last executing test programs: 6.193608885s ago: executing program 0 (id=620): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) (async, rerun: 64) mmap$auto(0x0, 0x8, 0xd36d, 0x80000000eb4, 0xffffffffffffffff, 0x4) (async, rerun: 64) read$auto(0xffffffffffffffff, 0x0, 0x20) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x3) (async) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, r0, 0x28000) (async, rerun: 64) r1 = socket(0x2, 0x2, 0x1) (rerun: 64) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001100)='./cgroup.net/blkio.throttle.io_service_bytes_recursive\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f00000000c0)=""/4096, 0x1000) socket(0x11, 0x2, 0x300) connect$auto(r1, &(0x7f00000000c0)=@in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x40}}, 0x55) (async, rerun: 64) io_uring_setup$auto(0x6, 0x0) (async, rerun: 64) connect$auto(r1, &(0x7f0000000000)=@l2tp={0x2, 0x0, @multicast2, 0x1}, 0x7f) (async) write$auto(0x3, 0x0, 0xfdef) (async, rerun: 64) openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/bluetooth/hci7/hci7:201\x00', 0x1f3340, 0x0) (rerun: 64) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x7ffc) r3 = openat$auto_fops_atomic_t_(0xffffffffffffff9c, &(0x7f0000001f80)='/sys/kernel/debug/fail_usercopy/space\x00', 0x48981, 0x0) write$auto_fops_atomic_t_(r3, 0x0, 0x0) (async) openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x2082, 0x0) (async) write$auto_drm_edid_fops_drm_debugfs(0xffffffffffffffff, 0x0, 0x3d) (async) r4 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f00000010c0), 0xffffffffffffffff) (rerun: 32) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, 0x0, 0x4002080) (async) write$auto_console_fops_tty_io(0xffffffffffffffff, 0x0, 0x0) (async) r5 = open(&(0x7f0000000080)='./file1\x00', 0xa6bc0, 0x74) fcntl$auto(r5, 0x400, 0x1) (async) socketpair$auto(0x1, 0x5, 0x4, 0x0) (async) r6 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC1\x00', 0x400, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(r6, 0xc4c85512, 0x0) 5.111723884s ago: executing program 3 (id=627): r0 = openat$auto_nst_seq_fops_netdebug(0xffffffffffffff9c, &(0x7f0000000040), 0xbc500, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x92, r0, 0x8000) r1 = socket(0xa, 0x5, 0x84) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x4e20, @rand_addr=0xfffffffe}, 0x57) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x1fe, 0x8000) connect$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x4e20, @rand_addr=0x64010115}, 0x706) io_uring_setup$auto(0x2, 0x0) close_range$auto(r0, r1, 0x69) setsockopt$auto(0x3, 0x10000000084, 0x10, 0x0, 0x8) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/all/disable_ipv6\x00', 0x1401, 0x0) r3 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0) seccomp$auto_SECCOMP_SET_MODE_STRICT(0x0, 0x8, &(0x7f0000000500)="bbcc330542a8d4e517410284c868038bc36ad933a576fdc8e07b047f7b083ee4c87515bd0ef26e2d2e022c5036e74cfde0901d0194bb77680339296cb7f4ff60dced5b10198fc46e94317d1c2eff") write$auto_seq_oss_f_ops_seq_oss(r3, &(0x7f0000000040)="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", 0xfe04) pwrite64$auto(r2, 0x0, 0x8001, 0x7f) 4.801587891s ago: executing program 0 (id=628): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x400008, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) (async) mmap$auto(0x0, 0x400008, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = io_uring_setup$auto(0x6, 0x0) close_range$auto(r0, r0, 0x8) madvise$auto(0x0, 0x200007, 0x19) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3) (async) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3) mmap$auto(0x0, 0x408, 0x3, 0x20000000eb1, 0xffffffffffffffff, 0x4000008000) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000300), r0) (async) r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000300), r0) r2 = gettid() r3 = getpid() rt_tgsigqueueinfo$auto(r3, r2, 0xb, &(0x7f0000000400)={@siginfo_0_0={0x3, 0x3, 0x3, @_sigchld={0x0, 0x0, 0xceb, 0x5, 0x4}}}) msgctl$auto_MSG_INFO(0x6, 0xc, &(0x7f00000003c0)={{0x8, 0xee00, 0xffffffffffffffff, 0x40, 0x4, 0x8, 0x3}, &(0x7f0000000340)=0x22, &(0x7f0000000380)=0x1, 0x0, 0x9, 0x8, 0x0, 0x5, 0x0, 0x2, 0x7fff, @raw, @raw=0x80}) (async) msgctl$auto_MSG_INFO(0x6, 0xc, &(0x7f00000003c0)={{0x8, 0xee00, 0xffffffffffffffff, 0x40, 0x4, 0x8, 0x3}, &(0x7f0000000340)=0x22, &(0x7f0000000380)=0x1, 0x0, 0x9, 0x8, 0x0, 0x5, 0x0, 0x2, 0x7fff, @raw, @raw=0x80}) r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r6, 0x4, 0x7ff) (async) ptrace$auto(0x10, r6, 0x4, 0x7ff) ptrace$auto(0x2, r6, 0xf73, 0x40) (async) ptrace$auto(0x2, r6, 0xf73, 0x40) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_INFO(r0, 0xc1105511, &(0x7f0000000b40)={{@inferred=r4, 0x2, 0x31, 0x1, "e82417372408b6e8ca4dcee1ae53f8b95d8d11462dcc9264644a1dc57fcccd50e93cd7c894232b642be891ca"}, 0xe, 0x6cac, 0xff, @inferred=r2, @integer={0x7fff, 0x3ff, 0x1ff}, "7b7035b7ab11cd812a67b9926fb09a3f661912db92867699536f93ed44b94740499ed616fda9f7f2044b3493488cf9bd0569fc2aedd6ae336f1a436f26de382b"}) (async) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_INFO(r0, 0xc1105511, &(0x7f0000000b40)={{@inferred=r4, 0x2, 0x31, 0x1, "e82417372408b6e8ca4dcee1ae53f8b95d8d11462dcc9264644a1dc57fcccd50e93cd7c894232b642be891ca"}, 0xe, 0x6cac, 0xff, @inferred=r2, @integer={0x7fff, 0x3ff, 0x1ff}, "7b7035b7ab11cd812a67b9926fb09a3f661912db92867699536f93ed44b94740499ed616fda9f7f2044b3493488cf9bd0569fc2aedd6ae336f1a436f26de382b"}) wait4$auto(r6, 0x0, 0x80000000, 0x0) r7 = semctl$auto_SEM_STAT_ANY(0xa, 0x4, 0x14, 0x4) msgctl$auto_IPC_STAT(0xf, 0x2, &(0x7f00000004c0)={{0x0, 0xee01, 0xee00, 0x0, 0x10001, 0x1, 0x8}, &(0x7f0000000440)=0x3, &(0x7f0000000480)=0x6, 0xc5db, 0x80000000, 0x0, 0x5, 0x7, 0x8, 0x8, 0x8, @inferred=0xffffffffffffffff, @inferred=0xffffffffffffffff}) sendmsg$auto_NL802154_CMD_STOP_BEACONS(r0, &(0x7f0000000b00)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000c80)=ANY=[@ANYBLOB="78050000", @ANYRES16=r1, @ANYBLOB="200028bd7000fedbdf25270000000c00188008003800", @ANYRES32=r0, @ANYBLOB="08001c00", @ANYRES32=r3, @ANYBLOB="34052b807a00d68008007c00", @ANYRES32=r5, @ANYBLOB="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", @ANYRES32=r6, @ANYBLOB="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", @ANYRES32=r0, @ANYBLOB="3fe2f7d0316c0a179666fc00606ac1a38a7f81acca6a837e1994b86a55eff52c772a409f6aa7d830cf531865c99757ba8585b422b9a38e7eb643d47fa4a48ecf0db5f0a804411081cc29091b97add9d85d1cb32c93ee96f246cee6747d80fd4b24da7d4cf2be471edb544603fb677c41ccf8db2000218008002400", @ANYRES32=r7, @ANYBLOB='\b\x00D\x00', @ANYRES32=r8, @ANYBLOB="0400d38008003200000001000c000600040000000000000005000800060000000500100010000000"], 0x578}, 0x1, 0x0, 0x0, 0x4080}, 0x20000084) socket(0x10, 0x2, 0xc) (async) socket(0x10, 0x2, 0xc) pselect6$auto(0x40, &(0x7f0000000040)={[0xfcc, 0x101, 0x190a, 0x9, 0xb8ac, 0x2, 0x81, 0x1, 0x9, 0x425, 0x9, 0x1, 0x4, 0x0, 0x40, 0x7]}, &(0x7f00000000c0)={[0x1, 0x0, 0x5, 0x3, 0x8, 0xfff, 0xf26, 0x8, 0x8, 0x5, 0x8b, 0xffffffffffff8001, 0x7fffffff, 0x0, 0x5, 0x3]}, &(0x7f0000000140)={[0x3, 0xffffffff, 0x1, 0x8, 0x3, 0x3, 0x5, 0x2, 0x7fff, 0x9, 0x3ff, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x1, 0xd, 0x7]}, &(0x7f00000001c0)={0x4, 0x5c8}, &(0x7f0000000200)="85161ef7aef92befaf5ccc750a04179a6510cc478e8073423423047b09156e0af8e08c19e1569505b1aea0d8a30973e211a6b8f38dc2f5c049112375895165f5f61de0e97db2bf1ee317862739ac3535bc7c850c75233282f0b3868b305edd8a7c10e6e60fedbca6001d5c0694fbc6fd5e006f3aa983292ab0c97f7dadc49a13a3ec59d640e87390dd7fc54b756b53ebd35f84") (async) pselect6$auto(0x40, &(0x7f0000000040)={[0xfcc, 0x101, 0x190a, 0x9, 0xb8ac, 0x2, 0x81, 0x1, 0x9, 0x425, 0x9, 0x1, 0x4, 0x0, 0x40, 0x7]}, &(0x7f00000000c0)={[0x1, 0x0, 0x5, 0x3, 0x8, 0xfff, 0xf26, 0x8, 0x8, 0x5, 0x8b, 0xffffffffffff8001, 0x7fffffff, 0x0, 0x5, 0x3]}, &(0x7f0000000140)={[0x3, 0xffffffff, 0x1, 0x8, 0x3, 0x3, 0x5, 0x2, 0x7fff, 0x9, 0x3ff, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x1, 0xd, 0x7]}, &(0x7f00000001c0)={0x4, 0x5c8}, &(0x7f0000000200)="85161ef7aef92befaf5ccc750a04179a6510cc478e8073423423047b09156e0af8e08c19e1569505b1aea0d8a30973e211a6b8f38dc2f5c049112375895165f5f61de0e97db2bf1ee317862739ac3535bc7c850c75233282f0b3868b305edd8a7c10e6e60fedbca6001d5c0694fbc6fd5e006f3aa983292ab0c97f7dadc49a13a3ec59d640e87390dd7fc54b756b53ebd35f84") syz_open_procfs$namespace(0xffffffffffffffff, 0x0) socket(0x8, 0x6, 0xfffffffa) add_key$auto(&(0x7f0000000000)='\x00', 0x0, &(0x7f0000000240), 0x2, 0x31f) madvise$auto(0x0, 0xffffffffffff0005, 0x17) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) (async) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) mmap$auto(0x200000000000000, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x0) 4.101391627s ago: executing program 3 (id=632): openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r0 = socket(0x11, 0x3, 0x9) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x200, 0x3, 0x8, 0xc, 0x2e, 0x0, 0x3}, 0x6f4) bpf$auto(0x4, &(0x7f00000001c0)=@bpf_attr_1={0x3, 0xca96, @next_key=0x5, 0x6}, 0x1) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb2, 0x403, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x4, 0x6, 0x40eb2, 0x402, 0x300000000000) fadvise64$auto_POSIX_FADV_RANDOM(r1, 0x2, 0x7, 0x1) capset$auto(0x0, &(0x7f0000000000)={0xb213, 0x2c, 0x800}) sendmmsg$auto(r0, &(0x7f0000000400)={{&(0x7f0000000000), 0x5aa, &(0x7f00000000c0)={&(0x7f0000000040)="661b", 0x49}, 0x1, &(0x7f0000000200), 0x5, 0x3}, 0x4}, 0x1000002, 0x0) 3.806938077s ago: executing program 3 (id=635): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/wg2/mcast_resolicit\x00', 0x406602, 0x0) r0 = socket(0xa, 0x801, 0x84) r1 = getsockopt$auto(r0, 0x84, 0x71, 0x0, 0x0) io_uring_register$auto(0x2, 0xd, 0x0, 0x20) pidfd_send_signal$auto_PIDFD_SIGNAL_THREAD_GROUP(r1, 0xf7, &(0x7f0000000040)={@_si_pad}, 0x2) 3.133762286s ago: executing program 0 (id=636): openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/veth1_macvtap/accept_ra_rt_info_min_plen\x00', 0xa0202, 0x0) writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000340), 0x7111}, 0x8) 3.133466171s ago: executing program 2 (id=637): mmap$auto(0x0, 0x5, 0x9f, 0xebd, 0x401, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000480), r0) sendmsg$auto_HWSIM_CMD_REGISTER(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={0x1c, r1, 0x1, 0x70bd2b, 0x25dfdbfe, {}, [@HWSIM_ATTR_PMSR_RESULT={0x8, 0x1c, 0x0, 0x1, [@NL80211_PMSR_ATTR_PEERS={0x4}]}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004840}, 0x2000890) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/irq/1/smp_affinity_list\x00', 0x48041, 0x0) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) socket(0x22, 0x6, 0x5a8890ce) r2 = open(&(0x7f0000000040)='./file0\x00', 0x22240, 0x154) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x10, 0x2, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r3) socket(0x1, 0x803, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1d, 0x2, 0x2) pipe$auto(0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket(0x15, 0x5, 0x0) r4 = socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000013c0)=ANY=[], 0x18}, 0x1, 0x0, 0x0, 0x80800}, 0x80) close_range$auto(0x2, 0x8, 0x0) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r2) sendmsg$auto_NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000700)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000006c0)={&(0x7f0000000740)={0x24, r5, 0x900, 0x70bd26, 0x25dfdbfc, {}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0x2}, @NL80211_ATTR_TIMEOUT_REASON={0x8, 0xf8, 0x10}]}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x20008081) syz_clone3(&(0x7f0000000280)={0x80, &(0x7f0000000000), &(0x7f0000000080), &(0x7f00000000c0), {0x3f}, &(0x7f0000000100)=""/107, 0x6b, &(0x7f0000000180)=""/122, &(0x7f0000000240)=[0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0], 0x4, {r2}}, 0x58) msgctl$auto_IPC_SET(0x4, 0x1, &(0x7f0000000380)={{0x4, 0xffffffffffffffff, 0x0, 0x0, 0x10, 0x6d, 0x9}, &(0x7f0000000300)=0xc0, &(0x7f0000000340)=0xb, 0x6, 0x1000, 0x8, 0x81, 0x2, 0x0, 0x4, 0x5, @raw=0x2, @raw=0x9}) 3.009015365s ago: executing program 0 (id=638): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/audio\x00', 0x0, 0x0) ioctl$auto_SOUND_PCM_READ_CHANNELS(r0, 0x80045006, &(0x7f0000000180)="d61daf5b3ae2f840aa9b3bb964084734761faae4ca6fd32c008c0a05866d16d2ef63f558914cbed5a6a7b404c26b60142445aa0130f5f932") r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) socket(0x26, 0x80805, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x3a) r2 = fanotify_init$auto(0x5, 0x2000000000002) fanotify_mark$auto(0x0, 0x201, 0x9, 0x4, 0x0) fanotify_mark$auto(r2, 0x1, 0x9, 0x4, 0x0) close_range$auto(0x2, 0x8000, 0x0) r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) ioctl$auto_BLKTRACESETUP32(0xffffffffffffffff, 0xc0401273, &(0x7f00000001c0)={"86a9483b8a5401187605058b5bcd16d197decffa360033da78b240ba7f5b216c", 0x9, 0x3, 0x9, 0x5, 0x3e40000000000000}) r4 = waitid$auto_P_PGID(0x2, 0xffffffffffffffff, &(0x7f0000000280)={@siginfo_0_0={0x9, 0x9, 0x6, @_sigfault={&(0x7f0000000240)="95f047748583cf8538858c0a88b150673438b8cf4ff55bcc930c9de3", @_perf={0x4, 0x5, 0x10001}}}}, 0x5, &(0x7f0000000300)={{0xfffffffffffffffe, 0xc36}, {0xca}, 0x29d37097, 0x4, 0xffffffff, 0x0, 0x5, 0x135bb101, 0x8, 0x1, 0xf, 0xd9, 0x10001, 0x878, 0x2, 0x8}) getsid$auto(r4) sethostname$auto(&(0x7f0000000080)='ovs_datapath\x00', 0x0) sendmsg$auto_OVS_DP_CMD_NEW(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r3, 0x1, 0x2070bd26, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x801}, 0x80) 2.877019621s ago: executing program 1 (id=639): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getcwd$auto(0x0, 0xffffffffffffffff) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x5, 0x0) inotify_init1$auto(0x800) inotify_add_watch$auto(0x4, 0x0, 0xe6e) chmod$auto(0x0, 0x10fe) r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev2\x00', 0x2000, 0x0) read$auto_v4l2_fops_v4l2_dev(r0, &(0x7f00000000c0)=""/166, 0xa6) 2.789630789s ago: executing program 2 (id=640): openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x8440, 0x0) poll$auto(0x0, 0x5, 0x106) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r0 = socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a) sendmsg$auto_NFC_CMD_GET_SE(r0, 0x0, 0x24044001) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x7}, 0x6}, 0x5, 0x20000000) (fail_nth: 5) 2.752748258s ago: executing program 1 (id=641): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f0000000040)="910507b60a6addae033507853432e9939acaa2") mmap$auto(0xfffffffffffffffc, 0x7, 0xdf, 0x9b72, r0, 0x8e88) r1 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x2482, 0x0) openat$auto_event_inject_fops_trace(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/inject\x00', 0x2, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) sysfs$auto(0x8, 0x0, 0x6) pread64$auto(r1, 0x0, 0x20000000001, 0x7fff) 2.637749959s ago: executing program 0 (id=642): r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/thread-self/net/softnet_stat\x00', 0x101800, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x800, 0x0) ioctl$auto_SNDRV_RAWMIDI_IOCTL_STATUS64(r1, 0xc0385720, 0x0) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$auto(r2, 0x106, 0xfffffdfa, &(0x7f0000000040)='\x9d\xf7\x8c\x8bu\x0e&\x93\xa6\x03\x87\xd9\xfd\xd3sH\xd4\x8b\xb6H\x90l\b\xbc\xa4\xfc\x01L\xee\xf0', 0x40f6be) r3 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x0, 0x0) read$auto_mon_fops_text_t_mon_text(r3, 0x0, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) socket(0x9, 0x6, 0x6) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x4) r4 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto_USBDEVFS_ALLOW_SUSPEND(r4, 0x5522, 0x0) ioctl$auto_USBDEVFS_SUBMITURB(r4, 0x8038550a, &(0x7f0000000100)={0x4, 0x81, 0x5b, 0x4, &(0x7f0000000000), 0x9, 0xeb94, 0x82, @stream_id=0x100, 0x5, 0x476, 0x0}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) r5 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/dsp\x00', 0x0, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r5, 0xc0045002, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x805644) io_uring_setup$auto(0x100, 0x0) read$auto(0x3, 0x0, 0x80) close_range$auto(0x2, 0x8000, 0x0) setresuid$auto(0xa59c, 0x8000000000000000, 0x0) read$auto_proc_iter_file_ops_compat_inode(r0, &(0x7f0000000680)=""/227, 0xe3) 1.877640943s ago: executing program 1 (id=643): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) r0 = open(0x0, 0x261c2, 0x84) close_range$auto(0x2, 0x8, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0xa, 0x2, 0x88) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'team0\x00', 0x0}) bpf$auto(0x0, &(0x7f0000000280)=@bpf_attr_5={@target_ifindex=r4, r3, 0x8, 0x1, 0xffffffffffffffff, @relative_fd=r1, 0xe600}, 0xf) bpf$auto(0x4, &(0x7f00000001c0)=@raw_tracepoint={0x5, r0, 0x0, 0x2}, 0xc) 1.777780065s ago: executing program 2 (id=644): vmsplice$auto(0x4, &(0x7f0000000040)={0x0, 0x1}, 0x3, 0x4) r0 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/ip_mr_vif\x00', 0x2000, 0x0) read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000040)=""/229, 0xe5) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x59616d61, 0x0, 0x0, 0x2, 0x100000000) socket(0x15, 0x5, 0x0) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp1\x00', 0x802, 0x0) ioctl$auto_SNDCTL_DSP_SETTRIGGER(r2, 0x40045010, 0x0) ioctl$auto_SNDCTL_DSP_STEREO(r2, 0xc0045003, 0x0) sendmmsg$auto(r0, &(0x7f00000006c0)={{&(0x7f0000000000), 0x5ab, &(0x7f0000000100)={&(0x7f0000000040)='L', 0x49}, 0x1, &(0x7f0000000040), 0x4c, 0x1}, 0x5}, 0x2, 0x100) 1.691593601s ago: executing program 1 (id=645): unshare$auto(0x40000080) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x11, 0xffffffffffffffff, 0x62) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) r0 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r0, 0x107, 0x12, 0x0, 0x8) r1 = socket(0x10, 0x2, 0x4) io_uring_setup$auto(0x4bf15e08, &(0x7f0000000000)={0x401, 0x20008, 0xfe, 0x6fb3, 0x87, 0x9, 0xffffffffffffffff, [0x100, 0x9, 0x7f], {0x2, 0x7, 0x3032, 0xe, 0x9, 0x5, 0x5, 0xfffffff9, 0xf08a2b3}, {0x0, 0xfc, 0x10000, 0x0, 0x0, 0xf89, 0x9, 0x837, 0x8}}) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'dummy0\x00'}) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX5n\x91p\xe6\x1eRN8\x99\x88\xa2\x06\x00J\x99\x00:\x00!