last executing test programs: 11.846987429s ago: executing program 1 (id=1266): syz_genetlink_get_family_id$auto_gtp(0x0, 0xffffffffffffffff) socket(0xa, 0x2, 0x73) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) setsockopt$auto(0x4, 0x29, 0x2a, 0x0, 0x200577) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x540b, 0xfffffffffffffffd) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x801, 0x0) connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2711}, 0x51) shutdown$auto(0x200000003, 0x0) socket(0xf, 0x3, 0x2) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) getsockopt$auto_SO_MARK(r1, 0xa36, 0x24, &(0x7f0000000040)='\x00', &(0x7f0000000080)=0x7fffffff) r2 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(r2, 0xc0603d06, 0x0) select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x3, 0xfff, 0x1, 0x948b, 0x3, 0x95f4da2a, 0xffffffffffffffff, 0x3, 0x62, 0x7, 0x7, 0x6d3f, 0x9, 0x4, 0x5]}, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x6, 0x1, 0xfffffffffffffff7, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000021, 0x7, 0x6d3e, 0x7fff, 0x2, 0x6]}, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000240), 0xd2082, 0x0) socket(0x1d, 0x2, 0x3) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) mprotect$auto(0x110c238000, 0x1, 0x3) madvise$auto(0x110c230000, 0x8031ca, 0x9) 9.091200563s ago: executing program 1 (id=1275): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0xd, 0x2020009, 0x5, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = socket(0x2, 0x3, 0xa) connect$auto(r0, &(0x7f00000000c0), 0x55) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x55) socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x90}, 0x20000081) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x4) socket(0x10, 0x3, 0x6) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x7ff, 0x9, 0x63, 0x0, 0x0, 0x0, 0x8, 0x200, 0x800000000100002, 0x40000406, 0x2, 0xc, 0x2, 0x11, 0x6, 0x7}) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}, 0x1, 0x0, 0x0, 0x2000c000}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xee46}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x9fe) ustat$auto(0x20000801, &(0x7f0000000000)={0xbff, 0x2, "be5705f65205", "064885ca64ad"}) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(r0, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000100)=ANY=[@ANYRESDEC], 0xa8}}, 0xc2) sigaltstack$auto(&(0x7f0000000080)={0x0, 0x80000002}, 0x0) 5.572147508s ago: executing program 1 (id=1289): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0xd, 0x2020009, 0x5, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = socket(0x2, 0x3, 0xa) connect$auto(r0, &(0x7f00000000c0), 0x55) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x55) socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) socket(0x10, 0x3, 0x6) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x7ff, 0x9, 0x63, 0x0, 0x0, 0x0, 0x8, 0x200, 0x800000000100002, 0x40000406, 0x2, 0xc, 0x2, 0x11, 0x6, 0x7}) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}, 0x1, 0x0, 0x0, 0x2000c000}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xee46}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x9fe) ustat$auto(0x20000801, &(0x7f0000000000)={0xbff, 0x2, "be5705f65205", "064885ca64ad"}) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(r0, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000100)=ANY=[@ANYRESDEC], 0xa8}}, 0xc2) sigaltstack$auto(&(0x7f0000000080)={0x0, 0x80000002}, 0x0) 4.858344912s ago: executing program 2 (id=1290): futex$auto(&(0x7f0000000000)=0x1, 0x5, 0x9, &(0x7f0000000040)={0x2, 0x800000}, 0x0, 0x806) 4.771324149s ago: executing program 3 (id=1291): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0xa, 0x6, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55) unshare$auto(0x40000080) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, 0x0, 0x8080) mmap$auto(0x0, 0x2020009, 0x9, 0x800eb1, 0xfffffffffffffffa, 0x2) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NCSI_CMD_PKG_INFO(r0, 0x0, 0x44088) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r1 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x40400, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(r1, 0x43403d05, 0x0) madvise$auto(0x0, 0x53, 0x9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mremap$auto(0x1fc000, 0xfee0, 0x3fd6, 0x3, 0xfffff000) close_range$auto(0x2, 0x8, 0x0) migrate_pages$auto(0x0, 0x8, 0x0, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x80502, 0x0) ioperm$auto(0x7, 0x86, 0x40006) socket$nl_generic(0x10, 0x3, 0x10) statmount$auto(0x0, 0x0, 0x9, 0xd) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_OVS_DP_CMD_DEL(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20040c04}, 0xc0804) 4.560636772s ago: executing program 2 (id=1292): open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) rseq$auto(&(0x7f0000000080)={0x9, 0x8, 0x0, 0x7, 0xffffffff, 0x2, "24229ba6405fe4fc8b79b54d7e17"}, 0x7ffd, 0xfffffff4, 0x6) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) open(0x0, 0xeee00, 0x31) mmap$auto(0x0, 0x5, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) open(0x0, 0x1e1401, 0xe5) r0 = gettid() prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) madvise$auto(0x0, 0x7d, 0xd) rt_sigtimedwait$auto(&(0x7f0000000000)={0x86e}, 0x0, 0x0, 0x8) tkill$auto(r0, 0x7) write$auto(0x3, 0x0, 0x100082) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) mmap$auto(0x0, 0xc, 0xbc5, 0x13, 0x3, 0x8000) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) r1 = socket(0x5, 0x2, 0x73) getsockname$auto(r1, 0x0, &(0x7f0000000280)=0xaea) mlockall$auto(0x7) mmap$auto(0x0, 0x200004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) rseq$auto(0x0, 0x4, 0x0, 0x4) open(&(0x7f0000000000)='./file0\x00', 0x40440, 0x40) mmap$auto(0x9, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x3, 0x3a) ioctl$auto(0x4000000000000c8, 0x800454cf, 0x3) 4.550567168s ago: executing program 0 (id=1293): close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x18, 0x80000, 0x0) write$auto(r0, 0x0, 0x8000000000000001) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0001, 0x0) ioctl$auto(0x3, 0x40104d00, r1) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) shmctl$auto_SHM_INFO(0x7, 0xe, &(0x7f0000001080)={{0x5, 0x0, 0x0, 0xfffffff7, 0x2, 0x5, 0x6}, 0x400, 0x4, 0x1000, 0x1800000000000000, @raw=0x7, @raw=0x28e, 0x6, 0x0, 0x0, 0x0}) keyctl$auto(0x9, 0x72510000000, 0x0, r2, 0x4) socket(0x18, 0x2, 0x0) socket(0x2b, 0x1, 0x1) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffd]}, 0x0) (fail_nth: 7) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) setdomainname$auto(0x0, 0x4be) socket(0x22, 0x2, 0x1) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) prctl$auto(0x1000000003b, 0x1, 0x9, 0x5, 0x3) ioperm$auto(0x7, 0x6, 0x2) semop$auto(0x6, 0x0, 0x6730) close_range$auto(0x2, 0x8, 0x0) 3.691523617s ago: executing program 0 (id=1294): r0 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000580)='/dev/mtd0\x00', 0x1, 0x0) ioctl$auto_MEMERASE64(r0, 0x40104d14, &(0x7f0000000100)={0xfffffffffffffff9, 0xffffffffffffffff}) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/power/suspend_stats/last_failed_errno\x00', 0x8a080, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000001100)=""/4105, 0x1009) r2 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, 0x0, 0x180b01, 0x0) mmap$auto(0xffffffffffffffff, 0x40000c, 0x7ff, 0x9b72, 0xffffffffffffffff, 0x1000008001) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004c18}, 0x810) statmount$auto(0x0, 0x0, 0x9, 0xd) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x12bc00, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000040)=""/203, 0xcb) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="7d472dbd700049b5", @ANYRES32], 0x1c}, 0x1, 0x0, 0x0, 0x8}, 0x4000044) r4 = socket(0x10, 0x2, 0x4) sendmsg$auto_NFSD_CMD_THREADS_SET(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c72da808bf8d5feacf8510"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c001) write$auto(r4, &(0x7f0000000000)='-\x00', 0x2fb) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r5 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}}, 0x40000) r6 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) io_uring_setup$auto(0x1, &(0x7f0000000000)={0x3, 0x10002, 0x7f, 0x5, 0x6, 0x5, 0xffffffffffffffff, [0xfffffffe], {0x2, 0x2005, 0x2, 0x8, 0x400, 0x1000, 0x7, 0x5, 0x80000000}, {0x7, 0xd, 0x4, 0x2, 0x6b, 0x86fe, 0x2, 0x0, 0xb1}}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYRES32=r6, @ANYRES64=r2], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x2, 0x5}, 0x7}, 0x3, 0x0) r7 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000340)='/dev/usbmon25\x00', 0x55000, 0x0) ioctl$auto_MON_IOCX_MFETCH(r7, 0xc0109207, 0x0) r8 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000000), 0x141442, 0x0) ioctl$auto_BTRFS_IOC_FORGET_DEV(r8, 0x50009405, &(0x7f0000002480)={@raw=0x5, "7ce421f524595c7dc0a1870e4d71eee606c3c61005b0f41d1bda8ace71b010abf765c26cf36e9da116f656c9abcfb5ee99d05b5b58c668dfd05793ad21caef1fa324c0124fda6656caf7b2dafb435d64d5b5d79e0b1b3f06265dd23ac4c3eaa620afdae3fec53165a3bc9d0373466bf47be82c136273f71096970c92bc165672f31371c249825bd11ba2642d6c6e1746113bda80aa83da5da8727abba6162141b0584a4724e08f8a1f1442507834799d1f616ef356c8b1d3c16609d826d2c32917a7e486231d18be6ccd216655f91025e87ebaae8241a4e712903fcebfc6c8ae0525ba8712068556772c2e6cd84687ec9a102d848b381310e7553b6ff059ea754d64999c9e5a94ed498f2394e0f344e2a8fa8063885dbb797431084ceb5e8d7991ea119750d33b442c0db893a5669d3ee2db039bfe266787edd773682fc544b5c3df2e5a65e6c2ba35f55375a873cb9229f7f24af0526cc9135c29a6a04d7f54713478e5b8465440b97223a07e1b36fc54a7dc9ec2fa7ff4edcefffa86b68284258ea71f710da65728ded96e80f78f2bebcec1c6cfa2b5447d4c2f892f7f1b6be6b1db2b320442017d1cb8d54ae75926903344786b25f4c12e44c2cf2deece5b075c2fd0cced47d3364b7f16a433f1e93763a535b52498cb8526b38f83871c921762dd6f399f3b66886cd14be8c0159ee6f3fb826225d535f6f2007ffa9f4811ea1b1e93f902ecfd17ba7affaf5e3ed0003cc6df3af2f712a308ad4d7b8b690bd931cd2b0d633471d5ea5178762e56042099145cc551bc8813132398e2f501c7c3c801483e1f9245299639b90eff4eaa21b6faa00dbfaa58a39117d51ee7fe47774bec16a44cd02c6a9a6a76188f34861738447e95ac636f1b434194508ec62e611714cf0d609b95ea4397abca3ca51b5480ea00e5d9ec77aebc8cfb396f17334face111a136f97f3c2f272bcc8ce4f120be4fe646720a695e4f567c98348d79d56a17433d9d8b977dcb47351598e34a44346f9144c4fede6b42dd3b2cfba5e4fda825eeb810f6b36dea5420fe9acd2ecef1e387f314fce4d8032878610901c6f6303a2063f1aff449394278b3743d6873590e745baad5ad642193a1d172885677e5c2e9fd52b163e0c46e03478bb1518a94e0506db14a460214b8103e3edd5c2adb2027634ba733b54180fbdf6ae19bd7f14d8c81522f7a9b64062a12f9749b0eba5399fba1acf4e7c626f7c962caa642f7af75745fc6455e73e756d5a508c57028cf9552d1f18f7dd4d6e6fbedcda80964b212f575e8886d5eabc7710ff169fa83db50e6a893216c0231346e0401402b42f7d1630dff0cdc65d6c7794be0552599a3072d9bb3c3db81f0d597cf30e221b209da3dbc9178657dc6ceec971c09d8eb53e09eea1b27bc45b05d32bc2691b3be6ef5906d5573009d7383a01a06b3dfa91c168b35157a0091d8725fba3091f93ba8a64557b2de390c08706782cf44c4a229da62a37e0bf8e33738d4c25cbfb91c1a770e951e378a9454f18a631ec8b367041aefa818d3b3d35fa1d054dcc34f255d834c38809e26b6c07a9b277cccb6f585478e6d4f47341663b58851c975d7d59a8d8bf2b44ffc9514a183326ea4d81023bdd8a9d09b30afeb5d842baa285e858594e60e5904a3a16cb8dbfcb591710aadf13188bb111fa617bac6bfb91320f524e910900136b383d74f1c6d4c788c17599b1e34396aa747dbee56add1f78e6a1739b4900ace061d1641635efd91f93681163ad9527bbcfd29900a92b2718ac3ec39b98b62cae34840eacd49ef763e94d00f2b8aed91a327c83f10840b27712f906388969f74ca570d71a7ed3405fc117fe643d1ef30a980421e084bcc147833346d9f6081e94dd61f64337aa75967de0ad28805488c21deb4538c5791edb997eff72eec8df1d6dc4cc0abd21ad3f48a45c074fc2dcad7692f74eed88fef25c56ae1f1641bb468c8b7352811a7405a99bf97e03c5695146a985b2d3483f838b960906e23f0d3afe9bf299c6288d4037face9e08e420f46239c4c23bd988c83bf972e436103567525d029b33b5ac8ce748e1f8bbd84e9fdda7ba1b2e6138e703b8dcdfbe57998dd8f9db0945e7342205dff690aa62087a2dd04112f310706f6ab48778b2262c0d968c49aa0fcfcadf56614d2e24daccecc157cafeecf8a1ab93566341d2b96c9f779ef418bf0da30c01537bdfe3b597af5bb2da540d8cf56b705ebbda2d44a55ad704f2fb52554a500cc14d258ba883e2efe3351205a0c5a18d6d49b40dd7949299462546d920b7197d5ad7b2d44678e82af4fab7bdb64140e9d308b1827da67d6dfd996f6be1d54924ea0cc8570701498a0008cf885d0605d7411cd2cfe73e029695c22be4cfc37603cd3503987f7a3a60e8a907e7826d7fa6102f821602c68c5079d38739f894f810806269c93a8376dd9db597b7db0319d68011911400d807e117bffd3218beb9e94f86676cc80aa47c8ed21dc3f87d1c7a5f2e67763abc3280e95df0de4c27811a39c7a0047348266f0228b5959101ca3194f2563e3836052a365981c3a48163212d1856857953e10d26845ef5de8689bd74eec4e080960980bfc90033e6ac98c391b2596f54f0653d60159c26897de69ec05ce5dba846b866fe8019b10d14aefe8e500252d6f1c70f2d472d878ba7da028383511ccb832e69020f699afe160258d83735d085784e819fee1e2c2d29688c6bc3f2d065abeeab7043407a0de373f674799d2758a95beddbde87a5039b6cf5034023dc678ce80f2cf3563994c1a623f2277f54f2a03d1f47c8c11038eaf14ebeaf88ab7471000250f046a22bd0acb5c00e25667d522eb166da933571ac3a4ff24678a669f2f9307f2898464138b50748ed275ba73f1e6c55bb99da6704538a8d2e0db039daaa8371ad6c6b321de913138dae2e8cc813ace44187f30c9b952c0dfcd6ae2ef73cdae83fda4629f09c59b4158926e90ab3d9c1d2bc10a456074d5b0a748f9b5296e1770a156be168c447dbee81b0a895081031fd7d0252a8a80551d032bbcf767965f345f63b3a97a92d8e637716b47aded133661ce69069865114a2647a75d05f43748b3073768d2629c9815f9b64489bd1d08258e13faf70d140388774bbeb42920312a7b85c2d18b7ccb6146a555fb7dcf9e4b10c7ad5ab792cb3b9ecfb701e3aa8b724a2e5820fdb5b86f68fbcbdfb000b1088a3b831b7edc2a2ce1ca48ff8b47382cf5308f7a0078505def810a463e1d987102aa3c0eed536db032a12238f984fecf5827f5f14e3ece6e73833b0b838491965376e5bf47924b4a1aef694a93b6cd18390a1c674d4a265699ea8c363cbbcf603c2c3467afb881b9bc3d32b9bad37c2a0f84835604114fb1ee7c7b1c1a91a2c9fa66dbb9a694a222cb9f6bdbf4e69c3b12183c5d9c51db865ac1fb0839fea523bd4b1b4452e1c4343f7bccdfb9e9a3399f383292d28036e11b97aeb0dbf5910a1c9f16d1bf686bf6cf7e21cbf8a61fa4355f5deae0f31429b5e7682fa6fd930aa3350362f9c4b2dd2efed73b8b9ec538fbf127d3e83a052843f6549f1ae18c6e351cc5e0e7baf5e676c2b9b696b534b9a86972c382c675fda26b5f06dc4830b37d2fe65eca357b8d24674f8a390e53fb0a4ec49e4d0fca62005da5f42d75100fd2e7d60add39365926ba943b309389fcb91180b01c4775a2b2f01154600060017054cec06672b2b0bc391a203e2f4453c550b784db3e8af673302f197f158d19d17fcabbffd6f22bb48c2724543567697d1c456ceade6f850a9721a6aa39ff1b6cdbd18e1e7c1f45684935c9b6bdfc4a865d55e1e0933a56a2d0270a7bd6146544e499a76883287fdbd1c01cc84c96e8c9322b5b4e7e50870159cea3ce177defca60eadd3ffdf640e6ad4efe8fda5df6bd4daf963adffb234875acc44ec1ff94a1018a8ce433604dcfa0fb48d7639594a59def287c80cfef9cbb4b76d49fdac3cca36080d7864e0448611f89270e73ab393f0072da9697c1335e63cd59d75963c2b7a87c31194b6832b75f899fb9e85b3e2a08d4c095a89e54f29a453ce29b13373c2cff8c4674566cfaef9d9c992c5531ffcecf39b6cfa132c77f583dd6a046fe015ea4d748eebd989668299d7de5e541c67118f9ce4565aff097aaa8e5cbbbdf62db8cff3629897473e1b45d7851392688421fd944d2b82ff5807184861e3876bac40499624cf794d589e2def70123eac83b9db8b83416fc57eddbae6b15914ea4ecd2eff1a01c266c35c28a6a538f0806bd872f1a835102e1b588fd35fe1a41d9920277ff133b9f155466aef2fb9fcdd4945d0d1b147ce57e51d73e686eb233bb6eae91e8769f6dbe86441cf3440f23298d4073ecaf04d5b190c686ba1917e13ca2f9378d73c5c00ab4ee6b1f105455ea8b91b737418e5f86577a6b2c271d77030bef8fb57b1f610ea831fb719b437ca900afc5024317c2cc01cce6cc4da985185d9905b444f4098151b86790d1aa95c2a0acb4a1abef1b3d8a969eae8db7cc18d14e5230276b20442bc83e31e284cc5f12f7d474d8db7a86c842b4bd79c18df549a9918bf58ff14915bea0c8d9e3882e3fa0422458c027c4ee08f86b11d2a3b4843a74aae3e9a3237b411016d493ad9311d7b15e76abb34813dffc8986c06ad994db034e60ec9a37ab6b46f97f847796bb7295b255b60bc61fd03dc2584084677bfce0369bf04da59a1a23d55038e55f16bd2de26f78f83b61545c9ae20e6f0d07cd3d6a2c96b123af20a1e4b0d66491d2ddd833b1bc3a6dcf03b06bb4b156e0776fc41784112f5bcf2edd00c0cdbb672c876f5ea418daad847cd1d53467e6dc2ad83514f08c78e25528da597886e8858b382f9c76776e6c4eab90c1f494623d3ed1c5ff0adda77ac729508609cce2d5ec91e3face7c5ebb8968aada4419c1f95e9f3e48cb45d5692365dce013abc15bc58260612c285671a25394410fd7e5e7d317e931e1f15690ed8b86dd50539914cd7d08b91093d93bce2327dbd1b3f58920100ddae8eb1f95fc70574dc2ad48adf86e20d5078fe21aa92ff16431f63e3c9b54d4e2a9ea8b95a9fdc83ee64208bf0534b4144c97473b81498539669fdcd13106aecdfe96e52dfeebbfb02aea142d9537e8c1bb2f7767acac559ffff2b0f69349dcec6e50d18ed37df5ac0a8285ea3d848bd894698f80320d974cb2f4882916bd70e6fe11d660f1a16f15e55791741c9dc4e519c53d09a8dce3f37159c28a7fc2c6a3613782235bbacba0154a7eedcff509068d6a63fef4325677a481cfedc47b465f1a308a06ec84d9451dc0c3c2a824a1815f8d11d6350a31298a98c41ff5ca37a45535a9a7290ae466eba49a859387b99420fc2fe0268c3a13951d6b6a631fae302530d705030d5509609e130881f485e6b66271e7d8b02dd10f4fa3915789f91664f9d9f7d94af8cb47ba257edddd782da2d0af799ea169da118af68cfa79de98fef0bbc27d915f59cc1433eda8e2642578b1def80dfb74457094c4a908988548ad556623d2f2a6d52477896b6829fb32a27a17f05f10404dec8fe900e61dbb26c9e20f2a9a56e2e78497539fe7439fdf5ef64d37b54d3c5223556598415a08f17bcae8ed2949c094cad5ea946758f5775f9ba451260b2580526b2af55d930d8d18bdc5322cd23216445fe9fc7534daea78f4dd0f83be5a0ead049ded9ade38910dd87066ff1064aaaf721e4f582566ae1cc3a2f853b9cbd9fa4de2d9575887c371c877f60a77"}) 3.369330157s ago: executing program 0 (id=1295): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r0, 0x0, 0x1f40) stat$auto(0x0, &(0x7f0000000380)={0x7, 0x3, 0xb, 0x0, 0x0, 0x0, 0x0, 0x1, 0xfffffffffffffffd, 0x4, 0xa, 0xff, 0x100, 0x401, 0x5f57, 0xf66, 0xa}) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/config.gz\x00', 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'pimreg0\x00', 0x0}) bind$auto(r0, &(0x7f0000000300)=@xdp={0x2c, 0xf, r2, 0x38}, 0x3) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3) openat$auto_trace_clock_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/trace_clock\x00', 0x22500, 0x0) 2.857496064s ago: executing program 1 (id=1296): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r0, 0x4, 0x7ff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) memfd_create$auto(0x0, 0x9) r1 = openat$auto_generic(0xffffffffffffff9c, &(0x7f0000001500)='/proc/kpagecgroup\x00', 0x101000, 0x0) readv$auto(0x3, 0x0, 0x7) write$auto(0x3, 0x0, 0xfffffdef) read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffffff, 0x0, 0x0) fallocate$auto(0x3, 0x0, 0xe, 0x8ec8) open(&(0x7f0000000000)='./file0\x00', 0x221c2, 0xe8) socket(0xa, 0x801, 0x106) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) setsockopt$auto(0x3, 0x0, 0x33, 0x0, 0x4) write$auto(0x3, 0x0, 0x296) read$auto(0xffffffffffffffff, 0x0, 0x20) select$auto(0xc, &(0x7f0000000200)={[0x3, 0xb, 0x7, 0x5, 0x1, 0x1, 0x1, 0x0, 0x83cf, 0x9, 0x0, 0x8000000000000000, 0x8, 0x2, 0x826, 0x42f4]}, &(0x7f00000002c0)={[0x0, 0x9, 0x8, 0x0, 0x6, 0xc, 0x805, 0x6, 0x8d, 0xfffffffffffff112, 0x9, 0x2, 0x3, 0x9, 0x3]}, &(0x7f0000000340)={[0x0, 0xd, 0x7f, 0x3, 0xfff, 0x4, 0x80000000, 0x8, 0x2, 0x5, 0x8, 0xb3f, 0x5, 0x5, 0x10000, 0xfffffffffffffff0]}, 0x0) socket(0xa, 0x1, 0x84) setsockopt$auto(0x3, 0x29, 0x40, 0x0, 0x10001) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_score_adj\x00', 0x142, 0x0) pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x8}, 0x5, 0x3, 0x9) r2 = setfsgid$auto(0xee01) ioctl$auto_KVM_HAS_DEVICE_ATTR(r1, 0x4018aee3, &(0x7f0000000040)={0x4, 0xffffffffffffffff, 0xffffffff80000000, 0x5}) setregid$auto(r2, r3) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r4 = socket(0x2, 0x5, 0x0) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) sendmmsg$auto(r4, 0x0, 0x5, 0x311) sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x808}, 0x20048000) 2.713776191s ago: executing program 0 (id=1297): openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0) socket(0x15, 0x5, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x0) socket(0x10, 0x2, 0x0) memfd_create$auto(&(0x7f00000000c0)='\xc4--:\xdd:,./-${\x00', 0x4) socket$nl_generic(0x10, 0x3, 0x10) setsockopt$auto(r0, 0x3, 0xe4, &(0x7f0000000100)='\xc4--:\xdd:,./-${\x00', 0xcf) socket(0xa, 0x3, 0x100) r1 = socket(0x10, 0x3, 0x6) r2 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r2, 0x1, 0x70bd26, 0x25dfdbff, {}, [@NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x7}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x4}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x40}, @NETDEV_A_PAGE_POOL_ID={0x2, 0x20, 0x4}, @NETDEV_A_PAGE_POOL_ID={0xc}, @NETDEV_A_PAGE_POOL_ID={0x0, 0x1, 0xfd}]}, 0x50}, 0x1, 0x0, 0x0, 0x4048000}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) sysfs$auto(0x2, 0x9, 0x0) fsopen$auto(0x0, 0x1) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) r3 = set_tid_address$auto(0x0) r4 = syz_open_procfs$namespace(r3, &(0x7f0000000080)) getdents$auto(r4, 0x0, 0x3f1) getdents$auto(r4, 0x0, 0xa2b0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x3}, 0xed7138c}, 0x7, 0x0) socket$nl_generic(0x10, 0x3, 0x10) 2.600743213s ago: executing program 2 (id=1298): sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804) r0 = openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/environ\x00', 0x2000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) readv$auto(0xffffffffffffffff, 0x0, 0x400) close_range$auto(0x2, 0x8, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty0\x00', 0xa2180, 0x0) r1 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r1, 0x403c6f2b, 0x0) read$auto_proc_environ_operations_base(r0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x200006, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) io_uring_setup$auto(0x1, 0x0) msgctl$auto_MSG_STAT_ANY(0x4, 0xd, &(0x7f0000000100)={{0x9, 0xee00, 0xee00, 0x3, 0x97a, 0x9f, 0x3}, &(0x7f0000000040)=0x8e, &(0x7f00000000c0)=0x40, 0xd6, 0x7, 0x4, 0x81, 0x1, 0x4, 0x9, 0x2, @raw=0xfbed0000, @raw=0xfffff004}) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/all/disable_policy\x00', 0x202, 0x0) bpf$auto(0x1, 0x0, 0x6f4) sendfile$auto(r4, r3, 0x0, 0x48) mmap$auto(0x2, 0x2000a, 0x5, 0xeb2, 0x401, 0x7fff) syz_clone(0xa300100, 0x0, 0x0, 0x0, 0x0, 