last executing test programs: 10.752392355s ago: executing program 2 (id=993): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = semctl$auto(0x9, 0x42, 0x13, 0xc3f) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x2, 0x3ff) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, 0x0, 0x4000000) lseek$auto(0xffffffffffffffff, 0xacb, 0x7) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) move_pages$auto(r0, 0x9, &(0x7f0000000180)=&(0x7f0000000040)="d19628b8f8fa7df2bcdd831c4c02e95b2bbf7b6a4176436b572aa8652fbd4261ba290f36c371d0074ae2", &(0x7f00000001c0)=0x8, &(0x7f0000000200)=0x6f7, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/de\xe5\xec\x9c\xbe\xeb\xaf\x87X/2\xa6id-\x1av/audis1\x00\xe2\x1d|\xb0\'%\xb9\xe2Te\xd9nOl\xf2\xdd0\x04\xb62\x8e\x8dtB\xaaOs\x04+\xbdu\xeb\x93v<$\x93\xf3\b2\xc7\xb5\'\xc0S\x84\x1eo\xba\x12\x86\xf7\x91\xf5\x1e\x03v7\xdc\xd0\fT\x17\xf8\xbbdU\x02\x99R\x15J\xb50\x9e\xcad\a\x97\xd5\x12\x8c\xe8\x04y\xd0j\xc8\x8b\xa9)\xbbb\xbf\xc2\xdd\xd4T?\xbe\xf8z\xd0\xbd\x12\xdf\\\x1d|T\xd6\xeb\"Z\x99&\xd3\x1d\x99kY\xb5M\x05\xd8\x11\xd3\xec\xfe\xc8U', 0xa3d9) unshare$auto(0x40000080) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x1, 0x0) prctl$auto(0x39, 0x1, 0x0, 0x0, 0x0) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x40400, 0x0) socket(0xa, 0x2, 0x73) r2 = openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000580), 0x500, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r3, 0x4b4c, 0x9) ioctl$auto_BCH_IOCTL_FSCK_OFFLINE(r2, 0x4018bc13, &(0x7f00000005c0)={0x0, 0x9d, 0x720, [0x0]}) 10.160983095s ago: executing program 2 (id=998): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0xa, 0x0) sendmsg$auto_ILA_CMD_ADD(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)={0x14, 0x0, 0x1, 0x70bd28, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) sendmsg$auto_NL80211_CMD_STOP_P2P_DEVICE(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000140)={&(0x7f0000000b80)=ANY=[@ANYBLOB="b0050000", @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="1c0003800c00170006000000000000000400ed8008006b00", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="0000040043000800cc007b0000000c0000000000000001000000bd9bbafc3b73064a91adc059c9d87d93f892613af27df46bab32d4bec9209a8d25d3a1782aad305dcc89d8e8cf7a2db7695c218312b7d7223c293d7a62d71fc9f140fdd09e3f6ea5791507f0a764071976033bfc506969d79376b5e4de018403add8bcf6d8fa08462b5163ffd8ac486ec3ef20a9f432f5b3bad30e43afd0d60d2eabc55aab75c0fcd7918c479982a8107666302cab04ff1e1bf1577f169015d42166ae7800399311fc6caf8ced253e82e8e4ec8dcafef59fa3c1e7b77cd1e798f5a1ca19"], 0x5b0}, 0x1, 0x0, 0x0, 0x800}, 0x4005) r1 = getpid() r2 = wait4$auto(0x0, &(0x7f00000001c0)=0x1, 0x4e, &(0x7f0000000240)={{0x3ff, 0x10001}, {0x2, 0x1}, 0xbaac, 0x8546, 0x2, 0x1, 0x59, 0xfff, 0x80, 0x1000, 0x1, 0xff, 0x7, 0xb, 0x2, 0x8}) sendmsg$auto_NL802154_CMD_DEL_INTERFACE(r0, &(0x7f0000000a00)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000009c0)={&(0x7f0000000300)={0x6c0, 0x0, 0x100, 0x70bd28, 0x25dfdbfc, {}, [@NL802154_ATTR_CCA_OPT={0x8, 0xd, 0xc6}, @NL802154_ATTR_WPAN_PHY_CAPS={0xba, 0x18, 0x0, 0x1, [@typed={0x14, 0x139, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @multicast1}}, @generic="70d7138ef41d89d71522f21f7944bbc45706eac78cac62b2171a273f509d41939dbfaf831909270296ed5b28d11e23d34ad6e515b7f68e5e8a073c6dd210e7071b0581e5556d709b741b5d85316a8c9364cdb6e1f4e948b468e020560c6fa3c9c417cbd6dbbbaeab772c6c3114727d5a24b9ecc58c58b826d5fff4d2b8d3e7e620fc", @nested={0x18, 0x13a, 0x0, 0x1, [@typed={0x8, 0x6b, 0x0, 0x0, @uid}, @typed={0x8, 0x112, 0x0, 0x0, @fd=r0}, @typed={0x4, 0x5c}]}, @typed={0x8, 0x126, 0x0, 0x0, @ipv4=@private=0xa010100}]}, @NL802154_ATTR_MAX_ASSOCIATIONS={0x8, 0x27, 0x7}, @NL802154_ATTR_SEC_DEVKEY={0x5ae, 0x2f, 0x0, 0x1, [@generic="7b7cc6ffaac5927acedd4bbf83b412edc29ee128b0ff7f8eb441315cc42dbaa800ab755e6377c8fe4378677be54a3a84625a2af48325d2a7a8249d7a0c62f7e45f5b40e4ca288c34211a318b70bd02cce5d76f365e9bb4e9877c9fd4b7cb8e54a8825e4ec3d679d85170066382724b6eb351261cc917a7ae8afa095753b8f25bf8c308a16c20585b5460e01c674a119c083289afc9035023b6f851e60a1d4ce7edbb3f4bced94482aa1b48a8b098d006ff06ee5121d727d521f4560e", @generic="9e31d2d843a3211137a6660ffa8eb23fe6f1de1ede88", @nested={0x19f, 0x91, 0x0, 0x1, [@generic="79ed67c308f61018dbeefa605f124bd84c1a4281f70ff6a94e097899ad070be7210a851b0fd3aa6ac2af13452be81db73e77801c956c6a09a96c0b121771ca509fe790", @generic="f6ce6e848fb831e98d4fbc91fb6da7c0fced0841a3d236941124d392325e89053b588d8e986ba583e245b33d2dc8694a65de4091d41395650ee78bdab34076f4ae41912d16f7c6fe246aa76b869f8345f691c89a50b4a997da91a0c900e85bd78fe5decfc50de1917734a89035c518bb08600560c12aa44db5f9840301c756896bba2142a48421ae45c9b9977c1f5452ce8c4a22", @nested={0x4, 0xf6}, @generic="12660d27ed03f9ac0e473a9f00f9f04ddc10014c3fce77a6ba26417886c5d2dd9b2e9453de4984182019ac350a78826cb99bd7a7baa404ab8692eac79f4af9d82d020bce49d5a65e954b3cbeb104bd3da970307e61b038db6ab07561eaad9ff489f496abc44143c264ca038d0a4044a60b26008c3871e9412a275711d4be1a96ae88dea1d2db913b66e456ef0ba992ef36e479a86a6039405dc2793c", @typed={0x8, 0x2, 0x0, 0x0, @u32=0x5}, @typed={0x8, 0x8, 0x0, 0x0, @fd=r0}, @typed={0x9, 0x11c, 0x0, 0x0, @str='IPVS\x00'}, @typed={0x8, 0x100, 0x0, 0x0, @pid=r1}]}, @typed={0x8, 0x10a, 0x0, 0x0, @ipv4=@rand_addr=0x64010101}, @generic="5b50af03ee4c17e53ff5ce2a1ffc5186c1ca038ee8690c", @generic="e345260d70647aa6f655a5d150dc0c20524ba23df11db48adf13aeecb0f0428a16f694937f7a5dfc956c05dc58f704e3bc0417d4e4805853750aaa8c813be97672cef921581aa3cceb459068248061d215f4e410802b0d13ef1ecc49cf54e94999fe9c00a5fd92db6f873c5231c79601505c81fa2160ec4abdc28d446ad808e4b4c4e4b801774edae7785c716a71ffdf54fcb2e6f7bed4527df17ed54296d244f8046ea1c79f68c992f9f3b816e9b3f836c4f1e7127cbbc4b3d163b5118a71ab12394d7cae024dca1108efcf1e29488949860cc7a2e7ef56521f2814bdb1de4a548430bb4f4a8298f68fa5758334b054104c051f", @generic="5a741aaa59d3b66984ec60f2ba4d052f59a5942fb26af59ca584c824f5d27d460c1d2afe350715f4c829b25002fe1bc1013fd898b2ee7747ccf5d118d637049b0c415f259d58774c56b2494f39133c3878888df1cf905f77801384350648451e9d79f98cca0825795120f204e55dc0f984baaa450dc25519bc26342c3053834617f490a0e9883c3f186d09f859a1db05f1f64355770c092301bce1c6f0874a4cf5387cc4992f1b76bc1cfd6de264586f0c2de8a1f4372d43723882f8054c8ce0ac8cf7c3f6462129f79e42eaf1744beea406ddf8bac7e5498c41c1c12b", @nested={0x132, 0x73, 0x0, 0x1, [@generic="797f6a86700c472996afe1a250953fd9108840bd0ca7122bebc6151277e675a6d873cfc8a928dd5f019830c723bdcdb6c8266a22d083041375e280fb70ee03ca24bdd2a03fa5ed2082f4bae6a9070499b8532d87ef3004691bdba88cec4ed9523fe708d9ed93544b0f30ab3c83976d1a81d145a0bfd5073c0771f7fe105e535ac63991a56bc3ec14f31fcbdda61446cb9cc22ff503114ad8986997f5fe04df30b2bbc7ababb17fdb83f96cf8e08c20fc1d84dedcd9f92f7afca0d0d6b3f58095d0b5031f0a2b17373ac9e5e81990ee8cb0000eed0d716c5f2bfa", @generic="2176dd70d5829e02df674f33c849f5bedc2279541f3c0b526196ab6794226293d0c9fd502579c3a26d5ac55663e957b7be0827d72b656244445fc51a1585233823d937de7e29075c", @typed={0x8, 0x13e, 0x0, 0x0, @u32=0x3}, @nested={0x4, 0x96}]}, @typed={0xc, 0x53, 0x0, 0x0, @u64=0x791b}, @typed={0x8, 0xd7, 0x0, 0x0, @pid=r2}]}, @NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x3}, @NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0x8e6d}, @NL802154_ATTR_SEC_ENABLED={0x5}, @NL802154_ATTR_CHANNEL={0x5, 0x8, 0x1}, @NL802154_ATTR_SUPPORTED_CHANNEL={0x8, 0x16, 0x800}, @NL802154_ATTR_MIN_BE={0x5, 0x11, 0x5}]}, 0x6c0}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000) r3 = socket(0xa, 0x2, 0x0) r4 = socket(0xa, 0x3, 0xff) r5 = socket(0x2, 0x80002, 0x73) bind$auto(r5, &(0x7f0000000080)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(r0, &(0x7f00000018c0)=@qipcrtr={0x2a, 0xffffffff, 0x4000}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x1ffff000, 0x7, 0x100000000) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2) shmget$auto(0x8, 0x10563, 0x568d1af2) madvise$auto(0x0, 0xffffffffffff0004, 0x19) r6 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), r3) r7 = getpgid$auto(0x0) sendmsg$auto_IPVS_CMD_SET_CONFIG(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000080)={&(0x7f0000006940)={0x26e8, r6, 0x20, 0x70bd27, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x5}, @IPVS_CMD_ATTR_DAEMON={0x2685, 0x3, 0x0, 0x1, [@generic="0ae556ea96b6aac20a2df353bb08ecd46a7f933d1b2db8ce9af498e5ff3a90bfe88cc0b1e2e58b0f02ef589c88720e1e867e4da84e9bd27e4e7c2e138ed9b259006d0495ac1d03abe76afce408df49a9a4d2c79e8416718b6ea62d96bfe4d485b5898da01e69d213069313429fe114911f46d2480f", @nested={0x1b1, 0x43, 0x0, 0x1, [@typed={0x8, 0x119, 0x0, 0x0, @pid}, @nested={0x4, 0x5e}, @generic="1b6180a9a251a5f7309b5b6b8af06ed32ba9a6c9b4845494259b2eee6bf6aceccc80f3c1ac1e002fbb719b8a15e2fe551c7c038ef05802e35f6c3566675751865ee538b9e57ac3c3ac0668a4b3929be439d1ef4cdd24c7415036f9d02f18333fe5fccf1ccb5a61d1e047fa29c9119ab9bbea68f91fc936910e843c7c568c765383c07ce45c309fbf64924e2567db900905537a8003e022f7a044", @typed={0x12, 0x14b, 0x0, 0x0, @str='/dev/snapshot\x00'}, @nested={0x9e, 0x9a, 0x0, 0x1, [@nested={0x79, 0xea, 0x0, 0x1, [@nested={0x4, 0xab}, @typed={0x4, 0x38}, @nested={0x4, 0xbf}, @nested={0x4, 0xb3}, @generic="a9cf5cf357cc6739a11fc8ca4b70a7c7a8d57157093b6ebadac2714a89890b0d9ac2745bdcf3a6d8cab53b7dada2acc6928f09af8ef2131bf63e7fd1d4334564cadecc737528b7e2ecae58baba5777114a0969eb74", @nested={0x4, 0x125}, @nested={0x4, 0x5c}, @nested={0x4, 0x105}, @nested={0x4, 0xcd}]}, @generic="c1101c830c1adac52805bf4a0fcc064ba672989d164cc3d0a0c4", @typed={0x4, 0xf6}]}, @generic="627d93aa42f40ad39e72806204876c62645d32e22db38cf26b22937449b0acd596f82d21bbab5d200dbe014bca9443d8ef194821a06d9151f0027a098a56ce0fe0fb799d8437668b53f1752dcb19744e1fc8cd"]}, @nested={0x52, 0x57, 0x0, 0x1, [@typed={0x8, 0xcf, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x36}}, @typed={0x13, 0xa3, 0x0, 0x0, @binary="7ed15ac6bca1f5fc68f5c93db8a749"}, @nested={0x4, 0x53}, @generic="0baa9962d832bfc7a1598f73f290676159d5d963f0ef3f3694e8c4769e09a76a5681c9ac27bac98715719137d62e"]}, @generic="5b4616330f58eec7166fdb5686acea5e1073d07a6eb7b91e3eb3ad97fb23c2aa1e37e9c9253c0115d7c961fed3edb90a3043132ec20bdf79be7ae10344c3f520acf5783d0eb3c0e11c56c454f6919da28e35da492fd3bd376918d0d1db7541fe3db6ce2b222834198cbee80a7b8b144af6a3fea938b06a01046b00b17c01cfd123", @nested={0x119c, 0x22, 0x0, 0x1, [@nested={0x18, 0xbd, 0x0, 0x1, [@nested={0x4, 0x5}, @typed={0xc, 0x14, 0x0, 0x0, @u64=0x8}, @nested={0x4, 0x14e}]}, @nested={0x4, 0x74}, @typed={0x61, 0xeb, 0x0, 0x0, @binary="16ab03a4905132934ff7772895f58b6f0911d351fdf9d8fedaf73595c2ac74b45f152e2d6559bd07d4469710bc09a47f930592cdf2e6e61a5dde4864a48a0d7ec7204e7a29ffeb80bf89843ccdabab280f513dbcb0fda43b01545e7ed1"}, @nested={0x102c, 0xde, 0x0, 0x1, [@nested={0x4, 0x7e}, @nested={0x4, 0x21}, @typed={0x4, 0x144, 0x0, 0x0, @binary}, @typed={0x19, 0xb4, 0x0, 0x0, @binary="a861ba2a2633321c3c28137c87df2c52ddc75905e8"}, @generic="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"]}, @nested={0x69, 0xb6, 0x0, 0x1, [@nested={0x4, 0xa6}, @generic="08c873ec243989666b5cfee46276ded3bbcd32aa74fc87bf65d940ffea553040bb2956b946e1b2a6b9f1df15adc1971462e6353f415d07abfecd72b338acce6e96d871b322764780bd4441d70a", @nested={0x4, 0xe}, @nested={0x4, 0x7a}, @typed={0xc, 0xce, 0x0, 0x0, @u64=0x1}]}, @nested={0x7e, 0x91, 0x0, 0x1, [@nested={0x4, 0xa7}, @typed={0x14, 0x4, 0x0, 0x0, @ipv6=@remote}, @nested={0x4, 0x72}, @typed={0x8, 0x71, 0x0, 0x0, @u32=0x7fff}, @generic="5c56fa3b9de8c3e3e906edb7a2b31e0b6195dd8b162fd582917b4d1b32aa693d8199710dff3d5bb8aa73607d69311fbf283fff12c9c86f0c89a3605ad507d96463496bc9d123b65dfeee5f4e36700178cd6d", @nested={0x4, 0x11d}]}]}, @generic="894e299d6260a47e11406008a472f6a9725b9fef7c39d86f448a815b8fe227", @nested={0x2c, 0x15, 0x0, 0x1, [@generic="dc641df00c5037ab80751ccffa98cf32a2937c8ff7aa7c751f859c9c5dba646cfa7737c23e800600"]}, @typed={0x8, 0xae, 0x0, 0x0, @pid=r7}, @generic="81b8b1fc1c32599be89ba74119c806ea27f3aa5e9c5679a312270e7e81db4890806dea78fbeef252fe7f1b53f45998db15af37e140c0980a2d7fbcd426c4d79699daf726d795c9ee038fbb00977b0cb662122831dd9d93cd3f297d8ba7f0c40aa0be2f15b6a064c90ed84f6e5fbe01f3bf59013a924602291753fa87cf056ef96dc23104d826ebf0cb14701dd5813e112b131f931c47eb04b4122e7add7159a42977ab9a220fea98b80f73fb", @nested={0x18, 0xcf, 0x0, 0x1, [@typed={0x8, 0x115, 0x0, 0x0, @uid=0xffffffffffffffff}, @typed={0x4, 0xad}, @typed={0x8, 0x35, 0x0, 0x0, @fd=r3}]}, @generic="dac3bbf0b6b77ac7b13a594f107499597f2d43a4712947bcbba8aa5ae2537058f2a38e7572f4ec2d52dc43c1d496a4f0ba69fd8dc7c5e9753be46622ecf414be93747e70f3e067e1926e6f2a4e47a29a8c10b741bcbee9650ff444956edca77d46f36a6bebeba7ca1934754572e9274b45a33f6c96f700438d9b25d15ebcfa277d85985462907ac3b9ad23b0f2725e9a37c6d5793cf96d8edbca96ab6d90fa19baceaec799cf2fdb7d886e8a9a6c6ff4029188e22759d2f9c2a76f19f4fc18a9b1f215858f70a703ad2c8ab7", @typed={0x1004, 0x46, 0x0, 0x0, @binary="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"}]}, @IPVS_CMD_ATTR_DEST={0x3c, 0x2, 0x0, 0x1, [@nested={0x4, 0x92}, @generic="532c16efa56127ece7fbd51bcfa70b735c7ec1c7afce1a7429cd7567f897de394a1b1e2de669ac1e3c1470ddc986a2e6e4bb6e49"]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x9cb7}]}, 0x26e8}}, 0x40b4) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000100), r4) shmctl$auto(0x0, 0x0, 0xfffffffffffffffd) ioperm$auto(0x7, 0x6, 0x2) open(&(0x7f0000000080)='./file0\x00', 0x22ac2, 0x5d745cb200ae4d7b) utime$auto(&(0x7f0000000180)='./file0\x00', 0x0) 9.08084938s ago: executing program 2 (id=1002): socket(0x10, 0x3, 0x6) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000000000600010000000a0005000000000000000000b3fc010000000000000000000a0001000000000000000000060006000500000008000200", @ANYRES32=0x0, @ANYBLOB="080004000301"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) socket(0x10, 0x2, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="f2000000", @ANYBLOB='.\x00', @ANYRES8=r1], 0x1ac}, 0x1, 0x0, 0x0, 0x24040840}, 0x94) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) socket(0x21, 0x2, 0xa) sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40080}, 0x20040000) sendmmsg$auto(0x6, &(0x7f0000000400)={{0x0, 0x3, &(0x7f00000002c0)={0x0, 0x8}, 0x1, &(0x7f0000000300), 0x10, 0x8000000}, 0xed7138c}, 0x6, 0x0) 7.914574656s ago: executing program 2 (id=1004): r0 = openat$auto_gpiolib_fops_(0xffffffffffffff9c, &(0x7f0000001380), 0x20000, 0x0) preadv$auto(r0, 0x0, 0x2, 0x5, 0x19) 7.554622807s ago: executing program 2 (id=1005): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) socket(0xa, 0x3, 0xf2) mmap$auto(0x0, 0x400008, 0xe2, 0x9b72, 0x9, 0x8000) ioctl$auto(0x3, 0x89e1, 0x91) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x8000000000000000, 0x15) mincore$auto(0x1000, 0x8001, 0x0) mmap$auto(0x200, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) connect$auto(0x3, 0x0, 0x55) 6.509408375s ago: executing program 1 (id=1009): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r0 = socket(0x2, 0x1, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000001340)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_/file0\x00', 0x40000, 0x0) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) write$auto(0x3, 0x0, 0xfffffdef) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000080), r0) connect$auto(0x3, 0x0, 0x55) 5.998259789s ago: executing program 3 (id=1010): r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) mmap$auto(0x2, 0x9, 0xdf, 0xeb1, 0x401, 0x4) r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(r0, 0x0, 0x7, 0x4, 0x0) (async) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async) r2 = socket$nl_generic(0x10, 0x3, 0x10) (async) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000003680)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000004880)={&(0x7f0000000100)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16, @ANYBLOB="010027bd700002dcdf25090000000400070008000300", @ANYRES32=r3, @ANYBLOB="270006"], 0x48}, 0x1, 0x0, 0x0, 0x40010}, 0x890) (async) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000001540)={&(0x7f0000000140), 0xc, &(0x7f0000001500)={&(0x7f0000001240)={0x190, 0x0, 0x400, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_CHANNELS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_CHANNELS_HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6tnl0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x40}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}]}, @ETHTOOL_A_CHANNELS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}]}, @ETHTOOL_A_CHANNELS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}]}, @ETHTOOL_A_CHANNELS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_CHANNELS_HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xffffffff}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}]}, @ETHTOOL_A_CHANNELS_HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x101}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_CHANNELS_HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xfff}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x190}, 0x1, 0x0, 0x0, 0x4}, 0x4004045) (async) r4 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000003040), 0xffffffffffffffff) sendmsg$auto_OVS_METER_CMD_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)={0x38, r4, 0x82652360e804c8d3, 0x9, 0x25dfdbfe, {}, [@OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_STATS={0x14, 0x3, {0x9}}, @OVS_METER_ATTR_BANDS={0x4}, @OVS_METER_ATTR_ID={0x8, 0x1, 0xfffffff8}]}, 0x38}}, 0x8080) (async) socket(0x15, 0x5, 0x0) (async) sendto$auto(0x3, 0x0, 0x2000f, 0x0, 0x0, 0x1c) (async) getsockopt$auto(0xffffffffffffffff, 0x10d, 0x10, 0x0, &(0x7f0000000000)=0xb) (async) r5 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f00000024c0)='/dev/cec9\x00', 0x2000, 0x0) ioctl$auto_CEC_G_MODE(r5, 0x80046108, &(0x7f0000002500)=0xff) (async) r6 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rt_cache\x00', 0xa182, 0x0) read$auto_proc_iter_file_ops_compat_inode(r6, &(0x7f0000000240)=""/4096, 0x1000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x9, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) (async) connect$auto(0x3, 0x0, 0x54) (async) sendto$auto(0x3, 0x0, 0x18, 0x101, 0x0, 0x1c) (async) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) socket(0xa, 0x3, 0x2c) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) r7 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r7, 0xc004743e, 0x0) (async) ioctl$auto_PPPIOCSPASS(r7, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) ioctl$auto_PPPIOCSPASS(r7, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x1, 0xf1, 0xb0, @raw=0x68e8}}) 5.845230629s ago: executing program 1 (id=1011): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x200, 0x1001, 0x0, 0xf, r0, 0x1400000, 0x5}, 0x6f4) r1 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/usb/usbmon/0u\x00', 0x0, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/032/001\x00', 0x88002, 0x0) readv$auto(r1, &(0x7f00000000c0)={&(0x7f0000000000), 0x1}, 0x7) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/bus/usb/003/001\x00', 0x80801, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r2 = io_uring_setup$auto(0x6, 0x0) madvise$auto(0x0, 0x200007, 0x19) getegid() close_range$auto(0x2, 0x8, 0x0) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3) setsockopt$auto(0xffffffffffffffff, 0x10000008, 0x8005, 0x0, 0x2) unshare$auto(0xfffffffffffffff8) madvise$auto(0xfc94, 0x8, 0x1) unshare$auto(0x40000080) mmap$auto(0x2, 0x4020009, 0x3, 0xeb1, 0x401, 0x4000008000) madvise$auto(0x80000001, 0x2, 0xffff) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r3, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x44000884}, 0xc880) socket(0x10, 0x2, 0xc) ioctl$auto_SOUND_OLD_MIXER_INFO(r2, 0x80304d65, &(0x7f0000000200)) madvise$auto(0x0, 0xffffffffffff0005, 0x17) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) 5.726640802s ago: executing program 3 (id=1012): r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001b80)='/dev/input/event1\x00', 0x200002, 0x0) ioctl$auto_EVIOCSKEYCODE(r0, 0x40084504, 0x0) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/graphics/fbcon/cursor_blink\x00', 0x0, 0x0) r2 = open(&(0x7f0000000000)='./file0\x00', 0x54f443, 0x10) fcntl$auto(r2, 0x409, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000001100)=""/192, 0xc0) write$auto(0x3, 0x0, 0x100082) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_OVS_VPORT_CMD_SET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000240)={&(0x7f0000001bc0)={0x14b8, 0x0, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@OVS_VPORT_ATTR_OPTIONS={0x1425, 0x4, 0x0, 0x1, [@typed={0x8, 0x59, 0x0, 0x0, @fd}, @generic="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", @nested={0x133, 0x94, 0x0, 0x1, [@typed={0xc, 0x102, 0x0, 0x0, @u64=0x7}, @generic="a138235a943d4d821e399fc8546bdca59dab439199383beae82bba4140de9bfc88c1ea5be981be27174a4ac135fbd5c3ffe216950d290427d2ac68681311f73e8a0f62c8c87ea5b1594b1a927d9cbf04cbf69191219481895601835b9efcf4161921473b71bac61bdb5ac3accdc2daed1b7c887713cd5aa9bfe5ea9d082960559809bce8c5cef39c3dac3689163cce9065b85d872c91625fce04e1b7713b74cb91396444735f570eda8c8aebdd2aec6f64336d6f9d8b9bc7e8c287", @nested={0x4, 0x1}, @typed={0x10, 0x40, 0x0, 0x0, @str='/dev/audio1\x00'}, @nested={0x4, 