\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\x01\x0e\xa4\xdf\xdav\x1cC\x8a\v\x00\x00\x00\x00\x00\x00\x00X\xb9_\xdd*\xd1\x14^\xbe\xa2\x00'/97, 0x10, 0x3) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00') sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) write$auto(r1, &(0x7f0000000000)='-\x00', 0x2fb) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) memfd_create$auto(0x0, 0x9) write$auto(0x3, 0x0, 0xfffffdef) finit_module$auto(0x3, 0xfffffffffffffffe, 0x2) close_range$auto(0x6, 0xeffff000, 0x6) finit_module$auto(0x3, 0xfffffffffffffffe, 0x400000000004) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_CT_LIMIT_CMD_GET(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)={0x18, 0x0, 0x1, 0x70bd2b, 0x25dfdbfb, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x2000c001}, 0x4000) 1.186026993s ago: executing program 1 (id=646): mmap$auto(0x0, 0xc, 0x4000000000df, 0x44eb2, 0x10006, 0x300000000000) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) sendto$auto(0x3, 0x0, 0xfffffffffffffdef, 0x101, 0x0, 0x1c) sysinfo$auto(&(0x7f0000000080)={0x8000, [0xfffffffffffffff4, 0x4, 0x7], 0x3, 0x2, 0xffffffff, 0x4, 0x9, 0x981, 0x6, 0x0, 0x0, 0x6, 0x1}) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000002680), 0xffffffffffffffff) sendmsg$auto_IPVS_CMD_DEL_DAEMON(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x24, r2, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DAEMON={0x10, 0x3, 0x0, 0x1, [@typed={0xc, 0x1, 0x0, 0x0, @u64=0x2}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x40014}, 0x24008040) sendmsg$auto_IPVS_CMD_DEL_DAEMON(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x1c, r2, 0x4, 0x70bd2b, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x8d}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4080}, 0x8080) 1.142653024s ago: executing program 3 (id=647): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x101000, 0x0) read$auto(0xffffffffffffffff, 0x0, 0xe8) mmap$auto(0x0, 0x40008, 0xb3, 0x9b72, 0xffffffffffffffff, 0x28000) getsockopt$auto(r0, 0x100, 0xfffffff9, &(0x7f0000000000)='\x00', &(0x7f0000000080)=0x4) socket(0x1a, 0x6, 0x4) socket(0x8, 0x5, 0x2) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp1\x00', 0x802, 0x0) ioctl$auto_SNDCTL_DSP_SETTRIGGER(r1, 0x40045010, 0x0) ioctl$auto_SNDCTL_DSP_STEREO(r1, 0xc0045003, 0x0) 847.174618ms ago: executing program 3 (id=648): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) r0 = open(0x0, 0x261c2, 0x84) close_range$auto(0x2, 0x8, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0xa, 0x2, 0x88) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'team0\x00', 0x0}) bpf$auto(0x0, &(0x7f0000000280)=@bpf_attr_5={@target_ifindex=r4, r3, 0x8, 0x1, 0xffffffffffffffff, @relative_fd=r1, 0xe600}, 0xf) bpf$auto(0x4, &(0x7f00000001c0)=@raw_tracepoint={0x5, r0, 0x0, 0x2}, 0xc) (fail_nth: 3) 831.979963ms ago: executing program 2 (id=649): mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) r0 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) r1 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000c40)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0) write$auto(r1, 0x0, 0xe) r2 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/block/nbd11/sched/read2_next_rq\x00', 0x149480, 0x0) pread64$auto(r2, 0x0, 0x68, 0xdd6) r3 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x2c, r5, 0x1, 0x2070bd26, 0x25dfdbf8, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x8, 0x1, 'HfR\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}]}, 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x80) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'pimreg0\x00', 0x0}) r7 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'ip6tnl0\x00', 0x0}) sendto$auto(0x3, 0x0, 0x13, 0xfffffff8, &(0x7f0000000440)=@xdp={0x2c, 0xdd86, r8, 0x2f}, 0x22) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'xfrm0\x00', 0x0}) sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000240)={&(0x7f00000000c0), 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x54, r5, 0x20, 0x70bd2d, 0x25dfdbff, {}, [@OVS_DP_ATTR_MASKS_CACHE_SIZE={0x8, 0x7, 0x6}, @OVS_DP_ATTR_IFINDEX={0x8, 0x9, r6}, @OVS_DP_ATTR_MASKS_CACHE_SIZE={0x8, 0x7, 0x1}, @OVS_DP_ATTR_NAME={0x5, 0x1, '\x00'}, @OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0x400}, @OVS_DP_ATTR_MASKS_CACHE_SIZE={0x8, 0x7, 0x40}, @OVS_DP_ATTR_IFINDEX={0x8, 0x9, r8}, @OVS_DP_ATTR_IFINDEX={0x8, 0x9, r9}]}, 0x54}, 0x1, 0x0, 0x0, 0x24000884}, 0x10) ioctl$auto_VHOST_GET_BACKEND_FEATURES2(r0, 0x8008af26, &(0x7f0000000280)=0x8) 572.941092ms ago: executing program 2 (id=650): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000100)={0x30, r1, 0x1, 0x74bd27, 0x25dfdbfc, {}, [@ETHTOOL_A_COALESCE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_IRQ={0x8, 0x9, 0x6}, @ETHTOOL_A_COALESCE_PKT_RATE_HIGH={0x8, 0x12, 0x400}]}, 0x30}, 0x1, 0x0, 0x0, 0xc8c1}, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) r3 = openat$auto_sc_seq_fops_netdebug(0xffffffffffffff9c, &(0x7f0000000180), 0x80000, 0x0) r4 = socket(0xa, 0x1, 0x84) close_range$auto(r3, r4, 0x5) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r5 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r5, 0xffffffffffdffe00, &(0x7f0000000140)=';') select$auto(0x6, 0x0, &(0x7f0000000100)={[0x7ff, 0x2, 0x5, 0xc, 0x721, 0xfffffffffffffffb, 0xa72e, 0x1, 0x101, 0x9, 0xa00, 0x400, 0x7fffffff, 0x8, 0x1, 0x7f]}, 0x0, 0x0) 547.869492ms ago: executing program 1 (id=651): unshare$auto(0x40000080) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) (async) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) socket(0xa, 0x6, 0x0) mmap$auto(0x0, 0x202000d, 0x8000000002, 0xeb1, 0xffffffffffffffff, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) connect$auto(0x3, 0x0, 0x55) (async) connect$auto(0x3, 0x0, 0x55) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) (async) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000340)='/proc/sys/net/netfilter/nf_conntrack_buckets\x00', 0x101000, 0x0) write$auto(0x3, 0x0, 0xfdef) setns(0xffffffffffffffff, 0x0) mmap$auto(0x1ff, 0x2020009, 0xff, 0xeb1, r0, 0x8002) truncate$auto(&(0x7f00000000c0)='./cgroup\x00', 0x100000000000001) openat$auto_minstrel_ht_stat_csv_fops_rc80211_minstrel_ht_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy3/netdev:wlan0/stations/08:02:11:00:00:01/rc_stats_csv\x00', 0x202, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_INTERFACE(r1, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000007c0)={0x20, r2, 0xb01, 0x70bd24, 0x25dfdbfc, {}, [@NL80211_ATTR_WDEV={0xc, 0x99, 0x7}]}, 0x20}, 0x1, 0x0, 0x0, 0x8041}, 0x4000080) fcntl$auto_F_WRLCK(r1, 0x7f, 0x1) (async) fcntl$auto_F_WRLCK(r1, 0x7f, 0x1) fsopen$auto(0x0, 0x1) (async) r3 = fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$auto(0x3, 0x4188aec6, r3) 2.333401ms ago: executing program 0 (id=652): mmap$auto(0x0, 0x20009, 0x4000000000db, 0xeb1, 0x400, 0x8000) r0 = socket(0x2, 0x80002, 0x73) close_range$auto(0x0, 0xfffffffffffff000, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, r0, 0x7ff, 0x6, 0x0, 0x100000b, 0x5f, 0x2}, 0x10) bpf$auto(0x1b, &(0x7f0000000380)=@task_fd_query={r1, 0xffffffffffffffff, 0x2, 0x5, 0x4, 0x8, r2, 0x8}, 0x92) 302.986µs ago: executing program 2 (id=653): r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0) mmap$auto(0x2000, 0x9, 0x8, 0x8000000008011, r0, 0x0) (fail_nth: 7) 0s ago: executing program 3 (id=654): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nbd8\x00', 0x2400, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000002640)='/sys/kernel/debug/tracing/set_event_pid\x00', 0x2002, 0x0) r2 = socketcall$auto_SYS_CONNECT(0x3, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) mmap$auto(0x0, 0x10000, 0x4000000000db, 0xeb1, 0x2, 0x8000) read$auto(r3, 0x0, 0x20) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r5 = openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x292d02, 0x0) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, 0x0, 0x0) write$auto(r5, &(0x7f0000000040)='S\x00\x00\x00\xfe\xff\xff\xff', 0x8587) writev$auto(r5, 0x0, 0x2) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, r2) socket(0x28, 0x5, 0x0) setsockopt$auto(0x400000000000003, 0x28, 0x0, 0x0, 0x56b) write$auto(0x3, 0x0, 0x100082) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000003b00), r1) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_EXTERNAL_AUTH(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000003bc0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="010026f7dd46db2ead009500000008000300", @ANYRES32=r7], 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x180c0) ioctl$auto(r0, 0x80081280, 0xffffffffffffffff) socket(0x2b, 0x1, 0x1) mmap$auto(0x0, 0x1, 0xe1, 0xeb1, 0x401, 0x8000) futex$auto(&(0x7f0000000040)=0x1, 0x8, 0x2e6, &(0x7f0000000080)={0xda0, 0xa2}, &(0x7f00000000c0)=0x1, 0x1) setsockopt$auto(r1, 0xfffffff8, 0x40, &(0x7f0000000140)='nl80211\x00', 0x6) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x801, 0x106) socket(0xa, 0x3, 0x3a) kernel console output (not intermixed with test programs): 0012 [ 126.317881][ T6885] RAX: ffffffffffffffda RBX: 00007fc937da5fa0 RCX: 00007fc937b8d169 [ 126.317895][ T6885] RDX: 0000000000000800 RSI: 0000400000000180 RDI: 0000000000000003 [ 126.317909][ T6885] RBP: 00007fc938a0e090 R08: 0000000000000000 R09: 0000000000000000 [ 126.317922][ T6885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 126.317935][ T6885] R13: 0000000000000000 R14: 00007fc937da5fa0 R15: 00007ffebaa06608 [ 126.317967][ T6885] [ 126.318009][ T6885] debugfs: out of free dentries, can not create directory 'stations' [ 126.392954][ T6887] FAULT_INJECTION: forcing a failure. [ 126.392954][ T6887] name failslab, interval 1, probability 0, space 0, times 0 [ 126.602806][ T6887] CPU: 0 UID: 0 PID: 6887 Comm: syz.1.272 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 126.602837][ T6887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 126.602851][ T6887] Call Trace: [ 126.602858][ T6887] [ 126.602868][ T6887] dump_stack_lvl+0x16c/0x1f0 [ 126.602904][ T6887] should_fail_ex+0x50a/0x650 [ 126.602942][ T6887] ? fs_reclaim_acquire+0xae/0x150 [ 126.602977][ T6887] should_failslab+0xc2/0x120 [ 126.603000][ T6887] __kmalloc_node_track_caller_noprof+0xcf/0x510 [ 126.603040][ T6887] ? kstrdup_const+0x63/0x80 [ 126.603072][ T6887] kstrdup+0x53/0x100 [ 126.603099][ T6887] kstrdup_const+0x63/0x80 [ 126.603125][ T6887] __kernfs_new_node+0x9c/0x890 [ 126.603160][ T6887] ? __pfx___kernfs_new_node+0x10/0x10 [ 126.603191][ T6887] ? __pfx_lock_release+0x10/0x10 [ 126.603222][ T6887] ? kernfs_add_one+0x24a/0x520 [ 126.603262][ T6887] ? down_write+0x14e/0x200 [ 126.603299][ T6887] ? up_write+0x1b2/0x520 [ 126.603338][ T6887] kernfs_new_node+0x186/0x240 [ 126.603380][ T6887] __kernfs_create_file+0x53/0x350 [ 126.603411][ T6887] cgroup_addrm_files+0x547/0xc20 [ 126.603468][ T6887] ? __pfx_cgroup_addrm_files+0x10/0x10 [ 126.603516][ T6887] ? css_next_child+0xcf/0x2d0 [ 126.603551][ T6887] ? css_next_descendant_pre+0x58/0x1a0 [ 126.603591][ T6887] css_populate_dir+0x386/0x530 [ 126.603624][ T6887] cgroup_mkdir+0x37c/0x1150 [ 126.603664][ T6887] ? __pfx_cgroup_mkdir+0x10/0x10 [ 126.603701][ T6887] kernfs_iop_mkdir+0x14a/0x1d0 [ 126.603733][ T6887] ? bpf_lsm_inode_mkdir+0x9/0x10 [ 126.603770][ T6887] vfs_mkdir+0x57d/0x860 [ 126.603804][ T6887] do_mkdirat+0x301/0x3a0 [ 126.603839][ T6887] ? __pfx_do_mkdirat+0x10/0x10 [ 126.603875][ T6887] ? getname_flags.part.0+0x1c5/0x550 [ 126.603906][ T6887] __x64_sys_mkdir+0xef/0x140 [ 126.603939][ T6887] do_syscall_64+0xcd/0x250 [ 126.603971][ T6887] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.604002][ T6887] RIP: 0033:0x7f5060f8d169 [ 126.604021][ T6887] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 126.604042][ T6887] RSP: 002b:00007f5061d4f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 126.604063][ T6887] RAX: ffffffffffffffda RBX: 00007f50611a5fa0 RCX: 00007f5060f8d169 [ 126.604078][ T6887] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00004000000002c0 [ 126.604092][ T6887] RBP: 00007f506100e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 126.604106][ T6887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 126.604120][ T6887] R13: 0000000000000000 R14: 00007f50611a5fa0 R15: 00007ffd4c3d2d58 [ 126.604153][ T6887] [ 126.604164][ T6887] cgroup: cgroup_addrm_files: failed to add cgroup.subtree_control, err=-12 [ 127.863849][ T6919] FAULT_INJECTION: forcing a failure. [ 127.863849][ T6919] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 128.129418][ T6919] CPU: 1 UID: 0 PID: 6919 Comm: syz.1.279 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 128.129450][ T6919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 128.129463][ T6919] Call Trace: [ 128.129469][ T6919] [ 128.129478][ T6919] dump_stack_lvl+0x16c/0x1f0 [ 128.129513][ T6919] should_fail_ex+0x50a/0x650 [ 128.129552][ T6919] _copy_to_user+0x32/0xd0 [ 128.129580][ T6919] simple_read_from_buffer+0xd0/0x160 [ 128.129612][ T6919] proc_fail_nth_read+0x198/0x270 [ 128.129640][ T6919] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 128.129670][ T6919] ? rw_verify_area+0xcf/0x680 [ 128.129697][ T6919] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 128.129724][ T6919] vfs_read+0x1df/0xbf0 [ 128.129753][ T6919] ? __fget_files+0x1fc/0x3a0 [ 128.129783][ T6919] ? __pfx___mutex_lock+0x10/0x10 [ 128.129812][ T6919] ? __pfx_vfs_read+0x10/0x10 [ 128.129851][ T6919] ? __fget_files+0x206/0x3a0 [ 128.129892][ T6919] ksys_read+0x12b/0x250 [ 128.129920][ T6919] ? __pfx_ksys_read+0x10/0x10 [ 128.129959][ T6919] do_syscall_64+0xcd/0x250 [ 128.129991][ T6919] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 128.130021][ T6919] RIP: 0033:0x7f5060f8bb7c [ 128.130039][ T6919] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 128.130059][ T6919] RSP: 002b:00007f5061d0d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 128.130080][ T6919] RAX: ffffffffffffffda RBX: 00007f50611a6160 RCX: 00007f5060f8bb7c [ 128.130095][ T6919] RDX: 000000000000000f RSI: 00007f5061d0d0a0 RDI: 0000000000000004 [ 128.130109][ T6919] RBP: 00007f5061d0d090 R08: 0000000000000000 R09: 0000000000000000 [ 128.130122][ T6919] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 128.130135][ T6919] R13: 0000000000000000 R14: 00007f50611a6160 R15: 00007ffd4c3d2d58 [ 128.130166][ T6919] [ 128.971945][ T6933] delete_channel: no stack [ 129.789448][ T6934] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 129.796038][ T6934] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 129.922428][ T6934] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 130.060702][ T6934] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 130.091412][ T6934] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 130.311652][ T6960] FAULT_INJECTION: forcing a failure. [ 130.311652][ T6960] name failslab, interval 1, probability 0, space 0, times 0 [ 130.421621][ T6934] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 130.583724][ T6960] CPU: 1 UID: 0 PID: 6960 Comm: syz.0.288 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 130.583757][ T6960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 130.583770][ T6960] Call Trace: [ 130.583777][ T6960] [ 130.583787][ T6960] dump_stack_lvl+0x16c/0x1f0 [ 130.583825][ T6960] should_fail_ex+0x50a/0x650 [ 130.583862][ T6960] ? __pfx_lock_release+0x10/0x10 [ 130.583908][ T6960] ? proc_thread_self_get_link+0x1c6/0x240 [ 130.583943][ T6960] should_failslab+0xc2/0x120 [ 130.583967][ T6960] __kmalloc_cache_noprof+0x68/0x410 [ 130.584008][ T6960] proc_thread_self_get_link+0x1c6/0x240 [ 130.584043][ T6960] ? __pfx_proc_thread_self_get_link+0x10/0x10 [ 130.584078][ T6960] step_into+0x1982/0x2220 [ 130.584118][ T6960] ? __pfx_step_into+0x10/0x10 [ 130.584152][ T6960] ? lookup_fast+0x153/0x5f0 [ 130.584186][ T6960] walk_component+0xfc/0x5b0 [ 130.584219][ T6960] link_path_walk.part.0.constprop.0+0x669/0xd40 [ 130.584265][ T6960] path_openat+0x228/0x2d80 [ 130.584299][ T6960] ? hlock_class+0x4e/0x130 [ 130.584337][ T6960] ? __pfx_path_openat+0x10/0x10 [ 130.584377][ T6960] ? __pfx___lock_acquire+0x10/0x10 [ 130.584407][ T6960] ? lock_acquire.part.0+0x11b/0x380 [ 130.584439][ T6960] ? find_held_lock+0x2d/0x110 [ 130.584468][ T6960] do_filp_open+0x20c/0x470 [ 130.584504][ T6960] ? __pfx_do_filp_open+0x10/0x10 [ 130.584537][ T6960] ? find_held_lock+0x2d/0x110 [ 130.584588][ T6960] ? alloc_fd+0x41f/0x760 [ 130.584630][ T6960] do_sys_openat2+0x17a/0x1e0 [ 130.584655][ T6960] ? __pfx_do_sys_openat2+0x10/0x10 [ 130.584679][ T6960] ? __pfx_lock_release+0x10/0x10 [ 130.584724][ T6960] __x64_sys_openat+0x175/0x210 [ 130.584750][ T6960] ? __pfx___x64_sys_openat+0x10/0x10 [ 130.584790][ T6960] do_syscall_64+0xcd/0x250 [ 130.584823][ T6960] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 130.584855][ T6960] RIP: 0033:0x7f7462d8d169 [ 130.584875][ T6960] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 130.584905][ T6960] RSP: 002b:00007f7463b60038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 130.584928][ T6960] RAX: ffffffffffffffda RBX: 00007f7462fa5fa0 RCX: 00007f7462d8d169 [ 130.584945][ T6960] RDX: 0000000000000802 RSI: 0000400000000000 RDI: ffffffffffffff9c [ 130.584961][ T6960] RBP: 00007f7462e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 130.584977][ T6960] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 130.584992][ T6960] R13: 0000000000000000 R14: 00007f7462fa5fa0 R15: 00007fffc3cdb4c8 [ 130.585026][ T6960] [ 131.016869][ T6934] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 131.022905][ T6934] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 131.297652][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout [ 131.301405][ T6934] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 131.445478][ T6934] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 131.483141][ T6934] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 131.547806][ T6934] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 131.777386][ T6984] FAULT_INJECTION: forcing a failure. [ 131.777386][ T6984] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 131.856602][ T6984] CPU: 0 UID: 0 PID: 6984 Comm: syz.2.294 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 131.856635][ T6984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 131.856648][ T6984] Call Trace: [ 131.856655][ T6984] [ 131.856664][ T6984] dump_stack_lvl+0x16c/0x1f0 [ 131.856697][ T6984] should_fail_ex+0x50a/0x650 [ 131.856736][ T6984] _copy_from_user+0x2e/0xd0 [ 131.856760][ T6984] load_msg+0x1a1/0x470 [ 131.856803][ T6984] do_msgrcv+0x20f/0x1690 [ 131.856833][ T6984] ? __pfx_do_msg_fill+0x10/0x10 [ 131.856865][ T6984] ? __fget_files+0x206/0x3a0 [ 131.856894][ T6984] ? __pfx_do_msgrcv+0x10/0x10 [ 131.856927][ T6984] ? fput+0x67/0x440 [ 131.856951][ T6984] ? ksys_write+0x1ba/0x250 [ 131.856980][ T6984] ? __pfx_ksys_write+0x10/0x10 [ 131.857018][ T6984] ? do_syscall_64+0xcd/0x250 [ 131.857045][ T6984] do_syscall_64+0xcd/0x250 [ 131.857075][ T6984] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 131.857106][ T6984] RIP: 0033:0x7fdfa6b8d169 [ 131.857124][ T6984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 131.857144][ T6984] RSP: 002b:00007fdfa7978038 EFLAGS: 00000246 ORIG_RAX: 0000000000000046 [ 131.857164][ T6984] RAX: ffffffffffffffda RBX: 00007fdfa6da5fa0 RCX: 00007fdfa6b8d169 [ 131.857179][ T6984] RDX: 0000002400000000 RSI: 0000000000000000 RDI: 00000000000000ff [ 131.857193][ T6984] RBP: 00007fdfa7978090 R08: 000000006bc2cc7d R09: 0000000000000000 [ 131.857207][ T6984] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001 [ 131.857220][ T6984] R13: 0000000000000001 R14: 00007fdfa6da5fa0 R15: 00007ffe0fdba6e8 [ 131.857250][ T6984] [ 132.216491][ T54] Bluetooth: hci0: command 0x0c1a tx timeout [ 132.929615][ T7008] FAULT_INJECTION: forcing a failure. [ 132.929615][ T7008] name failslab, interval 1, probability 0, space 0, times 0 [ 132.996640][ T7008] CPU: 1 UID: 0 PID: 7008 Comm: syz.2.300 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 132.996675][ T7008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 132.996689][ T7008] Call Trace: [ 132.996695][ T7008] [ 132.996705][ T7008] dump_stack_lvl+0x16c/0x1f0 [ 132.996745][ T7008] should_fail_ex+0x50a/0x650 [ 132.996781][ T7008] ? fs_reclaim_acquire+0xae/0x150 [ 132.996816][ T7008] should_failslab+0xc2/0x120 [ 132.996840][ T7008] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 132.996876][ T7008] ? __kernfs_new_node+0xd3/0x890 [ 132.996913][ T7008] __kernfs_new_node+0xd3/0x890 [ 132.996946][ T7008] ? mark_lock+0xb5/0xc60 [ 132.996985][ T7008] ? __pfx___kernfs_new_node+0x10/0x10 [ 132.997024][ T7008] ? __pfx_mark_lock+0x10/0x10 [ 132.997058][ T7008] ? find_held_lock+0x2d/0x110 [ 132.997088][ T7008] ? cgroup_bpf_inherit+0x189/0x980 [ 132.997125][ T7008] kernfs_new_node+0x186/0x240 [ 132.997167][ T7008] __kernfs_create_file+0x53/0x350 [ 132.997197][ T7008] cgroup_addrm_files+0x547/0xc20 [ 132.997247][ T7008] ? __pfx_cgroup_addrm_files+0x10/0x10 [ 132.997297][ T7008] ? css_next_child+0xcf/0x2d0 [ 132.997331][ T7008] ? css_next_descendant_pre+0x58/0x1a0 [ 132.997366][ T7008] css_populate_dir+0x386/0x530 [ 132.997398][ T7008] cgroup_mkdir+0x37c/0x1150 [ 132.997438][ T7008] ? __pfx_cgroup_mkdir+0x10/0x10 [ 132.997473][ T7008] kernfs_iop_mkdir+0x14a/0x1d0 [ 132.997504][ T7008] ? bpf_lsm_inode_mkdir+0x9/0x10 [ 132.997539][ T7008] vfs_mkdir+0x57d/0x860 [ 132.997571][ T7008] do_mkdirat+0x301/0x3a0 [ 132.997607][ T7008] ? __pfx_do_mkdirat+0x10/0x10 [ 132.997645][ T7008] ? getname_flags.part.0+0x1c5/0x550 [ 132.997677][ T7008] __x64_sys_mkdir+0xef/0x140 [ 132.997711][ T7008] do_syscall_64+0xcd/0x250 [ 132.997746][ T7008] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 132.997778][ T7008] RIP: 0033:0x7fdfa6b8d169 [ 132.997798][ T7008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 132.997821][ T7008] RSP: 002b:00007fdfa7978038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 132.997845][ T7008] RAX: ffffffffffffffda RBX: 00007fdfa6da5fa0 RCX: 00007fdfa6b8d169 [ 132.997861][ T7008] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00004000000002c0 [ 132.997875][ T7008] RBP: 00007fdfa6c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 132.997890][ T7008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 132.997904][ T7008] R13: 0000000000000000 R14: 00007fdfa6da5fa0 R15: 00007ffe0fdba6e8 [ 132.997938][ T7008] [ 132.997996][ T7008] cgroup: cgroup_addrm_files: failed to add cgroup.type, err=-12 [ 133.051223][ T54] Bluetooth: hci2: command 0x0c1a tx timeout [ 133.130578][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.130640][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.376486][ T54] Bluetooth: hci1: command 0x0c1a tx timeout [ 133.446551][ T54] Bluetooth: hci3: command 0x0c1a tx timeout [ 133.908910][ T7024] FAULT_INJECTION: forcing a failure. [ 133.908910][ T7024] name failslab, interval 1, probability 0, space 0, times 0 [ 133.938323][ T7024] CPU: 1 UID: 0 PID: 7024 Comm: syz.0.305 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 133.938353][ T7024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 133.938366][ T7024] Call Trace: [ 133.938373][ T7024] [ 133.938382][ T7024] dump_stack_lvl+0x16c/0x1f0 [ 133.938416][ T7024] should_fail_ex+0x50a/0x650 [ 133.938449][ T7024] ? fs_reclaim_acquire+0xae/0x150 [ 133.938480][ T7024] ? tomoyo_encode2+0x100/0x3e0 [ 133.938508][ T7024] should_failslab+0xc2/0x120 [ 133.938530][ T7024] __kmalloc_noprof+0xcb/0x510 [ 133.938564][ T7024] ? rcu_is_watching+0x12/0xc0 [ 133.938591][ T7024] tomoyo_encode2+0x100/0x3e0 [ 133.938637][ T7024] tomoyo_encode+0x29/0x50 [ 133.938665][ T7024] tomoyo_realpath_from_path+0x19d/0x720 [ 133.938699][ T7024] ? tomoyo_path_number_perm+0x235/0x590 [ 133.938730][ T7024] tomoyo_path_number_perm+0x248/0x590 [ 133.938754][ T7024] ? tomoyo_path_number_perm+0x235/0x590 [ 133.938784][ T7024] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 133.938842][ T7024] ? __pfx_lock_release+0x10/0x10 [ 133.938870][ T7024] ? trace_lock_acquire+0x14e/0x1f0 [ 133.938900][ T7024] ? lock_acquire+0x2f/0xb0 [ 133.938926][ T7024] ? __fget_files+0x40/0x3a0 [ 133.938961][ T7024] ? __fget_files+0x206/0x3a0 [ 133.938995][ T7024] security_file_ioctl+0x9b/0x240 [ 133.939025][ T7024] __x64_sys_ioctl+0xb7/0x200 [ 133.939054][ T7024] do_syscall_64+0xcd/0x250 [ 133.939085][ T7024] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 133.939116][ T7024] RIP: 0033:0x7f7462d8d169 [ 133.939134][ T7024] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 133.939155][ T7024] RSP: 002b:00007f7463b60038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 133.939177][ T7024] RAX: ffffffffffffffda RBX: 00007f7462fa5fa0 RCX: 00007f7462d8d169 [ 133.939192][ T7024] RDX: 0000000000000005 RSI: 0000000040085400 RDI: 0000000000000003 [ 133.939206][ T7024] RBP: 00007f7463b60090 R08: 0000000000000000 R09: 0000000000000000 [ 133.939219][ T7024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 133.939233][ T7024] R13: 0000000000000000 R14: 00007f7462fa5fa0 R15: 00007fffc3cdb4c8 [ 133.939263][ T7024] [ 133.939309][ T7024] ERROR: Out of memory at tomoyo_realpath_from_path. [ 134.246721][ T54] Bluetooth: hci0: command 0x0c1a tx timeout [ 135.370206][ T54] Bluetooth: hci2: command 0x0c1a tx timeout [ 135.455991][ T54] Bluetooth: hci1: command 0x0c1a tx timeout [ 135.526506][ T54] Bluetooth: hci3: command 0x0c1a tx timeout [ 136.229585][ T7074] FAULT_INJECTION: forcing a failure. [ 136.229585][ T7074] name fail_futex, interval 1, probability 0, space 0, times 0 [ 136.257182][ T7074] CPU: 0 UID: 0 PID: 7074 Comm: syz.3.316 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 136.257217][ T7074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 136.257231][ T7074] Call Trace: [ 136.257238][ T7074] [ 136.257248][ T7074] dump_stack_lvl+0x16c/0x1f0 [ 136.257284][ T7074] should_fail_ex+0x50a/0x650 [ 136.257326][ T7074] get_futex_key+0x4a3/0x1000 [ 136.257358][ T7074] ? __pfx_get_futex_key+0x10/0x10 [ 136.257397][ T7074] futex_wake+0xe8/0x4e0 [ 136.257445][ T7074] ? __pfx_futex_wake+0x10/0x10 [ 136.257482][ T7074] ? kmem_cache_free+0x2e2/0x4d0 [ 136.257514][ T7074] ? putname+0x13c/0x180 [ 136.257541][ T7074] do_futex+0x1e5/0x350 [ 136.257567][ T7074] ? __pfx_do_futex+0x10/0x10 [ 136.257594][ T7074] ? __pfx_lock_release+0x10/0x10 [ 136.257630][ T7074] __x64_sys_futex+0x1e1/0x4c0 [ 136.257660][ T7074] ? __x64_sys_openat+0x175/0x210 [ 136.257685][ T7074] ? __pfx___x64_sys_futex+0x10/0x10 [ 136.257725][ T7074] do_syscall_64+0xcd/0x250 [ 136.257758][ T7074] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 136.257790][ T7074] RIP: 0033:0x7fc937b8d169 [ 136.257809][ T7074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 136.257828][ T7074] RSP: 002b:00007fc938a0e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 136.257848][ T7074] RAX: ffffffffffffffda RBX: 00007fc937da5fa8 RCX: 00007fc937b8d169 [ 136.257862][ T7074] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc937da5fac [ 136.257876][ T7074] RBP: 00007fc937da5fa0 R08: 00007fc938a0f000 R09: 0000000000000000 [ 136.257891][ T7074] R10: 0000000000000009 R11: 0000000000000246 R12: 00007fc937da5fac [ 136.257907][ T7074] R13: 0000000000000000 R14: 00007ffebaa06520 R15: 00007ffebaa06608 [ 136.257939][ T7074] [ 136.492627][ T54] Bluetooth: hci0: command 0x0c1a tx timeout [ 137.452040][ T54] Bluetooth: hci2: command 0x0c1a tx timeout [ 137.607323][ T54] Bluetooth: hci3: command 0x0c1a tx timeout [ 137.707946][ T7096] bcache: register_bcache() error : Not a bcache superblock (bad offset) [ 138.235996][ T7109] FAULT_INJECTION: forcing a failure. [ 138.235996][ T7109] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 138.376485][ T7109] CPU: 1 UID: 0 PID: 7109 Comm: syz.2.324 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 138.376528][ T7109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 138.376541][ T7109] Call Trace: [ 138.376548][ T7109] [ 138.376558][ T7109] dump_stack_lvl+0x16c/0x1f0 [ 138.376592][ T7109] should_fail_ex+0x50a/0x650 [ 138.376630][ T7109] _copy_to_user+0x32/0xd0 [ 138.376664][ T7109] simple_read_from_buffer+0xd0/0x160 [ 138.376698][ T7109] proc_fail_nth_read+0x198/0x270 [ 138.376732][ T7109] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 138.376761][ T7109] ? rw_verify_area+0xcf/0x680 [ 138.376788][ T7109] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 138.376816][ T7109] vfs_read+0x1df/0xbf0 [ 138.376846][ T7109] ? __fget_files+0x1fc/0x3a0 [ 138.376877][ T7109] ? __pfx___mutex_lock+0x10/0x10 [ 138.376907][ T7109] ? __pfx_vfs_read+0x10/0x10 [ 138.376946][ T7109] ? __fget_files+0x206/0x3a0 [ 138.376987][ T7109] ksys_read+0x12b/0x250 [ 138.377015][ T7109] ? __pfx_ksys_read+0x10/0x10 [ 138.377054][ T7109] do_syscall_64+0xcd/0x250 [ 138.377084][ T7109] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 138.377115][ T7109] RIP: 0033:0x7fdfa6b8bb7c [ 138.377134][ T7109] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 138.377154][ T7109] RSP: 002b:00007fdfa7978030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 138.377176][ T7109] RAX: ffffffffffffffda RBX: 00007fdfa6da5fa0 RCX: 00007fdfa6b8bb7c [ 138.377191][ T7109] RDX: 000000000000000f RSI: 00007fdfa79780a0 RDI: 0000000000000003 [ 138.377204][ T7109] RBP: 00007fdfa7978090 R08: 0000000000000000 R09: 0000000000000000 [ 138.377218][ T7109] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 138.377231][ T7109] R13: 0000000000000001 R14: 00007fdfa6da5fa0 R15: 00007ffe0fdba6e8 [ 138.377266][ T7109] [ 138.978508][ T7116] FAULT_INJECTION: forcing a failure. [ 138.978508][ T7116] name failslab, interval 1, probability 0, space 0, times 0 [ 139.039414][ T7116] CPU: 0 UID: 0 PID: 7116 Comm: syz.2.326 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 139.039461][ T7116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 139.039475][ T7116] Call Trace: [ 139.039481][ T7116] [ 139.039490][ T7116] dump_stack_lvl+0x16c/0x1f0 [ 139.039529][ T7116] should_fail_ex+0x50a/0x650 [ 139.039567][ T7116] ? fs_reclaim_acquire+0xae/0x150 [ 139.039605][ T7116] should_failslab+0xc2/0x120 [ 139.039630][ T7116] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 139.039666][ T7116] ? __kernfs_new_node+0xd3/0x890 [ 139.039704][ T7116] __kernfs_new_node+0xd3/0x890 [ 139.039740][ T7116] ? __pfx___kernfs_new_node+0x10/0x10 [ 139.039771][ T7116] ? mark_lock+0xb5/0xc60 [ 139.039802][ T7116] ? __pfx___lock_acquire+0x10/0x10 [ 139.039838][ T7116] ? __pfx_mark_lock+0x10/0x10 [ 139.039867][ T7116] ? lockdep_hardirqs_on+0x7c/0x110 [ 139.039901][ T7116] ? lock_acquire.part.0+0x11b/0x380 [ 139.039933][ T7116] ? find_held_lock+0x2d/0x110 [ 139.039964][ T7116] kernfs_new_node+0x186/0x240 [ 139.040005][ T7116] __kernfs_create_file+0x53/0x350 [ 139.040036][ T7116] cgroup_addrm_files+0x547/0xc20 [ 139.040086][ T7116] ? __pfx_cgroup_addrm_files+0x10/0x10 [ 139.040133][ T7116] ? css_next_child+0xcf/0x2d0 [ 139.040167][ T7116] ? css_next_descendant_pre+0x58/0x1a0 [ 139.040203][ T7116] css_populate_dir+0x386/0x530 [ 139.040235][ T7116] cgroup_mkdir+0x37c/0x1150 [ 139.040274][ T7116] ? __pfx_cgroup_mkdir+0x10/0x10 [ 139.040312][ T7116] kernfs_iop_mkdir+0x14a/0x1d0 [ 139.040345][ T7116] ? bpf_lsm_inode_mkdir+0x9/0x10 [ 139.040380][ T7116] vfs_mkdir+0x57d/0x860 [ 139.040414][ T7116] do_mkdirat+0x301/0x3a0 [ 139.040459][ T7116] ? __pfx_do_mkdirat+0x10/0x10 [ 139.040498][ T7116] ? getname_flags.part.0+0x1c5/0x550 [ 139.040530][ T7116] __x64_sys_mkdir+0xef/0x140 [ 139.040565][ T7116] do_syscall_64+0xcd/0x250 [ 139.040598][ T7116] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 139.040631][ T7116] RIP: 0033:0x7fdfa6b8d169 [ 139.040651][ T7116] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 139.040673][ T7116] RSP: 002b:00007fdfa7978038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 139.040696][ T7116] RAX: ffffffffffffffda RBX: 00007fdfa6da5fa0 RCX: 00007fdfa6b8d169 [ 139.040714][ T7116] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00004000000002c0 [ 139.040729][ T7116] RBP: 00007fdfa6c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 139.040744][ T7116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 139.040757][ T7116] R13: 0000000000000000 R14: 00007fdfa6da5fa0 R15: 00007ffe0fdba6e8 [ 139.040791][ T7116] [ 139.040815][ T7116] cgroup: cgroup_addrm_files: failed to add cgroup.threads, err=-12 [ 140.693092][ T7148] FAULT_INJECTION: forcing a failure. [ 140.693092][ T7148] name failslab, interval 1, probability 0, space 0, times 0 [ 140.766746][ T7148] CPU: 1 UID: 0 PID: 7148 Comm: syz.3.334 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 140.766780][ T7148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 140.766792][ T7148] Call Trace: [ 140.766798][ T7148] [ 140.766807][ T7148] dump_stack_lvl+0x16c/0x1f0 [ 140.766842][ T7148] should_fail_ex+0x50a/0x650 [ 140.766875][ T7148] ? fs_reclaim_acquire+0xae/0x150 [ 140.766907][ T7148] should_failslab+0xc2/0x120 [ 140.766929][ T7148] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 140.766962][ T7148] ? lock_acquire.part.0+0x11b/0x380 [ 140.766992][ T7148] ? ptlock_alloc+0x1f/0x70 [ 140.767029][ T7148] ptlock_alloc+0x1f/0x70 [ 140.767060][ T7148] pte_alloc_one+0x74/0x390 [ 140.767093][ T7148] __do_fault+0x320/0x490 [ 140.767119][ T7148] do_pte_missing+0xecf/0x3e10 [ 140.767151][ T7148] ? do_raw_spin_unlock+0x172/0x230 [ 140.767176][ T7148] ? __pmd_alloc+0x3c2/0x870 [ 140.767207][ T7148] __handle_mm_fault+0x1166/0x2c60 [ 140.767248][ T7148] ? __pfx___handle_mm_fault+0x10/0x10 [ 140.767309][ T7148] handle_mm_fault+0x3fa/0xaa0 [ 140.767346][ T7148] __get_user_pages+0x773/0x36f0 [ 140.767393][ T7148] ? __pfx_mt_find+0x10/0x10 [ 140.767423][ T7148] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 140.767455][ T7148] ? __pfx___get_user_pages+0x10/0x10 [ 140.767488][ T7148] ? __mm_populate+0x21d/0x380 [ 140.767527][ T7148] populate_vma_page_range+0x27f/0x3a0 [ 140.767562][ T7148] ? __pfx_populate_vma_page_range+0x10/0x10 [ 140.767594][ T7148] ? __pfx_find_vma_intersection+0x10/0x10 [ 140.767624][ T7148] ? vm_mmap_pgoff+0x29b/0x3a0 [ 140.767660][ T7148] __mm_populate+0x1d6/0x380 [ 140.767692][ T7148] ? __pfx___mm_populate+0x10/0x10 [ 140.767730][ T7148] ? up_write+0x1b2/0x520 [ 140.767766][ T7148] vm_mmap_pgoff+0x2d3/0x3a0 [ 140.767800][ T7148] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 140.767835][ T7148] ? __fget_files+0x206/0x3a0 [ 140.767872][ T7148] ksys_mmap_pgoff+0x32c/0x5c0 [ 140.767900][ T7148] ? __pfx_ksys_write+0x10/0x10 [ 140.767934][ T7148] __x64_sys_mmap+0x125/0x190 [ 140.767971][ T7148] do_syscall_64+0xcd/0x250 [ 140.768004][ T7148] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 140.768035][ T7148] RIP: 0033:0x7fc937b8d169 [ 140.768053][ T7148] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 140.768074][ T7148] RSP: 002b:00007fc938a0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 140.768096][ T7148] RAX: ffffffffffffffda RBX: 00007fc937da5fa0 RCX: 00007fc937b8d169 [ 140.768110][ T7148] RDX: 0000000000000ffb RSI: 0000000000000008 RDI: 0000000000000000 [ 140.768123][ T7148] RBP: 00007fc938a0e090 R08: 0000000000000003 R09: 0000000000000000 [ 140.768137][ T7148] R10: 0008000000008011 R11: 0000000000000246 R12: 0000000000000001 [ 140.768150][ T7148] R13: 0000000000000000 R14: 00007fc937da5fa0 R15: 00007ffebaa06608 [ 140.768182][ T7148] [ 141.134418][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 141.154246][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 141.498499][ T7164] FAULT_INJECTION: forcing a failure. [ 141.498499][ T7164] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 141.551500][ T7164] CPU: 0 UID: 0 PID: 7164 Comm: syz.0.340 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 141.551528][ T7164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 141.551538][ T7164] Call Trace: [ 141.551544][ T7164] [ 141.551552][ T7164] dump_stack_lvl+0x16c/0x1f0 [ 141.551584][ T7164] should_fail_ex+0x50a/0x650 [ 141.551616][ T7164] _copy_to_user+0x32/0xd0 [ 141.551639][ T7164] simple_read_from_buffer+0xd0/0x160 [ 141.551668][ T7164] proc_fail_nth_read+0x198/0x270 [ 141.551695][ T7164] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 141.551720][ T7164] ? rw_verify_area+0xcf/0x680 [ 141.551741][ T7164] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 141.551763][ T7164] vfs_read+0x1df/0xbf0 [ 141.551790][ T7164] ? __fget_files+0x1fc/0x3a0 [ 141.551815][ T7164] ? __pfx___mutex_lock+0x10/0x10 [ 141.551843][ T7164] ? __pfx_vfs_read+0x10/0x10 [ 141.551878][ T7164] ? __fget_files+0x206/0x3a0 [ 141.551915][ T7164] ksys_read+0x12b/0x250 [ 141.551939][ T7164] ? __pfx_ksys_read+0x10/0x10 [ 141.551994][ T7164] do_syscall_64+0xcd/0x250 [ 141.552026][ T7164] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 141.552055][ T7164] RIP: 0033:0x7f7462d8bb7c [ 141.552074][ T7164] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 141.552094][ T7164] RSP: 002b:00007f7463b60030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 141.552115][ T7164] RAX: ffffffffffffffda RBX: 00007f7462fa5fa0 RCX: 00007f7462d8bb7c [ 141.552130][ T7164] RDX: 000000000000000f RSI: 00007f7463b600a0 RDI: 0000000000000004 [ 141.552145][ T7164] RBP: 00007f7463b60090 R08: 0000000000000000 R09: 0000000000000000 [ 141.552159][ T7164] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 141.552172][ T7164] R13: 0000000000000000 R14: 00007f7462fa5fa0 R15: 00007fffc3cdb4c8 [ 141.552203][ T7164] [ 141.741722][ C0] vkms_vblank_simulate: vblank timer overrun [ 141.963887][ T7174] netlink: 8 bytes leftover after parsing attributes in process `syz.0.343'. [ 142.167938][ T7178] FAULT_INJECTION: forcing a failure. [ 142.167938][ T7178] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 142.226814][ T7178] CPU: 0 UID: 0 PID: 7178 Comm: syz.2.344 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 142.226845][ T7178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 142.226858][ T7178] Call Trace: [ 142.226865][ T7178] [ 142.226874][ T7178] dump_stack_lvl+0x16c/0x1f0 [ 142.226907][ T7178] should_fail_ex+0x50a/0x650 [ 142.226955][ T7178] _copy_from_user+0x2e/0xd0 [ 142.226980][ T7178] do_sys_poll+0x1d6/0xde0 [ 142.227013][ T7178] ? __pfx_mark_lock+0x10/0x10 [ 142.227048][ T7178] ? __pfx_do_sys_poll+0x10/0x10 [ 142.227104][ T7178] ? __pfx___lock_acquire+0x10/0x10 [ 142.227189][ T7178] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 142.227222][ T7178] ? set_user_sigmask+0x217/0x2a0 [ 142.227249][ T7178] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 142.227278][ T7178] ? __pfx_set_user_sigmask+0x10/0x10 [ 142.227305][ T7178] ? __fget_files+0x206/0x3a0 [ 142.227339][ T7178] __x64_sys_ppoll+0x25a/0x2d0 [ 142.227373][ T7178] ? __pfx___x64_sys_ppoll+0x10/0x10 [ 142.227402][ T7178] ? ksys_write+0x1ba/0x250 [ 142.227431][ T7178] ? __pfx_ksys_write+0x10/0x10 [ 142.227469][ T7178] do_syscall_64+0xcd/0x250 [ 142.227501][ T7178] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 142.227531][ T7178] RIP: 0033:0x7fdfa6b8d169 [ 142.227549][ T7178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 142.227569][ T7178] RSP: 002b:00007fdfa7978038 EFLAGS: 00000246 ORIG_RAX: 000000000000010f [ 142.227591][ T7178] RAX: ffffffffffffffda RBX: 00007fdfa6da5fa0 RCX: 00007fdfa6b8d169 [ 142.227606][ T7178] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000400000000040 [ 142.227619][ T7178] RBP: 00007fdfa7978090 R08: 0000000000000008 R09: 0000000000000000 [ 142.227632][ T7178] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 142.227645][ T7178] R13: 0000000000000000 R14: 00007fdfa6da5fa0 R15: 00007ffe0fdba6e8 [ 142.227675][ T7178] [ 142.428542][ C0] vkms_vblank_simulate: vblank timer overrun [ 145.305454][ T7236] netlink: 20 bytes leftover after parsing attributes in process `syz.0.358'. [ 145.633881][ T7240] FAULT_INJECTION: forcing a failure. [ 145.633881][ T7240] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 145.676638][ T7240] CPU: 0 UID: 0 PID: 7240 Comm: syz.1.360 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 145.676672][ T7240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 145.676685][ T7240] Call Trace: [ 145.676691][ T7240] [ 145.676700][ T7240] dump_stack_lvl+0x16c/0x1f0 [ 145.676744][ T7240] should_fail_ex+0x50a/0x650 [ 145.676777][ T7240] ? __pfx___might_resched+0x10/0x10 [ 145.676815][ T7240] should_fail_alloc_page+0xe7/0x130 [ 145.676840][ T7240] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 145.676877][ T7240] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 145.676915][ T7240] ? stack_depot_save_flags+0x38f/0x9c0 [ 145.676950][ T7240] ? __pfx_lock_release+0x10/0x10 [ 145.676985][ T7240] ? hlock_class+0x4e/0x130 [ 145.677008][ T7240] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 145.677056][ T7240] ? __pfx___lock_acquire+0x10/0x10 [ 145.677084][ T7240] ? kasan_save_stack+0x42/0x60 [ 145.677113][ T7240] ? kasan_save_stack+0x33/0x60 [ 145.677141][ T7240] ? kasan_save_track+0x14/0x30 [ 145.677170][ T7240] ? __kasan_slab_alloc+0x89/0x90 [ 145.677199][ T7240] ? kmem_cache_alloc_node_noprof+0x223/0x3c0 [ 145.677231][ T7240] ? alloc_vmap_area+0x636/0x2a60 [ 145.677255][ T7240] ? __get_vm_area_node+0x19e/0x2f0 [ 145.677282][ T7240] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 145.677318][ T7240] ? policy_nodemask+0xea/0x4e0 [ 145.677355][ T7240] alloc_pages_mpol+0x1fc/0x540 [ 145.677378][ T7240] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 145.677398][ T7240] ? __page_table_check_ptes_set+0x16b/0x3e0 [ 145.677433][ T7240] ? do_raw_spin_lock+0x12d/0x2c0 [ 145.677455][ T7240] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 145.677481][ T7240] alloc_pages_noprof+0x131/0x390 [ 145.677503][ T7240] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 145.677535][ T7240] get_free_pages_noprof+0xc/0x40 [ 145.677558][ T7240] kasan_populate_vmalloc_pte+0x2d/0x160 [ 145.677589][ T7240] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 145.677620][ T7240] __apply_to_page_range+0x5fd/0xd30 [ 145.677650][ T7240] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 145.677687][ T7240] ? __pfx___apply_to_page_range+0x10/0x10 [ 145.677724][ T7240] ? insert_vmap_area+0x2ef/0x4d0 [ 145.677754][ T7240] alloc_vmap_area+0x93e/0x2a60 [ 145.677793][ T7240] ? __pfx_alloc_vmap_area+0x10/0x10 [ 145.677829][ T7240] __get_vm_area_node+0x19e/0x2f0 [ 145.677864][ T7240] __vmalloc_node_range_noprof+0x26a/0x1530 [ 145.677894][ T7240] ? sock_hash_alloc+0x336/0x510 [ 145.677934][ T7240] ? sock_hash_alloc+0x336/0x510 [ 145.677968][ T7240] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 145.678001][ T7240] ? rcu_is_watching+0x12/0xc0 [ 145.678024][ T7240] ? trace_kmalloc+0x2d/0xd0 [ 145.678048][ T7240] ? __kmalloc_node_noprof+0x23d/0x510 [ 145.678085][ T7240] ? sock_hash_alloc+0x336/0x510 [ 145.678112][ T7240] __bpf_map_area_alloc+0xea/0x190 [ 145.678135][ T7240] ? sock_hash_alloc+0x336/0x510 [ 145.678166][ T7240] sock_hash_alloc+0x336/0x510 [ 145.678200][ T7240] map_create+0x5c5/0x1d20 [ 145.678234][ T7240] ? __pfx_lock_release+0x10/0x10 [ 145.678262][ T7240] ? trace_lock_acquire+0x14e/0x1f0 [ 145.678288][ T7240] ? __pfx_map_create+0x10/0x10 [ 145.678318][ T7240] ? lock_acquire+0x2f/0xb0 [ 145.678346][ T7240] ? __might_fault+0xe3/0x190 [ 145.678369][ T7240] ? __might_fault+0xe3/0x190 [ 145.678399][ T7240] __sys_bpf+0x4391/0x49c0 [ 145.678430][ T7240] ? __pfx_lock_release+0x10/0x10 [ 145.678462][ T7240] ? __pfx___sys_bpf+0x10/0x10 [ 145.678493][ T7240] ? vfs_write+0x306/0x1150 [ 145.678528][ T7240] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 145.678577][ T7240] ? fput+0x67/0x440 [ 145.678600][ T7240] ? ksys_write+0x1ba/0x250 [ 145.678628][ T7240] ? __pfx_ksys_write+0x10/0x10 [ 145.678663][ T7240] __x64_sys_bpf+0x78/0xc0 [ 145.678683][ T7240] ? lockdep_hardirqs_on+0x7c/0x110 [ 145.678709][ T7240] do_syscall_64+0xcd/0x250 [ 145.678745][ T7240] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 145.678776][ T7240] RIP: 0033:0x7f5060f8d169 [ 145.678794][ T7240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 145.678815][ T7240] RSP: 002b:00007f5061d4f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 145.678837][ T7240] RAX: ffffffffffffffda RBX: 00007f50611a5fa0 RCX: 00007f5060f8d169 [ 145.678852][ T7240] RDX: 00000000000000a3 RSI: 0000400000000000 RDI: 0000000000000000 [ 145.678866][ T7240] RBP: 00007f5061d4f090 R08: 0000000000000000 R09: 0000000000000000 [ 145.678880][ T7240] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 145.678894][ T7240] R13: 0000000000000000 R14: 00007f50611a5fa0 R15: 00007ffd4c3d2d58 [ 145.678924][ T7240] [ 146.134080][ C0] vkms_vblank_simulate: vblank timer overrun [ 146.998937][ T7256] netlink: 28 bytes leftover after parsing attributes in process `syz.1.365'. [ 147.597002][ T7262] FAULT_INJECTION: forcing a failure. [ 147.597002][ T7262] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 147.656631][ T7262] CPU: 1 UID: 0 PID: 7262 Comm: syz.3.366 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 147.656664][ T7262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 147.656677][ T7262] Call Trace: [ 147.656685][ T7262] [ 147.656694][ T7262] dump_stack_lvl+0x16c/0x1f0 [ 147.656743][ T7262] should_fail_ex+0x50a/0x650 [ 147.656776][ T7262] ? __pfx___might_resched+0x10/0x10 [ 147.656814][ T7262] should_fail_alloc_page+0xe7/0x130 [ 147.656840][ T7262] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 147.656877][ T7262] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 147.656916][ T7262] ? __pfx_mark_lock+0x10/0x10 [ 147.656948][ T7262] ? __pfx___lock_acquire+0x10/0x10 [ 147.656977][ T7262] ? mark_lock+0xb5/0xc60 [ 147.657004][ T7262] ? find_held_lock+0x2d/0x110 [ 147.657029][ T7262] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 147.657094][ T7262] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 147.657130][ T7262] ? policy_nodemask+0xea/0x4e0 [ 147.657168][ T7262] alloc_pages_mpol+0x1fc/0x540 [ 147.657192][ T7262] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 147.657214][ T7262] ? find_held_lock+0x2d/0x110 [ 147.657245][ T7262] folio_alloc_mpol_noprof+0x36/0x2f0 [ 147.657273][ T7262] shmem_alloc_folio+0x135/0x160 [ 147.657310][ T7262] shmem_alloc_and_add_folio+0x48e/0xc10 [ 147.657342][ T7262] ? shmem_huge_global_enabled+0x72/0x6b0 [ 147.657366][ T7262] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 147.657396][ T7262] ? shmem_allowable_huge_orders+0xd0/0x410 [ 147.657430][ T7262] shmem_get_folio_gfp+0x689/0x1530 [ 147.657464][ T7262] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 147.657491][ T7262] ? filemap_map_pages+0xf92/0x16b0 [ 147.657523][ T7262] shmem_fault+0x200/0xae0 [ 147.657551][ T7262] ? __pfx_shmem_fault+0x10/0x10 [ 147.657584][ T7262] ? do_pte_missing+0xde9/0x3e10 [ 147.657620][ T7262] ? __pfx_lock_release+0x10/0x10 [ 147.657657][ T7262] __do_fault+0x10a/0x490 [ 147.657684][ T7262] do_pte_missing+0xecf/0x3e10 [ 147.657723][ T7262] ? do_raw_spin_unlock+0x172/0x230 [ 147.657747][ T7262] ? __pmd_alloc+0x3c2/0x870 [ 147.657779][ T7262] __handle_mm_fault+0x1166/0x2c60 [ 147.657821][ T7262] ? __pfx___handle_mm_fault+0x10/0x10 [ 147.657852][ T7262] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 147.657896][ T7262] ? find_vma+0xc0/0x140 [ 147.657917][ T7262] ? __pfx_find_vma+0x10/0x10 [ 147.657946][ T7262] handle_mm_fault+0x3fa/0xaa0 [ 147.657983][ T7262] do_user_addr_fault+0x7a3/0x13f0 [ 147.658022][ T7262] exc_page_fault+0x5c/0xc0 [ 147.658050][ T7262] asm_exc_page_fault+0x26/0x30 [ 147.658079][ T7262] RIP: 0010:rep_movs_alternative+0x13/0x70 [ 147.658103][ T7262] Code: cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 83 f9 40 73 40 83 f9 08 73 21 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f [ 147.658123][ T7262] RSP: 0018:ffffc90003b1f9d8 EFLAGS: 00050202 [ 147.658142][ T7262] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000002 [ 147.658155][ T7262] RDX: fffff52000763f4c RSI: 0000000000000000 RDI: ffffc90003b1fa58 [ 147.658170][ T7262] RBP: 0000000000000002 R08: 0000000000000001 R09: fffff52000763f4b [ 147.658184][ T7262] R10: ffffc90003b1fa59 R11: 0000000000000000 R12: 0000000000000000 [ 147.658198][ T7262] R13: ffffc90003b1fa58 R14: 1ffff92000763f45 R15: ffffc90003b1fd80 [ 147.658232][ T7262] _copy_from_user+0x98/0xd0 [ 147.658258][ T7262] ____sys_sendmsg+0x590/0xc90 [ 147.658286][ T7262] ? __pfx_____sys_sendmsg+0x10/0x10 [ 147.658309][ T7262] ? __lock_acquire+0xcc5/0x3c40 [ 147.658355][ T7262] ___sys_sendmsg+0x135/0x1e0 [ 147.658390][ T7262] ? __pfx____sys_sendmsg+0x10/0x10 [ 147.658436][ T7262] ? trace_lock_acquire+0x14e/0x1f0 [ 147.658484][ T7262] __sys_sendmmsg+0x201/0x420 [ 147.658520][ T7262] ? __pfx___sys_sendmmsg+0x10/0x10 [ 147.658564][ T7262] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 147.658607][ T7262] ? fput+0x67/0x440 [ 147.658628][ T7262] ? ksys_write+0x1ba/0x250 [ 147.658657][ T7262] ? __pfx_ksys_write+0x10/0x10 [ 147.658693][ T7262] __x64_sys_sendmmsg+0x9c/0x100 [ 147.658730][ T7262] ? lockdep_hardirqs_on+0x7c/0x110 [ 147.658758][ T7262] do_syscall_64+0xcd/0x250 [ 147.658789][ T7262] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 147.658818][ T7262] RIP: 0033:0x7fc937b8d169 [ 147.658837][ T7262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 147.658857][ T7262] RSP: 002b:00007fc938a0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 147.658877][ T7262] RAX: ffffffffffffffda RBX: 00007fc937da5fa0 RCX: 00007fc937b8d169 [ 147.658892][ T7262] RDX: 0000000000000005 RSI: 0000400000000140 RDI: 0000000000000004 [ 147.658906][ T7262] RBP: 00007fc938a0e090 R08: 0000000000000000 R09: 0000000000000000 [ 147.658919][ T7262] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000001 [ 147.658933][ T7262] R13: 0000000000000000 R14: 00007fc937da5fa0 R15: 00007ffebaa06608 [ 147.658962][ T7262] [ 149.369214][ T7291] netlink: 8 bytes leftover after parsing attributes in process `syz.3.377'. [ 152.274589][ T7296] kexec: Could not allocate control_code_buffer [ 154.574749][ T7404] netlink: 4 bytes leftover after parsing attributes in process `syz.0.405'. [ 154.763926][ T7348] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 154.800896][ T7406] netlink: 338 bytes leftover after parsing attributes in process `syz.0.406'. [ 154.800961][ T7348] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 154.801161][ T7348] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 154.813827][ T7406] netlink: 334 bytes leftover after parsing attributes in process `syz.0.406'. [ 154.850689][ T7406] netlink: 338 bytes leftover after parsing attributes in process `syz.0.406'. [ 154.864047][ T7406] netlink: 290 bytes leftover after parsing attributes in process `syz.0.406'. [ 154.888159][ T7406] veth0_macvtap: left promiscuous mode [ 154.906853][ T7348] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 155.366572][ T54] Bluetooth: hci1: command 0x0c1a tx timeout [ 155.455733][ T7417] netlink: 350 bytes leftover after parsing attributes in process `syz.3.411'. [ 155.469742][ T7425] [U] [ 155.472489][ T7425] [U] [ 155.475213][ T7425] [U] [ 155.477941][ T7425] [U] [ 155.482159][ T7425] [U] [ 155.484894][ T7425] [U] [ 155.487620][ T7425] [U] [ 155.490340][ T7425] [U] [ 155.542623][ T7425] [U] [ 155.545385][ T7425] [U] [ 155.548112][ T7425] [U] [ 155.550843][ T7425] [U] [ 155.590543][ T7425] [U] [ 155.593301][ T7425] [U] [ 155.596031][ T7425] [U] [ 155.598758][ T7425] [U] [ 155.619415][ T7425] [U] [ 155.622168][ T7425] [U] [ 155.624888][ T7425] [U] [ 155.627609][ T7425] [U] [ 155.653173][ T7425] [U] [ 155.655970][ T7425] [U] [ 155.658699][ T7425] [U] [ 155.661425][ T7425] [U] [ 155.676379][ T7425] [U] [ 155.679126][ T7425] [U] [ 155.681842][ T7425] [U] [ 155.684567][ T7425] [U] [ 155.707253][ T7430] netlink: 93 bytes leftover after parsing attributes in process `syz.2.413'. [ 155.716508][ T7425] [U] [ 155.719234][ T7425] [U] [ 155.721951][ T7425] [U] [ 155.724668][ T7425] [U] [ 155.754575][ T7425] [U] [ 155.757331][ T7425] [U] [ 155.760058][ T7425] [U] [ 155.762784][ T7425] [U] [ 155.801064][ T7425] [U] [ 155.803832][ T7425] [U] [ 155.806553][ T7425] [U] [ 155.809282][ T7425] [U] [ 155.847670][ T7425] [U] [ 155.850438][ T7425] [U] [ 155.853165][ T7425] [U] [ 155.855895][ T7425] [U] [ 155.892992][ T7425] [U] [ 155.895751][ T7425] [U] [ 155.898484][ T7425] [U] [ 155.901207][ T7425] [U] [ 155.946375][ T7425] [U] [ 155.949135][ T7425] [U] [ 155.951860][ T7425] [U] [ 155.954572][ T7425] [U] [ 156.004046][ T7425] [U] [ 156.006798][ T7425] [U] [ 156.009522][ T7425] [U] [ 156.012244][ T7425] [U] [ 156.056928][ T7425] [U] [ 156.059688][ T7425] [U] [ 156.062417][ T7425] [U] [ 156.065128][ T7425] [U] [ 156.115814][ T7425] [U] [ 156.118575][ T7425] [U] [ 156.121287][ T7425] [U] [ 156.124002][ T7425] [U] [ 156.211761][ T7425] [U] [ 156.214516][ T7425] [U] [ 156.217231][ T7425] [U] [ 156.219949][ T7425] [U] [ 156.286904][ T7425] [U] [ 156.289649][ T7425] [U] [ 156.292344][ T7425] [U] [ 156.295036][ T7425] [U] [ 156.326592][ T7425] [U] [ 156.329348][ T7425] [U] [ 156.332071][ T7425] [U] [ 156.334786][ T7425] [U] [ 156.386509][ T7425] [U] [ 156.430695][ T7441] FAULT_INJECTION: forcing a failure. [ 156.430695][ T7441] name failslab, interval 1, probability 0, space 0, times 0 [ 156.506571][ T7441] CPU: 0 UID: 0 PID: 7441 Comm: syz.0.417 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 156.506605][ T7441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 156.506620][ T7441] Call Trace: [ 156.506627][ T7441] [ 156.506636][ T7441] dump_stack_lvl+0x16c/0x1f0 [ 156.506675][ T7441] should_fail_ex+0x50a/0x650 [ 156.506712][ T7441] ? fs_reclaim_acquire+0xae/0x150 [ 156.506747][ T7441] should_failslab+0xc2/0x120 [ 156.506780][ T7441] kmem_cache_alloc_lru_noprof+0x73/0x3d0 [ 156.506818][ T7441] ? sock_alloc_inode+0x25/0x1c0 [ 156.506846][ T7441] ? __pfx_sock_alloc_inode+0x10/0x10 [ 156.506870][ T7441] sock_alloc_inode+0x25/0x1c0 [ 156.506893][ T7441] alloc_inode+0x5d/0x230 [ 156.506916][ T7441] sock_alloc+0x40/0x280 [ 156.506939][ T7441] __sock_create+0xc1/0x8d0 [ 156.506971][ T7441] __sys_socketpair+0x1d9/0x5a0 [ 156.507002][ T7441] ? __pfx___sys_socketpair+0x10/0x10 [ 156.507028][ T7441] ? __do_sys_close_range+0x25c/0x700 [ 156.507063][ T7441] ? __pfx___x64_sys_futex+0x10/0x10 [ 156.507094][ T7441] ? __pfx___do_sys_close_range+0x10/0x10 [ 156.507136][ T7441] __x64_sys_socketpair+0x96/0x100 [ 156.507165][ T7441] ? lockdep_hardirqs_on+0x7c/0x110 [ 156.507194][ T7441] do_syscall_64+0xcd/0x250 [ 156.507227][ T7441] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 156.507260][ T7441] RIP: 0033:0x7f7462d8d169 [ 156.507279][ T7441] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 156.507301][ T7441] RSP: 002b:00007f7463b60038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 [ 156.507326][ T7441] RAX: ffffffffffffffda RBX: 00007f7462fa5fa0 RCX: 00007f7462d8d169 [ 156.507342][ T7441] RDX: 8000000000000000 RSI: 0000000000000001 RDI: 0000000000000001 [ 156.507358][ T7441] RBP: 00007f7462e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 156.507373][ T7441] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 156.507388][ T7441] R13: 0000000000000000 R14: 00007f7462fa5fa0 R15: 00007fffc3cdb4c8 [ 156.507420][ T7441] [ 156.507432][ T7441] socket: no more sockets [ 156.816490][ T54] Bluetooth: hci2: command 0x0c1a tx timeout [ 156.823371][ T54] Bluetooth: hci0: command 0x0c1a tx timeout [ 156.913408][ T7446] nfs: Unknown parameter 'w`_I+; HY Lu>>uh*C<+ ' [ 156.966498][ T54] Bluetooth: hci3: command 0x0c1a tx timeout [ 157.259906][ T7454] FAULT_INJECTION: forcing a failure. [ 157.259906][ T7454] name failslab, interval 1, probability 0, space 0, times 0 [ 157.286550][ T7454] CPU: 1 UID: 0 PID: 7454 Comm: syz.3.420 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 157.286579][ T7454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 157.286590][ T7454] Call Trace: [ 157.286597][ T7454] [ 157.286605][ T7454] dump_stack_lvl+0x16c/0x1f0 [ 157.286638][ T7454] should_fail_ex+0x50a/0x650 [ 157.286677][ T7454] should_failslab+0xc2/0x120 [ 157.286707][ T7454] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 157.286739][ T7454] ? skb_clone+0x190/0x3f0 [ 157.286776][ T7454] skb_clone+0x190/0x3f0 [ 157.286809][ T7454] netlink_deliver_tap+0xabd/0xd30 [ 157.286846][ T7454] netlink_unicast+0x5e1/0x7f0 [ 157.286880][ T7454] ? __pfx_netlink_unicast+0x10/0x10 [ 157.286912][ T7454] ? __phys_addr_symbol+0x30/0x80 [ 157.286934][ T7454] ? __check_object_size+0x488/0x710 [ 157.286961][ T7454] netlink_sendmsg+0x8b8/0xd70 [ 157.286997][ T7454] ? __pfx_netlink_sendmsg+0x10/0x10 [ 157.287040][ T7454] ____sys_sendmsg+0xaaf/0xc90 [ 157.287065][ T7454] ? copy_msghdr_from_user+0x10b/0x160 [ 157.287098][ T7454] ? __pfx_____sys_sendmsg+0x10/0x10 [ 157.287140][ T7454] ___sys_sendmsg+0x135/0x1e0 [ 157.287173][ T7454] ? __pfx____sys_sendmsg+0x10/0x10 [ 157.287219][ T7454] ? __pfx_lock_release+0x10/0x10 [ 157.287248][ T7454] ? trace_lock_acquire+0x14e/0x1f0 [ 157.287285][ T7454] ? __fget_files+0x206/0x3a0 [ 157.287326][ T7454] __sys_sendmsg+0x16e/0x220 [ 157.287358][ T7454] ? __pfx___sys_sendmsg+0x10/0x10 [ 157.287412][ T7454] do_syscall_64+0xcd/0x250 [ 157.287444][ T7454] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 157.287474][ T7454] RIP: 0033:0x7fc937b8d169 [ 157.287492][ T7454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 157.287513][ T7454] RSP: 002b:00007fc938a0e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 157.287534][ T7454] RAX: ffffffffffffffda RBX: 00007fc937da5fa0 RCX: 00007fc937b8d169 [ 157.287549][ T7454] RDX: 0000000010004010 RSI: 0000400000000100 RDI: 0000000000000003 [ 157.287564][ T7454] RBP: 00007fc938a0e090 R08: 0000000000000000 R09: 0000000000000000 [ 157.287578][ T7454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 157.287592][ T7454] R13: 0000000000000000 R14: 00007fc937da5fa0 R15: 00007ffebaa06608 [ 157.287623][ T7454] [ 157.287640][ T7454] netlink: 93 bytes leftover after parsing attributes in process `syz.3.420'. [ 157.336543][ T7455] Device name cannot be null; rc = [-22] [ 157.570804][ T7457] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 157.640794][ T7457] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 157.707281][ T7453] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 157.729905][ T7453] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 157.736019][ T7453] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 157.767325][ T7453] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 158.092477][ T7457] syz.0.421 (7457) used greatest stack depth: 20736 bytes left [ 158.945948][ T7490] netlink: 93 bytes leftover after parsing attributes in process `syz.0.431'. [ 159.483772][ T7498] [U]  [ 159.486635][ T7498] [U] [ 159.489358][ T7498] [U] [ 159.492079][ T7498] [U] [ 159.511690][ T7498] [U] [ 159.514439][ T7498] [U] [ 159.517164][ T7498] [U] [ 159.519886][ T7498] [U] [ 159.591646][ T7503] [U] [ 159.617400][ T7499] netlink: 4 bytes leftover after parsing attributes in process `syz.3.433'. [ 159.626380][ T7497] netlink: 4 bytes leftover after parsing attributes in process `syz.3.433'. [ 159.766562][ T54] Bluetooth: hci2: command 0x0c1a tx timeout [ 159.772633][ T54] Bluetooth: hci0: command 0x0c1a tx timeout [ 159.773438][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout [ 159.846511][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout [ 160.021099][ T7517] FAULT_INJECTION: forcing a failure. [ 160.021099][ T7517] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 160.056179][ T7519] netlink: 306 bytes leftover after parsing attributes in process `syz.0.441'. [ 160.117272][ T7517] CPU: 0 UID: 0 PID: 7517 Comm: syz.2.440 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 160.117305][ T7517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 160.117318][ T7517] Call Trace: [ 160.117324][ T7517] [ 160.117333][ T7517] dump_stack_lvl+0x16c/0x1f0 [ 160.117368][ T7517] should_fail_ex+0x50a/0x650 [ 160.117406][ T7517] _copy_from_iter+0x465/0x1560 [ 160.117438][ T7517] ? __pfx__copy_from_iter+0x10/0x10 [ 160.117459][ T7517] ? __virt_addr_valid+0x1a4/0x590 [ 160.117486][ T7517] ? __virt_addr_valid+0x5e/0x590 [ 160.117515][ T7517] ? __phys_addr_symbol+0x30/0x80 [ 160.117537][ T7517] ? __check_object_size+0x488/0x710 [ 160.117565][ T7517] netlink_sendmsg+0x813/0xd70 [ 160.117601][ T7517] ? __pfx_netlink_sendmsg+0x10/0x10 [ 160.117630][ T7517] ? __might_fault+0xe3/0x190 [ 160.117664][ T7517] ____sys_sendmsg+0xaaf/0xc90 [ 160.117692][ T7517] ? __pfx_____sys_sendmsg+0x10/0x10 [ 160.117715][ T7517] ? __lock_acquire+0xcc5/0x3c40 [ 160.117760][ T7517] ___sys_sendmsg+0x135/0x1e0 [ 160.117794][ T7517] ? __pfx____sys_sendmsg+0x10/0x10 [ 160.117840][ T7517] ? trace_lock_acquire+0x14e/0x1f0 [ 160.117888][ T7517] __sys_sendmmsg+0x201/0x420 [ 160.117923][ T7517] ? __pfx___sys_sendmmsg+0x10/0x10 [ 160.117965][ T7517] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 160.118006][ T7517] ? fput+0x67/0x440 [ 160.118028][ T7517] ? ksys_write+0x1ba/0x250 [ 160.118057][ T7517] ? __pfx_ksys_write+0x10/0x10 [ 160.118091][ T7517] __x64_sys_sendmmsg+0x9c/0x100 [ 160.118122][ T7517] ? lockdep_hardirqs_on+0x7c/0x110 [ 160.118149][ T7517] do_syscall_64+0xcd/0x250 [ 160.118179][ T7517] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 160.118210][ T7517] RIP: 0033:0x7fdfa6b8d169 [ 160.118228][ T7517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 160.118249][ T7517] RSP: 002b:00007fdfa7978038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 160.118270][ T7517] RAX: ffffffffffffffda RBX: 00007fdfa6da5fa0 RCX: 00007fdfa6b8d169 [ 160.118286][ T7517] RDX: 0000000000000007 RSI: 0000400000000200 RDI: 0000000000000003 [ 160.118300][ T7517] RBP: 00007fdfa7978090 R08: 0000000000000000 R09: 0000000000000000 [ 160.118314][ T7517] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001 [ 160.118327][ T7517] R13: 0000000000000000 R14: 00007fdfa6da5fa0 R15: 00007ffe0fdba6e8 [ 160.118357][ T7517] [ 163.325888][ T29] audit: type=1800 audit(6036043969.770:9): pid=7580 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.457" name="lu_gp_id" dev="configfs" ino=14905 res=0 errno=0 [ 164.061768][ T7587] netlink: 8 bytes leftover after parsing attributes in process `syz.3.459'. [ 164.721081][ T7604] FAULT_INJECTION: forcing a failure. [ 164.721081][ T7604] name failslab, interval 1, probability 0, space 0, times 0 [ 164.806582][ T7604] CPU: 1 UID: 0 PID: 7604 Comm: syz.2.467 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 164.806613][ T7604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 164.806625][ T7604] Call Trace: [ 164.806631][ T7604] [ 164.806640][ T7604] dump_stack_lvl+0x16c/0x1f0 [ 164.806676][ T7604] should_fail_ex+0x50a/0x650 [ 164.806713][ T7604] should_failslab+0xc2/0x120 [ 164.806735][ T7604] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 164.806764][ T7604] ? skb_clone+0x190/0x3f0 [ 164.806801][ T7604] skb_clone+0x190/0x3f0 [ 164.806829][ T7604] netlink_deliver_tap+0xabd/0xd30 [ 164.806866][ T7604] netlink_unicast+0x6b4/0x7f0 [ 164.806896][ T7604] ? __pfx_netlink_unicast+0x10/0x10 [ 164.806922][ T7604] ? genl_rcv_msg+0x4bd/0x800 [ 164.806961][ T7604] netlink_ack+0x6ac/0xb80 [ 164.807006][ T7604] netlink_rcv_skb+0x348/0x440 [ 164.807039][ T7604] ? __pfx_genl_rcv_msg+0x10/0x10 [ 164.807140][ T7604] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 164.807179][ T7604] ? down_read+0xc9/0x330 [ 164.807209][ T7604] ? __pfx_down_read+0x10/0x10 [ 164.807240][ T7604] ? netlink_deliver_tap+0x1ae/0xd30 [ 164.807274][ T7604] genl_rcv+0x28/0x40 [ 164.807302][ T7604] netlink_unicast+0x53c/0x7f0 [ 164.807382][ T7604] ? __pfx_netlink_unicast+0x10/0x10 [ 164.807412][ T7604] ? __phys_addr_symbol+0x30/0x80 [ 164.807435][ T7604] ? __check_object_size+0x488/0x710 [ 164.807460][ T7604] netlink_sendmsg+0x8b8/0xd70 [ 164.807499][ T7604] ? __pfx_netlink_sendmsg+0x10/0x10 [ 164.807541][ T7604] ____sys_sendmsg+0xaaf/0xc90 [ 164.807565][ T7604] ? copy_msghdr_from_user+0x10b/0x160 [ 164.807594][ T7604] ? __pfx_____sys_sendmsg+0x10/0x10 [ 164.807633][ T7604] ___sys_sendmsg+0x135/0x1e0 [ 164.807665][ T7604] ? __pfx____sys_sendmsg+0x10/0x10 [ 164.807710][ T7604] ? __pfx_lock_release+0x10/0x10 [ 164.807739][ T7604] ? trace_lock_acquire+0x14e/0x1f0 [ 164.807775][ T7604] ? __fget_files+0x206/0x3a0 [ 164.807816][ T7604] __sys_sendmsg+0x16e/0x220 [ 164.807848][ T7604] ? __pfx___sys_sendmsg+0x10/0x10 [ 164.807902][ T7604] do_syscall_64+0xcd/0x250 [ 164.807931][ T7604] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 164.807959][ T7604] RIP: 0033:0x7fdfa6b8d169 [ 164.807977][ T7604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 164.807997][ T7604] RSP: 002b:00007fdfa7978038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 164.808016][ T7604] RAX: ffffffffffffffda RBX: 00007fdfa6da5fa0 RCX: 00007fdfa6b8d169 [ 164.808029][ T7604] RDX: 00000000000480b0 RSI: 0000400000000240 RDI: 0000000000000003 [ 164.808042][ T7604] RBP: 00007fdfa7978090 R08: 0000000000000000 R09: 0000000000000000 [ 164.808085][ T7604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 164.808098][ T7604] R13: 0000000000000000 R14: 00007fdfa6da5fa0 R15: 00007ffe0fdba6e8 [ 164.808129][ T7604] [ 165.164539][ T7607] FAULT_INJECTION: forcing a failure. [ 165.164539][ T7607] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 165.252734][ T7607] CPU: 0 UID: 0 PID: 7607 Comm: syz.1.468 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 165.252765][ T7607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 165.252777][ T7607] Call Trace: [ 165.252784][ T7607] [ 165.252793][ T7607] dump_stack_lvl+0x16c/0x1f0 [ 165.252827][ T7607] should_fail_ex+0x50a/0x650 [ 165.252867][ T7607] _copy_to_user+0x32/0xd0 [ 165.252895][ T7607] simple_read_from_buffer+0xd0/0x160 [ 165.252928][ T7607] proc_fail_nth_read+0x198/0x270 [ 165.252957][ T7607] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 165.252987][ T7607] ? rw_verify_area+0xcf/0x680 [ 165.253014][ T7607] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 165.253041][ T7607] vfs_read+0x1df/0xbf0 [ 165.253071][ T7607] ? __fget_files+0x1fc/0x3a0 [ 165.253102][ T7607] ? __pfx___mutex_lock+0x10/0x10 [ 165.253130][ T7607] ? __pfx_vfs_read+0x10/0x10 [ 165.253169][ T7607] ? __fget_files+0x206/0x3a0 [ 165.253209][ T7607] ksys_read+0x12b/0x250 [ 165.253238][ T7607] ? __pfx_ksys_read+0x10/0x10 [ 165.253277][ T7607] do_syscall_64+0xcd/0x250 [ 165.253309][ T7607] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.253340][ T7607] RIP: 0033:0x7f5060f8bb7c [ 165.253364][ T7607] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 165.253385][ T7607] RSP: 002b:00007f5061d4f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 165.253406][ T7607] RAX: ffffffffffffffda RBX: 00007f50611a5fa0 RCX: 00007f5060f8bb7c [ 165.253421][ T7607] RDX: 000000000000000f RSI: 00007f5061d4f0a0 RDI: 0000000000000004 [ 165.253435][ T7607] RBP: 00007f5061d4f090 R08: 0000000000000000 R09: 0000000000000000 [ 165.253449][ T7607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 165.253462][ T7607] R13: 0000000000000000 R14: 00007f50611a5fa0 R15: 00007ffd4c3d2d58 [ 165.253493][ T7607] [ 166.075268][ T7616] Invalid ELF header magic: != ELF [ 166.429310][ T7626] FAULT_INJECTION: forcing a failure. [ 166.429310][ T7626] name failslab, interval 1, probability 0, space 0, times 0 [ 166.495662][ T7626] CPU: 1 UID: 0 PID: 7626 Comm: syz.2.473 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 166.495694][ T7626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 166.495706][ T7626] Call Trace: [ 166.495713][ T7626] [ 166.495722][ T7626] dump_stack_lvl+0x16c/0x1f0 [ 166.495758][ T7626] should_fail_ex+0x50a/0x650 [ 166.495790][ T7626] ? fs_reclaim_acquire+0xae/0x150 [ 166.495822][ T7626] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 166.495857][ T7626] should_failslab+0xc2/0x120 [ 166.495879][ T7626] __kmalloc_noprof+0xcb/0x510 [ 166.495909][ T7626] ? kasan_quarantine_put+0x10a/0x240 [ 166.495948][ T7626] ? lockdep_hardirqs_on+0x7c/0x110 [ 166.495981][ T7626] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 166.496024][ T7626] genl_family_rcv_msg_doit+0xbf/0x2f0 [ 166.496060][ T7626] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 166.496093][ T7626] ? trace_cap_capable+0x1a2/0x210 [ 166.496127][ T7626] ? bpf_lsm_capable+0x9/0x10 [ 166.496149][ T7626] ? security_capable+0x7e/0x260 [ 166.496179][ T7626] genl_rcv_msg+0x565/0x800 [ 166.496214][ T7626] ? __pfx_genl_rcv_msg+0x10/0x10 [ 166.496247][ T7626] ? __pfx_devlink_nl_pre_doit_port+0x10/0x10 [ 166.496278][ T7626] ? __pfx_devlink_nl_port_set_doit+0x10/0x10 [ 166.496303][ T7626] ? __pfx_devlink_nl_post_doit+0x10/0x10 [ 166.496347][ T7626] netlink_rcv_skb+0x16b/0x440 [ 166.496376][ T7626] ? __pfx_genl_rcv_msg+0x10/0x10 [ 166.496413][ T7626] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 166.496453][ T7626] ? down_read+0xc9/0x330 [ 166.496481][ T7626] ? __pfx_down_read+0x10/0x10 [ 166.496510][ T7626] ? netlink_deliver_tap+0x1ae/0xd30 [ 166.496544][ T7626] genl_rcv+0x28/0x40 [ 166.496572][ T7626] netlink_unicast+0x53c/0x7f0 [ 166.496605][ T7626] ? __pfx_netlink_unicast+0x10/0x10 [ 166.496636][ T7626] ? __phys_addr_symbol+0x30/0x80 [ 166.496659][ T7626] ? __check_object_size+0x488/0x710 [ 166.496685][ T7626] netlink_sendmsg+0x8b8/0xd70 [ 166.496720][ T7626] ? __pfx_netlink_sendmsg+0x10/0x10 [ 166.496763][ T7626] ____sys_sendmsg+0xaaf/0xc90 [ 166.496788][ T7626] ? copy_msghdr_from_user+0x10b/0x160 [ 166.496820][ T7626] ? __pfx_____sys_sendmsg+0x10/0x10 [ 166.496860][ T7626] ___sys_sendmsg+0x135/0x1e0 [ 166.496894][ T7626] ? __pfx____sys_sendmsg+0x10/0x10 [ 166.496945][ T7626] ? __pfx_lock_release+0x10/0x10 [ 166.496975][ T7626] ? trace_lock_acquire+0x14e/0x1f0 [ 166.497012][ T7626] ? __fget_files+0x206/0x3a0 [ 166.497052][ T7626] __sys_sendmsg+0x16e/0x220 [ 166.497084][ T7626] ? __pfx___sys_sendmsg+0x10/0x10 [ 166.497138][ T7626] do_syscall_64+0xcd/0x250 [ 166.497169][ T7626] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 166.497197][ T7626] RIP: 0033:0x7fdfa6b8d169 [ 166.497215][ T7626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 166.497235][ T7626] RSP: 002b:00007fdfa7978038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 166.497256][ T7626] RAX: ffffffffffffffda RBX: 00007fdfa6da5fa0 RCX: 00007fdfa6b8d169 [ 166.497271][ T7626] RDX: 000000000400c8d4 RSI: 0000400000000280 RDI: 0000000000000003 [ 166.497285][ T7626] RBP: 00007fdfa7978090 R08: 0000000000000000 R09: 0000000000000000 [ 166.497298][ T7626] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 166.497311][ T7626] R13: 0000000000000000 R14: 00007fdfa6da5fa0 R15: 00007ffe0fdba6e8 [ 166.497343][ T7626] [ 167.200444][ T7636] netlink: 'syz.3.476': attribute type 10 has an invalid length. [ 167.380952][ T7639] FAULT_INJECTION: forcing a failure. [ 167.380952][ T7639] name failslab, interval 1, probability 0, space 0, times 0 [ 167.414841][ T7639] CPU: 0 UID: 0 PID: 7639 Comm: syz.3.479 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 167.414873][ T7639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 167.414885][ T7639] Call Trace: [ 167.414892][ T7639] [ 167.414901][ T7639] dump_stack_lvl+0x16c/0x1f0 [ 167.414935][ T7639] should_fail_ex+0x50a/0x650 [ 167.414969][ T7639] ? fs_reclaim_acquire+0xae/0x150 [ 167.415000][ T7639] ? copy_splice_read+0x1a8/0xb80 [ 167.415027][ T7639] should_failslab+0xc2/0x120 [ 167.415049][ T7639] __kmalloc_noprof+0xcb/0x510 [ 167.415089][ T7639] copy_splice_read+0x1a8/0xb80 [ 167.415131][ T7639] ? __pfx_copy_splice_read+0x10/0x10 [ 167.415158][ T7639] ? find_held_lock+0x2d/0x110 [ 167.415187][ T7639] ? splice_direct_to_actor+0x346/0xa40 [ 167.415228][ T7639] ? __pfx_copy_splice_read+0x10/0x10 [ 167.415256][ T7639] do_splice_read+0x282/0x370 [ 167.415288][ T7639] splice_direct_to_actor+0x2a4/0xa40 [ 167.415319][ T7639] ? __pfx_direct_splice_actor+0x10/0x10 [ 167.415354][ T7639] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 167.415387][ T7639] ? __fget_files+0x1fc/0x3a0 [ 167.415422][ T7639] do_splice_direct+0x178/0x250 [ 167.415452][ T7639] ? __pfx_do_splice_direct+0x10/0x10 [ 167.415481][ T7639] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 167.415514][ T7639] ? rw_verify_area+0xcf/0x680 [ 167.415542][ T7639] do_sendfile+0xafb/0xe40 [ 167.415576][ T7639] ? __pfx_do_sendfile+0x10/0x10 [ 167.415605][ T7639] ? __fget_files+0x206/0x3a0 [ 167.415643][ T7639] __x64_sys_sendfile64+0x1da/0x220 [ 167.415663][ T7639] ? ksys_write+0x1ba/0x250 [ 167.415691][ T7639] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 167.415723][ T7639] do_syscall_64+0xcd/0x250 [ 167.415754][ T7639] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 167.415783][ T7639] RIP: 0033:0x7fc937b8d169 [ 167.415802][ T7639] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 167.415822][ T7639] RSP: 002b:00007fc938a0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 167.415844][ T7639] RAX: ffffffffffffffda RBX: 00007fc937da5fa0 RCX: 00007fc937b8d169 [ 167.415859][ T7639] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003 [ 167.415872][ T7639] RBP: 00007fc938a0e090 R08: 0000000000000000 R09: 0000000000000000 [ 167.415885][ T7639] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 167.415898][ T7639] R13: 0000000000000000 R14: 00007fc937da5fa0 R15: 00007ffebaa06608 [ 167.415928][ T7639] [ 168.926700][ T7659] netlink: 330 bytes leftover after parsing attributes in process `syz.2.484'. [ 168.930443][ T7658] netlink: 330 bytes leftover after parsing attributes in process `syz.2.484'. [ 170.818735][ T7690] FAULT_INJECTION: forcing a failure. [ 170.818735][ T7690] name failslab, interval 1, probability 0, space 0, times 0 [ 170.868396][ T7688] sp0: Synchronizing with TNC [ 170.886330][ T7690] CPU: 1 UID: 0 PID: 7690 Comm: syz.0.492 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 170.886360][ T7690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 170.886372][ T7690] Call Trace: [ 170.886379][ T7690] [ 170.886392][ T7690] dump_stack_lvl+0x16c/0x1f0 [ 170.886426][ T7690] should_fail_ex+0x50a/0x650 [ 170.886458][ T7690] ? fs_reclaim_acquire+0xae/0x150 [ 170.886488][ T7690] should_failslab+0xc2/0x120 [ 170.886509][ T7690] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 170.886543][ T7690] ? __pmd_alloc+0xc3/0x870 [ 170.886576][ T7690] __pmd_alloc+0xc3/0x870 [ 170.886606][ T7690] __handle_mm_fault+0x9fb/0x2c60 [ 170.886646][ T7690] ? __pfx___handle_mm_fault+0x10/0x10 [ 170.886675][ T7690] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 170.886727][ T7690] ? find_vma+0xc0/0x140 [ 170.886753][ T7690] ? __pfx_find_vma+0x10/0x10 [ 170.886784][ T7690] handle_mm_fault+0x3fa/0xaa0 [ 170.886829][ T7690] do_user_addr_fault+0x7a3/0x13f0 [ 170.886868][ T7690] exc_page_fault+0x5c/0xc0 [ 170.886895][ T7690] asm_exc_page_fault+0x26/0x30 [ 170.886923][ T7690] RIP: 0010:rep_movs_alternative+0x33/0x70 [ 170.886948][ T7690] Code: 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb [ 170.886967][ T7690] RSP: 0018:ffffc90003b1faf8 EFLAGS: 00050246 [ 170.886986][ T7690] RAX: 0a64656c62616e65 RBX: 0000000000000008 RCX: 0000000000000008 [ 170.887001][ T7690] RDX: ffffed1004a51c01 RSI: ffff88802528e000 RDI: 0000000000000000 [ 170.887016][ T7690] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffed1004a51c00 [ 170.887030][ T7690] R10: ffff88802528e007 R11: 0000000000000002 R12: ffffc90003b1fda0 [ 170.887044][ T7690] R13: 0000000000000008 R14: ffff88802528e000 R15: 00007ffffffff000 [ 170.887079][ T7690] _copy_to_iter+0x385/0x1560 [ 170.887106][ T7690] ? trace_lock_acquire+0x14e/0x1f0 [ 170.887133][ T7690] ? __pfx_lock_release+0x10/0x10 [ 170.887166][ T7690] ? __pfx__copy_to_iter+0x10/0x10 [ 170.887188][ T7690] ? __virt_addr_valid+0x1a4/0x590 [ 170.887218][ T7690] ? __virt_addr_valid+0x5e/0x590 [ 170.887241][ T7690] ? __phys_addr_symbol+0x30/0x80 [ 170.887263][ T7690] ? __check_object_size+0x488/0x710 [ 170.887291][ T7690] seq_read_iter+0xd00/0x12b0 [ 170.887336][ T7690] kernfs_fop_read_iter+0x414/0x580 [ 170.887359][ T7690] ? rw_verify_area+0xcf/0x680 [ 170.887389][ T7690] vfs_read+0x886/0xbf0 [ 170.887424][ T7690] ? __pfx_vfs_read+0x10/0x10 [ 170.887477][ T7690] ksys_read+0x12b/0x250 [ 170.887506][ T7690] ? __pfx_ksys_read+0x10/0x10 [ 170.887546][ T7690] do_syscall_64+0xcd/0x250 [ 170.887577][ T7690] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 170.887607][ T7690] RIP: 0033:0x7f7462d8d169 [ 170.887625][ T7690] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 170.887646][ T7690] RSP: 002b:00007f7463b60038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 170.887667][ T7690] RAX: ffffffffffffffda RBX: 00007f7462fa5fa0 RCX: 00007f7462d8d169 [ 170.887682][ T7690] RDX: 0000000000000020 RSI: 0000000000000000 RDI: 0000000000000003 [ 170.887695][ T7690] RBP: 00007f7463b60090 R08: 0000000000000000 R09: 0000000000000000 [ 170.887709][ T7690] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 170.887722][ T7690] R13: 0000000000000000 R14: 00007f7462fa5fa0 R15: 00007fffc3cdb4c8 [ 170.887755][ T7690] [ 171.156821][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 171.248109][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 171.256809][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 171.846707][ T7672] Bluetooth: hci1: Opcode 0x0c1a failed: -110 [ 171.856629][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout [ 171.966717][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 172.148285][ T7672] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 172.154793][ T7672] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 172.175061][ T7672] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 172.850251][ T7695] netlink: 184 bytes leftover after parsing attributes in process `syz.2.494'. [ 173.382784][ T7697] netlink: 8 bytes leftover after parsing attributes in process `syz.1.495'. [ 173.926904][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout [ 174.196699][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout [ 174.256494][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout [ 175.248871][ T7726] FAULT_INJECTION: forcing a failure. [ 175.248871][ T7726] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 175.290398][ T7726] CPU: 0 UID: 0 PID: 7726 Comm: syz.1.499 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 175.290442][ T7726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 175.290458][ T7726] Call Trace: [ 175.290466][ T7726] [ 175.290476][ T7726] dump_stack_lvl+0x16c/0x1f0 [ 175.290515][ T7726] should_fail_ex+0x50a/0x650 [ 175.290554][ T7726] ? __pfx___might_resched+0x10/0x10 [ 175.290599][ T7726] should_fail_alloc_page+0xe7/0x130 [ 175.290625][ T7726] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 175.290657][ T7726] ? rcu_is_watching+0x12/0xc0 [ 175.290688][ T7726] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 175.290727][ T7726] ? hlock_class+0x4e/0x130 [ 175.290752][ T7726] ? mark_lock+0xb5/0xc60 [ 175.290781][ T7726] ? lockdep_hardirqs_on+0x7c/0x110 [ 175.290811][ T7726] ? finish_task_switch.isra.0+0x217/0xcc0 [ 175.290847][ T7726] ? __pfx_mark_lock+0x10/0x10 [ 175.290882][ T7726] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 175.290919][ T7726] ? __pfx___lock_acquire+0x10/0x10 [ 175.290954][ T7726] ? hlock_class+0x4e/0x130 [ 175.290987][ T7726] ? hlock_class+0x4e/0x130 [ 175.291011][ T7726] ? __lock_acquire+0xcc5/0x3c40 [ 175.291044][ T7726] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 175.291083][ T7726] ? policy_nodemask+0xea/0x4e0 [ 