last executing test programs: 7.258310557s ago: executing program 2 (id=657): mmap$auto(0x0, 0x2020009, 0x8000000003, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r0 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x40400, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(r0, 0x43403d05, 0x0) (async) close_range$auto(r0, r0, 0x300000) 7.143399572s ago: executing program 1 (id=658): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x100, 0x0) pread64$auto(r0, 0x0, 0x3, 0x5) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/nf_conntrack/parameters/hashsize\x00', 0xa102, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/conf/netdevsim0/accept_source_route\x00', 0xc0202, 0x0) r1 = openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) read$auto_rfkill_fops_core(r1, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xebe, r1, 0x8000) socketpair$auto(0x5, 0xbc15, 0x8000000000000000, 0x0) r2 = getpid() prctl$auto(0x7fff, 0x10000001, r2, 0x1, 0x10004) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz1\x00', 0x200002, 0x0) fcntl$auto_F_SETLK(r3, 0x6, 0x7) ptrace$auto_PTRACE_LISTEN(0x4208, r2, 0xd8a, 0x9) mlockall$auto(0x7) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) landlock_create_ruleset$auto(0x0, 0x9, 0x0) r4 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000280), 0x4a002, 0x0) writev$auto(r4, &(0x7f0000000300)={0x0, 0xd}, 0x100) r5 = getpid() ioctl$auto_UBI_IOCDET(0xffffffffffffffff, 0x40046f41, 0x0) unshare$auto(0x40000080) r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop2\x00', 0x24040, 0x0) ioctl$auto_BLKTRACESETUP(r6, 0xc0481273, &(0x7f0000000540)={"ef13a5421a8765cadfca437c4d1316833843180bb151ed36e8ce6cb454168d6c", 0x3ff, 0xc9, 0x1000, 0xd, 0x9}) ioctl$auto_BLKTRACESTART(r6, 0x1274, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x442302, 0x0) r7 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0) readv$auto(r7, 0x0, 0x3) socket(0x1, 0x1, 0x1) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYRES8=r4, @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030000020000060007000080000008000300000400000a000500000000", @ANYRES32=0x0, @ANYBLOB="08080200", @ANYRES64=r5, @ANYBLOB], 0x60}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) close_range$auto(0x2, 0x8, 0x200) 6.971719319s ago: executing program 0 (id=660): r0 = socket(0xa, 0x5, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) bpf$auto(0xfffffffd, &(0x7f0000000000)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x4, 0x6, 0xffffffffffffffff, @relative_id=0x2, 0x9}, 0xa3) sendto$auto(r0, 0x0, 0x401, 0xffff, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c) 6.849730133s ago: executing program 2 (id=661): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) readv$auto(0xffffffffffffffff, 0x0, 0x6) r0 = io_uring_setup$auto(0x1, 0x0) r1 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) execveat$auto(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) rename$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000340)='./file0\x00') rename$auto(&(0x7f0000000000)='./file0\x00', &(0x7f0000000180)='./file1\x00') getpid() ioctl$auto_UBI_IOCDET(r0, 0x40046f41, 0x0) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dsp1\x00', 0x14d401, 0x0) r3 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0) readv$auto(r3, &(0x7f0000000680)={&(0x7f0000000540), 0x40200}, 0x3) ioctl$auto_SNDCTL_DSP_SPEED(r2, 0xc0045002, 0x0) ppoll$auto(&(0x7f0000000000)={r3, 0x1, 0x151c}, 0xffffffff, 0x0, 0x0, 0x8) ioctl$auto_SNDCTL_DSP_SYNC(r2, 0x5001, 0xfffffffffffffffc) mmap$auto(0x0, 0x20009, 0x8001, 0x19, 0x401, 0x8400) mmap$auto(0x0, 0x6, 0x0, 0x40000000011, r2, 0x300001000000) personality$auto(0xfffefffc) ppoll$auto(0x0, 0x2f9638f3, &(0x7f0000000080)={0x66e2, 0x512d}, &(0x7f0000000100)={0x3ff}, 0x8) ioperm$auto(0x7, 0x5ad2, 0x8) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0) r4 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) pread64$auto(r4, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{W\xed>\xe7l\xcb\x90\\/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x400) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0x29, 0x3, 0x9) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x20000000062, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x80000002, 0x6]}, 0x0) mmap$auto(0xa, 0x20009, 0x8005, 0xebd, 0x405, 0x8000) 6.774945336s ago: executing program 0 (id=662): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/oss\x00', 0x88400, 0x0) read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000180)=""/210, 0xd2) r1 = socket(0x2c, 0x3, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r1) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/memory_hotplug/parameters/online_policy\x00', 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) pipe2$auto(0x0, 0x800) r3 = open(0x0, 0x153800, 0x84) close_range$auto(0x2, 0x8000, 0x0) r4 = socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000280)={'vcan0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r6, r5, 0x4, 0x1ff, r4, @relative_id=0x13, 0xe600}, 0xf) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r3, 0x0, 0x3}, 0xc) write$auto(0xca, &(0x7f0000000040)='\x04>\x01\x01\x00\x1a\x1e`d\xf8\x00'/92, 0x9) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x28102, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) timer_settime$auto(0x0, 0x3, &(0x7f0000000000)={{0x4d4, 0x2}, {0xfe, 0x7}}, 0x0) r7 = socket(0xa, 0x5, 0x84) sendto$auto(r7, 0x0, 0x401, 0x101, &(0x7f0000000000)=@generic={0xa, "000000000000fe8000"}, 0x1f) open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) mount$auto(&(0x7f0000000000), &(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='jfs\x00', 0x8000009, 0x0) read$auto(r2, 0x0, 0x800) write$auto(0x3, 0x0, 0xfffffdef) shmctl$auto_IPC_RMID(0x31, 0x0, &(0x7f0000000180)={{0x5, 0xee01, 0xffffffffffffffff, 0x5, 0x8, 0x3000000, 0xc344}, 0xfab, 0x1, 0x2, 0x401, @inferred, @raw=0x6, 0x6, 0x0, &(0x7f0000000040)="54be29051e1830b5fffbf86080190b66524ed4ab20d39180b45038842ae54ee40762c293e345da393011e99fdd2cacef314b2b8aecd02b64b5a03449263be4af32ac1d76283e3799864ab789a4a8867dff43666d5612a96bff6c396325c0033ed82f0c0f5b7972e735ab6ba0a3125a40a4d4655a4846a693d012215d1e", &(0x7f00000000c0)='C'}) 6.065546061s ago: executing program 0 (id=663): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r0, 0x5608, 0x7) keyctl$auto(0x3, 0xfffffffffffffffd, 0x0, 0xee01, 0xa00002) mmap$auto(0x0, 0x400008, 0x7, 0x9b72, 0x2, 0x8000) msgsnd$auto(0xfffffffc, 0x0, 0x1, 0x963) ioctl$auto(0xffffffffffffffff, 0x64c8, 0x1e2) r1 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(r1, r1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0) ioctl$auto_CEC_DQEVENT(r2, 0xc0506107, 0x0) ioctl$auto_CEC_DQEVENT(r2, 0xc0506107, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) write$auto(0xc8, 0x0, 0x40f6) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x80000000, 0x5f, 0x80000001, 0x7, 0x6d3f, 0x7, 0x800000002, 0xfffffffffffffffd]}, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x8, 0x8, 0x1, 0x948b, 0x3, 0x15f4da0d, 0x3, 0x3, 0x262, 0x8000001c, 0x7, 0x6d3d, 0xc, 0x2, 0x5]}, 0x0) sendmsg$auto_NL80211_CMD_SET_MESH_CONFIG(r1, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x90}, 0x8014) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/rpc/use-gss-proxy\x00', 0x48041, 0x0) unshare$auto(0x40000080) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/per_cpu/cpu1/trace\x00', 0x1a6b75d63882a712, 0x0) openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/tracing/free_buffer\x00', 0x4c000, 0xebff) io_uring_setup$auto(0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x230480, 0x0) 5.977136325s ago: executing program 1 (id=664): openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x8) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) setsockopt$auto_SO_OOBINLINE(r1, 0x3, 0xa, &(0x7f0000000140)='&\x00', 0x1d6) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x20000, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x1, 0x0, 0x0, &(0x7f00000002c0)={[0x100000001, 0x7, 0xd, 0x1000001, 0x20009489, 0x3, 0x2, 0x5, 0x1, 0xb8, 0x80000001, 0x3, 0x6d3d, 0xa, 0x2, 0xfffffffffffffffa]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/deo1\x00\x00\x00\x00\x00\x00\x00', 0x100000a3d9) socket(0x25, 0x1, 0x0) setsockopt$auto(0x3, 0x6, 0x100000000, 0xfffffffffffffffc, 0xa) mlockall$auto(0x5) rt_sigprocmask$auto(0x26, &(0x7f0000000040)={0x80000000}, &(0x7f0000000080)={0x9}, 0x8) sendmsg$auto_OVS_DP_CMD_GET(0xffffffffffffffff, 0x0, 0x40c0) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0xfffffdcb, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x200040c4}, 0x440c5) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x38, 0x100000001, 0xffffffff, 0x0, 0x0, 0x0, 0x1000000006, 0x10001, 0x7, 0x400, 0x7ffffffb, 0x5, 0xffffffff80000000, 0x5, 0x61, 0x103}) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) setsockopt$auto(0x3, 0x6a, 0x7, 0xffffffffffffffff, 0x3) r3 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x48081, 0x0) write$auto(r3, 0x0, 0x1ff) mmap$auto(0xfffffffffffffffc, 0x6, 0x100, 0x17, 0x2, 0x7fff) close_range$auto(0x2, 0x8, 0x0) write$auto(r0, &(0x7f0000000100)='/dev/net/tun\x00', 0x4128) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x6, 0x3, 0x19, 0xffffffffffffffff, 0x4) unshare$auto(0x40000080) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) 5.398801793s ago: executing program 3 (id=666): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4) r0 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000340)='/proc/slabinfo\x00', 0x400, 0x0) read$auto_proc_pid_maps_operations_internal(r0, &(0x7f0000000b80)=""/4096, 0x1000) link$auto(&(0x7f0000000940)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2DW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xea\xa5\xff \xec\xe8\xca\xbf\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\v\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4N\xbb\xc2\xf8\x9c\xd0+t\x87r\x02\x05\xdb\xe4\xde\xed\x02\x00\x00\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00M\x83\xdb\xaf\xc4\xf23l\xae\xc5\x1d\xc4\xb0\x06\xd06\x1dX\x03\xe3\x9e\xd3\xd96\xcf\xd9\xa3\xcb\xd6B\xc3\x0f#\xd2\x1a\xf9L\xf5\x87My\xce\x19*\xde\x8d+#\x13\x15\xd3Y\x98\xe1\xc3@\x0e\x9c\xc2\xf8\b\xaf\x89\xe5\x00\x89-pWD\xb5&\xc9\x8e\x8d,\xb7}1\x84U\x18y\xa90\xf5\x80\x981U\x17\x14]\xc56j\xe7\x0e\xecBr\xa9]\"\xd36^m\x12\xb6\xbc\x80\xa4h{\xde\xcf\xf7d\x87rl\x11\xf7\x15\xcb~\xb9\x01\x0e\xd7O_\x91\xe1\xead\xee\xed]/p\xd6\xff\x17\xe4\aV\"I\xca\x90\xc7i\'\xa3R\x81\xf1}4\xbeU\x00\xa4\x1d\xea!Z\xd4|\xbe\x987\n!\x9b?\xb9l_\xd8$av\xfe%\xa2\xda\x82\x14\xc311;\xa4ob\x87\xdbY\xe2\x00', &(0x7f0000000b40)='./file0\x00') r1 = open(&(0x7f0000000040)='./file0\x00', 0x86601, 0x78) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) openat2$dir(0xffffffffffffff9c, 0x0, &(0x7f0000000000)={0x2801, 0x111, 0x10}, 0x18) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) fstat$auto(0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x5, 0x0) open(0x0, 0x22240, 0x154) r2 = socket(0xa, 0x2, 0x88) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r2, @new_prog_fd=0x4, 0x4, @old_map_fd=0x3ff}, 0xa3) bpf$auto(0x1, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xf) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x200, 0x1) r4 = open(&(0x7f0000001bc0)='./file0\x00', 0x4140, 0x0) fanotify_mark$auto(0x0, 0x105, 0x8009, r4, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x40001, 0x0) write$auto(0x3, 0x0, 0xfdef) ioctl$auto(0x3, 0x541a, r1) bpf$auto_BPF_MAP_CREATE(0x0, &(0x7f0000000280)=@test={r3, 0x5, 0x9, 0x3, 0xffffffffffffffff, 0x7cf9b2b6, 0x8000, 0x401, 0x9, 0x6, 0x2, 0x10, 0x1, 0x1, 0x3}, 0x7) ioctl$auto_PPPIOCSMRU(r5, 0x40047452, &(0x7f0000000180)=0x7) 4.952886227s ago: executing program 3 (id=667): madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/tty53\x00', 0x200, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0) select$auto(0x7, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0xa, 0x0, 0x100001, 0x2, 0x3, 0x95f4da0a, 0xefffffffffffffff, 0x3, 0x62, 0x7, 0x10000000000004, 0x6d40, 0x1, 0x2, 0xfffffffffffffffe]}, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2b, 0x1, 0x1) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x7, 0xc45d, 0x80, 0x6, 0x3, 0x2, 0x3, 0x3, 0x62, 0x80000022, 0x7, 0x6d3e, 0x2000000004000009, 0x2, 0x6]}, 0x0) r2 = openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000000)='/dev/media8\x00', 0x2, 0x0) ioctl$auto(r2, 0x1, r2) socket(0xa, 0x5, 0x94) mmap$auto(0xf87f, 0x400108, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$auto_USBDEVFS_DISCSIGNAL(0xffffffffffffffff, 0x8010550e, 0x0) close_range$auto(0x2, 0x8, 0x0) getpgrp(0x0) sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, 0x0, 0x4) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp1\x00', 0x60282, 0x0) sendmmsg$auto(r0, &(0x7f0000000340)={{&(0x7f0000000440)="271da60b5eef71240e544470b390874ab1e47a65a9e765d19839c8e6096c7fe4611d12f44f52e4a5ef954f362ceb5f3ce6e48210f46caf3f279636fe3408b4be3c59f5fd3f0fa0309df4e283da6e966ae4da932aca9ac8785bbee398ebd701d76c973ab5b1215403d37fa1a7b0735e53440bd39c34fa69f6adbc7b7bc0127250dd4a89b192ac08076c6fa25d3401bac7a8eb6cfb0fa3cd639b62da3c96bb0e51e29eb0117118c71164ea308bdac4e8856632eb3d82706dab9ab350657bbb37818b2b7031977efab328a398763035487d", 0x0, &(0x7f0000000540)={&(0x7f0000000040)="6f439e45fad8579c89d763399782edc28d7436a1c47cbec8468a391f95c8c43b112500863e2fc6272a517319dc7cf1a5515fde47928c35a9d789709511a03822570fb8c070ff7f88d8cb5b7855f775f66ce08b65f1672ea971b788878082e6aa396f76cbdce8007d7207b047e86106ff72a5e4eca1961b394435878492272e95caf72767986d294dac3b55e3552145e1a869ad367b4cf467c9086c37315ad94386a129263c1b", 0x3}, 0x8, 0x0, 0x44, 0x6}, 0x1}, 0xf, 0x4) msgctl$auto_IPC_INFO(0x46, 0x3, &(0x7f0000000380)={{0x1, 0xffffffffffffffff, 0x0, 0x2, 0x57e, 0xffff8001, 0xfffd}, 0x0, 0x0, 0x0, 0x200000009, 0x400, 0xfffffffffffffff9, 0x2, 0x18, 0x1, 0xfff8, @raw=0x3ff}) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r3, 0xc004500a, 0x0) write$auto(r3, 0x0, 0x100082) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x10000, 0xf4, 0xa, 0xeb1, 0x401, 0x5) syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) mmap$auto(0x8001, 0xff, 0x80000001, 0x1010, 0xffffffffffffffff, 0x28000) 4.258536081s ago: executing program 2 (id=668): mmap$auto(0x0, 0x2020009, 0x8000000003, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu0/hotplug/target\x00', 0x201, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x23) setsockopt$auto_SO_RCVPRIORITY(r1, 0x5, 0x52, &(0x7f0000000000)='/sys/devices/system/cpu/cpu0/hotplug/target\x00', 0x9) write$auto(r0, 0x0, 0x1) 4.003912465s ago: executing program 3 (id=669): openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) msgctl$auto_IPC_RMID(0x4, 0x0, &(0x7f0000000240)={{0x0, 0xffffffffffffffff, 0xee00, 0x9, 0x5, 0x8, 0x5}, &(0x7f00000001c0)=0x6, &(0x7f0000000200)=0x1, 0x1, 0xfff, 0x0, 0x7, 0x9, 0x4, 0x9, 0xf}) ioctl$auto_KVM_HAS_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee3, &(0x7f0000000380)={0x8, r1, 0x1, 0x37}) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) writev$auto(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x40}, 0x8) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) ioctl$auto(0xffffffffffffffff, 0x540a, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x2003f0, 0x15) ioctl$auto_RNDADDENTROPY2(r2, 0x40085203, &(0x7f0000000340)=[0x0, 0x3]) mmap$auto(0x0, 0x2a, 0x4000df, 0x9b72, 0x1000, 0x28000) mincore$auto(0x1000, 0x8001, 0x0) madvise$auto(0x2, 0x5c61fa2c, 0xf) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r3, 0x0, 0x800) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8000, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0xffffffff, 0xfffff7fffffffffd, 0x3, 0x5, 0x7181, 0x4, 0xc8c000, 0x7, 0x9, 0x6, 0x80003, 0x4, 0x1ffffffffffd, 0x8, 0x1004, 0x7, 0x9, 0x80, 0x8000000000000000, 0x0, 0xc, 0x6, 0x200, 0x4, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc]}, 0x1fe, 0x5) socket$nl_generic(0x10, 0x3, 0x10) r4 = socket(0x10, 0x2, 0x15) sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f00000000c0)={0x0, 0xfffffffffffffe85, &(0x7f0000000200)={0x0, 0xffe7}}, 0x881) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1300"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) 3.955293901s ago: executing program 2 (id=670): openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) msgctl$auto_IPC_RMID(0x4, 0x0, &(0x7f0000000240)={{0x0, 0xffffffffffffffff, 0xee00, 0x9, 0x5, 0x8, 0x5}, &(0x7f00000001c0)=0x6, &(0x7f0000000200)=0x1, 0x1, 0xfff, 0x0, 0x7, 0x9, 0x4, 0x9, 0xf}) ioctl$auto_KVM_HAS_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee3, &(0x7f0000000380)={0x8, r1, 0x1, 0x37}) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) writev$auto(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x40}, 0x8) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0) ioctl$auto(r3, 0x540a, 0x0) close_range$auto(0x2, r0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xfffffffffffffffa, 0x8001) ioctl$auto_RNDADDENTROPY2(r2, 0x40085203, &(0x7f0000000340)=[0x0, 0x3]) mmap$auto(0x0, 0x7, 0x4000df, 0x90, 0x1000, 0x28000) mincore$auto(0x1000, 0x8001, 0x0) madvise$auto(0x2, 0x5c61fa2c, 0xf) r4 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="e26615662e1c7258ddab9513a292c862c766b4ba664c3ac52a1bd0237bbf19e7e956220daa91540447ac6225dc9c6d73fbd068c89e30b03e25ccbf047999c21888d675587ae0de217371ab58877e", @ANYRES16=r4, @ANYBLOB="010029bd7000fbdbdf25030000000400080004000600"], 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x800) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00022abd7000dbdbdf25020000000800030000000000050004"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="69b5"], 0x14}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="19"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8000, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0xffffffff, 0xfffff7fffffffffb, 0x3, 0x5, 0x7181, 0x4, 0xc8c000, 0x7, 0x9, 0x6, 0x80003, 0x4, 0x1ffffffffffd, 0x8, 0x1004, 0x7, 0x9, 0x80, 0x8000000000000000, 0x0, 0xc, 0x5, 0x200, 0x4, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x3fe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc]}, 0x1fe, 0x5) socket$nl_generic(0x10, 0x3, 0x10) 3.634778163s ago: executing program 1 (id=671): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty17\x00', 0x1, 0x0) write$auto_tty_fops_tty_io(r0, &(0x7f00000001c0)="976f09bd689a850edbe36136c8535f593331280bb0b4ba0edd7932ab185cca064833fda24d0f81d1b16c3cca5b2611827c2f1ca88bb01e672131ac62d346b5601f538ccf285e7a197166480ef899794cab4b61107cdae019c6139ce8761b5d50", 0x60) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/transparent_hugepage/hpage_pmd_size\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'veth0\x00'}) close_range$auto(0x0, 0xffffffffffffffff, 