last executing test programs: 3m56.174394119s ago: executing program 1 (id=3088): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000) close_range$auto(0x2, 0x8, 0x0) fanotify_init$auto(0x65, 0x2) socket(0x1d, 0x2, 0x2) connect$auto(0x3, 0x0, 0x55) socket(0x10, 0x3, 0x6) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x38}, 0x4, 0x0, 0x1, 0x9}, 0x4}, 0x8, 0x1f00) 3m55.680629487s ago: executing program 1 (id=3092): mmap$auto(0x0, 0x2020409, 0xa, 0xeb1, 0xffffffffffffffff, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socket(0x26, 0x5, 0x1) recvmmsg$auto(0xffffffffffffffff, 0x0, 0x10000, 0x6, 0x0) mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000) clone$auto(0x1000, 0x1000000000004, 0xfffffffffffffffc, 0xfffffffffffffffc, 0x400000003) 3m55.127902464s ago: executing program 1 (id=3096): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) fstatfs$auto(0x3, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = socket(0x2, 0x2, 0x1) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_4={0x1f, r0, 0x10000}, 0x10) io_uring_setup$auto(0x1, 0x0) bpf$auto(0x1, 0x0, 0x13) 3m54.583399202s ago: executing program 1 (id=3100): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) mkdir$auto(0x0, 0x353) 3m53.352596628s ago: executing program 1 (id=3106): pipe$auto(0x0) mmap$auto(0x3, 0x20009, 0xe2, 0xeb1, 0x405, 0xa000) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x2, 0x73) socket(0xa, 0x1, 0x0) syz_clone3(&(0x7f00000004c0)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) listen$auto(0x3, 0x81) accept$auto(0x3, 0x0, 0x0) 3m49.668162085s ago: executing program 1 (id=3123): socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x20) sendmsg$auto_IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="d0000000", @ANYRES16=0x0, @ANYBLOB="040026bd7000fcdbdf2504040000b1000180f5c53c7461b64f8c60fb90f69a1d13d52d6da3527ec7b5be48e686e7364c12793198cdcb6a78253c3bdd7916ced602b5b19762a916baa53c0411bfbf1477407c42963b5791e719e91567d82c697af89370f6f7872979c6713c9b4265a481e529d40b485bc24dac0ed112ebaf8e0f59b20e48f9cffcaa0bed04dad70c00c2d584eb40a6d01a4f463f88d47ae307e73bfd4123c7765a43faedde7088214666ba0cf2c894acec08005c00", @ANYRES32, @ANYBLOB="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"], 0x348}, 0x1, 0x0, 0x0, 0x4004080}, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)=ANY=[@ANYBLOB="17000000", @ANYBLOB='j\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 3m49.373231703s ago: executing program 32 (id=3123): socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x20) sendmsg$auto_IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="d0000000", @ANYRES16=0x0, @ANYBLOB="040026bd7000fcdbdf2504040000b1000180f5c53c7461b64f8c60fb90f69a1d13d52d6da3527ec7b5be48e686e7364c12793198cdcb6a78253c3bdd7916ced602b5b19762a916baa53c0411bfbf1477407c42963b5791e719e91567d82c697af89370f6f7872979c6713c9b4265a481e529d40b485bc24dac0ed112ebaf8e0f59b20e48f9cffcaa0bed04dad70c00c2d584eb40a6d01a4f463f88d47ae307e73bfd4123c7765a43faedde7088214666ba0cf2c894acec08005c00", @ANYRES32, @ANYBLOB="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"], 0x348}, 0x1, 0x0, 0x0, 0x4004080}, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)=ANY=[@ANYBLOB="17000000", @ANYBLOB='j\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 2m43.165075844s ago: executing program 0 (id=3530): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x80002, 0x73) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) connect$auto(0xffffffffffffffff, &(0x7f0000000140)=@qipcrtr={0x2a, 0x1, 0x3fff}, 0x57) sendmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{0x0, 0x5aa, &(0x7f0000000100)={0x0, 0x49}, 0x5, 0x0, 0x5, 0x1000}, 0x5}, 0x2, 0x100) sendmmsg$auto(0x3, &(0x7f0000000180)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x624}, 0x3, 0x80) 2m43.005788042s ago: executing program 0 (id=3531): mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7ffffffe, 0xd, 0x3000, 0x6, 0x8, 0x7fffffff, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c47, 0x29f, 0x100, 0x1, 0x105, 0x800, 0x3}, {0x8, 0x2, 0x52, 0x5, 0x9, 0x100, 0x76c5, 0x8, 0x100000000}}) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/fs/ocfs2/max_locking_protocol\x00', 0xa2500, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r0, &(0x7f0000000340)='\xa3o\a`\f\f4\xc6\xe7\x8a\x16h\x80\xb5\xed\xe4\xec\xfe\xe50\xb9\xbb1/#\xdc\xdd\xed\xa2\x85\xa1\xd5\xf5\xfeG\xdcI\xe3c\xb8BS\x04Y\xc9N\x98\xc6I_E \xc8^T\x84Mh\xf4Y\xcc\xe4\x9al\x88\x8fX\xcb\xad\x1d*\xec\x1dG@H/N\xaa\x1b\xce\x8b\xff\xcfe\xac\xda\xb0\xbe;-y\x12\x13\x93\x1d\xb5>\x1c\x02Tv\x92\xc0\x1c\xaa\x8a8\x0e_Fv\x00\xdc\nfd\x16\xa6d\xa3z\xdf\xc7o+1\xf4Q\xf7i\xd6.\t\x10\x99\xc4\x06\xa3\xbf*\xbb\xe0H\xc9u+\x17\x93!\x1c\xc3\xcd\xc1y\xaf\xf1\xd1B\xaa[\x9d\xb6\xad\xe2\xff\x9b[{\xd1z\x18\xba\x7f\xb5\x10\xdd1\xf2\x9c\xb0=\xf09\r\xc3\x1b9\xbe\xa8\xe76[/<,\xe1\x90\xb3G}\x85E\xc6\x8ak4\xc3+\xf0\x9f\xe0F\x1b\xdb\x84\x17\xc0\x99\xf1\xb5,\x1f\x8a\xe7\x0f\xd7\xc2{>\xb9q\xc3\xa7\xaaF|\\4\x03Z\xecH\x99\xber\xab\xe6+>\x95\x86\x83\xfb\x16o\x98\xe0\xe9d\xa1z^}\xc7\x12\xe6b\xa2\xb1X\x062\x12\xec\x12.\xbb\x10\x11\xdb_Xo\xfc\xcd\x8av\x80\xf0!n\x8d\xee)\rm\xc5\xee\xd6\xde\xc7\xf8\xdf\xc1?\x82\xca\xb6X\xe3\xfc\xf8\x1a\xe7U\xd6\f\x8e\x98+\x99\x1dqtV\xb4\x05\xa4ge', 0x110000a3d9) socket$nl_generic(0x10, 0x3, 0x10) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0xd393, 0x15f4da0a, 0x582, 0x3, 0x862, 0x80100001, 0x5, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) syz_clone(0x2b0c0000, 0x0, 0x0, &(0x7f0000000000), &(0x7f0000000180), &(0x7f00000001c0)="5534ffecb93fcba2cae47770fef4ef416765f2d34691df0bf6154bf2fa188a31353b2124dca64743bc787996f65d4b3b5e26d3c738c5920107f5520502644b8c6d1896a768cbee3c9f0b4d31a328f6445377715a9c739b05e8a78265d9a9b380af4240be476985320ea60ad3") 2m42.61907422s ago: executing program 0 (id=3535): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) dup2$auto(0x5, 0x4) splice$auto(0x4, 0x0, 0xffffffffffffffff, 0x0, 0x80000004, 0x9) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r0, 0x0, 0x1f40) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) io_uring_setup$auto(0x1, 0x0) 2m41.958244457s ago: executing program 0 (id=3537): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x2, 0x1) io_uring_setup$auto(0x2, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, 0x0, 0x55) io_uring_setup$auto(0x6, 0x0) write$auto(0x3, 0x0, 0xfdef) 2m41.787973291s ago: executing program 0 (id=3540): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x8643, 0x15e) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) rename$auto(&(0x7f0000000480)='./file0\x00', 0x0) 2m41.335913377s ago: executing program 0 (id=3541): mmap$auto(0x0, 0x8, 0x3, 0xeb1, 0xfffffffffffffffa, 0x80000008000) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) r0 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) poll$auto(&(0x7f0000000180)={r0, 0xfff7, 0x9816}, 0x7f, 0x9) ioctl$auto_VHOST_SET_OWNER(r1, 0xaf01, 0x0) ioctl$auto(0x3, 0x4008af03, 0x0) io_uring_setup$auto(0x6, 0x0) ioctl$auto_VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, 0x0) 2m26.234239631s ago: executing program 33 (id=3541): mmap$auto(0x0, 0x8, 0x3, 0xeb1, 0xfffffffffffffffa, 0x80000008000) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) r0 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) poll$auto(&(0x7f0000000180)={r0, 0xfff7, 0x9816}, 0x7f, 0x9) ioctl$auto_VHOST_SET_OWNER(r1, 0xaf01, 0x0) ioctl$auto(0x3, 0x4008af03, 0x0) io_uring_setup$auto(0x6, 0x0) ioctl$auto_VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, 0x0) 8.791109252s ago: executing program 5 (id=4395): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) bpf$auto(0xfffffffe, &(0x7f00000001c0)=@test={0xffffffffffffffff, 0xffff, 0xfffff0b6, 0xffff, 0x88, 0xac1, 0x2, 0x36242398, 0x7ff, 0x3bb, 0x8, 0xfffe, 0x1, 0x81, 0x68198}, 0x6f2) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000) socket(0x10, 0x2, 0x4) sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYBLOB="010027bd"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 7.590220774s ago: executing program 5 (id=4397): openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x40001, 0x0) mmap$auto(0x0, 0x40009, 0x7, 0x9b72, 0x7, 0x28000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) openat$auto_event_inject_fops_trace(0xffffffffffffff9c, 0x0, 0x40, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x2, 0x0) open(0x0, 0x22240, 0x154) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) write$auto(0x3, 0x0, 0x3f00) 6.847403451s ago: executing program 5 (id=4404): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x10, 0x0, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/rose11/tx_queue_len\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0x40002, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) 6.635036408s ago: executing program 5 (id=4408): prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(0xffffffffffffffff, &(0x7f0000006380)={0xfffffffffffffffd, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4044041}, 0x4000) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000000)=""/112, 0x70) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) r0 = openat$auto_check_wx_fops_(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) pread64$auto(r0, 0x0, 0x5, 0x5) 3.669093049s ago: executing program 5 (id=4429): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) socket(0x1e, 0x1, 0x0) mmap$auto(0x0, 0xda32, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/dsp1\x00', 0x2, 0x0) mmap$auto(0x0, 0x7, 0xdf, 0x8b72, 0x2, 0x8000) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/usb/usbmon/0u\x00', 0x0, 0x0) 3.43367184s ago: executing program 4 (id=4430): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0xc) socket(0x2, 0x1, 0x0) clock_gettime$auto(0x1, 0x0) socket(0xa, 0x3, 0x6) getsockopt$auto(0x7, 0x29, 0x41, 0x0, 0x0) 2.901470351s ago: executing program 4 (id=4432): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x8, 0x8000) r0 = socket(0x10, 0x2, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22040, 0x75) socket(0x840000000002, 0x3, 0xff) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c"], 0x30}, 0x1, 0x0, 0x0, 0x8841}, 0x40000) 2.598296337s ago: executing program 4 (id=4433): mmap$auto(0x0, 0x20006, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0xa, 0x2, 0x88) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r0, @new_prog_fd=0x4, 0x4, @old_prog_fd=r0}, 0xa3) r1 = open(&(0x7f0000000000)='./file0\x00', 0x260c2, 0x8c) r2 = socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_fd=r1, r3, 0x4, 0x1ff, r2, @relative_fd=r2, 0xe600}, 0xf) bpf$auto(0x2, &(0x7f00000000c0)=@raw_tracepoint={0x5, r1, 0x0, 0x3}, 0x91) 2.336320474s ago: executing program 4 (id=4435): sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x20008800) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) pipe2$auto(0x0, 0x80) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x28, 0x5, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0xffffffff, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) bind$auto(r0, &(0x7f0000000080)=@in={0x28, 0x0, @rand_addr=0xffffffff}, 0x68) listen$auto(0x3, 0x81) ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3ff, 0x4}, 0x7f, 0x0, &(0x7f00000001c0)={0x3}, 0x8) 2.109497139s ago: executing program 4 (id=4436): sendmsg$auto_IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x8800) ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) getrandom$auto(0x0, 0x6000000, 0x3) setsockopt$auto(0x3, 0x10000000084, 0x25, 0x0, 0x90) 1.945228451s ago: executing program 2 (id=4438): mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'hsr0\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32=r1, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYRES32=r1, @ANYBLOB="060006ff05000000080003009b"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.805314357s ago: executing program 3 (id=4439): close_range$auto(0x0, 0xfffffffffffff000, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x10, 0x2, 0x15) close_range$auto(0x0, 0xfffffffffffff000, 0x0) bpf$auto(0x0, &(0x7f0000000300)=@test={r1, 0x4, 0x10, 0x9, 0x133, 0x9, 0xf4, 0xec56, 0x1, 0x90, 0x2, 0x1, 0x5, 0x7, 0x714c}, 0x10) bpf$auto(0x18, &(0x7f0000000040)=@raw_tracepoint={0x7, r0, 0x0, 0xff}, 0x92) 1.634042515s ago: executing program 3 (id=4440): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x403, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) open(&(0x7f0000000100)='.\x00', 0x40000, 0x0) clone$auto(0x100000020003b49, 0x80000000002, 0x0, 0x0, 0x4) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x2, 0xd, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x2, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}}) landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0) landlock_add_rule$auto(r0, 0x1, 0x0, 0x0) 1.519732705s ago: executing program 2 (id=4441): mmap$auto(0x0, 0x8, 0x3, 0xeb1, 0xfffffffffffffffa, 0x80000008000) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) r0 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) poll$auto(&(0x7f0000000180)={r0, 0xfff7, 0x9816}, 0x7f, 0x9) mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4) lstat$auto(&(0x7f0000000500)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0) ioctl$auto_VHOST_SET_OWNER(r1, 0xaf01, 0x0) ioctl$auto(0x3, 0x4008af03, 0x0) ioctl$auto_VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, 0x0) 1.47488549s ago: executing program 3 (id=4442): mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0x2, 0x80802, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) connect$auto(0x3, &(0x7f0000000140), 0x55) sendmmsg$auto(0x3, 0x0, 0xfff, 0xff00) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) 1.364840542s ago: executing program 5 (id=4443): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) write$auto(r0, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r0, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r1 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r1, 0x0, 0x7, 0x4008) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ipv6_route\x00', 0x101000, 0x0) pread64$auto(r2, 0x0, 0x8, 0xffff) madvise$auto(0x0, 0x200007, 0x8) 1.269529378s ago: executing program 2 (id=4444): syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) epoll_create$auto(0x4) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0xffffffffffffffff, 0x28000) socket(0xa, 0x1, 0x84) socket(0xf, 0x3, 0x2) io_uring_setup$auto(0x2, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000680)='/dev/v4l-subdev5\x00', 0x20281, 0x0) ioctl$auto(r1, 0xc038563c, r0) 1.075231154s ago: executing program 3 (id=4445): close_range$auto(0x0, 0xfffffffffffff000, 0x2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) pipe$auto(0x0) r1 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000008040), 0x2, 0x0) r2 = socket(0x22, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x80044943, 0x0) ioctl$auto_I2C_SMBUS(r1, 0x720, 0x0) 943.520623ms ago: executing program 2 (id=4446): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = open(&(0x7f0000000000)='./file0\x00', 0x26142, 0x84) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) r2 = socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000280)={'wg0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r4, r3, 0x4, 0x1ff, r2, @relative_id=0x13, 0xe600}, 0xf) bpf$auto(0x2, &(0x7f00000000c0)=@raw_tracepoint={0x5, r0, 0x0, 0x3}, 0x91) 851.261224ms ago: executing program 4 (id=4447): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/cifs/traceSMB\x00', 0x0, 0x0) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(0x3, 0x0, 0x1f40) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0xc00000, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mlockall$auto(0x7) 701.424445ms ago: executing program 2 (id=4448): mmap$auto(0x0, 0x20009, 0x809, 0xeb1, 0x401, 0x80000000008000) close_range$auto(0x2, 0x8000, 0x0) socket(0x1, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_CREATE_VM(r0, 0xc080aebe, 0x0) 626.974409ms ago: executing program 3 (id=4449): mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0x6, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_CGROUPSTATS_CMD_GET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x13, 0x0, 0x25, 0x70bd25, 0x25dfdbfe, {}, [@CGROUPSTATS_CMD_ATTR_FD={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x400c9d0}, 0x4080) r1 = socket(0x10, 0x2, 0x14) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xffffffffffffff14, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r0], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x200440c0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51) sendmmsg$auto(r1, &(0x7f0000000080)={{0x0, 0x8001c01, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x1}, 0x7}, 0x3d55, 0x0) 34.791398ms ago: executing program 3 (id=4450): mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_CREATE_VM(r0, 0x81a0ae8c, 0x0) 0s ago: executing program 2 (id=4451): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000000040)={0x28, 0x0, 0x1, 0x70bd29, 0x25dfdbff, {}, [@ETHTOOL_A_LINKMODES_MASTER_SLAVE_CFG={0x5, 0x7, 0x5}, @ETHTOOL_A_LINKMODES_HEADER={0x6d, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x4008801}, 0x24000802) close_range$auto(0x2, 0x8, 0x0) socket(0x29, 0x2, 0x0) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="010027bd7000fddbdf251bee05ba000000000000000008"], 0x24}, 0x1, 0x0, 0x0, 0x4088}, 0x20000010) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="10002cbd7000fddbdf251c"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) kernel console output (not intermixed with test programs): [ 516.015682][T14681] [ 516.207246][ C1] vkms_vblank_simulate: vblank timer overrun [ 516.740273][T14697] netlink: 146 bytes leftover after parsing attributes in process `syz.0.3370'. [ 517.180579][T14706] netlink: zone id is out of range [ 517.185736][T14706] netlink: zone id is out of range [ 517.238683][T14706] netlink: zone id is out of range [ 517.243964][T14706] netlink: zone id is out of range [ 517.288387][T14706] netlink: zone id is out of range [ 517.326597][T14706] netlink: zone id is out of range [ 517.369507][T14706] netlink: zone id is out of range [ 517.417925][T14706] netlink: zone id is out of range [ 517.446532][T14706] netlink: zone id is out of range [ 517.487195][T14706] netlink: zone id is out of range [ 517.873563][T14718] zram0: detected capacity change from 0 to 8 [ 519.018797][T14740] netlink: 29 bytes leftover after parsing attributes in process `syz.0.3378'. [ 519.752242][T14756] netlink: 