last executing test programs: 1m27.537418771s ago: executing program 2 (id=1871): mmap$auto(0x0, 0x7, 0x7, 0xeb1, 0x404, 0x8000) io_uring_setup$auto(0x9, 0x0) r0 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x640, 0x0) ioctl$auto_MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000080)={0x0, 0x0}) msgctl$auto_IPC_INFO(0x1, 0x3, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) fsconfig$auto(r1, 0x4, &(0x7f0000000080)='+\x00\xc04\x95\x96XD\x11T\x11\xac@\xb9\'\xa8\x99\xf6\x99\xad\xa2w\xd55\xea|-&\v\xa9\xc5\xb1\xc6\n\xb0{\xe8', 0x0, 0x0) socket(0x10, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_adf_ctl_ops_adf_ctl_drv(0xffffffffffffff9c, &(0x7f0000000000), 0x140, 0x0) ioctl$auto_IOCTL_GET_NUM_DEVICES(r2, 0x40046104, &(0x7f0000000040)=0xffff07d4) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000380)='/proc/self/net/rxrpc/calls\x00', 0x20080, 0x0) pread64$auto(r3, 0x0, 0x1fffdffe, 0x8) r4 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto(r4, 0xc0105512, r4) io_uring_setup$auto(0x59, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(0xffffffffffffffff, 0xc4c85512, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x64842, 0x2) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/ptyq3\x00', 0x40001, 0x0) write$auto(0x3, 0x0, 0x7fffffff) ioctl$auto_TIOCSETD2(r5, 0x5423, 0x0) close_range$auto(0x2, 0x8, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) read$auto_mon_fops_binary_mon_bin(r0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) 1m27.40430416s ago: executing program 2 (id=1874): r0 = prctl$auto_PR_RISCV_V_GET_CONTROL(0x46, 0xa, 0xffffffffffffffff, 0x5, 0xed) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0xa02, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = socket(0x2, 0x6, 0x0) flistxattr$auto(r1, &(0x7f0000000200)='\x00', 0x4) read$auto(0xffffffffffffffff, 0x0, 0x805644) r2 = socket(0xa, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x8000, &(0x7f0000000180)={0x6, 0x6, 0x8, 0x7fff, 0x2, 0xfffe, 0xffffffffffffffff, [], {0x6, 0x9, 0x10001, 0x6, 0x9, 0x2d9, 0xfffffff9, 0x7ff, 0x18}, {0x5, 0x60b, 0x1000, 0x2, 0x200, 0x1, 0xff, 0x6, 0xe0000000000000}}) getsockopt$auto(r2, 0x84, 0x2, 0x0, 0x0) r3 = syz_genetlink_get_family_id$auto_handshake(&(0x7f0000000080), r0) sendmsg$auto_HANDSHAKE_CMD_DONE(r2, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="080026bd7000fedbdf2503000000080000", @ANYRES32=r0, @ANYBLOB="08000300ff0f0000"], 0x24}}, 0x20004801) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x682, 0x0) ioctl$auto_SOUND_MIXER_READ_STEREODEVS2(r4, 0x80044dfb, &(0x7f0000000040)) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/dummy_hcd.7/usb8/authorized_default\x00', 0x101002, 0x0) write$auto(r5, &(0x7f0000000000)='\x00\x00\x00\x00\x00\xab\x00\x00\x00\x00\x00\x00\x00\x00', 0x400000002) ioctl$auto(r1, 0x891b, 0x24) setxattrat$auto(0xffffffffffffffff, 0x0, 0x84, 0x0, &(0x7f0000000280)={0x600000000000, 0x6, 0x4}, 0xaf) 1m27.122662318s ago: executing program 2 (id=1879): pipe2$auto(&(0x7f0000001800)=0xffffffffffffffff, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty46\x00', 0x0, 0x0) msgctl$auto_MSG_INFO(0x7f, 0xc, &(0x7f00000000c0)={{0x2, 0x0, 0x0, 0x8d4, 0x2, 0xdb2}, &(0x7f0000000040)=0x1, &(0x7f0000000080)=0x1, 0x6, 0x4, 0x6, 0x3, 0xbccf, 0xf92b, 0x1, 0x8001, @raw=0xd5, @inferred=0xffffffffffffffff}) statx$auto(r0, &(0x7f0000000140)='./file0\x00', 0x84a7, 0xff, &(0x7f0000000180)={0x9, 0x0, 0x1, 0xff, 0x0, 0x0, 0x7, 0x7, 0x1, 0xf502, 0x6, 0x9, {0x2e0b, 0x5}, {0xf, 0x1}, {0x2, 0x7}, {0x3, 0x8001}, 0x6, 0x8001, 0xe2a1, 0x7, 0x81, 0x6, 0x2, 0xc37, 0x5, 0x3, 0x111c, 0x100, [0x8, 0x1ff, 0x6, 0x8, 0x10001, 0x8cc, 0x4, 0x0, 0x9]}) r4 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={0xc4a00, 0x2}, 0x18) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) r9 = bpf$auto(0xfffff001, &(0x7f0000000000)=@bpf_attr_3={0xa332, 0x2, 0x7, 0x3, 0xfffffbff, 0x2, 0x1, 0x4, 0x6, "0108a5172d53c2dc73bf58e1423b2178", 0x0, 0x9, 0xffffffffffffffff, 0x81, 0x8, 0x81, 0xb03, 0x0, 0x3ff, 0x7, @attach_prog_fd, 0x2, 0x2, 0x3, 0x9, 0x8}, 0xa3) r10 = syz_genetlink_get_family_id$auto_mac802154_hwsim(&(0x7f0000000140), r9) sendmsg$auto_MAC802154_HWSIM_CMD_NEW_RADIO(r8, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB="b0000000", @ANYRES16=r10, @ANYBLOB="000026bd7000fbdbdf25030000009a000280055ccda3c9796f5f8add8296fb24012bd6cf3edf6c874203d630d30a2b62858942bdd7fd2ac81f8b04e10dd08e119c26084ed037621f788d90d6a4f5b155c006cb8889d01d001c1b8d94bff262cbebaca0bcca78498a8dc6a1c8dcb2ae3391bbde1ccddc2e1037ab9cac4e7ccf0679c1e8d3fbab389e775c1ea5c09260c668e35068c5eec912928dd37cbcbe00"], 0xb0}, 0x1, 0x0, 0x0, 0x80}, 0x60000000) r11 = fcntl$getown(r5, 0x9) r12 = getpid() process_vm_readv$auto(r12, &(0x7f0000000000)={0x0, 0xfff}, 0x800000001, &(0x7f0000000280)={&(0x7f0000000080), 0x1ffffffff}, 0x6, 0x0) r13 = getpid() process_vm_readv$auto(r13, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000040)="11ce06d2b810367182e7d96d42f1e6d37be145265310615a0abe12a112f97af0209bd9ffff6f5d6bc75228524a8a385729f2f0f836c04984d7", 0x40000100000001}, 0x6, 0x0) sendmsg$auto_MAC802154_HWSIM_CMD_SET_EDGE(r7, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000100)={&(0x7f0000000500)=ANY=[@ANYBLOB="6c030000", @ANYRES16=r10, @ANYBLOB="20082bacac00ffdbdf2506000000560302030000000000000000", @ANYRES32=r11, @ANYBLOB="bbd31a37b7f56d5b5161215c0fa4f500988008000d00", @ANYRES32=r12, @ANYBLOB="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", @ANYRES32=r4, @ANYBLOB="9a2250c4c304bcd55d06188781c33fba091c748c925f862b487115bd36b3faca9c8e59da22e67add6b29eda97e98c5dea2cd8267bd93316e4f1728f2b9c9bd954737e38d2888c07e8611ec597e22a3f453edc1785ef8c45636d9870099220afcceae5ec774532a879652e46154eaf48a1cf932a0dd675578c72ddc445b92c30239f7da4c0b12e137eefa7d2151e1f4c90ea6390108002400", @ANYRES32=r6, @ANYBLOB='\b\x008\x00', @ANYRES32=r13, @ANYBLOB="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"], 0x36c}, 0x1, 0x0, 0x0, 0x6001}, 0x24) r14 = getpgid$auto(0xffffffffffffffff) shmctl$auto(0x7, 0xff, &(0x7f0000001340)={{0x3, r2, r3, 0x8, 0x2, 0x1, 0xfff}, 0x0, 0x7, 0xde44, 0xffffffffffffff80, @inferred=r12, @inferred=r14, 0x4, 0x0, &(0x7f0000000280)="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", &(0x7f0000001280)="7b8e7ee7de2d75656eab7ffe48fa41cb8ceaa79c5bb1ca179e5e04146d1f1aea0764829539ab2895334e63e12c6643ab428fec886164d0a55a4b73a4c1d7dc51d97e6b5aa7debac972eb895bc85b2c74a9fd7d13e54ef896ccad2350425749e346c59f29c6bf28251b74d4333c1fe14b0762aa0cf016607fd074b88efa3bcb6c4f987cfbc05375384bd8e2b70a49267ef4d20eefe30fe2a0afeb1d21194b69e1849de121c4b8e7be3702c16cd89066cb5814d54040257518"}) ioctl$auto(r1, 0x5608, r0) 1m26.882539292s ago: executing program 2 (id=1882): r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x3, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x1) (async) socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32) madvise$auto(0x0, 0x2000040080000004, 0xe) (async, rerun: 32) r1 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000001b40)='/dev/cuse\x00', 0x40, 0x0) readv$auto(r1, &(0x7f0000001c00)={&(0x7f0000001b80), 0x9873}, 0x6) (async) r2 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x10a) open_by_handle_at$auto(r2, &(0x7f0000000040)={0x8, 0x20002, "0600000000000000"}, 0x2) (async, rerun: 64) sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, 0x0, 0x4040) (async, rerun: 64) unshare$auto(0x40000080) (async, rerun: 32) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32) sysfs$auto(0xff000002, 0x0, 0x1) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r3 = socket(0x2, 0x801, 0x106) getsockopt$auto(r3, 0x11c, 0x4, 0x0, 0x0) madvise$auto(0x1000, 0x5, 0x15) (async, rerun: 64) mmap$auto(0x3, 0x400006, 0xdf, 0x15, 0xffffffffffffffff, 0x6000000000000) (async, rerun: 64) newfstatat$auto(0xffffffffffffffff, 0x0, 0x0, 0x1000) (async, rerun: 64) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/memfd_noexec\x00', 0x2, 0x0) (rerun: 64) pwrite64$auto(r4, &(0x7f0000000080)='+\\#', 0x3747, 0x100) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001100)='/sys/devices/virtual/dmi/id/modalias\x00', 0x40280, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000000)=""/4118, 0x1016) (async) msync$auto(0x1ffff001, 0x180040000000021, 0xf52) r6 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001040)='/sys/devices/platform/dummy_hcd.2/usbmon/usbmon3/uevent\x00', 0x723800, 0x0) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000001080), 0x0, 0x0) (async, rerun: 32) read$auto_rng_chrdev_ops_core(r6, &(0x7f0000000040)=""/4096, 0xfffffe82) (rerun: 32) 1m26.691177689s ago: executing program 2 (id=1885): socket(0x10, 0x3, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x143341, 0x0) write$auto_fuse_dev_operations_fuse_i(r0, &(0x7f0000000440)="110000000500"/17, 0x11) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) clock_settime$auto(0xfffefffb, &(0x7f0000000000)={0x7ffffffffffffffb, 0x100}) mmap$auto(0x0, 0x20009, 0x7ff, 0xeb1, 0x401, 0x6) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x80400, 0x0) read$auto(r1, 0x0, 0x6) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/fail-nth\x00', 0x802, 0x0) close_range$auto(0x2, 0x8, 0x0) set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x2000040080000004, 0xe) io_uring_setup$auto(0x6, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0xb}, 0x3) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000003fc0)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20a02, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/vkms/graphics/fb0/state\x00', 0xc2481, 0x0) write$auto(r3, 0x0, 0x81) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000000), 0xffffffffffffffff) syz_genetlink_get_family_id$auto_batadv(&(0x7f00000001c0), 0xffffffffffffffff) r4 = openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000003b00)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x600, 0x0) readv$auto(r4, 0x0, 0x3) 1m25.400151709s ago: executing program 2 (id=1892): r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) sendto$auto(r0, &(0x7f0000000100)="345e6a170bcf650b2e47fd1eed7ab873f7accacdb1516c321263ce32cc568da541b937f75b816d55c1efa5612b52b59edd5cfd921d6c9a784315f93cd0892f066370d598c98fcd76bd137f7ee6a3199a20eeff99107eea78a3c8ecb64d3eaf6494cfd3590b153548ae4235e7c4a29ace154ca5f7b999c0cce429c1efdd8edefd6658c9c904fcd19abbad1e842a3fa0597636e1c059bbc31be38bb1146e425a6722465ec280a67d39efc952", 0x57e, 0x8, &(0x7f00000001c0)=@phonet={0x23, 0xd, 0x3, 0x77}, 0x80000000) futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4, 0x4}, 0x77, 0x0, 0x0, 0x62bd) io_uring_register$auto(0xffffffffffffffff, 0xb1, &(0x7f0000000080)="991d5bd609356891a9e3f1cd1f3c35661e2bc876946dc83a19bc41de78a9550596716c63ba8b1b8e3b0f8ca3e68aa87f4e1adf3fb9fea384ff62d8196a030657719528b3ad04020fa81ffc26c2a4f9", 0xfffffffd) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x17, &(0x7f00000000c0), 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = io_uring_setup$auto(0x6, 0x0) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/tracing/set_event\x00', 0x44002, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_register$auto(r1, 0xffdffffe, &(0x7f0000000200)="69ae7f5ca2edd5198b7c609112af8e50d4ddde4a6fa26788cdb9293c260a09594d21c45f2a3281056b78e160372a6fb98c3a009c162d49ec85bd5ba2ce38b211fc152c1d3b8b7ce8dafbda5debd8d447167c21ba1732d6ebaf18e761c88615040b37a439d8fb9373422d06b114bb60b1dbf6639fa88cc671b4b47badaa96404c9dc84a6eee503b02e0548796197b5b584a3e0ac28cc68fa95134c64949b5010e", 0x86) io_uring_register$auto(0x2, 0x6, 0x0, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) io_uring_setup$auto(0x6, 0x0) setrlimit$auto(0x4, &(0x7f00000000c0)={0x8000000000000000, 0x5}) signalfd4$auto(r0, &(0x7f0000000080)={0x6}, 0x9, 0xffffffff) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0xb) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x5, 0x0) shutdown$auto(0x200000003, 0x2) ioctl$auto(0x3, 0x400454ca, 0x38) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0) poll$auto(&(0x7f0000000040)={0x3, 0x1, 0x5}, 0x5, 0x80000000) 1m10.156358655s ago: executing program 32 (id=1892): r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) sendto$auto(r0, &(0x7f0000000100)="345e6a170bcf650b2e47fd1eed7ab873f7accacdb1516c321263ce32cc568da541b937f75b816d55c1efa5612b52b59edd5cfd921d6c9a784315f93cd0892f066370d598c98fcd76bd137f7ee6a3199a20eeff99107eea78a3c8ecb64d3eaf6494cfd3590b153548ae4235e7c4a29ace154ca5f7b999c0cce429c1efdd8edefd6658c9c904fcd19abbad1e842a3fa0597636e1c059bbc31be38bb1146e425a6722465ec280a67d39efc952", 0x57e, 0x8, &(0x7f00000001c0)=@phonet={0x23, 0xd, 0x3, 0x77}, 0x80000000) futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4, 0x4}, 0x77, 0x0, 0x0, 0x62bd) io_uring_register$auto(0xffffffffffffffff, 0xb1, &(0x7f0000000080)="991d5bd609356891a9e3f1cd1f3c35661e2bc876946dc83a19bc41de78a9550596716c63ba8b1b8e3b0f8ca3e68aa87f4e1adf3fb9fea384ff62d8196a030657719528b3ad04020fa81ffc26c2a4f9", 0xfffffffd) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x17, &(0x7f00000000c0), 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = io_uring_setup$auto(0x6, 0x0) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/tracing/set_event\x00', 0x44002, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_register$auto(r1, 0xffdffffe, &(0x7f0000000200)="69ae7f5ca2edd5198b7c609112af8e50d4ddde4a6fa26788cdb9293c260a09594d21c45f2a3281056b78e160372a6fb98c3a009c162d49ec85bd5ba2ce38b211fc152c1d3b8b7ce8dafbda5debd8d447167c21ba1732d6ebaf18e761c88615040b37a439d8fb9373422d06b114bb60b1dbf6639fa88cc671b4b47badaa96404c9dc84a6eee503b02e0548796197b5b584a3e0ac28cc68fa95134c64949b5010e", 0x86) io_uring_register$auto(0x2, 0x6, 0x0, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) io_uring_setup$auto(0x6, 0x0) setrlimit$auto(0x4, &(0x7f00000000c0)={0x8000000000000000, 0x5}) signalfd4$auto(r0, &(0x7f0000000080)={0x6}, 0x9, 0xffffffff) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0xb) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x5, 0x0) shutdown$auto(0x200000003, 0x2) ioctl$auto(0x3, 0x400454ca, 0x38) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0) poll$auto(&(0x7f0000000040)={0x3, 0x1, 0x5}, 0x5, 0x80000000) 7.749078119s ago: executing program 3 (id=2265): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_TIOCEXCL2(r0, 0x540c, &(0x7f0000000040)="e76f1cf7961ce1f5bbfc34f8a3e83ed48461da16f55c546e9876eedf32553383d7059038044b3d4073191f5a981940e664b5f51bb14de9300b859533e8767decf668f997bac9c8a39b93677fefd551eae7e355cc2669d7ba2b0defe437849855c6d020354b98a1b92782ad344cba219ddb6459ffa7faf979d65ce8ffc859c7fc8f4b2c5b6de9caaa1a") socket(0x2, 0x3, 0x6) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) mincore$auto(0x0, 0x10000, 0x0) setsockopt$auto(0x3, 0x0, 0x31, 0x0, 0x28) unshare$auto(0x40000080) r1 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/mm/ksm/pages_to_scan\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000140)=""/151, 0x97) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) sendmsg$auto_TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f0000001440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001400)={&(0x7f0000000080)=ANY=[@ANYRES16=0x0, @ANYBLOB="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"], 0x1354}}, 0x40001) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'ipvlan0\x00'}) madvise$auto(0x0, 0xffffffffffff0001, 0x15) ioctl$auto_dma_heap_fops_dma_heap(r1, 0xffffffffffdffe00, &(0x7f0000000140)) mmap$auto(0x0, 0x4020009, 0xdf, 0x10000000000eb1, 0x401, 0x8000) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_BEARER_GET(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000001280)={&(0x7f0000001300)=ANY=[@ANYBLOB="09010000", @ANYRES16=r4, @ANYBLOB="2d1728bd7000fedbdf2504000000"], 0x14}, 0x1, 0x0, 0x0, 0x24000000}, 0x20008080) capset$auto(&(0x7f0000000180)={0x19980330}, 0x0) openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000040), 0x2dc08f24db163610, 0x0) socket(0x25, 0x6, 0x80000082) openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x20800, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_SEG6_CMD_DUMPHMAC(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x4000010) ioctl$auto_TIOCCONS2(r0, 0x541d, &(0x7f00000002c0)="a56b548cb7f47a6fd293493030475fbc0434c9bc573921661f65e8da7987579edf9750b83a8142f3709fd4f0a72991932a79119459ab050faa873580c5d3bab0f43600c3898aca2d45e7364adecb5560091a2fcd8b752e06d47fb8a637f84068c6ecf5fde0ad2a3a974adf4be937e6c77d700c7fb0cd1dac570818e67141d081b0dad49fda256e54ab970896f949e8bea82217bad91e904e6696dea105ad0b8f636c6ececd6688b92e1103adcd508e00d6e5266ed3bae2f81321e45a189d058379e43618a17e154feea175cfbc2da6a134432377c4b352e2bd") openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/asound/card1/pcm0c/sub6/xrun_injection\x00', 0x12b102, 0x0) 6.40547697s ago: executing program 3 (id=2269): r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/bonding/bond0\x00', 0x20000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x200, 0x1001, 0x0, 0xf, r1, 0x1400000, 0x5}, 0x6f4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) bind$auto(0x3, &(0x7f0000000040)=@ethernet={0x1, @multicast}, 0x6a) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f000000e680), 0x2, 0x0) read$auto_rb_simple_fops_trace(r2, &(0x7f0000000080)=""/38, 0x26) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0x1, 0x0) r3 = fsopen$auto(0x0, 0x1) fsconfig$auto(r3, 0x8, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$auto_gtp(0x0, 0xffffffffffffffff) socket(0xa, 0x2, 0x73) setsockopt$auto(0x4, 0x29, 0x8, 0x0, 0x8) r4 = fsmount$auto(0x4, 0x0, 0x200003) close_range$auto(0x2, 0x8, 0x0) sysfs$auto(0x2, 0xffffffffffff9926, 0x5) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000) arch_prctl$auto(0x1004, 0xe735) write$auto_ecryptfs_miscdev_fops_miscdev(r2, &(0x7f00000001c0)="239cb836edc0", 0x6) ioctl$auto_XFS_IOC_START_COMMIT(r4, 0x80585882, &(0x7f00000000c0)={r2, 0x0, 0x3, 0xffffffffffffffff, 0xa5, 0x5, [0x6, 0x800, 0x0, 0x3, 0x401, 0xfed]}) pread64$auto(r0, &(0x7f0000000040)='/proc/scsi/sg/devices\x00', 0x100000001, 0x100) 4.614210566s ago: executing program 4 (id=2282): close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000880), r1) sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000080)={0x1c, r2, 0x3abba0b2ae0bab93, 0x70bd2c, 0x25dfdbfb, {}, [@BATADV_ATTR_HOP_PENALTY={0xfffffe9a, 0x35, 0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4840}, 0x4040010) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f00000000c0), r1) mmap$auto(0x0, 0x400005, 0x9a, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) connect$auto(0xffffffffffffffff, &(0x7f0000000140)=@qipcrtr={0x2a, 0x1, 0x3fff}, 0x57) r3 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0) write$auto_snd_seq_f_ops_seq_clientmgr(r3, 0x0, 0x0) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x88) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{0x0, 0x5aa, 0x0, 0x5, 0x0, 0x5, 0x1000}, 0x5}, 0x2, 0x100) sendmmsg$auto(0x3, &(0x7f0000000180)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mmap$auto(0x0, 0x4, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0) read$auto(r4, 0x0, 0x20) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/block/loop2/queue/rq_affinity\x00', 0x181901, 0x0) write$auto(r5, &(0x7f00000002c0)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k>\xc8\x1f\xad\xf6\xf0\xef\xe4s\x95\xf2\x00\x97S\xb9O\xac\xbe\xd6\\J<\x02YK\xd6M\xe6\xe7\xa0\xb8\xc3[\x01\xc5\xe8|\xb0\xb0\x80\xbf\xa5?=i\x88UB\x1d\x8e\xd3\xc2\x949\xb6\xfb\x006\x02\x9c\x83\x14\x13\x99\xc7\xb4)M\xed\tN $\xd4\x90^?J\x92\x9a?\xf8b\x03\xd8\xdd\x84\xdf\x92\xf0\xcd\xd8\xba\xab\x15\x80\x9eo,\xc8\xf2\x82\xd2\x88\xbeL\xa0\x1a\xd3\xd5Of\x95\xee\x13e\xeb}o\x9b\x86_\xf0?\f<\xf3t7\xb6\x0f\x93\xc79@\xd8x\x9e\xef!