0x0) shmctl$auto_SHM_LOCK(0xac6, 0xb, &(0x7f00000002c0)={{0x0, 0x0, 0xffffffffffffffff, 0x4, 0xd9}, 0xfffffc00, 0x3, 0x5, 0x6, @raw=0x8, @raw=0x201, 0x4, 0x0, &(0x7f0000000180), &(0x7f00000001c0)="9665d61804696ab62bde66a62307b69444c6dc9e775d4b4407afbc2c181920d474e19dc4cff52ed741474221b00b58bcde9884d13a5143529d8c3c57f7b84d1b79c023d1113151c7c0e16e10d4cf888cf37ba970759326edb105bd465da5913bc8be1b2e371a27f61e0b079fe4dd0d554c81a6046ec2d747dd8d314773b059a1d9a92629a39c1ee5d7fd747be24c9e60b97a10d6353616d0e2de1cab52767a20614a28d64cce11f6347bc544c30f2a2c3c7211ee8f39f2fde5c6997290a34cd5e99ef6d3a27838f38a488f08e210ff2da8c6f2479afda72b8034e2fb0297812043a9da34b859a4ffd8b61e59ab2556"}) r6 = getpgid$auto(0xffffffffffffffff) shmctl$auto_IPC_RMID(0x1, 0x0, &(0x7f00000004c0)={{0x4, r2, r5, 0x5, 0x7ff, 0x1}, 0x5, 0xfff, 0x8, 0x5, @raw=0x1, @inferred=r6, 0xd69, 0x0, &(0x7f0000000340)="0e9b1f8a9f2d3d3c0c24454d879bd405ae3eed8a51fae20acf5cfb1cf36176841dcb4432f273315c460460e1533cc5895ae9813677ac27e70b0925c871de1e0e6c96347bb2438e0b613bcb7da493c4e87521cf9d53dafda627c82e8a834b87a9860a8117b2fe8751c2839752658dd46a2f0bc74500da10667c8b3749df1460e1bfa4e16c9add9b6ee39f780c83e188cc47c3f6c1ab29d150db1b309d8c8b2fabca07e4117e4a8b84654a6032f75093fdda8f5af14286a9b1fa086c3ad9e9569cc1c6a706590ccc248e53c0351f7a45c12617333ccfff", &(0x7f0000000440)="108cea25fb64e2f6a105bddd4622712d06f5bae8398a46bbaef09f94b0f502f89d2c0501a70417e535331b13d24a453c73a014ff5c66c24548c0bc4b4f6d56a8320af2be0ceedb198ffd001328d1b4c1d44e06120bba651a83a25c375bdee888256a"}) r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TCFLSH2(r7, 0x5453, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) 2.414175898s ago: executing program 0 (id=1299): openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0) socket(0x15, 0x5, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x0) socket(0x10, 0x2, 0x0) memfd_create$auto(&(0x7f00000000c0)='\xc4--:\xdd:,./-${\x00', 0x4) socket$nl_generic(0x10, 0x3, 0x10) setsockopt$auto(r0, 0x3, 0xe4, &(0x7f0000000100)='\xc4--:\xdd:,./-${\x00', 0xcf) socket(0xa, 0x3, 0x100) r1 = socket(0x10, 0x3, 0x6) r2 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r2, 0x1, 0x70bd26, 0x25dfdbff, {}, [@NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x7}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x4}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x40}, @NETDEV_A_PAGE_POOL_ID={0x2, 0x20, 0x4}, @NETDEV_A_PAGE_POOL_ID={0xc}, @NETDEV_A_PAGE_POOL_ID={0x0, 0x1, 0xfd}]}, 0x50}, 0x1, 0x0, 0x0, 0x4048000}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000) fsopen$auto(0x0, 0x1) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) r3 = set_tid_address$auto(0x0) r4 = syz_open_procfs$namespace(r3, &(0x7f0000000080)) getdents$auto(r4, 0x0, 0x3f1) getdents$auto(r4, 0x0, 0xa2b0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x3}, 0xed7138c}, 0x7, 0x0) socket$nl_generic(0x10, 0x3, 0x10) 2.101742443s ago: executing program 3 (id=1300): sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804) r0 = openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/environ\x00', 0x2000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) readv$auto(0xffffffffffffffff, 0x0, 0x400) close_range$auto(0x2, 0x8, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty0\x00', 0xa2180, 0x0) r1 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r1, 0x403c6f2b, 0x0) read$auto_proc_environ_operations_base(r0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x200006, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) io_uring_setup$auto(0x1, 0x0) msgctl$auto_MSG_STAT_ANY(0x4, 0xd, &(0x7f0000000100)={{0x9, 0xee00, 0xee00, 0x3, 0x97a, 0x9f, 0x3}, &(0x7f0000000040)=0x8e, &(0x7f00000000c0)=0x40, 0xd6, 0x7, 0x4, 0x81, 0x1, 0x4, 0x9, 0x2, @raw=0xfbed0000, @raw=0xfffff004}) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/all/disable_policy\x00', 0x202, 0x0) bpf$auto(0x1, 0x0, 0x6f4) sendfile$auto(r4, r3, 0x0, 0x48) mmap$auto(0x2, 0x2000a, 0x5, 0xeb2, 0x401, 0x7fff) syz_clone(0xa300100, 0x0, 0x0, 0x0, 0x0, 0x0) shmctl$auto_SHM_LOCK(0xac6, 0xb, &(0x7f00000002c0)={{0x0, 0x0, 0xffffffffffffffff, 0x4, 0xd9}, 0xfffffc00, 0x3, 0x5, 0x6, @raw=0x8, @raw=0x201, 0x4, 0x0, &(0x7f0000000180), &(0x7f00000001c0)="9665d61804696ab62bde66a62307b69444c6dc9e775d4b4407afbc2c181920d474e19dc4cff52ed741474221b00b58bcde9884d13a5143529d8c3c57f7b84d1b79c023d1113151c7c0e16e10d4cf888cf37ba970759326edb105bd465da5913bc8be1b2e371a27f61e0b079fe4dd0d554c81a6046ec2d747dd8d314773b059a1d9a92629a39c1ee5d7fd747be24c9e60b97a10d6353616d0e2de1cab52767a20614a28d64cce11f6347bc544c30f2a2c3c7211ee8f39f2fde5c6997290a34cd5e99ef6d3a27838f38a488f08e210ff2da8c6f2479afda72b8034e2fb0297812043a9da34b859a4ffd8b61e59ab2556"}) r6 = getpgid$auto(0xffffffffffffffff) shmctl$auto_IPC_RMID(0x1, 0x0, &(0x7f00000004c0)={{0x4, r2, r5, 0x5, 0x7ff, 0x1}, 0x5, 0xfff, 0x8, 0x5, @raw=0x1, @inferred=r6, 0xd69, 0x0, &(0x7f0000000340)="0e9b1f8a9f2d3d3c0c24454d879bd405ae3eed8a51fae20acf5cfb1cf36176841dcb4432f273315c460460e1533cc5895ae9813677ac27e70b0925c871de1e0e6c96347bb2438e0b613bcb7da493c4e87521cf9d53dafda627c82e8a834b87a9860a8117b2fe8751c2839752658dd46a2f0bc74500da10667c8b3749df1460e1bfa4e16c9add9b6ee39f780c83e188cc47c3f6c1ab29d150db1b309d8c8b2fabca07e4117e4a8b84654a6032f75093fdda8f5af14286a9b1fa086c3ad9e9569cc1c6a706590ccc248e53c0351f7a45c12617333ccfff", &(0x7f0000000440)="108cea25fb64e2f6a105bddd4622712d06f5bae8398a46bbaef09f94b0f502f89d2c0501a70417e535331b13d24a453c73a014ff5c66c24548c0bc4b4f6d56a8320af2be0ceedb198ffd001328d1b4c1d44e06120bba651a83a25c375bdee888256a"}) r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TCFLSH2(r7, 0x5453, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) 1.991724258s ago: executing program 2 (id=1301): mmap$auto(0x0, 0x128009, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) r0 = socket(0x1d, 0x2, 0x7) getsockopt$auto(r0, 0x6b, 0x2, 0xfffffffffffffffe, 0x0) r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/stat\x00', 0xc0802, 0x0) write$auto_tomoyo_operations_securityfs_if(r1, &(0x7f00000001c0)="ce890a", 0x3) r2 = socket(0x11, 0x6, 0x404) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x4d}) socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) io_uring_setup$auto(0x3, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) setsockopt$auto(0x3, 0x10000000084, 0x16, 0x0, 0x0) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/vrf/strict_mode\x00', 0x80202, 0x0) sendfile$auto(r3, 0x3, 0x0, 0x400000000008) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{&(0x7f0000000000), 0x3ff, &(0x7f0000000180)={0x0, 0x434b}, 0x9, &(0x7f00000001c0), 0x3ff, 0x24000000}, 0xb6}, 0x2, 0x2) sendmmsg$auto(r2, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000080), 0x49}, 0x6, &(0x7f0000000040)="619c02ee31e015e36c16d077698627e1831a858b0840", 0x5, 0x4}, 0x2}, 0x63, 0x100) 1.894992977s ago: executing program 0 (id=1302): madvise$auto(0x0, 0xffffffffffff0001, 0x9) mlockall$auto(0x3) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x24c802, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r0) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae80, 0x0) mmap$auto(0x0, 0x7fff, 0x3, 0xeb0, 0xfffffffffffffffa, 0x208000) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r1 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000380)='/sys/kernel/debug/block/loop2/zone_wplugs\x00', 0x2000, 0x0) read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r1, &(0x7f00000003c0)=""/4096, 0x1000) listmount$auto(&(0x7f0000000100)={0xba, @raw, 0xffffffffffffffff, 0xfffffffffffffff7}, 0x0, 0xf4240, 0x1) semctl$auto_IPC_INFO(0xffc9, 0xfffff801, 0x3, 0xfffffffffffffffa) rt_sigqueueinfo$auto_SIGCONT(0x0, 0x12, &(0x7f0000000040)={@_si_pad}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$auto(0xffffffffffffffff, 0x1275, 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) semctl$auto(0x80001ff, 0x804, 0x13, 0x4) keyctl$auto(0x1, 0x7, 0x100, 0x8, 0x4) keyctl$auto(0x1, 0x7, 0x100, 0x8, 0x4) mlockall$auto(0x5) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000040), 0x8300, 0x0) openat$auto_fragmentation_threshold_ops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy4/fragmentation_threshold\x00', 0x0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_GET_HARDIF(r2, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000040)={0x1c, r3, 0x1, 0x70b927, 0x25dfdbfe, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r4}]}, 0x1c}}, 0x4008000) 1.810600176s ago: executing program 3 (id=1303): mmap$auto(0x0, 0x400008, 0xdf, 0xf1, 0x2, 0x8000) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) remap_file_pages$auto(0x5, 0x1000, 0xf0, 0x8, 0x10007) 1.69840562s ago: executing program 2 (id=1304): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="120027", @ANYBLOB="5de1523353782950330a"], 0x1ac}}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB='J'], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) r1 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC0D0c\x00', 0x200, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_UNLINK2(r1, 0x4161, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB="000229bd0000fbdbdf35020000000800fbffffffffff0737010005"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00211459a600fbdbdf250200000008000300000000001b"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x200007, 0x8) r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_BATADV_CMD_GET_MCAST_FLAGS(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="8b0500000000fedbdf250a"], 0x1c}, 0x1, 0x0, 0x0, 0x14}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.295754887s ago: executing program 3 (id=1305): openat$auto_trace_clock_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/trace_clock\x00', 0x22500, 0x0) 1.123633484s ago: executing program 3 (id=1306): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x40009, 0xe3, 0x17, 0x7, 0x28000) write$auto(0x3, 0x0, 0x8000000000000000) write$auto(0x1, 0x0, 0x80000000) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) r0 = socket(0x2b, 0x1, 0x1) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r0, 0x0, 0x20000001) r1 = socket(0x15, 0x5, 0x0) getsockopt$auto(r1, 0x114, 0x271b, 0xfffffffffffffffc, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x4) mmap$auto(0x0, 0x4, 0x4000000200df, 0xeb1, 0x404, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b464289107080036", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a0000800000"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) madvise$auto(0x40, 0x37, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) unshare$auto(0x8000000000000001) mount$auto(0x0, &(0x7f00000001c0)='}[,&*}\x00', 0x0, 0x7fff, 0x0) r2 = pidfd_open$auto(0x1, 0x0) setns(r2, 0x60020000) umount2$auto(&(0x7f0000000080)='.\x00', 0x8) umount2$auto(&(0x7f0000000000)='.\x00', 0x8) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 964.147502ms ago: executing program 2 (id=1307): sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x4000804) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001100)='/proc/bus/pci/00/03.0\x00', 0xa0581, 0x0) write$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000001140)="8cbdca", 0x3) writev$auto(r0, &(0x7f0000001d40)={0x0, 0x2}, 0x6) lstat$auto(0x0, &(0x7f0000000180)={0x8, 0x2, 0x3, 0x66, 0x0, 0x0, 0x0, 0x1000000006, 0xe6, 0xfffffffffffffffe, 0x5, 0x7fffffff, 0x6, 0x7, 0x7, 0x61, 0x40000103}) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) close_range$auto(0x2, 0x8, 0x0) futex_wait$auto(&(0x7f00000002c0)="7914d21e2c88e6f6cf9f73594f6346ecc2c5e363a5d05ea4d3ceed2fbb756fa9b9bbf5dade2cf12231d8dbb8a962a31c782b3f6aa6600f26a32ac2eb9788677d0632f75d4216781c300ef7fec27d592556167a775dc9b89d63ebd6475360233ad23a4bec35c0b07cbbe6f7765691d5a29b6201b77105ce0bd01b5b637935bf771713f518db9f73f97f666d89b5ca1fdf05bcaf0013596f8abd61d1f1e050f07793a11994ad7cbe0e6859e4a2ab9ec21d073b3e9102e7d705", 0x3ff, 0x9f, 0x10001, &(0x7f0000000380)={0x1, 0x7fffffffffffffff}, 0x0) r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000100), r1) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000240)={&(0x7f00000003c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYRES32], 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0) mmap$auto(0x0, 0x2020009, 0x20000000000003, 0xeb1, 0xfffffffffffffffa, 0x8000) landlock_create_ruleset$auto(0x0, 0xfffffffffffffffc, 0x0) mmap$auto(0x0, 0x20009, 0x12, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) open(&(0x7f0000000800)='./file0\x00', 0x62240, 0x154) chmod$auto(&(0x7f00000000c0)='./file0\x00', 0xf4ba) writev$auto(0x3, 0x0, 0x8009) lsm_get_self_attr$auto(0x65, 0x0, &(0x7f0000002440)=0x203, 0x0) memfd_secret$auto(0x0) mmap$auto(0x0, 0x5, 0xfffffffffffffe01, 0x8011, 0x3, 0x8000) mlockall$auto(0x7) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptybb\x00', 0x202000, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) socket(0x10, 0x2, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe0180, 0x0) 786.46614ms ago: executing program 1 (id=1308): socket(0x9, 0x2, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) waitid$auto_P_PIDFD(0x3, r1, 0x0, 0x7, 0x0) socket(0x1e, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x80803, 0x6) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/mtd/mtd0/subpagesize\x00', 0x80000, 0x0) socket(0x2b, 0x1, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kvm/parameters/nx_huge_pages\x00', 0x42080, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x10, 0x2, 0x14) socket(0x11, 0x3, 0x9) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x5, 0x0) memfd_create$auto(0x0, 0x2) openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48001, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x202002, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x8800) write$auto(r2, &(0x7f0000000000)='-\x00', 0xfdef) 271.187603ms ago: executing program 1 (id=1309): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) shutdown$auto(r0, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) write$auto(0x3, 0x0, 0x100085) 0s ago: executing program 3 (id=1310): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r0, 0x4, 0x7ff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (fail_nth: 17) memfd_create$auto(0x0, 0x9) openat$auto_generic(0xffffffffffffff9c, &(0x7f0000001500)='/proc/kpagecgroup\x00', 0x101000, 0x0) readv$auto(0x3, 0x0, 0x7) write$auto(0x3, 0x0, 0xfffffdef) read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffffff, 0x0, 0x0) fallocate$auto(0x3, 0x0, 0xe, 0x8ec8) open(&(0x7f0000000000)='./file0\x00', 0x221c2, 0xe8) write$auto(0x3, 0x0, 0x296) read$auto(0xffffffffffffffff, 0x0, 0x20) select$auto(0xc, &(0x7f0000000200)={[0x3, 0xb, 0x7, 0x5, 0x1, 0x1, 0x1, 0x0, 0x83cf, 0x9, 0x0, 0x8000000000000000, 0x8, 0x2, 0x826, 0x42f4]}, &(0x7f00000002c0)={[0x0, 0x9, 0x8, 0x0, 0x6, 0xc, 0x805, 0x6, 0x8d, 0xfffffffffffff112, 0x9, 0x2, 0x3, 0x9, 0x3]}, &(0x7f0000000340)={[0x0, 0xd, 0x7f, 0x3, 0xfff, 0x4, 0x80000000, 0x8, 0x2, 0x5, 0x8, 0xb3f, 0x5, 0x5, 0x10000, 0xfffffffffffffff0]}, 0x0) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = socket(0x2, 0x5, 0x0) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) sendmmsg$auto(r1, 0x0, 0x5, 0x311) sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x808}, 0x20048000) kernel console output (not intermixed with test programs): ] ima_write_template_field_data+0x5d/0x1f0 [ 222.708609][ T7823] ima_eventname_init_common+0x1b8/0x260 [ 222.708649][ T7823] ? __pfx_ima_eventname_init_common+0x10/0x10 [ 222.708695][ T7823] ? trace_kmalloc+0x2b/0xd0 [ 222.708732][ T7823] ? __kmalloc_noprof+0x242/0x510 [ 222.708764][ T7823] ? __print_lock_name+0xb1/0xe0 [ 222.708805][ T7823] ima_alloc_init_template+0x39d/0x720 [ 222.708852][ T7823] ima_store_measurement+0x1eb/0x5c0 [ 222.708887][ T7823] ? __pfx_ima_store_measurement+0x10/0x10 [ 222.708924][ T7823] ? vfs_getxattr_alloc+0xec/0x340 [ 222.708984][ T7823] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 222.709037][ T7823] process_measurement+0x1ddb/0x23e0 [ 222.709105][ T7823] ? __pfx_process_measurement+0x10/0x10 [ 222.709150][ T7823] ? __lock_acquire+0x5ca/0x1ba0 [ 222.709246][ T7823] ? mtree_load+0x325/0xa40 [ 222.709285][ T7823] ima_file_mmap+0x1b1/0x1d0 [ 222.709323][ T7823] ? __pfx_ima_file_mmap+0x10/0x10 [ 222.709370][ T7823] security_mmap_file+0x88c/0x990 [ 222.709405][ T7823] __do_sys_remap_file_pages+0x2e2/0xac0 [ 222.709454][ T7823] ? __fget_files+0x20e/0x3c0 [ 222.709498][ T7823] ? __pfx___do_sys_remap_file_pages+0x10/0x10 [ 222.709542][ T7823] ? fput+0x70/0xf0 [ 222.709570][ T7823] ? ksys_write+0x1b9/0x240 [ 222.709595][ T7823] ? __pfx_ksys_write+0x10/0x10 [ 222.709627][ T7823] do_syscall_64+0xcd/0x230 [ 222.709666][ T7823] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 222.709691][ T7823] RIP: 0033:0x7efde8f8e969 [ 222.709711][ T7823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 222.709734][ T7823] RSP: 002b:00007efde6df6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d8 [ 222.709758][ T7823] RAX: ffffffffffffffda RBX: 00007efde91b6080 RCX: 00007efde8f8e969 [ 222.709775][ T7823] RDX: 0000000000000000 RSI: 0000000000001000 RDI: 0000000000000005 [ 222.709790][ T7823] RBP: 00007efde6df6090 R08: 0000000000010007 R09: 0000000000000000 [ 222.709805][ T7823] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001 [ 222.709827][ T7823] R13: 0000000000000001 R14: 00007efde91b6080 R15: 00007ffcbd845b98 [ 222.709859][ T7823] [ 222.711276][ T30] audit: type=1804 audit(6040695835.320:12): pid=7823 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.0.397" name="dev/zero" dev="tmpfs" ino=208 res=0 errno=0 [ 224.291745][ T7843] Invalid ELF header magic: != ELF [ 227.200239][ T7911] netlink: 28 bytes leftover after parsing attributes in process `syz.0.411'. [ 227.459167][ T7917] ima: policy update failed [ 227.475466][ T30] audit: type=1802 audit(6040695840.080:13): pid=7917 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.414" res=0 errno=0 [ 228.802109][ T7922] syz.0.416 uses obsolete (PF_INET,SOCK_PACKET) [ 229.794732][ T7980] netlink: 28 bytes leftover after parsing attributes in process `syz.0.422'. [ 230.856786][ T7997] netlink: 28 bytes leftover after parsing attributes in process `syz.2.425'. [ 232.410511][ T8034] perf: Dynamic interrupt throttling disabled, can hang your system! [ 233.685531][ T8042] netlink: 28 bytes leftover after parsing attributes in process `syz.3.433'. [ 233.833635][ T8042] bond0: (slave bond_slave_1): Releasing backup interface [ 237.840995][ T8116] netlink: 28 bytes leftover after parsing attributes in process `syz.0.444'. [ 237.888672][ T8119] netlink: 28 bytes leftover after parsing attributes in process `syz.3.445'. [ 240.283849][ T8160] netlink: 28 bytes leftover after parsing attributes in process `syz.3.454'. [ 240.628948][ T8170] can: request_module (can-proto-3) failed. [ 244.062919][ T8242] FAULT_INJECTION: forcing a failure. [ 244.062919][ T8242] name failslab, interval 1, probability 0, space 0, times 0 [ 244.088245][ T8242] CPU: 1 UID: 0 PID: 8242 Comm: syz.3.468 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 244.088287][ T8242] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 244.088305][ T8242] Call Trace: [ 244.088314][ T8242] [ 244.088329][ T8242] dump_stack_lvl+0x16c/0x1f0 [ 244.088370][ T8242] should_fail_ex+0x512/0x640 [ 244.088410][ T8242] ? __kvmalloc_node_noprof+0x122/0x600 [ 244.088446][ T8242] should_failslab+0xc2/0x120 [ 244.088483][ T8242] __kvmalloc_node_noprof+0x135/0x600 [ 244.088515][ T8242] ? trace_kmalloc+0x2b/0xd0 [ 244.088551][ T8242] ? __kvmalloc_node_noprof+0x291/0x600 [ 244.088580][ T8242] ? io_alloc_cache_init+0x33/0x170 [ 244.088617][ T8242] ? io_alloc_cache_init+0x33/0x170 [ 244.088644][ T8242] io_alloc_cache_init+0x33/0x170 [ 244.088675][ T8242] io_rsrc_cache_init+0x40/0x50 [ 244.088717][ T8242] io_uring_setup+0x68b/0x1ff0 [ 244.088757][ T8242] ? __pfx_io_uring_setup+0x10/0x10 [ 244.088793][ T8242] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 244.088836][ T8242] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 244.088881][ T8242] ? __fget_files+0x20e/0x3c0 [ 244.088938][ T8242] ? ksys_write+0x1b9/0x240 [ 244.088964][ T8242] ? __pfx_ksys_write+0x10/0x10 [ 244.088990][ T8242] ? rcu_is_watching+0x12/0xc0 [ 244.089026][ T8242] __x64_sys_io_uring_setup+0xc2/0x170 [ 244.089066][ T8242] do_syscall_64+0xcd/0x230 [ 244.089106][ T8242] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.089137][ T8242] RIP: 0033:0x7fc2e7b8e969 [ 244.089169][ T8242] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 244.089198][ T8242] RSP: 002b:00007fc2e59d5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 244.089226][ T8242] RAX: ffffffffffffffda RBX: 00007fc2e7db6080 RCX: 00007fc2e7b8e969 [ 244.089246][ T8242] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 244.089264][ T8242] RBP: 00007fc2e59d5090 R08: 0000000000000000 R09: 0000000000000000 [ 244.089283][ T8242] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 244.089301][ T8242] R13: 0000000000000000 R14: 00007fc2e7db6080 R15: 00007ffc0d06b618 [ 244.089340][ T8242] [ 245.598349][ T8262] netlink: 28 bytes leftover after parsing attributes in process `syz.3.471'. [ 245.923308][ T8262] FAULT_INJECTION: forcing a failure. [ 245.923308][ T8262] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 246.057651][ T8262] CPU: 0 UID: 0 PID: 8262 Comm: syz.3.471 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 246.057693][ T8262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 246.057709][ T8262] Call Trace: [ 246.057719][ T8262] [ 246.057730][ T8262] dump_stack_lvl+0x16c/0x1f0 [ 246.057769][ T8262] should_fail_ex+0x512/0x640 [ 246.057814][ T8262] _copy_from_iter+0x2a4/0x15b0 [ 246.057860][ T8262] ? policy_nodemask+0xea/0x4e0 [ 246.057894][ T8262] ? __pfx__copy_from_iter+0x10/0x10 [ 246.057937][ T8262] ? alloc_pages_mpol+0x25a/0x550 [ 246.057972][ T8262] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 