100000000, 0x408, 0x8, 0xcf, 0x2, 0x213, 0x5, 0x2]}, 0x0, 0x0, 0x0) sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000240)=ANY=[], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x200408d0) futimesat$auto(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x200, 0x2a0a}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x400c891}, 0x24008054) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) sendmsg$auto(0xffffffffffffffff, 0x0, 0x0) mmap$auto(0x0, 0x2, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x40, 0x0) read$auto(r0, 0x0, 0x30) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) sysfs$auto(0x4, 0x10000000000000b, 0x0) madvise$auto(0x0, 0x5, 0x15) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) pipe$auto(0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/all/addr_gen_mode\x00', 0xa0202, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x5854c7, 0x0) gettimeofday$auto(&(0x7f0000000180)={0x2, 0xd8}, &(0x7f0000000340)={0x2dfa, 0x40000005}) 6.648540798s ago: executing program 1 (id=2034): openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$auto_USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f00000002c0)={0x2, 0x4, 0x1, 0x8, 0x0, 0x4, 0x0}) openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, 0x0, 0xa000, 0x0) ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0) socket(0x2, 0x801, 0x6) connect$auto(0x3, 0x0, 0x54) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto(0xffffffffffffffff, 0x89f3, 0xffffffffffffffff) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, 0x0, 0x48402, 0x0) ioctl$auto_TIOCSTI2(0xffffffffffffffff, 0x5412, 0x0) read$auto(r1, 0x0, 0x1f40) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x100, 0x0) prctl$auto(0x35, 0x1, 0x4, 0x0, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0x40a40, 0x0) madvise$auto(0x200000000000000, 0x2003f0, 0x14) 5.688054395s ago: executing program 1 (id=2035): openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/mac802154_hwsim/ieee802154/phy1/net/wpan1/queues/tx-0/byte_queue_limits/stall_cnt\x00', 0x0, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000440)='/dev/ptywc\x00', 0x2300, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) getpid() openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/audit\x00', 0x200, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/pcmC0D0p\x00', 0xa00, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram4\x00', 0xdd01, 0x0) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00\x0e\x15F\xf7\x1a\xd1K+\xedy\xc6\x9bb\x94\xb4^\xc2\x83%\xfbw}\xfb_P\"\x19\xdfi\xe9hA|Q\x8a_F\x04:Q\x90\'\x06', &(0x7f0000000140)='nfsd\x00', 0x10000, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0xb101, 0x0) mount$auto(0x0, &(0x7f0000000740)='}[,&*}\x00', 0x0, 0xfffe, 0x0) ioctl$auto_BLKRRPART(r1, 0x125f, 0x0) open(0x0, 0x161342, 0x100) msync$auto(0x200000000000000, 0x1800000ff010000, 0x1) 5.65399221s ago: executing program 4 (id=2036): r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="1f91f2c388274610e18d5fc5e5bfd9800e9b58", 0x13) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x6a1, 0x2000000000002) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x405, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x802, 0x0) read$auto(r1, 0x0, 0x6) writev$auto(r1, &(0x7f00000000c0)={0x0, 0x2a4f}, 0x7) mmap$auto(0xd, 0x2020009, 0x1, 0xeb1, 0xffffffffffffffff, 0x8000) r2 = socket(0xa, 0x2, 0x0) ioperm$auto(0x3, 0xe, 0x2000000000000149) rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8) madvise$auto(0x4, 0x2, 0x15) r3 = gettid() r4 = getpid() rt_tgsigqueueinfo$auto(r4, r3, 0x1, &(0x7f0000000600)={@siginfo_0_0={0xffffff88, 0x1, 0x40, @_rt={0x0, 0xee01, @sival_int=0x9ae}}}) rt_sigsuspend$auto(&(0x7f0000000380)={0xe}, 0x8) sendto$auto(r2, 0x0, 0x402, 0xacf8, &(0x7f0000000040)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1b) capget$auto(0x0, 0xfffffffffffffffe) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x40300, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyxb\x00', 0x8dd7526b021612b6, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) unshare$auto(0x40000080) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe\x00', 0x68200, 0x0) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000003800)=""/168, 0xa8) 5.072876194s ago: executing program 2 (id=2037): sendmsg$auto_MACSEC_CMD_ADD_RXSC(0xffffffffffffffff, 0x0, 0x4000081) openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/framebuffer\x00', 0x0, 0x0) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) unshare$auto(0x40000080) ioperm$auto(0xe4, 0x82f0, 0x942) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0xc01) writev$auto(0x1, 0x0, 0x1) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x34d802, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) mmap$auto(0x0, 0x580f, 0xffb, 0x8000000008011, 0x3, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) open(0x0, 0x101800, 0x7) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100000}, 0xc, 0x0}, 0x4000840) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) epoll_create$auto(0x4) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x171e02, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8000, 0x0) r2 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(r2, r2, 0x0) 4.541819049s ago: executing program 1 (id=2038): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) arch_prctl$auto_ARCH_MAP_VDSO_64(0x2003, 0x5) r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) gettid() r1 = open(0x0, 0x432740, 0x17) rseq$auto(&(0x7f0000000200)={0x20006, 0x5, 0x0, 0x7, 0xffffffff, 0x80000001, "232056180beca5a623beb710c65609708d0fa936983182de2a354b7c63d60096c48bc5673765772a0e52aaa2b9dbff2218840615c48cf197512431cdf8a716d264381bebe6125ead3774c382b1e1be884614f7e4ee03d58cd4ff605f34062d33e2862d5c59eeca9f967c75a4fdfa"}, 0x7ffd, 0xa, 0xa) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) mmap$auto(0x3, 0x2, 0x4000000000df, 0x40df, 0x401, 0x2) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f00000000c0)={0x0, 0x4}, 0x7) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x100000000000007, 0x0) r4 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x40080, 0x0) ioctl$auto_UI_DEV_SETUP(r4, 0x405c5503, 0x0) sendmsg$auto_OVS_DP_CMD_DEL(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYRES64=r4, @ANYRES8=r0, @ANYBLOB="00042abd70"], 0x24}, 0x1, 0x0, 0x0, 0x8040}, 0x8004) ioctl$auto_UI_DEV_CREATE(r4, 0x5501, 0x0) socket(0xa, 0x801, 0x84) adjtimex$auto(0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto(0xffffffffffffffff, &(0x7f0000000140)='\x00', 0x0) r5 = bpf$auto(0x0, 0x0, 0xa3) unshare$auto(0x80000001) ioctl$auto(r5, 0xc0404d1a, 0xffffffffffffffff) r6 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0) write$auto(r6, &(0x7f0000000040)='7\x00\\\x80\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x00\x0e\v9\xb5j\x00\x04\xc8\x1fa\x1c\x1a\x05 \xfdr/D\xbf\x98\x06\xe5\xf6\x8d\x1fX\xe5\xbc\xbc\"}$', 0x7fffffff) 4.502723882s ago: executing program 4 (id=2039): sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='V'], 0x1ac}}, 0x40000) r0 = socket(0x10, 0x2, 0x0) fstat$auto(r0, &(0x7f0000000000)={0x3, 0x9, 0xb1, 0x4, 0xee00, 0xee00, 0x0, 0xffffffffffffffff, 0x9, 0x7, 0x10001, 0x5, 0x8001, 0x5, 0x200, 0x100000000, 0x2}) r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000580)='/dev/mtd0\x00', 0x1, 0x0) ioctl$auto_MEMERASE64(r2, 0x40104d14, &(0x7f0000000100)={0xfffffffffffffff9, 0xffffffffffffffff}) ioprio_get$auto(0x7ff, r1) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000002c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) pkey_mprotect$auto(0xfffffffffffff041, 0xc, 0x4, 0x87365b9) 3.901370191s ago: executing program 2 (id=2040): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) pidfd_open$auto(0x1, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x18500, 0x0) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(0xffffffffffffffff, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000003180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x6000091}, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) r0 = open(&(0x7f0000000800)='./file0\x00', 0xe4201, 0x17c) fcntl$auto(r0, 0x400, 0x1) socket(0x1, 0x2, 0x40000008) unshare$auto(0x40000080) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ip6_mr_vif\x00', 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f00000000c0)=""/4087, 0xff7) mmap$auto(0x0, 0x20009, 0x7, 0xeb1, 0x0, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/devices/virtual/ieee80211/phy2/power/control\x00', 0x40601, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000140)=""/1, 0x1) setsockopt$auto(0x400000000000003, 0x2000002b, 0x8, 0x0, 0xd902) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd3/queue/iosched/write_expire\x00', 0x20681, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x30) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(0x0, r3) mlockall$auto(0x7) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) clock_gettime$auto(0x1, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r4, 0x5609, 0x7) mmap$auto(0x0, 0x400008, 0x1000000000df, 0x9b72, 0x2, 0x8008000) move_pages$auto(0x0, 0xd0, 0x0, 0x0, 0x0, 0x2) bpf$auto(0x8, &(0x7f00000001c0)=@bpf_attr_0={0x7, 0xb5, 0x10, 0x4, 0x53400000, 0xffffffffffffffff, 0x9, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x2, 0x7, 0x7, 0x6}, 0x10) 3.891261174s ago: executing program 4 (id=2048): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/mac802154_hwsim/ieee802154/phy1/net/wpan1/queues/tx-0/byte_queue_limits/stall_cnt\x00', 0x0, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x2300, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) getpid() openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/audit\x00', 0x200, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/pcmC0D0p\x00', 0xa00, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram4\x00', 0xdd01, 0x0) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00\x0e\x15F\xf7\x1a\xd1K+\xedy\xc6\x9bb\x94\xb4^\xc2\x83%\xfbw}\xfb_P\"\x19\xdfi\xe9hA|Q\x8a_F\x04:Q\x90\'\x06', &(0x7f0000000140)='nfsd\x00', 0x10000, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0xb101, 0x0) mount$auto(0x0, &(0x7f0000000740)='}[,&*}\x00', 0x0, 0xfffe, 0x0) ioctl$auto_BLKRRPART(r1, 0x125f, 0x0) open(0x0, 0x161342, 0x100) msync$auto(0x200000000000000, 0x1800000ff010000, 0x1) 2.888152318s ago: executing program 4 (id=2041): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) pidfd_open$auto(0x1, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x18500, 0x0) r0 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(0xffffffffffffffff, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000003180)=ANY=[@ANYBLOB, @ANYRES16=r0, @ANYBLOB='\x00'/14], 0x14}, 0x1, 0x0, 0x0, 0x6000091}, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) r1 = open(0x0, 0xe4201, 0x17c) fcntl$auto(r1, 0x400, 0x1) socket(0x1, 0x2, 0x40000008) unshare$auto(0x40000080) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ip6_mr_vif\x00', 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f00000000c0)=""/4087, 0xff7) mmap$auto(0x0, 0x20009, 0x7, 0xeb1, 0x0, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/devices/virtual/ieee80211/phy2/power/control\x00', 0x40601, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000140)=""/1, 0x1) setsockopt$auto(0x400000000000003, 0x2000002b, 0x8, 0x0, 0xd902) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd3/queue/iosched/write_expire\x00', 0x20681, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x30) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(0x0, r4) mlockall$auto(0x7) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) clock_gettime$auto(0x1, 0x0) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r5, 0x5609, 0x7) mmap$auto(0x0, 0x400008, 0x1000000000df, 0x9b72, 0x2, 0x8008000) move_pages$auto(0x0, 0xd0, 0x0, 0x0, 0x0, 0x2) bpf$auto(0x8, &(0x7f00000001c0)=@bpf_attr_0={0x7, 0xb5, 0x10, 0x4, 0x53400000, 0xffffffffffffffff, 0x9, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x2, 0x7, 0x7, 0x6}, 0x10) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/038/001\x00', 0xa821, 0x0) 2.304012527s ago: executing program 2 (id=2042): set_mempolicy$auto(0x6, &(0x7f0000000080)=0x3, 0x21) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) close_range$auto(0x0, 0x5, 0x0) bpf$auto(0x5, &(0x7f0000001080)=@bpf_attr_7={@prog_id=0x11, 0x92f1, 0x4}, 0xa) 2.115267201s ago: executing program 2 (id=2043): mmap$auto(0x0, 0x2020009, 0x3, 0x8000000000000011, 0xfffffffffffffffa, 0x8000) mq_notify$auto(0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) socket(0x2b, 0x1, 0x7) mmap$auto(0x0, 0x800, 0xdc, 0xcb1, 0x401, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$auto(0x3, 0xc038563c, 0x38) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x400, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0) socket(0x6, 0x2, 0x80000000) sendmmsg$auto(0x3, 0x0, 0x2000004, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) set_mempolicy$auto(0x4006, &(0x7f0000000000)=0xa, 0x7) ioctl$auto_RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, &(0x7f0000000000)={0x1, 0x7, 0x0, 0x0, 0x2, 0x63, 0xce, 0x6c35, 0x3}) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) io_uring_setup$auto(0xfff, 0x0) kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x2aa7, 0x6c0000c000, 