175.291122][ T7726] alloc_pages_mpol+0x1fc/0x540 [ 175.291148][ T7726] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 175.291169][ T7726] ? hlock_class+0x4e/0x130 [ 175.291192][ T7726] ? __lock_acquire+0xcc5/0x3c40 [ 175.291232][ T7726] folio_alloc_mpol_noprof+0x36/0x2f0 [ 175.291262][ T7726] vma_alloc_folio_noprof+0xee/0x1b0 [ 175.291289][ T7726] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 175.291317][ T7726] ? find_held_lock+0x2d/0x110 [ 175.291349][ T7726] do_pte_missing+0x202f/0x3e10 [ 175.291397][ T7726] __handle_mm_fault+0x1166/0x2c60 [ 175.291443][ T7726] ? lock_vma_under_rcu+0x6b9/0x980 [ 175.291478][ T7726] ? __pfx___handle_mm_fault+0x10/0x10 [ 175.291544][ T7726] handle_mm_fault+0x3fa/0xaa0 [ 175.291587][ T7726] do_user_addr_fault+0x60d/0x13f0 [ 175.291629][ T7726] exc_page_fault+0x5c/0xc0 [ 175.291660][ T7726] asm_exc_page_fault+0x26/0x30 [ 175.291690][ T7726] RIP: 0033:0x7f5060e58b7b [ 175.291711][ T7726] Code: 00 00 00 48 8d 3d 9d 33 19 00 48 89 c1 31 c0 e8 4b 44 ff ff eb d2 66 0f 1f 84 00 00 00 00 00 55 31 c0 53 48 81 ec 68 10 00 00 <48> 89 7c 24 08 48 8d 3d d1 33 19 00 48 89 34 24 48 8b 14 24 48 8b [ 175.291733][ T7726] RSP: 002b:00007f5061d4dfb0 EFLAGS: 00010202 [ 175.291753][ T7726] RAX: 0000000000000000 RBX: 00007f50611a5fa0 RCX: 0000000000000000 [ 175.291769][ T7726] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000400000000240 [ 175.291785][ T7726] RBP: 00007f506100e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 175.291801][ T7726] R10: 0000400000000240 R11: 0000000000000000 R12: 0000000000000000 [ 175.291816][ T7726] R13: 0000000000000000 R14: 00007f50611a5fa0 R15: 00007ffd4c3d2d58 [ 175.291850][ T7726] [ 175.727198][ T7726] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 176.223972][ T7736] netlink: 28 bytes leftover after parsing attributes in process `syz.3.504'. [ 177.149551][ T7757] FAULT_INJECTION: forcing a failure. [ 177.149551][ T7757] name failslab, interval 1, probability 0, space 0, times 0 [ 177.196312][ T7751] netlink: 338 bytes leftover after parsing attributes in process `syz.3.507'. [ 177.233766][ T7757] CPU: 0 UID: 0 PID: 7757 Comm: syz.2.509 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 177.233797][ T7757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 177.233810][ T7757] Call Trace: [ 177.233817][ T7757] [ 177.233826][ T7757] dump_stack_lvl+0x16c/0x1f0 [ 177.233861][ T7757] should_fail_ex+0x50a/0x650 [ 177.233895][ T7757] ? fs_reclaim_acquire+0xae/0x150 [ 177.233927][ T7757] should_failslab+0xc2/0x120 [ 177.233950][ T7757] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 177.233983][ T7757] ? __xlate_proc_name+0x173/0x210 [ 177.234017][ T7757] ? __proc_create+0x2c0/0x8b0 [ 177.234053][ T7757] __proc_create+0x2c0/0x8b0 [ 177.234087][ T7757] ? __pfx___proc_create+0x10/0x10 [ 177.234135][ T7757] _proc_mkdir+0xbb/0x200 [ 177.234157][ T7757] ? __pfx__proc_mkdir+0x10/0x10 [ 177.234177][ T7757] ? trace_kmem_cache_alloc+0x2d/0xd0 [ 177.234203][ T7757] ? kmem_cache_alloc_noprof+0x279/0x3d0 [ 177.234245][ T7757] proc_net_ns_init+0x265/0x410 [ 177.234276][ T7757] ? __pfx_proc_net_ns_init+0x10/0x10 [ 177.234298][ T7757] ops_init+0x1df/0x5f0 [ 177.234335][ T7757] setup_net+0x21f/0x860 [ 177.234371][ T7757] ? __pfx_setup_net+0x10/0x10 [ 177.234401][ T7757] ? down_read_killable+0xcc/0x380 [ 177.234434][ T7757] ? __pfx_down_read_killable+0x10/0x10 [ 177.234464][ T7757] ? __raw_spin_lock_init+0x3a/0x110 [ 177.234502][ T7757] ? debug_mutex_init+0x37/0x70 [ 177.234530][ T7757] copy_net_ns+0x2a6/0x5f0 [ 177.234557][ T7757] create_new_namespaces+0x3ea/0xad0 [ 177.234601][ T7757] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 177.234640][ T7757] ksys_unshare+0x45d/0xa40 [ 177.234664][ T7757] ? __pfx_ksys_unshare+0x10/0x10 [ 177.234689][ T7757] ? ksys_write+0x1ba/0x250 [ 177.234729][ T7757] __x64_sys_unshare+0x31/0x40 [ 177.234752][ T7757] do_syscall_64+0xcd/0x250 [ 177.234784][ T7757] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 177.234815][ T7757] RIP: 0033:0x7fdfa6b8d169 [ 177.234833][ T7757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 177.234854][ T7757] RSP: 002b:00007fdfa7915038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 177.234876][ T7757] RAX: ffffffffffffffda RBX: 00007fdfa6da6240 RCX: 00007fdfa6b8d169 [ 177.234892][ T7757] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 177.234905][ T7757] RBP: 00007fdfa7915090 R08: 0000000000000000 R09: 0000000000000000 [ 177.234919][ T7757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 177.234933][ T7757] R13: 0000000000000000 R14: 00007fdfa6da6240 R15: 00007ffe0fdba6e8 [ 177.234964][ T7757] [ 178.934331][ T7782] random: crng reseeded on system resumption [ 180.512651][ T7813] netlink: 28 bytes leftover after parsing attributes in process `syz.3.523'. [ 180.882940][ T7824] FAULT_INJECTION: forcing a failure. [ 180.882940][ T7824] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 180.916462][ T7824] CPU: 0 UID: 0 PID: 7824 Comm: syz.3.525 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 180.916493][ T7824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 180.916509][ T7824] Call Trace: [ 180.916516][ T7824] [ 180.916528][ T7824] dump_stack_lvl+0x16c/0x1f0 [ 180.916561][ T7824] should_fail_ex+0x50a/0x650 [ 180.916598][ T7824] _copy_from_user+0x2e/0xd0 [ 180.916622][ T7824] kstrtouint_from_user+0xd7/0x1c0 [ 180.916650][ T7824] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 180.916685][ T7824] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 180.916723][ T7824] proc_fail_nth_write+0x84/0x250 [ 180.916749][ T7824] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 180.916772][ T7824] ? ksys_write+0x12b/0x250 [ 180.916805][ T7824] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 180.916829][ T7824] vfs_write+0x24c/0x1150 [ 180.916859][ T7824] ? __fget_files+0x1fc/0x3a0 [ 180.916888][ T7824] ? __pfx___mutex_lock+0x10/0x10 [ 180.916917][ T7824] ? __pfx_vfs_write+0x10/0x10 [ 180.916953][ T7824] ? __fget_files+0x206/0x3a0 [ 180.916992][ T7824] ksys_write+0x12b/0x250 [ 180.917019][ T7824] ? __pfx_ksys_write+0x10/0x10 [ 180.917055][ T7824] do_syscall_64+0xcd/0x250 [ 180.917086][ T7824] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.917122][ T7824] RIP: 0033:0x7fc937b8bc1f [ 180.917139][ T7824] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 180.917159][ T7824] RSP: 002b:00007fc938a0e030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 180.917180][ T7824] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fc937b8bc1f [ 180.917195][ T7824] RDX: 0000000000000001 RSI: 00007fc938a0e0a0 RDI: 0000000000000004 [ 180.917208][ T7824] RBP: 00007fc938a0e090 R08: 0000000000000000 R09: 0000000000000000 [ 180.917221][ T7824] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 180.917235][ T7824] R13: 0000000000000000 R14: 00007fc937da5fa0 R15: 00007ffebaa06608 [ 180.917267][ T7824] [ 181.999574][ T51] smpboot: CPU 0 is now offline [ 182.265960][ T7849] FAULT_INJECTION: forcing a failure. [ 182.265960][ T7849] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 182.346381][ T7849] CPU: 1 UID: 0 PID: 7849 Comm: syz.2.533 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 182.346406][ T7849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 182.346414][ T7849] Call Trace: [ 182.346419][ T7849] [ 182.346424][ T7849] dump_stack_lvl+0x16c/0x1f0 [ 182.346446][ T7849] should_fail_ex+0x50a/0x650 [ 182.346469][ T7849] _copy_from_user+0x2e/0xd0 [ 182.346483][ T7849] copy_msghdr_from_user+0x99/0x160 [ 182.346503][ T7849] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 182.346521][ T7849] ? __lock_acquire+0xcc5/0x3c40 [ 182.346540][ T7849] ? hlock_class+0x4e/0x130 [ 182.346553][ T7849] ? __lock_acquire+0x15a9/0x3c40 [ 182.346573][ T7849] ___sys_sendmsg+0xff/0x1e0 [ 182.346592][ T7849] ? __pfx____sys_sendmsg+0x10/0x10 [ 182.346609][ T7849] ? __pfx___lock_acquire+0x10/0x10 [ 182.346645][ T7849] ? __pfx___might_resched+0x10/0x10 [ 182.346665][ T7849] ? __might_fault+0xe3/0x190 [ 182.346681][ T7849] __sys_sendmmsg+0x201/0x420 [ 182.346701][ T7849] ? __pfx___sys_sendmmsg+0x10/0x10 [ 182.346725][ T7849] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 182.346748][ T7849] ? fput+0x67/0x440 [ 182.346761][ T7849] ? arch_syscall_is_vdso_sigreturn+0xb6/0x230 [ 182.346779][ T7849] ? syscall_user_dispatch+0x7a/0x130 [ 182.346802][ T7849] __x64_sys_sendmmsg+0x9c/0x100 [ 182.346821][ T7849] do_syscall_64+0xcd/0x250 [ 182.346839][ T7849] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 182.346856][ T7849] RIP: 0033:0x7fdfa6b8d169 [ 182.346866][ T7849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 182.346879][ T7849] RSP: 002b:00007fdfa7978038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 182.346892][ T7849] RAX: ffffffffffffffda RBX: 00007fdfa6da5fa0 RCX: 00007fdfa6b8d169 [ 182.346901][ T7849] RDX: 0000000000000007 RSI: 0000400000000200 RDI: 0000000000000006 [ 182.346908][ T7849] RBP: 00007fdfa7978090 R08: 0000000000000000 R09: 0000000000000000 [ 182.346916][ T7849] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 182.346923][ T7849] R13: 0000000000000000 R14: 00007fdfa6da5fa0 R15: 00007ffe0fdba6e8 [ 182.346939][ T7849] [ 184.182561][ T7890] FAULT_INJECTION: forcing a failure. [ 184.182561][ T7890] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 184.259277][ T7890] CPU: 1 UID: 0 PID: 7890 Comm: syz.2.546 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 184.259299][ T7890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 184.259307][ T7890] Call Trace: [ 184.259311][ T7890] [ 184.259316][ T7890] dump_stack_lvl+0x16c/0x1f0 [ 184.259339][ T7890] should_fail_ex+0x50a/0x650 [ 184.259362][ T7890] _copy_to_user+0x32/0xd0 [ 184.259377][ T7890] simple_read_from_buffer+0xd0/0x160 [ 184.259397][ T7890] proc_fail_nth_read+0x198/0x270 [ 184.259413][ T7890] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 184.259430][ T7890] ? rw_verify_area+0xcf/0x680 [ 184.259445][ T7890] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 184.259460][ T7890] vfs_read+0x1df/0xbf0 [ 184.259477][ T7890] ? __fget_files+0x1fc/0x3a0 [ 184.259496][ T7890] ? __pfx___mutex_lock+0x10/0x10 [ 184.259514][ T7890] ? __pfx_vfs_read+0x10/0x10 [ 184.259545][ T7890] ? __fget_files+0x206/0x3a0 [ 184.259567][ T7890] ksys_read+0x12b/0x250 [ 184.259583][ T7890] ? __pfx_ksys_read+0x10/0x10 [ 184.259605][ T7890] do_syscall_64+0xcd/0x250 [ 184.259623][ T7890] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.259641][ T7890] RIP: 0033:0x7fdfa6b8bb7c [ 184.259651][ T7890] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 184.259664][ T7890] RSP: 002b:00007fdfa7978030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 184.259676][ T7890] RAX: ffffffffffffffda RBX: 00007fdfa6da5fa0 RCX: 00007fdfa6b8bb7c [ 184.259685][ T7890] RDX: 000000000000000f RSI: 00007fdfa79780a0 RDI: 0000000000000004 [ 184.259693][ T7890] RBP: 00007fdfa7978090 R08: 0000000000000000 R09: 0000000000000000 [ 184.259700][ T7890] R10: 0500000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 184.259708][ T7890] R13: 0000000000000000 R14: 00007fdfa6da5fa0 R15: 00007ffe0fdba6e8 [ 184.259724][ T7890] [ 184.504062][ T7897] FAULT_INJECTION: forcing a failure. [ 184.504062][ T7897] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 184.519752][ T7897] CPU: 1 UID: 0 PID: 7897 Comm: syz.3.548 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 184.519770][ T7897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 184.519778][ T7897] Call Trace: [ 184.519783][ T7897] [ 184.519788][ T7897] dump_stack_lvl+0x16c/0x1f0 [ 184.519810][ T7897] should_fail_ex+0x50a/0x650 [ 184.519833][ T7897] _copy_to_user+0x32/0xd0 [ 184.519849][ T7897] simple_read_from_buffer+0xd0/0x160 [ 184.519868][ T7897] proc_fail_nth_read+0x198/0x270 [ 184.519884][ T7897] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 184.519900][ T7897] ? rw_verify_area+0xcf/0x680 [ 184.519916][ T7897] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 184.519931][ T7897] vfs_read+0x1df/0xbf0 [ 184.519948][ T7897] ? __fget_files+0x1fc/0x3a0 [ 184.519966][ T7897] ? __pfx___mutex_lock+0x10/0x10 [ 184.519983][ T7897] ? __pfx_vfs_read+0x10/0x10 [ 184.520005][ T7897] ? __fget_files+0x206/0x3a0 [ 184.520027][ T7897] ksys_read+0x12b/0x250 [ 184.520043][ T7897] ? __pfx_ksys_read+0x10/0x10 [ 184.520065][ T7897] do_syscall_64+0xcd/0x250 [ 184.520083][ T7897] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.520101][ T7897] RIP: 0033:0x7fc937b8bb7c [ 184.520111][ T7897] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 184.520124][ T7897] RSP: 002b:00007fc938a0e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 184.520136][ T7897] RAX: ffffffffffffffda RBX: 00007fc937da5fa0 RCX: 00007fc937b8bb7c [ 184.520144][ T7897] RDX: 000000000000000f RSI: 00007fc938a0e0a0 RDI: 0000000000000004 [ 184.520152][ T7897] RBP: 00007fc938a0e090 R08: 0000000000000000 R09: 0000000000000000 [ 184.520160][ T7897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 184.520167][ T7897] R13: 0000000000000000 R14: 00007fc937da5fa0 R15: 00007ffebaa06608 [ 184.520183][ T7897] [ 185.308404][ T7911] FAULT_INJECTION: forcing a failure. [ 185.308404][ T7911] name failslab, interval 1, probability 0, space 0, times 0 [ 185.362237][ T7911] CPU: 1 UID: 0 PID: 7911 Comm: syz.3.551 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 185.362257][ T7911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 185.362265][ T7911] Call Trace: [ 185.362269][ T7911] [ 185.362275][ T7911] dump_stack_lvl+0x16c/0x1f0 [ 185.362296][ T7911] should_fail_ex+0x50a/0x650 [ 185.362317][ T7911] ? fs_reclaim_acquire+0xae/0x150 [ 185.362334][ T7911] ? copy_splice_read+0x1a8/0xb80 [ 185.362350][ T7911] should_failslab+0xc2/0x120 [ 185.362362][ T7911] __kmalloc_noprof+0xcb/0x510 [ 185.362385][ T7911] copy_splice_read+0x1a8/0xb80 [ 185.362401][ T7911] ? look_up_lock_class+0x59/0x150 [ 185.362419][ T7911] ? __pfx_copy_splice_read+0x10/0x10 [ 185.362437][ T7911] ? __pfx_register_lock_class+0x10/0x10 [ 185.362469][ T7911] ? __pfx_copy_splice_read+0x10/0x10 [ 185.362485][ T7911] do_splice_read+0x282/0x370 [ 185.362502][ T7911] splice_direct_to_actor+0x2a4/0xa40 [ 185.362520][ T7911] ? __pfx_direct_splice_actor+0x10/0x10 [ 185.362540][ T7911] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 185.362558][ T7911] ? __fget_files+0x1fc/0x3a0 [ 185.362578][ T7911] do_splice_direct+0x178/0x250 [ 185.362595][ T7911] ? __pfx_do_splice_direct+0x10/0x10 [ 185.362611][ T7911] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 185.362630][ T7911] ? rw_verify_area+0xcf/0x680 [ 185.362647][ T7911] do_sendfile+0xafb/0xe40 [ 185.362665][ T7911] ? __pfx_do_sendfile+0x10/0x10 [ 185.362681][ T7911] ? __fget_files+0x206/0x3a0 [ 185.362703][ T7911] __x64_sys_sendfile64+0x1da/0x220 [ 185.362715][ T7911] ? ksys_write+0x1ba/0x250 [ 185.362731][ T7911] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 185.362748][ T7911] do_syscall_64+0xcd/0x250 [ 185.362766][ T7911] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 185.362784][ T7911] RIP: 0033:0x7fc937b8d169 [ 185.362794][ T7911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 185.362807][ T7911] RSP: 002b:00007fc938a0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 185.362820][ T7911] RAX: ffffffffffffffda RBX: 00007fc937da5fa0 RCX: 00007fc937b8d169 [ 185.362829][ T7911] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 185.362836][ T7911] RBP: 00007fc938a0e090 R08: 0000000000000000 R09: 0000000000000000 [ 185.362843][ T7911] R10: 0000000001000200 R11: 0000000000000246 R12: 0000000000000001 [ 185.362851][ T7911] R13: 0000000000000000 R14: 00007fc937da5fa0 R15: 00007ffebaa06608 [ 185.362866][ T7911] [ 187.014111][ T7934] FAULT_INJECTION: forcing a failure. [ 187.014111][ T7934] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 187.051131][ T7935] block nbd1: Unsupported socket: shutdown callout must be supported. [ 187.145795][ T7934] CPU: 1 UID: 0 PID: 7934 Comm: syz.1.556 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 187.145816][ T7934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 187.145824][ T7934] Call Trace: [ 187.145829][ T7934] [ 187.145834][ T7934] dump_stack_lvl+0x16c/0x1f0 [ 187.145857][ T7934] should_fail_ex+0x50a/0x650 [ 187.145881][ T7934] _copy_to_user+0x32/0xd0 [ 187.145896][ T7934] simple_read_from_buffer+0xd0/0x160 [ 187.145915][ T7934] proc_fail_nth_read+0x198/0x270 [ 187.145932][ T7934] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 187.145948][ T7934] ? rw_verify_area+0xcf/0x680 [ 187.145964][ T7934] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 187.145979][ T7934] vfs_read+0x1df/0xbf0 [ 187.145996][ T7934] ? __fget_files+0x1fc/0x3a0 [ 187.146015][ T7934] ? __pfx___mutex_lock+0x10/0x10 [ 187.146032][ T7934] ? __pfx_vfs_read+0x10/0x10 [ 187.146053][ T7934] ? __fget_files+0x206/0x3a0 [ 187.146075][ T7934] ksys_read+0x12b/0x250 [ 187.146091][ T7934] ? __pfx_ksys_read+0x10/0x10 [ 187.146112][ T7934] do_syscall_64+0xcd/0x250 [ 187.146131][ T7934] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.146149][ T7934] RIP: 0033:0x7f5060f8bb7c [ 187.146160][ T7934] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 187.146173][ T7934] RSP: 002b:00007f5061d4f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 187.146186][ T7934] RAX: ffffffffffffffda RBX: 00007f50611a5fa0 RCX: 00007f5060f8bb7c [ 187.146194][ T7934] RDX: 000000000000000f RSI: 00007f5061d4f0a0 RDI: 0000000000000006 [ 187.146202][ T7934] RBP: 00007f5061d4f090 R08: 0000000000000000 R09: 0000000000000000 [ 187.146210][ T7934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 187.146217][ T7934] R13: 0000000000000000 R14: 00007f50611a5fa0 R15: 00007ffd4c3d2d58 [ 187.146233][ T7934] [ 187.665437][ T7946] FAULT_INJECTION: forcing a failure. [ 187.665437][ T7946] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 187.758265][ T7946] CPU: 1 UID: 0 PID: 7946 Comm: syz.0.561 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 187.758286][ T7946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 187.758294][ T7946] Call Trace: [ 187.758298][ T7946] [ 187.758303][ T7946] dump_stack_lvl+0x16c/0x1f0 [ 187.758326][ T7946] should_fail_ex+0x50a/0x650 [ 187.758349][ T7946] _copy_to_user+0x32/0xd0 [ 187.758365][ T7946] simple_read_from_buffer+0xd0/0x160 [ 187.758383][ T7946] proc_fail_nth_read+0x198/0x270 [ 187.758400][ T7946] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 187.758417][ T7946] ? rw_verify_area+0xcf/0x680 [ 187.758432][ T7946] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 187.758448][ T7946] vfs_read+0x1df/0xbf0 [ 187.758465][ T7946] ? __fget_files+0x1fc/0x3a0 [ 187.758484][ T7946] ? __pfx___mutex_lock+0x10/0x10 [ 187.758501][ T7946] ? __pfx_vfs_read+0x10/0x10 [ 187.758522][ T7946] ? __fget_files+0x206/0x3a0 [ 187.758544][ T7946] ksys_read+0x12b/0x250 [ 187.758560][ T7946] ? __pfx_ksys_read+0x10/0x10 [ 187.758581][ T7946] do_syscall_64+0xcd/0x250 [ 187.758600][ T7946] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.758618][ T7946] RIP: 0033:0x7f7462d8bb7c [ 187.758629][ T7946] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 187.758641][ T7946] RSP: 002b:00007f7463b60030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 187.758654][ T7946] RAX: ffffffffffffffda RBX: 00007f7462fa5fa0 RCX: 00007f7462d8bb7c [ 187.758662][ T7946] RDX: 000000000000000f RSI: 00007f7463b600a0 RDI: 0000000000000004 [ 187.758670][ T7946] RBP: 00007f7463b60090 R08: 0000000000000000 R09: 0000000000000000 [ 187.758678][ T7946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 187.758685][ T7946] R13: 