110 bytes leftover after parsing attributes in process `syz.0.3382'. [ 520.403280][T14766] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3387'. [ 520.453457][T14766] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3387'. [ 520.888286][T14773] netlink: 'syz.0.3390': attribute type 1 has an invalid length. [ 520.920695][T14773] netlink: 33 bytes leftover after parsing attributes in process `syz.0.3390'. [ 522.230082][T14796] netlink: 'syz.0.3398': attribute type 21 has an invalid length. [ 522.268675][T14798] netlink: 146 bytes leftover after parsing attributes in process `syz.3.3399'. [ 522.296482][T14796] netlink: 326 bytes leftover after parsing attributes in process `syz.0.3398'. [ 522.581077][T14795] Process accounting paused [ 524.275166][T14829] netlink: 266 bytes leftover after parsing attributes in process `syz.0.3410'. [ 524.318297][T14829] IPv6: NLM_F_CREATE should be specified when creating new route [ 525.556753][T14849] netlink: 330 bytes leftover after parsing attributes in process `syz.2.3418'. [ 525.660927][T14852] netlink: 326 bytes leftover after parsing attributes in process `syz.3.3419'. [ 525.791978][T14852] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 525.821549][T14856] netlink: 146 bytes leftover after parsing attributes in process `syz.2.3420'. [ 526.328861][T14864] FAULT_INJECTION: forcing a failure. [ 526.328861][T14864] name failslab, interval 1, probability 0, space 0, times 0 [ 526.411453][T14864] CPU: 1 UID: 0 PID: 14864 Comm: syz.2.3424 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 526.411482][T14864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 526.411492][T14864] Call Trace: [ 526.411498][T14864] [ 526.411505][T14864] dump_stack_lvl+0x16c/0x1f0 [ 526.411535][T14864] should_fail_ex+0x512/0x640 [ 526.411560][T14864] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 526.411580][T14864] should_failslab+0xc2/0x120 [ 526.411602][T14864] __kmalloc_cache_noprof+0x6a/0x3e0 [ 526.411619][T14864] ? snd_seq_port_connect+0x61/0x550 [ 526.411646][T14864] snd_seq_port_connect+0x61/0x550 [ 526.411668][T14864] ? _raw_read_unlock+0x28/0x50 [ 526.411690][T14864] ? check_subscription_permission.isra.0+0xf5/0x240 [ 526.411717][T14864] snd_seq_ioctl_subscribe_port+0x211/0x450 [ 526.411745][T14864] ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10 [ 526.411779][T14864] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 526.411805][T14864] snd_seq_oss_midi_open+0x564/0x660 [ 526.411824][T14864] ? __pfx_snd_seq_oss_midi_open+0x10/0x10 [ 526.411849][T14864] ? rcu_is_watching+0x12/0xc0 [ 526.411866][T14864] ? trace_contention_end+0xdd/0x130 [ 526.411892][T14864] snd_seq_oss_synth_reset+0x437/0x880 [ 526.411911][T14864] ? __pfx_snd_seq_oss_synth_reset+0x10/0x10 [ 526.411929][T14864] ? __pfx___fsnotify_parent+0x10/0x10 [ 526.411959][T14864] snd_seq_oss_reset+0x73/0x290 [ 526.411992][T14864] ? __pfx_odev_release+0x10/0x10 [ 526.412013][T14864] snd_seq_oss_release+0x7c/0x180 [ 526.412037][T14864] odev_release+0x4c/0x70 [ 526.412058][T14864] __fput+0x3ff/0xb70 [ 526.412085][T14864] task_work_run+0x150/0x240 [ 526.412112][T14864] ? __pfx_task_work_run+0x10/0x10 [ 526.412139][T14864] ? __pfx___do_sys_close_range+0x10/0x10 [ 526.412156][T14864] ? rcu_is_watching+0x12/0xc0 [ 526.412177][T14864] syscall_exit_to_user_mode+0x27b/0x2a0 [ 526.412203][T14864] do_syscall_64+0xda/0x230 [ 526.412230][T14864] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 526.412248][T14864] RIP: 0033:0x7f0a2818e969 [ 526.412262][T14864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 526.412279][T14864] RSP: 002b:00007f0a28f52038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 526.412295][T14864] RAX: 0000000000000000 RBX: 00007f0a283b5fa0 RCX: 00007f0a2818e969 [ 526.412306][T14864] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 526.412315][T14864] RBP: 00007f0a28210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 526.412325][T14864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 526.412334][T14864] R13: 0000000000000000 R14: 00007f0a283b5fa0 R15: 00007ffce5e9f268 [ 526.412356][T14864] [ 526.988180][T14814] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 527.199505][T14868] sctp: [Deprecated]: syz.2.3425 (pid 14868) Use of struct sctp_assoc_value in delayed_ack socket option. [ 527.199505][T14868] Use struct sctp_sack_info instead [ 527.404442][T14870] netlink: 146 bytes leftover after parsing attributes in process `syz.4.3427'. [ 527.888963][T14880] netlink: 146 bytes leftover after parsing attributes in process `syz.4.3431'. [ 529.924592][T14912] netlink: 350 bytes leftover after parsing attributes in process `syz.2.3442'. [ 530.204191][T14918] FAULT_INJECTION: forcing a failure. [ 530.204191][T14918] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 530.264360][T14918] CPU: 1 UID: 0 PID: 14918 Comm: syz.2.3445 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 530.264388][T14918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 530.264398][T14918] Call Trace: [ 530.264404][T14918] [ 530.264411][T14918] dump_stack_lvl+0x16c/0x1f0 [ 530.264441][T14918] should_fail_ex+0x512/0x640 [ 530.264471][T14918] should_fail_alloc_page+0xe7/0x130 [ 530.264494][T14918] prepare_alloc_pages+0x3c2/0x610 [ 530.264520][T14918] ? rcu_is_watching+0x12/0xc0 [ 530.264539][T14918] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 530.264572][T14918] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 530.264592][T14918] ? do_raw_spin_lock+0x12c/0x2b0 [ 530.264617][T14918] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 530.264642][T14918] ? find_held_lock+0x2b/0x80 [ 530.264664][T14918] ? __lock_acquire+0xaa4/0x1ba0 [ 530.264686][T14918] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 530.264723][T14918] ? policy_nodemask+0xea/0x4e0 [ 530.264746][T14918] alloc_pages_mpol+0x1fb/0x550 [ 530.264769][T14918] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 530.264796][T14918] folio_alloc_mpol_noprof+0x36/0x2f0 [ 530.264822][T14918] shmem_alloc_folio+0x135/0x160 [ 530.264842][T14918] shmem_alloc_and_add_folio+0x499/0xc20 [ 530.264868][T14918] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 530.264892][T14918] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 530.264917][T14918] shmem_get_folio_gfp+0x687/0x1530 [ 530.264943][T14918] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 530.264964][T14918] ? __pfx_timestamp_truncate+0x10/0x10 [ 530.264987][T14918] shmem_fault+0x1fe/0xa30 [ 530.265008][T14918] ? __pfx_shmem_fault+0x10/0x10 [ 530.265032][T14918] ? __pfx___up_read+0x10/0x10 [ 530.265062][T14918] ? __pfx_filemap_map_pages+0x10/0x10 [ 530.265087][T14918] __do_fault+0x10a/0x490 [ 530.265109][T14918] ? __pfx_filemap_map_pages+0x10/0x10 [ 530.265129][T14918] do_pte_missing+0x1a6/0x3fb0 [ 530.265148][T14918] ? __handle_mm_fault+0x1010/0x2a40 [ 530.265169][T14918] __handle_mm_fault+0x103d/0x2a40 [ 530.265193][T14918] ? __pfx___handle_mm_fault+0x10/0x10 [ 530.265209][T14918] ? __pte_offset_map_lock+0x155/0x2f0 [ 530.265233][T14918] ? find_held_lock+0x2b/0x80 [ 530.265248][T14918] ? find_held_lock+0x2b/0x80 [ 530.265283][T14918] handle_mm_fault+0x3fe/0xad0 [ 530.265305][T14918] __get_user_pages+0x771/0x36f0 [ 530.265340][T14918] ? __pfx___get_user_pages+0x10/0x10 [ 530.265366][T14918] ? __pfx_down_read_killable+0x10/0x10 [ 530.265383][T14918] ? __lock_acquire+0xaa4/0x1ba0 [ 530.265410][T14918] faultin_page_range+0x249/0x980 [ 530.265432][T14918] madvise_do_behavior+0x233/0x3b0 [ 530.265458][T14918] ? __pfx_madvise_do_behavior+0x10/0x10 [ 530.265495][T14918] do_madvise+0x10b/0x170 [ 530.265519][T14918] __x64_sys_madvise+0xa9/0x110 [ 530.265541][T14918] ? lockdep_hardirqs_on+0x7c/0x110 [ 530.265565][T14918] do_syscall_64+0xcd/0x230 [ 530.265591][T14918] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 530.265609][T14918] RIP: 0033:0x7f0a2818e969 [ 530.265623][T14918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 530.265639][T14918] RSP: 002b:00007f0a28f52038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 530.265656][T14918] RAX: ffffffffffffffda RBX: 00007f0a283b5fa0 RCX: 00007f0a2818e969 [ 530.265667][T14918] RDX: 0000000000000017 RSI: 0000000000100000 RDI: 0000000000000000 [ 530.265677][T14918] RBP: 00007f0a28210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 530.265686][T14918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 530.265702][T14918] R13: 0000000000000000 R14: 00007f0a283b5fa0 R15: 00007ffce5e9f268 [ 530.265726][T14918] [ 532.503676][T14945] FAULT_INJECTION: forcing a failure. [ 532.503676][T14945] name failslab, interval 1, probability 0, space 0, times 0 [ 532.579739][T14945] CPU: 1 UID: 0 PID: 14945 Comm: syz.2.3451 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 532.579767][T14945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 532.579777][T14945] Call Trace: [ 532.579783][T14945] [ 532.579789][T14945] dump_stack_lvl+0x16c/0x1f0 [ 532.579820][T14945] should_fail_ex+0x512/0x640 [ 532.579845][T14945] ? fs_reclaim_acquire+0xae/0x150 [ 532.579872][T14945] should_failslab+0xc2/0x120 [ 532.579894][T14945] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 532.579914][T14945] ? security_inode_alloc+0x3b/0x2b0 [ 532.579938][T14945] security_inode_alloc+0x3b/0x2b0 [ 532.579958][T14945] inode_init_always_gfp+0xce4/0x1030 [ 532.579979][T14945] alloc_inode+0x86/0x240 [ 532.579999][T14945] path_from_stashed+0x2be/0xb00 [ 532.580016][T14945] ? do_raw_spin_lock+0x12c/0x2b0 [ 532.580043][T14945] ? __pfx_path_from_stashed+0x10/0x10 [ 532.580061][T14945] ? do_raw_spin_unlock+0x172/0x230 [ 532.580089][T14945] ns_get_path+0x5f/0x80 [ 532.580115][T14945] proc_ns_get_link+0x121/0x260 [ 532.580131][T14945] ? __pfx_proc_ns_get_link+0x10/0x10 [ 532.580147][T14945] ? __pfx___might_resched+0x10/0x10 [ 532.580168][T14945] ? __pfx_proc_ns_get_link+0x10/0x10 [ 532.580184][T14945] step_into+0x1b25/0x2270 [ 532.580213][T14945] ? __pfx_step_into+0x10/0x10 [ 532.580237][T14945] ? find_held_lock+0x2b/0x80 [ 532.580261][T14945] path_openat+0x749/0x2d40 [ 532.580285][T14945] ? __pfx_path_openat+0x10/0x10 [ 532.580307][T14945] do_filp_open+0x20b/0x470 [ 532.580323][T14945] ? __pfx_do_filp_open+0x10/0x10 [ 532.580354][T14945] ? alloc_fd+0x471/0x7d0 [ 532.580385][T14945] do_sys_openat2+0x11b/0x1d0 [ 532.580408][T14945] ? __pfx_do_sys_openat2+0x10/0x10 [ 532.580438][T14945] __x64_sys_openat+0x174/0x210 [ 532.580461][T14945] ? __pfx___x64_sys_openat+0x10/0x10 [ 532.580484][T14945] ? rcu_is_watching+0x12/0xc0 [ 532.580506][T14945] do_syscall_64+0xcd/0x230 [ 532.580533][T14945] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 532.580551][T14945] RIP: 0033:0x7f0a2818d2d0 [ 532.580565][T14945] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 532.580581][T14945] RSP: 002b:00007f0a28f51f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 532.580597][T14945] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f0a2818d2d0 [ 532.580608][T14945] RDX: 0000000000000002 RSI: 00007f0a28f51fa0 RDI: 00000000ffffff9c [ 532.580618][T14945] RBP: 00007f0a28f51fa0 R08: 0000000000000000 R09: 0000000000000000 [ 532.580627][T14945] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 532.580637][T14945] R13: 0000000000000000 R14: 00007f0a283b5fa0 R15: 00007ffce5e9f268 [ 532.580657][T14945] [ 533.180264][T14948] netlink: 330 bytes leftover after parsing attributes in process `syz.4.3453'. [ 533.685072][T14959] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3457'. [ 533.768193][T14961] netlink: 354 bytes leftover after parsing attributes in process `syz.4.3457'. [ 534.666868][T14972] dlm: Unknown command passed to DLM device : 0 [ 534.666868][T14972] [ 535.220321][T14982] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3466'. [ 535.724815][T14991] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3469'. [ 535.874578][T14994] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3469'. [ 536.004987][T14994] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3469'. [ 536.118094][T14994] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3469'. [ 536.251957][T14994] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3469'. [ 536.828243][T15003] netlink: 290 bytes leftover after parsing attributes in process `syz.4.3474'. [ 538.294164][T15025] mkiss: ax0: crc mode is auto. [ 539.466779][T15043] __nla_validate_parse: 2 callbacks suppressed [ 539.466797][T15043] netlink: 326 bytes leftover after parsing attributes in process `syz.2.3488'. [ 540.233063][T15053] netlink: 'syz.3.3492': attribute type 4 has an invalid length. [ 540.379751][T15053] netlink: 314 bytes leftover after parsing attributes in process `syz.3.3492'. [ 541.140772][T15071] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3499'. [ 541.589736][T15075] netlink: 'syz.3.3500': attribute type 4 has an invalid length. [ 541.687754][T15075] netlink: 314 bytes leftover after parsing attributes in process `syz.3.3500'. [ 541.789116][T15075] IPv6: NLM_F_CREATE should be specified when creating new route [ 541.863059][T15075] IPv6: Can't replace route, no match found [ 542.267759][T15081] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3503'. [ 542.419761][T15081] netlink: 354 bytes leftover after parsing attributes in process `syz.3.3503'. ÏðèP÷šÐ3Yñ,P¥ªšúK [ 543.955388][T15111] netlink: 338 bytes leftover after parsing attributes in process `syz.3.3514'. [ 544.011064][T15114] netlink: 338 bytes leftover after parsing attributes in process `syz.3.3514'. [ 544.075427][T15111] netlink: 210 bytes leftover after parsing attributes in process `syz.3.3514'. [ 544.283347][T15116] FAULT_INJECTION: forcing a failure. [ 544.283347][T15116] name failslab, interval 1, probability 0, space 0, times 0 [ 544.354216][T15116] CPU: 1 UID: 0 PID: 15116 Comm: syz.0.3516 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 544.354244][T15116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 544.354254][T15116] Call Trace: [ 544.354260][T15116] [ 544.354267][T15116] dump_stack_lvl+0x16c/0x1f0 [ 544.354296][T15116] should_fail_ex+0x512/0x640 [ 544.354321][T15116] ? __kmalloc_noprof+0xbf/0x510 [ 544.354343][T15116] ? lsm_blob_alloc+0x68/0x90 [ 544.354358][T15116] should_failslab+0xc2/0x120 [ 544.354379][T15116] __kmalloc_noprof+0xd2/0x510 [ 544.354420][T15116] lsm_blob_alloc+0x68/0x90 [ 544.354436][T15116] security_prepare_creds+0x30/0x270 [ 544.354463][T15116] prepare_creds+0x56f/0x7d0 [ 544.354490][T15116] __sys_setresuid+0x46d/0x1160 [ 544.354515][T15116] do_syscall_64+0xcd/0x230 [ 544.354541][T15116] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 544.354559][T15116] RIP: 0033:0x7f798438e969 [ 544.354572][T15116] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 544.354588][T15116] RSP: 002b:00007f79852cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000075 [ 544.354605][T15116] RAX: ffffffffffffffda RBX: 00007f79845b5fa0 RCX: 00007f798438e969 [ 544.354622][T15116] RDX: 0000000000008080 RSI: 0000000000000007 RDI: 0000000000000000 [ 544.354631][T15116] RBP: 00007f7984410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 544.354641][T15116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 544.354651][T15116] R13: 0000000000000000 R14: 00007f79845b5fa0 R15: 00007fff2b9ec2f8 [ 544.354672][T15116] [ 545.366628][T15128] FAULT_INJECTION: forcing a failure. [ 545.366628][T15128] name failslab, interval 1, probability 0, space 0, times 0 [ 545.485794][T15128] CPU: 1 UID: 0 PID: 15128 Comm: syz.4.3521 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 545.485823][T15128] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 545.485833][T15128] Call Trace: [ 545.485839][T15128] [ 545.485846][T15128] dump_stack_lvl+0x16c/0x1f0 [ 545.485884][T15128] should_fail_ex+0x512/0x640 [ 545.485909][T15128] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 545.485930][T15128] should_failslab+0xc2/0x120 [ 545.485951][T15128] __kmalloc_cache_noprof+0x6a/0x3e0 [ 545.485968][T15128] ? apparmor_capable+0x114/0x1d0 [ 545.485986][T15128] ? fsnotify_alloc_group+0x92/0x330 [ 545.486013][T15128] fsnotify_alloc_group+0x92/0x330 [ 545.486038][T15128] __do_sys_fanotify_init+0x21f/0xb80 [ 545.486058][T15128] ? rcu_is_watching+0x12/0xc0 [ 545.486077][T15128] do_syscall_64+0xcd/0x230 [ 545.486103][T15128] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 545.486120][T15128] RIP: 0033:0x7fc0dff8e969 [ 545.486135][T15128] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 545.486152][T15128] RSP: 002b:00007fc0e0e68038 EFLAGS: 00000246 ORIG_RAX: 000000000000012c [ 545.486169][T15128] RAX: ffffffffffffffda RBX: 00007fc0e01b5fa0 RCX: 00007fc0dff8e969 [ 545.486179][T15128] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000401 [ 545.486189][T15128] RBP: 00007fc0e0010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 545.486199][T15128] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 545.486208][T15128] R13: 0000000000000000 R14: 00007fc0e01b5fa0 R15: 00007ffca563b618 [ 545.486229][T15128] [ 546.567279][T15148] netlink: 'syz.4.3529': attribute type 21 has an invalid length. [ 546.602149][T15148] netlink: 326 bytes leftover after parsing attributes in process `syz.4.3529'. [ 546.632597][T15148] IPv6: NLM_F_CREATE should be specified when creating new route [ 547.187921][T15162] FAULT_INJECTION: forcing a failure. [ 547.187921][T15162] name failslab, interval 1, probability 0, space 0, times 0 [ 547.247071][T15162] CPU: 1 UID: 0 PID: 15162 Comm: syz.0.3535 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 547.247100][T15162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 547.247110][T15162] Call Trace: [ 547.247116][T15162] [ 547.247123][T15162] dump_stack_lvl+0x16c/0x1f0 [ 547.247153][T15162] should_fail_ex+0x512/0x640 [ 547.247179][T15162] ? __kvmalloc_node_noprof+0x122/0x600 [ 547.247201][T15162] should_failslab+0xc2/0x120 [ 547.247222][T15162] __kvmalloc_node_noprof+0x135/0x600 [ 547.247240][T15162] ? trace_kmalloc+0x2b/0xd0 [ 547.247261][T15162] ? __kvmalloc_node_noprof+0x296/0x600 [ 547.247277][T15162] ? io_alloc_cache_init+0x33/0x170 [ 547.247298][T15162] ? io_alloc_cache_init+0x33/0x170 [ 547.247315][T15162] io_alloc_cache_init+0x33/0x170 [ 547.247333][T15162] io_rsrc_cache_init+0x26/0x50 [ 547.247360][T15162] io_uring_setup+0x68b/0x1ff0 [ 547.247384][T15162] ? __pfx_io_uring_setup+0x10/0x10 [ 547.247404][T15162] ? do_futex+0x122/0x350 [ 547.247423][T15162] ? __pfx_do_futex+0x10/0x10 [ 547.247440][T15162] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 547.247478][T15162] ? rcu_is_watching+0x12/0xc0 [ 547.247498][T15162] __x64_sys_io_uring_setup+0xc2/0x170 [ 547.247521][T15162] do_syscall_64+0xcd/0x230 [ 547.247547][T15162] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 547.247565][T15162] RIP: 0033:0x7f798438e969 [ 547.247580][T15162] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 547.247595][T15162] RSP: 002b:00007f79852cb038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 547.247612][T15162] RAX: ffffffffffffffda RBX: 00007f79845b5fa0 RCX: 00007f798438e969 [ 547.247623][T15162] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 547.247633][T15162] RBP: 00007f7984410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 547.247642][T15162] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 547.247652][T15162] R13: 0000000000000000 R14: 00007f79845b5fa0 R15: 00007fff2b9ec2f8 [ 547.247672][T15162] [ 549.769408][T15191] netlink: 'syz.2.3548': attribute type 4 has an invalid length. [ 549.893904][T15191] netlink: 314 bytes leftover after parsing attributes in process `syz.2.3548'. [ 549.938564][T15194] sp0: Synchronizing with TNC [ 549.999952][T15195] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3549'. [ 550.076780][T15195] unsupported nlmsg_type 40 [ 550.503111][T15201] netlink: 504 bytes leftover after parsing attributes in process `syz.3.3552'. [ 551.185142][T15208] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3555'. [ 551.238743][T15208] netlink: 25 bytes leftover after parsing attributes in process `syz.4.3555'. [ 551.590543][T15213] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3557'. [ 551.628602][T15215] netlink: 346 bytes leftover after parsing attributes in process `syz.2.3558'. [ 551.890155][T15218] netlink: 504 bytes leftover after parsing attributes in process `syz.2.3559'. [ 551.945797][T15218] netlink: 504 bytes leftover after parsing attributes in process `syz.2.3559'. [ 552.206340][T15224] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3562'. [ 552.249815][T15224] netlink: 13 bytes leftover after parsing attributes in process `syz.2.3562'. [ 552.568656][T15232] netlink: 'syz.2.3565': attribute type 15 has an invalid length. [ 552.602219][T15232] netlink: 'syz.2.3565': attribute type 16 has an invalid length. [ 552.610069][T15232] netlink: 'syz.2.3565': attribute type 17 has an invalid length. [ 552.682063][T15232] netlink: 'syz.2.3565': attribute type 19 has an invalid length. [ 552.719587][T15232] netlink: 'syz.2.3565': attribute type 27 has an invalid length. [ 552.762223][T15232] netlink: 'syz.2.3565': attribute type 28 has an invalid length. [ 552.798470][T15232] netlink: 'syz.2.3565': attribute type 29 has an invalid length. [ 552.837614][T15232] netlink: 'syz.2.3565': attribute type 30 has an invalid length. [ 552.879198][T15232] netlink: 18 bytes leftover after parsing attributes in process `syz.2.3565'. [ 553.823441][T15250] netlink: 'syz.4.3570': attribute type 33 has an invalid length. [ 553.831301][T15250] netlink: 322 bytes leftover after parsing attributes in process `syz.4.3570'. [ 554.319901][T15257] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3574'. [ 554.366560][T15257] netlink: 13 bytes leftover after parsing attributes in process `syz.4.3574'. [ 555.440777][T15269] netlink: 146 bytes leftover after parsing attributes in process `syz.3.3577'. [ 556.075803][T15277] bridge0: port 2(bridge_slave_1) entered disabled state [ 556.083253][T15277] bridge0: port 1(bridge_slave_0) entered disabled state [ 559.321754][T15320] __nla_validate_parse: 1 callbacks suppressed [ 559.321781][T15320] netlink: 266 bytes leftover after parsing attributes in process `syz.4.3593'. [ 559.412222][T15320] IPv6: NLM_F_CREATE should be specified when creating new route [ 559.709440][T15330] FAULT_INJECTION: forcing a failure. [ 559.709440][T15330] name failslab, interval 1, probability 0, space 0, times 0 [ 559.797548][T15330] CPU: 1 UID: 0 PID: 15330 Comm: syz.3.3598 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 559.797576][T15330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 559.797586][T15330] Call Trace: [ 559.797592][T15330] [ 559.797599][T15330] dump_stack_lvl+0x16c/0x1f0 [ 559.797628][T15330] should_fail_ex+0x512/0x640 [ 559.797653][T15330] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 559.797673][T15330] should_failslab+0xc2/0x120 [ 559.797694][T15330] __kmalloc_cache_noprof+0x6a/0x3e0 [ 559.797711][T15330] ? nfs_init_fs_context+0x4f/0x11e0 [ 559.797738][T15330] nfs_init_fs_context+0x4f/0x11e0 [ 559.797761][T15330] ? __pfx_nfs_init_fs_context+0x10/0x10 [ 559.797784][T15330] alloc_fs_context+0x54d/0x9c0 [ 559.797805][T15330] __x64_sys_fsopen+0xeb/0x240 [ 559.797825][T15330] do_syscall_64+0xcd/0x230 [ 559.797851][T15330] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 559.797868][T15330] RIP: 0033:0x7fab8678e969 [ 559.797882][T15330] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 559.797898][T15330] RSP: 002b:00007fab876a8038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae [ 559.797915][T15330] RAX: ffffffffffffffda RBX: 00007fab869b5fa0 RCX: 00007fab8678e969 [ 559.797925][T15330] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 559.797935][T15330] RBP: 00007fab86810ab1 R08: 0000000000000000 R09: 0000000000000000 [ 559.797945][T15330] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 559.797954][T15330] R13: 0000000000000000 R14: 00007fab869b5fa0 R15: 00007ffdf5bf6688 [ 559.797975][T15330] [ 560.181672][T15334] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3599'. [ 561.832547][T15359] kvm: kvm [15358]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x40000077) [ 562.774563][T15380] netlink: 326 bytes leftover after parsing attributes in process `syz.2.3615'. [ 563.541344][ T5825] Process accounting resumed [ 564.536203][ T55] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 564.551806][ T55] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 564.560143][ T55] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 564.570113][ T55] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 564.578502][ T55] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 565.352428][T15395] chnl_net:caif_netlink_parms(): no params data found [ 565.755020][T15395] bridge0: port 1(bridge_slave_0) entered blocking state [ 565.793103][T15395] bridge0: port 1(bridge_slave_0) entered disabled state [ 565.844527][T15395] bridge_slave_0: entered allmulticast mode [ 565.893355][T15395] bridge_slave_0: entered promiscuous mode [ 565.935651][T15395] bridge0: port 2(bridge_slave_1) entered blocking state [ 565.984489][T15395] bridge0: port 2(bridge_slave_1) entered disabled state [ 566.022613][T15395] bridge_slave_1: entered allmulticast mode [ 566.060209][T15395] bridge_slave_1: entered promiscuous mode [ 566.244968][T15395] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 566.428322][T15395] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 566.620896][ T5836] Bluetooth: hci4: command tx timeout [ 566.691544][T15395] team0: Port device team_slave_0 added [ 566.752381][T15395] team0: Port device team_slave_1 added [ 566.859330][T15395] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 566.886862][T15395] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 566.999681][T15395] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 567.053578][T15395] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 567.082178][T15395] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 567.149273][T15395] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 567.333062][T15395] hsr_slave_0: entered promiscuous mode [ 567.350705][T15395] hsr_slave_1: entered promiscuous mode [ 567.363683][T15395] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 567.384063][T15395] Cannot create hsr debugfs directory [ 567.873157][T15395] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 567.922727][T15395] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 568.034197][T15395] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 568.104679][T15395] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 568.464890][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 568.471884][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 568.534550][T15395] 8021q: adding VLAN 0 to HW filter on device bond0 [ 568.608663][T15395] 8021q: adding VLAN 0 to HW filter on device team0 [ 568.653787][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 568.660997][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 568.701065][ T5836] Bluetooth: hci4: command tx timeout [ 568.735676][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 568.742990][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 568.960647][T15462] FAULT_INJECTION: forcing a failure. [ 568.960647][T15462] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 569.127174][T15462] CPU: 1 UID: 0 PID: 15462 Comm: syz.3.3640 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 569.127203][T15462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 569.127212][T15462] Call Trace: [ 569.127219][T15462] [ 569.127226][T15462] dump_stack_lvl+0x16c/0x1f0 [ 569.127256][T15462] should_fail_ex+0x512/0x640 [ 569.127285][T15462] should_fail_alloc_page+0xe7/0x130 [ 569.127309][T15462] prepare_alloc_pages+0x3c2/0x610 [ 569.127334][T15462] ? rcu_is_watching+0x12/0xc0 [ 569.127353][T15462] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 569.127375][T15462] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 569.127410][T15462] ? __lock_acquire+0x5ca/0x1ba0 [ 569.127433][T15462] ? __cached_dev_store+0x91d/0x1880 [ 569.127454][T15462] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 569.127474][T15462] ? relay_open+0x653/0xad0 [ 569.127493][T15462] ? blk_trace_setup+0xed/0x1b0 [ 569.127516][T15462] ? rcu_read_unlock+0x17/0x60 [ 569.127542][T15462] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 569.127567][T15462] ? policy_nodemask+0xea/0x4e0 [ 569.127590][T15462] alloc_pages_mpol+0x1fb/0x550 [ 569.127611][T15462] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 569.127632][T15462] ? __kvmalloc_node_noprof.cold+0x60/0x65 [ 569.127655][T15462] ? trace_kmalloc+0x2b/0xd0 [ 569.127676][T15462] ? __kmalloc_noprof.cold+0x5c/0x61 [ 569.127695][T15462] ? relay_open_buf.part.0+0x194/0xb90 [ 569.127717][T15462] alloc_pages_noprof+0x131/0x390 [ 569.127739][T15462] relay_open_buf.part.0+0x262/0xb90 [ 569.127766][T15462] relay_open+0x653/0xad0 [ 569.127785][T15462] ? debugfs_create_file_full+0x41/0x60 [ 569.127813][T15462] do_blk_trace_setup+0x503/0xb50 [ 569.127842][T15462] blk_trace_setup+0xed/0x1b0 [ 569.127858][T15462] ? __pfx_blk_trace_setup+0x10/0x10 [ 569.127873][T15462] ? __pfx_snprintf+0x10/0x10 [ 569.127907][T15462] blk_trace_ioctl+0x146/0x280 [ 569.127924][T15462] ? __pfx_blk_trace_ioctl+0x10/0x10 [ 569.127944][T15462] ? find_held_lock+0x2b/0x80 [ 569.127960][T15462] ? hook_file_ioctl_common+0x145/0x410 [ 569.127983][T15462] blkdev_ioctl+0x108/0x6d0 [ 569.128004][T15462] ? __pfx_blkdev_ioctl+0x10/0x10 [ 569.128027][T15462] ? __pfx_blkdev_ioctl+0x10/0x10 [ 569.128048][T15462] __x64_sys_ioctl+0x190/0x200 [ 569.128073][T15462] do_syscall_64+0xcd/0x230 [ 569.128099][T15462] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 569.128116][T15462] RIP: 0033:0x7fab8678e969 [ 569.128130][T15462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 569.128146][T15462] RSP: 002b:00007fab876a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 569.128164][T15462] RAX: ffffffffffffffda RBX: 00007fab869b5fa0 RCX: 00007fab8678e969 [ 569.128174][T15462] RDX: 00002000000000c0 RSI: 00000000c0481273 RDI: 0000000000000006 [ 569.128184][T15462] RBP: 00007fab86810ab1 R08: 0000000000000000 R09: 0000000000000000 [ 569.128193][T15462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 569.128207][T15462] R13: 0000000000000000 R14: 00007fab869b5fa0 R15: 00007ffdf5bf6688 [ 569.128230][T15462] [ 569.960257][T15471] netlink: 130 bytes leftover after parsing attributes in process `syz.4.3642'. [ 570.184548][ T5836] Bluetooth: hci2: unexpected subevent 0x01 length: 122 > 18 [ 570.349847][T15395] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 570.783448][ T55] Bluetooth: hci4: command tx timeout [ 571.311026][ T55] Bluetooth: hci3: unexpected event 0x07 length: 440 > 255 [ 571.314116][T15498] ima: policy update failed [ 571.365115][ T30] audit: type=1802 audit(4294968587.620:20): pid=15498 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.3650" res=0 errno=0 [ 571.466114][T15395] veth0_vlan: entered promiscuous mode [ 571.507472][T15395] veth1_vlan: entered promiscuous mode [ 571.598595][T15395] veth0_macvtap: entered promiscuous mode [ 571.630904][T15395] veth1_macvtap: entered promiscuous mode [ 571.680630][T15395] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 571.715193][T15395] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 571.752695][T15395] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 571.777252][T15395] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 571.799283][T15395] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 571.824523][T15395] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 572.071179][ T4488] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 572.110171][ T4488] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 572.234235][ T988] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 572.287684][ T988] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 572.376102][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 572.383359][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 572.398427][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 572.410300][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 572.448897][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 572.461049][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 572.476510][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 572.485489][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 572.863091][ T55] Bluetooth: hci4: command tx timeout [ 573.673906][T15548] netlink: 334 bytes leftover after parsing attributes in process `syz.3.3670'. [ 576.479048][T15609] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 576.683814][T15614] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3697'. [ 576.693312][ C1] vcan0: j1939_tp_rxtimer: 0xffff888024f15000: rx timeout, send abort [ 576.703247][ C1] vcan0: j1939_tp_rxtimer: 0xffff888024f15400: rx timeout, send abort [ 576.711942][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888024f15000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 576.727492][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888024f15400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 576.816744][T15614] netlink: 354 bytes leftover after parsing attributes in process `syz.3.3697'. [ 577.136518][T15618] FAULT_INJECTION: forcing a failure. [ 577.136518][T15618] name failslab, interval 1, probability 0, space 0, times 0 [ 577.225478][T15618] CPU: 1 UID: 0 PID: 15618 Comm: syz.3.3700 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 577.225506][T15618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 577.225517][T15618] Call Trace: [ 577.225523][T15618] [ 577.225530][T15618] dump_stack_lvl+0x16c/0x1f0 [ 577.225560][T15618] should_fail_ex+0x512/0x640 [ 577.225585][T15618] ? __kmalloc_noprof+0xbf/0x510 [ 577.225606][T15618] ? lsm_blob_alloc+0x68/0x90 [ 577.225621][T15618] should_failslab+0xc2/0x120 [ 577.225641][T15618] __kmalloc_noprof+0xd2/0x510 [ 577.225664][T15618] lsm_blob_alloc+0x68/0x90 [ 577.225680][T15618] security_prepare_creds+0x30/0x270 [ 577.225706][T15618] prepare_creds+0x56f/0x7d0 [ 577.225732][T15618] __sys_setresgid+0x4af/0x1150 [ 577.225756][T15618] do_syscall_64+0xcd/0x230 [ 577.225782][T15618] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 577.225799][T15618] RIP: 0033:0x7fab8678e969 [ 577.225813][T15618] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 577.225829][T15618] RSP: 002b:00007fab876a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000077 [ 577.225846][T15618] RAX: ffffffffffffffda RBX: 00007fab869b5fa0 RCX: 00007fab8678e969 [ 577.225856][T15618] RDX: 0000000000000008 RSI: 00000000800000a0 RDI: 0000000000000081 [ 577.225866][T15618] RBP: 00007fab86810ab1 R08: 0000000000000000 R09: 0000000000000000 [ 577.225876][T15618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 577.225885][T15618] R13: 0000000000000000 R14: 00007fab869b5fa0 R15: 00007ffdf5bf6688 [ 577.225906][T15618] [ 578.365180][T15637] kvm_intel: kvm [15636]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x1d9) = 0x2 [ 579.362486][T15659] FAULT_INJECTION: forcing a failure. [ 579.362486][T15659] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 579.474752][T15659] CPU: 1 UID: 0 PID: 15659 Comm: syz.2.3716 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 579.474781][T15659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 579.474791][T15659] Call Trace: [ 579.474797][T15659] [ 579.474804][T15659] dump_stack_lvl+0x16c/0x1f0 [ 579.474834][T15659] should_fail_ex+0x512/0x640 [ 579.474864][T15659] _copy_to_user+0x32/0xd0 [ 579.474884][T15659] copy_siginfo_to_user+0x27/0xc0 [ 579.474908][T15659] x64_setup_rt_frame+0x811/0xcf0 [ 579.474938][T15659] ? __pfx_x64_setup_rt_frame+0x10/0x10 [ 579.474962][T15659] ? __task_pid_nr_ns+0x17c/0x500 [ 579.474989][T15659] arch_do_signal_or_restart+0x5b6/0x7a0 [ 579.475012][T15659] ? do_rt_tgsigqueueinfo+0xb0/0x100 [ 579.475034][T15659] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 579.475069][T15659] syscall_exit_to_user_mode+0x150/0x2a0 [ 579.475096][T15659] do_syscall_64+0xda/0x230 [ 579.475129][T15659] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 579.475147][T15659] RIP: 0033:0x7f0a2818e969 [ 579.475161][T15659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 579.475178][T15659] RSP: 002b:00007f0a28f52038 EFLAGS: 00000246 ORIG_RAX: 0000000000000129 [ 579.475196][T15659] RAX: 0000000000000000 RBX: 00007f0a283b5fa0 RCX: 00007f0a2818e969 [ 579.475207][T15659] RDX: 0000000000000021 RSI: 00000000000008ed RDI: 00000000000008ec [ 579.475217][T15659] RBP: 00007f0a28210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 579.475227][T15659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 579.475237][T15659] R13: 0000000000000000 R14: 00007f0a283b5fa0 R15: 00007ffce5e9f268 [ 579.475263][T15659] [ 580.048576][ T55] Bluetooth: hci2: unexpected subevent 0x01 length: 5 < 18 [ 580.177371][T15666] net_ratelimit: 21 callbacks suppressed [ 580.177390][T15666] Dead