\x006\b\xdbWB\x84\xdd\xac\xdau\x86g\x8f\x02@O7\x0f\xf8\x8d(\x9c\xf2NyD\x7f3\x14\x9eg\xa6\x83\'\xf4\xf2\x9dd\xf4z\x89\xc5D\xc4\x02\\\x81\xcf\x02Ep\xf6`\xde*\x1dV\x00'/222, 0x4) r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x40, 0x0) writev$auto(r6, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x20006, 0x3, 0xe72, 0x401, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyS3\x00', 0x40, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) 4.453719675s ago: executing program 3 (id=2283): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000540)='/proc/sys/kernel/watchdog\x00', 0x40141, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8) clone$auto(0x20003b46, 0x100000000000005, 0x0, 0x0, 0x2) r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_MACSEC_CMD_ADD_RXSA(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x2cb8}, 0x1, 0x0, 0x0, 0x40}, 0x2404c084) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x88) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) bpf$auto(0x0, &(0x7f0000000000)=@iter_create={0xffffffffffffffff, 0x6fc}, 0x7f) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0xa005) r2 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x14, r2, 0x1, 0x70bd2d, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x800) r3 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r3, 0xffffffffdfdffe00, &(0x7f0000000400)=';') openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000040), 0x402000, 0x0) write$auto_proc_sys_file_operations_proc_sysctl(r0, 0x0, 0x0) 4.044580048s ago: executing program 3 (id=2285): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000) getsockopt$auto(0xffffffffffffffff, 0x24, 0xfffffffd, 0x0, 0x0) syz_genetlink_get_family_id$auto_macsec(&(0x7f00000003c0), 0xffffffffffffffff) syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000040), r0) r1 = semctl$auto_SEM_STAT_ANY(0xe, 0xfffffffb, 0x14, 0x7) sendmsg$auto_OVS_VPORT_CMD_GET(r0, 0x0, 0x20000004) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x801, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff) r2 = socket(0x2, 0x1, 0x106) sendmsg$auto_OVS_VPORT_CMD_SET(r2, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x20044080) socket(0xa, 0x2, 0x0) sendto$auto(0xffffffffffffffff, 0x0, 0x11, 0xffff, &(0x7f0000000040)=@ax25={0x3, @bcast, 0x6}, 0x16) getpgid(r1) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) flock$auto(0xffffffffffffffff, 0x4) socket(0x2, 0x3, 0x6) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, 0x0, 0x4000000) unshare$auto(0x40000080) socket(0x2b, 0x3, 0x1) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) r3 = open(&(0x7f0000000000)='./file0\x00', 0x44243, 0xe1d2b27bdc14aabc) flock$auto(r3, 0x5) 3.858301994s ago: executing program 4 (id=2286): statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x0, 0x7352, 0x41, 0x200000000065f, 0x401ffde, 0x7, 0x3, 0x2, 0x9, 0x3eb, 0x5, 0x2, 0x3000, 0x9, 0x6, 0x10003, 0x80, 0x4, 0x0, 0x7, 0x1ffb, 0x203, 0x400, 0x84, [0x0, 0x0, 0x0, 0x100, 0x2000000000000000, 0x2000, 0xfffffffffffffffd, 0xa, 0x70604ce7, 0x0, 0xfffffffffffffffd, 0x80000000, 0x3, 0x1, 0x4, 0x4, 0x800, 0xfffffffffffffffd, 0x200000000000, 0x0, 0xffffffffefffffff, 0x34, 0x0, 0x0, 0x2, 0xfffffffffffffffd, 0x400000000005b8, 0xc, 0x3fffffffff, 0x8, 0x4, 0x6, 0xffffffffffffffff, 0x890, 0x800000000000a, 0xfffffffffffffffc, 0x1000, 0xa38, 0x0, 0x0, 0xfffffffffffffffc, 0x2, 0x5, 0x6, 0x0, 0xfffff]}, 0x9, 0xd) (async) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x0, 0x7352, 0x41, 0x200000000065f, 0x401ffde, 0x7, 0x3, 0x2, 0x9, 0x3eb, 0x5, 0x2, 0x3000, 0x9, 0x6, 0x10003, 0x80, 0x4, 0x0, 0x7, 0x1ffb, 0x203, 0x400, 0x84, [0x0, 0x0, 0x0, 0x100, 0x2000000000000000, 0x2000, 0xfffffffffffffffd, 0xa, 0x70604ce7, 0x0, 0xfffffffffffffffd, 0x80000000, 0x3, 0x1, 0x4, 0x4, 0x800, 0xfffffffffffffffd, 0x200000000000, 0x0, 0xffffffffefffffff, 0x34, 0x0, 0x0, 0x2, 0xfffffffffffffffd, 0x400000000005b8, 0xc, 0x3fffffffff, 0x8, 0x4, 0x6, 0xffffffffffffffff, 0x890, 0x800000000000a, 0xfffffffffffffffc, 0x1000, 0xa38, 0x0, 0x0, 0xfffffffffffffffc, 0x2, 0x5, 0x6, 0x0, 0xfffff]}, 0x9, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0) (async) openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0) socket(0x10, 0x2, 0x0) (async) r0 = socket(0x10, 0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$auto_SMC_PNETID_ADD(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x20, r2, 0xd3bed26fbb0d8463, 0x70bd29, 0x25dfdbfe, {0x2, 0x0, 0x300}, [@SMC_PNETID_NAME={0xc, 0x1, '\x00\x00\x00\x00\x00\x00\x00\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x20000001}, 0x1c054) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 3.614640593s ago: executing program 0 (id=2288): socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) setns(0xffffffffffffffff, 0x0) socket(0x11, 0x80003, 0x300) socket(0x11, 0xa, 0x300) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x89\x06s\x1cJ\x99\x8a>c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x1, 0x5, 0x7181, 0x1ffde, 0x7, 0x3, 0x9, 0x6, 0x80003, 0x4, 0x1ffffffffffd, 0xb4, 0x3, 0x8000000000000000, 0x10007, 0x80, 0x459f, 0x0, 0xa, 0x22000, 0x200, 0x4, 0x83, [0x3, 0x2, 0x4, 0x9, 0x0, 0x2080, 0x0, 0x0, 0x70624ce7, 0x1, 0xfffffffffffffffd, 0x3, 0x8, 0x1004, 0x6, 0x0, 0xfffffffffffbfffd, 0x4, 0x10000000000001, 0x10000000000, 0xe, 0x4, 0xfffffffffffffe00, 0x5, 0x5d, 0x5, 0x400000000005b8, 0x6, 0x2, 0x100, 0xfffffffffffffffd, 0x6, 0xffffffffffffffff, 0xff71, 0xfff, 0xfffffffffffffffc, 0x6, 0xa38, 0x80000000, 0xffff, 0xfffffffffffffffc, 0x9, 0x1, 0x7, 0x40c567]}, 0x1fe, 0xd) sendmsg$auto_IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x800) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r1 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r1, 0xfffffffffffffd03, &(0x7f00000001c0)) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000002ac0), r0) sendmsg$auto_NL802154_CMD_GET_WPAN_PHY(r0, 0x0, 0x40004) msgctl$auto_IPC_INFO(0xe8b045ca, 0x3, &(0x7f0000000100)={{0x0, 0xee00, 0x0, 0xfffffffc, 0xfffffff7, 0x1, 0x7}, &(0x7f0000000080)=0xb8, &(0x7f00000000c0)=0x5, 0x2, 0xf, 0x1, 0x7fff, 0x8001, 0x3, 0x401, 0x7f, @raw=0x8, @raw=0xc8ac}) mmap$auto(0x0, 0x8000, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x10, 0x2, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dri/renderD128\x00', 0x600801, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r3) ioctl$auto_KVM_CREATE_VM(r2, 0xc048aeca, 0x0) semctl$auto_GETPID(0x0, 0xa, 0xb, 0xfffffffffffffffa) 3.294794112s ago: executing program 4 (id=2289): ioctl$auto(0xffffffffffffffff, 0x961064a0, 0x600000000200007) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) socket(0x18, 0x2, 0x0) quotactl_fd$auto(0xffffffffffffffff, 0x1, 0x0, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x8001, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x3, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x9}) socket(0x2b, 0x1, 0x1) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x1d, 0x2, 0x6) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) ioperm$auto(0x2, 0x3, 0x1) clone$auto(0xffff, 0x7, 0xfffffffffffffffe, 0xffffffffffffffff, 0xffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f00000000c0), r1) sendmsg$auto_TCP_METRICS_CMD_GET(0xffffffffffffffff, &(0x7f0000000c00)={0x0, 0x0, 0x0}, 0x0) sendmsg$auto_TCP_METRICS_CMD_GET(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x40, r2, 0x1, 0x70bd27, 0x25dfdbff, {}, [@TCP_METRICS_ATTR_ADDR_IPV4={0x8, 0x1, @loopback}, @TCP_METRICS_ATTR_ADDR_IPV6={0x14, 0x2, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, @TCP_METRICS_ATTR_SADDR_IPV4={0x8, 0xb, @loopback}, @TCP_METRICS_ATTR_SADDR_IPV4={0x8, 0xb, @multicast1}]}, 0x40}, 0x1, 0x0, 0x0, 0x14}, 0x20000000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) clock_adjtime$auto(0x0, &(0x7f0000000000)={0x7, 0x8, 0x4, 0x8, 0x7fffffff, 0xffffffc0, 0x6, 0x5, 0x3, 0x0, 0xb9, {}, 0x1000, 0x7, 0xb, 0x5, 0x2000006, 0x101, 0x7fff, 0x3}) adjtimex$auto(&(0x7f0000000100)={0x248a134b, 0x0, 0x4, 0x6efd, 0x8, 0x10001, 0x3, 0x0, 0x3, 0x4, 0xff, {0x9, 0x1}, 0x0, 0x81, 0x4, 0x80000000, 0x0, 0xffffffff, 0x9, 0x4, 0x4, 0x8, 0x8}) r3 = socket(0x15, 0x5, 0x0) bind$auto(r3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) ustat$auto(0x801, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffd]}, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) 3.226681301s ago: executing program 1 (id=2290): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) capset$auto(0x0, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8010}, 0x4000804) r1 = socket$nl_generic(0x10, 0x3, 0x10) lstat$auto(0x0, &(0x7f0000000180)={0x7, 0xe, 0x100000002, 0x100, 0x0, 0x0, 0x0, 0x8, 0x8, 0x7, 0x400, 0x7ffffffb, 0x5800000000000000, 0xffffffff80000000, 0x1, 0x7, 0x107}) ioctl$sock_SIOCGIFINDEX(r1, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, 0x6) ioctl$auto_IOCTL_VMCI_QUEUEPAIR_ALLOC(r0, 0x7a8, 0x0) 3.159553251s ago: executing program 0 (id=2291): sendmsg$auto_NL80211_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f00000001c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000227bd7000fedbdf25080000000400870005003e00040000000800f800040000000c001d8008000080040004"], 0x34}, 0x1, 0x0, 0x0, 0xd0}, 0x20000010) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0xb02, 0x0) listmount$auto(&(0x7f0000000100)={0x1f, @inferred=r0, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1) r1 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) socket(0x2, 0x3, 0x2) setsockopt$auto(0x3, 0x0, 0xcb, 0xfffffffffffffffc, 0xfd72) ioctl$auto_VHOST_SET_OWNER(r2, 0xaf01, 0x5) r3 = socket(0x10, 0xa, 0x2dd) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="1b0026bd7000fddbdf250300000004000800040003801200379def61e36bd0fb9d9c464290c4f9570100898771f1c19f1779048590828847e1ffe3a36babfa6e5e8af93950422fd1ea6a145491cb8557b55dd79fcdf6c878e85f574276179bef0455856062177e298e0a00866aee9bbae44ea54dd8d8b26413d7dac0245fbc3b9032c8e848908e8f28f5f2de00c96146c4b6cece30643e21d9399b9fcfe734f418a58abd860583604239a8655d5118"], 0x30}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) r4 = socketpair$auto(0x50, 0xc064, 0x7, &(0x7f00000000c0)=0xfffffffe) openat2$auto(r4, &(0x7f0000000140)='./file0\x00', &(0x7f0000000280)={0xacb, 0x8, 0x80000001}, 0x2) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="db002cbd7000fbdbdf250af4"], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[], 0x1ac}}, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto(r2, 0x4008af13, r1) 3.010288556s ago: executing program 1 (id=2292): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NFSD_CMD_THREADS_GET(r2, &(0x7f0000001800)={0x0, 0x0, &(0x7f00000017c0)={&(0x7f0000001780)={0x14, 0x0, 0x4, 0x70bd26, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x44848}, 0x4000000) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000300), r2) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000000c0), r2) sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(r2, &(0x7f0000002280)={0x0, 0x0, &(0x7f0000002240)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB], 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x40) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000200), r4) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000280)={'veth1_to_hsr\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'veth0_to_batadv\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000000280)={&(0x7f0000000000), 0xc, &(0x7f0000000240)={&(0x7f0000000140)={0xe8, r1, 0x100, 0x70bd2d, 0x25dfdbfe, {}, [@ETHTOOL_A_CHANNELS_HEADER={0xa8, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x80000001}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xf}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}]}, @ETHTOOL_A_CHANNELS_HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xc8d8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x57}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0xe8}, 0x1, 0x0, 0x0, 0x4044040}, 0x80) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/ram2/queue/fua\x00', 0x40000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r7, &(0x7f00000000c0)=""/64, 0x40) 2.965902579s ago: executing program 0 (id=2293): r0 = openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, 0x0, 0x40000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000008000) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r2) brk$auto(0x7) close_range$auto(0x2, 0x8, 0x0) r3 = io_uring_setup$auto(0x6, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) syz_genetlink_get_family_id$auto_wireguard(0x0, r1) sendmsg$auto_WG_CMD_SET_DEVICE(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x8800}, 0x80) ioctl$auto(r0, 0xffffffff, 0x38) socket(0x2b, 0x1, 0x1) msgsnd$auto(0xb5, &(0x7f0000000080)={0x11, 0x1}, 0x9, 0x10006) 2.673572252s ago: executing program 0 (id=2294): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) write$auto(0x3, 0x0, 0x7fffffff) socket(0x2, 0x3, 0xc) r0 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x156) execveat$auto(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) ioperm$auto(0x7, 0x6, 0x2) r1 = socket(0xa, 0x801, 0x84) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(r1, 0x10000000084, 0x80, 0x0, 0x8000008) mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socket(0xa, 0x801, 0x84) socket(0x2b, 0xa, 0xfb) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r4, 0xc0045002, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) r5 = socket(0x2b, 0x1, 0x1) socket(0x10, 0x2, 0x4) sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000001) socket(0x2b, 0x1, 0x1002) 2.408576487s ago: executing program 1 (id=2295): r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYRES64=0x0, @ANYBLOB="5e0027617c36720add70ab0343990f7d0bbc96dc0b"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) read$auto(0x3, 0x0, 0xf34) 2.266409634s ago: executing program 4 (id=2296): openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/008/001\x00', 0x2101, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) io_uring_setup$auto(0x1, 0x0) mmap$auto(0x0, 0x100000000, 0x1, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) execve$auto(0x0, 0x0, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r2 = socket(0x18, 0x2, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'veth0\x00'}) close_range$auto(0x0, 0xffffffffffffffff, 0x2) socket(0x1a, 0x80000, 0x1) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) r4 = socket(0x18, 0x5, 0x1) connect$auto(r4, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x40047459, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) r5 = socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(r0, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) getsockopt$auto(r5, 0x84, 0x9, 0x0, &(0x7f0000000000)=0x98) mmap$auto(0x0, 0x400008, 0xd, 0x9b72, 0x2, 0x8000) mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) mlockall$auto(0x1ff) r6 = open(&(0x7f0000000000)='./file0\x00', 0x101800, 0x100) ppoll$auto(&(0x7f0000000180)={r6, 0x4, 0x8}, 0x6, 0x0, 0x0, 0x8) openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000008040), 0x2, 0x0) 1.340192958s ago: executing program 0 (id=2297): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) socketcall$auto_SYS_GETSOCKNAME(0x6, &(0x7f00000000c0)=0x5124c1cd) socket(0x11, 0x3, 0x6) mmap$auto(0x0, 0x200006, 0x40000000002, 0x40eb1, 0xffffffffffffffff, 0x300000000000) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) madvise$auto(0x68, 0x4, 0x9) mmap$auto(0x9, 0x400008, 0xdf, 0x9b72, 0x2, 0x1) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x23, 0x2, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r1 = socket(0x2, 0x2, 0x1) r2 = bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_4={0x1f, r1, 0x10000}, 0x10) mmap$auto(0x0, 0x9, 0xe994, 0x8000000008011, r2, 0x8000) syz_clone(0x20000, 0x0, 0x0, 0x0, 0x0, 0x0) fstatfs$auto(r0, &(0x7f0000000200)={0x40, 0x8, 0x7, 0x8000, 0x2, 0x9, 0x2616c841, {[0x8, 0x8001]}, 0x1, 0xfffffffffffffc01, 0x5, [0x0, 0x100000000, 0x1, 0x7fffffffffffffff]}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x8002, 0x0) r3 = socket(0x15, 0x5, 0x0) bind$auto(r1, &(0x7f0000000000)=@vsock={0x28, 0x0, 0xe3dd8e71ae2818b5}, 0xc1) open(&(0x7f0000000140)='./file0\x00', 0x284c3, 0x0) mmap$auto(0x0, 0x20005, 0x200e3, 0x100000eb1, 0x40000000000a1, 0x8000) close_range$auto(0x2, 0xa, 0x0) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000180)='/dev/mtd0ro\x00', 0x5c1040, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vbi26\x00', 0x109283, 0x0) ioctl$auto(0x3, 0xc0485619, 0x38) flock$auto(r3, 0x1) ioctl$auto_IOCTL_VMCI_QUEUEPAIR_ALLOC(0xffffffffffffffff, 0x7a8, 0x0) bpf$auto(0x400, &(0x7f0000000000)=@bpf_attr_3={0xfffffc01, 0xf15, 0x6, 0x0, 0x1fe, 0x2, 0xfffffffffffffffd, 0x4, 0x4007, "0108a5172d53c2dc73bf58e1423b2178", 0x0, 0x9, 0xffffffffffffffff, 0x81, 0x4, 0x89, 0x5, 0xfffffffffffffffd, 0x3ff, 0x7, @attach_prog_fd, 0x442, 0xe, 0x57d, 0x1ff, 0x9}, 0x9) socket(0x11, 0x3, 0x6) 1.300751643s ago: executing program 3 (id=2298): r0 = socket(0x1d, 0x2, 0x7) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000540), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_GET_RADIO(r1, &(0x7f0000001900)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f0000000580)={0x14, r2, 0xf3e97f51700e57cf, 0x70bd28, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x884}, 0x8000) read$auto(r1, 0x0, 0x3) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x163340, 0x6a) socket(0x2, 0x80802, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(r0, &(0x7f0000000000)=@in={0x2, 0x4, @private=0xa010100}, 0x55) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) open(0x0, 0x40000, 0x0) io_uring_setup$auto(0x59, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) read$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(r3, 0x0, 0x17) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0x2, 0x2, 0x1) connect$auto(r3, &(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x55) ioprio_set$auto(0x1, 0x0, 0x0) read$auto(0x3, 0x0, 0xf34) mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) io_uring_setup$auto(0x6, 0x0) write$auto(0x3, 0x0, 0xfdef) 1.083006395s ago: executing program 1 (id=2299): mmap$auto(0x0, 0x7, 0x7, 0xeb1, 0x404, 0x8000) io_uring_setup$auto(0x9, 0x0) r0 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x640, 0x0) ioctl$auto_MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000080)={0x0, 0x0}) msgctl$auto_IPC_INFO(0x1, 0x3, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) fsconfig$auto(r1, 0x4, 0x0, 0x0, 0x0) socket(0x10, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_adf_ctl_ops_adf_ctl_drv(0xffffffffffffff9c, &(0x7f0000000000), 0x140, 0x0) ioctl$auto_IOCTL_GET_NUM_DEVICES(r2, 0x40046104, &(0x7f0000000040)=0xffff07d4) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000380)='/proc/self/net/rxrpc/calls\x00', 0x20080, 0x0) pread64$auto(r3, 0x0, 0x1fffdffe, 0x8) r4 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto(r4, 0xc0105512, r4) io_uring_setup$auto(0x59, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(0xffffffffffffffff, 0xc4c85512, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x64842, 0x2) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/ptyq3\x00', 0x40001, 0x0) write$auto(0x3, 0x0, 0x7fffffff) ioctl$auto_TIOCSETD2(r5, 0x5423, 0x0) close_range$auto(0x2, 0x8, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) read$auto_mon_fops_binary_mon_bin(r0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) 867.536225ms ago: executing program 4 (id=2300): r0 = socket$nl_generic(0x10, 0x3, 0x10) (async) r1 = fsopen$auto(0x0, 0x7) unshare$auto(0x40000080) (async) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_DEBUG_GET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d53a2cf25e8c302aeb9b2c9f1c0c862387d47434b8de44f8f575990f0fe27351850d05325e45eda2552a962a8673b8fa02b424d8f331c54d01bc6347419579", @ANYRES16=r2, @ANYBLOB="010029bd7000fddbdf25070000001800018014000200776c616e3100"/38], 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_clone(0x40a4800, &(0x7f00000003c0)="cc40df0face76654385037f9e013fd0dba01fe7f1f608b5c324d2c1fd6224dc7d899195e8c8f6341e0956093b2afd0e3af4a2b2bdccef4384d77626fc10d5e3892a840ad98d5cb3b3c62c3a3fe88cc5c98f21cd25a38a313b20582a261e91ad820b6a1e8b866984b1b31c3c0f33f9ff51466a8d2544c0b67a97d2a7ce1cb12f74713c7c98f2e29c175976e3e8cc117d8595041cb0f064e34e0e0", 0x9a, &(0x7f0000000180), &(0x7f00000002c0), &(0x7f0000000340)="77ea8e21fc14afaeffc34d292a6ae2e8280529ddba7c6ca84a8122b5cad6e2d42fca6f84e4127da48eb72d6c5252da79d0aae980449c4476974526") move_pages$auto(r3, 