246.058022][ T8262] copy_page_from_iter+0xa5/0x120 [ 246.058069][ T8262] anon_pipe_write+0xbe7/0x1a70 [ 246.058112][ T8262] ? __pfx_anon_pipe_write+0x10/0x10 [ 246.058143][ T8262] ? apparmor_file_permission+0x251/0x400 [ 246.058175][ T8262] ? bpf_lsm_file_permission+0x9/0x10 [ 246.058218][ T8262] ? security_file_permission+0x71/0x210 [ 246.058254][ T8262] ? rw_verify_area+0xcf/0x680 [ 246.058301][ T8262] vfs_write+0x5ba/0x1180 [ 246.058328][ T8262] ? __pfx_anon_pipe_write+0x10/0x10 [ 246.058361][ T8262] ? __pfx_vfs_write+0x10/0x10 [ 246.058385][ T8262] ? find_held_lock+0x2b/0x80 [ 246.058439][ T8262] ksys_write+0x205/0x240 [ 246.058465][ T8262] ? __pfx_ksys_write+0x10/0x10 [ 246.058490][ T8262] ? rcu_is_watching+0x12/0xc0 [ 246.058527][ T8262] do_syscall_64+0xcd/0x230 [ 246.058566][ T8262] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 246.058596][ T8262] RIP: 0033:0x7fc2e7b8e969 [ 246.058619][ T8262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 246.058647][ T8262] RSP: 002b:00007fc2e59f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 246.058674][ T8262] RAX: ffffffffffffffda RBX: 00007fc2e7db5fa0 RCX: 00007fc2e7b8e969 [ 246.058693][ T8262] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 246.058710][ T8262] RBP: 00007fc2e59f6090 R08: 0000000000000000 R09: 0000000000000000 [ 246.058728][ T8262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 246.058745][ T8262] R13: 0000000000000000 R14: 00007fc2e7db5fa0 R15: 00007ffc0d06b618 [ 246.058784][ T8262] [ 246.287023][ C0] vkms_vblank_simulate: vblank timer overrun [ 246.664695][ T8289] netlink: 8 bytes leftover after parsing attributes in process `syz.0.476'. [ 249.250866][ T8339] FAULT_INJECTION: forcing a failure. [ 249.250866][ T8339] name failslab, interval 1, probability 0, space 0, times 0 [ 249.275592][ T8339] CPU: 1 UID: 0 PID: 8339 Comm: syz.1.483 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 249.275636][ T8339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 249.275654][ T8339] Call Trace: [ 249.275664][ T8339] [ 249.275675][ T8339] dump_stack_lvl+0x16c/0x1f0 [ 249.275727][ T8339] should_fail_ex+0x512/0x640 [ 249.275768][ T8339] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 249.275823][ T8339] should_failslab+0xc2/0x120 [ 249.275861][ T8339] __kmalloc_cache_noprof+0x6a/0x3e0 [ 249.275912][ T8339] ? __bch2_read_super+0x266/0x1120 [ 249.275960][ T8339] __bch2_read_super+0x266/0x1120 [ 249.276001][ T8339] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 249.276035][ T8339] ? stack_depot_save_flags+0x3b0/0xa50 [ 249.276082][ T8339] ? __lock_acquire+0x5ca/0x1ba0 [ 249.276124][ T8339] ? __pfx___bch2_read_super+0x10/0x10 [ 249.276169][ T8339] ? __bch2_darray_resize_noprof+0xf6/0x2d0 [ 249.276213][ T8339] ? bch2_fs_open+0x494/0xb40 [ 249.276245][ T8339] ? bch2_ioctl_fsck_offline+0x6d3/0x8f0 [ 249.276287][ T8339] ? bch2_chardev_ioctl+0x10f/0x140 [ 249.276320][ T8339] ? __x64_sys_ioctl+0x190/0x200 [ 249.276439][ T8339] ? __bch2_darray_resize_noprof+0x1cd/0x2d0 [ 249.276488][ T8339] bch2_fs_open+0x2d0/0xb40 [ 249.276527][ T8339] ? __pfx_stack_trace_save+0x10/0x10 [ 249.276560][ T8339] ? __pfx_bch2_fs_open+0x10/0x10 [ 249.276601][ T8339] ? kasan_save_stack+0x42/0x60 [ 249.276631][ T8339] ? kasan_save_stack+0x33/0x60 [ 249.276660][ T8339] ? kasan_save_track+0x14/0x30 [ 249.276690][ T8339] ? kasan_save_free_info+0x3b/0x60 [ 249.276740][ T8339] ? __kasan_slab_free+0x51/0x70 [ 249.276829][ T8339] bch2_ioctl_fsck_offline+0x6d3/0x8f0 [ 249.276918][ T8339] ? __pfx_bch2_ioctl_fsck_offline+0x10/0x10 [ 249.276964][ T8339] ? find_held_lock+0x2b/0x80 [ 249.277004][ T8339] ? __fget_files+0x20e/0x3c0 [ 249.277060][ T8339] bch2_chardev_ioctl+0x10f/0x140 [ 249.277093][ T8339] ? __pfx_bch2_chardev_ioctl+0x10/0x10 [ 249.277128][ T8339] __x64_sys_ioctl+0x190/0x200 [ 249.277173][ T8339] do_syscall_64+0xcd/0x230 [ 249.277213][ T8339] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 249.277243][ T8339] RIP: 0033:0x7fb47318e969 [ 249.277267][ T8339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 249.277296][ T8339] RSP: 002b:00007fb47408b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 249.277326][ T8339] RAX: ffffffffffffffda RBX: 00007fb4733b5fa0 RCX: 00007fb47318e969 [ 249.277346][ T8339] RDX: 0000200000000100 RSI: 000000004018bc13 RDI: 0000000000000003 [ 249.277365][ T8339] RBP: 00007fb47408b090 R08: 0000000000000000 R09: 0000000000000000 [ 249.277384][ T8339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 249.277402][ T8339] R13: 0000000000000000 R14: 00007fb4733b5fa0 R15: 00007ffc6cc5cdf8 [ 249.277443][ T8339] [ 249.796271][ T8348] ima: policy update failed [ 249.804297][ T30] audit: type=1802 audit(6040695862.420:14): pid=8348 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.485" res=0 errno=0 [ 249.965388][ T8353] netlink: 28 bytes leftover after parsing attributes in process `syz.0.488'. [ 250.224004][ T8356] ima: policy update failed [ 250.235286][ T8363] FAULT_INJECTION: forcing a failure. [ 250.235286][ T8363] name failslab, interval 1, probability 0, space 0, times 0 [ 250.253173][ T30] audit: type=1802 audit(6040695862.840:15): pid=8356 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.489" res=0 errno=0 [ 250.340224][ T8363] CPU: 1 UID: 0 PID: 8363 Comm: syz.0.490 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 250.340268][ T8363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 250.340285][ T8363] Call Trace: [ 250.340295][ T8363] [ 250.340306][ T8363] dump_stack_lvl+0x16c/0x1f0 [ 250.340348][ T8363] should_fail_ex+0x512/0x640 [ 250.340391][ T8363] ? __kvmalloc_node_noprof+0x122/0x600 [ 250.340426][ T8363] should_failslab+0xc2/0x120 [ 250.340462][ T8363] __kvmalloc_node_noprof+0x135/0x600 [ 250.340497][ T8363] ? seq_read_iter+0x826/0x12c0 [ 250.340548][ T8363] ? seq_read_iter+0x826/0x12c0 [ 250.340589][ T8363] seq_read_iter+0x826/0x12c0 [ 250.340636][ T8363] ? __mutex_trylock_common+0xe9/0x250 [ 250.340690][ T8363] kernfs_fop_read_iter+0x40f/0x5a0 [ 250.340729][ T8363] ? rw_verify_area+0xcf/0x680 [ 250.340778][ T8363] vfs_read+0x8c8/0xc70 [ 250.340812][ T8363] ? __pfx___mutex_lock+0x10/0x10 [ 250.340849][ T8363] ? __pfx_vfs_read+0x10/0x10 [ 250.340913][ T8363] ksys_read+0x12a/0x240 [ 250.340939][ T8363] ? __pfx_ksys_read+0x10/0x10 [ 250.340981][ T8363] do_syscall_64+0xcd/0x230 [ 250.341020][ T8363] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 250.341050][ T8363] RIP: 0033:0x7efde8f8e969 [ 250.341074][ T8363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 250.341104][ T8363] RSP: 002b:00007efde6df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 250.341132][ T8363] RAX: ffffffffffffffda RBX: 00007efde91b6080 RCX: 00007efde8f8e969 [ 250.341152][ T8363] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000003 [ 250.341170][ T8363] RBP: 00007efde6df6090 R08: 0000000000000000 R09: 0000000000000000 [ 250.341188][ T8363] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 250.341206][ T8363] R13: 0000000000000001 R14: 00007efde91b6080 R15: 00007ffcbd845b98 [ 250.341250][ T8363] [ 250.714519][ T8359] zswap: compressor not available [ 250.821217][ T8364] zswap: compressor not available [ 251.114200][ T8384] netlink: 28 bytes leftover after parsing attributes in process `syz.0.495'. [ 251.274756][ T8384] bond0: (slave bond_slave_1): Releasing backup interface [ 253.283992][ T8419] Invalid ELF header magic: != ELF [ 254.018176][ T8437] random: crng reseeded on system resumption [ 254.070219][ T8439] bridge0: port 3(team0) entered blocking state [ 254.287877][ T8439] bridge0: port 3(team0) entered disabled state [ 254.294384][ T8439] team0: entered allmulticast mode [ 254.338601][ T8439] team_slave_0: entered allmulticast mode [ 254.344496][ T8439] team_slave_1: entered allmulticast mode [ 254.353415][ T8439] team0: entered promiscuous mode [ 254.358614][ T8439] team_slave_0: entered promiscuous mode [ 254.366448][ T8439] team_slave_1: entered promiscuous mode [ 254.481268][ T8439] bridge0: port 3(team0) entered blocking state [ 254.487980][ T8439] bridge0: port 3(team0) entered forwarding state [ 255.243077][ T8451] netlink: 'syz.3.512': attribute type 4 has an invalid length. [ 255.250915][ T8451] netlink: 314 bytes leftover after parsing attributes in process `syz.3.512'. [ 255.298482][ T8451] netlink: 'syz.3.512': attribute type 4 has an invalid length. [ 255.334778][ T8451] netlink: 314 bytes leftover after parsing attributes in process `syz.3.512'. [ 256.110418][ T8467] netlink: 4 bytes leftover after parsing attributes in process `syz.0.513'. [ 257.516657][ T8496] FAULT_INJECTION: forcing a failure. [ 257.516657][ T8496] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 257.658654][ T8496] CPU: 0 UID: 0 PID: 8496 Comm: syz.3.518 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 257.658698][ T8496] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 257.658716][ T8496] Call Trace: [ 257.658726][ T8496] [ 257.658737][ T8496] dump_stack_lvl+0x16c/0x1f0 [ 257.658777][ T8496] should_fail_ex+0x512/0x640 [ 257.658827][ T8496] _copy_to_user+0x32/0xd0 [ 257.658878][ T8496] simple_read_from_buffer+0xcb/0x170 [ 257.658924][ T8496] proc_fail_nth_read+0x197/0x270 [ 257.658969][ T8496] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 257.659016][ T8496] ? rw_verify_area+0xcf/0x680 [ 257.659060][ T8496] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 257.659103][ T8496] vfs_read+0x1de/0xc70 [ 257.659134][ T8496] ? _copy_to_user+0x48/0xd0 [ 257.659180][ T8496] ? __pfx_vfs_read+0x10/0x10 [ 257.659206][ T8496] ? __do_sys_adjtimex+0xe0/0x140 [ 257.659241][ T8496] ? __pfx___do_sys_adjtimex+0x10/0x10 [ 257.659276][ T8496] ? __pfx_do_sys_openat2+0x10/0x10 [ 257.659334][ T8496] ksys_read+0x12a/0x240 [ 257.659362][ T8496] ? __pfx_ksys_read+0x10/0x10 [ 257.659387][ T8496] ? rcu_is_watching+0x12/0xc0 [ 257.659433][ T8496] do_syscall_64+0xcd/0x230 [ 257.659475][ T8496] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 257.659506][ T8496] RIP: 0033:0x7fc2e7b8d37c [ 257.659530][ T8496] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 257.659559][ T8496] RSP: 002b:00007fc2e59f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 257.659587][ T8496] RAX: ffffffffffffffda RBX: 00007fc2e7db5fa0 RCX: 00007fc2e7b8d37c [ 257.659607][ T8496] RDX: 000000000000000f RSI: 00007fc2e59f60a0 RDI: 0000000000000004 [ 257.659624][ T8496] RBP: 00007fc2e59f6090 R08: 0000000000000000 R09: 0000000000000000 [ 257.659643][ T8496] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 257.659661][ T8496] R13: 0000000000000000 R14: 00007fc2e7db5fa0 R15: 00007ffc0d06b618 [ 257.659700][ T8496] [ 257.864855][ C0] vkms_vblank_simulate: vblank timer overrun [ 258.384738][ T8508] netlink: 'syz.2.519': attribute type 4 has an invalid length. [ 258.416269][ T8508] netlink: 314 bytes leftover after parsing attributes in process `syz.2.519'. [ 258.487172][ T8511] netlink: 'syz.2.519': attribute type 4 has an invalid length. [ 258.507616][ T8511] netlink: 314 bytes leftover after parsing attributes in process `syz.2.519'. [ 258.552330][ T8514] netlink: 'syz.1.520': attribute type 4 has an invalid length. [ 258.573443][ T8514] netlink: 314 bytes leftover after parsing attributes in process `syz.1.520'. [ 258.610132][ T8517] netlink: 'syz.1.520': attribute type 4 has an invalid length. [ 258.629127][ T8517] netlink: 314 bytes leftover after parsing attributes in process `syz.1.520'. [ 258.951372][ T55] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 260.491174][ T8554] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 260.600834][ T8550] FAULT_INJECTION: forcing a failure. [ 260.600834][ T8550] name failslab, interval 1, probability 0, space 0, times 0 [ 260.697412][ T8550] CPU: 0 UID: 0 PID: 8550 Comm: syz.2.526 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 260.697464][ T8550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 260.697483][ T8550] Call Trace: [ 260.697493][ T8550] [ 260.697506][ T8550] dump_stack_lvl+0x16c/0x1f0 [ 260.697551][ T8550] should_fail_ex+0x512/0x640 [ 260.697596][ T8550] ? fs_reclaim_acquire+0xae/0x150 [ 260.697649][ T8550] should_failslab+0xc2/0x120 [ 260.697689][ T8550] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 260.697728][ T8550] ? security_inode_alloc+0x3b/0x2b0 [ 260.697769][ T8550] security_inode_alloc+0x3b/0x2b0 [ 260.697807][ T8550] inode_init_always_gfp+0xce4/0x1030 [ 260.697866][ T8550] alloc_inode+0x86/0x240 [ 260.697920][ T8550] sock_alloc+0x40/0x280 [ 260.697964][ T8550] __sock_create+0xc1/0x8d0 [ 260.698009][ T8550] ? proc_create_reg+0xe3/0x180 [ 260.698051][ T8550] inet_ctl_sock_create+0x94/0x230 [ 260.698091][ T8550] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 260.698130][ T8550] ? lockdep_init_map_type+0x5c/0x280 [ 260.698176][ T8550] ? lockdep_init_map_type+0x5c/0x280 [ 260.698220][ T8550] ? __pfx_igmp_net_init+0x10/0x10 [ 260.698263][ T8550] igmp_net_init+0xd0/0x1a0 [ 260.698307][ T8550] ops_init+0x1df/0x5f0 [ 260.698344][ T8550] setup_net+0x21e/0x850 [ 260.698382][ T8550] ? __pfx_setup_net+0x10/0x10 [ 260.698413][ T8550] ? lockdep_init_map_type+0x5c/0x280 [ 260.698455][ T8550] ? __pfx_down_read_killable+0x10/0x10 [ 260.698506][ T8550] ? debug_mutex_init+0x37/0x70 [ 260.698564][ T8550] copy_net_ns+0x2a6/0x5f0 [ 260.698606][ T8550] create_new_namespaces+0x3ea/0xad0 [ 260.698652][ T8550] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 260.698692][ T8550] ksys_unshare+0x45b/0xa40 [ 260.698737][ T8550] ? __pfx_ksys_unshare+0x10/0x10 [ 260.698779][ T8550] ? xfd_validate_state+0x5d/0x180 [ 260.698834][ T8550] ? rcu_is_watching+0x12/0xc0 [ 260.698874][ T8550] __x64_sys_unshare+0x31/0x40 [ 260.698917][ T8550] do_syscall_64+0xcd/0x230 [ 260.698966][ T8550] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 260.698998][ T8550] RIP: 0033:0x7fd48558e969 [ 260.699025][ T8550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 260.699056][ T8550] RSP: 002b:00007fd4863f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 260.699087][ T8550] RAX: ffffffffffffffda RBX: 00007fd4857b5fa0 RCX: 00007fd48558e969 [ 260.699108][ T8550] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 260.699128][ T8550] RBP: 00007fd485610ab1 R08: 0000000000000000 R09: 0000000000000000 [ 260.699148][ T8550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 260.699167][ T8550] R13: 0000000000000000 R14: 00007fd4857b5fa0 R15: 00007ffe8dc22518 [ 260.699210][ T8550] [ 260.978282][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 260.984756][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 261.008128][ T55] Bluetooth: hci1: command 0x0c1a tx timeout [ 261.371200][ T8550] net_ratelimit: 20 callbacks suppressed [ 261.371226][ T8550] socket: no more sockets [ 261.531182][ T8550] Failed to initialize the IGMP autojoin socket (err -23) [ 263.113739][ T8589] ima: policy update failed [ 263.141038][ T30] audit: type=1802 audit(6040695875.747:16): pid=8589 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.534" res=0 errno=0 [ 263.162040][ T8591] FAULT_INJECTION: forcing a failure. [ 263.162040][ T8591] name failslab, interval 1, probability 0, space 0, times 0 [ 263.309255][ T8591] CPU: 1 UID: 0 PID: 8591 Comm: syz.0.536 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 263.309303][ T8591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 263.309321][ T8591] Call Trace: [ 263.309332][ T8591] [ 263.309344][ T8591] dump_stack_lvl+0x16c/0x1f0 [ 263.309388][ T8591] should_fail_ex+0x512/0x640 [ 263.309433][ T8591] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 263.309488][ T8591] should_failslab+0xc2/0x120 [ 263.309527][ T8591] __kmalloc_cache_noprof+0x6a/0x3e0 [ 263.309581][ T8591] ? snd_seq_prioq_new+0x3f/0x110 [ 263.309638][ T8591] snd_seq_prioq_new+0x3f/0x110 [ 263.309689][ T8591] snd_seq_queue_alloc+0x12b/0x550 [ 263.309749][ T8591] snd_seq_ioctl_create_queue+0xa9/0x380 [ 263.309787][ T8591] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 263.309831][ T8591] alloc_seq_queue+0xda/0x180 [ 263.309870][ T8591] ? __pfx_alloc_seq_queue+0x10/0x10 [ 263.309933][ T8591] ? mark_held_locks+0x49/0x80 [ 263.309973][ T8591] ? _raw_spin_unlock_irq+0x23/0x50 [ 263.310011][ T8591] snd_seq_oss_open+0x38c/0xa20 [ 263.310058][ T8591] odev_open+0x6f/0x90 [ 263.310089][ T8591] ? __pfx_odev_open+0x10/0x10 [ 263.310123][ T8591] soundcore_open+0x409/0x580 [ 263.310160][ T8591] ? __pfx_soundcore_open+0x10/0x10 [ 263.310193][ T8591] chrdev_open+0x231/0x6a0 [ 263.310229][ T8591] ? __pfx_apparmor_file_open+0x10/0x10 [ 263.310275][ T8591] ? __pfx_chrdev_open+0x10/0x10 [ 263.310312][ T8591] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 263.310369][ T8591] do_dentry_open+0x741/0x1c10 [ 263.310402][ T8591] ? __pfx_chrdev_open+0x10/0x10 [ 263.310444][ T8591] vfs_open+0x82/0x3f0 [ 263.310490][ T8591] path_openat+0x1e5e/0x2d40 [ 263.310537][ T8591] ? __pfx_path_openat+0x10/0x10 [ 263.310579][ T8591] do_filp_open+0x20b/0x470 [ 263.310610][ T8591] ? __pfx_do_filp_open+0x10/0x10 [ 263.310672][ T8591] ? alloc_fd+0x471/0x7d0 [ 263.310734][ T8591] do_sys_openat2+0x11b/0x1d0 [ 263.310784][ T8591] ? __pfx_do_sys_openat2+0x10/0x10 [ 263.310843][ T8591] __x64_sys_openat+0x174/0x210 [ 263.310887][ T8591] ? __pfx___x64_sys_openat+0x10/0x10 [ 263.310934][ T8591] ? rcu_is_watching+0x12/0xc0 [ 263.310976][ T8591] do_syscall_64+0xcd/0x230 [ 263.311020][ T8591] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 263.311052][ T8591] RIP: 0033:0x7efde8f8e969 [ 263.311077][ T8591] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 263.311108][ T8591] RSP: 002b:00007efde9d1a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 263.311139][ T8591] RAX: ffffffffffffffda RBX: 00007efde91b5fa0 RCX: 00007efde8f8e969 [ 263.311161][ T8591] RDX: 000000000000001f RSI: 0000200000000080 RDI: ffffffffffffff9c [ 263.311181][ T8591] RBP: 00007efde9010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 263.311201][ T8591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 263.311220][ T8591] R13: 0000000000000000 R14: 00007efde91b5fa0 R15: 00007ffcbd845b98 [ 263.311262][ T8591] [ 264.649535][ T8604] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input6 [ 265.883957][ T8619] netlink: 28 bytes leftover after parsing attributes in process `syz.1.542'. [ 266.244952][ T8631] netlink: 28 bytes leftover after parsing attributes in process `syz.0.545'. [ 268.477152][ T8659] ima: policy update failed [ 268.490518][ T30] audit: type=1802 audit(6040695881.097:17): pid=8659 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.550" res=0 errno=0 [ 270.811792][ T8696] FAULT_INJECTION: forcing a failure. [ 270.811792][ T8696] name failslab, interval 1, probability 0, space 0, times 0 [ 270.865945][ T8696] CPU: 0 UID: 0 PID: 8696 Comm: syz.2.559 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 270.865982][ T8696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 270.865997][ T8696] Call Trace: [ 270.866006][ T8696] [ 270.866015][ T8696] dump_stack_lvl+0x16c/0x1f0 [ 270.866051][ T8696] should_fail_ex+0x512/0x640 [ 270.866086][ T8696] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 270.866129][ T8696] should_failslab+0xc2/0x120 [ 270.866159][ T8696] __kmalloc_cache_noprof+0x6a/0x3e0 [ 270.866200][ T8696] ? copy_net_ns+0x135/0x5f0 [ 270.866237][ T8696] copy_net_ns+0x135/0x5f0 [ 270.866269][ T8696] ? copy_cgroup_ns+0xa4/0x6f0 [ 270.866299][ T8696] create_new_namespaces+0x3ea/0xad0 [ 270.866340][ T8696] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 270.866377][ T8696] ksys_unshare+0x45b/0xa40 [ 270.866419][ T8696] ? __pfx_ksys_unshare+0x10/0x10 [ 270.866460][ T8696] ? ksys_write+0x1b9/0x240 [ 270.866493][ T8696] ? rcu_is_watching+0x12/0xc0 [ 270.866524][ T8696] __x64_sys_unshare+0x31/0x40 [ 270.866557][ T8696] do_syscall_64+0xcd/0x230 [ 270.866591][ T8696] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 270.866616][ T8696] RIP: 0033:0x7fd48558e969 [ 270.866635][ T8696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 270.866659][ T8696] RSP: 002b:00007fd4863f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 270.866683][ T8696] RAX: ffffffffffffffda RBX: 00007fd4857b5fa0 RCX: 00007fd48558e969 [ 270.866699][ T8696] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 270.866714][ T8696] RBP: 00007fd4863f7090 R08: 0000000000000000 R09: 0000000000000000 [ 270.866729][ T8696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 270.866743][ T8696] R13: 0000000000000000 R14: 00007fd4857b5fa0 R15: 00007ffe8dc22518 [ 270.866774][ T8696] [ 271.689466][ T8699] netlink: zone id is out of range [ 271.697571][ T8699] netlink: zone id is out of range [ 271.757530][ T8699] netlink: zone id is out of range [ 271.777599][ T8699] netlink: zone id is out of range [ 271.782788][ T8699] netlink: zone id is out of range [ 271.845056][ T8699] netlink: zone id is out of range [ 271.884970][ T8699] netlink: zone id is out of range [ 271.905597][ T8699] netlink: zone id is out of range [ 271.916177][ T8699] netlink: zone id is out of range [ 271.921721][ T8699] netlink: zone id is out of range [ 272.163061][ T8719] netlink: 28 bytes leftover after parsing attributes in process `syz.1.563'. [ 272.464419][ T8719] bond0: (slave bond_slave_1): Releasing backup interface [ 273.539282][ T8726] Invalid ELF header magic: != ELF [ 273.694883][ T8758] netlink: 4 bytes leftover after parsing attributes in process `syz.0.568'. [ 274.561136][ T8779] netlink: 28 bytes leftover after parsing attributes in process `syz.2.571'. [ 275.050082][ T8779] bond0: (slave bond_slave_1): Releasing backup interface [ 275.612861][ T8803] can: request_module (can-proto-3) failed. [ 278.417240][ T8837] FAULT_INJECTION: forcing a failure. [ 278.417240][ T8837] name fail_futex, interval 1, probability 0, space 0, times 1 [ 278.491320][ T8837] CPU: 1 UID: 0 PID: 8837 Comm: syz.0.581 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 278.491364][ T8837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 278.491382][ T8837] Call Trace: [ 278.491391][ T8837] [ 278.491403][ T8837] dump_stack_lvl+0x16c/0x1f0 [ 278.491445][ T8837] should_fail_ex+0x512/0x640 [ 278.491494][ T8837] get_futex_key+0xabc/0x1000 [ 278.491529][ T8837] ? __pfx_get_futex_key+0x10/0x10 [ 278.491575][ T8837] futex_wake+0xe7/0x4e0 [ 278.491610][ T8837] ? rcu_is_watching+0x12/0xc0 [ 278.491643][ T8837] ? __pfx_futex_wake+0x10/0x10 [ 278.491698][ T8837] do_futex+0x1e3/0x350 [ 278.491731][ T8837] ? __pfx_do_futex+0x10/0x10 [ 278.491761][ T8837] ? __might_fault+0xe3/0x190 [ 278.491807][ T8837] mm_release+0x24e/0x300 [ 278.491848][ T8837] do_exit+0x898/0x2c30 [ 278.491889][ T8837] ? __pfx_futex_wake_mark+0x10/0x10 [ 278.491944][ T8837] ? __pfx_do_exit+0x10/0x10 [ 278.491985][ T8837] ? do_raw_spin_lock+0x12c/0x2b0 [ 278.492030][ T8837] ? find_held_lock+0x2b/0x80 [ 278.492066][ T8837] do_group_exit+0xd3/0x2a0 [ 278.492113][ T8837] get_signal+0x2673/0x26d0 [ 278.492161][ T8837] ? __pfx_get_signal+0x10/0x10 [ 278.492195][ T8837] ? do_futex+0x122/0x350 [ 278.492228][ T8837] ? __pfx_do_futex+0x10/0x10 [ 278.492265][ T8837] arch_do_signal_or_restart+0x8f/0x7a0 [ 278.492310][ T8837] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 278.492364][ T8837] ? ksys_mmap_pgoff+0x85/0x5c0 [ 278.492409][ T8837] ? rcu_is_watching+0x12/0xc0 [ 278.492445][ T8837] syscall_exit_to_user_mode+0x150/0x2a0 [ 278.492485][ T8837] do_syscall_64+0xda/0x230 [ 278.492525][ T8837] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 278.492556][ T8837] RIP: 0033:0x7efde8f8e969 [ 278.492579][ T8837] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 278.492608][ T8837] RSP: 002b:00007efde9d1a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 278.492638][ T8837] RAX: fffffffffffffe00 RBX: 00007efde91b5fa8 RCX: 00007efde8f8e969 [ 278.492658][ T8837] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007efde91b5fa8 [ 278.492678][ T8837] RBP: 00007efde91b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 278.492697][ T8837] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efde91b5fac [ 278.492715][ T8837] R13: 0000000000000000 R14: 00007ffcbd845ab0 R15: 00007ffcbd845b98 [ 278.492755][ T8837] [ 279.902024][ T8861] netlink: 28 bytes leftover after parsing attributes in process `syz.1.586'. [ 280.631579][ T8864] netlink: 28 bytes leftover after parsing attributes in process `syz.0.587'. [ 280.853287][ T8871] netlink: 28 bytes leftover after parsing attributes in process `syz.0.590'. [ 281.273750][ T8877] netlink: 28 bytes leftover after parsing attributes in process `syz.1.591'. [ 284.282266][ T8927] Invalid ELF header magic: != ELF [ 285.207508][ T8956] netlink: 28 bytes leftover after parsing attributes in process `syz.1.608'. [ 285.545866][ T8959] netlink: 342 bytes leftover after parsing attributes in process `syz.1.609'. [ 285.556374][ T8959] netlink: 342 bytes leftover after parsing attributes in process `syz.1.609'. [ 285.572417][ T8959] netlink: 4 bytes leftover after parsing attributes in process `syz.1.609'. [ 286.025222][ T8971] netlink: 28 bytes leftover after parsing attributes in process `syz.0.612'. [ 288.053894][ T8994] Invalid ELF header magic: != ELF [ 290.460016][ T9046] netlink: 28 bytes leftover after parsing attributes in process `syz.3.629'. [ 291.454200][ T9072] netlink: 72 bytes leftover after parsing attributes in process `syz.0.635'. [ 291.463536][ T9072] FAULT_INJECTION: forcing a failure. [ 291.463536][ T9072] name failslab, interval 1, probability 0, space 0, times 0 [ 291.482042][ T9072] CPU: 1 UID: 0 PID: 9072 Comm: syz.0.635 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 291.482084][ T9072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 291.482101][ T9072] Call Trace: [ 291.482111][ T9072] [ 291.482122][ T9072] dump_stack_lvl+0x16c/0x1f0 [ 291.482167][ T9072] should_fail_ex+0x512/0x640 [ 291.482214][ T9072] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 291.482254][ T9072] should_failslab+0xc2/0x120 [ 291.482290][ T9072] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 291.482323][ T9072] ? __alloc_skb+0x2b2/0x380 [ 291.482369][ T9072] ? bpf_lsm_capable+0x9/0x10 [ 291.482406][ T9072] __alloc_skb+0x2b2/0x380 [ 291.482453][ T9072] ? __pfx___alloc_skb+0x10/0x10 [ 291.482500][ T9072] ? genl_rcv_msg+0x470/0x800 [ 291.482535][ T9072] ? genl_rcv_msg+0x4bb/0x800 [ 291.482585][ T9072] netlink_ack+0x15d/0xb80 [ 291.482617][ T9072] ? __lock_acquire+0xaa4/0x1ba0 [ 291.482666][ T9072] netlink_rcv_skb+0x347/0x440 [ 291.482698][ T9072] ? __pfx_genl_rcv_msg+0x10/0x10 [ 291.482738][ T9072] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 291.482800][ T9072] ? __pfx_down_read+0x10/0x10 [ 291.482844][ T9072] ? netlink_deliver_tap+0x1ae/0xd30 [ 291.482881][ T9072] genl_rcv+0x28/0x40 [ 291.482922][ T9072] netlink_unicast+0x53a/0x7f0 [ 291.482960][ T9072] ? __pfx_netlink_unicast+0x10/0x10 [ 291.483005][ T9072] netlink_sendmsg+0x8d1/0xdd0 [ 291.483044][ T9072] ? __pfx_netlink_sendmsg+0x10/0x10 [ 291.483094][ T9072] ____sys_sendmsg+0xa95/0xc70 [ 291.483134][ T9072] ? copy_msghdr_from_user+0x10a/0x160 [ 291.483164][ T9072] ? __pfx_____sys_sendmsg+0x10/0x10 [ 291.483223][ T9072] ___sys_sendmsg+0x134/0x1d0 [ 291.483255][ T9072] ? __pfx____sys_sendmsg+0x10/0x10 [ 291.483374][ T9072] __sys_sendmsg+0x16d/0x220 [ 291.483405][ T9072] ? __pfx___sys_sendmsg+0x10/0x10 [ 291.483448][ T9072] ? rcu_is_watching+0x12/0xc0 [ 291.483489][ T9072] do_syscall_64+0xcd/0x230 [ 291.483530][ T9072] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 291.483562][ T9072] RIP: 0033:0x7efde8f8e969 [ 291.483584][ T9072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 291.483613][ T9072] RSP: 002b:00007efde9d1a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 291.483641][ T9072] RAX: ffffffffffffffda RBX: 00007efde91b5fa0 RCX: 00007efde8f8e969 [ 291.483662][ T9072] RDX: 0000000000040000 RSI: 0000200000000140 RDI: 0000000000000003 [ 291.483680][ T9072] RBP: 00007efde9d1a090 R08: 0000000000000000 R09: 0000000000000000 [ 291.483699][ T9072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 291.483717][ T9072] R13: 0000000000000000 R14: 00007efde91b5fa0 R15: 00007ffcbd845b98 [ 291.483768][ T9072] [ 291.748825][ T9078] FAULT_INJECTION: forcing a failure. [ 291.748825][ T9078] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 291.748902][ T9078] CPU: 0 UID: 0 PID: 9078 Comm: syz.0.637 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 291.748940][ T9078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 291.748958][ T9078] Call Trace: [ 291.748967][ T9078] [ 291.748979][ T9078] dump_stack_lvl+0x16c/0x1f0 [ 291.749020][ T9078] should_fail_ex+0x512/0x640 [ 291.749077][ T9078] _copy_from_user+0x2e/0xd0 [ 291.749124][ T9078] ppp_ioctl+0x1e9/0x2660 [ 291.749165][ T9078] ? find_held_lock+0x2b/0x80 [ 291.749194][ T9078] ? __pfx_ppp_ioctl+0x10/0x10 [ 291.749239][ T9078] ? __fget_files+0x20e/0x3c0 [ 291.749294][ T9078] ? __pfx_ppp_ioctl+0x10/0x10 [ 291.749333][ T9078] __x64_sys_ioctl+0x190/0x200 [ 291.749379][ T9078] do_syscall_64+0xcd/0x230 [ 291.749421][ T9078] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 291.749452][ T9078] RIP: 0033:0x7efde8f8e969 [ 291.749476][ T9078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 291.749505][ T9078] RSP: 002b:00007efde9d1a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 291.749534][ T9078] RAX: ffffffffffffffda RBX: 00007efde91b5fa0 RCX: 00007efde8f8e969 [ 291.749554][ T9078] RDX: 0000000000000000 RSI: 0000000040107447 RDI: 0000000000000003 [ 291.749572][ T9078] RBP: 00007efde9d1a090 R08: 0000000000000000 R09: 0000000000000000 [ 291.749590][ T9078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 291.749608][ T9078] R13: 0000000000000000 R14: 00007efde91b5fa0 R15: 00007ffcbd845b98 [ 291.749648][ T9078] [ 291.934265][ C0] vkms_vblank_simulate: vblank timer overrun [ 292.181411][ T9073] Invalid ELF header magic: != ELF [ 292.564325][ T9089] netlink: 74 bytes leftover after parsing attributes in process `syz.0.638'. [ 292.996090][ T9100] can: request_module (can-proto-3) failed. [ 293.916729][ T9104] netlink: 186 bytes leftover after parsing attributes in process `syz.3.641'. [ 294.058341][ T9112] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input7 [ 294.598661][ T9113] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8 [ 294.830455][ T9110] FAULT_INJECTION: forcing a failure. [ 294.830455][ T9110] name failslab, interval 1, probability 0, space 0, times 0 [ 294.909562][ T9110] CPU: 0 UID: 0 PID: 9110 Comm: syz.2.644 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 294.909612][ T9110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 294.909631][ T9110] Call Trace: [ 294.909642][ T9110] [ 294.909655][ T9110] dump_stack_lvl+0x16c/0x1f0 [ 294.909701][ T9110] should_fail_ex+0x512/0x640 [ 294.909746][ T9110] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 294.909805][ T9110] should_failslab+0xc2/0x120 [ 294.909845][ T9110] __kmalloc_cache_noprof+0x6a/0x3e0 [ 294.909898][ T9110] ? ptp_open+0xe3/0x520 [ 294.909933][ T9110] ptp_open+0xe3/0x520 [ 294.909970][ T9110] ? __pfx_ptp_open+0x10/0x10 [ 294.910014][ T9110] ? __pfx_ptp_open+0x10/0x10 [ 294.910047][ T9110] posix_clock_open+0x178/0x290 [ 294.910082][ T9110] ? __pfx_posix_clock_open+0x10/0x10 [ 294.910114][ T9110] chrdev_open+0x231/0x6a0 [ 294.910148][ T9110] ? __pfx_apparmor_file_open+0x10/0x10 [ 294.910189][ T9110] ? __pfx_chrdev_open+0x10/0x10 [ 294.910225][ T9110] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 294.910280][ T9110] do_dentry_open+0x741/0x1c10 [ 294.910311][ T9110] ? __pfx_chrdev_open+0x10/0x10 [ 294.910354][ T9110] vfs_open+0x82/0x3f0 [ 294.910398][ T9110] path_openat+0x1e5e/0x2d40 [ 294.910442][ T9110] ? __pfx_path_openat+0x10/0x10 [ 294.910482][ T9110] do_filp_open+0x20b/0x470 [ 294.910512][ T9110] ? __pfx_do_filp_open+0x10/0x10 [ 294.910584][ T9110] ? alloc_fd+0x471/0x7d0 [ 294.910646][ T9110] do_sys_openat2+0x11b/0x1d0 [ 294.910688][ T9110] ? __pfx_do_sys_openat2+0x10/0x10 [ 294.910747][ T9110] __x64_sys_openat+0x174/0x210 [ 294.910792][ T9110] ? __pfx___x64_sys_openat+0x10/0x10 [ 294.910837][ T9110] ? rcu_is_watching+0x12/0xc0 [ 294.910877][ T9110] do_syscall_64+0xcd/0x230 [ 294.910919][ T9110] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 294.910952][ T9110] RIP: 0033:0x7fd48558e969 [ 294.910978][ T9110] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 294.911009][ T9110] RSP: 002b:00007fd4863d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 294.911040][ T9110] RAX: ffffffffffffffda RBX: 00007fd4857b6080 RCX: 00007fd48558e969 [ 294.911061][ T9110] RDX: 0000000000000440 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 294.911080][ T9110] RBP: 00007fd485610ab1 R08: 0000000000000000 R09: 0000000000000000 [ 294.911098][ T9110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 294.911116][ T9110] R13: 0000000000000000 R14: 00007fd4857b6080 R15: 00007ffe8dc22518 [ 294.911158][ T9110] [ 295.847039][ T9126] netlink: 8 bytes leftover after parsing attributes in process `syz.0.648'. [ 296.282706][ T9147] Invalid ELF header magic: != ELF [ 296.335223][ T9150] netlink: 28 bytes leftover after parsing attributes in process `syz.3.653'. [ 296.635906][ T9151] zswap: compressor not available [ 296.660953][ T9154] sp0: Synchronizing with TNC [ 296.692527][ T9155] FAULT_INJECTION: forcing a failure. [ 296.692527][ T9155] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 296.726117][ T9155] CPU: 1 UID: 0 PID: 9155 Comm: syz.2.652 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 296.726161][ T9155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 296.726178][ T9155] Call Trace: [ 296.726187][ T9155] [ 296.726199][ T9155] dump_stack_lvl+0x16c/0x1f0 [ 296.726240][ T9155] should_fail_ex+0x512/0x640 [ 296.726288][ T9155] _copy_to_iter+0x2a4/0x15a0 [ 296.726335][ T9155] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 296.726380][ T9155] ? __pfx__copy_to_iter+0x10/0x10 [ 296.726438][ T9155] ? kernfs_seq_stop+0xcd/0x120 [ 296.726485][ T9155] ? kernfs_put_active+0x86/0xe0 [ 296.726523][ T9155] seq_read_iter+0xcf8/0x12c0 [ 296.726586][ T9155] kernfs_fop_read_iter+0x40f/0x5a0 [ 296.726623][ T9155] ? rw_verify_area+0xcf/0x680 [ 296.726672][ T9155] vfs_read+0x8c8/0xc70 [ 296.726704][ T9155] ? __pfx___mutex_lock+0x10/0x10 [ 296.726740][ T9155] ? __pfx_vfs_read+0x10/0x10 [ 296.726792][ T9155] ksys_read+0x12a/0x240 [ 296.726821][ T9155] ? __pfx_ksys_read+0x10/0x10 [ 296.726844][ T9155] ? rcu_is_watching+0x12/0xc0 [ 296.726885][ T9155] do_syscall_64+0xcd/0x230 [ 296.726923][ T9155] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 296.726950][ T9155] RIP: 0033:0x7fd48558e969 [ 296.726972][ T9155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 296.727000][ T9155] RSP: 002b:00007fd4863d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 296.727026][ T9155] RAX: ffffffffffffffda RBX: 00007fd4857b6080 RCX: 00007fd48558e969 [ 296.727044][ T9155] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000003 [ 296.727060][ T9155] RBP: 00007fd4863d6090 R08: 0000000000000000 R09: 0000000000000000 [ 296.727076][ T9155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 296.727093][ T9155] R13: 0000000000000001 R14: 00007fd4857b6080 R15: 00007ffe8dc22518 [ 296.727135][ T9155] [ 296.727770][ T9153] [U] [ 297.094406][ T9167] netlink: 28 bytes leftover after parsing attributes in process `syz.1.657'. [ 297.230317][ T9173] netlink: 'syz.2.656': attribute type 11 has an invalid length. [ 297.338403][ T9174] netlink: 28 bytes leftover after parsing attributes in process `syz.0.658'. [ 297.513039][ T9164] zswap: compressor not available [ 299.105542][ T9197] capability: warning: `syz.0.663' uses 32-bit capabilities (legacy support in use) [ 299.560480][ T9197] HfR: entered promiscuous mode [ 300.124841][ T9208] netlink: 4 bytes leftover after parsing attributes in process `syz.0.666'. [ 301.092741][ T9218] can: request_module (can-proto-3) failed. [ 301.501603][ T9221] netlink: 28 bytes leftover after parsing attributes in process `syz.3.670'. [ 303.091956][ T9246] netlink: 28 bytes leftover after parsing attributes in process `syz.1.674'. [ 304.353623][ T9260] Invalid ELF header magic: != ELF [ 304.411790][ T9244] random: crng reseeded on system resumption [ 304.515442][ T9265] netlink: 28 bytes leftover after parsing attributes in process `syz.1.677'. [ 305.044248][ T9273] netlink: 28 bytes leftover after parsing attributes in process `syz.0.679'. [ 307.059465][ T9310] netlink: 28 bytes leftover after parsing attributes in process `syz.3.686'. [ 308.254791][ T9325] FAULT_INJECTION: forcing a failure. [ 308.254791][ T9325] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 308.268381][ T9325] CPU: 0 UID: 0 PID: 9325 Comm: syz.3.691 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 308.268423][ T9325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 308.268452][ T9325] Call Trace: [ 308.268463][ T9325] [ 308.268475][ T9325] dump_stack_lvl+0x16c/0x1f0 [ 308.268516][ T9325] should_fail_ex+0x512/0x640 [ 308.268565][ T9325] should_fail_alloc_page+0xe7/0x130 [ 308.268611][ T9325] prepare_alloc_pages+0x3c2/0x610 [ 308.268657][ T9325] ? rcu_is_watching+0x12/0xc0 [ 308.268690][ T9325] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 308.268725][ T9325] ? rcu_is_watching+0x12/0xc0 [ 308.268748][ T9325] ? trace_sched_exit_tp+0xde/0x130 [ 308.268784][ T9325] ? __schedule+0x1186/0x5de0 [ 308.268825][ T9325] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 308.268875][ T9325] ? __lock_acquire+0x5ca/0x1ba0 [ 308.268915][ T9325] ? __lock_acquire+0x5ca/0x1ba0 [ 308.268951][ T9325] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 308.268991][ T9325] ? policy_nodemask+0xea/0x4e0 [ 308.269029][ T9325] alloc_pages_mpol+0x1fb/0x550 [ 308.269067][ T9325] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 308.269102][ T9325] ? __lock_acquire+0x5ca/0x1ba0 [ 308.269144][ T9325] folio_alloc_mpol_noprof+0x36/0x2f0 [ 308.269186][ T9325] vma_alloc_folio_noprof+0xed/0x1e0 [ 308.269225][ T9325] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 308.269277][ T9325] do_pte_missing+0x223d/0x3fb0 [ 308.269318][ T9325] __handle_mm_fault+0x103d/0x2a40 [ 308.269355][ T9325] ? __pfx___handle_mm_fault+0x10/0x10 [ 308.269385][ T9325] ? __pte_offset_map_lock+0x155/0x2f0 [ 308.269423][ T9325] ? find_held_lock+0x2b/0x80 [ 308.269447][ T9325] ? find_held_lock+0x2b/0x80 [ 308.269495][ T9325] handle_mm_fault+0x3fe/0xad0 [ 308.269528][ T9325] __get_user_pages+0x771/0x36f0 [ 308.269588][ T9325] ? __pfx_mt_find+0x10/0x10 [ 308.269625][ T9325] ? __pfx___get_user_pages+0x10/0x10 [ 308.269682][ T9325] populate_vma_page_range+0x278/0x3a0 [ 308.269730][ T9325] ? __pfx_populate_vma_page_range+0x10/0x10 [ 308.269775][ T9325] ? __pfx_find_vma_intersection+0x10/0x10 [ 308.269818][ T9325] ? do_mmap+0x69c/0x11b0 [ 308.269862][ T9325] __mm_populate+0x1d8/0x380 [ 308.269889][ T9325] ? __pfx___mm_populate+0x10/0x10 [ 308.269936][ T9325] ? up_write+0x1b2/0x520 [ 308.269979][ T9325] vm_mmap_pgoff+0x362/0x450 [ 308.270024][ T9325] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 308.270067][ T9325] ? __fget_files+0x20e/0x3c0 [ 308.270120][ T9325] ksys_mmap_pgoff+0x7d/0x5c0 [ 308.270159][ T9325] ? __pfx_ksys_write+0x10/0x10 [ 308.270183][ T9325] ? rcu_is_watching+0x12/0xc0 [ 308.270211][ T9325] __x64_sys_mmap+0x125/0x190 [ 308.270242][ T9325] do_syscall_64+0xcd/0x230 [ 308.270279][ T9325] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 308.270307][ T9325] RIP: 0033:0x7fc2e7b8e969 [ 308.270330][ T9325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 308.270358][ T9325] RSP: 002b:00007fc2e59f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 308.270385][ T9325] RAX: ffffffffffffffda RBX: 00007fc2e7db5fa0 RCX: 00007fc2e7b8e969 [ 308.270404][ T9325] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 308.270420][ T9325] RBP: 00007fc2e59f6090 R08: 0000000000000002 R09: 0000000000008000 [ 308.270438][ T9325] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000002 [ 308.270454][ T9325] R13: 0000000000000000 R14: 00007fc2e7db5fa0 R15: 00007ffc0d06b618 [ 308.270491][ T9325] [ 309.327561][ T55] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 309.907944][ T9350] ima: policy update failed [ 309.916952][ T30] audit: type=1802 audit(6040695922.527:18): pid=9350 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.696" res=0 errno=0 [ 309.966206][ T9345] device-mapper: ioctl: Unable to rename non-existent device, to uuid [ 310.370249][ T9356] can: request_module (can-proto-3) failed. [ 310.384050][ T9345] delete_channel: no stack [ 313.069507][ T9400] FAULT_INJECTION: forcing a failure. [ 313.069507][ T9400] name failslab, interval 1, probability 0, space 0, times 0 [ 313.082449][ T9400] CPU: 1 UID: 0 PID: 9400 Comm: syz.0.709 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 313.082479][ T9400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 313.082493][ T9400] Call Trace: [ 313.082508][ T9400] [ 313.082516][ T9400] dump_stack_lvl+0x16c/0x1f0 [ 313.082551][ T9400] should_fail_ex+0x512/0x640 [ 313.082584][ T9400] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 313.082625][ T9400] should_failslab+0xc2/0x120 [ 313.082653][ T9400] __kmalloc_cache_noprof+0x6a/0x3e0 [ 313.082689][ T9400] ? vhost_net_open+0x28/0x8a0 [ 313.082712][ T9400] ? vhost_net_open+0x6e/0x8a0 [ 313.082737][ T9400] ? __pfx_vhost_net_open+0x10/0x10 [ 313.082759][ T9400] vhost_net_open+0x6e/0x8a0 [ 313.082780][ T9400] ? __pfx_vhost_net_open+0x10/0x10 [ 313.082804][ T9400] misc_open+0x35a/0x420 [ 313.082839][ T9400] ? __pfx_misc_open+0x10/0x10 [ 313.082879][ T9400] chrdev_open+0x231/0x6a0 [ 313.082911][ T9400] ? __pfx_apparmor_file_open+0x10/0x10 [ 313.082957][ T9400] ? __pfx_chrdev_open+0x10/0x10 [ 313.082995][ T9400] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 313.083042][ T9400] do_dentry_open+0x741/0x1c10 [ 313.083065][ T9400] ? __pfx_chrdev_open+0x10/0x10 [ 313.083095][ T9400] vfs_open+0x82/0x3f0 [ 313.083127][ T9400] path_openat+0x1e5e/0x2d40 [ 313.083159][ T9400] ? __pfx_path_openat+0x10/0x10 [ 313.083188][ T9400] do_filp_open+0x20b/0x470 [ 313.083210][ T9400] ? __pfx_do_filp_open+0x10/0x10 [ 313.083253][ T9400] ? alloc_fd+0x471/0x7d0 [ 313.083295][ T9400] do_sys_openat2+0x11b/0x1d0 [ 313.083325][ T9400] ? __pfx_do_sys_openat2+0x10/0x10 [ 313.083357][ T9400] ? do_fcntl+0x1eb/0x1590 [ 313.083389][ T9400] __x64_sys_openat+0x174/0x210 [ 313.083421][ T9400] ? __pfx___x64_sys_openat+0x10/0x10 [ 313.083456][ T9400] ? rcu_is_watching+0x12/0xc0 [ 313.083486][ T9400] do_syscall_64+0xcd/0x230 [ 313.083524][ T9400] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 313.083548][ T9400] RIP: 0033:0x7efde8f8e969 [ 313.083567][ T9400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 313.083589][ T9400] RSP: 002b:00007efde9d1a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 313.083610][ T9400] RAX: ffffffffffffffda RBX: 00007efde91b5fa0 RCX: 00007efde8f8e969 [ 313.083625][ T9400] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 313.083640][ T9400] RBP: 00007efde9010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 313.083655][ T9400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 313.083669][ T9400] R13: 0000000000000000 R14: 00007efde91b5fa0 R15: 00007ffcbd845b98 [ 313.083698][ T9400] [ 313.448706][ T9407] netlink: 8 bytes leftover after parsing attributes in process `syz.1.711'. [ 313.528460][ T9409] netlink: 8 bytes leftover after parsing attributes in process `syz.1.711'. [ 313.794828][ T9412] netlink: 'syz.0.712': attribute type 4 has an invalid length. [ 313.823711][ T9412] netlink: 314 bytes leftover after parsing attributes in process `syz.0.712'. [ 313.852771][ T9412] netlink: 'syz.0.712': attribute type 4 has an invalid length. [ 313.870258][ T9412] netlink: 314 bytes leftover after parsing attributes in process `syz.0.712'. [ 314.389370][ T9404] FAULT_INJECTION: forcing a failure. [ 314.389370][ T9404] name failslab, interval 1, probability 0, space 0, times 0 [ 314.482128][ T9404] CPU: 1 UID: 0 PID: 9404 Comm: syz.2.710 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 314.482186][ T9404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 314.482204][ T9404] Call Trace: [ 314.482215][ T9404] [ 314.482227][ T9404] dump_stack_lvl+0x16c/0x1f0 [ 314.482270][ T9404] should_fail_ex+0x512/0x640 [ 314.482314][ T9404] ? __kmalloc_noprof+0xbf/0x510 [ 314.482350][ T9404] ? __register_sysctl_table+0xea2/0x1900 [ 314.482384][ T9404] should_failslab+0xc2/0x120 [ 314.482423][ T9404] __kmalloc_noprof+0xd2/0x510 [ 314.482453][ T9404] ? __register_sysctl_table+0xe8e/0x1900 [ 314.482497][ T9404] __register_sysctl_table+0xea2/0x1900 [ 314.482541][ T9404] ? __pfx___register_sysctl_table+0x10/0x10 [ 314.482574][ T9404] ? is_module_address+0x69/0xf0 [ 314.482618][ T9404] ? register_net_sysctl_sz+0x228/0x3e0 [ 314.482671][ T9404] __devinet_sysctl_register+0x1b9/0x360 [ 314.482711][ T9404] ? __pfx___devinet_sysctl_register+0x10/0x10 [ 314.482743][ T9404] ? trace_kmalloc+0x2b/0xd0 [ 314.482787][ T9404] ? devinet_init_net+0xeb/0x910 [ 314.482823][ T9404] ? __asan_memcpy+0x3c/0x60 [ 314.482877][ T9404] devinet_init_net+0x315/0x910 [ 314.482913][ T9404] ? __pfx_devinet_init_net+0x10/0x10 [ 314.482947][ T9404] ops_init+0x1df/0x5f0 [ 314.482984][ T9404] setup_net+0x21e/0x850 [ 314.483021][ T9404] ? __pfx_setup_net+0x10/0x10 [ 314.483068][ T9404] ? lockdep_init_map_type+0x5c/0x280 [ 314.483109][ T9404] ? __pfx_down_read_killable+0x10/0x10 [ 314.483166][ T9404] ? debug_mutex_init+0x37/0x70 [ 314.483223][ T9404] copy_net_ns+0x2a6/0x5f0 [ 314.483265][ T9404] create_new_namespaces+0x3ea/0xad0 [ 314.483310][ T9404] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 314.483351][ T9404] ksys_unshare+0x45b/0xa40 [ 314.483395][ T9404] ? __pfx_ksys_unshare+0x10/0x10 [ 314.483434][ T9404] ? xfd_validate_state+0x5d/0x180 [ 314.483489][ T9404] ? rcu_is_watching+0x12/0xc0 [ 314.483529][ T9404] __x64_sys_unshare+0x31/0x40 [ 314.483570][ T9404] do_syscall_64+0xcd/0x230 [ 314.483612][ T9404] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 314.483644][ T9404] RIP: 0033:0x7fd48558e969 [ 314.483670][ T9404] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 314.483702][ T9404] RSP: 002b:00007fd4863f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 314.483734][ T9404] RAX: ffffffffffffffda RBX: 00007fd4857b5fa0 RCX: 00007fd48558e969 [ 314.483756][ T9404] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 314.483776][ T9404] RBP: 00007fd485610ab1 R08: 0000000000000000 R09: 0000000000000000 [ 314.483796][ T9404] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 314.483817][ T9404] R13: 0000000000000000 R14: 00007fd4857b5fa0 R15: 00007ffe8dc22518 [ 314.483860][ T9404] [ 315.083474][ T9404] sysctl could not get directory: /net/ipv4 -12 [ 316.230037][ T9454] FAULT_INJECTION: forcing a failure. [ 316.230037][ T9454] name failslab, interval 1, probability 0, space 0, times 0 [ 316.287570][ T9454] CPU: 1 UID: 0 PID: 9454 Comm: syz.0.720 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 316.287616][ T9454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 316.287634][ T9454] Call Trace: [ 316.287644][ T9454] [ 316.287655][ T9454] dump_stack_lvl+0x16c/0x1f0 [ 316.287696][ T9454] should_fail_ex+0x512/0x640 [ 316.287728][ T9454] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 316.287756][ T9454] should_failslab+0xc2/0x120 [ 316.287784][ T9454] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 316.287808][ T9454] ? crng_make_state+0x48e/0x6d0 [ 316.287837][ T9454] ? proc_net_ns_init+0x42/0x410 [ 316.287865][ T9454] ? __pfx_proc_net_ns_init+0x10/0x10 [ 316.287892][ T9454] proc_net_ns_init+0x42/0x410 [ 316.287919][ T9454] ? __pfx_proc_net_ns_init+0x10/0x10 [ 316.287943][ T9454] ops_init+0x1df/0x5f0 [ 316.287970][ T9454] setup_net+0x21e/0x850 [ 316.287996][ T9454] ? __pfx_setup_net+0x10/0x10 [ 316.288017][ T9454] ? lockdep_init_map_type+0x5c/0x280 [ 316.288048][ T9454] ? __pfx_down_read_killable+0x10/0x10 [ 316.288091][ T9454] ? debug_mutex_init+0x37/0x70 [ 316.288143][ T9454] copy_net_ns+0x2a6/0x5f0 [ 316.288171][ T9454] create_new_namespaces+0x3ea/0xad0 [ 316.288201][ T9454] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 316.288228][ T9454] ksys_unshare+0x45b/0xa40 [ 316.288258][ T9454] ? __pfx_ksys_unshare+0x10/0x10 [ 316.288288][ T9454] ? ksys_write+0x1b9/0x240 [ 316.288308][ T9454] ? rcu_is_watching+0x12/0xc0 [ 316.288334][ T9454] __x64_sys_unshare+0x31/0x40 [ 316.288363][ T9454] do_syscall_64+0xcd/0x230 [ 316.288392][ T9454] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 316.288414][ T9454] RIP: 0033:0x7efde8f8e969 [ 316.288449][ T9454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 316.288472][ T9454] RSP: 002b:00007efde9d1a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 316.288493][ T9454] RAX: ffffffffffffffda RBX: 00007efde91b5fa0 RCX: 00007efde8f8e969 [ 316.288508][ T9454] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 316.288521][ T9454] RBP: 00007efde9d1a090 R08: 0000000000000000 R09: 0000000000000000 [ 316.288535][ T9454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 316.288548][ T9454] R13: 0000000000000000 R14: 00007efde91b5fa0 R15: 00007ffcbd845b98 [ 316.288577][ T9454] [ 317.436881][ T9468] ima: policy update failed [ 317.454401][ T30] audit: type=1802 audit(6040695930.057:19): pid=9468 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.722" res=0 errno=0 [ 318.297683][ T30] audit: type=1326 audit(6040695930.887:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9478 comm="syz.0.725" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7efde8f8e969 code=0x0 [ 319.510318][ T9483] netlink: 186 bytes leftover after parsing attributes in process `syz.3.724'. [ 320.601134][ T9513] netlink: 8 bytes leftover after parsing attributes in process `syz.1.727'. [ 321.249984][ T9532] netlink: 28 bytes leftover after parsing attributes in process `syz.2.732'. [ 322.157096][ T9554] CIFS: VFS: Invalid SecurityFlags: [ 322.291750][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 322.298360][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 322.319180][ T13] sl0: compressed packet ignored [ 323.368217][ T9565] can: request_module (can-proto-3) failed. [ 323.794064][ T9571] kafs: addr_prefs: Invalid Command [ 324.326592][ T9579] netlink: 28 bytes leftover after parsing attributes in process `syz.1.740'. [ 325.706952][ T9602] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size [ 326.078513][ T9609] netlink: 28 bytes leftover after parsing attributes in process `syz.3.746'. [ 326.345159][ T9599] netlink: 186 bytes leftover after parsing attributes in process `syz.1.744'. [ 327.281720][ T9618] Invalid ELF header magic: != ELF [ 327.794037][ T30] audit: type=1804 audit(6040695940.407:21): pid=9629 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.750" name="/newroot/sys/kernel/tracing/tracing_cpumask" dev="tracefs" ino=1125 res=1 errno=0 [ 328.036866][ T9640] netlink: 28 bytes leftover after parsing attributes in process `syz.1.751'. [ 328.369809][ T9650] netlink: 28 bytes leftover after parsing attributes in process `syz.2.755'. [ 331.115653][ T9702] netlink: 338 bytes leftover after parsing attributes in process `syz.2.762'. [ 331.870414][ T9716] can: request_module (can-proto-3) failed. [ 331.977413][ T9706] netlink: 186 bytes leftover after parsing attributes in process `syz.0.761'. [ 335.956300][ T9768] netlink: 28 bytes leftover after parsing attributes in process `syz.2.771'. [ 338.578490][ T9796] ima: policy update failed [ 338.589340][ T30] audit: type=1802 audit(6040695951.197:22): pid=9796 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.779" res=0 errno=0 [ 338.964992][ T9799] netlink: 8 bytes leftover after parsing attributes in process `syz.2.780'. [ 339.826074][ T9825] ima: policy update failed [ 339.878544][ T30] audit: type=1802 audit(6040695952.467:23): pid=9825 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.785" res=0 errno=0 [ 340.289098][ T9829] nvme_fabrics: missing parameter 'transport=%s' [ 340.335454][ T9829] nvme_fabrics: missing parameter 'nqn=%s' [ 342.905460][ T9860] netlink: 8 bytes leftover after parsing attributes in process `syz.2.792'. [ 343.453428][ T9854] netlink: 8 bytes leftover after parsing attributes in process `syz.0.793'. [ 343.690745][ T9880] netlink: 28 bytes leftover after parsing attributes in process `syz.2.797'. [ 343.766711][ T9875] Invalid ELF header magic: != ELF [ 344.604272][ T9896] netlink: 4 bytes leftover after parsing attributes in process `syz.2.801'. [ 345.490662][ T55] Bluetooth: hci0: unexpected subevent 0x01 length: 4 < 18 [ 345.765767][ T30] audit: type=1800 audit(6040695966.376:24): pid=9919 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.804" name="dbroot" dev="configfs" ino=24432 res=0 errno=0 [ 345.825436][ T9905] netlink: 186 bytes leftover after parsing attributes in process `syz.3.803'. [ 347.534576][ T9939] FAULT_INJECTION: forcing a failure. [ 347.534576][ T9939] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 347.583578][ T9939] CPU: 0 UID: 0 PID: 9939 Comm: syz.2.810 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 347.583618][ T9939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 347.583635][ T9939] Call Trace: [ 347.583643][ T9939] [ 347.583653][ T9939] dump_stack_lvl+0x16c/0x1f0 [ 347.583690][ T9939] should_fail_ex+0x512/0x640 [ 347.583734][ T9939] _copy_to_user+0x32/0xd0 [ 347.583778][ T9939] simple_read_from_buffer+0xcb/0x170 [ 347.583834][ T9939] proc_fail_nth_read+0x197/0x270 [ 347.583874][ T9939] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 347.583914][ T9939] ? rw_verify_area+0xcf/0x680 [ 347.583975][ T9939] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 347.584015][ T9939] vfs_read+0x1de/0xc70 [ 347.584043][ T9939] ? __pfx___mutex_lock+0x10/0x10 [ 347.584078][ T9939] ? __pfx_vfs_read+0x10/0x10 [ 347.584114][ T9939] ? __fget_files+0x20e/0x3c0 [ 347.584172][ T9939] ksys_read+0x12a/0x240 [ 347.584199][ T9939] ? __pfx_ksys_read+0x10/0x10 [ 347.584240][ T9939] do_syscall_64+0xcd/0x230 [ 347.584281][ T9939] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 347.584308][ T9939] RIP: 0033:0x7fd48558d37c [ 347.584330][ T9939] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 347.584359][ T9939] RSP: 002b:00007fd4863f7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 347.584386][ T9939] RAX: ffffffffffffffda RBX: 00007fd4857b5fa0 RCX: 00007fd48558d37c [ 347.584405][ T9939] RDX: 000000000000000f RSI: 00007fd4863f70a0 RDI: 0000000000000004 [ 347.584422][ T9939] RBP: 00007fd4863f7090 R08: 0000000000000000 R09: 0000000000000000 [ 347.584439][ T9939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 347.584456][ T9939] R13: 0000000000000000 R14: 00007fd4857b5fa0 R15: 00007ffe8dc22518 [ 347.584493][ T9939] [ 348.803157][ T9951] Invalid ELF header magic: != ELF [ 349.888167][ T9967] ima: policy update failed [ 349.907882][ T30] audit: type=1802 audit(6040695970.506:25): pid=9967 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.816" res=0 errno=0 [ 349.939554][ T9967] netlink: 25 bytes leftover after parsing attributes in process `syz.3.816'. [ 349.984184][ T9967] FAULT_INJECTION: forcing a failure. [ 349.984184][ T9967] name failslab, interval 1, probability 0, space 0, times 0 [ 350.037889][ T9967] CPU: 1 UID: 0 PID: 9967 Comm: syz.3.816 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 350.037933][ T9967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 350.037951][ T9967] Call Trace: [ 350.037962][ T9967] [ 350.037974][ T9967] dump_stack_lvl+0x16c/0x1f0 [ 350.038018][ T9967] should_fail_ex+0x512/0x640 [ 350.038061][ T9967] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 350.038101][ T9967] should_failslab+0xc2/0x120 [ 350.038140][ T9967] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 350.038174][ T9967] ? __alloc_skb+0x2b2/0x380 [ 350.038229][ T9967] __alloc_skb+0x2b2/0x380 [ 350.038280][ T9967] ? __pfx___alloc_skb+0x10/0x10 [ 350.038343][ T9967] netlink_ack+0x15d/0xb80 [ 350.038390][ T9967] netlink_rcv_skb+0x347/0x440 [ 350.038423][ T9967] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 350.038465][ T9967] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 350.038495][ T9967] ? __pfx_aa_get_newest_label+0x10/0x10 [ 350.038545][ T9967] ? bpf_lsm_capable+0x9/0x10 [ 350.038577][ T9967] ? security_capable+0x7e/0x260 [ 350.038630][ T9967] ? ns_capable+0xd7/0x110 [ 350.038676][ T9967] nfnetlink_rcv+0x1b3/0x430 [ 350.038714][ T9967] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 350.038750][ T9967] ? netlink_deliver_tap+0x1ae/0xd30 [ 350.038789][ T9967] netlink_unicast+0x53a/0x7f0 [ 350.038827][ T9967] ? __pfx_netlink_unicast+0x10/0x10 [ 350.038858][ T9967] ? __build_skb_around+0x278/0x3b0 [ 350.038903][ T9967] ? __build_skb+0x6e/0x90 [ 350.038932][ T9967] ? is_vmalloc_addr+0x30/0x40 [ 350.038971][ T9967] netlink_sendmsg+0x8d1/0xdd0 [ 350.039012][ T9967] ? __pfx_netlink_sendmsg+0x10/0x10 [ 350.039060][ T9967] sock_write_iter+0x4fc/0x5b0 [ 350.039102][ T9967] ? __pfx_sock_write_iter+0x10/0x10 [ 350.039157][ T9967] ? bpf_lsm_file_permission+0x9/0x10 [ 350.039203][ T9967] ? security_file_permission+0x71/0x210 [ 350.039245][ T9967] ? rw_verify_area+0xcf/0x680 [ 350.039295][ T9967] vfs_write+0x5ba/0x1180 [ 350.039325][ T9967] ? __pfx_sock_write_iter+0x10/0x10 [ 350.039369][ T9967] ? __pfx_vfs_write+0x10/0x10 [ 350.039394][ T9967] ? find_held_lock+0x2b/0x80 [ 350.039450][ T9967] ksys_write+0x205/0x240 [ 350.039479][ T9967] ? __pfx_ksys_write+0x10/0x10 [ 350.039506][ T9967] ? rcu_is_watching+0x12/0xc0 [ 350.039546][ T9967] do_syscall_64+0xcd/0x230 [ 350.039588][ T9967] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 350.039619][ T9967] RIP: 0033:0x7fc2e7b8e969 [ 350.039643][ T9967] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 350.039680][ T9967] RSP: 002b:00007fc2e59f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 350.039710][ T9967] RAX: ffffffffffffffda RBX: 00007fc2e7db5fa0 RCX: 00007fc2e7b8e969 [ 350.039731][ T9967] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000002 [ 350.039751][ T9967] RBP: 00007fc2e59f6090 R08: 0000000000000000 R09: 0000000000000000 [ 350.039771][ T9967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 350.039790][ T9967] R13: 0000000000000000 R14: 00007fc2e7db5fa0 R15: 00007ffc0d06b618 [ 350.039842][ T9967] [ 350.077893][ T9969] synth uevent: /devices/platform/dummy_hcd.3/usb4/ep_00: unknown uevent action string [ 350.078071][ T9969] ep_00: uevent: failed to send synthetic uevent: -22 [ 351.901360][ T9975] netlink: 28 bytes leftover after parsing attributes in process `syz.2.819'. [ 351.928942][ T55] Bluetooth: hci0: SCO packet for unknown connection handle 0 [ 352.187100][ T9999] random: crng reseeded on system resumption [ 352.233595][T10003] netlink: 4 bytes leftover after parsing attributes in process `syz.1.825'. [ 352.319161][T10005] netlink: 'syz.2.826': attribute type 4 has an invalid length. [ 352.326886][T10005] netlink: 314 bytes leftover after parsing attributes in process `syz.2.826'. [ 352.387631][T10006] netlink: 'syz.2.826': attribute type 4 has an invalid length. [ 352.408125][T10006] netlink: 314 bytes leftover after parsing attributes in process `syz.2.826'. [ 353.036379][T10021] netlink: 'syz.3.829': attribute type 4 has an invalid length. [ 353.046070][T10021] netlink: 314 bytes leftover after parsing attributes in process `syz.3.829'. [ 353.085594][T10023] Invalid ELF header magic: != ELF [ 353.568838][T10036] netlink: 4 bytes leftover after parsing attributes in process `syz.0.831'. [ 354.642199][T10049] random: crng reseeded on system resumption [ 355.554440][T10046] zswap: compressor not available [ 356.049864][T10069] netlink: 4 bytes leftover after parsing attributes in process `syz.0.838'. [ 356.540088][T10069] zswap: compressor not available [ 358.455760][T10096] netlink: 186 bytes leftover after parsing attributes in process `syz.1.845'. [ 358.493105][T10097] netlink: 186 bytes leftover after parsing attributes in process `syz.0.844'. [ 359.049315][T10110] ima: policy update failed [ 359.064923][ T30] audit: type=1802 audit(6040695979.676:26): pid=10110 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.848" res=0 errno=0 [ 360.051831][T10132] netlink: 338 bytes leftover after parsing attributes in process `syz.1.853'. [ 361.572292][T10153] ima: policy update failed [ 361.645582][ T30] audit: type=1802 audit(6040695982.256:27): pid=10153 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.857" res=0 errno=0 [ 361.687111][T10137] Invalid ELF header magic: != ELF [ 362.136942][T10152] netlink: 186 bytes leftover after parsing attributes in process `syz.3.856'. [ 363.057819][T10173] can: request_module (can-proto-3) failed. [ 364.069988][T10188] ima: policy update failed [ 364.074888][ T30] audit: type=1802 audit(6040695984.686:28): pid=10188 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.865" res=0 errno=0 [ 364.350122][T10195] netlink: 'syz.3.867': attribute type 21 has an invalid length. [ 364.369841][T10195] netlink: 326 bytes leftover after parsing attributes in process `syz.3.867'. [ 364.923079][T10201] FAULT_INJECTION: forcing a failure. [ 364.923079][T10201] name failslab, interval 1, probability 0, space 0, times 0 [ 364.966889][T10201] CPU: 0 UID: 0 PID: 10201 Comm: syz.2.869 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 364.966940][T10201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 364.966960][T10201] Call Trace: [ 364.966971][T10201] [ 364.966984][T10201] dump_stack_lvl+0x16c/0x1f0 [ 364.967029][T10201] should_fail_ex+0x512/0x640 [ 364.967074][T10201] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 364.967131][T10201] should_failslab+0xc2/0x120 [ 364.967170][T10201] __kmalloc_cache_noprof+0x6a/0x3e0 [ 364.967225][T10201] ? snd_seq_oss_writeq_new+0xb3/0x330 [ 364.967284][T10201] snd_seq_oss_writeq_new+0xb3/0x330 [ 364.967336][T10201] ? __pfx_snd_seq_oss_writeq_new+0x10/0x10 [ 364.967404][T10201] ? __raw_spin_lock_init+0x3a/0x110 [ 364.967464][T10201] snd_seq_oss_open+0x7ac/0xa20 [ 364.967511][T10201] odev_open+0x6f/0x90 [ 364.967543][T10201] ? __pfx_odev_open+0x10/0x10 [ 364.967575][T10201] soundcore_open+0x409/0x580 [ 364.967610][T10201] ? __pfx_soundcore_open+0x10/0x10 [ 364.967644][T10201] chrdev_open+0x231/0x6a0 [ 364.967675][T10201] ? __pfx_apparmor_file_open+0x10/0x10 [ 364.967716][T10201] ? __pfx_chrdev_open+0x10/0x10 [ 364.967754][T10201] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 364.967806][T10201] do_dentry_open+0x741/0x1c10 [ 364.967847][T10201] ? __pfx_chrdev_open+0x10/0x10 [ 364.967890][T10201] vfs_open+0x82/0x3f0 [ 364.967936][T10201] path_openat+0x1e5e/0x2d40 [ 364.967982][T10201] ? __pfx_path_openat+0x10/0x10 [ 364.968023][T10201] do_filp_open+0x20b/0x470 [ 364.968053][T10201] ? __pfx_do_filp_open+0x10/0x10 [ 364.968113][T10201] ? alloc_fd+0x471/0x7d0 [ 364.968174][T10201] do_sys_openat2+0x11b/0x1d0 [ 364.968217][T10201] ? __pfx_do_sys_openat2+0x10/0x10 [ 364.968277][T10201] __x64_sys_openat+0x174/0x210 [ 364.968321][T10201] ? __pfx___x64_sys_openat+0x10/0x10 [ 364.968367][T10201] ? rcu_is_watching+0x12/0xc0 [ 364.968410][T10201] do_syscall_64+0xcd/0x230 [ 364.968453][T10201] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 364.968486][T10201] RIP: 0033:0x7fd48558e969 [ 364.968513][T10201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 364.968545][T10201] RSP: 002b:00007fd4863f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 364.968576][T10201] RAX: ffffffffffffffda RBX: 00007fd4857b5fa0 RCX: 00007fd48558e969 [ 364.968598][T10201] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 364.968620][T10201] RBP: 00007fd485610ab1 R08: 0000000000000000 R09: 0000000000000000 [ 364.968638][T10201] R10: 000000000000003f R11: 0000000000000246 R12: 0000000000000000 [ 364.968657][T10201] R13: 0000000000000000 R14: 00007fd4857b5fa0 R15: 00007ffe8dc22518 [ 364.968696][T10201] [ 366.129387][T10223] netlink: 8 bytes leftover after parsing attributes in process `syz.3.875'. [ 366.178890][T10223] netlink: 8 bytes leftover after parsing attributes in process `syz.3.875'. [ 366.563131][T10230] ima: policy update failed [ 366.584418][ T30] audit: type=1802 audit(6040695987.186:29): pid=10230 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.877" res=0 errno=0 [ 366.817902][T10233] netlink: 338 bytes leftover after parsing attributes in process `syz.0.878'. [ 368.026934][T10246] netlink: 8 bytes leftover after parsing attributes in process `syz.0.880'. [ 369.871347][T10275] ima: policy update failed [ 369.888274][ T30] audit: type=1802 audit(6040695990.486:30): pid=10275 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.887" res=0 errno=0 [ 370.730578][T10285] can: request_module (can-proto-3) failed. [ 372.821310][T10315] netlink: 28 bytes leftover after parsing attributes in process `syz.3.895'. [ 373.311228][T10328] netlink: 146 bytes leftover after parsing attributes in process `syz.2.897'. [ 374.488481][T10328] FAULT_INJECTION: forcing a failure. [ 374.488481][T10328] name failslab, interval 1, probability 0, space 0, times 0 [ 374.571729][T10328] CPU: 1 UID: 0 PID: 10328 Comm: syz.2.897 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 374.571777][T10328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 374.571796][T10328] Call Trace: [ 374.571806][T10328] [ 374.571817][T10328] dump_stack_lvl+0x16c/0x1f0 [ 374.571879][T10328] should_fail_ex+0x512/0x640 [ 374.571923][T10328] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 374.571963][T10328] should_failslab+0xc2/0x120 [ 374.572004][T10328] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 374.572040][T10328] ? __kernfs_new_node+0xd2/0x8a0 [ 374.572096][T10328] __kernfs_new_node+0xd2/0x8a0 [ 374.572151][T10328] ? __pfx___kernfs_new_node+0x10/0x10 [ 374.572221][T10328] ? find_held_lock+0x2b/0x80 [ 374.572255][T10328] ? kernfs_root+0xee/0x2a0 [ 374.572314][T10328] kernfs_new_node+0x13c/0x1e0 [ 374.572357][T10328] __kernfs_create_file+0x53/0x350 [ 374.572404][T10328] sysfs_add_file_mode_ns+0x207/0x3c0 [ 374.572465][T10328] internal_create_group+0x578/0xf30 [ 374.572529][T10328] ? __pfx_internal_create_group+0x10/0x10 [ 374.572590][T10328] ? kernfs_create_link+0x1bd/0x240 [ 374.572640][T10328] internal_create_groups+0x9d/0x150 [ 374.572676][T10328] device_add+0x6d1/0x1a70 [ 374.572723][T10328] ? __pfx_device_add+0x10/0x10 [ 374.572765][T10328] ? lockdep_init_map_type+0x5c/0x280 [ 374.572809][T10328] ? __init_waitqueue_head+0xca/0x150 [ 374.572870][T10328] netdev_register_kobject+0x182/0x3a0 [ 374.572914][T10328] register_netdevice+0x13dc/0x2270 [ 374.572960][T10328] ? __pfx_register_netdevice+0x10/0x10 [ 374.573009][T10328] __ip_tunnel_create+0x4a8/0x680 [ 374.573045][T10328] ? __pfx___ip_tunnel_create+0x10/0x10 [ 374.573092][T10328] ip_tunnel_init_net+0x22f/0x7d0 [ 374.573131][T10328] ? __pfx_ip_tunnel_init_net+0x10/0x10 [ 374.573181][T10328] ? trace_kmalloc+0x2b/0xd0 [ 374.573222][T10328] ? lockdep_init_map_type+0x5c/0x280 [ 374.573270][T10328] ? __pfx_ipgre_tap_init_net+0x10/0x10 [ 374.573321][T10328] ops_init+0x1df/0x5f0 [ 374.573360][T10328] setup_net+0x21e/0x850 [ 374.573398][T10328] ? __pfx_setup_net+0x10/0x10 [ 374.573429][T10328] ? lockdep_init_map_type+0x5c/0x280 [ 374.573472][T10328] ? __pfx_down_read_killable+0x10/0x10 [ 374.573523][T10328] ? debug_mutex_init+0x37/0x70 [ 374.573581][T10328] copy_net_ns+0x2a6/0x5f0 [ 374.573623][T10328] create_new_namespaces+0x3ea/0xad0 [ 374.573671][T10328] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 374.573711][T10328] ksys_unshare+0x45b/0xa40 [ 374.573757][T10328] ? __pfx_ksys_unshare+0x10/0x10 [ 374.573798][T10328] ? xfd_validate_state+0x5d/0x180 [ 374.573850][T10328] ? rcu_is_watching+0x12/0xc0 [ 374.573891][T10328] __x64_sys_unshare+0x31/0x40 [ 374.573935][T10328] do_syscall_64+0xcd/0x230 [ 374.573978][T10328] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 374.574011][T10328] RIP: 0033:0x7fd48558e969 [ 374.574036][T10328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 374.574069][T10328] RSP: 002b:00007fd4863f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 374.574098][T10328] RAX: ffffffffffffffda RBX: 00007fd4857b5fa0 RCX: 00007fd48558e969 [ 374.574118][T10328] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 374.574136][T10328] RBP: 00007fd485610ab1 R08: 0000000000000000 R09: 0000000000000000 [ 374.574154][T10328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 374.574181][T10328] R13: 0000000000000000 R14: 00007fd4857b5fa0 R15: 00007ffe8dc22518 [ 374.574225][T10328] [ 376.970228][T10362] netlink: 186 bytes leftover after parsing attributes in process `syz.3.901'. [ 379.032523][T10412] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 379.039189][T10412] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 379.045329][T10412] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 379.061528][T10412] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 379.067854][T10412] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 379.226782][T10426] ima: policy update failed [ 379.231635][ T30] audit: type=1802 audit(6040695999.846:31): pid=10426 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.911" res=0 errno=0 [ 379.982388][T10424] Invalid ELF header magic: != ELF [ 381.004725][ T55] Bluetooth: hci0: command 0x0c1a tx timeout [ 381.077572][ T55] Bluetooth: hci3: command 0x0c1a tx timeout [ 381.077592][ T5832] Bluetooth: hci2: command 0x0c1a tx timeout [ 381.077641][ T5832] Bluetooth: hci1: command 0x0c1a tx timeout [ 383.167532][ T5832] Bluetooth: hci1: command 0x0c1a tx timeout [ 383.724467][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 383.731016][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 384.189653][T10500] netlink: 28 bytes leftover after parsing attributes in process `syz.1.928'. [ 385.306793][T10516] netlink: 28 bytes leftover after parsing attributes in process `syz.1.931'. [ 385.742334][T10485] netlink: 186 bytes leftover after parsing attributes in process `syz.0.922'. [ 387.235977][ T30] audit: type=1800 audit(6040696007.826:32): pid=10550 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.936" name="file0" dev="tmpfs" ino=1173 res=0 errno=0 [ 390.023295][T10588] netlink: 28 bytes leftover after parsing attributes in process `syz.0.944'. [ 392.798224][T10619] netlink: 28 bytes leftover after parsing attributes in process `syz.1.949'. [ 392.973501][T10621] netlink: 28 bytes leftover after parsing attributes in process `syz.3.950'. [ 397.081343][T10649] FAULT_INJECTION: forcing a failure. [ 397.081343][T10649] name failslab, interval 1, probability 0, space 0, times 0 [ 397.117597][T10649] CPU: 0 UID: 0 PID: 10649 Comm: syz.0.955 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 397.117645][T10649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 397.117664][T10649] Call Trace: [ 397.117674][T10649] [ 397.117694][T10649] dump_stack_lvl+0x16c/0x1f0 [ 397.117739][T10649] should_fail_ex+0x512/0x640 [ 397.117785][T10649] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 397.117845][T10649] should_failslab+0xc2/0x120 [ 397.117885][T10649] __kmalloc_cache_noprof+0x6a/0x3e0 [ 397.117939][T10649] ? cuse_channel_open+0x1de/0x7f0 [ 397.117983][T10649] cuse_channel_open+0x1de/0x7f0 [ 397.118019][T10649] ? __pfx_cuse_channel_open+0x10/0x10 [ 397.118058][T10649] misc_open+0x35a/0x420 [ 397.118107][T10649] ? __pfx_misc_open+0x10/0x10 [ 397.118157][T10649] chrdev_open+0x231/0x6a0 [ 397.118190][T10649] ? __pfx_apparmor_file_open+0x10/0x10 [ 397.118229][T10649] ? __pfx_chrdev_open+0x10/0x10 [ 397.118268][T10649] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 397.118326][T10649] do_dentry_open+0x741/0x1c10 [ 397.118360][T10649] ? __pfx_chrdev_open+0x10/0x10 [ 397.118402][T10649] vfs_open+0x82/0x3f0 [ 397.118449][T10649] path_openat+0x1e5e/0x2d40 [ 397.118497][T10649] ? __pfx_path_openat+0x10/0x10 [ 397.118536][T10649] do_filp_open+0x20b/0x470 [ 397.118568][T10649] ? __pfx_do_filp_open+0x10/0x10 [ 397.118628][T10649] ? alloc_fd+0x471/0x7d0 [ 397.118681][T10649] do_sys_openat2+0x11b/0x1d0 [ 397.118723][T10649] ? __pfx_do_sys_openat2+0x10/0x10 [ 397.118772][T10649] __x64_sys_openat+0x174/0x210 [ 397.118808][T10649] ? __pfx___x64_sys_openat+0x10/0x10 [ 397.118847][T10649] ? rcu_is_watching+0x12/0xc0 [ 397.118881][T10649] do_syscall_64+0xcd/0x230 [ 397.118916][T10649] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 397.118943][T10649] RIP: 0033:0x7efde8f8e969 [ 397.118965][T10649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 397.118992][T10649] RSP: 002b:00007efde9d1a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 397.119017][T10649] RAX: ffffffffffffffda RBX: 00007efde91b5fa0 RCX: 00007efde8f8e969 [ 397.119035][T10649] RDX: 00000000001c1041 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 397.119052][T10649] RBP: 00007efde9010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 397.119068][T10649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 397.119084][T10649] R13: 0000000000000000 R14: 00007efde91b5fa0 R15: 00007ffcbd845b98 [ 397.119117][T10649] [ 397.447990][T10651] vivid-007: ================= START STATUS ================= [ 397.477094][T10651] vivid-007: Generate PTS: true [ 397.487051][T10651] vivid-007: Generate SCR: true [ 397.527179][T10651] tpg source WxH: 640x360 (Y'CbCr) [ 397.580138][T10651] tpg field: 1 [ 397.584995][T10651] tpg crop: (0,0)/640x360 [ 397.613908][T10651] tpg compose: (0,0)/640x360 [ 397.628157][T10651] tpg colorspace: 8 [ 397.681460][T10651] tpg transfer function: 0/0 [ 397.686137][T10651] tpg Y'CbCr encoding: 0/0 [ 397.717700][T10651] tpg quantization: 0/0 [ 397.723574][T10651] tpg RGB range: 0/2 [ 397.734383][T10651] vivid-007: ================== END STATUS ================== [ 398.971292][T10674] page: refcount:8 mapcount:7 mapping:0000000000000000 index:0x0 pfn:0x78400 [ 399.080725][T10678] could not allocate digest TFM handle binfmt_misc [ 399.224080][T10674] flags: 0xfff18000000214(referenced|dirty|workingset|node=0|zone=1|lastcpupid=0x7ff) [ 399.340190][T10674] raw: 00fff18000000214 0000000000000000 dead000000000122 0000000000000000 [ 399.436124][T10674] raw: 0000000000000000 0000000000000000 0000000800000006 0000000000000000 [ 399.717682][T10674] page dumped because: unmovable page [ 399.723160][T10674] page_owner tracks the page as allocated [ 400.237561][T10674] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5826, tgid 5826 (syz-executor), ts 94833229106, free_ts 35363307868 [ 400.817478][T10674] post_alloc_hook+0x181/0x1b0 [ 400.843132][T10674] get_page_from_freelist+0x135c/0x3920 [ 400.887661][T10674] __alloc_frozen_pages_noprof+0x263/0x23a0 [ 400.980533][T10674] alloc_pages_mpol+0x1fb/0x550 [ 400.985520][T10674] alloc_pages_noprof+0x131/0x390 [ 401.097531][T10674] __vmalloc_node_range_noprof+0x732/0x1540 [ 401.143338][T10674] vmalloc_user_noprof+0x6b/0x90 [ 401.177944][T10674] kcov_ioctl+0x4c/0x730 [ 401.207486][T10674] __x64_sys_ioctl+0x190/0x200 [ 401.272060][T10674] do_syscall_64+0xcd/0x230 [ 401.276661][T10674] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 401.403964][T10674] page last free pid 1 tgid 1 stack trace: [ 401.404077][T10674] __free_frozen_pages+0x69d/0xff0 [ 401.404134][T10674] free_contig_range+0x135/0x3f0 [ 401.404184][T10674] destroy_args+0x66f/0x830 [ 401.404223][T10674] debug_vm_pgtable+0x130e/0x2d50 [ 401.404264][T10674] do_one_initcall+0x120/0x6e0 [ 401.404307][T10674] kernel_init_freeable+0x5c2/0x900 [ 401.404340][T10674] kernel_init+0x1c/0x2b0 [ 401.404384][T10674] ret_from_fork+0x45/0x80 [ 401.404433][T10674] ret_from_fork_asm+0x1a/0x30 [ 403.093728][T10724] ima: policy update failed [ 403.144945][ T30] audit: type=1802 audit(6040696023.746:33): pid=10724 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.971" res=0 errno=0 [ 403.326241][T10728] netlink: 28 bytes leftover after parsing attributes in process `syz.3.972'. [ 404.322366][T10746] netlink: 28 bytes leftover after parsing attributes in process `syz.3.977'. [ 404.647692][T10749] netlink: 28 bytes leftover after parsing attributes in process `syz.1.978'. [ 404.766075][T10749] FAULT_INJECTION: forcing a failure. [ 404.766075][T10749] name failslab, interval 1, probability 0, space 0, times 0 [ 404.802346][T10749] CPU: 0 UID: 0 PID: 10749 Comm: syz.1.978 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 404.802390][T10749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 404.802408][T10749] Call Trace: [ 404.802417][T10749] [ 404.802429][T10749] dump_stack_lvl+0x16c/0x1f0 [ 404.802469][T10749] should_fail_ex+0x512/0x640 [ 404.802500][T10749] ? __kmalloc_node_noprof+0xc5/0x500 [ 404.802529][T10749] should_failslab+0xc2/0x120 [ 404.802556][T10749] __kmalloc_node_noprof+0xd8/0x500 [ 404.802580][T10749] ? crypto_alg_lookup+0x113/0x1e0 [ 404.802604][T10749] ? crypto_alloc_tfmmem.isra.0+0x38/0x110 [ 404.802631][T10749] ? __pfx_crypto_alg_extsize+0x10/0x10 [ 404.802662][T10749] crypto_alloc_tfmmem.isra.0+0x38/0x110 [ 404.802689][T10749] crypto_create_tfm_node+0x83/0x320 [ 404.802718][T10749] crypto_alloc_tfm_node+0x102/0x260 [ 404.802747][T10749] sctp_inet_listen+0x873/0xaf0 [ 404.802784][T10749] ? __pfx_sctp_inet_listen+0x10/0x10 [ 404.802822][T10749] ? __pfx_aa_sk_perm+0x10/0x10 [ 404.802849][T10749] ? __fget_files+0x20e/0x3c0 [ 404.802889][T10749] __sys_listen_socket+0x114/0x160 [ 404.802923][T10749] __sys_listen+0xa3/0x110 [ 404.802954][T10749] __x64_sys_listen+0x53/0x80 [ 404.802984][T10749] do_syscall_64+0xcd/0x230 [ 404.803014][T10749] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 404.803037][T10749] RIP: 0033:0x7fb47318e969 [ 404.803054][T10749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 404.803075][T10749] RSP: 002b:00007fb47408b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000032 [ 404.803095][T10749] RAX: ffffffffffffffda RBX: 00007fb4733b5fa0 RCX: 00007fb47318e969 [ 404.803115][T10749] RDX: 0000000000000000 RSI: 000000000000807d RDI: 0000000000000003 [ 404.803129][T10749] RBP: 00007fb47408b090 R08: 0000000000000000 R09: 0000000000000000 [ 404.803142][T10749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 404.803156][T10749] R13: 0000000000000000 R14: 00007fb4733b5fa0 R15: 00007ffc6cc5cdf8 [ 404.803185][T10749] [ 404.803215][T10749] net_ratelimit: 24 callbacks suppressed [ 404.803227][T10749] sctp: failed to load transform for md5: -12 [ 405.317728][T10756] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 405.548361][T10760] netlink: 28 bytes leftover after parsing attributes in process `syz.3.983'. [ 405.825442][T10771] ima: policy update failed [ 405.844814][ T30] audit: type=1802 audit(6040696026.456:34): pid=10771 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.984" res=0 errno=0 [ 407.218335][T10762] Invalid ELF header magic: != ELF [ 408.745274][T10803] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 408.965018][T10799] Invalid ELF header magic: != ELF [ 410.971052][T10816] netlink: 246 bytes leftover after parsing attributes in process `syz.0.996'. [ 411.306793][T10841] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 411.730826][T10845] can: request_module (can-proto-3) failed. [ 414.303569][T10875] FAULT_INJECTION: forcing a failure. [ 414.303569][T10875] name failslab, interval 1, probability 0, space 0, times 0 [ 414.397459][T10875] CPU: 0 UID: 0 PID: 10875 Comm: syz.0.1010 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 414.397503][T10875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 414.397522][T10875] Call Trace: [ 414.397532][T10875] [ 414.397543][T10875] dump_stack_lvl+0x16c/0x1f0 [ 414.397591][T10875] should_fail_ex+0x512/0x640 [ 414.397633][T10875] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 414.397670][T10875] should_failslab+0xc2/0x120 [ 414.397708][T10875] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 414.397740][T10875] ? __proc_create+0xc3/0x8c0 [ 414.397772][T10875] ? __proc_create+0x2ce/0x8c0 [ 414.397815][T10875] __proc_create+0x2ce/0x8c0 [ 414.397850][T10875] ? __pfx___proc_create+0x10/0x10 [ 414.397885][T10875] ? _raw_write_unlock+0x28/0x50 [ 414.397919][T10875] ? proc_register+0x314/0x5f0 [ 414.397968][T10875] _proc_mkdir+0xb9/0x200 [ 414.398003][T10875] ? __pfx__proc_mkdir+0x10/0x10 [ 414.398047][T10875] ? __pfx_netfilter_net_init+0x10/0x10 [ 414.398098][T10875] netfilter_net_init+0x37b/0x4b0 [ 414.398141][T10875] ? sysctl_net_init+0x27/0x30 [ 414.398189][T10875] ops_init+0x1df/0x5f0 [ 414.398226][T10875] setup_net+0x21e/0x850 [ 414.398264][T10875] ? __pfx_setup_net+0x10/0x10 [ 414.398294][T10875] ? lockdep_init_map_type+0x5c/0x280 [ 414.398335][T10875] ? __pfx_down_read_killable+0x10/0x10 [ 414.398396][T10875] ? debug_mutex_init+0x37/0x70 [ 414.398452][T10875] copy_net_ns+0x2a6/0x5f0 [ 414.398497][T10875] create_new_namespaces+0x3ea/0xad0 [ 414.398542][T10875] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 414.398585][T10875] ksys_unshare+0x45b/0xa40 [ 414.398628][T10875] ? __pfx_ksys_unshare+0x10/0x10 [ 414.398672][T10875] ? xfd_validate_state+0x5d/0x180 [ 414.398722][T10875] ? rcu_is_watching+0x12/0xc0 [ 414.398761][T10875] __x64_sys_unshare+0x31/0x40 [ 414.398806][T10875] do_syscall_64+0xcd/0x230 [ 414.398848][T10875] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 414.398882][T10875] RIP: 0033:0x7efde8f8e969 [ 414.398908][T10875] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 414.398942][T10875] RSP: 002b:00007efde9d1a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 414.398971][T10875] RAX: ffffffffffffffda RBX: 00007efde91b5fa0 RCX: 00007efde8f8e969 [ 414.398993][T10875] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 414.399018][T10875] RBP: 00007efde9010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 414.399037][T10875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 414.399056][T10875] R13: 0000000000000000 R14: 00007efde91b5fa0 R15: 00007ffcbd845b98 [ 414.399103][T10875] [ 414.406858][T10875] cannot create netfilter proc entry [ 415.125362][T10889] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1012'. [ 415.190634][T10880] Invalid ELF header magic: != ELF [ 419.297513][T10951] Invalid ELF header magic: != ELF [ 422.393911][ T30] audit: type=1800 audit(6040696043.006:35): pid=11000 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1034" name="file0" dev="tmpfs" ino=1428 res=0 errno=0 [ 422.413680][ C0] vkms_vblank_simulate: vblank timer overrun [ 422.621885][T11007] ima: policy update failed [ 422.640951][ T30] audit: type=1802 audit(6040696043.246:36): pid=11007 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1035" res=0 errno=0 [ 423.794057][T11022] Invalid ELF header magic: != ELF [ 424.003131][T11033] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1037'. [ 424.452841][T11042] ima: policy update failed [ 424.473100][ T30] audit: type=1802 audit(6040696045.086:37): pid=11042 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1040" res=0 errno=0 [ 425.467857][T11060] ima: policy update failed [ 425.499121][ T30] audit: type=1802 audit(6040696046.116:38): pid=11060 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1045" res=0 errno=0 [ 425.825856][T11069] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1047'. [ 425.999539][T11074] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1048'. [ 426.300050][T11071] zswap: compressor not available [ 427.101147][T11084] Invalid ELF header magic: != ELF [ 428.453364][T11104] Invalid ELF header magic: != ELF [ 429.428528][T11126] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 430.047816][ T30] audit: type=1800 audit(6040696050.659:39): pid=11132 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1060" name="file0" dev="tmpfs" ino=1496 res=0 errno=0 [ 430.712907][T11144] ima: policy update failed [ 430.720519][ T30] audit: type=1802 audit(6040696051.329:40): pid=11144 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1064" res=0 errno=0 [ 431.746209][T11161] Invalid ELF header magic: != ELF [ 437.472602][T11213] Invalid ELF header magic: != ELF [ 438.071305][T11232] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1082'. [ 438.778519][T11244] ima: policy update failed [ 438.800673][ T30] audit: type=1802 audit(6040696059.409:41): pid=11244 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1085" res=0 errno=0 [ 439.872944][T11263] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1088'. [ 440.039348][T11260] svc: failed to register nfsdv3 RPC service (errno 111). [ 440.124961][T11260] svc: failed to register nfsaclv3 RPC service (errno 111). [ 441.078123][T11275] Invalid ELF header magic: != ELF [ 441.747223][T11293] mkiss: ax0: crc mode is auto. [ 441.787511][T11296] ima: policy update failed [ 441.793730][ T30] audit: type=1802 audit(6040696062.400:42): pid=11296 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1096" res=0 errno=0 [ 442.590513][T11307] ima: policy update failed [ 442.609920][ T30] audit: type=1802 audit(6040696063.220:43): pid=11307 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1099" res=0 errno=0 [ 445.176098][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.182565][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 445.574449][T11337] Invalid ELF header magic: != ELF [ 445.661816][T11352] ima: policy update failed [ 445.668983][ T30] audit: type=1802 audit(6040696066.270:44): pid=11352 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1105" res=0 errno=0 [ 446.790811][T11369] ima: policy update failed [ 446.808266][ T30] audit: type=1802 audit(6040696067.400:45): pid=11369 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1109" res=0 errno=0 [ 448.724828][T11397] ima: policy update failed [ 448.730919][ T30] audit: type=1802 audit(6040696069.350:46): pid=11397 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1115" res=0 errno=0 [ 453.407269][T11480] Invalid ELF header magic: != ELF [ 456.334978][T11528] FAULT_INJECTION: forcing a failure. [ 456.334978][T11528] name failslab, interval 1, probability 0, space 0, times 0 [ 456.367312][T11528] CPU: 1 UID: 0 PID: 11528 Comm: syz.2.1143 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 456.367357][T11528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 456.367382][T11528] Call Trace: [ 456.367391][T11528] [ 456.367402][T11528] dump_stack_lvl+0x16c/0x1f0 [ 456.367454][T11528] should_fail_ex+0x512/0x640 [ 456.367497][T11528] ? fs_reclaim_acquire+0xae/0x150 [ 456.367548][T11528] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 456.367592][T11528] should_failslab+0xc2/0x120 [ 456.367629][T11528] __kmalloc_noprof+0xd2/0x510 [ 456.367673][T11528] tomoyo_realpath_from_path+0xc2/0x6e0 [ 456.367730][T11528] tomoyo_check_open_permission+0x2ab/0x3c0 [ 456.367769][T11528] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 456.367849][T11528] ? find_held_lock+0x2b/0x80 [ 456.367891][T11528] tomoyo_file_open+0x6b/0x90 [ 456.367940][T11528] security_file_open+0x84/0x1e0 [ 456.367982][T11528] do_dentry_open+0x596/0x1c10 [ 456.368027][T11528] vfs_open+0x82/0x3f0 [ 456.368072][T11528] path_openat+0x1e5e/0x2d40 [ 456.368119][T11528] ? __pfx_path_openat+0x10/0x10 [ 456.368160][T11528] do_filp_open+0x20b/0x470 [ 456.368191][T11528] ? __pfx_do_filp_open+0x10/0x10 [ 456.368235][T11528] ? __pfx_kfree_link+0x10/0x10 [ 456.368286][T11528] ? alloc_fd+0x471/0x7d0 [ 456.368347][T11528] do_sys_openat2+0x11b/0x1d0 [ 456.368387][T11528] ? __pfx_do_sys_openat2+0x10/0x10 [ 456.368444][T11528] __x64_sys_openat+0x174/0x210 [ 456.368493][T11528] ? __pfx___x64_sys_openat+0x10/0x10 [ 456.368537][T11528] ? rcu_is_watching+0x12/0xc0 [ 456.368578][T11528] do_syscall_64+0xcd/0x230 [ 456.368620][T11528] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 