loop on virtual device ip6_vti0, fix it urgently! [ 580.229488][T15666] Dead loop on virtual device ip6_vti0, fix it urgently! [ 585.292010][T15783] netlink: 330 bytes leftover after parsing attributes in process `syz.3.3755'. [ 586.467896][T15801] mkiss: ax0: crc mode is auto. [ 587.155327][T15820] kvm: kvm [15819]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010058) = 0x2 [ 588.256800][ T55] Bluetooth: hci1: unexpected event 0x03 length: 18 > 11 [ 589.410498][T15867] sp0: Synchronizing with TNC [ 590.474457][T15888] netlink: 330 bytes leftover after parsing attributes in process `syz.4.3796'. [ 594.712205][T15963] kvm: kvm [15961]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x4000001f) [ 597.474752][T16008] netlink: 326 bytes leftover after parsing attributes in process `syz.5.3842'. [ 598.478277][T16029] FAULT_INJECTION: forcing a failure. [ 598.478277][T16029] name failslab, interval 1, probability 0, space 0, times 0 [ 598.618954][T16029] CPU: 1 UID: 0 PID: 16029 Comm: syz.5.3849 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 598.618983][T16029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 598.618999][T16029] Call Trace: [ 598.619005][T16029] [ 598.619012][T16029] dump_stack_lvl+0x16c/0x1f0 [ 598.619042][T16029] should_fail_ex+0x512/0x640 [ 598.619068][T16029] ? __kmalloc_noprof+0xbf/0x510 [ 598.619089][T16029] ? lsm_blob_alloc+0x68/0x90 [ 598.619104][T16029] should_failslab+0xc2/0x120 [ 598.619126][T16029] __kmalloc_noprof+0xd2/0x510 [ 598.619149][T16029] lsm_blob_alloc+0x68/0x90 [ 598.619165][T16029] security_sk_alloc+0x30/0x270 [ 598.619186][T16029] sk_prot_alloc+0x1c7/0x2a0 [ 598.619212][T16029] sk_alloc+0x36/0xc20 [ 598.619232][T16029] xsk_create+0x11b/0x730 [ 598.619254][T16029] __sock_create+0x335/0x8d0 [ 598.619291][T16029] __sys_socket+0x14d/0x260 [ 598.619307][T16029] ? __pfx___sys_socket+0x10/0x10 [ 598.619324][T16029] ? rcu_is_watching+0x12/0xc0 [ 598.619345][T16029] __x64_sys_socket+0x72/0xb0 [ 598.619359][T16029] ? lockdep_hardirqs_on+0x7c/0x110 [ 598.619382][T16029] do_syscall_64+0xcd/0x230 [ 598.619408][T16029] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 598.619426][T16029] RIP: 0033:0x7f37ea98e969 [ 598.619440][T16029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 598.619457][T16029] RSP: 002b:00007f37eb76c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 598.619473][T16029] RAX: ffffffffffffffda RBX: 00007f37eabb5fa0 RCX: 00007f37ea98e969 [ 598.619483][T16029] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 000000000000002c [ 598.619493][T16029] RBP: 00007f37eaa10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 598.619502][T16029] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 598.619512][T16029] R13: 0000000000000000 R14: 00007f37eabb5fa0 R15: 00007fffc5930538 [ 598.619534][T16029] [ 598.871791][T16037] FAULT_INJECTION: forcing a failure. [ 598.871791][T16037] name failslab, interval 1, probability 0, space 0, times 0 [ 598.885023][T16037] CPU: 1 UID: 0 PID: 16037 Comm: syz.2.3851 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 598.885049][T16037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 598.885059][T16037] Call Trace: [ 598.885065][T16037] [ 598.885072][T16037] dump_stack_lvl+0x16c/0x1f0 [ 598.885103][T16037] should_fail_ex+0x512/0x640 [ 598.885135][T16037] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 598.885155][T16037] should_failslab+0xc2/0x120 [ 598.885177][T16037] __kmalloc_cache_noprof+0x6a/0x3e0 [ 598.885194][T16037] ? ima_calc_file_hash_tfm+0x29f/0x3d0 [ 598.885217][T16037] ima_calc_file_hash_tfm+0x29f/0x3d0 [ 598.885235][T16037] ? __pfx_ima_calc_file_hash_tfm+0x10/0x10 [ 598.885292][T16037] ? shmem_huge_global_enabled+0x173/0x5b0 [ 598.885314][T16037] ? ima_alloc_tfm+0x21a/0x2e0 [ 598.885330][T16037] ? shmem_getattr+0x397/0x450 [ 598.885349][T16037] ima_calc_file_hash+0x1ba/0x490 [ 598.885369][T16037] ima_collect_measurement+0x897/0xa40 [ 598.885394][T16037] ? __pfx_ima_collect_measurement+0x10/0x10 [ 598.885428][T16037] ? do_raw_read_unlock+0x44/0xe0 [ 598.885460][T16037] ? vfs_getxattr_alloc+0xec/0x340 [ 598.885482][T16037] ? ima_get_hash_algo+0x27c/0x400 [ 598.885506][T16037] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 598.885535][T16037] ? process_measurement+0x11fa/0x23e0 [ 598.885560][T16037] process_measurement+0x11fa/0x23e0 [ 598.885592][T16037] ? __pfx_process_measurement+0x10/0x10 [ 598.885616][T16037] ? __lock_acquire+0x5ca/0x1ba0 [ 598.885640][T16037] ? futex_wait_queue+0x24/0x220 [ 598.885686][T16037] ? mtree_load+0x325/0xa40 [ 598.885714][T16037] ima_file_mmap+0x1b1/0x1d0 [ 598.885739][T16037] ? __pfx_ima_file_mmap+0x10/0x10 [ 598.885771][T16037] security_mmap_file+0x88c/0x990 [ 598.885795][T16037] __do_sys_remap_file_pages+0x2e2/0xac0 [ 598.885829][T16037] ? __pfx___do_sys_remap_file_pages+0x10/0x10 [ 598.885855][T16037] ? __x64_sys_futex+0x1e0/0x4c0 [ 598.885876][T16037] ? xfd_validate_state+0x5d/0x180 [ 598.885894][T16037] ? rcu_is_watching+0x12/0xc0 [ 598.885916][T16037] do_syscall_64+0xcd/0x230 [ 598.885942][T16037] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 598.885959][T16037] RIP: 0033:0x7f0a2818e969 [ 598.885974][T16037] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 598.885991][T16037] RSP: 002b:00007f0a28f52038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d8 [ 598.886008][T16037] RAX: ffffffffffffffda RBX: 00007f0a283b5fa0 RCX: 00007f0a2818e969 [ 598.886018][T16037] RDX: 0000000000000000 RSI: 0000000000001000 RDI: 0000000000006a2b [ 598.886028][T16037] RBP: 00007f0a28210ab1 R08: 0000000000010000 R09: 0000000000000000 [ 598.886037][T16037] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 598.886047][T16037] R13: 0000000000000000 R14: 00007f0a283b5fa0 R15: 00007ffce5e9f268 [ 598.886068][T16037] [ 599.259421][ T30] audit: type=1800 audit(4294968615.126:21): pid=16037 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3851" name="dev/zero" dev="tmpfs" ino=2370 res=0 errno=0 [ 602.086445][T16085] FAULT_INJECTION: forcing a failure. [ 602.086445][T16085] name failslab, interval 1, probability 0, space 0, times 0 [ 602.292829][T16085] CPU: 1 UID: 0 PID: 16085 Comm: syz.2.3861 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 602.292858][T16085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 602.292869][T16085] Call Trace: [ 602.292875][T16085] [ 602.292883][T16085] dump_stack_lvl+0x16c/0x1f0 [ 602.292912][T16085] should_fail_ex+0x512/0x640 [ 602.292942][T16085] should_failslab+0xc2/0x120 [ 602.292965][T16085] __kmalloc_cache_noprof+0x6a/0x3e0 [ 602.292983][T16085] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 602.293008][T16085] ? minstrel_ht_alloc+0x4f/0x980 [ 602.293037][T16085] minstrel_ht_alloc+0x4f/0x980 [ 602.293068][T16085] ieee80211_init_rate_ctrl_alg+0x209/0x6b0 [ 602.293089][T16085] ieee80211_register_hw+0x2124/0x4140 [ 602.293110][T16085] ? __debug_object_init+0x281/0x3d0 [ 602.293131][T16085] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 602.293153][T16085] ? find_held_lock+0x2b/0x80 [ 602.293170][T16085] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 602.293195][T16085] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 602.293216][T16085] ? __hrtimer_setup+0x176/0x280 [ 602.293242][T16085] mac80211_hwsim_new_radio+0x3034/0x54d0 [ 602.293289][T16085] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 602.293322][T16085] hwsim_new_radio_nl+0xb51/0x12c0 [ 602.293350][T16085] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 602.293382][T16085] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 602.293409][T16085] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 602.293440][T16085] genl_family_rcv_msg_doit+0x209/0x2f0 [ 602.293467][T16085] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 602.293492][T16085] ? trace_cap_capable+0x18d/0x200 [ 602.293516][T16085] ? bpf_lsm_capable+0x9/0x10 [ 602.293534][T16085] ? security_capable+0x7e/0x260 [ 602.293552][T16085] ? ns_capable+0xd7/0x110 [ 602.293572][T16085] genl_rcv_msg+0x55c/0x800 [ 602.293600][T16085] ? __pfx_genl_rcv_msg+0x10/0x10 [ 602.293625][T16085] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 602.293652][T16085] ? __lock_acquire+0xaa4/0x1ba0 [ 602.293677][T16085] netlink_rcv_skb+0x16d/0x440 [ 602.293699][T16085] ? __pfx_genl_rcv_msg+0x10/0x10 [ 602.293725][T16085] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 602.293758][T16085] ? __pfx_down_read+0x10/0x10 [ 602.293774][T16085] ? netlink_deliver_tap+0x1ae/0xd30 [ 602.293799][T16085] genl_rcv+0x28/0x40 [ 602.293820][T16085] netlink_unicast+0x53a/0x7f0 [ 602.293845][T16085] ? __pfx_netlink_unicast+0x10/0x10 [ 602.293870][T16085] ? __lock_acquire+0xaa4/0x1ba0 [ 602.293898][T16085] netlink_sendmsg+0x8d1/0xdd0 [ 602.293924][T16085] ? __pfx_netlink_sendmsg+0x10/0x10 [ 602.293955][T16085] ____sys_sendmsg+0xa98/0xc70 [ 602.293982][T16085] ? copy_msghdr_from_user+0x10a/0x160 [ 602.294002][T16085] ? __pfx_____sys_sendmsg+0x10/0x10 [ 602.294057][T16085] ___sys_sendmsg+0x134/0x1d0 [ 602.294079][T16085] ? __pfx____sys_sendmsg+0x10/0x10 [ 602.294131][T16085] __sys_sendmsg+0x16d/0x220 [ 602.294152][T16085] ? __pfx___sys_sendmsg+0x10/0x10 [ 602.294172][T16085] ? native_tss_update_io_bitmap+0x3ca/0x720 [ 602.294198][T16085] ? rcu_is_watching+0x12/0xc0 [ 602.294223][T16085] do_syscall_64+0xcd/0x230 [ 602.294250][T16085] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 602.294273][T16085] RIP: 0033:0x7f0a2818e969 [ 602.294288][T16085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 602.294304][T16085] RSP: 002b:00007f0a28f52038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 602.294321][T16085] RAX: ffffffffffffffda RBX: 00007f0a283b5fa0 RCX: 00007f0a2818e969 [ 602.294333][T16085] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000005 [ 602.294343][T16085] RBP: 00007f0a28210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 602.294353][T16085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 602.294363][T16085] R13: 0000000000000000 R14: 00007f0a283b5fa0 R15: 00007ffce5e9f268 [ 602.294386][T16085] [ 602.843355][T16085] ieee80211 phy27: Failed to select rate control algorithm [ 602.910008][T16097] mkiss: ax0: crc mode is auto. [ 603.596038][T16113] netlink: 'syz.5.3873': attribute type 8 has an invalid length. [ 603.636173][T16113] netlink: 'syz.5.3873': attribute type 8 has an invalid length. [ 604.877442][T16139] netlink: 326 bytes leftover after parsing attributes in process `syz.3.3884'. [ 605.325837][T16152] FAULT_INJECTION: forcing a failure. [ 605.325837][T16152] name failslab, interval 1, probability 0, space 0, times 0 [ 605.383892][T16152] CPU: 1 UID: 0 PID: 16152 Comm: syz.2.3888 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 605.383920][T16152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 605.383931][T16152] Call Trace: [ 605.383938][T16152] [ 605.383946][T16152] dump_stack_lvl+0x16c/0x1f0 [ 605.383976][T16152] should_fail_ex+0x512/0x640 [ 605.384001][T16152] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 605.384022][T16152] should_failslab+0xc2/0x120 [ 605.384045][T16152] __kmalloc_cache_noprof+0x6a/0x3e0 [ 605.384060][T16152] ? snd_pcm_hw_param_first+0x30d/0x6f0 [ 605.384085][T16152] ? snd_pcm_hw_param_near.constprop.0+0x72f/0x8e0 [ 605.384109][T16152] ? snd_pcm_hw_param_near.constprop.0+0xbc/0x8e0 [ 605.384138][T16152] snd_pcm_hw_param_near.constprop.0+0xbc/0x8e0 [ 605.384167][T16152] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 605.384201][T16152] ? __asan_memset+0x23/0x50 [ 605.384215][T16152] ? calc_src_frames.isra.0+0x187/0x1d0 [ 605.384230][T16152] ? calc_dst_frames.constprop.0.isra.0+0x103/0x130 [ 605.384252][T16152] snd_pcm_oss_change_params_locked+0x13f9/0x3a30 [ 605.384289][T16152] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 605.384318][T16152] ? snd_pcm_oss_sync+0x30c/0x840 [ 605.384357][T16152] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 605.384385][T16152] snd_pcm_oss_sync+0x32e/0x840 [ 605.384413][T16152] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 605.384438][T16152] snd_pcm_oss_release+0x28b/0x310 [ 605.384466][T16152] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 605.384498][T16152] __fput+0x3ff/0xb70 [ 605.384525][T16152] task_work_run+0x150/0x240 [ 605.384553][T16152] ? __pfx_task_work_run+0x10/0x10 [ 605.384579][T16152] ? __pfx___do_sys_close_range+0x10/0x10 [ 605.384596][T16152] ? rcu_is_watching+0x12/0xc0 [ 605.384617][T16152] syscall_exit_to_user_mode+0x27b/0x2a0 [ 605.384644][T16152] do_syscall_64+0xda/0x230 [ 605.384670][T16152] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 605.384688][T16152] RIP: 0033:0x7f0a2818e969 [ 605.384702][T16152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 605.384718][T16152] RSP: 002b:00007f0a28f52038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 605.384734][T16152] RAX: 0000000000000000 RBX: 00007f0a283b5fa0 RCX: 00007f0a2818e969 [ 605.384745][T16152] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 605.384754][T16152] RBP: 00007f0a28210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 605.384764][T16152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 605.384773][T16152] R13: 0000000000000000 R14: 00007f0a283b5fa0 R15: 00007ffce5e9f268 [ 605.384794][T16152] [ 605.723445][T16144] FAULT_INJECTION: forcing a failure. [ 605.723445][T16144] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 605.737464][T16144] CPU: 1 UID: 0 PID: 16144 Comm: syz.4.3886 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 605.737490][T16144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 605.737499][T16144] Call Trace: [ 605.737506][T16144] [ 605.737513][T16144] dump_stack_lvl+0x16c/0x1f0 [ 605.737542][T16144] should_fail_ex+0x512/0x640 [ 605.737570][T16144] _copy_to_user+0x32/0xd0 [ 605.737588][T16144] put_timespec64+0xb5/0x120 [ 605.737609][T16144] ? __pfx_put_timespec64+0x10/0x10 [ 605.737627][T16144] ? lockdep_hardirqs_on+0x7c/0x110 [ 605.737651][T16144] ? read_tsc+0x9/0x20 [ 605.737671][T16144] ? ktime_get_ts64+0x256/0x400 [ 605.737691][T16144] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 605.737716][T16144] poll_select_finish+0x557/0x6b0 [ 605.737742][T16144] ? __pfx_poll_select_finish+0x10/0x10 [ 605.737765][T16144] ? lockdep_hardirqs_on+0x7c/0x110 [ 605.737788][T16144] ? _raw_spin_unlock_irq+0x2e/0x50 [ 605.737817][T16144] __x64_sys_ppoll+0x266/0x2d0 [ 605.737834][T16144] ? __pfx___x64_sys_ppoll+0x10/0x10 [ 605.737851][T16144] ? rcu_is_watching+0x12/0xc0 [ 605.737872][T16144] do_syscall_64+0xcd/0x230 [ 605.737897][T16144] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 605.737914][T16144] RIP: 0033:0x7fc0dff8e969 [ 605.737928][T16144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 605.737945][T16144] RSP: 002b:00007fc0e0e68038 EFLAGS: 00000246 ORIG_RAX: 000000000000010f [ 605.737961][T16144] RAX: ffffffffffffffda RBX: 00007fc0e01b5fa0 RCX: 00007fc0dff8e969 [ 605.737972][T16144] RDX: 0000200000000080 RSI: 0000000080000001 RDI: 0000000000000000 [ 605.737982][T16144] RBP: 00007fc0e0010ab1 R08: 0000000000000008 R09: 0000000000000000 [ 605.737991][T16144] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000000 [ 605.738001][T16144] R13: 0000000000000000 R14: 00007fc0e01b5fa0 R15: 00007ffca563b618 [ 605.738022][T16144] [ 606.074975][T16158] ima: policy update failed [ 606.097720][ T30] audit: type=1802 audit(4294968622.312:22): pid=16158 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.3891" res=0 errno=0 [ 606.147416][T16162] FAULT_INJECTION: forcing a failure. [ 606.147416][T16162] name failslab, interval 1, probability 0, space 0, times 0 [ 606.160549][T16162] CPU: 1 UID: 0 PID: 16162 Comm: syz.4.3892 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 606.160576][T16162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 606.160587][T16162] Call Trace: [ 606.160595][T16162] [ 606.160604][T16162] dump_stack_lvl+0x116/0x1f0 [ 606.160635][T16162] should_fail_ex+0x512/0x640 [ 606.160664][T16162] should_failslab+0xc2/0x120 [ 606.160687][T16162] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 606.160708][T16162] ? __send_signal_locked+0x159/0x12c0 [ 606.160738][T16162] __send_signal_locked+0x159/0x12c0 [ 606.160765][T16162] ? __lock_task_sighand+0x146/0x340 [ 606.160783][T16162] do_send_specific+0x1e8/0x370 [ 606.160805][T16162] ? __pfx_do_send_specific+0x10/0x10 [ 606.160825][T16162] ? __task_pid_nr_ns+0x17c/0x500 [ 606.160854][T16162] do_rt_tgsigqueueinfo+0xa9/0x100 [ 606.160877][T16162] __x64_sys_rt_tgsigqueueinfo+0x17a/0x210 [ 606.160902][T16162] ? __pfx___x64_sys_rt_tgsigqueueinfo+0x10/0x10 [ 606.160926][T16162] ? xfd_validate_state+0x5d/0x180 [ 606.160952][T16162] do_syscall_64+0xcd/0x230 [ 606.160979][T16162] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 606.160996][T16162] RIP: 0033:0x7fc0dff8e969 [ 606.161012][T16162] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 606.161028][T16162] RSP: 002b:00007fc0e0e68038 EFLAGS: 00000246 ORIG_RAX: 0000000000000129 [ 606.161044][T16162] RAX: ffffffffffffffda RBX: 00007fc0e01b5fa0 RCX: 00007fc0dff8e969 [ 606.161055][T16162] RDX: 0000000000000021 RSI: 00000000000001db RDI: 00000000000001da [ 606.161064][T16162] RBP: 00007fc0e0010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 606.161074][T16162] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 606.161083][T16162] R13: 0000000000000000 R14: 00007fc0e01b5fa0 R15: 00007ffca563b618 [ 606.161105][T16162] [ 606.351969][ T5836] Bluetooth: hci1: unexpected event 0x08 length: 11 > 4 [ 606.564971][T15397] Bluetooth: hci1: command 0x0406 tx timeout [ 611.836016][T16272] netlink: 326 bytes leftover after parsing attributes in process `syz.3.3931'. [ 612.187514][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 612.196108][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 612.214048][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 612.240947][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 612.251965][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 612.258583][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 612.285198][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 612.296340][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 612.720454][ T55] Bluetooth: hci1: unexpected subevent 0x01 length: 5 < 18 [ 615.122521][T16302] kexec: Could not allocate control_code_buffer [ 616.030200][T16339] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 617.107584][T16346] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 