0xc000}, 0x4) r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000140), 0x100, 0x0) ioctl$auto_VHOST_SET_OWNER(r1, 0xaf01, 0x5) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, r0, 0x6) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/set_event\x00', 0x189201, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = io_uring_setup$auto(0x6, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x40001, 0x0) write$auto_ftrace_set_event_fops_trace_events(r2, &(0x7f0000000080)="30e75527bb3ad0c1c3af7ba70b726ab80d", 0x11) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x2002, 0x3, 0x7, 0x4, r3, [], {0x4, 0x6, 0x8c4b, 0x29f, 0x100100, 0x7f, 0x101, 0x6, 0x2}, {0xfd, 0x1, 0x52, 0x5, 0x1, 0x40, 0x2, 0x8, 0x100000000}}) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) 1.614473278s ago: executing program 4 (id=2044): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x3a}}, 0x6e) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000) r1 = io_uring_setup$auto(0x1, 0x0) socket(0x1f, 0x2, 0x200000) sendmsg$auto_NL80211_CMD_PEER_MEASUREMENT_START(r0, 0x0, 0x4008080) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) write$auto(0x3, 0x0, 0xfffffdef) unshare$auto(0x40000080) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x3b87, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x100000, 0x7fffffffffffffff, 0xb) openat$dir(0xffffffffffffff9c, 0x0, 0x381000, 0x138) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0) writev$auto(r2, &(0x7f0000000080)={&(0x7f0000000040), 0x1000}, 0x3) ioctl$auto_RNDADDENTROPY2(r1, 0x40085203, &(0x7f0000000080)=[0x3, 0x4010]) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev3\x00', 0x169000, 0x0) ioctl$auto(r3, 0xc0285629, r3) close_range$auto(0x0, 0xfffffffffffff000, 0x2) open(0x0, 0x204841, 0x0) socket(0x6, 0x2, 0x6) semctl$auto_SETVAL(0x4, 0xfffffff7, 0x10, 0x0) r4 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) getsockname$auto(r5, &(0x7f00000000c0)=@isdn={0x22, 0x22, 0xb, 0x7, 0x7}, &(0x7f0000000200)=0x16c80000) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="1b0026bd7000fddbdf2503000000040008000c00038008000c000400000012000100898771f1c19f17790485908286dd00000400028004000800b55dc3a847c615e99ad8d2df3188e6817b25a95ac983b9d922012e59a4de13f3327a"], 0x40}, 0x1, 0x0, 0x0, 0x44000884}, 0xc880) socket(0x10, 0x3, 0xa) 1.178336271s ago: executing program 1 (id=2045): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000002c0)={'batadv0\x00'}) sendmsg$auto_BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x14}, 0x4001) mmap$auto(0x0, 0x99, 0xdf, 0xeb1, 0x401, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0) read$auto(r2, 0x0, 0x7) r3 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001cc0)='/dev/input/event1\x00', 0x101242, 0x0) ioctl$auto_EVIOCREVOKE(r3, 0x40044591, 0x0) write$auto(0x3, 0x0, 0x100082) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) socket(0x8, 0x80805, 0x0) close_range$auto(r2, r2, 0x4) mmap$auto(0x0, 0x202000a, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) keyctl$auto_KEYCTL_CLEAR(0x7, 0x7, 0x9, 0x2, 0x4662) socket(0x2, 0x3, 0xa) getsockopt$auto(0x3, 0x0, 0x23, &(0x7f0000000000)='\x00', 0x0) timer_delete$auto(0x0) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, 0x0, 0x501, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) unshare$auto(0x40000080) 744.638154ms ago: executing program 3 (id=2046): close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r0 = socket(0xa, 0x3, 0x3) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x1, 0x6) socket(0x11, 0x80003, 0x300) socket(0x10, 0x2, 0x0) socket(0x2, 0x3, 0x2) socket(0x2, 0x3, 0x104) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, 0x0, 0x40, 0x0) socketpair$auto(0x3, 0x5, 0x7, 0x0) connect$auto(r0, 0x0, 0x55) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0x10, 0x3, 0x6) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x4004895}, 0x20000800) futex_waitv$auto(&(0x7f0000000000)={0xfffffffffffffffd, 0x7e4, 0x2}, 0x1, 0x0, 0x0, 0x623d) socket(0xa, 0x2, 0x88) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) 191.097857ms ago: executing program 2 (id=2047): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000440)='/dev/ptywc\x00', 0x2300, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) getpid() openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/audit\x00', 0x200, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/pcmC0D0p\x00', 0xa00, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram4\x00', 0xdd01, 0x0) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00\x0e\x15F\xf7\x1a\xd1K+\xedy\xc6\x9bb\x94\xb4^\xc2\x83%\xfbw}\xfb_P\"\x19\xdfi\xe9hA|Q\x8a_F\x04:Q\x90\'\x06', &(0x7f0000000140)='nfsd\x00', 0x10000, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0xb101, 0x0) mount$auto(0x0, &(0x7f0000000740)='}[,&*}\x00', 0x0, 0xfffe, 0x0) ioctl$auto_BLKRRPART(r1, 0x125f, 0x0) open(0x0, 0x161342, 0x100) msync$auto(0x200000000000000, 0x1800000ff010000, 0x1) 33.024111ms ago: executing program 3 (id=2049): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) migrate_pages$auto(0x0, 0x6, 0x0, 0x0) mmap$auto(0x0, 0x2000a, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x40000008000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) pkey_free$auto(0x100) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) connect$auto(0x3, 0x0, 0x55) recvmmsg$auto(0x3, 0x0, 0x10003, 0x0, 0x0) (fail_nth: 1) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x1, 0x84) connect$auto(0x3, 0x0, 0x7ff) openat$auto_short_retry_limit_ops_(0xffffffffffffff9c, 0x0, 0x20002, 0x0) mmap$auto(0x0, 0x4020009, 0x8, 0xeb0, 0x401, 0x9) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) 0s ago: executing program 1 (id=2050): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000002c0)={'batadv0\x00'}) sendmsg$auto_BATADV_CMD_GET_MCAST_FLAGS(r0, 0x0, 0x4001) mmap$auto(0x0, 0x99, 0xdf, 0xeb1, 0x401, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0) read$auto(r2, 0x0, 0x7) r3 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001cc0)='/dev/input/event1\x00', 0x101242, 0x0) ioctl$auto_EVIOCREVOKE(r3, 0x40044591, 0x0) write$auto(0x3, 0x0, 0x100082) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) socket(0x8, 0x80805, 0x0) close_range$auto(r2, r2, 0x4) mmap$auto(0x0, 0x202000a, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) keyctl$auto_KEYCTL_CLEAR(0x7, 0x7, 0x9, 0x2, 0x4662) socket(0x2, 0x3, 0xa) getsockopt$auto(0x3, 0x0, 0x23, &(0x7f0000000000)='\x00', 0x0) timer_delete$auto(0x0) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, 0x0, 0x501, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) unshare$auto(0x40000080) kernel console output (not intermixed with test programs):                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      [ 568.492056][T13466] netlink: 198 bytes leftover after parsing attributes in process `syz.1.1849'. [ 568.523275][T13470] openvswitch: netlink: Message has 1 unknown bytes. syzkaller syzkaller login: [ 569.201358][T13481] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1851'. [ 569.380617][T13485] FAULT_INJECTION: forcing a failure. [ 569.380617][T13485] name failslab, interval 1, probability 0, space 0, times 0 [ 569.470368][T13485] CPU: 0 UID: 0 PID: 13485 Comm: syz.3.1853 Not tainted 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 569.470410][T13485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 569.470427][T13485] Call Trace: [ 569.470437][T13485] [ 569.470448][T13485] dump_stack_lvl+0x16c/0x1f0 [ 569.470490][T13485] should_fail_ex+0x512/0x640 [ 569.470525][T13485] ? __kmalloc_noprof+0xbf/0x510 [ 569.470557][T13485] ? lsm_blob_alloc+0x68/0x90 [ 569.470580][T13485] should_failslab+0xc2/0x120 [ 569.470613][T13485] __kmalloc_noprof+0xd2/0x510 [ 569.470651][T13485] lsm_blob_alloc+0x68/0x90 [ 569.470676][T13485] security_prepare_creds+0x30/0x270 [ 569.470714][T13485] prepare_creds+0x56f/0x7d0 [ 569.470754][T13485] __sys_setresgid+0x4af/0x1150 [ 569.470789][T13485] do_syscall_64+0xcd/0x230 [ 569.470828][T13485] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 569.470855][T13485] RIP: 0033:0x7ff8b938e969 [ 569.470877][T13485] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 569.470904][T13485] RSP: 002b:00007ff8ba1af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000077 [ 569.470929][T13485] RAX: ffffffffffffffda RBX: 00007ff8b95b6080 RCX: 00007ff8b938e969 [ 569.470948][T13485] RDX: 0000000000000008 RSI: 00000000800000a0 RDI: 0000000000000081 [ 569.470965][T13485] RBP: 00007ff8b9410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 569.470981][T13485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 569.470997][T13485] R13: 0000000000000000 R14: 00007ff8b95b6080 R15: 00007fff76fef598 [ 569.471033][T13485] [ 569.979778][T13491] FAULT_INJECTION: forcing a failure. [ 569.979778][T13491] name failslab, interval 1, probability 0, space 0, times 0 [ 570.023223][T13491] CPU: 1 UID: 0 PID: 13491 Comm: syz.0.1863 Not tainted 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 570.023266][T13491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 570.023281][T13491] Call Trace: [ 570.023291][T13491] [ 570.023303][T13491] dump_stack_lvl+0x16c/0x1f0 [ 570.023343][T13491] should_fail_ex+0x512/0x640 [ 570.023379][T13491] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 570.023409][T13491] should_failslab+0xc2/0x120 [ 570.023441][T13491] __kmalloc_cache_noprof+0x6a/0x3e0 [ 570.023467][T13491] ? kvm_dev_ioctl+0x15b8/0x1ad0 [ 570.023502][T13491] kvm_dev_ioctl+0x15b8/0x1ad0 [ 570.023541][T13491] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 570.023595][T13491] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 570.023626][T13491] __x64_sys_ioctl+0x193/0x200 [ 570.023664][T13491] do_syscall_64+0xcd/0x230 [ 570.023701][T13491] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 570.023726][T13491] RIP: 0033:0x7f9245b8e969 [ 570.023747][T13491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 570.023773][T13491] RSP: 002b:00007f9246a4a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 570.023799][T13491] RAX: ffffffffffffffda RBX: 00007f9245db5fa0 RCX: 00007f9245b8e969 [ 570.023817][T13491] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000002 [ 570.023833][T13491] RBP: 00007f9245c10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 570.023849][T13491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 570.023865][T13491] R13: 0000000000000000 R14: 00007f9245db5fa0 R15: 00007ffdbe76d0f8 [ 570.023898][T13491] [ 570.193472][ C1] vkms_vblank_simulate: vblank timer overrun [ 570.305833][T13497] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1855'. [ 570.623737][T13505] FAULT_INJECTION: forcing a failure. [ 570.623737][T13505] name failslab, interval 1, probability 0, space 0, times 0 [ 570.667474][T13505] CPU: 1 UID: 0 PID: 13505 Comm: syz.2.1856 Not tainted 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 570.667523][T13505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 570.667539][T13505] Call Trace: [ 570.667550][T13505] [ 570.667562][T13505] dump_stack_lvl+0x16c/0x1f0 [ 570.667604][T13505] should_fail_ex+0x512/0x640 [ 570.667640][T13505] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 570.667677][T13505] should_failslab+0xc2/0x120 [ 570.667710][T13505] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 570.667741][T13505] ? __d_alloc+0x31/0xaa0 [ 570.667775][T13505] __d_alloc+0x31/0xaa0 [ 570.667808][T13505] d_alloc+0x4a/0x1e0 [ 570.667838][T13505] d_alloc_parallel+0xe3/0x12e0 [ 570.667878][T13505] ? is_bpf_text_address+0x94/0x1a0 [ 570.667911][T13505] ? kernel_text_address+0x8d/0x100 [ 570.667935][T13505] ? __x64_sys_ioctl+0x193/0x200 [ 570.667974][T13505] ? __kernel_text_address+0xd/0x40 [ 570.667997][T13505] ? unwind_get_return_address+0x59/0xa0 [ 570.668030][T13505] ? __pfx_d_alloc_parallel+0x10/0x10 [ 570.668070][T13505] ? lockdep_init_map_type+0x5c/0x280 [ 570.668105][T13505] ? lockdep_init_map_type+0x5c/0x280 [ 570.668146][T13505] __lookup_slow+0x193/0x460 [ 570.668181][T13505] ? __pfx___lookup_slow+0x10/0x10 [ 570.668219][T13505] ? __bpf_trace_mm_compaction_end+0x160/0x1e0 [ 570.668265][T13505] ? __bpf_trace_mm_compaction_end+0x160/0x1e0 [ 570.668305][T13505] ? d_lookup+0xe7/0x190 [ 570.668344][T13505] lookup_one_len+0x17f/0x1b0 [ 570.668377][T13505] ? __pfx_lookup_one_len+0x10/0x10 [ 570.668413][T13505] ? mntput+0x10/0x90 [ 570.668452][T13505] start_creating.part.0+0x12f/0x3a0 [ 570.668492][T13505] __debugfs_create_file+0xa7/0x6b0 [ 570.668541][T13505] debugfs_create_file_full+0x41/0x60 [ 570.668584][T13505] kvm_dev_ioctl+0x14ff/0x1ad0 [ 570.668628][T13505] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 570.668671][T13505] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 570.668704][T13505] __x64_sys_ioctl+0x193/0x200 [ 570.668742][T13505] do_syscall_64+0xcd/0x230 [ 570.668782][T13505] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 570.668809][T13505] RIP: 0033:0x7f6ebd38e969 [ 570.668831][T13505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 570.668859][T13505] RSP: 002b:00007f6ebe284038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 570.668886][T13505] RAX: ffffffffffffffda RBX: 00007f6ebd5b6080 RCX: 00007f6ebd38e969 [ 570.668905][T13505] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000002 [ 570.668923][T13505] RBP: 