0000000000000000 R14: 00007f7462fa5fa0 R15: 00007fffc3cdb4c8 [ 187.758702][ T7946] [ 188.565572][ T7966] netlink: 8 bytes leftover after parsing attributes in process `syz.1.568'. [ 188.908189][ T7971] FAULT_INJECTION: forcing a failure. [ 188.908189][ T7971] name failslab, interval 1, probability 0, space 0, times 0 [ 188.908213][ T7971] CPU: 1 UID: 0 PID: 7971 Comm: syz.3.569 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 188.908229][ T7971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 188.908237][ T7971] Call Trace: [ 188.908241][ T7971] [ 188.908246][ T7971] dump_stack_lvl+0x16c/0x1f0 [ 188.908268][ T7971] should_fail_ex+0x50a/0x650 [ 188.908289][ T7971] ? fs_reclaim_acquire+0xae/0x150 [ 188.908307][ T7971] ? alloc_pipe_info+0x1ec/0x590 [ 188.908326][ T7971] should_failslab+0xc2/0x120 [ 188.908339][ T7971] __kmalloc_noprof+0xcb/0x510 [ 188.908360][ T7971] ? kasan_save_track+0x14/0x30 [ 188.908379][ T7971] alloc_pipe_info+0x1ec/0x590 [ 188.908400][ T7971] fifo_open+0x27b/0xbb0 [ 188.908418][ T7971] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 188.908438][ T7971] do_dentry_open+0x735/0x1c40 [ 188.908456][ T7971] ? __pfx_fifo_open+0x10/0x10 [ 188.908478][ T7971] vfs_open+0x82/0x3f0 [ 188.908490][ T7971] ? may_open+0x1f2/0x400 [ 188.908506][ T7971] path_openat+0x1e88/0x2d80 [ 188.908530][ T7971] ? __pfx_path_openat+0x10/0x10 [ 188.908548][ T7971] ? __pfx___lock_acquire+0x10/0x10 [ 188.908566][ T7971] ? lock_acquire.part.0+0x11b/0x380 [ 188.908583][ T7971] ? find_held_lock+0x2d/0x110 [ 188.908598][ T7971] do_filp_open+0x20c/0x470 [ 188.908617][ T7971] ? __pfx_do_filp_open+0x10/0x10 [ 188.908634][ T7971] ? find_held_lock+0x2d/0x110 [ 188.908658][ T7971] ? _raw_spin_unlock+0x28/0x50 [ 188.908672][ T7971] ? alloc_fd+0x41f/0x760 [ 188.908694][ T7971] do_sys_openat2+0x17a/0x1e0 [ 188.908708][ T7971] ? __pfx_do_sys_openat2+0x10/0x10 [ 188.908727][ T7971] __x64_sys_open+0x154/0x1e0 [ 188.908741][ T7971] ? __pfx___x64_sys_open+0x10/0x10 [ 188.908760][ T7971] do_syscall_64+0xcd/0x250 [ 188.908778][ T7971] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 188.908796][ T7971] RIP: 0033:0x7fc937b8d169 [ 188.908807][ T7971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 188.908820][ T7971] RSP: 002b:00007fc9389ed038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 188.908832][ T7971] RAX: ffffffffffffffda RBX: 00007fc937da6080 RCX: 00007fc937b8d169 [ 188.908841][ T7971] RDX: 0000000000000100 RSI: 0000000000161342 RDI: 0000400000000000 [ 188.908849][ T7971] RBP: 00007fc937c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 188.908857][ T7971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 188.908864][ T7971] R13: 0000000000000000 R14: 00007fc937da6080 R15: 00007ffebaa06608 [ 188.908881][ T7971] [ 190.122950][ T5836] Bluetooth: hci0: unexpected event 0x04 length: 11 > 10 [ 190.441270][ T7985] FAULT_INJECTION: forcing a failure. [ 190.441270][ T7985] name failslab, interval 1, probability 0, space 0, times 0 [ 190.441346][ T7985] CPU: 1 UID: 0 PID: 7985 Comm: syz.0.573 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 190.441362][ T7985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 190.441370][ T7985] Call Trace: [ 190.441374][ T7985] [ 190.441379][ T7985] dump_stack_lvl+0x16c/0x1f0 [ 190.441401][ T7985] should_fail_ex+0x50a/0x650 [ 190.441421][ T7985] ? fs_reclaim_acquire+0xae/0x150 [ 190.441440][ T7985] should_failslab+0xc2/0x120 [ 190.441452][ T7985] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 190.441472][ T7985] ? __pmd_alloc+0xc3/0x870 [ 190.441491][ T7985] __pmd_alloc+0xc3/0x870 [ 190.441508][ T7985] __handle_mm_fault+0x9fb/0x2c60 [ 190.441532][ T7985] ? __pfx___handle_mm_fault+0x10/0x10 [ 190.441550][ T7985] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 190.441578][ T7985] ? find_vma+0xc0/0x140 [ 190.441592][ T7985] ? __pfx_find_vma+0x10/0x10 [ 190.441610][ T7985] handle_mm_fault+0x3fa/0xaa0 [ 190.441631][ T7985] do_user_addr_fault+0x7a3/0x13f0 [ 190.441653][ T7985] exc_page_fault+0x5c/0xc0 [ 190.441669][ T7985] asm_exc_page_fault+0x26/0x30 [ 190.441686][ T7985] RIP: 0010:rep_movs_alternative+0x4a/0x70 [ 190.441700][ T7985] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1 [ 190.441712][ T7985] RSP: 0018:ffffc900031177e0 EFLAGS: 00050206 [ 190.441723][ T7985] RAX: 0000000000000001 RBX: 00000000000000c4 RCX: 00000000000000c4 [ 190.441730][ T7985] RDX: ffffed10050b1c29 RSI: 0000000000000000 RDI: ffff88802858e080 [ 190.441739][ T7985] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed10050b1c28 [ 190.441746][ T7985] R10: ffff88802858e143 R11: 0000000000000000 R12: ffffc90003117d60 [ 190.441755][ T7985] R13: 00000000000000c4 R14: ffff88802858e080 R15: 00007ffffffff000 [ 190.441771][ T7985] _copy_from_iter+0x385/0x1560 [ 190.441786][ T7985] ? trace_lock_acquire+0x14e/0x1f0 [ 190.441800][ T7985] ? __alloc_skb+0x1fe/0x380 [ 190.441819][ T7985] ? __pfx__copy_from_iter+0x10/0x10 [ 190.441831][ T7985] ? __virt_addr_valid+0x1a4/0x590 [ 190.441846][ T7985] ? __virt_addr_valid+0x5e/0x590 [ 190.441859][ T7985] ? __phys_addr_symbol+0x30/0x80 [ 190.441871][ T7985] ? __check_object_size+0x488/0x710 [ 190.441886][ T7985] netlink_sendmsg+0x813/0xd70 [ 190.441907][ T7985] ? __pfx_netlink_sendmsg+0x10/0x10 [ 190.441931][ T7985] ____sys_sendmsg+0xaaf/0xc90 [ 190.441946][ T7985] ? copy_msghdr_from_user+0x10b/0x160 [ 190.441972][ T7985] ? __pfx_____sys_sendmsg+0x10/0x10 [ 190.441985][ T7985] ? __lock_acquire+0xcc5/0x3c40 [ 190.442010][ T7985] ___sys_sendmsg+0x135/0x1e0 [ 190.442029][ T7985] ? __pfx____sys_sendmsg+0x10/0x10 [ 190.442054][ T7985] ? trace_lock_acquire+0x14e/0x1f0 [ 190.442080][ T7985] __sys_sendmmsg+0x201/0x420 [ 190.442100][ T7985] ? __pfx___sys_sendmmsg+0x10/0x10 [ 190.442124][ T7985] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 190.442148][ T7985] ? fput+0x67/0x440 [ 190.442161][ T7985] ? ksys_write+0x1ba/0x250 [ 190.442178][ T7985] ? __pfx_ksys_write+0x10/0x10 [ 190.442201][ T7985] __x64_sys_sendmmsg+0x9c/0x100 [ 190.442219][ T7985] ? lockdep_hardirqs_on+0x7c/0x110 [ 190.442234][ T7985] do_syscall_64+0xcd/0x250 [ 190.442252][ T7985] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 190.442269][ T7985] RIP: 0033:0x7f7462d8d169 [ 190.442279][ T7985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 190.442290][ T7985] RSP: 002b:00007f7463b60038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 190.442302][ T7985] RAX: ffffffffffffffda RBX: 00007f7462fa5fa0 RCX: 00007f7462d8d169 [ 190.442310][ T7985] RDX: 0000000000000003 RSI: 0000400000000080 RDI: 0000000000000003 [ 190.442317][ T7985] RBP: 00007f7463b60090 R08: 0000000000000000 R09: 0000000000000000 [ 190.442325][ T7985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 190.442332][ T7985] R13: 0000000000000000 R14: 00007f7462fa5fa0 R15: 00007fffc3cdb4c8 [ 190.442349][ T7985] [ 191.153416][ T7997] FAULT_INJECTION: forcing a failure. [ 191.153416][ T7997] name failslab, interval 1, probability 0, space 0, times 0 [ 191.153450][ T7997] CPU: 1 UID: 0 PID: 7997 Comm: syz.0.579 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 191.153467][ T7997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 191.153475][ T7997] Call Trace: [ 191.153479][ T7997] [ 191.153485][ T7997] dump_stack_lvl+0x16c/0x1f0 [ 191.153507][ T7997] should_fail_ex+0x50a/0x650 [ 191.153528][ T7997] ? fs_reclaim_acquire+0xae/0x150 [ 191.153548][ T7997] should_failslab+0xc2/0x120 [ 191.153562][ T7997] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 191.153581][ T7997] ? __xlate_proc_name+0x173/0x210 [ 191.153602][ T7997] ? __proc_create+0x2c0/0x8b0 [ 191.153624][ T7997] __proc_create+0x2c0/0x8b0 [ 191.153643][ T7997] ? __pfx___proc_create+0x10/0x10 [ 191.153665][ T7997] ? __pfx___netlink_kernel_create+0x10/0x10 [ 191.153687][ T7997] proc_create_reg+0x7d/0x180 [ 191.153701][ T7997] proc_create_seq_private+0x8f/0x180 [ 191.153715][ T7997] ? __pfx_proc_create_seq_private+0x10/0x10 [ 191.153729][ T7997] ? __pfx_nl_fib_input+0x10/0x10 [ 191.153749][ T7997] ? __pfx_ip_rt_do_proc_init+0x10/0x10 [ 191.153768][ T7997] ip_rt_do_proc_init+0x57/0x1b0 [ 191.153787][ T7997] ops_init+0x1df/0x5f0 [ 191.153808][ T7997] setup_net+0x21f/0x860 [ 191.153829][ T7997] ? __pfx_setup_net+0x10/0x10 [ 191.153847][ T7997] ? down_read_killable+0xcc/0x380 [ 191.153867][ T7997] ? __pfx_down_read_killable+0x10/0x10 [ 191.153885][ T7997] ? __raw_spin_lock_init+0x3a/0x110 [ 191.153919][ T7997] ? debug_mutex_init+0x37/0x70 [ 191.153936][ T7997] copy_net_ns+0x2a6/0x5f0 [ 191.153952][ T7997] create_new_namespaces+0x3ea/0xad0 [ 191.153978][ T7997] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 191.154000][ T7997] ksys_unshare+0x45d/0xa40 [ 191.154014][ T7997] ? __pfx_ksys_unshare+0x10/0x10 [ 191.154026][ T7997] ? xfd_validate_state+0x5d/0x180 [ 191.154050][ T7997] __x64_sys_unshare+0x31/0x40 [ 191.154063][ T7997] do_syscall_64+0xcd/0x250 [ 191.154081][ T7997] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 191.154099][ T7997] RIP: 0033:0x7f7462d8d169 [ 191.154110][ T7997] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 191.154127][ T7997] RSP: 002b:00007f7463b60038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 191.154139][ T7997] RAX: ffffffffffffffda RBX: 00007f7462fa5fa0 RCX: 00007f7462d8d169 [ 191.154148][ T7997] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 191.154156][ T7997] RBP: 00007f7462e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 191.154164][ T7997] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 191.154172][ T7997] R13: 0000000000000000 R14: 00007f7462fa5fa0 R15: 00007fffc3cdb4c8 [ 191.154190][ T7997] [ 192.168218][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout [ 192.244337][ T8026] QAT: Stopping all acceleration devices. [ 192.319916][ T8028] FAULT_INJECTION: forcing a failure. [ 192.319916][ T8028] name failslab, interval 1, probability 0, space 0, times 0 [ 192.319939][ T8028] CPU: 1 UID: 0 PID: 8028 Comm: syz.2.589 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 192.319955][ T8028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 192.319964][ T8028] Call Trace: [ 192.319968][ T8028] [ 192.319974][ T8028] dump_stack_lvl+0x16c/0x1f0 [ 192.319996][ T8028] should_fail_ex+0x50a/0x650 [ 192.320017][ T8028] ? fs_reclaim_acquire+0xae/0x150 [ 192.320036][ T8028] should_failslab+0xc2/0x120 [ 192.320049][ T8028] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 192.320069][ T8028] ? __xlate_proc_name+0x173/0x210 [ 192.320089][ T8028] ? __proc_create+0x2c0/0x8b0 [ 192.320111][ T8028] __proc_create+0x2c0/0x8b0 [ 192.320131][ T8028] ? __pfx___proc_create+0x10/0x10 [ 192.320153][ T8028] ? __pfx___netlink_kernel_create+0x10/0x10 [ 192.320174][ T8028] proc_create_reg+0x7d/0x180 [ 192.320188][ T8028] proc_create_seq_private+0x8f/0x180 [ 192.320203][ T8028] ? __pfx_proc_create_seq_private+0x10/0x10 [ 192.320216][ T8028] ? __pfx_nl_fib_input+0x10/0x10 [ 192.320236][ T8028] ? __pfx_ip_rt_do_proc_init+0x10/0x10 [ 192.320255][ T8028] ip_rt_do_proc_init+0x57/0x1b0 [ 192.320273][ T8028] ops_init+0x1df/0x5f0 [ 192.320295][ T8028] setup_net+0x21f/0x860 [ 192.320316][ T8028] ? __pfx_setup_net+0x10/0x10 [ 192.320334][ T8028] ? down_read_killable+0xcc/0x380 [ 192.320353][ T8028] ? __pfx_down_read_killable+0x10/0x10 [ 192.320370][ T8028] ? __raw_spin_lock_init+0x3a/0x110 [ 192.320393][ T8028] ? debug_mutex_init+0x37/0x70 [ 192.320408][ T8028] copy_net_ns+0x2a6/0x5f0 [ 192.320423][ T8028] create_new_namespaces+0x3ea/0xad0 [ 192.320447][ T8028] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 192.320469][ T8028] ksys_unshare+0x45d/0xa40 [ 192.320483][ T8028] ? __pfx_ksys_unshare+0x10/0x10 [ 192.320495][ T8028] ? xfd_validate_state+0x5d/0x180 [ 192.320519][ T8028] __x64_sys_unshare+0x31/0x40 [ 192.320532][ T8028] do_syscall_64+0xcd/0x250 [ 192.320550][ T8028] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 192.320568][ T8028] RIP: 0033:0x7fdfa6b8d169 [ 192.320579][ T8028] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 192.320592][ T8028] RSP: 002b:00007fdfa7978038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 192.320604][ T8028] RAX: ffffffffffffffda RBX: 00007fdfa6da5fa0 RCX: 00007fdfa6b8d169 [ 192.320613][ T8028] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 192.320621][ T8028] RBP: 00007fdfa6c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 192.320629][ T8028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 192.320637][ T8028] R13: 0000000000000000 R14: 00007fdfa6da5fa0 R15: 00007ffe0fdba6e8 [ 192.320654][ T8028] [ 192.377441][ T8031] netlink: 1260 bytes leftover after parsing attributes in process `syz.0.590'. [ 192.629842][ T8036] netlink: 21 bytes leftover after parsing attributes in process `syz.2.591'. [ 192.822142][ T8046] nbd: illegal input index -33554433 [ 193.077296][ T8054] netlink: 40 bytes leftover after parsing attributes in process `syz.2.598'. [ 193.077316][ T8054] nbd: must specify at least one socket [ 193.295282][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 193.295318][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.577133][ T7992] tty tty45: ldisc open failed (-12), clearing slot 44 [ 194.766048][ T8064] FAULT_INJECTION: forcing a failure. [ 194.766048][ T8064] name failslab, interval 1, probability 0, space 0, times 0 [ 194.855595][ T8064] CPU: 1 UID: 0 PID: 8064 Comm: syz.1.600 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 194.855618][ T8064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 194.855627][ T8064] Call Trace: [ 194.855631][ T8064] [ 194.855637][ T8064] dump_stack_lvl+0x16c/0x1f0 [ 194.855661][ T8064] should_fail_ex+0x50a/0x650 [ 194.855682][ T8064] ? fs_reclaim_acquire+0xae/0x150 [ 194.855701][ T8064] should_failslab+0xc2/0x120 [ 194.855715][ T8064] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 194.855734][ T8064] ? __xlate_proc_name+0x173/0x210 [ 194.855753][ T8064] ? __proc_create+0x2c0/0x8b0 [ 194.855775][ T8064] __proc_create+0x2c0/0x8b0 [ 194.855795][ T8064] ? __pfx___proc_create+0x10/0x10 [ 194.855818][ T8064] ? _raw_write_unlock+0x28/0x50 [ 194.855833][ T8064] ? proc_register+0x314/0x5f0 [ 194.855847][ T8064] proc_create_reg+0x7d/0x180 [ 194.855861][ T8064] proc_create_seq_private+0x8f/0x180 [ 194.855875][ T8064] ? __pfx_proc_create_seq_private+0x10/0x10 [ 194.855888][ T8064] ? __pfx_nl_fib_input+0x10/0x10 [ 194.855908][ T8064] ? __pfx_ip_rt_do_proc_init+0x10/0x10 [ 194.855927][ T8064] ip_rt_do_proc_init+0xac/0x1b0 [ 194.855946][ T8064] ops_init+0x1df/0x5f0 [ 194.855968][ T8064] setup_net+0x21f/0x860 [ 194.855988][ T8064] ? __pfx_setup_net+0x10/0x10 [ 194.856006][ T8064] ? down_read_killable+0xcc/0x380 [ 194.856024][ T8064] ? __pfx_down_read_killable+0x10/0x10 [ 194.856042][ T8064] ? __raw_spin_lock_init+0x3a/0x110 [ 194.856064][ T8064] ? debug_mutex_init+0x37/0x70 [ 194.856079][ T8064] copy_net_ns+0x2a6/0x5f0 [ 194.856094][ T8064] create_new_namespaces+0x3ea/0xad0 [ 194.856119][ T8064] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 194.856141][ T8064] ksys_unshare+0x45d/0xa40 [ 194.856155][ T8064] ? __pfx_ksys_unshare+0x10/0x10 [ 194.856168][ T8064] ? xfd_validate_state+0x5d/0x180 [ 194.856192][ T8064] __x64_sys_unshare+0x31/0x40 [ 194.856205][ T8064] do_syscall_64+0xcd/0x250 [ 194.856223][ T8064] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 194.856242][ T8064] RIP: 0033:0x7f5060f8d169 [ 194.856253][ T8064] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 194.856266][ T8064] RSP: 002b:00007f5061d4f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 194.856278][ T8064] RAX: ffffffffffffffda RBX: 00007f50611a5fa0 RCX: 00007f5060f8d169 [ 194.856287][ T8064] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 194.856295][ T8064] RBP: 00007f506100e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 194.856303][ T8064] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 194.856311][ T8064] R13: 0000000000000000 R14: 00007f50611a5fa0 R15: 00007ffd4c3d2d58 [ 194.856329][ T8064] [ 195.202320][ T8074] FAULT_INJECTION: forcing a failure. [ 195.202320][ T8074] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 195.218462][ T8074] CPU: 1 UID: 0 PID: 8074 Comm: syz.0.604 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 195.218479][ T8074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 195.218487][ T8074] Call Trace: [ 195.218491][ T8074] [ 195.218496][ T8074] dump_stack_lvl+0x16c/0x1f0 [ 195.218517][ T8074] should_fail_ex+0x50a/0x650 [ 195.218540][ T8074] _copy_from_iter+0x465/0x1560 [ 195.218569][ T8074] ? __pfx__copy_from_iter+0x10/0x10 [ 195.218584][ T8074] ? find_held_lock+0x2d/0x110 [ 195.218603][ T8074] tap_get_user+0xcd3/0x1bd0 [ 195.218622][ T8074] ? __pfx_tap_get_user+0x10/0x10 [ 195.218635][ T8074] ? aa_file_perm+0x4d5/0xfe0 [ 195.218655][ T8074] ? __pfx_mark_lock+0x10/0x10 [ 195.218672][ T8074] ? __pfx_aa_file_perm+0x10/0x10 [ 195.218691][ T8074] ? copy_iovec_from_user+0x138/0x170 [ 195.218706][ T8074] do_iter_readv_writev+0x655/0x950 [ 195.218723][ T8074] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 195.218742][ T8074] ? bpf_lsm_file_permission+0x9/0x10 [ 195.218762][ T8074] ? security_file_permission+0x71/0x210 [ 195.218779][ T8074] ? rw_verify_area+0xcf/0x680 [ 195.218795][ T8074] vfs_writev+0x363/0xdd0 [ 195.218810][ T8074] ? find_held_lock+0x2d/0x110 [ 195.218827][ T8074] ? __pfx_vfs_writev+0x10/0x10 [ 195.218842][ T8074] ? find_held_lock+0x2d/0x110 [ 195.218858][ T8074] ? __pfx_lock_release+0x10/0x10 [ 195.218875][ T8074] ? trace_lock_acquire+0x14e/0x1f0 [ 195.218894][ T8074] ? __fget_files+0x206/0x3a0 [ 195.218917][ T8074] ? do_writev+0x133/0x340 [ 195.218931][ T8074] do_writev+0x133/0x340 [ 195.218946][ T8074] ? __pfx_do_writev+0x10/0x10 [ 195.218967][ T8074] do_syscall_64+0xcd/0x250 [ 195.218985][ T8074] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 195.219003][ T8074] RIP: 0033:0x7f7462d8d169 [ 195.219015][ T8074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 195.219028][ T8074] RSP: 002b:00007f7463b60038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 195.219040][ T8074] RAX: ffffffffffffffda RBX: 00007f7462fa5fa0 RCX: 00007f7462d8d169 [ 195.219049][ T8074] RDX: 0000000000000008 RSI: 0000400000000100 RDI: 0000000000000003 [ 195.219057][ T8074] RBP: 00007f7463b60090 R08: 0000000000000000 R09: 0000000000000000 [ 195.219064][ T8074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 195.219072][ T8074] R13: 0000000000000000 R14: 00007f7462fa5fa0 R15: 00007fffc3cdb4c8 [ 195.219087][ T8074] [ 196.304024][ T8086] netlink: 21 bytes leftover after parsing attributes in process `syz.0.608'. [ 196.546377][ T8102] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 196.554332][ T8102] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 196.659216][ T8102] netlink: 'syz.2.612': attribute type 1 has an invalid length. [ 198.506184][ T8145] netlink: 334 bytes leftover after parsing attributes in process `syz.2.625'. [ 198.530561][ T8156] sctp: [Deprecated]: syz.3.627 (pid 8156) Use of struct sctp_assoc_value in delayed_ack socket option. [ 198.530561][ T8156] Use struct sctp_sack_info instead [ 199.110368][ T8166] HfR: entered promiscuous mode [ 199.522660][ T8173] FAULT_INJECTION: forcing a failure. [ 199.522660][ T8173] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 199.588911][ T8173] CPU: 1 UID: 0 PID: 8173 Comm: syz.2.634 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 199.588932][ T8173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 199.588940][ T8173] Call Trace: [ 199.588944][ T8173] [ 199.588950][ T8173] dump_stack_lvl+0x16c/0x1f0 [ 199.588972][ T8173] should_fail_ex+0x50a/0x650 [ 199.588995][ T8173] _copy_to_user+0x32/0xd0 [ 199.589011][ T8173] simple_read_from_buffer+0xd0/0x160 [ 199.589030][ T8173] proc_fail_nth_read+0x198/0x270 [ 199.589046][ T8173] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 199.589062][ T8173] ? rw_verify_area+0xcf/0x680 [ 199.589078][ T8173] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 199.589093][ T8173] vfs_read+0x1df/0xbf0 [ 199.589110][ T8173] ? __fget_files+0x1fc/0x3a0 [ 199.589129][ T8173] ? __pfx___mutex_lock+0x10/0x10 [ 199.589146][ T8173] ? __pfx_vfs_read+0x10/0x10 [ 199.589167][ T8173] ? __fget_files+0x206/0x3a0 [ 199.589189][ T8173] ksys_read+0x12b/0x250 [ 199.589206][ T8173] ? __pfx_ksys_read+0x10/0x10 [ 199.589227][ T8173] do_syscall_64+0xcd/0x250 [ 199.589250][ T8173] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 199.589269][ T8173] RIP: 0033:0x7fdfa6b8bb7c [ 199.589280][ T8173] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 199.589292][ T8173] RSP: 002b:00007fdfa7978030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 199.589305][ T8173] RAX: ffffffffffffffda RBX: 00007fdfa6da5fa0 RCX: 00007fdfa6b8bb7c [ 199.589313][ T8173] RDX: 000000000000000f RSI: 00007fdfa79780a0 RDI: 0000000000000004 [ 199.589321][ T8173] RBP: 00007fdfa7978090 R08: 0000000000000000 R09: 0000000000000000 [ 199.589329][ T8173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 199.589336][ T8173] R13: 0000000000000000 R14: 00007fdfa6da5fa0 R15: 00007ffe0fdba6e8 [ 199.589352][ T8173] [ 200.305428][ T8187] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 200.625198][ T8195] FAULT_INJECTION: forcing a failure. [ 200.625198][ T8195] name failslab, interval 1, probability 0, space 0, times 0 [ 200.708210][ T8195] CPU: 1 UID: 0 PID: 8195 Comm: syz.2.640 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 200.708234][ T8195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 200.708243][ T8195] Call Trace: [ 200.708248][ T8195] [ 200.708254][ T8195] dump_stack_lvl+0x16c/0x1f0 [ 200.708280][ T8195] should_fail_ex+0x50a/0x650 [ 200.708302][ T8195] ? fs_reclaim_acquire+0xae/0x150 [ 200.708320][ T8195] ? tcp_sendmsg_fastopen+0x23a/0x700 [ 200.708335][ T8195] should_failslab+0xc2/0x120 [ 200.708348][ T8195] __kmalloc_cache_noprof+0x68/0x410 [ 200.708365][ T8195] ? __pfx_lock_release+0x10/0x10 [ 200.708387][ T8195] tcp_sendmsg_fastopen+0x23a/0x700 [ 200.708402][ T8195] mptcp_sendmsg+0x14c3/0x1f50 [ 200.708419][ T8195] ? __pfx___might_resched+0x10/0x10 [ 200.708442][ T8195] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 200.708465][ T8195] ? aa_sk_perm+0x2f5/0xb20 [ 200.708480][ T8195] ? __pfx_mptcp_sendmsg+0x10/0x10 [ 200.708497][ T8195] ? __might_fault+0xe3/0x190 [ 200.708511][ T8195] ? __pfx_mptcp_sendmsg+0x10/0x10 [ 200.708526][ T8195] inet_sendmsg+0x119/0x140 [ 200.708546][ T8195] ____sys_sendmsg+0x98c/0xc90 [ 200.708562][ T8195] ? __pfx_____sys_sendmsg+0x10/0x10 [ 200.708575][ T8195] ? __lock_acquire+0xcc5/0x3c40 [ 200.708600][ T8195] ___sys_sendmsg+0x135/0x1e0 [ 200.708620][ T8195] ? __pfx____sys_sendmsg+0x10/0x10 [ 200.708646][ T8195] ? trace_lock_acquire+0x14e/0x1f0 [ 200.708672][ T8195] __sys_sendmmsg+0x201/0x420 [ 200.708693][ T8195] ? __pfx___sys_sendmmsg+0x10/0x10 [ 200.708718][ T8195] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 200.708743][ T8195] ? fput+0x67/0x440 [ 200.708756][ T8195] ? ksys_write+0x1ba/0x250 [ 200.708773][ T8195] ? __pfx_ksys_write+0x10/0x10 [ 200.708793][ T8195] __x64_sys_sendmmsg+0x9c/0x100 [ 200.708811][ T8195] ? lockdep_hardirqs_on+0x7c/0x110 [ 200.708827][ T8195] do_syscall_64+0xcd/0x250 [ 200.708845][ T8195] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 200.708863][ T8195] RIP: 0033:0x7fdfa6b8d169 [ 200.708874][ T8195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 200.708887][ T8195] RSP: 002b:00007fdfa7978038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 200.708899][ T8195] RAX: ffffffffffffffda RBX: 00007fdfa6da5fa0 RCX: 00007fdfa6b8d169 [ 200.708907][ T8195] RDX: 0000000000000005 RSI: 0000400000000140 RDI: 0000000000000003 [ 200.708915][ T8195] RBP: 00007fdfa7978090 R08: 0000000000000000 R09: 0000000000000000 [ 200.708923][ T8195] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001 [ 200.708930][ T8195] R13: 0000000000000000 R14: 00007fdfa6da5fa0 R15: 00007ffe0fdba6e8 [ 200.708947][ T8195] [ 201.617680][ T8198] usb usb15: usbfs: process 8198 (syz.0.642) did not claim interface 0 before use [ 202.497864][ T8217] netlink: 'syz.1.646': attribute type 1 has an invalid length. [ 202.596198][ T8221] FAULT_INJECTION: forcing a failure. [ 202.596198][ T8221] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 202.618770][ T8223] openvswitch: HfR: Dropping previously announced user features [ 202.758680][ T8221] CPU: 1 UID: 0 PID: 8221 Comm: syz.3.648 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 202.758700][ T8221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 202.758708][ T8221] Call Trace: [ 202.758712][ T8221] [ 202.758717][ T8221] dump_stack_lvl+0x16c/0x1f0 [ 202.758740][ T8221] should_fail_ex+0x50a/0x650 [ 202.758762][ T8221] _copy_from_user+0x2e/0xd0 [ 202.758777][ T8221] vmemdup_user+0x6c/0x100 [ 202.758795][ T8221] __sys_bpf+0x3b8c/0x49c0 [ 202.758816][ T8221] ? __pfx___sys_bpf+0x10/0x10 [ 202.758834][ T8221] ? vfs_write+0x306/0x1150 [ 202.758855][ T8221] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 202.758881][ T8221] ? fput+0x67/0x440 [ 202.758894][ T8221] ? ksys_write+0x1ba/0x250 [ 202.758918][ T8221] ? __pfx_ksys_write+0x10/0x10 [ 202.758938][ T8221] __x64_sys_bpf+0x78/0xc0 [ 202.758949][ T8221] ? lockdep_hardirqs_on+0x7c/0x110 [ 202.758965][ T8221] do_syscall_64+0xcd/0x250 [ 202.758983][ T8221] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.759000][ T8221] RIP: 0033:0x7fc937b8d169 [ 202.759011][ T8221] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 202.759024][ T8221] RSP: 002b:00007fc938a0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 202.759037][ T8221] RAX: ffffffffffffffda RBX: 00007fc937da5fa0 RCX: 00007fc937b8d169 [ 202.759045][ T8221] RDX: 000000000000000c RSI: 00004000000001c0 RDI: 0000000000000004 [ 202.759053][ T8221] RBP: 00007fc938a0e090 R08: 0000000000000000 R09: 0000000000000000 [ 202.759061][ T8221] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 202.759069][ T8221] R13: 0000000000000000 R14: 00007fc937da5fa0 R15: 00007ffebaa06608 [ 202.759084][ T8221] [ 203.410169][ T8231] FAULT_INJECTION: forcing a failure. [ 203.410169][ T8231] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 203.472671][ T8234] FAULT_INJECTION: forcing a failure. [ 203.472671][ T8234] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 203.496529][ T8231] CPU: 1 UID: 0 PID: 8231 Comm: syz.2.653 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 203.496551][ T8231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 203.496559][ T8231] Call Trace: [ 203.496563][ T8231] [ 203.496569][ T8231] dump_stack_lvl+0x16c/0x1f0 [ 203.496591][ T8231] should_fail_ex+0x50a/0x650 [ 203.496611][ T8231] ? __pfx___might_resched+0x10/0x10 [ 203.496633][ T8231] should_fail_alloc_page+0xe7/0x130 [ 203.496648][ T8231] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 203.496669][ T8231] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 203.496690][ T8231] ? hlock_class+0x4e/0x130 [ 203.496703][ T8231] ? mark_lock+0xb5/0xc60 [ 203.496722][ T8231] ? __pfx_mark_lock+0x10/0x10 [ 203.496739][ T8231] ? register_lock_class+0xb1/0x1240 [ 203.496757][ T8231] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 203.496778][ T8231] ? find_next_iomem_res+0x3fb/0x4f0 [ 203.496791][ T8231] ? __pfx_register_lock_class+0x10/0x10 [ 203.496809][ T8231] ? trace_lock_acquire+0x14e/0x1f0 [ 203.496827][ T8231] ? hlock_class+0x4e/0x130 [ 203.496839][ T8231] ? __lock_acquire+0x15a9/0x3c40 [ 203.496857][ T8231] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 203.496884][ T8231] ? policy_nodemask+0xea/0x4e0 [ 203.496906][ T8231] alloc_pages_mpol+0x1fc/0x540 [ 203.496919][ T8231] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 203.496936][ T8231] alloc_pages_noprof+0x131/0x390 [ 203.496949][ T8231] __pmd_alloc+0x3f/0x870 [ 203.496967][ T8231] remap_pfn_range_internal+0xb47/0xdb0 [ 203.496985][ T8231] ? __pfx_lock_release+0x10/0x10 [ 203.497002][ T8231] ? track_pfn_remap+0x2c3/0x490 [ 203.497019][ T8231] ? __pfx_remap_pfn_range_internal+0x10/0x10 [ 203.497038][ T8231] ? up_write+0x1b2/0x520 [ 203.497061][ T8231] remap_pfn_range+0xcb/0x160 [ 203.497078][ T8231] ? __pfx_remap_pfn_range+0x10/0x10 [ 203.497096][ T8231] ? alloc_pages_noprof+0x23c/0x390 [ 203.497111][ T8231] usbdev_mmap+0x7da/0xb30 [ 203.497134][ T8231] ? __pfx_usbdev_mmap+0x10/0x10 [ 203.497153][ T8231] ? __raw_spin_lock_init+0x3a/0x110 [ 203.497176][ T8231] __mmap_region+0x181f/0x2760 [ 203.497190][ T8231] ? __pfx___mmap_region+0x10/0x10 [ 203.497207][ T8231] ? hlock_class+0x4e/0x130 [ 203.497219][ T8231] ? mark_lock+0xb5/0xc60 [ 203.497241][ T8231] ? hlock_class+0x4e/0x130 [ 203.497280][ T8231] mmap_region+0x32b/0x3f0 [ 203.497295][ T8231] do_mmap+0xd8d/0x11b0 [ 203.497315][ T8231] ? __pfx_do_mmap+0x10/0x10 [ 203.497331][ T8231] ? __pfx_down_write_killable+0x10/0x10 [ 203.497354][ T8231] vm_mmap_pgoff+0x203/0x3a0 [ 203.497375][ T8231] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 203.497394][ T8231] ? __fget_files+0x206/0x3a0 [ 203.497415][ T8231] ksys_mmap_pgoff+0x32c/0x5c0 [ 203.497431][ T8231] ? __pfx_ksys_write+0x10/0x10 [ 203.497450][ T8231] __x64_sys_mmap+0x125/0x190 [ 203.497471][ T8231] do_syscall_64+0xcd/0x250 [ 203.497489][ T8231] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 203.497508][ T8231] RIP: 0033:0x7fdfa6b8d169 [ 203.497518][ T8231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 203.497531][ T8231] RSP: 002b:00007fdfa7978038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 203.497544][ T8231] RAX: ffffffffffffffda RBX: 00007fdfa6da5fa0 RCX: 00007fdfa6b8d169 [ 203.497552][ T8231] RDX: 0000000000000008 RSI: 0000000000000009 RDI: 0000000000002000 [ 203.497560][ T8231] RBP: 00007fdfa7978090 R08: 0000000000000003 R09: 0000000000000000 [ 203.497568][ T8231] R10: 0008000000008011 R11: 0000000000000246 R12: 0000000000000001 [ 203.497575][ T8231] R13: 0000000000000000 R14: 00007fdfa6da5fa0 R15: 00007ffe0fdba6e8 [ 203.497591][ T8231] [ 203.497649][ T8231] ------------[ cut here ]------------ [ 203.929825][ T8231] WARNING: CPU: 1 PID: 8231 at arch/x86/mm/pat/memtype.c:983 get_pat_info+0x2c1/0x320 [ 203.941547][ T8231] Modules linked in: [ 203.946237][ T8231] CPU: 1 UID: 0 PID: 8231 Comm: syz.2.653 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 203.958977][ T8231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 203.971063][ T8231] RIP: 0010:get_pat_info+0x2c1/0x320 [ 203.977438][ T8231] Code: 49 89 1c 24 e9 0f ff ff ff e8 5b 49 4e 00 90 0f 0b 90 e9 ff fd ff ff 4c 89 ef e8 ba 88 b0 00 e9 f0 fe ff ff e8 40 49 4e 00 90 <0f> 0b 90 bb ea ff ff ff e9 e3 fe ff ff 4c 89 ff e8 aa 87 b0 00 e9 [ 204.001178][ T8231] RSP: 0018:ffffc9000b63f418 EFLAGS: 00010293 [ 204.008476][ T8231] RAX: 0000000000000000 RBX: ffff88802f8a95d0 RCX: ffffffff816b9764 [ 204.018061][ T8231] RDX: ffff888027e01e00 RSI: ffffffff816b97e0 RDI: 0000000000000007 [ 204.027975][ T8231] RBP: 1ffff920016c7e84 R08: 0000000000000007 R09: 0000000000000020 [ 204.037867][ T8231] R10: 0000000000000028 R11: 0000000000000001 R12: ffffc9000b63f520 [ 204.047614][ T8231] R13: 0000000000000000 R14: 0000000000000028 R15: ffff88802f8a95f0 [ 204.057201][ T8231] FS: 00007fdfa79786c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 204.067933][ T8231] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 204.075811][ T8231] CR2: 00007f7462fa7bac CR3: 000000005e676000 CR4: 00000000003526f0 [ 204.085429][ T8231] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 204.095011][ T8231] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 204.104605][ T8231] Call Trace: [ 204.108548][ T8231] [ 204.112043][ T8231] ? __warn+0xea/0x3c0 [ 204.117152][ T8231] ? get_pat_info+0x2c1/0x320 [ 204.122747][ T8231] ? report_bug+0x3c0/0x580 [ 204.128150][ T8231] ? handle_bug+0x54/0xa0 [ 204.133671][ T8231] ? exc_invalid_op+0x17/0x50 [ 204.139559][ T8231] ? asm_exc_invalid_op+0x1a/0x20 [ 204.145570][ T8231] ? get_pat_info+0x244/0x320 [ 204.151185][ T8231] ? get_pat_info+0x2c0/0x320 [ 204.156818][ T8231] ? get_pat_info+0x2c1/0x320 [ 204.162417][ T8231] ? get_pat_info+0x2c0/0x320 [ 204.168890][ T8231] ? __pfx_get_pat_info+0x10/0x10 [ 204.174934][ T8231] ? __lock_acquire+0x15a9/0x3c40 [ 204.181196][ T8231] untrack_pfn+0xf7/0x4d0 [ 204.186366][ T8231] ? __pfx_untrack_pfn+0x10/0x10 [ 204.192313][ T8231] ? zap_page_range_single+0x302/0x550 [ 204.198865][ T8231] ? __pfx_lock_release+0x10/0x10 [ 204.204868][ T8231] ? uprobe_munmap+0x20/0x5c0 [ 204.210478][ T8231] ? trace_lock_acquire+0x14e/0x1f0 [ 204.216718][ T8231] unmap_single_vma+0x1bd/0x2b0 [ 204.222516][ T8231] zap_page_range_single+0x321/0x550 [ 204.228878][ T8231] ? __pfx_zap_page_range_single+0x10/0x10 [ 204.236172][ T8231] ? remap_pfn_range_internal+0xadb/0xdb0 [ 204.243320][ T8231] ? track_pfn_remap+0x2c3/0x490 [ 204.249264][ T8231] remap_pfn_range+0x130/0x160 [ 204.254998][ T8231] ? __pfx_remap_pfn_range+0x10/0x10 [ 204.261358][ T8231] ? alloc_pages_noprof+0x23c/0x390 [ 204.267598][ T8231] usbdev_mmap+0x7da/0xb30 [ 204.272879][ T8231] ? __pfx_usbdev_mmap+0x10/0x10 [ 204.278814][ T8231] ? __raw_spin_lock_init+0x3a/0x110 [ 204.285144][ T8231] __mmap_region+0x181f/0x2760 [ 204.290902][ T8231] ? __pfx___mmap_region+0x10/0x10 [ 204.297068][ T8231] ? hlock_class+0x4e/0x130 [ 204.302444][ T8231] ? mark_lock+0xb5/0xc60 [ 204.307657][ T8231] ? hlock_class+0x4e/0x130 [ 204.313063][ T8231] mmap_region+0x32b/0x3f0 [ 204.318368][ T8231] do_mmap+0xd8d/0x11b0 [ 204.323335][ T8231] ? __pfx_do_mmap+0x10/0x10 [ 204.328926][ T8231] ? __pfx_down_write_killable+0x10/0x10 [ 204.335994][ T8231] vm_mmap_pgoff+0x203/0x3a0 [ 204.341786][ T8231] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 204.347929][ T8231] ? __fget_files+0x206/0x3a0 [ 204.353521][ T8231] ksys_mmap_pgoff+0x32c/0x5c0 [ 204.359253][ T8231] ? __pfx_ksys_write+0x10/0x10 [ 204.365054][ T8231] __x64_sys_mmap+0x125/0x190 [ 204.370701][ T8231] do_syscall_64+0xcd/0x250 [ 204.376085][ T8231] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 204.383159][ T8231] RIP: 0033:0x7fdfa6b8d169 [ 204.388458][ T8231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 204.412053][ T8231] RSP: 002b:00007fdfa7978038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 204.422169][ T8231] RAX: ffffffffffffffda RBX: 00007fdfa6da5fa0 RCX: 00007fdfa6b8d169 [ 204.431752][ T8231] RDX: 0000000000000008 RSI: 0000000000000009 RDI: 0000000000002000 [ 204.441677][ T8231] RBP: 00007fdfa7978090 R08: 0000000000000003 R09: 0000000000000000 [ 204.451513][ T8231] R10: 0008000000008011 R11: 0000000000000246 R12: 0000000000000001 [ 204.461087][ T8231] R13: 0000000000000000 R14: 00007fdfa6da5fa0 R15: 00007ffe0fdba6e8 [ 204.470670][ T8231] [ 204.474277][ T8231] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 204.482983][ T8231] CPU: 1 UID: 0 PID: 8231 Comm: syz.2.653 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 [ 204.495659][ T8231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 204.507691][ T8231] Call Trace: [ 204.511595][ T8231] [ 204.515083][ T8231] dump_stack_lvl+0x3d/0x1f0 [ 204.520566][ T8231] panic+0x71d/0x800 [ 204.525211][ T8231] ? __pfx_panic+0x10/0x10 [ 204.530478][ T8231] ? show_trace_log_lvl+0x29d/0x3d0 [ 204.536693][ T8231] ? check_panic_on_warn+0x1f/0xb0 [ 204.542795][ T8231] ? get_pat_info+0x2c1/0x320 [ 204.548386][ T8231] check_panic_on_warn+0xab/0xb0 [ 204.554284][ T8231] __warn+0xf6/0x3c0 [ 204.558925][ T8231] ? get_pat_info+0x2c1/0x320 [ 204.564513][ T8231] report_bug+0x3c0/0x580 [ 204.569682][ T8231] handle_bug+0x54/0xa0 [ 204.574642][ T8231] exc_invalid_op+0x17/0x50 [ 204.580021][ T8231] asm_exc_invalid_op+0x1a/0x20 [ 204.585834][ T8231] RIP: 0010:get_pat_info+0x2c1/0x320 [ 204.592149][ T8231] Code: 49 89 1c 24 e9 0f ff ff ff e8 5b 49 4e 00 90 0f 0b 90 e9 ff fd ff ff 4c 89 ef e8 ba 88 b0 00 e9 f0 fe ff ff e8 40 49 4e 00 90 <0f> 0b 90 bb ea ff ff ff e9 e3 fe ff ff 4c 89 ff e8 aa 87 b0 00 e9 [ 204.615646][ T8231] RSP: 0018:ffffc9000b63f418 EFLAGS: 00010293 [ 204.622894][ T8231] RAX: 0000000000000000 RBX: ffff88802f8a95d0 RCX: ffffffff816b9764 [ 204.632430][ T8231] RDX: ffff888027e01e00 RSI: ffffffff816b97e0 RDI: 0000000000000007 [ 204.641966][ T8231] RBP: 1ffff920016c7e84 R08: 0000000000000007 R09: 0000000000000020 [ 204.651499][ T8231] R10: 0000000000000028 R11: 0000000000000001 R12: ffffc9000b63f520 [ 204.661053][ T8231] R13: 0000000000000000 R14: 0000000000000028 R15: ffff88802f8a95f0 [ 204.670602][ T8231] ? get_pat_info+0x244/0x320 [ 204.676213][ T8231] ? get_pat_info+0x2c0/0x320 [ 204.681811][ T8231] ? get_pat_info+0x2c0/0x320 [ 204.687408][ T8231] ? __pfx_get_pat_info+0x10/0x10 [ 204.693443][ T8231] ? __lock_acquire+0x15a9/0x3c40 [ 204.699456][ T8231] untrack_pfn+0xf7/0x4d0 [ 204.704624][ T8231] ? __pfx_untrack_pfn+0x10/0x10 [ 204.710520][ T8231] ? zap_page_range_single+0x302/0x550 [ 204.717045][ T8231] ? __pfx_lock_release+0x10/0x10 [ 204.723046][ T8231] ? uprobe_munmap+0x20/0x5c0 [ 204.728632][ T8231] ? trace_lock_acquire+0x14e/0x1f0 [ 204.734845][ T8231] unmap_single_vma+0x1bd/0x2b0 [ 204.740644][ T8231] zap_page_range_single+0x321/0x550 [ 204.746980][ T8231] ? __pfx_zap_page_range_single+0x10/0x10 [ 204.753921][ T8231] ? remap_pfn_range_internal+0xadb/0xdb0 [ 204.760766][ T8231] ? track_pfn_remap+0x2c3/0x490 [ 204.766670][ T8231] remap_pfn_range+0x130/0x160 [ 204.772388][ T8231] ? __pfx_remap_pfn_range+0x10/0x10 [ 204.778719][ T8231] ? alloc_pages_noprof+0x23c/0x390 [ 204.784939][ T8231] usbdev_mmap+0x7da/0xb30 [ 204.790241][ T8231] ? __pfx_usbdev_mmap+0x10/0x10 [ 204.796173][ T8231] ? __raw_spin_lock_init+0x3a/0x110 [ 204.802512][ T8231] __mmap_region+0x181f/0x2760 [ 204.808221][ T8231] ? __pfx___mmap_region+0x10/0x10 [ 204.814346][ T8231] ? hlock_class+0x4e/0x130 [ 204.819730][ T8231] ? mark_lock+0xb5/0xc60 [ 204.824917][ T8231] ? hlock_class+0x4e/0x130 [ 204.830319][ T8231] mmap_region+0x32b/0x3f0 [ 204.835597][ T8231] do_mmap+0xd8d/0x11b0 [ 204.840592][ T8231] ? __pfx_do_mmap+0x10/0x10 [ 204.846073][ T8231] ? __pfx_down_write_killable+0x10/0x10 [ 204.852809][ T8231] vm_mmap_pgoff+0x203/0x3a0 [ 204.858294][ T8231] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 204.864403][ T8231] ? __fget_files+0x206/0x3a0 [ 204.870011][ T8231] ksys_mmap_pgoff+0x32c/0x5c0 [ 204.875712][ T8231] ? __pfx_ksys_write+0x10/0x10 [ 204.881515][ T8231] __x64_sys_mmap+0x125/0x190 [ 204.887110][ T8231] do_syscall_64+0xcd/0x250 [ 204.892499][ T8231] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 204.899549][ T8231] RIP: 0033:0x7fdfa6b8d169 [ 204.904822][ T8231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 204.928320][ T8231] RSP: 002b:00007fdfa7978038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 204.938385][ T8231] RAX: ffffffffffffffda RBX: 00007fdfa6da5fa0 RCX: 00007fdfa6b8d169 [ 204.947921][ T8231] RDX: 0000000000000008 RSI: 0000000000000009 RDI: 0000000000002000 [ 204.957454][ T8231] RBP: 00007fdfa7978090 R08: 0000000000000003 R09: 0000000000000000 [ 204.966986][ T8231] R10: 0008000000008011 R11: 0000000000000246 R12: 0000000000000001 [ 204.976522][ T8231] R13: 0000000000000000 R14: 00007fdfa6da5fa0 R15: 00007ffe0fdba6e8 [ 204.986064][ T8231] [ 204.989716][ T8231] Kernel Offset: disabled [ 204.994988][ T8231] Rebooting in 86400 seconds..