617.132408][T16356] FAULT_INJECTION: forcing a failure. [ 617.132408][T16356] name failslab, interval 1, probability 0, space 0, times 0 [ 617.146018][T16346] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 617.171430][T16346] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 617.183648][T16356] CPU: 1 UID: 0 PID: 16356 Comm: syz.5.3961 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 617.183675][T16356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 617.183685][T16356] Call Trace: [ 617.183691][T16356] [ 617.183698][T16356] dump_stack_lvl+0x16c/0x1f0 [ 617.183728][T16356] should_fail_ex+0x512/0x640 [ 617.183753][T16356] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 617.183774][T16356] should_failslab+0xc2/0x120 [ 617.183795][T16356] __kmalloc_cache_noprof+0x6a/0x3e0 [ 617.183812][T16356] ? ima_calc_file_hash_tfm+0x29f/0x3d0 [ 617.183833][T16356] ima_calc_file_hash_tfm+0x29f/0x3d0 [ 617.183851][T16356] ? __pfx_ima_calc_file_hash_tfm+0x10/0x10 [ 617.183894][T16356] ? shmem_huge_global_enabled+0x173/0x5b0 [ 617.183916][T16356] ? ima_alloc_tfm+0x21a/0x2e0 [ 617.183931][T16356] ? shmem_getattr+0x397/0x450 [ 617.183951][T16356] ima_calc_file_hash+0x1ba/0x490 [ 617.183970][T16356] ima_collect_measurement+0x897/0xa40 [ 617.183995][T16356] ? __pfx_ima_collect_measurement+0x10/0x10 [ 617.184029][T16356] ? do_raw_read_unlock+0x44/0xe0 [ 617.184059][T16356] ? vfs_getxattr_alloc+0xec/0x340 [ 617.184079][T16356] ? ima_get_hash_algo+0x27c/0x400 [ 617.184108][T16356] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 617.184136][T16356] ? process_measurement+0x11fa/0x23e0 [ 617.184162][T16356] process_measurement+0x11fa/0x23e0 [ 617.184203][T16356] ? __pfx_process_measurement+0x10/0x10 [ 617.184227][T16356] ? __lock_acquire+0x5ca/0x1ba0 [ 617.184252][T16356] ? futex_wait_queue+0x24/0x220 [ 617.184302][T16356] ? mtree_load+0x325/0xa40 [ 617.184331][T16356] ima_file_mmap+0x1b1/0x1d0 [ 617.184357][T16356] ? __pfx_ima_file_mmap+0x10/0x10 [ 617.184390][T16356] security_mmap_file+0x88c/0x990 [ 617.184415][T16356] __do_sys_remap_file_pages+0x2e2/0xac0 [ 617.184450][T16356] ? __pfx___do_sys_remap_file_pages+0x10/0x10 [ 617.184476][T16356] ? __x64_sys_futex+0x1e0/0x4c0 [ 617.184497][T16356] ? xfd_validate_state+0x5d/0x180 [ 617.184515][T16356] ? rcu_is_watching+0x12/0xc0 [ 617.184538][T16356] do_syscall_64+0xcd/0x230 [ 617.184564][T16356] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 617.184581][T16356] RIP: 0033:0x7f37ea98e969 [ 617.184596][T16356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 617.184612][T16356] RSP: 002b:00007f37eb76c038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d8 [ 617.184628][T16356] RAX: ffffffffffffffda RBX: 00007f37eabb5fa0 RCX: 00007f37ea98e969 [ 617.184640][T16356] RDX: 0000000000000000 RSI: 0000000000001000 RDI: 0000000000006a2b [ 617.184649][T16356] RBP: 00007f37eaa10ab1 R08: 0000000000010000 R09: 0000000000000000 [ 617.184659][T16356] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 617.184669][T16356] R13: 0000000000000000 R14: 00007f37eabb5fa0 R15: 00007fffc5930538 [ 617.184691][T16356] [ 617.466071][ C1] vkms_vblank_simulate: vblank timer overrun [ 617.512540][T16346] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 617.519774][T16346] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 617.538436][T16346] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 617.546640][T16346] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 617.553554][T16346] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 617.561762][T16346] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 617.569980][T16346] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 617.576205][T16346] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 617.584088][T16346] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 617.591620][T16346] CPU0 is offline. [ 617.995909][ T30] audit: type=1800 audit(4294968634.226:23): pid=16356 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.3961" name="dev/zero" dev="tmpfs" ino=2432 res=0 errno=0 [ 618.805170][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout [ 619.296603][T16390] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 619.755715][T16403] netlink: 'syz.2.3977': attribute type 32 has an invalid length. [ 619.793028][T16403] netlink: 'syz.2.3977': attribute type 33 has an invalid length. [ 619.848751][ T5836] Bluetooth: hci4: command 0x0c1a tx timeout [ 619.855034][ T5836] Bluetooth: hci1: command 0x0406 tx timeout [ 619.861787][ T55] Bluetooth: hci2: command 0x0406 tx timeout [ 619.875914][T16403] netlink: 'syz.2.3977': attribute type 35 has an invalid length. [ 619.940285][T16403] netlink: 'syz.2.3977': attribute type 37 has an invalid length. [ 619.969371][T16403] netlink: 'syz.2.3977': attribute type 39 has an invalid length. [ 620.031974][T16403] netlink: 'syz.2.3977': attribute type 40 has an invalid length. [ 620.070350][T16403] netlink: 'syz.2.3977': attribute type 41 has an invalid length. [ 620.107950][T16403] netlink: 'syz.2.3977': attribute type 44 has an invalid length. [ 620.162478][T16403] netlink: 'syz.2.3977': attribute type 46 has an invalid length. [ 620.207961][T16403] netlink: 'syz.2.3977': attribute type 47 has an invalid length. [ 620.248406][T16403] netlink: 2 bytes leftover after parsing attributes in process `syz.2.3977'. [ 620.501125][T16412] netlink: 338 bytes leftover after parsing attributes in process `syz.5.3981'. [ 620.568440][T16417] netlink: 338 bytes leftover after parsing attributes in process `syz.5.3981'. [ 620.644253][T16412] netlink: 170 bytes leftover after parsing attributes in process `syz.5.3981'. [ 620.888261][T16404] Bluetooth: hci3: command 0x0c1a tx timeout [ 621.926658][T16404] Bluetooth: hci1: command 0x0406 tx timeout [ 621.932823][T16404] Bluetooth: hci2: command 0x0406 tx timeout [ 621.939285][T15397] Bluetooth: hci4: command 0x0c1a tx timeout [ 622.049277][T16447] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 622.056199][T16447] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 622.508339][T16404] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 622.967218][T16404] Bluetooth: hci3: command 0x0c1a tx timeout [ 623.858053][T16470] [U] [ 623.860886][T16470] [U] [ 623.863598][T16470] [U] [ 623.943476][T16468] [U] [ 624.007761][ T5836] Bluetooth: hci4: command 0x0c1a tx timeout [ 624.013944][T16404] Bluetooth: hci2: command 0x0406 tx timeout [ 626.090081][T16404] Bluetooth: hci2: command 0x0406 tx timeout [ 626.153466][T16498] netlink: 146 bytes leftover after parsing attributes in process `syz.2.4014'. [ 626.825321][T16485] kexec: Could not allocate control_code_buffer [ 627.522507][T16506] sd 0:0:1:0: PR command failed: 1026 [ 627.550860][T16506] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 627.573629][T16506] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 629.640019][T16545] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 629.665067][T16545] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 629.686904][T16545] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 629.702601][T16545] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 629.727482][T16545] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 629.744261][T16545] CPU0 is offline. [ 629.936259][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 629.943256][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 630.592622][T16576] netlink: 330 bytes leftover after parsing attributes in process `syz.4.4049'. [ 630.642501][T16576] : renamed from lo (while UP) [ 631.375181][T16404] Bluetooth: hci3: command 0x0c1a tx timeout [ 631.695001][T16404] Bluetooth: hci1: command 0x0406 tx timeout [ 631.701157][ T5836] Bluetooth: hci2: command 0x0406 tx timeout [ 631.771627][T16404] Bluetooth: hci4: command 0x0c1a tx timeout [ 632.121860][T16601] FAULT_INJECTION: forcing a failure. [ 632.121860][T16601] name failslab, interval 1, probability 0, space 0, times 0 [ 632.238864][T16601] CPU: 1 UID: 0 PID: 16601 Comm: syz.2.4048 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 632.238893][T16601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 632.238902][T16601] Call Trace: [ 632.238908][T16601] [ 632.238915][T16601] dump_stack_lvl+0x16c/0x1f0 [ 632.238947][T16601] should_fail_ex+0x512/0x640 [ 632.238972][T16601] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 632.238992][T16601] should_failslab+0xc2/0x120 [ 632.239014][T16601] __kmalloc_cache_noprof+0x6a/0x3e0 [ 632.239031][T16601] ? rfkill_fop_open+0x56/0x750 [ 632.239054][T16601] ? __pfx_rfkill_fop_open+0x10/0x10 [ 632.239073][T16601] rfkill_fop_open+0x56/0x750 [ 632.239091][T16601] ? kobject_get_unless_zero+0x156/0x1e0 [ 632.239119][T16601] ? __pfx_rfkill_fop_open+0x10/0x10 [ 632.239140][T16601] misc_open+0x35d/0x420 [ 632.239158][T16601] ? __pfx_misc_open+0x10/0x10 [ 632.239173][T16601] chrdev_open+0x234/0x6a0 [ 632.239191][T16601] ? __pfx_apparmor_file_open+0x10/0x10 [ 632.239214][T16601] ? __pfx_chrdev_open+0x10/0x10 [ 632.239234][T16601] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 632.239264][T16601] do_dentry_open+0x741/0x1c10 [ 632.239282][T16601] ? __pfx_chrdev_open+0x10/0x10 [ 632.239305][T16601] vfs_open+0x82/0x3f0 [ 632.239335][T16601] path_openat+0x1e5e/0x2d40 [ 632.239361][T16601] ? __pfx_path_openat+0x10/0x10 [ 632.239384][T16601] do_filp_open+0x20b/0x470 [ 632.239400][T16601] ? __pfx_do_filp_open+0x10/0x10 [ 632.239433][T16601] ? alloc_fd+0x471/0x7d0 [ 632.239464][T16601] do_sys_openat2+0x11b/0x1d0 [ 632.239486][T16601] ? __pfx_do_sys_openat2+0x10/0x10 [ 632.239518][T16601] __x64_sys_openat+0x174/0x210 [ 632.239540][T16601] ? __pfx___x64_sys_openat+0x10/0x10 [ 632.239564][T16601] ? rcu_is_watching+0x12/0xc0 [ 632.239588][T16601] do_syscall_64+0xcd/0x230 [ 632.239614][T16601] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 632.239631][T16601] RIP: 0033:0x7f0a2818e969 [ 632.239646][T16601] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 632.239663][T16601] RSP: 002b:00007f0a28f31038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 632.239680][T16601] RAX: ffffffffffffffda RBX: 00007f0a283b6080 RCX: 00007f0a2818e969 [ 632.239691][T16601] RDX: 0000000000000400 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 632.239701][T16601] RBP: 00007f0a28210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 632.239711][T16601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 632.239720][T16601] R13: 0000000000000000 R14: 00007f0a283b6080 R15: 00007ffce5e9f268 [ 632.239741][T16601] [ 633.775006][T16404] Bluetooth: hci1: command 0x0406 tx timeout [ 634.158466][T16628] netlink: 342 bytes leftover after parsing attributes in process `syz.4.4060'. [ 635.590624][T16661] FAULT_INJECTION: forcing a failure. [ 635.590624][T16661] name failslab, interval 1, probability 0, space 0, times 0 [ 635.661208][T16661] CPU: 1 UID: 0 PID: 16661 Comm: syz.5.4072 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 635.661237][T16661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 635.661247][T16661] Call Trace: [ 635.661253][T16661] [ 635.661260][T16661] dump_stack_lvl+0x16c/0x1f0 [ 635.661290][T16661] should_fail_ex+0x512/0x640 [ 635.661315][T16661] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 635.661339][T16661] should_failslab+0xc2/0x120 [ 635.661361][T16661] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 635.661380][T16661] ? do_timer_create+0x18a/0x14e0 [ 635.661407][T16661] do_timer_create+0x18a/0x14e0 [ 635.661431][T16661] ? __might_fault+0xe3/0x190 [ 635.661450][T16661] ? __pfx_do_timer_create+0x10/0x10 [ 635.661481][T16661] __x64_sys_timer_create+0x182/0x1d0 [ 635.661504][T16661] ? __pfx___x64_sys_timer_create+0x10/0x10 [ 635.661537][T16661] do_syscall_64+0xcd/0x230 [ 635.661562][T16661] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 635.661580][T16661] RIP: 0033:0x7f37ea98e969 [ 635.661594][T16661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 635.661610][T16661] RSP: 002b:00007f37eb76c038 EFLAGS: 00000246 ORIG_RAX: 00000000000000de [ 635.661627][T16661] RAX: ffffffffffffffda RBX: 00007f37eabb5fa0 RCX: 00007f37ea98e969 [ 635.661637][T16661] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000000 [ 635.661648][T16661] RBP: 00007f37eaa10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 635.661658][T16661] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 635.661667][T16661] R13: 0000000000000000 R14: 00007f37eabb5fa0 R15: 00007fffc5930538 [ 635.661688][T16661] [ 636.532712][T16404] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 636.943476][T16675] netlink: 146 bytes leftover after parsing attributes in process `syz.4.4077'. [ 637.353719][T16696] netlink: 342 bytes leftover after parsing attributes in process `syz.4.4085'. [ 637.501130][T16696] netlink: 'syz.4.4085': attribute type 1 has an invalid length. [ 637.628174][T16696] netlink: 'syz.4.4085': attribute type 2 has an invalid length. [ 637.717974][T16696] netlink: 'syz.4.4085': attribute type 7 has an invalid length. [ 637.753214][T16706] netlink: 'syz.2.4089': attribute type 32 has an invalid length. [ 637.819024][T16696] netlink: 214 bytes leftover after parsing attributes in process `syz.4.4085'. [ 638.233198][T16716] netlink: 'syz.2.4092': attribute type 4 has an invalid length. [ 638.292917][T16716] netlink: 314 bytes leftover after parsing attributes in process `syz.2.4092'. [ 638.907095][T16725] kvm: user requested TSC rate below hardware speed [ 639.221262][T16731] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4097'. [ 639.322812][T16731] ipvlan1: entered promiscuous mode [ 639.359185][T16736] netlink: 330 bytes leftover after parsing attributes in process `syz.3.4099'. [ 639.427652][T16731] ipvlan1: entered allmulticast mode [ 639.432984][T16731] veth0_vlan: entered allmulticast mode [ 639.605021][T16739] netlink: 'syz.2.4100': attribute type 21 has an invalid length. [ 639.665678][T16739] netlink: 326 bytes leftover after parsing attributes in process `syz.2.4100'. [ 640.283894][T16743] sp0: Synchronizing with TNC [ 640.477778][T16750] KVM: debugfs: duplicate directory 16750-4 [ 641.532787][T16771] netlink: 'syz.3.4113': attribute type 21 has an invalid length. [ 641.573409][T16771] netlink: 326 bytes leftover after parsing attributes in process `syz.3.4113'. [ 642.374888][T16786] FAULT_INJECTION: forcing a failure. [ 642.374888][T16786] name failslab, interval 1, probability 0, space 0, times 0 [ 642.457748][T16786] CPU: 1 UID: 0 PID: 16786 Comm: syz.2.4118 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 642.457778][T16786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 642.457788][T16786] Call Trace: [ 642.457794][T16786] [ 642.457802][T16786] dump_stack_lvl+0x16c/0x1f0 [ 642.457833][T16786] should_fail_ex+0x512/0x640 [ 642.457859][T16786] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 642.457881][T16786] should_failslab+0xc2/0x120 [ 642.457902][T16786] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 642.457922][T16786] ? apparmor_capable+0x114/0x1d0 [ 642.457940][T16786] ? prepare_creds+0x2c/0x7d0 [ 642.457968][T16786] prepare_creds+0x2c/0x7d0 [ 642.457995][T16786] __do_sys_landlock_restrict_self+0x13e/0x910 [ 642.458023][T16786] ? rcu_is_watching+0x12/0xc0 [ 642.458041][T16786] do_syscall_64+0xcd/0x230 [ 642.458067][T16786] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 642.458084][T16786] RIP: 0033:0x7f0a2818e969 [ 642.458098][T16786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 642.458114][T16786] RSP: 002b:00007f0a28f52038 EFLAGS: 00000246 ORIG_RAX: 00000000000001be [ 642.458132][T16786] RAX: ffffffffffffffda RBX: 00007f0a283b5fa0 RCX: 00007f0a2818e969 [ 642.458142][T16786] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 642.458154][T16786] RBP: 00007f0a28210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 642.458164][T16786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 642.458174][T16786] R13: 0000000000000000 R14: 00007f0a283b5fa0 R15: 00007ffce5e9f268 [ 642.458196][T16786] [ 643.731263][T16799] netlink: 346 bytes leftover after parsing attributes in process `syz.4.4121'. [ 645.036331][T16825] netlink: 'syz.4.4132': attribute type 16 has an invalid length. [ 645.164846][T16825] netlink: 50 bytes leftover after parsing attributes in process `syz.4.4132'. [ 645.392323][T16831] netlink: 330 bytes leftover after parsing attributes in process `syz.2.4134'. [ 646.256392][T16846] netlink: 18 bytes leftover after parsing attributes in process `syz.3.4141'. [ 647.251658][T16864] netlink: 346 bytes leftover after parsing attributes in process `syz.2.4145'. [ 648.013052][T16870] netlink: 206 bytes leftover after parsing attributes in process `syz.2.4147'. [ 648.722628][T16889] netlink: 'syz.2.4155': attribute type 29 has an invalid length. [ 649.536379][T16904] netlink: 346 bytes leftover after parsing attributes in process `syz.5.4158'. [ 649.666136][T16898] FAULT_INJECTION: forcing a failure. [ 649.666136][T16898] name failslab, interval 1, probability 0, space 0, times 0 [ 649.742650][T16898] CPU: 1 UID: 0 PID: 16898 Comm: syz.4.4160 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 649.742677][T16898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 649.742687][T16898] Call Trace: [ 649.742694][T16898] [ 649.742701][T16898] dump_stack_lvl+0x16c/0x1f0 [ 649.742732][T16898] should_fail_ex+0x512/0x640 [ 649.742757][T16898] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 649.742778][T16898] should_failslab+0xc2/0x120 [ 649.742798][T16898] __kmalloc_cache_noprof+0x6a/0x3e0 [ 649.742814][T16898] ? lockdep_init_map_type+0x5c/0x280 [ 649.742838][T16898] ? nci_hci_allocate+0x45/0x330 [ 649.742866][T16898] nci_hci_allocate+0x45/0x330 [ 649.742891][T16898] nci_allocate_device+0x26f/0x430 [ 649.742913][T16898] virtual_ncidev_open+0x6f/0x220 [ 649.742939][T16898] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 649.742972][T16898] misc_open+0x35d/0x420 [ 649.742989][T16898] ? __pfx_misc_open+0x10/0x10 [ 649.743004][T16898] chrdev_open+0x234/0x6a0 [ 649.743021][T16898] ? __pfx_apparmor_file_open+0x10/0x10 [ 649.743045][T16898] ? __pfx_chrdev_open+0x10/0x10 [ 649.743065][T16898] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 649.743096][T16898] do_dentry_open+0x741/0x1c10 [ 649.743115][T16898] ? __pfx_chrdev_open+0x10/0x10 [ 649.743138][T16898] vfs_open+0x82/0x3f0 [ 649.743163][T16898] path_openat+0x1e5e/0x2d40 [ 649.743189][T16898] ? __pfx_path_openat+0x10/0x10 [ 649.743211][T16898] do_filp_open+0x20b/0x470 [ 649.743228][T16898] ? __pfx_do_filp_open+0x10/0x10 [ 649.743261][T16898] ? alloc_fd+0x471/0x7d0 [ 649.743292][T16898] do_sys_openat2+0x11b/0x1d0 [ 649.743314][T16898] ? __pfx_do_sys_openat2+0x10/0x10 [ 649.743345][T16898] __x64_sys_openat+0x174/0x210 [ 649.743367][T16898] ? __pfx___x64_sys_openat+0x10/0x10 [ 649.743391][T16898] ? rcu_is_watching+0x12/0xc0 [ 649.743413][T16898] do_syscall_64+0xcd/0x230 [ 649.743440][T16898] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 649.743457][T16898] RIP: 0033:0x7fc0dff8e969 [ 649.743472][T16898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 649.743488][T16898] RSP: 002b:00007fc0e0e68038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 649.743505][T16898] RAX: ffffffffffffffda RBX: 00007fc0e01b5fa0 RCX: 00007fc0dff8e969 [ 649.743516][T16898] RDX: 0000000000000100 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 649.743526][T16898] RBP: 00007fc0e0010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 649.743536][T16898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 649.743546][T16898] R13: 0000000000000000 R14: 00007fc0e01b5fa0 R15: 00007ffca563b618 [ 649.743567][T16898] [ 651.947226][T16927] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4170'. [ 652.056845][T16927] netlink: 242 bytes leftover after parsing attributes in process `syz.3.4170'. [ 652.416425][T16933] netlink: 342 bytes leftover after parsing attributes in process `syz.5.4172'. [ 653.127267][T16950] netlink: 346 bytes leftover after parsing attributes in process `syz.3.4177'. [ 654.375469][T16963] ima: policy update failed [ 654.456493][ T30] audit: type=1802 audit(4294968670.668:24): pid=16963 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.4181" res=0 errno=0 [ 654.488427][T16963] netlink: 25 bytes leftover after parsing attributes in process `syz.3.4181'. [ 659.146681][T17026] FAULT_INJECTION: forcing a failure. [ 659.146681][T17026] name failslab, interval 1, probability 0, space 0, times 0 [ 659.205369][T17026] CPU: 1 UID: 0 PID: 17026 Comm: syz.3.4207 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 659.205398][T17026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 659.205408][T17026] Call Trace: [ 659.205415][T17026] [ 659.205422][T17026] dump_stack_lvl+0x16c/0x1f0 [ 659.205453][T17026] should_fail_ex+0x512/0x640 [ 659.205477][T17026] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 659.205498][T17026] should_failslab+0xc2/0x120 [ 659.205521][T17026] __kmalloc_cache_noprof+0x6a/0x3e0 [ 659.205536][T17026] ? lockdep_init_map_type+0x5c/0x280 [ 659.205560][T17026] ? nci_hci_allocate+0x45/0x330 [ 659.205587][T17026] nci_hci_allocate+0x45/0x330 [ 659.205612][T17026] nci_allocate_device+0x26f/0x430 [ 659.205635][T17026] virtual_ncidev_open+0x6f/0x220 [ 659.205660][T17026] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 659.205684][T17026] misc_open+0x35d/0x420 [ 659.205702][T17026] ? __pfx_misc_open+0x10/0x10 [ 659.205717][T17026] chrdev_open+0x234/0x6a0 [ 659.205734][T17026] ? __pfx_apparmor_file_open+0x10/0x10 [ 659.205757][T17026] ? __pfx_chrdev_open+0x10/0x10 [ 659.205777][T17026] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 659.205807][T17026] do_dentry_open+0x741/0x1c10 [ 659.205825][T17026] ? __pfx_chrdev_open+0x10/0x10 [ 659.205848][T17026] vfs_open+0x82/0x3f0 [ 659.205872][T17026] path_openat+0x1e5e/0x2d40 [ 659.205897][T17026] ? __pfx_path_openat+0x10/0x10 [ 659.205928][T17026] do_filp_open+0x20b/0x470 [ 659.205944][T17026] ? __pfx_do_filp_open+0x10/0x10 [ 659.205977][T17026] ? alloc_fd+0x471/0x7d0 [ 659.206009][T17026] do_sys_openat2+0x11b/0x1d0 [ 659.206031][T17026] ? __pfx_do_sys_openat2+0x10/0x10 [ 659.206061][T17026] __x64_sys_openat+0x174/0x210 [ 659.206084][T17026] ? __pfx___x64_sys_openat+0x10/0x10 [ 659.206108][T17026] ? rcu_is_watching+0x12/0xc0 [ 659.206130][T17026] do_syscall_64+0xcd/0x230 [ 659.206156][T17026] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 659.206173][T17026] RIP: 0033:0x7fab8678e969 [ 659.206188][T17026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 659.206204][T17026] RSP: 002b:00007fab876a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 659.206220][T17026] RAX: ffffffffffffffda RBX: 00007fab869b5fa0 RCX: 00007fab8678e969 [ 659.206231][T17026] RDX: 0000000000000100 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 659.206241][T17026] RBP: 00007fab86810ab1 R08: 0000000000000000 R09: 0000000000000000 [ 659.206251][T17026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 659.206260][T17026] R13: 0000000000000000 R14: 00007fab869b5fa0 R15: 00007ffdf5bf6688 [ 659.206282][T17026] [ 660.586349][T17052] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4216'. [ 660.641425][T17052] netlink: 98 bytes leftover after parsing attributes in process `syz.2.4216'. [ 662.064190][T17078] netlink: 330 bytes leftover after parsing attributes in process `syz.2.4224'. [ 663.198532][T17097] usb usb38: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 663.303831][T17097] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 664.699597][T17123] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4239'. [ 664.840376][T17125] netlink: 330 bytes leftover after parsing attributes in process `syz.5.4240'. [ 666.625834][T17155] netlink: 330 bytes leftover after parsing attributes in process `syz.4.4259'. [ 667.491626][T17175] usb usb38: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 667.522688][T17175] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 670.030426][T17207] netlink: 330 bytes leftover after parsing attributes in process `syz.3.4265'. [ 672.882470][T17222] random: crng reseeded on system resumption [ 674.178597][T17257] netlink: 306 bytes leftover after parsing attributes in process `syz.3.4283'. [ 674.240011][T17257] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4283'. [ 674.273353][T17257] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4283'. [ 680.423146][T17343] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input7 [ 680.490151][T17342] mkiss: ax0: crc mode is auto. [ 681.453738][T17346] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8 [ 682.628114][T17366] netlink: 'syz.3.4321': attribute type 4 has an invalid length. [ 682.657239][T17366] netlink: 314 bytes leftover after parsing attributes in process `syz.3.4321'. [ 682.700484][T17366] IPv6: NLM_F_REPLACE set, but no existing node found! [ 683.480008][T17381] FAULT_INJECTION: forcing a failure. [ 683.480008][T17381] name failslab, interval 1, probability 0, space 0, times 0 [ 683.612338][T17381] CPU: 1 UID: 0 PID: 17381 Comm: syz.4.4326 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 683.612366][T17381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 683.612376][T17381] Call Trace: [ 683.612382][T17381] [ 683.612389][T17381] dump_stack_lvl+0x16c/0x1f0 [ 683.612419][T17381] should_fail_ex+0x512/0x640 [ 683.612444][T17381] ? __kmalloc_noprof+0xbf/0x510 [ 683.612466][T17381] ? drm_atomic_state_init+0x17b/0x320 [ 683.612490][T17381] should_failslab+0xc2/0x120 [ 683.612512][T17381] __kmalloc_noprof+0xd2/0x510 [ 683.612536][T17381] drm_atomic_state_init+0x17b/0x320 [ 683.612559][T17381] ? __kasan_kmalloc+0xaa/0xb0 [ 683.612578][T17381] drm_atomic_state_alloc+0xd3/0x120 [ 683.612602][T17381] drm_client_modeset_commit_atomic+0xcc/0x7e0 [ 683.612626][T17381] ? __pfx___might_resched+0x10/0x10 [ 683.612647][T17381] ? rcu_is_watching+0x12/0xc0 [ 683.612663][T17381] ? trace_contention_end+0xdd/0x130 [ 683.612687][T17381] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 683.612734][T17381] drm_client_modeset_commit_locked+0x14d/0x580 [ 683.612770][T17381] drm_client_modeset_commit+0x4f/0x80 [ 683.612793][T17381] __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200 [ 683.612815][T17381] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 683.612842][T17381] drm_fbdev_client_restore+0x2c/0x40 [ 683.612868][T17381] drm_client_dev_restore+0x1f3/0x2a0 [ 683.612895][T17381] drm_release+0x2c4/0x360 [ 683.612917][T17381] ? __pfx_drm_release+0x10/0x10 [ 683.612936][T17381] __fput+0x3ff/0xb70 [ 683.612964][T17381] task_work_run+0x150/0x240 [ 683.612990][T17381] ? __pfx_task_work_run+0x10/0x10 [ 683.613016][T17381] ? __pfx___do_sys_close_range+0x10/0x10 [ 683.613033][T17381] ? rcu_is_watching+0x12/0xc0 [ 683.613053][T17381] syscall_exit_to_user_mode+0x27b/0x2a0 [ 683.613079][T17381] do_syscall_64+0xda/0x230 [ 683.613105][T17381] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 683.613123][T17381] RIP: 0033:0x7fc0dff8e969 [ 683.613137][T17381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 683.613153][T17381] RSP: 002b:00007fc0e0e68038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 683.613170][T17381] RAX: 0000000000000000 RBX: 00007fc0e01b5fa0 RCX: 00007fc0dff8e969 [ 683.613181][T17381] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 683.613190][T17381] RBP: 00007fc0e0010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 683.613200][T17381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 683.613209][T17381] R13: 0000000000000000 R14: 00007fc0e01b5fa0 R15: 00007ffca563b618 [ 683.613231][T17381] [ 684.210972][T17384] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4329'. [ 684.259671][T17384] netlink: 17 bytes leftover after parsing attributes in process `syz.2.4329'. [ 684.535968][T17397] FAULT_INJECTION: forcing a failure. [ 684.535968][T17397] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 684.606928][T17397] CPU: 1 UID: 0 PID: 17397 Comm: syz.2.4332 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 684.606958][T17397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 684.606967][T17397] Call Trace: [ 684.606974][T17397] [ 684.606981][T17397] dump_stack_lvl+0x16c/0x1f0 [ 684.607018][T17397] should_fail_ex+0x512/0x640 [ 684.607047][T17397] should_fail_alloc_page+0xe7/0x130 [ 684.607071][T17397] prepare_alloc_pages+0x3c2/0x610 [ 684.607102][T17397] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 684.607125][T17397] ? folio_remove_rmap_ptes+0x138/0x970 [ 684.607143][T17397] ? noop_dirty_folio+0x5e/0xb0 [ 684.607170][T17397] ? try_to_migrate_one+0x13d8/0x3380 [ 684.607190][T17397] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 684.607212][T17397] ? __pfx_try_to_migrate_one+0x10/0x10 [ 684.607235][T17397] ? __up_read+0x1f8/0x750 [ 684.607260][T17397] ? __pfx___up_read+0x10/0x10 [ 684.607281][T17397] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 684.607306][T17397] ? policy_nodemask+0xea/0x4e0 [ 684.607328][T17397] alloc_pages_mpol+0x1fb/0x550 [ 684.607350][T17397] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 684.607376][T17397] folio_alloc_mpol_noprof+0x36/0x2f0 [ 684.607400][T17397] alloc_migration_target_by_mpol+0x246/0x490 [ 684.607426][T17397] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 684.607451][T17397] ? __pfx___might_resched+0x10/0x10 [ 684.607474][T17397] migrate_pages_batch+0x3bc/0x31a0 [ 684.607500][T17397] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 684.607532][T17397] ? __pfx_migrate_pages_batch+0x10/0x10 [ 684.607558][T17397] ? __pfx_walk_pgd_range+0x10/0x10 [ 684.607580][T17397] migrate_pages_sync+0x12d/0x8a0 [ 684.607604][T17397] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 684.607632][T17397] ? queue_pages_test_walk+0x279/0x410 [ 684.607652][T17397] ? __pfx_find_vma+0x10/0x10 [ 684.607675][T17397] ? __pfx_migrate_pages_sync+0x10/0x10 [ 684.607708][T17397] migrate_pages+0x1b28/0x2350 [ 684.607732][T17397] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 684.607763][T17397] ? __pfx_migrate_pages+0x10/0x10 [ 684.607793][T17397] ? find_held_lock+0x2b/0x80 [ 684.607815][T17397] ? up_write+0x1b2/0x520 [ 684.607840][T17397] do_mbind+0x6f0/0xf30 [ 684.607870][T17397] ? __pfx_do_mbind+0x10/0x10 [ 684.607894][T17397] ? do_writev+0x218/0x330 [ 684.607919][T17397] ? __pfx_get_nodes+0x10/0x10 [ 684.607944][T17397] kernel_mbind+0x1e3/0x1f0 [ 684.607970][T17397] ? __pfx_kernel_mbind+0x10/0x10 [ 684.607992][T17397] ? rcu_is_watching+0x12/0xc0 [ 684.608021][T17397] do_syscall_64+0xcd/0x230 [ 684.608048][T17397] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 684.608065][T17397] RIP: 0033:0x7f0a2818e969 [ 684.608080][T17397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 684.608096][T17397] RSP: 002b:00007f0a28f31038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 684.608114][T17397] RAX: ffffffffffffffda RBX: 00007f0a283b6080 RCX: 00007f0a2818e969 [ 684.608124][T17397] RDX: 0000000100000000 RSI: 0000000100000004 RDI: 0000000000002000 [ 684.608134][T17397] RBP: 00007f0a28210ab1 R08: 0000000000000006 R09: 0000000000000002 [ 684.608143][T17397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 684.608153][T17397] R13: 0000000000000000 R14: 00007f0a283b6080 R15: 00007ffce5e9f268 [ 684.608174][T17397] [ 685.979929][T17404] mkiss: ax0: crc mode is auto. [ 690.067551][T17444] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 690.576686][T17472] FAULT_INJECTION: forcing a failure. [ 690.576686][T17472] name failslab, interval 1, probability 0, space 0, times 0 [ 690.649521][T17472] CPU: 1 UID: 0 PID: 17472 Comm: syz.5.4357 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 690.649550][T17472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 690.649559][T17472] Call Trace: [ 690.649566][T17472] [ 690.649573][T17472] dump_stack_lvl+0x16c/0x1f0 [ 690.649604][T17472] should_fail_ex+0x512/0x640 [ 690.649629][T17472] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 690.649650][T17472] should_failslab+0xc2/0x120 [ 690.649672][T17472] __kmalloc_cache_noprof+0x6a/0x3e0 [ 690.649696][T17472] ? __asan_memcpy+0x3c/0x60 [ 690.649711][T17472] ? sctp_transport_new+0xa8/0x7b0 [ 690.649734][T17472] sctp_transport_new+0xa8/0x7b0 [ 690.649757][T17472] sctp_assoc_add_peer+0x2e3/0x1550 [ 690.649782][T17472] sctp_connect_new_asoc+0x208/0x790 [ 690.649805][T17472] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 690.649827][T17472] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 690.649852][T17472] __sctp_connect+0x3f3/0xc60 [ 690.649874][T17472] ? do_raw_spin_lock+0x12c/0x2b0 [ 690.649902][T17472] ? __pfx___sctp_connect+0x10/0x10 [ 690.649923][T17472] ? __pfx_sctp_inet_connect+0x10/0x10 [ 690.649947][T17472] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 690.649975][T17472] ? __pfx_sctp_inet_connect+0x10/0x10 [ 690.649993][T17472] sctp_inet_connect+0x15f/0x200 [ 690.650014][T17472] __sys_connect_file+0x13e/0x1a0 [ 690.650035][T17472] __sys_connect+0x14d/0x170 [ 690.650052][T17472] ? __pfx___sys_connect+0x10/0x10 [ 690.650078][T17472] ? rcu_is_watching+0x12/0xc0 [ 690.650098][T17472] __x64_sys_connect+0x72/0xb0 [ 690.650114][T17472] ? lockdep_hardirqs_on+0x7c/0x110 [ 690.650137][T17472] do_syscall_64+0xcd/0x230 [ 690.650163][T17472] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 690.650180][T17472] RIP: 0033:0x7f37ea98e969 [ 690.650195][T17472] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 690.650211][T17472] RSP: 002b:00007f37eb76c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 690.650228][T17472] RAX: ffffffffffffffda RBX: 00007f37eabb5fa0 RCX: 00007f37ea98e969 [ 690.650239][T17472] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 690.650249][T17472] RBP: 00007f37eaa10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 690.650259][T17472] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 690.650268][T17472] R13: 0000000000000000 R14: 00007f37eabb5fa0 R15: 00007fffc5930538 [ 690.650289][T17472] [ 690.906637][T17474] sp0: Synchronizing with TNC [ 691.476861][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 691.485161][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 691.512957][T17476] FAULT_INJECTION: forcing a failure. [ 691.512957][T17476] name failslab, interval 1, probability 0, space 0, times 0 [ 691.608500][T17476] CPU: 1 UID: 0 PID: 17476 Comm: syz.3.4358 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 691.608529][T17476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 691.608539][T17476] Call Trace: [ 691.608545][T17476] [ 691.608553][T17476] dump_stack_lvl+0x16c/0x1f0 [ 691.608585][T17476] should_fail_ex+0x512/0x640 [ 691.608610][T17476] ? __kmalloc_noprof+0xbf/0x510 [ 691.608631][T17476] ? drm_atomic_state_init+0x17b/0x320 [ 691.608655][T17476] should_failslab+0xc2/0x120 [ 691.608688][T17476] __kmalloc_noprof+0xd2/0x510 [ 691.608713][T17476] drm_atomic_state_init+0x17b/0x320 [ 691.608736][T17476] ? __kasan_kmalloc+0xaa/0xb0 [ 691.608756][T17476] drm_atomic_state_alloc+0xd3/0x120 [ 691.608782][T17476] drm_client_modeset_commit_atomic+0xcc/0x7e0 [ 691.608807][T17476] ? __pfx___might_resched+0x10/0x10 [ 691.608830][T17476] ? rcu_is_watching+0x12/0xc0 [ 691.608847][T17476] ? trace_contention_end+0xdd/0x130 [ 691.608870][T17476] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 691.608919][T17476] drm_client_modeset_commit_locked+0x14d/0x580 [ 691.608946][T17476] drm_client_modeset_commit+0x4f/0x80 [ 691.608969][T17476] __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200 [ 691.608991][T17476] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 691.609018][T17476] drm_fbdev_client_restore+0x2c/0x40 [ 691.609043][T17476] drm_client_dev_restore+0x1f3/0x2a0 [ 691.609070][T17476] drm_release+0x2c4/0x360 [ 691.609092][T17476] ? __pfx_drm_release+0x10/0x10 [ 691.609111][T17476] __fput+0x3ff/0xb70 [ 691.609139][T17476] task_work_run+0x150/0x240 [ 691.609165][T17476] ? __pfx_task_work_run+0x10/0x10 [ 691.609191][T17476] ? __pfx___do_sys_close_range+0x10/0x10 [ 691.609207][T17476] ? rcu_is_watching+0x12/0xc0 [ 691.609228][T17476] syscall_exit_to_user_mode+0x27b/0x2a0 [ 691.609255][T17476] do_syscall_64+0xda/0x230 [ 691.609282][T17476] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 691.609299][T17476] RIP: 0033:0x7fab8678e969 [ 691.609314][T17476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 691.609330][T17476] RSP: 002b:00007fab876a8038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 691.609347][T17476] RAX: 0000000000000000 RBX: 00007fab869b5fa0 RCX: 00007fab8678e969 [ 691.609357][T17476] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 691.609366][T17476] RBP: 00007fab86810ab1 R08: 0000000000000000 R09: 0000000000000000 [ 691.609376][T17476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 691.609385][T17476] R13: 0000000000000000 R14: 00007fab869b5fa0 R15: 00007ffdf5bf6688 [ 691.609409][T17476] [ 693.968054][T17503] FAULT_INJECTION: forcing a failure. [ 693.968054][T17503] name failslab, interval 1, probability 0, space 0, times 0 [ 694.035056][T17503] CPU: 