456.368652][T11528] RIP: 0033:0x7fd48558d2d0 [ 456.368677][T11528] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 456.368706][T11528] RSP: 002b:00007fd4863f6fe0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 456.368735][T11528] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fd48558d2d0 [ 456.368755][T11528] RDX: 0000000000000002 RSI: 00007fd485610d96 RDI: 00000000ffffff9c [ 456.368774][T11528] RBP: 00007fd485610d96 R08: 0000000000000000 R09: 00007fd4863f8000 [ 456.368792][T11528] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000007 [ 456.368810][T11528] R13: 0000000000000000 R14: 00007fd4857b5fa0 R15: 00007ffe8dc22518 [ 456.368850][T11528] [ 456.607008][ C1] vkms_vblank_simulate: vblank timer overrun [ 456.734517][T11528] ERROR: Out of memory at tomoyo_realpath_from_path. [ 456.741669][T11528] FAULT_INJECTION: forcing a failure. [ 456.741669][T11528] name failslab, interval 1, probability 0, space 0, times 0 [ 456.810615][T11528] CPU: 0 UID: 0 PID: 11528 Comm: syz.2.1143 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 456.810663][T11528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 456.810681][T11528] Call Trace: [ 456.810691][T11528] [ 456.810702][T11528] dump_stack_lvl+0x16c/0x1f0 [ 456.810744][T11528] should_fail_ex+0x512/0x640 [ 456.810785][T11528] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 456.810824][T11528] should_failslab+0xc2/0x120 [ 456.810861][T11528] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 456.810895][T11528] ? security_file_alloc+0x34/0x2b0 [ 456.810939][T11528] security_file_alloc+0x34/0x2b0 [ 456.810981][T11528] init_file+0x93/0x4c0 [ 456.811018][T11528] alloc_empty_file+0x73/0x1e0 [ 456.811057][T11528] alloc_file_pseudo+0x13a/0x230 [ 456.811097][T11528] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 456.811135][T11528] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 456.811205][T11528] create_pipe_files+0x364/0x930 [ 456.811243][T11528] do_pipe2+0xaf/0x1c0 [ 456.811275][T11528] ? __pfx_do_pipe2+0x10/0x10 [ 456.811308][T11528] ? __pfx_ksys_write+0x10/0x10 [ 456.811348][T11528] __x64_sys_pipe+0x33/0x50 [ 456.811381][T11528] do_syscall_64+0xcd/0x230 [ 456.811423][T11528] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 456.811455][T11528] RIP: 0033:0x7fd48558e969 [ 456.811479][T11528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 456.811510][T11528] RSP: 002b:00007fd4863f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016 [ 456.811539][T11528] RAX: ffffffffffffffda RBX: 00007fd4857b5fa0 RCX: 00007fd48558e969 [ 456.811560][T11528] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 456.811578][T11528] RBP: 00007fd4863f7090 R08: 0000000000000000 R09: 0000000000000000 [ 456.811597][T11528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 456.811616][T11528] R13: 0000000000000000 R14: 00007fd4857b5fa0 R15: 00007ffe8dc22518 [ 456.811661][T11528] [ 457.605626][T11544] netlink: 246 bytes leftover after parsing attributes in process `syz.2.1144'. [ 459.320799][T11580] Invalid ELF header magic: != ELF [ 460.368308][T11603] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1152'. [ 460.795473][T11603] zswap: compressor not available [ 461.057169][T11616] ima: policy update failed [ 461.077716][ T30] audit: type=1802 audit(6040696081.670:47): pid=11616 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1153" res=0 errno=0 [ 462.018536][T11628] sd 0:0:1:0: PR command failed: 1026 [ 462.054578][T11628] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 462.070952][T11628] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 463.217639][T11670] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1163'. [ 463.406233][T11672] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1164'. [ 463.580389][T11672] zswap: compressor not available [ 465.168498][T11705] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1168'. [ 465.306268][T11710] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1168'. [ 466.385252][T11734] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1173'. [ 466.859064][T11743] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 468.527721][T11777] can: request_module (can-proto-4) failed. [ 470.316264][T11820] ima: policy update failed [ 470.330336][ T30] audit: type=1802 audit(6040696090.940:48): pid=11820 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1187" res=0 errno=0 [ 472.076506][T11856] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1193'. [ 472.484395][T11856] zswap: compressor not available [ 473.159147][ T30] audit: type=1800 audit(6040696093.760:49): pid=11879 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1196" name="file0" dev="tmpfs" ino=1646 res=0 errno=0 [ 474.080874][T11865] raw_sendmsg: syz.0.1194 forgot to set AF_INET. Fix it! [ 474.476972][T11901] ima: policy update failed [ 474.610840][ T30] audit: type=1802 audit(6040696095.220:50): pid=11901 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1199" res=0 errno=0 [ 476.477799][T11932] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1204'. [ 477.888061][T11955] Invalid ELF header magic: != ELF [ 479.526596][T11981] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1214'. [ 480.418388][T11992] Invalid ELF header magic: != ELF [ 483.987038][T12060] FAULT_INJECTION: forcing a failure. [ 483.987038][T12060] name failslab, interval 1, probability 0, space 0, times 0 [ 484.017517][T12060] CPU: 0 UID: 0 PID: 12060 Comm: syz.3.1229 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 484.017573][T12060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 484.017593][T12060] Call Trace: [ 484.017604][T12060] [ 484.017616][T12060] dump_stack_lvl+0x16c/0x1f0 [ 484.017661][T12060] should_fail_ex+0x512/0x640 [ 484.017705][T12060] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 484.017747][T12060] should_failslab+0xc2/0x120 [ 484.017784][T12060] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 484.017821][T12060] ? alloc_empty_file+0x55/0x1e0 [ 484.017866][T12060] alloc_empty_file+0x55/0x1e0 [ 484.017908][T12060] path_openat+0xe0/0x2d40 [ 484.017935][T12060] ? __x64_sys_openat+0x174/0x210 [ 484.017975][T12060] ? do_syscall_64+0xcd/0x230 [ 484.018012][T12060] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 484.018061][T12060] ? __pfx_path_openat+0x10/0x10 [ 484.018101][T12060] do_filp_open+0x20b/0x470 [ 484.018132][T12060] ? __pfx_do_filp_open+0x10/0x10 [ 484.018192][T12060] ? alloc_fd+0x471/0x7d0 [ 484.018254][T12060] do_sys_openat2+0x11b/0x1d0 [ 484.018296][T12060] ? __pfx_do_sys_openat2+0x10/0x10 [ 484.018333][T12060] ? ktime_get+0x1a7/0x310 [ 484.018374][T12060] ? __pfx___schedule+0x10/0x10 [ 484.018410][T12060] __x64_sys_openat+0x174/0x210 [ 484.018451][T12060] ? __pfx___x64_sys_openat+0x10/0x10 [ 484.018511][T12060] do_syscall_64+0xcd/0x230 [ 484.018565][T12060] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 484.018598][T12060] RIP: 0033:0x7fc2e7b8e969 [ 484.018626][T12060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 484.018659][T12060] RSP: 002b:00007fc2e59f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 484.018690][T12060] RAX: ffffffffffffffda RBX: 00007fc2e7db5fa0 RCX: 00007fc2e7b8e969 [ 484.018711][T12060] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: ffffffffffffff9c [ 484.018733][T12060] RBP: 00007fc2e7c10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 484.018753][T12060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 484.018773][T12060] R13: 0000000000000000 R14: 00007fc2e7db5fa0 R15: 00007ffc0d06b618 [ 484.018816][T12060] [ 484.524718][T12068] cifs: Unknown parameter 'T.żc[$⁍)UÑnE-ʙl- -_5Z omfwYh*/xDlݩgkǐA79Xa/f_ARxM vp$^;q3n-6+ek [ 496.449314][T12238] dump_stack_lvl+0x16c/0x1f0 [ 496.449356][T12238] should_fail_ex+0x512/0x640 [ 496.449407][T12238] should_failslab+0xc2/0x120 [ 496.449445][T12238] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 496.449481][T12238] ? skb_clone+0x190/0x3f0 [ 496.449519][T12238] skb_clone+0x190/0x3f0 [ 496.449550][T12238] netlink_deliver_tap+0xabd/0xd30 [ 496.449593][T12238] netlink_unicast+0x6b2/0x7f0 [ 496.449632][T12238] ? __pfx_netlink_unicast+0x10/0x10 [ 496.449678][T12238] netlink_ack+0x696/0xb80 [ 496.449732][T12238] netlink_rcv_skb+0x347/0x440 [ 496.449765][T12238] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 496.449807][T12238] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 496.449842][T12238] ? __pfx_aa_get_newest_label+0x10/0x10 [ 496.449893][T12238] ? bpf_lsm_capable+0x9/0x10 [ 496.449924][T12238] ? security_capable+0x7e/0x260 [ 496.449974][T12238] ? ns_capable+0xd7/0x110 [ 496.450011][T12238] nfnetlink_rcv+0x1b3/0x430 [ 496.450048][T12238] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 496.450084][T12238] ? netlink_deliver_tap+0x1ae/0xd30 [ 496.450124][T12238] netlink_unicast+0x53a/0x7f0 [ 496.450163][T12238] ? __pfx_netlink_unicast+0x10/0x10 [ 496.450193][T12238] ? __build_skb_around+0x278/0x3b0 [ 496.450239][T12238] ? __build_skb+0x6e/0x90 [ 496.450264][T12238] ? is_vmalloc_addr+0x30/0x40 [ 496.450303][T12238] netlink_sendmsg+0x8d1/0xdd0 [ 496.450350][T12238] ? __pfx_netlink_sendmsg+0x10/0x10 [ 496.450401][T12238] sock_write_iter+0x4fc/0x5b0 [ 496.450441][T12238] ? __pfx_sock_write_iter+0x10/0x10 [ 496.450496][T12238] ? bpf_lsm_file_permission+0x9/0x10 [ 496.450543][T12238] ? security_file_permission+0x71/0x210 [ 496.450584][T12238] ? rw_verify_area+0xcf/0x680 [ 496.450634][T12238] vfs_write+0x5ba/0x1180 [ 496.450665][T12238] ? __pfx_sock_write_iter+0x10/0x10 [ 496.450713][T12238] ? __pfx_vfs_write+0x10/0x10 [ 496.450738][T12238] ? find_held_lock+0x2b/0x80 [ 496.450796][T12238] ksys_write+0x205/0x240 [ 496.450825][T12238] ? __pfx_ksys_write+0x10/0x10 [ 496.450852][T12238] ? rcu_is_watching+0x12/0xc0 [ 496.450893][T12238] do_syscall_64+0xcd/0x230 [ 496.450936][T12238] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 496.450969][T12238] RIP: 0033:0x7fc2e7b8e969 [ 496.450993][T12238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 496.451024][T12238] RSP: 002b:00007fc2e59f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 496.451054][T12238] RAX: ffffffffffffffda RBX: 00007fc2e7db5fa0 RCX: 00007fc2e7b8e969 [ 496.451075][T12238] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000002 [ 496.451095][T12238] RBP: 00007fc2e59f6090 R08: 0000000000000000 R09: 0000000000000000 [ 496.451114][T12238] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 496.451133][T12238] R13: 0000000000000000 R14: 00007fc2e7db5fa0 R15: 00007ffc0d06b618 [ 496.451175][T12238] [ 498.121762][T12264] Invalid ELF header magic: != ELF [ 500.352373][T12311] FAULT_INJECTION: forcing a failure. [ 500.352373][T12311] name failslab, interval 1, probability 0, space 0, times 0 [ 500.365228][T12311] CPU: 1 UID: 0 PID: 12311 Comm: syz.0.1285 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 500.365260][T12311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 500.365274][T12311] Call Trace: [ 500.365283][T12311] [ 500.365292][T12311] dump_stack_lvl+0x16c/0x1f0 [ 500.365323][T12311] should_fail_ex+0x512/0x640 [ 500.365355][T12311] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 500.365383][T12311] should_failslab+0xc2/0x120 [ 500.365412][T12311] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 500.365438][T12311] ? seq_open+0x55/0x170 [ 500.365468][T12311] ? __pfx_tracing_clock_show+0x10/0x10 [ 500.365502][T12311] seq_open+0x55/0x170 [ 500.365528][T12311] ? __pfx_tracing_clock_show+0x10/0x10 [ 500.365561][T12311] single_open+0xfc/0x1f0 [ 500.365590][T12311] tracing_clock_open+0xa7/0x100 [ 500.365620][T12311] do_dentry_open+0x741/0x1c10 [ 500.365643][T12311] ? __pfx_tracing_clock_open+0x10/0x10 [ 500.365676][T12311] vfs_open+0x82/0x3f0 [ 500.365708][T12311] path_openat+0x1e5e/0x2d40 [ 500.365740][T12311] ? __pfx_path_openat+0x10/0x10 [ 500.365768][T12311] do_filp_open+0x20b/0x470 [ 500.365790][T12311] ? __pfx_do_filp_open+0x10/0x10 [ 500.365831][T12311] ? alloc_fd+0x471/0x7d0 [ 500.365873][T12311] do_sys_openat2+0x11b/0x1d0 [ 500.365902][T12311] ? __pfx_do_sys_openat2+0x10/0x10 [ 500.365943][T12311] __x64_sys_openat+0x174/0x210 [ 500.365974][T12311] ? __pfx___x64_sys_openat+0x10/0x10 [ 500.366006][T12311] ? rcu_is_watching+0x12/0xc0 [ 500.366034][T12311] do_syscall_64+0xcd/0x230 [ 500.366065][T12311] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 500.366088][T12311] RIP: 0033:0x7efde8f8e969 [ 500.366115][T12311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 500.366138][T12311] RSP: 002b:00007efde9d1a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 500.366159][T12311] RAX: ffffffffffffffda RBX: 00007efde91b5fa0 RCX: 00007efde8f8e969 [ 500.366174][T12311] RDX: 0000000000022500 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 500.366189][T12311] RBP: 00007efde9010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 500.366203][T12311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 500.366216][T12311] R13: 0000000000000000 R14: 00007efde91b5fa0 R15: 00007ffcbd845b98 [ 500.366247][T12311] [ 501.200965][T12324] netlink: 'syz.2.1288': attribute type 4 has an invalid length. [ 501.212871][T12324] netlink: 314 bytes leftover after parsing attributes in process `syz.2.1288'. [ 501.298418][T12327] netlink: 'syz.2.1288': attribute type 4 has an invalid length. [ 501.357463][T12327] netlink: 314 bytes leftover after parsing attributes in process `syz.2.1288'. [ 501.609347][T12325] Invalid ELF header magic: != ELF [ 502.350659][T12340] FAULT_INJECTION: forcing a failure. [ 502.350659][T12340] name failslab, interval 1, probability 0, space 0, times 0 [ 502.413160][T12340] CPU: 0 UID: 0 PID: 12340 Comm: syz.0.1293 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 502.413210][T12340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 502.413228][T12340] Call Trace: [ 502.413238][T12340] [ 502.413249][T12340] dump_stack_lvl+0x16c/0x1f0 [ 502.413293][T12340] should_fail_ex+0x512/0x640 [ 502.413334][T12340] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 502.413390][T12340] should_failslab+0xc2/0x120 [ 502.413428][T12340] __kmalloc_cache_noprof+0x6a/0x3e0 [ 502.413481][T12340] ? snd_seq_port_connect+0x61/0x550 [ 502.413523][T12340] snd_seq_port_connect+0x61/0x550 [ 502.413557][T12340] ? _raw_read_unlock+0x28/0x50 [ 502.413590][T12340] ? check_subscription_permission.isra.0+0xf5/0x240 [ 502.413632][T12340] snd_seq_ioctl_subscribe_port+0x211/0x450 [ 502.413676][T12340] ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10 [ 502.413734][T12340] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 502.413777][T12340] snd_seq_oss_midi_open+0x564/0x660 [ 502.413826][T12340] ? __pfx_snd_seq_oss_midi_open+0x10/0x10 [ 502.413886][T12340] ? rcu_is_watching+0x12/0xc0 [ 502.413915][T12340] ? trace_contention_end+0xdd/0x130 [ 502.413963][T12340] snd_seq_oss_synth_reset+0x437/0x880 [ 502.414013][T12340] ? __pfx_snd_seq_oss_synth_reset+0x10/0x10 [ 502.414060][T12340] ? __pfx___fsnotify_parent+0x10/0x10 [ 502.414115][T12340] snd_seq_oss_reset+0x73/0x290 [ 502.414154][T12340] ? __pfx_odev_release+0x10/0x10 [ 502.414187][T12340] snd_seq_oss_release+0x7c/0x180 [ 502.414246][T12340] odev_release+0x4c/0x70 [ 502.414280][T12340] __fput+0x3ff/0xb70 [ 502.414327][T12340] task_work_run+0x14d/0x240 [ 502.414379][T12340] ? __pfx_task_work_run+0x10/0x10 [ 502.414429][T12340] ? __pfx_ksys_write+0x10/0x10 [ 502.414468][T12340] syscall_exit_to_user_mode+0x27b/0x2a0 [ 502.414509][T12340] do_syscall_64+0xda/0x230 [ 502.414552][T12340] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 502.414583][T12340] RIP: 0033:0x7efde8f8e969 [ 502.414608][T12340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 502.414639][T12340] RSP: 002b:00007efde6df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 502.414668][T12340] RAX: 0000000000000007 RBX: 00007efde91b6080 RCX: 00007efde8f8e969 [ 502.414688][T12340] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 502.414706][T12340] RBP: 00007efde6df6090 R08: 0000000000000000 R09: 0000000000000000 [ 502.414726][T12340] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001 [ 502.414746][T12340] R13: 0000000000000001 R14: 00007efde91b6080 R15: 00007ffcbd845b98 [ 502.414788][T12340] [ 502.966264][T12351] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1294'. [ 503.246327][T12355] FAULT_INJECTION: forcing a failure. [ 503.246327][T12355] name failslab, interval 1, probability 0, space 0, times 0 [ 503.300573][T12355] CPU: 1 UID: 0 PID: 12355 Comm: syz.0.1295 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 503.300622][T12355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 503.300641][T12355] Call Trace: [ 503.300651][T12355] [ 503.300664][T12355] dump_stack_lvl+0x16c/0x1f0 [ 503.300711][T12355] should_fail_ex+0x512/0x640 [ 503.300755][T12355] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 503.300812][T12355] should_failslab+0xc2/0x120 [ 503.300850][T12355] __kmalloc_cache_noprof+0x6a/0x3e0 [ 503.300927][T12355] ? do_raw_spin_lock+0x12c/0x2b0 [ 503.300976][T12355] ? single_open+0x4d/0x1f0 [ 503.301022][T12355] ? __pfx_tracing_clock_show+0x10/0x10 [ 503.301070][T12355] single_open+0x4d/0x1f0 [ 503.301112][T12355] tracing_clock_open+0xa7/0x100 [ 503.301153][T12355] do_dentry_open+0x741/0x1c10 [ 503.301186][T12355] ? __pfx_tracing_clock_open+0x10/0x10 [ 503.301235][T12355] vfs_open+0x82/0x3f0 [ 503.301281][T12355] path_openat+0x1e5e/0x2d40 [ 503.301326][T12355] ? __pfx_path_openat+0x10/0x10 [ 503.301366][T12355] do_filp_open+0x20b/0x470 [ 503.301397][T12355] ? __pfx_do_filp_open+0x10/0x10 [ 503.301457][T12355] ? alloc_fd+0x471/0x7d0 [ 503.301518][T12355] do_sys_openat2+0x11b/0x1d0 [ 503.301559][T12355] ? __pfx_do_sys_openat2+0x10/0x10 [ 503.301617][T12355] __x64_sys_openat+0x174/0x210 [ 503.301661][T12355] ? __pfx___x64_sys_openat+0x10/0x10 [ 503.301706][T12355] ? rcu_is_watching+0x12/0xc0 [ 503.301747][T12355] do_syscall_64+0xcd/0x230 [ 503.301790][T12355] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 503.301823][T12355] RIP: 0033:0x7efde8f8e969 [ 503.301848][T12355] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 503.301882][T12355] RSP: 002b:00007efde9d1a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 503.301913][T12355] RAX: ffffffffffffffda RBX: 00007efde91b5fa0 RCX: 00007efde8f8e969 [ 503.301941][T12355] RDX: 0000000000022500 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 503.301962][T12355] RBP: 00007efde9010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 503.301991][T12355] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 503.302011][T12355] R13: 0000000000000000 R14: 00007efde91b5fa0 R15: 00007ffcbd845b98 [ 503.302053][T12355] [ 505.310034][T12389] netlink: 246 bytes leftover after parsing attributes in process `syz.2.1304'. [ 506.602656][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 506.609162][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 506.619686][T12407] FAULT_INJECTION: forcing a failure. [ 506.619686][T12407] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 506.651272][T12407] CPU: 1 UID: 0 PID: 12407 Comm: syz.3.1310 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 506.651322][T12407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 506.651340][T12407] Call Trace: [ 506.651350][T12407] [ 506.651362][T12407] dump_stack_lvl+0x16c/0x1f0 [ 506.651406][T12407] should_fail_ex+0x512/0x640 [ 506.651456][T12407] should_fail_alloc_page+0xe7/0x130 [ 506.651498][T12407] prepare_alloc_pages+0x3c2/0x610 [ 506.651546][T12407] ? rcu_is_watching+0x12/0xc0 [ 506.651579][T12407] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 506.651616][T12407] ? find_held_lock+0x2b/0x80 [ 506.651647][T12407] ? psi_task_switch+0x201/0x8e0 [ 506.651693][T12407] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 506.651733][T12407] ? finish_task_switch.isra.0+0x221/0xc10 [ 506.651783][T12407] ? __lock_acquire+0x5ca/0x1ba0 [ 506.651824][T12407] ? __lock_acquire+0x5ca/0x1ba0 [ 506.651862][T12407] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 506.651906][T12407] ? policy_nodemask+0xea/0x4e0 [ 506.651947][T12407] alloc_pages_mpol+0x1fb/0x550 [ 506.651985][T12407] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 506.652024][T12407] ? __lock_acquire+0x5ca/0x1ba0 [ 506.652069][T12407] folio_alloc_mpol_noprof+0x36/0x2f0 [ 506.652112][T12407] vma_alloc_folio_noprof+0xed/0x1e0 [ 506.652156][T12407] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 506.652214][T12407] do_pte_missing+0x223d/0x3fb0 [ 506.652260][T12407] __handle_mm_fault+0x103d/0x2a40 [ 506.652304][T12407] ? __pfx___handle_mm_fault+0x10/0x10 [ 506.652334][T12407] ? __pte_offset_map_lock+0x155/0x2f0 [ 506.652378][T12407] ? find_held_lock+0x2b/0x80 [ 506.652405][T12407] ? find_held_lock+0x2b/0x80 [ 506.652461][T12407] handle_mm_fault+0x3fe/0xad0 [ 506.652500][T12407] __get_user_pages+0x771/0x36f0 [ 506.652559][T12407] ? __pfx_mt_find+0x10/0x10 [ 506.652602][T12407] ? __pfx___get_user_pages+0x10/0x10 [ 506.652666][T12407] populate_vma_page_range+0x278/0x3a0 [ 506.652721][T12407] ? __pfx_populate_vma_page_range+0x10/0x10 [ 506.652779][T12407] ? __pfx_find_vma_intersection+0x10/0x10 [ 506.652828][T12407] ? do_mmap+0x69c/0x11b0 [ 506.652878][T12407] __mm_populate+0x1d8/0x380 [ 506.652908][T12407] ? __pfx___mm_populate+0x10/0x10 [ 506.652963][T12407] ? up_write+0x1b2/0x520 [ 506.653013][T12407] vm_mmap_pgoff+0x362/0x450 [ 506.653062][T12407] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 506.653110][T12407] ? __fget_files+0x20e/0x3c0 [ 506.653167][T12407] ksys_mmap_pgoff+0x7d/0x5c0 [ 506.653212][T12407] ? __pfx_ksys_write+0x10/0x10 [ 506.653238][T12407] ? rcu_is_watching+0x12/0xc0 [ 506.653269][T12407] __x64_sys_mmap+0x125/0x190 [ 506.653306][T12407] do_syscall_64+0xcd/0x230 [ 506.653348][T12407] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 506.653379][T12407] RIP: 0033:0x7fc2e7b8e969 [ 506.653403][T12407] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 