00007f6ebd410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 570.668941][T13505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 570.668956][T13505] R13: 0000000000000000 R14: 00007f6ebd5b6080 R15: 00007ffe3306ba28 [ 570.668993][T13505] [ 570.945061][ C1] vkms_vblank_simulate: vblank timer overrun [ 572.524933][T13527] netlink: 198 bytes leftover after parsing attributes in process `syz.2.1862'. [ 572.609173][T13531] zero sized request [ 572.859833][T13541] FAULT_INJECTION: forcing a failure. [ 572.859833][T13541] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 572.877572][T13541] CPU: 0 UID: 0 PID: 13541 Comm: syz.3.1867 Not tainted 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 572.877608][T13541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 572.877624][T13541] Call Trace: [ 572.877633][T13541] [ 572.877643][T13541] dump_stack_lvl+0x16c/0x1f0 [ 572.877680][T13541] should_fail_ex+0x512/0x640 [ 572.877718][T13541] _copy_from_user+0x2e/0xd0 [ 572.877754][T13541] ppp_ioctl+0x1e9/0x2660 [ 572.877786][T13541] ? find_held_lock+0x2b/0x80 [ 572.877810][T13541] ? __pfx_ppp_ioctl+0x10/0x10 [ 572.877844][T13541] ? __fget_files+0x20e/0x3c0 [ 572.877871][T13541] ? __pfx_ppp_ioctl+0x10/0x10 [ 572.877900][T13541] __x64_sys_ioctl+0x193/0x200 [ 572.877935][T13541] do_syscall_64+0xcd/0x230 [ 572.877982][T13541] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 572.878008][T13541] RIP: 0033:0x7ff8b938e969 [ 572.878028][T13541] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 572.878051][T13541] RSP: 002b:00007ff8ba1d0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 572.878075][T13541] RAX: ffffffffffffffda RBX: 00007ff8b95b5fa0 RCX: 00007ff8b938e969 [ 572.878091][T13541] RDX: 00002000000000c0 RSI: 0000000040107447 RDI: 0000000000000004 [ 572.878108][T13541] RBP: 00007ff8ba1d0090 R08: 0000000000000000 R09: 0000000000000000 [ 572.878123][T13541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 572.878138][T13541] R13: 0000000000000000 R14: 00007ff8b95b5fa0 R15: 00007fff76fef598 [ 572.878174][T13541] [ 573.333245][T13546] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input18 [ 573.367484][T13547] Setting dangerous option i915.mitigations - tainting kernel [ 573.560857][T13548] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input19 [ 573.587331][T13555] FAULT_INJECTION: forcing a failure. [ 573.587331][T13555] name failslab, interval 1, probability 0, space 0, times 0 [ 573.603314][T13555] CPU: 0 UID: 0 PID: 13555 Comm: syz.2.1871 Tainted: G U 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 573.603359][T13555] Tainted: [U]=USER [ 573.603369][T13555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 573.603384][T13555] Call Trace: [ 573.603393][T13555] [ 573.603403][T13555] dump_stack_lvl+0x16c/0x1f0 [ 573.603444][T13555] should_fail_ex+0x512/0x640 [ 573.603479][T13555] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 573.603513][T13555] should_failslab+0xc2/0x120 [ 573.603547][T13555] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 573.603576][T13555] ? __proc_create+0xc3/0x8c0 [ 573.603604][T13555] ? __proc_create+0x2ce/0x8c0 [ 573.603637][T13555] __proc_create+0x2ce/0x8c0 [ 573.603666][T13555] ? __pfx___proc_create+0x10/0x10 [ 573.603701][T13555] ? _raw_write_unlock+0x28/0x50 [ 573.603738][T13555] proc_create_reg+0x7d/0x180 [ 573.603769][T13555] proc_create_data+0x86/0x110 [ 573.603796][T13555] ? __pfx_proc_create_data+0x10/0x10 [ 573.603827][T13555] ? cache_register_net+0x137/0x5e0 [ 573.603858][T13555] cache_register_net+0x1e0/0x5e0 [ 573.603887][T13555] nfsd_export_init+0xb6/0x250 [ 573.603913][T13555] ? __pfx_nfsd_net_init+0x10/0x10 [ 573.603936][T13555] nfsd_net_init+0x33/0x3d0 [ 573.603958][T13555] ? __pfx_nfsd_net_init+0x10/0x10 [ 573.603992][T13555] ops_init+0x1df/0x5f0 [ 573.604029][T13555] setup_net+0x21e/0x850 [ 573.604065][T13555] ? __pfx_setup_net+0x10/0x10 [ 573.604094][T13555] ? lockdep_init_map_type+0x5c/0x280 [ 573.604128][T13555] ? __pfx_down_read_killable+0x10/0x10 [ 573.604158][T13555] ? debug_mutex_init+0x37/0x70 [ 573.604187][T13555] copy_net_ns+0x2a6/0x5f0 [ 573.604222][T13555] create_new_namespaces+0x3ea/0xad0 [ 573.604261][T13555] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 573.604294][T13555] ksys_unshare+0x45b/0xa40 [ 573.604328][T13555] ? __pfx_ksys_unshare+0x10/0x10 [ 573.604359][T13555] ? xfd_validate_state+0x5d/0x180 [ 573.604385][T13555] ? rcu_is_watching+0x12/0xc0 [ 573.604418][T13555] __x64_sys_unshare+0x31/0x40 [ 573.604449][T13555] do_syscall_64+0xcd/0x230 [ 573.604482][T13555] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 573.604507][T13555] RIP: 0033:0x7f6ebd38e969 [ 573.604529][T13555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 573.604551][T13555] RSP: 002b:00007f6ebe2a5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 573.604576][T13555] RAX: ffffffffffffffda RBX: 00007f6ebd5b5fa0 RCX: 00007f6ebd38e969 [ 573.604593][T13555] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 573.604607][T13555] RBP: 00007f6ebd410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 573.604621][T13555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 573.604635][T13555] R13: 0000000000000000 R14: 00007f6ebd5b5fa0 R15: 00007ffe3306ba28 [ 573.604667][T13555] [ 578.269002][T13618] FAULT_INJECTION: forcing a failure. [ 578.269002][T13618] name failslab, interval 1, probability 0, space 0, times 0 [ 578.287782][T13618] CPU: 1 UID: 0 PID: 13618 Comm: syz.2.1885 Tainted: G U 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 578.287809][T13618] Tainted: [U]=USER [ 578.287815][T13618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 578.287824][T13618] Call Trace: [ 578.287829][T13618] [ 578.287835][T13618] dump_stack_lvl+0x16c/0x1f0 [ 578.287861][T13618] should_fail_ex+0x512/0x640 [ 578.287882][T13618] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 578.287901][T13618] should_failslab+0xc2/0x120 [ 578.287920][T13618] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 578.287936][T13618] ? __proc_create+0xc3/0x8c0 [ 578.287952][T13618] ? __proc_create+0x2ce/0x8c0 [ 578.287971][T13618] __proc_create+0x2ce/0x8c0 [ 578.287987][T13618] ? __pfx___proc_create+0x10/0x10 [ 578.288007][T13618] ? _raw_write_unlock+0x28/0x50 [ 578.288029][T13618] proc_create_reg+0x7d/0x180 [ 578.288047][T13618] proc_create_data+0x86/0x110 [ 578.288064][T13618] ? __pfx_proc_create_data+0x10/0x10 [ 578.288083][T13618] ? cache_register_net+0x137/0x5e0 [ 578.288103][T13618] cache_register_net+0x1e0/0x5e0 [ 578.288120][T13618] nfsd_export_init+0x16e/0x250 [ 578.288134][T13618] ? __pfx_nfsd_net_init+0x10/0x10 [ 578.288147][T13618] nfsd_net_init+0x33/0x3d0 [ 578.288161][T13618] ? __pfx_nfsd_net_init+0x10/0x10 [ 578.288174][T13618] ops_init+0x1df/0x5f0 [ 578.288195][T13618] setup_net+0x21e/0x850 [ 578.288214][T13618] ? __pfx_setup_net+0x10/0x10 [ 578.288231][T13618] ? lockdep_init_map_type+0x5c/0x280 [ 578.288251][T13618] ? __pfx_down_read_killable+0x10/0x10 [ 578.288267][T13618] ? debug_mutex_init+0x37/0x70 [ 578.288283][T13618] copy_net_ns+0x2a6/0x5f0 [ 578.288304][T13618] create_new_namespaces+0x3ea/0xad0 [ 578.288325][T13618] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 578.288343][T13618] ksys_unshare+0x45b/0xa40 [ 578.288363][T13618] ? __pfx_ksys_unshare+0x10/0x10 [ 578.288381][T13618] ? xfd_validate_state+0x5d/0x180 [ 578.288397][T13618] ? rcu_is_watching+0x12/0xc0 [ 578.288439][T13618] __x64_sys_unshare+0x31/0x40 [ 578.288459][T13618] do_syscall_64+0xcd/0x230 [ 578.288482][T13618] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 578.288497][T13618] RIP: 0033:0x7f6ebd38e969 [ 578.288509][T13618] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 578.288523][T13618] RSP: 002b:00007f6ebe2a5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 578.288538][T13618] RAX: ffffffffffffffda RBX: 00007f6ebd5b5fa0 RCX: 00007f6ebd38e969 [ 578.288548][T13618] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 578.288557][T13618] RBP: 00007f6ebd410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 578.288566][T13618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 578.288574][T13618] R13: 0000000000000000 R14: 00007f6ebd5b5fa0 R15: 00007ffe3306ba28 [ 578.288594][T13618] [ 579.078905][T13624] FAULT_INJECTION: forcing a failure. [ 579.078905][T13624] name failslab, interval 1, probability 0, space 0, times 0 [ 579.325291][T13624] CPU: 0 UID: 0 PID: 13624 Comm: syz.3.1886 Tainted: G U 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 579.325344][T13624] Tainted: [U]=USER [ 579.325354][T13624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 579.325370][T13624] Call Trace: [ 579.325379][T13624] [ 579.325390][T13624] dump_stack_lvl+0x16c/0x1f0 [ 579.325432][T13624] should_fail_ex+0x512/0x640 [ 579.325467][T13624] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 579.325501][T13624] should_failslab+0xc2/0x120 [ 579.325535][T13624] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 579.325563][T13624] ? __proc_create+0xc3/0x8c0 [ 579.325590][T13624] ? __proc_create+0x2ce/0x8c0 [ 579.325624][T13624] __proc_create+0x2ce/0x8c0 [ 579.325655][T13624] ? __pfx___proc_create+0x10/0x10 [ 579.325690][T13624] ? _raw_write_unlock+0x28/0x50 [ 579.325723][T13624] ? proc_register+0x314/0x5f0 [ 579.325756][T13624] proc_create_reg+0x7d/0x180 [ 579.325789][T13624] proc_create_seq_private+0x8e/0x1d0 [ 579.325823][T13624] ? __pfx_proc_create_seq_private+0x10/0x10 [ 579.325855][T13624] ? __pfx_nl_fib_input+0x10/0x10 [ 579.325893][T13624] ? __pfx_ip_rt_do_proc_init+0x10/0x10 [ 579.325926][T13624] ip_rt_do_proc_init+0xac/0x1b0 [ 579.325961][T13624] ops_init+0x1df/0x5f0 [ 579.325997][T13624] setup_net+0x21e/0x850 [ 579.326033][T13624] ? __pfx_setup_net+0x10/0x10 [ 579.326061][T13624] ? lockdep_init_map_type+0x5c/0x280 [ 579.326095][T13624] ? __pfx_down_read_killable+0x10/0x10 [ 579.326125][T13624] ? debug_mutex_init+0x37/0x70 [ 579.326154][T13624] copy_net_ns+0x2a6/0x5f0 [ 579.326192][T13624] create_new_namespaces+0x3ea/0xad0 [ 579.326230][T13624] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 579.326264][T13624] ksys_unshare+0x45b/0xa40 [ 579.326298][T13624] ? __pfx_ksys_unshare+0x10/0x10 [ 579.326335][T13624] ? xfd_validate_state+0x5d/0x180 [ 579.326369][T13624] ? rcu_is_watching+0x12/0xc0 [ 579.326404][T13624] __x64_sys_unshare+0x31/0x40 [ 579.326438][T13624] do_syscall_64+0xcd/0x230 [ 579.326478][T13624] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 579.326505][T13624] RIP: 0033:0x7ff8b938e969 [ 579.326527][T13624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 579.326553][T13624] RSP: 002b:00007ff8ba1af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 579.326578][T13624] RAX: ffffffffffffffda RBX: 00007ff8b95b6080 RCX: 00007ff8b938e969 [ 579.326597][T13624] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 579.326613][T13624] RBP: 00007ff8b9410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 579.326629][T13624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 579.326645][T13624] R13: 0000000000000000 R14: 00007ff8b95b6080 R15: 00007fff76fef598 [ 579.326679][T13624] [ 579.922840][T13616] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 579.945882][T13616] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 579.951947][T13616] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 579.969742][T13616] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 579.998208][T13616] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 580.031638][T13629] FAULT_INJECTION: forcing a failure. [ 580.031638][T13629] name failslab, interval 1, probability 0, space 0, times 0 [ 580.045205][T13629] CPU: 0 UID: 0 PID: 13629 Comm: syz.0.1888 Tainted: G U 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 580.045244][T13629] Tainted: [U]=USER [ 580.045253][T13629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 580.045267][T13629] Call Trace: [ 580.045280][T13629] [ 580.045291][T13629] dump_stack_lvl+0x16c/0x1f0 [ 580.045333][T13629] should_fail_ex+0x512/0x640 [ 580.045365][T13629] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 580.045396][T13629] should_failslab+0xc2/0x120 [ 580.045428][T13629] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 580.045457][T13629] ? vma_merge_new_range+0x3f8/0xc10 [ 580.045482][T13629] ? vm_area_alloc+0x1f/0x160 [ 580.045525][T13629] vm_area_alloc+0x1f/0x160 [ 580.045555][T13629] __mmap_region+0xfd0/0x27c0 [ 580.045585][T13629] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 580.045604][T13629] ? __pfx___mmap_region+0x10/0x10 [ 580.045620][T13629] ? kernel_text_address+0x8d/0x100 [ 580.045648][T13629] ? stack_depot_save_flags+0x28/0xa50 [ 580.045690][T13629] ? trace_cap_capable+0x18d/0x200 [ 580.045707][T13629] ? cap_capable+0xb3/0x250 [ 580.045724][T13629] mmap_region+0x1ab/0x3f0 [ 580.045744][T13629] do_mmap+0xd8e/0x11b0 [ 580.045769][T13629] ? __pfx_do_mmap+0x10/0x10 [ 580.045790][T13629] ? __pfx_down_write_killable+0x10/0x10 [ 580.045808][T13629] vm_mmap_pgoff+0x281/0x450 [ 580.045832][T13629] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 580.045850][T13629] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 580.045870][T13629] ? hugetlbfs_get_inode+0x31f/0x730 [ 580.045894][T13629] ksys_mmap_pgoff+0x1c8/0x5c0 [ 580.045915][T13629] ? rcu_is_watching+0x12/0xc0 [ 580.045931][T13629] __x64_sys_mmap+0x125/0x190 [ 