0x64}, @generic="5bce53559a5ed3bb9f6362774b8353dbb5846ee38a4b3576e2e93911a1c850a981e968f309fa8eda7f7d03bc028e7ec6dbf1d7873b10b8acbab30e8a06025f9054237511059c4df2ac7de324c8e2b9cf"]}, @generic="02e886f0b016c39f9f174a1f504d6876a0e83ed2e5a7e97240ffc084c63ac46729ba7c974b69cf81dd9dd6eba2d87b3c78eb67707da4a07823fc345390812616be851f7debfe9a1065dd8c19be48f807653e5b5d988cabec596c25d815e1ad2c9d0a864a002b082871dd050c088c13af40ac495089526af5e42a4eea19c10f110b2b59ad2b060122c2d26cd41d42904dbf2a0da3ca85ddcfef407322859328df432023e6e3be077d08b81da96ca9ff0d0a3db74cc43176140f1d050fa008c7ee16a47c76331b06155b5d61661832", @typed={0x8, 0x13f, 0x0, 0x0, @pid=0xffffffffffffffff}, @generic="38b29ae5111ea38682db7953d0933c8559f349ebbca79d3b7df1de357f19f80f165106b9b496a848e7efd10399a1da236254c07ed17ccfd3e55870098e87e00dccd43d0d07e474632f7e25583ce914121377d612d58a03357eb9ca036d06668bd40d7ef27aa7cc71d7f480f540eae1b0a57307914190f56070784f539b239c0eb421eaca8a6e2dc7bf1ba7464ecb2199ba927186965e8e970bdfa83d66a273b13155e41506f41bd3bdd9ed349b4783899ad59fc77ddd277bebc7536df8638e99b8b50f67bec3405e685a5df27649776505344a7f083aade0c47c78", @nested={0x13e, 0x130, 0x0, 0x1, [@typed={0x8, 0xa3, 0x0, 0x0, @fd=r1}, @typed={0x8, 0x88, 0x0, 0x0, @fd=r2}, @generic="0d00f57eeac588fce112ae5f25265f8f6babd3697cad3eed02edd6b5c29d40560571f61c5540adca9d", @typed={0xdc, 0x10b, 0x0, 0x0, @binary="0a143a692bcde43e2872da765dae64d673c690155ed3a8c6149543f52c0fe93234e343eb74a3679a4b24db2750282a36ad2836e81f5bb9ea94828776ce595de5310b048980c8f09257dea9079649ae4b35fa8495dc0e74a6b1054ed556823bb2f3b01e4dff37917e145e119b0683725026e2071a96ae65a875972c0bda58dd57d9323657e96727ef5d1076e58cb94624ecfaa44fe805dd8e24486befdd69efa45d1d7f72e8420a41520c1ceaee8c0dcc017d824b4f05a86d961e2c8ca07d33a1fb70e7ba1147f1ce063ebe4eb4891447ff1c20af75839389"}, @generic="1965ce84907aeacbcb0891cf5f9c75e88ab640dfb402120bdbc462a508451c1672", @nested={0x4, 0xf3}]}, @typed={0x14, 0x12d, 0x0, 0x0, @ipv6=@empty}]}, @OVS_VPORT_ATTR_IFINDEX={0x8}, @OVS_VPORT_ATTR_NETNSID={0x8, 0x9, 0x9}, @OVS_VPORT_ATTR_OPTIONS={0x8, 0x4, 0x0, 0x1, [@typed={0x4, 0x4c}]}, @OVS_VPORT_ATTR_TYPE={0x8, 0x2, 0x52f}, @OVS_VPORT_ATTR_STATS={0x44, 0x6, {0x1a40b13f, 0x9, 0x28, 0xb57, 0xfffffffffffffff7, 0x9, 0x7, 0x6}}, @OVS_VPORT_ATTR_IFINDEX={0x8}, @OVS_VPORT_ATTR_NAME={0x10, 0x3, '/dev/audio1\x00'}]}, 0x14b8}, 0x1, 0x0, 0x0, 0x20008002}, 0x4010) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x4008) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) migrate_pages$auto(0x0, 0x8, 0x0, &(0x7f00000001c0)=0x7b) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r3, 0xc0045006, &(0x7f00000001c0)) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) move_pages$auto(0x0, 0xfff, 0x0, &(0x7f0000001140), 0x0, 0x10000002) adjtimex$auto(&(0x7f0000000000)={0x4, 0x0, 0xcbe9, 0xffff, 0xa, 0x80000000, 0xd37f, 0x0, 0x5, 0xd, 0x3, {0x10, 0x6}, 0xfffffffffffffffc, 0x10002, 0x2, 0x4, 0x0, 0xfffffffdfffffffa, 0x1, 0xfffffffffffffff8, 0x9, 0x7, 0x8}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000) r4 = gettid() process_vm_readv$auto(r4, &(0x7f0000000040)={0x0, 0x2}, 0x4, &(0x7f00000000c0)={0x0, 0x100000000000002}, 0x3, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x82, 0x0) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a4, 0xffff) mmap$auto(0xfffffffffffffffc, 0x5, 0x400000072, 0x11, 0x1000000002, 0x8000) madvise$auto(0x405, 0xfffffffffffefffd, 0x700000) 5.482890231s ago: executing program 0 (id=1013): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) mmap$auto(0x0, 0x10000, 0x10001, 0x4000000000010, r0, 0x28000) write$auto(0x3, 0x0, 0x7fffffff) ioctl$auto_AUTOFS_IOC_EXPIRE_MULTI(0xffffffffffffffff, 0x40049366, &(0x7f0000000000)=0x1) write$auto(0x1, 0x0, 0x80000000) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/pid_for_children\x00') close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, r1, 0x5) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/input/event1\x00', 0x40002, 0x0) ioctl$auto_EVIOCGMASK(r2, 0x80104592, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x848000000015, 0x805, 0x0) bind$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x6b) sendmsg$auto_NL802154_CMD_SET_SEC_PARAMS(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000d80)=ANY=[@ANYBLOB="05000000", @ANYRES16=0x0, @ANYBLOB="010025bd7000ffdbdf25150000000500120010000000080027000c000000380b2b80330b248004008080ba89ebda4be9067b59c90d50dab4ba175b1b13d15e19ee0f5bf6c6d2095efcc719c8e137b7ec6062c6c768e512acd0f1208ee2be2b891868abd1934bd95a54945e649a2afd1272f72e8fffb57e3ba1c8fb306ce2ba95180cf54dcca46ab950e626ff31022afd57f1306ee00962cb60c30a9946d642a00256ed0006ec8364307874f7c763c6e9af0222943721fb4fa5b1cecfe3a908b1fd515dad1e0ca0998fa55ca4bbf9412855250567f1b98186d8597ab6fb715cef224b510a7ccc4cae047b6d4ab94775e1158d87be4806455bbd76baaa3a656ed5f316b17a5a27a6ec9904006d80460a8e80b634a4b1ce57b5a586e945eb157cc566d02bed93630b901c93d3fde23606aa3e80e4d0644fef266741cf5f2879924594cd388ed548e2dea74f9d72af19edad4a810af64d79eaa131b2afaca3f428fd83499d9c7a99dfd9a24cbd9bf5b0f0446521fcf1f416f83791795dc86d63c7a05e38c547e208be35b17fb8aa1fa57ea4ac59aac09a5bfb9f08a6d02e58d5040324f4241a9eb63d5a1e48cff0ed3e97c4af9506ca950ce9d115d242277c614a27a77df014ced1df35f069b42113bc6bf5427f9c1ba6924ec8bafc11ba6d9303461e92e3c3e1b4d5b2954d259654ee2bab0385e3b106c4a93525200ce6e3f1e9f6d4b87b61583abced950ff97dade7ebde309c78d4f1ddbff5cb5c3fd141cbb4e56a97183f705019716cf6d6f300c9677b6f14b2b8d708b675b5c4f2357d9c22dd6bba1195ba295a5f713ac28f043cc671fc7b43fb9b40bf17766c79d698dd68d0e385e926971a18a3c3687c3c8202b806432be62b3030a2c9e31da55a6cd98165f7439f9a09508b8c4b9c5ea32aaf1f7c4246ea8700aaccaf476d9cd5e3b2340d17f13ba40c8fdaf4aa4c4b8763fd86d35bda9aab03e3a252d7e4aea01cdad1fad040b29a9e92ee1fd8c010c30b4cc69917cee531e42efa59c735fe8159a292f57fa7a4600e6833032846d87a515d9803770eb4db6712bce7b51fc2f0eff8a292023a8c7c1544c6e53012f9fe13aa8caf795caccfa4ff2321116a86938e2b782e7a57fe5cbff8df11b0bc86d691a7a8df0cc9486c4898e8bafd0b374798ecdba9af994890465f435d5e6408dd9ddd96df1673098864522e964b565d69882198a999ee41c980dafdf3538400c81ad57dc970a72b75d75850913452021a4dfe885342c4e5c33dbcd801b10866908de67b13c5dc4fb51dce74dae4c4c27413c00b50c8e18d1dcfe28974fee5df4cefd05f7e8e21e8881ef7300ca75af8ef7c8cfa0a1cf8771444e3bd449f957fa4500c1f371ccc31a7b196ca809935887d26d3ed24d2dc16c83aa263abd880df1d27d8463e4f29673fbb0a073caaf975314f5660bdf89c285291a46ddb2f8410b02e86bc522808052288fe16dbb7733976605ed2342c69717ba18334138bc68c994ffa20bbad1672a4ee0dc19a0ec177f36995edc671ef8d29211e4b7d0723a18c36c398df2e924a4f55ef95687e6a4aebcf86d36a9791d561c2203fc4a545d30a5173ffc84612c333a73fd0c84f92554294cfbbe86088e79bc6f1c9bc880b4502e4b47af767f47dbccbf4318ec6a33ee42cafc3e6ced6720adf772de614a754c7b0d93208cb0bdd285e8ff9ffe078bb782a57a14204784880a3379af47423967bf134933d350324a845e7aca06245efec7dd272177bbb663bf83c23161cf7d8b32d45502f6bbc6416720652aa197556c3cf5be55e2f8ace74ce95feb288f681d92ed529bb9892472c3633f744bfde252c8b00808d92daa2a3b4771eee9cc83745c326f8ea02119b55a99bddfc498948e53ce2efa0635276810d2211e9e0e63bc850029865d525cbf43cde05009dca149084d9569a1abb0e5f941bd5c67a77685e965b354dc744617960e642512f2cd86236c9a1791f446e822b86518185d668e7e93daec7b1a9f53034aeabc7c7bf52deefbf5e2a90b085c41c0f528ff2cf81dbc1c28ed95ad75fd65c0e0d793d7111dce84883cbf60cd55e025b824d84e141d54da72111ea2fed1fd8f3c9cf47763ee47a7988d5021ac661641ee95ea9c9d57dd2f8e537f3cb71830a6c1608dadf6beb7339961811f8da34f8fb7b5190f9c146942fda73801812ed6bffa1a60c80e5fd6528e045b40fa78c10f37797d93f827539aa389d59c48254397ff7b72325465d18b04acac619d9d5f80d46b57d28a76fbe83203ecacb91328b145ebbe356178a1eb1c09101fe785c98aab93485ae7b4217412b7ea31fdd965eaaf78d3ab4eec8bc689062b738c002fd94f9cd18bbc5285c57854f9092e85d90ec205f43fcc9d27cd6041fb73ed3164e7f2cb3ea694b89a1879f8cbcdbffdab4b277d0fa3dba5061952d266b2f3821f79cd2b3bf107c6250e711c9ddba407c9ed323d2dfda23d5a4088f8199d1cbb311a1b051da8d792299f471f0ca7fd7925695acaf01e7ad022d96dfb30e66d551fb37522baf2ea71cc5a6416124ee2138c3f2fb5cca4b71eb9d3571deebc898b62406f416caa3fcd732f9661548d8b7ec74bc94d9dcc92b0048abc2b358c0007a905c9513affbd873a368e0b5872a2f4cdc4bb8602ad3ec77cba3e150c8993f5fc88ac7e6b2642f4660486d5823482aae8f90ee7913abdb064398cebe5946c2920d7d99935571f9b1eeb4529373538e699dda91425660a1010a4cf7e9a10713f57fa1d601467ec51ad5153bd94582320ff55380ca7efefacf62f822b948cb3b93f68978f248639c51ac97e3f56bcca9990839ee01df9773b22cf261310d4b3c6b03ef54a9a848c10d1252d0412a8f01ff61bd6978112d6b69e2f71e02a04f43f3a1a8259f7e83c26fc5bc703a8b6d3d325f08b08f9dc10b8f654871386ef94d2493463f7f3d0b20bf93be475b0ed9e870aaedd63b8d08877651bace68300e3a1b0a5d1a3da2b246fef82de3b57eca440ae7a7656ff31ae74cad3a80f1ae615f2747589d4859ec1981a6a5176168db86ab5f6930d4679762956e408d2268cad53aa10727c8b8952114b17c352782dc9afc120535bcb99bcf1161397f19ac4d288677e48f0e6bfdcf5f852a8bc1b432399f0ade5db9585e09e4cc96a63dd7bddecbbaae880678f94111108d76c5d825629a3eee16b2a6362c59ba3cf99a2e2bcfa62d010706bca5c0d009b141f1c3f6a9cc58234f97a5721a3ee31772877ffda5507f8e7053e15cb60df08184dbdd9f2af7a618781fdd39d32404f3e2dc6ac48f35ce31bc70a019235b7776114ef2ae75ebf7b7191e5a61e1c5c82340e12dd98cf9125a3fb1c8062a206ac2aa98e708a190b1b70d1c2450b47394d8e1f21c541b3f4139d2159e9a37acf2ee9ba5e0cf99221a43b46793cad7b7b71784032a0092abb25380fa77646f948ed456d6fa1fb749f736e10491e39569c073308ee782562a59a719e4b8910f737a41ee0644db9905d22f44bae257749b03667b535af492012ad1c50f1d88a46a2c3aeeca86026c6e5ca8289bb153ff85aade4bd00b9bb87017d7816c24a0e71b0d0dcf6dedbc956c81bf445d665da7cb1c009be2f8d7eb286e2e2595166b8df0541ff0b80ab20d9ba30058ef52dc2c1905133bcca7193320811e0bc083798b80bce7e84ea9135d976fbc339b0814cb4f4dd9a71f9a2f1a78da4c60c1671b6ef41798646a702fd9eeb67bd250df336f0c1889c54be82bfc4238d6568ca0e7bf7a3005126d605a867b47f2c96fd6a92a9cf463270a9e2df32c6959c2f272b48a6b76fe7393dc12713c99888e0d03ffdac04f5d3c87e5343bc1a6127484b6d7e18e97a329ae582b8c3dd1be170cff9fdebcadfb339c67a303e15d6f779da6fbd91b401ac8e32fe1a0f16b5aa52ca7801d12aaba5c57945b3d0e768370e031d268b101df06ceaca597ca754d933b08f3b248548d267cbb16430c5110cdaf5b36bc2cf6a7c24f143277f606cbe77ef320505986fa5dc876e87ec74a2c06d0e893ed3da67cd814f209b3720e98d1b2f6afd245bcb682167978b98b9976c2ef41c8e4d5018fca6b1643fc"], 0xb5c}, 0x1, 0x0, 0x0, 0x20000000}, 0x48880) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x55) sendmsg$auto_ETHTOOL_MSG_PAUSE_GET(r1, &(0x7f0000001a00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40080}, 0x0) 4.951819677s ago: executing program 0 (id=1014): r0 = openat$auto_gpiolib_fops_(0xffffffffffffff9c, &(0x7f0000001380), 0x20000, 0x0) preadv$auto(r0, &(0x7f0000002fc0)={0x0, 0x8}, 0x2, 0x5, 0x19) (fail_nth: 1) 4.351038036s ago: executing program 0 (id=1015): connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) 4.176743064s ago: executing program 0 (id=1016): remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x1, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x4e23}, 0x67) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x80, 0x0) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x4, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) lsm_set_self_attr$auto(0xacaa, 0x0, 0x40000080, 0x0) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x2, 0xb}, 0x800009}, 0x5, 0x20000000) setsockopt$auto(0x3, 0x1, 0x2e, 0x0, 0x9) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) mmap$auto(0x0, 0x2000b, 0x2, 0xeb1, 0x3fe, 0x8000) close_range$auto(0x2, 0x8000, 0x0) sendmsg$auto_IPVS_CMD_ZERO(0xffffffffffffffff, 0x0, 0x80) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'tunl0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'geneve0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)={0x110, 0x0, 0x800, 0x70bd2c, 0x25dfdbfd, {}, [@ETHTOOL_A_CHANNELS_HEADER={0x4}, @ETHTOOL_A_CHANNELS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xefb}]}, @ETHTOOL_A_CHANNELS_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_CHANNELS_HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan0\x00'}]}, @ETHTOOL_A_CHANNELS_HEADER={0x68, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nr0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0x110}, 0x1, 0x0, 0x0, 0x4008040}, 0x10) 3.769031118s ago: executing program 3 (id=1017): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/max_vfs\x00', 0x48002, 0x0) write$auto(0x3, 0x0, 0xfdef) syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000500), r1) sendfile$auto(r1, r0, &(0x7f0000000040)=0x1, 0x1) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x7, 0x1f, 0x7181, 0x1ffdf, 0x7, 0x4, 0x9, 0x9, 0x3, 0x4, 0x1, 0xb4, 0x9, 0x8, 0x10003, 0x80, 0x4, 0x0, 0xa, 0x22000, 0x200, 0x0, 0x84}, 0x1fe, 0xd) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f00"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) r2 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) ioctl$auto_TCFLSH2(r0, 0x80045439, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) ioctl$auto(r0, 0x5423, r0) r3 = openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000080), 0x400000, 0x0) ioctl$auto_rfkill_fops_core(r3, 0x81, &(0x7f00000000c0)="692ec0bcbb13325908b84bfca1618965a57fb001272a8a76652b4069e84c4bdd4282ed94affd13b67015c8c45ace18b05e3181d588c6e7fb9aa55c5ac290c7578b9abd2986574fd8ef316ec54b4bd658aaf285ddcdb22ba6a0d5a5590ef8132fc763993bf8bd94c3bd7f8c8b28018bfe9f5d747b72d0b10170ff324e7d2a7893ae2118170315355be80e8ae07efcf316813c1379eac99c3fabaf9b7cf0720684731ddf1681d4ebba7453b10e1541b803a227b2") 3.542420159s ago: executing program 2 (id=1018): socket(0x2, 0x1, 0x106) capget$auto(0x0, 0xfffffffffffffffe) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0xb, 0x10000, 0x16, 0x401, 0x8) syz_clone(0x40000000, 0x0, 0x25, 0x0, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioperm$auto(0x3, 0x8001, 0x2000000000000149) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) kexec_load$auto(0xff, 0x2, &(0x7f0000000080)={@kbuf, 0x2, 0x8000, 0x3000}, 0x4) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x201, 0x0) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x89\x06s\x1cJ\x99\x00:\x00!\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x10, 0x6) ioctl$auto_TIOCSTI2(r1, 0x5412, &(0x7f0000000840)="12915fb9d5") recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) setfsuid$auto(0xee00) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x3222b14561ab0a8b}, 0xc, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x4080) syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f00000001c0), r0) unshare$auto(0x40000080) open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64) mkdir$auto(&(0x7f00000002c0)='./cgroup\x00', 0x6) socket(0x2, 0x1, 0x0) rmdir$auto(&(0x7f0000000300)='./cgroup\x00') mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) unshare$auto(0x40000080) openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) 3.383808467s ago: executing program 1 (id=1019): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mq_notify$auto(0xffffffffffffffff, &(0x7f0000000000)={@sival_int=0x7ff, @inferred, 0x1, @_sigev_thread={0x0, 0x0}}) mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) socket(0xa, 0x1, 0x84) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0) mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000) socket(0x2, 0xa, 0x106) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0) writev$auto(r0, 0x0, 0x3) mmap$auto(0x0, 0x20009, 0x100000000df, 0xeb1, r0, 0x8000) mmap$auto(0x0, 0x1, 0x4000000000df, 0xeb1, 0x401, 0x8002) close_range$auto(0x2, 0x8, 0x0) madvise$auto(0x110c234000, 0x1, 0x9) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x200) prctl$auto(0x1000000001a, 0x1, 0x9, 0x7, 0x32) msgget$auto(0x0, 0x5) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000380), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="01002dbd7000fcdbdf2501000000040007800c000200ffffffff"], 0x24}, 0x1, 0x0, 0x0, 0x4c080}, 0x0) r1 = openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/cmdline\x00', 0x20000, 0x0) readv$auto(r1, &(0x7f0000000280)={&(0x7f0000000240), 0x17}, 0x187) msgsnd$auto(0x0, &(0x7f0000000600)={0x7fc, 0x7}, 0x400, 0x2) r2 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x1, 0x0) write$auto_configfs_file_operations_configfs_internal(r2, &(0x7f0000000140)="8e", 0x1) msgrcv$auto(0x0, 0x0, 0x4bd, 0x1, 0xf1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) socket(0x2, 0x2, 0x1) 3.197329443s ago: executing program 0 (id=1020): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r0 = socket(0x2, 0x1, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000001340)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_/file0\x00', 0x40000, 0x0) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) write$auto(0x3, 0x0, 0xfffffdef) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000080), r0) connect$auto(0x3, 0x0, 0x55) 2.773157955s ago: executing program 0 (id=1021): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) (async) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) (async) r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) openat$auto_bm_entry_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/fs/binfmt_misc/syz1\x00', 0x400, 0x0) unshare$auto(0x40000080) (async) unshare$auto(0x40000080) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) setsockopt$auto(0x400000000000003, 0x29, 0x1c, 0x0, 0x56b) r1 = socket(0x10, 0x2, 0xc) syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff) (async) r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff) mmap$auto(0x20000009, 0x2000c, 0x4000000000df, 0xeb1, 0x401, 0x7ffe) socket(0x10, 0x2, 0xc) (async) r3 = socket(0x10, 0x2, 0xc) r4 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="10002cbd7000fadbdf250a00000a00000200252f00e2a85c41e75a02715bcbc0b04e5cdcdf28fffe65c31770799fdab838aaf6712a82e628c9e6429a4a38320b2d692863927bd744b4f7b409b29862d3257675d4fd09d74a831929b1005bdd28ef3fc5ae2884ef6a78fedbebbc656141771e57126268c37932c90ec979baf78c35827f46efb37be97277d81130bd43e31c60347610f3e65f3d60d3d1e231c0cc23ad56ff23565d95cfafc7a92a64da18c0c01c060001000600"/202], 0x51}, 0x1, 0x0, 0x0, 0x24050803}, 0x10004010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYRES16=r1, @ANYRES8], 0x1ac}, 0x1, 0x0, 0x0, 0x80085}, 0x4000800) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYRES16=r1, @ANYRES8], 0x1ac}, 0x1, 0x0, 0x0, 0x80085}, 0x4000800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='q\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="4cb245184f86db27df250a000a"], 0xf8}}, 0x10044010) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x2003f0, 0x15) (async) madvise$auto(0x0, 0x2003f0, 0x15) unshare$auto(0x40000080) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x8804) bind$auto(0xffffffffffffffff, 0x0, 0x20000000) 1.848470368s ago: executing program 1 (id=1022): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000140), r0) socket(0x18, 0x5, 0x2) r2 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x400006, 0xdf, 0x9b72, 0x2, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) getrandom$auto(&(0x7f00000000c0)=',,#&}[#,&\x00', 0x8, 0xfffffffb) bpf$auto(0x5, &(0x7f0000001080)=@bpf_attr_7={@prog_id=0xc, 0x92f1, 0x4}, 0xa) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmsg$auto_BATADV_CMD_GET_HARDIF(r2, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x400, 0x70bd27, 0x25dfdbff, {}, [@BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0xf695}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x4040) bind$auto(0x3, &(0x7f0000000000)=@sco={0x1f, @none}, 0x6b) acct$auto(&(0x7f0000000080)='\xff\xff\xff\xff\xff\xff') sendmsg$auto_OVS_VPORT_CMD_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010028bd7000fe00f7240400000004e931800f0003006e65746465766a"], 0x28}, 0x1, 0x0, 0x0, 0x8080}, 0x40) 1.719760558s ago: executing program 3 (id=1023): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_SET_WOWLAN(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)=ANY=[], 0x58}, 0x1, 0x0, 0x0, 0x20000004}, 0x4004010) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004000)='/dev/audio\x00', 0x102, 0x0) ioctl$auto_SNDCTL_DSP_GETOSPACE(r1, 0x8010500c, &(0x7f0000004040)) 1.259537948s ago: executing program 3 (id=1024): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x2, 0x1, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000001340)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_/file0\x00', 0x40000, 0x0) bind$auto(0x3, 0x0, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) socket(0x1d, 0x2, 0x6) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) write$auto(0x3, 0x0, 0xfffffdef) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000080), r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'veth0_virt_wifi\x00', 0x0}) sendmsg$auto_WG_CMD_GET_DEVICE(r1, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x1c, r2, 0x2, 0x70bd2d, 0x25dfdc03, {}, [@WGDEVICE_A_IFINDEX={0x8, 0x1, r3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004010}, 0x4008000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) move_pages$auto(0x0, 0xd0, 0x0, 0x0, 0x0, 0x2) 157.653272ms ago: executing program 3 (id=1025): openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000100)='/proc/devices\x00', 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, 0x0, 0x448c0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0x1, 0x1) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x68001, 0x0) acct$auto(0x0) ioctl$auto_SNDCTL_DSP_RESET(0xffffffffffffffff, 0x5000, &(0x7f0000000000)="10b1ab0c01e2eab37703c87b05de28e861e2d04b4579a46225") r0 = socket(0x10, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x480, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='^\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x8841}, 0x40000) openat$auto_debugfs_devm_entry_ops_file(0xffffffffffffff9c, &(0x7f0000000900)='/sys/kernel/debug/cec/cec20/status\x00', 0x80440, 0x0) read$auto(r0, 0x0, 0x10001) 150.298696ms ago: executing program 1 (id=1033): mmap$auto(0x0, 0x12000a, 0x10000000000e1, 0x10, 0x401, 0x8000) socket(0x1e, 0x2, 0x6) fcntl$auto(0x3, 0x4, 0xa553) clock_nanosleep$auto(0x8, 0x0, &(0x7f0000000000)={0xfffffffffffffffb, 0x6}, &(0x7f0000000040)={0x0, 0x8000000000000001}) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) 0s ago: executing program 1 (id=1026): r0 = openat$auto_gpiolib_fops_(0xffffffffffffff9c, &(0x7f0000001380), 0x20000, 0x0) preadv$auto(r0, &(0x7f0000002fc0)={0x0, 0x8}, 0x2, 0x5, 0x19) (fail_nth: 2) kernel console output (not intermixed with test programs): Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 125.998922][ T6600] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 126.021077][ T6600] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 126.319625][ T6632] Process accounting resumed [ 126.655548][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 127.182045][ T6638] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 127.412658][ C0] vcan0: j1939_tp_rxtimer: 0xffff88807d945800: rx timeout, send abort [ 127.457584][ T6648] netlink: 93 bytes leftover after parsing attributes in process `syz.2.167'. [ 127.476436][ T6645] netlink: 93 bytes leftover after parsing attributes in process `syz.1.166'. [ 127.625283][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout [ 127.921516][ C0] vcan0: j1939_tp_rxtimer: 0xffff88807d945800: abort rx timeout. Force session deactivation [ 128.027158][ T5849] Bluetooth: hci3: command 0x0c1a tx timeout [ 128.027174][ T5859] Bluetooth: hci2: command 0x0c1a tx timeout [ 128.027216][ T5859] Bluetooth: hci1: command 0x0c1a tx timeout [ 128.786840][ T6681] usb usb24: check_ctrlrecip: process 6681 (syz.2.173) requesting ep 01 but needs 81 [ 128.818244][ T6681] usb usb24: usbfs: process 6681 (syz.2.173) did not claim interface 0 before use [ 129.215553][ T6668] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 129.235977][ T6668] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 129.254854][ T6668] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 129.270517][ T6668] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 130.368985][ C1] vcan0: j1939_tp_rxtimer: 0xffff88802538bc00: rx timeout, send abort [ 130.665258][ T5859] Bluetooth: hci0: command 0x0c1a tx timeout [ 130.880863][ C1] vcan0: j1939_tp_rxtimer: 0xffff88802538bc00: abort rx timeout. Force session deactivation [ 130.966214][ T6729] netlink: 16 bytes leftover after parsing attributes in process `syz.2.184'. [ 131.005598][ T6727] process 'syz.1.183' launched '/dev/fd/2' with NULL argv: empty string added syzkaller syzkaller login: [ 131.067730][ T6729] netlink: 330 bytes leftover after parsing attributes in process `syz.2.184'. [ 131.254900][ T6737] netlink: 334 bytes leftover after parsing attributes in process `syz.0.186'. [ 131.309518][ T5859] Bluetooth: hci3: command 0x0c1a tx timeout [ 131.318481][ T5855] Bluetooth: hci2: command 0x0c1a tx timeout [ 131.318505][ T5849] Bluetooth: hci1: command 0x0c1a tx timeout [ 132.910299][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.927111][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.482024][ T6795] FAULT_INJECTION: forcing a failure. [ 133.482024][ T6795] name failslab, interval 1, probability 0, space 0, times 0 [ 133.532759][ T6795] CPU: 0 UID: 0 PID: 6795 Comm: syz.2.198 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 133.532801][ T6795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 133.532814][ T6795] Call Trace: [ 133.532821][ T6795] [ 133.532831][ T6795] dump_stack_lvl+0x16c/0x1f0 [ 133.532868][ T6795] should_fail_ex+0x512/0x640 [ 133.532893][ T6795] ? __kmalloc_noprof+0xbf/0x510 [ 133.532928][ T6795] ? snd_ctl_elem_add+0x558/0x14c0 [ 133.532956][ T6795] should_failslab+0xc2/0x120 [ 133.532978][ T6795] __kmalloc_noprof+0xd2/0x510 [ 133.533011][ T6795] ? snd_ctl_new+0x13c/0x1a0 [ 133.533040][ T6795] snd_ctl_elem_add+0x558/0x14c0 [ 133.533076][ T6795] ? find_held_lock+0x2b/0x80 [ 133.533103][ T6795] ? __might_fault+0xe3/0x190 [ 133.533135][ T6795] ? __might_fault+0xe3/0x190 [ 133.533165][ T6795] ? __might_fault+0x13b/0x190 [ 133.533197][ T6795] ? __pfx_snd_ctl_elem_add+0x10/0x10 [ 133.533237][ T6795] snd_ctl_elem_add_user+0xc3/0x170 [ 133.533271][ T6795] ? __pfx_snd_ctl_elem_add_user+0x10/0x10 [ 133.533299][ T6795] ? find_held_lock+0x2b/0x80 [ 133.533370][ T6795] snd_ctl_ioctl+0x981/0x1320 [ 133.533399][ T6795] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 133.533433][ T6795] ? find_held_lock+0x2b/0x80 [ 133.533459][ T6795] ? hook_file_ioctl_common+0x145/0x410 [ 133.533489][ T6795] ? __fget_files+0x20e/0x3c0 [ 133.533524][ T6795] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 133.533555][ T6795] __x64_sys_ioctl+0x190/0x200 [ 133.533590][ T6795] do_syscall_64+0xcd/0x260 [ 133.533624][ T6795] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 133.533647][ T6795] RIP: 0033:0x7f989278d169 [ 133.533665][ T6795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 133.533686][ T6795] RSP: 002b:00007f98936c1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 133.533708][ T6795] RAX: ffffffffffffffda RBX: 00007f98929a5fa0 RCX: 00007f989278d169 [ 133.533723][ T6795] RDX: 0000200000000140 RSI: 00000000c1105517 RDI: 0000000000000004 [ 133.533737][ T6795] RBP: 00007f98936c1090 R08: 0000000000000000 R09: 0000000000000000 [ 133.533751][ T6795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 133.533790][ T6795] R13: 0000000000000000 R14: 00007f98929a5fa0 R15: 00007fff52075388 [ 133.533823][ T6795] [ 135.525909][ T6821] FAULT_INJECTION: forcing a failure. [ 135.525909][ T6821] name failslab, interval 1, probability 0, space 0, times 0 [ 135.539906][ T6821] CPU: 0 UID: 0 PID: 6821 Comm: syz.2.204 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 135.539925][ T6821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 135.539933][ T6821] Call Trace: [ 135.539938][ T6821] [ 135.539944][ T6821] dump_stack_lvl+0x16c/0x1f0 [ 135.539969][ T6821] should_fail_ex+0x512/0x640 [ 135.539988][ T6821] should_failslab+0xc2/0x120 [ 135.540001][ T6821] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 135.540023][ T6821] ? skb_clone+0x190/0x3f0 [ 135.540043][ T6821] skb_clone+0x190/0x3f0 [ 135.540062][ T6821] netlink_deliver_tap+0xabd/0xd30 [ 135.540085][ T6821] netlink_unicast+0x5df/0x7f0 [ 135.540108][ T6821] ? __pfx_netlink_unicast+0x10/0x10 [ 135.540126][ T6821] ? __lock_acquire+0xaa4/0x1ba0 [ 135.540152][ T6821] netlink_sendmsg+0x8d1/0xdd0 [ 135.540175][ T6821] ? __pfx_netlink_sendmsg+0x10/0x10 [ 135.540201][ T6821] ____sys_sendmsg+0xa95/0xc70 [ 135.540215][ T6821] ? copy_msghdr_from_user+0x10a/0x160 [ 135.540232][ T6821] ? __pfx_____sys_sendmsg+0x10/0x10 [ 135.540253][ T6821] ___sys_sendmsg+0x134/0x1d0 [ 135.540271][ T6821] ? __pfx____sys_sendmsg+0x10/0x10 [ 135.540310][ T6821] __sys_sendmsg+0x16d/0x220 [ 135.540328][ T6821] ? __pfx___sys_sendmsg+0x10/0x10 [ 135.540350][ T6821] ? rcu_is_watching+0x12/0xc0 [ 135.540372][ T6821] do_syscall_64+0xcd/0x260 [ 135.540393][ T6821] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 135.540407][ T6821] RIP: 0033:0x7f989278d169 [ 135.540419][ T6821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 135.540432][ T6821] RSP: 002b:00007f98936a0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 135.540445][ T6821] RAX: ffffffffffffffda RBX: 00007f98929a6080 RCX: 00007f989278d169 [ 135.540454][ T6821] RDX: 0000000010004010 RSI: 0000200000000100 RDI: 0000000000000005 [ 135.540462][ T6821] RBP: 00007f98936a0090 R08: 0000000000000000 R09: 0000000000000000 [ 135.540469][ T6821] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 135.540477][ T6821] R13: 0000000000000000 R14: 00007f98929a6080 R15: 00007fff52075388 [ 135.540494][ T6821] [ 135.799339][ T6822] netlink: 93 bytes leftover after parsing attributes in process `syz.2.204'. [ 136.039296][ T6818] Process accounting resumed [ 138.509217][ T6849] FAULT_INJECTION: forcing a failure. [ 138.509217][ T6849] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 138.546377][ T6849] CPU: 0 UID: 0 PID: 6849 Comm: syz.2.210 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 138.546411][ T6849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 138.546424][ T6849] Call Trace: [ 138.546432][ T6849] [ 138.546441][ T6849] dump_stack_lvl+0x16c/0x1f0 [ 138.546480][ T6849] should_fail_ex+0x512/0x640 [ 138.546512][ T6849] _copy_from_user+0x2e/0xd0 [ 138.546542][ T6849] vmemdup_user+0x66/0xe0 [ 138.546566][ T6849] snd_ctl_elem_add+0xd56/0x14c0 [ 138.546604][ T6849] ? find_held_lock+0x2b/0x80 [ 138.546629][ T6849] ? __might_fault+0xe3/0x190 [ 138.546665][ T6849] ? __pfx_snd_ctl_elem_add+0x10/0x10 [ 138.546702][ T6849] snd_ctl_elem_add_user+0xc3/0x170 [ 138.546731][ T6849] ? __pfx_snd_ctl_elem_add_user+0x10/0x10 [ 138.546760][ T6849] ? find_held_lock+0x2b/0x80 [ 138.546829][ T6849] snd_ctl_ioctl+0x981/0x1320 [ 138.546859][ T6849] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 138.546893][ T6849] ? find_held_lock+0x2b/0x80 [ 138.546920][ T6849] ? hook_file_ioctl_common+0x145/0x410 [ 138.546953][ T6849] ? __fget_files+0x20e/0x3c0 [ 138.546989][ T6849] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 138.547021][ T6849] __x64_sys_ioctl+0x190/0x200 [ 138.547050][ T6849] do_syscall_64+0xcd/0x260 [ 138.547085][ T6849] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 138.547108][ T6849] RIP: 0033:0x7f989278d169 [ 138.547127][ T6849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 138.547148][ T6849] RSP: 002b:00007f98936c1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 138.547170][ T6849] RAX: ffffffffffffffda RBX: 00007f98929a5fa0 RCX: 00007f989278d169 [ 138.547185][ T6849] RDX: 0000200000000140 RSI: 00000000c1105517 RDI: 0000000000000004 [ 138.547200][ T6849] RBP: 00007f98936c1090 R08: 0000000000000000 R09: 0000000000000000 [ 138.547213][ T6849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 138.547227][ T6849] R13: 0000000000000000 R14: 00007f98929a5fa0 R15: 00007fff52075388 [ 138.547257][ T6849] [ 139.299028][ T6854] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input7 [ 139.380913][ T6863] netlink: 93 bytes leftover after parsing attributes in process `syz.2.214'. [ 141.774074][ T6907] Process accounting resumed [ 142.843182][ T6923] FAULT_INJECTION: forcing a failure. [ 142.843182][ T6923] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 142.883154][ T6923] CPU: 0 UID: 0 PID: 6923 Comm: syz.1.227 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 142.883192][ T6923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 142.883208][ T6923] Call Trace: [ 142.883216][ T6923] [ 142.883225][ T6923] dump_stack_lvl+0x16c/0x1f0 [ 142.883262][ T6923] should_fail_ex+0x512/0x640 [ 142.883295][ T6923] should_fail_alloc_page+0xe7/0x130 [ 142.883322][ T6923] prepare_alloc_pages+0x3c2/0x610 [ 142.883352][ T6923] ? rcu_is_watching+0x12/0xc0 [ 142.883384][ T6923] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 142.883422][ T6923] ? kasan_save_stack+0x33/0x60 [ 142.883461][ T6923] ? cgroup_rstat_updated+0x2a/0xb20 [ 142.883501][ T6923] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 142.883543][ T6923] ? lru_gen_add_folio+0x1a4/0xef0 [ 142.883571][ T6923] ? __lock_acquire+0x5ca/0x1ba0 [ 142.883612][ T6923] ? __lock_acquire+0x5ca/0x1ba0 [ 142.883647][ T6923] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 142.883674][ T6923] ? policy_nodemask+0xea/0x4e0 [ 142.883714][ T6923] alloc_pages_mpol+0x1fb/0x550 [ 142.883739][ T6923] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 142.883763][ T6923] ? __lock_acquire+0x5ca/0x1ba0 [ 142.883803][ T6923] folio_alloc_mpol_noprof+0x36/0x2f0 [ 142.883833][ T6923] vma_alloc_folio_noprof+0xed/0x1e0 [ 142.883860][ T6923] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 142.883896][ T6923] do_pte_missing+0x223d/0x3fb0 [ 142.883941][ T6923] __handle_mm_fault+0x103d/0x2a40 [ 142.883983][ T6923] ? __pfx___handle_mm_fault+0x10/0x10 [ 142.884010][ T6923] ? __pte_offset_map_lock+0x155/0x2f0 [ 142.884034][ T6923] ? find_held_lock+0x2b/0x80 [ 142.884059][ T6923] ? find_held_lock+0x2b/0x80 [ 142.884106][ T6923] handle_mm_fault+0x3fe/0xad0 [ 142.884151][ T6923] __get_user_pages+0x771/0x36f0 [ 142.884188][ T6923] ? __pfx_mt_find+0x10/0x10 [ 142.884223][ T6923] ? __pfx___get_user_pages+0x10/0x10 [ 142.884264][ T6923] populate_vma_page_range+0x278/0x3a0 [ 142.884297][ T6923] ? __pfx_populate_vma_page_range+0x10/0x10 [ 142.884326][ T6923] ? __pfx_find_vma_intersection+0x10/0x10 [ 142.884356][ T6923] ? do_mmap+0x69c/0x11b0 [ 142.884387][ T6923] __mm_populate+0x1d8/0x380 [ 142.884420][ T6923] ? __pfx___mm_populate+0x10/0x10 [ 142.884454][ T6923] ? up_write+0x1b2/0x520 [ 142.884482][ T6923] vm_mmap_pgoff+0x362/0x450 [ 142.884512][ T6923] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 142.884547][ T6923] ? __x64_sys_futex+0x1e0/0x4c0 [ 142.884578][ T6923] ? __x64_sys_futex+0x1e9/0x4c0 [ 142.884612][ T6923] ksys_mmap_pgoff+0x7d/0x5c0 [ 142.884639][ T6923] ? rcu_is_watching+0x12/0xc0 [ 142.884671][ T6923] __x64_sys_mmap+0x125/0x190 [ 142.884703][ T6923] do_syscall_64+0xcd/0x260 [ 142.884739][ T6923] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 142.884764][ T6923] RIP: 0033:0x7fb6c458d169 [ 142.884784][ T6923] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 142.884807][ T6923] RSP: 002b:00007fb6c23f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 142.884830][ T6923] RAX: ffffffffffffffda RBX: 00007fb6c47a5fa0 RCX: 00007fb6c458d169 [ 142.884844][ T6923] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 142.884858][ T6923] RBP: 00007fb6c460e990 R08: 0000000000000002 R09: 0000000000008000 [ 142.884873][ T6923] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 142.884886][ T6923] R13: 0000000000000000 R14: 00007fb6c47a5fa0 R15: 00007fff04c227c8 [ 142.884918][ T6923] [ 143.333329][ T6886] kexec: Could not allocate control_code_buffer [ 143.510949][ T6926] netlink: 93 bytes leftover after parsing attributes in process `syz.0.228'. [ 143.792800][ T6931] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 143.847340][ T6931] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 143.932640][ T6931] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 144.006067][ T6931] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 144.587592][ T6950] netlink: 8 bytes leftover after parsing attributes in process `syz.2.235'. [ 145.865173][ T5859] Bluetooth: hci1: command 0x0c1a tx timeout [ 145.873313][ T5855] Bluetooth: hci0: command 0x0c1a tx timeout [ 145.945201][ T5859] Bluetooth: hci2: command 0x0c1a tx timeout [ 146.025782][ T5859] Bluetooth: hci3: command 0x0c1a tx timeout [ 146.037671][ T6981] netlink: 28 bytes leftover after parsing attributes in process `syz.0.240'. [ 146.953575][ T6966] kexec: Could not allocate control_code_buffer [ 147.506003][ T6989] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 147.521214][ T6989] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 147.829951][ T6989] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 147.844124][ T6989] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 148.214144][ T7004] ovs_: entered promiscuous mode [ 149.225097][ T5859] Bluetooth: hci0: command 0x0c1a tx timeout [ 149.547825][ T5859] Bluetooth: hci1: command 0x0c1a tx timeout [ 149.865372][ T5859] Bluetooth: hci3: command 0x0c1a tx timeout [ 149.872954][ T5855] Bluetooth: hci2: command 0x0c1a tx timeout [ 150.656773][ T7038] Process accounting resumed [ 150.688974][ T7040] netlink: 'syz.2.254': attribute type 1 has an invalid length. [ 151.442215][ T7062] FAULT_INJECTION: forcing a failure. [ 151.442215][ T7062] name failslab, interval 1, probability 0, space 0, times 0 [ 151.477191][ T7062] CPU: 1 UID: 0 PID: 7062 Comm: syz.3.261 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 151.477271][ T7062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 151.477289][ T7062] Call Trace: [ 151.477297][ T7062] [ 151.477306][ T7062] dump_stack_lvl+0x16c/0x1f0 [ 151.477344][ T7062] should_fail_ex+0x512/0x640 [ 151.477375][ T7062] should_failslab+0xc2/0x120 [ 151.477398][ T7062] __kmalloc_cache_noprof+0x6a/0x3e0 [ 151.477430][ T7062] ? cfctrl_create+0x9a/0x320 [ 151.477465][ T7062] cfctrl_create+0x9a/0x320 [ 151.477492][ T7062] ? __pfx_cfctrl_create+0x10/0x10 [ 151.477521][ T7062] ? __raw_spin_lock_init+0x3a/0x110 [ 151.477551][ T7062] cfcnfg_create+0xb2/0x500 [ 151.477579][ T7062] ? debug_mutex_init+0x37/0x70 [ 151.477607][ T7062] ? __pfx_caif_init_net+0x10/0x10 [ 151.477638][ T7062] caif_init_net+0x7d/0xe0 [ 151.477667][ T7062] ops_init+0x1df/0x5f0 [ 151.477703][ T7062] setup_net+0x21e/0x850 [ 151.477734][ T7062] ? __pfx_setup_net+0x10/0x10 [ 151.477762][ T7062] ? lockdep_init_map_type+0x5c/0x280 [ 151.477781][ T7062] ? __pfx_down_read_killable+0x10/0x10 [ 151.477803][ T7062] ? debug_mutex_init+0x37/0x70 [ 151.477830][ T7062] copy_net_ns+0x2a6/0x5f0 [ 151.477864][ T7062] create_new_namespaces+0x3ea/0xad0 [ 151.477900][ T7062] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 151.477932][ T7062] ksys_unshare+0x45b/0xa40 [ 151.477964][ T7062] ? __pfx_ksys_unshare+0x10/0x10 [ 151.477996][ T7062] ? xfd_validate_state+0x5d/0x180 [ 151.478024][ T7062] ? rcu_is_watching+0x12/0xc0 [ 151.478060][ T7062] __x64_sys_unshare+0x31/0x40 [ 151.478093][ T7062] do_syscall_64+0xcd/0x260 [ 151.478127][ T7062] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 151.478150][ T7062] RIP: 0033:0x7f7dc3f8d169 [ 151.478168][ T7062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 151.478190][ T7062] RSP: 002b:00007f7dc4e06038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 151.478214][ T7062] RAX: ffffffffffffffda RBX: 00007f7dc41a5fa0 RCX: 00007f7dc3f8d169 [ 151.478228][ T7062] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 151.478240][ T7062] RBP: 00007f7dc400e990 R08: 0000000000000000 R09: 0000000000000000 [ 151.478263][ T7062] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 151.478276][ T7062] R13: 0000000000000000 R14: 00007f7dc41a5fa0 R15: 00007ffd9c7c7778 [ 151.478309][ T7062] [ 151.920058][ T7069] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 152.208527][ T7076] Process accounting resumed [ 153.437862][ T7097] netlink: 93 bytes leftover after parsing attributes in process `syz.3.270'. [ 154.042281][ T7112] FAULT_INJECTION: forcing a failure. [ 154.042281][ T7112] name failslab, interval 1, probability 0, space 0, times 0 [ 154.059115][ T7112] CPU: 1 UID: 0 PID: 7112 Comm: syz.2.273 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 154.059148][ T7112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 154.059161][ T7112] Call Trace: [ 154.059169][ T7112] [ 154.059179][ T7112] dump_stack_lvl+0x16c/0x1f0 [ 154.059217][ T7112] should_fail_ex+0x512/0x640 [ 154.059248][ T7112] should_failslab+0xc2/0x120 [ 154.059272][ T7112] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 154.059305][ T7112] ? dst_alloc+0x99/0x1a0 [ 154.059335][ T7112] dst_alloc+0x99/0x1a0 [ 154.059364][ T7112] rt_dst_alloc+0x35/0x3a0 [ 154.059399][ T7112] ip_route_output_key_hash_rcu+0x87a/0x28f0 [ 154.059436][ T7112] ip_route_output_key_hash+0x137/0x2e0 [ 154.059462][ T7112] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 154.059494][ T7112] ? __call_rcu_common.constprop.0+0x3e5/0x9f0 [ 154.059519][ T7112] ? lockdep_hardirqs_on+0x7c/0x110 [ 154.059551][ T7112] ? percpu_counter_add_batch+0xb8/0x1f0 [ 154.059578][ T7112] ip_route_output_flow+0x27/0x150 [ 154.059607][ T7112] tcp_v4_connect+0x85f/0x1ba0 [ 154.059655][ T7112] ? __pfx_tcp_v4_connect+0x10/0x10 [ 154.059692][ T7112] ? __local_bh_enable_ip+0xa4/0x120 [ 154.059742][ T7112] mptcp_connect+0x579/0xfe0 [ 154.059775][ T7112] __inet_stream_connect+0x3c5/0x1020 [ 154.059923][ T7112] ? __pfx___inet_stream_connect+0x10/0x10 [ 154.059946][ T7112] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 154.059977][ T7112] ? __pfx_inet_stream_connect+0x10/0x10 [ 154.060006][ T7112] ? __local_bh_enable_ip+0xa4/0x120 [ 154.060035][ T7112] ? __pfx_inet_stream_connect+0x10/0x10 [ 154.060052][ T7112] inet_stream_connect+0x57/0xa0 [ 154.060144][ T7112] __sys_connect_file+0x13e/0x1a0 [ 154.060173][ T7112] __sys_connect+0x14d/0x170 [ 154.060198][ T7112] ? __pfx___sys_connect+0x10/0x10 [ 154.060237][ T7112] ? __pfx_ksys_write+0x10/0x10 [ 154.060271][ T7112] ? rcu_is_watching+0x12/0xc0 [ 154.060306][ T7112] __x64_sys_connect+0x72/0xb0 [ 154.060330][ T7112] ? lockdep_hardirqs_on+0x7c/0x110 [ 154.060360][ T7112] do_syscall_64+0xcd/0x260 [ 154.060395][ T7112] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 154.060418][ T7112] RIP: 0033:0x7f989278d169 [ 154.060438][ T7112] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 154.060458][ T7112] RSP: 002b:00007f98936c1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 154.060480][ T7112] RAX: ffffffffffffffda RBX: 00007f98929a5fa0 