1 UID: 0 PID: 17503 Comm: syz.4.4366 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 694.035084][T17503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 694.035095][T17503] Call Trace: [ 694.035101][T17503] [ 694.035108][T17503] dump_stack_lvl+0x16c/0x1f0 [ 694.035138][T17503] should_fail_ex+0x512/0x640 [ 694.035169][T17503] ? __kmalloc_noprof+0xbf/0x510 [ 694.035191][T17503] ? xfrm_hash_alloc+0xd1/0x100 [ 694.035215][T17503] should_failslab+0xc2/0x120 [ 694.035236][T17503] __kmalloc_noprof+0xd2/0x510 [ 694.035255][T17503] ? xfrm_state_init+0x2d1/0x630 [ 694.035283][T17503] xfrm_hash_alloc+0xd1/0x100 [ 694.035313][T17503] xfrm_net_init+0x35f/0xcc0 [ 694.035332][T17503] ? __pfx_xfrm_net_init+0x10/0x10 [ 694.035347][T17503] ops_init+0x1df/0x5f0 [ 694.035372][T17503] setup_net+0x21e/0x850 [ 694.035396][T17503] ? __pfx_setup_net+0x10/0x10 [ 694.035416][T17503] ? lockdep_init_map_type+0x5c/0x280 [ 694.035439][T17503] ? __pfx_down_read_killable+0x10/0x10 [ 694.035459][T17503] ? debug_mutex_init+0x37/0x70 [ 694.035477][T17503] copy_net_ns+0x2a6/0x5f0 [ 694.035503][T17503] create_new_namespaces+0x3ea/0xad0 [ 694.035528][T17503] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 694.035550][T17503] ksys_unshare+0x45b/0xa40 [ 694.035573][T17503] ? __pfx_ksys_unshare+0x10/0x10 [ 694.035594][T17503] ? xfd_validate_state+0x5d/0x180 [ 694.035612][T17503] ? rcu_is_watching+0x12/0xc0 [ 694.035633][T17503] __x64_sys_unshare+0x31/0x40 [ 694.035655][T17503] do_syscall_64+0xcd/0x230 [ 694.035682][T17503] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 694.035706][T17503] RIP: 0033:0x7fc0dff8e969 [ 694.035720][T17503] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 694.035737][T17503] RSP: 002b:00007fc0e0e68038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 694.035753][T17503] RAX: ffffffffffffffda RBX: 00007fc0e01b5fa0 RCX: 00007fc0dff8e969 [ 694.035764][T17503] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 694.035774][T17503] RBP: 00007fc0e0010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 694.035784][T17503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 694.035794][T17503] R13: 0000000000000000 R14: 00007fc0e01b5fa0 R15: 00007ffca563b618 [ 694.035817][T17503] [ 695.191858][T17513] netlink: 186 bytes leftover after parsing attributes in process `syz.3.4370'. [ 695.534303][T17510] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9 [ 696.030872][ T5836] Bluetooth: hci2: unexpected event 0x09 length: 11 > 3 [ 696.048259][T17523] input: isc as /devices/virtual/input/input10 [ 696.171676][T17523] FAULT_INJECTION: forcing a failure. [ 696.171676][T17523] name failslab, interval 1, probability 0, space 0, times 0 [ 696.252843][T17523] CPU: 1 UID: 0 PID: 17523 Comm: syz.4.4373 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 696.252870][T17523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 696.252880][T17523] Call Trace: [ 696.252888][T17523] [ 696.252895][T17523] dump_stack_lvl+0x16c/0x1f0 [ 696.252934][T17523] should_fail_ex+0x512/0x640 [ 696.252959][T17523] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 696.252981][T17523] should_failslab+0xc2/0x120 [ 696.253003][T17523] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 696.253024][T17523] ? __kernfs_new_node+0xd2/0x8a0 [ 696.253043][T17523] __kernfs_new_node+0xd2/0x8a0 [ 696.253061][T17523] ? __pfx___kernfs_new_node+0x10/0x10 [ 696.253085][T17523] ? find_held_lock+0x2b/0x80 [ 696.253103][T17523] ? kernfs_root+0xee/0x2a0 [ 696.253123][T17523] kernfs_new_node+0x13c/0x1e0 [ 696.253145][T17523] __kernfs_create_file+0x53/0x350 [ 696.253170][T17523] sysfs_add_file_mode_ns+0x207/0x3c0 [ 696.253202][T17523] sysfs_merge_group+0x1aa/0x340 [ 696.253218][T17523] ? kernfs_add_one+0x14e/0x840 [ 696.253236][T17523] ? __pfx_sysfs_merge_group+0x10/0x10 [ 696.253256][T17523] ? __pfx_dev_add_physical_location+0x10/0x10 [ 696.253278][T17523] ? bus_to_subsys+0x131/0x160 [ 696.253306][T17523] dpm_sysfs_add+0x237/0x280 [ 696.253329][T17523] device_add+0x9a6/0x1a70 [ 696.253354][T17523] ? __pfx_device_add+0x10/0x10 [ 696.253376][T17523] ? __pfx_exact_lock+0x10/0x10 [ 696.253397][T17523] ? kobject_get+0xbb/0x150 [ 696.253425][T17523] cdev_device_add+0xc2/0x1e0 [ 696.253464][T17523] evdev_connect+0x3a4/0x4c0 [ 696.253491][T17523] input_attach_handler.isra.0+0x181/0x260 [ 696.253516][T17523] input_register_device+0xa84/0x1130 [ 696.253542][T17523] uinput_ioctl_handler.isra.0+0x1357/0x1df0 [ 696.253563][T17523] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 696.253586][T17523] ? find_held_lock+0x2b/0x80 [ 696.253620][T17523] ? __pfx_uinput_ioctl+0x10/0x10 [ 696.253638][T17523] __x64_sys_ioctl+0x190/0x200 [ 696.253664][T17523] do_syscall_64+0xcd/0x230 [ 696.253690][T17523] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 696.253708][T17523] RIP: 0033:0x7fc0dff8e969 [ 696.253722][T17523] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 696.253739][T17523] RSP: 002b:00007fc0e0e68038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 696.253757][T17523] RAX: ffffffffffffffda RBX: 00007fc0e01b5fa0 RCX: 00007fc0dff8e969 [ 696.253767][T17523] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000005 [ 696.253777][T17523] RBP: 00007fc0e0010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 696.253787][T17523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 696.253797][T17523] R13: 0000000000000000 R14: 00007fc0e01b5fa0 R15: 00007ffca563b618 [ 696.253819][T17523] [ 697.629136][T17523] input: failed to attach handler evdev to device input10, error: -12 [ 698.099251][T17518] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11 [ 698.262240][T17548] FAULT_INJECTION: forcing a failure. [ 698.262240][T17548] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 698.391049][T17548] CPU: 1 UID: 0 PID: 17548 Comm: syz.5.4383 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 698.391076][T17548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 698.391086][T17548] Call Trace: [ 698.391092][T17548] [ 698.391099][T17548] dump_stack_lvl+0x16c/0x1f0 [ 698.391129][T17548] should_fail_ex+0x512/0x640 [ 698.391156][T17548] should_fail_alloc_page+0xe7/0x130 [ 698.391180][T17548] prepare_alloc_pages+0x3c2/0x610 [ 698.391209][T17548] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 698.391231][T17548] ? folio_remove_rmap_ptes+0x138/0x970 [ 698.391249][T17548] ? noop_dirty_folio+0x5e/0xb0 [ 698.391276][T17548] ? try_to_migrate_one+0x13d8/0x3380 [ 698.391297][T17548] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 698.391320][T17548] ? __pfx_try_to_migrate_one+0x10/0x10 [ 698.391343][T17548] ? __up_read+0x1f8/0x750 [ 698.391370][T17548] ? __pfx___up_read+0x10/0x10 [ 698.391392][T17548] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 698.391416][T17548] ? policy_nodemask+0xea/0x4e0 [ 698.391438][T17548] alloc_pages_mpol+0x1fb/0x550 [ 698.391460][T17548] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 698.391486][T17548] folio_alloc_mpol_noprof+0x36/0x2f0 [ 698.391511][T17548] alloc_migration_target_by_mpol+0x246/0x490 [ 698.391537][T17548] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 698.391562][T17548] ? __pfx___might_resched+0x10/0x10 [ 698.391586][T17548] migrate_pages_batch+0x3bc/0x31a0 [ 698.391613][T17548] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 698.391651][T17548] ? __pfx_migrate_pages_batch+0x10/0x10 [ 698.391678][T17548] ? __pfx_walk_pgd_range+0x10/0x10 [ 698.391701][T17548] migrate_pages_sync+0x12d/0x8a0 [ 698.391725][T17548] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 698.391753][T17548] ? queue_pages_test_walk+0x279/0x410 [ 698.391773][T17548] ? __pfx_find_vma+0x10/0x10 [ 698.391795][T17548] ? __pfx_migrate_pages_sync+0x10/0x10 [ 698.391829][T17548] migrate_pages+0x1b28/0x2350 [ 698.391854][T17548] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 698.391885][T17548] ? __pfx_migrate_pages+0x10/0x10 [ 698.391911][T17548] ? find_held_lock+0x2b/0x80 [ 698.391933][T17548] ? up_write+0x1b2/0x520 [ 698.391957][T17548] do_mbind+0x6f0/0xf30 [ 698.391986][T17548] ? __pfx_vfs_writev+0x10/0x10 [ 698.392001][T17548] ? __pfx_do_mbind+0x10/0x10 [ 698.392025][T17548] ? do_writev+0x218/0x330 [ 698.392049][T17548] ? __pfx_get_nodes+0x10/0x10 [ 698.392073][T17548] kernel_mbind+0x1e3/0x1f0 [ 698.392102][T17548] ? __pfx_kernel_mbind+0x10/0x10 [ 698.392125][T17548] ? rcu_is_watching+0x12/0xc0 [ 698.392147][T17548] do_syscall_64+0xcd/0x230 [ 698.392175][T17548] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 698.392193][T17548] RIP: 0033:0x7f37ea98e969 [ 698.392207][T17548] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 698.392223][T17548] RSP: 002b:00007f37eb74b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 698.392240][T17548] RAX: ffffffffffffffda RBX: 00007f37eabb6080 RCX: 00007f37ea98e969 [ 698.392251][T17548] RDX: 0000000100000000 RSI: 0000000100000004 RDI: 0000000000002000 [ 698.392261][T17548] RBP: 00007f37eaa10ab1 R08: 0000000000000006 R09: 0000000000000002 [ 698.392270][T17548] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 698.392280][T17548] R13: 0000000000000000 R14: 00007f37eabb6080 R15: 00007fffc5930538 [ 698.392306][T17548] [ 699.354321][T17552] netlink: 342 bytes leftover after parsing attributes in process `syz.4.4384'. [ 699.384733][T17552] netlink: 302 bytes leftover after parsing attributes in process `syz.4.4384'. [ 700.658325][T17575] netlink: 504 bytes leftover after parsing attributes in process `syz.3.4393'. [ 700.701153][T17575] netlink: 504 bytes leftover after parsing attributes in process `syz.3.4393'. [ 701.189863][T17583] FAULT_INJECTION: forcing a failure. [ 701.189863][T17583] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 701.337276][T17583] CPU: 1 UID: 0 PID: 17583 Comm: syz.3.4394 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 701.337309][T17583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 701.337319][T17583] Call Trace: [ 701.337325][T17583] [ 701.337332][T17583] dump_stack_lvl+0x16c/0x1f0 [ 701.337362][T17583] should_fail_ex+0x512/0x640 [ 701.337391][T17583] should_fail_alloc_page+0xe7/0x130 [ 701.337415][T17583] prepare_alloc_pages+0x3c2/0x610 [ 701.337445][T17583] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 701.337468][T17583] ? folio_remove_rmap_ptes+0x138/0x970 [ 701.337487][T17583] ? noop_dirty_folio+0x5e/0xb0 [ 701.337514][T17583] ? try_to_migrate_one+0x13d8/0x3380 [ 701.337535][T17583] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 701.337558][T17583] ? __pfx_try_to_migrate_one+0x10/0x10 [ 701.337582][T17583] ? __up_read+0x1f8/0x750 [ 701.337608][T17583] ? __pfx___up_read+0x10/0x10 [ 701.337630][T17583] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 701.337654][T17583] ? policy_nodemask+0xea/0x4e0 [ 701.337676][T17583] alloc_pages_mpol+0x1fb/0x550 [ 701.337698][T17583] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 701.337725][T17583] folio_alloc_mpol_noprof+0x36/0x2f0 [ 701.337750][T17583] alloc_migration_target_by_mpol+0x246/0x490 [ 701.337776][T17583] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 701.337801][T17583] ? __pfx___might_resched+0x10/0x10 [ 701.337825][T17583] migrate_pages_batch+0x3bc/0x31a0 [ 701.337852][T17583] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 701.337884][T17583] ? __pfx_migrate_pages_batch+0x10/0x10 [ 701.337918][T17583] ? __pfx_walk_pgd_range+0x10/0x10 [ 701.337941][T17583] migrate_pages_sync+0x12d/0x8a0 [ 701.337966][T17583] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 701.337994][T17583] ? queue_pages_test_walk+0x279/0x410 [ 701.338015][T17583] ? __pfx_find_vma+0x10/0x10 [ 701.338037][T17583] ? __pfx_migrate_pages_sync+0x10/0x10 [ 701.338072][T17583] migrate_pages+0x1b28/0x2350 [ 701.338096][T17583] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 701.338128][T17583] ? __pfx_migrate_pages+0x10/0x10 [ 701.338154][T17583] ? find_held_lock+0x2b/0x80 [ 701.338176][T17583] ? up_write+0x1b2/0x520 [ 701.338201][T17583] do_mbind+0x6f0/0xf30 [ 701.338232][T17583] ? __pfx_do_mbind+0x10/0x10 [ 701.338256][T17583] ? do_writev+0x218/0x330 [ 701.338281][T17583] ? __pfx_get_nodes+0x10/0x10 [ 701.338306][T17583] kernel_mbind+0x1e3/0x1f0 [ 701.338331][T17583] ? __pfx_kernel_mbind+0x10/0x10 [ 701.338353][T17583] ? rcu_is_watching+0x12/0xc0 [ 701.338376][T17583] do_syscall_64+0xcd/0x230 [ 701.338402][T17583] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 701.338419][T17583] RIP: 0033:0x7fab8678e969 [ 701.338434][T17583] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 701.338450][T17583] RSP: 002b:00007fab87687038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 701.338467][T17583] RAX: ffffffffffffffda RBX: 00007fab869b6080 RCX: 00007fab8678e969 [ 701.338478][T17583] RDX: 0000000100000000 RSI: 0000000100000004 RDI: 0000000000002000 [ 701.338489][T17583] RBP: 00007fab86810ab1 R08: 0000000000000006 R09: 0000000000000002 [ 701.338498][T17583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 701.338508][T17583] R13: 0000000000000000 R14: 00007fab869b6080 R15: 00007ffdf5bf6688 [ 701.338529][T17583] [ 701.677396][ C1] vkms_vblank_simulate: vblank timer overrun [ 701.821600][T17572] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 702.287791][T17591] [U] [ 702.290646][T17591] [U] [ 702.293377][T17591] [U] [ 702.296223][T17591] [U] [ 702.350517][T17591] [U] [ 702.353267][T17591] [U] [ 702.355972][T17591] [U] [ 702.358770][T17591] [U] [ 702.396929][T17591] [U] [ 702.399673][T17591] [U] [ 702.402385][T17591] [U] [ 702.405093][T17591] [U] [ 702.446974][T17591] [U] [ 702.449735][T17591] [U] [ 702.452438][T17591] [U] [ 702.455130][T17591] [U] [ 702.479469][T17595] mtrr: base(0x1010000000) is not aligned on a size(0x0000) boundary [ 702.488024][T17591] [U] [ 702.490727][T17591] [U] [ 702.493453][T17591] [U] [ 702.496148][T17591] [U] [ 702.517123][T17591] [U] [ 702.519865][T17591] [U] [ 702.522669][T17591] [U] [ 702.525391][T17591] [U] [ 702.567176][T17591] [U] [ 702.570735][T17591] [U] [ 702.573460][T17591] [U] [ 702.576164][T17591] [U] [ 702.589873][T17597] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4401'. [ 702.606287][T17591] [U] [ 702.609026][T17591] [U] [ 702.611805][T17591] [U] [ 702.631213][T17597] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 702.638526][T17597] IPv6: NLM_F_CREATE should be set when creating new route [ 702.645866][T17597] IPv6: NLM_F_CREATE should be set when creating new route [ 702.714356][T17599] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4401'. [ 702.735425][T17588] [U] [ 703.532027][T17622] FAULT_INJECTION: forcing a failure. [ 703.532027][T17622] name failslab, interval 1, probability 0, space 0, times 0 [ 703.610718][T17622] CPU: 1 UID: 0 PID: 17622 Comm: syz.3.4410 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 703.610752][T17622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 703.610762][T17622] Call Trace: [ 703.610769][T17622] [ 703.610775][T17622] dump_stack_lvl+0x16c/0x1f0 [ 703.610805][T17622] should_fail_ex+0x512/0x640 [ 703.610830][T17622] ? __kmalloc_noprof+0xbf/0x510 [ 703.610851][T17622] ? lsm_blob_alloc+0x68/0x90 [ 703.610866][T17622] should_failslab+0xc2/0x120 [ 703.610887][T17622] __kmalloc_noprof+0xd2/0x510 [ 703.610911][T17622] lsm_blob_alloc+0x68/0x90 [ 703.610928][T17622] security_sk_alloc+0x30/0x270 [ 703.610948][T17622] sk_prot_alloc+0xfb/0x2a0 [ 703.610975][T17622] sk_alloc+0x36/0xc20 [ 703.610995][T17622] inet6_create+0x381/0x1300 [ 703.611015][T17622] ? inet6_create+0x7f/0x1300 [ 703.611036][T17622] __sock_create+0x335/0x8d0 [ 703.611066][T17622] smc_create_clcsk+0x37/0xd0 [ 703.611087][T17622] ? __pfx_smc_inet_init_sock+0x10/0x10 [ 703.611114][T17622] inet6_create+0xb2d/0x1300 [ 703.611133][T17622] ? inet6_create+0x7f/0x1300 [ 703.611154][T17622] __sock_create+0x335/0x8d0 [ 703.611184][T17622] __sys_socket+0x14d/0x260 [ 703.611199][T17622] ? __pfx___sys_socket+0x10/0x10 [ 703.611215][T17622] ? rcu_is_watching+0x12/0xc0 [ 703.611236][T17622] __x64_sys_socket+0x72/0xb0 [ 703.611250][T17622] ? lockdep_hardirqs_on+0x7c/0x110 [ 703.611274][T17622] do_syscall_64+0xcd/0x230 [ 703.611300][T17622] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 703.611318][T17622] RIP: 0033:0x7fab8678e969 [ 703.611332][T17622] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 703.611348][T17622] RSP: 002b:00007fab876a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 703.611365][T17622] RAX: ffffffffffffffda RBX: 00007fab869b5fa0 RCX: 00007fab8678e969 [ 703.611375][T17622] RDX: 0000000000000100 RSI: 0000000000000001 RDI: 000000000000000a [ 703.611385][T17622] RBP: 00007fab86810ab1 R08: 0000000000000000 R09: 0000000000000000 [ 703.611394][T17622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 703.611404][T17622] R13: 0000000000000000 R14: 00007fab869b5fa0 R15: 00007ffdf5bf6688 [ 703.611425][T17622] [ 703.843391][ C1] vkms_vblank_simulate: vblank timer overrun [ 704.040556][T17629] netlink: 338 bytes leftover after parsing attributes in process `syz.3.4415'. [ 704.161326][T17634] mkiss: ax0: crc mode is auto. [ 704.706684][T17647] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4420'. [ 705.867559][T17618] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 706.147859][T17670] page: refcount:6 mapcount:5 mapping:0000000000000000 index:0x7f0d679a6 pfn:0x78800 [ 706.195088][T17672] FAULT_INJECTION: forcing a failure. [ 706.195088][T17672] name failslab, interval 1, probability 0, space 0, times 0 [ 706.209714][T17670] flags: 0xfff18000000214(referenced|dirty|workingset|node=0|zone=1|lastcpupid=0x7ff) [ 706.252200][T17670] raw: 00fff18000000214 0000000000000000 dead000000000122 0000000000000000 [ 706.276134][T17672] CPU: 1 UID: 0 PID: 17672 Comm: syz.5.4429 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 706.276162][T17672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 706.276172][T17672] Call Trace: [ 706.276179][T17672] [ 706.276186][T17672] dump_stack_lvl+0x16c/0x1f0 [ 706.276215][T17672] should_fail_ex+0x512/0x640 [ 706.276241][T17672] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 706.276264][T17672] should_failslab+0xc2/0x120 [ 706.276285][T17672] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 706.276305][T17672] ? __kernfs_new_node+0xd2/0x8a0 [ 706.276324][T17672] __kernfs_new_node+0xd2/0x8a0 [ 706.276343][T17672] ? __pfx___kernfs_new_node+0x10/0x10 [ 706.276366][T17672] ? find_held_lock+0x2b/0x80 [ 706.276384][T17672] ? kernfs_root+0xee/0x2a0 [ 706.276405][T17672] kernfs_new_node+0x13c/0x1e0 [ 