0x2) socket(0xa, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0xa, 0x801, 0x84) r4 = socket(0x18, 0x5, 0x1) connect$auto(r4, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) r5 = socket(0x29, 0x2, 0x0) setsockopt$auto(r5, 0x119, 0x1, 0x0, 0x8) read$auto(r1, 0x0, 0x20) mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0x8000000000000eb1, 0xffffffffffffffff, 0x8000) bpf$auto_BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)=@bpf_attr_11={0x6, 0x3, 0x9, 0x7, 0xfffffff9, 0x6, 0x3c, r3}, 0x4) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_MACSEC_CMD_UPD_RXSA(r6, &(0x7f0000006200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000001680)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="230027bd7000fcdbdf2508ffe9000c000380050001801500000004000280080001"], 0x2c}, 0x1, 0x0, 0x0, 0x4008000}, 0x44044) msgctl$auto(0x0, 0x3, 0x0) socket(0x11, 0x80003, 0x300) syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000002680), 0xffffffffffffffff) r8 = openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/set_event_pid\x00', 0xa0241, 0x0) write$auto_ftrace_set_event_pid_fops_trace_events(r8, &(0x7f0000000300)="674e77c962d7eaf04802459c9a495a2986bcc0678aa591d3a5acae7020", 0x1d) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x101402, 0x0) 2.767365836s ago: executing program 0 (id=672): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x100, 0x0) pread64$auto(r0, 0x0, 0x3, 0x5) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/nf_conntrack/parameters/hashsize\x00', 0xa102, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/conf/netdevsim0/accept_source_route\x00', 0xc0202, 0x0) r1 = openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) read$auto_rfkill_fops_core(r1, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xebe, r1, 0x8000) socketpair$auto(0x5, 0xbc15, 0x8000000000000000, 0x0) r2 = getpid() prctl$auto(0x7fff, 0x10000001, r2, 0x1, 0x10004) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz1\x00', 0x200002, 0x0) fcntl$auto_F_SETLK(r3, 0x6, 0x7) ptrace$auto_PTRACE_LISTEN(0x4208, r2, 0xd8a, 0x9) mlockall$auto(0x7) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) landlock_create_ruleset$auto(0x0, 0x9, 0x0) r4 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000280), 0x4a002, 0x0) writev$auto(r4, &(0x7f0000000300)={0x0, 0xd}, 0x100) r5 = getpid() ioctl$auto_UBI_IOCDET(0xffffffffffffffff, 0x40046f41, 0x0) unshare$auto(0x40000080) r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop2\x00', 0x24040, 0x0) ioctl$auto_BLKTRACESETUP(r6, 0xc0481273, &(0x7f0000000540)={"ef13a5421a8765cadfca437c4d1316833843180bb151ed36e8ce6cb454168d6c", 0x3ff, 0xc9, 0x1000, 0xd, 0x9}) ioctl$auto_BLKTRACESTART(r6, 0x1274, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x442302, 0x0) r7 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0) readv$auto(r7, 0x0, 0x3) socket(0x1, 0x1, 0x1) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYRES8=r4, @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030000020000060007000080000008000300000400000a000500000000", @ANYRES32=0x0, @ANYBLOB="08080200", @ANYRES64=r5, @ANYBLOB], 0x60}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) close_range$auto(0x2, 0x8, 0x200) 2.593409876s ago: executing program 2 (id=673): madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) ioctl$auto(0xffffffffffffffff, 0x64c8, 0x1e2) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) socket(0xa, 0x2, 0x0) unshare$auto(0x40000080) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) get_mempolicy$auto(0x0, 0x0, 0x3, 0x1ff, 0x3) openat$auto_tracing_fops_trace(0xffffffffffffff9c, 0x0, 0x1a6b75d63882a712, 0x0) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_TIOCVHANGUP2(0xffffffffffffffff, 0x5437, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0) unshare$auto(0x40000080) adjtimex$auto(&(0x7f0000000280)={0xf, 0x0, 0x8, 0x100000001, 0x7f, 0x0, 0x2, 0x0, 0xe, 0x0, 0x10001, {0xf, 0x4}, 0x7ffffffffffffffe, 0x3a9d, 0x5, 0x10001, 0x0, 0x6, 0x4, 0x7, 0x8, 0x5, 0x1015c8}) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) semctl$auto(0x7ff, 0x2, 0x13, 0x3) mbind$auto(0x0, 0x40, 0x4, 0x0, 0x3, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x8000002, 0x20009, 0x8000000400000003, 0xeb1, 0x401, 0x8001) r1 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) getrandom$auto(0x0, 0x6000000, 0x3) ioctl$auto_UI_DEV_SETUP(r1, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x8, 0x80}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0xa}) syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) socket(0x1, 0x2, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/memfd_noexec\x00', 0x2, 0x0) geteuid() 2.369236531s ago: executing program 1 (id=674): socket(0x10, 0x2, 0x4) mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x800) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000) openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000440), 0x20100, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x11, 0x3, 0x2) socket(0x21, 0x2, 0xa) mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/kallsyms\x00', 0x20100, 0x0) pread64$auto(r0, 0x0, 0x8, 0x8000) read$auto_l2cap_debugfs_fops_(0xffffffffffffffff, &(0x7f0000000240)=""/177, 0xb1) timer_create$auto(0x8, 0x0, 0x0) timer_settime$auto(0x0, 0x9, &(0x7f00000000c0)={{0x7fff, 0x30d}, {0x7, 0x4}}, 0x0) rt_sigaction$auto(0xe, &(0x7f0000000580)={&(0x7f00000004c0)=0x0, 0x100000001, 0x0, {0x7}}, 0x0, 0x8) 2.338263588s ago: executing program 3 (id=675): r0 = openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0) r1 = socket(0xa, 0x1, 0x100) getsockopt$auto_SO_RCVPRIORITY(r1, 0x2, 0x52, 0x0, &(0x7f0000000240)=0x7) r2 = socket(0x1e, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'macsec0\x00'}) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) socket(0x28, 0x6, 0x9) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) ioctl$auto_FS_IOC_GETFSUUID(r3, 0x80111500, 0x6) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x4000008000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) process_mrelease$auto(r4, 0x1) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) inotify_init1$auto(0x403) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) readv$auto(0x3, 0x0, 0x1) mmap$auto(0x401, 0x2, 0xdf, 0x10, r3, 0x4) fsconfig$auto(r3, 0x1, 0x0, &(0x7f0000000280)="ef63f33082be53c1707f37ff742f0bbf1caba1d44cfea3fb3887a314e009c899859f456194a6344206", 0x0) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x50b41, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) mincore$auto(0x1000, 0x8001, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socketpair$auto(0x7ffe, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0xa, 0x0) r5 = socket(0x8, 0x1, 0x3a) setsockopt$auto(r5, 0x29, 0x4e, 0x0, 0x10000110) bind$auto(0x3, &(0x7f0000000040)=@generic={0xa, "02d0ac0c00e435826339c7328903"}, 0x4000062) read$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(r0, &(0x7f0000000040)=""/73, 0x49) 2.188319132s ago: executing program 0 (id=676): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/cifs/traceSMB\x00', 0x41, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/class/devcoredump/disabled\x00', 0xe3102, 0x0) sendfile$auto(r0, r0, 0x0, 0x3) read$auto(0x3, 0x0, 0x1f40) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0xc00000, 0xa00006, 0x401, 0x40eb1, 0x602, 0x300000000000) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000000c0), 0xffffffffffffffff) clone$auto(0x9, 0xffff, &(0x7f0000000100)=0x14b0, &(0x7f0000000140)=0x8, 0x22) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(r2, 0x3, &(0x7f0000000280), 0x1dc6e373) r3 = geteuid() setpriority$auto(0x9, r3, 0x8) r4 = getpid() r5 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/config/nullb/features\x00', 0x40240, 0x0) fchmod$auto(r5, 0x7) prctl$auto(0x3e, 0x1, r4, 0x1, 0x0) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r6, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) io_uring_setup$auto(0x6, 0x0) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) shutdown$auto(0x200000003, 0x2) 1.972035835s ago: executing program 1 (id=677): madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/tty53\x00', 0x200, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0) select$auto(0x7, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0xa, 0x0, 0x100001, 0x2, 0x3, 0x95f4da0a, 0xefffffffffffffff, 0x3, 0x62, 0x7, 0x10000000000004, 0x6d40, 0x1, 0x2, 0xfffffffffffffffe]}, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2b, 0x1, 0x1) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x7, 0xc45d, 0x80, 0x6, 0x3, 0x2, 0x3, 0x3, 0x62, 0x80000022, 0x7, 0x6d3e, 0x2000000004000009, 0x2, 0x6]}, 0x0) r2 = openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000000)='/dev/media8\x00', 0x2, 0x0) ioctl$auto(r2, 0x1, r2) socket(0xa, 0x5, 0x94) mmap$auto(0xf87f, 0x400108, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$auto_USBDEVFS_DISCSIGNAL(0xffffffffffffffff, 0x8010550e, 0x0) close_range$auto(0x2, 0x8, 0x0) getpgrp(0x0) sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, 0x0, 0x4) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp1\x00', 0x60282, 0x0) sendmmsg$auto(r0, &(0x7f0000000340)={{&(0x7f0000000440)="271da60b5eef71240e544470b390874ab1e47a65a9e765d19839c8e6096c7fe4611d12f44f52e4a5ef954f362ceb5f3ce6e48210f46caf3f279636fe3408b4be3c59f5fd3f0fa0309df4e283da6e966ae4da932aca9ac8785bbee398ebd701d76c973ab5b1215403d37fa1a7b0735e53440bd39c34fa69f6adbc7b7bc0127250dd4a89b192ac08076c6fa25d3401bac7a8eb6cfb0fa3cd639b62da3c96bb0e51e29eb0117118c71164ea308bdac4e8856632eb3d82706dab9ab350657bbb37818b2b7031977efab328a398763035487d", 0x0, &(0x7f0000000540)={&(0x7f0000000040)="6f439e45fad8579c89d763399782edc28d7436a1c47cbec8468a391f95c8c43b112500863e2fc6272a517319dc7cf1a5515fde47928c35a9d789709511a03822570fb8c070ff7f88d8cb5b7855f775f66ce08b65f1672ea971b788878082e6aa396f76cbdce8007d7207b047e86106ff72a5e4eca1961b394435878492272e95caf72767986d294dac3b55e3552145e1a869ad367b4cf467c9086c37315ad94386a129263c1b", 0x3}, 0x8, 0x0, 0x44, 0x6}, 0x1}, 0xf, 0x4) msgctl$auto_IPC_INFO(0x46, 0x3, &(0x7f0000000380)={{0x1, 0xffffffffffffffff, 0x0, 0x2, 0x57e, 0xffff8001, 0xfffd}, 0x0, 0x0, 0x0, 0x200000009, 0x400, 0xfffffffffffffff9, 0x2, 0x18, 0x1, 0xfff8, @raw=0x3ff}) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r3, 0xc004500a, 0x0) write$auto(r3, 0x0, 0x100082) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x10000, 0xf4, 0xa, 0xeb1, 0x401, 0x5) syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) mmap$auto(0x8001, 0xff, 0x80000001, 0x1010, 0xffffffffffffffff, 0x28000) 749.989254ms ago: executing program 1 (id=678): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/devices/virtual/block/loop1/queue/wbt_lat_usec\x00', 0x2062, 0x0) write$auto(r1, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x9) ioctl$auto(r0, 0x400454ca, 0x38) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x80900, 0x0) openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, 0x0, 0x20a01, 0x0) ioctl$auto_BLKFLSBUF(r2, 0x1261, 0x0) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) capset$auto(0x0, 0x0) ioctl$auto_SNDCTL_DSP_SETTRIGGER(r3, 0x40045010, &(0x7f0000000080)) ioctl$auto_SNDCTL_DSP_SETTRIGGER(r3, 0x40045010, 0x0) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcsa\x00', 0x80, 0x0) mmap$auto(0xb2, 0x14, 0xffb, 0x8000000008015, 0xffffffffffffffff, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) io_uring_setup$auto(0x3501, &(0x7f0000000080)={0x80, 0x1000, 0x8, 0x5, 0x3, 0xfffffff1, 0xffffffffffffffff, [0xbc, 0xffff, 0x40], {0x81, 0x9, 0x0, 0x80000000, 0x3, 0x101, 0xffff, 0x0, 0x6}, {0x7, 0xa, 0xf, 0x7fff, 0x3, 0x0, 0x0, 0xfffffffa, 0xc}}) ioctl$auto_BLKTRACETEARDOWN(r2, 0x1276, 0x0) mmap$auto(0x8000000000002001, 0x20009, 0xdf, 0x15, r4, 0x8000) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x11, 0x0, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty48\x00', 0x880, 0x0) ioctl$auto(r5, 0x5609, 0xffffffffffffffff) madvise$auto(0x0, 0x20499d, 0x9) open_tree$auto(0xffffffffffffffff, 0x0, 0x74ee) 656.741972ms ago: executing program 3 (id=679): write$auto(0x3, 0x0, 0xffd8) 209.862387ms ago: executing program 3 (id=680): mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x7, 0x1000001b, 0x7181, 0x1ffdb, 0x7, 0x4, 0x9, 0x9, 0x3, 0x4, 0x1, 0xb4, 0x9, 0x8, 0x10003, 0x80, 0x4, 0x0, 0xa, 0x22000, 0x200, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x670, 0x0, 0x0, 0x0, 0x6000000000000000, 0x0, 0x0, 0x0, 0x2]}, 0x1fe, 0xd) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000440)=ANY=[@ANYBLOB="00fc3ce5294e77214c5cad0eb96d7b804d70d9133696ecaea6aca9e751a23e929417ccf4990b1bf39b475c623399bfc092a0473ca971a4db37fd2b1e042d034fb558d2f30a452c85599acb3b371619d5ea79306b5c2ad5dd302a7b34fbed09195b20919720bb55155f7cf5ce88475f1916ad13c8a5ce5974a00789236463d5d6127eda010dc520f384e68f1e1a76e4bb9e62dc5a2d3628", @ANYRES16, @ANYRES16], 0x24}, 0x1, 0x0, 0x0, 0x40a5}, 0x4) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x3, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000100), 0xffffffffffffffff) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x7}, 0x0, 0x10000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x4, &(0x7f0000000380)="a6da19b2184713ab0fb2c4ff41d795e747d674a20e166d85d83e949d47de3f64ad11085e7ead820518dd80791ffebae5ea6ae6e0a1aa114e71fdd4c80698044050a605b1e9a00f52441fd32a753511960e4e39aa217223ee1400fdb014d28dbf3d5f3901d22f30e915e0b605e4ca5f9f2d01c9000142560ed9ae95513e7d2123292d1f30130bba207cf43688feb77e5d2eface5c0bd5ee76fd8cd6723fe3297eba0c3f65a69bb9c63732224987321f14c6ab080520", 0x1000) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) mmap$auto(0xca, 0x4020c, 0x800000000008, 0x9b72, 0x7, 0x28003) write$auto(0x3, 0x0, 0x7fffffff) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) fanotify_init$auto(0x1000, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(0xffffffffffffffff, 0x0, 0x4000) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000000)=""/112, 0x70) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) r0 = openat$auto_check_wx_fops_(0xffffffffffffff9c, &(0x7f00000001c0), 0x88080, 0x0) pread64$auto(r0, 0x0, 0x5, 0x5) 165.82467ms ago: executing program 0 (id=681): ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, &(0x7f0000000000)={0x3, 0x7, 0x8}) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/arch_status\x00', 0x200, 0x0) socket(0x2, 0x802, 0x1) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) sendmsg$auto_NL80211_CMD_UPDATE_OWE_INFO(0xffffffffffffffff, 0x0, 0x200488c1) close_range$auto(0xffffffffffffffff, 0x5, 0x0) unshare$auto(0x40000080) write$auto(0xca, &(0x7f0000000180)='\x04\x02\x00\r\xfb\xff\xf6\xdd\x90\x806\xc8\xbe\x94\xf2\xa2', 0x4) 0s ago: executing program 2 (id=682): openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x5, 0x0) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @empty}, 0x55) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) msgctl$auto_IPC_RMID(0x4, 0x0, &(0x7f0000000240)={{0x0, 0xffffffffffffffff, 0xee00, 0x9, 0x5, 0x8, 0x5}, &(0x7f00000001c0)=0x6, &(0x7f0000000200)=0x1, 0x1, 0xffd, 0x0, 0x7, 0xb, 0x4, 0x9, 0xf}) ioctl$auto_KVM_HAS_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee3, &(0x7f0000000380)={0x8, r1, 0x1, 0x37}) openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/bluetooth/hci1/force_devcoredump\x00', 0x20c000, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) writev$auto(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x40}, 0xfffffffffffffffd) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) ioctl$auto(0xffffffffffffffff, 0x540a, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x2003f0, 0x15) ioctl$auto_RNDADDENTROPY2(r2, 0x40085203, &(0x7f0000000340)=[0x0, 0x3]) mmap$auto(0x0, 0x2a, 0x4000df, 0x9b72, 0x1000, 0x28000) mincore$auto(0x1000, 0x8001, 0x0) madvise$auto(0x2, 0x5c61fa2c, 0xf) r3 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010029bd7000fbdbdf25030000000000040000000600"], 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x800) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8000, 0x0) statmount$auto(0x0, &(0x7f00000003c0)={0x8, 0xffffffff, 0xfffff7fffefffffd, 0x3, 0x5, 0x7181, 0x4, 0xc8c000, 0x7, 0x9, 0x6, 0x80003, 0x4, 0x1ffffffffffd, 0x8, 0x1004, 0x7, 0x9, 0x80, 0x8000000000000000, 0x0, 0xc, 0x6, 0x200, 0x4, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000001, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0xffffffffffffff01, 0x0, 0x0, 0x0, 0xfffffffffffffffc], "22f113b81c375ba77a7c28529bcccebdea1355812fccda9c1bf7eec1547d54f64adfea4bf9c1e1882e558298095aea1c2dafb958ce875c2f9e1e0713bee504fa119b286ec465083aa37b94a9b431614f9ded0ef3cf43168e2ad2ef734534c93a946ec21f380bf000748342e7bcb71e2c2c9c20297cf1780e684e77c71427d45f4e072cd9daa523f1d953df"}, 0x1fe, 0x5) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x15) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.10.7' (ED25519) to the list of known hosts. [ 90.172199][ T5823] cgroup: Unknown subsys name 'net' [ 90.329046][ T5823] cgroup: Unknown subsys name 'cpuset' [ 90.337881][ T5823] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 92.478130][ T5823] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 94.713291][ T5842] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 94.722909][ T5842] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 94.730802][ T5842] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 94.739470][ T5842] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 94.747539][ T5842] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 94.754131][ T5847] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 94.774969][ T5848] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 94.784077][ T5847] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 94.784271][ T5848] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 94.799586][ T5847] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 94.816777][ T5842] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 94.822908][ T5849] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 94.824889][ T5842] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 94.838593][ T5848] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 94.848142][ T5842] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 94.856143][ T5842] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 94.856414][ T5849] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 94.872087][ T5848] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 94.881852][ T5848] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 94.890140][ T51] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 95.389880][ T5833] chnl_net:caif_netlink_parms(): no params data found [ 95.523847][ T5834] chnl_net:caif_netlink_parms(): no params data found [ 95.609417][ T5844] chnl_net:caif_netlink_parms(): no params data found [ 95.667826][ T5836] chnl_net:caif_netlink_parms(): no params data found [ 95.680333][ T5833] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.688218][ T5833] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.695761][ T5833] bridge_slave_0: entered allmulticast mode [ 95.702885][ T5833] bridge_slave_0: entered promiscuous mode [ 95.740392][ T5833] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.747711][ T5833] bridge0: port 2(bridge_slave_1) entered disabled state [ 95.754876][ T5833] bridge_slave_1: entered allmulticast mode [ 95.762272][ T5833] bridge_slave_1: entered promiscuous mode [ 95.838240][ T5834] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.845559][ T5834] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.852938][ T5834] bridge_slave_0: entered allmulticast mode [ 95.861609][ T5834] bridge_slave_0: entered promiscuous mode [ 95.897996][ T5834] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.905124][ T5834] bridge0: port 2(bridge_slave_1) entered disabled state [ 95.912687][ T5834] bridge_slave_1: entered allmulticast mode [ 95.919991][ T5834] bridge_slave_1: entered promiscuous mode [ 95.934734][ T5833] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 95.981171][ T5833] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 96.021353][ T5834] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 96.058849][ T5844] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.066261][ T5844] bridge0: port 1(bridge_slave_0) entered disabled state [ 96.073943][ T5844] bridge_slave_0: entered allmulticast mode [ 96.081244][ T5844] bridge_slave_0: entered promiscuous mode [ 96.091167][ T5834] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 96.126272][ T5844] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.133519][ T5844] bridge0: port 2(bridge_slave_1) entered disabled state [ 96.140837][ T5844] bridge_slave_1: entered allmulticast mode [ 96.148403][ T5844] bridge_slave_1: entered promiscuous mode [ 96.167961][ T5836] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.175113][ T5836] bridge0: port 1(bridge_slave_0) entered disabled state [ 96.182478][ T5836] bridge_slave_0: entered allmulticast mode [ 96.190970][ T5836] bridge_slave_0: entered promiscuous mode [ 96.200883][ T5833] team0: Port device team_slave_0 added [ 96.210673][ T5833] team0: Port device team_slave_1 added [ 96.257175][ T5836] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.264364][ T5836] bridge0: port 2(bridge_slave_1) entered disabled state [ 96.271806][ T5836] bridge_slave_1: entered allmulticast mode [ 96.279660][ T5836] bridge_slave_1: entered promiscuous mode [ 96.326705][ T5834] team0: Port device team_slave_0 added [ 96.353084][ T5836] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 96.362978][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 96.370148][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.396186][ T5833] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 96.410547][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 96.417587][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.443938][ T5833] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 96.464225][ T5844] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 96.480829][ T5834] team0: Port device team_slave_1 added [ 96.489044][ T5836] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 96.511685][ T5844] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 96.591030][ T5834] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 96.599208][ T5834] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.626737][ T5834] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 96.680870][ T5834] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 96.688124][ T5834] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.715480][ T5834] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 96.729701][ T5836] team0: Port device team_slave_0 added [ 96.741871][ T5833] hsr_slave_0: entered promiscuous mode [ 96.748992][ T5833] hsr_slave_1: entered promiscuous mode [ 96.759993][ T5844] team0: Port device team_slave_0 added [ 96.775958][ T5836] team0: Port device team_slave_1 added [ 96.784768][ T5844] team0: Port device team_slave_1 added [ 96.856301][ T5845] Bluetooth: hci0: command tx timeout [ 96.880908][ T5844] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 96.890035][ T5844] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.916507][ T5844] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 96.928527][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 96.935391][ T51] Bluetooth: hci1: command tx timeout [ 96.936204][ T5849] Bluetooth: hci3: command tx timeout [ 96.941158][ T5845] Bluetooth: hci2: command tx timeout [ 96.950494][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.978677][ T5836] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 97.011078][ T5844] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 97.018511][ T5844] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.044974][ T5844] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 97.063817][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 97.071306][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.101348][ T5836] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 97.117731][ T48] cfg80211: failed to load regulatory.db [ 97.152397][ T5834] hsr_slave_0: entered promiscuous mode [ 97.161364][ T5834] hsr_slave_1: entered promiscuous mode [ 97.167986][ T5834] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 97.179772][ T5834] Cannot create hsr debugfs directory [ 97.253680][ T5844] hsr_slave_0: entered promiscuous mode [ 97.262769][ T5844] hsr_slave_1: entered promiscuous mode [ 97.269438][ T5844] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 97.277133][ T5844] Cannot create hsr debugfs directory [ 97.346140][ T5836] hsr_slave_0: entered promiscuous mode [ 97.352758][ T5836] hsr_slave_1: entered promiscuous mode [ 97.359369][ T5836] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 97.367257][ T5836] Cannot create hsr debugfs directory [ 97.772106][ T5833] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 97.800299][ T5833] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 97.812967][ T5833] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 97.835089][ T5833] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 97.907431][ T5834] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 97.941298][ T5834] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 97.962796][ T5834] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 97.977365][ T5834] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 98.069032][ T5844] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 98.120090][ T5844] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 98.151538][ T5844] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 98.164636][ T5844] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 98.229477][ T5833] 8021q: adding VLAN 0 to HW filter on device bond0 [ 98.258878][ T5836] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 98.273321][ T5836] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 98.296927][ T5836] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 98.324249][ T5834] 8021q: adding VLAN 0 to HW filter on device bond0 [ 98.334389][ T5836] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 98.369093][ T5833] 8021q: adding VLAN 0 to HW filter on device team0 [ 98.412362][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.419681][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 98.434533][ T5834] 8021q: adding VLAN 0 to HW filter on device team0 [ 98.476648][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.483753][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 98.505385][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.512564][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 98.544118][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.551322][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 98.703845][ T5844] 8021q: adding VLAN 0 to HW filter on device bond0 [ 98.756310][ T5844] 8021q: adding VLAN 0 to HW filter on device team0 [ 98.810136][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.817336][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 98.858570][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.865822][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 98.914614][ T5836] 8021q: adding VLAN 0 to HW filter on device bond0 [ 98.941048][ T5845] Bluetooth: hci0: command tx timeout [ 99.009566][ T5836] 8021q: adding VLAN 0 to HW filter on device team0 [ 99.017713][ T5845] Bluetooth: hci2: command tx timeout [ 99.023169][ T5845] Bluetooth: hci1: command tx timeout [ 99.028840][ T5849] Bluetooth: hci3: command tx timeout [ 99.049925][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.057178][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 99.143407][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.150680][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 99.340394][ T5833] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 99.369462][ T5834] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 99.569033][ T5834] veth0_vlan: entered promiscuous mode [ 99.654483][ T5844] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 99.669335][ T5833] veth0_vlan: entered promiscuous mode [ 99.678129][ T5834] veth1_vlan: entered promiscuous mode [ 99.734444][ T5833] veth1_vlan: entered promiscuous mode [ 99.811648][ T5834] veth0_macvtap: entered promiscuous mode [ 99.832630][ T5844] veth0_vlan: entered promiscuous mode [ 99.849337][ T5834] veth1_macvtap: entered promiscuous mode [ 99.871306][ T5844] veth1_vlan: entered promiscuous mode [ 99.902626][ T5836] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 99.919106][ T5833] veth0_macvtap: entered promiscuous mode [ 99.939433][ T5833] veth1_macvtap: entered promiscuous mode [ 99.952749][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 99.980982][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 99.993274][ T5834] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.002447][ T5834] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.011703][ T5834] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.020673][ T5834] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.050885][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 100.102063][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 100.119162][ T5844] veth0_macvtap: entered promiscuous mode [ 100.148852][ T5833] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.159120][ T5833] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.168374][ T5833] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.177361][ T5833] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.191444][ T5844] veth1_macvtap: entered promiscuous mode [ 100.273919][ T5844] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 100.285077][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 100.294879][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.303335][ T5836] veth0_vlan: entered promiscuous mode [ 100.353903][ T5844] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 100.364921][ T5836] veth1_vlan: entered promiscuous mode [ 100.390642][ T5844] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.408440][ T5844] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.417539][ T5844] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.429999][ T5844] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.443477][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 100.463985][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.550541][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 100.569983][ T5836] veth0_macvtap: entered promiscuous mode [ 100.583011][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.612094][ T5834] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 100.652228][ T5836] veth1_macvtap: entered promiscuous mode [ 100.706005][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 100.713889][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.795404][ T78] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 100.803383][ T78] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.900022][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 100.901676][ T5926] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 100.930044][ T78] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 100.955858][ T78] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.985516][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 101.015484][ T5849] Bluetooth: hci0: command tx timeout [ 101.041979][ T5836] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.062813][ T5836] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.062874][ T5836] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.062913][ T5836] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.096380][ T5849] Bluetooth: hci1: command tx timeout [ 101.096432][ T5849] Bluetooth: hci3: command tx timeout [ 101.096471][ T5849] Bluetooth: hci2: command tx timeout [ 101.307362][ T5933] bond0: entered promiscuous mode [ 101.307438][ T5933] bond0: entered allmulticast mode [ 101.405025][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.430055][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.553107][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.585700][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.255773][ T5945] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 102.255773][ T5945] The task syz.1.2 (5945) triggered the difference, watch for misbehavior. [ 102.433811][ T5948] netlink: 504 bytes leftover after parsing attributes in process `syz.3.5'. [ 102.992567][ T5963] binder: 5962:5963 ioctl c0306201 2000000000c0 returned -14 [ 103.095670][ T5845] Bluetooth: hci0: command tx timeout [ 103.175806][ T5845] Bluetooth: hci2: command tx timeout [ 103.181279][ T5845] Bluetooth: hci3: command tx timeout [ 103.187122][ T5849] Bluetooth: hci1: command tx timeout [ 103.425588][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 103.433937][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 103.476816][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 103.627486][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 103.776852][ T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!! [ 104.246663][ T5991] Zero length message leads to an empty skb [ 104.454350][ T5981] Invalid ELF header magic: != ELF [ 104.751788][ T5985] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 104.773602][ T5995] process 'syz.0.13' launched ':,' with NULL argv: empty string added [ 104.855748][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 105.078324][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 105.375796][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 105.434831][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 106.295720][ T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!! [ 108.169382][ T6065] netlink: 28 bytes leftover after parsing attributes in process `syz.3.24'. [ 108.838457][ T6065] mac80211_hwsim hwsim5 wlan1: entered allmulticast mode [ 109.258480][ T6078] snd_aloop snd_aloop.0: control 1:6:-2147483647:¢¸è_ÅheºRŸª:6 is already present [ 109.300000][ T6081] FAULT_INJECTION: forcing a failure. [ 109.300000][ T6081] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 109.465279][ T6081] CPU: 1 UID: 0 PID: 6081 Comm: syz.1.26 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 109.465320][ T6081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 109.465335][ T6081] Call Trace: [ 109.465344][ T6081] [ 109.465353][ T6081] dump_stack_lvl+0x16c/0x1f0 [ 109.465385][ T6081] should_fail_ex+0x512/0x640 [ 109.465434][ T6081] _copy_to_iter+0x29f/0x16f0 [ 109.465469][ T6081] ? chacha_block_generic+0x211/0x330 [ 109.465515][ T6081] ? __pfx__copy_to_iter+0x10/0x10 [ 109.465552][ T6081] ? __pfx___might_resched+0x10/0x10 [ 109.465598][ T6081] ? crng_make_state+0x48e/0x6d0 [ 109.465643][ T6081] get_random_bytes_user+0x17f/0x3c0 [ 109.465684][ T6081] ? __pfx_get_random_bytes_user+0x10/0x10 [ 109.465731][ T6081] ? do_futex+0x122/0x350 [ 109.465778][ T6081] ? import_ubuf+0x1b6/0x220 [ 109.465809][ T6081] __x64_sys_getrandom+0x183/0x290 [ 109.465850][ T6081] ? __pfx___x64_sys_getrandom+0x10/0x10 [ 109.465889][ T6081] ? fdget_pos+0x2b8/0x370 [ 109.465952][ T6081] do_syscall_64+0xcd/0x490 [ 109.465985][ T6081] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.466014][ T6081] RIP: 0033:0x7f18b1f8e929 [ 109.466040][ T6081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 109.466068][ T6081] RSP: 002b:00007f18b2dda038 EFLAGS: 00000246 ORIG_RAX: 000000000000013e [ 109.466097][ T6081] RAX: ffffffffffffffda RBX: 00007f18b21b6240 RCX: 00007f18b1f8e929 [ 109.466116][ T6081] RDX: 0000000000000003 RSI: 0000000006000000 RDI: 0000000000000000 [ 109.466134][ T6081] RBP: 00007f18b2010b39 R08: 0000000000000000 R09: 0000000000000000 [ 109.466150][ T6081] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 109.466167][ T6081] R13: 0000000000000000 R14: 00007f18b21b6240 R15: 00007fff7fea8d88 [ 109.466206][ T6081] [ 114.372756][ T1212] smpboot: CPU 1 is now offline [ 117.109151][ T6197] block nbd7: not configured, cannot reconfigure [ 117.253882][ T6199] mmap: syz.3.48 (6199) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 119.590361][ T6217] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 119.641650][ T6217] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 119.762004][ T6217] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 119.826066][ T6217] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 119.873577][ T6217] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 119.973041][ T6217] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 120.207761][ T6217] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 120.250143][ T6217] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 120.315902][ T6217] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 120.425085][ T6217] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 120.472592][ T6217] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 120.612870][ T6217] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 120.933797][ T6236] snd_aloop snd_aloop.0: control 1:6:-2147483647:¢¸è_ÅheºRŸª:6 is already present [ 121.255548][ T5845] Bluetooth: hci0: command 0x0c1a tx timeout [ 121.554527][ T6250] netlink: 4 bytes leftover after parsing attributes in process `syz.2.58'. [ 121.895257][ T5845] Bluetooth: hci2: command 0x0c1a tx timeout [ 122.216039][ T5845] Bluetooth: hci1: command 0x0c1a tx timeout [ 122.455571][ T5845] Bluetooth: hci3: command 0x0c1a tx timeout [ 122.739448][ T6258] Console: switching to colour VGA+ 80x25 [ 123.344762][ T5845] Bluetooth: hci0: command 0x0c1a tx timeout [ 