last executing test programs: 5.094719494s ago: executing program 0 (id=843): openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0) prctl$auto_PR_GET_SPECULATION_CTRL(0x34, 0x10, 0xffffffffffffffff, 0x8000, 0x8acb) write$auto(0xffffffffffffffff, 0x0, 0x7) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x80102, 0x0) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[], 0x14}}, 0x24000894) (async) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[], 0x14}}, 0x24000894) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0) (async) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x1, 0xe97f, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x10948b, 0x3, 0x15f4da0a, 0x3, 0x80000000, 0x5f, 0x80000001, 0x7, 0x6d3f, 0x7, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4011}, 0x0) mmap$auto(0x4, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) mmap$auto(0x4, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x9, 0x8000) socket(0x15, 0x5, 0x0) (async) socket(0x15, 0x5, 0x0) getsockopt$auto(r0, 0x2, 0x2717, 0xfffffffffffffffc, 0x0) (async) getsockopt$auto(r0, 0x2, 0x2717, 0xfffffffffffffffc, 0x0) socket(0xa, 0x801, 0x84) (async) r2 = socket(0xa, 0x801, 0x84) listen$auto(r2, 0x3) (async) listen$auto(r2, 0x3) r3 = getsockopt$auto(r2, 0x84, 0x6d, 0x0, &(0x7f0000000280)=0x1000c0) statmount$auto(0x0, &(0x7f0000000440)={0xa, 0x1, 0x44f, 0x7, 0x5, 0x1007181, 0x8a0d, 0x7, 0x7, 0x7ff, 0x89, 0x26, 0x4, 0x200000000001, 0x384, 0xfffffffffffffffa, 0x8, 0x0, 0x30, 0x100000000, 0x864, 0x3, 0x22000, 0x9, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000]}, 0x9, 0xd) mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_BLKTRACESETUP32(r3, 0xc0401273, &(0x7f0000000040)={"6dd39d8843be414f0b183a35ae73c8c898e7b6a420f9d99673ed3b547aaf5f17", 0x8000, 0x0, 0xf, 0x5, 0x10, 0x0}) prctl$auto(0x1000000003b, 0x1, r4, 0x5, 0x4) (async) prctl$auto(0x1000000003b, 0x1, r4, 0x5, 0x4) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0xffffffffffff0005, 0x19) setns$auto(0x0, 0xb) 3.877911281s ago: executing program 0 (id=848): openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi18\x00', 0xc0400, 0x0) socket(0x10, 0x2, 0x0) getsockopt$auto(0xffffffffffffffff, 0x29, 0x45, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) unshare$auto(0x40000080) statx$auto(0xffffff9c, 0x0, 0x1000, 0x803, 0x0) ioctl$auto(0x1, 0x890b, 0x8) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000) getdents$auto(0xffffffffffffffff, 0x0, 0x400018) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x181881, 0x0) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000380)='/dev/cuse\x00', 0x0, 0x0) r0 = socket(0x2, 0x1, 0x106) getsockopt$auto(r0, 0x11c, 0x1, 0xfffffffffffffffe, 0xfffffffffffffffd) unshare$auto(0x40000080) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/bus/pci/resource_alignment\x00', 0x8ea182, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000000)="42bf466a98f4921b6c0a", 0xa) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0xff, 0x3, 0x4) madvise$auto(0x0, 0xfffffffffffefffd, 0x17) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0x20499d, 0x9) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44b, 0x7, 0x5, 0x1007181, 0x9, 0x7, 0x7, 0x7ff, 0x9, 0x80000001, 0x4, 0x200000000001, 0x384, 0xfffffffffffffffb, 0x8, 0x0, 0x2, 0x0, 0x864, 0xe, 0x22000, 0x200, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}, 0xa, 0xd) openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) ioperm$auto(0x3, 0xe, 0x2000000000000149) pkey_free$auto(0xfffffffd) 3.739944962s ago: executing program 2 (id=850): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = waitid$auto(0x2, 0xffffffffffffffff, &(0x7f0000000040)={@siginfo_0_0={0x3, 0x8, 0x7de3, @_sigpoll={0x2}}}, 0x81, &(0x7f0000000180)={{0x2, 0x4}, {0x7fff, 0x2}, 0x8, 0x9, 0x3, 0x5fa, 0x100000001, 0x8000, 0x1, 0x3, 0xffff, 0x9, 0x3000000000000000, 0x0, 0x1, 0x7}) timer_create$auto_CLOCK_REALTIME(0x0, &(0x7f00000000c0)={@sival_int=0xe, @inferred, 0x200, @_tid=r0}, &(0x7f0000000240)=0x3) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/nr14/netdev_group\x00', 0xc0080, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000840)='./cgroup.cpu/memory.stat\x00', 0x80200, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000240)=""/118, 0x76) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000080)=""/88, 0x58) openat$auto_o2hb_debug_fops_heartbeat(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/o2hb/quorum_regions\x00', 0x10000, 0x0) r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r4 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/softnet_stat\x00', 0x40102, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/modules\x00', 0x40000, 0x0) sendmsg$auto_NL80211_CMD_STOP_AP(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0xc}, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r5, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) pread64$auto(r4, 0x0, 0x100000001, 0x3) r6 = socket$nl_generic(0x10, 0x3, 0x10) readahead$auto(r6, 0xcc7f, 0x6) syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000180), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) r7 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/adsp1\x00', 0x1, 0x0) ioctl$auto_SNDCTL_DSP_GETODELAY(r7, 0x80045017, &(0x7f0000000080)) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) 3.349983823s ago: executing program 3 (id=852): mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb2, 0x403, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x68, 0x0, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@HSR_A_IF1_SEQ={0x6, 0x6, 0x81}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x8000}, @HSR_A_IF1_SEQ={0x6, 0x6, 0xe}, @HSR_A_NODE_ADDR_B={0xa}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_NODE_ADDR_B={0xa, 0x5, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3d}}, @HSR_A_IF1_AGE={0x8, 0x3, 0x2e}, @HSR_A_IFINDEX={0x8}, @HSR_A_IF2_AGE={0x8, 0x4, 0x80}]}, 0x68}, 0x1, 0x0, 0x0, 0x20040084}, 0x40090) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0xf4ff, 0x9}, 0x7}, 0x3, 0x0) ioctl$auto(0x3, 0x80000541b, 0x38) 3.141508776s ago: executing program 3 (id=853): socket(0xa, 0x5, 0x0) listen$auto(0x3, 0x81) shutdown$auto(0x200000003, 0x2) listen$auto(0x3, 0x20081) 3.086683768s ago: executing program 2 (id=854): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x8020009, 0xe2, 0xcb1, 0x401, 0x8040001008000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kcore\x00', 0x101000, 0x0) sendfile$auto(0x3, r2, 0x0, 0x400000000006) 2.965591253s ago: executing program 3 (id=856): socket(0xa, 0x5, 0x0) listen$auto(0x3, 0x81) shutdown$auto(0x200000003, 0x2) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) ioctl$auto(0x3, 0xae41, 0x38) r1 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f000000c380)={0x60, 0x1, 0x100000, 0x7fffffffefff, 0x0, 0x1, 0x6, 0xfffffffffffffffb, 0x0, 0x8, 0x0, 0x9}) listen$auto(0x3, 0x20081) 2.3754438s ago: executing program 2 (id=857): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) r1 = ioctl$auto_TIOCGPTPEER2(r0, 0x5441, 0x0) (async) r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/008/001\x00', 0x2101, 0x0) ioctl$auto_USBDEVFS_RELEASEINTERFACE(r2, 0x80045510, 0x0) (async) sendmsg$auto_IPVS_CMD_ZERO(r1, &(0x7f0000000bc0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000340)={&(0x7f0000000800)={0x394, 0x0, 0x100, 0x70bd2c, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DAEMON={0x4}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x6fa}, @IPVS_CMD_ATTR_DAEMON={0x351, 0x3, 0x0, 0x1, [@typed={0xc, 0xed, 0x0, 0x0, @u64=0xf69}, @nested={0x89, 0x151, 0x0, 0x1, [@generic="f387c7e6de0490002f1d1e5169d29aee159f73bae39541aefd4af2a36625281404041d7d8e023d69a74883474f6cc8758d43bbcc", @generic="d952cf3352297102c81816825197f581411eac49fe6d30e4e69ad11ed842f2070dab130eb093b8684e73fe704e6c786ae3feebca671e19e3f0031a767307da7608938bf08f18a88356af89d37b1e8e75ed"]}, @generic="d8b5a958f78cb92c1c2631c02c9ba48900fef5d4329789f9986400b878fd445411f9e6e7f7f2c6", @typed={0x8, 0x9b, 0x0, 0x0, @uid}, @typed={0x8, 0x4a, 0x0, 0x0, @ipv4=@empty}, @nested={0x182, 0x124, 0x0, 0x1, [@generic="ac99e2e0651b7cceab9e0b0882846fc11bc56dae37719ee70ad9ab64d6485fb4d76f882b447622dfcd3489b34a17ee12bd9e12d26ad8311a7a75f5ab4bf9fe38f497c965d927b59be75ca3bd7c51c47ee074c734e138f71bbd816daf9026cd3653767b0550ac1cb5587eb5a8935344004b08d4338036f47531efe3986ea54fed2b0f6ac45a4b7c3028ef18c4722fcf45bd69d8e4bc2b2142cbd2b6989f247cdc4407dae2b9a43d0ace5e928c", @generic="282d3e62de69c153c6dfbc679454ff87cbfa1a86f80eb7551a05db6aea2993ff2ad0dfff1d56be479d9c704e1dc934e13f18d9a1dd24c79ffa4aeabcb271744ca9f7a3241dc2676ee50c96538a5cb0df853208d3117bec9653f624cec5ca579ccbdac3e8d504df26fb885a690e1a00ab7ee264b3c8544bad036ef840a4e3b603f22b5bde8e20fce0907de14cc3f879c6bec40805d2952c5d02c25ee50ea9afa49166f01b00b46b70d932815b99d9331af3ab20b794c944da92bb0fb1fcd89e1e", @typed={0x8, 0x2e, 0x0, 0x0, @pid}, @nested={0x4, 0x2b}, @generic="dcd7", @generic="b844ad32"]}, @typed={0x8, 0x85, 0x0, 0x0, @fd=r2}, @generic="20f6880d232d6d722bab92c24f5b25e5b8ff599c61ab9ad9aaad3f605c2a548a5348e3540d92eaf438fe180047c2611310782894d2c86d2fa7f14a607b7728cec5094b275e08a1564a204cf57710c6dd995080a683e2a0b1ceac5c1279e16b858dadc75e2e585443d8083de7fdc50df37b210604e6f5a59ef38a9d2e02670ec4f2a3b34abc5bca53ce454717", @nested={0x18, 0xd5, 0x0, 0x1, [@typed={0x8, 0xf3, 0x0, 0x0, @uid}, @nested={0x4, 0x100}, @typed={0x8, 0x67, 0x0, 0x0, @uid}]}, @generic="60335bf5a5be90ae72f76a2dbd035354b5718b302addf6cb7702cccc743138bb9d8ec4e07ebf4cd89f1b12a68898cf77522946f96365b4d128d34a4aa04f296f0e1c5106d325501f3e97e8508ad4"]}, @IPVS_CMD_ATTR_SERVICE={0x10, 0x1, 0x0, 0x1, [@typed={0xc, 0x80, 0x0, 0x0, @u64=0x5}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xc}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8}]}, 0x394}, 0x1, 0x0, 0x0, 0x800}, 0x44) (async) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x80102, 0x0) socket(0x28, 0x80000, 0x400) mount$auto(0x0, 0x0, 0x0, 0x3379, 0x0) (async) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) (async) r3 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r3, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x7ffffffff000, 0x7fffffffefff, 0x2, 0x2, 0x0, 0x50b301a, 0x2c, 0x2c, 0x4}) mmap$auto(0x0, 0x400008, 0x8, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) (async) close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002) (async) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) capget$auto(0x0, 0xfffffffffffffffe) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$auto_SMC_NETLINK_ADD_UEID(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x1c, r6, 0x1, 0x70bd2b, 0x25dfdbfb, {}, [@SMC_NLA_EID_TABLE_ENTRY={0x5, 0x1, '['}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4880}, 0x8092) sendmsg$auto_SMC_NETLINK_DISABLE_HS_LIMITATION(r1, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x44, r6, 0x0, 0x70bd2d, 0x25dfdbfc, {}, "3c213831631f4cff55fefae6232599007ec260cbd2216affc5310f39aafa1d921df294cab6f64dbcff1800703c"}, 0x44}, 0x1, 0x0, 0x0, 0x44000}, 0x1) (async) r7 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r4, 0x4b72, r7) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/platform/dummy_hcd.7/usb8/power/level\x00', 0x100, 0x0) r8 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000500)='/dev/bus/usb/023/001\x00', 0x201, 0x0) ioctl$auto_USBDEVFS_DISCONNECT_CLAIM(r8, 0x8108551b, &(0x7f0000000540)={0x0, 0x6, "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"}) madvise$auto(0x0, 0x2000040080000004, 0xe) read$auto(0x3, 0x0, 0x80) 2.366004174s ago: executing program 0 (id=858): sendmsg$auto_NL80211_CMD_NEW_STATION(0xffffffffffffffff, 0x0, 0x40) r0 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)={0x30, r0, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x44000884}, 0xc880) sendmsg$auto_BATADV_CMD_GET_HARDIF(0xffffffffffffffff, 0x0, 0x4840) syncfs$auto(0xffffffffffffffff) r2 = io_uring_setup$auto(0x59, 0x0) mmap$auto(0x0, 0x8020009, 0xe2, 0xcb1, 0x401, 0x8040001008000) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) mmap$auto(0x0, 0x10000, 0x4000000000db, 0xeb1, 0x2, 0x8000) read$auto(r3, 0x0, 0x20) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), r6) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000001c0)={'wlan0\x00'}) sendmsg$auto_NL80211_CMD_DEL_TX_TS(r2, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000240)={0x9c, r7, 0x200, 0x70bd2a, 0x25dfdbff, {}, [@NL80211_ATTR_MNTR_FLAGS={0x85, 0x17, "13fab612156f03ff7fccc8384249bb36d7bd41f877b1be4a83010e95bb20f0fffff7b18e758535fd5b6c4235280bb524c2b55ba5fbf379e9598b8da66e15c0c6fc4b4f39fd116057c4b16ed30506b51ff3c21e7d10c0e02fbaa35148ff506c130822c3d83a667adc165e275b16474f1cc7be96b5835bc4651c9324614cc54b5ad3"}]}, 0x9c}, 0x1, 0x0, 0x0, 0x20000040}, 0x24000880) sendmsg$auto_OVS_DP_CMD_NEW(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001300)={0x34, 0x0, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x8, 0x1, '.SR\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}, @OVS_DP_ATTR_MASKS_CACHE_SIZE={0x8, 0x7, 0x4}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000800}, 0x80) 2.330973085s ago: executing program 1 (id=859): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2b, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/user\x00') mmap$auto(0x0, 0x400007, 0x19dc, 0x13, 0x2, 0x7fff) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x31, 0x8000, 0x1ffde, 0x1, 0x2, 0x1, 0x9, 0x3, 0x5, 0x8, 0x3002, 0x9, 0xb, 0x80010002, 0x80, 0x400, 0x0, 0x7, 0x2, 0x203, 0x400, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x3]}, 0x1fe, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="3c361346", @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x24008000) mmap$auto(0x0, 0xfb1, 0xffffffff, 0x9b72, 0x2, 0x8000) close_range$auto(r0, 0xffffffffffffffff, 0x6) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x18, r2, 0x1, 0x70bd2c, 0x25dfdbfe, {}, [@HWSIM_ATTR_MULTI_RADIO={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, 0x0, 0x8000) r3 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0xfe, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) 2.246032282s ago: executing program 0 (id=860): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 64) socket(0x2, 0x3, 0x4) (async, rerun: 64) io_uring_setup$auto(0x6, 0x0) r0 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/block/loop8/hctx0/type\x00', 0x80, 0x0) read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r0, &(0x7f0000000280)=""/81, 0x8f) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) (async) r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0) (async) connect$auto(0x3, &(0x7f00000001c0)=@in={0x2, 0x4e24, @remote}, 0x55) (async) write$auto(0x3, 0x0, 0xfdef) (async) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_IPVS_CMD_NEW_SERVICE(r2, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2c08}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x28, 0x0, 0x200, 0x70bd28, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@nested={0xc, 0x77, 0x0, 0x1, [@generic="3fbad94ffb1b050f"]}, @typed={0x4, 0x21}]}]}, 0x28}}, 0x50) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async) socket(0xa, 0x1, 0x0) socket(0x2, 0x1, 0x106) (async, rerun: 32) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, 0x0, 0x400, 0x0) (async, rerun: 32) setsockopt$auto(0x1, 0x1, 0x4, 0x0, 0xbb) close_range$auto(0x2, 0x8, 0x0) 2.185823711s ago: executing program 3 (id=861): socket$nl_generic(0x10, 0x3, 0x10) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x202, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) signalfd$auto(0xffffffffffffffff, 0x0, 0x8) socket(0x1d, 0x2, 0x6) io_uring_setup$auto(0x6, 0x0) io_uring_setup$auto(0x6, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/036/001\x00', 0x22101, 0x0) io_uring_setup$auto(0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) socketpair$auto(0x4004, 0xf, 0x4, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) ioctl$auto_TCFLSH2(r0, 0x540b, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x2) sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(0xffffffffffffffff, 0x0, 0x20000001) syz_clone(0x20000, 0x0, 0x0, 0x0, 0x0, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008000) close_range$auto(0x2, 0x8, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty0\x00', 0x0, 0x0) openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/fail_io_timeout/probability\x00', 0x20000, 0x0) 2.076465061s ago: executing program 1 (id=862): unshare$auto(0x40000080) mmap$auto(0x0, 0x20009, 0x4400000000df, 0xc157, 0x101000000000000, 0x7) r0 = prctl$auto(0x9, 0x1, 0x0, 0x1, 0x1) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) socket(0x2, 0x1, 0x0) sendmsg$auto_NL80211_CMD_SET_INTERFACE(r0, 0x0, 0x4000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000840)='/proc/sys/vm/dirty_background_ratio\x00', 0x80000, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x100, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0xa, 0x3, 0x3, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0x8000]}, 0x0) sched_get_priority_min$auto(0x40) socket(0x2, 0xa, 0x0) mmap$auto(0x0, 0x8, 0x3, 0x9b72, 0x2, 0x8000) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000200)='/dev/input/event0\x00', 0x8880, 0x0) getsockopt$auto(0x3, 0x200000000001, 0x19, 0x0, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) unshare$auto(0x40000080) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) faccessat2$auto(0x1, 0x0, 0x4, 0x1000) write$auto(0xca, &(0x7f0000000000)='\x04>\x01\x01\x00\x00\x00\x01\x00\xb6', 0x7f) 1.817752538s ago: executing program 0 (id=863): r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) (async, rerun: 32) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) (rerun: 32) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) (async) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) (async) r2 = socket(0x10, 0x80000, 0x0) sendmsg$auto_NL80211_CMD_ADD_LINK(r2, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000180)={&(0x7f0000001200)=ANY=[@ANYBLOB='t\a\x00\x00', @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="3e07f15ae82a3607340f88447242c30e29ea66273b03e2a8befa86de9cbe625356e5bfcc2870d3f2", @ANYRES32=r0, @ANYBLOB="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"], 0x774}, 0x1, 0x0, 0x0, 0x3593f30b12424ae3}, 0x14) sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000100), r2) (async) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) (async, rerun: 32) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (rerun: 32) sysfs$auto(0x202, 0x10000000000000b, 0x0) r4 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x40080, 0x0) ioctl$auto_UI_DEV_SETUP(r4, 0x405c5503, 0x0) (async) syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f00000000c0), 0xffffffffffffffff) (async) close_range$auto(0x2, 0x8, 0x0) (async) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0) memfd_secret$auto(0x7) mmap$auto(0x0, 0x400008, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async) io_uring_setup$auto(0x6, 0x0) (async) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0) (async, rerun: 32) madvise$auto(0x0, 0x200007, 0x19) (async, rerun: 32) mmap$auto(0x0, 0x408, 0x3, 0x20000000eb1, 0x401, 0x4000008000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60840, 0x0) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x17) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) 1.037903834s ago: executing program 3 (id=864): r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r1, &(0x7f0000000580)={0x0, 0x9eff, &(0x7f0000000540)={&(0x7f0000000400)={0x14, r0, 0x1, 0x70bd2d, 0x25dfdbfc, {0x7e, 0x0, 0x1400}}, 0x14}, 0x1, 0x68, 0x0, 0x4000000}, 0x0) 955.11192ms ago: executing program 2 (id=865): r0 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)={0x30, r0, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x44000884}, 