0x7, &(0x7f00000004c0)=&(0x7f0000000480)="13", &(0x7f0000000500)=0x2, &(0x7f0000000540)=0x5, 0x5) (async) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0) read$auto(r4, 0x0, 0x6) r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r5, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xffffffffffffff11, 0xfffffffffffffffa, 0x8000) (async) read$auto_mISDN_fops_timerdev(r1, &(0x7f0000000240)=""/95, 0x5f) r6 = openat$auto_ctl_device_fops_user(0xffffffffffffff9c, &(0x7f0000000040), 0x100, 0x0) sendmmsg$auto(r6, 0x0, 0x6, 0x401) mbind$auto(0x0, 0xfa9d, 0x8001, &(0x7f0000000300)=0xc9e, 0x400, 0x1) (async) unshare$auto(0x40000080) 705.354692ms ago: executing program 0 (id=2301): r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, 0x6) ioctl$auto_IOCTL_VMCI_QUEUEPAIR_ALLOC(r0, 0x7a8, 0x0) 268.853016ms ago: executing program 4 (id=2303): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000) getsockopt$auto(0xffffffffffffffff, 0x24, 0xfffffffd, 0x0, 0x0) syz_genetlink_get_family_id$auto_macsec(&(0x7f00000003c0), 0xffffffffffffffff) syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000040), r0) r1 = semctl$auto_SEM_STAT_ANY(0xe, 0xfffffffb, 0x14, 0x7) sendmsg$auto_OVS_VPORT_CMD_GET(r0, 0x0, 0x20000004) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x801, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff) r2 = socket(0x2, 0x1, 0x106) sendmsg$auto_OVS_VPORT_CMD_SET(r2, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4100}, 0x20000000) socket(0xa, 0x2, 0x0) sendto$auto(0xffffffffffffffff, 0x0, 0x11, 0xffff, &(0x7f0000000040)=@ax25={0x3, @bcast, 0x6}, 0x16) getpgid(r1) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) flock$auto(0xffffffffffffffff, 0x4) socket(0x2, 0x3, 0x6) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, 0x0, 0x4000000) unshare$auto(0x40000080) socket(0x2b, 0x3, 0x1) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x30) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) r3 = open(&(0x7f0000000000)='./file0\x00', 0x44243, 0xe1d2b27bdc14aabc) flock$auto(r3, 0x5) 265.338722ms ago: executing program 1 (id=2304): r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x60482, 0x0) ioctl$auto_KVM_GET_SUPPORTED_HV_CPUID(r0, 0xc008aec1, &(0x7f0000000000)={0xcd9, 0x0, [{0x2, 0x7, 0x7, 0x1, 0x7c14, 0x0, 0x3}, {0x4, 0x2, 0x80000000, 0x7, 0x5, 0xa0a, 0x7}, {0xfffffffd, 0x1, 0x7, 0x0, 0x9, 0x9, 0x7}, {0x0, 0x7bf, 0x92053f1, 0x9, 0x2, 0x2, 0x6}]}) 43.891974ms ago: executing program 3 (id=2305): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) socketcall$auto_SYS_GETSOCKNAME(0x6, &(0x7f00000000c0)=0x5124c1cd) socket(0x11, 0x3, 0x6) mmap$auto(0x0, 0x200006, 0x40000000002, 0x40eb1, 0xffffffffffffffff, 0x300000000000) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) madvise$auto(0x1000000, 0x20499d, 0x9) mmap$auto(0x9, 0x400008, 0xdf, 0x9b72, 0x2, 0x1) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x23, 0x2, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r1 = socket(0x2, 0x2, 0x1) r2 = bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_4={0x1f, r1, 0x10000}, 0x10) mmap$auto(0x0, 0x9, 0xe994, 0x8000000008011, r2, 0x8000) syz_clone(0x20000, 0x0, 0x0, 0x0, 0x0, 0x0) fstatfs$auto(r0, &(0x7f0000000200)={0x40, 0x8, 0x7, 0x8000, 0x2, 0x9, 0x2616c841, {[0x8, 0x8001]}, 0x1, 0xfffffffffffffc01, 0x5, [0x0, 0x100000000, 0x1, 0x7fffffffffffffff]}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x8002, 0x0) r3 = socket(0x15, 0x5, 0x0) bind$auto(r1, &(0x7f0000000000)=@vsock={0x28, 0x0, 0xe3dd8e71ae2818b5}, 0xc1) open(&(0x7f0000000140)='./file0\x00', 0x284c3, 0x0) mmap$auto(0x0, 0x20005, 0x200e3, 0x100000eb1, 0x40000000000a1, 0x8000) close_range$auto(0x2, 0xa, 0x0) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mtd0\x00', 0x8080, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vbi26\x00', 0x109283, 0x0) ioctl$auto(0x3, 0xc0485619, 0x38) flock$auto(r3, 0x1) ioctl$auto_IOCTL_VMCI_QUEUEPAIR_ALLOC(0xffffffffffffffff, 0x7a8, 0x0) bpf$auto(0x400, &(0x7f0000000000)=@bpf_attr_3={0xfffffc01, 0xf15, 0x6, 0x0, 0x1fe, 0x2, 0xfffffffffffffffd, 0x4, 0x4007, "0108a5172d53c2dc73bf58e1423b2178", 0x0, 0x9, 0xffffffffffffffff, 0x81, 0x4, 0x89, 0x5, 0xfffffffffffffffd, 0x3ff, 0x7, @attach_prog_fd, 0x442, 0xe, 0x57d, 0x1ff, 0x9}, 0x9) socket(0x11, 0x3, 0x6) 0s ago: executing program 1 (id=2306): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) write$auto(0x3, 0x0, 0x7fffffff) socket(0x2, 0x3, 0xc) r0 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x156) execveat$auto(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) ioperm$auto(0x7, 0x6, 0x2) r1 = socket(0xa, 0x801, 0x84) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(r1, 0x10000000084, 0x80, 0x0, 0x8000008) mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socket(0xa, 0x801, 0x84) socket(0x2b, 0xa, 0xfb) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r4, 0xc0045002, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) r5 = socket(0x2b, 0x1, 0x1) socket(0x10, 0x2, 0x4) sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000001) socket(0x2b, 0x1, 0x1002) kernel console output (not intermixed with test programs): ] [ 381.830331][T11676] FAULT_INJECTION: forcing a failure. [ 381.830331][T11676] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 381.877798][T11676] CPU: 1 UID: 0 PID: 11676 Comm: syz.0.1603 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 381.877837][T11676] Tainted: [U]=USER [ 381.877843][T11676] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 381.877856][T11676] Call Trace: [ 381.877863][T11676] [ 381.877872][T11676] dump_stack_lvl+0x16c/0x1f0 [ 381.877906][T11676] should_fail_ex+0x50a/0x650 [ 381.877945][T11676] strncpy_from_user+0x3b/0x2d0 [ 381.877980][T11676] getname_flags.part.0+0x8f/0x550 [ 381.878011][T11676] getname+0x8d/0xe0 [ 381.878037][T11676] do_sys_openat2+0x104/0x1e0 [ 381.878061][T11676] ? __pfx_do_sys_openat2+0x10/0x10 [ 381.878089][T11676] ? __fget_files+0x206/0x3a0 [ 381.878125][T11676] __x64_sys_openat+0x175/0x210 [ 381.878150][T11676] ? __pfx___x64_sys_openat+0x10/0x10 [ 381.878173][T11676] ? ksys_write+0x1ba/0x250 [ 381.878213][T11676] do_syscall_64+0xcd/0x250 [ 381.878244][T11676] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 381.878274][T11676] RIP: 0033:0x7f0221b8d169 [ 381.878292][T11676] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 381.878313][T11676] RSP: 002b:00007f022293e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 381.878335][T11676] RAX: ffffffffffffffda RBX: 00007f0221da6080 RCX: 00007f0221b8d169 [ 381.878358][T11676] RDX: 0000000000101e81 RSI: 0000400000000400 RDI: ffffffffffffff9c [ 381.878373][T11676] RBP: 00007f022293e090 R08: 0000000000000000 R09: 0000000000000000 [ 381.878386][T11676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 381.878399][T11676] R13: 0000000000000000 R14: 00007f0221da6080 R15: 00007ffcebe2dd08 [ 381.878429][T11676] [ 382.057091][ C1] vkms_vblank_simulate: vblank timer overrun [ 382.774047][T11683] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 386.210222][T11783] MTRR 1 not used [ 388.531936][T11846] netlink: 'syz.0.1653': attribute type 1 has an invalid length. [ 389.183205][T11851] MTRR 1 not used [ 389.489767][ T29] audit: type=1806 audit(4296184290.375:6): xattr=05 res=-22 [ 391.236318][T11916] netlink: set zone limit has 4 unknown bytes [ 391.622591][T11922] Invalid ELF header magic: != ELF [ 392.991034][T11966] FAULT_INJECTION: forcing a failure. [ 392.991034][T11966] name failslab, interval 1, probability 0, space 0, times 0 [ 393.004284][T11966] CPU: 0 UID: 0 PID: 11966 Comm: syz.1.1690 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 393.004317][T11966] Tainted: [U]=USER [ 393.004325][T11966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 393.004336][T11966] Call Trace: [ 393.004343][T11966] [ 393.004350][T11966] dump_stack_lvl+0x16c/0x1f0 [ 393.004383][T11966] should_fail_ex+0x50a/0x650 [ 393.004416][T11966] ? fs_reclaim_acquire+0xae/0x150 [ 393.004445][T11966] ? kernfs_fop_write_iter+0x223/0x500 [ 393.004467][T11966] should_failslab+0xc2/0x120 [ 393.004490][T11966] __kmalloc_noprof+0xcb/0x510 [ 393.004534][T11966] ? rcu_is_watching+0x12/0xc0 [ 393.004564][T11966] kernfs_fop_write_iter+0x223/0x500 [ 393.004593][T11966] vfs_write+0x5ae/0x1150 [ 393.004623][T11966] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 393.004649][T11966] ? __pfx___mutex_lock+0x10/0x10 [ 393.004678][T11966] ? __pfx_vfs_write+0x10/0x10 [ 393.004727][T11966] ksys_write+0x12b/0x250 [ 393.004754][T11966] ? __pfx_ksys_write+0x10/0x10 [ 393.004792][T11966] do_syscall_64+0xcd/0x250 [ 393.004823][T11966] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 393.004854][T11966] RIP: 0033:0x7fe00278d169 [ 393.004872][T11966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 393.004891][T11966] RSP: 002b:00007fe003669038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 393.004916][T11966] RAX: ffffffffffffffda RBX: 00007fe0029a5fa0 RCX: 00007fe00278d169 [ 393.004930][T11966] RDX: 0000000000000081 RSI: 0000400000000180 RDI: 0000000000000003 [ 393.004943][T11966] RBP: 00007fe003669090 R08: 0000000000000000 R09: 0000000000000000 [ 393.004956][T11966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 393.004968][T11966] R13: 0000000000000000 R14: 00007fe0029a5fa0 R15: 00007ffeefc77208 [ 393.004998][T11966] [ 393.193168][ C0] vkms_vblank_simulate: vblank timer overrun [ 393.902183][T11978] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1696'. [ 394.108893][T11984] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1695'. [ 394.118057][T11984] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 395.281038][T12016] can: request_module (can-proto-0) failed. [ 397.102116][T12052] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1720'. [ 398.952146][T12090] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1732'. [ 398.961448][T12090] IPv6: NLM_F_CREATE should be specified when creating new route [ 398.978072][T12090] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 398.985860][T12090] IPv6: NLM_F_CREATE should be set when creating new route [ 398.993179][T12090] IPv6: NLM_F_CREATE should be set when creating new route [ 399.088653][T12093] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1732'. [ 399.144514][T12093] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 402.013965][T12157] usb usb32: usbfs: process 12157 (syz.1.1749) did not claim interface 0 before use [ 402.785746][T12178] netlink: set zone limit has 4 unknown bytes [ 403.179173][T12191] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1758'. [ 403.285707][T12193] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1757'. [ 403.829843][T12208] netlink: 504 bytes leftover after parsing attributes in process `syz.2.1760'. [ 404.382183][T12211] FAULT_INJECTION: forcing a failure. [ 404.382183][T12211] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 404.446050][T12211] CPU: 1 UID: 0 PID: 12211 Comm: syz.1.1762 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 404.446092][T12211] Tainted: [U]=USER [ 404.446100][T12211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 404.446115][T12211] Call Trace: [ 404.446123][T12211] [ 404.446132][T12211] dump_stack_lvl+0x16c/0x1f0 [ 404.446172][T12211] should_fail_ex+0x50a/0x650 [ 404.446208][T12211] ? __pfx___might_resched+0x10/0x10 [ 404.446250][T12211] should_fail_alloc_page+0xe7/0x130 [ 404.446278][T12211] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 404.446317][T12211] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 404.446356][T12211] ? stack_trace_save+0x95/0xd0 [ 404.446383][T12211] ? __pfx_stack_trace_save+0x10/0x10 [ 404.446411][T12211] ? stack_depot_save_flags+0x28/0x9c0 [ 404.446455][T12211] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 404.446491][T12211] ? kasan_save_track+0x14/0x30 [ 404.446523][T12211] ? snd_pcm_attach_substream+0x414/0xd20 [ 404.446557][T12211] ? snd_pcm_open+0x29b/0x700 [ 404.446586][T12211] ? snd_pcm_capture_open+0x89/0xe0 [ 404.446620][T12211] ? snd_open+0x1fe/0x450 [ 404.446642][T12211] ? chrdev_open+0x237/0x6a0 [ 404.446684][T12211] ? do_dentry_open+0x735/0x1c40 [ 404.446717][T12211] ? vfs_open+0x82/0x3f0 [ 404.446738][T12211] ? path_openat+0x1e88/0x2d80 [ 404.446785][T12211] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 404.446824][T12211] ? policy_nodemask+0xea/0x4e0 [ 404.446850][T12211] alloc_pages_mpol+0x1fc/0x540 [ 404.446876][T12211] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 404.446909][T12211] alloc_pages_noprof+0x131/0x390 [ 404.446934][T12211] alloc_pages_exact_noprof+0x31/0x90 [ 404.446966][T12211] snd_pcm_attach_substream+0x434/0xd20 [ 404.447007][T12211] snd_pcm_open_substream+0x8e/0x17c0 [ 404.447042][T12211] ? __pfx_snd_pcm_open_substream+0x10/0x10 [ 404.447086][T12211] snd_pcm_open+0x29b/0x700 [ 404.447122][T12211] ? __pfx_snd_pcm_open+0x10/0x10 [ 404.447159][T12211] ? __pfx_default_wake_function+0x10/0x10 [ 404.447202][T12211] ? __pfx_snd_pcm_capture_open+0x10/0x10 [ 404.447235][T12211] snd_pcm_capture_open+0x89/0xe0 [ 404.447268][T12211] snd_open+0x1fe/0x450 [ 404.447292][T12211] ? __pfx_snd_open+0x10/0x10 [ 404.447316][T12211] chrdev_open+0x237/0x6a0 [ 404.447349][T12211] ? __pfx_apparmor_file_open+0x10/0x10 [ 404.447380][T12211] ? __pfx_chrdev_open+0x10/0x10 [ 404.447418][T12211] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 404.447456][T12211] do_dentry_open+0x735/0x1c40 [ 404.447490][T12211] ? __pfx_chrdev_open+0x10/0x10 [ 404.447526][T12211] ? inode_permission+0xdd/0x5f0 [ 404.447556][T12211] vfs_open+0x82/0x3f0 [ 404.447578][T12211] ? may_open+0x1f2/0x400 [ 404.447608][T12211] path_openat+0x1e88/0x2d80 [ 404.447655][T12211] ? __pfx_path_openat+0x10/0x10 [ 404.447697][T12211] ? __pfx___lock_acquire+0x10/0x10 [ 404.447729][T12211] ? lock_acquire.part.0+0x11b/0x380 [ 404.447762][T12211] ? find_held_lock+0x2d/0x110 [ 404.447791][T12211] do_filp_open+0x20c/0x470 [ 404.447825][T12211] ? __pfx_do_filp_open+0x10/0x10 [ 404.447857][T12211] ? find_held_lock+0x2d/0x110 [ 404.447906][T12211] ? alloc_fd+0x41f/0x760 [ 404.447949][T12211] do_sys_openat2+0x17a/0x1e0 [ 404.447974][T12211] ? __pfx_do_sys_openat2+0x10/0x10 [ 404.448002][T12211] ? do_raw_spin_unlock+0x172/0x230 [ 404.448034][T12211] __x64_sys_openat+0x175/0x210 [ 404.448061][T12211] ? __pfx___x64_sys_openat+0x10/0x10 [ 404.448101][T12211] do_syscall_64+0xcd/0x250 [ 404.448136][T12211] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 404.448169][T12211] RIP: 0033:0x7fe00278d169 [ 404.448189][T12211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 404.448211][T12211] RSP: 002b:00007fe003669038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 404.448234][T12211] RAX: ffffffffffffffda RBX: 00007fe0029a5fa0 RCX: 00007fe00278d169 [ 404.448251][T12211] RDX: 0000000000008100 RSI: 0000400000003b80 RDI: ffffffffffffff9c [ 404.448267][T12211] RBP: 00007fe00280e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 404.448281][T12211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 404.448295][T12211] R13: 0000000000000000 R14: 00007fe0029a5fa0 R15: 00007ffeefc77208 [ 404.448328][T12211] [ 404.858928][ C1] vkms_vblank_simulate: vblank timer overrun [ 404.967130][T12216] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1762'. [ 404.996850][T12216] IPv6: NLM_F_CREATE should be specified when creating new route [ 405.125889][T12216] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 405.133230][T12216] IPv6: NLM_F_CREATE should be set when creating new route [ 405.140514][T12216] IPv6: NLM_F_CREATE should be set when creating new route [ 405.678064][T12225] FAULT_INJECTION: forcing a failure. [ 405.678064][T12225] name failslab, interval 1, probability 0, space 0, times 0 [ 405.713972][T12225] CPU: 0 UID: 0 PID: 12225 Comm: syz.0.1766 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 405.714018][T12225] Tainted: [U]=USER [ 405.714026][T12225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 405.714041][T12225] Call Trace: [ 405.714049][T12225] [ 405.714062][T12225] dump_stack_lvl+0x16c/0x1f0 [ 405.714101][T12225] should_fail_ex+0x50a/0x650 [ 405.714141][T12225] ? fs_reclaim_acquire+0xae/0x150 [ 405.714177][T12225] should_failslab+0xc2/0x120 [ 405.714204][T12225] kmem_cache_alloc_lru_noprof+0x73/0x3d0 [ 405.714243][T12225] ? sock_alloc_inode+0x25/0x1c0 [ 405.714276][T12225] ? __pfx_sock_alloc_inode+0x10/0x10 [ 405.714299][T12225] sock_alloc_inode+0x25/0x1c0 [ 405.714324][T12225] alloc_inode+0x5d/0x230 [ 405.714348][T12225] sock_alloc+0x40/0x280 [ 405.714371][T12225] sock_create_lite+0x82/0x120 [ 405.714400][T12225] __netlink_kernel_create+0xbe/0x750 [ 405.714433][T12225] ? do_raw_spin_unlock+0x91/0x230 [ 405.714458][T12225] ? __pfx___netlink_kernel_create+0x10/0x10 [ 405.714496][T12225] ? fib_default_rule_add+0x342/0x420 [ 405.714533][T12225] fib_net_init+0x237/0x3d0 [ 405.714565][T12225] ? __pfx_fib_net_init+0x10/0x10 [ 405.714596][T12225] ? __pfx_nl_fib_input+0x10/0x10 [ 405.714631][T12225] ? devinet_init_net+0x5c1/0x900 [ 405.714691][T12225] ? __pfx_fib_net_init+0x10/0x10 [ 405.714719][T12225] ops_init+0x1df/0x5f0 [ 405.714761][T12225] setup_net+0x21f/0x860 [ 405.714805][T12225] ? __pfx_setup_net+0x10/0x10 [ 405.714844][T12225] ? down_read_killable+0xcc/0x380 [ 405.714881][T12225] ? __pfx_down_read_killable+0x10/0x10 [ 405.714917][T12225] ? __raw_spin_lock_init+0x3a/0x110 [ 405.714943][T12225] ? debug_mutex_init+0x37/0x70 [ 405.714972][T12225] copy_net_ns+0x2a6/0x5f0 [ 405.715003][T12225] create_new_namespaces+0x3ea/0xad0 [ 405.715048][T12225] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 405.715112][T12225] ksys_unshare+0x45d/0xa40 [ 405.715139][T12225] ? __pfx_ksys_unshare+0x10/0x10 [ 405.715177][T12225] __x64_sys_unshare+0x31/0x40 [ 405.715226][T12225] do_syscall_64+0xcd/0x250 [ 405.715261][T12225] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 405.715299][T12225] RIP: 0033:0x7f0221b8d169 [ 405.715319][T12225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 405.715345][T12225] RSP: 002b:00007f022295f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 405.715369][T12225] RAX: ffffffffffffffda RBX: 00007f0221da5fa0 RCX: 00007f0221b8d169 [ 405.715386][T12225] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 405.715404][T12225] RBP: 00007f0221c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 405.715419][T12225] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 405.715433][T12225] R13: 0000000000000000 R14: 00007f0221da5fa0 R15: 00007ffcebe2dd08 [ 405.715465][T12225] [ 405.856029][T12223] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1765'. [ 406.331282][T12233] netlink: set zone limit has 4 unknown bytes [ 408.230099][T12296] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1789'. [ 408.319670][T12305] syz.1.1792 uses obsolete (PF_INET,SOCK_PACKET) [ 408.874222][T12313] FAULT_INJECTION: forcing a failure. [ 408.874222][T12313] name failslab, interval 1, probability 0, space 0, times 0 [ 408.935503][T12313] CPU: 1 UID: 0 PID: 12313 Comm: syz.1.1793 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 408.935546][T12313] Tainted: [U]=USER [ 408.935561][T12313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 408.935575][T12313] Call Trace: [ 408.935582][T12313] [ 408.935592][T12313] dump_stack_lvl+0x16c/0x1f0 [ 408.935629][T12313] should_fail_ex+0x50a/0x650 [ 408.935666][T12313] ? fs_reclaim_acquire+0xae/0x150 [ 408.935701][T12313] ? snd_pcm_plugin_build+0x434/0x650 [ 408.935732][T12313] should_failslab+0xc2/0x120 [ 408.935755][T12313] __kmalloc_noprof+0xcb/0x510 [ 408.935789][T12313] ? __kmalloc_noprof+0x23b/0x510 [ 408.935821][T12313] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 408.935859][T12313] snd_pcm_plugin_build+0x434/0x650 [ 408.935888][T12313] ? snd_pcm_plugin_build+0x4b7/0x650 [ 408.935922][T12313] snd_pcm_plugin_build_linear+0x29f/0x850 [ 408.935959][T12313] ? __pfx_snd_pcm_plugin_build_linear+0x10/0x10 [ 408.935996][T12313] ? snd_pcm_hw_params+0xce/0x1b20 [ 408.936034][T12313] snd_pcm_plug_format_plugins+0x618/0x1440 [ 408.936069][T12313] ? __pfx_snd_pcm_plug_format_plugins+0x10/0x10 [ 408.936106][T12313] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 