580.045948][T13629] do_syscall_64+0xcd/0x230 [ 580.045970][T13629] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 580.045984][T13629] RIP: 0033:0x7f9245b8e969 [ 580.045997][T13629] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 580.046012][T13629] RSP: 002b:00007f9246a4a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 580.046026][T13629] RAX: ffffffffffffffda RBX: 00007f9245db5fa0 RCX: 00007f9245b8e969 [ 580.046036][T13629] RDX: 00004000000000e3 RSI: 0000000000200004 RDI: 0000000000000000 [ 580.046045][T13629] RBP: 00007f9245c10ab1 R08: 000000000000000d R09: 0000300000000000 [ 580.046053][T13629] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000 [ 580.046062][T13629] R13: 0000000000000000 R14: 00007f9245db5fa0 R15: 00007ffdbe76d0f8 [ 580.046082][T13629] [ 580.539405][T13633] FAULT_INJECTION: forcing a failure. [ 580.539405][T13633] name failslab, interval 1, probability 0, space 0, times 0 [ 580.555206][T13633] CPU: 1 UID: 0 PID: 13633 Comm: syz.1.1889 Tainted: G U 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 580.555253][T13633] Tainted: [U]=USER [ 580.555263][T13633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 580.555279][T13633] Call Trace: [ 580.555289][T13633] [ 580.555301][T13633] dump_stack_lvl+0x16c/0x1f0 [ 580.555342][T13633] should_fail_ex+0x512/0x640 [ 580.555377][T13633] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 580.555412][T13633] should_failslab+0xc2/0x120 [ 580.555443][T13633] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 580.555471][T13633] ? __proc_create+0xc3/0x8c0 [ 580.555500][T13633] ? __proc_create+0x2ce/0x8c0 [ 580.555536][T13633] __proc_create+0x2ce/0x8c0 [ 580.555563][T13633] ? __pfx___proc_create+0x10/0x10 [ 580.555607][T13633] proc_mkdir+0x81/0x170 [ 580.555636][T13633] ? __pfx_proc_mkdir+0x10/0x10 [ 580.555667][T13633] ? cache_register_net+0x137/0x5e0 [ 580.555703][T13633] cache_register_net+0x18f/0x5e0 [ 580.555734][T13633] nfsd_export_init+0x16e/0x250 [ 580.555761][T13633] ? __pfx_nfsd_net_init+0x10/0x10 [ 580.555785][T13633] nfsd_net_init+0x33/0x3d0 [ 580.555811][T13633] ? __pfx_nfsd_net_init+0x10/0x10 [ 580.555836][T13633] ops_init+0x1df/0x5f0 [ 580.555872][T13633] setup_net+0x21e/0x850 [ 580.555907][T13633] ? __pfx_setup_net+0x10/0x10 [ 580.555936][T13633] ? lockdep_init_map_type+0x5c/0x280 [ 580.555970][T13633] ? __pfx_down_read_killable+0x10/0x10 [ 580.556001][T13633] ? debug_mutex_init+0x37/0x70 [ 580.556031][T13633] copy_net_ns+0x2a6/0x5f0 [ 580.556068][T13633] create_new_namespaces+0x3ea/0xad0 [ 580.556107][T13633] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 580.556140][T13633] ksys_unshare+0x45b/0xa40 [ 580.556174][T13633] ? __pfx_ksys_unshare+0x10/0x10 [ 580.556218][T13633] ? xfd_validate_state+0x5d/0x180 [ 580.556247][T13633] ? rcu_is_watching+0x12/0xc0 [ 580.556283][T13633] __x64_sys_unshare+0x31/0x40 [ 580.556317][T13633] do_syscall_64+0xcd/0x230 [ 580.556358][T13633] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 580.556385][T13633] RIP: 0033:0x7f813278e969 [ 580.556407][T13633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 580.556433][T13633] RSP: 002b:00007f81305f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 580.556459][T13633] RAX: ffffffffffffffda RBX: 00007f81329b5fa0 RCX: 00007f813278e969 [ 580.556478][T13633] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 580.556495][T13633] RBP: 00007f8132810ab1 R08: 0000000000000000 R09: 0000000000000000 [ 580.556511][T13633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 580.556528][T13633] R13: 0000000000000000 R14: 00007f81329b5fa0 R15: 00007ffe7b6c8b78 [ 580.556566][T13633] [ 581.886461][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout [ 581.966398][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout [ 581.966624][ T5835] Bluetooth: hci1: command 0x0c1a tx timeout [ 582.046492][ T5835] Bluetooth: hci3: command 0x0c1a tx timeout [ 584.130924][ T5835] Bluetooth: hci3: command 0x0c1a tx timeout [ 584.830725][T13694] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1901'. [ 585.135630][T13700] FAULT_INJECTION: forcing a failure. [ 585.135630][T13700] name failslab, interval 1, probability 0, space 0, times 0 [ 585.152974][T13700] CPU: 1 UID: 0 PID: 13700 Comm: syz.3.1903 Tainted: G U 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 585.153019][T13700] Tainted: [U]=USER [ 585.153029][T13700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 585.153045][T13700] Call Trace: [ 585.153054][T13700] [ 585.153065][T13700] dump_stack_lvl+0x16c/0x1f0 [ 585.153105][T13700] should_fail_ex+0x512/0x640 [ 585.153140][T13700] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 585.153175][T13700] should_failslab+0xc2/0x120 [ 585.153207][T13700] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 585.153237][T13700] ? __d_alloc+0x31/0xaa0 [ 585.153268][T13700] __d_alloc+0x31/0xaa0 [ 585.153299][T13700] d_alloc+0x4a/0x1e0 [ 585.153328][T13700] d_alloc_parallel+0xe3/0x12e0 [ 585.153366][T13700] ? is_bpf_text_address+0x94/0x1a0 [ 585.153398][T13700] ? kernel_text_address+0x8d/0x100 [ 585.153420][T13700] ? __x64_sys_ioctl+0x193/0x200 [ 585.153451][T13700] ? __kernel_text_address+0xd/0x40 [ 585.153474][T13700] ? unwind_get_return_address+0x59/0xa0 [ 585.153504][T13700] ? __pfx_d_alloc_parallel+0x10/0x10 [ 585.153540][T13700] ? lockdep_init_map_type+0x5c/0x280 [ 585.153569][T13700] ? lockdep_init_map_type+0x5c/0x280 [ 585.153607][T13700] __lookup_slow+0x193/0x460 [ 585.153641][T13700] ? __pfx___lookup_slow+0x10/0x10 [ 585.153679][T13700] ? __bpf_trace_mm_compaction_end+0x160/0x1e0 [ 585.153726][T13700] ? __bpf_trace_mm_compaction_end+0x160/0x1e0 [ 585.153763][T13700] ? d_lookup+0xe7/0x190 [ 585.153800][T13700] lookup_one_len+0x17f/0x1b0 [ 585.153832][T13700] ? __pfx_lookup_one_len+0x10/0x10 [ 585.153877][T13700] ? mntput+0x10/0x90 [ 585.153917][T13700] start_creating.part.0+0x12f/0x3a0 [ 585.153958][T13700] __debugfs_create_file+0xa7/0x6b0 [ 585.153999][T13700] debugfs_create_file_full+0x41/0x60 [ 585.154039][T13700] kvm_dev_ioctl+0x14ff/0x1ad0 [ 585.154082][T13700] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 585.154125][T13700] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 585.154158][T13700] __x64_sys_ioctl+0x193/0x200 [ 585.154196][T13700] do_syscall_64+0xcd/0x230 [ 585.154236][T13700] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 585.154262][T13700] RIP: 0033:0x7ff8b938e969 [ 585.154284][T13700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 585.154311][T13700] RSP: 002b:00007ff8ba1af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 585.154338][T13700] RAX: ffffffffffffffda RBX: 00007ff8b95b6080 RCX: 00007ff8b938e969 [ 585.154357][T13700] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000002 [ 585.154374][T13700] RBP: 00007ff8b9410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 585.154391][T13700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 585.154407][T13700] R13: 0000000000000000 R14: 00007ff8b95b6080 R15: 00007fff76fef598 [ 585.154444][T13700] [ 586.130178][T13705] FAULT_INJECTION: forcing a failure. [ 586.130178][T13705] name failslab, interval 1, probability 0, space 0, times 0 [ 586.214400][T13705] CPU: 0 UID: 0 PID: 13705 Comm: syz.2.1904 Tainted: G U 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 586.214447][T13705] Tainted: [U]=USER [ 586.214457][T13705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 586.214473][T13705] Call Trace: [ 586.214483][T13705] [ 586.214495][T13705] dump_stack_lvl+0x16c/0x1f0 [ 586.214538][T13705] should_fail_ex+0x512/0x640 [ 586.214574][T13705] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 586.214609][T13705] should_failslab+0xc2/0x120 [ 586.214641][T13705] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 586.214679][T13705] ? __proc_create+0xc3/0x8c0 [ 586.214709][T13705] ? __proc_create+0x2ce/0x8c0 [ 586.214745][T13705] __proc_create+0x2ce/0x8c0 [ 586.214777][T13705] ? __pfx___proc_create+0x10/0x10 [ 586.214816][T13705] ? _raw_write_unlock+0x28/0x50 [ 586.214854][T13705] proc_create_reg+0x7d/0x180 [ 586.214888][T13705] proc_create_data+0x86/0x110 [ 586.214919][T13705] ? __pfx_proc_create_data+0x10/0x10 [ 586.214952][T13705] ? cache_register_net+0x137/0x5e0 [ 586.214988][T13705] cache_register_net+0x1e0/0x5e0 [ 586.215020][T13705] nfsd_export_init+0xb6/0x250 [ 586.215047][T13705] ? __pfx_nfsd_net_init+0x10/0x10 [ 586.215071][T13705] nfsd_net_init+0x33/0x3d0 [ 586.215097][T13705] ? __pfx_nfsd_net_init+0x10/0x10 [ 586.215122][T13705] ops_init+0x1df/0x5f0 [ 586.215159][T13705] setup_net+0x21e/0x850 [ 586.215194][T13705] ? __pfx_setup_net+0x10/0x10 [ 586.215224][T13705] ? lockdep_init_map_type+0x5c/0x280 [ 586.215259][T13705] ? __pfx_down_read_killable+0x10/0x10 [ 586.215290][T13705] ? debug_mutex_init+0x37/0x70 [ 586.215321][T13705] copy_net_ns+0x2a6/0x5f0 [ 586.215360][T13705] create_new_namespaces+0x3ea/0xad0 [ 586.215404][T13705] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 586.215438][T13705] ksys_unshare+0x45b/0xa40 [ 586.215474][T13705] ? __pfx_ksys_unshare+0x10/0x10 [ 586.215507][T13705] ? xfd_validate_state+0x5d/0x180 [ 586.215536][T13705] ? rcu_is_watching+0x12/0xc0 [ 586.215570][T13705] __x64_sys_unshare+0x31/0x40 [ 586.215604][T13705] do_syscall_64+0xcd/0x230 [ 586.215643][T13705] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 586.215678][T13705] RIP: 0033:0x7f6ebd38e969 [ 586.215700][T13705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 586.215729][T13705] RSP: 002b:00007f6ebe2a5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 586.215757][T13705] RAX: ffffffffffffffda RBX: 00007f6ebd5b5fa0 RCX: 00007f6ebd38e969 [ 586.215776][T13705] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 586.215794][T13705] RBP: 00007f6ebd410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 586.215811][T13705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 586.215829][T13705] R13: 0000000000000000 R14: 00007f6ebd5b5fa0 R15: 00007ffe3306ba28 [ 586.215867][T13705] [ 587.537136][T13718] nvme_fabrics: missing parameter 'transport=%s' [ 587.603628][T13718] nvme_fabrics: missing parameter 'nqn=%s' [ 587.763461][T13721] nvme_fabrics: missing parameter 'transport=%s' [ 587.786682][T13721] nvme_fabrics: missing parameter 'nqn=%s' [ 591.874873][T13779] Invalid ELF header magic: != ELF [ 593.078480][T13794] FAULT_INJECTION: forcing a failure. [ 593.078480][T13794] name failslab, interval 1, probability 0, space 0, times 0 [ 593.137420][T13794] CPU: 1 UID: 0 PID: 13794 Comm: syz.0.1926 Tainted: G U 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 593.137462][T13794] Tainted: [U]=USER [ 593.137470][T13794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 593.137483][T13794] Call Trace: [ 593.137492][T13794] [ 593.137501][T13794] dump_stack_lvl+0x16c/0x1f0 [ 593.137538][T13794] should_fail_ex+0x512/0x640 [ 593.137576][T13794] should_failslab+0xc2/0x120 [ 593.137604][T13794] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 593.137632][T13794] ? skb_clone+0x190/0x3f0 [ 593.137664][T13794] skb_clone+0x190/0x3f0 [ 593.137692][T13794] netlink_deliver_tap+0xabd/0xd30 [ 593.137729][T13794] netlink_unicast+0x5df/0x7f0 [ 593.137762][T13794] ? __pfx_netlink_unicast+0x10/0x10 [ 593.137789][T13794] ? __lock_acquire+0xaa4/0x1ba0 [ 593.137827][T13794] netlink_sendmsg+0x8d1/0xdd0 [ 593.137861][T13794] ? __pfx_netlink_sendmsg+0x10/0x10 [ 593.137904][T13794] ____sys_sendmsg+0xa98/0xc70 [ 593.137938][T13794] ? copy_msghdr_from_user+0x10a/0x160 [ 593.137965][T13794] ? __pfx_____sys_sendmsg+0x10/0x10 [ 593.138024][T13794] ___sys_sendmsg+0x134/0x1d0 [ 593.138055][T13794] ? __pfx____sys_sendmsg+0x10/0x10 [ 593.138132][T13794] __sys_sendmsg+0x16d/0x220 [ 593.138161][T13794] ? __pfx___sys_sendmsg+0x10/0x10 [ 593.138202][T13794] ? rcu_is_watching+0x12/0xc0 [ 593.138236][T13794] do_syscall_64+0xcd/0x230 [ 593.138271][T13794] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 593.138295][T13794] RIP: 0033:0x7f9245b8e969 [ 593.138316][T13794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 593.138340][T13794] RSP: 002b:00007f9246a4a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 593.138364][T13794] RAX: ffffffffffffffda RBX: 00007f9245db5fa0 RCX: 00007f9245b8e969 [ 593.138381][T13794] RDX: 0000000000040000 RSI: 00002000000039c0 RDI: 0000000000000003 [ 593.138396][T13794] RBP: 00007f9246a4a090 R08: 0000000000000000 R09: 0000000000000000 [ 593.138411][T13794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 593.138426][T13794] R13: 0000000000000000 R14: 00007f9245db5fa0 R15: 00007ffdbe76d0f8 [ 593.138462][T13794] [ 595.465344][T13821] FAULT_INJECTION: forcing a failure. [ 595.465344][T13821] name failslab, interval 1, probability 0, space 0, times 0 [ 595.499063][T13821] CPU: 0 UID: 0 PID: 13821 Comm: syz.2.1931 Tainted: G U 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 595.499111][T13821] Tainted: [U]=USER [ 595.499121][T13821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 595.499138][T13821] Call Trace: [ 595.499148][T13821] [ 595.499160][T13821] dump_stack_lvl+0x16c/0x1f0 [ 595.499200][T13821] should_fail_ex+0x512/0x640 [ 595.499235][T13821] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 595.499271][T13821] should_failslab+0xc2/0x120 [ 595.499304][T13821] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 595.499333][T13821] ? kernel_text_address+0x8d/0x100 [ 595.499358][T13821] ? __d_alloc+0x31/0xaa0 [ 595.499393][T13821] __d_alloc+0x31/0xaa0 [ 595.499426][T13821] d_alloc+0x4a/0x1e0 [ 595.499456][T13821] d_alloc_parallel+0xe3/0x12e0 [ 595.499490][T13821] ? __pfx_stack_trace_save+0x10/0x10 [ 595.499517][T13821] ? stack_depot_save_flags+0x28/0xa50 [ 595.499563][T13821] ? kasan_save_stack+0x42/0x60 [ 595.499590][T13821] ? kasan_save_stack+0x33/0x60 [ 595.499617][T13821] ? __pfx_d_alloc_parallel+0x10/0x10 [ 595.499656][T13821] ? lockdep_init_map_type+0x5c/0x280 [ 595.499692][T13821] ? lockdep_init_map_type+0x5c/0x280 [ 595.499733][T13821] __lookup_slow+0x193/0x460 [ 595.499768][T13821] ? __pfx___lookup_slow+0x10/0x10 [ 595.499807][T13821] ? __bpf_trace_mm_compaction_end+0x160/0x1e0 [ 595.499855][T13821] ? __bpf_trace_mm_compaction_end+0x160/0x1e0 [ 595.499895][T13821] ? d_lookup+0xe7/0x190 [ 595.499934][T13821] lookup_one_len+0x17f/0x1b0 [ 595.499967][T13821] ? __pfx_lookup_one_len+0x10/0x10 [ 595.500004][T13821] ? mntput+0x10/0x90 [ 595.500052][T13821] start_creating.part.0+0x12f/0x3a0 [ 595.500095][T13821] debugfs_create_dir+0x6c/0x5f0 [ 595.500137][T13821] kvm_dev_ioctl+0x122b/0x1ad0 [ 595.500176][T13821] ? find_held_lock+0x2b/0x80 [ 595.500201][T13821] ? hook_file_ioctl_common+0x145/0x410 [ 595.500233][T13821] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 595.500277][T13821] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 595.500310][T13821] __x64_sys_ioctl+0x193/0x200 [ 595.500348][T13821] do_syscall_64+0xcd/0x230 [ 595.500388][T13821] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 595.500414][T13821] RIP: 0033:0x7f6ebd38e969 [ 595.500436][T13821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 595.500463][T13821] RSP: 002b:00007f6ebe284038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 595.500488][T13821] RAX: ffffffffffffffda RBX: 00007f6ebd5b6080 RCX: 00007f6ebd38e969 [ 595.500507][T13821] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000002 [ 595.500524][T13821] RBP: 00007f6ebd410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 595.500542][T13821] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 595.500558][T13821] R13: 0000000000000000 R14: 00007f6ebd5b6080 R15: 00007ffe3306ba28 [ 595.500596][T13821] [ 596.082616][T13826] FAULT_INJECTION: forcing a failure. [ 596.082616][T13826] name failslab, interval 1, probability 0, space 0, times 0 [ 596.121546][T13826] CPU: 1 UID: 0 PID: 13826 Comm: syz.1.1933 Tainted: G U 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 596.121597][T13826] Tainted: [U]=USER [ 596.121607][T13826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 596.121623][T13826] Call Trace: [ 596.121632][T13826] [ 596.121644][T13826] dump_stack_lvl+0x16c/0x1f0 [ 596.121684][T13826] should_fail_ex+0x512/0x640 [ 596.121718][T13826] ? __kmalloc_noprof+0xbf/0x510 [ 596.121748][T13826] ? cache_create_net+0x9d/0x220 [ 596.121772][T13826] should_failslab+0xc2/0x120 [ 596.121800][T13826] __kmalloc_noprof+0xd2/0x510 [ 596.121838][T13826] cache_create_net+0x9d/0x220 [ 596.121865][T13826] nfsd_export_init+0x11f/0x250 [ 596.121891][T13826] ? __pfx_nfsd_net_init+0x10/0x10 [ 596.121915][T13826] nfsd_net_init+0x33/0x3d0 [ 596.121941][T13826] ? __pfx_nfsd_net_init+0x10/0x10 [ 596.121972][T13826] ops_init+0x1df/0x5f0 [ 596.122010][T13826] setup_net+0x21e/0x850 [ 596.122047][T13826] ? __pfx_setup_net+0x10/0x10 [ 596.122078][T13826] ? lockdep_init_map_type+0x5c/0x280 [ 596.122112][T13826] ? __pfx_down_read_killable+0x10/0x10 [ 596.122143][T13826] ? debug_mutex_init+0x37/0x70 [ 596.122173][T13826] copy_net_ns+0x2a6/0x5f0 [ 596.122211][T13826] create_new_namespaces+0x3ea/0xad0 [ 596.122249][T13826] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 596.122280][T13826] ksys_unshare+0x45b/0xa40 [ 596.122315][T13826] ? __pfx_ksys_unshare+0x10/0x10 [ 596.122346][T13826] ? xfd_validate_state+0x5d/0x180 [ 596.122371][T13826] ? rcu_is_watching+0x12/0xc0 [ 596.122402][T13826] __x64_sys_unshare+0x31/0x40 [ 596.122433][T13826] do_syscall_64+0xcd/0x230 [ 596.122469][T13826] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 596.122493][T13826] RIP: 0033:0x7f813278e969 [ 596.122513][T13826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 596.122539][T13826] RSP: 002b:00007f81305f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 596.122566][T13826] RAX: ffffffffffffffda RBX: 00007f81329b5fa0 RCX: 00007f813278e969 [ 596.122584][T13826] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 596.122601][T13826] RBP: 00007f8132810ab1 R08: 0000000000000000 R09: 0000000000000000 [ 596.122617][T13826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 596.122632][T13826] R13: 0000000000000000 R14: 00007f81329b5fa0 R15: 00007ffe7b6c8b78 [ 596.122668][T13826] [ 596.705408][T13830] FAULT_INJECTION: forcing a failure. [ 596.705408][T13830] name failslab, interval 1, probability 0, space 0, times 0 [ 596.725002][T13830] CPU: 1 UID: 0 PID: 13830 Comm: syz.3.1934 Tainted: G U 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 596.725049][T13830] Tainted: [U]=USER [ 596.725059][T13830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 596.725074][T13830] Call Trace: [ 596.725084][T13830] [ 596.725096][T13830] dump_stack_lvl+0x16c/0x1f0 [ 596.725139][T13830] should_fail_ex+0x512/0x640 [ 596.725174][T13830] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 596.725214][T13830] should_failslab+0xc2/0x120 [ 596.725246][T13830] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 596.725280][T13830] ? cache_create_net+0x2b/0x220 [ 596.725308][T13830] ? __pfx_nfsd_net_init+0x10/0x10 [ 596.725334][T13830] kmemdup_noprof+0x29/0x60 [ 596.725366][T13830] cache_create_net+0x2b/0x220 [ 596.725393][T13830] ? __pfx_nfsd_net_init+0x10/0x10 [ 596.725416][T13830] nfsd_export_init+0x62/0x250 [ 596.725440][T13830] ? __pfx_nfsd_net_init+0x10/0x10 [ 596.725463][T13830] nfsd_net_init+0x33/0x3d0 [ 596.725490][T13830] ? __pfx_nfsd_net_init+0x10/0x10 [ 596.725515][T13830] ops_init+0x1df/0x5f0 [ 596.725552][T13830] setup_net+0x21e/0x850 [ 596.725588][T13830] ? __pfx_setup_net+0x10/0x10 [ 596.725616][T13830] ? lockdep_init_map_type+0x5c/0x280 [ 596.725650][T13830] ? __pfx_down_read_killable+0x10/0x10 [ 596.725680][T13830] ? debug_mutex_init+0x37/0x70 [ 596.725710][T13830] copy_net_ns+0x2a6/0x5f0 [ 596.725747][T13830] create_new_namespaces+0x3ea/0xad0 [ 596.725785][T13830] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 596.725818][T13830] ksys_unshare+0x45b/0xa40 [ 596.725852][T13830] ? __pfx_ksys_unshare+0x10/0x10 [ 596.725883][T13830] ? xfd_validate_state+0x5d/0x180 [ 596.725918][T13830] ? rcu_is_watching+0x12/0xc0 [ 596.725953][T13830] __x64_sys_unshare+0x31/0x40 [ 596.725987][T13830] do_syscall_64+0xcd/0x230 [ 596.726027][T13830] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 596.726053][T13830] RIP: 0033:0x7ff8b938e969 [ 596.726075][T13830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 596.726101][T13830] RSP: 002b:00007ff8ba1d0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 596.726128][T13830] RAX: ffffffffffffffda RBX: 00007ff8b95b5fa0 RCX: 00007ff8b938e969 [ 596.726148][T13830] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 596.726165][T13830] RBP: 00007ff8b9410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 596.726182][T13830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 596.726196][T13830] R13: 0000000000000000 R14: 00007ff8b95b5fa0 R15: 00007fff76fef598 [ 596.726229][T13830] [ 599.593448][T13862] zram0: detected capacity change from 0 to 8 [ 601.919810][T13891] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1952'. [ 601.944923][T13898] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1953'. [ 601.991156][T13897] FAULT_INJECTION: forcing a failure. [ 601.991156][T13897] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 602.040682][T13897] CPU: 1 UID: 0 PID: 13897 Comm: syz.1.1952 Tainted: G U 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 602.040728][T13897] Tainted: [U]=USER [ 602.040737][T13897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 602.040751][T13897] Call Trace: [ 602.040760][T13897] [ 602.040771][T13897] dump_stack_lvl+0x16c/0x1f0 [ 602.040809][T13897] should_fail_ex+0x512/0x640 [ 602.040847][T13897] _copy_from_user+0x2e/0xd0 [ 602.040885][T13897] move_addr_to_kernel+0x65/0x170 [ 602.040922][T13897] __sys_connect+0xaf/0x170 [ 602.040946][T13897] ? __pfx___sys_connect+0x10/0x10 [ 602.040983][T13897] ? __pfx_ksys_write+0x10/0x10 [ 602.041006][T13897] ? rcu_is_watching+0x12/0xc0 [ 602.041037][T13897] __x64_sys_connect+0x72/0xb0 [ 602.041068][T13897] ? lockdep_hardirqs_on+0x7c/0x110 [ 602.041099][T13897] do_syscall_64+0xcd/0x230 [ 602.041135][T13897] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 602.041160][T13897] RIP: 0033:0x7f813278e969 [ 602.041180][T13897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 602.041205][T13897] RSP: 002b:00007f81305d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 602.041230][T13897] RAX: ffffffffffffffda RBX: 00007f81329b6080 RCX: 00007f813278e969 [ 602.041247][T13897] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 602.041263][T13897] RBP: 00007f81305d5090 R08: 0000000000000000 R09: 0000000000000000 [ 602.041279][T13897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 602.041294][T13897] R13: 0000000000000000 R14: 00007f81329b6080 R15: 00007ffe7b6c8b78 [ 602.041328][T13897] [ 604.587669][T13929] sp0: Synchronizing with TNC [ 606.263591][T13950] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1967'. [ 607.550508][T13960] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1969'. [ 608.600930][ T5835] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 608.907470][T13972] nvme_fabrics: missing parameter 'transport=%s' [ 608.914176][T13972] nvme_fabrics: missing parameter 'nqn=%s' [ 608.927034][T13975] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 609.280024][T13981] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1974'. [ 609.486861][ T5836] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 609.495788][ T5836] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 609.504445][ T5836] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 609.514103][ T5836] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 609.522226][ T5836] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 610.068548][T13987] chnl_net:caif_netlink_parms(): no params data found [ 610.831387][T13987] bridge0: port 1(bridge_slave_0) entered blocking state [ 610.844192][T13987] bridge0: port 1(bridge_slave_0) entered disabled state [ 610.860227][T13987] bridge_slave_0: entered allmulticast mode [ 610.878198][T13987] bridge_slave_0: entered promiscuous mode [ 610.959071][T13987] bridge0: port 2(bridge_slave_1) entered blocking state [ 611.010026][T13987] bridge0: port 2(bridge_slave_1) entered disabled state [ 611.031657][T13987] bridge_slave_1: entered allmulticast mode [ 611.060238][T13987] bridge_slave_1: entered promiscuous mode [ 611.070480][T14024] FAULT_INJECTION: forcing a failure. [ 611.070480][T14024] name fail_futex, interval 1, probability 0, space 0, times 0 [ 611.084797][T14024] CPU: 0 UID: 0 PID: 14024 Comm: syz.3.1981 Tainted: G U 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 611.084843][T14024] Tainted: [U]=USER [ 611.084853][T14024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 611.084869][T14024] Call Trace: [ 611.084880][T14024] [ 611.084891][T14024] dump_stack_lvl+0x16c/0x1f0 [ 611.084934][T14024] should_fail_ex+0x512/0x640 [ 611.084976][T14024] should_fail_futex+0x4c/0x60 [ 611.085005][T14024] futex_lock_pi_atomic+0x101/0xdb0 [ 611.085048][T14024] futex_lock_pi+0x2ee/0x7b0 [ 611.085088][T14024] ? __pfx_futex_lock_pi+0x10/0x10 [ 611.085121][T14024] ? __pfx___futex_wait+0x10/0x10 [ 611.085205][T14024] ? futex_wait+0x120/0x380 [ 611.085243][T14024] ? __pfx_futex_wake_mark+0x10/0x10 [ 611.085286][T14024] ? do_writev+0x218/0x330 [ 611.085319][T14024] do_futex+0x11a/0x350 [ 611.085349][T14024] ? __pfx_do_futex+0x10/0x10 [ 611.085375][T14024] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 611.085424][T14024] __x64_sys_futex+0x1e0/0x4c0 [ 611.085459][T14024] ? __pfx___x64_sys_futex+0x10/0x10 [ 611.085495][T14024] ? rcu_is_watching+0x12/0xc0 [ 611.085533][T14024] do_syscall_64+0xcd/0x230 [ 611.085573][T14024] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 611.085600][T14024] RIP: 0033:0x7ff8b938e969 [ 611.085623][T14024] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 611.085650][T14024] RSP: 002b:00007ff8ba1af038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 611.085677][T14024] RAX: ffffffffffffffda RBX: 00007ff8b95b6080 RCX: 00007ff8b938e969 [ 611.085696][T14024] RDX: 0000000000000009 RSI: 0000000000000006 RDI: 0000000000000000 [ 611.085712][T14024] RBP: 00007ff8b9410ab1 R08: 0000000000000000 R09: 0000000000000006 [ 611.085729][T14024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 611.085745][T14024] R13: 0000000000000000 R14: 00007ff8b95b6080 R15: 00007fff76fef598 [ 611.085783][T14024] [ 611.385896][T13987] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 611.406167][T13987] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 611.581296][ T5836] Bluetooth: hci4: command tx timeout [ 611.996147][T13987] team0: Port device team_slave_0 added [ 612.035268][T13987] team0: Port device team_slave_1 added [ 612.470929][T13987] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 612.579456][T13987] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 612.721366][T13987] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 612.816718][T13987] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 612.840236][T13987] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 612.886067][T13987] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 613.022342][T13987] hsr_slave_0: entered promiscuous mode [ 613.030452][T13987] hsr_slave_1: entered promiscuous mode [ 613.037744][T13987] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 613.045522][T13987] Cannot create hsr debugfs directory [ 613.454982][ T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 613.663575][ T5835] Bluetooth: hci4: command tx timeout [ 613.687201][ T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 613.859710][ T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 614.010521][ T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 614.332267][T14070] zram: Cannot change disksize for initialized device [ 614.357791][T13987] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 614.539116][ T12] netdevsim netdevsim15 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 614.639018][T13987] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 614.656795][T13987] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 614.683605][T13987] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 615.037948][T13987] 8021q: adding VLAN 0 to HW filter on device bond0 [ 615.176207][T13987] 8021q: adding VLAN 0 to HW filter on device team0 [ 615.216412][ T12] bridge_slave_0: left allmulticast mode [ 615.232184][ T12] bridge_slave_0: left promiscuous mode [ 615.247718][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 615.269785][ T30] audit: type=1800 audit(4294968475.556:8): pid=14072 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1987" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0 [ 615.743583][ T5835] Bluetooth: hci4: command tx timeout [ 617.193001][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 617.205136][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 617.215717][ T12] bond0 (unregistering): Released all slaves [ 617.327091][ T1163] bridge0: port 1(bridge_slave_0) entered blocking state [ 617.334304][ T1163] bridge0: port 1(bridge_slave_0) entered forwarding state [ 617.356977][ T1163] bridge0: port 2(bridge_slave_1) entered blocking state [ 617.364206][ T1163] bridge0: port 2(bridge_slave_1) entered forwarding state [ 617.776383][T14109] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1992'. [ 617.825770][ T5835] Bluetooth: hci4: command tx timeout [ 618.700512][T13987] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 619.435487][ T12] hsr_slave_0: left promiscuous mode [ 619.465839][ T12] hsr_slave_1: left promiscuous mode [ 619.487263][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 619.539844][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 619.586412][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 619.594360][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 619.765886][ T12] veth1_macvtap: left promiscuous mode [ 619.785581][ T12] veth0_macvtap: left promiscuous mode [ 619.801637][ T12] veth1_vlan: left promiscuous mode [ 619.813895][ T12] veth0_vlan: left promiscuous mode [ 620.733427][ T12] team0 (unregistering): Port device team_slave_1 removed [ 620.784952][ T12] team0 (unregistering): Port device team_slave_0 removed [ 621.441971][T13987] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 622.609151][T13987] veth0_vlan: entered promiscuous mode [ 622.635899][T13987] veth1_vlan: entered promiscuous mode [ 622.802077][T13987] veth0_macvtap: entered promiscuous mode [ 622.843669][T13987] veth1_macvtap: entered promiscuous mode [ 622.905591][T13987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 622.919911][T13987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 622.931422][T13987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 622.945225][T13987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 622.965415][T13987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 622.998925][T13987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 623.026251][T13987] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 623.066068][T13987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 623.088946][T13987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 623.100723][T13987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 623.119052][T13987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 623.138711][T13987] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 623.164235][T13987] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 623.180597][T13987] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 623.202871][T13987] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 623.211966][T13987] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 624.096430][ T63] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 624.146633][ T63] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 624.339332][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 624.352714][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 624.551614][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.558200][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 624.582807][ T12] sl0: compressed packet ignored [ 625.169358][T14218] FAULT_INJECTION: forcing a failure. [ 625.169358][T14218] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 625.229548][T14218] CPU: 0 UID: 0 PID: 14218 Comm: syz.4.2003 Tainted: G U 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 625.229592][T14218] Tainted: [U]=USER [ 625.229601][T14218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 625.229615][T14218] Call Trace: [ 625.229624][T14218] [ 625.229634][T14218] dump_stack_lvl+0x16c/0x1f0 [ 625.229672][T14218] should_fail_ex+0x512/0x640 [ 625.229710][T14218] _copy_from_user+0x2e/0xd0 [ 625.229747][T14218] copy_msghdr_from_user+0x98/0x160 [ 625.229778][T14218] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 625.229813][T14218] ? __pfx__kstrtoull+0x10/0x10 [ 625.229849][T14218] ___sys_sendmsg+0xfe/0x1d0 [ 625.229879][T14218] ? __pfx____sys_sendmsg+0x10/0x10 [ 625.229926][T14218] ? find_held_lock+0x2b/0x80 [ 625.229973][T14218] __sys_sendmmsg+0x200/0x420 [ 625.230006][T14218] ? __pfx___sys_sendmmsg+0x10/0x10 [ 625.230054][T14218] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 625.230104][T14218] ? fput+0x70/0xf0 [ 625.230132][T14218] ? ksys_write+0x1b9/0x240 [ 625.230156][T14218] ? __pfx_ksys_write+0x10/0x10 [ 625.230178][T14218] ? rcu_is_watching+0x12/0xc0 [ 625.230208][T14218] __x64_sys_sendmmsg+0x9c/0x100 [ 625.230236][T14218] ? lockdep_hardirqs_on+0x7c/0x110 [ 625.230267][T14218] do_syscall_64+0xcd/0x230 [ 625.230304][T14218] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 625.230329][T14218] RIP: 0033:0x7f85a8d8e969 [ 625.230349][T14218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 625.230373][T14218] RSP: 002b:00007f85a9b60038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 625.230397][T14218] RAX: ffffffffffffffda RBX: 00007f85a8fb5fa0 RCX: 00007f85a8d8e969 [ 625.230415][T14218] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 625.230430][T14218] RBP: 00007f85a9b60090 R08: 0000000000000000 R09: 0000000000000000 [ 625.230446][T14218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 625.230461][T14218] R13: 0000000000000000 R14: 00007f85a8fb5fa0 R15: 00007ffd86bb8688 [ 625.230499][T14218] [ 625.785547][T14230] netlink: 350 bytes leftover after parsing attributes in process `syz.3.2004'. [ 626.225266][T14244] warning: `syz.3.2009' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 626.256452][T14241] netlink: set zone limit has 8 unknown bytes [ 627.570611][T14269] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2013'. [ 628.165579][T14277] FAULT_INJECTION: forcing a failure. [ 628.165579][T14277] name failslab, interval 1, probability 0, space 0, times 0 [ 628.249809][T14277] CPU: 0 UID: 0 PID: 14277 Comm: syz.3.2015 Tainted: G U 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 628.249855][T14277] Tainted: [U]=USER [ 628.249865][T14277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 628.249880][T14277] Call Trace: [ 628.249891][T14277] [ 628.249902][T14277] dump_stack_lvl+0x16c/0x1f0 [ 628.249943][T14277] should_fail_ex+0x512/0x640 [ 628.249978][T14277] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 628.250012][T14277] should_failslab+0xc2/0x120 [ 628.250044][T14277] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 628.250075][T14277] ? alloc_empty_file+0x55/0x1e0 [ 628.250114][T14277] alloc_empty_file+0x55/0x1e0 [ 628.250148][T14277] path_openat+0xe0/0x2d40 [ 628.250172][T14277] ? __x64_sys_openat+0x174/0x210 [ 628.250205][T14277] ? do_syscall_64+0xcd/0x230 [ 628.250238][T14277] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 628.250278][T14277] ? __pfx_path_openat+0x10/0x10 [ 628.250314][T14277] do_filp_open+0x20b/0x470 [ 628.250341][T14277] ? __pfx_do_filp_open+0x10/0x10 [ 628.250395][T14277] ? alloc_fd+0x471/0x7d0 [ 628.250429][T14277] do_sys_openat2+0x11b/0x1d0 [ 628.250463][T14277] ? __pfx_do_sys_openat2+0x10/0x10 [ 628.250511][T14277] __x64_sys_openat+0x174/0x210 [ 628.250551][T14277] ? __pfx___x64_sys_openat+0x10/0x10 [ 628.250589][T14277] ? rcu_is_watching+0x12/0xc0 [ 628.250625][T14277] do_syscall_64+0xcd/0x230 [ 628.250666][T14277] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 628.250692][T14277] RIP: 0033:0x7ff8b938e969 [ 628.250714][T14277] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 628.250740][T14277] RSP: 002b:00007ff8ba1af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 628.250765][T14277] RAX: ffffffffffffffda RBX: 00007ff8b95b6080 RCX: 00007ff8b938e969 [ 628.250784][T14277] RDX: 0000000000109041 RSI: 0000200000007380 RDI: ffffffffffffff9c [ 628.250801][T14277] RBP: 00007ff8b9410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 628.250818][T14277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 628.250833][T14277] R13: 0000000000000000 R14: 00007ff8b95b6080 R15: 00007fff76fef598 [ 628.250869][T14277] [ 628.540824][T14284] FAULT_INJECTION: forcing a failure. [ 628.540824][T14284] name failslab, interval 1, probability 0, space 0, times 0 [ 628.554388][T14284] CPU: 0 UID: 0 PID: 14284 Comm: syz.2.2017 Tainted: G U 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 628.554424][T14284] Tainted: [U]=USER [ 628.554432][T14284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 628.554445][T14284] Call Trace: [ 628.554453][T14284] [ 628.554462][T14284] dump_stack_lvl+0x16c/0x1f0 [ 628.554496][T14284] should_fail_ex+0x512/0x640 [ 628.554540][T14284] ? fs_reclaim_acquire+0xae/0x150 [ 628.554580][T14284] should_failslab+0xc2/0x120 [ 628.554610][T14284] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 628.554640][T14284] ? security_inode_alloc+0x3b/0x2b0 [ 628.554672][T14284] security_inode_alloc+0x3b/0x2b0 [ 628.554701][T14284] inode_init_always_gfp+0xce4/0x1030 [ 628.554732][T14284] alloc_inode+0x86/0x240 [ 628.554761][T14284] iget_locked+0x2e4/0x830 [ 628.554794][T14284] ? __pfx_iget_locked+0x10/0x10 [ 628.554826][T14284] ? find_held_lock+0x2b/0x80 [ 628.554850][T14284] ? kernfs_root+0xee/0x2a0 [ 628.554881][T14284] kernfs_get_inode+0x48/0x460 [ 628.554918][T14284] kernfs_iop_lookup+0x1a7/0x2d0 [ 628.554945][T14284] ? __pfx_kernfs_iop_lookup+0x10/0x10 [ 628.554970][T14284] lookup_open.isra.0+0x4d7/0x1580 [ 628.555014][T14284] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 628.555067][T14284] ? __pfx_down_write+0x10/0x10 [ 628.555089][T14284] ? mnt_get_write_access+0x20c/0x300 [ 628.555127][T14284] path_openat+0x905/0x2d40 [ 628.555165][T14284] ? __pfx_path_openat+0x10/0x10 [ 628.555201][T14284] do_filp_open+0x20b/0x470 [ 628.555227][T14284] ? __pfx_do_filp_open+0x10/0x10 [ 628.555279][T14284] ? alloc_fd+0x471/0x7d0 [ 628.555313][T14284] do_sys_openat2+0x11b/0x1d0 [ 628.555344][T14284] ? __pfx_do_sys_openat2+0x10/0x10 [ 628.555377][T14284] ? find_held_lock+0x2b/0x80 [ 628.555411][T14284] __x64_sys_openat+0x174/0x210 [ 628.555443][T14284] ? __pfx___x64_sys_openat+0x10/0x10 [ 628.555477][T14284] ? rcu_is_watching+0x12/0xc0 [ 628.555536][T14284] do_syscall_64+0xcd/0x230 [ 628.555573][T14284] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 628.555597][T14284] RIP: 0033:0x7f6ebd38e969 [ 628.555617][T14284] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 628.555641][T14284] RSP: 002b:00007f6ebe263038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 628.555665][T14284] RAX: ffffffffffffffda RBX: 00007f6ebd5b6160 RCX: 00007f6ebd38e969 [ 628.555682][T14284] RDX: 0000000000183841 RSI: 0000200000000280 RDI: ffffffffffffff9c [ 628.555698][T14284] RBP: 00007f6ebd410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 628.555713][T14284] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 628.555728][T14284] R13: 0000000000000000 R14: 00007f6ebd5b6160 R15: 00007ffe3306ba28 [ 628.555763][T14284] [ 629.864440][T14302] FAULT_INJECTION: forcing a failure. [ 629.864440][T14302] name failslab, interval 1, probability 0, space 0, times 0 [ 629.938208][T14302] CPU: 0 UID: 0 PID: 14302 Comm: syz.1.2019 Tainted: G U 