0xc880) sendmsg$auto_BATADV_CMD_GET_HARDIF(0xffffffffffffffff, 0x0, 0x4840) syncfs$auto(0xffffffffffffffff) r2 = io_uring_setup$auto(0x59, 0x0) mmap$auto(0x0, 0x8020009, 0xe2, 0xcb1, 0x401, 0x8040001008000) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) mmap$auto(0x0, 0x10000, 0x4000000000db, 0xeb1, 0x2, 0x8000) read$auto(r3, 0x0, 0x20) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), r6) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000980)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="2f212cbd7000fc39ad872c00000008000300", @ANYRES32=r8], 0x40}}, 0x4000000) sendmsg$auto_NL80211_CMD_DEL_TX_TS(r2, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000240)={0x9c, r7, 0x200, 0x70bd2a, 0x25dfdbff, {}, [@NL80211_ATTR_MNTR_FLAGS={0x85, 0x17, "13fab612156f03ff7fccc8384249bb36d7bd41f877b1be4a83010e95bb20f0fffff7b18e758535fd5b6c4235280bb524c2b55ba5fbf379e9598b8da66e15c0c6fc4b4f39fd116057c4b16ed30506b51ff3c21e7d10c0e02fbaa35148ff506c130822c3d83a667adc165e275b16474f1cc7be96b5835bc4651c9324614cc54b5ad3"}]}, 0x9c}, 0x1, 0x0, 0x0, 0x20000040}, 0x24000880) r9 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001300)={0x34, r9, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x8, 0x1, '.SR\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}, @OVS_DP_ATTR_MASKS_CACHE_SIZE={0x8, 0x7, 0x4}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000800}, 0x80) 918.764627ms ago: executing program 1 (id=866): mmap$auto(0x0, 0x8020009, 0xe2, 0xcb1, 0x401, 0x8040001008000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kcore\x00', 0x101000, 0x0) sendfile$auto(0x3, r2, 0x0, 0x400000000006) 368.998606ms ago: executing program 2 (id=867): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) ioperm$auto(0x7, 0x6, 0xffffffff) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) r0 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0) getdents64$auto(r0, 0x0, 0x400) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x2a, 0x2, 0x88) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'team0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r3, r2, 0x4, 0x1, r1, @relative_id=0x13, 0xe600}, 0xf) r4 = open(0x0, 0x261c2, 0x84) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r4, 0x0, 0x3}, 0xc) socket(0x2, 0x1, 0x106) bind$auto(0x3, 0x0, 0x6a) syz_clone3(&(0x7f00000001c0)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) r5 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) fcntl$auto(r5, 0x400, 0x1) truncate$auto(&(0x7f0000000080)='./file0\x00', 0x7f) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r6 = open(&(0x7f00000000c0)='./cgroup\x00', 0x0, 0xb5d1af1605322df2) syz_clone3(&(0x7f0000000200)={0x203280080, 0x0, 0x0, 0x0, {0x1d}, 0x0, 0x0, 0x0, 0x0, 0x0, {r6}}, 0x58) 356.30186ms ago: executing program 1 (id=868): mkdir$auto(&(0x7f0000000000)='./cgroup/../file0\x00', 0x1) 213.858099ms ago: executing program 1 (id=869): sendmsg$auto_NL80211_CMD_NEW_STATION(0xffffffffffffffff, 0x0, 0x40) r0 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)={0x30, r0, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x44000884}, 0xc880) sendmsg$auto_BATADV_CMD_GET_HARDIF(0xffffffffffffffff, 0x0, 0x4840) syncfs$auto(0xffffffffffffffff) r2 = io_uring_setup$auto(0x59, 0x0) mmap$auto(0x0, 0x8020009, 0xe2, 0xcb1, 0x401, 0x8040001008000) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) mmap$auto(0x0, 0x10000, 0x4000000000db, 0xeb1, 0x2, 0x8000) read$auto(r3, 0x0, 0x20) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), r6) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000001c0)={'wlan0\x00'}) sendmsg$auto_NL80211_CMD_DEL_TX_TS(r2, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000240)={0x9c, r7, 0x200, 0x70bd2a, 0x25dfdbff, {}, [@NL80211_ATTR_MNTR_FLAGS={0x85, 0x17, "13fab612156f03ff7fccc8384249bb36d7bd41f877b1be4a83010e95bb20f0fffff7b18e758535fd5b6c4235280bb524c2b55ba5fbf379e9598b8da66e15c0c6fc4b4f39fd116057c4b16ed30506b51ff3c21e7d10c0e02fbaa35148ff506c130822c3d83a667adc165e275b16474f1cc7be96b5835bc4651c9324614cc54b5ad3"}]}, 0x9c}, 0x1, 0x0, 0x0, 0x20000040}, 0x24000880) sendmsg$auto_OVS_DP_CMD_NEW(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001300)={0x34, 0x0, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x8, 0x1, '.SR\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}, @OVS_DP_ATTR_MASKS_CACHE_SIZE={0x8, 0x7, 0x4}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000800}, 0x80) 152.156819ms ago: executing program 0 (id=870): socket(0x10, 0x2, 0x4) openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x2, 0x88) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x101000, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) close_range$auto(0x2, r0, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_CREATE_VM(r0, 0x4008ae9c, 0x0) r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x60800, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(r2, 0xc4c85513, &(0x7f0000000340)={{@raw=0x7, 0x7, 0x8, 0x0, "708c58271a7985a7f5ed0dd58af8d149fc53d81fd4a7553c2ff48b48a8a57689adcc1ca6d2cbfa93b50590c9"}, 0x0, @bytes=@data="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", "fa491e08108961dd5708680f1134935851612a52d629535f54f3832490fc4e7f79daef312b3df3307044713a4801d409aefe3f932f78fc311771094e769c0095f94ee6d74f2517f34a0bbbf502bf3392ac4d93bde5f733ba936c0890312cf035bc44117db9b683eedc5e02a703fc82750d8d6ebac0c3019ef8e6c1eecea33a59"}) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3ff, 0x4}, 0x7f, 0x0, 0x0, 0x8) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/environ\x00', 0x2000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/net/rose9/ifindex\x00', 0x2000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/007/001\x00', 0xa901, 0x0) ioctl$auto_USBDEVFS_SUBMITURB32(r3, 0x802c550a, &(0x7f0000000300)=ANY=[@ANYBLOB="020000060000e6ff0400000001004000"]) ioctl$auto(r3, 0x4008550c, r3) 114.609859ms ago: executing program 2 (id=871): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xab1, 0x401, 0x8000) close_range$auto(0xffffffffffffffff, 0x8000, 0x0) openat$auto_hwsim_fops_rx_rssi_(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) r0 = fanotify_init$auto(0x10000, 0xfffffffe) socket$nl_generic(0x10, 0x3, 0x10) socket(0x26, 0x80805, 0x0) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) pidfd_getfd$auto(r0, 0x1, 0xfffffffb) openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000002640)='/sys/kernel/debug/tracing/set_event_pid\x00', 0x2002, 0x0) mmap$auto(0x0, 0x1, 0xe1, 0xeb1, 0x401, 0x8000) r1 = open(&(0x7f0000000180)='./file1\x00', 0x8440, 0x1d4) getdents64$auto(0xffffffffffffffff, 0x0, 0x400) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sg1\x00', 0x208000, 0x0) ioctl$auto_SW_SYNC_GET_DEADLINE(r1, 0xc0105702, 0x0) mmap$auto(0x9, 0x4, 0x2000002, 0x15, 0xffffffffffffffff, 0x2) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='*\x00%'], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4) sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0x8}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kcore\x00', 0x101000, 0x0) read$auto_proc_iter_file_ops_compat_inode(r3, &(0x7f0000000080)=""/4107, 0xfdef) symlink$auto(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000040)='./file0\x00') mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/conf/veth1_to_team/rp_filter\x00', 0x141241, 0x0) mmap$auto(0x0, 0x2020009, 0x2000000000000003, 0xeb1, 0xfffffffffffffffa, 0x8000) fsopen$auto(0x0, 0x1) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r4, 0x4bfa, r4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) 95.194932ms ago: executing program 1 (id=872): r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/fb0\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x1, 0x84) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x2, 0x0) r3 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r3, &(0x7f0000000040)='nbd\x00', 0x4) (fail_nth: 2) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0) r4 = fanotify_init$auto(0xfffffffb, 0xffff) ioctl$auto(0x3, 0x541b, 0xfffffffffffff4e0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x0, 0x3, 0xde, 0x10, r0, 0x8000) close_range$auto(r0, r1, 0xc) io_uring_setup$auto(0x6, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/vulnerabilities/mmio_stale_data\x00', 0x0, 0x0) mmap$auto(0x0, 0x9, 0x3, 0x8012, 0x3, 0x8000) io_uring_register$auto(0x2, 0xe, 0x0, 0x20) write$auto(r5, &(0x7f0000000100)='/d-:\xe7J\x00'/23, 0x1eb0800) mmap$auto(0x0, 0x0, 0x400000dc, 0x937e, 0x2, 0x8000) prctl$auto_PR_PPC_SET_DEXCR(0x49, 0x8, 0x0, 0x3, 0x4) unshare$auto(0x40000080) r6 = socket(0xa, 0x3, 0x3a) mmap$auto(0x0, 0xdb81, 0x2, 0x40eb1, 0xffffffffffffffff, 0x300000000000) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r6, &(0x7f0000000000)={0x0, 0xba, 0x0}, 0x2000c000) r7 = eventfd$auto(0x80) readv$auto(r7, &(0x7f0000000380)={0x0, 0x8}, 0x4) openat$auto_event_inject_fops_trace(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/inject\x00', 0x2, 0x0) close_range$auto(r2, r4, 0x5) 0s ago: executing program 3 (id=873): r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/fb0\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x1, 0x84) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x2, 0x0) r2 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r2, &(0x7f0000000040)='nbd\x00', 0x4) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0) fanotify_init$auto(0xfffffffb, 0xffff) ioctl$auto(0x3, 0x541b, 0xfffffffffffff4e0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x0, 0x3, 0xde, 0x10, r0, 0x8000) close_range$auto(r0, r1, 0xc) io_uring_setup$auto(0x6, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/vulnerabilities/mmio_stale_data\x00', 0x0, 0x0) mmap$auto(0x0, 0x9, 0x3, 0x8012, 0x3, 0x8000) io_uring_register$auto(0x2, 0xe, 0x0, 0x20) write$auto(r3, &(0x7f0000000100)='/d-:\xe7J\x00'/23, 0x1eb0800) mmap$auto(0x0, 0x0, 0x400000dc, 0x937e, 0x2, 0x8000) prctl$auto_PR_PPC_SET_DEXCR(0x49, 0x8, 0x0, 0x3, 0x4) unshare$auto(0x40000080) r4 = socket(0xa, 0x3, 0x3a) mmap$auto(0x0, 0xdb81, 0x2, 0x40eb1, 0xffffffffffffffff, 0x300000000000) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r4, &(0x7f0000000000)={0x0, 0xba, 0x0}, 0x2000c000) r5 = eventfd$auto(0x80) readv$auto(r5, &(0x7f0000000380)={0x0, 0x8}, 0x4) openat$auto_event_inject_fops_trace(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/inject\x00', 0x2, 0x0) kernel console output (not intermixed with test programs): .035278][ T8165] should_failslab+0xc2/0x120 [ 252.035304][ T8165] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 252.035344][ T8165] ? genl_family_rcv_msg_doit+0xbf/0x2f0 [ 252.035369][ T8165] ? genl_rcv_msg+0x55c/0x800 [ 252.035393][ T8165] ? __alloc_skb+0x2b2/0x380 [ 252.035426][ T8165] ? ____sys_sendmsg+0xa95/0xc70 [ 252.035454][ T8165] __alloc_skb+0x2b2/0x380 [ 252.035488][ T8165] ? __pfx___alloc_skb+0x10/0x10 [ 252.035534][ T8165] netlink_ack+0x15d/0xb80 [ 252.035574][ T8165] ? find_held_lock+0x2b/0x80 [ 252.035609][ T8165] ? hsr_get_node_status+0x2a2/0xd70 [ 252.035647][ T8165] hsr_get_node_status+0x2eb/0xd70 [ 252.035684][ T8165] ? __pfx_hsr_get_node_status+0x10/0x10 [ 252.035727][ T8165] ? trc_wait_for_one_reader.part.0+0x310/0x580 [ 252.035782][ T8165] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 252.035811][ T8165] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 252.035845][ T8165] genl_family_rcv_msg_doit+0x206/0x2f0 [ 252.035875][ T8165] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 252.035902][ T8165] ? genl_get_cmd+0x194/0x580 [ 252.035954][ T8165] ? __local_bh_enable_ip+0xa4/0x120 [ 252.035990][ T8165] ? __dev_queue_xmit+0x896/0x43e0 [ 252.036036][ T8165] ? __radix_tree_lookup+0x21f/0x2c0 [ 252.036085][ T8165] genl_rcv_msg+0x55c/0x800 [ 252.036129][ T8165] ? __pfx_genl_rcv_msg+0x10/0x10 [ 252.036159][ T8165] ? __pfx___dev_queue_xmit+0x10/0x10 [ 252.036195][ T8165] ? __pfx_hsr_get_node_status+0x10/0x10 [ 252.036238][ T8165] ? __lock_acquire+0xaa4/0x1ba0 [ 252.036275][ T8165] netlink_rcv_skb+0x16a/0x440 [ 252.036323][ T8165] ? __pfx_genl_rcv_msg+0x10/0x10 [ 252.036358][ T8165] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 252.036426][ T8165] ? __pfx_down_read+0x10/0x10 [ 252.036458][ T8165] ? netlink_deliver_tap+0x1ae/0xd30 [ 252.036509][ T8165] genl_rcv+0x28/0x40 [ 252.036557][ T8165] netlink_unicast+0x53a/0x7f0 [ 252.036609][ T8165] ? __pfx_netlink_unicast+0x10/0x10 [ 252.036653][ T8165] ? __lock_acquire+0xaa4/0x1ba0 [ 252.036694][ T8165] netlink_sendmsg+0x8d1/0xdd0 [ 252.036749][ T8165] ? __pfx_netlink_sendmsg+0x10/0x10 [ 252.036814][ T8165] ____sys_sendmsg+0xa95/0xc70 [ 252.036847][ T8165] ? copy_msghdr_from_user+0x10a/0x160 [ 252.036889][ T8165] ? __pfx_____sys_sendmsg+0x10/0x10 [ 252.036940][ T8165] ___sys_sendmsg+0x134/0x1d0 [ 252.036985][ T8165] ? __pfx____sys_sendmsg+0x10/0x10 [ 252.037080][ T8165] __sys_sendmsg+0x16d/0x220 [ 252.037130][ T8165] ? __pfx___sys_sendmsg+0x10/0x10 [ 252.037211][ T8165] do_syscall_64+0xcd/0x260 [ 252.037266][ T8165] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 252.037293][ T8165] RIP: 0033:0x7f37efb8e169 [ 252.037314][ T8165] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 252.037340][ T8165] RSP: 002b:00007f37ed9f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 252.037365][ T8165] RAX: ffffffffffffffda RBX: 00007f37efdb6080 RCX: 00007f37efb8e169 [ 252.037383][ T8165] RDX: 00000000000000c0 RSI: 0000200000001340 RDI: 0000000000000003 [ 252.037399][ T8165] RBP: 00007f37ed9f6090 R08: 0000000000000000 R09: 0000000000000000 [ 252.037415][ T8165] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 252.037430][ T8165] R13: 0000000000000001 R14: 00007f37efdb6080 R15: 00007ffdfb160b28 [ 252.037465][ T8165] [ 253.403066][ T8172] openvswitch: .SR: Dropping previously announced user features [ 253.735937][ T8183] netlink: 28 bytes leftover after parsing attributes in process `syz.3.596'. [ 254.597759][ T8195] FAULT_INJECTION: forcing a failure. [ 254.597759][ T8195] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 254.617760][ T8195] CPU: 1 UID: 0 PID: 8195 Comm: syz.2.598 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 254.617810][ T8195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 254.617826][ T8195] Call Trace: [ 254.617835][ T8195] [ 254.617845][ T8195] dump_stack_lvl+0x16c/0x1f0 [ 254.617896][ T8195] should_fail_ex+0x512/0x640 [ 254.617931][ T8195] _copy_from_iter+0x2a4/0x15b0 [ 254.617968][ T8195] ? __alloc_skb+0x200/0x380 [ 254.618002][ T8195] ? __pfx__copy_from_iter+0x10/0x10 [ 254.618039][ T8195] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 254.618078][ T8195] ? __lock_acquire+0xaa4/0x1ba0 [ 254.618112][ T8195] netlink_sendmsg+0x829/0xdd0 [ 254.618158][ T8195] ? __pfx_netlink_sendmsg+0x10/0x10 [ 254.618211][ T8195] ____sys_sendmsg+0xa95/0xc70 [ 254.618237][ T8195] ? copy_msghdr_from_user+0x10a/0x160 [ 254.618272][ T8195] ? __pfx_____sys_sendmsg+0x10/0x10 [ 254.618304][ T8195] ? __pfx__kstrtoull+0x10/0x10 [ 254.618351][ T8195] ___sys_sendmsg+0x134/0x1d0 [ 254.618389][ T8195] ? __pfx____sys_sendmsg+0x10/0x10 [ 254.618441][ T8195] ? find_held_lock+0x2b/0x80 [ 254.618496][ T8195] __sys_sendmmsg+0x200/0x420 [ 254.618537][ T8195] ? __pfx___sys_sendmmsg+0x10/0x10 [ 254.618584][ T8195] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 254.618636][ T8195] ? fput+0x70/0xf0 [ 254.618661][ T8195] ? ksys_write+0x1b9/0x240 [ 254.618697][ T8195] ? __pfx_ksys_write+0x10/0x10 [ 254.618736][ T8195] ? rcu_is_watching+0x12/0xc0 [ 254.618775][ T8195] __x64_sys_sendmmsg+0x9c/0x100 [ 254.618811][ T8195] ? lockdep_hardirqs_on+0x7c/0x110 [ 254.618848][ T8195] do_syscall_64+0xcd/0x260 [ 254.618898][ T8195] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 254.618925][ T8195] RIP: 0033:0x7f37efb8e169 [ 254.618946][ T8195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 254.618972][ T8195] RSP: 002b:00007f37f0919038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 254.618998][ T8195] RAX: ffffffffffffffda RBX: 00007f37efdb5fa0 RCX: 00007f37efb8e169 [ 254.619016][ T8195] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 254.619031][ T8195] RBP: 00007f37f0919090 R08: 0000000000000000 R09: 0000000000000000 [ 254.619047][ T8195] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 254.619062][ T8195] R13: 0000000000000000 R14: 00007f37efdb5fa0 R15: 00007ffdfb160b28 [ 254.619095][ T8195] [ 255.867054][ T8202] netlink: 36 bytes leftover after parsing attributes in process `syz.0.600'. [ 255.878836][ T8202] FAULT_INJECTION: forcing a failure. [ 255.878836][ T8202] name failslab, interval 1, probability 0, space 0, times 0 [ 255.891628][ T8202] CPU: 0 UID: 0 PID: 8202 Comm: syz.0.600 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 255.891666][ T8202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 255.891683][ T8202] Call Trace: [ 255.891693][ T8202] [ 255.891704][ T8202] dump_stack_lvl+0x16c/0x1f0 [ 255.891751][ T8202] should_fail_ex+0x512/0x640 [ 255.891785][ T8202] ? __kmalloc_noprof+0xbf/0x510 [ 255.891832][ T8202] ? ovs_vport_set_upcall_portids+0xfc/0x2f0 [ 255.891879][ T8202] should_failslab+0xc2/0x120 [ 255.891907][ T8202] __kmalloc_noprof+0xd2/0x510 [ 255.891961][ T8202] ovs_vport_set_upcall_portids+0xfc/0x2f0 [ 255.892014][ T8202] ovs_vport_alloc+0x28c/0x3d0 [ 255.892065][ T8202] internal_dev_create+0x25/0x520 [ 255.892094][ T8202] ovs_vport_add+0x144/0x4d0 [ 255.892144][ T8202] new_vport+0x16/0x1d0 [ 255.892193][ T8202] ovs_dp_cmd_new+0x6ba/0xe60 [ 255.892241][ T8202] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 255.892289][ T8202] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 255.892319][ T8202] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 255.892359][ T8202] genl_family_rcv_msg_doit+0x206/0x2f0 [ 255.892391][ T8202] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 255.892419][ T8202] ? trace_cap_capable+0x18d/0x200 [ 255.892456][ T8202] ? bpf_lsm_capable+0x9/0x10 [ 255.892504][ T8202] ? security_capable+0x7e/0x260 [ 255.892533][ T8202] ? ns_capable+0xd7/0x110 [ 255.892572][ T8202] genl_rcv_msg+0x55c/0x800 [ 255.892604][ T8202] ? __pfx_genl_rcv_msg+0x10/0x10 [ 255.892629][ T8202] ? __pfx___dev_queue_xmit+0x10/0x10 [ 255.892658][ T8202] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 255.892698][ T8202] ? __lock_acquire+0xaa4/0x1ba0 [ 255.892729][ T8202] netlink_rcv_skb+0x16a/0x440 [ 255.892768][ T8202] ? __pfx_genl_rcv_msg+0x10/0x10 [ 255.892797][ T8202] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 255.892856][ T8202] ? __pfx_down_read+0x10/0x10 [ 255.892884][ T8202] ? netlink_deliver_tap+0x1ae/0xd30 [ 255.892928][ T8202] genl_rcv+0x28/0x40 [ 255.892970][ T8202] netlink_unicast+0x53a/0x7f0 [ 255.893014][ T8202] ? __pfx_netlink_unicast+0x10/0x10 [ 255.893052][ T8202] ? __lock_acquire+0xaa4/0x1ba0 [ 255.893087][ T8202] netlink_sendmsg+0x8d1/0xdd0 [ 255.893132][ T8202] ? __pfx_netlink_sendmsg+0x10/0x10 [ 255.893186][ T8202] ____sys_sendmsg+0xa95/0xc70 [ 255.893212][ T8202] ? copy_msghdr_from_user+0x10a/0x160 [ 255.893247][ T8202] ? __pfx_____sys_sendmsg+0x10/0x10 [ 255.893287][ T8202] ___sys_sendmsg+0x134/0x1d0 [ 255.893326][ T8202] ? __pfx____sys_sendmsg+0x10/0x10 [ 255.893407][ T8202] __sys_sendmsg+0x16d/0x220 [ 255.893445][ T8202] ? __pfx___sys_sendmsg+0x10/0x10 [ 255.893481][ T8202] ? __x64_sys_futex+0x1e0/0x4c0 [ 255.893542][ T8202] ? rcu_is_watching+0x12/0xc0 [ 255.893587][ T8202] do_syscall_64+0xcd/0x260 [ 255.893631][ T8202] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 255.893660][ T8202] RIP: 0033:0x7fe80018e169 [ 255.893682][ T8202] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 255.893710][ T8202] RSP: 002b:00007fe800f36038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 255.893735][ T8202] RAX: ffffffffffffffda RBX: 00007fe8003b5fa0 RCX: 00007fe80018e169 [ 255.893752][ T8202] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000006 [ 255.893769][ T8202] RBP: 00007fe800210a68 R08: 0000000000000000 R09: 0000000000000000 [ 255.893785][ T8202] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 255.893801][ T8202] R13: 0000000000000000 R14: 00007fe8003b5fa0 R15: 00007ffd45b67588 [ 255.893834][ T8202] [ 256.468137][ T8209] netlink: 28 bytes leftover after parsing attributes in process `syz.0.603'. [ 256.720721][ T8209] bond0: (slave bond_slave_1): Releasing backup interface [ 257.248971][ T8229] netlink: 28 bytes leftover after parsing attributes in process `syz.2.606'. [ 257.250475][ T8232] FAULT_INJECTION: forcing a failure. [ 257.250475][ T8232] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 257.307911][ T8232] CPU: 0 UID: 0 PID: 8232 Comm: syz.0.609 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 257.307947][ T8232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 257.307962][ T8232] Call Trace: [ 257.307971][ T8232] [ 257.307981][ T8232] dump_stack_lvl+0x16c/0x1f0 [ 257.308023][ T8232] should_fail_ex+0x512/0x640 [ 257.308059][ T8232] _copy_to_user+0x32/0xd0 [ 257.308096][ T8232] simple_read_from_buffer+0xcb/0x170 [ 257.308134][ T8232] proc_fail_nth_read+0x197/0x270 [ 257.308171][ T8232] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 257.308210][ T8232] ? rw_verify_area+0xcf/0x680 [ 257.308241][ T8232] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 257.308278][ T8232] vfs_read+0x1de/0xc70 [ 257.308318][ T8232] ? __pfx___mutex_lock+0x10/0x10 [ 257.308357][ T8232] ? __pfx_vfs_read+0x10/0x10 [ 257.308410][ T8232] ? __fget_files+0x20e/0x3c0 [ 257.308457][ T8232] ksys_read+0x12a/0x240 [ 257.308494][ T8232] ? __pfx_ksys_read+0x10/0x10 [ 257.308540][ T8232] do_syscall_64+0xcd/0x260 [ 257.308582][ T8232] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 257.308610][ T8232] RIP: 0033:0x7fe80018cb7c [ 257.308630][ T8232] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 257.308657][ T8232] RSP: 002b:00007fe800f36030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 257.308679][ T8232] RAX: ffffffffffffffda RBX: 00007fe8003b5fa0 RCX: 00007fe80018cb7c [ 257.308695][ T8232] RDX: 000000000000000f RSI: 00007fe800f360a0 RDI: 0000000000000004 [ 257.308709][ T8232] RBP: 00007fe800f36090 R08: 0000000000000000 R09: 0000000000000000 [ 257.308723][ T8232] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 257.308736][ T8232] R13: 0000000000000000 R14: 00007fe8003b5fa0 R15: 00007ffd45b67588 [ 257.308767][ T8232] [ 258.130539][ T8245] netlink: 36 bytes leftover after parsing attributes in process `syz.2.611'. [ 260.096180][ T8278] can: request_module (can-proto-5) failed. [ 260.130770][ T8283] netlink: 4 bytes leftover after parsing attributes in process `syz.2.619'. [ 260.351072][ T8288] netlink: 28 bytes leftover after parsing attributes in process `syz.2.620'. [ 260.710435][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 260.718332][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 261.546404][ T5847] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 261.553886][ T5847] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection [ 262.026155][ T8311] FAULT_INJECTION: forcing a failure. [ 262.026155][ T8311] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 262.188974][ T8311] CPU: 1 UID: 0 PID: 8311 Comm: syz.0.625 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 262.189014][ T8311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 262.189031][ T8311] Call Trace: [ 262.189041][ T8311] [ 262.189052][ T8311] dump_stack_lvl+0x16c/0x1f0 [ 262.189100][ T8311] should_fail_ex+0x512/0x640 [ 262.189139][ T8311] should_fail_alloc_page+0xe7/0x130 [ 262.189171][ T8311] prepare_alloc_pages+0x3c2/0x610 [ 262.189214][ T8311] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 262.189260][ T8311] ? __pfx___page_table_check_zero+0x10/0x10 [ 262.189312][ T8311] ? get_page_from_freelist+0x133c/0x3920 [ 262.189360][ T8311] ? prep_compound_page+0x265/0x4e0 [ 262.189399][ T8311] ? post_alloc_hook+0x171/0x1b0 [ 262.189442][ T8311] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 262.189486][ T8311] ? get_page_from_freelist+0x1b95/0x3920 [ 262.189544][ T8311] ? __lock_acquire+0x5ca/0x1ba0 [ 262.189579][ T8311] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 262.189613][ T8311] ? policy_nodemask+0xea/0x4e0 [ 262.189645][ T8311] alloc_pages_mpol+0x1fb/0x550 [ 262.189674][ T8311] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 262.189714][ T8311] alloc_pages_noprof+0x131/0x390 [ 262.189744][ T8311] __pmd_alloc+0x3f/0x870 [ 262.189776][ T8311] ? find_held_lock+0x2b/0x80 [ 262.189817][ T8311] __handle_mm_fault+0x948/0x2a40 [ 262.189870][ T8311] ? __pfx___handle_mm_fault+0x10/0x10 [ 262.189940][ T8311] ? find_vma+0xbf/0x140 [ 262.189971][ T8311] ? __pfx_find_vma+0x10/0x10 [ 262.190000][ T8311] ? event_pid_write.isra.0+0x3cc/0x7c0 [ 262.190053][ T8311] handle_mm_fault+0x3fe/0xad0 [ 262.190102][ T8311] do_user_addr_fault+0x7a6/0x1370 [ 262.190142][ T8311] ? rcu_is_watching+0x12/0xc0 [ 262.190191][ T8311] exc_page_fault+0x5c/0xc0 [ 262.190249][ T8311] asm_exc_page_fault+0x26/0x30 [ 262.190277][ T8311] RIP: 0010:__get_user_1+0x14/0x30 [ 262.190311][ T8311] Code: cc cc cc cc 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 ba 00 f0 ff ff ff 7f 00 00 48 39 d0 48 0f 47 c2 0f 01 cb <0f> b6 10 31 c0 0f 01 ca c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 [ 262.190339][ T8311] RSP: 0018:ffffc90003c4fa00 EFLAGS: 00050287 [ 262.190362][ T8311] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffc90003c4f9a4 [ 262.190380][ T8311] RDX: 00007ffffffff000 RSI: ffffffff81c09674 RDI: ffffffff8bf45100 [ 262.190400][ T8311] RBP: ffffc90003c4fb38 R08: 1fd209281aaf230c R09: 0000000000000001 [ 262.190417][ T8311] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000 [ 262.190433][ T8311] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000007111 [ 262.190463][ T8311] ? trace_get_user+0xc4/0x990 [ 262.190500][ T8311] trace_get_user+0xd6/0x990 [ 262.190530][ T8311] ? __kasan_kmalloc+0xaa/0xb0 [ 262.190574][ T8311] ? trace_pid_list_alloc+0x303/0x3f0 [ 262.190623][ T8311] trace_pid_write+0x2a7/0x460 [ 262.190661][ T8311] ? __pfx_trace_pid_write+0x10/0x10 [ 262.190692][ T8311] ? __pfx___mutex_lock+0x10/0x10 [ 262.190739][ T8311] ? update_last_data+0xb3/0x480 [ 262.190796][ T8311] event_pid_write.isra.0+0x3cc/0x7c0 [ 262.190845][ T8311] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 262.190902][ T8311] ? __pfx_ftrace_event_pid_write+0x10/0x10 [ 262.190954][ T8311] vfs_writev+0x6c4/0xdc0 [ 262.190991][ T8311] ? __pfx___mutex_trylock_common+0x10/0x10 [ 262.191030][ T8311] ? __pfx_vfs_writev+0x10/0x10 [ 262.191067][ T8311] ? __mutex_lock+0x1ca/0xb90 [ 262.191120][ T8311] ? __pfx___mutex_lock+0x10/0x10 [ 262.191178][ T8311] ? __fget_files+0x20e/0x3c0 [ 262.191218][ T8311] ? __fget_files+0x180/0x3c0 [ 262.191270][ T8311] ? do_writev+0x132/0x330 [ 262.191305][ T8311] do_writev+0x132/0x330 [ 262.191342][ T8311] ? __pfx_do_writev+0x10/0x10 [ 262.191377][ T8311] ? rcu_is_watching+0x12/0xc0 [ 262.191425][ T8311] do_syscall_64+0xcd/0x260 [ 262.191472][ T8311] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 262.191501][ T8311] RIP: 0033:0x7fe80018e169 [ 262.191523][ T8311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 262.191551][ T8311] RSP: 002b:00007fe800f36038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 262.191576][ T8311] RAX: ffffffffffffffda RBX: 00007fe8003b5fa0 RCX: 00007fe80018e169 [ 262.191594][ T8311] RDX: 0000000000000008 RSI: 0000200000000100 RDI: 0000000000000003 [ 262.191610][ T8311] RBP: 00007fe800f36090 R08: 0000000000000000 R09: 0000000000000000 [ 262.191627][ T8311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 262.191643][ T8311] R13: 0000000000000000 R14: 00007fe8003b5fa0 R15: 00007ffd45b67588 [ 262.191681][ T8311] [ 263.483470][ T8328] netlink: 8 bytes leftover after parsing attributes in process `syz.1.629'. [ 264.574895][ T8328] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 264.841286][ T8345] FAULT_INJECTION: forcing a failure. [ 264.841286][ T8345] name failslab, interval 1, probability 0, space 0, times 0 [ 264.864898][ T8345] CPU: 1 UID: 0 PID: 8345 Comm: syz.1.631 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 264.864946][ T8345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 264.864964][ T8345] Call Trace: [ 264.864974][ T8345] [ 264.864985][ T8345] dump_stack_lvl+0x16c/0x1f0 [ 264.865036][ T8345] should_fail_ex+0x512/0x640 [ 264.865069][ T8345] ? __kmalloc_noprof+0xbf/0x510 [ 264.865119][ T8345] ? trace_parser_get_init+0x30/0xc0 [ 264.865151][ T8345] should_failslab+0xc2/0x120 [ 264.865180][ T8345] __kmalloc_noprof+0xd2/0x510 [ 264.865236][ T8345] trace_parser_get_init+0x30/0xc0 [ 264.865272][ T8345] ftrace_event_write+0x177/0x290 [ 264.865311][ T8345] ? __pfx_ftrace_event_write+0x10/0x10 [ 264.865366][ T8345] vfs_write+0x25c/0x1180 [ 264.865406][ T8345] ? __pfx_ftrace_event_write+0x10/0x10 [ 264.865450][ T8345] ? __pfx___mutex_lock+0x10/0x10 [ 264.865496][ T8345] ? __pfx_vfs_write+0x10/0x10 [ 264.865550][ T8345] ? __fget_files+0x20e/0x3c0 [ 264.865608][ T8345] ksys_write+0x12a/0x240 [ 264.865650][ T8345] ? __pfx_ksys_write+0x10/0x10 [ 264.865691][ T8345] ? rcu_is_watching+0x12/0xc0 [ 264.865741][ T8345] do_syscall_64+0xcd/0x260 [ 264.865791][ T8345] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 264.865822][ T8345] RIP: 0033:0x7f1416d8e169 [ 264.865846][ T8345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 264.865876][ T8345] RSP: 002b:00007f1417c73038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 264.865903][ T8345] RAX: ffffffffffffffda RBX: 00007f1416fb5fa0 RCX: 00007f1416d8e169 [ 264.865923][ T8345] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 0000000000000007 [ 264.865947][ T8345] RBP: 00007f1417c73090 R08: 0000000000000000 R09: 0000000000000000 [ 264.865965][ T8345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 264.865984][ T8345] R13: 0000000000000000 R14: 00007f1416fb5fa0 R15: 00007fff82a12f98 [ 264.866024][ T8345] [ 266.749731][ T5856] Bluetooth: hci0: Received unexpected HCI Event 0x00 [ 267.270146][ T8369] netlink: 28 bytes leftover after parsing attributes in process `syz.0.636'. [ 268.299089][ T8382] i2c i2c-0: delete_device: Can't parse I2C address [ 268.870793][ T8394] netlink: 504 bytes leftover after parsing attributes in process `syz.2.643'. [ 268.901432][ T8394] FAULT_INJECTION: forcing a failure. [ 268.901432][ T8394] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 268.922143][ T8394] CPU: 0 UID: 0 PID: 8394 Comm: syz.2.643 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 268.922179][ T8394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 268.922196][ T8394] Call Trace: [ 268.922204][ T8394] [ 268.922215][ T8394] dump_stack_lvl+0x16c/0x1f0 [ 268.922258][ T8394] should_fail_ex+0x512/0x640 [ 268.922299][ T8394] _copy_to_user+0x32/0xd0 [ 268.922335][ T8394] simple_read_from_buffer+0xcb/0x170 [ 268.922376][ T8394] proc_fail_nth_read+0x197/0x270 [ 268.922414][ T8394] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 268.922454][ T8394] ? rw_verify_area+0xcf/0x680 [ 268.922486][ T8394] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 268.922524][ T8394] vfs_read+0x1de/0xc70 [ 268.922571][ T8394] ? __pfx___mutex_lock+0x10/0x10 [ 268.922631][ T8394] ? __pfx_vfs_read+0x10/0x10 [ 268.922681][ T8394] ? __fget_files+0x20e/0x3c0 [ 268.922734][ T8394] ksys_read+0x12a/0x240 [ 268.922774][ T8394] ? __pfx_ksys_read+0x10/0x10 [ 268.922811][ T8394] ? rcu_is_watching+0x12/0xc0 [ 268.922859][ T8394] do_syscall_64+0xcd/0x260 [ 268.922913][ T8394] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 268.922941][ T8394] RIP: 0033:0x7f37efb8cb7c [ 268.922961][ T8394] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 268.922988][ T8394] RSP: 002b:00007f37f0919030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 268.923013][ T8394] RAX: ffffffffffffffda RBX: 00007f37efdb5fa0 RCX: 00007f37efb8cb7c [ 268.923030][ T8394] RDX: 000000000000000f RSI: 00007f37f09190a0 RDI: 0000000000000005 [ 268.923047][ T8394] RBP: 00007f37f0919090 R08: 0000000000000000 R09: 0000000000000000 [ 268.923063][ T8394] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 268.923079][ T8394] R13: 0000000000000000 R14: 00007f37efdb5fa0 R15: 00007ffdfb160b28 [ 268.923115][ T8394] [ 269.319592][ T8402] netlink: 28 bytes leftover after parsing attributes in process `syz.2.646'. [ 270.391508][ T8423] netlink: 4 bytes leftover after parsing attributes in process `syz.1.651'. [ 270.555049][ T8430] FAULT_INJECTION: forcing a failure. [ 270.555049][ T8430] name failslab, interval 1, probability 0, space 0, times 0 [ 270.598051][ T8430] CPU: 0 UID: 0 PID: 8430 Comm: syz.1.654 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 270.598081][ T8430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 270.598093][ T8430] Call Trace: [ 270.598099][ T8430] [ 270.598107][ T8430] dump_stack_lvl+0x16c/0x1f0 [ 270.598139][ T8430] should_fail_ex+0x512/0x640 [ 270.598160][ T8430] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 270.598192][ T8430] should_failslab+0xc2/0x120 [ 270.598210][ T8430] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 270.598238][ T8430] ? __pmd_alloc+0xc3/0x870 [ 270.598264][ T8430] __pmd_alloc+0xc3/0x870 [ 270.598284][ T8430] ? find_held_lock+0x2b/0x80 [ 270.598309][ T8430] __handle_mm_fault+0x948/0x2a40 [ 270.598343][ T8430] ? __pfx___handle_mm_fault+0x10/0x10 [ 270.598383][ T8430] ? find_vma+0xbf/0x140 [ 270.598402][ T8430] ? __pfx_find_vma+0x10/0x10 [ 270.598432][ T8430] handle_mm_fault+0x3fe/0xad0 [ 270.598464][ T8430] do_user_addr_fault+0x7a6/0x1370 [ 270.598490][ T8430] ? rcu_is_watching+0x12/0xc0 [ 270.598516][ T8430] exc_page_fault+0x5c/0xc0 [ 270.598543][ T8430] asm_exc_page_fault+0x26/0x30 [ 270.598561][ T8430] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 270.598584][ T8430] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 270.598625][ T8430] RSP: 0018:ffffc90003597bb0 EFLAGS: 00050206 [ 270.598640][ T8430] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000001000 [ 270.598652][ T8430] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff888012578000 [ 270.598664][ T8430] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed10024af1ff [ 270.598676][ T8430] R10: ffff888012578fff R11: 0000000000000000 R12: 0000000000000000 [ 270.598687][ T8430] R13: ffffc90003597da0 R14: 0000000000001000 R15: ffff888012578000 [ 270.598713][ T8430] _copy_from_iter+0x391/0x15b0 [ 270.598743][ T8430] ? __pfx__copy_from_iter+0x10/0x10 [ 270.598767][ T8430] ? rcu_is_watching+0x12/0xc0 [ 270.598790][ T8430] ? trace_kmalloc+0x2b/0xd0 [ 270.598808][ T8430] ? __kmalloc_noprof+0x242/0x510 [ 270.598842][ T8430] kernfs_fop_write_iter+0x19a/0x510 [ 270.598870][ T8430] vfs_write+0x5ba/0x1180 [ 270.598898][ T8430] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 270.598927][ T8430] ? __pfx___mutex_lock+0x10/0x10 [ 270.598955][ T8430] ? __pfx_vfs_write+0x10/0x10 [ 270.598998][ T8430] ksys_write+0x12a/0x240 [ 270.599023][ T8430] ? __pfx_ksys_write+0x10/0x10 [ 270.599048][ T8430] ? rcu_is_watching+0x12/0xc0 [ 270.599078][ T8430] do_syscall_64+0xcd/0x260 [ 270.599107][ T8430] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 270.599126][ T8430] RIP: 0033:0x7f1416d8e169 [ 270.599141][ T8430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 270.599159][ T8430] RSP: 002b:00007f1417c73038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 270.599175][ T8430] RAX: ffffffffffffffda RBX: 00007f1416fb5fa0 RCX: 00007f1416d8e169 [ 270.599188][ T8430] RDX: 000000007fffffff RSI: 0000000000000000 RDI: 0000000000000003 [ 270.599199][ T8430] RBP: 00007f1417c73090 R08: 0000000000000000 R09: 0000000000000000 [ 270.599211][ T8430] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 270.599223][ T8430] R13: 0000000000000000 R14: 00007f1416fb5fa0 R15: 00007fff82a12f98 [ 270.599247][ T8430] [ 271.032670][ T8437] netlink: 28 bytes leftover after parsing attributes in process `syz.2.656'. [ 271.381875][ T8453] FAULT_INJECTION: forcing a failure. [ 271.381875][ T8453] name failslab, interval 1, probability 0, space 0, times 0 [ 271.571889][ T8453] CPU: 0 UID: 0 PID: 8453 Comm: syz.3.658 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 271.571927][ T8453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 271.571942][ T8453] Call Trace: [ 271.571951][ T8453] [ 271.571960][ T8453] dump_stack_lvl+0x16c/0x1f0 [ 271.572004][ T8453] should_fail_ex+0x512/0x640 [ 271.572030][ T8453] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 271.572068][ T8453] should_failslab+0xc2/0x120 [ 271.572090][ T8453] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 271.572124][ T8453] ? __alloc_skb+0x2b2/0x380 [ 271.572156][ T8453] __alloc_skb+0x2b2/0x380 [ 271.572183][ T8453] ? __pfx___alloc_skb+0x10/0x10 [ 271.572220][ T8453] alloc_skb_with_frags+0xe0/0x860 [ 271.572254][ T8453] ? aa_label_sk_perm+0x19b/0x5a0 [ 271.572285][ T8453] sock_alloc_send_pskb+0x7fb/0x990 [ 271.572311][ T8453] ? find_held_lock+0x2b/0x80 [ 271.572353][ T8453] ? __pfx_sock_alloc_send_pskb+0x10/0x10 [ 271.572380][ T8453] ? rcu_preempt_deferred_qs_irqrestore+0x4f5/0xbc0 [ 271.572430][ T8453] unix_dgram_sendmsg+0x463/0x1910 [ 271.572458][ T8453] ? aa_sk_perm+0x2f4/0xb10 [ 271.572484][ T8453] ? __pfx_unix_dgram_sendmsg+0x10/0x10 [ 271.572507][ T8453] ? __pfx_aa_sk_perm+0x10/0x10 [ 271.572542][ T8453] ____sys_sendmsg+0xa95/0xc70 [ 271.572564][ T8453] ? copy_msghdr_from_user+0x10a/0x160 [ 271.572593][ T8453] ? __pfx_____sys_sendmsg+0x10/0x10 [ 271.572618][ T8453] ? kfree+0x252/0x4d0 [ 271.572643][ T8453] ? __pfx__kstrtoull+0x10/0x10 [ 271.572683][ T8453] ___sys_sendmsg+0x134/0x1d0 [ 271.572714][ T8453] ? __pfx____sys_sendmsg+0x10/0x10 [ 271.572767][ T8453] ? __pfx___might_resched+0x10/0x10 [ 271.572804][ T8453] __sys_sendmmsg+0x200/0x420 [ 271.572837][ T8453] ? __pfx___sys_sendmmsg+0x10/0x10 [ 271.572876][ T8453] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 271.572921][ T8453] ? fput+0x70/0xf0 [ 271.572941][ T8453] ? ksys_write+0x1b9/0x240 [ 271.572971][ T8453] ? __pfx_ksys_write+0x10/0x10 [ 271.573000][ T8453] ? xfd_validate_state+0x5d/0x180 [ 271.573029][ T8453] __x64_sys_sendmmsg+0x9c/0x100 [ 271.573058][ T8453] ? lockdep_hardirqs_on+0x7c/0x110 [ 271.573090][ T8453] do_syscall_64+0xcd/0x260 [ 271.573125][ T8453] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 271.573147][ T8453] RIP: 0033:0x7f7e29d8e169 [ 271.573165][ T8453] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 271.573186][ T8453] RSP: 002b:00007f7e27bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 271.573207][ T8453] RAX: ffffffffffffffda RBX: 00007f7e29fb6320 RCX: 00007f7e29d8e169 [ 271.573222][ T8453] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000004 [ 271.573235][ T8453] RBP: 00007f7e27bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 271.573248][ T8453] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002 [ 271.573261][ T8453] R13: 0000000000000000 R14: 00007f7e29fb6320 R15: 00007fffc5ebe648 [ 271.573288][ T8453] [ 271.907872][ T8455] bond0: option all_slaves_active: invalid value () [ 271.916748][ T8455] bond0: option all_slaves_active: invalid value () [ 271.937511][ T5856] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 271.945015][ T5856] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection [ 272.223811][ T8465] netlink: 504 bytes leftover after parsing attributes in process `syz.3.663'. [ 273.020365][ T8487] netlink: 4 bytes leftover after parsing attributes in process `syz.2.668'. [ 273.120004][ T8487] FAULT_INJECTION: forcing a failure. [ 273.120004][ T8487] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 273.181526][ T8487] CPU: 1 UID: 0 PID: 8487 Comm: syz.2.668 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 273.181565][ T8487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 273.181582][ T8487] Call Trace: [ 273.181590][ T8487] [ 273.181600][ T8487] dump_stack_lvl+0x16c/0x1f0 [ 273.181644][ T8487] should_fail_ex+0x512/0x640 [ 273.181680][ T8487] _copy_from_user+0x2e/0xd0 [ 273.181716][ T8487] kstrtouint_from_user+0xd6/0x1d0 [ 273.181759][ T8487] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 273.181800][ T8487] ? __lock_acquire+0xaa4/0x1ba0 [ 273.181842][ T8487] proc_fail_nth_write+0x83/0x250 [ 273.181881][ T8487] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 273.181929][ T8487] vfs_write+0x25c/0x1180 [ 273.181972][ T8487] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 273.182016][ T8487] ? __pfx___mutex_lock+0x10/0x10 [ 273.182056][ T8487] ? __pfx_vfs_write+0x10/0x10 [ 273.182104][ T8487] ? __fget_files+0x20e/0x3c0 [ 273.182154][ T8487] ksys_write+0x12a/0x240 [ 273.182191][ T8487] ? __pfx_ksys_write+0x10/0x10 [ 273.182226][ T8487] ? rcu_is_watching+0x12/0xc0 [ 273.182270][ T8487] do_syscall_64+0xcd/0x260 [ 273.182314][ T8487] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 273.182342][ T8487] RIP: 0033:0x7f37efb8cc1f [ 273.182364][ T8487] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 273.182390][ T8487] RSP: 002b:00007f37f0919030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 273.182415][ T8487] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f37efb8cc1f [ 273.182432][ T8487] RDX: 0000000000000001 RSI: 00007f37f09190a0 RDI: 0000000000000005 [ 273.182447][ T8487] RBP: 00007f37f0919090 R08: 0000000000000000 R09: 0000000000000000 [ 273.182463][ T8487] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 273.182478][ T8487] R13: 0000000000000000 R14: 00007f37efdb5fa0 R15: 00007ffdfb160b28 [ 273.182517][ T8487] [ 273.447097][ T8490] netlink: 36 bytes leftover after parsing attributes in process `syz.2.670'. [ 273.458102][ T8490] FAULT_INJECTION: forcing a failure. [ 273.458102][ T8490] name fail_futex, interval 1, probability 0, space 0, times 0 [ 273.471020][ T8490] CPU: 1 UID: 0 PID: 8490 Comm: syz.2.670 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 273.471056][ T8490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 273.471071][ T8490] Call Trace: [ 273.471080][ T8490] [ 273.471089][ T8490] dump_stack_lvl+0x16c/0x1f0 [ 273.471136][ T8490] should_fail_ex+0x512/0x640 [ 273.471171][ T8490] get_futex_key+0x49e/0x1000 [ 273.471212][ T8490] ? __pfx_get_futex_key+0x10/0x10 [ 273.471262][ T8490] futex_wake+0xe7/0x4e0 [ 273.471291][ T8490] ? __pfx_futex_wake+0x10/0x10 [ 273.471321][ T8490] ? __call_rcu_common.constprop.0+0x3e5/0x9f0 [ 273.471351][ T8490] ? lockdep_hardirqs_on+0x7c/0x110 [ 273.471395][ T8490] do_futex+0x1e3/0x350 [ 273.471433][ T8490] ? __pfx_do_futex+0x10/0x10 [ 273.471479][ T8490] __x64_sys_futex+0x1e0/0x4c0 [ 273.471521][ T8490] ? __pfx___x64_sys_futex+0x10/0x10 [ 273.471554][ T8490] ? __pfx_fput_close_sync+0x10/0x10 [ 273.471590][ T8490] do_syscall_64+0xcd/0x260 [ 273.471631][ T8490] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 273.471659][ T8490] RIP: 0033:0x7f37efb8e169 [ 273.471680][ T8490] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 273.471707][ T8490] RSP: 002b:00007f37f09190e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 273.471733][ T8490] RAX: ffffffffffffffda RBX: 00007f37efdb5fa8 RCX: 00007f37efb8e169 [ 273.471750][ T8490] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f37efdb5fac [ 273.471766][ T8490] RBP: 00007f37efdb5fa0 R08: 00007f37f091a000 R09: 0000000000000000 [ 273.471783][ T8490] R10: 000000000000003c R11: 0000000000000246 R12: 00007f37efdb5fac [ 273.471799][ T8490] R13: 0000000000000000 R14: 00007ffdfb160a40 R15: 00007ffdfb160b28 [ 273.471833][ T8490] [ 273.706360][ T8490] openvswitch: .SR: Dropping previously announced user features [ 273.818962][ T8492] FAULT_INJECTION: forcing a failure. [ 273.818962][ T8492] name failslab, interval 1, probability 0, space 0, times 0 [ 273.859128][ T8492] CPU: 1 UID: 0 PID: 8492 Comm: syz.1.669 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 273.859165][ T8492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 273.859180][ T8492] Call Trace: [ 273.859188][ T8492] [ 273.859198][ T8492] dump_stack_lvl+0x16c/0x1f0 [ 273.859242][ T8492] should_fail_ex+0x512/0x640 [ 273.859273][ T8492] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 273.859320][ T8492] should_failslab+0xc2/0x120 [ 273.859346][ T8492] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 273.859388][ T8492] ? __pfx_stack_trace_save+0x10/0x10 [ 273.859423][ T8492] ? __alloc_skb+0x2b2/0x380 [ 273.859462][ T8492] __alloc_skb+0x2b2/0x380 [ 273.859494][ T8492] ? __pfx___alloc_skb+0x10/0x10 [ 273.859532][ T8492] ? __lock_acquire+0xaa4/0x1ba0 [ 273.859563][ T8492] netlink_alloc_large_skb+0x69/0x130 [ 273.859605][ T8492] netlink_sendmsg+0x6a1/0xdd0 [ 273.859651][ T8492] ? __pfx_netlink_sendmsg+0x10/0x10 [ 273.859705][ T8492] ____sys_sendmsg+0xa95/0xc70 [ 273.859732][ T8492] ? copy_msghdr_from_user+0x10a/0x160 [ 273.859767][ T8492] ? __pfx_____sys_sendmsg+0x10/0x10 [ 273.859790][ T8492] ? lockdep_hardirqs_on+0x7c/0x110 [ 273.859833][ T8492] ? kfree+0x2b6/0x4d0 [ 273.859863][ T8492] ? __pfx__kstrtoull+0x10/0x10 [ 273.859900][ T8492] ? ___sys_sendmsg+0x141/0x1d0 [ 273.859941][ T8492] ___sys_sendmsg+0x134/0x1d0 [ 273.859986][ T8492] ? __pfx____sys_sendmsg+0x10/0x10 [ 273.860053][ T8492] ? __pfx___might_resched+0x10/0x10 [ 273.860099][ T8492] __sys_sendmmsg+0x200/0x420 [ 273.860139][ T8492] ? __pfx___sys_sendmmsg+0x10/0x10 [ 273.860186][ T8492] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 273.860242][ T8492] ? fput+0x70/0xf0 [ 273.860268][ T8492] ? ksys_write+0x1b9/0x240 [ 273.860304][ T8492] ? __pfx_ksys_write+0x10/0x10 [ 273.860339][ T8492] ? rcu_is_watching+0x12/0xc0 [ 273.860379][ T8492] __x64_sys_sendmmsg+0x9c/0x100 [ 273.860415][ T8492] ? lockdep_hardirqs_on+0x7c/0x110 [ 273.860453][ T8492] do_syscall_64+0xcd/0x260 [ 273.860497][ T8492] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 273.860523][ T8492] RIP: 0033:0x7f1416d8e169 [ 273.860544][ T8492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 273.860571][ T8492] RSP: 002b:00007f1417c73038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 273.860595][ T8492] RAX: ffffffffffffffda RBX: 00007f1416fb5fa0 RCX: 00007f1416d8e169 [ 273.860613][ T8492] RDX: 0000000000000002 RSI: 0000200000000080 RDI: 0000000000000003 [ 273.860628][ T8492] RBP: 00007f1417c73090 R08: 0000000000000000 R09: 0000000000000000 [ 273.860644][ T8492] R10: 0000000000000800 R11: 0000000000000246 R12: 0000000000000001 [ 273.860659][ T8492] R13: 0000000000000000 R14: 00007f1416fb5fa0 R15: 00007fff82a12f98 [ 273.860692][ T8492] [ 274.617001][ T8497] FAULT_INJECTION: forcing a failure. [ 274.617001][ T8497] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 274.640800][ T8497] CPU: 1 UID: 0 PID: 8497 Comm: syz.2.671 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 274.640838][ T8497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 274.640855][ T8497] Call Trace: [ 274.640864][ T8497] [ 274.640874][ T8497] dump_stack_lvl+0x16c/0x1f0 [ 274.640928][ T8497] should_fail_ex+0x512/0x640 [ 274.640966][ T8497] _copy_from_user+0x2e/0xd0 [ 274.641003][ T8497] copy_msghdr_from_user+0x98/0x160 [ 274.641042][ T8497] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 274.641086][ T8497] ? kfree+0x252/0x4d0 [ 274.641121][ T8497] ? __lock_acquire+0x5ca/0x1ba0 [ 274.641155][ T8497] ___sys_recvmsg+0xdb/0x1a0 [ 274.641194][ T8497] ? __pfx____sys_recvmsg+0x10/0x10 [ 274.641252][ T8497] ? __pfx___might_resched+0x10/0x10 [ 274.641299][ T8497] do_recvmmsg+0x2fe/0x740 [ 274.641342][ T8497] ? __pfx_do_recvmmsg+0x10/0x10 [ 274.641387][ T8497] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 274.641442][ T8497] ? __fget_files+0x20e/0x3c0 [ 274.641491][ T8497] __x64_sys_recvmmsg+0x22a/0x280 [ 274.641537][ T8497] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 274.641575][ T8497] ? rcu_is_watching+0x12/0xc0 [ 274.641621][ T8497] do_syscall_64+0xcd/0x260 [ 274.641666][ T8497] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 274.641694][ T8497] RIP: 0033:0x7f37efb8e169 [ 274.641716][ T8497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 274.641745][ T8497] RSP: 002b:00007f37ed9f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 274.641772][ T8497] RAX: ffffffffffffffda RBX: 00007f37efdb6080 RCX: 00007f37efb8e169 [ 274.641790][ T8497] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 274.641807][ T8497] RBP: 00007f37ed9f6090 R08: 0000000000000000 R09: 0000000000000000 [ 274.641823][ T8497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 274.641840][ T8497] R13: 0000000000000000 R14: 00007f37efdb6080 R15: 00007ffdfb160b28 [ 274.641876][ T8497] [ 274.964665][ T5847] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 274.972572][ T5847] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:0' [ 274.982398][ T5847] CPU: 0 UID: 0 PID: 5847 Comm: kworker/u9:2 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 274.982440][ T5847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 274.982461][ T5847] Workqueue: hci1 hci_rx_work [ 274.982498][ T5847] Call Trace: [ 274.982507][ T5847] [ 274.982519][ T5847] dump_stack_lvl+0x16c/0x1f0 [ 274.982565][ T5847] sysfs_warn_dup+0x7f/0xa0 [ 274.982610][ T5847] sysfs_create_dir_ns+0x24b/0x2b0 [ 274.982655][ T5847] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 274.982698][ T5847] ? find_held_lock+0x2b/0x80 [ 274.982742][ T5847] ? do_raw_spin_unlock+0x172/0x230 [ 274.982785][ T5847] kobject_add_internal+0x2c4/0x9b0 [ 274.982839][ T5847] kobject_add+0x16e/0x240 [ 274.982866][ T5847] ? __pfx_kobject_add+0x10/0x10 [ 274.982897][ T5847] ? do_raw_spin_unlock+0x172/0x230 [ 274.982931][ T5847] ? kobject_put+0xab/0x5a0 [ 274.982988][ T5847] device_add+0x288/0x1a70 [ 274.983019][ T5847] ? __pfx_dev_set_name+0x10/0x10 [ 274.983055][ T5847] ? __pfx_device_add+0x10/0x10 [ 274.983087][ T5847] ? mgmt_send_event_skb+0x2fb/0x460 [ 274.983129][ T5847] hci_conn_add_sysfs+0x17e/0x230 [ 274.983168][ T5847] le_conn_complete_evt+0x1075/0x1d70 [ 274.983211][ T5847] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 274.983242][ T5847] ? bt_warn+0xe4/0x120 [ 274.983269][ T5847] ? __pfx_bt_warn+0x10/0x10 [ 274.983306][ T5847] hci_le_conn_complete_evt+0x23c/0x370 [ 274.983347][ T5847] hci_le_meta_evt+0x2f3/0x5e0 [ 274.983382][ T5847] ? __pfx_hci_le_conn_complete_evt+0x10/0x10 [ 274.983421][ T5847] hci_event_packet+0x669/0x1190 [ 274.983452][ T5847] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 274.983489][ T5847] ? __pfx_hci_event_packet+0x10/0x10 [ 274.983524][ T5847] ? kcov_remote_start+0x3c9/0x6d0 [ 274.983553][ T5847] ? lockdep_hardirqs_on+0x7c/0x110 [ 274.983603][ T5847] hci_rx_work+0x2c5/0x16b0 [ 274.983639][ T5847] ? rcu_is_watching+0x12/0xc0 [ 274.983680][ T5847] process_one_work+0x9cc/0x1b70 [ 274.983729][ T5847] ? __pfx_process_one_work+0x10/0x10 [ 274.983781][ T5847] ? assign_work+0x1a0/0x250 [ 274.983817][ T5847] worker_thread+0x6c8/0xf10 [ 274.983864][ T5847] ? __kthread_parkme+0x19e/0x250 [ 274.983911][ T5847] ? __pfx_worker_thread+0x10/0x10 [ 274.983945][ T5847] kthread+0x3c2/0x780 [ 274.983976][ T5847] ? __pfx_kthread+0x10/0x10 [ 274.984003][ T5847] ? __pfx_kthread+0x10/0x10 [ 274.984031][ T5847] ? __pfx_kthread+0x10/0x10 [ 274.984059][ T5847] ? __pfx_kthread+0x10/0x10 [ 274.984087][ T5847] ? rcu_is_watching+0x12/0xc0 [ 274.984124][ T5847] ? __pfx_kthread+0x10/0x10 [ 274.984154][ T5847] ret_from_fork+0x45/0x80 [ 274.984184][ T5847] ? __pfx_kthread+0x10/0x10 [ 274.984214][ T5847] ret_from_fork_asm+0x1a/0x30 [ 274.984279][ T5847] [ 274.984309][ T5847] kobject: kobject_add_internal failed for hci1:0 with -EEXIST, don't try to register things with the same name in the same directory. [ 275.264893][ T5847] Bluetooth: hci1: failed to register connection device [ 275.296671][ T8512] netlink: 4 bytes leftover after parsing attributes in process `syz.1.673'. [ 275.324154][ T8512] netlink: 25 bytes leftover after parsing attributes in process `syz.1.673'. [ 275.949507][ T8524] tipc: Started in network mode [ 275.954490][ T8524] tipc: Node identity ee00, cluster identity 4711 [ 275.962247][ T8524] tipc: Node number set to 60928 [ 276.655533][ T8537] FAULT_INJECTION: forcing a failure. [ 276.655533][ T8537] name failslab, interval 1, probability 0, space 0, times 0 [ 276.741715][ T8537] CPU: 0 UID: 0 PID: 8537 Comm: syz.0.678 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 276.741754][ T8537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 276.741770][ T8537] Call Trace: [ 276.741780][ T8537] [ 276.741790][ T8537] dump_stack_lvl+0x16c/0x1f0 [ 276.741834][ T8537] should_fail_ex+0x512/0x640 [ 276.741864][ T8537] ? __kmalloc_noprof+0xbf/0x510 [ 276.741907][ T8537] ? snd_seq_oss_readq_new+0x96/0x2c0 [ 276.741939][ T8537] should_failslab+0xc2/0x120 [ 276.741964][ T8537] __kmalloc_noprof+0xd2/0x510 [ 276.742012][ T8537] snd_seq_oss_readq_new+0x96/0x2c0 [ 276.742048][ T8537] snd_seq_oss_open+0x54b/0xa20 [ 276.742097][ T8537] odev_open+0x6f/0x90 [ 276.742133][ T8537] ? __pfx_odev_open+0x10/0x10 [ 276.742171][ T8537] soundcore_open+0x409/0x580 [ 276.742212][ T8537] ? __pfx_soundcore_open+0x10/0x10 [ 276.742249][ T8537] chrdev_open+0x231/0x6a0 [ 276.742291][ T8537] ? __pfx_apparmor_file_open+0x10/0x10 [ 276.742326][ T8537] ? __pfx_chrdev_open+0x10/0x10 [ 276.742371][ T8537] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 276.742417][ T8537] do_dentry_open+0x741/0x1c10 [ 276.742457][ T8537] ? __pfx_chrdev_open+0x10/0x10 [ 276.742506][ T8537] vfs_open+0x82/0x3f0 [ 276.742538][ T8537] path_openat+0x1e5e/0x2d40 [ 276.742592][ T8537] ? __pfx_path_openat+0x10/0x10 [ 276.742650][ T8537] do_filp_open+0x20b/0x470 [ 276.742691][ T8537] ? __pfx_do_filp_open+0x10/0x10 [ 276.742759][ T8537] ? alloc_fd+0x471/0x7d0 [ 276.742808][ T8537] do_sys_openat2+0x11b/0x1d0 [ 276.742837][ T8537] ? __pfx_do_sys_openat2+0x10/0x10 [ 276.742869][ T8537] ? __fget_files+0x20e/0x3c0 [ 276.742914][ T8537] __x64_sys_openat+0x174/0x210 [ 276.742944][ T8537] ? __pfx___x64_sys_openat+0x10/0x10 [ 276.742972][ T8537] ? ksys_write+0x1b9/0x240 [ 276.743009][ T8537] ? rcu_is_watching+0x12/0xc0 [ 276.743053][ T8537] do_syscall_64+0xcd/0x260 [ 276.743097][ T8537] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 276.743124][ T8537] RIP: 0033:0x7fe80018e169 [ 276.743146][ T8537] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 276.743171][ T8537] RSP: 002b:00007fe800f36038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 276.743197][ T8537] RAX: ffffffffffffffda RBX: 00007fe8003b5fa0 RCX: 00007fe80018e169 [ 276.743214][ T8537] RDX: 0000000000000080 RSI: 0000200000000500 RDI: ffffffffffffff9c [ 276.743230][ T8537] RBP: 00007fe800f36090 R08: 0000000000000000 R09: 0000000000000000 [ 276.743246][ T8537] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 276.743261][ T8537] R13: 0000000000000000 R14: 00007fe8003b5fa0 R15: 00007ffd45b67588 [ 276.743294][ T8537] [ 279.163561][ T8582] netlink: 28 bytes leftover after parsing attributes in process `syz.0.689'. [ 279.711350][ T8592] netlink: 36 bytes leftover after parsing attributes in process `syz.2.692'. [ 279.846957][ T8597] netlink: 36 bytes leftover after parsing attributes in process `syz.3.693'. [ 280.701249][ T8598] openvswitch: .SR: Dropping previously announced user features [ 280.722939][ T8599] openvswitch: .SR: Dropping previously announced user features [ 280.732107][ T8601] netlink: 36 bytes leftover after parsing attributes in process `syz.0.694'. [ 280.778326][ T8601] FAULT_INJECTION: forcing a failure. [ 280.778326][ T8601] name failslab, interval 1, probability 0, space 0, times 0 [ 280.844672][ T8601] CPU: 1 UID: 0 PID: 8601 Comm: syz.0.694 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 280.844714][ T8601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 280.844731][ T8601] Call Trace: [ 280.844740][ T8601] [ 280.844750][ T8601] dump_stack_lvl+0x16c/0x1f0 [ 280.844796][ T8601] should_fail_ex+0x512/0x640 [ 280.844828][ T8601] ? __kvmalloc_node_noprof+0x122/0x600 [ 280.844872][ T8601] should_failslab+0xc2/0x120 [ 280.844899][ T8601] __kvmalloc_node_noprof+0x135/0x600 [ 280.844935][ T8601] ? trace_kmalloc+0x2b/0xd0 [ 280.844962][ T8601] ? __kmalloc_noprof+0x242/0x510 [ 280.845003][ T8601] ? alloc_netdev_mqs+0xd2/0x1570 [ 280.845040][ T8601] ? __asan_memcpy+0x3c/0x60 [ 280.845079][ T8601] ? __pfx_do_setup+0x10/0x10 [ 280.845103][ T8601] ? alloc_netdev_mqs+0xd2/0x1570 [ 280.845140][ T8601] alloc_netdev_mqs+0xd2/0x1570 [ 280.845179][ T8601] ? ovs_vport_alloc+0x2a0/0x3d0 [ 280.845227][ T8601] internal_dev_create+0x8a/0x520 [ 280.845256][ T8601] ovs_vport_add+0x144/0x4d0 [ 280.845302][ T8601] new_vport+0x16/0x1d0 [ 280.845337][ T8601] ovs_dp_cmd_new+0x6ba/0xe60 [ 280.845383][ T8601] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 280.845427][ T8601] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 280.845457][ T8601] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 280.845495][ T8601] genl_family_rcv_msg_doit+0x206/0x2f0 [ 280.845532][ T8601] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 280.845561][ T8601] ? trace_cap_capable+0x18d/0x200 [ 280.845598][ T8601] ? bpf_lsm_capable+0x9/0x10 [ 280.845638][ T8601] ? security_capable+0x7e/0x260 [ 280.845670][ T8601] ? ns_capable+0xd7/0x110 [ 280.845708][ T8601] genl_rcv_msg+0x55c/0x800 [ 280.845740][ T8601] ? __pfx_genl_rcv_msg+0x10/0x10 [ 280.845765][ T8601] ? __pfx___dev_queue_xmit+0x10/0x10 [ 280.845796][ T8601] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 280.845836][ T8601] ? __lock_acquire+0xaa4/0x1ba0 [ 280.845886][ T8601] netlink_rcv_skb+0x16a/0x440 [ 280.845931][ T8601] ? __pfx_genl_rcv_msg+0x10/0x10 [ 280.845961][ T8601] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 280.846051][ T8601] ? __pfx_down_read+0x10/0x10 [ 280.846105][ T8601] ? netlink_deliver_tap+0x1ae/0xd30 [ 280.846160][ T8601] genl_rcv+0x28/0x40 [ 280.846209][ T8601] netlink_unicast+0x53a/0x7f0 [ 280.846263][ T8601] ? __pfx_netlink_unicast+0x10/0x10 [ 280.846309][ T8601] ? __lock_acquire+0xaa4/0x1ba0 [ 280.846351][ T8601] netlink_sendmsg+0x8d1/0xdd0 [ 280.846407][ T8601] ? __pfx_netlink_sendmsg+0x10/0x10 [ 280.846473][ T8601] ____sys_sendmsg+0xa95/0xc70 [ 280.846504][ T8601] ? copy_msghdr_from_user+0x10a/0x160 [ 280.846555][ T8601] ? __pfx_____sys_sendmsg+0x10/0x10 [ 280.846595][ T8601] ? try_to_wake_up+0xa2f/0x1680 [ 280.846647][ T8601] ___sys_sendmsg+0x134/0x1d0 [ 280.846693][ T8601] ? __pfx____sys_sendmsg+0x10/0x10 [ 280.846791][ T8601] __sys_sendmsg+0x16d/0x220 [ 280.846836][ T8601] ? __pfx___sys_sendmsg+0x10/0x10 [ 280.846879][ T8601] ? __x64_sys_futex+0x1e0/0x4c0 [ 280.846939][ T8601] ? rcu_is_watching+0x12/0xc0 [ 280.846993][ T8601] do_syscall_64+0xcd/0x260 [ 280.847045][ T8601] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 280.847079][ T8601] RIP: 0033:0x7fe80018e169 [ 280.847105][ T8601] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 280.847137][ T8601] RSP: 002b:00007fe800f36038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 280.847168][ T8601] RAX: ffffffffffffffda RBX: 00007fe8003b5fa0 RCX: 00007fe80018e169 [ 280.847189][ T8601] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000006 [ 280.847222][ T8601] RBP: 00007fe800210a68 R08: 0000000000000000 R09: 0000000000000000 [ 280.847241][ T8601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 280.847259][ T8601] R13: 0000000000000000 R14: 00007fe8003b5fa0 R15: 00007ffd45b67588 [ 280.847310][ T8601] [ 281.299721][ T8603] netlink: 206 bytes leftover after parsing attributes in process `syz.2.696'. [ 282.873394][ T8620] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input30 [ 283.513736][ T8640] netlink: 36 bytes leftover after parsing attributes in process `syz.2.704'. [ 283.577946][ T8640] FAULT_INJECTION: forcing a failure. [ 283.577946][ T8640] name failslab, interval 1, probability 0, space 0, times 0 [ 283.600812][ T8640] CPU: 1 UID: 0 PID: 8640 Comm: syz.2.704 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 283.600867][ T8640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 283.600884][ T8640] Call Trace: [ 283.600893][ T8640] [ 283.600904][ T8640] dump_stack_lvl+0x16c/0x1f0 [ 283.600953][ T8640] should_fail_ex+0x512/0x640 [ 283.600985][ T8640] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 283.601039][ T8640] should_failslab+0xc2/0x120 [ 283.601066][ T8640] __kmalloc_cache_noprof+0x6a/0x3e0 [ 283.601107][ T8640] ? tbl_mask_cache_alloc+0xa1/0x200 [ 283.601147][ T8640] tbl_mask_cache_alloc+0xa1/0x200 [ 283.601185][ T8640] ovs_flow_tbl_masks_cache_resize+0xb5/0x230 [ 283.601231][ T8640] ovs_dp_change+0x4b7/0x6f0 [ 283.601275][ T8640] ovs_dp_cmd_new+0x5e4/0xe60 [ 283.601327][ T8640] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 283.601376][ T8640] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 283.601409][ T8640] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 283.601450][ T8640] genl_family_rcv_msg_doit+0x206/0x2f0 [ 283.601481][ T8640] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 283.601511][ T8640] ? trace_cap_capable+0x18d/0x200 [ 283.601548][ T8640] ? bpf_lsm_capable+0x9/0x10 [ 283.601599][ T8640] ? security_capable+0x7e/0x260 [ 283.601625][ T8640] ? ns_capable+0xd7/0x110 [ 283.601663][ T8640] genl_rcv_msg+0x55c/0x800 [ 283.601694][ T8640] ? __pfx_genl_rcv_msg+0x10/0x10 [ 283.601718][ T8640] ? __pfx___dev_queue_xmit+0x10/0x10 [ 283.601748][ T8640] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 283.601788][ T8640] ? __lock_acquire+0xaa4/0x1ba0 [ 283.601820][ T8640] netlink_rcv_skb+0x16a/0x440 [ 283.601861][ T8640] ? __pfx_genl_rcv_msg+0x10/0x10 [ 283.601889][ T8640] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 283.601946][ T8640] ? __pfx_down_read+0x10/0x10 [ 283.601972][ T8640] ? netlink_deliver_tap+0x1ae/0xd30 [ 283.602027][ T8640] genl_rcv+0x28/0x40 [ 283.602069][ T8640] netlink_unicast+0x53a/0x7f0 [ 283.602115][ T8640] ? __pfx_netlink_unicast+0x10/0x10 [ 283.602154][ T8640] ? __lock_acquire+0xaa4/0x1ba0 [ 283.602190][ T8640] netlink_sendmsg+0x8d1/0xdd0 [ 283.602238][ T8640] ? __pfx_netlink_sendmsg+0x10/0x10 [ 283.602294][ T8640] ____sys_sendmsg+0xa95/0xc70 [ 283.602321][ T8640] ? copy_msghdr_from_user+0x10a/0x160 [ 283.602366][ T8640] ? __pfx_____sys_sendmsg+0x10/0x10 [ 283.602398][ T8640] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 283.602446][ T8640] ___sys_sendmsg+0x134/0x1d0 [ 283.602486][ T8640] ? __pfx____sys_sendmsg+0x10/0x10 [ 283.602569][ T8640] __sys_sendmsg+0x16d/0x220 [ 283.602626][ T8640] ? __pfx___sys_sendmsg+0x10/0x10 [ 283.602664][ T8640] ? __x64_sys_futex+0x1e0/0x4c0 [ 283.602717][ T8640] ? rcu_is_watching+0x12/0xc0 [ 283.602765][ T8640] do_syscall_64+0xcd/0x260 [ 283.602812][ T8640] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 283.602842][ T8640] RIP: 0033:0x7f37efb8e169 [ 283.602865][ T8640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 283.602905][ T8640] RSP: 002b:00007f37f0919038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 283.602932][ T8640] RAX: ffffffffffffffda RBX: 00007f37efdb5fa0 RCX: 00007f37efb8e169 [ 283.602950][ T8640] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000006 [ 283.602966][ T8640] RBP: 00007f37efc10a68 R08: 0000000000000000 R09: 0000000000000000 [ 283.602982][ T8640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 283.603002][ T8640] R13: 0000000000000000 R14: 00007f37efdb5fa0 R15: 00007ffdfb160b28 [ 283.603038][ T8640] [ 284.251864][ T8645] netlink: 36 bytes leftover after parsing attributes in process `syz.2.706'. [ 284.374826][ T8647] openvswitch: .SR: Dropping previously announced user features [ 284.494199][ T8649] FAULT_INJECTION: forcing a failure. [ 284.494199][ T8649] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 284.547120][ T8649] CPU: 0 UID: 0 PID: 8649 Comm: syz.0.707 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 284.547166][ T8649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 284.547185][ T8649] Call Trace: [ 284.547196][ T8649] [ 284.547207][ T8649] dump_stack_lvl+0x16c/0x1f0 [ 284.547268][ T8649] should_fail_ex+0x512/0x640 [ 284.547306][ T8649] should_fail_alloc_page+0xe7/0x130 [ 284.547337][ T8649] prepare_alloc_pages+0x3c2/0x610 [ 284.547373][ T8649] ? __alloc_frozen_pages_noprof+0x298/0x23a0 [ 284.547421][ T8649] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 284.547471][ T8649] ? __lock_acquire+0xaa4/0x1ba0 [ 284.547502][ T8649] ? __lock_acquire+0xaa4/0x1ba0 [ 284.547533][ T8649] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 284.547595][ T8649] ? find_held_lock+0x2b/0x80 [ 284.547636][ T8649] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 284.547669][ T8649] ? policy_nodemask+0xea/0x4e0 [ 284.547699][ T8649] alloc_pages_mpol+0x1fb/0x550 [ 284.547728][ T8649] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 284.547757][ T8649] ? find_held_lock+0x2b/0x80 [ 284.547798][ T8649] alloc_pages_noprof+0x131/0x390 [ 284.547827][ T8649] pte_alloc_one+0x19/0x380 [ 284.547865][ T8649] __do_fault+0x320/0x490 [ 284.547909][ T8649] do_pte_missing+0x9b7/0x3fb0 [ 284.547950][ T8649] ? do_raw_spin_unlock+0x172/0x230 [ 284.547986][ T8649] ? __pmd_alloc+0x3c2/0x870 [ 284.548024][ T8649] __handle_mm_fault+0x103d/0x2a40 [ 284.548075][ T8649] ? __pfx___handle_mm_fault+0x10/0x10 [ 284.548147][ T8649] handle_mm_fault+0x3fe/0xad0 [ 284.548195][ T8649] __get_user_pages+0x771/0x36f0 [ 284.548241][ T8649] ? __pfx_mt_find+0x10/0x10 [ 284.548287][ T8649] ? __pfx___get_user_pages+0x10/0x10 [ 284.548338][ T8649] populate_vma_page_range+0x278/0x3a0 [ 284.548380][ T8649] ? __pfx_populate_vma_page_range+0x10/0x10 [ 284.548417][ T8649] ? __pfx_find_vma_intersection+0x10/0x10 [ 284.548454][ T8649] ? do_mmap+0x69c/0x11b0 [ 284.548492][ T8649] __mm_populate+0x1d8/0x380 [ 284.548532][ T8649] ? __pfx___mm_populate+0x10/0x10 [ 284.548574][ T8649] ? up_write+0x1b2/0x520 [ 284.548608][ T8649] vm_mmap_pgoff+0x362/0x450 [ 284.548651][ T8649] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 284.548692][ T8649] ? __fget_files+0x20e/0x3c0 [ 284.548741][ T8649] ksys_mmap_pgoff+0x32c/0x5c0 [ 284.548791][ T8649] ? __pfx_ksys_write+0x10/0x10 [ 284.548831][ T8649] ? rcu_is_watching+0x12/0xc0 [ 284.548873][ T8649] __x64_sys_mmap+0x125/0x190 [ 284.548920][ T8649] do_syscall_64+0xcd/0x260 [ 284.548969][ T8649] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 284.549008][ T8649] RIP: 0033:0x7fe80018e169 [ 284.549032][ T8649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 284.549061][ T8649] RSP: 002b:00007fe800f36038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 284.549090][ T8649] RAX: ffffffffffffffda RBX: 00007fe8003b5fa0 RCX: 00007fe80018e169 [ 284.549111][ T8649] RDX: 0000000000000003 RSI: 0000000000000009 RDI: 0000000000000000 [ 284.549140][ T8649] RBP: 00007fe800f36090 R08: 0000000000000003 R09: 0000000000008000 [ 284.549157][ T8649] R10: 0000000000008012 R11: 0000000000000246 R12: 0000000000000001 [ 284.549174][ T8649] R13: 0000000000000000 R14: 00007fe8003b5fa0 R15: 00007ffd45b67588 [ 284.549210][ T8649] [ 284.956539][ T8656] netlink: 36 bytes leftover after parsing attributes in process `syz.1.709'. [ 285.009553][ T8651] FAULT_INJECTION: forcing a failure. [ 285.009553][ T8651] name failslab, interval 1, probability 0, space 0, times 0 [ 285.022616][ T8651] CPU: 0 UID: 0 PID: 8651 Comm: syz.1.709 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 285.022656][ T8651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 285.022673][ T8651] Call Trace: [ 285.022683][ T8651] [ 285.022694][ T8651] dump_stack_lvl+0x16c/0x1f0 [ 285.022743][ T8651] should_fail_ex+0x512/0x640 [ 285.022777][ T8651] ? __kmalloc_noprof+0xbf/0x510 [ 285.022826][ T8651] ? ovs_vport_alloc+0x30/0x3d0 [ 285.022872][ T8651] should_failslab+0xc2/0x120 [ 285.022901][ T8651] __kmalloc_noprof+0xd2/0x510 [ 285.022962][ T8651] ovs_vport_alloc+0x30/0x3d0 [ 285.023014][ T8651] internal_dev_create+0x25/0x520 [ 285.023045][ T8651] ovs_vport_add+0x144/0x4d0 [ 285.023095][ T8651] new_vport+0x16/0x1d0 [ 285.023133][ T8651] ovs_dp_cmd_new+0x6ba/0xe60 [ 285.023185][ T8651] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 285.023235][ T8651] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 285.023270][ T8651] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 285.023310][ T8651] genl_family_rcv_msg_doit+0x206/0x2f0 [ 285.023343][ T8651] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 285.023374][ T8651] ? trace_cap_capable+0x18d/0x200 [ 285.023412][ T8651] ? bpf_lsm_capable+0x9/0x10 [ 285.023455][ T8651] ? security_capable+0x7e/0x260 [ 285.023485][ T8651] ? ns_capable+0xd7/0x110 [ 285.023526][ T8651] genl_rcv_msg+0x55c/0x800 [ 285.023560][ T8651] ? __pfx_genl_rcv_msg+0x10/0x10 [ 285.023587][ T8651] ? __pfx___dev_queue_xmit+0x10/0x10 [ 285.023621][ T8651] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 285.023665][ T8651] ? __lock_acquire+0xaa4/0x1ba0 [ 285.023700][ T8651] netlink_rcv_skb+0x16a/0x440 [ 285.023745][ T8651] ? __pfx_genl_rcv_msg+0x10/0x10 [ 285.023777][ T8651] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 285.023841][ T8651] ? __pfx_down_read+0x10/0x10 [ 285.023871][ T8651] ? netlink_deliver_tap+0x1ae/0xd30 [ 285.023919][ T8651] genl_rcv+0x28/0x40 [ 285.023970][ T8651] netlink_unicast+0x53a/0x7f0 [ 285.024019][ T8651] ? __pfx_netlink_unicast+0x10/0x10 [ 285.024061][ T8651] ? __lock_acquire+0xaa4/0x1ba0 [ 285.024099][ T8651] netlink_sendmsg+0x8d1/0xdd0 [ 285.024150][ T8651] ? __pfx_netlink_sendmsg+0x10/0x10 [ 285.024211][ T8651] ____sys_sendmsg+0xa95/0xc70 [ 285.024241][ T8651] ? copy_msghdr_from_user+0x10a/0x160 [ 285.024281][ T8651] ? __pfx_____sys_sendmsg+0x10/0x10 [ 285.024316][ T8651] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 285.024367][ T8651] ___sys_sendmsg+0x134/0x1d0 [ 285.024409][ T8651] ? __pfx____sys_sendmsg+0x10/0x10 [ 285.024498][ T8651] __sys_sendmsg+0x16d/0x220 [ 285.024543][ T8651] ? __pfx___sys_sendmsg+0x10/0x10 [ 285.024598][ T8651] ? __x64_sys_futex+0x1e0/0x4c0 [ 285.024654][ T8651] ? rcu_is_watching+0x12/0xc0 [ 285.024704][ T8651] do_syscall_64+0xcd/0x260 [ 285.024756][ T8651] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 285.024788][ T8651] RIP: 0033:0x7f1416d8e169 [ 285.024814][ T8651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 285.024846][ T8651] RSP: 002b:00007f1417c73038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 285.024877][ T8651] RAX: ffffffffffffffda RBX: 00007f1416fb5fa0 RCX: 00007f1416d8e169 [ 285.024899][ T8651] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000006 [ 285.024919][ T8651] RBP: 00007f1416e10a68 R08: 0000000000000000 R09: 0000000000000000 [ 285.024939][ T8651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 285.024965][ T8651] R13: 0000000000000000 R14: 00007f1416fb5fa0 R15: 00007fff82a12f98 [ 285.025008][ T8651] [ 286.163632][ T8664] openvswitch: .SR: Dropping previously announced user features [ 286.421317][ T8670] FAULT_INJECTION: forcing a failure. [ 286.421317][ T8670] name failslab, interval 1, probability 0, space 0, times 0 [ 286.457808][ T8670] CPU: 1 UID: 0 PID: 8670 Comm: syz.3.714 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 286.457851][ T8670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 286.457868][ T8670] Call Trace: [ 286.457877][ T8670] [ 286.457888][ T8670] dump_stack_lvl+0x16c/0x1f0 [ 286.457935][ T8670] should_fail_ex+0x512/0x640 [ 286.457967][ T8670] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 286.458017][ T8670] should_failslab+0xc2/0x120 [ 286.458044][ T8670] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 286.458088][ T8670] ? __alloc_skb+0x2b2/0x380 [ 286.458129][ T8670] __alloc_skb+0x2b2/0x380 [ 286.458165][ T8670] ? __pfx___alloc_skb+0x10/0x10 [ 286.458204][ T8670] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 286.458245][ T8670] ? is_bpf_text_address+0x94/0x1a0 [ 286.458277][ T8670] __ip6_append_data+0x2bb6/0x4710 [ 286.458329][ T8670] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 286.458388][ T8670] ? __pfx___ip6_append_data+0x10/0x10 [ 286.458440][ T8670] ip6_append_data+0x1bd/0x4c0 [ 286.458482][ T8670] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 286.458527][ T8670] udpv6_sendmsg+0x1d88/0x3070 [ 286.458563][ T8670] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 286.458615][ T8670] ? __pfx_udpv6_sendmsg+0x10/0x10 [ 286.458644][ T8670] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 286.458737][ T8670] ? __pfx_aa_sk_perm+0x10/0x10 [ 286.458770][ T8670] ? stack_trace_save+0x8e/0xc0 [ 286.458809][ T8670] ? __pfx_stack_trace_save+0x10/0x10 [ 286.458848][ T8670] ? __pfx_udpv6_sendmsg+0x10/0x10 [ 286.458884][ T8670] ? inet6_sendmsg+0x105/0x140 [ 286.458917][ T8670] inet6_sendmsg+0x105/0x140 [ 286.458952][ T8670] sock_sendmsg+0x2b3/0x470 [ 286.458979][ T8670] ? __kasan_slab_free+0x51/0x70 [ 286.459025][ T8670] ? __pfx_sock_sendmsg+0x10/0x10 [ 286.459050][ T8670] ? splice_direct_to_actor+0x2a1/0xa30 [ 286.459113][ T8670] splice_to_socket+0xaf6/0x1110 [ 286.459175][ T8670] ? __pfx_splice_to_socket+0x10/0x10 [ 286.459217][ T8670] ? lockdep_hardirqs_on+0x7c/0x110 [ 286.459303][ T8670] ? lockdep_init_map_type+0x5c/0x280 [ 286.459334][ T8670] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 286.459378][ T8670] ? __pfx_splice_to_socket+0x10/0x10 [ 286.459422][ T8670] direct_splice_actor+0x18f/0x6c0 [ 286.459467][ T8670] splice_direct_to_actor+0x342/0xa30 [ 286.459510][ T8670] ? __pfx_direct_splice_actor+0x10/0x10 [ 286.459559][ T8670] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 286.459611][ T8670] do_splice_direct+0x174/0x240 [ 286.459651][ T8670] ? __pfx_do_splice_direct+0x10/0x10 [ 286.459692][ T8670] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 286.459747][ T8670] ? bpf_lsm_file_permission+0x9/0x10 [ 286.459784][ T8670] ? security_file_permission+0x71/0x210 [ 286.459823][ T8670] ? rw_verify_area+0xcf/0x680 [ 286.459862][ T8670] do_sendfile+0xafd/0xe50 [ 286.459908][ T8670] ? __pfx_do_sendfile+0x10/0x10 [ 286.459951][ T8670] ? __x64_sys_futex+0x1e0/0x4c0 [ 286.459994][ T8670] ? __x64_sys_futex+0x1e9/0x4c0 [ 286.460038][ T8670] __x64_sys_sendfile64+0x1d8/0x220 [ 286.460068][ T8670] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 286.460095][ T8670] ? rcu_is_watching+0x12/0xc0 [ 286.460141][ T8670] do_syscall_64+0xcd/0x260 [ 286.460188][ T8670] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.460218][ T8670] RIP: 0033:0x7f7e29d8e169 [ 286.460241][ T8670] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 286.460273][ T8670] RSP: 002b:00007f7e2ab7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 286.460301][ T8670] RAX: ffffffffffffffda RBX: 00007f7e29fb5fa0 RCX: 00007f7e29d8e169 [ 286.460320][ T8670] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 286.460338][ T8670] RBP: 00007f7e29e10a68 R08: 0000000000000000 R09: 0000000000000000 [ 286.460355][ T8670] R10: 0000400000000006 R11: 0000000000000246 R12: 0000000000000000 [ 286.460371][ T8670] R13: 0000000000000000 R14: 00007f7e29fb5fa0 R15: 00007fffc5ebe648 [ 286.460407][ T8670] [ 286.950865][ T8678] netlink: 36 bytes leftover after parsing attributes in process `syz.1.715'. [ 286.988015][ T8678] openvswitch: .SR: Dropping previously announced user features [ 287.425249][ T8689] netlink: 28 bytes leftover after parsing attributes in process `syz.2.719'. [ 288.612820][ T8703] netlink: 28 bytes leftover after parsing attributes in process `syz.1.722'. [ 289.359182][ T8714] FAULT_INJECTION: forcing a failure. [ 289.359182][ T8714] name failslab, interval 1, probability 0, space 0, times 0 [ 289.371963][ T8714] CPU: 0 UID: 0 PID: 8714 Comm: syz.0.725 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 289.372000][ T8714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 289.372018][ T8714] Call Trace: [ 289.372028][ T8714] [ 289.372038][ T8714] dump_stack_lvl+0x16c/0x1f0 [ 289.372084][ T8714] should_fail_ex+0x512/0x640 [ 289.372116][ T8714] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 289.372165][ T8714] should_failslab+0xc2/0x120 [ 289.372193][ T8714] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 289.372237][ T8714] ? __alloc_skb+0x2b2/0x380 [ 289.372276][ T8714] __alloc_skb+0x2b2/0x380 [ 289.372310][ T8714] ? __pfx___alloc_skb+0x10/0x10 [ 289.372361][ T8714] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 289.372421][ T8714] ? is_bpf_text_address+0x94/0x1a0 [ 289.372455][ T8714] __ip6_append_data+0x2bb6/0x4710 [ 289.372509][ T8714] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 289.372570][ T8714] ? __pfx___ip6_append_data+0x10/0x10 [ 289.372625][ T8714] ip6_append_data+0x1bd/0x4c0 [ 289.372679][ T8714] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 289.372730][ T8714] udpv6_sendmsg+0x1d88/0x3070 [ 289.372765][ T8714] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 289.372817][ T8714] ? __pfx_udpv6_sendmsg+0x10/0x10 [ 289.372847][ T8714] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 289.372931][ T8714] ? __pfx_aa_sk_perm+0x10/0x10 [ 289.372960][ T8714] ? stack_trace_save+0x8e/0xc0 [ 289.372997][ T8714] ? __pfx_stack_trace_save+0x10/0x10 [ 289.373035][ T8714] ? __pfx_udpv6_sendmsg+0x10/0x10 [ 289.373069][ T8714] ? inet6_sendmsg+0x105/0x140 [ 289.373100][ T8714] inet6_sendmsg+0x105/0x140 [ 289.373136][ T8714] sock_sendmsg+0x2b3/0x470 [ 289.373161][ T8714] ? __kasan_slab_free+0x51/0x70 [ 289.373204][ T8714] ? __pfx_sock_sendmsg+0x10/0x10 [ 289.373227][ T8714] ? splice_direct_to_actor+0x2a1/0xa30 [ 289.373290][ T8714] splice_to_socket+0xaf6/0x1110 [ 289.373350][ T8714] ? __pfx_splice_to_socket+0x10/0x10 [ 289.373389][ T8714] ? lockdep_hardirqs_on+0x7c/0x110 [ 289.373472][ T8714] ? lockdep_init_map_type+0x5c/0x280 [ 289.373502][ T8714] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 289.373544][ T8714] ? __pfx_splice_to_socket+0x10/0x10 [ 289.373587][ T8714] direct_splice_actor+0x18f/0x6c0 [ 289.373630][ T8714] splice_direct_to_actor+0x342/0xa30 [ 289.373672][ T8714] ? __pfx_direct_splice_actor+0x10/0x10 [ 289.373719][ T8714] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 289.373777][ T8714] do_splice_direct+0x174/0x240 [ 289.373816][ T8714] ? __pfx_do_splice_direct+0x10/0x10 [ 289.373857][ T8714] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 289.373898][ T8714] ? bpf_lsm_file_permission+0x9/0x10 [ 289.373934][ T8714] ? security_file_permission+0x71/0x210 [ 289.373972][ T8714] ? rw_verify_area+0xcf/0x680 [ 289.374010][ T8714] do_sendfile+0xafd/0xe50 [ 289.374053][ T8714] ? __pfx_do_sendfile+0x10/0x10 [ 289.374096][ T8714] ? __x64_sys_futex+0x1e0/0x4c0 [ 289.374134][ T8714] ? __x64_sys_futex+0x1e9/0x4c0 [ 289.374177][ T8714] __x64_sys_sendfile64+0x1d8/0x220 [ 289.374206][ T8714] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 289.374232][ T8714] ? rcu_is_watching+0x12/0xc0 [ 289.374276][ T8714] do_syscall_64+0xcd/0x260 [ 289.374321][ T8714] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 289.374356][ T8714] RIP: 0033:0x7fe80018e169 [ 289.374379][ T8714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 289.374407][ T8714] RSP: 002b:00007fe800f36038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 289.374439][ T8714] RAX: ffffffffffffffda RBX: 00007fe8003b5fa0 RCX: 00007fe80018e169 [ 289.374459][ T8714] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 289.374476][ T8714] RBP: 00007fe800210a68 R08: 0000000000000000 R09: 0000000000000000 [ 289.374494][ T8714] R10: 0000400000000006 R11: 0000000000000246 R12: 0000000000000000 [ 289.374511][ T8714] R13: 0000000000000000 R14: 00007fe8003b5fa0 R15: 00007ffd45b67588 [ 289.374551][ T8714] [ 290.443106][ T8731] netlink: 36 bytes leftover after parsing attributes in process `syz.2.728'. [ 290.841421][ T8736] openvswitch: .SR: Dropping previously announced user features [ 291.224477][ T8741] netlink: 8 bytes leftover after parsing attributes in process `syz.3.730'. [ 291.229286][ T8738] mkiss: ax0: crc mode is auto. [ 291.674810][ T8741] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 292.143865][ T8756] netlink: 36 bytes leftover after parsing attributes in process `syz.3.734'. [ 292.302313][ T8757] openvswitch: .SR: Dropping previously announced user features [ 293.056627][ T8770] netlink: 28 bytes leftover after parsing attributes in process `syz.2.737'. [ 293.938597][ T8779] netlink: 36 bytes leftover after parsing attributes in process `syz.2.739'. [ 293.973915][ T8779] FAULT_INJECTION: forcing a failure. [ 293.973915][ T8779] name failslab, interval 1, probability 0, space 0, times 0 [ 294.020678][ T8779] CPU: 1 UID: 0 PID: 8779 Comm: syz.2.739 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 294.020718][ T8779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 294.020735][ T8779] Call Trace: [ 294.020744][ T8779] [ 294.020754][ T8779] dump_stack_lvl+0x16c/0x1f0 [ 294.020799][ T8779] should_fail_ex+0x512/0x640 [ 294.020836][ T8779] should_failslab+0xc2/0x120 [ 294.020861][ T8779] __kmalloc_cache_noprof+0x6a/0x3e0 [ 294.020899][ T8779] ? __pfx___might_resched+0x10/0x10 [ 294.020937][ T8779] ? __hw_addr_add_ex+0x3c9/0x7c0 [ 294.020969][ T8779] __hw_addr_add_ex+0x3c9/0x7c0 [ 294.021001][ T8779] ? __pfx___hw_addr_add_ex+0x10/0x10 [ 294.021027][ T8779] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 294.021077][ T8779] ? __pfx_do_setup+0x10/0x10 [ 294.021100][ T8779] dev_addr_init+0x161/0x250 [ 294.021130][ T8779] ? __pfx_dev_addr_init+0x10/0x10 [ 294.021172][ T8779] alloc_netdev_mqs+0x3d2/0x1570 [ 294.021211][ T8779] ? ovs_vport_alloc+0x2a0/0x3d0 [ 294.021260][ T8779] internal_dev_create+0x8a/0x520 [ 294.021296][ T8779] ovs_vport_add+0x144/0x4d0 [ 294.021343][ T8779] new_vport+0x16/0x1d0 [ 294.021379][ T8779] ovs_dp_cmd_new+0x6ba/0xe60 [ 294.021426][ T8779] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 294.021473][ T8779] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 294.021503][ T8779] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 294.021541][ T8779] genl_family_rcv_msg_doit+0x206/0x2f0 [ 294.021572][ T8779] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 294.021601][ T8779] ? trace_cap_capable+0x18d/0x200 [ 294.021636][ T8779] ? bpf_lsm_capable+0x9/0x10 [ 294.021675][ T8779] ? security_capable+0x7e/0x260 [ 294.021702][ T8779] ? ns_capable+0xd7/0x110 [ 294.021740][ T8779] genl_rcv_msg+0x55c/0x800 [ 294.021771][ T8779] ? __pfx_genl_rcv_msg+0x10/0x10 [ 294.021797][ T8779] ? __pfx___dev_queue_xmit+0x10/0x10 [ 294.021827][ T8779] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 294.021868][ T8779] ? __lock_acquire+0xaa4/0x1ba0 [ 294.021900][ T8779] netlink_rcv_skb+0x16a/0x440 [ 294.021941][ T8779] ? __pfx_genl_rcv_msg+0x10/0x10 [ 294.021971][ T8779] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 294.022031][ T8779] ? __pfx_down_read+0x10/0x10 [ 294.022058][ T8779] ? netlink_deliver_tap+0x1ae/0xd30 [ 294.022103][ T8779] genl_rcv+0x28/0x40 [ 294.022143][ T8779] netlink_unicast+0x53a/0x7f0 [ 294.022190][ T8779] ? __pfx_netlink_unicast+0x10/0x10 [ 294.022228][ T8779] ? __lock_acquire+0xaa4/0x1ba0 [ 294.022263][ T8779] netlink_sendmsg+0x8d1/0xdd0 [ 294.022315][ T8779] ? __pfx_netlink_sendmsg+0x10/0x10 [ 294.022372][ T8779] ____sys_sendmsg+0xa95/0xc70 [ 294.022400][ T8779] ? copy_msghdr_from_user+0x10a/0x160 [ 294.022437][ T8779] ? __pfx_____sys_sendmsg+0x10/0x10 [ 294.022471][ T8779] ? try_to_wake_up+0xa2f/0x1680 [ 294.022512][ T8779] ___sys_sendmsg+0x134/0x1d0 [ 294.022551][ T8779] ? __pfx____sys_sendmsg+0x10/0x10 [ 294.022632][ T8779] __sys_sendmsg+0x16d/0x220 [ 294.022669][ T8779] ? __pfx___sys_sendmsg+0x10/0x10 [ 294.022705][ T8779] ? __x64_sys_futex+0x1e0/0x4c0 [ 294.022754][ T8779] ? rcu_is_watching+0x12/0xc0 [ 294.022799][ T8779] do_syscall_64+0xcd/0x260 [ 294.022843][ T8779] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 294.022871][ T8779] RIP: 0033:0x7f37efb8e169 [ 294.022894][ T8779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 294.022923][ T8779] RSP: 002b:00007f37f0919038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 294.022950][ T8779] RAX: ffffffffffffffda RBX: 00007f37efdb5fa0 RCX: 00007f37efb8e169 [ 294.022969][ T8779] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000006 [ 294.022986][ T8779] RBP: 00007f37efc10a68 R08: 0000000000000000 R09: 0000000000000000 [ 294.023002][ T8779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 294.023018][ T8779] R13: 0000000000000000 R14: 00007f37efdb5fa0 R15: 00007ffdfb160b28 [ 294.023054][ T8779] [ 294.739188][ T8789] netlink: 36 bytes leftover after parsing attributes in process `syz.0.749'. [ 294.914030][ T8789] openvswitch: .SR: Dropping previously announced user features [ 296.686054][ T5847] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 298.449134][ T8822] kexec: Could not allocate control_code_buffer [ 302.072514][ T5847] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 302.081270][ T5847] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection [ 302.316417][ T8909] openvswitch: .SR: Dropping previously announced user features [ 302.324256][ T8909] FAULT_INJECTION: forcing a failure. [ 302.324256][ T8909] name failslab, interval 1, probability 0, space 0, times 0 [ 302.489165][ T8909] CPU: 1 UID: 0 PID: 8909 Comm: syz.0.777 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 302.489209][ T8909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 302.489228][ T8909] Call Trace: [ 302.489238][ T8909] [ 302.489249][ T8909] dump_stack_lvl+0x16c/0x1f0 [ 302.489299][ T8909] should_fail_ex+0x512/0x640 [ 302.489333][ T8909] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 302.489384][ T8909] should_failslab+0xc2/0x120 [ 302.489413][ T8909] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 302.489460][ T8909] ? __alloc_skb+0x2b2/0x380 [ 302.489498][ T8909] ? bpf_lsm_capable+0x9/0x10 [ 302.489554][ T8909] __alloc_skb+0x2b2/0x380 [ 302.489590][ T8909] ? __pfx___alloc_skb+0x10/0x10 [ 302.489628][ T8909] ? genl_rcv_msg+0x480/0x800 [ 302.489655][ T8909] ? genl_rcv_msg+0x4bb/0x800 [ 302.489694][ T8909] netlink_ack+0x15d/0xb80 [ 302.489741][ T8909] ? __lock_acquire+0xaa4/0x1ba0 [ 302.489776][ T8909] netlink_rcv_skb+0x347/0x440 [ 302.489820][ T8909] ? __pfx_genl_rcv_msg+0x10/0x10 [ 302.489852][ T8909] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 302.489915][ T8909] ? __pfx_down_read+0x10/0x10 [ 302.489945][ T8909] ? netlink_deliver_tap+0x1ae/0xd30 [ 302.489992][ T8909] genl_rcv+0x28/0x40 [ 302.490037][ T8909] netlink_unicast+0x53a/0x7f0 [ 302.490098][ T8909] ? __pfx_netlink_unicast+0x10/0x10 [ 302.490136][ T8909] ? __lock_acquire+0xaa4/0x1ba0 [ 302.490170][ T8909] netlink_sendmsg+0x8d1/0xdd0 [ 302.490234][ T8909] ? __pfx_netlink_sendmsg+0x10/0x10 [ 302.490292][ T8909] ____sys_sendmsg+0xa95/0xc70 [ 302.490322][ T8909] ? copy_msghdr_from_user+0x10a/0x160 [ 302.490360][ T8909] ? __pfx_____sys_sendmsg+0x10/0x10 [ 302.490407][ T8909] ___sys_sendmsg+0x134/0x1d0 [ 302.490449][ T8909] ? __pfx____sys_sendmsg+0x10/0x10 [ 302.490543][ T8909] __sys_sendmsg+0x16d/0x220 [ 302.490584][ T8909] ? __pfx___sys_sendmsg+0x10/0x10 [ 302.490623][ T8909] ? __x64_sys_futex+0x1e0/0x4c0 [ 302.490677][ T8909] ? rcu_is_watching+0x12/0xc0 [ 302.490726][ T8909] do_syscall_64+0xcd/0x260 [ 302.490774][ T8909] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 302.490804][ T8909] RIP: 0033:0x7fe80018e169 [ 302.490829][ T8909] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 302.490858][ T8909] RSP: 002b:00007fe800f36038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 302.490887][ T8909] RAX: ffffffffffffffda RBX: 00007fe8003b5fa0 RCX: 00007fe80018e169 [ 302.490907][ T8909] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000006 [ 302.490926][ T8909] RBP: 00007fe800210a68 R08: 0000000000000000 R09: 0000000000000000 [ 302.490944][ T8909] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 302.490962][ T8909] R13: 0000000000000000 R14: 00007fe8003b5fa0 R15: 00007ffd45b67588 [ 302.491019][ T8909] [ 302.890584][ T8903] kexec: Could not allocate control_code_buffer [ 303.909204][ T8935] FAULT_INJECTION: forcing a failure. [ 303.909204][ T8935] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 303.922584][ T8935] CPU: 0 UID: 0 PID: 8935 Comm: syz.1.774 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 303.922622][ T8935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 303.922639][ T8935] Call Trace: [ 303.922649][ T8935] [ 303.922660][ T8935] dump_stack_lvl+0x16c/0x1f0 [ 303.922708][ T8935] should_fail_ex+0x512/0x640 [ 303.922746][ T8935] should_fail_alloc_page+0xe7/0x130 [ 303.922776][ T8935] prepare_alloc_pages+0x3c2/0x610 [ 303.922818][ T8935] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 303.922863][ T8935] ? copy_splice_read+0x1a8/0xba0 [ 303.922918][ T8935] ? stack_trace_save+0x8e/0xc0 [ 303.922958][ T8935] ? __pfx_stack_trace_save+0x10/0x10 [ 303.922999][ T8935] ? stack_depot_save_flags+0x28/0xa50 [ 303.923043][ T8935] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 303.923089][ T8935] ? kasan_save_stack+0x33/0x60 [ 303.923131][ T8935] ? __kasan_kmalloc+0xaa/0xb0 [ 303.923180][ T8935] ? copy_splice_read+0x1a8/0xba0 [ 303.923219][ T8935] ? do_splice_read+0x282/0x370 [ 303.923256][ T8935] ? splice_direct_to_actor+0x2a1/0xa30 [ 303.923296][ T8935] ? do_splice_direct+0x174/0x240 [ 303.923334][ T8935] ? do_sendfile+0xafd/0xe50 [ 303.923371][ T8935] ? __x64_sys_sendfile64+0x1d8/0x220 [ 303.923398][ T8935] ? do_syscall_64+0xcd/0x260 [ 303.923469][ T8935] alloc_pages_bulk_noprof+0x703/0x13b0 [ 303.923528][ T8935] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 303.923584][ T8935] ? trace_kmalloc+0x2b/0xd0 [ 303.923613][ T8935] ? __kmalloc_noprof+0x242/0x510 [ 303.923667][ T8935] copy_splice_read+0x1e1/0xba0 [ 303.923716][ T8935] ? __pfx_copy_splice_read+0x10/0x10 [ 303.923769][ T8935] ? lockdep_init_map_type+0x5c/0x280 [ 303.923801][ T8935] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 303.923848][ T8935] ? __pfx_copy_splice_read+0x10/0x10 [ 303.923888][ T8935] do_splice_read+0x282/0x370 [ 303.923932][ T8935] splice_direct_to_actor+0x2a1/0xa30 [ 303.923976][ T8935] ? __pfx_direct_splice_actor+0x10/0x10 [ 303.924035][ T8935] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 303.924085][ T8935] do_splice_direct+0x174/0x240 [ 303.924125][ T8935] ? __pfx_do_splice_direct+0x10/0x10 [ 303.924172][ T8935] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 303.924212][ T8935] ? bpf_lsm_file_permission+0x9/0x10 [ 303.924249][ T8935] ? security_file_permission+0x71/0x210 [ 303.924287][ T8935] ? rw_verify_area+0xcf/0x680 [ 303.924325][ T8935] do_sendfile+0xafd/0xe50 [ 303.924368][ T8935] ? __pfx_do_sendfile+0x10/0x10 [ 303.924411][ T8935] ? __x64_sys_futex+0x1e0/0x4c0 [ 303.924450][ T8935] ? __x64_sys_futex+0x1e9/0x4c0 [ 303.924494][ T8935] __x64_sys_sendfile64+0x1d8/0x220 [ 303.924525][ T8935] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 303.924551][ T8935] ? rcu_is_watching+0x12/0xc0 [ 303.924594][ T8935] do_syscall_64+0xcd/0x260 [ 303.924639][ T8935] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 303.924667][ T8935] RIP: 0033:0x7f1416d8e169 [ 303.924689][ T8935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 303.924717][ T8935] RSP: 002b:00007f1417c73038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 303.924743][ T8935] RAX: ffffffffffffffda RBX: 00007f1416fb5fa0 RCX: 00007f1416d8e169 [ 303.924761][ T8935] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 303.924777][ T8935] RBP: 00007f1416e10a68 R08: 0000000000000000 R09: 0000000000000000 [ 303.924793][ T8935] R10: 0000400000000006 R11: 0000000000000246 R12: 0000000000000000 [ 303.924810][ T8935] R13: 0000000000000000 R14: 00007f1416fb5fa0 R15: 00007fff82a12f98 [ 303.924845][ T8935] [ 304.684091][ T8937] Invalid ELF header magic: != ELF [ 304.794091][ T8945] FAULT_INJECTION: forcing a failure. [ 304.794091][ T8945] name failslab, interval 1, probability 0, space 0, times 0 [ 304.857855][ T8945] CPU: 1 UID: 0 PID: 8945 Comm: syz.1.785 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 304.857897][ T8945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 304.857913][ T8945] Call Trace: [ 304.857923][ T8945] [ 304.857934][ T8945] dump_stack_lvl+0x16c/0x1f0 [ 304.857982][ T8945] should_fail_ex+0x512/0x640 [ 304.858013][ T8945] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 304.858086][ T8945] should_failslab+0xc2/0x120 [ 304.858114][ T8945] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 304.858159][ T8945] ? __alloc_skb+0x2b2/0x380 [ 304.858199][ T8945] __alloc_skb+0x2b2/0x380 [ 304.858233][ T8945] ? __pfx___alloc_skb+0x10/0x10 [ 304.858271][ T8945] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 304.858310][ T8945] ? is_bpf_text_address+0x94/0x1a0 [ 304.858342][ T8945] __ip6_append_data+0x2bb6/0x4710 [ 304.858391][ T8945] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 304.858451][ T8945] ? __pfx___ip6_append_data+0x10/0x10 [ 304.858504][ T8945] ip6_append_data+0x1bd/0x4c0 [ 304.858546][ T8945] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 304.858592][ T8945] udpv6_sendmsg+0x1d88/0x3070 [ 304.858628][ T8945] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 304.858678][ T8945] ? __pfx_udpv6_sendmsg+0x10/0x10 [ 304.858707][ T8945] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 304.858789][ T8945] ? __pfx_aa_sk_perm+0x10/0x10 [ 304.858819][ T8945] ? stack_trace_save+0x8e/0xc0 [ 304.858855][ T8945] ? __pfx_stack_trace_save+0x10/0x10 [ 304.858893][ T8945] ? __pfx_udpv6_sendmsg+0x10/0x10 [ 304.858926][ T8945] ? inet6_sendmsg+0x105/0x140 [ 304.858958][ T8945] inet6_sendmsg+0x105/0x140 [ 304.858993][ T8945] sock_sendmsg+0x2b3/0x470 [ 304.859017][ T8945] ? __kasan_slab_free+0x51/0x70 [ 304.859071][ T8945] ? __pfx_sock_sendmsg+0x10/0x10 [ 304.859096][ T8945] ? splice_direct_to_actor+0x2a1/0xa30 [ 304.859160][ T8945] splice_to_socket+0xaf6/0x1110 [ 304.859220][ T8945] ? __pfx_splice_to_socket+0x10/0x10 [ 304.859259][ T8945] ? lockdep_hardirqs_on+0x7c/0x110 [ 304.859342][ T8945] ? lockdep_init_map_type+0x5c/0x280 [ 304.859372][ T8945] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 304.859414][ T8945] ? __pfx_splice_to_socket+0x10/0x10 [ 304.859456][ T8945] direct_splice_actor+0x18f/0x6c0 [ 304.859500][ T8945] splice_direct_to_actor+0x342/0xa30 [ 304.859541][ T8945] ? __pfx_direct_splice_actor+0x10/0x10 [ 304.859586][ T8945] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 304.859636][ T8945] do_splice_direct+0x174/0x240 [ 304.859675][ T8945] ? __pfx_do_splice_direct+0x10/0x10 [ 304.859714][ T8945] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 304.859754][ T8945] ? bpf_lsm_file_permission+0x9/0x10 [ 304.859789][ T8945] ? security_file_permission+0x71/0x210 [ 304.859828][ T8945] ? rw_verify_area+0xcf/0x680 [ 304.859865][ T8945] do_sendfile+0xafd/0xe50 [ 304.859909][ T8945] ? __pfx_do_sendfile+0x10/0x10 [ 304.859951][ T8945] ? __x64_sys_futex+0x1e0/0x4c0 [ 304.859990][ T8945] ? __x64_sys_futex+0x1e9/0x4c0 [ 304.860034][ T8945] __x64_sys_sendfile64+0x1d8/0x220 [ 304.860071][ T8945] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 304.860098][ T8945] ? rcu_is_watching+0x12/0xc0 [ 304.860146][ T8945] do_syscall_64+0xcd/0x260 [ 304.860192][ T8945] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 304.860221][ T8945] RIP: 0033:0x7f1416d8e169 [ 304.860243][ T8945] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 304.860270][ T8945] RSP: 002b:00007f1417c73038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 304.860296][ T8945] RAX: ffffffffffffffda RBX: 00007f1416fb5fa0 RCX: 00007f1416d8e169 [ 304.860314][ T8945] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 304.860330][ T8945] RBP: 00007f1416e10a68 R08: 0000000000000000 R09: 0000000000000000 [ 304.860346][ T8945] R10: 0000400000000006 R11: 0000000000000246 R12: 0000000000000000 [ 304.860362][ T8945] R13: 0000000000000000 R14: 00007f1416fb5fa0 R15: 00007fff82a12f98 [ 304.860397][ T8945] [ 305.644338][ T8946] netlink: 36 bytes leftover after parsing attributes in process `syz.2.776'. [ 310.420043][ T9019] FAULT_INJECTION: forcing a failure. [ 310.420043][ T9019] name failslab, interval 1, probability 0, space 0, times 0 [ 310.435271][ T9019] CPU: 0 UID: 0 PID: 9019 Comm: syz.1.795 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 310.435308][ T9019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 310.435325][ T9019] Call Trace: [ 310.435334][ T9019] [ 310.435344][ T9019] dump_stack_lvl+0x16c/0x1f0 [ 310.435388][ T9019] should_fail_ex+0x512/0x640 [ 310.435419][ T9019] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 310.435459][ T9019] should_failslab+0xc2/0x120 [ 310.435507][ T9019] __kmalloc_cache_noprof+0x6a/0x3e0 [ 310.435549][ T9019] ? __asan_memset+0x23/0x50 [ 310.435603][ T9019] ? alloc_netdev_mqs+0xece/0x1570 [ 310.435650][ T9019] ? __xdp_rxq_info_reg+0x14e/0x2d0 [ 310.435704][ T9019] alloc_netdev_mqs+0xece/0x1570 [ 310.435758][ T9019] internal_dev_create+0x8a/0x520 [ 310.435793][ T9019] ovs_vport_add+0x144/0x4d0 [ 310.435863][ T9019] new_vport+0x16/0x1d0 [ 310.435904][ T9019] ovs_dp_cmd_new+0x6ba/0xe60 [ 310.435960][ T9019] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 310.436016][ T9019] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 310.436053][ T9019] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 310.436097][ T9019] genl_family_rcv_msg_doit+0x206/0x2f0 [ 310.436133][ T9019] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 310.436165][ T9019] ? trace_cap_capable+0x18d/0x200 [ 310.436205][ T9019] ? bpf_lsm_capable+0x9/0x10 [ 310.436252][ T9019] ? security_capable+0x7e/0x260 [ 310.436285][ T9019] ? ns_capable+0xd7/0x110 [ 310.436329][ T9019] genl_rcv_msg+0x55c/0x800 [ 310.436364][ T9019] ? __pfx_genl_rcv_msg+0x10/0x10 [ 310.436396][ T9019] ? __pfx___dev_queue_xmit+0x10/0x10 [ 310.436433][ T9019] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 310.436490][ T9019] ? __lock_acquire+0xaa4/0x1ba0 [ 310.436530][ T9019] netlink_rcv_skb+0x16a/0x440 [ 310.436577][ T9019] ? __pfx_genl_rcv_msg+0x10/0x10 [ 310.436605][ T9019] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 310.436665][ T9019] ? __pfx_down_read+0x10/0x10 [ 310.436692][ T9019] ? netlink_deliver_tap+0x1ae/0xd30 [ 310.436737][ T9019] genl_rcv+0x28/0x40 [ 310.436778][ T9019] netlink_unicast+0x53a/0x7f0 [ 310.436834][ T9019] ? __pfx_netlink_unicast+0x10/0x10 [ 310.436880][ T9019] ? __lock_acquire+0xaa4/0x1ba0 [ 310.436924][ T9019] netlink_sendmsg+0x8d1/0xdd0 [ 310.436982][ T9019] ? __pfx_netlink_sendmsg+0x10/0x10 [ 310.437045][ T9019] ____sys_sendmsg+0xa95/0xc70 [ 310.437077][ T9019] ? copy_msghdr_from_user+0x10a/0x160 [ 310.437120][ T9019] ? __pfx_____sys_sendmsg+0x10/0x10 [ 310.437171][ T9019] ___sys_sendmsg+0x134/0x1d0 [ 310.437223][ T9019] ? __pfx____sys_sendmsg+0x10/0x10 [ 310.437309][ T9019] __sys_sendmsg+0x16d/0x220 [ 310.437349][ T9019] ? __pfx___sys_sendmsg+0x10/0x10 [ 310.437386][ T9019] ? __x64_sys_futex+0x1e0/0x4c0 [ 310.437437][ T9019] ? rcu_is_watching+0x12/0xc0 [ 310.437485][ T9019] do_syscall_64+0xcd/0x260 [ 310.437531][ T9019] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 310.437558][ T9019] RIP: 0033:0x7f1416d8e169 [ 310.437579][ T9019] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 310.437606][ T9019] RSP: 002b:00007f1417c73038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 310.437630][ T9019] RAX: ffffffffffffffda RBX: 00007f1416fb5fa0 RCX: 00007f1416d8e169 [ 310.437650][ T9019] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000006 [ 310.437669][ T9019] RBP: 00007f1416e10a68 R08: 0000000000000000 R09: 0000000000000000 [ 310.437687][ T9019] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 310.437704][ T9019] R13: 0000000000000000 R14: 00007f1416fb5fa0 R15: 00007fff82a12f98 [ 310.437749][ T9019] [ 310.913564][ T9022] netlink: 338 bytes leftover after parsing attributes in process `syz.2.796'. [ 311.194746][ T9023] netlink: 338 bytes leftover after parsing attributes in process `syz.2.796'. [ 312.949147][ T9059] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input31 [ 313.503933][ T9063] batman_adv: Routing algorithm '' is not supported [ 313.835346][ T9075] FAULT_INJECTION: forcing a failure. [ 313.835346][ T9075] name failslab, interval 1, probability 0, space 0, times 0 [ 313.881380][ T9075] CPU: 0 UID: 0 PID: 9075 Comm: syz.0.807 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 313.881421][ T9075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 313.881438][ T9075] Call Trace: [ 313.881448][ T9075] [ 313.881459][ T9075] dump_stack_lvl+0x16c/0x1f0 [ 313.881504][ T9075] should_fail_ex+0x512/0x640 [ 313.881537][ T9075] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 313.881579][ T9075] should_failslab+0xc2/0x120 [ 313.881605][ T9075] __kmalloc_cache_noprof+0x6a/0x3e0 [ 313.881643][ T9075] ? __asan_memset+0x23/0x50 [ 313.881676][ T9075] ? alloc_netdev_mqs+0xece/0x1570 [ 313.881714][ T9075] ? __xdp_rxq_info_reg+0x14e/0x2d0 [ 313.881758][ T9075] alloc_netdev_mqs+0xece/0x1570 [ 313.881805][ T9075] internal_dev_create+0x8a/0x520 [ 313.881836][ T9075] ovs_vport_add+0x144/0x4d0 [ 313.881882][ T9075] new_vport+0x16/0x1d0 [ 313.881918][ T9075] ovs_dp_cmd_new+0x6ba/0xe60 [ 313.881965][ T9075] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 313.882010][ T9075] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 313.882042][ T9075] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 313.882080][ T9075] genl_family_rcv_msg_doit+0x206/0x2f0 [ 313.882111][ T9075] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 313.882140][ T9075] ? trace_cap_capable+0x18d/0x200 [ 313.882175][ T9075] ? bpf_lsm_capable+0x9/0x10 [ 313.882213][ T9075] ? security_capable+0x7e/0x260 [ 313.882250][ T9075] ? ns_capable+0xd7/0x110 [ 313.882288][ T9075] genl_rcv_msg+0x55c/0x800 [ 313.882320][ T9075] ? __pfx_genl_rcv_msg+0x10/0x10 [ 313.882347][ T9075] ? __pfx___dev_queue_xmit+0x10/0x10 [ 313.882378][ T9075] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 313.882417][ T9075] ? __lock_acquire+0xaa4/0x1ba0 [ 313.882451][ T9075] netlink_rcv_skb+0x16a/0x440 [ 313.882492][ T9075] ? __pfx_genl_rcv_msg+0x10/0x10 [ 313.882521][ T9075] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 313.882580][ T9075] ? __pfx_down_read+0x10/0x10 [ 313.882607][ T9075] ? netlink_deliver_tap+0x1ae/0xd30 [ 313.882651][ T9075] genl_rcv+0x28/0x40 [ 313.882692][ T9075] netlink_unicast+0x53a/0x7f0 [ 313.882738][ T9075] ? __pfx_netlink_unicast+0x10/0x10 [ 313.882777][ T9075] ? __lock_acquire+0xaa4/0x1ba0 [ 313.882811][ T9075] netlink_sendmsg+0x8d1/0xdd0 [ 313.882858][ T9075] ? __pfx_netlink_sendmsg+0x10/0x10 [ 313.882913][ T9075] ____sys_sendmsg+0xa95/0xc70 [ 313.882942][ T9075] ? copy_msghdr_from_user+0x10a/0x160 [ 313.882978][ T9075] ? __pfx_____sys_sendmsg+0x10/0x10 [ 313.883008][ T9075] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 313.883054][ T9075] ___sys_sendmsg+0x134/0x1d0 [ 313.883092][ T9075] ? __pfx____sys_sendmsg+0x10/0x10 [ 313.883174][ T9075] __sys_sendmsg+0x16d/0x220 [ 313.883212][ T9075] ? __pfx___sys_sendmsg+0x10/0x10 [ 313.883255][ T9075] ? rcu_is_watching+0x12/0xc0 [ 313.883305][ T9075] ? trace_irq_enable.constprop.0+0x2f/0x120 [ 313.883343][ T9075] do_syscall_64+0xcd/0x260 [ 313.883388][ T9075] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 313.883416][ T9075] RIP: 0033:0x7fe80018e169 [ 313.883438][ T9075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 313.883465][ T9075] RSP: 002b:00007fe800f36038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 313.883492][ T9075] RAX: ffffffffffffffda RBX: 00007fe8003b5fa0 RCX: 00007fe80018e169 [ 313.883510][ T9075] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000006 [ 313.883527][ T9075] RBP: 00007fe800210a68 R08: 0000000000000000 R09: 0000000000000000 [ 313.883543][ T9075] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 313.883559][ T9075] R13: 0000000000000000 R14: 00007fe8003b5fa0 R15: 00007ffd45b67588 [ 313.883594][ T9075] [ 314.359518][ T9080] FAULT_INJECTION: forcing a failure. [ 314.359518][ T9080] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 314.465247][ T9080] CPU: 1 UID: 0 PID: 9080 Comm: syz.0.810 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 314.465286][ T9080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 314.465303][ T9080] Call Trace: [ 314.465312][ T9080] [ 314.465321][ T9080] dump_stack_lvl+0x16c/0x1f0 [ 314.465379][ T9080] should_fail_ex+0x512/0x640 [ 314.465430][ T9080] should_fail_alloc_page+0xe7/0x130 [ 314.465469][ T9080] prepare_alloc_pages+0x3c2/0x610 [ 314.465509][ T9080] ? rcu_is_watching+0x12/0xc0 [ 314.465551][ T9080] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 314.465608][ T9080] ? kasan_save_stack+0x33/0x60 [ 314.465662][ T9080] ? __lock_acquire+0xaa4/0x1ba0 [ 314.465695][ T9080] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 314.465758][ T9080] ? look_up_lock_class+0x59/0x150 [ 314.465835][ T9080] ? __lock_acquire+0x5ca/0x1ba0 [ 314.465879][ T9080] ? __lock_acquire+0x5ca/0x1ba0 [ 314.465922][ T9080] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 314.465967][ T9080] ? policy_nodemask+0xea/0x4e0 [ 314.466000][ T9080] alloc_pages_mpol+0x1fb/0x550 [ 314.466031][ T9080] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 314.466081][ T9080] ? __lock_acquire+0x5ca/0x1ba0 [ 314.466117][ T9080] folio_alloc_mpol_noprof+0x36/0x2f0 [ 314.466156][ T9080] vma_alloc_folio_noprof+0xed/0x1e0 [ 314.466193][ T9080] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 314.466242][ T9080] do_pte_missing+0x223d/0x3fb0 [ 314.466306][ T9080] __handle_mm_fault+0x103d/0x2a40 [ 314.466362][ T9080] ? __pfx___handle_mm_fault+0x10/0x10 [ 314.466405][ T9080] ? __pte_offset_map_lock+0x155/0x2f0 [ 314.466442][ T9080] ? find_held_lock+0x2b/0x80 [ 314.466488][ T9080] ? find_held_lock+0x2b/0x80 [ 314.466555][ T9080] handle_mm_fault+0x3fe/0xad0 [ 314.466608][ T9080] __get_user_pages+0x771/0x36f0 [ 314.466661][ T9080] ? __pfx_mt_find+0x10/0x10 [ 314.466712][ T9080] ? __pfx___get_user_pages+0x10/0x10 [ 314.466768][ T9080] populate_vma_page_range+0x278/0x3a0 [ 314.466815][ T9080] ? __pfx_populate_vma_page_range+0x10/0x10 [ 314.466858][ T9080] ? __pfx_find_vma_intersection+0x10/0x10 [ 314.466898][ T9080] ? do_mmap+0x69c/0x11b0 [ 314.466941][ T9080] __mm_populate+0x1d8/0x380 [ 314.466985][ T9080] ? __pfx___mm_populate+0x10/0x10 [ 314.467031][ T9080] ? up_write+0x1b2/0x520 [ 314.467070][ T9080] vm_mmap_pgoff+0x362/0x450 [ 314.467111][ T9080] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 314.467153][ T9080] ? __fget_files+0x20e/0x3c0 [ 314.467209][ T9080] ksys_mmap_pgoff+0x7d/0x5c0 [ 314.467240][ T9080] ? __pfx_ksys_write+0x10/0x10 [ 314.467298][ T9080] __x64_sys_mmap+0x125/0x190 [ 314.467340][ T9080] do_syscall_64+0xcd/0x260 [ 314.467389][ T9080] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 314.467420][ T9080] RIP: 0033:0x7fe80018e169 [ 314.467453][ T9080] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 314.467483][ T9080] RSP: 002b:00007fe800f36038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 314.467511][ T9080] RAX: ffffffffffffffda RBX: 00007fe8003b5fa0 RCX: 00007fe80018e169 [ 314.467531][ T9080] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 314.467549][ T9080] RBP: 00007fe800f36090 R08: 0000000000000002 R09: 0000000000008000 [ 314.467574][ T9080] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000002 [ 314.467592][ T9080] R13: 0000000000000001 R14: 00007fe8003b5fa0 R15: 00007ffd45b67588 [ 314.467631][ T9080] [ 315.268789][ T9092] netlink: 36 bytes leftover after parsing attributes in process `syz.3.813'. [ 315.377894][ T9092] openvswitch: .SR: Dropping previously announced user features [ 315.825229][ T9098] netlink: 80 bytes leftover after parsing attributes in process `syz.2.822'. [ 316.301715][ T9112] netlink: 4 bytes leftover after parsing attributes in process `syz.0.817'. [ 316.367178][ T9112] netlink: 25 bytes leftover after parsing attributes in process `syz.0.817'. [ 316.846592][ T9117] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 317.443882][ T30] audit: type=1800 audit(6039887922.146:6): pid=9129 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.823" name="file0" dev="tmpfs" ino=1169 res=0 errno=0 [ 319.305174][ T9128] kexec: Could not allocate control_code_buffer [ 319.352653][ T9155] netlink: 36 bytes leftover after parsing attributes in process `syz.2.827'. [ 319.522121][ T9156] openvswitch: .SR: Dropping previously announced user features [ 319.551715][ T9159] FAULT_INJECTION: forcing a failure. [ 319.551715][ T9159] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 319.608503][ T9159] CPU: 1 UID: 0 PID: 9159 Comm: syz.0.828 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 319.608540][ T9159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 319.608558][ T9159] Call Trace: [ 319.608566][ T9159] [ 319.608576][ T9159] dump_stack_lvl+0x16c/0x1f0 [ 319.608622][ T9159] should_fail_ex+0x512/0x640 [ 319.608659][ T9159] should_fail_alloc_page+0xe7/0x130 [ 319.608688][ T9159] prepare_alloc_pages+0x3c2/0x610 [ 319.608729][ T9159] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 319.608787][ T9159] ? mas_next_slot+0x12d3/0x21b0 [ 319.608831][ T9159] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 319.608873][ T9159] ? __up_read+0x1f8/0x750 [ 319.608914][ T9159] ? mas_find+0x2f6/0x530 [ 319.608956][ T9159] ? validate_mm+0x40a/0x570 [ 319.609004][ T9159] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 319.609034][ T9159] ? cpuset_nodemask_valid_mems_allowed+0x5f/0x80 [ 319.609079][ T9159] ? policy_nodemask+0xea/0x4e0 [ 319.609107][ T9159] alloc_pages_mpol+0x1fb/0x550 [ 319.609134][ T9159] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 319.609170][ T9159] alloc_pages_noprof+0x131/0x390 [ 319.609198][ T9159] __pmd_alloc+0x3f/0x870 [ 319.609234][ T9159] __handle_mm_fault+0x948/0x2a40 [ 319.609282][ T9159] ? __pfx___handle_mm_fault+0x10/0x10 [ 319.609351][ T9159] handle_mm_fault+0x3fe/0xad0 [ 319.609395][ T9159] __get_user_pages+0x771/0x36f0 [ 319.609440][ T9159] ? __pfx_mt_find+0x10/0x10 [ 319.609484][ T9159] ? __pfx___get_user_pages+0x10/0x10 [ 319.609532][ T9159] populate_vma_page_range+0x278/0x3a0 [ 319.609571][ T9159] ? __pfx_populate_vma_page_range+0x10/0x10 [ 319.609624][ T9159] ? __pfx_find_vma_intersection+0x10/0x10 [ 319.609660][ T9159] ? do_mmap+0x69c/0x11b0 [ 319.609696][ T9159] __mm_populate+0x1d8/0x380 [ 319.609734][ T9159] ? __pfx___mm_populate+0x10/0x10 [ 319.609774][ T9159] ? up_write+0x1b2/0x520 [ 319.609825][ T9159] vm_mmap_pgoff+0x362/0x450 [ 319.609863][ T9159] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 319.609897][ T9159] ? do_set_mempolicy+0x220/0x480 [ 319.609930][ T9159] ? __x64_sys_futex+0x1e0/0x4c0 [ 319.609970][ T9159] ? __x64_sys_futex+0x1e9/0x4c0 [ 319.610025][ T9159] ksys_mmap_pgoff+0x7d/0x5c0 [ 319.610059][ T9159] ? __pfx_kernel_set_mempolicy+0x10/0x10 [ 319.610085][ T9159] ? rcu_is_watching+0x12/0xc0 [ 319.610125][ T9159] __x64_sys_mmap+0x125/0x190 [ 319.610164][ T9159] do_syscall_64+0xcd/0x260 [ 319.610210][ T9159] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 319.610240][ T9159] RIP: 0033:0x7fe80018e169 [ 319.610262][ T9159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 319.610292][ T9159] RSP: 002b:00007fe800f36038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 319.610320][ T9159] RAX: ffffffffffffffda RBX: 00007fe8003b5fa0 RCX: 00007fe80018e169 [ 319.610340][ T9159] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 319.610356][ T9159] RBP: 00007fe800210a68 R08: 0000000000000002 R09: 0000000000008000 [ 319.610373][ T9159] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 319.610389][ T9159] R13: 0000000000000000 R14: 00007fe8003b5fa0 R15: 00007ffd45b67588 [ 319.610427][ T9159] [ 320.727746][ T9179] netlink: 342 bytes leftover after parsing attributes in process `syz.3.835'. [ 321.087279][ T9187] openvswitch: .SR: Dropping previously announced user features [ 321.555529][ T9200] netlink: 32 bytes leftover after parsing attributes in process `syz.1.840'. [ 322.158693][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 322.184636][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 322.462084][ T9218] FAULT_INJECTION: forcing a failure. [ 322.462084][ T9218] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 322.488163][ T9218] CPU: 1 UID: 0 PID: 9218 Comm: syz.3.845 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 322.488190][ T9218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 322.488201][ T9218] Call Trace: [ 322.488208][ T9218] [ 322.488215][ T9218] dump_stack_lvl+0x16c/0x1f0 [ 322.488248][ T9218] should_fail_ex+0x512/0x640 [ 322.488274][ T9218] should_fail_alloc_page+0xe7/0x130 [ 322.488295][ T9218] prepare_alloc_pages+0x3c2/0x610 [ 322.488318][ T9218] ? __lock_acquire+0x5ca/0x1ba0 [ 322.488339][ T9218] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 322.488380][ T9218] ? __lock_acquire+0x5ca/0x1ba0 [ 322.488398][ T9218] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 322.488427][ T9218] ? look_up_lock_class+0x59/0x150 [ 322.488455][ T9218] ? register_lock_class+0x41/0x4c0 [ 322.488486][ T9218] ? __lock_acquire+0xaa4/0x1ba0 [ 322.488506][ T9218] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 322.488528][ T9218] ? policy_nodemask+0xea/0x4e0 [ 322.488548][ T9218] alloc_pages_mpol+0x1fb/0x550 [ 322.488566][ T9218] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 322.488583][ T9218] ? __pfx___might_resched+0x10/0x10 [ 322.488617][ T9218] alloc_pages_noprof+0x131/0x390 [ 322.488635][ T9218] __pmd_alloc+0x3f/0x870 [ 322.488661][ T9218] huge_pte_alloc+0x292/0x3a0 [ 322.488688][ T9218] hugetlb_fault+0x373/0x2e90 [ 322.488719][ T9218] ? __pfx_hugetlb_fault+0x10/0x10 [ 322.488754][ T9218] ? find_vma+0xbf/0x140 [ 322.488774][ T9218] ? __pfx_find_vma+0x10/0x10 [ 322.488797][ T9218] handle_mm_fault+0x95d/0xad0 [ 322.488828][ T9218] do_user_addr_fault+0x7a6/0x1370 [ 322.488854][ T9218] ? rcu_is_watching+0x12/0xc0 [ 322.488880][ T9218] exc_page_fault+0x5c/0xc0 [ 322.488906][ T9218] asm_exc_page_fault+0x26/0x30 [ 322.488924][ T9218] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 322.488947][ T9218] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 322.488966][ T9218] RSP: 0018:ffffc9000b6bf7d8 EFLAGS: 00050206 [ 322.488981][ T9218] RAX: 0000000000000001 RBX: 00000000000000c4 RCX: 00000000000000c4 [ 322.488993][ T9218] RDX: ffffed100c1ba631 RSI: 0000000000000000 RDI: ffff888060dd30c0 [ 322.489005][ T9218] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100c1ba630 [ 322.489017][ T9218] R10: ffff888060dd3183 R11: 0000000000000000 R12: 0000000000000000 [ 322.489028][ T9218] R13: ffffc9000b6bfd60 R14: 00000000000000c4 R15: ffff888060dd30c0 [ 322.489054][ T9218] _copy_from_iter+0x391/0x15b0 [ 322.489080][ T9218] ? __alloc_skb+0x200/0x380 [ 322.489105][ T9218] ? __pfx__copy_from_iter+0x10/0x10 [ 322.489131][ T9218] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 322.489158][ T9218] ? __lock_acquire+0xaa4/0x1ba0 [ 322.489182][ T9218] netlink_sendmsg+0x829/0xdd0 [ 322.489214][ T9218] ? __pfx_netlink_sendmsg+0x10/0x10 [ 322.489252][ T9218] ____sys_sendmsg+0xa95/0xc70 [ 322.489270][ T9218] ? copy_msghdr_from_user+0x10a/0x160 [ 322.489296][ T9218] ? __pfx_____sys_sendmsg+0x10/0x10 [ 322.489317][ T9218] ? __pfx__kstrtoull+0x10/0x10 [ 322.489362][ T9218] ___sys_sendmsg+0x134/0x1d0 [ 322.489389][ T9218] ? __pfx____sys_sendmsg+0x10/0x10 [ 322.489426][ T9218] ? find_held_lock+0x2b/0x80 [ 322.489472][ T9218] __sys_sendmmsg+0x200/0x420 [ 322.489501][ T9218] ? __pfx___sys_sendmmsg+0x10/0x10 [ 322.489535][ T9218] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 322.489575][ T9218] ? fput+0x70/0xf0 [ 322.489593][ T9218] ? ksys_write+0x1b9/0x240 [ 322.489632][ T9218] ? __pfx_ksys_write+0x10/0x10 [ 322.489666][ T9218] ? rcu_is_watching+0x12/0xc0 [ 322.489694][ T9218] __x64_sys_sendmmsg+0x9c/0x100 [ 322.489719][ T9218] ? lockdep_hardirqs_on+0x7c/0x110 [ 322.489745][ T9218] do_syscall_64+0xcd/0x260 [ 322.489776][ T9218] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 322.489795][ T9218] RIP: 0033:0x7f7e29d8e169 [ 322.489809][ T9218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 322.489828][ T9218] RSP: 002b:00007f7e2ab7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 322.489845][ T9218] RAX: ffffffffffffffda RBX: 00007f7e29fb5fa0 RCX: 00007f7e29d8e169 [ 322.489858][ T9218] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 322.489870][ T9218] RBP: 00007f7e2ab7a090 R08: 0000000000000000 R09: 0000000000000000 [ 322.489881][ T9218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 322.489892][ T9218] R13: 0000000000000000 R14: 00007f7e29fb5fa0 R15: 00007fffc5ebe648 [ 322.489917][ T9218] [ 323.426015][ T9225] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 323.439879][ T9225] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 323.536571][ T9229] netlink: 4 bytes leftover after parsing attributes in process `syz.3.849'. [ 324.303699][ T9249] FAULT_INJECTION: forcing a failure. [ 324.303699][ T9249] name failslab, interval 1, probability 0, space 0, times 0 [ 324.384148][ T9249] CPU: 0 UID: 0 PID: 9249 Comm: syz.2.854 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 324.384192][ T9249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 324.384211][ T9249] Call Trace: [ 324.384221][ T9249] [ 324.384242][ T9249] dump_stack_lvl+0x16c/0x1f0 [ 324.384288][ T9249] should_fail_ex+0x512/0x640 [ 324.384328][ T9249] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 324.384375][ T9249] should_failslab+0xc2/0x120 [ 324.384401][ T9249] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 324.384463][ T9249] ? __alloc_skb+0x2b2/0x380 [ 324.384504][ T9249] __alloc_skb+0x2b2/0x380 [ 324.384545][ T9249] ? __pfx___alloc_skb+0x10/0x10 [ 324.384585][ T9249] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 324.384638][ T9249] ? is_bpf_text_address+0x94/0x1a0 [ 324.384669][ T9249] __ip6_append_data+0x2bb6/0x4710 [ 324.384718][ T9249] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 324.384774][ T9249] ? __pfx___ip6_append_data+0x10/0x10 [ 324.384826][ T9249] ip6_append_data+0x1bd/0x4c0 [ 324.384868][ T9249] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 324.384913][ T9249] udpv6_sendmsg+0x1d88/0x3070 [ 324.384948][ T9249] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 324.384998][ T9249] ? __pfx_udpv6_sendmsg+0x10/0x10 [ 324.385027][ T9249] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 324.385106][ T9249] ? __pfx_aa_sk_perm+0x10/0x10 [ 324.385136][ T9249] ? stack_trace_save+0x8e/0xc0 [ 324.385172][ T9249] ? __pfx_stack_trace_save+0x10/0x10 [ 324.385210][ T9249] ? __pfx_udpv6_sendmsg+0x10/0x10 [ 324.385243][ T9249] ? inet6_sendmsg+0x105/0x140 [ 324.385274][ T9249] inet6_sendmsg+0x105/0x140 [ 324.385318][ T9249] sock_sendmsg+0x2b3/0x470 [ 324.385344][ T9249] ? __kasan_slab_free+0x51/0x70 [ 324.385405][ T9249] ? __pfx_sock_sendmsg+0x10/0x10 [ 324.385429][ T9249] ? splice_direct_to_actor+0x2a1/0xa30 [ 324.385483][ T9249] ? __lock_acquire+0xaa4/0x1ba0 [ 324.385519][ T9249] splice_to_socket+0xaf6/0x1110 [ 324.385580][ T9249] ? __pfx_splice_to_socket+0x10/0x10 [ 324.385621][ T9249] ? lockdep_hardirqs_on+0x7c/0x110 [ 324.385707][ T9249] ? lockdep_init_map_type+0x5c/0x280 [ 324.385747][ T9249] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 324.385787][ T9249] ? __pfx_splice_to_socket+0x10/0x10 [ 324.385829][ T9249] direct_splice_actor+0x18f/0x6c0 [ 324.385870][ T9249] splice_direct_to_actor+0x342/0xa30 [ 324.385911][ T9249] ? __pfx_direct_splice_actor+0x10/0x10 [ 324.385956][ T9249] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 324.386010][ T9249] do_splice_direct+0x174/0x240 [ 324.386068][ T9249] ? __pfx_do_splice_direct+0x10/0x10 [ 324.386114][ T9249] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 324.386161][ T9249] ? bpf_lsm_file_permission+0x9/0x10 [ 324.386202][ T9249] ? security_file_permission+0x71/0x210 [ 324.386246][ T9249] ? rw_verify_area+0xcf/0x680 [ 324.386289][ T9249] do_sendfile+0xafd/0xe50 [ 324.386349][ T9249] ? __pfx_do_sendfile+0x10/0x10 [ 324.386399][ T9249] ? __x64_sys_futex+0x1e0/0x4c0 [ 324.386443][ T9249] ? __x64_sys_futex+0x1e9/0x4c0 [ 324.386493][ T9249] __x64_sys_sendfile64+0x1d8/0x220 [ 324.386527][ T9249] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 324.386557][ T9249] ? rcu_is_watching+0x12/0xc0 [ 324.386609][ T9249] do_syscall_64+0xcd/0x260 [ 324.386660][ T9249] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 324.386693][ T9249] RIP: 0033:0x7f37efb8e169 [ 324.386719][ T9249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 324.386750][ T9249] RSP: 002b:00007f37f0919038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 324.386780][ T9249] RAX: ffffffffffffffda RBX: 00007f37efdb5fa0 RCX: 00007f37efb8e169 [ 324.386802][ T9249] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 324.386820][ T9249] RBP: 00007f37efc10a68 R08: 0000000000000000 R09: 0000000000000000 [ 324.386839][ T9249] R10: 0000400000000006 R11: 0000000000000246 R12: 0000000000000000 [ 324.386857][ T9249] R13: 0000000000000000 R14: 00007f37efdb5fa0 R15: 00007ffdfb160b28 [ 324.386898][ T9249] [ 325.731644][ T5856] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 325.740072][ T5856] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 325.817621][ T9282] FAULT_INJECTION: forcing a failure. [ 325.817621][ T9282] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 325.841798][ T9282] CPU: 0 UID: 0 PID: 9282 Comm: syz.0.863 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 325.841834][ T9282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 325.841850][ T9282] Call Trace: [ 325.841858][ T9282] [ 325.841869][ T9282] dump_stack_lvl+0x16c/0x1f0 [ 325.841913][ T9282] should_fail_ex+0x512/0x640 [ 325.841950][ T9282] should_fail_alloc_page+0xe7/0x130 [ 325.841980][ T9282] prepare_alloc_pages+0x3c2/0x610 [ 325.842020][ T9282] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 325.842064][ T9282] ? __pfx_stack_trace_save+0x10/0x10 [ 325.842101][ T9282] ? stack_depot_save_flags+0x28/0xa50 [ 325.842142][ T9282] ? kasan_save_stack+0x42/0x60 [ 325.842181][ T9282] ? kasan_save_stack+0x33/0x60 [ 325.842217][ T9282] ? kasan_save_track+0x14/0x30 [ 325.842256][ T9282] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 325.842298][ T9282] ? copy_page_range+0x411a/0x5ec0 [ 325.842330][ T9282] ? kernel_clone+0xfc/0x960 [ 325.842369][ T9282] ? do_syscall_64+0xcd/0x260 [ 325.842414][ T9282] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 325.842462][ T9282] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 325.842494][ T9282] ? policy_nodemask+0xea/0x4e0 [ 325.842523][ T9282] alloc_pages_mpol+0x1fb/0x550 [ 325.842551][ T9282] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 325.842588][ T9282] alloc_pages_noprof+0x131/0x390 [ 325.842615][ T9282] pte_alloc_one+0x19/0x380 [ 325.842652][ T9282] __pte_alloc+0x6d/0x3c0 [ 325.842680][ T9282] ? __pfx___pte_alloc+0x10/0x10 [ 325.842709][ T9282] ? _raw_spin_unlock+0x28/0x50 [ 325.842742][ T9282] ? __pmd_alloc+0x3c2/0x870 [ 325.842778][ T9282] copy_page_range+0x39a7/0x5ec0 [ 325.842853][ T9282] ? __pfx_copy_page_range+0x10/0x10 [ 325.842890][ T9282] ? mas_store+0x93a/0x10c0 [ 325.842921][ T9282] ? __pfx___might_resched+0x10/0x10 [ 325.842967][ T9282] ? __pfx_mas_store+0x10/0x10 [ 325.842989][ T9282] ? __vma_enter_locked+0x163/0x3f0 [ 325.843030][ T9282] ? down_write+0x14d/0x200 [ 325.843074][ T9282] copy_process+0x862b/0x91a0 [ 325.843140][ T9282] ? __pfx_copy_process+0x10/0x10 [ 325.843177][ T9282] ? __pfx___futex_wait+0x10/0x10 [ 325.843222][ T9282] ? __pfx_blk_mq_flush_plug_list+0x10/0x10 [ 325.843264][ T9282] kernel_clone+0xfc/0x960 [ 325.843302][ T9282] ? __blk_flush_plug+0x2f3/0x4b0 [ 325.843330][ T9282] ? __pfx_kernel_clone+0x10/0x10 [ 325.843390][ T9282] ? 0xffffffff81000000 [ 325.843416][ T9282] __do_sys_clone+0xce/0x120 [ 325.843455][ T9282] ? __pfx___do_sys_clone+0x10/0x10 [ 325.843496][ T9282] ? __up_read+0x1f8/0x750 [ 325.843523][ T9282] ? 0xffffffff81000000 [ 325.843558][ T9282] ? rcu_is_watching+0x12/0xc0 [ 325.843603][ T9282] do_syscall_64+0xcd/0x260 [ 325.843647][ T9282] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 325.843675][ T9282] RIP: 0033:0x7fe80018e169 [ 325.843695][ T9282] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 325.843721][ T9282] RSP: 002b:00007fe800f15038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 325.843746][ T9282] RAX: ffffffffffffffda RBX: 00007fe8003b6080 RCX: 00007fe80018e169 [ 325.843764][ T9282] RDX: 9999999999999999 RSI: 0000000000000009 RDI: 0000000000000021 [ 325.843780][ T9282] RBP: 00007fe800210a68 R08: 0000000000000006 R09: 0000000000000000 [ 325.843797][ T9282] R10: ffffffff81000000 R11: 0000000000000246 R12: 0000000000000000 [ 325.843814][ T9282] R13: 0000000000000000 R14: 00007fe8003b6080 R15: 00007ffd45b67588 [ 325.843838][ T9282] ? 0xffffffff81000000 [ 325.843868][ T9282] [ 326.412870][ T9294] FAULT_INJECTION: forcing a failure. [ 326.412870][ T9294] name failslab, interval 1, probability 0, space 0, times 0 [ 326.431721][ T9294] CPU: 0 UID: 0 PID: 9294 Comm: syz.1.866 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 326.431764][ T9294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 326.431783][ T9294] Call Trace: [ 326.431804][ T9294] [ 326.431814][ T9294] dump_stack_lvl+0x16c/0x1f0 [ 326.431861][ T9294] should_fail_ex+0x512/0x640 [ 326.431892][ T9294] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 326.431940][ T9294] should_failslab+0xc2/0x120 [ 326.431967][ T9294] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 326.432012][ T9294] ? __alloc_skb+0x2b2/0x380 [ 326.432049][ T9294] __alloc_skb+0x2b2/0x380 [ 326.432084][ T9294] ? __pfx___alloc_skb+0x10/0x10 [ 326.432128][ T9294] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 326.432168][ T9294] ? is_bpf_text_address+0x94/0x1a0 [ 326.432198][ T9294] __ip6_append_data+0x2bb6/0x4710 [ 326.432248][ T9294] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 326.432305][ T9294] ? __pfx___ip6_append_data+0x10/0x10 [ 326.432356][ T9294] ip6_append_data+0x1bd/0x4c0 [ 326.432398][ T9294] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 326.432444][ T9294] udpv6_sendmsg+0x1d88/0x3070 [ 326.432478][ T9294] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 326.432529][ T9294] ? __pfx_udpv6_sendmsg+0x10/0x10 [ 326.432557][ T9294] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 326.432639][ T9294] ? __pfx_aa_sk_perm+0x10/0x10 [ 326.432669][ T9294] ? stack_trace_save+0x8e/0xc0 [ 326.432704][ T9294] ? __pfx_stack_trace_save+0x10/0x10 [ 326.432742][ T9294] ? __pfx_udpv6_sendmsg+0x10/0x10 [ 326.432776][ T9294] ? inet6_sendmsg+0x105/0x140 [ 326.432807][ T9294] inet6_sendmsg+0x105/0x140 [ 326.432842][ T9294] sock_sendmsg+0x2b3/0x470 [ 326.432867][ T9294] ? __kasan_slab_free+0x51/0x70 [ 326.432910][ T9294] ? __pfx_sock_sendmsg+0x10/0x10 [ 326.432933][ T9294] ? splice_direct_to_actor+0x2a1/0xa30 [ 326.432994][ T9294] splice_to_socket+0xaf6/0x1110 [ 326.433051][ T9294] ? __pfx_splice_to_socket+0x10/0x10 [ 326.433091][ T9294] ? lockdep_hardirqs_on+0x7c/0x110 [ 326.433201][ T9294] ? lockdep_init_map_type+0x5c/0x280 [ 326.433244][ T9294] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 326.433284][ T9294] ? __pfx_splice_to_socket+0x10/0x10 [ 326.433327][ T9294] direct_splice_actor+0x18f/0x6c0 [ 326.433370][ T9294] splice_direct_to_actor+0x342/0xa30 [ 326.433411][ T9294] ? __pfx_direct_splice_actor+0x10/0x10 [ 326.433457][ T9294] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 326.433506][ T9294] do_splice_direct+0x174/0x240 [ 326.433545][ T9294] ? __pfx_do_splice_direct+0x10/0x10 [ 326.433585][ T9294] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 326.433624][ T9294] ? bpf_lsm_file_permission+0x9/0x10 [ 326.433658][ T9294] ? security_file_permission+0x71/0x210 [ 326.433696][ T9294] ? rw_verify_area+0xcf/0x680 [ 326.433732][ T9294] do_sendfile+0xafd/0xe50 [ 326.433774][ T9294] ? __pfx_do_sendfile+0x10/0x10 [ 326.433816][ T9294] ? __x64_sys_futex+0x1e0/0x4c0 [ 326.433851][ T9294] ? __x64_sys_futex+0x1e9/0x4c0 [ 326.433894][ T9294] __x64_sys_sendfile64+0x1d8/0x220 [ 326.433921][ T9294] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 326.433947][ T9294] ? rcu_is_watching+0x12/0xc0 [ 326.433991][ T9294] do_syscall_64+0xcd/0x260 [ 326.434036][ T9294] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 326.434080][ T9294] RIP: 0033:0x7f1416d8e169 [ 326.434133][ T9294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 326.434163][ T9294] RSP: 002b:00007f1417c73038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 326.434191][ T9294] RAX: ffffffffffffffda RBX: 00007f1416fb5fa0 RCX: 00007f1416d8e169 [ 326.434211][ T9294] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 326.434229][ T9294] RBP: 00007f1416e10a68 R08: 0000000000000000 R09: 0000000000000000 [ 326.434247][ T9294] R10: 0000400000000006 R11: 0000000000000246 R12: 0000000000000000 [ 326.434264][ T9294] R13: 0000000000000000 R14: 00007f1416fb5fa0 R15: 00007fff82a12f98 [ 326.434303][ T9294] [ 326.848649][ T9292] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 326.858903][ T9292] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 326.860636][ T9296] netlink: 36 bytes leftover after parsing attributes in process `syz.2.865'. [ 326.881295][ T9296] openvswitch: .SR: Dropping previously announced user features [ 327.342214][ T9312] FAULT_INJECTION: forcing a failure. [ 327.342214][ T9312] name failslab, interval 1, probability 0, space 0, times 0 [ 327.384851][ T9312] CPU: 0 UID: 0 PID: 9312 Comm: syz.1.872 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 327.384889][ T9312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 327.384906][ T9312] Call Trace: [ 327.384915][ T9312] [ 327.384925][ T9312] dump_stack_lvl+0x16c/0x1f0 [ 327.384969][ T9312] should_fail_ex+0x512/0x640 [ 327.385001][ T9312] ? __kmalloc_noprof+0xbf/0x510 [ 327.385053][ T9312] ? tracepoint_add_func+0x2a6/0xea0 [ 327.385081][ T9312] should_failslab+0xc2/0x120 [ 327.385107][ T9312] __kmalloc_noprof+0xd2/0x510 [ 327.385152][ T9312] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 327.385180][ T9312] tracepoint_add_func+0x2a6/0xea0 [ 327.385206][ T9312] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 327.385238][ T9312] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 327.385264][ T9312] tracepoint_probe_register+0xbf/0x100 [ 327.385295][ T9312] ? __pfx_tracepoint_probe_register+0x10/0x10 [ 327.385326][ T9312] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 327.385364][ T9312] tracing_start_sched_switch+0xaf/0x1e0 [ 327.385408][ T9312] __ftrace_event_enable_disable+0x670/0x8b0 [ 327.385447][ T9312] __ftrace_set_clr_event_nolock+0x390/0xb70 [ 327.385491][ T9312] ftrace_set_clr_event+0x16e/0x330 [ 327.385527][ T9312] ? __pfx_ftrace_set_clr_event+0x10/0x10 [ 327.385573][ T9312] ftrace_event_write+0x243/0x290 [ 327.385607][ T9312] ? __pfx_ftrace_event_write+0x10/0x10 [ 327.385656][ T9312] vfs_write+0x25c/0x1180 [ 327.385693][ T9312] ? __pfx_ftrace_event_write+0x10/0x10 [ 327.385732][ T9312] ? __pfx___mutex_lock+0x10/0x10 [ 327.385773][ T9312] ? __pfx_vfs_write+0x10/0x10 [ 327.385822][ T9312] ? __fget_files+0x20e/0x3c0 [ 327.385873][ T9312] ksys_write+0x12a/0x240 [ 327.385911][ T9312] ? __pfx_ksys_write+0x10/0x10 [ 327.385947][ T9312] ? rcu_is_watching+0x12/0xc0 [ 327.385992][ T9312] do_syscall_64+0xcd/0x260 [ 327.386050][ T9312] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 327.386078][ T9312] RIP: 0033:0x7f1416d8e169 [ 327.386119][ T9312] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 327.386150][ T9312] RSP: 002b:00007f1417c73038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 327.386180][ T9312] RAX: ffffffffffffffda RBX: 00007f1416fb5fa0 RCX: 00007f1416d8e169 [ 327.386201][ T9312] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 0000000000000007 [ 327.386221][ T9312] RBP: 00007f1417c73090 R08: 0000000000000000 R09: 0000000000000000 [ 327.386240][ T9312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 327.386259][ T9312] R13: 0000000000000000 R14: 00007f1416fb5fa0 R15: 00007fff82a12f98 [ 327.386303][ T9312] [ 327.386316][ T9312] wakeup trace: Couldn't activate tracepoint probe to kernel_sched_wakeup [ 327.675632][ T9318] ------------[ cut here ]------------ [ 327.681323][ T9318] WARNING: CPU: 1 PID: 9318 at kernel/tracepoint.c:358 tracepoint_probe_unregister+0x894/0xd70 [ 327.691869][ T9318] Modules linked in: [ 327.696001][ T9318] CPU: 1 UID: 0 PID: 9318 Comm: syz.3.873 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 327.708492][ T9318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 327.718695][ T9318] RIP: 0010:tracepoint_probe_unregister+0x894/0xd70 [ 327.725441][ T9318] Code: 41 5e 41 5f c3 cc cc cc cc e8 18 1d fe ff 48 c7 c6 80 0e bd 81 48 89 df e8 49 0c e5 ff eb 9f bb fe ff ff ff e8 fd 1c fe ff 90 <0f> 0b 90 eb 91 e8 f2 1c fe ff 48 89 da 48 b8 00 00 00 00 00 fc ff [ 327.745497][ T9318] RSP: 0018:ffffc9000ba3f890 EFLAGS: 00010283 [ 327.751873][ T9318] RAX: 0000000000009291 RBX: 00000000fffffffe RCX: ffffc9000ccdb000 [ 327.759999][ T9318] RDX: 0000000000080000 RSI: ffffffff81bd1fc3 RDI: 0000000000000005 [ 327.768134][ T9318] RBP: ffffffff8f305c20 R08: 0000000000000005 R09: 0000000000000000 [ 327.776344][ T9318] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff81c2f150 [ 327.784430][ T9318] R13: ffff88801be80e48 R14: 0000000000000002 R15: ffff88801be80e00 [ 327.792536][ T9318] FS: 00007f7e2ab7a6c0(0000) GS:ffff888124ab9000(0000) knlGS:0000000000000000 [ 327.802089][ T9318] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 327.808982][ T9318] CR2: 00007f7e2ab58f98 CR3: 000000002750a000 CR4: 00000000003526f0 [ 327.817125][ T9318] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 327.825392][ T9318] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 327.833471][ T9318] Call Trace: [ 327.836891][ T9318] [ 327.839901][ T9318] ? __pfx_tracepoint_probe_unregister+0x10/0x10 [ 327.846398][ T9318] tracing_stop_cmdline_record+0x66/0xa0 [ 327.852165][ T9318] __ftrace_event_enable_disable+0x762/0x8b0 [ 327.858287][ T9318] ftrace_event_set_open+0x232/0x380 [ 327.863683][ T9318] do_dentry_open+0x741/0x1c10 [ 327.868713][ T9318] ? __pfx_ftrace_event_set_open+0x10/0x10 [ 327.874661][ T9318] vfs_open+0x82/0x3f0 [ 327.878835][ T9318] path_openat+0x1e5e/0x2d40 [ 327.883541][ T9318] ? __pfx_path_openat+0x10/0x10 [ 327.888631][ T9318] do_filp_open+0x20b/0x470 [ 327.893253][ T9318] ? __pfx_do_filp_open+0x10/0x10 [ 327.898508][ T9318] ? alloc_fd+0x471/0x7d0 [ 327.903211][ T9318] do_sys_openat2+0x11b/0x1d0 [ 327.908030][ T9318] ? __pfx_do_sys_openat2+0x10/0x10 [ 327.913347][ T9318] __x64_sys_openat+0x174/0x210 [ 327.918469][ T9318] ? __pfx___x64_sys_openat+0x10/0x10 [ 327.923956][ T9318] ? rcu_is_watching+0x12/0xc0 [ 327.928922][ T9318] do_syscall_64+0xcd/0x260 [ 327.933532][ T9318] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 327.939545][ T9318] RIP: 0033:0x7f7e29d8e169 [ 327.944085][ T9318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 327.963952][ T9318] RSP: 002b:00007f7e2ab7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 327.972533][ T9318] RAX: ffffffffffffffda RBX: 00007f7e29fb5fa0 RCX: 00007f7e29d8e169 [ 327.980654][ T9318] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 327.988793][ T9318] RBP: 00007f7e29e10a68 R08: 0000000000000000 R09: 0000000000000000 [ 327.996948][ T9318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 328.005368][ T9318] R13: 0000000000000000 R14: 00007f7e29fb5fa0 R15: 00007fffc5ebe648 [ 328.013476][ T9318] [ 328.016633][ T9318] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 328.023942][ T9318] CPU: 1 UID: 0 PID: 9318 Comm: syz.3.873 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) [ 328.035953][ T9318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 328.046063][ T9318] Call Trace: [ 328.049371][ T9318] [ 328.052320][ T9318] dump_stack_lvl+0x3d/0x1f0 [ 328.056958][ T9318] panic+0x71c/0x800 [ 328.060873][ T9318] ? __pfx_panic+0x10/0x10 [ 328.065301][ T9318] ? show_trace_log_lvl+0x29b/0x3e0 [ 328.070669][ T9318] ? tracepoint_probe_unregister+0x894/0xd70 [ 328.076672][ T9318] check_panic_on_warn+0xab/0xb0 [ 328.081634][ T9318] __warn+0xf6/0x3c0 [ 328.085539][ T9318] ? tracepoint_probe_unregister+0x894/0xd70 [ 328.091535][ T9318] report_bug+0x3c3/0x580 [ 328.095883][ T9318] ? tracepoint_probe_unregister+0x894/0xd70 [ 328.101874][ T9318] handle_bug+0x184/0x210 [ 328.106231][ T9318] exc_invalid_op+0x17/0x50 [ 328.110765][ T9318] asm_exc_invalid_op+0x1a/0x20 [ 328.115636][ T9318] RIP: 0010:tracepoint_probe_unregister+0x894/0xd70 [ 328.122240][ T9318] Code: 41 5e 41 5f c3 cc cc cc cc e8 18 1d fe ff 48 c7 c6 80 0e bd 81 48 89 df e8 49 0c e5 ff eb 9f bb fe ff ff ff e8 fd 1c fe ff 90 <0f> 0b 90 eb 91 e8 f2 1c fe ff 48 89 da 48 b8 00 00 00 00 00 fc ff [ 328.141855][ T9318] RSP: 0018:ffffc9000ba3f890 EFLAGS: 00010283 [ 328.147935][ T9318] RAX: 0000000000009291 RBX: 00000000fffffffe RCX: ffffc9000ccdb000 [ 328.156003][ T9318] RDX: 0000000000080000 RSI: ffffffff81bd1fc3 RDI: 0000000000000005 [ 328.163992][ T9318] RBP: ffffffff8f305c20 R08: 0000000000000005 R09: 0000000000000000 [ 328.171973][ T9318] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff81c2f150 [ 328.180035][ T9318] R13: ffff88801be80e48 R14: 0000000000000002 R15: ffff88801be80e00 [ 328.188017][ T9318] ? __pfx_probe_sched_switch+0x10/0x10 [ 328.193578][ T9318] ? tracepoint_probe_unregister+0x893/0xd70 [ 328.199579][ T9318] ? __pfx_tracepoint_probe_unregister+0x10/0x10 [ 328.205943][ T9318] tracing_stop_cmdline_record+0x66/0xa0 [ 328.211607][ T9318] __ftrace_event_enable_disable+0x762/0x8b0 [ 328.217699][ T9318] ftrace_event_set_open+0x232/0x380 [ 328.222998][ T9318] do_dentry_open+0x741/0x1c10 [ 328.227781][ T9318] ? __pfx_ftrace_event_set_open+0x10/0x10 [ 328.233607][ T9318] vfs_open+0x82/0x3f0 [ 328.237690][ T9318] path_openat+0x1e5e/0x2d40 [ 328.242312][ T9318] ? __pfx_path_openat+0x10/0x10 [ 328.247299][ T9318] do_filp_open+0x20b/0x470 [ 328.251834][ T9318] ? __pfx_do_filp_open+0x10/0x10 [ 328.256922][ T9318] ? alloc_fd+0x471/0x7d0 [ 328.261292][ T9318] do_sys_openat2+0x11b/0x1d0 [ 328.266002][ T9318] ? __pfx_do_sys_openat2+0x10/0x10 [ 328.271261][ T9318] __x64_sys_openat+0x174/0x210 [ 328.276140][ T9318] ? __pfx___x64_sys_openat+0x10/0x10 [ 328.281538][ T9318] ? rcu_is_watching+0x12/0xc0 [ 328.286334][ T9318] do_syscall_64+0xcd/0x260 [ 328.290892][ T9318] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 328.296813][ T9318] RIP: 0033:0x7f7e29d8e169 [ 328.301242][ T9318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 328.320860][ T9318] RSP: 002b:00007f7e2ab7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 328.329283][ T9318] RAX: ffffffffffffffda RBX: 00007f7e29fb5fa0 RCX: 00007f7e29d8e169 [ 328.337283][ T9318] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 328.345259][ T9318] RBP: 00007f7e29e10a68 R08: 0000000000000000 R09: 0000000000000000 [ 328.353235][ T9318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 328.361225][ T9318] R13: 0000000000000000 R14: 00007f7e29fb5fa0 R15: 00007fffc5ebe648 [ 328.369227][ T9318] [ 328.372597][ T9318] Kernel Offset: disabled [ 328.376935][ T9318] Rebooting in 86400 seconds..