506.653433][T12407] RSP: 002b:00007fc2e59f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 506.653462][T12407] RAX: ffffffffffffffda RBX: 00007fc2e7db5fa0 RCX: 00007fc2e7b8e969 [ 506.653483][T12407] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 506.653502][T12407] RBP: 00007fc2e59f6090 R08: 0000000000000002 R09: 0000000000008000 [ 506.653522][T12407] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000002 [ 506.653540][T12407] R13: 0000000000000000 R14: 00007fc2e7db5fa0 R15: 00007ffc0d06b618 [ 506.653580][T12407] [ 568.041816][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 568.048385][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 629.482011][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 629.488726][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 664.677497][ T31] INFO: task jbd2/sda1-8:5165 blocked for more than 143 seconds. [ 664.686674][ T31] Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 [ 664.694432][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 664.703165][ T31] task:jbd2/sda1-8 state:D stack:26520 pid:5165 tgid:5165 ppid:2 task_flags:0x240040 flags:0x00004000 [ 664.715202][ T31] Call Trace: [ 664.718709][ T31] [ 664.721691][ T31] __schedule+0x116f/0x5de0 [ 664.726325][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 664.731648][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 664.736666][ T31] ? __pfx___schedule+0x10/0x10 [ 664.741642][ T31] ? find_held_lock+0x2b/0x80 [ 664.746458][ T31] ? schedule+0x2d7/0x3a0 [ 664.750881][ T31] schedule+0xe7/0x3a0 [ 664.755000][ T31] io_schedule+0xbf/0x130 [ 664.759405][ T31] bit_wait_io+0x15/0xe0 [ 664.763694][ T31] __wait_on_bit+0x62/0x180 [ 664.768278][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 664.773272][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 664.779022][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 664.786346][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 664.791921][ T31] ? __pfx___might_resched+0x10/0x10 [ 664.797282][ T31] __wait_on_buffer+0x64/0x70 [ 664.802102][ T31] jbd2_journal_commit_transaction+0x382e/0x6830 [ 664.808595][ T31] ? __pfx_jbd2_journal_commit_transaction+0x10/0x10 [ 664.815340][ T31] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 664.821237][ T31] ? debug_object_deactivate+0x1ec/0x3a0 [ 664.826940][ T31] ? __pfx_debug_object_deactivate+0x10/0x10 [ 664.833004][ T31] ? find_held_lock+0x2b/0x80 [ 664.837774][ T31] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 664.843649][ T31] ? rcu_is_watching+0x12/0xc0 [ 664.848501][ T31] kjournald2+0x1f4/0x760 [ 664.852915][ T31] ? __pfx_kjournald2+0x10/0x10 [ 664.857875][ T31] ? find_held_lock+0x2b/0x80 [ 664.862591][ T31] ? __pfx_autoremove_wake_function+0x10/0x10 [ 664.868750][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 664.874007][ T31] ? __kthread_parkme+0x19e/0x250 [ 664.879138][ T31] ? __pfx_kjournald2+0x10/0x10 [ 664.885281][ T31] kthread+0x3c2/0x780 [ 664.889478][ T31] ? __pfx_kthread+0x10/0x10 [ 664.894139][ T31] ? __pfx_kthread+0x10/0x10 [ 664.898801][ T31] ? __pfx_kthread+0x10/0x10 [ 664.903459][ T31] ? __pfx_kthread+0x10/0x10 [ 664.908129][ T31] ? rcu_is_watching+0x12/0xc0 [ 664.912933][ T31] ? __pfx_kthread+0x10/0x10 [ 664.917696][ T31] ret_from_fork+0x45/0x80 [ 664.922261][ T31] ? __pfx_kthread+0x10/0x10 [ 664.926887][ T31] ret_from_fork_asm+0x1a/0x30 [ 664.931831][ T31] [ 664.934906][ T31] INFO: task syz-executor:5818 blocked for more than 143 seconds. [ 664.942794][ T31] Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 [ 664.950590][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 664.959341][ T31] task:syz-executor state:D stack:22744 pid:5818 tgid:5818 ppid:5816 task_flags:0x440100 flags:0x00000002 [ 664.971382][ T31] Call Trace: [ 664.974691][ T31] [ 664.977712][ T31] __schedule+0x116f/0x5de0 [ 664.982308][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 664.988826][ T31] ? __pfx___schedule+0x10/0x10 [ 664.993755][ T31] ? find_held_lock+0x2b/0x80 [ 664.998523][ T31] ? schedule+0x2d7/0x3a0 [ 665.003004][ T31] schedule+0xe7/0x3a0 [ 665.007112][ T31] io_schedule+0xbf/0x130 [ 665.011506][ T31] bit_wait_io+0x15/0xe0 [ 665.015806][ T31] __wait_on_bit+0x62/0x180 [ 665.020373][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 665.025368][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 665.030811][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 665.036843][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 665.042530][ T31] do_get_write_access+0x93d/0x12a0 [ 665.047857][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 665.053897][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 665.060155][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 665.065853][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 665.071415][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 665.076850][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 665.083533][ T31] ? rcu_is_watching+0x12/0xc0 [ 665.089917][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 665.095611][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 665.100910][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 665.106611][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 665.112381][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 665.117395][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 665.122824][ T31] ext4_dirty_inode+0xd9/0x130 [ 665.127711][ T31] ? rcu_is_watching+0x12/0xc0 [ 665.132521][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 665.137635][ T31] generic_update_time+0xcf/0xf0 [ 665.142634][ T31] file_update_time+0x17d/0x1c0 [ 665.147616][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 665.152716][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 665.158660][ T31] do_page_mkwrite+0x171/0x380 [ 665.163488][ T31] do_pte_missing+0x29c/0x3fb0 [ 665.168438][ T31] ? __handle_mm_fault+0x1010/0x2a40 [ 665.173776][ T31] __handle_mm_fault+0x103d/0x2a40 [ 665.179067][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 665.184569][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 665.189885][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 665.196448][ T31] handle_mm_fault+0x3fe/0xad0 [ 665.201343][ T31] do_user_addr_fault+0x60c/0x1370 [ 665.206508][ T31] exc_page_fault+0x5c/0xc0 [ 665.211102][ T31] asm_exc_page_fault+0x26/0x30 [ 665.215995][ T31] RIP: 0033:0x7f322b277dcf [ 665.220507][ T31] RSP: 002b:00007ffd792a91e0 EFLAGS: 00010202 [ 665.226630][ T31] RAX: 00007f3229e60000 RBX: 0000000000000318 RCX: 0000000000000005 [ 665.234771][ T31] RDX: 1ffffffff03366d5 RSI: 0000555567c586e0 RDI: 0000000000000020 [ 665.242959][ T31] RBP: 00007ffd792a94d0 R08: 0000555567c58708 R09: 0000000000002cda [ 665.251063][ T31] R10: 00007f322b200000 R11: 00007ffd792a96e0 R12: 00007ffd792a9530 [ 665.259136][ T31] R13: 0000000000000004 R14: 00007ffd792a9250 R15: 00007ffd792a9320 [ 665.267197][ T31] [ 665.270368][ T31] INFO: task syz.0.1302:12380 blocked for more than 143 seconds. [ 665.278193][ T31] Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 [ 665.285854][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 665.296102][ T31] task:syz.0.1302 state:D stack:24856 pid:12380 tgid:12380 ppid:5829 task_flags:0x440140 flags:0x00000004 [ 665.308183][ T31] Call Trace: [ 665.311491][ T31] [ 665.314442][ T31] __schedule+0x116f/0x5de0 [ 665.319414][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 665.324418][ T31] ? __pfx___schedule+0x10/0x10 [ 665.329348][ T31] ? find_held_lock+0x2b/0x80 [ 665.334086][ T31] ? schedule+0x2d7/0x3a0 [ 665.338503][ T31] schedule+0xe7/0x3a0 [ 665.342620][ T31] io_schedule+0xbf/0x130 [ 665.346962][ T31] bit_wait_io+0x15/0xe0 [ 665.351264][ T31] __wait_on_bit+0x62/0x180 [ 665.355816][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 665.360837][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 665.366254][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 665.372333][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 665.377889][ T31] do_get_write_access+0x93d/0x12a0 [ 665.383160][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 665.389242][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 665.396827][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 665.402513][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 665.408093][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 665.413522][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 665.419657][ T31] ? rcu_is_watching+0x12/0xc0 [ 665.424478][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 665.430224][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 665.435501][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 665.441243][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 665.447021][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 665.452039][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 665.457476][ T31] ext4_dirty_inode+0xd9/0x130 [ 665.462260][ T31] ? rcu_is_watching+0x12/0xc0 [ 665.467035][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 665.472148][ T31] generic_update_time+0xcf/0xf0 [ 665.477136][ T31] file_update_time+0x17d/0x1c0 [ 665.482521][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 665.487685][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 665.493191][ T31] do_page_mkwrite+0x171/0x380 [ 665.499517][ T31] do_pte_missing+0x29c/0x3fb0 [ 665.504342][ T31] ? __handle_mm_fault+0x1010/0x2a40 [ 665.509715][ T31] __handle_mm_fault+0x103d/0x2a40 [ 665.514894][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 665.520437][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 665.525701][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 665.531028][ T31] handle_mm_fault+0x3fe/0xad0 [ 665.535836][ T31] do_user_addr_fault+0x60c/0x1370 [ 665.541028][ T31] exc_page_fault+0x5c/0xc0 [ 665.545594][ T31] asm_exc_page_fault+0x26/0x30 [ 665.550535][ T31] RIP: 0033:0x7efde8e6eada [ 665.555147][ T31] RSP: 002b:00007ffcbd845bd0 EFLAGS: 00010202 [ 665.561293][ T31] RAX: 0000001b30090000 RBX: 00007efde9ce5720 RCX: 0000001b3008fff8 [ 665.569347][ T31] RDX: 0000001b2fb20220 RSI: 0000000000000008 RDI: 00007efde9ce5720 [ 665.577430][ T31] RBP: ffffffff8b601ec0 R08: 00007efde91b6038 R09: 00007efde91a2000 [ 665.585442][ T31] R10: 00007efde85ff008 R11: 0000000000000017 R12: 0000000000000017 [ 665.593477][ T31] R13: 000000000000012a R14: ffffffff8b601381 R15: 00000000000004a2 [ 665.602755][ T31] ? mas_ascend+0xb1/0x900 [ 665.607226][ T31] ? mas_next_sibling+0x2e0/0x5f0 [ 665.612374][ T31] [ 665.615433][ T31] INFO: task syz.1.1309:12404 blocked for more than 144 seconds. [ 665.623224][ T31] Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 [ 665.630933][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 665.639733][ T31] task:syz.1.1309 state:D stack:26488 pid:12404 tgid:12404 ppid:5834 task_flags:0x440040 flags:0x00000004 [ 665.651814][ T31] Call Trace: [ 665.655124][ T31] [ 665.658139][ T31] __schedule+0x116f/0x5de0 [ 665.662694][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 665.667906][ T31] ? __pfx___schedule+0x10/0x10 [ 665.672809][ T31] ? find_held_lock+0x2b/0x80 [ 665.677775][ T31] ? schedule+0x2d7/0x3a0 [ 665.682157][ T31] schedule+0xe7/0x3a0 [ 665.686243][ T31] io_schedule+0xbf/0x130 [ 665.690638][ T31] bit_wait_io+0x15/0xe0 [ 665.694926][ T31] __wait_on_bit+0x62/0x180 [ 665.699521][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 665.705734][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 665.711210][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 665.717235][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 665.722877][ T31] do_get_write_access+0x93d/0x12a0 [ 665.728292][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 665.734324][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 665.740483][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 665.746094][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 665.751633][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 665.757058][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 665.763141][ T31] ? rcu_is_watching+0x12/0xc0 [ 665.768079][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 665.773765][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 665.779041][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 665.784842][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 665.790570][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 665.795556][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 665.801107][ T31] ext4_dirty_inode+0xd9/0x130 [ 665.807140][ T31] ? rcu_is_watching+0x12/0xc0 [ 665.811996][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 665.817071][ T31] generic_update_time+0xcf/0xf0 [ 665.822114][ T31] file_update_time+0x17d/0x1c0 [ 665.827011][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 665.832149][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 665.837703][ T31] do_page_mkwrite+0x171/0x380 [ 665.842518][ T31] do_pte_missing+0x29c/0x3fb0 [ 665.847365][ T31] ? __handle_mm_fault+0x1010/0x2a40 [ 665.852699][ T31] __handle_mm_fault+0x103d/0x2a40 [ 665.857899][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 665.863399][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 665.868670][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 665.873970][ T31] handle_mm_fault+0x3fe/0xad0 [ 665.878911][ T31] do_user_addr_fault+0x60c/0x1370 [ 665.884087][ T31] exc_page_fault+0x5c/0xc0 [ 665.888675][ T31] asm_exc_page_fault+0x26/0x30 [ 665.893564][ T31] RIP: 0033:0x7fb47306eada [ 665.898059][ T31] RSP: 002b:00007ffc6cc5ce30 EFLAGS: 00010202 [ 665.904182][ T31] RAX: 0000001b30015000 RBX: 00007fb473ee5720 RCX: 0000001b30014ff8 [ 665.913760][ T31] RDX: 0000001b2fc20220 RSI: 0000000000000008 RDI: 00007fb473ee5720 [ 665.921825][ T31] RBP: ffffffff81e69283 R08: 00007fb4733b6038 R09: 00007fb4733a2000 [ 665.929877][ T31] R10: 00007fb4727ff008 R11: 0000000000000004 R12: 0000000000000004 [ 665.937958][ T31] R13: 0000000000000056 R14: ffffffff81e69f09 R15: 0000000000000056 [ 665.946141][ T31] ? bpf_lsm_mmap_addr+0x9/0x10 [ 665.951074][ T31] ? bpf_lsm_ptrace_access_check+0x3/0x10 [ 665.956848][ T31] [ 665.959946][ T31] [ 665.959946][ T31] Showing all locks held in the system: [ 665.967737][ T31] 1 lock held by khungtaskd/31: [ 665.972615][ T31] #0: ffffffff8e3bf440 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0 [ 665.982660][ T31] 6 locks held by kworker/u8:7/1160: [ 665.988020][ T31] #0: ffff8881412eb148 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70 [ 665.998875][ T31] #1: ffffc90003fefd18 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70 [ 666.012304][ T31] #2: ffff88814ac460e0 (&type->s_umount_key#31){++++}-{4:4}, at: super_trylock_shared+0x1e/0xf0 [ 666.023010][ T31] #3: ffff88814ac48b98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x1b2/0x820 [ 666.033727][ T31] #4: ffff88814ac4a950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 666.043426][ T31] #5: ffff88807c702a68 (&ei->i_data_sem){++++}-{4:4}, at: ext4_map_blocks+0x355/0x1390 [ 666.053426][ T31] 2 locks held by getty/5590: [ 666.058169][ T31] #0: ffff88803138f0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 666.068071][ T31] #1: ffffc90002ffe2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0 [ 666.078405][ T31] 3 locks held by syz-executor/5818: [ 666.083724][ T31] #0: ffff888032add948 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 666.093246][ T31] #1: ffff88814ac46518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 666.102844][ T31] #2: ffff88814ac4a950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 666.113967][ T31] 2 locks held by kworker/u9:3/5833: [ 666.119442][ T31] #0: ffff888026159948 ((wq_completion)nbd0-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70 [ 666.130369][ T31] #1: ffffc90003effd18 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70 [ 666.141701][ T31] 3 locks held by syz.0.1302/12380: [ 666.146948][ T31] #0: ffff8880312f6d08 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 666.156362][ T31] #1: ffff88814ac46518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 666.165974][ T31] #2: ffff88814ac4a950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 666.175671][ T31] 3 locks held by syz.1.1309/12404: [ 666.180954][ T31] #0: ffff888031096d08 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 666.190483][ T31] #1: ffff88814ac46518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 666.200115][ T31] #2: ffff88814ac4a950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 666.209858][ T31] [ 666.212219][ T31] ============================================= [ 666.212219][ T31] [ 666.222926][ T31] NMI backtrace for cpu 0 [ 666.222950][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 666.222988][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 666.223006][ T31] Call Trace: [ 666.223016][ T31] [ 666.223028][ T31] dump_stack_lvl+0x116/0x1f0 [ 666.223071][ T31] nmi_cpu_backtrace+0x27b/0x390 [ 666.223122][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 666.223171][ T31] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 666.223226][ T31] watchdog+0xf70/0x12c0 [ 666.223273][ T31] ? __pfx_watchdog+0x10/0x10 [ 666.223311][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 666.223349][ T31] ? __kthread_parkme+0x19e/0x250 [ 666.223390][ T31] ? __pfx_watchdog+0x10/0x10 [ 666.223430][ T31] kthread+0x3c2/0x780 [ 666.223475][ T31] ? __pfx_kthread+0x10/0x10 [ 666.223513][ T31] ? __pfx_kthread+0x10/0x10 [ 666.223563][ T31] ? __pfx_kthread+0x10/0x10 [ 666.223606][ T31] ? __pfx_kthread+0x10/0x10 [ 666.223647][ T31] ? rcu_is_watching+0x12/0xc0 [ 666.223676][ T31] ? __pfx_kthread+0x10/0x10 [ 666.223720][ T31] ret_from_fork+0x45/0x80 [ 666.223767][ T31] ? __pfx_kthread+0x10/0x10 [ 666.223810][ T31] ret_from_fork_asm+0x1a/0x30 [ 666.223874][ T31] [ 666.223884][ T31] Sending NMI from CPU 0 to CPUs 1: [ 666.358275][ C1] NMI backtrace for cpu 1 [ 666.358297][ C1] CPU: 1 UID: 0 PID: 11344 Comm: kworker/u8:11 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 666.358333][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 666.358351][ C1] Workqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet [ 666.358390][ C1] RIP: 0010:__this_cpu_preempt_check+0x0/0x20 [ 666.358430][ C1] Code: c6 20 67 f4 8b 48 c7 c7 60 67 f4 8b e9 f9 fe ff ff 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1e fa 48 89 fe 48 c7 c7 a0 67 f4 8b e9 cd fe ff ff 66 2e 0f [ 666.358459][ C1] RSP: 0018:ffffc9000b2bfa98 EFLAGS: 00000006 [ 666.358479][ C1] RAX: 0000000000000000 RBX: ffffffff8e3bf440 RCX: ffffffff8b30fae8 [ 666.358498][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff8dcca8fb [ 666.358515][ C1] RBP: dffffc0000000000 R08: 0000000000000001 R09: 0000000000000000 [ 666.358532][ C1] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff8b30f7ef [ 666.358549][ C1] R13: 0000000000000206 R14: ffff88802e541e00 R15: ffff8880348b1080 [ 666.358568][ C1] FS: 0000000000000000(0000) GS:ffff888124aef000(0000) knlGS:0000000000000000 [ 666.358594][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 666.358612][ C1] CR2: 0000556608e27600 CR3: 000000000e180000 CR4: 00000000003526f0 [ 666.358630][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 666.358646][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 666.358663][ C1] Call Trace: [ 666.358671][ C1] [ 666.358680][ C1] lock_release+0x9c/0x2f0 [ 666.358726][ C1] batadv_iv_ogm_schedule_buff+0x764/0x14e0 [ 666.358763][ C1] ? __pfx_batadv_iv_ogm_schedule_buff+0x10/0x10 [ 666.358795][ C1] ? batadv_send_skb_packet+0x5dd/0x780 [ 666.358839][ C1] batadv_iv_send_outstanding_bat_ogm_packet+0x329/0x920 [ 666.358880][ C1] process_one_work+0x9cc/0x1b70 [ 666.358930][ C1] ? __pfx_process_one_work+0x10/0x10 [ 666.358979][ C1] ? assign_work+0x1a0/0x250 [ 666.359019][ C1] worker_thread+0x6c8/0xf10 [ 666.359069][ C1] ? __pfx_worker_thread+0x10/0x10 [ 666.359110][ C1] kthread+0x3c2/0x780 [ 666.359149][ C1] ? __pfx_kthread+0x10/0x10 [ 666.359184][ C1] ? __pfx_kthread+0x10/0x10 [ 666.359221][ C1] ? __pfx_kthread+0x10/0x10 [ 666.359258][ C1] ? __pfx_kthread+0x10/0x10 [ 666.359294][ C1] ? rcu_is_watching+0x12/0xc0 [ 666.359318][ C1] ? __pfx_kthread+0x10/0x10 [ 666.359357][ C1] ret_from_fork+0x45/0x80 [ 666.359399][ C1] ? __pfx_kthread+0x10/0x10 [ 666.359437][ C1] ret_from_fork_asm+0x1a/0x30 [ 666.359489][ C1] [ 666.360469][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 666.621754][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 666.633620][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 666.643700][ T31] Call Trace: [ 666.647004][ T31] [ 666.649955][ T31] dump_stack_lvl+0x3d/0x1f0 [ 666.654581][ T31] panic+0x71c/0x800 [ 666.658599][ T31] ? __pfx_panic+0x10/0x10 [ 666.663048][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 666.668471][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 666.674490][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 666.679903][ T31] ? watchdog+0xdda/0x12c0 [ 666.684351][ T31] ? watchdog+0xdcd/0x12c0 [ 666.688798][ T31] watchdog+0xdeb/0x12c0 [ 666.693078][ T31] ? __pfx_watchdog+0x10/0x10 [ 666.697814][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 666.703069][ T31] ? __kthread_parkme+0x19e/0x250 [ 666.708156][ T31] ? __pfx_watchdog+0x10/0x10 [ 666.712867][ T31] kthread+0x3c2/0x780 [ 666.716976][ T31] ? __pfx_kthread+0x10/0x10 [ 666.721602][ T31] ? __pfx_kthread+0x10/0x10 [ 666.726240][ T31] ? __pfx_kthread+0x10/0x10 [ 666.730890][ T31] ? __pfx_kthread+0x10/0x10 [ 666.735967][ T31] ? rcu_is_watching+0x12/0xc0 [ 666.740766][ T31] ? __pfx_kthread+0x10/0x10 [ 666.745405][ T31] ret_from_fork+0x45/0x80 [ 666.749875][ T31] ? __pfx_kthread+0x10/0x10 [ 666.754505][ T31] ret_from_fork_asm+0x1a/0x30 [ 666.759321][ T31] [ 666.762673][ T31] Kernel Offset: disabled [ 666.767027][ T31] Rebooting in 86400 seconds..