408.936146][T12313] snd_pcm_oss_change_params_locked+0x2e95/0x3a60 [ 408.936190][T12313] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 408.936242][T12313] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 408.936275][T12313] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 408.936306][T12313] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 408.936340][T12313] ? __fget_files+0x206/0x3a0 [ 408.936378][T12313] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 408.936409][T12313] __x64_sys_ioctl+0x190/0x200 [ 408.936441][T12313] do_syscall_64+0xcd/0x250 [ 408.936475][T12313] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 408.936508][T12313] RIP: 0033:0x7fe00278d169 [ 408.936528][T12313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 408.936558][T12313] RSP: 002b:00007fe003648038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 408.936582][T12313] RAX: ffffffffffffffda RBX: 00007fe0029a6080 RCX: 00007fe00278d169 [ 408.936602][T12313] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 000000000000000a [ 408.936616][T12313] RBP: 00007fe00280e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 408.936631][T12313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 408.936647][T12313] R13: 0000000000000000 R14: 00007fe0029a6080 R15: 00007ffeefc77208 [ 408.936680][T12313] [ 409.179136][T12288] kexec: Could not allocate control_code_buffer [ 409.973785][T12339] sock: sock_set_timeout: `syz.0.1803' (pid 12339) tries to set negative timeout [ 410.334501][T12353] FAULT_INJECTION: forcing a failure. [ 410.334501][T12353] name failslab, interval 1, probability 0, space 0, times 0 [ 410.349403][T12353] CPU: 0 UID: 0 PID: 12353 Comm: syz.0.1807 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 410.349443][T12353] Tainted: [U]=USER [ 410.349451][T12353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 410.349467][T12353] Call Trace: [ 410.349474][T12353] [ 410.349483][T12353] dump_stack_lvl+0x16c/0x1f0 [ 410.349521][T12353] should_fail_ex+0x50a/0x650 [ 410.349558][T12353] ? fs_reclaim_acquire+0xae/0x150 [ 410.349591][T12353] ? kernfs_fop_open+0xa88/0xdb0 [ 410.349613][T12353] should_failslab+0xc2/0x120 [ 410.349637][T12353] __kmalloc_cache_noprof+0x68/0x410 [ 410.349678][T12353] kernfs_fop_open+0xa88/0xdb0 [ 410.349704][T12353] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 410.349740][T12353] do_dentry_open+0x735/0x1c40 [ 410.349774][T12353] ? __pfx_kernfs_fop_open+0x10/0x10 [ 410.349801][T12353] ? inode_permission+0xdd/0x5f0 [ 410.349830][T12353] vfs_open+0x82/0x3f0 [ 410.349853][T12353] ? may_open+0x1f2/0x400 [ 410.349883][T12353] path_openat+0x1e88/0x2d80 [ 410.349930][T12353] ? __pfx_path_openat+0x10/0x10 [ 410.349964][T12353] ? __pfx___lock_acquire+0x10/0x10 [ 410.349996][T12353] ? lock_acquire.part.0+0x11b/0x380 [ 410.350028][T12353] ? find_held_lock+0x2d/0x110 [ 410.350058][T12353] do_filp_open+0x20c/0x470 [ 410.350092][T12353] ? __pfx_do_filp_open+0x10/0x10 [ 410.350125][T12353] ? find_held_lock+0x2d/0x110 [ 410.350174][T12353] ? alloc_fd+0x41f/0x760 [ 410.350226][T12353] do_sys_openat2+0x17a/0x1e0 [ 410.350255][T12353] ? __pfx_do_sys_openat2+0x10/0x10 [ 410.350283][T12353] ? lock_acquire+0x2f/0xb0 [ 410.350329][T12353] __x64_sys_openat+0x175/0x210 [ 410.350356][T12353] ? __pfx___x64_sys_openat+0x10/0x10 [ 410.350396][T12353] do_syscall_64+0xcd/0x250 [ 410.350428][T12353] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 410.350461][T12353] RIP: 0033:0x7f0221b8d169 [ 410.350480][T12353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 410.350503][T12353] RSP: 002b:00007f022295f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 410.350528][T12353] RAX: ffffffffffffffda RBX: 00007f0221da5fa0 RCX: 00007f0221b8d169 [ 410.350544][T12353] RDX: 0000000000124001 RSI: 0000400000000040 RDI: ffffffffffffff9c [ 410.350560][T12353] RBP: 00007f0221c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 410.350575][T12353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 410.350589][T12353] R13: 0000000000000000 R14: 00007f0221da5fa0 R15: 00007ffcebe2dd08 [ 410.350623][T12353] [ 411.232993][T12369] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1808'. [ 411.913438][T12391] nbd: nbd7 already in use [ 412.432843][T12407] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1824'. [ 412.446909][T12407] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1824'. [ 413.807734][T12448] capability: warning: `syz.2.1836' uses 32-bit capabilities (legacy support in use) [ 414.903417][T12473] netlink: 504 bytes leftover after parsing attributes in process `syz.3.1841'. [ 418.328208][T12597] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1877'. [ 418.806307][T12626] FAULT_INJECTION: forcing a failure. [ 418.806307][T12626] name failslab, interval 1, probability 0, space 0, times 0 [ 418.819329][T12626] CPU: 1 UID: 0 PID: 12626 Comm: syz.0.1886 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 418.819362][T12626] Tainted: [U]=USER [ 418.819369][T12626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 418.819382][T12626] Call Trace: [ 418.819389][T12626] [ 418.819398][T12626] dump_stack_lvl+0x16c/0x1f0 [ 418.819432][T12626] should_fail_ex+0x50a/0x650 [ 418.819472][T12626] should_failslab+0xc2/0x120 [ 418.819493][T12626] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 418.819527][T12626] ? skb_clone+0x190/0x3f0 [ 418.819572][T12626] skb_clone+0x190/0x3f0 [ 418.819605][T12626] netlink_deliver_tap+0xabd/0xd30 [ 418.819642][T12626] netlink_unicast+0x5e1/0x7f0 [ 418.819674][T12626] ? __pfx_netlink_unicast+0x10/0x10 [ 418.819705][T12626] ? __phys_addr_symbol+0x30/0x80 [ 418.819729][T12626] ? __check_object_size+0x488/0x710 [ 418.819757][T12626] netlink_sendmsg+0x8b8/0xd70 [ 418.819793][T12626] ? __pfx_netlink_sendmsg+0x10/0x10 [ 418.819820][T12626] ? __might_fault+0xe3/0x190 [ 418.819855][T12626] ____sys_sendmsg+0xaaf/0xc90 [ 418.819881][T12626] ? __pfx_____sys_sendmsg+0x10/0x10 [ 418.819904][T12626] ? __lock_acquire+0xcc5/0x3c40 [ 418.819950][T12626] ___sys_sendmsg+0x135/0x1e0 [ 418.819985][T12626] ? __pfx____sys_sendmsg+0x10/0x10 [ 418.820031][T12626] ? trace_lock_acquire+0x14e/0x1f0 [ 418.820080][T12626] __sys_sendmmsg+0x201/0x420 [ 418.820116][T12626] ? __pfx___sys_sendmmsg+0x10/0x10 [ 418.820160][T12626] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 418.820204][T12626] ? fput+0x67/0x440 [ 418.820226][T12626] ? ksys_write+0x1ba/0x250 [ 418.820255][T12626] ? __pfx_ksys_write+0x10/0x10 [ 418.820291][T12626] __x64_sys_sendmmsg+0x9c/0x100 [ 418.820322][T12626] ? lockdep_hardirqs_on+0x7c/0x110 [ 418.820349][T12626] do_syscall_64+0xcd/0x250 [ 418.820381][T12626] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 418.820411][T12626] RIP: 0033:0x7f0221b8d169 [ 418.820429][T12626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 418.820450][T12626] RSP: 002b:00007f022295f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 418.820472][T12626] RAX: ffffffffffffffda RBX: 00007f0221da5fa0 RCX: 00007f0221b8d169 [ 418.820487][T12626] RDX: 0000000000000007 RSI: 0000400000000200 RDI: 0000000000000003 [ 418.820501][T12626] RBP: 00007f022295f090 R08: 0000000000000000 R09: 0000000000000000 [ 418.820515][T12626] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 418.820528][T12626] R13: 0000000000000000 R14: 00007f0221da5fa0 R15: 00007ffcebe2dd08 [ 418.820567][T12626] [ 420.396483][T12650] nbd: nbd7 already in use [ 421.454148][T12653] [U] [ 421.829759][T12678] netlink: 37 bytes leftover after parsing attributes in process `syz.0.1902'. [ 423.813644][T12698] [U] [ 424.826863][T12722] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1914'. [ 424.848987][T12722] mac80211_hwsim hwsim13 wlan1: entered allmulticast mode [ 426.071787][T12756] Invalid ELF header magic: != ELF [ 426.510965][T12765] FAULT_INJECTION: forcing a failure. [ 426.510965][T12765] name failslab, interval 1, probability 0, space 0, times 0 [ 426.529649][T12765] CPU: 0 UID: 0 PID: 12765 Comm: syz.1.1926 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 426.529689][T12765] Tainted: [U]=USER [ 426.529697][T12765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 426.529711][T12765] Call Trace: [ 426.529719][T12765] [ 426.529728][T12765] dump_stack_lvl+0x16c/0x1f0 [ 426.529765][T12765] should_fail_ex+0x50a/0x650 [ 426.529803][T12765] ? fs_reclaim_acquire+0xae/0x150 [ 426.529838][T12765] should_failslab+0xc2/0x120 [ 426.529862][T12765] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 426.529900][T12765] ? alloc_empty_file+0x73/0x1e0 [ 426.529931][T12765] alloc_empty_file+0x73/0x1e0 [ 426.529958][T12765] dentry_open+0x46/0xd0 [ 426.529989][T12765] pidfs_alloc_file+0x159/0x1f0 [ 426.530020][T12765] ? __pfx_pidfs_alloc_file+0x10/0x10 [ 426.530059][T12765] copy_process+0x3991/0x8c50 [ 426.530085][T12765] ? find_held_lock+0x2d/0x110 [ 426.530115][T12765] ? try_to_wake_up+0x8e0/0x1490 [ 426.530160][T12765] ? __pfx_copy_process+0x10/0x10 [ 426.530185][T12765] ? try_to_wake_up+0x953/0x1490 [ 426.530220][T12765] ? __pfx_try_to_wake_up+0x10/0x10 [ 426.530251][T12765] ? __pfx_lock_release+0x10/0x10 [ 426.530283][T12765] ? plist_check_head+0xa3/0x150 [ 426.530315][T12765] ? wake_up_q+0xb0/0x160 [ 426.530343][T12765] ? do_raw_spin_unlock+0x172/0x230 [ 426.530373][T12765] kernel_clone+0xfd/0x960 [ 426.530396][T12765] ? __pfx_futex_wake+0x10/0x10 [ 426.530428][T12765] ? __pfx_kernel_clone+0x10/0x10 [ 426.530470][T12765] __do_sys_clone+0xcf/0x120 [ 426.530493][T12765] ? __pfx___do_sys_clone+0x10/0x10 [ 426.530516][T12765] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 426.530562][T12765] ? rcu_is_watching+0x12/0xc0 [ 426.530596][T12765] do_syscall_64+0xcd/0x250 [ 426.530629][T12765] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 426.530661][T12765] RIP: 0033:0x7fe00278d169 [ 426.530681][T12765] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 426.530704][T12765] RSP: 002b:00007fe003669038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 426.530727][T12765] RAX: ffffffffffffffda RBX: 00007fe0029a5fa0 RCX: 00007fe00278d169 [ 426.530744][T12765] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46 [ 426.530758][T12765] RBP: 00007fe00280e2a0 R08: 0000000000000002 R09: 0000000000000000 [ 426.530774][T12765] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 426.530788][T12765] R13: 0000000000000000 R14: 00007fe0029a5fa0 R15: 00007ffeefc77208 [ 426.530820][T12765] [ 426.785561][ C0] vkms_vblank_simulate: vblank timer overrun [ 426.859165][T12765] input: isc as /devices/virtual/input/input14 [ 427.567983][T12776] FAULT_INJECTION: forcing a failure. [ 427.567983][T12776] name failslab, interval 1, probability 0, space 0, times 0 [ 427.626968][T12776] CPU: 0 UID: 0 PID: 12776 Comm: syz.0.1928 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 427.627009][T12776] Tainted: [U]=USER [ 427.627017][T12776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 427.627031][T12776] Call Trace: [ 427.627038][T12776] [ 427.627048][T12776] dump_stack_lvl+0x16c/0x1f0 [ 427.627086][T12776] should_fail_ex+0x50a/0x650 [ 427.627122][T12776] ? fs_reclaim_acquire+0xae/0x150 [ 427.627155][T12776] ? snd_pcm_plugin_build+0x64/0x650 [ 427.627183][T12776] should_failslab+0xc2/0x120 [ 427.627207][T12776] __kmalloc_noprof+0xcb/0x510 [ 427.627242][T12776] ? __kmalloc_noprof+0x23b/0x510 [ 427.627275][T12776] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 427.627313][T12776] snd_pcm_plugin_build+0x64/0x650 [ 427.627342][T12776] ? snd_pcm_plugin_build+0x4b7/0x650 [ 427.627375][T12776] snd_pcm_plugin_build_linear+0x29f/0x850 [ 427.627412][T12776] ? __pfx_snd_pcm_plugin_build_linear+0x10/0x10 [ 427.627448][T12776] ? snd_pcm_hw_params+0xce/0x1b20 [ 427.627485][T12776] snd_pcm_plug_format_plugins+0x618/0x1440 [ 427.627520][T12776] ? __pfx_snd_pcm_plug_format_plugins+0x10/0x10 [ 427.627556][T12776] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 427.627596][T12776] snd_pcm_oss_change_params_locked+0x2e95/0x3a60 [ 427.627640][T12776] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 427.627697][T12776] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 427.627731][T12776] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 427.627761][T12776] ? __pfx___might_resched+0x10/0x10 [ 427.627799][T12776] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 427.627832][T12776] ? __fget_files+0x206/0x3a0 [ 427.627868][T12776] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 427.627906][T12776] __x64_sys_ioctl+0x190/0x200 [ 427.627940][T12776] do_syscall_64+0xcd/0x250 [ 427.627975][T12776] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 427.628009][T12776] RIP: 0033:0x7f0221b8d169 [ 427.628028][T12776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 427.628051][T12776] RSP: 002b:00007f022293e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 427.628074][T12776] RAX: ffffffffffffffda RBX: 00007f0221da6080 RCX: 00007f0221b8d169 [ 427.628091][T12776] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 000000000000000a [ 427.628106][T12776] RBP: 00007f0221c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 427.628122][T12776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 427.628136][T12776] R13: 0000000000000000 R14: 00007f0221da6080 R15: 00007ffcebe2dd08 [ 427.628169][T12776] [ 427.890983][ C0] vkms_vblank_simulate: vblank timer overrun [ 428.636944][T12793] nbd: nbd7 already in use [ 428.680322][T12793] mkiss: ax0: crc mode is auto. [ 430.020958][T12815] FAULT_INJECTION: forcing a failure. [ 430.020958][T12815] name failslab, interval 1, probability 0, space 0, times 0 [ 430.077642][T12815] CPU: 1 UID: 0 PID: 12815 Comm: syz.1.1939 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 430.077677][T12815] Tainted: [U]=USER [ 430.077684][T12815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 430.077695][T12815] Call Trace: [ 430.077701][T12815] [ 430.077709][T12815] dump_stack_lvl+0x16c/0x1f0 [ 430.077742][T12815] should_fail_ex+0x50a/0x650 [ 430.077773][T12815] ? fs_reclaim_acquire+0xae/0x150 [ 430.077801][T12815] ? tomoyo_realpath_from_path+0xb9/0x720 [ 430.077829][T12815] should_failslab+0xc2/0x120 [ 430.077849][T12815] __kmalloc_noprof+0xcb/0x510 [ 430.077879][T12815] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 430.077914][T12815] tomoyo_realpath_from_path+0xb9/0x720 [ 430.077941][T12815] ? tomoyo_path_number_perm+0x235/0x590 [ 430.077976][T12815] ? tomoyo_path_number_perm+0x235/0x590 [ 430.078003][T12815] tomoyo_path_number_perm+0x248/0x590 [ 430.078026][T12815] ? tomoyo_path_number_perm+0x235/0x590 [ 430.078053][T12815] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 430.078107][T12815] ? __pfx_lock_release+0x10/0x10 [ 430.078133][T12815] ? trace_lock_acquire+0x14e/0x1f0 [ 430.078161][T12815] ? lock_acquire+0x2f/0xb0 [ 430.078185][T12815] ? __fget_files+0x40/0x3a0 [ 430.078217][T12815] ? __fget_files+0x206/0x3a0 [ 430.078250][T12815] security_file_ioctl+0x9b/0x240 [ 430.078278][T12815] __x64_sys_ioctl+0xb7/0x200 [ 430.078305][T12815] do_syscall_64+0xcd/0x250 [ 430.078335][T12815] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 430.078363][T12815] RIP: 0033:0x7fe00278d169 [ 430.078380][T12815] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 430.078399][T12815] RSP: 002b:00007fe003669038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 430.078420][T12815] RAX: ffffffffffffffda RBX: 00007fe0029a5fa0 RCX: 00007fe00278d169 [ 430.078435][T12815] RDX: 0000000000000000 RSI: 0000000000004611 RDI: 0000000000000004 [ 430.078448][T12815] RBP: 00007fe003669090 R08: 0000000000000000 R09: 0000000000000000 [ 430.078461][T12815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 430.078473][T12815] R13: 0000000000000000 R14: 00007fe0029a5fa0 R15: 00007ffeefc77208 [ 430.078501][T12815] [ 430.078510][T12815] ERROR: Out of memory at tomoyo_realpath_from_path. [ 433.800633][T12882] openvswitch: netlink: Flow key attr not present in new flow. [ 434.065999][T12890] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1961'. [ 434.352930][T12903] nbd: nbd7 already in use [ 434.407009][T12905] FAULT_INJECTION: forcing a failure. [ 434.407009][T12905] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 434.452311][T12905] CPU: 0 UID: 0 PID: 12905 Comm: syz.0.1967 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 434.452347][T12905] Tainted: [U]=USER [ 434.452354][T12905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 434.452367][T12905] Call Trace: [ 434.452373][T12905] [ 434.452381][T12905] dump_stack_lvl+0x16c/0x1f0 [ 434.452416][T12905] should_fail_ex+0x50a/0x650 [ 434.452456][T12905] _copy_to_user+0x32/0xd0 [ 434.452484][T12905] simple_read_from_buffer+0xd0/0x160 [ 434.452517][T12905] proc_fail_nth_read+0x198/0x270 [ 434.452546][T12905] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 434.452576][T12905] ? rw_verify_area+0xcf/0x680 [ 434.452602][T12905] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 434.452636][T12905] vfs_read+0x1df/0xbf0 [ 434.452664][T12905] ? __fget_files+0x1fc/0x3a0 [ 434.452693][T12905] ? __pfx___mutex_lock+0x10/0x10 [ 434.452718][T12905] ? __pfx_vfs_read+0x10/0x10 [ 434.452753][T12905] ? __fget_files+0x206/0x3a0 [ 434.452792][T12905] ksys_read+0x12b/0x250 [ 434.452819][T12905] ? __pfx_ksys_read+0x10/0x10 [ 434.452856][T12905] do_syscall_64+0xcd/0x250 [ 434.452886][T12905] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 434.452915][T12905] RIP: 0033:0x7f0221b8bb7c [ 434.452933][T12905] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 434.452953][T12905] RSP: 002b:00007f022295f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 434.452974][T12905] RAX: ffffffffffffffda RBX: 00007f0221da5fa0 RCX: 00007f0221b8bb7c [ 434.452989][T12905] RDX: 000000000000000f RSI: 00007f022295f0a0 RDI: 0000000000000004 [ 434.453007][T12905] RBP: 00007f022295f090 R08: 0000000000000000 R09: 0000000000000000 [ 434.453021][T12905] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 434.453034][T12905] R13: 0000000000000000 R14: 00007f0221da5fa0 R15: 00007ffcebe2dd08 [ 434.453066][T12905] [ 434.457323][T12903] mkiss: ax0: crc mode is auto. [ 434.717357][T12911] FAULT_INJECTION: forcing a failure. [ 434.717357][T12911] name failslab, interval 1, probability 0, space 0, times 0 [ 434.781897][T12911] CPU: 0 UID: 0 PID: 12911 Comm: syz.0.1968 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 434.781932][T12911] Tainted: [U]=USER [ 434.781939][T12911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 434.781951][T12911] Call Trace: [ 434.781958][T12911] [ 434.781967][T12911] dump_stack_lvl+0x16c/0x1f0 [ 434.782002][T12911] should_fail_ex+0x50a/0x650 [ 434.782036][T12911] ? fs_reclaim_acquire+0xae/0x150 [ 434.782068][T12911] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 434.782104][T12911] should_failslab+0xc2/0x120 [ 434.782127][T12911] __kmalloc_noprof+0xcb/0x510 [ 434.782157][T12911] ? kasan_quarantine_put+0x10a/0x240 [ 434.782188][T12911] ? lockdep_hardirqs_on+0x7c/0x110 [ 434.782222][T12911] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 434.782265][T12911] genl_family_rcv_msg_doit+0xbf/0x2f0 [ 434.782300][T12911] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 434.782332][T12911] ? trace_cap_capable+0x1a2/0x210 [ 434.782373][T12911] ? bpf_lsm_capable+0x9/0x10 [ 434.782397][T12911] ? security_capable+0x7e/0x260 [ 434.782422][T12911] ? ns_capable+0xd7/0x110 [ 434.782455][T12911] genl_rcv_msg+0x565/0x800 [ 434.782492][T12911] ? __pfx_genl_rcv_msg+0x10/0x10 [ 434.782527][T12911] ? __pfx_ethnl_default_doit+0x10/0x10 [ 434.782567][T12911] netlink_rcv_skb+0x16b/0x440 [ 434.782597][T12911] ? __pfx_genl_rcv_msg+0x10/0x10 [ 434.782633][T12911] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 434.782677][T12911] ? down_read+0xc9/0x330 [ 434.782707][T12911] ? __pfx_down_read+0x10/0x10 [ 434.782740][T12911] ? netlink_deliver_tap+0x1ae/0xd30 [ 434.782775][T12911] genl_rcv+0x28/0x40 [ 434.782805][T12911] netlink_unicast+0x53c/0x7f0 [ 434.782839][T12911] ? __pfx_netlink_unicast+0x10/0x10 [ 434.782870][T12911] ? __phys_addr_symbol+0x30/0x80 [ 434.782893][T12911] ? __check_object_size+0x488/0x710 [ 434.782921][T12911] netlink_sendmsg+0x8b8/0xd70 [ 434.782957][T12911] ? __pfx_netlink_sendmsg+0x10/0x10 [ 434.783001][T12911] ____sys_sendmsg+0xaaf/0xc90 [ 434.783027][T12911] ? copy_msghdr_from_user+0x10b/0x160 [ 434.783059][T12911] ? __pfx_____sys_sendmsg+0x10/0x10 [ 434.783100][T12911] ___sys_sendmsg+0x135/0x1e0 [ 434.783134][T12911] ? __pfx____sys_sendmsg+0x10/0x10 [ 434.783181][T12911] ? __pfx_lock_release+0x10/0x10 [ 434.783210][T12911] ? trace_lock_acquire+0x14e/0x1f0 [ 434.783248][T12911] ? __fget_files+0x206/0x3a0 [ 434.783288][T12911] __sys_sendmsg+0x16e/0x220 [ 434.783321][T12911] ? __pfx___sys_sendmsg+0x10/0x10 [ 434.783381][T12911] do_syscall_64+0xcd/0x250 [ 434.783413][T12911] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 434.783444][T12911] RIP: 0033:0x7f0221b8d169 [ 434.783462][T12911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 434.783483][T12911] RSP: 002b:00007f022295f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 434.783513][T12911] RAX: ffffffffffffffda RBX: 00007f0221da5fa0 RCX: 00007f0221b8d169 [ 434.783528][T12911] RDX: 0000000000000000 RSI: 0000400000000280 RDI: 0000000000000002 [ 434.783542][T12911] RBP: 00007f022295f090 R08: 0000000000000000 R09: 0000000000000000 [ 434.783556][T12911] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 434.783570][T12911] R13: 0000000000000000 R14: 00007f0221da5fa0 R15: 00007ffcebe2dd08 [ 434.783602][T12911] [ 435.993523][T12913] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 436.000519][T12913] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 436.011457][T12913] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 436.017678][T12913] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 436.117308][ T5836] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 436.137700][ T5836] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 436.146116][ T5836] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 436.166131][ T5836] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 436.181148][ T5836] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 436.189368][ T5836] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 436.661651][T12920] chnl_net:caif_netlink_parms(): no params data found [ 436.958324][T12920] bridge0: port 1(bridge_slave_0) entered blocking state [ 436.965591][T12920] bridge0: port 1(bridge_slave_0) entered disabled state [ 436.976455][T12920] bridge_slave_0: entered allmulticast mode [ 436.986764][T12920] bridge_slave_0: entered promiscuous mode [ 436.997724][T12920] bridge0: port 2(bridge_slave_1) entered blocking state [ 437.039628][T12920] bridge0: port 2(bridge_slave_1) entered disabled state [ 437.056805][T12920] bridge_slave_1: entered allmulticast mode [ 437.066517][T12920] bridge_slave_1: entered promiscuous mode [ 437.182258][T12920] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 437.219002][T12920] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 437.311265][T12953] Invalid ELF header magic: != ELF [ 437.436782][ T5845] Bluetooth: hci0: command 0x0c1a tx timeout [ 437.523118][T12920] team0: Port device team_slave_0 added [ 437.532853][T12920] team0: Port device team_slave_1 added [ 437.851457][T12920] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 437.858549][T12920] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 437.906659][T12920] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 437.936073][T12920] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 437.966716][T12920] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 438.056698][T12920] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 438.076724][ T5845] Bluetooth: hci2: command 0x0c1a tx timeout [ 438.082135][ T5836] Bluetooth: hci1: command 0x0406 tx timeout [ 438.264114][ T11] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 438.288095][T12961] FAULT_INJECTION: forcing a failure. [ 438.288095][T12961] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 438.316781][ T5836] Bluetooth: hci4: command tx timeout [ 438.352247][T12961] CPU: 0 UID: 0 PID: 12961 Comm: syz.0.1980 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 438.352283][T12961] Tainted: [U]=USER [ 438.352290][T12961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 438.352302][T12961] Call Trace: [ 438.352310][T12961] [ 438.352318][T12961] dump_stack_lvl+0x16c/0x1f0 [ 438.352351][T12961] should_fail_ex+0x50a/0x650 [ 438.352384][T12961] ? __pfx___might_resched+0x10/0x10 [ 438.352420][T12961] should_fail_alloc_page+0xe7/0x130 [ 438.352444][T12961] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 438.352480][T12961] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 438.352515][T12961] ? hlock_class+0x4e/0x130 [ 438.352537][T12961] ? mark_lock+0xb5/0xc60 [ 438.352570][T12961] ? hlock_class+0x4e/0x130 [ 438.352591][T12961] ? mark_lock+0xb5/0xc60 [ 438.352619][T12961] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 438.352654][T12961] ? __pfx_mark_lock+0x10/0x10 [ 438.352680][T12961] ? __pfx_lock_release+0x10/0x10 [ 438.352707][T12961] ? trace_lock_acquire+0x14e/0x1f0 [ 438.352736][T12961] ? is_bpf_text_address+0x30/0x1a0 [ 438.352764][T12961] ? bpf_ksym_find+0x124/0x1c0 [ 438.352787][T12961] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 438.352813][T12961] ? is_bpf_text_address+0x94/0x1a0 [ 438.352841][T12961] ? kernel_text_address+0x8d/0x100 [ 438.352869][T12961] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 438.352905][T12961] ? policy_nodemask+0xea/0x4e0 [ 438.352929][T12961] alloc_pages_mpol+0x1fc/0x540 [ 438.352952][T12961] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 438.352976][T12961] ? __pfx___lock_acquire+0x10/0x10 [ 438.353008][T12961] alloc_pages_noprof+0x131/0x390 [ 438.353030][T12961] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 438.353059][T12961] get_free_pages_noprof+0xc/0x40 [ 438.353083][T12961] kasan_populate_vmalloc_pte+0x2d/0x160 [ 438.353119][T12961] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 438.353149][T12961] __apply_to_page_range+0x5fd/0xd30 [ 438.353181][T12961] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 438.353216][T12961] ? __pfx___apply_to_page_range+0x10/0x10 [ 438.353247][T12961] ? insert_vmap_area+0x2ef/0x4d0 [ 438.353277][T12961] alloc_vmap_area+0x93e/0x2a60 [ 438.353315][T12961] ? __pfx_alloc_vmap_area+0x10/0x10 [ 438.353350][T12961] __get_vm_area_node+0x19e/0x2f0 [ 438.353384][T12961] __vmalloc_node_range_noprof+0x26a/0x1530 [ 438.353414][T12961] ? kernel_clone+0xfd/0x960 [ 438.353439][T12961] ? mod_objcg_state+0x4c4/0x8d0 [ 438.353468][T12961] ? lockdep_hardirqs_on+0x7c/0x110 [ 438.353498][T12961] ? kernel_clone+0xfd/0x960 [ 438.353525][T12961] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 438.353556][T12961] ? rcu_is_watching+0x12/0xc0 [ 438.353579][T12961] ? trace_kmem_cache_alloc+0x2d/0xd0 [ 438.353604][T12961] ? kmem_cache_alloc_node_noprof+0x272/0x3c0 [ 438.353637][T12961] ? copy_process+0x4be/0x8c50 [ 438.353657][T12961] ? kernel_clone+0xfd/0x960 [ 438.353679][T12961] copy_process+0x2ef2/0x8c50 [ 438.353699][T12961] ? kernel_clone+0xfd/0x960 [ 438.353729][T12961] ? __pfx___lock_acquire+0x10/0x10 [ 438.353768][T12961] ? __pfx_copy_process+0x10/0x10 [ 438.353787][T12961] ? find_held_lock+0x2d/0x110 [ 438.353814][T12961] ? get_pid_task+0xfc/0x250 [ 438.353839][T12961] ? __pfx_lock_release+0x10/0x10 [ 438.353867][T12961] ? trace_lock_acquire+0x14e/0x1f0 [ 438.353901][T12961] ? ksys_write+0x12b/0x250 [ 438.353934][T12961] kernel_clone+0xfd/0x960 [ 438.353957][T12961] ? __pfx_kernel_clone+0x10/0x10 [ 438.353990][T12961] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 438.354023][T12961] __do_sys_clone+0xcf/0x120 [ 438.354044][T12961] ? __pfx___do_sys_clone+0x10/0x10 [ 438.354081][T12961] ? syscall_user_dispatch+0x7a/0x130 [ 438.354128][T12961] do_syscall_64+0xcd/0x250 [ 438.354159][T12961] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 438.354188][T12961] RIP: 0033:0x7f0221b8d169 [ 438.354206][T12961] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 438.354225][T12961] RSP: 002b:00007f022293dfe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 438.354247][T12961] RAX: ffffffffffffffda RBX: 00007f0221da6080 RCX: 00007f0221b8d169 [ 438.354262][T12961] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011 [ 438.354275][T12961] RBP: 00007f022293e090 R08: 0000000000000000 R09: 0000000000000000 [ 438.354288][T12961] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001 [ 438.354301][T12961] R13: 0000000000000000 R14: 00007f0221da6080 R15: 00007ffcebe2dd08 [ 438.354330][T12961] [ 438.354382][T12961] syz.0.1980: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 438.813173][T12961] CPU: 0 UID: 0 PID: 12961 Comm: syz.0.1980 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 438.813207][T12961] Tainted: [U]=USER [ 438.813214][T12961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 438.813227][T12961] Call Trace: [ 438.813234][T12961] [ 438.813243][T12961] dump_stack_lvl+0x16c/0x1f0 [ 438.813276][T12961] warn_alloc+0x24d/0x3a0 [ 438.813309][T12961] ? __pfx_warn_alloc+0x10/0x10 [ 438.813341][T12961] ? kfree+0x2c4/0x4d0 [ 438.813375][T12961] ? __get_vm_area_node+0x1dc/0x2f0 [ 438.813409][T12961] __vmalloc_node_range_noprof+0xd24/0x1530 [ 438.813440][T12961] ? mod_objcg_state+0x4c4/0x8d0 [ 438.813464][T12961] ? lockdep_hardirqs_on+0x7c/0x110 [ 438.813489][T12961] ? kernel_clone+0xfd/0x960 [ 438.813512][T12961] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 438.813538][T12961] ? rcu_is_watching+0x12/0xc0 [ 438.813558][T12961] ? trace_kmem_cache_alloc+0x2d/0xd0 [ 438.813580][T12961] ? kmem_cache_alloc_node_noprof+0x272/0x3c0 [ 438.813610][T12961] ? copy_process+0x4be/0x8c50 [ 438.813628][T12961] ? kernel_clone+0xfd/0x960 [ 438.813645][T12961] copy_process+0x2ef2/0x8c50 [ 438.813662][T12961] ? kernel_clone+0xfd/0x960 [ 438.813687][T12961] ? __pfx___lock_acquire+0x10/0x10 [ 438.813720][T12961] ? __pfx_copy_process+0x10/0x10 [ 438.813736][T12961] ? find_held_lock+0x2d/0x110 [ 438.813758][T12961] ? get_pid_task+0xfc/0x250 [ 438.813778][T12961] ? __pfx_lock_release+0x10/0x10 [ 438.813802][T12961] ? trace_lock_acquire+0x14e/0x1f0 [ 438.813830][T12961] ? ksys_write+0x12b/0x250 [ 438.813858][T12961] kernel_clone+0xfd/0x960 [ 438.813877][T12961] ? __pfx_kernel_clone+0x10/0x10 [ 438.813903][T12961] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 438.813931][T12961] __do_sys_clone+0xcf/0x120 [ 438.813949][T12961] ? __pfx___do_sys_clone+0x10/0x10 [ 438.813979][T12961] ? syscall_user_dispatch+0x7a/0x130 [ 438.814014][T12961] do_syscall_64+0xcd/0x250 [ 438.814039][T12961] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 438.814070][T12961] RIP: 0033:0x7f0221b8d169 [ 438.814086][T12961] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 438.814104][T12961] RSP: 002b:00007f022293dfe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 438.814122][T12961] RAX: ffffffffffffffda RBX: 00007f0221da6080 RCX: 00007f0221b8d169 [ 438.814135][T12961] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011 [ 438.814146][T12961] RBP: 00007f022293e090 R08: 0000000000000000 R09: 0000000000000000 [ 438.814157][T12961] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001 [ 438.814169][T12961] R13: 0000000000000000 R14: 00007f0221da6080 R15: 00007ffcebe2dd08 [ 438.814192][T12961] [ 438.814202][T12961] Mem-Info: [ 438.876101][T12920] hsr_slave_0: entered promiscuous mode [ 438.892078][T12961] active_anon:19802 inactive_anon:0 isolated_anon:0 [ 438.892078][T12961] active_file:15430 inactive_file:45347 isolated_file:0 [ 438.892078][T12961] unevictable:768 dirty:990 writeback:0 [ 438.892078][T12961] slab_reclaimable:11690 slab_unreclaimable:96800 [ 438.892078][T12961] mapped:25511 shmem:5935 pagetables:927 [ 438.892078][T12961] sec_pagetables:0 bounce:0 [ 438.892078][T12961] kernel_misc_reclaimable:0 [ 438.892078][T12961] free:1309699 free_pcp:4070 free_cma:0 [ 438.913283][T12920] hsr_slave_1: entered promiscuous mode [ 438.914017][T12961] Node 0 active_anon:79208kB inactive_anon:0kB active_file:61720kB inactive_file:181312kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:102044kB dirty:3956kB writeback:0kB shmem:22204kB shmem_thp:6144kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10736kB pagetables:3708kB sec_pagetables:0kB all_unreclaimable? no [ 438.922032][T12920] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 438.924070][T12961] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 438.930365][T12920] Cannot create hsr debugfs directory [ 438.940411][T12961] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 439.253685][T12961] lowmem_reserve[]: 0 2487 2487 0 0 [ 439.259043][T12961] Node 0 DMA32 free:1333276kB boost:0kB min:34392kB low:42988kB high:51584kB reserved_highatomic:0KB active_anon:79168kB inactive_anon:0kB active_file:61720kB inactive_file:181212kB unevictable:1536kB writepending:3960kB present:3129332kB managed:2547524kB mlocked:0kB bounce:0kB free_pcp:4960kB local_pcp:4600kB free_cma:0kB [ 439.289890][T12961] lowmem_reserve[]: 0 0 0 0 0 [ 439.293429][ T11] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 439.294622][T12961] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:100kB unevictable:0kB writepending:4kB present:1048580kB managed:108kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 439.332045][T12961] lowmem_reserve[]: 0 0 0 0 0 [ 439.337325][T12961] Node 1 Normal free:3899464kB boost:0kB min:55504kB low:69380kB high:83256kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:2048kB local_pcp:0kB free_cma:0kB [ 439.366374][T12961] lowmem_reserve[]: 0 0 0 0 0 [ 439.371466][T12961] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 439.384451][T12961] Node 0 DMA32: 2639*4kB (UM) 616*8kB (UME) 1128*16kB (UME) 979*32kB (UME) 398*64kB (UME) 179*128kB (UME) 133*256kB (UM) 88*512kB (UME) 98*1024kB (UME) 14*2048kB (UME) 247*4096kB (UM) = 1333084kB [ 439.404175][T12961] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 439.415820][T12961] Node 1 Normal: 156*4kB (UME) 47*8kB (UME) 34*16kB (UME) 190*32kB (UME) 84*64kB (UME) 25*128kB (UME) 15*256kB (UME) 9*512kB (UM) 2*1024kB (UM) 3*2048kB (UME) 944*4096kB (M) = 3899464kB [ 439.434696][T12961] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 439.444735][T12961] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 439.454106][T12961] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 439.455568][ T11] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 439.463669][T12961] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 439.463689][T12961] 66693 total pagecache pages [ 439.463698][T12961] 0 pages in swap cache [ 439.463707][T12961] Free swap = 124712kB [ 439.463715][T12961] Total swap = 124996kB [ 439.463726][T12961] 2097051 pages RAM [ 439.463734][T12961] 0 pages HighMem/MovableOnly [ 439.463743][T12961] 428512 pages reserved [ 439.463752][T12961] 0 pages cma reserved [ 439.571797][ T11] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 439.682098][T12920] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 439.693532][T12920] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 439.732328][T12920] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 439.758121][ T11] bridge_slave_1: left allmulticast mode [ 439.763800][ T11] bridge_slave_1: left promiscuous mode [ 439.773983][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 439.782859][ T11] bridge_slave_0: left allmulticast mode [ 439.788577][ T11] bridge_slave_0: left promiscuous mode [ 439.794228][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 440.097993][ T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 440.112087][ T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 440.122023][ T11] bond0 (unregistering): Released all slaves [ 440.133490][T12920] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 440.268078][T12920] 8021q: adding VLAN 0 to HW filter on device bond0 [ 440.328369][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.335596][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.390890][T12974] nbd: nbd7 already in use [ 440.403685][ T5836] Bluetooth: hci4: command tx timeout [ 440.407926][T12920] 8021q: adding VLAN 0 to HW filter on device team0 [ 440.461697][T12974] mkiss: ax0: crc mode is auto. [ 440.487682][ T3498] bridge0: port 1(bridge_slave_0) entered blocking state [ 440.494810][ T3498] bridge0: port 1(bridge_slave_0) entered forwarding state [ 440.551550][ T3498] bridge0: port 2(bridge_slave_1) entered blocking state [ 440.558712][ T3498] bridge0: port 2(bridge_slave_1) entered forwarding state [ 440.767397][T12987] ptrace attach of "./syz-executor exec"[5834] was attempted by "./syz-executor exec"[12987] [ 440.991434][T12999] FAULT_INJECTION: forcing a failure. [ 440.991434][T12999] name failslab, interval 1, probability 0, space 0, times 0 [ 441.005489][T12999] CPU: 0 UID: 0 PID: 12999 Comm: syz.0.1987 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 441.005531][T12999] Tainted: [U]=USER [ 441.005539][T12999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 441.005553][T12999] Call Trace: [ 441.005560][T12999] [ 441.005571][T12999] dump_stack_lvl+0x16c/0x1f0 [ 441.005609][T12999] should_fail_ex+0x50a/0x650 [ 441.005647][T12999] ? fs_reclaim_acquire+0xae/0x150 [ 441.005681][T12999] ? kernfs_fop_open+0xa88/0xdb0 [ 441.005705][T12999] should_failslab+0xc2/0x120 [ 441.005729][T12999] __kmalloc_cache_noprof+0x68/0x410 [ 441.005768][T12999] kernfs_fop_open+0xa88/0xdb0 [ 441.005795][T12999] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 441.005830][T12999] do_dentry_open+0x735/0x1c40 [ 441.005862][T12999] ? __pfx_kernfs_fop_open+0x10/0x10 [ 441.005901][T12999] ? inode_permission+0xdd/0x5f0 [ 441.005931][T12999] vfs_open+0x82/0x3f0 [ 441.005952][T12999] ? may_open+0x1f2/0x400 [ 441.005980][T12999] path_openat+0x1e88/0x2d80 [ 441.006023][T12999] ? __pfx_path_openat+0x10/0x10 [ 441.006057][T12999] ? __pfx___lock_acquire+0x10/0x10 [ 441.006088][T12999] ? lock_acquire.part.0+0x11b/0x380 [ 441.006122][T12999] ? find_held_lock+0x2d/0x110 [ 441.006151][T12999] do_filp_open+0x20c/0x470 [ 441.006185][T12999] ? __pfx_do_filp_open+0x10/0x10 [ 441.006217][T12999] ? find_held_lock+0x2d/0x110 [ 441.006269][T12999] ? alloc_fd+0x41f/0x760 [ 441.006313][T12999] do_sys_openat2+0x17a/0x1e0 [ 441.006339][T12999] ? __pfx_do_sys_openat2+0x10/0x10 [ 441.006363][T12999] ? lock_acquire+0x2f/0xb0 [ 441.006409][T12999] __x64_sys_openat+0x175/0x210 [ 441.006437][T12999] ? __pfx___x64_sys_openat+0x10/0x10 [ 441.006478][T12999] do_syscall_64+0xcd/0x250 [ 441.006514][T12999] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 441.006546][T12999] RIP: 0033:0x7f0221b8d169 [ 441.006571][T12999] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 441.006595][T12999] RSP: 002b:00007f022295f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 441.006617][T12999] RAX: ffffffffffffffda RBX: 00007f0221da5fa0 RCX: 00007f0221b8d169 [ 441.006632][T12999] RDX: 0000000000124001 RSI: 0000400000000040 RDI: ffffffffffffff9c [ 441.006647][T12999] RBP: 00007f0221c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 441.006661][T12999] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 441.006676][T12999] R13: 0000000000000000 R14: 00007f0221da5fa0 R15: 00007ffcebe2dd08 [ 441.006710][T12999] [ 441.364780][ T11] hsr_slave_0: left promiscuous mode [ 441.383402][ T11] hsr_slave_1: left promiscuous mode [ 441.397725][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 441.430974][ T11] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 441.512636][ T11] veth1_macvtap: left promiscuous mode [ 441.518366][ T11] veth0_macvtap: left promiscuous mode [ 441.523976][ T11] veth1_vlan: left promiscuous mode [ 441.529346][ T11] veth0_vlan: left promiscuous mode [ 441.617443][T13014] nbd: nbd7 already in use [ 441.739407][T13017] nbd: nbd7 already in use [ 442.423478][T13014] Falling back ldisc for ttyS2. [ 442.435899][ T11] team0 (unregistering): Port device team_slave_1 removed [ 442.478373][ T5836] Bluetooth: hci4: command tx timeout [ 442.524985][ T11] team0 (unregistering): Port device team_slave_0 removed [ 443.074927][T12920] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 