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 629.938256][T14302] Tainted: [U]=USER [ 629.938266][T14302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 629.938282][T14302] Call Trace: [ 629.938292][T14302] [ 629.938313][T14302] dump_stack_lvl+0x16c/0x1f0 [ 629.938358][T14302] should_fail_ex+0x512/0x640 [ 629.938393][T14302] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 629.938425][T14302] should_failslab+0xc2/0x120 [ 629.938459][T14302] __kmalloc_cache_noprof+0x6a/0x3e0 [ 629.938486][T14302] ? lockdep_init_map_type+0x5c/0x280 [ 629.938519][T14302] ? dummy_hrtimer_create+0x45/0x170 [ 629.938550][T14302] dummy_hrtimer_create+0x45/0x170 [ 629.938577][T14302] ? __pfx_dummy_hrtimer_create+0x10/0x10 [ 629.938602][T14302] dummy_pcm_open+0xd4/0x5b0 [ 629.938643][T14302] snd_pcm_open_substream+0xa60/0x17f0 [ 629.938673][T14302] ? __pfx_snd_pcm_open_substream+0x10/0x10 [ 629.938704][T14302] ? rcu_is_watching+0x12/0xc0 [ 629.938735][T14302] snd_pcm_open+0x29e/0x730 [ 629.938766][T14302] ? __pfx_snd_pcm_open+0x10/0x10 [ 629.938799][T14302] ? __pfx_default_wake_function+0x10/0x10 [ 629.938837][T14302] ? __pfx_snd_pcm_playback_open+0x10/0x10 [ 629.938865][T14302] snd_pcm_playback_open+0x86/0xe0 [ 629.938892][T14302] snd_open+0x1fe/0x450 [ 629.938925][T14302] ? __pfx_snd_open+0x10/0x10 [ 629.938956][T14302] chrdev_open+0x231/0x6a0 [ 629.938989][T14302] ? __pfx_apparmor_file_open+0x10/0x10 [ 629.939025][T14302] ? __pfx_chrdev_open+0x10/0x10 [ 629.939058][T14302] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 629.939102][T14302] do_dentry_open+0x741/0x1c10 [ 629.939131][T14302] ? __pfx_chrdev_open+0x10/0x10 [ 629.939168][T14302] vfs_open+0x82/0x3f0 [ 629.939205][T14302] path_openat+0x1e5e/0x2d40 [ 629.939246][T14302] ? __pfx_path_openat+0x10/0x10 [ 629.939283][T14302] do_filp_open+0x20b/0x470 [ 629.939320][T14302] ? __pfx_do_filp_open+0x10/0x10 [ 629.939377][T14302] ? alloc_fd+0x471/0x7d0 [ 629.939414][T14302] do_sys_openat2+0x11b/0x1d0 [ 629.939448][T14302] ? __pfx_do_sys_openat2+0x10/0x10 [ 629.939497][T14302] __x64_sys_openat+0x174/0x210 [ 629.939532][T14302] ? __pfx___x64_sys_openat+0x10/0x10 [ 629.939569][T14302] ? rcu_is_watching+0x12/0xc0 [ 629.939604][T14302] do_syscall_64+0xcd/0x230 [ 629.939644][T14302] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 629.939671][T14302] RIP: 0033:0x7f813278e969 [ 629.939693][T14302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 629.939718][T14302] RSP: 002b:00007f81305f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 629.939743][T14302] RAX: ffffffffffffffda RBX: 00007f81329b5fa0 RCX: 00007f813278e969 [ 629.939761][T14302] RDX: 000000000016b042 RSI: 0000200000005480 RDI: ffffffffffffff9c [ 629.939780][T14302] RBP: 00007f8132810ab1 R08: 0000000000000000 R09: 0000000000000000 [ 629.939797][T14302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 629.939813][T14302] R13: 0000000000000000 R14: 00007f81329b5fa0 R15: 00007ffe7b6c8b78 [ 629.939850][T14302] [ 629.941464][T14306] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2019'. [ 630.469504][T14310] FAULT_INJECTION: forcing a failure. [ 630.469504][T14310] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 630.512047][T14310] CPU: 0 UID: 0 PID: 14310 Comm: syz.4.2020 Tainted: G U 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 630.512089][T14310] Tainted: [U]=USER [ 630.512097][T14310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 630.512111][T14310] Call Trace: [ 630.512120][T14310] [ 630.512129][T14310] dump_stack_lvl+0x16c/0x1f0 [ 630.512169][T14310] should_fail_ex+0x512/0x640 [ 630.512205][T14310] _copy_to_user+0x32/0xd0 [ 630.512242][T14310] simple_read_from_buffer+0xcb/0x170 [ 630.512280][T14310] proc_fail_nth_read+0x197/0x270 [ 630.512313][T14310] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 630.512347][T14310] ? rw_verify_area+0xcf/0x680 [ 630.512377][T14310] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 630.512408][T14310] vfs_read+0x1de/0xc70 [ 630.512438][T14310] ? __pfx___mutex_lock+0x10/0x10 [ 630.512469][T14310] ? __pfx_vfs_read+0x10/0x10 [ 630.512509][T14310] ? __fget_files+0x20e/0x3c0 [ 630.512541][T14310] ksys_read+0x12a/0x240 [ 630.512562][T14310] ? __pfx_ksys_read+0x10/0x10 [ 630.512583][T14310] ? rcu_is_watching+0x12/0xc0 [ 630.512617][T14310] do_syscall_64+0xcd/0x230 [ 630.512654][T14310] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 630.512677][T14310] RIP: 0033:0x7f85a8d8d37c [ 630.512698][T14310] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 630.512721][T14310] RSP: 002b:00007f85a9b3f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 630.512745][T14310] RAX: ffffffffffffffda RBX: 00007f85a8fb6080 RCX: 00007f85a8d8d37c [ 630.512763][T14310] RDX: 000000000000000f RSI: 00007f85a9b3f0a0 RDI: 0000000000000006 [ 630.512778][T14310] RBP: 00007f85a9b3f090 R08: 0000000000000000 R09: 0000000000000000 [ 630.512794][T14310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 630.512809][T14310] R13: 0000000000000000 R14: 00007f85a8fb6080 R15: 00007ffd86bb8688 [ 630.512843][T14310] [ 631.855198][T14320] input: isc as /devices/virtual/input/input21 [ 634.390753][T14405] FAULT_INJECTION: forcing a failure. [ 634.390753][T14405] name failslab, interval 1, probability 0, space 0, times 0 [ 634.541309][T14405] CPU: 1 UID: 0 PID: 14405 Comm: syz.1.2032 Tainted: G U 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 634.541354][T14405] Tainted: [U]=USER [ 634.541363][T14405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 634.541381][T14405] Call Trace: [ 634.541390][T14405] [ 634.541400][T14405] dump_stack_lvl+0x16c/0x1f0 [ 634.541443][T14405] should_fail_ex+0x512/0x640 [ 634.541479][T14405] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 634.541514][T14405] should_failslab+0xc2/0x120 [ 634.541546][T14405] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 634.541573][T14405] ? __proc_create+0xc3/0x8c0 [ 634.541603][T14405] ? __proc_create+0x2ce/0x8c0 [ 634.541636][T14405] __proc_create+0x2ce/0x8c0 [ 634.541667][T14405] ? __pfx___proc_create+0x10/0x10 [ 634.541702][T14405] ? _raw_write_unlock+0x28/0x50 [ 634.541734][T14405] ? proc_register+0x314/0x5f0 [ 634.541767][T14405] proc_create_reg+0x7d/0x180 [ 634.541801][T14405] proc_create_seq_private+0x8e/0x1d0 [ 634.541842][T14405] ? __pfx_proc_create_seq_private+0x10/0x10 [ 634.541875][T14405] ? __pfx_nl_fib_input+0x10/0x10 [ 634.541916][T14405] ? __pfx_ip_rt_do_proc_init+0x10/0x10 [ 634.541950][T14405] ip_rt_do_proc_init+0xac/0x1b0 [ 634.541984][T14405] ops_init+0x1df/0x5f0 [ 634.542021][T14405] setup_net+0x21e/0x850 [ 634.542055][T14405] ? __pfx_setup_net+0x10/0x10 [ 634.542084][T14405] ? lockdep_init_map_type+0x5c/0x280 [ 634.542119][T14405] ? __pfx_down_read_killable+0x10/0x10 [ 634.542149][T14405] ? debug_mutex_init+0x37/0x70 [ 634.542179][T14405] copy_net_ns+0x2a6/0x5f0 [ 634.542217][T14405] create_new_namespaces+0x3ea/0xad0 [ 634.542256][T14405] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 634.542290][T14405] ksys_unshare+0x45b/0xa40 [ 634.542328][T14405] ? __pfx_ksys_unshare+0x10/0x10 [ 634.542359][T14405] ? xfd_validate_state+0x5d/0x180 [ 634.542388][T14405] ? rcu_is_watching+0x12/0xc0 [ 634.542422][T14405] __x64_sys_unshare+0x31/0x40 [ 634.542455][T14405] do_syscall_64+0xcd/0x230 [ 634.542496][T14405] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 634.542522][T14405] RIP: 0033:0x7f813278e969 [ 634.542544][T14405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 634.542570][T14405] RSP: 002b:00007f81305f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 634.542596][T14405] RAX: ffffffffffffffda RBX: 00007f81329b5fa0 RCX: 00007f813278e969 [ 634.542615][T14405] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 634.542631][T14405] RBP: 00007f8132810ab1 R08: 0000000000000000 R09: 0000000000000000 [ 634.542648][T14405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 634.542664][T14405] R13: 0000000000000000 R14: 00007f81329b5fa0 R15: 00007ffe7b6c8b78 [ 634.542702][T14405] [ 635.293902][T14423] FAULT_INJECTION: forcing a failure. [ 635.293902][T14423] name failslab, interval 1, probability 0, space 0, times 0 [ 635.307308][T14423] CPU: 1 UID: 0 PID: 14423 Comm: syz.4.2033 Tainted: G U 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 635.307352][T14423] Tainted: [U]=USER [ 635.307362][T14423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 635.307378][T14423] Call Trace: [ 635.307388][T14423] [ 635.307398][T14423] dump_stack_lvl+0x16c/0x1f0 [ 635.307440][T14423] should_fail_ex+0x512/0x640 [ 635.307475][T14423] ? __kmalloc_noprof+0xbf/0x510 [ 635.307508][T14423] ? memcg_list_lru_alloc+0x4e9/0x740 [ 635.307539][T14423] should_failslab+0xc2/0x120 [ 635.307572][T14423] __kmalloc_noprof+0xd2/0x510 [ 635.307598][T14423] ? __lock_acquire+0x5ca/0x1ba0 [ 635.307639][T14423] memcg_list_lru_alloc+0x4e9/0x740 [ 635.307682][T14423] ? __pfx_memcg_list_lru_alloc+0x10/0x10 [ 635.307723][T14423] ? get_mem_cgroup_from_objcg+0xd3/0x330 [ 635.307757][T14423] __memcg_slab_post_alloc_hook+0x131/0x940 [ 635.307796][T14423] ? kasan_save_track+0x14/0x30 [ 635.307829][T14423] kmem_cache_alloc_lru_noprof+0x30f/0x3b0 [ 635.307860][T14423] ? __d_alloc+0x31/0xaa0 [ 635.307894][T14423] __d_alloc+0x31/0xaa0 [ 635.307925][T14423] d_alloc+0x4a/0x1e0 [ 635.307956][T14423] d_alloc_parallel+0xe3/0x12e0 [ 635.307997][T14423] ? rcu_is_watching+0x12/0xc0 [ 635.308022][T14423] ? trace_mm_page_alloc+0x11f/0x1a0 [ 635.308057][T14423] ? widen_string+0xdc/0x2d0 [ 635.308083][T14423] ? put_dec_trunc8+0x28b/0x370 [ 635.308119][T14423] ? __pfx_d_alloc_parallel+0x10/0x10 [ 635.308159][T14423] ? lockdep_init_map_type+0x5c/0x280 [ 635.308195][T14423] ? lockdep_init_map_type+0x5c/0x280 [ 635.308234][T14423] __lookup_slow+0x193/0x460 [ 635.308268][T14423] ? __pfx___lookup_slow+0x10/0x10 [ 635.308305][T14423] ? __bpf_trace_mm_compaction_end+0x160/0x1e0 [ 635.308351][T14423] ? __bpf_trace_mm_compaction_end+0x160/0x1e0 [ 635.308390][T14423] ? d_lookup+0xe7/0x190 [ 635.308430][T14423] lookup_one_unlocked+0x140/0x160 [ 635.308462][T14423] ? __pfx_lookup_one_unlocked+0x10/0x10 [ 635.308507][T14423] lookup_positive_unlocked+0x2b/0xd0 [ 635.308543][T14423] debugfs_lookup+0x9a/0x110 [ 635.308577][T14423] kvm_dev_ioctl+0xf89/0x1ad0 [ 635.308614][T14423] ? find_held_lock+0x2b/0x80 [ 635.308640][T14423] ? hook_file_ioctl_common+0x145/0x410 [ 635.308671][T14423] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 635.308715][T14423] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 635.308747][T14423] __x64_sys_ioctl+0x193/0x200 [ 635.308783][T14423] do_syscall_64+0xcd/0x230 [ 635.308822][T14423] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 635.308847][T14423] RIP: 0033:0x7f85a8d8e969 [ 635.308869][T14423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 635.308895][T14423] RSP: 002b:00007f85a9b3f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 635.308920][T14423] RAX: ffffffffffffffda RBX: 00007f85a8fb6080 RCX: 00007f85a8d8e969 [ 635.308937][T14423] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000002 [ 635.308953][T14423] RBP: 00007f85a8e10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 635.308967][T14423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 635.308983][T14423] R13: 0000000000000000 R14: 00007f85a8fb6080 R15: 00007ffd86bb8688 [ 635.309018][T14423] [ 638.970876][T14452] input: isc as /devices/virtual/input/input22 [ 641.155031][T14514] FAULT_INJECTION: forcing a failure. [ 641.155031][T14514] name failslab, interval 1, probability 0, space 0, times 0 [ 641.197177][T14514] CPU: 1 UID: 0 PID: 14514 Comm: syz.1.2045 Tainted: G U 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 641.197223][T14514] Tainted: [U]=USER [ 641.197233][T14514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 641.197250][T14514] Call Trace: [ 641.197259][T14514] [ 641.197270][T14514] dump_stack_lvl+0x16c/0x1f0 [ 641.197313][T14514] should_fail_ex+0x512/0x640 [ 641.197348][T14514] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 641.197382][T14514] should_failslab+0xc2/0x120 [ 641.197413][T14514] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 641.197438][T14514] ? __proc_create+0xc3/0x8c0 [ 641.197461][T14514] ? __proc_create+0x2ce/0x8c0 [ 641.197490][T14514] __proc_create+0x2ce/0x8c0 [ 641.197517][T14514] ? __pfx___proc_create+0x10/0x10 [ 641.197558][T14514] proc_mkdir+0x81/0x170 [ 641.197583][T14514] ? __pfx_proc_mkdir+0x10/0x10 [ 641.197611][T14514] ? cache_register_net+0x137/0x5e0 [ 641.197646][T14514] cache_register_net+0x18f/0x5e0 [ 641.197677][T14514] nfsd_export_init+0xb6/0x250 [ 641.197703][T14514] ? __pfx_nfsd_net_init+0x10/0x10 [ 641.197726][T14514] nfsd_net_init+0x33/0x3d0 [ 641.197751][T14514] ? __pfx_nfsd_net_init+0x10/0x10 [ 641.197775][T14514] ops_init+0x1df/0x5f0 [ 641.197812][T14514] setup_net+0x21e/0x850 [ 641.197847][T14514] ? __pfx_setup_net+0x10/0x10 [ 641.197875][T14514] ? lockdep_init_map_type+0x5c/0x280 [ 641.197906][T14514] ? __pfx_down_read_killable+0x10/0x10 [ 641.197934][T14514] ? debug_mutex_init+0x37/0x70 [ 641.197960][T14514] copy_net_ns+0x2a6/0x5f0 [ 641.197993][T14514] create_new_namespaces+0x3ea/0xad0 [ 641.198030][T14514] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 641.198061][T14514] ksys_unshare+0x45b/0xa40 [ 641.198095][T14514] ? __pfx_ksys_unshare+0x10/0x10 [ 641.198126][T14514] ? xfd_validate_state+0x5d/0x180 [ 641.198159][T14514] ? rcu_is_watching+0x12/0xc0 [ 641.198200][T14514] __x64_sys_unshare+0x31/0x40 [ 641.198231][T14514] do_syscall_64+0xcd/0x230 [ 641.198264][T14514] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 641.198285][T14514] RIP: 0033:0x7f813278e969 [ 641.198304][T14514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 641.198327][T14514] RSP: 002b:00007f81305f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 641.198350][T14514] RAX: ffffffffffffffda RBX: 00007f81329b5fa0 RCX: 00007f813278e969 [ 641.198363][T14514] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 641.198376][T14514] RBP: 00007f8132810ab1 R08: 0000000000000000 R09: 0000000000000000 [ 641.198391][T14514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 641.198407][T14514] R13: 0000000000000000 R14: 00007f81329b5fa0 R15: 00007ffe7b6c8b78 [ 641.198442][T14514] [ 641.622562][T14496] kexec: Could not allocate control_code_buffer [ 642.101791][T14530] FAULT_INJECTION: forcing a failure. [ 642.101791][T14530] name failslab, interval 1, probability 0, space 0, times 0 [ 642.130713][T14530] CPU: 0 UID: 0 PID: 14530 Comm: syz.1.2050 Tainted: G U 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 642.130759][T14530] Tainted: [U]=USER [ 642.130768][T14530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 642.130782][T14530] Call Trace: [ 642.130791][T14530] [ 642.130801][T14530] dump_stack_lvl+0x16c/0x1f0 [ 642.130842][T14530] should_fail_ex+0x512/0x640 [ 642.130876][T14530] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 642.130911][T14530] should_failslab+0xc2/0x120 [ 642.130944][T14530] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 642.130973][T14530] ? __proc_create+0xc3/0x8c0 [ 642.130998][T14530] ? __proc_create+0x2ce/0x8c0 [ 642.131032][T14530] __proc_create+0x2ce/0x8c0 [ 642.131063][T14530] ? __pfx___proc_create+0x10/0x10 [ 642.131098][T14530] ? _raw_write_unlock+0x28/0x50 [ 642.131127][T14530] ? proc_register+0x314/0x5f0 [ 642.131156][T14530] proc_create_reg+0x7d/0x180 [ 642.131187][T14530] proc_create_net_data+0x8e/0x1b0 [ 642.131220][T14530] ? __pfx_proc_create_net_data+0x10/0x10 [ 642.131264][T14530] nfs_fs_proc_net_init+0x141/0x1e0 [ 642.131305][T14530] nfs_net_init+0x130/0x300 [ 642.131349][T14530] ? __pfx_nfs_net_init+0x10/0x10 [ 642.131385][T14530] ops_init+0x1df/0x5f0 [ 642.131423][T14530] setup_net+0x21e/0x850 [ 642.131459][T14530] ? __pfx_setup_net+0x10/0x10 [ 642.131489][T14530] ? lockdep_init_map_type+0x5c/0x280 [ 642.131524][T14530] ? __pfx_down_read_killable+0x10/0x10 [ 642.131555][T14530] ? debug_mutex_init+0x37/0x70 [ 642.131585][T14530] copy_net_ns+0x2a6/0x5f0 [ 642.131624][T14530] create_new_namespaces+0x3ea/0xad0 [ 642.131661][T14530] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 642.131694][T14530] ksys_unshare+0x45b/0xa40 [ 642.131729][T14530] ? __pfx_ksys_unshare+0x10/0x10 [ 642.131760][T14530] ? xfd_validate_state+0x5d/0x180 [ 642.131788][T14530] ? rcu_is_watching+0x12/0xc0 [ 642.131823][T14530] __x64_sys_unshare+0x31/0x40 [ 642.131856][T14530] do_syscall_64+0xcd/0x230 [ 642.131895][T14530] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 642.131922][T14530] RIP: 0033:0x7f813278e969 [ 642.131945][T14530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 642.131971][T14530] RSP: 002b:00007f81305f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 642.131996][T14530] RAX: ffffffffffffffda RBX: 00007f81329b5fa0 RCX: 00007f813278e969 [ 642.132015][T14530] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 642.132033][T14530] RBP: 00007f8132810ab1 R08: 0000000000000000 R09: 0000000000000000 [ 642.132050][T14530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 642.132067][T14530] R13: 0000000000000000 R14: 00007f81329b5fa0 R15: 00007ffe7b6c8b78 [ 642.132102][T14530] [ 642.247805][T14528] FAULT_INJECTION: forcing a failure. [ 642.247805][T14528] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 642.427323][T14530] ------------[ cut here ]------------ [ 642.432865][T14530] remove_proc_entry: removing non-empty directory 'net/rpc', leaking at least 'nfs' [ 642.447309][T14528] CPU: 0 UID: 0 PID: 14528 Comm: syz.3.2049 Tainted: G U 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 642.447336][T14528] Tainted: [U]=USER [ 642.447341][T14528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 642.447349][T14528] Call Trace: [ 642.447355][T14528] [ 642.447360][T14528] dump_stack_lvl+0x16c/0x1f0 [ 642.447386][T14528] should_fail_ex+0x512/0x640 [ 642.447410][T14528] _copy_from_user+0x2e/0xd0 [ 642.447433][T14528] copy_msghdr_from_user+0x98/0x160 [ 642.447451][T14528] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 642.447471][T14528] ? __lock_acquire+0x5ca/0x1ba0 [ 642.447493][T14528] ___sys_recvmsg+0xdb/0x1a0 [ 642.447510][T14528] ? __pfx____sys_recvmsg+0x10/0x10 [ 642.447528][T14528] ? find_held_lock+0x2b/0x80 [ 642.447553][T14528] do_recvmmsg+0x2fe/0x740 [ 642.447573][T14528] ? __pfx_do_recvmmsg+0x10/0x10 [ 642.447593][T14528] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 642.447619][T14528] ? __fget_files+0x20e/0x3c0 [ 642.447637][T14528] __x64_sys_recvmmsg+0x22a/0x280 [ 642.447655][T14528] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 642.447672][T14528] ? rcu_is_watching+0x12/0xc0 [ 642.447690][T14528] do_syscall_64+0xcd/0x230 [ 642.447712][T14528] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 642.447727][T14528] RIP: 0033:0x7ff8b938e969 [ 642.447739][T14528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 642.447753][T14528] RSP: 002b:00007ff8ba1d0038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 642.447766][T14528] RAX: ffffffffffffffda RBX: 00007ff8b95b5fa0 RCX: 00007ff8b938e969 [ 642.447776][T14528] RDX: 0000000000010003 RSI: 0000000000000000 RDI: 0000000000000003 [ 642.447785][T14528] RBP: 00007ff8ba1d0090 R08: 0000000000000000 R09: 0000000000000000 [ 642.447793][T14528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 642.447801][T14528] R13: 0000000000000000 R14: 00007ff8b95b5fa0 R15: 00007fff76fef598 [ 642.447819][T14528] [ 642.667841][T14530] WARNING: CPU: 0 PID: 14530 at fs/proc/generic.c:727 remove_proc_entry+0x45e/0x530 [ 642.677374][T14530] Modules linked in: [ 642.681654][T14530] CPU: 0 UID: 0 PID: 14530 Comm: syz.1.2050 Tainted: G U 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 642.695882][T14530] Tainted: [U]=USER [ 642.700116][T14530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 642.710510][T14530] RIP: 0010:remove_proc_entry+0x45e/0x530 [ 642.716281][T14530] Code: 3c 02 00 0f 85 85 00 00 00 48 8b 93 d8 00 00 00 4d 89 f0 4c 89 e9 48 c7 c6 80 71 a2 8b 48 c7 c7 a0 70 a2 8b e8 03 f1 1f ff 90 <0f> 0b 90 90 e9 5f fe ff ff e8 04 0e 60 ff 90 48 b8 00 00 00 00 00 [ 642.736313][T14530] RSP: 0018:ffffc9000499fb70 EFLAGS: 00010282 [ 642.744288][T14530] RAX: 0000000000000000 RBX: ffff8880302a0500 RCX: ffffc9000bdc9000 [ 642.752366][T14530] RDX: 0000000000080000 RSI: ffffffff817a94b5 RDI: 0000000000000001 [ 642.760405][T14530] RBP: ffff888034b03340 R08: 0000000000000001 R09: 0000000000000000 [ 642.768688][T14530] R10: 0000000000000001 R11: fffffffffffdf228 R12: ffff888034b03280 [ 642.776697][T14530] R13: ffff888034b03364 R14: ffff88805f2e2c24 R15: dffffc0000000000 [ 642.784726][T14530] FS: 00007f81305f66c0(0000) GS:ffff8881249ea000(0000) knlGS:0000000000000000 [ 642.794188][T14530] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 642.801191][T14530] CR2: 0000200000000080 CR3: 000000003216e000 CR4: 00000000003526f0 [ 642.809253][T14530] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 642.817283][T14530] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 642.825283][T14530] Call Trace: [ 642.828644][T14530] [ 642.831876][T14530] ? __pfx_remove_proc_entry+0x10/0x10 [ 642.837398][T14530] ? kfree+0x2b6/0x4d0 [ 642.841487][T14530] ? cache_destroy_net+0x31/0x50 [ 642.846461][T14530] ? sunrpc_exit_net+0x37/0x90 [ 642.851325][T14530] sunrpc_exit_net+0x46/0x90 [ 642.855960][T14530] ? __pfx_sunrpc_exit_net+0x10/0x10 [ 642.861323][T14530] ops_exit_list+0xb3/0x180 [ 642.865865][T14530] setup_net+0x4e8/0x850 [ 642.870265][T14530] ? __pfx_setup_net+0x10/0x10 [ 642.875074][T14530] ? lockdep_init_map_type+0x5c/0x280 [ 642.880518][T14530] ? __pfx_down_read_killable+0x10/0x10 [ 642.886101][T14530] ? debug_mutex_init+0x37/0x70 [ 642.891102][T14530] copy_net_ns+0x2a6/0x5f0 [ 642.895941][T14530] create_new_namespaces+0x3ea/0xad0 [ 642.901672][T14530] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 642.907401][T14530] ksys_unshare+0x45b/0xa40 [ 642.911945][T14530] ? __pfx_ksys_unshare+0x10/0x10 [ 642.917099][T14530] ? xfd_validate_state+0x5d/0x180 [ 642.922251][T14530] ? rcu_is_watching+0x12/0xc0 [ 642.927108][T14530] __x64_sys_unshare+0x31/0x40 [ 642.931898][T14530] do_syscall_64+0xcd/0x230 [ 642.936602][T14530] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 642.942529][T14530] RIP: 0033:0x7f813278e969 [ 642.946995][T14530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 642.967136][T14530] RSP: 002b:00007f81305f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 642.975594][T14530] RAX: ffffffffffffffda RBX: 00007f81329b5fa0 RCX: 00007f813278e969 [ 642.983685][T14530] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 642.991699][T14530] RBP: 00007f8132810ab1 R08: 0000000000000000 R09: 0000000000000000 [ 643.000054][T14530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 643.008419][T14530] R13: 0000000000000000 R14: 00007f81329b5fa0 R15: 00007ffe7b6c8b78 [ 643.016756][T14530] [ 643.019836][T14530] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 643.027143][T14530] CPU: 0 UID: 0 PID: 14530 Comm: syz.1.2050 Tainted: G U 6.15.0-rc6-syzkaller-00085-gc94d59a126cb #0 PREEMPT(full) [ 643.040803][T14530] Tainted: [U]=USER [ 643.044598][T14530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 643.054656][T14530] Call Trace: [ 643.057936][T14530] [ 643.060860][T14530] dump_stack_lvl+0x3d/0x1f0 [ 643.065472][T14530] panic+0x71c/0x800 [ 643.069390][T14530] ? __pfx_panic+0x10/0x10 [ 643.073806][T14530] ? show_trace_log_lvl+0x29b/0x3e0 [ 643.079033][T14530] ? remove_proc_entry+0x45e/0x530 [ 643.084182][T14530] check_panic_on_warn+0xab/0xb0 [ 643.089157][T14530] __warn+0xf6/0x3c0 [ 643.093057][T14530] ? preempt_schedule_notrace+0x62/0xe0 [ 643.098610][T14530] ? remove_proc_entry+0x45e/0x530 [ 643.103724][T14530] report_bug+0x3c3/0x580 [ 643.108059][T14530] ? remove_proc_entry+0x45e/0x530 [ 643.113178][T14530] handle_bug+0x184/0x210 [ 643.117520][T14530] exc_invalid_op+0x17/0x50 [ 643.122029][T14530] asm_exc_invalid_op+0x1a/0x20 [ 643.126897][T14530] RIP: 0010:remove_proc_entry+0x45e/0x530 [ 643.132630][T14530] Code: 3c 02 00 0f 85 85 00 00 00 48 8b 93 d8 00 00 00 4d 89 f0 4c 89 e9 48 c7 c6 80 71 a2 8b 48 c7 c7 a0 70 a2 8b e8 03 f1 1f ff 90 <0f> 0b 90 90 e9 5f fe ff ff e8 04 0e 60 ff 90 48 b8 00 00 00 00 00 [ 643.152258][T14530] RSP: 0018:ffffc9000499fb70 EFLAGS: 00010282 [ 643.158326][T14530] RAX: 0000000000000000 RBX: ffff8880302a0500 RCX: ffffc9000bdc9000 [ 643.166293][T14530] RDX: 0000000000080000 RSI: ffffffff817a94b5 RDI: 0000000000000001 [ 643.174264][T14530] RBP: ffff888034b03340 R08: 0000000000000001 R09: 0000000000000000 [ 643.182246][T14530] R10: 0000000000000001 R11: fffffffffffdf228 R12: ffff888034b03280 [ 643.190212][T14530] R13: ffff888034b03364 R14: ffff88805f2e2c24 R15: dffffc0000000000 [ 643.198189][T14530] ? __warn_printk+0x1a5/0x350 [ 643.202966][T14530] ? __pfx_remove_proc_entry+0x10/0x10 [ 643.208428][T14530] ? kfree+0x2b6/0x4d0 [ 643.212506][T14530] ? cache_destroy_net+0x31/0x50 [ 643.217443][T14530] ? sunrpc_exit_net+0x37/0x90 [ 643.222211][T14530] sunrpc_exit_net+0x46/0x90 [ 643.226799][T14530] ? __pfx_sunrpc_exit_net+0x10/0x10 [ 643.232097][T14530] ops_exit_list+0xb3/0x180 [ 643.236601][T14530] setup_net+0x4e8/0x850 [ 643.240841][T14530] ? __pfx_setup_net+0x10/0x10 [ 643.245596][T14530] ? lockdep_init_map_type+0x5c/0x280 [ 643.250966][T14530] ? __pfx_down_read_killable+0x10/0x10 [ 643.256506][T14530] ? debug_mutex_init+0x37/0x70 [ 643.261350][T14530] copy_net_ns+0x2a6/0x5f0 [ 643.265770][T14530] create_new_namespaces+0x3ea/0xad0 [ 643.271069][T14530] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 643.276698][T14530] ksys_unshare+0x45b/0xa40 [ 643.281197][T14530] ? __pfx_ksys_unshare+0x10/0x10 [ 643.286213][T14530] ? xfd_validate_state+0x5d/0x180 [ 643.291346][T14530] ? rcu_is_watching+0x12/0xc0 [ 643.296105][T14530] __x64_sys_unshare+0x31/0x40 [ 643.300866][T14530] do_syscall_64+0xcd/0x230 [ 643.305370][T14530] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 643.311256][T14530] RIP: 0033:0x7f813278e969 [ 643.315658][T14530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 643.335303][T14530] RSP: 002b:00007f81305f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 643.343724][T14530] RAX: ffffffffffffffda RBX: 00007f81329b5fa0 RCX: 00007f813278e969 [ 643.351698][T14530] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 643.359663][T14530] RBP: 00007f8132810ab1 R08: 0000000000000000 R09: 0000000000000000 [ 643.367630][T14530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 643.375598][T14530] R13: 0000000000000000 R14: 00007f81329b5fa0 R15: 00007ffe7b6c8b78 [ 643.383572][T14530] [ 643.386726][T14530] Kernel Offset: disabled [ 643.391052][T14530] Rebooting in 86400 seconds..