RCX: 00007f989278d169 [ 154.060495][ T7112] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 154.060509][ T7112] RBP: 00007f98936c1090 R08: 0000000000000000 R09: 0000000000000000 [ 154.060522][ T7112] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 154.060536][ T7112] R13: 0000000000000000 R14: 00007f98929a5fa0 R15: 00007fff52075388 [ 154.060568][ T7112] [ 154.794196][ T7116] Process accounting resumed [ 155.625457][ T7119] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 155.695411][ T7119] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 155.703559][ T7119] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 155.711013][ T7119] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 155.865522][ T7140] delete_channel: no stack [ 156.346550][ T7157] netlink: 93 bytes leftover after parsing attributes in process `syz.1.287'. [ 157.545122][ T5859] Bluetooth: hci0: command 0x0c1a tx timeout [ 157.706783][ T5859] Bluetooth: hci1: command 0x0c1a tx timeout [ 157.795268][ T5855] Bluetooth: hci2: command 0x0c1a tx timeout [ 157.795268][ T5859] Bluetooth: hci3: command 0x0c1a tx timeout [ 157.869319][ T7181] netlink: 93 bytes leftover after parsing attributes in process `syz.1.292'. [ 158.111911][ T5859] Bluetooth: hci1: unexpected subevent 0x01 length: 4 < 18 [ 158.121704][ T30] audit: type=1800 audit(32801.792:6): pid=7180 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.293" name="dbroot" dev="configfs" ino=12584 res=0 errno=0 [ 159.537801][ T7219] FAULT_INJECTION: forcing a failure. [ 159.537801][ T7219] name failslab, interval 1, probability 0, space 0, times 0 [ 159.601629][ T7219] CPU: 1 UID: 0 PID: 7219 Comm: syz.2.303 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 159.601662][ T7219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 159.601675][ T7219] Call Trace: [ 159.601683][ T7219] [ 159.601692][ T7219] dump_stack_lvl+0x16c/0x1f0 [ 159.601729][ T7219] should_fail_ex+0x512/0x640 [ 159.601755][ T7219] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 159.601793][ T7219] should_failslab+0xc2/0x120 [ 159.601815][ T7219] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 159.601849][ T7219] ? __alloc_skb+0x2b2/0x380 [ 159.601882][ T7219] __alloc_skb+0x2b2/0x380 [ 159.601910][ T7219] ? __pfx___alloc_skb+0x10/0x10 [ 159.601939][ T7219] ? tcp_chrono_stop+0x95/0x420 [ 159.601973][ T7219] tcp_stream_alloc_skb+0x34/0x570 [ 159.601999][ T7219] tcp_connect+0xe75/0x5480 [ 159.602043][ T7219] ? __pfx_tcp_connect+0x10/0x10 [ 159.602068][ T7219] ? __pfx_tcp_fastopen_defer_connect+0x10/0x10 [ 159.602119][ T7219] tcp_v4_connect+0x1517/0x1ba0 [ 159.602167][ T7219] ? __pfx_tcp_v4_connect+0x10/0x10 [ 159.602205][ T7219] ? __local_bh_enable_ip+0xa4/0x120 [ 159.602240][ T7219] mptcp_connect+0x579/0xfe0 [ 159.602272][ T7219] __inet_stream_connect+0x3c5/0x1020 [ 159.602302][ T7219] ? __pfx___inet_stream_connect+0x10/0x10 [ 159.602325][ T7219] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 159.602356][ T7219] ? __pfx_inet_stream_connect+0x10/0x10 [ 159.602380][ T7219] ? __local_bh_enable_ip+0xa4/0x120 [ 159.602413][ T7219] ? __pfx_inet_stream_connect+0x10/0x10 [ 159.602434][ T7219] inet_stream_connect+0x57/0xa0 [ 159.602459][ T7219] __sys_connect_file+0x13e/0x1a0 [ 159.602489][ T7219] __sys_connect+0x14d/0x170 [ 159.602569][ T7219] ? __pfx___sys_connect+0x10/0x10 [ 159.602605][ T7219] ? __pfx_ksys_write+0x10/0x10 [ 159.602634][ T7219] ? rcu_is_watching+0x12/0xc0 [ 159.602814][ T7219] __x64_sys_connect+0x72/0xb0 [ 159.602842][ T7219] ? lockdep_hardirqs_on+0x7c/0x110 [ 159.602880][ T7219] do_syscall_64+0xcd/0x260 [ 159.602913][ T7219] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 159.602937][ T7219] RIP: 0033:0x7f989278d169 [ 159.602956][ T7219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 159.602976][ T7219] RSP: 002b:00007f98936c1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 159.602997][ T7219] RAX: ffffffffffffffda RBX: 00007f98929a5fa0 RCX: 00007f989278d169 [ 159.603012][ T7219] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 159.603025][ T7219] RBP: 00007f98936c1090 R08: 0000000000000000 R09: 0000000000000000 [ 159.603039][ T7219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 159.603050][ T7219] R13: 0000000000000000 R14: 00007f98929a5fa0 R15: 00007fff52075388 [ 159.603082][ T7219] [ 161.592631][ T7242] cgroup: fork rejected by pids controller in /syz1 [ 165.441337][ T7357] netlink: 93 bytes leftover after parsing attributes in process `syz.1.316'. [ 165.557403][ T7341] sp0: Synchronizing with TNC [ 165.698700][ T7340] [U] [ 166.251111][ T7339] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 166.275251][ T7339] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 166.313259][ T7339] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 166.341417][ T7339] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 167.235352][ T5859] Bluetooth: hci0: command 0x0c1a tx timeout [ 168.346668][ T5859] Bluetooth: hci3: command 0x0c1a tx timeout [ 168.354200][ T5859] Bluetooth: hci2: command 0x0c1a tx timeout [ 168.360603][ T5855] Bluetooth: hci1: command 0x0c1a tx timeout [ 171.871572][ T7431] random: crng reseeded on system resumption [ 172.626673][ T7439] Process accounting resumed [ 172.670818][ T7442] kafs: addr_prefs: Invalid Command [ 173.300010][ T7457] netlink: 93 bytes leftover after parsing attributes in process `syz.0.338'. [ 173.431450][ T7437] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 173.445363][ T7437] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 173.459817][ T7437] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 173.485188][ T7437] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 174.269452][ T7474] netlink: 93 bytes leftover after parsing attributes in process `syz.3.341'. [ 174.907830][ T5859] Bluetooth: hci0: command 0x0c1a tx timeout [ 175.465244][ T5859] Bluetooth: hci2: command 0x0c1a tx timeout [ 175.466744][ T5855] Bluetooth: hci1: command 0x0c1a tx timeout [ 175.545246][ T5855] Bluetooth: hci3: command 0x0c1a tx timeout [ 177.324926][ T7504] netlink: 93 bytes leftover after parsing attributes in process `syz.0.348'. [ 179.896587][ T7532] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 179.952534][ T7532] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 179.977114][ T7532] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 180.001547][ T7532] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 180.979875][ T7396] syz.3.323 (7396) used greatest stack depth: 18712 bytes left [ 181.244677][ T7570] netlink: 93 bytes leftover after parsing attributes in process `syz.3.362'. [ 181.305310][ T5855] Bluetooth: hci0: command 0x0c1a tx timeout [ 182.034175][ T5855] Bluetooth: hci3: command 0x0c1a tx timeout [ 182.040791][ T5859] Bluetooth: hci2: command 0x0c1a tx timeout [ 182.046869][ T5849] Bluetooth: hci1: command 0x0c1a tx timeout [ 182.348039][ T7586] Process accounting resumed [ 182.918551][ T7598] Process accounting paused [ 183.746501][ T7626] nbd: socks must be embedded in a SOCK_ITEM attr [ 184.704242][ T7635] FAULT_INJECTION: forcing a failure. [ 184.704242][ T7635] name failslab, interval 1, probability 0, space 0, times 0 [ 184.722650][ T7635] CPU: 1 UID: 0 PID: 7635 Comm: syz.1.379 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 184.722682][ T7635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 184.722696][ T7635] Call Trace: [ 184.722712][ T7635] [ 184.722726][ T7635] dump_stack_lvl+0x16c/0x1f0 [ 184.722766][ T7635] should_fail_ex+0x512/0x640 [ 184.722791][ T7635] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 184.722825][ T7635] should_failslab+0xc2/0x120 [ 184.722846][ T7635] __kmalloc_cache_noprof+0x6a/0x3e0 [ 184.722875][ T7635] ? __vb2_init_fileio+0x253/0x1100 [ 184.722906][ T7635] __vb2_init_fileio+0x253/0x1100 [ 184.722941][ T7635] ? vb2_fop_read+0xe6/0x3e0 [ 184.722968][ T7635] __vb2_perform_fileio+0x9c2/0x1660 [ 184.723005][ T7635] ? __pfx___vb2_perform_fileio+0x10/0x10 [ 184.723047][ T7635] vb2_fop_read+0x215/0x3e0 [ 184.723079][ T7635] v4l2_read+0x226/0x360 [ 184.723111][ T7635] ? __pfx_v4l2_read+0x10/0x10 [ 184.723146][ T7635] vfs_read+0x1de/0xc70 [ 184.723184][ T7635] ? __pfx_vfs_read+0x10/0x10 [ 184.723214][ T7635] ? find_held_lock+0x2b/0x80 [ 184.723243][ T7635] ? __fget_files+0x204/0x3c0 [ 184.723279][ T7635] ? __fget_files+0x20e/0x3c0 [ 184.723315][ T7635] ksys_read+0x12a/0x240 [ 184.723344][ T7635] ? __pfx_ksys_read+0x10/0x10 [ 184.723370][ T7635] ? rcu_is_watching+0x12/0xc0 [ 184.723409][ T7635] do_syscall_64+0xcd/0x260 [ 184.723445][ T7635] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.723469][ T7635] RIP: 0033:0x7fb6c458d169 [ 184.723490][ T7635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 184.723512][ T7635] RSP: 002b:00007fb6c23f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 184.723535][ T7635] RAX: ffffffffffffffda RBX: 00007fb6c47a5fa0 RCX: 00007fb6c458d169 [ 184.723551][ T7635] RDX: 0000000000000016 RSI: 00002000000010c0 RDI: 0000000000000005 [ 184.723566][ T7635] RBP: 00007fb6c460e990 R08: 0000000000000000 R09: 0000000000000000 [ 184.723580][ T7635] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 184.723594][ T7635] R13: 0000000000000000 R14: 00007fb6c47a5fa0 R15: 00007fff04c227c8 [ 184.723623][ T7635] [ 185.079288][ T5855] Bluetooth: hci0: unexpected event 0x02 length: 726 > 260 [ 185.218377][ T7646] netlink: 93 bytes leftover after parsing attributes in process `syz.0.382'. [ 185.752152][ T7660] netlink: 93 bytes leftover after parsing attributes in process `syz.1.386'. [ 186.510433][ T7655] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 186.520951][ T7655] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 186.532309][ T7655] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 186.543142][ T7655] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 186.839190][ T7684] FAULT_INJECTION: forcing a failure. [ 186.839190][ T7684] name failslab, interval 1, probability 0, space 0, times 0 [ 186.870028][ T7684] CPU: 1 UID: 0 PID: 7684 Comm: syz.1.392 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 186.870064][ T7684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 186.870078][ T7684] Call Trace: [ 186.870088][ T7684] [ 186.870099][ T7684] dump_stack_lvl+0x16c/0x1f0 [ 186.870140][ T7684] should_fail_ex+0x512/0x640 [ 186.870166][ T7684] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 186.870204][ T7684] should_failslab+0xc2/0x120 [ 186.870227][ T7684] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 186.870261][ T7684] ? d_instantiate+0x77/0x90 [ 186.870282][ T7684] ? alloc_empty_file+0x55/0x1e0 [ 186.870309][ T7684] alloc_empty_file+0x55/0x1e0 [ 186.870335][ T7684] alloc_file_pseudo+0x13a/0x230 [ 186.870360][ T7684] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 186.870383][ T7684] ? alloc_fd+0x471/0x7d0 [ 186.870415][ T7684] sock_alloc_file+0x50/0x210 [ 186.870445][ T7684] __sys_socket+0x1c0/0x260 [ 186.870466][ T7684] ? __pfx___sys_socket+0x10/0x10 [ 186.870487][ T7684] ? rcu_is_watching+0x12/0xc0 [ 186.870518][ T7684] __x64_sys_socket+0x72/0xb0 [ 186.870537][ T7684] ? lockdep_hardirqs_on+0x7c/0x110 [ 186.870565][ T7684] do_syscall_64+0xcd/0x260 [ 186.870596][ T7684] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 186.870618][ T7684] RIP: 0033:0x7fb6c458d169 [ 186.870637][ T7684] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 186.870659][ T7684] RSP: 002b:00007fb6c23f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 186.870680][ T7684] RAX: ffffffffffffffda RBX: 00007fb6c47a5fa0 RCX: 00007fb6c458d169 [ 186.870694][ T7684] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 000000000000002d [ 186.870706][ T7684] RBP: 00007fb6c460e990 R08: 0000000000000000 R09: 0000000000000000 [ 186.870718][ T7684] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 186.870730][ T7684] R13: 0000000000000000 R14: 00007fb6c47a5fa0 R15: 00007fff04c227c8 [ 186.870757][ T7684] [ 187.268723][ T7693] netlink: 266 bytes leftover after parsing attributes in process `syz.0.394'. [ 187.278113][ T7693] IPv6: NLM_F_CREATE should be specified when creating new route [ 187.343244][ T7698] netlink: 4 bytes leftover after parsing attributes in process `syz.2.396'. [ 187.947824][ T5855] Bluetooth: hci0: command 0x0c1a tx timeout [ 188.531549][ T7720] netlink: 93 bytes leftover after parsing attributes in process `syz.1.401'. [ 188.590400][ T5849] Bluetooth: hci1: command 0x0c1a tx timeout [ 188.596956][ T5859] Bluetooth: hci2: command 0x0c1a tx timeout [ 188.605107][ T5855] Bluetooth: hci3: command 0x0c1a tx timeout [ 190.077029][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 190.834280][ C0] vcan0: j1939_tp_rxtimer: 0xffff8880348d2c00: rx timeout, send abort [ 191.070688][ T7765] netlink: 93 bytes leftover after parsing attributes in process `syz.3.410'. [ 191.133895][ T7747] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 191.140792][ T7747] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 191.155654][ T7747] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 191.168351][ T7747] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 191.342598][ C0] vcan0: j1939_tp_rxtimer: 0xffff8880348d2c00: abort rx timeout. Force session deactivation [ 192.393840][ T7781] Invalid ELF header magic: != ELF [ 192.510706][ T5855] Bluetooth: hci0: command 0x0c1a tx timeout [ 192.639402][ T7788] netlink: 93 bytes leftover after parsing attributes in process `syz.2.414'. [ 193.145182][ T5855] Bluetooth: hci1: command 0x0c1a tx timeout [ 193.225093][ T5855] Bluetooth: hci3: command 0x0c1a tx timeout [ 193.231286][ T5855] Bluetooth: hci2: command 0x0c1a tx timeout [ 193.412306][ T7797] FAULT_INJECTION: forcing a failure. [ 193.412306][ T7797] name failslab, interval 1, probability 0, space 0, times 0 [ 193.461464][ T7797] CPU: 0 UID: 0 PID: 7797 Comm: syz.1.416 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 193.461498][ T7797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 193.461511][ T7797] Call Trace: [ 193.461520][ T7797] [ 193.461528][ T7797] dump_stack_lvl+0x16c/0x1f0 [ 193.461566][ T7797] should_fail_ex+0x512/0x640 [ 193.461591][ T7797] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 193.461627][ T7797] should_failslab+0xc2/0x120 [ 193.461649][ T7797] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 193.461682][ T7797] ? security_file_alloc+0x34/0x2b0 [ 193.461717][ T7797] security_file_alloc+0x34/0x2b0 [ 193.461745][ T7797] init_file+0x93/0x4c0 [ 193.461769][ T7797] alloc_empty_file+0x73/0x1e0 [ 193.461795][ T7797] alloc_file_pseudo+0x13a/0x230 [ 193.461822][ T7797] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 193.461847][ T7797] ? alloc_fd+0x471/0x7d0 [ 193.461882][ T7797] sock_alloc_file+0x50/0x210 [ 193.461915][ T7797] __sys_socket+0x1c0/0x260 [ 193.461939][ T7797] ? __pfx___sys_socket+0x10/0x10 [ 193.461962][ T7797] ? rcu_is_watching+0x12/0xc0 [ 193.461996][ T7797] __x64_sys_socket+0x72/0xb0 [ 193.462017][ T7797] ? lockdep_hardirqs_on+0x7c/0x110 [ 193.462046][ T7797] do_syscall_64+0xcd/0x260 [ 193.462079][ T7797] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 193.462101][ T7797] RIP: 0033:0x7fb6c458d169 [ 193.462119][ T7797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 193.462148][ T7797] RSP: 002b:00007fb6c23f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 193.462169][ T7797] RAX: ffffffffffffffda RBX: 00007fb6c47a5fa0 RCX: 00007fb6c458d169 [ 193.462184][ T7797] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 193.462197][ T7797] RBP: 00007fb6c460e990 R08: 0000000000000000 R09: 0000000000000000 [ 193.462210][ T7797] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 193.462222][ T7797] R13: 0000000000000000 R14: 00007fb6c47a5fa0 R15: 00007fff04c227c8 [ 193.462252][ T7797] [ 193.673601][ C0] vkms_vblank_simulate: vblank timer overrun [ 194.361617][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.383017][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.175905][ T7812] netlink: 186 bytes leftover after parsing attributes in process `syz.1.421'. [ 196.848728][ T7847] netlink: 93 bytes leftover after parsing attributes in process `syz.1.428'. [ 197.375529][ T7854] netlink: 28 bytes leftover after parsing attributes in process `syz.2.430'. syzkaller syzkaller login: [ 198.082919][ T7864] netlink: 32 bytes leftover after parsing attributes in process `syz.3.431'. [ 198.129195][ T7864] device-mapper: ioctl: Invalid data size in the ioctl structure: 0 [ 198.357733][ T7875] FAULT_INJECTION: forcing a failure. [ 198.357733][ T7875] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 198.385053][ T7875] CPU: 0 UID: 0 PID: 7875 Comm: syz.3.433 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 198.385086][ T7875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 198.385098][ T7875] Call Trace: [ 198.385106][ T7875] [ 198.385115][ T7875] dump_stack_lvl+0x16c/0x1f0 [ 198.385152][ T7875] should_fail_ex+0x512/0x640 [ 198.385182][ T7875] _copy_from_user+0x2e/0xd0 [ 198.385212][ T7875] copy_msghdr_from_user+0x98/0x160 [ 198.385241][ T7875] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 198.385287][ T7875] ___sys_sendmsg+0xfe/0x1d0 [ 198.385317][ T7875] ? __pfx____sys_sendmsg+0x10/0x10 [ 198.385394][ T7875] __sys_sendmsg+0x16d/0x220 [ 198.385424][ T7875] ? __pfx___sys_sendmsg+0x10/0x10 [ 198.385462][ T7875] ? rcu_is_watching+0x12/0xc0 [ 198.385499][ T7875] do_syscall_64+0xcd/0x260 [ 198.385534][ T7875] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 198.385557][ T7875] RIP: 0033:0x7f7dc3f8d169 [ 198.385575][ T7875] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 198.385595][ T7875] RSP: 002b:00007f7dc4e06038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 198.385615][ T7875] RAX: ffffffffffffffda RBX: 00007f7dc41a5fa0 RCX: 00007f7dc3f8d169 [ 198.385631][ T7875] RDX: 0000000000040000 RSI: 0000200000000ac0 RDI: 0000000000000003 [ 198.385644][ T7875] RBP: 00007f7dc4e06090 R08: 0000000000000000 R09: 0000000000000000 [ 198.385658][ T7875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 198.385671][ T7875] R13: 0000000000000000 R14: 00007f7dc41a5fa0 R15: 00007ffd9c7c7778 [ 198.385701][ T7875] [ 198.935439][ T7882] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 198.977847][ T7882] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 199.035656][ T7882] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 199.073700][ T7882] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 199.179349][ T7890] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1734553390.1886744434.2147549184), cmd(0) [ 200.500061][ T7915] netlink: 93 bytes leftover after parsing attributes in process `syz.1.442'. [ 200.985860][ T5855] Bluetooth: hci1: command 0x0c1a tx timeout [ 200.989511][ T5859] Bluetooth: hci0: command 0x0c1a tx timeout [ 201.065127][ T5859] Bluetooth: hci2: command 0x0c1a tx timeout [ 201.148411][ T5859] Bluetooth: hci3: command 0x0c1a tx timeout [ 201.167198][ T7937] netlink: 93 bytes leftover after parsing attributes in process `syz.0.449'. [ 201.384203][ T7944] FAULT_INJECTION: forcing a failure. [ 201.384203][ T7944] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 201.400286][ T7944] CPU: 0 UID: 0 PID: 7944 Comm: syz.3.452 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 201.400318][ T7944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 201.400331][ T7944] Call Trace: [ 201.400339][ T7944] [ 201.400347][ T7944] dump_stack_lvl+0x16c/0x1f0 [ 201.400381][ T7944] should_fail_ex+0x512/0x640 [ 201.400411][ T7944] _copy_to_iter+0x477/0x15a0 [ 201.400445][ T7944] ? __pfx__copy_to_iter+0x10/0x10 [ 201.400473][ T7944] ? const_folio_flags+0x5b/0x100 [ 201.400505][ T7944] ? folio_mark_accessed+0xc1/0xc00 [ 201.400530][ T7944] ? __pfx_folio_mark_accessed+0x10/0x10 [ 201.400560][ T7944] copy_page_to_iter+0xf1/0x180 [ 201.400590][ T7944] filemap_read+0x6b1/0xe90 [ 201.400630][ T7944] ? __pfx_filemap_read+0x10/0x10 [ 201.400675][ T7944] ? __pfx__kstrtoull+0x10/0x10 [ 201.400711][ T7944] ? __pfx_aa_file_perm+0x10/0x10 [ 201.400745][ T7944] blkdev_read_iter+0x190/0x4d0 [ 201.400777][ T7944] do_iter_readv_writev+0x735/0x950 [ 201.400808][ T7944] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 201.400841][ T7944] ? bpf_lsm_file_permission+0x9/0x10 [ 201.400868][ T7944] ? security_file_permission+0x71/0x210 [ 201.400896][ T7944] ? rw_verify_area+0xcf/0x680 [ 201.400924][ T7944] vfs_readv+0x4c5/0x8a0 [ 201.400949][ T7944] ? get_pid_task+0x106/0x250 [ 201.400979][ T7944] ? __pfx_vfs_readv+0x10/0x10 [ 201.401007][ T7944] ? find_held_lock+0x2b/0x80 [ 201.401062][ T7944] ? __fget_files+0x20e/0x3c0 [ 201.401100][ T7944] ? do_preadv+0x1af/0x270 [ 201.401126][ T7944] do_preadv+0x1af/0x270 [ 201.401154][ T7944] ? __pfx_do_preadv+0x10/0x10 [ 201.401178][ T7944] ? rcu_is_watching+0x12/0xc0 [ 201.401214][ T7944] do_syscall_64+0xcd/0x260 [ 201.401248][ T7944] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 201.401271][ T7944] RIP: 0033:0x7f7dc3f8d169 [ 201.401288][ T7944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 201.401308][ T7944] RSP: 002b:00007f7dc4e06038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 201.401329][ T7944] RAX: ffffffffffffffda RBX: 00007f7dc41a5fa0 RCX: 00007f7dc3f8d169 [ 201.401344][ T7944] RDX: 0000000000000006 RSI: 0000200000000080 RDI: 0040000000000003 [ 201.401357][ T7944] RBP: 00007f7dc4e06090 R08: 0000000000000005 R09: 0000000000000000 [ 201.401370][ T7944] R10: 000000000000003f R11: 0000000000000246 R12: 0000000000000002 [ 201.401383][ T7944] R13: 0000000000000000 R14: 00007f7dc41a5fa0 R15: 00007ffd9c7c7778 [ 201.401413][ T7944] [ 202.268502][ T7964] netlink: 28 bytes leftover after parsing attributes in process `syz.0.456'. [ 202.367249][ T7964] team0: Port device team_slave_0 removed [ 202.552431][ T7971] usb usb36: usbfs: process 7971 (syz.2.458) did not claim interface 0 before use [ 202.570969][ T7971] usb usb36: usbfs: interface 0 claimed by hub while 'syz.2.458' sets config #0 [ 202.821706][ T7977] netlink: 93 bytes leftover after parsing attributes in process `syz.1.460'. [ 203.362262][ T7992] FAULT_INJECTION: forcing a failure. [ 203.362262][ T7992] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 203.554720][ T7992] CPU: 0 UID: 0 PID: 7992 Comm: syz.3.462 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 203.554751][ T7992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 203.554764][ T7992] Call Trace: [ 203.554772][ T7992] [ 203.554781][ T7992] dump_stack_lvl+0x16c/0x1f0 [ 203.554844][ T7992] should_fail_ex+0x512/0x640 [ 203.554875][ T7992] _copy_to_iter+0x477/0x15a0 [ 203.554911][ T7992] ? __pfx__copy_to_iter+0x10/0x10 [ 203.554940][ T7992] ? const_folio_flags+0x5b/0x100 [ 203.554975][ T7992] ? folio_mark_accessed+0xc1/0xc00 [ 203.555000][ T7992] ? __pfx_folio_mark_accessed+0x10/0x10 [ 203.555032][ T7992] copy_page_to_iter+0xf1/0x180 [ 203.555063][ T7992] filemap_read+0x6b1/0xe90 [ 203.555110][ T7992] ? __pfx_filemap_read+0x10/0x10 [ 203.555158][ T7992] ? __pfx__kstrtoull+0x10/0x10 [ 203.555195][ T7992] ? __pfx_aa_file_perm+0x10/0x10 [ 203.555229][ T7992] blkdev_read_iter+0x190/0x4d0 [ 203.555262][ T7992] do_iter_readv_writev+0x735/0x950 [ 203.555294][ T7992] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 203.555328][ T7992] ? bpf_lsm_file_permission+0x9/0x10 [ 203.555355][ T7992] ? security_file_permission+0x71/0x210 [ 203.555385][ T7992] ? rw_verify_area+0xcf/0x680 [ 203.555414][ T7992] vfs_readv+0x4c5/0x8a0 [ 203.555439][ T7992] ? get_pid_task+0x106/0x250 [ 203.555470][ T7992] ? __pfx_vfs_readv+0x10/0x10 [ 203.555503][ T7992] ? find_held_lock+0x2b/0x80 [ 203.555551][ T7992] ? __fget_files+0x20e/0x3c0 [ 203.555590][ T7992] ? do_preadv+0x1af/0x270 [ 203.555616][ T7992] do_preadv+0x1af/0x270 [ 203.555645][ T7992] ? __pfx_do_preadv+0x10/0x10 [ 203.555682][ T7992] do_syscall_64+0xcd/0x260 [ 203.555717][ T7992] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 203.555739][ T7992] RIP: 0033:0x7f7dc3f8d169 [ 203.555758][ T7992] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 203.555778][ T7992] RSP: 002b:00007f7dc4dc4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 203.555800][ T7992] RAX: ffffffffffffffda RBX: 00007f7dc41a6160 RCX: 00007f7dc3f8d169 [ 203.555815][ T7992] RDX: 0000000000000006 RSI: 0000200000000080 RDI: 0040000000000003 [ 203.555829][ T7992] RBP: 00007f7dc4dc4090 R08: 0000000000000005 R09: 0000000000000000 [ 203.555849][ T7992] R10: 000000000000003f R11: 0000000000000246 R12: 0000000000000002 [ 203.555862][ T7992] R13: 0000000000000001 R14: 00007f7dc41a6160 R15: 00007ffd9c7c7778 [ 203.555892][ T7992] [ 204.111893][ T7994] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 204.120858][ T7994] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 204.135206][ T7994] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 204.141463][ T7994] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 204.350293][ T8006] FAULT_INJECTION: forcing a failure. [ 204.350293][ T8006] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 204.395052][ T8006] CPU: 0 UID: 0 PID: 8006 Comm: syz.1.466 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 204.395083][ T8006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 204.395095][ T8006] Call Trace: [ 204.395102][ T8006] [ 204.395109][ T8006] dump_stack_lvl+0x16c/0x1f0 [ 204.395144][ T8006] should_fail_ex+0x512/0x640 [ 204.395168][ T8006] _copy_from_iter+0x2a4/0x15b0 [ 204.395195][ T8006] ? __alloc_skb+0x200/0x380 [ 204.395221][ T8006] ? __pfx__copy_from_iter+0x10/0x10 [ 204.395247][ T8006] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 204.395275][ T8006] ? __lock_acquire+0xaa4/0x1ba0 [ 204.395314][ T8006] netlink_sendmsg+0x829/0xdd0 [ 204.395348][ T8006] ? __pfx_netlink_sendmsg+0x10/0x10 [ 204.395392][ T8006] ____sys_sendmsg+0xa95/0xc70 [ 204.395414][ T8006] ? copy_msghdr_from_user+0x10a/0x160 [ 204.395440][ T8006] ? __pfx_____sys_sendmsg+0x10/0x10 [ 204.395471][ T8006] ___sys_sendmsg+0x134/0x1d0 [ 204.395497][ T8006] ? __pfx____sys_sendmsg+0x10/0x10 [ 204.395561][ T8006] __sys_sendmsg+0x16d/0x220 [ 204.395591][ T8006] ? __pfx___sys_sendmsg+0x10/0x10 [ 204.395630][ T8006] ? rcu_is_watching+0x12/0xc0 [ 204.395668][ T8006] do_syscall_64+0xcd/0x260 [ 204.395702][ T8006] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 204.395726][ T8006] RIP: 0033:0x7fb6c458d169 [ 204.395744][ T8006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 204.395776][ T8006] RSP: 002b:00007fb6c23f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 204.395798][ T8006] RAX: ffffffffffffffda RBX: 00007fb6c47a5fa0 RCX: 00007fb6c458d169 [ 204.395812][ T8006] RDX: 0000000000040000 RSI: 0000200000000ac0 RDI: 0000000000000003 [ 204.395826][ T8006] RBP: 00007fb6c23f6090 R08: 0000000000000000 R09: 0000000000000000 [ 204.395839][ T8006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 204.395853][ T8006] R13: 0000000000000000 R14: 00007fb6c47a5fa0 R15: 00007fff04c227c8 [ 204.395884][ T8006] [ 204.838355][ T7999] netlink: 93 bytes leftover after parsing attributes in process `syz.3.465'. [ 205.181017][ C1] vcan0: j1939_tp_rxtimer: 0xffff888062f52400: rx timeout, send abort [ 205.689582][ C1] vcan0: j1939_tp_rxtimer: 0xffff888062f52400: abort rx timeout. Force session deactivation [ 206.197939][ T5859] Bluetooth: hci3: command 0x0c1a tx timeout [ 206.197957][ T5855] Bluetooth: hci2: command 0x0c1a tx timeout [ 206.197999][ T5855] Bluetooth: hci1: command 0x0c1a tx timeout [ 206.204014][ T5859] Bluetooth: hci0: command 0x0c1a tx timeout syzkaller syzkaller login: [ 207.115627][ T8050] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 207.126090][ T8050] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 207.132221][ T8050] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 207.221147][ T8050] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 209.145337][ T5849] Bluetooth: hci2: command 0x0c1a tx timeout [ 209.151574][ T5859] Bluetooth: hci1: command 0x0c1a tx timeout [ 209.156733][ T5855] Bluetooth: hci0: command 0x0c1a tx timeout [ 209.243334][ T8079] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8 [ 209.249250][ T8086] FAULT_INJECTION: forcing a failure. [ 209.249250][ T8086] name failslab, interval 1, probability 0, space 0, times 0 [ 209.315015][ T5855] Bluetooth: hci3: command 0x0c1a tx timeout [ 209.346642][ T8086] CPU: 1 UID: 0 PID: 8086 Comm: syz.0.485 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 209.346676][ T8086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 209.346689][ T8086] Call Trace: [ 209.346697][ T8086] [ 209.346706][ T8086] dump_stack_lvl+0x16c/0x1f0 [ 209.346744][ T8086] should_fail_ex+0x512/0x640 [ 209.346769][ T8086] ? __kmalloc_noprof+0xbf/0x510 [ 209.346802][ T8086] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 209.346827][ T8086] should_failslab+0xc2/0x120 [ 209.346848][ T8086] __kmalloc_noprof+0xd2/0x510 [ 209.346879][ T8086] ? kasan_quarantine_put+0x10a/0x240 [ 209.346917][ T8086] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 209.346949][ T8086] genl_family_rcv_msg_doit+0xbf/0x2f0 [ 209.346974][ T8086] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 209.346997][ T8086] ? trace_cap_capable+0x18d/0x200 [ 209.347028][ T8086] ? bpf_lsm_capable+0x9/0x10 [ 209.347058][ T8086] ? security_capable+0x7e/0x260 [ 209.347081][ T8086] ? ns_capable+0xd7/0x110 [ 209.347112][ T8086] genl_rcv_msg+0x55c/0x800 [ 209.347138][ T8086] ? __pfx_genl_rcv_msg+0x10/0x10 [ 209.347159][ T8086] ? __pfx___dev_queue_xmit+0x10/0x10 [ 209.347183][ T8086] ? __pfx_ethnl_act_cable_test+0x10/0x10 [ 209.347215][ T8086] ? __lock_acquire+0xaa4/0x1ba0 [ 209.347265][ T8086] netlink_rcv_skb+0x16a/0x440 [ 209.347297][ T8086] ? __pfx_genl_rcv_msg+0x10/0x10 [ 209.347321][ T8086] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 209.347370][ T8086] ? __pfx_down_read+0x10/0x10 [ 209.347393][ T8086] ? netlink_deliver_tap+0x1ae/0xd30 [ 209.347429][ T8086] genl_rcv+0x28/0x40 [ 209.347460][ T8086] netlink_unicast+0x53a/0x7f0 [ 209.347497][ T8086] ? __pfx_netlink_unicast+0x10/0x10 [ 209.347539][ T8086] netlink_sendmsg+0x8d1/0xdd0 [ 209.347577][ T8086] ? __pfx_netlink_sendmsg+0x10/0x10 [ 209.347623][ T8086] ____sys_sendmsg+0xa95/0xc70 [ 209.347646][ T8086] ? copy_msghdr_from_user+0x10a/0x160 [ 209.347678][ T8086] ? __pfx_____sys_sendmsg+0x10/0x10 [ 209.347717][ T8086] ___sys_sendmsg+0x134/0x1d0 [ 209.347748][ T8086] ? __pfx____sys_sendmsg+0x10/0x10 [ 209.347821][ T8086] __sys_sendmsg+0x16d/0x220 [ 209.347851][ T8086] ? __pfx___sys_sendmsg+0x10/0x10 [ 209.347891][ T8086] ? rcu_is_watching+0x12/0xc0 [ 209.347929][ T8086] do_syscall_64+0xcd/0x260 [ 209.347964][ T8086] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 209.347987][ T8086] RIP: 0033:0x7f5fe458d169 [ 209.348006][ T8086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 209.348027][ T8086] RSP: 002b:00007f5fe535f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 209.348049][ T8086] RAX: ffffffffffffffda RBX: 00007f5fe47a5fa0 RCX: 00007f5fe458d169 [ 209.348063][ T8086] RDX: 0000000000040000 RSI: 0000200000000ac0 RDI: 0000000000000003 [ 209.348077][ T8086] RBP: 00007f5fe535f090 R08: 0000000000000000 R09: 0000000000000000 [ 209.348090][ T8086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 209.348104][ T8086] R13: 0000000000000000 R14: 00007f5fe47a5fa0 R15: 00007fff514518f8 [ 209.348135][ T8086] [ 209.681842][ T8081] netlink: 8 bytes leftover after parsing attributes in process `syz.3.484'. [ 212.573107][ T5855] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18 [ 212.705565][ T8116] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 212.725830][ T8116] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 212.736234][ T8116] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 212.752505][ T8116] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 214.105122][ T5855] Bluetooth: hci0: command 0x0c1a tx timeout [ 214.346980][ T8146] FAULT_INJECTION: forcing a failure. [ 214.346980][ T8146] name failslab, interval 1, probability 0, space 0, times 0 [ 214.347043][ T8146] CPU: 0 UID: 0 PID: 8146 Comm: syz.0.501 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 214.347071][ T8146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 214.347082][ T8146] Call Trace: [ 214.347089][ T8146] [ 214.347096][ T8146] dump_stack_lvl+0x16c/0x1f0 [ 214.347128][ T8146] should_fail_ex+0x512/0x640 [ 214.347150][ T8146] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 214.347180][ T8146] should_failslab+0xc2/0x120 [ 214.347198][ T8146] __kmalloc_cache_noprof+0x6a/0x3e0 [ 214.347227][ T8146] ? vc_allocate+0x16c/0x880 [ 214.347260][ T8146] vc_allocate+0x16c/0x880 [ 214.347288][ T8146] ? __pfx_vc_allocate+0x10/0x10 [ 214.347323][ T8146] con_install+0xa1/0x600 [ 214.347352][ T8146] ? __pfx_con_install+0x10/0x10 [ 214.347385][ T8146] ? __pfx_con_install+0x10/0x10 [ 214.347413][ T8146] tty_init_dev.part.0+0x99/0x500 [ 214.347434][ T8146] tty_open+0xa50/0xf90 [ 214.347457][ T8146] ? __pfx_tty_open+0x10/0x10 [ 214.347476][ T8146] ? chrdev_open+0x58c/0x6a0 [ 214.347507][ T8146] ? __pfx_tty_open+0x10/0x10 [ 214.347525][ T8146] chrdev_open+0x231/0x6a0 [ 214.347553][ T8146] ? __pfx_chrdev_open+0x10/0x10 [ 214.347582][ T8146] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 214.347613][ T8146] do_dentry_open+0x741/0x1c10 [ 214.347640][ T8146] ? __pfx_chrdev_open+0x10/0x10 [ 214.347673][ T8146] vfs_open+0x82/0x3f0 [ 214.347696][ T8146] path_openat+0x1e5e/0x2d40 [ 214.347733][ T8146] ? __pfx_path_openat+0x10/0x10 [ 214.347767][ T8146] do_filp_open+0x20b/0x470 [ 214.347794][ T8146] ? __pfx_do_filp_open+0x10/0x10 [ 214.347841][ T8146] ? alloc_fd+0x471/0x7d0 [ 214.347875][ T8146] do_sys_openat2+0x11b/0x1d0 [ 214.347895][ T8146] ? __pfx_do_sys_openat2+0x10/0x10 [ 214.347926][ T8146] __x64_sys_openat+0x174/0x210 [ 214.347946][ T8146] ? __pfx___x64_sys_openat+0x10/0x10 [ 214.347968][ T8146] ? rcu_is_watching+0x12/0xc0 [ 214.347999][ T8146] do_syscall_64+0xcd/0x260 [ 214.348036][ T8146] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 214.348058][ T8146] RIP: 0033:0x7f5fe458d169 [ 214.348075][ T8146] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 214.348094][ T8146] RSP: 002b:00007f5fe535f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 214.348114][ T8146] RAX: ffffffffffffffda RBX: 00007f5fe47a5fa0 RCX: 00007f5fe458d169 [ 214.348127][ T8146] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 214.348140][ T8146] RBP: 00007f5fe460e990 R08: 0000000000000000 R09: 0000000000000000 [ 214.348152][ T8146] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000 [ 214.348164][ T8146] R13: 0000000000000000 R14: 00007f5fe47a5fa0 R15: 00007fff514518f8 [ 214.348192][ T8146] [ 214.752575][ T5855] Bluetooth: hci2: command 0x0c1a tx timeout [ 214.752585][ T5849] Bluetooth: hci1: command 0x0c1a tx timeout [ 214.835363][ T5855] Bluetooth: hci3: command 0x0c1a tx timeout [ 216.906679][ T8210] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 216.913874][ T8210] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 216.925830][ T8210] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 216.965359][ T8210] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 218.209560][ T8262] netlink: 342 bytes leftover after parsing attributes in process `syz.0.529'. [ 218.249038][ T8262] netlink: 'syz.0.529': attribute type 1 has an invalid length. [ 218.294571][ T8262] netlink: 274 bytes leftover after parsing attributes in process `syz.0.529'. [ 218.425124][ T5855] Bluetooth: hci0: command 0x0c1a tx timeout [ 218.689045][ T8269] Invalid ELF header magic: != ELF [ 218.752735][ T8277] netlink: 330 bytes leftover after parsing attributes in process `syz.2.534'. [ 218.855446][ T8269] snd_aloop snd_aloop.0: control 16781581:65535:6:'x?F/zF˷fC:8 is already present [ 218.898806][ T8275] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 218.985202][ T5855] Bluetooth: hci3: command 0x0c1a tx timeout [ 218.994392][ T5849] Bluetooth: hci2: command 0x0c1a tx timeout [ 218.994796][ T5859] Bluetooth: hci1: command 0x0c1a tx timeout [ 219.318152][ T8268] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 219.338865][ T8268] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 219.360880][ T8268] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 219.508736][ T8268] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 220.618797][ T8310] netlink: 8 bytes leftover after parsing attributes in process `syz.0.540'. [ 220.995201][ T5859] Bluetooth: hci0: command 0x0c1a tx timeout [ 221.385102][ T5859] Bluetooth: hci2: command 0x0c1a tx timeout [ 221.392085][ T5855] Bluetooth: hci1: command 0x0c1a tx timeout [ 221.462976][ T8325] netlink: 28 bytes leftover after parsing attributes in process `syz.2.543'. [ 221.545076][ T5859] Bluetooth: hci3: command 0x0c1a tx timeout [ 221.893777][ T8325] bond0: (slave bond_slave_0): Releasing backup interface [ 224.987105][ T8401] netlink: 93 bytes leftover after parsing attributes in process `syz.1.562'. [ 228.287422][ T8439] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 228.482782][ T8439] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 228.658764][ T8439] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 228.764168][ T8439] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 229.770755][ T8461] FAULT_INJECTION: forcing a failure. [ 229.770755][ T8461] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 229.820437][ T8461] CPU: 0 UID: 0 PID: 8461 Comm: syz.3.576 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 229.820474][ T8461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 229.820489][ T8461] Call Trace: [ 229.820497][ T8461] [ 229.820508][ T8461] dump_stack_lvl+0x16c/0x1f0 [ 229.820561][ T8461] should_fail_ex+0x512/0x640 [ 229.820595][ T8461] should_fail_alloc_page+0xe7/0x130 [ 229.820622][ T8461] prepare_alloc_pages+0x3c2/0x610 [ 229.820651][ T8461] ? rcu_is_watching+0x12/0xc0 [ 229.820685][ T8461] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 229.820727][ T8461] ? __lock_acquire+0x5ca/0x1ba0 [ 229.820763][ T8461] ? cgroup_rstat_updated+0x2a/0xb20 [ 229.820822][ T8461] ? __lock_acquire+0x5ca/0x1ba0 [ 229.820892][ T8461] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 229.820951][ T8461] ? __lock_acquire+0x5ca/0x1ba0 [ 229.820995][ T8461] ? __lock_acquire+0x5ca/0x1ba0 [ 229.821033][ T8461] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 229.821061][ T8461] ? policy_nodemask+0xea/0x4e0 [ 229.821101][ T8461] alloc_pages_mpol+0x1fb/0x550 [ 229.821147][ T8461] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 229.821173][ T8461] ? __lock_acquire+0x5ca/0x1ba0 [ 229.821217][ T8461] folio_alloc_mpol_noprof+0x36/0x2f0 [ 229.821246][ T8461] vma_alloc_folio_noprof+0xed/0x1e0 [ 229.821282][ T8461] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 229.821327][ T8461] do_pte_missing+0x223d/0x3fb0 [ 229.821381][ T8461] __handle_mm_fault+0x103d/0x2a40 [ 229.821424][ T8461] ? __pfx___handle_mm_fault+0x10/0x10 [ 229.821458][ T8461] ? __pte_offset_map_lock+0x155/0x2f0 [ 229.821486][ T8461] ? find_held_lock+0x2b/0x80 [ 229.821514][ T8461] ? find_held_lock+0x2b/0x80 [ 229.821638][ T8461] handle_mm_fault+0x3fe/0xad0 [ 229.821683][ T8461] __get_user_pages+0x771/0x36f0 [ 229.821722][ T8461] ? __pfx_mt_find+0x10/0x10 [ 229.821756][ T8461] ? __pfx___get_user_pages+0x10/0x10 [ 229.821800][ T8461] populate_vma_page_range+0x278/0x3a0 [ 229.821836][ T8461] ? __pfx_populate_vma_page_range+0x10/0x10 [ 229.821867][ T8461] ? __pfx_find_vma_intersection+0x10/0x10 [ 229.821898][ T8461] ? do_mmap+0x69c/0x11b0 [ 229.821929][ T8461] __mm_populate+0x1d8/0x380 [ 229.821963][ T8461] ? __pfx___mm_populate+0x10/0x10 [ 229.821997][ T8461] ? up_write+0x1b2/0x520 [ 229.822027][ T8461] vm_mmap_pgoff+0x362/0x450 [ 229.822059][ T8461] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 229.822088][ T8461] ? 