443.290334][ T29] audit: type=1806 audit(4296479362.188:7): xattr=02 res=-22 [ 443.484167][T13067] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1999'. [ 443.703829][T12920] veth0_vlan: entered promiscuous mode [ 443.733744][T12920] veth1_vlan: entered promiscuous mode [ 443.885397][T12920] veth0_macvtap: entered promiscuous mode [ 443.955143][T12920] veth1_macvtap: entered promiscuous mode [ 444.128365][T12920] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 444.183111][T12920] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 444.230540][T12920] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 444.284004][T12920] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 444.336360][T12920] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 444.388515][T12920] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 444.446173][T12920] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 444.557421][T12920] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 444.563408][ T5836] Bluetooth: hci4: command tx timeout [ 444.579795][T12920] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 444.594348][T13089] nbd: nbd7 already in use [ 444.611062][T12920] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 444.623089][T12920] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 444.635698][T12920] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 444.671254][T13089] mkiss: ax0: crc mode is auto. [ 444.680059][T12920] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 444.695679][T12920] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 444.705419][T12920] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 444.728804][T12920] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 445.210086][ T3498] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 445.273198][ T3498] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 445.570923][ T3498] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 445.641957][ T3498] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 446.045095][T13138] Invalid ELF header magic: != ELF [ 446.650628][T13160] snd_aloop snd_aloop.0: control 16781581:65535:6:é'x?F¢é/èìzFË·fCªáª:8 is already present [ 449.924171][T13269] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2034'. [ 449.939207][T13269] veth0_to_bond: entered promiscuous mode [ 451.054803][T13294] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2039'. [ 451.737384][T13307] FAULT_INJECTION: forcing a failure. [ 451.737384][T13307] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 451.876790][T13321] nbd: nbd7 already in use [ 451.904853][T13321] mkiss: ax0: crc mode is auto. [ 451.910299][T13307] CPU: 0 UID: 0 PID: 13307 Comm: syz.1.2040 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 451.910347][T13307] Tainted: [U]=USER [ 451.910355][T13307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 451.910369][T13307] Call Trace: [ 451.910376][T13307] [ 451.910386][T13307] dump_stack_lvl+0x16c/0x1f0 [ 451.910425][T13307] should_fail_ex+0x50a/0x650 [ 451.910465][T13307] _copy_to_iter+0x465/0x1560 [ 451.910498][T13307] ? __pfx__copy_to_iter+0x10/0x10 [ 451.910525][T13307] ? const_folio_flags+0x5b/0x100 [ 451.910555][T13307] ? folio_mark_accessed+0xc2/0xc00 [ 451.910588][T13307] ? __pfx_folio_mark_accessed+0x10/0x10 [ 451.910627][T13307] copy_page_to_iter+0xf1/0x180 [ 451.910654][T13307] filemap_read+0x698/0xe70 [ 451.910695][T13307] ? __pfx_filemap_read+0x10/0x10 [ 451.910749][T13307] ? __pfx_mark_lock+0x10/0x10 [ 451.910779][T13307] ? futex_wait_queue+0x41/0x1f0 [ 451.910810][T13307] ? __pfx_aa_file_perm+0x10/0x10 [ 451.910846][T13307] blkdev_read_iter+0x187/0x4b0 [ 451.910886][T13307] do_iter_readv_writev+0x737/0x950 [ 451.910921][T13307] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 451.910956][T13307] ? bpf_lsm_file_permission+0x9/0x10 [ 451.910988][T13307] ? security_file_permission+0x71/0x210 [ 451.911020][T13307] ? rw_verify_area+0xcf/0x680 [ 451.911052][T13307] vfs_readv+0x4d2/0x8a0 [ 451.911077][T13307] ? __pfx___lock_acquire+0x10/0x10 [ 451.911109][T13307] ? futex_wait+0x121/0x380 [ 451.911146][T13307] ? __pfx_vfs_readv+0x10/0x10 [ 451.911181][T13307] ? __fget_files+0x1fc/0x3a0 [ 451.911213][T13307] ? __pfx_lock_release+0x10/0x10 [ 451.911256][T13307] ? __fget_files+0x206/0x3a0 [ 451.911294][T13307] ? do_preadv+0x1b1/0x270 [ 451.911329][T13307] do_preadv+0x1b1/0x270 [ 451.911360][T13307] ? __pfx_do_preadv+0x10/0x10 [ 451.911399][T13307] do_syscall_64+0xcd/0x250 [ 451.911432][T13307] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 451.911464][T13307] RIP: 0033:0x7fe00278d169 [ 451.911482][T13307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 451.911505][T13307] RSP: 002b:00007fe003648038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 451.911527][T13307] RAX: ffffffffffffffda RBX: 00007fe0029a6080 RCX: 00007fe00278d169 [ 451.911543][T13307] RDX: 0000000000000006 RSI: 0000400000000080 RDI: 0040000000000003 [ 451.911557][T13307] RBP: 00007fe00280e2a0 R08: 0000000000000005 R09: 0000000000000000 [ 451.911570][T13307] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 451.911583][T13307] R13: 0000000000000000 R14: 00007fe0029a6080 R15: 00007ffeefc77208 [ 451.911613][T13307] [ 452.176650][ C0] vkms_vblank_simulate: vblank timer overrun [ 452.689575][T13341] snd_aloop snd_aloop.0: control 16781581:65535:6:é'x?F¢é/èìzFË·fCªáª:8 is already present [ 452.949959][T13350] snd_aloop snd_aloop.0: control 16781581:65535:6:é'x?F¢é/èìzFË·fCªáª:8 is already present [ 454.451989][T13383] ptrace attach of "./syz-executor exec"[12920] was attempted by "./syz-executor exec"[13383] [ 457.063508][T13461] Invalid ELF header magic: != ELF [ 457.150904][T13465] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2078'. [ 457.196150][T13465] netdevsim netdevsim1 netdevsim1: entered allmulticast mode [ 457.995225][T13473] FAULT_INJECTION: forcing a failure. [ 457.995225][T13473] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 458.126367][T13473] CPU: 1 UID: 0 PID: 13473 Comm: syz.4.2080 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 458.126411][T13473] Tainted: [U]=USER [ 458.126419][T13473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 458.126434][T13473] Call Trace: [ 458.126442][T13473] [ 458.126451][T13473] dump_stack_lvl+0x16c/0x1f0 [ 458.126490][T13473] should_fail_ex+0x50a/0x650 [ 458.126524][T13473] ? __pfx___might_resched+0x10/0x10 [ 458.126567][T13473] should_fail_alloc_page+0xe7/0x130 [ 458.126593][T13473] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 458.126633][T13473] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 458.126675][T13473] ? __pfx_mark_lock+0x10/0x10 [ 458.126719][T13473] ? lock_acquire.part.0+0x11b/0x380 [ 458.126757][T13473] ? hlock_class+0x4e/0x130 [ 458.126783][T13473] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 458.126838][T13473] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 458.126876][T13473] ? policy_nodemask+0xea/0x4e0 [ 458.126902][T13473] alloc_pages_mpol+0x1fc/0x540 [ 458.126924][T13473] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 458.126946][T13473] ? find_held_lock+0x2d/0x110 [ 458.126977][T13473] folio_alloc_mpol_noprof+0x36/0x2f0 [ 458.127006][T13473] shmem_alloc_folio+0x135/0x160 [ 458.127045][T13473] shmem_alloc_and_add_folio+0x48e/0xc10 [ 458.127079][T13473] ? shmem_huge_global_enabled+0x72/0x6b0 [ 458.127105][T13473] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 458.127137][T13473] ? shmem_allowable_huge_orders+0xd0/0x410 [ 458.127173][T13473] shmem_get_folio_gfp+0x689/0x1530 [ 458.127210][T13473] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 458.127250][T13473] shmem_fault+0x200/0xae0 [ 458.127280][T13473] ? __pfx_shmem_fault+0x10/0x10 [ 458.127317][T13473] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 458.127351][T13473] ? rcu_is_watching+0x12/0xc0 [ 458.127380][T13473] ? __pfx_filemap_map_pages+0x10/0x10 [ 458.127408][T13473] __do_fault+0x10a/0x490 [ 458.127437][T13473] ? __pfx_filemap_map_pages+0x10/0x10 [ 458.127464][T13473] do_pte_missing+0x1a8/0x3e10 [ 458.127500][T13473] ? __pfx_lock_release+0x10/0x10 [ 458.127538][T13473] __handle_mm_fault+0x1166/0x2c60 [ 458.127582][T13473] ? __pfx___handle_mm_fault+0x10/0x10 [ 458.127615][T13473] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 458.127667][T13473] ? find_vma+0xc0/0x140 [ 458.127703][T13473] ? __pfx_find_vma+0x10/0x10 [ 458.127738][T13473] handle_mm_fault+0x3fa/0xaa0 [ 458.127782][T13473] do_user_addr_fault+0x7a3/0x13f0 [ 458.127825][T13473] exc_page_fault+0x5c/0xc0 [ 458.127856][T13473] asm_exc_page_fault+0x26/0x30 [ 458.127888][T13473] RIP: 0010:rep_movs_alternative+0x4a/0x70 [ 458.127915][T13473] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1 [ 458.127939][T13473] RSP: 0018:ffffc900042cf768 EFLAGS: 00050206 [ 458.127959][T13473] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000000ff8 [ 458.127974][T13473] RDX: 0000000000000000 RSI: ffff888068851008 RDI: 000000000000d000 [ 458.127989][T13473] RBP: 0000000000001000 R08: 0000000000000000 R09: ffffed100d10a3ff [ 458.128004][T13473] R10: ffff888068851fff R11: 0000000000000000 R12: 000000000000cff8 [ 458.128018][T13473] R13: ffffc900042cfd70 R14: ffff888068851000 R15: 000000000000cff8 [ 458.128052][T13473] _copy_to_iter+0x4ed/0x1560 [ 458.128087][T13473] ? __pfx__copy_to_iter+0x10/0x10 [ 458.128114][T13473] ? const_folio_flags+0x5b/0x100 [ 458.128142][T13473] ? folio_mark_accessed+0xc2/0xc00 [ 458.128174][T13473] ? __pfx_folio_mark_accessed+0x10/0x10 [ 458.128214][T13473] copy_page_to_iter+0xf1/0x180 [ 458.128244][T13473] filemap_read+0x698/0xe70 [ 458.128290][T13473] ? __pfx_filemap_read+0x10/0x10 [ 458.128350][T13473] ? __pfx_mark_lock+0x10/0x10 [ 458.128380][T13473] ? futex_wait_queue+0x41/0x1f0 [ 458.128413][T13473] ? __pfx_aa_file_perm+0x10/0x10 [ 458.128450][T13473] blkdev_read_iter+0x187/0x4b0 [ 458.128488][T13473] do_iter_readv_writev+0x737/0x950 [ 458.128522][T13473] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 458.128558][T13473] ? bpf_lsm_file_permission+0x9/0x10 [ 458.128593][T13473] ? security_file_permission+0x71/0x210 [ 458.128625][T13473] ? rw_verify_area+0xcf/0x680 [ 458.128655][T13473] vfs_readv+0x4d2/0x8a0 [ 458.128682][T13473] ? __pfx___lock_acquire+0x10/0x10 [ 458.128723][T13473] ? futex_wait+0x121/0x380 [ 458.128762][T13473] ? __pfx_vfs_readv+0x10/0x10 [ 458.128799][T13473] ? __fget_files+0x1fc/0x3a0 [ 458.128832][T13473] ? __pfx_lock_release+0x10/0x10 [ 458.128877][T13473] ? __fget_files+0x206/0x3a0 [ 458.128916][T13473] ? do_preadv+0x1b1/0x270 [ 458.128944][T13473] do_preadv+0x1b1/0x270 [ 458.128974][T13473] ? __pfx_do_preadv+0x10/0x10 [ 458.129013][T13473] do_syscall_64+0xcd/0x250 [ 458.129047][T13473] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 458.129085][T13473] RIP: 0033:0x7f317938d169 [ 458.129104][T13473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 458.129126][T13473] RSP: 002b:00007f317a22e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 458.129148][T13473] RAX: ffffffffffffffda RBX: 00007f31795a6080 RCX: 00007f317938d169 [ 458.129164][T13473] RDX: 0000000000000006 RSI: 0000400000000080 RDI: 0040000000000003 [ 458.129180][T13473] RBP: 00007f317940e2a0 R08: 0000000000000005 R09: 0000000000000000 [ 458.129196][T13473] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 458.129210][T13473] R13: 0000000000000000 R14: 00007f31795a6080 R15: 00007ffeed130298 [ 458.129242][T13473] [ 458.662477][ C1] vkms_vblank_simulate: vblank timer overrun [ 459.526159][T13504] nbd: nbd7 already in use [ 459.620060][T13504] mkiss: ax0: crc mode is auto. [ 460.926057][T13544] FAULT_INJECTION: forcing a failure. [ 460.926057][T13544] name failslab, interval 1, probability 0, space 0, times 0 [ 460.972556][T13544] CPU: 1 UID: 0 PID: 13544 Comm: syz.4.2096 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 460.972592][T13544] Tainted: [U]=USER [ 460.972600][T13544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 460.972612][T13544] Call Trace: [ 460.972620][T13544] [ 460.972629][T13544] dump_stack_lvl+0x16c/0x1f0 [ 460.972670][T13544] should_fail_ex+0x50a/0x650 [ 460.972703][T13544] ? __build_skb_around+0x278/0x3b0 [ 460.972734][T13544] should_failslab+0xc2/0x120 [ 460.972757][T13544] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 460.972789][T13544] ? sctp_bind_addrs_to_raw+0x2c8/0x3e0 [ 460.972814][T13544] ? sctp_chunkify+0x51/0x2d0 [ 460.972843][T13544] sctp_chunkify+0x51/0x2d0 [ 460.972868][T13544] _sctp_make_chunk+0x148/0x270 [ 460.972894][T13544] sctp_make_control+0x2f/0x2d0 [ 460.972919][T13544] sctp_make_init+0x6fb/0xdd0 [ 460.972955][T13544] ? __pfx_sctp_make_init+0x10/0x10 [ 460.972981][T13544] ? kernel_text_address+0x8d/0x100 [ 460.973015][T13544] ? unwind_get_return_address+0x59/0xa0 [ 460.973050][T13544] ? arch_stack_walk+0xa7/0x100 [ 460.973075][T13544] ? sctp_sm_lookup_event+0x15c/0x570 [ 460.973100][T13544] ? __pfx_sctp_sm_lookup_event+0x10/0x10 [ 460.973130][T13544] sctp_sf_do_prm_asoc+0xbf/0x360 [ 460.973162][T13544] ? __pfx_sctp_pname+0x10/0x10 [ 460.973188][T13544] sctp_do_sm+0x17f/0x5c90 [ 460.973216][T13544] ? kasan_save_stack+0x42/0x60 [ 460.973247][T13544] ? kasan_save_stack+0x33/0x60 [ 460.973276][T13544] ? kasan_save_track+0x14/0x30 [ 460.973307][T13544] ? __pfx_sctp_do_sm+0x10/0x10 [ 460.973327][T13544] ? sctp_sendmsg+0xf0a/0x1eb0 [ 460.973357][T13544] ? __sys_sendto+0x42a/0x4f0 [ 460.973399][T13544] ? __x64_sys_sendto+0xe0/0x1c0 [ 460.973426][T13544] ? do_syscall_64+0xcd/0x250 [ 460.973453][T13544] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 460.973519][T13544] ? sk_leave_memory_pressure+0xdd/0x130 [ 460.973545][T13544] ? __sk_mem_raise_allocated+0x8a1/0x1710 [ 460.973589][T13544] sctp_primitive_ASSOCIATE+0x9c/0xd0 [ 460.973628][T13544] sctp_sendmsg_to_asoc+0xa4d/0x1ad0 [ 460.973666][T13544] ? sctp_assoc_add_peer+0x254/0x1530 [ 460.973705][T13544] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10 [ 460.973738][T13544] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 460.973773][T13544] ? lock_acquire+0x2f/0xb0 [ 460.973802][T13544] ? sctp_endpoint_lookup_assoc+0xac/0x2a0 [ 460.973841][T13544] sctp_sendmsg+0xf0a/0x1eb0 [ 460.973873][T13544] ? __pfx___lock_acquire+0x10/0x10 [ 460.973912][T13544] ? __pfx_sctp_sendmsg+0x10/0x10 [ 460.973966][T13544] ? __pfx_aa_sk_perm+0x10/0x10 [ 460.973998][T13544] ? __pfx_sctp_sendmsg+0x10/0x10 [ 460.974032][T13544] inet_sendmsg+0x119/0x140 [ 460.974067][T13544] __sys_sendto+0x42a/0x4f0 [ 460.974098][T13544] ? __pfx___sys_sendto+0x10/0x10 [ 460.974157][T13544] ? ksys_write+0x1ba/0x250 [ 460.974187][T13544] ? __pfx_ksys_write+0x10/0x10 [ 460.974222][T13544] __x64_sys_sendto+0xe0/0x1c0 [ 460.974250][T13544] ? do_syscall_64+0x91/0x250 [ 460.974278][T13544] ? lockdep_hardirqs_on+0x7c/0x110 [ 460.974305][T13544] do_syscall_64+0xcd/0x250 [ 460.974336][T13544] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 460.974365][T13544] RIP: 0033:0x7f317938d169 [ 460.974383][T13544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 460.974404][T13544] RSP: 002b:00007f317a22e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 460.974426][T13544] RAX: ffffffffffffffda RBX: 00007f31795a6080 RCX: 00007f317938d169 [ 460.974442][T13544] RDX: 000000000002000f RSI: 0000000000000000 RDI: 0000000000000003 [ 460.974456][T13544] RBP: 00007f317a22e090 R08: 0000400000000000 R09: 000000000000001c [ 460.974471][T13544] R10: 0000000000000101 R11: 0000000000000246 R12: 0000000000000002 [ 460.974485][T13544] R13: 0000000000000001 R14: 00007f31795a6080 R15: 00007ffeed130298 [ 460.974517][T13544] [ 461.349771][ C1] vkms_vblank_simulate: vblank timer overrun [ 461.451802][T13548] nbd: nbd7 already in use [ 461.510476][T13548] mkiss: ax0: crc mode is auto. [ 463.484911][T13579] FAULT_INJECTION: forcing a failure. [ 463.484911][T13579] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 463.563628][T13579] CPU: 0 UID: 0 PID: 13579 Comm: syz.1.2103 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 463.563670][T13579] Tainted: [U]=USER [ 463.563677][T13579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 463.563692][T13579] Call Trace: [ 463.563699][T13579] [ 463.563708][T13579] dump_stack_lvl+0x16c/0x1f0 [ 463.563747][T13579] should_fail_ex+0x50a/0x650 [ 463.563788][T13579] _copy_to_iter+0x465/0x1560 [ 463.563823][T13579] ? __pfx__copy_to_iter+0x10/0x10 [ 463.563851][T13579] ? const_folio_flags+0x5b/0x100 [ 463.563880][T13579] ? folio_mark_accessed+0xc2/0xc00 [ 463.563912][T13579] ? __pfx_folio_mark_accessed+0x10/0x10 [ 463.563952][T13579] copy_page_to_iter+0xf1/0x180 [ 463.563981][T13579] filemap_read+0x698/0xe70 [ 463.564026][T13579] ? __pfx_filemap_read+0x10/0x10 [ 463.564082][T13579] ? __pfx_mark_lock+0x10/0x10 [ 463.564113][T13579] ? futex_wait_queue+0x41/0x1f0 [ 463.564145][T13579] ? __pfx_aa_file_perm+0x10/0x10 [ 463.564181][T13579] blkdev_read_iter+0x187/0x4b0 [ 463.564238][T13579] do_iter_readv_writev+0x737/0x950 [ 463.564273][T13579] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 463.564310][T13579] ? bpf_lsm_file_permission+0x9/0x10 [ 463.564346][T13579] ? security_file_permission+0x71/0x210 [ 463.564379][T13579] ? rw_verify_area+0xcf/0x680 [ 463.564411][T13579] vfs_readv+0x4d2/0x8a0 [ 463.564437][T13579] ? __pfx___lock_acquire+0x10/0x10 [ 463.564469][T13579] ? futex_wait+0x121/0x380 [ 463.564506][T13579] ? __pfx_vfs_readv+0x10/0x10 [ 463.564542][T13579] ? __fget_files+0x1fc/0x3a0 [ 463.564574][T13579] ? __pfx_lock_release+0x10/0x10 [ 463.564619][T13579] ? __fget_files+0x206/0x3a0 [ 463.564662][T13579] ? do_preadv+0x1b1/0x270 [ 463.564690][T13579] do_preadv+0x1b1/0x270 [ 463.564719][T13579] ? __pfx_do_preadv+0x10/0x10 [ 463.564758][T13579] do_syscall_64+0xcd/0x250 [ 463.564794][T13579] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 463.564827][T13579] RIP: 0033:0x7fe00278d169 [ 463.564845][T13579] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 463.564868][T13579] RSP: 002b:00007fe003648038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 463.564891][T13579] RAX: ffffffffffffffda RBX: 00007fe0029a6080 RCX: 00007fe00278d169 [ 463.564908][T13579] RDX: 0000000000000006 RSI: 0000400000000080 RDI: 0040000000000003 [ 463.564924][T13579] RBP: 00007fe00280e2a0 R08: 0000000000000005 R09: 0000000000000000 [ 463.564939][T13579] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 463.564954][T13579] R13: 0000000000000000 R14: 00007fe0029a6080 R15: 00007ffeefc77208 [ 463.564986][T13579] [ 464.371736][T13607] ptrace attach of "./syz-executor exec"[12920] was attempted by "./syz-executor exec"[13607] [ 465.242391][T13634] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3) [ 465.809416][T13650] nbd: nbd7 already in use [ 465.844383][T13650] mkiss: ax0: crc mode is auto. [ 466.463962][T13679] ptrace attach of "./syz-executor exec"[12920] was attempted by "./syz-executor exec"[13679] [ 466.717932][T13691] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2121'. [ 466.738035][T13691] FAULT_INJECTION: forcing a failure. [ 466.738035][T13691] name failslab, interval 1, probability 0, space 0, times 0 [ 466.778164][T13691] CPU: 1 UID: 0 PID: 13691 Comm: syz.4.2121 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 466.778202][T13691] Tainted: [U]=USER [ 466.778210][T13691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 466.778222][T13691] Call Trace: [ 466.778229][T13691] [ 466.778238][T13691] dump_stack_lvl+0x16c/0x1f0 [ 466.778273][T13691] should_fail_ex+0x50a/0x650 [ 466.778307][T13691] ? fs_reclaim_acquire+0xae/0x150 [ 466.778338][T13691] should_failslab+0xc2/0x120 [ 466.778361][T13691] kmem_cache_alloc_node_noprof+0x72/0x3c0 [ 466.778393][T13691] ? netlink_dump+0x9e8/0xd00 [ 466.778420][T13691] ? __alloc_skb+0x2b1/0x380 [ 466.778449][T13691] ? __pfx___mutex_lock+0x10/0x10 [ 466.778482][T13691] __alloc_skb+0x2b1/0x380 [ 466.778511][T13691] ? __pfx___alloc_skb+0x10/0x10 [ 466.778541][T13691] ? _copy_to_iter+0x15e/0x1560 [ 466.778575][T13691] netlink_dump+0x699/0xd00 [ 466.778608][T13691] ? __pfx_netlink_dump+0x10/0x10 [ 466.778633][T13691] ? __phys_addr_symbol+0x30/0x80 [ 466.778656][T13691] ? __check_object_size+0x488/0x710 [ 466.778693][T13691] ? skb_recv_datagram+0x89/0xc0 [ 466.778721][T13691] ? rcu_is_watching+0x12/0xc0 [ 466.778754][T13691] netlink_recvmsg+0xa1a/0xf30 [ 466.778786][T13691] ? __pfx_netlink_recvmsg+0x10/0x10 [ 466.778813][T13691] ? aa_sk_perm+0x2f5/0xb20 [ 466.778843][T13691] ? __pfx_aa_sk_perm+0x10/0x10 [ 466.778869][T13691] ? find_held_lock+0x2d/0x110 [ 466.778906][T13691] sock_recvmsg+0x1f6/0x250 [ 466.778933][T13691] ____sys_recvmsg+0x219/0x6b0 [ 466.778964][T13691] ? __pfx_____sys_recvmsg+0x10/0x10 [ 466.779013][T13691] ___sys_recvmsg+0x115/0x1a0 [ 466.779046][T13691] ? __pfx____sys_recvmsg+0x10/0x10 [ 466.779079][T13691] ? __pfx_lock_release+0x10/0x10 [ 466.779109][T13691] ? trace_lock_acquire+0x14e/0x1f0 [ 466.779169][T13691] do_recvmmsg+0x2f8/0x740 [ 466.779212][T13691] ? __pfx_do_recvmmsg+0x10/0x10 [ 466.779241][T13691] ? vfs_write+0x306/0x1150 [ 466.779278][T13691] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 466.779324][T13691] ? __fget_files+0x206/0x3a0 [ 466.779363][T13691] __x64_sys_recvmmsg+0x239/0x290 [ 466.779399][T13691] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 466.779444][T13691] do_syscall_64+0xcd/0x250 [ 466.779475][T13691] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 466.779507][T13691] RIP: 0033:0x7f317938d169 [ 466.779525][T13691] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 466.779547][T13691] RSP: 002b:00007f317a24f038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 466.779569][T13691] RAX: ffffffffffffffda RBX: 00007f31795a5fa0 RCX: 00007f317938d169 [ 466.779585][T13691] RDX: 0000000000000007 RSI: 0000400000000100 RDI: 0000000000000005 [ 466.779600][T13691] RBP: 00007f317a24f090 R08: 0000000000000000 R09: 0000000000000000 [ 466.779614][T13691] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001 [ 466.779627][T13691] R13: 0000000000000000 R14: 00007f31795a5fa0 R15: 00007ffeed130298 [ 466.779658][T13691] [ 467.226413][T13700] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3) [ 467.505878][T13683] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2119'. [ 467.651763][T13717] FAULT_INJECTION: forcing a failure. [ 467.651763][T13717] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 467.675822][T13717] CPU: 0 UID: 0 PID: 13717 Comm: syz.4.2126 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 467.675858][T13717] Tainted: [U]=USER [ 467.675865][T13717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 467.675886][T13717] Call Trace: [ 467.675893][T13717] [ 467.675902][T13717] dump_stack_lvl+0x16c/0x1f0 [ 467.675937][T13717] should_fail_ex+0x50a/0x650 [ 467.675976][T13717] _copy_from_user+0x2e/0xd0 [ 467.676001][T13717] fbcon_set_con2fb_map_ioctl+0x7a/0x220 [ 467.676033][T13717] ? __pfx_fbcon_set_con2fb_map_ioctl+0x10/0x10 [ 467.676064][T13717] ? tomoyo_path_number_perm+0x46d/0x590 [ 467.676091][T13717] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 467.676126][T13717] do_fb_ioctl+0x32a/0x7d0 [ 467.676159][T13717] ? __pfx_do_fb_ioctl+0x10/0x10 [ 467.676197][T13717] ? do_vfs_ioctl+0x513/0x1990 [ 467.676259][T13717] ? __fget_files+0x206/0x3a0 [ 467.676294][T13717] fb_ioctl+0xe5/0x150 [ 467.676323][T13717] ? __pfx_fb_ioctl+0x10/0x10 [ 467.676355][T13717] __x64_sys_ioctl+0x190/0x200 [ 467.676384][T13717] do_syscall_64+0xcd/0x250 [ 467.676415][T13717] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 467.676446][T13717] RIP: 0033:0x7f317938d169 [ 467.676463][T13717] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 467.676484][T13717] RSP: 002b:00007f317a22e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 467.676505][T13717] RAX: ffffffffffffffda RBX: 00007f31795a6080 RCX: 00007f317938d169 [ 467.676520][T13717] RDX: 0000000000000000 RSI: 0000000000004610 RDI: 0000000000000003 [ 467.676537][T13717] RBP: 00007f317a22e090 R08: 0000000000000000 R09: 0000000000000000 [ 467.676549][T13717] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 467.676562][T13717] R13: 0000000000000001 R14: 00007f31795a6080 R15: 00007ffeed130298 [ 467.676588][T13717] [ 469.265596][T13779] FAULT_INJECTION: forcing a failure. [ 469.265596][T13779] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 469.309411][T13779] CPU: 0 UID: 0 PID: 13779 Comm: syz.4.2136 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 469.309445][T13779] Tainted: [U]=USER [ 469.309452][T13779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 469.309465][T13779] Call Trace: [ 469.309471][T13779] [ 469.309479][T13779] dump_stack_lvl+0x16c/0x1f0 [ 469.309512][T13779] should_fail_ex+0x50a/0x650 [ 469.309551][T13779] _copy_from_iter+0x2a1/0x1560 [ 469.309576][T13779] ? trace_lock_acquire+0x14e/0x1f0 [ 469.309603][T13779] ? __alloc_skb+0x1fe/0x380 [ 469.309633][T13779] ? __pfx__copy_from_iter+0x10/0x10 [ 469.309656][T13779] ? __virt_addr_valid+0x1a4/0x590 [ 469.309683][T13779] ? __virt_addr_valid+0x5e/0x590 [ 469.309706][T13779] ? __phys_addr_symbol+0x30/0x80 [ 469.309728][T13779] ? __check_object_size+0x488/0x710 [ 469.309754][T13779] netlink_sendmsg+0x813/0xd70 [ 469.309789][T13779] ? __pfx_netlink_sendmsg+0x10/0x10 [ 469.309830][T13779] sock_write_iter+0x4fe/0x5b0 [ 469.309855][T13779] ? __pfx_sock_write_iter+0x10/0x10 [ 469.309890][T13779] ? bpf_lsm_file_permission+0x9/0x10 [ 469.309925][T13779] ? security_file_permission+0x71/0x210 [ 469.309956][T13779] ? rw_verify_area+0xcf/0x680 [ 469.309987][T13779] vfs_write+0x5ae/0x1150 [ 469.310026][T13779] ? __pfx_sock_write_iter+0x10/0x10 [ 469.310055][T13779] ? __pfx_vfs_write+0x10/0x10 [ 469.310087][T13779] ? __fget_files+0x40/0x3a0 [ 469.310134][T13779] ksys_write+0x207/0x250 [ 469.310163][T13779] ? __pfx_ksys_write+0x10/0x10 [ 469.310201][T13779] do_syscall_64+0xcd/0x250 [ 469.310232][T13779] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 469.310262][T13779] RIP: 0033:0x7f317938d169 [ 469.310280][T13779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 469.310301][T13779] RSP: 002b:00007f317a24f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 469.310323][T13779] RAX: ffffffffffffffda RBX: 00007f31795a5fa0 RCX: 00007f317938d169 [ 469.310338][T13779] RDX: 0000000000000009 RSI: 0000000000000000 RDI: 0000000000000003 [ 469.310352][T13779] RBP: 00007f317a24f090 R08: 0000000000000000 R09: 0000000000000000 [ 469.310366][T13779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 469.310379][T13779] R13: 0000000000000000 R14: 00007f31795a5fa0 R15: 00007ffeed130298 [ 469.310409][T13779] [ 470.758422][T13828] FAULT_INJECTION: forcing a failure. [ 470.758422][T13828] name failslab, interval 1, probability 0, space 0, times 0 [ 470.771531][T13828] CPU: 0 UID: 0 PID: 13828 Comm: syz.0.2144 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 470.771563][T13828] Tainted: [U]=USER [ 470.771570][T13828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 470.771583][T13828] Call Trace: [ 470.771590][T13828] [ 470.771598][T13828] dump_stack_lvl+0x16c/0x1f0 [ 470.771633][T13828] should_fail_ex+0x50a/0x650 [ 470.771676][T13828] ? fs_reclaim_acquire+0xae/0x150 [ 470.771706][T13828] should_failslab+0xc2/0x120 [ 470.771727][T13828] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 470.771759][T13828] ? getname_flags.part.0+0x4c/0x550 [ 470.771787][T13828] getname_flags.part.0+0x4c/0x550 [ 470.771813][T13828] getname_flags+0x93/0xf0 [ 470.771840][T13828] __x64_sys_rename+0x65/0xa0 [ 470.771862][T13828] do_syscall_64+0xcd/0x250 [ 470.771892][T13828] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 470.771922][T13828] RIP: 0033:0x7f0221b8d169 [ 470.771939][T13828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 470.771960][T13828] RSP: 002b:00007f022291d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052 [ 470.771981][T13828] RAX: ffffffffffffffda RBX: 00007f0221da6160 RCX: 00007f0221b8d169 [ 470.771996][T13828] RDX: 0000000000000000 RSI: 0000400000000000 RDI: 0000400000000040 [ 470.772010][T13828] RBP: 00007f022291d090 R08: 0000000000000000 R09: 0000000000000000 [ 470.772024][T13828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 470.772037][T13828] R13: 0000000000000000 R14: 00007f0221da6160 R15: 00007ffcebe2dd08 [ 470.772066][T13828] [ 471.443068][T13836] nbd: nbd7 already in use [ 471.481927][T13836] mkiss: ax0: crc mode is auto. [ 471.950098][T13846] ptrace attach of "./syz-executor exec"[5832] was attempted by "./syz-executor exec"[13846] [ 473.325575][T13875] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3) [ 473.797561][T13882] nbd: nbd7 already in use [ 473.855701][T13882] mkiss: ax0: crc mode is auto. [ 474.208543][T13894] ptrace attach of "./syz-executor exec"[5834] was attempted by "./syz-executor exec"[13894] [ 474.750645][T13902] FAULT_INJECTION: forcing a failure. [ 474.750645][T13902] name failslab, interval 1, probability 0, space 0, times 0 [ 474.796807][T13902] CPU: 0 UID: 0 PID: 13902 Comm: syz.0.2174 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 474.796847][T13902] Tainted: [U]=USER [ 474.796855][T13902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 474.796868][T13902] Call Trace: [ 474.796875][T13902] [ 474.796885][T13902] dump_stack_lvl+0x16c/0x1f0 [ 474.796927][T13902] should_fail_ex+0x50a/0x650 [ 474.796965][T13902] ? fs_reclaim_acquire+0xae/0x150 [ 474.796999][T13902] ? snd_pcm_plugin_build+0x64/0x650 [ 474.797028][T13902] should_failslab+0xc2/0x120 [ 474.797052][T13902] __kmalloc_noprof+0xcb/0x510 [ 474.797085][T13902] ? __kmalloc_noprof+0x23b/0x510 [ 474.797116][T13902] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 474.797154][T13902] snd_pcm_plugin_build+0x64/0x650 [ 474.797180][T13902] ? snd_pcm_plugin_build+0x4b7/0x650 [ 474.797214][T13902] snd_pcm_plugin_build_linear+0x29f/0x850 [ 474.797251][T13902] ? __pfx_snd_pcm_plugin_build_linear+0x10/0x10 [ 474.797286][T13902] ? snd_pcm_hw_params+0xce/0x1b20 [ 474.797322][T13902] snd_pcm_plug_format_plugins+0x618/0x1440 [ 474.797354][T13902] ? __pfx_snd_pcm_plug_format_plugins+0x10/0x10 [ 474.797389][T13902] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 474.797429][T13902] snd_pcm_oss_change_params_locked+0x2e95/0x3a60 [ 474.797473][T13902] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 474.797530][T13902] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 474.797565][T13902] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 474.797605][T13902] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 474.797640][T13902] ? __fget_files+0x206/0x3a0 [ 474.797680][T13902] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 474.797711][T13902] __x64_sys_ioctl+0x190/0x200 [ 474.797743][T13902] do_syscall_64+0xcd/0x250 [ 474.797777][T13902] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 474.797810][T13902] RIP: 0033:0x7f0221b8d169 [ 474.797828][T13902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 474.797851][T13902] RSP: 002b:00007f022295f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 474.797875][T13902] RAX: ffffffffffffffda RBX: 00007f0221da5fa0 RCX: 00007f0221b8d169 [ 474.797892][T13902] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 000000000000000c [ 474.797907][T13902] RBP: 00007f0221c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 474.797924][T13902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 474.797939][T13902] R13: 0000000000000000 R14: 00007f0221da5fa0 R15: 00007ffcebe2dd08 [ 474.797972][T13902] [ 476.198430][T13934] ptrace attach of "./syz-executor exec"[5832] was attempted by "./syz-executor exec"[13934] [ 478.575517][T13971] ptrace attach of "./syz-executor exec"[5832] was attempted by "./syz-executor exec"[13971] [ 479.019868][T13984] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2194'. [ 479.240806][ T5845] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 479.252698][ T5845] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 479.261527][ T5845] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 479.271228][ T5845] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 479.285908][ T5845] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 479.293395][ T5845] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 479.506299][T11447] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 479.597544][T11447] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 479.606302][T13998] nbd: nbd7 already in use [ 479.665007][T13998] mkiss: ax0: crc mode is auto. [ 479.712729][T11447] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 479.887380][T11447] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 479.953123][T13990] chnl_net:caif_netlink_parms(): no params data found [ 480.289307][T13990] bridge0: port 1(bridge_slave_0) entered blocking state [ 480.303650][T13990] bridge0: port 1(bridge_slave_0) entered disabled state [ 480.325630][T13990] bridge_slave_0: entered allmulticast mode [ 480.333350][T13990] bridge_slave_0: entered promiscuous mode [ 480.346257][T13990] bridge0: port 2(bridge_slave_1) entered blocking state [ 480.354643][T13990] bridge0: port 2(bridge_slave_1) entered disabled state [ 480.374783][T13990] bridge_slave_1: entered allmulticast mode [ 480.385843][T13990] bridge_slave_1: entered promiscuous mode [ 480.591007][T11447] bridge_slave_1: left allmulticast mode [ 480.601684][T11447] bridge_slave_1: left promiscuous mode [ 480.614701][T11447] bridge0: port 2(bridge_slave_1) entered disabled state [ 480.634493][T11447] bridge_slave_0: left allmulticast mode [ 480.641788][T11447] bridge_slave_0: left promiscuous mode [ 480.652058][T11447] bridge0: port 1(bridge_slave_0) entered disabled state [ 481.360377][T11447] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 481.362716][ T5845] Bluetooth: hci3: command tx timeout [ 481.384607][T11447] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 481.397091][T11447] bond0 (unregistering): Released all slaves [ 481.414952][T13990] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 481.488649][T13990] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 481.563344][T14059] nbd: nbd7 already in use [ 481.614829][T14059] mkiss: ax0: crc mode is auto. [ 481.629319][T13990] team0: Port device team_slave_0 added [ 481.640538][T13990] team0: Port device team_slave_1 added [ 481.699110][T14063] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2210'. [ 481.781475][T13990] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 481.801851][T13990] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 482.033087][T13990] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 482.076824][T14074] FAULT_INJECTION: forcing a failure. [ 482.076824][T14074] name fail_futex, interval 1, probability 0, space 0, times 1 [ 482.138156][T14074] CPU: 1 UID: 0 PID: 14074 Comm: syz.0.2212 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 482.138198][T14074] Tainted: [U]=USER [ 482.138207][T14074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 482.138223][T14074] Call Trace: [ 482.138232][T14074] [ 482.138243][T14074] dump_stack_lvl+0x16c/0x1f0 [ 482.138281][T14074] should_fail_ex+0x50a/0x650 [ 482.138324][T14074] get_futex_key+0x4a3/0x1000 [ 482.138359][T14074] ? __pfx_get_futex_key+0x10/0x10 [ 482.138388][T14074] ? mm_get_unmapped_area_vmflags+0x97/0xe0 [ 482.138430][T14074] futex_wake+0xe8/0x4e0 [ 482.138462][T14074] ? vm_mmap_pgoff+0x29b/0x3a0 [ 482.138497][T14074] ? __pfx_futex_wake+0x10/0x10 [ 482.138545][T14074] do_futex+0x1e5/0x350 [ 482.138575][T14074] ? __pfx_do_futex+0x10/0x10 [ 482.138605][T14074] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 482.138643][T14074] __x64_sys_futex+0x1e1/0x4c0 [ 482.138674][T14074] ? fput+0x67/0x440 [ 482.138698][T14074] ? __pfx___x64_sys_futex+0x10/0x10 [ 482.138727][T14074] ? ksys_mmap_pgoff+0x85/0x5c0 [ 482.138756][T14074] ? rcu_is_watching+0x12/0xc0 [ 482.138787][T14074] do_syscall_64+0xcd/0x250 [ 482.138819][T14074] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 482.138852][T14074] RIP: 0033:0x7f0221b8d169 [ 482.138872][T14074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 482.138895][T14074] RSP: 002b:00007f022295f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 482.138919][T14074] RAX: ffffffffffffffda RBX: 00007f0221da5fa8 RCX: 00007f0221b8d169 [ 482.138936][T14074] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f0221da5fac [ 482.138952][T14074] RBP: 00007f0221da5fa0 R08: 00007f0222960000 R09: 0000000000000000 [ 482.138968][T14074] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f0221da5fac [ 482.138984][T14074] R13: 0000000000000000 R14: 00007ffcebe2dc20 R15: 00007ffcebe2dd08 [ 482.139016][T14074] [ 482.340853][ C1] vkms_vblank_simulate: vblank timer overrun [ 482.464763][T13990] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 482.471857][T13990] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 482.497737][ C1] vkms_vblank_simulate: vblank timer overrun [ 482.504430][T13990] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 482.553459][T13990] hsr_slave_0: entered promiscuous mode [ 482.559932][T13990] hsr_slave_1: entered promiscuous mode [ 482.565979][T13990] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 482.596257][T13990] Cannot create hsr debugfs directory [ 482.775038][T14084] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2214'. [ 483.139658][T11447] hsr_slave_0: left promiscuous mode [ 483.145587][T11447] hsr_slave_1: left promiscuous mode [ 483.156043][T11447] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 483.173937][T11447] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 483.197751][T11447] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 483.211461][T11447] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 483.245691][T11447] veth1_macvtap: left promiscuous mode [ 483.265951][T11447] veth0_macvtap: left promiscuous mode [ 483.438032][ T5845] Bluetooth: hci3: command tx timeout [ 483.606815][T11447] veth1_vlan: left promiscuous mode [ 483.622522][T11447] veth0_vlan: left promiscuous mode [ 484.515674][T11447] team0 (unregistering): Port device team_slave_1 removed [ 484.566829][T11447] team0 (unregistering): Port device team_slave_0 removed [ 485.540190][ T5845] Bluetooth: hci3: command tx timeout [ 486.326162][T14137] FAULT_INJECTION: forcing a failure. [ 486.326162][T14137] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 486.343902][T14137] CPU: 1 UID: 0 PID: 14137 Comm: syz.4.2224 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 486.343936][T14137] Tainted: [U]=USER [ 486.343943][T14137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 486.343954][T14137] Call Trace: [ 486.343961][T14137] [ 486.343968][T14137] dump_stack_lvl+0x16c/0x1f0 [ 486.343996][T14137] should_fail_ex+0x50a/0x650 [ 486.344026][T14137] _copy_from_user+0x2e/0xd0 [ 486.344047][T14137] copy_msghdr_from_user+0x99/0x160 [ 486.344073][T14137] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 486.344111][T14137] ___sys_sendmsg+0xff/0x1e0 [ 486.344138][T14137] ? __pfx____sys_sendmsg+0x10/0x10 [ 486.344175][T14137] ? __pfx_lock_release+0x10/0x10 [ 486.344199][T14137] ? trace_lock_acquire+0x14e/0x1f0 [ 486.344229][T14137] ? __fget_files+0x206/0x3a0 [ 486.344261][T14137] __sys_sendmsg+0x16e/0x220 [ 486.344288][T14137] ? __pfx___sys_sendmsg+0x10/0x10 [ 486.344334][T14137] do_syscall_64+0xcd/0x250 [ 486.344360][T14137] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 486.344385][T14137] RIP: 0033:0x7f317938d169 [ 486.344400][T14137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 486.344418][T14137] RSP: 002b:00007f317a24f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 486.344435][T14137] RAX: ffffffffffffffda RBX: 00007f31795a5fa0 RCX: 00007f317938d169 [ 486.344448][T14137] RDX: 0000000004000840 RSI: 0000400000000a80 RDI: 0000000000000004 [ 486.344460][T14137] RBP: 00007f317a24f090 R08: 0000000000000000 R09: 0000000000000000 [ 486.344482][T14137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 486.344493][T14137] R13: 0000000000000000 R14: 00007f31795a5fa0 R15: 00007ffeed130298 [ 486.344517][T14137] [ 486.523481][ C1] vkms_vblank_simulate: vblank timer overrun [ 486.839576][T14151] nbd: nbd7 already in use [ 486.862428][T14151] mkiss: ax0: crc mode is auto. [ 487.141495][T14154] netlink: 74 bytes leftover after parsing attributes in process `syz.4.2229'. [ 