706.276428][T17672] __kernfs_create_file+0x53/0x350 [ 706.276454][T17672] sysfs_add_file_mode_ns+0x207/0x3c0 [ 706.276485][T17672] internal_create_group+0x578/0xf30 [ 706.276507][T17672] ? __pfx_internal_create_group+0x10/0x10 [ 706.276533][T17672] sysfs_slab_add+0x1a3/0x1e0 [ 706.276551][T17672] do_kmem_cache_create+0x530/0x730 [ 706.276570][T17672] ? __kmem_cache_create_args+0x205/0x390 [ 706.276593][T17672] __kmem_cache_create_args+0x225/0x390 [ 706.276615][T17672] mon_text_open+0x313/0x4f0 [ 706.276641][T17672] ? __pfx_mon_text_open+0x10/0x10 [ 706.276665][T17672] ? __debugfs_file_get+0x1fe/0x840 [ 706.276684][T17672] ? __pfx_mon_text_ctor+0x10/0x10 [ 706.276708][T17672] ? __pfx_apparmor_file_open+0x10/0x10 [ 706.276729][T17672] ? lockdown_is_locked_down+0x3f/0x130 [ 706.276754][T17672] ? bpf_lsm_locked_down+0x9/0x10 [ 706.276775][T17672] ? __pfx_mon_text_open+0x10/0x10 [ 706.276799][T17672] full_proxy_open_regular+0x1b9/0x360 [ 706.276822][T17672] do_dentry_open+0x741/0x1c10 [ 706.276840][T17672] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 706.276873][T17672] vfs_open+0x82/0x3f0 [ 706.276898][T17672] path_openat+0x1e5e/0x2d40 [ 706.276923][T17672] ? __pfx_path_openat+0x10/0x10 [ 706.276946][T17672] do_filp_open+0x20b/0x470 [ 706.276964][T17672] ? __pfx_do_filp_open+0x10/0x10 [ 706.276998][T17672] ? alloc_fd+0x471/0x7d0 [ 706.277030][T17672] do_sys_openat2+0x11b/0x1d0 [ 706.277053][T17672] ? __pfx_do_sys_openat2+0x10/0x10 [ 706.277085][T17672] __x64_sys_openat+0x174/0x210 [ 706.277113][T17672] ? __pfx___x64_sys_openat+0x10/0x10 [ 706.277138][T17672] ? rcu_is_watching+0x12/0xc0 [ 706.277161][T17672] do_syscall_64+0xcd/0x230 [ 706.277188][T17672] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 706.277205][T17672] RIP: 0033:0x7f37ea98e969 [ 706.277219][T17672] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 706.277236][T17672] RSP: 002b:00007f37eb76c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 706.277253][T17672] RAX: ffffffffffffffda RBX: 00007f37eabb5fa0 RCX: 00007f37ea98e969 [ 706.277264][T17672] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 706.277274][T17672] RBP: 00007f37eaa10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 706.277284][T17672] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 706.277293][T17672] R13: 0000000000000000 R14: 00007f37eabb5fa0 R15: 00007fffc5930538 [ 706.277315][T17672] [ 706.278255][T17672] SLUB: Unable to add cache mon_text_ffff888028080400 to sysfs [ 706.668899][T17670] raw: 00000007f0d679a6 0000000000000000 0000000600000004 0000000000000000 [ 706.746721][T17670] page dumped because: unmovable page [ 706.765581][T17670] page_owner tracks the page as allocated [ 706.787505][T17670] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5824, tgid 5824 (syz-executor), ts 91065066780, free_ts 90839696808 [ 706.859222][T17670] post_alloc_hook+0x181/0x1b0 [ 706.879077][T17670] get_page_from_freelist+0x135c/0x3920 [ 706.999316][T17673] could not allocate digest TFM handle [ 707.009316][T17670] __alloc_frozen_pages_noprof+0x263/0x23a0 [ 707.036036][T17670] alloc_pages_mpol+0x1fb/0x550 [ 707.054144][T17670] alloc_pages_noprof+0x131/0x390 [ 707.060448][T17670] __vmalloc_node_range_noprof+0x732/0x1540 [ 707.119189][T17670] vmalloc_user_noprof+0x6b/0x90 [ 707.134577][T17670] kcov_ioctl+0x4c/0x730 [ 707.149177][T17670] __x64_sys_ioctl+0x190/0x200 [ 707.154017][T17670] do_syscall_64+0xcd/0x230 [ 707.183697][T17670] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 707.199215][T17670] page last free pid 5816 tgid 5816 stack trace: [ 707.205697][T17670] free_unref_folios+0x999/0x1630 [ 707.247925][T17670] folios_put_refs+0x56f/0x740 [ 707.265264][T17670] free_pages_and_swap_cache+0x245/0x4a0 [ 707.293625][T17670] __tlb_batch_free_encoded_pages+0xf9/0x290 [ 707.336580][T17670] tlb_finish_mmu+0x168/0x7b0 [ 707.346995][T17670] vms_clear_ptes+0x55e/0x770 [ 707.399363][T17670] vms_complete_munmap_vmas+0x1ca/0x970 [ 707.405090][T17670] do_vmi_align_munmap+0x43b/0x7d0 [ 707.419519][T17689] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4434'. [ 707.445905][T17670] do_vmi_munmap+0x208/0x3e0 [ 707.480505][T17670] __vm_munmap+0x19a/0x390 [ 707.508010][T17670] __x64_sys_munmap+0x59/0x80 [ 707.526662][T17670] do_syscall_64+0xcd/0x230 [ 707.546370][T17670] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 707.710293][T17694] netlink: 330 bytes leftover after parsing attributes in process `syz.3.4437'. [ 707.754185][T17694] gretap0: refused to change device tx_queue_len [ 707.835625][T17698] netlink: 330 bytes leftover after parsing attributes in process `syz.2.4438'. [ 707.878836][T17698] ›: renamed from hsr0 (while UP) [ 708.440435][T17711] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12 [ 708.995577][T17722] FAULT_INJECTION: forcing a failure. [ 708.995577][T17722] name failslab, interval 1, probability 0, space 0, times 0 [ 709.074426][T17722] CPU: 1 UID: 0 PID: 17722 Comm: syz.4.4447 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 709.074454][T17722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 709.074464][T17722] Call Trace: [ 709.074471][T17722] [ 709.074478][T17722] dump_stack_lvl+0x16c/0x1f0 [ 709.074510][T17722] should_fail_ex+0x512/0x640 [ 709.074535][T17722] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 709.074555][T17722] should_failslab+0xc2/0x120 [ 709.074576][T17722] __kmalloc_cache_noprof+0x6a/0x3e0 [ 709.074593][T17722] ? ktime_get_coarse_real_ts64_mg+0x240/0x300 [ 709.074615][T17722] ? ktime_get_coarse_real_ts64_mg+0x1d4/0x300 [ 709.074635][T17722] ? hugetlb_vma_lock_alloc+0xbc/0x1f0 [ 709.074656][T17722] hugetlb_vma_lock_alloc+0xbc/0x1f0 [ 709.074675][T17722] hugetlb_reserve_pages+0x149/0xe10 [ 709.074705][T17722] ? __pfx_hugetlb_reserve_pages+0x10/0x10 [ 709.074730][T17722] ? atime_needs_update+0x8b/0x710 [ 709.074759][T17722] hugetlbfs_file_mmap+0x4a1/0x730 [ 709.074784][T17722] __mmap_region+0x1485/0x27c0 [ 709.074806][T17722] ? __pfx___mmap_region+0x10/0x10 [ 709.074825][T17722] ? kernel_text_address+0x8d/0x100 [ 709.074866][T17722] ? stack_depot_save_flags+0x28/0xa50 [ 709.074917][T17722] ? mm_get_unmapped_area_vmflags+0x97/0xe0 [ 709.074952][T17722] mmap_region+0x32b/0x3f0 [ 709.074976][T17722] do_mmap+0xd8e/0x11b0 [ 709.075005][T17722] ? __pfx_do_mmap+0x10/0x10 [ 709.075030][T17722] ? __pfx_down_write_killable+0x10/0x10 [ 709.075052][T17722] vm_mmap_pgoff+0x281/0x450 [ 709.075082][T17722] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 709.075105][T17722] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 709.075128][T17722] ? hugetlbfs_get_inode+0x31f/0x730 [ 709.075155][T17722] ksys_mmap_pgoff+0x1c8/0x5c0 [ 709.075183][T17722] ? rcu_is_watching+0x12/0xc0 [ 709.075201][T17722] __x64_sys_mmap+0x125/0x190 [ 709.075220][T17722] do_syscall_64+0xcd/0x230 [ 709.075246][T17722] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 709.075264][T17722] RIP: 0033:0x7fc0dff8e969 [ 709.075278][T17722] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 709.075294][T17722] RSP: 002b:00007fc0e0e68038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 709.075311][T17722] RAX: ffffffffffffffda RBX: 00007fc0e01b5fa0 RCX: 00007fc0dff8e969 [ 709.075323][T17722] RDX: 0000000000000002 RSI: 0000000000a00006 RDI: 0000000000c00000 [ 709.075332][T17722] RBP: 00007fc0e0010ab1 R08: 0000000000000602 R09: 0000300000000000 [ 709.075342][T17722] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000 [ 709.075352][T17722] R13: 0000000000000000 R14: 00007fc0e01b5fa0 R15: 00007ffca563b618 [ 709.075373][T17722] [ 709.075381][T17722] HugeTLB: unable to allocate vma specific lock [ 709.479144][T17726] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4449'. [ 709.543356][T17714] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input13 [ 709.757206][T17730] netlink: 334 bytes leftover after parsing attributes in process `syz.2.4451'. [ 709.798408][T17730] [ 709.801032][T17730] ============================= [ 709.806003][T17730] WARNING: suspicious RCU usage [ 709.811181][T17730] 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 Not tainted [ 709.818293][T17730] ----------------------------- [ 709.823928][T17730] net/mpls/af_mpls.c:84 suspicious rcu_dereference_check() usage! [ 709.832782][T17730] [ 709.832782][T17730] other info that might help us debug this: [ 709.832782][T17730] [ 709.843258][T17730] [ 709.843258][T17730] rcu_scheduler_active = 2, debug_locks = 1 [ 709.851677][T17730] 1 lock held by syz.2.4451/17730: [ 709.856974][T17730] #0: ffffffff9012a3e8 (rtnl_mutex){+.+.}-{4:4}, at: rtnetlink_rcv_msg+0x371/0xe90 [ 709.866910][T17730] [ 709.866910][T17730] stack backtrace: [ 709.872941][T17730] CPU: 1 UID: 0 PID: 17730 Comm: syz.2.4451 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 709.872967][T17730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 709.872978][T17730] Call Trace: [ 709.872985][T17730] [ 709.872993][T17730] dump_stack_lvl+0x16c/0x1f0 [ 709.873023][T17730] lockdep_rcu_suspicious+0x166/0x260 [ 709.873049][T17730] mpls_route_input_rcu+0x1d4/0x200 [ 709.873077][T17730] mpls_getroute+0x621/0x1ea0 [ 709.873105][T17730] ? __lock_acquire+0xaa4/0x1ba0 [ 709.873128][T17730] ? __pfx_mpls_getroute+0x10/0x10 [ 709.873153][T17730] ? bpf_ksym_find+0x120/0x1c0 [ 709.873180][T17730] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 709.873208][T17730] ? rcu_is_watching+0x12/0xc0 [ 709.873245][T17730] ? __pfx_mpls_getroute+0x10/0x10 [ 709.873272][T17730] rtnetlink_rcv_msg+0x3c9/0xe90 [ 709.873296][T17730] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 709.873327][T17730] netlink_rcv_skb+0x16d/0x440 [ 709.873349][T17730] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 709.873390][T17730] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 709.873423][T17730] ? netlink_deliver_tap+0x1ae/0xd30 [ 709.873458][T17730] netlink_unicast+0x53a/0x7f0 [ 709.873482][T17730] ? __pfx_netlink_unicast+0x10/0x10 [ 709.873563][T17730] ? __lock_acquire+0xaa4/0x1ba0 [ 709.873591][T17730] netlink_sendmsg+0x8d1/0xdd0 [ 709.873617][T17730] ? __pfx_netlink_sendmsg+0x10/0x10 [ 709.873648][T17730] ____sys_sendmsg+0xa98/0xc70 [ 709.873674][T17730] ? copy_msghdr_from_user+0x10a/0x160 [ 709.873695][T17730] ? __pfx_____sys_sendmsg+0x10/0x10 [ 709.873723][T17730] ? kfree+0x252/0x4d0 [ 709.873737][T17730] ? schedule+0x2d7/0x3a0 [ 709.873762][T17730] ___sys_sendmsg+0x134/0x1d0 [ 709.873784][T17730] ? __pfx____sys_sendmsg+0x10/0x10 [ 709.873822][T17730] ? __pfx___might_resched+0x10/0x10 [ 709.873846][T17730] __sys_sendmmsg+0x200/0x420 [ 709.873869][T17730] ? __pfx___sys_sendmmsg+0x10/0x10 [ 709.873895][T17730] ? __pfx_do_futex+0x10/0x10 [ 709.873923][T17730] ? xfd_validate_state+0x5d/0x180 [ 709.873941][T17730] ? rcu_is_watching+0x12/0xc0 [ 709.873960][T17730] __x64_sys_sendmmsg+0x9c/0x100 [ 709.873980][T17730] ? lockdep_hardirqs_on+0x7c/0x110 [ 709.874004][T17730] do_syscall_64+0xcd/0x230 [ 709.874030][T17730] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 709.874047][T17730] RIP: 0033:0x7f0a2818e969 [ 709.874062][T17730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 709.874078][T17730] RSP: 002b:00007f0a28f52038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 709.874095][T17730] RAX: ffffffffffffffda RBX: 00007f0a283b5fa0 RCX: 00007f0a2818e969 [ 709.874106][T17730] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 709.874116][T17730] RBP: 00007f0a28210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 709.874126][T17730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 709.874136][T17730] R13: 0000000000000000 R14: 00007f0a283b5fa0 R15: 00007ffce5e9f268 [ 709.874156][T17730] SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 710.659235][T17730] [ 710.661655][T17730] ============================= [ 710.666501][T17730] WARNING: suspicious RCU usage [ 710.671692][T17730] 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 Not tainted [ 710.678800][T17730] ----------------------------- [ 710.683807][T17730] net/mpls/af_mpls.c:85 suspicious rcu_dereference_check() usage! [ 710.691710][T17730] [ 710.691710][T17730] other info that might help us debug this: [ 710.691710][T17730] [ 710.702088][T17730] [ 710.702088][T17730] rcu_scheduler_active = 2, debug_locks = 1 [ 710.710409][T17730] 1 lock held by syz.2.4451/17730: [ 710.715554][T17730] #0: ffffffff9012a3e8 (rtnl_mutex){+.+.}-{4:4}, at: rtnetlink_rcv_msg+0x371/0xe90 [ 710.725136][T17730] [ 710.725136][T17730] stack backtrace: [ 710.731271][T17730] CPU: 1 UID: 0 PID: 17730 Comm: syz.2.4451 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 710.731295][T17730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 710.731305][T17730] Call Trace: [ 710.731312][T17730] [ 710.731319][T17730] dump_stack_lvl+0x16c/0x1f0 [ 710.731349][T17730] lockdep_rcu_suspicious+0x166/0x260 [ 710.731373][T17730] mpls_route_input_rcu+0x153/0x200 [ 710.731398][T17730] mpls_getroute+0x621/0x1ea0 [ 710.731426][T17730] ? __lock_acquire+0xaa4/0x1ba0 [ 710.731448][T17730] ? __pfx_mpls_getroute+0x10/0x10 [ 710.731473][T17730] ? bpf_ksym_find+0x120/0x1c0 [ 710.731501][T17730] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 710.731528][T17730] ? rcu_is_watching+0x12/0xc0 [ 710.731566][T17730] ? __pfx_mpls_getroute+0x10/0x10 [ 710.731601][T17730] rtnetlink_rcv_msg+0x3c9/0xe90 [ 710.731625][T17730] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 710.731656][T17730] netlink_rcv_skb+0x16d/0x440 [ 710.731678][T17730] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 710.731701][T17730] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 710.731733][T17730] ? netlink_deliver_tap+0x1ae/0xd30 [ 710.731758][T17730] netlink_unicast+0x53a/0x7f0 [ 710.731782][T17730] ? __pfx_netlink_unicast+0x10/0x10 [ 710.731803][T17730] ? __lock_acquire+0xaa4/0x1ba0 [ 710.731830][T17730] netlink_sendmsg+0x8d1/0xdd0 [ 710.731856][T17730] ? __pfx_netlink_sendmsg+0x10/0x10 [ 710.731885][T17730] ____sys_sendmsg+0xa98/0xc70 [ 710.731910][T17730] ? copy_msghdr_from_user+0x10a/0x160 [ 710.731930][T17730] ? __pfx_____sys_sendmsg+0x10/0x10 [ 710.731957][T17730] ? kfree+0x252/0x4d0 [ 710.731971][T17730] ? schedule+0x2d7/0x3a0 [ 710.731997][T17730] ___sys_sendmsg+0x134/0x1d0 [ 710.732018][T17730] ? __pfx____sys_sendmsg+0x10/0x10 [ 710.732056][T17730] ? __pfx___might_resched+0x10/0x10 [ 710.732079][T17730] __sys_sendmmsg+0x200/0x420 [ 710.732102][T17730] ? __pfx___sys_sendmmsg+0x10/0x10 [ 710.732128][T17730] ? __pfx_do_futex+0x10/0x10 [ 710.732156][T17730] ? xfd_validate_state+0x5d/0x180 [ 710.732175][T17730] ? rcu_is_watching+0x12/0xc0 [ 710.732194][T17730] __x64_sys_sendmmsg+0x9c/0x100 [ 710.732214][T17730] ? lockdep_hardirqs_on+0x7c/0x110 [ 710.732237][T17730] do_syscall_64+0xcd/0x230 [ 710.732263][T17730] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 710.732280][T17730] RIP: 0033:0x7f0a2818e969 [ 710.732296][T17730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 710.732312][T17730] RSP: 002b:00007f0a28f52038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 710.732328][T17730] RAX: ffffffffffffffda RBX: 00007f0a283b5fa0 RCX: 00007f0a2818e969 [ 710.732338][T17730] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 710.732348][T17730] RBP: 00007f0a28210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 710.732358][T17730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 710.732368][T17730] R13: 0000000000000000 R14: 00007f0a283b5fa0 R15: 00007ffce5e9f268 [ 710.732388][T17730] [ 713.126251][ T4488] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 713.255079][ T4488] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 713.334724][ T4488] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 713.437827][ T4488] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 713.687229][ T4488] bridge_slave_1: left allmulticast mode [ 713.713191][ T4488] bridge_slave_1: left promiscuous mode [ 713.754716][ T4488] bridge0: port 2(bridge_slave_1) entered disabled state [ 713.813620][ T4488] bridge_slave_0: left allmulticast mode [ 713.841009][ T4488] bridge_slave_0: left promiscuous mode [ 713.848027][ T4488] bridge0: port 1(bridge_slave_0) entered disabled state [ 714.630998][ T4488] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 714.652143][ T4488] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 714.670575][ T4488] bond0 (unregistering): Released all slaves [ 714.988874][ T4488] hsr_slave_0: left promiscuous mode [ 715.005339][ T4488] hsr_slave_1: left promiscuous mode [ 715.023562][ T4488] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 715.031004][ T4488] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 715.054161][ T4488] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 715.061586][ T4488] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 715.120262][ T4488] veth1_macvtap: left promiscuous mode [ 715.144348][ T4488] veth0_macvtap: left promiscuous mode [ 715.160818][ T4488] veth0_vlan: left promiscuous mode [ 715.925139][ T4488] team0 (unregistering): Port device team_slave_1 removed [ 715.971593][ T4488] team0 (unregistering): Port device team_slave_0 removed [ 716.768848][ T4488] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 716.873738][ T4488] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 716.967523][ T4488] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 717.049962][ T4488] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 717.372328][ T4488] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 717.539582][ T4488] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 717.772822][ T4488] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 718.001623][ T4488] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 718.280278][ T4488] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 718.498957][ T4488] bridge_slave_1: left allmulticast mode [ 718.515509][ T4488] bridge_slave_1: left promiscuous mode [ 718.521371][ T4488] bridge0: port 2(bridge_slave_1) entered disabled state [ 718.549186][ T4488] bridge_slave_0: left allmulticast mode [ 718.568068][ T4488] bridge_slave_0: left promiscuous mode [ 718.575300][ T4488] bridge0: port 1(bridge_slave_0) entered disabled state [ 718.614207][ T4488] bridge_slave_1: left allmulticast mode [ 718.628616][ T4488] bridge_slave_1: left promiscuous mode [ 718.640327][ T4488] bridge0: port 2(bridge_slave_1) entered disabled state [ 718.651034][ T4488] bridge_slave_0: left allmulticast mode [ 718.657730][ T4488] bridge_slave_0: left promiscuous mode [ 718.663846][ T4488] bridge0: port 1(bridge_slave_0) entered disabled state