123.932223][ T6276] blktrace: Concurrent blktraces are not allowed on loop2 [ 123.975506][ T5845] Bluetooth: hci2: command 0x0c1a tx timeout [ 124.295462][ T5845] Bluetooth: hci1: command 0x0c1a tx timeout [ 124.535267][ T5845] Bluetooth: hci3: command 0x0c1a tx timeout [ 124.903150][ T6292] openvswitch: netlink: IP tunnel dst address not specified [ 125.181328][ T6290] netlink: 8 bytes leftover after parsing attributes in process `syz.3.67'. [ 125.415395][ T5845] Bluetooth: hci0: command 0x0c1a tx timeout [ 126.058242][ T5845] Bluetooth: hci2: command 0x0c1a tx timeout [ 126.385627][ T5845] Bluetooth: hci1: command 0x0c1a tx timeout [ 126.441511][ T6311] snd_aloop snd_aloop.0: control 1:6:-2147483647:¢¸è_ÅheºRŸª:6 is already present [ 126.615213][ T5845] Bluetooth: hci3: command 0x0c1a tx timeout [ 128.315661][ T6344] netlink: 330 bytes leftover after parsing attributes in process `syz.1.79'. [ 132.591982][ T6394] snd_aloop snd_aloop.0: control 1:6:-2147483647:¢¸è_ÅheºRŸª:6 is already present [ 133.740294][ T6409] FAULT_INJECTION: forcing a failure. [ 133.740294][ T6409] name failslab, interval 1, probability 0, space 0, times 1 [ 133.753136][ T6409] CPU: 0 UID: 0 PID: 6409 Comm: syz.3.92 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 133.753160][ T6409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 133.753170][ T6409] Call Trace: [ 133.753176][ T6409] [ 133.753183][ T6409] dump_stack_lvl+0x16c/0x1f0 [ 133.753204][ T6409] should_fail_ex+0x512/0x640 [ 133.753232][ T6409] should_failslab+0xc2/0x120 [ 133.753257][ T6409] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 133.753284][ T6409] ? __inet_hash_connect+0x7cb/0x1e30 [ 133.753306][ T6409] __inet_hash_connect+0x7cb/0x1e30 [ 133.753329][ T6409] ? __pfx___inet_check_established+0x10/0x10 [ 133.753364][ T6409] ? __pfx___inet_hash_connect+0x10/0x10 [ 133.753386][ T6409] ? inet_hash_connect+0x125/0x260 [ 133.753405][ T6409] tcp_v4_connect+0xe1b/0x1bd0 [ 133.753437][ T6409] ? __pfx_tcp_v4_connect+0x10/0x10 [ 133.753461][ T6409] ? __lock_acquire+0xb8a/0x1c90 [ 133.753487][ T6409] __inet_stream_connect+0x3c5/0x1020 [ 133.753516][ T6409] ? __pfx___inet_stream_connect+0x10/0x10 [ 133.753540][ T6409] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 133.753569][ T6409] ? __local_bh_enable_ip+0xa4/0x120 [ 133.753591][ T6409] inet_stream_connect+0x57/0xa0 [ 133.753616][ T6409] kernel_connect+0x107/0x180 [ 133.753636][ T6409] ? __pfx_kernel_connect+0x10/0x10 [ 133.753664][ T6409] ? __local_bh_enable_ip+0xa4/0x120 [ 133.753685][ T6409] smc_connect+0x4c7/0x760 [ 133.753710][ T6409] ? __pfx_smc_connect+0x10/0x10 [ 133.753731][ T6409] __sys_connect_file+0x13e/0x1a0 [ 133.753757][ T6409] __sys_connect+0x13b/0x160 [ 133.753779][ T6409] ? __pfx___sys_connect+0x10/0x10 [ 133.753810][ T6409] ? xfd_validate_state+0x61/0x180 [ 133.753830][ T6409] ? __pfx_do_writev+0x10/0x10 [ 133.753856][ T6409] __x64_sys_connect+0x72/0xb0 [ 133.753878][ T6409] ? lockdep_hardirqs_on+0x7c/0x110 [ 133.753903][ T6409] do_syscall_64+0xcd/0x490 [ 133.753921][ T6409] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 133.753937][ T6409] RIP: 0033:0x7fa74e78e929 [ 133.753952][ T6409] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 133.753968][ T6409] RSP: 002b:00007fa74f649038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 133.753984][ T6409] RAX: ffffffffffffffda RBX: 00007fa74e9b5fa0 RCX: 00007fa74e78e929 [ 133.753994][ T6409] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 133.754003][ T6409] RBP: 00007fa74e810b39 R08: 0000000000000000 R09: 0000000000000000 [ 133.754013][ T6409] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 133.754022][ T6409] R13: 0000000000000000 R14: 00007fa74e9b5fa0 R15: 00007ffda1bc3278 [ 133.754042][ T6409] [ 135.533053][ T6443] netlink: 342 bytes leftover after parsing attributes in process `syz.2.99'. [ 135.675586][ T6435] netlink: 48 bytes leftover after parsing attributes in process `syz.1.98'. [ 135.703494][ T6443] netlink: 342 bytes leftover after parsing attributes in process `syz.2.99'. [ 135.771484][ T30] audit: type=1806 audit(6044331974.687:2): xattr="." res=0 [ 136.006284][ T6457] snd_aloop snd_aloop.0: control 1:6:-2147483647:¢¸è_ÅheºRŸª:6 is already present [ 136.778868][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 136.785468][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 139.115637][ T6508] netlink: 28 bytes leftover after parsing attributes in process `syz.0.112'. [ 139.175002][ T6508] bridge0: port 2(bridge_slave_1) entered disabled state [ 139.292353][ T6508] bridge_slave_1 (unregistering): left allmulticast mode [ 139.326955][ T6508] bridge_slave_1 (unregistering): left promiscuous mode [ 139.357165][ T6508] bridge0: port 2(bridge_slave_1) entered disabled state [ 139.795830][ T6518] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 140.133371][ T6526] blktrace: Concurrent blktraces are not allowed on loop2 [ 140.443542][ T6515] : Can't lookup blockdev [ 140.628989][ T6530] blktrace: Concurrent blktraces are not allowed on loop2 [ 141.368954][ T6551] FAULT_INJECTION: forcing a failure. [ 141.368954][ T6551] name failslab, interval 1, probability 0, space 0, times 0 [ 141.471545][ T6551] CPU: 0 UID: 0 PID: 6551 Comm: syz.0.123 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 141.471571][ T6551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 141.471581][ T6551] Call Trace: [ 141.471587][ T6551] [ 141.471594][ T6551] dump_stack_lvl+0x16c/0x1f0 [ 141.471617][ T6551] should_fail_ex+0x512/0x640 [ 141.471646][ T6551] should_failslab+0xc2/0x120 [ 141.471665][ T6551] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 141.471691][ T6551] ? dst_alloc+0x99/0x1a0 [ 141.471720][ T6551] dst_alloc+0x99/0x1a0 [ 141.471746][ T6551] rt_dst_alloc+0x35/0x3a0 [ 141.471769][ T6551] ip_route_output_key_hash_rcu+0x87a/0x28f0 [ 141.471802][ T6551] ip_route_output_key_hash+0x137/0x2e0 [ 141.471829][ T6551] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 141.471859][ T6551] ? __call_rcu_common.constprop.0+0x3e5/0x9f0 [ 141.471885][ T6551] ? lockdep_hardirqs_on+0x7c/0x110 [ 141.471911][ T6551] ? percpu_counter_add_batch+0xb8/0x1f0 [ 141.471936][ T6551] ip_route_output_flow+0x27/0x150 [ 141.471953][ T6551] tcp_v4_connect+0x13fd/0x1bd0 [ 141.471985][ T6551] ? __pfx_tcp_v4_connect+0x10/0x10 [ 141.472008][ T6551] ? __lock_acquire+0xb8a/0x1c90 [ 141.472045][ T6551] __inet_stream_connect+0x3c5/0x1020 [ 141.472076][ T6551] ? __pfx___inet_stream_connect+0x10/0x10 [ 141.472101][ T6551] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 141.472131][ T6551] ? __local_bh_enable_ip+0xa4/0x120 [ 141.472154][ T6551] inet_stream_connect+0x57/0xa0 [ 141.472180][ T6551] kernel_connect+0x107/0x180 [ 141.472201][ T6551] ? __pfx_kernel_connect+0x10/0x10 [ 141.472231][ T6551] ? __local_bh_enable_ip+0xa4/0x120 [ 141.472251][ T6551] smc_connect+0x4c7/0x760 [ 141.472277][ T6551] ? __pfx_smc_connect+0x10/0x10 [ 141.472299][ T6551] __sys_connect_file+0x13e/0x1a0 [ 141.472325][ T6551] __sys_connect+0x13b/0x160 [ 141.472349][ T6551] ? __pfx___sys_connect+0x10/0x10 [ 141.472380][ T6551] ? xfd_validate_state+0x61/0x180 [ 141.472400][ T6551] ? __pfx_do_writev+0x10/0x10 [ 141.472427][ T6551] __x64_sys_connect+0x72/0xb0 [ 141.472449][ T6551] ? lockdep_hardirqs_on+0x7c/0x110 [ 141.472474][ T6551] do_syscall_64+0xcd/0x490 [ 141.472492][ T6551] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 141.472508][ T6551] RIP: 0033:0x7f38d4d8e929 [ 141.472523][ T6551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 141.472538][ T6551] RSP: 002b:00007f38d5bfd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 141.472554][ T6551] RAX: ffffffffffffffda RBX: 00007f38d4fb5fa0 RCX: 00007f38d4d8e929 [ 141.472565][ T6551] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 141.472579][ T6551] RBP: 00007f38d4e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 141.472588][ T6551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 141.472597][ T6551] R13: 0000000000000000 R14: 00007f38d4fb5fa0 R15: 00007fffb5344918 [ 141.472619][ T6551] [ 141.770592][ T6557] netlink: 338 bytes leftover after parsing attributes in process `syz.1.125'. [ 141.914524][ T6558] blktrace: Concurrent blktraces are not allowed on loop2 [ 142.019465][ T6561] blktrace: Concurrent blktraces are not allowed on loop2 [ 142.046560][ T6563] [U]  [ 142.049473][ T6563] [U] [ 142.052166][ T6563] [U] [ 142.054855][ T6563] [U] [ 142.057980][ T6563] [U] [ 142.060680][ T6563] [U] [ 142.063369][ T6563] [U] [ 142.066062][ T6563] [U] [ 142.083530][ T6563] [U] [ 142.086259][ T6563] [U] [ 142.088948][ T6563] [U] [ 142.091639][ T6563] [U] [ 142.103803][ T6563] [U] [ 142.106523][ T6563] [U] [ 142.109216][ T6563] [U] [ 142.111906][ T6563] [U] [ 142.138994][ T6563] [U] [ 142.141723][ T6563] [U] [ 142.144417][ T6563] [U] [ 142.147130][ T6563] [U] [ 142.175845][ T6563] [U] [ 142.178579][ T6563] [U] [ 142.181269][ T6563] [U] [ 142.183957][ T6563] [U] [ 142.226033][ T6563] [U] [ 142.228768][ T6563] [U] [ 142.231468][ T6563] [U] [ 142.234159][ T6563] [U] [ 142.269895][ T6563] [U] [ 142.272628][ T6563] [U] [ 142.275319][ T6563] [U] [ 142.278272][ T6563] [U] [ 142.299064][ T6563] [U] [ 142.301789][ T6563] [U] [ 142.304484][ T6563] [U] [ 142.307171][ T6563] [U] [ 142.337813][ T6563] [U] [ 142.340542][ T6563] [U] [ 142.343231][ T6563] [U] [ 142.345920][ T6563] [U] [ 142.381273][ T6563] [U] [ 142.384000][ T6563] [U] [ 142.386713][ T6563] [U] [ 142.389403][ T6563] [U] [ 142.417960][ T6563] [U] [ 142.420695][ T6563] [U] [ 142.423416][ T6563] [U] [ 142.426120][ T6563] [U] [ 142.438245][ T6563] [U] [ 142.440964][ T6563] [U] [ 142.443659][ T6563] [U] [ 142.446349][ T6563] [U] [ 142.470498][ T6563] [U] [ 142.473249][ T6563] [U] [ 142.475943][ T6563] [U] [ 142.478628][ T6563] [U] [ 142.505603][ T6563] [U] [ 142.508327][ T6563] [U] [ 142.511018][ T6563] [U] [ 142.513713][ T6563] [U] [ 142.528990][ T6563] [U] [ 142.531718][ T6563] [U] [ 142.534408][ T6563] [U] [ 142.537101][ T6563] [U] [ 142.554139][ T6563] [U] [ 142.556869][ T6563] [U] [ 142.559567][ T6563] [U] [ 142.562258][ T6563] [U] [ 142.597690][ T6563] [U] [ 142.600416][ T6563] [U] [ 142.603113][ T6563] [U] [ 142.605801][ T6563] [U] [ 142.660469][ T6563] [U] [ 142.663197][ T6563] [U] [ 142.665891][ T6563] [U] [ 142.668580][ T6563] [U] [ 142.720225][ T6563] [U] [ 142.722952][ T6563] [U] [ 142.725645][ T6563] [U] [ 142.728334][ T6563] [U] [ 142.779098][ T6563] [U] [ 142.781826][ T6563] [U] [ 142.784518][ T6563] [U] [ 142.787208][ T6563] [U] [ 142.838272][ T6563] [U] [ 142.841004][ T6563] [U] [ 142.843703][ T6563] [U] [ 142.846391][ T6563] [U] [ 142.952333][ T6563] [U] [ 142.955069][ T6563] [U] [ 142.957759][ T6563] [U] [ 142.960457][ T6563] [U] [ 142.999568][ T6568] [U] [ 143.002301][ T6568] [U] [ 143.004991][ T6568] [U] [ 143.007681][ T6568] [U] [ 143.036436][ T6568] [U] [ 143.039165][ T6568] [U] [ 143.041860][ T6568] [U] [ 143.044552][ T6568] [U] [ 143.053859][ T6582] FAULT_INJECTION: forcing a failure. [ 143.053859][ T6582] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 143.123073][ T6568] [U] [ 143.125805][ T6568] [U] [ 143.128496][ T6568] [U] [ 143.131191][ T6568] [U] [ 143.146472][ T6582] CPU: 0 UID: 0 PID: 6582 Comm: syz.3.131 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 143.146498][ T6582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 143.146508][ T6582] Call Trace: [ 143.146514][ T6582] [ 143.146520][ T6582] dump_stack_lvl+0x16c/0x1f0 [ 143.146542][ T6582] should_fail_ex+0x512/0x640 [ 143.146575][ T6582] _copy_to_user+0x32/0xd0 [ 143.146595][ T6582] mon_text_copy_to_user+0xce/0x1a0 [ 143.146614][ T6582] mon_text_read_u+0x594/0xbd0 [ 143.146635][ T6582] ? __debugfs_file_get+0x1fe/0x840 [ 143.146653][ T6582] ? __pfx_mon_text_read_u+0x10/0x10 [ 143.146676][ T6582] full_proxy_read+0x13c/0x200 [ 143.146693][ T6582] ? __pfx_full_proxy_read+0x10/0x10 [ 143.146712][ T6582] vfs_read+0x1e1/0xc60 [ 143.146740][ T6582] ? __pfx___mutex_lock+0x10/0x10 [ 143.146757][ T6582] ? __pfx_vfs_read+0x10/0x10 [ 143.146788][ T6582] ? __fget_files+0x20e/0x3c0 [ 143.146818][ T6582] ksys_read+0x12a/0x250 [ 143.146841][ T6582] ? __pfx_ksys_read+0x10/0x10 [ 143.146872][ T6582] do_syscall_64+0xcd/0x490 [ 143.146890][ T6582] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 143.146908][ T6582] RIP: 0033:0x7fa74e78e929 [ 143.146922][ T6582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 143.146938][ T6582] RSP: 002b:00007fa74f649038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 143.146954][ T6582] RAX: ffffffffffffffda RBX: 00007fa74e9b5fa0 RCX: 00007fa74e78e929 [ 143.146965][ T6582] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000006 [ 143.146975][ T6582] RBP: 00007fa74f649090 R08: 0000000000000000 R09: 0000000000000000 [ 143.146984][ T6582] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 143.146994][ T6582] R13: 0000000000000000 R14: 00007fa74e9b5fa0 R15: 00007ffda1bc3278 [ 143.147015][ T6582] [ 143.545466][ T6568] [U] [ 144.200492][ T6591] netlink: 8 bytes leftover after parsing attributes in process `syz.0.134'. [ 144.780599][ T6609] blktrace: Concurrent blktraces are not allowed on loop2 [ 145.378518][ T6619] capability: warning: `syz.0.140' uses 32-bit capabilities (legacy support in use) [ 145.538757][ T6625] netlink: 4 bytes leftover after parsing attributes in process `syz.0.140'. [ 148.949434][ T6674] [U]  [ 148.952254][ T6674] [U] [ 148.954953][ T6674] [U] [ 148.957644][ T6674] [U] [ 149.032816][ T6674] [U] [ 149.035554][ T6674] [U] [ 149.038249][ T6674] [U] [ 149.040945][ T6674] [U] [ 149.098914][ T6674] [U] [ 149.101651][ T6674] [U] [ 149.104344][ T6674] [U] [ 149.107036][ T6674] [U] [ 149.155353][ T6674] [U] [ 149.158092][ T6674] [U] [ 149.160794][ T6674] [U] [ 149.163520][ T6674] [U] [ 149.214928][ T6674] [U] [ 149.217657][ T6674] [U] [ 149.220357][ T6674] [U] [ 149.223046][ T6674] [U] [ 149.273189][ T6674] [U] [ 149.275966][ T6674] [U] [ 149.278668][ T6674] [U] [ 149.281363][ T6674] [U] [ 149.321339][ T6674] [U] [ 149.324064][ T6674] [U] [ 149.326753][ T6674] [U] [ 149.329442][ T6674] [U] [ 149.368868][ T6674] [U] [ 149.371598][ T6674] [U] [ 149.374290][ T6674] [U] [ 149.376980][ T6674] [U] [ 149.438086][ T6674] [U] [ 149.440818][ T6674] [U] [ 149.443510][ T6674] [U] [ 149.446198][ T6674] [U] [ 149.523186][ T6674] [U] [ 149.525930][ T6674] [U] [ 149.528627][ T6674] [U] [ 149.531319][ T6674] [U] [ 149.591397][ T6674] [U] [ 149.594130][ T6674] [U] [ 149.596822][ T6674] [U] [ 149.599510][ T6674] [U] [ 149.659254][ T6674] [U] [ 149.662025][ T6674] [U] [ 149.664718][ T6674] [U] [ 149.667407][ T6674] [U] [ 149.722772][ T6674] [U] [ 149.725507][ T6674] [U] [ 149.728204][ T6674] [U] [ 149.730895][ T6674] [U] [ 149.798131][ T6674] [U] [ 150.069572][ T6692] FAULT_INJECTION: forcing a failure. [ 150.069572][ T6692] name failslab, interval 1, probability 0, space 0, times 0 [ 150.144282][ T6692] CPU: 0 UID: 0 PID: 6692 Comm: syz.0.155 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 150.144308][ T6692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 150.144318][ T6692] Call Trace: [ 150.144324][ T6692] [ 150.144331][ T6692] dump_stack_lvl+0x16c/0x1f0 [ 150.144353][ T6692] should_fail_ex+0x512/0x640 [ 150.144378][ T6692] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 150.144406][ T6692] should_failslab+0xc2/0x120 [ 150.144424][ T6692] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 150.144450][ T6692] ? __kernfs_new_node+0xd2/0x8e0 [ 150.144476][ T6692] __kernfs_new_node+0xd2/0x8e0 [ 150.144502][ T6692] ? __pfx___kernfs_new_node+0x10/0x10 [ 150.144531][ T6692] ? find_held_lock+0x2b/0x80 [ 150.144549][ T6692] ? kernfs_root+0xee/0x2a0 [ 150.144576][ T6692] kernfs_new_node+0x13c/0x1e0 [ 150.144596][ T6692] __kernfs_create_file+0x53/0x350 [ 150.144618][ T6692] sysfs_add_file_mode_ns+0x207/0x3c0 [ 150.144646][ T6692] sysfs_merge_group+0x1aa/0x340 [ 150.144671][ T6692] ? __pfx_sysfs_merge_group+0x10/0x10 [ 150.144698][ T6692] ? __pfx_dev_add_physical_location+0x10/0x10 [ 150.144717][ T6692] ? bus_to_subsys+0x131/0x160 [ 150.144741][ T6692] dpm_sysfs_add+0x237/0x280 [ 150.144760][ T6692] device_add+0x9a6/0x1a70 [ 150.144781][ T6692] ? __pfx_device_add+0x10/0x10 [ 150.144799][ T6692] ? lockdep_init_map_type+0x5c/0x280 [ 150.144821][ T6692] ? __init_waitqueue_head+0xca/0x150 [ 150.144852][ T6692] rfkill_register+0x1ad/0xb40 [ 150.144878][ T6692] nfc_register_device+0x11f/0x3c0 [ 150.144898][ T6692] nci_register_device+0x7f1/0xb80 [ 150.144923][ T6692] ? __pfx_nci_register_device+0x10/0x10 [ 150.144961][ T6692] ? lockdep_init_map_type+0x5c/0x280 [ 150.144988][ T6692] virtual_ncidev_open+0x141/0x220 [ 150.145011][ T6692] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 150.145032][ T6692] misc_open+0x35d/0x420 [ 150.145056][ T6692] ? __pfx_misc_open+0x10/0x10 [ 150.145078][ T6692] chrdev_open+0x234/0x6a0 [ 150.145093][ T6692] ? __pfx_apparmor_file_open+0x10/0x10 [ 150.145120][ T6692] ? __pfx_chrdev_open+0x10/0x10 [ 150.145137][ T6692] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 150.145165][ T6692] do_dentry_open+0x741/0x1c10 [ 150.145191][ T6692] ? __pfx_chrdev_open+0x10/0x10 [ 150.145211][ T6692] vfs_open+0x82/0x3f0 [ 150.145232][ T6692] path_openat+0x1de4/0x2cb0 [ 150.145264][ T6692] ? __pfx_path_openat+0x10/0x10 [ 150.145290][ T6692] ? __lock_acquire+0xb8a/0x1c90 [ 150.145314][ T6692] do_filp_open+0x20b/0x470 [ 150.145339][ T6692] ? __pfx_do_filp_open+0x10/0x10 [ 150.145380][ T6692] ? alloc_fd+0x471/0x7d0 [ 150.145410][ T6692] do_sys_openat2+0x11b/0x1d0 [ 150.145429][ T6692] ? __pfx_do_sys_openat2+0x10/0x10 [ 150.145457][ T6692] __x64_sys_openat+0x174/0x210 [ 150.145477][ T6692] ? __pfx___x64_sys_openat+0x10/0x10 [ 150.145506][ T6692] do_syscall_64+0xcd/0x490 [ 150.145525][ T6692] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 150.145542][ T6692] RIP: 0033:0x7f38d4d8e929 [ 150.145556][ T6692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 150.145571][ T6692] RSP: 002b:00007f38d5bfd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 150.145587][ T6692] RAX: ffffffffffffffda RBX: 00007f38d4fb5fa0 RCX: 00007f38d4d8e929 [ 150.145598][ T6692] RDX: 0000000000000002 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 150.145608][ T6692] RBP: 00007f38d4e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 150.145617][ T6692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 150.145626][ T6692] R13: 0000000000000000 R14: 00007f38d4fb5fa0 R15: 00007fffb5344918 [ 150.145648][ T6692] [ 151.824965][ T6718] tty tty56: ldisc open failed (-12), clearing slot 55 [ 152.391037][ T30] audit: type=1800 audit(6044331991.317:3): pid=6736 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.161" name="lu_gp_id" dev="configfs" ino=11630 res=0 errno=0 [ 152.411128][ C0] vkms_vblank_simulate: vblank timer overrun [ 153.486358][ T6750] ALSA: mixer_oss: invalid OSS volume '' [ 154.041401][ T6767] batman_adv: Routing algorithm '' is not supported [ 156.023261][ T6789] CIFS: VFS: Invalid SecurityFlags: [ 156.483349][ T6795] FAULT_INJECTION: forcing a failure. [ 156.483349][ T6795] name failslab, interval 1, probability 0, space 0, times 0 [ 156.563908][ T6795] CPU: 0 UID: 0 PID: 6795 Comm: syz.3.173 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 156.563935][ T6795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 156.563945][ T6795] Call Trace: [ 156.563951][ T6795] [ 156.563958][ T6795] dump_stack_lvl+0x16c/0x1f0 [ 156.563980][ T6795] should_fail_ex+0x512/0x640 [ 156.564009][ T6795] should_failslab+0xc2/0x120 [ 156.564028][ T6795] __kmalloc_cache_noprof+0x6a/0x3e0 [ 156.564052][ T6795] ? cfctrl_create+0x9a/0x320 [ 156.564073][ T6795] cfctrl_create+0x9a/0x320 [ 156.564089][ T6795] ? __pfx_cfctrl_create+0x10/0x10 [ 156.564106][ T6795] ? __raw_spin_lock_init+0x3a/0x110 [ 156.564144][ T6795] cfcnfg_create+0xb2/0x500 [ 156.564159][ T6795] ? debug_mutex_init+0x37/0x70 [ 156.564175][ T6795] ? __pfx_caif_init_net+0x10/0x10 [ 156.564198][ T6795] caif_init_net+0x7d/0xe0 [ 156.564223][ T6795] ops_init+0x1df/0x5f0 [ 156.564244][ T6795] setup_net+0x1ff/0x510 [ 156.564261][ T6795] ? lockdep_init_map_type+0x5c/0x280 [ 156.564284][ T6795] ? __pfx_setup_net+0x10/0x10 [ 156.564304][ T6795] ? debug_mutex_init+0x37/0x70 [ 156.564322][ T6795] copy_net_ns+0x2a6/0x5f0 [ 156.564344][ T6795] create_new_namespaces+0x3ea/0xa90 [ 156.564368][ T6795] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 156.564388][ T6795] ksys_unshare+0x45b/0xa40 [ 156.564409][ T6795] ? __pfx_ksys_unshare+0x10/0x10 [ 156.564432][ T6795] ? xfd_validate_state+0x61/0x180 [ 156.564459][ T6795] __x64_sys_unshare+0x31/0x40 [ 156.564480][ T6795] do_syscall_64+0xcd/0x490 [ 156.564498][ T6795] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 156.564514][ T6795] RIP: 0033:0x7fa74e78e929 [ 156.564528][ T6795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 156.564543][ T6795] RSP: 002b:00007fa74f628038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 156.564560][ T6795] RAX: ffffffffffffffda RBX: 00007fa74e9b6080 RCX: 00007fa74e78e929 [ 156.564575][ T6795] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 156.564584][ T6795] RBP: 00007fa74e810b39 R08: 0000000000000000 R09: 0000000000000000 [ 156.564594][ T6795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 156.564603][ T6795] R13: 0000000000000000 R14: 00007fa74e9b6080 R15: 00007ffda1bc3278 [ 156.564624][ T6795] [ 156.794034][ C0] vkms_vblank_simulate: vblank timer overrun [ 157.917897][ T6800] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 166.104745][ T6930] blktrace: Concurrent blktraces are not allowed on loop2 [ 169.664182][ T6958] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 170.213722][ T6981] [U]  [ 170.216554][ T6981] [U] [ 170.219247][ T6981] [U] [ 170.221937][ T6981] [U] [ 170.264632][ T6981] [U] [ 170.267363][ T6981] [U] [ 170.270057][ T6981] [U] [ 170.272755][ T6981] [U] [ 170.328350][ T6981] [U] [ 170.331083][ T6981] [U] [ 170.333781][ T6981] [U] [ 170.336509][ T6981] [U] [ 170.372443][ T6983] blktrace: Concurrent blktraces are not allowed on loop2 [ 170.398102][ T6981] [U] [ 170.400827][ T6981] [U] [ 170.403517][ T6981] [U] [ 170.406207][ T6981] [U] [ 170.455434][ T6981] [U] [ 170.458162][ T6981] [U] [ 170.460854][ T6981] [U] [ 170.463630][ T6981] [U] [ 170.505848][ T6981] [U] [ 170.508577][ T6981] [U] [ 170.511269][ T6981] [U] [ 170.513958][ T6981] [U] [ 170.547289][ T6981] [U] [ 170.550010][ T6981] [U] [ 170.552701][ T6981] [U] [ 170.555464][ T6981] [U] [ 170.601656][ T6981] [U] [ 170.604388][ T6981] [U] [ 170.607079][ T6981] [U] [ 170.609826][ T6981] [U] [ 170.656388][ T6981] [U] [ 170.659115][ T6981] [U] [ 170.661811][ T6981] [U] [ 170.664517][ T6981] [U] [ 170.708893][ T6981] [U] [ 170.711618][ T6981] [U] [ 170.714310][ T6981] [U] [ 170.716998][ T6981] [U] [ 170.788272][ T6981] [U] [ 170.791000][ T6981] [U] [ 170.793689][ T6981] [U] [ 170.796467][ T6981] [U] [ 170.838615][ T6981] [U] [ 170.841342][ T6981] [U] [ 170.844038][ T6981] [U] [ 170.846735][ T6981] [U] [ 170.886055][ T6981] [U] [ 170.888786][ T6981] [U] [ 170.891475][ T6981] [U] [ 170.894165][ T6981] [U] [ 170.943915][ T6981] [U] [ 170.946675][ T6981] [U] [ 170.949369][ T6981] [U] [ 170.952061][ T6981] [U] [ 171.001171][ T6981] [U] [ 171.003899][ T6981] [U] [ 171.006590][ T6981] [U] [ 171.009285][ T6981] [U] [ 171.090477][ T6981] [U] [ 171.364427][ T6998] [U]  [ 171.367246][ T6998] [U] [ 171.369965][ T6998] [U] [ 171.372655][ T6998] [U] [ 171.439353][ T6998] [U] [ 171.442086][ T6998] [U] [ 171.444779][ T6998] [U] [ 171.447472][ T6998] [U] [ 171.502855][ T6998] [U] [ 171.505585][ T6998] [U] [ 171.508276][ T6998] [U] [ 171.510966][ T6998] [U] [ 171.577286][ T6998] [U] [ 171.580014][ T6998] [U] [ 171.582706][ T6998] [U] [ 171.585393][ T6998] [U] [ 171.657828][ T6998] [U] [ 171.660560][ T6998] [U] [ 171.663253][ T6998] [U] [ 171.665945][ T6998] [U] [ 171.728999][ T6998] [U] [ 171.731743][ T6998] [U] [ 171.734436][ T6998] [U] [ 171.737131][ T6998] [U] [ 171.792514][ T6998] [U] [ 171.795245][ T6998] [U] [ 171.797937][ T6998] [U] [ 171.800628][ T6998] [U] [ 171.865260][ T6998] [U] [ 171.868168][ T6998] [U] [ 171.870860][ T6998] [U] [ 171.873550][ T6998] [U] [ 171.961951][ T6998] [U] [ 171.964686][ T6998] [U] [ 171.967386][ T6998] [U] [ 171.970082][ T6998] [U] [ 172.035974][ T6998] [U] [ 172.038718][ T6998] [U] [ 172.041410][ T6998] [U] [ 172.044103][ T6998] [U] [ 172.105399][ T6998] [U] [ 172.108128][ T6998] [U] [ 172.110820][ T6998] [U] [ 172.113509][ T6998] [U] [ 172.286375][ T6998] [U] [ 172.289113][ T6998] [U] [ 172.291815][ T6998] [U] [ 172.294507][ T6998] [U] [ 172.404217][ T6998] [U] [ 173.847949][ T7035] FAULT_INJECTION: forcing a failure. [ 173.847949][ T7035] name failslab, interval 1, probability 0, space 0, times 0 [ 173.920731][ T7035] CPU: 0 UID: 0 PID: 7035 Comm: syz.3.228 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 173.920758][ T7035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 173.920768][ T7035] Call Trace: [ 173.920774][ T7035] [ 173.920781][ T7035] dump_stack_lvl+0x16c/0x1f0 [ 173.920804][ T7035] should_fail_ex+0x512/0x640 [ 173.920831][ T7035] ? __kmalloc_cache_node_noprof+0x5a/0x420 [ 173.920860][ T7035] should_failslab+0xc2/0x120 [ 173.920878][ T7035] __kmalloc_cache_node_noprof+0x6d/0x420 [ 173.920903][ T7035] ? __alloc_workqueue+0x506/0x1810 [ 173.920927][ T7035] __alloc_workqueue+0x506/0x1810 [ 173.920951][ T7035] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 173.920979][ T7035] alloc_workqueue+0xd2/0x200 [ 173.920999][ T7035] ? __pfx_alloc_workqueue+0x10/0x10 [ 173.921025][ T7035] ? __pfx___debug_object_init+0x10/0x10 [ 173.921051][ T7035] nci_register_device+0x394/0xb80 [ 173.921085][ T7035] ? __pfx_nci_register_device+0x10/0x10 [ 173.921113][ T7035] ? lockdep_init_map_type+0x5c/0x280 [ 173.921141][ T7035] virtual_ncidev_open+0x141/0x220 [ 173.921164][ T7035] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 173.921186][ T7035] misc_open+0x35d/0x420 [ 173.921209][ T7035] ? __pfx_misc_open+0x10/0x10 [ 173.921230][ T7035] chrdev_open+0x234/0x6a0 [ 173.921246][ T7035] ? __pfx_apparmor_file_open+0x10/0x10 [ 173.921269][ T7035] ? __pfx_chrdev_open+0x10/0x10 [ 173.921286][ T7035] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 173.921313][ T7035] do_dentry_open+0x741/0x1c10 [ 173.921338][ T7035] ? __pfx_chrdev_open+0x10/0x10 [ 173.921358][ T7035] vfs_open+0x82/0x3f0 [ 173.921380][ T7035] path_openat+0x1de4/0x2cb0 [ 173.921411][ T7035] ? __pfx_path_openat+0x10/0x10 [ 173.921436][ T7035] ? __lock_acquire+0xb8a/0x1c90 [ 173.921460][ T7035] do_filp_open+0x20b/0x470 [ 173.921484][ T7035] ? __pfx_do_filp_open+0x10/0x10 [ 173.921524][ T7035] ? alloc_fd+0x471/0x7d0 [ 173.921553][ T7035] do_sys_openat2+0x11b/0x1d0 [ 173.921572][ T7035] ? __pfx_do_sys_openat2+0x10/0x10 [ 173.921599][ T7035] __x64_sys_openat+0x174/0x210 [ 173.921625][ T7035] ? __pfx___x64_sys_openat+0x10/0x10 [ 173.921653][ T7035] do_syscall_64+0xcd/0x490 [ 173.921672][ T7035] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 173.921695][ T7035] RIP: 0033:0x7fa74e78e929 [ 173.921709][ T7035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 173.921724][ T7035] RSP: 002b:00007fa74f649038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 173.921741][ T7035] RAX: ffffffffffffffda RBX: 00007fa74e9b5fa0 RCX: 00007fa74e78e929 [ 173.921751][ T7035] RDX: 0000000000000002 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 173.921762][ T7035] RBP: 00007fa74e810b39 R08: 0000000000000000 R09: 0000000000000000 [ 173.921772][ T7035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 173.921788][ T7035] R13: 0000000000000000 R14: 00007fa74e9b5fa0 R15: 00007ffda1bc3278 [ 173.921809][ T7035] [ 174.215581][ C0] vkms_vblank_simulate: vblank timer overrun [ 176.563676][ T7063] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 179.763720][ T7136] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 181.352378][ T7184] program syz.0.257 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 181.384017][ T7184] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 183.618834][ T7221] netlink: 342 bytes leftover after parsing attributes in process `syz.0.267'. [ 186.854313][ T7235] Invalid ELF header magic: != ELF [ 187.542163][ T7254] snd_aloop snd_aloop.0: control 1:6:-2147483647:¢¸è_ÅheºRŸª:6 is already present [ 188.480062][ T7267] [U]  [ 188.482885][ T7267] [U] [ 188.485580][ T7267] [U] [ 188.488287][ T7267] [U] [ 188.574899][ T7267] [U] [ 188.577644][ T7267] [U] [ 188.580344][ T7267] [U] [ 188.583062][ T7267] [U] [ 188.647759][ T7267] [U] [ 188.650496][ T7267] [U] [ 188.653190][ T7267] [U] [ 188.655885][ T7267] [U] [ 188.665507][ T7271] FAULT_INJECTION: forcing a failure. [ 188.665507][ T7271] name failslab, interval 1, probability 0, space 0, times 0 [ 188.725828][ T7267] [U] [ 188.728549][ T7267] [U] [ 188.731243][ T7267] [U] [ 188.733935][ T7267] [U] [ 188.769341][ T7271] CPU: 0 UID: 0 PID: 7271 Comm: syz.2.281 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 188.769367][ T7271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 188.769377][ T7271] Call Trace: [ 188.769383][ T7271] [ 188.769389][ T7271] dump_stack_lvl+0x16c/0x1f0 [ 188.769411][ T7271] should_fail_ex+0x512/0x640 [ 188.769436][ T7271] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 188.769466][ T7271] should_failslab+0xc2/0x120 [ 188.769484][ T7271] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 188.769510][ T7271] ? find_held_lock+0x2b/0x80 [ 188.769527][ T7271] ? neigh_sysctl_register+0xb2/0x670 [ 188.769548][ T7271] kmemdup_noprof+0x29/0x60 [ 188.769574][ T7271] neigh_sysctl_register+0xb2/0x670 [ 188.769596][ T7271] ? __pfx_neigh_sysctl_register+0x10/0x10 [ 188.769621][ T7271] ? inetdev_init+0x245/0x5a0 [ 188.769642][ T7271] ? inetdev_event+0xc5f/0x18a0 [ 188.769662][ T7271] ? notifier_call_chain+0xbc/0x410 [ 188.769684][ T7271] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 188.769708][ T7271] devinet_sysctl_register+0xb6/0x200 [ 188.769733][ T7271] inetdev_init+0x2b8/0x5a0 [ 188.769756][ T7271] inetdev_event+0xc5f/0x18a0 [ 188.769780][ T7271] ? ib_netdevice_event+0xfc/0x330 [ 188.769801][ T7271] ? __pfx_inetdev_event+0x10/0x10 [ 188.769823][ T7271] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 188.769851][ T7271] notifier_call_chain+0xbc/0x410 [ 188.769868][ T7271] ? __pfx_inetdev_event+0x10/0x10 [ 188.769894][ T7271] call_netdevice_notifiers_info+0xbe/0x140 [ 188.769918][ T7271] register_netdevice+0x182e/0x2270 [ 188.769939][ T7271] ? idr_alloc+0xdd/0x130 [ 188.769963][ T7271] ? __pfx_register_netdevice+0x10/0x10 [ 188.769988][ T7271] ppp_dev_configure+0x99b/0xc80 [ 188.770014][ T7271] ppp_ioctl+0x17e0/0x2660 [ 188.770038][ T7271] ? find_held_lock+0x2b/0x80 [ 188.770053][ T7271] ? __pfx_ppp_ioctl+0x10/0x10 [ 188.770078][ T7271] ? __fget_files+0x20e/0x3c0 [ 188.770104][ T7271] ? __pfx_ppp_ioctl+0x10/0x10 [ 188.770125][ T7271] __x64_sys_ioctl+0x18b/0x210 [ 188.770148][ T7271] do_syscall_64+0xcd/0x490 [ 188.770166][ T7271] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 188.770182][ T7271] RIP: 0033:0x7f1d1fb8e929 [ 188.770197][ T7271] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 188.770212][ T7271] RSP: 002b:00007f1d1d9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 188.770228][ T7271] RAX: ffffffffffffffda RBX: 00007f1d1fdb5fa0 RCX: 00007f1d1fb8e929 [ 188.770239][ T7271] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000005 [ 188.770248][ T7271] RBP: 00007f1d1fc10b39 R08: 0000000000000000 R09: 0000000000000000 [ 188.770258][ T7271] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 188.770267][ T7271] R13: 0000000000000000 R14: 00007f1d1fdb5fa0 R15: 00007ffd3ae08bf8 [ 188.770288][ T7271] [ 189.172381][ T7267] [U] [ 189.175134][ T7267] [U] [ 189.177833][ T7267] [U] [ 189.180529][ T7267] [U] [ 189.183505][ T7267] [U] [ 189.186222][ T7267] [U] [ 189.188923][ T7267] [U] [ 189.191637][ T7267] [U] [ 189.194687][ T7267] [U] [ 189.197403][ T7267] [U] [ 189.200101][ T7267] [U] [ 189.202796][ T7267] [U] [ 189.205982][ T7267] [U] [ 189.208694][ T7267] [U] [ 189.211400][ T7267] [U] [ 189.214101][ T7267] [U] [ 189.217091][ T7267] [U] [ 189.219791][ T7267] [U] [ 189.222488][ T7267] [U] [ 189.225208][ T7267] [U] [ 189.228094][ T7267] [U] [ 189.230791][ T7267] [U] [ 189.233485][ T7267] [U] [ 189.236178][ T7267] [U] [ 189.251628][ T7267] [U] [ 189.343602][ T7281] random: crng reseeded on system resumption [ 189.365629][ T7281] Unrecognized hibernate image header format! [ 189.371830][ T7281] PM: hibernation: Image mismatch: architecture specific data [ 190.712912][ T7312] snd_aloop snd_aloop.0: control 1:6:-2147483647:¢¸è_ÅheºRŸª:6 is already present [ 190.744846][ T7303] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 192.447473][ T7345] netlink: 12 bytes leftover after parsing attributes in process `syz.2.294'. [ 192.804499][ T7352] [U]  [ 192.807314][ T7352] [U] [ 192.810006][ T7352] [U] [ 192.812694][ T7352] [U] [ 192.883398][ T7352] [U] [ 192.886135][ T7352] [U] [ 192.888829][ T7352] [U] [ 192.891608][ T7352] [U] [ 192.918676][ T7355] netlink: 28 bytes leftover after parsing attributes in process `syz.2.298'. [ 192.942521][ T7352] [U] [ 192.945249][ T7352] [U] [ 192.947966][ T7352] [U] [ 192.950668][ T7352] [U] [ 192.986629][ T7352] [U] [ 192.989355][ T7352] [U] [ 192.992043][ T7352] [U] [ 192.994731][ T7352] [U] [ 193.034230][ T7352] [U] [ 193.037048][ T7352] [U] [ 193.039738][ T7352] [U] [ 193.042425][ T7352] [U] [ 193.089779][ T7352] [U] [ 193.092518][ T7352] [U] [ 193.095211][ T7352] [U] [ 193.097905][ T7352] [U] [ 193.169430][ T7352] [U] [ 193.172166][ T7352] [U] [ 193.174864][ T7352] [U] [ 193.177558][ T7352] [U] [ 193.221241][ T7352] [U] [ 193.223967][ T7352] [U] [ 193.226659][ T7352] [U] [ 193.229349][ T7352] [U] [ 193.286290][ T7352] [U] [ 193.289025][ T7352] [U] [ 193.291919][ T7352] [U] [ 193.294632][ T7352] [U] [ 193.354591][ T7352] [U] [ 193.357337][ T7352] [U] [ 193.360042][ T7352] [U] [ 193.362730][ T7352] [U] [ 193.418633][ T7352] [U] [ 193.421377][ T7352] [U] [ 193.424074][ T7352] [U] [ 193.426852][ T7352] [U] [ 193.483083][ T7352] [U] [ 193.485814][ T7352] [U] [ 193.488509][ T7352] [U] [ 193.491200][ T7352] [U] [ 193.548443][ T7352] [U] [ 193.551171][ T7352] [U] [ 193.553864][ T7352] [U] [ 193.556556][ T7352] [U] [ 193.628085][ T7352] [U] [ 194.586894][ T7367] : Can't lookup blockdev [ 196.471398][ T7415] FAULT_INJECTION: forcing a failure. [ 196.471398][ T7415] name failslab, interval 1, probability 0, space 0, times 0 [ 196.536585][ T7415] CPU: 0 UID: 0 PID: 7415 Comm: syz.0.311 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 196.536613][ T7415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 196.536623][ T7415] Call Trace: [ 196.536629][ T7415] [ 196.536636][ T7415] dump_stack_lvl+0x16c/0x1f0 [ 196.536657][ T7415] should_fail_ex+0x512/0x640 [ 196.536683][ T7415] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 196.536710][ T7415] should_failslab+0xc2/0x120 [ 196.536728][ T7415] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 196.536754][ T7415] ? alloc_empty_file+0x55/0x1e0 [ 196.536775][ T7415] alloc_empty_file+0x55/0x1e0 [ 196.536794][ T7415] path_openat+0xda/0x2cb0 [ 196.536817][ T7415] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 196.536841][ T7415] ? __pfx_path_openat+0x10/0x10 [ 196.536866][ T7415] ? __lock_acquire+0xb8a/0x1c90 [ 196.536891][ T7415] do_filp_open+0x20b/0x470 [ 196.536915][ T7415] ? __pfx_do_filp_open+0x10/0x10 [ 196.536954][ T7415] ? alloc_fd+0x471/0x7d0 [ 196.536982][ T7415] do_sys_openat2+0x11b/0x1d0 [ 196.537002][ T7415] ? __pfx_do_sys_openat2+0x10/0x10 [ 196.537029][ T7415] __x64_sys_openat+0x174/0x210 [ 196.537050][ T7415] ? __pfx___x64_sys_openat+0x10/0x10 [ 196.537078][ T7415] do_syscall_64+0xcd/0x490 [ 196.537097][ T7415] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 196.537113][ T7415] RIP: 0033:0x7f38d4d8e929 [ 196.537127][ T7415] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 196.537142][ T7415] RSP: 002b:00007f38d5bfd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 196.537158][ T7415] RAX: ffffffffffffffda RBX: 00007f38d4fb5fa0 RCX: 00007f38d4d8e929 [ 196.537169][ T7415] RDX: 0000000000080401 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 196.537179][ T7415] RBP: 00007f38d4e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 196.537188][ T7415] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 196.537198][ T7415] R13: 0000000000000000 R14: 00007f38d4fb5fa0 R15: 00007fffb5344918 [ 196.537218][ T7415] [ 199.281441][ T7451] syz.0.319 uses obsolete (PF_INET,SOCK_PACKET) [ 199.318102][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.335474][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 199.679347][ T7457] blktrace: Concurrent blktraces are not allowed on loop2 [ 199.946856][ T7456] : Can't lookup blockdev [ 201.661649][ T7486] Scaler: ================= START STATUS ================= [ 201.669057][ T7486] Scaler: ================== END STATUS ================== [ 201.738700][ T7488] [U]  [ 201.741534][ T7488] [U] [ 201.744229][ T7488] [U] [ 201.746921][ T7488] [U] [ 201.812022][ T7488] [U] [ 201.814755][ T7488] [U] [ 201.817463][ T7488] [U] [ 201.820210][ T7488] [U] [ 201.862392][ T7488] [U] [ 201.865131][ T7488] [U] [ 201.867823][ T7488] [U] [ 201.870517][ T7488] [U] [ 201.909926][ T7488] [U] [ 201.912666][ T7488] [U] [ 201.915360][ T7488] [U] [ 201.918051][ T7488] [U] [ 201.966284][ T7488] [U] [ 201.969030][ T7488] [U] [ 201.971739][ T7488] [U] [ 201.974452][ T7488] [U] [ 202.031706][ T7488] [U] [ 202.034444][ T7488] [U] [ 202.037144][ T7488] [U] [ 202.039922][ T7488] [U] [ 202.125861][ T7488] [U] [ 202.128592][ T7488] [U] [ 202.131285][ T7488] [U] [ 202.133976][ T7488] [U] [ 202.186267][ T7488] [U] [ 202.189000][ T7488] [U] [ 202.191694][ T7488] [U] [ 202.194383][ T7488] [U] [ 202.240073][ T7488] [U] [ 202.242804][ T7488] [U] [ 202.245500][ T7488] [U] [ 202.248189][ T7488] [U] [ 202.296621][ T7488] [U] [ 202.299358][ T7488] [U] [ 202.302050][ T7488] [U] [ 202.304743][ T7488] [U] [ 202.344358][ T7488] [U] [ 202.347086][ T7488] [U] [ 202.349784][ T7488] [U] [ 202.352481][ T7488] [U] [ 202.432402][ T7488] [U] [ 202.435141][ T7488] [U] [ 202.437837][ T7488] [U] [ 202.440529][ T7488] [U] [ 202.473892][ T7488] [U] [ 202.476629][ T7488] [U] [ 202.479318][ T7488] [U] [ 202.482143][ T7488] [U] [ 202.523665][ T7488] [U] [ 202.526401][ T7488] [U] [ 202.529103][ T7488] [U] [ 202.531794][ T7488] [U] [ 202.620690][ T7488] [U] [ 203.191951][ T7511] : Can't lookup blockdev [ 204.875124][ T7531] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 205.673509][ T7550] [U]  [ 205.676337][ T7550] [U] [ 205.679029][ T7550] [U] [ 205.681726][ T7550] [U] [ 205.730819][ T7550] [U] [ 205.733544][ T7550] [U] [ 205.736243][ T7550] [U] [ 205.738933][ T7550] [U] [ 205.768218][ T7550] [U] [ 205.770932][ T7550] [U] [ 205.773623][ T7550] [U] [ 205.776314][ T7550] [U] [ 205.851966][ T7550] [U] [ 205.854699][ T7550] [U] [ 205.857493][ T7550] [U] [ 205.860202][ T7550] [U] [ 205.910532][ T7550] [U] [ 205.913266][ T7550] [U] [ 205.915964][ T7550] [U] [ 205.918692][ T7550] [U] [ 205.968595][ T7550] [U] [ 205.971342][ T7550] [U] [ 205.974036][ T7550] [U] [ 205.976730][ T7550] [U] [ 206.013472][ T7550] [U] [ 206.016197][ T7550] [U] [ 206.018886][ T7550] [U] [ 206.021577][ T7550] [U] [ 206.083067][ T7550] [U] [ 206.085794][ T7550] [U] [ 206.088515][ T7550] [U] [ 206.091203][ T7550] [U] [ 206.134293][ T7550] [U] [ 206.137028][ T7550] [U] [ 206.139722][ T7550] [U] [ 206.142415][ T7550] [U] [ 206.201870][ T7550] [U] [ 206.204600][ T7550] [U] [ 206.207298][ T7550] [U] [ 206.209995][ T7550] [U] [ 206.255355][ T7550] [U] [ 206.258095][ T7550] [U] [ 206.260785][ T7550] [U] [ 206.263479][ T7550] [U] [ 206.317083][ T7550] [U] [ 206.319809][ T7550] [U] [ 206.322504][ T7550] [U] [ 206.325198][ T7550] [U] [ 206.376057][ T7550] [U] [ 206.378789][ T7550] [U] [ 206.381487][ T7550] [U] [ 206.384179][ T7550] [U] [ 206.446385][ T7550] [U] [ 206.449118][ T7550] [U] [ 206.451811][ T7550] [U] [ 206.454504][ T7550] [U] [ 206.532423][ T7550] [U] [ 206.919418][ T7564] syz.1.345 (7564): attempted to duplicate a private mapping with mremap. This is not supported. [ 207.876385][ T7582] netlink: 'syz.1.351': attribute type 11 has an invalid length. [ 208.001588][ T7583] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 208.951819][ T7592] [U]  [ 208.954655][ T7592] [U] [ 208.957352][ T7592] [U] [ 208.960047][ T7592] [U] [ 209.004095][ T7592] [U] [ 209.006838][ T7592] [U] [ 209.009546][ T7592] [U] [ 209.012244][ T7592] [U] [ 209.060178][ T7592] [U] [ 209.062904][ T7592] [U] [ 209.065603][ T7592] [U] [ 209.068293][ T7592] [U] [ 209.122229][ T7592] [U] [ 209.124990][ T7592] [U] [ 209.127688][ T7592] [U] [ 209.130387][ T7592] [U] [ 209.183087][ T7592] [U] [ 209.185849][ T7592] [U] [ 209.188572][ T7592] [U] [ 209.191283][ T7592] [U] [ 209.253028][ T7592] [U] [ 209.255764][ T7592] [U] [ 209.258460][ T7592] [U] [ 209.261152][ T7592] [U] [ 209.323128][ T7592] [U] [ 209.325863][ T7592] [U] [ 209.328576][ T7592] [U] [ 209.331268][ T7592] [U] [ 209.396056][ T7592] [U] [ 209.398785][ T7592] [U] [ 209.401477][ T7592] [U] [ 209.404170][ T7592] [U] [ 209.472562][ T7592] [U] [ 209.475380][ T7592] [U] [ 209.478072][ T7592] [U] [ 209.480765][ T7592] [U] [ 209.527774][ T7592] [U] [ 209.530504][ T7592] [U] [ 209.533196][ T7592] [U] [ 209.535889][ T7592] [U] [ 209.586949][ T7592] [U] [ 209.589679][ T7592] [U] [ 209.592409][ T7592] [U] [ 209.595099][ T7592] [U] [ 209.654688][ T7592] [U] [ 209.657519][ T7592] [U] [ 209.660221][ T7592] [U] [ 209.662915][ T7592] [U] [ 209.708750][ T7592] [U] [ 209.711481][ T7592] [U] [ 209.714180][ T7592] [U] [ 209.716874][ T7592] [U] [ 209.827432][ T7592] [U] [ 211.881952][ T7660] blktrace: Concurrent blktraces are not allowed on loop2 [ 213.656316][ T7682] openvswitch: netlink: IPv4 tunnel dst address is zero [ 214.791222][ T7740] cgroup: fork rejected by pids controller in /syz0 [ 217.599597][ T7898] blktrace: Concurrent blktraces are not allowed on loop2 [ 217.933298][ T7897] page: refcount:8 mapcount:0 mapping:0000000000000000 index:0xffff88807800e000 pfn:0x78008 [ 218.081945][ T7897] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 218.127465][ T7902] could not allocate digest TFM handle binfmt_misc [ 218.202282][ T7897] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 218.222631][ T7897] raw: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000 [ 218.353738][ T7897] raw: ffff88807800e000 0000000000000000 00000008ffffffff 0000000000000000 [ 218.431041][ T7897] head: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000 [ 218.512585][ T7897] head: ffff88807800e000 0000000000000000 00000008ffffffff 0000000000000000 [ 218.549565][ T7897] head: 00fff00000000003 ffffea0001e00201 00000000ffffffff 00000000ffffffff [ 218.592649][ T7897] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 218.625454][ T7897] page dumped because: unmovable page [ 218.647886][ T7897] page_owner tracks the page as allocated [ 218.672034][ T7897] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5698, tgid 5698 (sshd-session), ts 80108625555, free_ts 79282024981 [ 218.728945][ T7897] post_alloc_hook+0x1c0/0x230 [ 218.741175][ T7897] get_page_from_freelist+0x1321/0x3890 [ 218.755799][ T7897] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 218.768319][ T7897] alloc_pages_mpol+0x1fb/0x550 [ 218.780239][ T7897] alloc_pages_noprof+0x131/0x390 [ 218.813254][ T7897] skb_page_frag_refill+0x186/0x5a0 [ 218.828687][ T7897] try_fill_recv+0x7e4/0x28a0 [ 218.845076][ T7897] virtnet_poll+0x1984/0x3c30 [ 218.860083][ T7905] syz.2.391 (7905) used greatest stack depth: 19800 bytes left [ 218.867894][ T7897] __napi_poll.constprop.0+0xb7/0x550 [ 218.877963][ T7897] net_rx_action+0xa9f/0xfe0 [ 218.893893][ T7897] handle_softirqs+0x219/0x8e0 [ 218.903603][ T7897] __irq_exit_rcu+0x109/0x170 [ 218.918908][ T7897] irq_exit_rcu+0x9/0x30 [ 218.923600][ T7897] common_interrupt+0xbf/0xe0 [ 218.939525][ T7897] asm_common_interrupt+0x26/0x40 [ 218.948551][ T7897] page last free pid 5759 tgid 5759 stack trace: [ 218.965239][ T7897] __free_frozen_pages+0x7fe/0x1180 [ 218.980619][ T7897] __put_partials+0x16d/0x1c0 [ 218.990137][ T7897] qlist_free_all+0x4d/0x120 [ 219.001229][ T7897] kasan_quarantine_reduce+0x195/0x1e0 [ 219.016895][ T7897] __kasan_slab_alloc+0x69/0x90 [ 219.026962][ T7897] kmem_cache_alloc_lru_noprof+0x1d0/0x3b0 [ 219.042412][ T7897] alloc_inode+0xc3/0x240 [ 219.053152][ T7897] create_pipe_files+0x4c/0x930 [ 219.061931][ T7897] do_pipe2+0xaf/0x1c0 [ 219.072770][ T7897] __x64_sys_pipe2+0x54/0x80 [ 219.077382][ T7897] do_syscall_64+0xcd/0x490 [ 219.100523][ T7897] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 219.689641][ T7919] snd_aloop snd_aloop.0: control 1:6:-2147483647:¢¸è_ÅheºRŸª:6 is already present [ 223.546602][ T8007] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 223.790349][ T8010] [U]  [ 223.793171][ T8010] [U] [ 223.795868][ T8010] [U] [ 223.798564][ T8010] [U] [ 223.848482][ T8010] [U] [ 223.851219][ T8010] [U] [ 223.853920][ T8010] [U] [ 223.856610][ T8010] [U] [ 223.915912][ T8010] [U] [ 223.918647][ T8010] [U] [ 223.921339][ T8010] [U] [ 223.924031][ T8010] [U] [ 223.967742][ T8010] [U] [ 223.970490][ T8010] [U] [ 223.973193][ T8010] [U] [ 223.975887][ T8010] [U] [ 224.035196][ T8010] [U] [ 224.037945][ T8010] [U] [ 224.040637][ T8010] [U] [ 224.043329][ T8010] [U] [ 224.100535][ T8010] [U] [ 224.103295][ T8010] [U] [ 224.105999][ T8010] [U] [ 224.108693][ T8010] [U] [ 224.166098][ T8010] [U] [ 224.168829][ T8010] [U] [ 224.171525][ T8010] [U] [ 224.174249][ T8010] [U] [ 224.240367][ T8010] [U] [ 224.243102][ T8010] [U] [ 224.245803][ T8010] [U] [ 224.248497][ T8010] [U] [ 224.296202][ T8010] [U] [ 224.298941][ T8010] [U] [ 224.301633][ T8010] [U] [ 224.304324][ T8010] [U] [ 224.345118][ T8010] [U] [ 224.347844][ T8010] [U] [ 224.350537][ T8010] [U] [ 224.353250][ T8010] [U] [ 224.397001][ T8010] [U] [ 224.399745][ T8010] [U] [ 224.402438][ T8010] [U] [ 224.405129][ T8010] [U] [ 224.456527][ T8010] [U] [ 224.459263][ T8010] [U] [ 224.462045][ T8010] [U] [ 224.464735][ T8010] [U] [ 224.513004][ T8010] [U] [ 224.515738][ T8010] [U] [ 224.518433][ T8010] [U] [ 224.521127][ T8010] [U] [ 224.572215][ T8010] [U] [ 224.574945][ T8010] [U] [ 224.577639][ T8010] [U] [ 224.580329][ T8010] [U] [ 224.632029][ T8010] [U] [ 225.215303][ T8032] FAULT_INJECTION: forcing a failure. [ 225.215303][ T8032] name failslab, interval 1, probability 0, space 0, times 0 [ 225.298329][ T8032] CPU: 0 UID: 0 PID: 8032 Comm: syz.1.418 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 225.298356][ T8032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 225.298366][ T8032] Call Trace: [ 225.298372][ T8032] [ 225.298378][ T8032] dump_stack_lvl+0x16c/0x1f0 [ 225.298400][ T8032] should_fail_ex+0x512/0x640 [ 225.298426][ T8032] ? fs_reclaim_acquire+0xae/0x150 [ 225.298449][ T8032] should_failslab+0xc2/0x120 [ 225.298466][ T8032] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 225.298493][ T8032] ? security_inode_alloc+0x3b/0x2b0 [ 225.298516][ T8032] security_inode_alloc+0x3b/0x2b0 [ 225.298536][ T8032] inode_init_always_gfp+0xce4/0x1030 [ 225.298564][ T8032] alloc_inode+0x86/0x240 [ 225.298583][ T8032] new_inode+0x22/0x1c0 [ 225.298603][ T8032] hugetlbfs_get_inode+0x354/0x730 [ 225.298626][ T8032] hugetlb_file_setup+0x15b/0x620 [ 225.298647][ T8032] ksys_mmap_pgoff+0x189/0x5c0 [ 225.298671][ T8032] __x64_sys_mmap+0x125/0x190 [ 225.298697][ T8032] do_syscall_64+0xcd/0x490 [ 225.298716][ T8032] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 225.298733][ T8032] RIP: 0033:0x7f18b1f8e929 [ 225.298747][ T8032] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 225.298763][ T8032] RSP: 002b:00007f18b2e3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 225.298779][ T8032] RAX: ffffffffffffffda RBX: 00007f18b21b5fa0 RCX: 00007f18b1f8e929 [ 225.298790][ T8032] RDX: ffffffffffffffff RSI: 000000000020000a RDI: 0000000000000000 [ 225.298800][ T8032] RBP: 00007f18b2010b39 R08: 0000000000000602 R09: 0000300000000000 [ 225.298810][ T8032] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000 [ 225.298819][ T8032] R13: 0000000000000000 R14: 00007f18b21b5fa0 R15: 00007fff7fea8d88 [ 225.298840][ T8032] [ 227.502775][ T8063] FAULT_INJECTION: forcing a failure. [ 227.502775][ T8063] name failslab, interval 1, probability 0, space 0, times 0 [ 227.616870][ T8063] CPU: 0 UID: 0 PID: 8063 Comm: syz.0.426 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 227.616896][ T8063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 227.616906][ T8063] Call Trace: [ 227.616912][ T8063] [ 227.616919][ T8063] dump_stack_lvl+0x16c/0x1f0 [ 227.616940][ T8063] should_fail_ex+0x512/0x640 [ 227.616970][ T8063] should_failslab+0xc2/0x120 [ 227.616988][ T8063] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 227.617015][ T8063] ? skb_clone+0x190/0x3f0 [ 227.617036][ T8063] skb_clone+0x190/0x3f0 [ 227.617054][ T8063] netlink_deliver_tap+0xabd/0xd30 [ 227.617079][ T8063] netlink_unicast+0x6b2/0x7f0 [ 227.617102][ T8063] ? __pfx_netlink_unicast+0x10/0x10 [ 227.617129][ T8063] netlink_ack+0x696/0xb80 [ 227.617156][ T8063] netlink_rcv_skb+0x332/0x420 [ 227.617176][ T8063] ? __pfx_sock_diag_rcv_msg+0x10/0x10 [ 227.617204][ T8063] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 227.617232][ T8063] ? netlink_deliver_tap+0x1ae/0xd30 [ 227.617256][ T8063] netlink_unicast+0x53d/0x7f0 [ 227.617279][ T8063] ? __pfx_netlink_unicast+0x10/0x10 [ 227.617305][ T8063] netlink_sendmsg+0x8d1/0xdd0 [ 227.617330][ T8063] ? __pfx_netlink_sendmsg+0x10/0x10 [ 227.617358][ T8063] ____sys_sendmsg+0xa95/0xc70 [ 227.617381][ T8063] ? copy_msghdr_from_user+0x10a/0x160 [ 227.617398][ T8063] ? __pfx_____sys_sendmsg+0x10/0x10 [ 227.617423][ T8063] ? kfree+0x24f/0x4d0 [ 227.617442][ T8063] ? __pfx__kstrtoull+0x10/0x10 [ 227.617469][ T8063] ___sys_sendmsg+0x134/0x1d0 [ 227.617493][ T8063] ? __pfx____sys_sendmsg+0x10/0x10 [ 227.617530][ T8063] ? __pfx___might_resched+0x10/0x10 [ 227.617553][ T8063] __sys_sendmmsg+0x200/0x420 [ 227.617573][ T8063] ? __pfx___sys_sendmmsg+0x10/0x10 [ 227.617597][ T8063] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 227.617624][ T8063] ? fput+0x70/0xf0 [ 227.617641][ T8063] ? ksys_write+0x1ac/0x250 [ 227.617665][ T8063] ? __pfx_ksys_write+0x10/0x10 [ 227.617693][ T8063] __x64_sys_sendmmsg+0x9c/0x100 [ 227.617710][ T8063] ? lockdep_hardirqs_on+0x7c/0x110 [ 227.617737][ T8063] do_syscall_64+0xcd/0x490 [ 227.617755][ T8063] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 227.617773][ T8063] RIP: 0033:0x7f38d4d8e929 [ 227.617787][ T8063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 227.617803][ T8063] RSP: 002b:00007f38d5bfd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 227.617819][ T8063] RAX: ffffffffffffffda RBX: 00007f38d4fb5fa0 RCX: 00007f38d4d8e929 [ 227.617830][ T8063] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 227.617839][ T8063] RBP: 00007f38d5bfd090 R08: 0000000000000000 R09: 0000000000000000 [ 227.617849][ T8063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 227.617858][ T8063] R13: 0000000000000000 R14: 00007f38d4fb5fa0 R15: 00007fffb5344918 [ 227.617879][ T8063] [ 229.014828][ T8073] svc: failed to register nfsdv3 RPC service (errno 111). [ 229.126677][ T8073] svc: failed to register nfsaclv3 RPC service (errno 111). [ 229.813554][ T8084] snd_aloop snd_aloop.0: control 1:6:-2147483647:¢¸è_ÅheºRŸª:6 is already present [ 230.232378][ T8094] FAULT_INJECTION: forcing a failure. [ 230.232378][ T8094] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 230.315379][ T8094] CPU: 0 UID: 0 PID: 8094 Comm: syz.0.435 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 230.315405][ T8094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 230.315415][ T8094] Call Trace: [ 230.315420][ T8094] [ 230.315427][ T8094] dump_stack_lvl+0x16c/0x1f0 [ 230.315448][ T8094] should_fail_ex+0x512/0x640 [ 230.315478][ T8094] _copy_from_user+0x2e/0xd0 [ 230.315496][ T8094] copy_msghdr_from_user+0x98/0x160 [ 230.315514][ T8094] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 230.315534][ T8094] ? kfree+0x24f/0x4d0 [ 230.315555][ T8094] ? __pfx__kstrtoull+0x10/0x10 [ 230.315581][ T8094] ___sys_sendmsg+0xfe/0x1d0 [ 230.315598][ T8094] ? __pfx____sys_sendmsg+0x10/0x10 [ 230.315634][ T8094] ? __pfx___might_resched+0x10/0x10 [ 230.315657][ T8094] __sys_sendmmsg+0x200/0x420 [ 230.315677][ T8094] ? __pfx___sys_sendmmsg+0x10/0x10 [ 230.315701][ T8094] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 230.315727][ T8094] ? fput+0x70/0xf0 [ 230.315744][ T8094] ? ksys_write+0x1ac/0x250 [ 230.315768][ T8094] ? __pfx_ksys_write+0x10/0x10 [ 230.315796][ T8094] __x64_sys_sendmmsg+0x9c/0x100 [ 230.315813][ T8094] ? lockdep_hardirqs_on+0x7c/0x110 [ 230.315839][ T8094] do_syscall_64+0xcd/0x490 [ 230.315857][ T8094] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 230.315874][ T8094] RIP: 0033:0x7f38d4d8e929 [ 230.315889][ T8094] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 230.315904][ T8094] RSP: 002b:00007f38d5bfd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 230.315920][ T8094] RAX: ffffffffffffffda RBX: 00007f38d4fb5fa0 RCX: 00007f38d4d8e929 [ 230.315931][ T8094] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 230.315941][ T8094] RBP: 00007f38d5bfd090 R08: 0000000000000000 R09: 0000000000000000 [ 230.315950][ T8094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 230.315960][ T8094] R13: 0000000000000000 R14: 00007f38d4fb5fa0 R15: 00007fffb5344918 [ 230.315980][ T8094] [ 231.924124][ T8119] FAULT_INJECTION: forcing a failure. [ 231.924124][ T8119] name failslab, interval 1, probability 0, space 0, times 0 [ 232.009990][ T8119] CPU: 0 UID: 0 PID: 8119 Comm: syz.1.444 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 232.010017][ T8119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 232.010026][ T8119] Call Trace: [ 232.010033][ T8119] [ 232.010040][ T8119] dump_stack_lvl+0x16c/0x1f0 [ 232.010061][ T8119] should_fail_ex+0x512/0x640 [ 232.010090][ T8119] should_failslab+0xc2/0x120 [ 232.010120][ T8119] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 232.010147][ T8119] ? dst_alloc+0x99/0x1a0 [ 232.010175][ T8119] dst_alloc+0x99/0x1a0 [ 232.010201][ T8119] rt_dst_alloc+0x35/0x3a0 [ 232.010225][ T8119] ip_route_output_key_hash_rcu+0x87a/0x28f0 [ 232.010259][ T8119] ip_route_output_key_hash+0x137/0x2e0 [ 232.010285][ T8119] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 232.010315][ T8119] ? __call_rcu_common.constprop.0+0x3e5/0x9f0 [ 232.010340][ T8119] ? lockdep_hardirqs_on+0x7c/0x110 [ 232.010366][ T8119] ? percpu_counter_add_batch+0xb8/0x1f0 [ 232.010392][ T8119] ip_route_output_flow+0x27/0x150 [ 232.010409][ T8119] tcp_v4_connect+0x13fd/0x1bd0 [ 232.010441][ T8119] ? __pfx_tcp_v4_connect+0x10/0x10 [ 232.010465][ T8119] ? __lock_acquire+0xb8a/0x1c90 [ 232.010491][ T8119] __inet_stream_connect+0x3c5/0x1020 [ 232.010521][ T8119] ? __pfx___inet_stream_connect+0x10/0x10 [ 232.010546][ T8119] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 232.010576][ T8119] ? __local_bh_enable_ip+0xa4/0x120 [ 232.010597][ T8119] inet_stream_connect+0x57/0xa0 [ 232.010623][ T8119] kernel_connect+0x107/0x180 [ 232.010643][ T8119] ? __pfx_kernel_connect+0x10/0x10 [ 232.010672][ T8119] ? __local_bh_enable_ip+0xa4/0x120 [ 232.010693][ T8119] smc_connect+0x4c7/0x760 [ 232.010719][ T8119] ? __pfx_smc_connect+0x10/0x10 [ 232.010739][ T8119] __sys_connect_file+0x13e/0x1a0 [ 232.010766][ T8119] __sys_connect+0x13b/0x160 [ 232.010789][ T8119] ? __pfx___sys_connect+0x10/0x10 [ 232.010820][ T8119] ? xfd_validate_state+0x61/0x180 [ 232.010840][ T8119] ? __pfx_do_writev+0x10/0x10 [ 232.010867][ T8119] __x64_sys_connect+0x72/0xb0 [ 232.010889][ T8119] ? lockdep_hardirqs_on+0x7c/0x110 [ 232.010914][ T8119] do_syscall_64+0xcd/0x490 [ 232.010932][ T8119] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 232.010949][ T8119] RIP: 0033:0x7f18b1f8e929 [ 232.010964][ T8119] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 232.010979][ T8119] RSP: 002b:00007f18b2e3d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 232.010995][ T8119] RAX: ffffffffffffffda RBX: 00007f18b21b5fa0 RCX: 00007f18b1f8e929 [ 232.011006][ T8119] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 232.011016][ T8119] RBP: 00007f18b2010b39 R08: 0000000000000000 R09: 0000000000000000 [ 232.011025][ T8119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 232.011035][ T8119] R13: 0000000000000000 R14: 00007f18b21b5fa0 R15: 00007fff7fea8d88 [ 232.011055][ T8119] [ 233.206678][ T8132] syz.2.445 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 233.752817][ T8141] netlink: 20 bytes leftover after parsing attributes in process `syz.3.451'. [ 233.815343][ T8141] netlink: 28 bytes leftover after parsing attributes in process `syz.3.451'. [ 233.904595][ T8141] hsr_slave_0: left promiscuous mode [ 233.910729][ T8141] hsr_slave_1: left promiscuous mode [ 237.093508][ T8210] netlink: 4 bytes leftover after parsing attributes in process `syz.3.465'. [ 238.339842][ T8236] FAULT_INJECTION: forcing a failure. [ 238.339842][ T8236] name failslab, interval 1, probability 0, space 0, times 0 [ 238.371530][ T8236] CPU: 0 UID: 0 PID: 8236 Comm: syz.2.472 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 238.371557][ T8236] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 238.371567][ T8236] Call Trace: [ 238.371573][ T8236] [ 238.371580][ T8236] dump_stack_lvl+0x16c/0x1f0 [ 238.371602][ T8236] should_fail_ex+0x512/0x640 [ 238.371632][ T8236] should_failslab+0xc2/0x120 [ 238.371650][ T8236] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 238.371677][ T8236] ? dst_alloc+0x99/0x1a0 [ 238.371704][ T8236] dst_alloc+0x99/0x1a0 [ 238.371730][ T8236] rt_dst_alloc+0x35/0x3a0 [ 238.371754][ T8236] ip_route_output_key_hash_rcu+0x87a/0x28f0 [ 238.371789][ T8236] ip_route_output_key_hash+0x137/0x2e0 [ 238.371815][ T8236] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 238.371847][ T8236] ? __call_rcu_common.constprop.0+0x3e5/0x9f0 [ 238.371872][ T8236] ? lockdep_hardirqs_on+0x7c/0x110 [ 238.371898][ T8236] ? percpu_counter_add_batch+0xb8/0x1f0 [ 238.371924][ T8236] ip_route_output_flow+0x27/0x150 [ 238.371941][ T8236] tcp_v4_connect+0x13fd/0x1bd0 [ 238.371973][ T8236] ? __pfx_tcp_v4_connect+0x10/0x10 [ 238.371997][ T8236] ? __lock_acquire+0xb8a/0x1c90 [ 238.372023][ T8236] __inet_stream_connect+0x3c5/0x1020 [ 238.372054][ T8236] ? __pfx___inet_stream_connect+0x10/0x10 [ 238.372078][ T8236] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 238.372114][ T8236] ? __local_bh_enable_ip+0xa4/0x120 [ 238.372136][ T8236] inet_stream_connect+0x57/0xa0 [ 238.372161][ T8236] kernel_connect+0x107/0x180 [ 238.372181][ T8236] ? __pfx_kernel_connect+0x10/0x10 [ 238.372211][ T8236] ? __local_bh_enable_ip+0xa4/0x120 [ 238.372232][ T8236] smc_connect+0x4c7/0x760 [ 238.372259][ T8236] ? __pfx_smc_connect+0x10/0x10 [ 238.372280][ T8236] __sys_connect_file+0x13e/0x1a0 [ 238.372305][ T8236] __sys_connect+0x13b/0x160 [ 238.372328][ T8236] ? __pfx___sys_connect+0x10/0x10 [ 238.372359][ T8236] ? xfd_validate_state+0x61/0x180 [ 238.372384][ T8236] ? __pfx_do_writev+0x10/0x10 [ 238.372411][ T8236] __x64_sys_connect+0x72/0xb0 [ 238.372434][ T8236] ? lockdep_hardirqs_on+0x7c/0x110 [ 238.372459][ T8236] do_syscall_64+0xcd/0x490 [ 238.372477][ T8236] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 238.372493][ T8236] RIP: 0033:0x7f1d1fb8e929 [ 238.372507][ T8236] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 238.372529][ T8236] RSP: 002b:00007f1d1d9f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 238.372546][ T8236] RAX: ffffffffffffffda RBX: 00007f1d1fdb5fa0 RCX: 00007f1d1fb8e929 [ 238.372556][ T8236] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 238.372566][ T8236] RBP: 00007f1d1fc10b39 R08: 0000000000000000 R09: 0000000000000000 [ 238.372575][ T8236] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 238.372584][ T8236] R13: 0000000000000000 R14: 00007f1d1fdb5fa0 R15: 00007ffd3ae08bf8 [ 238.372606][ T8236] [ 238.666183][ C0] vkms_vblank_simulate: vblank timer overrun [ 238.850750][ T8242] netlink: 28 bytes leftover after parsing attributes in process `syz.2.475'. [ 239.352799][ T8242] bond0: (slave bond_slave_1): Releasing backup interface [ 243.509163][ T8323] [U]  [ 243.511991][ T8323] [U] [ 243.514687][ T8323] [U] [ 243.517376][ T8323] [U] [ 243.571714][ T8323] [U] [ 243.574452][ T8323] [U] [ 243.577150][ T8323] [U] [ 243.579933][ T8323] [U] [ 243.625962][ T8323] [U] [ 243.628725][ T8323] [U] [ 243.631418][ T8323] [U] [ 243.634109][ T8323] [U] [ 243.651313][ T8308] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 243.680745][ T8323] [U] [ 243.683480][ T8323] [U] [ 243.686200][ T8323] [U] [ 243.688910][ T8323] [U] [ 243.736857][ T8323] [U] [ 243.739598][ T8323] [U] [ 243.742295][ T8323] [U] [ 243.745018][ T8323] [U] [ 243.790518][ T8323] [U] [ 243.793250][ T8323] [U] [ 243.795947][ T8323] [U] [ 243.798664][ T8323] [U] [ 243.844310][ T8323] [U] [ 243.847043][ T8323] [U] [ 243.849758][ T8323] [U] [ 243.852460][ T8323] [U] [ 243.912596][ T8323] [U] [ 243.915331][ T8323] [U] [ 243.918035][ T8323] [U] [ 243.920747][ T8323] [U] [ 243.973571][ T8323] [U] [ 243.976305][ T8323] [U] [ 243.979031][ T8323] [U] [ 243.981742][ T8323] [U] [ 244.020123][ T8323] [U] [ 244.022858][ T8323] [U] [ 244.025566][ T8323] [U] [ 244.028261][ T8323] [U] [ 244.066604][ T8323] [U] [ 244.069344][ T8323] [U] [ 244.072084][ T8323] [U] [ 244.074797][ T8323] [U] [ 244.124711][ T8323] [U] [ 244.127441][ T8323] [U] [ 244.130143][ T8323] [U] [ 244.132834][ T8323] [U] [ 244.196809][ T8323] [U] [ 244.199573][ T8323] [U] [ 244.202264][ T8323] [U] [ 244.204973][ T8323] [U] [ 244.251612][ T8323] [U] [ 244.254348][ T8323] [U] [ 244.257054][ T8323] [U] [ 244.259752][ T8323] [U] [ 244.300789][ T8323] [U] [ 244.303530][ T8323] [U] [ 244.306251][ T8323] [U] [ 244.308944][ T8323] [U] [ 244.393386][ T8327] [U] [ 249.058196][ T8420] netlink: 'syz.2.515': attribute type 25 has an invalid length. [ 249.725513][ T8439] FAULT_INJECTION: forcing a failure. [ 249.725513][ T8439] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 249.816886][ T8439] CPU: 0 UID: 0 PID: 8439 Comm: syz.1.520 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 249.816912][ T8439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 249.816922][ T8439] Call Trace: [ 249.816928][ T8439] [ 249.816935][ T8439] dump_stack_lvl+0x16c/0x1f0 [ 249.816956][ T8439] should_fail_ex+0x512/0x640 [ 249.816986][ T8439] _copy_from_iter+0x29f/0x16f0 [ 249.817009][ T8439] ? __pfx__copy_from_iter+0x10/0x10 [ 249.817027][ T8439] ? rcu_is_watching+0x12/0xc0 [ 249.817045][ T8439] ? trace_kmalloc+0x2b/0xd0 [ 249.817062][ T8439] ? __kmalloc_noprof+0x242/0x510 [ 249.817093][ T8439] kernfs_fop_write_iter+0x19a/0x510 [ 249.817116][ T8439] vfs_write+0x6c7/0x1150 [ 249.817142][ T8439] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 249.817162][ T8439] ? __pfx___mutex_lock+0x10/0x10 [ 249.817179][ T8439] ? __pfx_vfs_write+0x10/0x10 [ 249.817218][ T8439] ksys_write+0x12a/0x250 [ 249.817242][ T8439] ? __pfx_ksys_write+0x10/0x10 [ 249.817281][ T8439] do_syscall_64+0xcd/0x490 [ 249.817299][ T8439] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 249.817317][ T8439] RIP: 0033:0x7f18b1f8e929 [ 249.817331][ T8439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 249.817347][ T8439] RSP: 002b:00007f18b2e3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 249.817363][ T8439] RAX: ffffffffffffffda RBX: 00007f18b21b5fa0 RCX: 00007f18b1f8e929 [ 249.817374][ T8439] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000003 [ 249.817383][ T8439] RBP: 00007f18b2e3d090 R08: 0000000000000000 R09: 0000000000000000 [ 249.817392][ T8439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 249.817402][ T8439] R13: 0000000000000000 R14: 00007f18b21b5fa0 R15: 00007fff7fea8d88 [ 249.817423][ T8439] [ 252.225507][ T8477] : Can't lookup blockdev [ 252.248830][ T8480] FAULT_INJECTION: forcing a failure. [ 252.248830][ T8480] name failslab, interval 1, probability 0, space 0, times 0 [ 252.359551][ T8484] FAULT_INJECTION: forcing a failure. [ 252.359551][ T8484] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 252.391725][ T8480] CPU: 0 UID: 0 PID: 8480 Comm: syz.2.532 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 252.391752][ T8480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 252.391761][ T8480] Call Trace: [ 252.391767][ T8480] [ 252.391774][ T8480] dump_stack_lvl+0x16c/0x1f0 [ 252.391796][ T8480] should_fail_ex+0x512/0x640 [ 252.391826][ T8480] should_failslab+0xc2/0x120 [ 252.391844][ T8480] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 252.391870][ T8480] ? dst_alloc+0x99/0x1a0 [ 252.391898][ T8480] dst_alloc+0x99/0x1a0 [ 252.391930][ T8480] rt_dst_alloc+0x35/0x3a0 [ 252.391953][ T8480] ip_route_output_key_hash_rcu+0x87a/0x28f0 [ 252.391988][ T8480] ip_route_output_key_hash+0x137/0x2e0 [ 252.392014][ T8480] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 252.392044][ T8480] ? __call_rcu_common.constprop.0+0x3e5/0x9f0 [ 252.392070][ T8480] ? lockdep_hardirqs_on+0x7c/0x110 [ 252.392097][ T8480] ? percpu_counter_add_batch+0xb8/0x1f0 [ 252.392122][ T8480] ip_route_output_flow+0x27/0x150 [ 252.392139][ T8480] tcp_v4_connect+0x13fd/0x1bd0 [ 252.392171][ T8480] ? __pfx_tcp_v4_connect+0x10/0x10 [ 252.392194][ T8480] ? __lock_acquire+0xb8a/0x1c90 [ 252.392220][ T8480] __inet_stream_connect+0x3c5/0x1020 [ 252.392251][ T8480] ? __pfx___inet_stream_connect+0x10/0x10 [ 252.392275][ T8480] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 252.392305][ T8480] ? __local_bh_enable_ip+0xa4/0x120 [ 252.392327][ T8480] inet_stream_connect+0x57/0xa0 [ 252.392353][ T8480] kernel_connect+0x107/0x180 [ 252.392373][ T8480] ? __pfx_kernel_connect+0x10/0x10 [ 252.392402][ T8480] ? __local_bh_enable_ip+0xa4/0x120 [ 252.392423][ T8480] smc_connect+0x4c7/0x760 [ 252.392448][ T8480] ? __pfx_smc_connect+0x10/0x10 [ 252.392469][ T8480] __sys_connect_file+0x13e/0x1a0 [ 252.392495][ T8480] __sys_connect+0x13b/0x160 [ 252.392518][ T8480] ? __pfx___sys_connect+0x10/0x10 [ 252.392550][ T8480] ? xfd_validate_state+0x61/0x180 [ 252.392570][ T8480] ? __pfx_do_writev+0x10/0x10 [ 252.392597][ T8480] __x64_sys_connect+0x72/0xb0 [ 252.392620][ T8480] ? lockdep_hardirqs_on+0x7c/0x110 [ 252.392645][ T8480] do_syscall_64+0xcd/0x490 [ 252.392663][ T8480] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 252.392680][ T8480] RIP: 0033:0x7f1d1fb8e929 [ 252.392694][ T8480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 252.392710][ T8480] RSP: 002b:00007f1d1d9f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 252.392726][ T8480] RAX: ffffffffffffffda RBX: 00007f1d1fdb5fa0 RCX: 00007f1d1fb8e929 [ 252.392736][ T8480] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 252.392746][ T8480] RBP: 00007f1d1fc10b39 R08: 0000000000000000 R09: 0000000000000000 [ 252.392760][ T8480] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 252.392769][ T8480] R13: 0000000000000000 R14: 00007f1d1fdb5fa0 R15: 00007ffd3ae08bf8 [ 252.392790][ T8480] [ 252.758607][ T8484] CPU: 0 UID: 0 PID: 8484 Comm: syz.1.534 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 252.758634][ T8484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 252.758644][ T8484] Call Trace: [ 252.758650][ T8484] [ 252.758657][ T8484] dump_stack_lvl+0x16c/0x1f0 [ 252.758678][ T8484] should_fail_ex+0x512/0x640 [ 252.758708][ T8484] _copy_to_user+0x32/0xd0 [ 252.758727][ T8484] simple_read_from_buffer+0xcb/0x170 [ 252.758752][ T8484] proc_fail_nth_read+0x197/0x270 [ 252.758774][ T8484] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 252.758796][ T8484] ? rw_verify_area+0xcf/0x680 [ 252.758818][ T8484] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 252.758839][ T8484] vfs_read+0x1e1/0xc60 [ 252.758866][ T8484] ? __pfx___mutex_lock+0x10/0x10 [ 252.758884][ T8484] ? __pfx_vfs_read+0x10/0x10 [ 252.758914][ T8484] ? __fget_files+0x20e/0x3c0 [ 252.758975][ T8484] ksys_read+0x12a/0x250 [ 252.758999][ T8484] ? __pfx_ksys_read+0x10/0x10 [ 252.759030][ T8484] do_syscall_64+0xcd/0x490 [ 252.759049][ T8484] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 252.759066][ T8484] RIP: 0033:0x7f18b1f8d33c [ 252.759080][ T8484] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 252.759095][ T8484] RSP: 002b:00007f18b2e3d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 252.759112][ T8484] RAX: ffffffffffffffda RBX: 00007f18b21b5fa0 RCX: 00007f18b1f8d33c [ 252.759122][ T8484] RDX: 000000000000000f RSI: 00007f18b2e3d0a0 RDI: 0000000000000005 [ 252.759132][ T8484] RBP: 00007f18b2e3d090 R08: 0000000000000000 R09: 0000000000000000 [ 252.759141][ T8484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 252.759151][ T8484] R13: 0000000000000000 R14: 00007f18b21b5fa0 R15: 00007fff7fea8d88 [ 252.759172][ T8484] [ 254.607658][ T8516] : Can't lookup blockdev [ 257.482129][ T8576] : Can't lookup blockdev [ 258.697598][ T8611] FAULT_INJECTION: forcing a failure. [ 258.697598][ T8611] name failslab, interval 1, probability 0, space 0, times 0 [ 258.753932][ T8611] CPU: 0 UID: 0 PID: 8611 Comm: syz.0.566 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 258.753958][ T8611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 258.753968][ T8611] Call Trace: [ 258.753974][ T8611] [ 258.753981][ T8611] dump_stack_lvl+0x16c/0x1f0 [ 258.754003][ T8611] should_fail_ex+0x512/0x640 [ 258.754033][ T8611] should_failslab+0xc2/0x120 [ 258.754051][ T8611] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 258.754078][ T8611] ? dst_alloc+0x99/0x1a0 [ 258.754107][ T8611] dst_alloc+0x99/0x1a0 [ 258.754133][ T8611] rt_dst_alloc+0x35/0x3a0 [ 258.754161][ T8611] ip_route_output_key_hash_rcu+0x87a/0x28f0 [ 258.754208][ T8611] ip_route_output_key_hash+0x137/0x2e0 [ 258.754236][ T8611] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 258.754267][ T8611] ? __call_rcu_common.constprop.0+0x3e5/0x9f0 [ 258.754293][ T8611] ? lockdep_hardirqs_on+0x7c/0x110 [ 258.754320][ T8611] ? percpu_counter_add_batch+0xb8/0x1f0 [ 258.754347][ T8611] ip_route_output_flow+0x27/0x150 [ 258.754365][ T8611] tcp_v4_connect+0x13fd/0x1bd0 [ 258.754398][ T8611] ? __pfx_tcp_v4_connect+0x10/0x10 [ 258.754421][ T8611] ? __lock_acquire+0xb8a/0x1c90 [ 258.754447][ T8611] __inet_stream_connect+0x3c5/0x1020 [ 258.754478][ T8611] ? __pfx___inet_stream_connect+0x10/0x10 [ 258.754502][ T8611] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 258.754533][ T8611] ? __local_bh_enable_ip+0xa4/0x120 [ 258.754555][ T8611] inet_stream_connect+0x57/0xa0 [ 258.754581][ T8611] kernel_connect+0x107/0x180 [ 258.754601][ T8611] ? __pfx_kernel_connect+0x10/0x10 [ 258.754631][ T8611] ? __local_bh_enable_ip+0xa4/0x120 [ 258.754652][ T8611] smc_connect+0x4c7/0x760 [ 258.754678][ T8611] ? __pfx_smc_connect+0x10/0x10 [ 258.754699][ T8611] __sys_connect_file+0x13e/0x1a0 [ 258.754726][ T8611] __sys_connect+0x13b/0x160 [ 258.754749][ T8611] ? __pfx___sys_connect+0x10/0x10 [ 258.754782][ T8611] ? xfd_validate_state+0x61/0x180 [ 258.754802][ T8611] ? __pfx_do_writev+0x10/0x10 [ 258.754830][ T8611] __x64_sys_connect+0x72/0xb0 [ 258.754852][ T8611] ? lockdep_hardirqs_on+0x7c/0x110 [ 258.754877][ T8611] do_syscall_64+0xcd/0x490 [ 258.754895][ T8611] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 258.754912][ T8611] RIP: 0033:0x7f38d4d8e929 [ 258.754926][ T8611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 258.754941][ T8611] RSP: 002b:00007f38d5bfd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 258.754958][ T8611] RAX: ffffffffffffffda RBX: 00007f38d4fb5fa0 RCX: 00007f38d4d8e929 [ 258.754968][ T8611] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 258.754978][ T8611] RBP: 00007f38d4e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 258.754987][ T8611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 258.754996][ T8611] R13: 0000000000000000 R14: 00007f38d4fb5fa0 R15: 00007fffb5344918 [ 258.755018][ T8611] [ 260.445127][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 260.454529][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 261.232607][ T8656] blktrace: Concurrent blktraces are not allowed on loop2 [ 263.281589][ T8691] usb usb8: usbfs: interface 0 claimed by hub while 'syz.1.587' sets config #0 [ 263.485790][ T8697] blktrace: Concurrent blktraces are not allowed on loop2 [ 263.707992][ T8695] : Can't lookup blockdev [ 264.494550][ T8717] netlink: 28 bytes leftover after parsing attributes in process `syz.3.594'. [ 264.648542][ T8717] bridge0: port 2(bridge_slave_1) entered disabled state [ 264.667667][ T8722] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input6 [ 264.768921][ T8717] bridge_slave_1 (unregistering): left allmulticast mode [ 264.825435][ T8717] bridge_slave_1 (unregistering): left promiscuous mode [ 264.870758][ T8717] bridge0: port 2(bridge_slave_1) entered disabled state [ 265.211675][ T8723] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input7 [ 267.528877][ T8768] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 268.212319][ T8794] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 268.282299][ T8801] FAULT_INJECTION: forcing a failure. [ 268.282299][ T8801] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 268.384217][ T8801] CPU: 0 UID: 0 PID: 8801 Comm: syz.0.612 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 268.384242][ T8801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 268.384252][ T8801] Call Trace: [ 268.384257][ T8801] [ 268.384264][ T8801] dump_stack_lvl+0x16c/0x1f0 [ 268.384285][ T8801] should_fail_ex+0x512/0x640 [ 268.384316][ T8801] _copy_from_user+0x2e/0xd0 [ 268.384333][ T8801] copy_msghdr_from_user+0x98/0x160 [ 268.384351][ T8801] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 268.384372][ T8801] ? __pfx__kstrtoull+0x10/0x10 [ 268.384397][ T8801] ___sys_sendmsg+0xfe/0x1d0 [ 268.384415][ T8801] ? __pfx____sys_sendmsg+0x10/0x10 [ 268.384442][ T8801] ? find_held_lock+0x2b/0x80 [ 268.384474][ T8801] __sys_sendmmsg+0x200/0x420 [ 268.384493][ T8801] ? __pfx___sys_sendmmsg+0x10/0x10 [ 268.384517][ T8801] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 268.384543][ T8801] ? fput+0x70/0xf0 [ 268.384560][ T8801] ? ksys_write+0x1ac/0x250 [ 268.384584][ T8801] ? __pfx_ksys_write+0x10/0x10 [ 268.384613][ T8801] __x64_sys_sendmmsg+0x9c/0x100 [ 268.384629][ T8801] ? lockdep_hardirqs_on+0x7c/0x110 [ 268.384656][ T8801] do_syscall_64+0xcd/0x490 [ 268.384674][ T8801] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 268.384691][ T8801] RIP: 0033:0x7f38d4d8e929 [ 268.384705][ T8801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 268.384720][ T8801] RSP: 002b:00007f38d5bbb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 268.384737][ T8801] RAX: ffffffffffffffda RBX: 00007f38d4fb6160 RCX: 00007f38d4d8e929 [ 268.384747][ T8801] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 268.384757][ T8801] RBP: 00007f38d5bbb090 R08: 0000000000000000 R09: 0000000000000000 [ 268.384766][ T8801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 268.384776][ T8801] R13: 0000000000000000 R14: 00007f38d4fb6160 R15: 00007fffb5344918 [ 268.384803][ T8801] [ 269.311639][ T8800] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 270.626507][ T8847] FAULT_INJECTION: forcing a failure. [ 270.626507][ T8847] name failslab, interval 1, probability 0, space 0, times 0 [ 270.690641][ T8847] CPU: 0 UID: 0 PID: 8847 Comm: syz.2.625 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 270.690667][ T8847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 270.690677][ T8847] Call Trace: [ 270.690683][ T8847] [ 270.690690][ T8847] dump_stack_lvl+0x16c/0x1f0 [ 270.690712][ T8847] should_fail_ex+0x512/0x640 [ 270.690748][ T8847] should_failslab+0xc2/0x120 [ 270.690766][ T8847] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 270.690793][ T8847] ? dst_alloc+0x99/0x1a0 [ 270.690822][ T8847] dst_alloc+0x99/0x1a0 [ 270.690848][ T8847] rt_dst_alloc+0x35/0x3a0 [ 270.690871][ T8847] ip_route_output_key_hash_rcu+0x87a/0x28f0 [ 270.690905][ T8847] ip_route_output_key_hash+0x137/0x2e0 [ 270.690932][ T8847] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 270.690962][ T8847] ? __call_rcu_common.constprop.0+0x3e5/0x9f0 [ 270.690987][ T8847] ? lockdep_hardirqs_on+0x7c/0x110 [ 270.691013][ T8847] ? percpu_counter_add_batch+0xb8/0x1f0 [ 270.691039][ T8847] ip_route_output_flow+0x27/0x150 [ 270.691056][ T8847] tcp_v4_connect+0x13fd/0x1bd0 [ 270.691087][ T8847] ? __pfx_tcp_v4_connect+0x10/0x10 [ 270.691110][ T8847] ? __lock_acquire+0xb8a/0x1c90 [ 270.691136][ T8847] __inet_stream_connect+0x3c5/0x1020 [ 270.691166][ T8847] ? __pfx___inet_stream_connect+0x10/0x10 [ 270.691191][ T8847] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 270.691221][ T8847] ? __local_bh_enable_ip+0xa4/0x120 [ 270.691243][ T8847] inet_stream_connect+0x57/0xa0 [ 270.691268][ T8847] kernel_connect+0x107/0x180 [ 270.691288][ T8847] ? __pfx_kernel_connect+0x10/0x10 [ 270.691318][ T8847] ? __local_bh_enable_ip+0xa4/0x120 [ 270.691339][ T8847] smc_connect+0x4c7/0x760 [ 270.691364][ T8847] ? __pfx_smc_connect+0x10/0x10 [ 270.691385][ T8847] __sys_connect_file+0x13e/0x1a0 [ 270.691411][ T8847] __sys_connect+0x13b/0x160 [ 270.691434][ T8847] ? __pfx___sys_connect+0x10/0x10 [ 270.691465][ T8847] ? xfd_validate_state+0x61/0x180 [ 270.691485][ T8847] ? __pfx_do_writev+0x10/0x10 [ 270.691512][ T8847] __x64_sys_connect+0x72/0xb0 [ 270.691535][ T8847] ? lockdep_hardirqs_on+0x7c/0x110 [ 270.691560][ T8847] do_syscall_64+0xcd/0x490 [ 270.691578][ T8847] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 270.691595][ T8847] RIP: 0033:0x7f1d1fb8e929 [ 270.691608][ T8847] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 270.691624][ T8847] RSP: 002b:00007f1d1d9f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 270.691640][ T8847] RAX: ffffffffffffffda RBX: 00007f1d1fdb5fa0 RCX: 00007f1d1fb8e929 [ 270.691650][ T8847] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 270.691660][ T8847] RBP: 00007f1d1fc10b39 R08: 0000000000000000 R09: 0000000000000000 [ 270.691669][ T8847] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 270.691679][ T8847] R13: 0000000000000000 R14: 00007f1d1fdb5fa0 R15: 00007ffd3ae08bf8 [ 270.691700][ T8847] [ 274.093166][ T8874] mkiss: ax0: crc mode is auto. [ 275.212831][ T30] audit: type=1800 audit(6044334162.723:4): pid=8899 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.638" name=02 dev="tmpfs" ino=971 res=0 errno=0 [ 276.755759][ T5845] Bluetooth: hci2: unexpected event for opcode 0x7c89 [ 277.809464][ T8929] FAULT_INJECTION: forcing a failure. [ 277.809464][ T8929] name failslab, interval 1, probability 0, space 0, times 0 [ 277.930664][ T8929] CPU: 0 UID: 0 PID: 8929 Comm: syz.1.645 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 277.930691][ T8929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 277.930709][ T8929] Call Trace: [ 277.930715][ T8929] [ 277.930722][ T8929] dump_stack_lvl+0x16c/0x1f0 [ 277.930746][ T8929] should_fail_ex+0x512/0x640 [ 277.930776][ T8929] should_failslab+0xc2/0x120 [ 277.930794][ T8929] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 277.930820][ T8929] ? dst_alloc+0x99/0x1a0 [ 277.930848][ T8929] dst_alloc+0x99/0x1a0 [ 277.930874][ T8929] rt_dst_alloc+0x35/0x3a0 [ 277.930898][ T8929] ip_route_output_key_hash_rcu+0x87a/0x28f0 [ 277.930932][ T8929] ip_route_output_key_hash+0x137/0x2e0 [ 277.930959][ T8929] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 277.930989][ T8929] ? __call_rcu_common.constprop.0+0x3e5/0x9f0 [ 277.931014][ T8929] ? lockdep_hardirqs_on+0x7c/0x110 [ 277.931040][ T8929] ? percpu_counter_add_batch+0xb8/0x1f0 [ 277.931066][ T8929] ip_route_output_flow+0x27/0x150 [ 277.931084][ T8929] tcp_v4_connect+0x13fd/0x1bd0 [ 277.931115][ T8929] ? __pfx_tcp_v4_connect+0x10/0x10 [ 277.931138][ T8929] ? __lock_acquire+0xb8a/0x1c90 [ 277.931165][ T8929] __inet_stream_connect+0x3c5/0x1020 [ 277.931195][ T8929] ? __pfx___inet_stream_connect+0x10/0x10 [ 277.931220][ T8929] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 277.931250][ T8929] ? __local_bh_enable_ip+0xa4/0x120 [ 277.931271][ T8929] inet_stream_connect+0x57/0xa0 [ 277.931297][ T8929] kernel_connect+0x107/0x180 [ 277.931317][ T8929] ? __pfx_kernel_connect+0x10/0x10 [ 277.931346][ T8929] ? __local_bh_enable_ip+0xa4/0x120 [ 277.931367][ T8929] smc_connect+0x4c7/0x760 [ 277.931392][ T8929] ? __pfx_smc_connect+0x10/0x10 [ 277.931413][ T8929] __sys_connect_file+0x13e/0x1a0 [ 277.931439][ T8929] __sys_connect+0x13b/0x160 [ 277.931462][ T8929] ? __pfx___sys_connect+0x10/0x10 [ 277.931494][ T8929] ? xfd_validate_state+0x61/0x180 [ 277.931514][ T8929] ? __pfx_do_writev+0x10/0x10 [ 277.931541][ T8929] __x64_sys_connect+0x72/0xb0 [ 277.931563][ T8929] ? lockdep_hardirqs_on+0x7c/0x110 [ 277.931588][ T8929] do_syscall_64+0xcd/0x490 [ 277.931607][ T8929] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 277.931623][ T8929] RIP: 0033:0x7f18b1f8e929 [ 277.931638][ T8929] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 277.931653][ T8929] RSP: 002b:00007f18b2e3d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 277.931670][ T8929] RAX: ffffffffffffffda RBX: 00007f18b21b5fa0 RCX: 00007f18b1f8e929 [ 277.931681][ T8929] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 277.931694][ T8929] RBP: 00007f18b2010b39 R08: 0000000000000000 R09: 0000000000000000 [ 277.931709][ T8929] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 277.931719][ T8929] R13: 0000000000000000 R14: 00007f18b21b5fa0 R15: 00007fff7fea8d88 [ 277.931742][ T8929] [ 283.402520][ T8992] blktrace: Concurrent blktraces are not allowed on loop2 [ 283.668520][ T9000] : Can't lookup blockdev [ 284.800408][ T9013] bridge0: port 3(vlan1) entered blocking state [ 284.884639][ T9013] bridge0: port 3(vlan1) entered disabled state [ 284.971141][ T9013] vlan1: entered allmulticast mode [ 285.051958][ T9013] veth0_vlan: entered allmulticast mode [ 285.157137][ T9013] vlan1: entered promiscuous mode [ 285.268735][ T9013] bridge0: port 3(vlan1) entered blocking state [ 285.275069][ T9013] bridge0: port 3(vlan1) entered forwarding state [ 286.867069][ T9048] netlink: 'syz.2.670': attribute type 4 has an invalid length. [ 287.554848][ T9060] blktrace: Concurrent blktraces are not allowed on loop2 [ 288.011827][ T9071] FAULT_INJECTION: forcing a failure. [ 288.011827][ T9071] name failslab, interval 1, probability 0, space 0, times 0 [ 288.091835][ T9071] CPU: 0 UID: 0 PID: 9071 Comm: syz.0.676 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 288.091862][ T9071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 288.091872][ T9071] Call Trace: [ 288.091878][ T9071] [ 288.091886][ T9071] dump_stack_lvl+0x16c/0x1f0 [ 288.091908][ T9071] should_fail_ex+0x512/0x640 [ 288.091933][ T9071] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 288.091959][ T9071] should_failslab+0xc2/0x120 [ 288.091977][ T9071] __kmalloc_cache_noprof+0x6a/0x3e0 [ 288.091999][ T9071] ? ktime_get_coarse_real_ts64_mg+0x240/0x300 [ 288.092021][ T9071] ? hugetlb_vma_lock_alloc+0xbc/0x1f0 [ 288.092048][ T9071] hugetlb_vma_lock_alloc+0xbc/0x1f0 [ 288.092073][ T9071] hugetlb_reserve_pages+0x149/0xe10 [ 288.092098][ T9071] ? __pfx_hugetlb_reserve_pages+0x10/0x10 [ 288.092119][ T9071] ? atime_needs_update+0x8b/0x710 [ 288.092145][ T9071] hugetlbfs_file_mmap+0x4a1/0x730 [ 288.092167][ T9071] __mmap_region+0x1292/0x25e0 [ 288.092196][ T9071] ? __pfx___mmap_region+0x10/0x10 [ 288.092226][ T9071] ? is_bpf_text_address+0x94/0x1a0 [ 288.092250][ T9071] ? kernel_text_address+0x8d/0x100 [ 288.092275][ T9071] ? __kernel_text_address+0xd/0x40 [ 288.092299][ T9071] ? unwind_get_return_address+0x59/0xa0 [ 288.092325][ T9071] ? arch_stack_walk+0xa6/0x100 [ 288.092360][ T9071] ? __pfx_stack_trace_save+0x10/0x10 [ 288.092378][ T9071] ? stack_depot_save_flags+0x28/0xa40 [ 288.092430][ T9071] ? mm_get_unmapped_area_vmflags+0x97/0xe0 [ 288.092457][ T9071] mmap_region+0x32b/0x3f0 [ 288.092476][ T9071] do_mmap+0xa3e/0x1210 [ 288.092499][ T9071] ? __pfx_do_mmap+0x10/0x10 [ 288.092519][ T9071] ? __pfx_down_write_killable+0x10/0x10 [ 288.092552][ T9071] vm_mmap_pgoff+0x281/0x450 [ 288.092574][ T9071] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 288.092589][ T9071] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 288.092610][ T9071] ? hugetlbfs_get_inode+0x31f/0x730 [ 288.092635][ T9071] ksys_mmap_pgoff+0x1c8/0x5c0 [ 288.092659][ T9071] __x64_sys_mmap+0x125/0x190 [ 288.092685][ T9071] do_syscall_64+0xcd/0x490 [ 288.092704][ T9071] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 288.092721][ T9071] RIP: 0033:0x7f38d4d8e929 [ 288.092736][ T9071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 288.092751][ T9071] RSP: 002b:00007f38d5bfd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 288.092767][ T9071] RAX: ffffffffffffffda RBX: 00007f38d4fb5fa0 RCX: 00007f38d4d8e929 [ 288.092778][ T9071] RDX: 0000000000000401 RSI: 0000000000a00006 RDI: 0000000000c00000 [ 288.092788][ T9071] RBP: 00007f38d4e10b39 R08: 0000000000000602 R09: 0000300000000000 [ 288.092797][ T9071] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000 [ 288.092807][ T9071] R13: 0000000000000000 R14: 00007f38d4fb5fa0 R15: 00007fffb5344918 [ 288.092828][ T9071] [ 288.092835][ T9071] HugeTLB: unable to allocate vma specific lock [ 289.756860][ T30] audit: type=1800 audit(6044334177.340:5): pid=9071 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.676" name="features" dev="configfs" ino=20644 res=0 errno=0 [ 290.016964][ T5845] Bluetooth: hci1: Malformed Event: 0x02 [ 290.082113][ T9094] [ 290.084469][ T9094] ====================================================== [ 290.091621][ T9094] WARNING: possible circular locking dependency detected [ 290.098652][ T9094] 6.15.0-syzkaller-13743-g8630c59e9936 #0 Not tainted [ 290.105401][ T9094] ------------------------------------------------------ [ 290.112406][ T9094] syz.1.678/9094 is trying to acquire lock: [ 290.118289][ T9094] ffffffff8e52f648 (pcpu_alloc_mutex){+.+.}-{4:4}, at: pcpu_alloc_noprof+0xb4c/0x1470 [ 290.127869][ T9094] [ 290.127869][ T9094] but task is already holding lock: [ 290.135235][ T9094] ffff88814275a7c8 (&q->q_usage_counter(io)#18){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20 [ 290.146467][ T9094] [ 290.146467][ T9094] which lock already depends on the new lock. [ 290.146467][ T9094] [ 290.156860][ T9094] [ 290.156860][ T9094] the existing dependency chain (in reverse order) is: [ 290.165870][ T9094] [ 290.165870][ T9094] -> #2 (&q->q_usage_counter(io)#18){++++}-{0:0}: [ 290.174485][ T9094] blk_alloc_queue+0x619/0x760 [ 290.179773][ T9094] blk_mq_alloc_queue+0x175/0x290 [ 290.185323][ T9094] __blk_mq_alloc_disk+0x29/0x120 [ 290.190872][ T9094] loop_add+0x49e/0xb70 [ 290.195564][ T9094] loop_init+0x164/0x270 [ 290.200356][ T9094] do_one_initcall+0x120/0x6e0 [ 290.205677][ T9094] kernel_init_freeable+0x5c2/0x900 [ 290.211418][ T9094] kernel_init+0x1c/0x2b0 [ 290.216271][ T9094] ret_from_fork+0x5d7/0x6f0 [ 290.221385][ T9094] ret_from_fork_asm+0x1a/0x30 [ 290.226667][ T9094] [ 290.226667][ T9094] -> #1 (fs_reclaim){+.+.}-{0:0}: [ 290.233878][ T9094] fs_reclaim_acquire+0x102/0x150 [ 290.239423][ T9094] prepare_alloc_pages+0x162/0x610 [ 290.245052][ T9094] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 290.251471][ T9094] __alloc_pages_noprof+0xb/0x1b0 [ 290.257020][ T9094] pcpu_populate_chunk+0x110/0xb00 [ 290.262656][ T9094] pcpu_alloc_noprof+0x86a/0x1470 [ 290.268204][ T9094] xt_percpu_counter_alloc+0x13e/0x1b0 [ 290.274186][ T9094] find_check_entry.constprop.0+0xbc/0x9b0 [ 290.280517][ T9094] translate_table+0xc98/0x1720 [ 290.285891][ T9094] ipt_register_table+0x102/0x430 [ 290.291440][ T9094] iptable_raw_table_init+0x63/0x90 [ 290.297154][ T9094] xt_find_table_lock+0x2e4/0x520 [ 290.302720][ T9094] xt_request_find_table_lock+0x28/0xf0 [ 290.308817][ T9094] get_info+0x190/0x610 [ 290.313517][ T9094] do_ipt_get_ctl+0x169/0xa10 [ 290.318728][ T9094] nf_getsockopt+0x79/0xe0 [ 290.323668][ T9094] ip_getsockopt+0x18c/0x1e0 [ 290.328790][ T9094] tcp_getsockopt+0xa1/0x100 [ 290.333897][ T9094] do_sock_getsockopt+0x3fc/0x800 [ 290.339443][ T9094] __sys_getsockopt+0x123/0x1b0 [ 290.344896][ T9094] __x64_sys_getsockopt+0xbd/0x160 [ 290.350525][ T9094] do_syscall_64+0xcd/0x490 [ 290.356346][ T9094] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 290.362887][ T9094] [ 290.362887][ T9094] -> #0 (pcpu_alloc_mutex){+.+.}-{4:4}: [ 290.370657][ T9094] __lock_acquire+0x126f/0x1c90 [ 290.376047][ T9094] lock_acquire+0x179/0x350 [ 290.381076][ T9094] __mutex_lock+0x199/0xb90 [ 290.386102][ T9094] pcpu_alloc_noprof+0xb4c/0x1470 [ 290.391661][ T9094] blk_stat_alloc_callback+0xc8/0x280 [ 290.397606][ T9094] wbt_init+0xac/0x540 [ 290.402205][ T9094] queue_wb_lat_store+0x354/0x3d0 [ 290.407761][ T9094] queue_attr_store+0x279/0x320 [ 290.413148][ T9094] sysfs_kf_write+0xef/0x150 [ 290.418278][ T9094] kernfs_fop_write_iter+0x351/0x510 [ 290.424093][ T9094] vfs_write+0x6c7/0x1150 [ 290.428952][ T9094] ksys_write+0x12a/0x250 [ 290.433807][ T9094] do_syscall_64+0xcd/0x490 [ 290.438827][ T9094] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 290.445240][ T9094] [ 290.445240][ T9094] other info that might help us debug this: [ 290.445240][ T9094] [ 290.455457][ T9094] Chain exists of: [ 290.455457][ T9094] pcpu_alloc_mutex --> fs_reclaim --> &q->q_usage_counter(io)#18 [ 290.455457][ T9094] [ 290.469110][ T9094] Possible unsafe locking scenario: [ 290.469110][ T9094] [ 290.476551][ T9094] CPU0 CPU1 [ 290.481908][ T9094] ---- ---- [ 290.487263][ T9094] lock(&q->q_usage_counter(io)#18); [ 290.492639][ T9094] lock(fs_reclaim); [ 290.499139][ T9094] lock(&q->q_usage_counter(io)#18); [ 290.507036][ T9094] lock(pcpu_alloc_mutex); [ 290.511537][ T9094] [ 290.511537][ T9094] *** DEADLOCK *** [ 290.511537][ T9094] [ 290.519676][ T9094] 6 locks held by syz.1.678/9094: [ 290.524690][ T9094] #0: ffff8880625c0d38 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370 [ 290.533750][ T9094] #1: ffff888036558428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 290.542728][ T9094] #2: ffff88805fbb3c88 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510 [ 290.552496][ T9094] #3: ffff8881427b6008 (kn->active#135){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510 [ 290.562606][ T9094] #4: ffff88814275a7c8 (&q->q_usage_counter(io)#18){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20 [ 290.574281][ T9094] #5: ffff88814275a800 (&q->q_usage_counter(queue)#21){+.+.}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20 [ 290.586212][ T9094] [ 290.586212][ T9094] stack backtrace: [ 290.592093][ T9094] CPU: 0 UID: 0 PID: 9094 Comm: syz.1.678 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) [ 290.592115][ T9094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 290.592125][ T9094] Call Trace: [ 290.592133][ T9094] [ 290.592140][ T9094] dump_stack_lvl+0x116/0x1f0 [ 290.592157][ T9094] print_circular_bug+0x275/0x350 [ 290.592179][ T9094] check_noncircular+0x14c/0x170 [ 290.592203][ T9094] __lock_acquire+0x126f/0x1c90 [ 290.592227][ T9094] lock_acquire+0x179/0x350 [ 290.592248][ T9094] ? pcpu_alloc_noprof+0xb4c/0x1470 [ 290.592272][ T9094] ? __pfx___might_resched+0x10/0x10 [ 290.592290][ T9094] ? ksys_write+0x12a/0x250 [ 290.592313][ T9094] ? do_syscall_64+0xcd/0x490 [ 290.592327][ T9094] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 290.592345][ T9094] __mutex_lock+0x199/0xb90 [ 290.592361][ T9094] ? pcpu_alloc_noprof+0xb4c/0x1470 [ 290.592385][ T9094] ? pcpu_alloc_noprof+0xb4c/0x1470 [ 290.592408][ T9094] ? __pfx___mutex_lock+0x10/0x10 [ 290.592429][ T9094] ? pcpu_alloc_noprof+0xb4c/0x1470 [ 290.592451][ T9094] pcpu_alloc_noprof+0xb4c/0x1470 [ 290.592478][ T9094] ? __pfx_wbt_data_dir+0x10/0x10 [ 290.592502][ T9094] ? __pfx_wb_timer_fn+0x10/0x10 [ 290.592519][ T9094] blk_stat_alloc_callback+0xc8/0x280 [ 290.592536][ T9094] ? kasan_save_track+0x14/0x30 [ 290.592562][ T9094] wbt_init+0xac/0x540 [ 290.592581][ T9094] queue_wb_lat_store+0x354/0x3d0 [ 290.592602][ T9094] ? __pfx_queue_wb_lat_store+0x10/0x10 [ 290.592619][ T9094] ? __mutex_trylock_common+0xe9/0x250 [ 290.592642][ T9094] ? __pfx_queue_wb_lat_store+0x10/0x10 [ 290.592657][ T9094] queue_attr_store+0x279/0x320 [ 290.592673][ T9094] ? __pfx_queue_attr_store+0x10/0x10 [ 290.592688][ T9094] ? __lock_acquire+0x622/0x1c90 [ 290.592713][ T9094] ? find_held_lock+0x2b/0x80 [ 290.592728][ T9094] ? sysfs_file_kobj+0xe4/0x290 [ 290.592749][ T9094] ? __pfx_queue_attr_store+0x10/0x10 [ 290.592765][ T9094] sysfs_kf_write+0xef/0x150 [ 290.592785][ T9094] kernfs_fop_write_iter+0x351/0x510 [ 290.592803][ T9094] ? __pfx_sysfs_kf_write+0x10/0x10 [ 290.592824][ T9094] vfs_write+0x6c7/0x1150 [ 290.592847][ T9094] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 290.592866][ T9094] ? __pfx___mutex_lock+0x10/0x10 [ 290.592882][ T9094] ? __pfx_vfs_write+0x10/0x10 [ 290.592911][ T9094] ksys_write+0x12a/0x250 [ 290.592934][ T9094] ? __pfx_ksys_write+0x10/0x10 [ 290.592961][ T9094] do_syscall_64+0xcd/0x490 [ 290.592977][ T9094] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 290.592994][ T9094] RIP: 0033:0x7f18b1f8e929 [ 290.593008][ T9094] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 290.593023][ T9094] RSP: 002b:00007f18b2dfb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 290.593039][ T9094] RAX: ffffffffffffffda RBX: 00007f18b21b6160 RCX: 00007f18b1f8e929 [ 290.593049][ T9094] RDX: 0000000000000009 RSI: 00002000000001c0 RDI: 0000000000000004 [ 290.593059][ T9094] RBP: 00007f18b2010b39 R08: 0000000000000000 R09: 0000000000000000 [ 290.593068][ T9094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 290.593078][ T9094] R13: 0000000000000000 R14: 00007f18b21b6160 R15: 00007fff7fea8d88 [ 290.593092][ T9094] [ 291.633196][ T9105] netlink: 4 bytes leftover after parsing attributes in process `syz.2.682'. [ 291.651393][ T9105] openvswitch: netlink: Flow get message rejected, Key attribute missing.