0xffffffffff600000 [ 229.822112][ T8461] ? __x64_sys_futex+0x1e0/0x4c0 [ 229.822144][ T8461] ? __x64_sys_futex+0x1e9/0x4c0 [ 229.822182][ T8461] ksys_mmap_pgoff+0x7d/0x5c0 [ 229.822211][ T8461] ? rcu_is_watching+0x12/0xc0 [ 229.822242][ T8461] __x64_sys_mmap+0x125/0x190 [ 229.822275][ T8461] do_syscall_64+0xcd/0x260 [ 229.822313][ T8461] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 229.822337][ T8461] RIP: 0033:0x7f7dc3f8d169 [ 229.822357][ T8461] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 229.822379][ T8461] RSP: 002b:00007f7dc4e06038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 229.822403][ T8461] RAX: ffffffffffffffda RBX: 00007f7dc41a5fa0 RCX: 00007f7dc3f8d169 [ 229.822419][ T8461] RDX: 00000000000000df RSI: 0000000000040009 RDI: 0000000000000000 [ 229.822434][ T8461] RBP: 00007f7dc400e990 R08: 0000000000000007 R09: 0000000000028000 [ 229.822448][ T8461] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 229.822463][ T8461] R13: 0000000000000000 R14: 00007f7dc41a5fa0 R15: 00007ffd9c7c7778 [ 229.822508][ T8461] [ 230.195612][ T5859] Bluetooth: hci0: command 0x0c1a tx timeout [ 230.372516][ T8474] FAULT_INJECTION: forcing a failure. [ 230.372516][ T8474] name fail_futex, interval 1, probability 0, space 0, times 1 [ 230.436739][ T8474] CPU: 1 UID: 0 PID: 8474 Comm: syz.2.580 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 230.436771][ T8474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 230.436784][ T8474] Call Trace: [ 230.436792][ T8474] [ 230.436800][ T8474] dump_stack_lvl+0x16c/0x1f0 [ 230.436838][ T8474] should_fail_ex+0x512/0x640 [ 230.436869][ T8474] get_futex_key+0x49e/0x1000 [ 230.436905][ T8474] ? __pfx_get_futex_key+0x10/0x10 [ 230.436936][ T8474] ? find_held_lock+0x2b/0x80 [ 230.436963][ T8474] ? __might_fault+0xe3/0x190 [ 230.436995][ T8474] ? __might_fault+0xe3/0x190 [ 230.437025][ T8474] ? __might_fault+0x13b/0x190 [ 230.437060][ T8474] futex_wait_setup+0x78/0x290 [ 230.437091][ T8474] __futex_wait+0x266/0x3c0 [ 230.437116][ T8474] ? __pfx___futex_wait+0x10/0x10 [ 230.437145][ T8474] ? __pfx_futex_wake_mark+0x10/0x10 [ 230.437172][ T8474] ? seq_read_iter+0x6b/0x12c0 [ 230.437218][ T8474] futex_wait+0xe8/0x380 [ 230.437241][ T8474] ? __pfx_futex_wait+0x10/0x10 [ 230.437274][ T8474] ? ksys_read+0x190/0x240 [ 230.437310][ T8474] do_futex+0x229/0x350 [ 230.437341][ T8474] ? __pfx_do_futex+0x10/0x10 [ 230.437380][ T8474] __x64_sys_futex+0x1e0/0x4c0 [ 230.437414][ T8474] ? fput+0x70/0xf0 [ 230.437434][ T8474] ? __pfx___x64_sys_futex+0x10/0x10 [ 230.437462][ T8474] ? ksys_read+0x1b9/0x240 [ 230.437490][ T8474] ? __pfx_ksys_read+0x10/0x10 [ 230.437517][ T8474] ? rcu_is_watching+0x12/0xc0 [ 230.437553][ T8474] do_syscall_64+0xcd/0x260 [ 230.437589][ T8474] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 230.437612][ T8474] RIP: 0033:0x7f989278d169 [ 230.437630][ T8474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 230.437651][ T8474] RSP: 002b:00007f98936a00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 230.437672][ T8474] RAX: ffffffffffffffda RBX: 00007f98929a6088 RCX: 00007f989278d169 [ 230.437687][ T8474] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f98929a6088 [ 230.437701][ T8474] RBP: 00007f98929a6080 R08: 0000000000000000 R09: 0000000000000000 [ 230.437714][ T8474] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f98929a608c [ 230.437727][ T8474] R13: 0000000000000000 R14: 00007fff520752a0 R15: 00007fff52075388 [ 230.437758][ T8474] [ 230.683327][ T5859] Bluetooth: hci1: command 0x0c1a tx timeout [ 230.689558][ T5859] Bluetooth: hci2: command 0x0c1a tx timeout [ 230.839181][ T5855] Bluetooth: hci3: command 0x0c1a tx timeout [ 231.472620][ T8489] netlink: 'syz.3.582': attribute type 1 has an invalid length. [ 231.823311][ T8494] ======================================================= [ 231.823311][ T8494] WARNING: The mand mount option has been deprecated and [ 231.823311][ T8494] and is ignored by this kernel. Remove the mand [ 231.823311][ T8494] option from the mount to silence this warning. [ 231.823311][ T8494] ======================================================= [ 231.859049][ C0] vkms_vblank_simulate: vblank timer overrun [ 232.928203][ T12] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 233.358532][ T12] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 233.580049][ T12] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 233.957022][ T12] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 234.268604][ T12] bridge_slave_1: left allmulticast mode [ 234.295349][ T12] bridge_slave_1: left promiscuous mode [ 234.319954][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 235.082832][ T12] bridge_slave_0: left allmulticast mode [ 235.095052][ T12] bridge_slave_0: left promiscuous mode [ 235.157811][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 235.270808][ T5855] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 235.291733][ T5855] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 235.306489][ T5855] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 235.321419][ T5855] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 235.341861][ T5855] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 235.917999][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 235.928671][ T12] bond0 (unregistering): Released all slaves [ 236.871409][ T12] hsr_slave_0: left promiscuous mode [ 236.885062][ T12] hsr_slave_1: left promiscuous mode [ 236.892172][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 236.903449][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 236.916264][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 236.935076][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 236.971154][ T12] veth1_macvtap: left promiscuous mode [ 236.978805][ T12] veth0_macvtap: left promiscuous mode [ 236.991090][ T12] veth1_vlan: left promiscuous mode [ 236.997945][ T12] veth0_vlan: left promiscuous mode [ 237.390959][ T5859] Bluetooth: hci3: command tx timeout [ 237.652897][ T12] team0 (unregistering): Port device team_slave_1 removed [ 237.719499][ T12] team0 (unregistering): Port device team_slave_0 removed [ 238.503870][ T8544] chnl_net:caif_netlink_parms(): no params data found [ 238.951894][ T8544] bridge0: port 1(bridge_slave_0) entered blocking state [ 239.335361][ T8544] bridge0: port 1(bridge_slave_0) entered disabled state [ 239.390625][ T8544] bridge_slave_0: entered allmulticast mode [ 239.440762][ T8544] bridge_slave_0: entered promiscuous mode [ 239.475223][ T5859] Bluetooth: hci3: command tx timeout [ 239.518567][ T8544] bridge0: port 2(bridge_slave_1) entered blocking state [ 239.543972][ T8608] netlink: 93 bytes leftover after parsing attributes in process `syz.1.602'. [ 239.585293][ T8544] bridge0: port 2(bridge_slave_1) entered disabled state [ 239.595802][ T8544] bridge_slave_1: entered allmulticast mode [ 239.612104][ T8544] bridge_slave_1: entered promiscuous mode [ 240.199500][ T8544] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 240.260824][ T8544] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 240.610461][ T8544] team0: Port device team_slave_0 added [ 240.645444][ T8544] team0: Port device team_slave_1 added [ 240.939532][ T8544] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 241.055945][ T8544] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 241.104612][ T8544] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 241.146918][ T8544] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 241.154084][ T8544] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 241.205004][ T8544] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 241.410475][ T8544] hsr_slave_0: entered promiscuous mode [ 241.426209][ T8544] hsr_slave_1: entered promiscuous mode [ 241.545535][ T5859] Bluetooth: hci3: command tx timeout [ 243.635269][ T5859] Bluetooth: hci3: command tx timeout [ 243.685298][ T8673] netlink: 93 bytes leftover after parsing attributes in process `syz.3.608'. [ 244.979277][ T8544] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 245.021406][ T8544] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 245.345160][ T8544] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 245.443004][ T8544] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 246.689154][ T8544] 8021q: adding VLAN 0 to HW filter on device bond0 [ 246.882331][ T8544] 8021q: adding VLAN 0 to HW filter on device team0 [ 247.010521][ T4178] bridge0: port 1(bridge_slave_0) entered blocking state [ 247.017911][ T4178] bridge0: port 1(bridge_slave_0) entered forwarding state [ 247.070595][ T4178] bridge0: port 2(bridge_slave_1) entered blocking state [ 247.078869][ T4178] bridge0: port 2(bridge_slave_1) entered forwarding state [ 247.566521][ T8744] netlink: 93 bytes leftover after parsing attributes in process `syz.0.618'. [ 247.815176][ T8544] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 248.711448][ T8544] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 248.930806][ T8544] veth0_vlan: entered promiscuous mode [ 248.970153][ T8544] veth1_vlan: entered promiscuous mode [ 249.093436][ T8544] veth0_macvtap: entered promiscuous mode [ 249.123975][ T8544] veth1_macvtap: entered promiscuous mode [ 249.178683][ T8544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 249.234512][ T8544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 249.276901][ T8544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 249.303707][ T8544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 249.331589][ T8544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 249.383776][ T8544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 249.411671][ T8544] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 249.440709][ T8544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 249.501687][ T8544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 249.534422][ T8544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 249.556689][ T8544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 249.579320][ T8544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 249.623260][ T8544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 249.649842][ T8544] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 249.742516][ T8544] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 249.771986][ T8544] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 249.805234][ T8544] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 249.814225][ T8544] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 249.886650][ T8790] netlink: 93 bytes leftover after parsing attributes in process `syz.3.622'. [ 251.491963][ T2942] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 251.505005][ T2942] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 251.659601][ T2956] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 251.699166][ T2956] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 255.504030][ T8912] netlink: 93 bytes leftover after parsing attributes in process `syz.2.633'. [ 255.790471][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.797128][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.357533][ T8914] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 256.382361][ T8914] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 256.405381][ T8914] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 256.411713][ T8914] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 256.437362][ T8914] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 256.448463][ T8914] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 256.988306][ T8950] netlink: 28 bytes leftover after parsing attributes in process `syz.3.642'. [ 257.078288][ T8950] bridge0: port 2(bridge_slave_1) entered disabled state [ 257.382751][ T30] audit: type=1800 audit(32798.710:7): pid=8955 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.641" name="file0" dev="tmpfs" ino=901 res=0 errno=0 [ 257.473943][ T8950] bridge_slave_1 (unregistering): left allmulticast mode [ 257.522110][ T8950] bridge_slave_1 (unregistering): left promiscuous mode [ 257.578970][ T8950] bridge0: port 2(bridge_slave_1) entered disabled state [ 257.786741][ T5855] Bluetooth: hci0: command 0x0c1a tx timeout [ 258.300740][ T8970] Invalid ELF header magic: != ELF [ 258.425176][ T5855] Bluetooth: hci2: command 0x0c1a tx timeout [ 258.431322][ T5859] Bluetooth: hci3: command 0x0c1a tx timeout [ 258.431378][ T5849] Bluetooth: hci1: command 0x0c1a tx timeout [ 259.868089][ T8994] netlink: 93 bytes leftover after parsing attributes in process `syz.1.651'. [ 260.505136][ T5849] Bluetooth: hci3: command 0x0c1a tx timeout [ 261.283149][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 262.039748][ C0] vcan0: j1939_tp_rxtimer: 0xffff888070ef4c00: rx timeout, send abort [ 262.548068][ C0] vcan0: j1939_tp_rxtimer: 0xffff888070ef4c00: abort rx timeout. Force session deactivation [ 262.585284][ T5849] Bluetooth: hci3: command 0x0c1a tx timeout [ 263.213937][ T9036] netlink: 28 bytes leftover after parsing attributes in process `syz.3.658'. [ 263.230100][ T9036] veth1_macvtap: left promiscuous mode [ 263.869799][ T5849] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 263.869833][ T5849] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 263.885894][ T5849] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 263.885974][ T5849] Bluetooth: hci0: Malformed LE Event: 0x0d [ 265.477631][ T9058] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 265.485606][ T9058] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 265.504977][ T9058] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 265.515423][ T9058] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 266.675781][ T9087] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 266.698466][ T9087] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 266.706008][ T9087] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 266.712654][ T9087] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 268.265358][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout [ 268.745085][ T5849] Bluetooth: hci3: command 0x0c1a tx timeout [ 268.751148][ T5855] Bluetooth: hci2: command 0x0c1a tx timeout [ 268.758395][ T5859] Bluetooth: hci1: command 0x0c1a tx timeout [ 270.656492][ T9149] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 270.685831][ T9149] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 270.705310][ T9149] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 270.735890][ T9149] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 271.027814][ T9161] sd 0:0:1:0: device reset [ 271.798890][ T9158] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 271.825434][ T9158] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 271.852997][ T9158] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 271.865921][ T9158] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 272.286452][ T9157] HfR: entered promiscuous mode [ 272.621364][ T9189] kafs: addr_prefs: Invalid Command [ 272.817707][ T9197] netlink: 146 bytes leftover after parsing attributes in process `syz.1.693'. [ 273.325742][ T9177] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 273.332465][ T9177] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 273.385270][ T9177] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 273.418714][ T9177] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 274.505330][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout [ 275.093608][ T9252] netlink: 93 bytes leftover after parsing attributes in process `syz.3.701'. [ 275.287754][ T9257] netlink: 93 bytes leftover after parsing attributes in process `syz.1.702'. [ 275.388649][ T5849] Bluetooth: hci1: command 0x0c1a tx timeout [ 275.465179][ T5855] Bluetooth: hci2: command 0x0c1a tx timeout [ 275.471369][ T5849] Bluetooth: hci3: command 0x0c1a tx timeout [ 279.891910][ T9330] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 279.925183][ T9330] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 284.367433][ T9371] Invalid ELF header magic: != ELF [ 284.512679][ T9364] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 284.519465][ T9364] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 284.531524][ T9364] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 284.560428][ T9364] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 284.992751][ T9383] netlink: 'syz.2.726': attribute type 1 has an invalid length. [ 286.025275][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout [ 286.558428][ T9418] netlink: 93 bytes leftover after parsing attributes in process `syz.2.735'. [ 286.590565][ T5849] Bluetooth: hci3: command 0x0c1a tx timeout [ 286.590595][ T5859] Bluetooth: hci1: command 0x0c1a tx timeout [ 286.590647][ T5855] Bluetooth: hci2: command 0x0c1a tx timeout [ 287.247296][ T9417] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 287.316135][ T9417] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 287.322282][ T9417] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 287.335281][ T9417] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 288.079345][ T9438] netlink: 93 bytes leftover after parsing attributes in process `syz.0.738'. [ 288.834971][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout [ 289.385071][ T5849] Bluetooth: hci3: command 0x0c1a tx timeout [ 289.385238][ T5855] Bluetooth: hci2: command 0x0c1a tx timeout [ 289.391208][ T5849] Bluetooth: hci1: command 0x0c1a tx timeout [ 290.899417][ T9502] netlink: 28 bytes leftover after parsing attributes in process `syz.0.758'. [ 290.928822][ T9500] netlink: 93 bytes leftover after parsing attributes in process `syz.1.750'. [ 291.319903][ T9508] netlink: 28 bytes leftover after parsing attributes in process `syz.3.753'. [ 291.338283][ T9508] geneve1: entered allmulticast mode [ 291.654416][ T9519] netlink: 93 bytes leftover after parsing attributes in process `syz.3.754'. [ 294.464266][ T9554] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 294.473011][ T9554] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 294.495651][ T9554] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 294.501831][ T9554] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 294.737840][ T9573] program syz.3.766 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 295.045884][ T9573] usb usb36: usbfs: process 9573 (syz.3.766) did not claim interface 0 before use [ 296.105195][ T5855] Bluetooth: hci0: command 0x0c1a tx timeout [ 296.505099][ T5849] Bluetooth: hci1: command 0x0c1a tx timeout [ 296.588347][ T5849] Bluetooth: hci3: command 0x0c1a tx timeout [ 296.594633][ T5849] Bluetooth: hci2: command 0x0c1a tx timeout [ 297.742415][ T9604] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 297.785882][ T9604] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 297.836725][ T9604] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 297.842871][ T9604] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 298.018524][ T9629] netlink: 8 bytes leftover after parsing attributes in process `syz.2.780'. [ 298.122526][ T9633] nbd: socks must be embedded in a SOCK_ITEM attr [ 298.397124][ T9640] netlink: 93 bytes leftover after parsing attributes in process `syz.0.781'. [ 298.825191][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout [ 299.841000][ T9659] FAULT_INJECTION: forcing a failure. [ 299.841000][ T9659] name failslab, interval 1, probability 0, space 0, times 0 [ 299.865152][ T5849] Bluetooth: hci3: command 0x0c1a tx timeout [ 299.871269][ T5849] Bluetooth: hci2: command 0x0c1a tx timeout [ 299.875380][ T9659] CPU: 1 UID: 0 PID: 9659 Comm: syz.3.787 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 299.875415][ T9659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 299.875430][ T9659] Call Trace: [ 299.875438][ T9659] [ 299.875448][ T9659] dump_stack_lvl+0x16c/0x1f0 [ 299.875503][ T9659] should_fail_ex+0x512/0x640 [ 299.875540][ T9659] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 299.875577][ T9659] should_failslab+0xc2/0x120 [ 299.875601][ T9659] __kmalloc_cache_noprof+0x6a/0x3e0 [ 299.875634][ T9659] ? __vb2_init_fileio+0x253/0x1100 [ 299.875669][ T9659] __vb2_init_fileio+0x253/0x1100 [ 299.875706][ T9659] ? vb2_fop_read+0xe6/0x3e0 [ 299.875735][ T9659] __vb2_perform_fileio+0x9c2/0x1660 [ 299.875773][ T9659] ? __pfx___vb2_perform_fileio+0x10/0x10 [ 299.875813][ T9659] vb2_fop_read+0x215/0x3e0 [ 299.875847][ T9659] v4l2_read+0x226/0x360 [ 299.875880][ T9659] ? __pfx_v4l2_read+0x10/0x10 [ 299.875916][ T9659] vfs_read+0x1de/0xc70 [ 299.875954][ T9659] ? __pfx_vfs_read+0x10/0x10 [ 299.875983][ T9659] ? find_held_lock+0x2b/0x80 [ 299.876014][ T9659] ? __fget_files+0x204/0x3c0 [ 299.876052][ T9659] ? __fget_files+0x20e/0x3c0 [ 299.876094][ T9659] ksys_read+0x12a/0x240 [ 299.876124][ T9659] ? __pfx_ksys_read+0x10/0x10 [ 299.876153][ T9659] ? rcu_is_watching+0x12/0xc0 [ 299.876191][ T9659] do_syscall_64+0xcd/0x260 [ 299.876228][ T9659] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 299.876252][ T9659] RIP: 0033:0x7f7dc3f8d169 [ 299.876271][ T9659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 299.876297][ T9659] RSP: 002b:00007f7dc4e06038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 299.876321][ T9659] RAX: ffffffffffffffda RBX: 00007f7dc41a5fa0 RCX: 00007f7dc3f8d169 [ 299.876338][ T9659] RDX: 0000000000000016 RSI: 00002000000010c0 RDI: 0000000000000005 [ 299.876355][ T9659] RBP: 00007f7dc400e990 R08: 0000000000000000 R09: 0000000000000000 [ 299.876370][ T9659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 299.876386][ T9659] R13: 0000000000000000 R14: 00007f7dc41a5fa0 R15: 00007ffd9c7c7778 [ 299.876418][ T9659] [ 299.907170][ T5855] Bluetooth: hci1: command 0x0c1a tx timeout [ 299.970085][ T5849] Bluetooth: hci2: unexpected event 0x02 length: 726 > 260 [ 302.298847][ T9707] netlink: 28 bytes leftover after parsing attributes in process `syz.3.798'. [ 302.560743][ T9707] bond0: (slave bond_slave_0): Releasing backup interface [ 303.447118][ T9718] netlink: 4 bytes leftover after parsing attributes in process `syz.2.801'. [ 307.268711][ T9764] kexec: Could not allocate control_code_buffer [ 308.160970][ T9794] netlink: 4 bytes leftover after parsing attributes in process `syz.0.813'. [ 311.110112][ T9855] FAULT_INJECTION: forcing a failure. [ 311.110112][ T9855] name failslab, interval 1, probability 0, space 0, times 0 [ 311.124296][ T9855] CPU: 0 UID: 0 PID: 9855 Comm: syz.1.828 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 311.124330][ T9855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 311.124343][ T9855] Call Trace: [ 311.124351][ T9855] [ 311.124361][ T9855] dump_stack_lvl+0x16c/0x1f0 [ 311.124398][ T9855] should_fail_ex+0x512/0x640 [ 311.124434][ T9855] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 311.124470][ T9855] should_failslab+0xc2/0x120 [ 311.124493][ T9855] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 311.124530][ T9855] ? getname_flags.part.0+0x48/0x540 [ 311.124563][ T9855] getname_flags.part.0+0x48/0x540 [ 311.124594][ T9855] getname_flags+0x93/0xf0 [ 311.124627][ T9855] do_sys_openat2+0xb8/0x1d0 [ 311.124654][ T9855] ? __pfx_do_sys_openat2+0x10/0x10 [ 311.124693][ T9855] __x64_sys_openat+0x174/0x210 [ 311.124718][ T9855] ? __pfx___x64_sys_openat+0x10/0x10 [ 311.124746][ T9855] ? rcu_is_watching+0x12/0xc0 [ 311.124784][ T9855] do_syscall_64+0xcd/0x260 [ 311.124821][ T9855] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 311.124847][ T9855] RIP: 0033:0x7fb6c458d169 [ 311.124872][ T9855] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 311.124893][ T9855] RSP: 002b:00007fb6c23f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 311.124917][ T9855] RAX: ffffffffffffffda RBX: 00007fb6c47a5fa0 RCX: 00007fb6c458d169 [ 311.124934][ T9855] RDX: 0000000000200000 RSI: 00002000000000c0 RDI: ffffffffffffff9c [ 311.124950][ T9855] RBP: 00007fb6c460e990 R08: 0000000000000000 R09: 0000000000000000 [ 311.124966][ T9855] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 311.124980][ T9855] R13: 0000000000000000 R14: 00007fb6c47a5fa0 R15: 00007fff04c227c8 [ 311.125012][ T9855] [ 312.103268][ T9861] CIFS: VFS: Invalid SecurityFlags: 0x00 [ 312.301248][ T9843] kexec: Could not allocate control_code_buffer [ 313.424308][ T9878] synth uevent: /module/qat_c62x: unknown uevent action string [ 313.447882][ T9878] netlink: 80 bytes leftover after parsing attributes in process `syz.0.833'. [ 316.122706][ T9934] netlink: 32 bytes leftover after parsing attributes in process `syz.1.844'. [ 317.241633][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.249918][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.261239][ T5849] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 317.655757][ T9920] kexec: Could not allocate control_code_buffer [ 319.109707][ T9974] openvswitch: netlink: Invalid MD length 0 for MD type 0 [ 319.143926][ T9974] FAULT_INJECTION: forcing a failure. [ 319.143926][ T9974] name failslab, interval 1, probability 0, space 0, times 0 [ 319.196275][ T9974] CPU: 1 UID: 0 PID: 9974 Comm: syz.1.854 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 319.196315][ T9974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 319.196330][ T9974] Call Trace: [ 319.196339][ T9974] [ 319.196348][ T9974] dump_stack_lvl+0x16c/0x1f0 [ 319.196403][ T9974] should_fail_ex+0x512/0x640 [ 319.196429][ T9974] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 319.196470][ T9974] should_failslab+0xc2/0x120 [ 319.196493][ T9974] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 319.196531][ T9974] ? snd_timer_instance_new+0x65/0x2e0 [ 319.196572][ T9974] kstrdup+0x53/0x100 [ 319.196598][ T9974] snd_timer_instance_new+0x65/0x2e0 [ 319.196633][ T9974] snd_seq_timer_open+0x1cc/0x5e0 [ 319.196666][ T9974] ? __pfx_snd_seq_timer_open+0x10/0x10 [ 319.196701][ T9974] ? find_held_lock+0x2b/0x80 [ 319.196736][ T9974] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 319.196767][ T9974] ? lockdep_hardirqs_on+0x7c/0x110 [ 319.196798][ T9974] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 319.196834][ T9974] queue_use+0xe3/0x250 [ 319.196859][ T9974] snd_seq_queue_alloc+0x2e5/0x550 [ 319.196891][ T9974] snd_seq_ioctl_create_queue+0xa9/0x380 [ 319.196926][ T9974] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 319.196965][ T9974] alloc_seq_queue+0xda/0x180 [ 319.197001][ T9974] ? __pfx_alloc_seq_queue+0x10/0x10 [ 319.197054][ T9974] ? mark_held_locks+0x49/0x80 [ 319.197089][ T9974] ? _raw_spin_unlock_irq+0x23/0x50 [ 319.197121][ T9974] snd_seq_oss_open+0x38c/0xa20 [ 319.197163][ T9974] odev_open+0x6f/0x90 [ 319.197194][ T9974] ? __pfx_odev_open+0x10/0x10 [ 319.197225][ T9974] soundcore_open+0x409/0x580 [ 319.197261][ T9974] ? __pfx_soundcore_open+0x10/0x10 [ 319.197293][ T9974] chrdev_open+0x231/0x6a0 [ 319.197327][ T9974] ? __pfx_apparmor_file_open+0x10/0x10 [ 319.197369][ T9974] ? __pfx_chrdev_open+0x10/0x10 [ 319.197410][ T9974] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 319.197451][ T9974] do_dentry_open+0x741/0x1c10 [ 319.197485][ T9974] ? __pfx_chrdev_open+0x10/0x10 [ 319.197527][ T9974] vfs_open+0x82/0x3f0 [ 319.197555][ T9974] path_openat+0x1e5e/0x2d40 [ 319.197602][ T9974] ? __pfx_path_openat+0x10/0x10 [ 319.197644][ T9974] do_filp_open+0x20b/0x470 [ 319.197679][ T9974] ? __pfx_do_filp_open+0x10/0x10 [ 319.197739][ T9974] ? alloc_fd+0x471/0x7d0 [ 319.197782][ T9974] do_sys_openat2+0x11b/0x1d0 [ 319.197806][ T9974] ? __pfx_do_sys_openat2+0x10/0x10 [ 319.197835][ T9974] ? __pfx___might_resched+0x10/0x10 [ 319.197876][ T9974] __x64_sys_openat+0x174/0x210 [ 319.197902][ T9974] ? __pfx___x64_sys_openat+0x10/0x10 [ 319.197931][ T9974] ? rcu_is_watching+0x12/0xc0 [ 319.197970][ T9974] do_syscall_64+0xcd/0x260 [ 319.198007][ T9974] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 319.198030][ T9974] RIP: 0033:0x7fb6c458d169 [ 319.198051][ T9974] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 319.198074][ T9974] RSP: 002b:00007fb6c23f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 319.198098][ T9974] RAX: ffffffffffffffda RBX: 00007fb6c47a5fa0 RCX: 00007fb6c458d169 [ 319.198115][ T9974] RDX: 0000000000000080 RSI: 0000200000000500 RDI: ffffffffffffff9c [ 319.198130][ T9974] RBP: 00007fb6c460e990 R08: 0000000000000000 R09: 0000000000000000 [ 319.198144][ T9974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 319.198158][ T9974] R13: 0000000000000000 R14: 00007fb6c47a5fa0 R15: 00007fff04c227c8 [ 319.198191][ T9974] [ 319.549543][ C1] vkms_vblank_simulate: vblank timer overrun [ 319.889418][ T9966] Invalid ELF header magic: != ELF [ 319.923788][ T9980] FAULT_INJECTION: forcing a failure. [ 319.923788][ T9980] name failslab, interval 1, probability 0, space 0, times 0 [ 319.984933][ T9980] CPU: 1 UID: 0 PID: 9980 Comm: syz.3.855 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 319.984969][ T9980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 319.984984][ T9980] Call Trace: [ 319.984993][ T9980] [ 319.985002][ T9980] dump_stack_lvl+0x16c/0x1f0 [ 319.985044][ T9980] should_fail_ex+0x512/0x640 [ 319.985073][ T9980] ? fs_reclaim_acquire+0xae/0x150 [ 319.985107][ T9980] should_failslab+0xc2/0x120 [ 319.985130][ T9980] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 319.985169][ T9980] ? security_inode_alloc+0x3b/0x2b0 [ 319.985200][ T9980] security_inode_alloc+0x3b/0x2b0 [ 319.985228][ T9980] inode_init_always_gfp+0xce4/0x1030 [ 319.985268][ T9980] alloc_inode+0x86/0x240 [ 319.985295][ T9980] path_from_stashed+0x2be/0xb00 [ 319.985337][ T9980] ? __pfx_path_from_stashed+0x10/0x10 [ 319.985376][ T9980] ? do_raw_read_unlock+0x44/0xe0 [ 319.985409][ T9980] ns_get_path+0x5f/0x80 [ 319.985442][ T9980] proc_ns_get_link+0x121/0x260 [ 319.985479][ T9980] ? __pfx_proc_ns_get_link+0x10/0x10 [ 319.985515][ T9980] ? __pfx___might_resched+0x10/0x10 [ 319.985560][ T9980] ? __pfx_proc_ns_get_link+0x10/0x10 [ 319.985598][ T9980] step_into+0x1b22/0x2270 [ 319.985638][ T9980] ? __pfx_step_into+0x10/0x10 [ 319.985669][ T9980] ? find_held_lock+0x2b/0x80 [ 319.985712][ T9980] path_openat+0x749/0x2d40 [ 319.985760][ T9980] ? __pfx_path_openat+0x10/0x10 [ 319.985803][ T9980] do_filp_open+0x20b/0x470 [ 319.985837][ T9980] ? __pfx_do_filp_open+0x10/0x10 [ 319.985897][ T9980] ? alloc_fd+0x471/0x7d0 [ 319.985939][ T9980] do_sys_openat2+0x11b/0x1d0 [ 319.985965][ T9980] ? __pfx_do_sys_openat2+0x10/0x10 [ 319.986003][ T9980] __x64_sys_openat+0x174/0x210 [ 319.986030][ T9980] ? __pfx___x64_sys_openat+0x10/0x10 [ 319.986057][ T9980] ? rcu_is_watching+0x12/0xc0 [ 319.986096][ T9980] do_syscall_64+0xcd/0x260 [ 319.986133][ T9980] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 319.986158][ T9980] RIP: 0033:0x7f7dc3f8bad0 [ 319.986179][ T9980] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 319.986205][ T9980] RSP: 002b:00007f7dc4e05f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 319.986229][ T9980] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f7dc3f8bad0 [ 319.986245][ T9980] RDX: 0000000000000002 RSI: 00007f7dc4e05fa0 RDI: 00000000ffffff9c [ 319.986261][ T9980] RBP: 00007f7dc4e05fa0 R08: 0000000000000000 R09: 0000000000000000 [ 319.986277][ T9980] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 319.986292][ T9980] R13: 0000000000000000 R14: 00007f7dc41a5fa0 R15: 00007ffd9c7c7778 [ 319.986325][ T9980] [ 321.918517][ T9991] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 321.955124][ T9991] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 321.971529][ T9991] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 322.005398][ T9991] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 323.069717][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout [ 323.945309][ T5849] Bluetooth: hci1: command 0x0c1a tx timeout [ 324.025957][ T5849] Bluetooth: hci3: command 0x0c1a tx timeout [ 324.032083][ T5855] Bluetooth: hci2: command 0x0c1a tx timeout [ 325.163870][T10016] ovs_: entered promiscuous mode [ 329.457139][T10128] netlink: 4 bytes leftover after parsing attributes in process `syz.1.878'. [ 329.469295][T10128] netlink: 25 bytes leftover after parsing attributes in process `syz.1.878'. [ 330.941305][T10156] usb usb36: usbfs: process 10156 (syz.0.885) did not claim interface 0 before use [ 330.968840][T10156] usb usb36: usbfs: interface 0 claimed by hub while 'syz.0.885' sets config #1 [ 332.307641][T10181] hub 8-0:1.0: USB hub found [ 332.466780][T10181] hub 8-0:1.0: 1 port detected [ 332.665368][T10200] netlink: 'syz.2.897': attribute type 4 has an invalid length. [ 332.683330][T10197] openvswitch: ovs_: Dropping previously announced user features [ 332.692529][T10200] netlink: 314 bytes leftover after parsing attributes in process `syz.2.897'. [ 333.683346][T10204] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 333.691214][T10204] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 333.705325][T10204] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 333.711478][T10204] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 333.895572][T10227] netlink: 'syz.3.906': attribute type 4 has an invalid length. [ 334.797968][T10238] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input9 [ 334.998010][T10247] netlink: 28 bytes leftover after parsing attributes in process `syz.1.910'. [ 335.085205][T10247] team0: Port device team_slave_0 removed [ 335.145115][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout [ 335.317718][T10250] FAULT_INJECTION: forcing a failure. [ 335.317718][T10250] name failslab, interval 1, probability 0, space 0, times 0 [ 335.363178][T10250] CPU: 1 UID: 0 PID: 10250 Comm: syz.3.912 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 335.363211][T10250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 335.363226][T10250] Call Trace: [ 335.363233][T10250] [ 335.363244][T10250] dump_stack_lvl+0x16c/0x1f0 [ 335.363283][T10250] should_fail_ex+0x512/0x640 [ 335.363311][T10250] ? __kmalloc_noprof+0xbf/0x510 [ 335.363346][T10250] ? __register_sysctl_table+0xea2/0x1900 [ 335.363373][T10250] should_failslab+0xc2/0x120 [ 335.363397][T10250] __kmalloc_noprof+0xd2/0x510 [ 335.363429][T10250] ? __register_sysctl_table+0xe8e/0x1900 [ 335.363464][T10250] __register_sysctl_table+0xea2/0x1900 [ 335.363497][T10250] ? __pfx___register_sysctl_table+0x10/0x10 [ 335.363523][T10250] ? is_module_address+0x69/0xf0 [ 335.363546][T10250] ? register_net_sysctl_sz+0x228/0x3e0 [ 335.363585][T10250] ? __asan_memcpy+0x3c/0x60 [ 335.363620][T10250] lowpan_frags_init_net+0x254/0x3a0 [ 335.363656][T10250] ? __pfx_lowpan_frags_init_net+0x10/0x10 [ 335.363692][T10250] ops_init+0x1df/0x5f0 [ 335.363739][T10250] setup_net+0x21e/0x850 [ 335.363778][T10250] ? __pfx_setup_net+0x10/0x10 [ 335.363810][T10250] ? lockdep_init_map_type+0x5c/0x280 [ 335.363834][T10250] ? __pfx_down_read_killable+0x10/0x10 [ 335.363862][T10250] ? debug_mutex_init+0x37/0x70 [ 335.363896][T10250] copy_net_ns+0x2a6/0x5f0 [ 335.363933][T10250] create_new_namespaces+0x3ea/0xad0 [ 335.363974][T10250] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 335.364010][T10250] ksys_unshare+0x45b/0xa40 [ 335.364046][T10250] ? __pfx_ksys_unshare+0x10/0x10 [ 335.364079][T10250] ? xfd_validate_state+0x5d/0x180 [ 335.364107][T10250] ? rcu_is_watching+0x12/0xc0 [ 335.364143][T10250] __x64_sys_unshare+0x31/0x40 [ 335.364177][T10250] do_syscall_64+0xcd/0x260 [ 335.364213][T10250] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 335.364238][T10250] RIP: 0033:0x7f7dc3f8d169 [ 335.364259][T10250] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 335.364282][T10250] RSP: 002b:00007f7dc4e06038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 335.364306][T10250] RAX: ffffffffffffffda RBX: 00007f7dc41a5fa0 RCX: 00007f7dc3f8d169 [ 335.364322][T10250] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 335.364337][T10250] RBP: 00007f7dc400e990 R08: 0000000000000000 R09: 0000000000000000 [ 335.364351][T10250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 335.364364][T10250] R13: 0000000000000000 R14: 00007f7dc41a5fa0 R15: 00007ffd9c7c7778 [ 335.364397][T10250] [ 335.364408][T10250] sysctl could not get directory: /net/ieee802154 -12 [ 335.706466][ T5849] Bluetooth: hci1: command 0x0c1a tx timeout [ 335.786002][ T5849] Bluetooth: hci3: command 0x0c1a tx timeout [ 335.786018][ T5855] Bluetooth: hci2: command 0x0c1a tx timeout [ 336.056322][T10258] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 336.085620][T10258] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 336.098932][T10258] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 336.122597][T10258] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 336.681226][T10287] program syz.0.926 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 337.785086][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout [ 338.105421][ T5849] Bluetooth: hci1: command 0x0c1a tx timeout [ 338.185011][ T5849] Bluetooth: hci3: command 0x0c1a tx timeout [ 338.191086][ T5849] Bluetooth: hci2: command 0x0c1a tx timeout [ 339.070746][T10316] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 339.077370][T10316] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 339.083634][T10316] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 339.090047][T10316] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 340.422686][T10338] vivid-003: ================= START STATUS ================= [ 340.445103][T10338] vivid-003: Radio HW Seek Mode: Bounded [ 340.451283][T10338] vivid-003: Radio Programmable HW Seek: false [ 340.480068][T10338] vivid-003: RDS Rx I/O Mode: Block I/O [ 340.489934][T10338] vivid-003: Generate RBDS Instead of RDS: false [ 340.502336][T10338] vivid-003: RDS Reception: true [ 340.512788][T10338] vivid-003: RDS Program Type: 0 inactive [ 340.526359][T10338] vivid-003: RDS PS Name: inactive [ 340.531947][T10338] vivid-003: RDS Radio Text: inactive [ 340.569036][T10338] vivid-003: RDS Traffic Announcement: false inactive [ 340.584997][ T5859] Bluetooth: hci0: command 0x0c1a tx timeout [ 340.588524][T10338] vivid-003: RDS Traffic Program: false inactive [ 340.679618][T10338] vivid-003: RDS Music: false inactive [ 340.708529][T10338] vivid-003: ================== END STATUS ================== [ 341.026442][T10373] netlink: 'syz.0.938': attribute type 5 has an invalid length. [ 341.034358][T10373] netlink: 314 bytes leftover after parsing attributes in process `syz.0.938'. [ 341.146452][ T5859] Bluetooth: hci3: command 0x0c1a tx timeout [ 341.146787][ T5849] Bluetooth: hci2: command 0x0c1a tx timeout [ 341.152500][ T5859] Bluetooth: hci1: command 0x0c1a tx timeout [ 342.134677][T10383] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 342.161659][T10383] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 342.179095][T10383] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 342.215535][T10383] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 343.795864][ T5855] Bluetooth: hci0: command 0x0c1a tx timeout [ 344.189646][ T5855] Bluetooth: hci1: command 0x0c1a tx timeout [ 344.265127][ T5855] Bluetooth: hci3: command 0x0c1a tx timeout [ 344.271929][ T5855] Bluetooth: hci2: command 0x0c1a tx timeout [ 345.104065][T10428] FAULT_INJECTION: forcing a failure. [ 345.104065][T10428] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 345.104091][T10428] CPU: 0 UID: 0 PID: 10428 Comm: syz.1.952 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 345.104107][T10428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 345.104116][T10428] Call Trace: [ 345.104121][T10428] [ 345.104126][T10428] dump_stack_lvl+0x16c/0x1f0 [ 345.104150][T10428] should_fail_ex+0x512/0x640 [ 345.104169][T10428] should_fail_alloc_page+0xe7/0x130 [ 345.104184][T10428] prepare_alloc_pages+0x3c2/0x610 [ 345.104204][T10428] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 345.104227][T10428] ? stack_trace_save+0x8e/0xc0 [ 345.104251][T10428] ? __lock_acquire+0xaa4/0x1ba0 [ 345.104271][T10428] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 345.104293][T10428] ? fb_var_to_videomode+0x4c9/0x690 [ 345.104312][T10428] ? __pfx_fb_match_mode+0x10/0x10 [ 345.104329][T10428] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 345.104347][T10428] ? lockdep_hardirqs_on+0x7c/0x110 [ 345.104367][T10428] ? vc_allocate+0x489/0x880 [ 345.104385][T10428] __alloc_pages_noprof+0xb/0x1b0 [ 345.104404][T10428] ___kmalloc_large_node+0x82/0x1e0 [ 345.104420][T10428] ? con_is_visible+0x65/0x150 [ 345.104437][T10428] __kmalloc_large_node_noprof+0x1c/0x70 [ 345.104455][T10428] __kmalloc_noprof.cold+0xc/0x61 [ 345.104477][T10428] vc_allocate+0x489/0x880 [ 345.104497][T10428] ? __pfx_vc_allocate+0x10/0x10 [ 345.104523][T10428] con_install+0xa1/0x600 [ 345.104543][T10428] ? __pfx_con_install+0x10/0x10 [ 345.104566][T10428] ? __pfx_con_install+0x10/0x10 [ 345.104586][T10428] tty_init_dev.part.0+0x99/0x500 [ 345.104601][T10428] tty_open+0xa50/0xf90 [ 345.104618][T10428] ? __pfx_tty_open+0x10/0x10 [ 345.104631][T10428] ? chrdev_open+0x10b/0x6a0 [ 345.104653][T10428] ? __pfx_tty_open+0x10/0x10 [ 345.104665][T10428] chrdev_open+0x231/0x6a0 [ 345.104684][T10428] ? __pfx_apparmor_file_open+0x10/0x10 [ 345.104701][T10428] ? __pfx_chrdev_open+0x10/0x10 [ 345.104722][T10428] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 345.104744][T10428] do_dentry_open+0x741/0x1c10 [ 345.104763][T10428] ? __pfx_chrdev_open+0x10/0x10 [ 345.104786][T10428] vfs_open+0x82/0x3f0 [ 345.104802][T10428] path_openat+0x1e5e/0x2d40 [ 345.104828][T10428] ? __pfx_path_openat+0x10/0x10 [ 345.104871][T10428] do_filp_open+0x20b/0x470 [ 345.104903][T10428] ? __pfx_do_filp_open+0x10/0x10 [ 345.104953][T10428] ? alloc_fd+0x471/0x7d0 [ 345.104979][T10428] do_sys_openat2+0x11b/0x1d0 [ 345.104993][T10428] ? __pfx_do_sys_openat2+0x10/0x10 [ 345.105015][T10428] __x64_sys_openat+0x174/0x210 [ 345.105030][T10428] ? __pfx___x64_sys_openat+0x10/0x10 [ 345.105045][T10428] ? rcu_is_watching+0x12/0xc0 [ 345.105067][T10428] do_syscall_64+0xcd/0x260 [ 345.105088][T10428] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 345.105102][T10428] RIP: 0033:0x7fb6c458d169 [ 345.105116][T10428] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 345.105130][T10428] RSP: 002b:00007fb6c23f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 345.105143][T10428] RAX: ffffffffffffffda RBX: 00007fb6c47a5fa0 RCX: 00007fb6c458d169 [ 345.105152][T10428] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 345.105160][T10428] RBP: 00007fb6c460e990 R08: 0000000000000000 R09: 0000000000000000 [ 345.105168][T10428] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000 [ 345.105176][T10428] R13: 0000000000000000 R14: 00007fb6c47a5fa0 R15: 00007fff04c227c8 [ 345.105195][T10428] [ 348.774716][T10495] netlink: 93 bytes leftover after parsing attributes in process `syz.2.966'. [ 349.706916][T10505] FAULT_INJECTION: forcing a failure. [ 349.706916][T10505] name failslab, interval 1, probability 0, space 0, times 0 [ 349.755152][T10505] CPU: 0 UID: 0 PID: 10505 Comm: syz.0.968 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 349.755190][T10505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 349.755204][T10505] Call Trace: [ 349.755213][T10505] [ 349.755223][T10505] dump_stack_lvl+0x16c/0x1f0 [ 349.755266][T10505] should_fail_ex+0x512/0x640 [ 349.755291][T10505] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 349.755330][T10505] should_failslab+0xc2/0x120 [ 349.755355][T10505] __kmalloc_cache_noprof+0x6a/0x3e0 [ 349.755388][T10505] ? ccid_get_builtin_ccids+0x79/0x200 [ 349.755431][T10505] ccid_get_builtin_ccids+0x79/0x200 [ 349.755472][T10505] dccp_feat_init+0x361/0x800 [ 349.755502][T10505] ? __pfx_dccp_feat_init+0x10/0x10 [ 349.755529][T10505] ? __pfx_dccp_keepalive_timer+0x10/0x10 [ 349.755584][T10505] ? lockdep_init_map_type+0x5c/0x280 [ 349.755607][T10505] ? do_init_timer+0xc9/0x110 [ 349.755637][T10505] ? __pfx_dccp_keepalive_timer+0x10/0x10 [ 349.755667][T10505] ? __pfx_dccp_delack_timer+0x10/0x10 [ 349.755704][T10505] dccp_init_sock+0x327/0x420 [ 349.755732][T10505] ? __pfx_dccp_v4_init_sock+0x10/0x10 [ 349.755761][T10505] dccp_v4_init_sock+0x1f/0xa0 [ 349.755786][T10505] ? __pfx_dccp_v4_init_sock+0x10/0x10 [ 349.755814][T10505] inet_create+0x936/0x1090 [ 349.755840][T10505] ? inet_create+0x93/0x1090 [ 349.755870][T10505] __sock_create+0x335/0x8d0 [ 349.755902][T10505] inet_ctl_sock_create+0x94/0x230 [ 349.755941][T10505] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 349.755986][T10505] ? __pfx_dccp_v4_init_net+0x10/0x10 [ 349.756013][T10505] dccp_v4_init_net+0x63/0x90 [ 349.756047][T10505] ops_init+0x1df/0x5f0 [ 349.756087][T10505] setup_net+0x21e/0x850 [ 349.756122][T10505] ? __pfx_setup_net+0x10/0x10 [ 349.756152][T10505] ? lockdep_init_map_type+0x5c/0x280 [ 349.756176][T10505] ? __pfx_down_read_killable+0x10/0x10 [ 349.756205][T10505] ? debug_mutex_init+0x37/0x70 [ 349.756239][T10505] copy_net_ns+0x2a6/0x5f0 [ 349.756279][T10505] create_new_namespaces+0x3ea/0xad0 [ 349.756321][T10505] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 349.756359][T10505] ksys_unshare+0x45b/0xa40 [ 349.756396][T10505] ? __pfx_ksys_unshare+0x10/0x10 [ 349.756431][T10505] ? xfd_validate_state+0x5d/0x180 [ 349.756460][T10505] ? rcu_is_watching+0x12/0xc0 [ 349.756496][T10505] __x64_sys_unshare+0x31/0x40 [ 349.756530][T10505] do_syscall_64+0xcd/0x260 [ 349.756578][T10505] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 349.756604][T10505] RIP: 0033:0x7f5fe458d169 [ 349.756626][T10505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 349.756649][T10505] RSP: 002b:00007f5fe533e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 349.756673][T10505] RAX: ffffffffffffffda RBX: 00007f5fe47a6080 RCX: 00007f5fe458d169 [ 349.756691][T10505] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 349.756704][T10505] RBP: 00007f5fe460e990 R08: 0000000000000000 R09: 0000000000000000 [ 349.756717][T10505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 349.756729][T10505] R13: 0000000000000000 R14: 00007f5fe47a6080 R15: 00007fff514518f8 [ 349.756757][T10505] [ 351.643310][T10524] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 351.649764][T10524] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 351.656714][T10524] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 351.663548][T10524] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 353.154989][ T5855] Bluetooth: hci0: command 0x0c1a tx timeout [ 353.715841][ T5855] Bluetooth: hci3: command 0x0c1a tx timeout [ 353.715855][ T5849] Bluetooth: hci2: command 0x0c1a tx timeout [ 353.715896][ T5849] Bluetooth: hci1: command 0x0c1a tx timeout [ 354.184264][T10597] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 354.218267][T10597] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 354.225279][T10597] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 354.232205][T10597] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 355.972869][T10645] warning: `syz.3.996' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 356.185698][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout [ 356.244647][T10652] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 356.270435][ T5849] Bluetooth: hci3: command 0x0c1a tx timeout [ 356.276663][ T5859] Bluetooth: hci2: command 0x0c1a tx timeout [ 356.282904][ T5859] Bluetooth: hci1: command 0x0c1a tx timeout [ 356.299016][T10652] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 356.345362][T10652] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 356.351623][T10652] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 357.317077][T10669] netlink: 206 bytes leftover after parsing attributes in process `syz.2.1002'. [ 357.368894][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.376152][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.382743][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.389389][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.396049][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.402592][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.409194][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.415834][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.423206][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.430293][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.437097][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.443686][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.450530][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.458688][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.465363][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.471950][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.478730][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.485368][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.492662][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.499368][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.505924][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.512942][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.519642][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.526293][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.532915][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.539998][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.546553][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.553148][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.559661][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.566181][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.572752][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.579315][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.585861][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.592369][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.598959][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.605480][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.611957][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.618469][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.625016][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.631553][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.638055][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.644534][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.651054][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.657548][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.664041][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.670554][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.677081][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.683677][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.690307][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.696846][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.703334][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.709864][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.716375][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.722880][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.729520][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.736131][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.742627][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.749149][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.755649][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.762117][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.768646][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.775127][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.781637][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.788149][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.797309][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.803808][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.810311][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.816831][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.823307][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.829826][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.836343][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.842820][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.849333][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.855810][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.862297][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.868837][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.875408][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.881899][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.888408][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.894920][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.901448][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.907973][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.914565][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.921100][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.927593][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.934091][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.940598][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.947121][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.953763][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.960273][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.966818][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.973311][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.979840][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.986323][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.992791][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 357.999304][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.005820][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.012300][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.018829][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.025329][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.031838][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.038326][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.044794][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.051293][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.057783][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.064268][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.070765][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.077256][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.083742][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.090240][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.096746][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.103209][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.109694][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.116206][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.122672][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.129244][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.135786][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.142267][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.148827][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.155347][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.161919][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.168594][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.175212][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.181740][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.188305][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.194820][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.201438][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.207982][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.264972][ T5859] Bluetooth: hci0: command 0x0c1a tx timeout [ 358.345409][ T5859] Bluetooth: hci1: command 0x0c1a tx timeout [ 358.430206][ T5859] Bluetooth: hci3: command 0x0c1a tx timeout [ 358.430220][ T5849] Bluetooth: hci2: command 0x0c1a tx timeout [ 359.466928][ C1] vcan0: j1939_tp_rxtimer: 0xffff88803b748c00: rx timeout, send abort [ 359.975206][ C1] vcan0: j1939_tp_rxtimer: 0xffff88803b748c00: abort rx timeout. Force session deactivation [ 361.344964][T10718] FAULT_INJECTION: forcing a failure. [ 361.344964][T10718] name failslab, interval 1, probability 0, space 0, times 0 [ 361.392797][T10718] CPU: 0 UID: 0 PID: 10718 Comm: syz.0.1014 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 361.392832][T10718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 361.392846][T10718] Call Trace: [ 361.392854][T10718] [ 361.392864][T10718] dump_stack_lvl+0x16c/0x1f0 [ 361.392902][T10718] should_fail_ex+0x512/0x640 [ 361.392927][T10718] ? __kvmalloc_node_noprof+0x122/0x600 [ 361.392963][T10718] should_failslab+0xc2/0x120 [ 361.392986][T10718] __kvmalloc_node_noprof+0x135/0x600 [ 361.393017][T10718] ? __pfx___mutex_lock+0x10/0x10 [ 361.393049][T10718] ? traverse.part.0.constprop.0+0x392/0x640 [ 361.393087][T10718] ? traverse.part.0.constprop.0+0x392/0x640 [ 361.393117][T10718] traverse.part.0.constprop.0+0x392/0x640 [ 361.393158][T10718] seq_read_iter+0x932/0x12c0 [ 361.393190][T10718] ? aa_file_perm+0x4d6/0xfb0 [ 361.393222][T10718] ? __pfx__kstrtoull+0x10/0x10 [ 361.393260][T10718] seq_read+0x39e/0x4e0 [ 361.393291][T10718] ? __pfx_seq_read+0x10/0x10 [ 361.393320][T10718] ? __lock_acquire+0x5ca/0x1ba0 [ 361.393353][T10718] ? copy_iovec_from_user+0x138/0x170 [ 361.393384][T10718] ? iovec_from_user+0xbb/0x140 [ 361.393434][T10718] full_proxy_read+0x13c/0x200 [ 361.393461][T10718] ? __pfx_full_proxy_read+0x10/0x10 [ 361.393486][T10718] vfs_readv+0x6bc/0x8a0 [ 361.393513][T10718] ? get_pid_task+0x106/0x250 [ 361.393544][T10718] ? __pfx_vfs_readv+0x10/0x10 [ 361.393575][T10718] ? find_held_lock+0x2b/0x80 [ 361.393623][T10718] ? __fget_files+0x20e/0x3c0 [ 361.393664][T10718] ? do_preadv+0x1af/0x270 [ 361.393690][T10718] do_preadv+0x1af/0x270 [ 361.393720][T10718] ? __pfx_do_preadv+0x10/0x10 [ 361.393746][T10718] ? rcu_is_watching+0x12/0xc0 [ 361.393783][T10718] do_syscall_64+0xcd/0x260 [ 361.393819][T10718] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 361.393843][T10718] RIP: 0033:0x7f5fe458d169 [ 361.393862][T10718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 361.393884][T10718] RSP: 002b:00007f5fe535f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 361.393907][T10718] RAX: ffffffffffffffda RBX: 00007f5fe47a5fa0 RCX: 00007f5fe458d169 [ 361.393923][T10718] RDX: 0000000000000002 RSI: 0000200000002fc0 RDI: 0000000000000003 [ 361.393937][T10718] RBP: 00007f5fe535f090 R08: 0000000000000019 R09: 0000000000000000 [ 361.393951][T10718] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001 [ 361.393965][T10718] R13: 0000000000000000 R14: 00007f5fe47a5fa0 R15: 00007fff514518f8 [ 361.393997][T10718] [ 363.761782][T10748] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1021'. [ 363.836712][T10745] netlink: 93 bytes leftover after parsing attributes in process `syz.0.1021'. [ 366.465047][T10794] FAULT_INJECTION: forcing a failure. [ 366.465047][T10794] name failslab, interval 1, probability 0, space 0, times 0 [ 367.035125][T10794] CPU: 1 UID: 0 PID: 10794 Comm: syz.1.1026 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 367.035155][T10794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 367.035167][T10794] Call Trace: [ 367.035174][T10794] [ 367.035182][T10794] dump_stack_lvl+0x16c/0x1f0 [ 367.035216][T10794] should_fail_ex+0x512/0x640 [ 367.035238][T10794] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 367.035268][T10794] should_failslab+0xc2/0x120 [ 367.035286][T10794] __kmalloc_cache_noprof+0x6a/0x3e0 [ 367.035310][T10794] ? trace_kmalloc+0x2b/0xd0 [ 367.035327][T10794] ? __kvmalloc_node_noprof+0x296/0x600 [ 367.035352][T10794] ? gpiolib_seq_start+0x69/0x270 [ 367.035380][T10794] ? traverse.part.0.constprop.0+0x392/0x640 [ 367.035410][T10794] gpiolib_seq_start+0x69/0x270 [ 367.035440][T10794] traverse.part.0.constprop.0+0xac/0x640 [ 367.035476][T10794] seq_read_iter+0x932/0x12c0 [ 367.035503][T10794] ? aa_file_perm+0x4d6/0xfb0 [ 367.035529][T10794] ? __pfx__kstrtoull+0x10/0x10 [ 367.035563][T10794] seq_read+0x39e/0x4e0 [ 367.035595][T10794] ? __pfx_seq_read+0x10/0x10 [ 367.035618][T10794] ? __lock_acquire+0x5ca/0x1ba0 [ 367.035647][T10794] ? copy_iovec_from_user+0x138/0x170 [ 367.035674][T10794] ? iovec_from_user+0xbb/0x140 [ 367.035713][T10794] full_proxy_read+0x13c/0x200 [ 367.035735][T10794] ? __pfx_full_proxy_read+0x10/0x10 [ 367.035755][T10794] vfs_readv+0x6bc/0x8a0 [ 367.035777][T10794] ? get_pid_task+0x106/0x250 [ 367.035804][T10794] ? __pfx_vfs_readv+0x10/0x10 [ 367.035830][T10794] ? find_held_lock+0x2b/0x80 [ 367.035873][T10794] ? __fget_files+0x20e/0x3c0 [ 367.035908][T10794] ? do_preadv+0x1af/0x270 [ 367.035929][T10794] do_preadv+0x1af/0x270 [ 367.035954][T10794] ? __pfx_do_preadv+0x10/0x10 [ 367.035975][T10794] ? rcu_is_watching+0x12/0xc0 [ 367.036007][T10794] do_syscall_64+0xcd/0x260 [ 367.036037][T10794] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 367.036056][T10794] RIP: 0033:0x7fb6c458d169 [ 367.036072][T10794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 367.036090][T10794] RSP: 002b:00007fb6c23f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 367.036109][T10794] RAX: ffffffffffffffda RBX: 00007fb6c47a5fa0 RCX: 00007fb6c458d169 [ 367.036121][T10794] RDX: 0000000000000002 RSI: 0000200000002fc0 RDI: 0000000000000003 [ 367.036133][T10794] RBP: 00007fb6c23f6090 R08: 0000000000000019 R09: 0000000000000000 [ 367.036148][T10794] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001 [ 367.036159][T10794] R13: 0000000000000000 R14: 00007fb6c47a5fa0 R15: 00007fff04c227c8 [ 367.036188][T10794] [ 367.163406][T10794] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI [ 367.322830][T10794] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 367.331869][T10794] CPU: 0 UID: 0 PID: 10794 Comm: syz.1.1026 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 367.342201][T10794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 367.352540][T10794] RIP: 0010:gpiolib_seq_stop+0x4c/0xe0 [ 367.358489][T10794] Code: 48 c1 ea 03 80 3c 02 00 0f 85 98 00 00 00 48 8b 9b e0 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 8d 7b 04 48 89 fa 48 c1 ea 03 <0f> b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 04 84 d2 75 60 8b [ 367.378569][T10794] RSP: 0018:ffffc90003b579a0 EFLAGS: 00010247 [ 367.384655][T10794] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffff888042742268 [ 367.392628][T10794] RDX: 0000000000000000 RSI: ffffffff8503f1ae RDI: 0000000000000004 [ 367.400598][T10794] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffffff821fca19 [ 367.408666][T10794] R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff8bf841c0 [ 367.416636][T10794] R13: 0000000000000000 R14: 0000000000000000 R15: ffff888042742268 [ 367.424882][T10794] FS: 00007fb6c23f66c0(0000) GS:ffff8881249b9000(0000) knlGS:0000000000000000 [ 367.433930][T10794] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 367.440529][T10794] CR2: 0000001b313f3ff8 CR3: 0000000037f34000 CR4: 00000000003526f0 [ 367.448664][T10794] Call Trace: [ 367.451967][T10794] [ 367.454905][T10794] traverse.part.0.constprop.0+0x2bd/0x640 [ 367.460750][T10794] seq_read_iter+0x932/0x12c0 [ 367.465484][T10794] ? aa_file_perm+0x4d6/0xfb0 [ 367.470190][T10794] ? __pfx__kstrtoull+0x10/0x10 [ 367.475060][T10794] seq_read+0x39e/0x4e0 [ 367.479233][T10794] ? __pfx_seq_read+0x10/0x10 [ 367.483934][T10794] ? __lock_acquire+0x5ca/0x1ba0 [ 367.488901][T10794] ? copy_iovec_from_user+0x138/0x170 [ 367.494279][T10794] ? iovec_from_user+0xbb/0x140 [ 367.499255][T10794] full_proxy_read+0x13c/0x200 [ 367.504028][T10794] ? __pfx_full_proxy_read+0x10/0x10 [ 367.509336][T10794] vfs_readv+0x6bc/0x8a0 [ 367.513584][T10794] ? get_pid_task+0x106/0x250 [ 367.518263][T10794] ? __pfx_vfs_readv+0x10/0x10 [ 367.523063][T10794] ? find_held_lock+0x2b/0x80 [ 367.527782][T10794] ? __fget_files+0x20e/0x3c0 [ 367.532509][T10794] ? do_preadv+0x1af/0x270 [ 367.537457][T10794] do_preadv+0x1af/0x270 [ 367.541717][T10794] ? __pfx_do_preadv+0x10/0x10 [ 367.547285][T10794] ? rcu_is_watching+0x12/0xc0 [ 367.552323][T10794] do_syscall_64+0xcd/0x260 [ 367.556940][T10794] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 367.563008][T10794] RIP: 0033:0x7fb6c458d169 [ 367.567431][T10794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 367.587050][T10794] RSP: 002b:00007fb6c23f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 367.595493][T10794] RAX: ffffffffffffffda RBX: 00007fb6c47a5fa0 RCX: 00007fb6c458d169 [ 367.603481][T10794] RDX: 0000000000000002 RSI: 0000200000002fc0 RDI: 0000000000000003 [ 367.611467][T10794] RBP: 00007fb6c23f6090 R08: 0000000000000019 R09: 0000000000000000 [ 367.619522][T10794] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001 [ 367.628805][T10794] R13: 0000000000000000 R14: 00007fb6c47a5fa0 R15: 00007fff04c227c8 [ 367.636788][T10794] [ 367.639863][T10794] Modules linked in: [ 367.645514][T10794] ---[ end trace 0000000000000000 ]--- [ 367.759715][T10794] RIP: 0010:gpiolib_seq_stop+0x4c/0xe0 [ 367.774906][T10794] Code: 48 c1 ea 03 80 3c 02 00 0f 85 98 00 00 00 48 8b 9b e0 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 8d 7b 04 48 89 fa 48 c1 ea 03 <0f> b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 04 84 d2 75 60 8b [ 367.810358][T10794] RSP: 0018:ffffc90003b579a0 EFLAGS: 00010247 [ 367.830199][T10794] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffff888042742268 [ 367.938535][T10794] RDX: 0000000000000000 RSI: ffffffff8503f1ae RDI: 0000000000000004 [ 367.976767][T10794] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffffff821fca19 [ 368.005434][T10794] R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff8bf841c0 [ 368.014014][T10794] R13: 0000000000000000 R14: 0000000000000000 R15: ffff888042742268 [ 368.056185][T10794] FS: 00007fb6c23f66c0(0000) GS:ffff888124ab9000(0000) knlGS:0000000000000000 [ 368.076438][T10794] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 368.083173][T10794] CR2: 00007ffcb9726fe8 CR3: 0000000037f34000 CR4: 00000000003526f0 [ 368.136175][T10794] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 368.144297][T10794] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 368.194906][T10794] Kernel panic - not syncing: Fatal exception [ 368.201297][T10794] Kernel Offset: disabled [ 368.205748][T10794] Rebooting in 86400 seconds..