487.219642][T13990] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 487.247818][T13990] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 487.277289][T13990] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 487.331605][T13990] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 487.575802][T13990] 8021q: adding VLAN 0 to HW filter on device bond0 [ 487.596657][ T5845] Bluetooth: hci3: command tx timeout [ 487.611643][T13990] 8021q: adding VLAN 0 to HW filter on device team0 [ 487.624115][ T3498] bridge0: port 1(bridge_slave_0) entered blocking state [ 487.631314][ T3498] bridge0: port 1(bridge_slave_0) entered forwarding state [ 487.739506][T11454] bridge0: port 2(bridge_slave_1) entered blocking state [ 487.746718][T11454] bridge0: port 2(bridge_slave_1) entered forwarding state [ 487.887902][T13990] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 488.031083][T14188] FAULT_INJECTION: forcing a failure. [ 488.031083][T14188] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 488.176608][T14188] CPU: 1 UID: 0 PID: 14188 Comm: syz.0.2234 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 488.176645][T14188] Tainted: [U]=USER [ 488.176653][T14188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 488.176666][T14188] Call Trace: [ 488.176674][T14188] [ 488.176683][T14188] dump_stack_lvl+0x16c/0x1f0 [ 488.176718][T14188] should_fail_ex+0x50a/0x650 [ 488.176758][T14188] _copy_from_iter+0x2a1/0x1560 [ 488.176784][T14188] ? trace_lock_acquire+0x14e/0x1f0 [ 488.176811][T14188] ? __alloc_skb+0x1fe/0x380 [ 488.176842][T14188] ? __pfx__copy_from_iter+0x10/0x10 [ 488.176864][T14188] ? __virt_addr_valid+0x1a4/0x590 [ 488.176891][T14188] ? __virt_addr_valid+0x5e/0x590 [ 488.176913][T14188] ? __phys_addr_symbol+0x30/0x80 [ 488.176936][T14188] ? __check_object_size+0x488/0x710 [ 488.176974][T14188] netlink_sendmsg+0x813/0xd70 [ 488.177011][T14188] ? __pfx_netlink_sendmsg+0x10/0x10 [ 488.177053][T14188] ____sys_sendmsg+0xaaf/0xc90 [ 488.177110][T14188] ? copy_msghdr_from_user+0x10b/0x160 [ 488.177141][T14188] ? __pfx_____sys_sendmsg+0x10/0x10 [ 488.177181][T14188] ___sys_sendmsg+0x135/0x1e0 [ 488.177213][T14188] ? __pfx____sys_sendmsg+0x10/0x10 [ 488.177257][T14188] ? __pfx_lock_release+0x10/0x10 [ 488.177286][T14188] ? trace_lock_acquire+0x14e/0x1f0 [ 488.177322][T14188] ? __fget_files+0x206/0x3a0 [ 488.177362][T14188] __sys_sendmsg+0x16e/0x220 [ 488.177393][T14188] ? __pfx___sys_sendmsg+0x10/0x10 [ 488.177449][T14188] do_syscall_64+0xcd/0x250 [ 488.177482][T14188] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 488.177512][T14188] RIP: 0033:0x7f0221b8d169 [ 488.177531][T14188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 488.177552][T14188] RSP: 002b:00007f022295f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 488.177575][T14188] RAX: ffffffffffffffda RBX: 00007f0221da5fa0 RCX: 00007f0221b8d169 [ 488.177591][T14188] RDX: 000000002004881c RSI: 0000400000000580 RDI: 0000000000000003 [ 488.177640][T14188] RBP: 00007f022295f090 R08: 0000000000000000 R09: 0000000000000000 [ 488.177654][T14188] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 488.177667][T14188] R13: 0000000000000000 R14: 00007f0221da5fa0 R15: 00007ffcebe2dd08 [ 488.177698][T14188] [ 488.414002][ C1] vkms_vblank_simulate: vblank timer overrun [ 488.622918][T13990] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 489.357712][T13990] veth0_vlan: entered promiscuous mode [ 489.576612][T13990] veth1_vlan: entered promiscuous mode [ 490.533386][T13990] veth0_macvtap: entered promiscuous mode [ 490.714364][T13990] veth1_macvtap: entered promiscuous mode [ 491.145023][T13990] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 491.186638][T13990] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 491.220843][T13990] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 491.232010][T13990] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 491.266583][T13990] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 491.296604][T13990] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 491.327854][T13990] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 491.825391][T13990] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 491.845725][T13990] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 491.856736][T13990] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 491.867284][T13990] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 491.887345][T13990] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 491.909069][T13990] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 491.931250][T13990] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 491.940622][T13990] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 491.949439][T13990] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 492.238184][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 492.260572][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 492.313302][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 492.342851][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 493.570198][T14298] FAULT_INJECTION: forcing a failure. [ 493.570198][T14298] name failslab, interval 1, probability 0, space 0, times 0 [ 493.596693][T14298] CPU: 1 UID: 0 PID: 14298 Comm: syz.0.2248 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 493.596733][T14298] Tainted: [U]=USER [ 493.596742][T14298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 493.596756][T14298] Call Trace: [ 493.596764][T14298] [ 493.596773][T14298] dump_stack_lvl+0x16c/0x1f0 [ 493.596809][T14298] should_fail_ex+0x50a/0x650 [ 493.596846][T14298] ? fs_reclaim_acquire+0xae/0x150 [ 493.596878][T14298] ? snd_pcm_plugin_build+0x64/0x650 [ 493.596905][T14298] should_failslab+0xc2/0x120 [ 493.596928][T14298] __kmalloc_noprof+0xcb/0x510 [ 493.596972][T14298] ? __kmalloc_noprof+0x23b/0x510 [ 493.597003][T14298] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 493.597041][T14298] snd_pcm_plugin_build+0x64/0x650 [ 493.597067][T14298] ? snd_pcm_plugin_build+0x4b7/0x650 [ 493.597099][T14298] snd_pcm_plugin_build_linear+0x29f/0x850 [ 493.597133][T14298] ? __pfx_snd_pcm_plugin_build_linear+0x10/0x10 [ 493.597168][T14298] ? snd_pcm_hw_params+0xce/0x1b20 [ 493.597202][T14298] snd_pcm_plug_format_plugins+0x618/0x1440 [ 493.597235][T14298] ? __pfx_snd_pcm_plug_format_plugins+0x10/0x10 [ 493.597270][T14298] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 493.597307][T14298] snd_pcm_oss_change_params_locked+0x2e95/0x3a60 [ 493.597350][T14298] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 493.597406][T14298] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 493.597441][T14298] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 493.597476][T14298] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 493.597510][T14298] ? __fget_files+0x206/0x3a0 [ 493.597549][T14298] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 493.597580][T14298] __x64_sys_ioctl+0x190/0x200 [ 493.597613][T14298] do_syscall_64+0xcd/0x250 [ 493.597648][T14298] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 493.597683][T14298] RIP: 0033:0x7f0221b8d169 [ 493.597704][T14298] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 493.597728][T14298] RSP: 002b:00007f022295f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 493.597751][T14298] RAX: ffffffffffffffda RBX: 00007f0221da5fa0 RCX: 00007f0221b8d169 [ 493.597769][T14298] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 000000000000000c [ 493.597783][T14298] RBP: 00007f0221c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 493.597800][T14298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 493.597816][T14298] R13: 0000000000000000 R14: 00007f0221da5fa0 R15: 00007ffcebe2dd08 [ 493.597850][T14298] [ 493.855607][ C1] vkms_vblank_simulate: vblank timer overrun syzkaller syzkaller login: [ 495.708748][T14333] FAULT_INJECTION: forcing a failure. [ 495.708748][T14333] name failslab, interval 1, probability 0, space 0, times 0 [ 495.726844][T14333] CPU: 0 UID: 0 PID: 14333 Comm: syz.0.2258 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 495.726880][T14333] Tainted: [U]=USER [ 495.726887][T14333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 495.726900][T14333] Call Trace: [ 495.726907][T14333] [ 495.726917][T14333] dump_stack_lvl+0x16c/0x1f0 [ 495.726951][T14333] should_fail_ex+0x50a/0x650 [ 495.726985][T14333] ? fs_reclaim_acquire+0xae/0x150 [ 495.727016][T14333] should_failslab+0xc2/0x120 [ 495.727039][T14333] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 495.727071][T14333] ? vm_area_dup+0x53/0x2f0 [ 495.727107][T14333] vm_area_dup+0x53/0x2f0 [ 495.727139][T14333] __split_vma+0x181/0x1160 [ 495.727176][T14333] ? __pfx___split_vma+0x10/0x10 [ 495.727220][T14333] vms_gather_munmap_vmas+0x38b/0x1730 [ 495.727262][T14333] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 495.727306][T14333] ? mas_walk+0x6a6/0x910 [ 495.727346][T14333] __mmap_region+0x328/0x2760 [ 495.727372][T14333] ? __pfx___mmap_region+0x10/0x10 [ 495.727401][T14333] ? hlock_class+0x4e/0x130 [ 495.727426][T14333] ? mark_lock+0xb5/0xc60 [ 495.727461][T14333] ? __pfx_mark_lock+0x10/0x10 [ 495.727495][T14333] ? hlock_class+0x4e/0x130 [ 495.727573][T14333] mmap_region+0x32b/0x3f0 [ 495.727602][T14333] do_mmap+0xd8d/0x11b0 [ 495.727637][T14333] ? __pfx_do_mmap+0x10/0x10 [ 495.727667][T14333] ? __pfx_down_write_killable+0x10/0x10 [ 495.727707][T14333] vm_mmap_pgoff+0x203/0x3a0 [ 495.727746][T14333] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 495.727809][T14333] ? __fget_files+0x206/0x3a0 [ 495.727847][T14333] ksys_mmap_pgoff+0x32c/0x5c0 [ 495.727876][T14333] ? __pfx_ksys_write+0x10/0x10 [ 495.727910][T14333] __x64_sys_mmap+0x125/0x190 [ 495.727947][T14333] do_syscall_64+0xcd/0x250 [ 495.727979][T14333] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 495.728010][T14333] RIP: 0033:0x7f0221b8d169 [ 495.728029][T14333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 495.728051][T14333] RSP: 002b:00007f022295f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 495.728073][T14333] RAX: ffffffffffffffda RBX: 00007f0221da5fa0 RCX: 00007f0221b8d169 [ 495.728089][T14333] RDX: 0000000000000008 RSI: 0000000000000009 RDI: 0000000000002000 [ 495.728103][T14333] RBP: 00007f022295f090 R08: 0000000000000003 R09: 0000000000000000 [ 495.728118][T14333] R10: 0008000000008011 R11: 0000000000000246 R12: 0000000000000001 [ 495.728132][T14333] R13: 0000000000000000 R14: 00007f0221da5fa0 R15: 00007ffcebe2dd08 [ 495.728164][T14333] [ 496.740659][T14346] nbd: nbd7 already in use [ 496.776162][T14346] mkiss: ax0: crc mode is auto. [ 498.063022][T14364] FAULT_INJECTION: forcing a failure. [ 498.063022][T14364] name failslab, interval 1, probability 0, space 0, times 0 [ 498.101955][T14364] CPU: 1 UID: 0 PID: 14364 Comm: syz.0.2273 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 498.101995][T14364] Tainted: [U]=USER [ 498.102003][T14364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 498.102017][T14364] Call Trace: [ 498.102023][T14364] [ 498.102031][T14364] dump_stack_lvl+0x16c/0x1f0 [ 498.102067][T14364] should_fail_ex+0x50a/0x650 [ 498.102107][T14364] ? fs_reclaim_acquire+0xae/0x150 [ 498.102142][T14364] ? snd_pcm_plugin_build+0x434/0x650 [ 498.102169][T14364] should_failslab+0xc2/0x120 [ 498.102194][T14364] __kmalloc_noprof+0xcb/0x510 [ 498.102226][T14364] ? __kmalloc_noprof+0x23b/0x510 [ 498.102257][T14364] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 498.102295][T14364] snd_pcm_plugin_build+0x434/0x650 [ 498.102322][T14364] ? snd_pcm_plugin_build+0x4b7/0x650 [ 498.102354][T14364] snd_pcm_plugin_build_linear+0x29f/0x850 [ 498.102389][T14364] ? __pfx_snd_pcm_plugin_build_linear+0x10/0x10 [ 498.102425][T14364] ? snd_pcm_hw_params+0xce/0x1b20 [ 498.102460][T14364] snd_pcm_plug_format_plugins+0x618/0x1440 [ 498.102494][T14364] ? __pfx_snd_pcm_plug_format_plugins+0x10/0x10 [ 498.102530][T14364] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 498.102568][T14364] snd_pcm_oss_change_params_locked+0x2e95/0x3a60 [ 498.102624][T14364] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 498.102678][T14364] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 498.102710][T14364] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 498.102741][T14364] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 498.102770][T14364] ? __fget_files+0x206/0x3a0 [ 498.102802][T14364] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 498.102830][T14364] __x64_sys_ioctl+0x190/0x200 [ 498.102860][T14364] do_syscall_64+0xcd/0x250 [ 498.102893][T14364] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 498.102926][T14364] RIP: 0033:0x7f0221b8d169 [ 498.102945][T14364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 498.102968][T14364] RSP: 002b:00007f022293e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 498.102990][T14364] RAX: ffffffffffffffda RBX: 00007f0221da6080 RCX: 00007f0221b8d169 [ 498.103007][T14364] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 000000000000000c [ 498.103021][T14364] RBP: 00007f0221c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 498.103036][T14364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 498.103050][T14364] R13: 0000000000000000 R14: 00007f0221da6080 R15: 00007ffcebe2dd08 [ 498.103081][T14364] [ 498.989516][T14384] FAULT_INJECTION: forcing a failure. [ 498.989516][T14384] name failslab, interval 1, probability 0, space 0, times 0 [ 499.061552][T14384] CPU: 0 UID: 0 PID: 14384 Comm: syz.1.2268 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 499.061593][T14384] Tainted: [U]=USER [ 499.061601][T14384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 499.061615][T14384] Call Trace: [ 499.061623][T14384] [ 499.061633][T14384] dump_stack_lvl+0x16c/0x1f0 [ 499.061669][T14384] should_fail_ex+0x50a/0x650 [ 499.061706][T14384] ? fs_reclaim_acquire+0xae/0x150 [ 499.061740][T14384] ? snd_pcm_plugin_build+0x434/0x650 [ 499.061778][T14384] should_failslab+0xc2/0x120 [ 499.061803][T14384] __kmalloc_noprof+0xcb/0x510 [ 499.061837][T14384] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 499.061877][T14384] snd_pcm_plugin_build+0x434/0x650 [ 499.061912][T14384] snd_pcm_plugin_build_rate+0x27d/0x760 [ 499.061948][T14384] ? __pfx_snd_pcm_plugin_build_rate+0x10/0x10 [ 499.061985][T14384] ? snd_pcm_hw_params+0xce/0x1b20 [ 499.062021][T14384] snd_pcm_plug_format_plugins+0x86a/0x1440 [ 499.062056][T14384] ? __pfx_snd_pcm_plug_format_plugins+0x10/0x10 [ 499.062090][T14384] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 499.062129][T14384] snd_pcm_oss_change_params_locked+0x2e95/0x3a60 [ 499.062174][T14384] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 499.062229][T14384] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 499.062263][T14384] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 499.062297][T14384] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 499.062329][T14384] ? __fget_files+0x206/0x3a0 [ 499.062365][T14384] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 499.062396][T14384] __x64_sys_ioctl+0x190/0x200 [ 499.062428][T14384] do_syscall_64+0xcd/0x250 [ 499.062461][T14384] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 499.062494][T14384] RIP: 0033:0x7f181a58d169 [ 499.062512][T14384] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 499.062536][T14384] RSP: 002b:00007f181b444038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 499.062560][T14384] RAX: ffffffffffffffda RBX: 00007f181a7a5fa0 RCX: 00007f181a58d169 [ 499.062577][T14384] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 000000000000000b [ 499.062593][T14384] RBP: 00007f181a60e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 499.062608][T14384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 499.062622][T14384] R13: 0000000000000000 R14: 00007f181a7a5fa0 R15: 00007fff704488d8 [ 499.062655][T14384] [ 499.595153][T14390] nbd: nbd7 already in use [ 499.613679][T14390] mkiss: ax0: crc mode is auto. [ 499.863744][T14395] cougar: G6 mapped to space [ 501.582060][T14435] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2286'. [ 501.761116][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.767581][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 503.066031][T14467] FAULT_INJECTION: forcing a failure. [ 503.066031][T14467] name failslab, interval 1, probability 0, space 0, times 0 [ 503.078821][T14467] CPU: 0 UID: 0 PID: 14467 Comm: syz.0.2294 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 503.078861][T14467] Tainted: [U]=USER [ 503.078871][T14467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 503.078886][T14467] Call Trace: [ 503.078894][T14467] [ 503.078905][T14467] dump_stack_lvl+0x16c/0x1f0 [ 503.078946][T14467] should_fail_ex+0x50a/0x650 [ 503.078983][T14467] ? fs_reclaim_acquire+0xae/0x150 [ 503.079018][T14467] should_failslab+0xc2/0x120 [ 503.079043][T14467] __kmalloc_node_noprof+0xd1/0x510 [ 503.079079][T14467] ? kfree+0x260/0x4d0 [ 503.079109][T14467] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 503.079147][T14467] __kvmalloc_node_noprof+0xad/0x1a0 [ 503.079183][T14467] snd_pcm_plugin_alloc+0x5e1/0x7d0 [ 503.079228][T14467] snd_pcm_plug_alloc+0x146/0x330 [ 503.079261][T14467] snd_pcm_oss_change_params_locked+0x196c/0x3a60 [ 503.079307][T14467] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 503.079366][T14467] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 503.079404][T14467] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 503.079440][T14467] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 503.079473][T14467] ? __fget_files+0x206/0x3a0 [ 503.079512][T14467] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 503.079543][T14467] __x64_sys_ioctl+0x190/0x200 [ 503.079580][T14467] do_syscall_64+0xcd/0x250 [ 503.079615][T14467] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 503.079652][T14467] RIP: 0033:0x7f0221b8d169 [ 503.079672][T14467] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 503.079694][T14467] RSP: 002b:00007f022295f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 503.079720][T14467] RAX: ffffffffffffffda RBX: 00007f0221da5fa0 RCX: 00007f0221b8d169 [ 503.079737][T14467] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 000000000000000c [ 503.079753][T14467] RBP: 00007f0221c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 503.079768][T14467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 503.079783][T14467] R13: 0000000000000000 R14: 00007f0221da5fa0 R15: 00007ffcebe2dd08 [ 503.079818][T14467] [ 503.298205][ C0] vkms_vblank_simulate: vblank timer overrun [ 505.544068][T14507] FAULT_INJECTION: forcing a failure. [ 505.544068][T14507] name failslab, interval 1, probability 0, space 0, times 0 [ 505.566664][T14507] CPU: 0 UID: 0 PID: 14507 Comm: syz.1.2306 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 505.566704][T14507] Tainted: [U]=USER [ 505.566713][T14507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 505.566728][T14507] Call Trace: [ 505.566736][T14507] [ 505.566746][T14507] dump_stack_lvl+0x16c/0x1f0 [ 505.566785][T14507] should_fail_ex+0x50a/0x650 [ 505.566823][T14507] ? fs_reclaim_acquire+0xae/0x150 [ 505.566856][T14507] ? snd_pcm_plugin_build+0x64/0x650 [ 505.566887][T14507] should_failslab+0xc2/0x120 [ 505.566912][T14507] __kmalloc_noprof+0xcb/0x510 [ 505.566949][T14507] ? snd_pcm_hw_params+0xce/0x1b20 [ 505.566985][T14507] snd_pcm_plugin_build+0x64/0x650 [ 505.567021][T14507] snd_pcm_plugin_build_io+0x208/0x5f0 [ 505.567052][T14507] ? __pfx_snd_pcm_plugin_build_io+0x10/0x10 [ 505.567086][T14507] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 505.567134][T14507] snd_pcm_oss_change_params_locked+0x2f08/0x3a60 [ 505.567179][T14507] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 505.567235][T14507] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 505.567271][T14507] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 505.567305][T14507] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 505.567338][T14507] ? __fget_files+0x206/0x3a0 [ 505.567376][T14507] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 505.567407][T14507] __x64_sys_ioctl+0x190/0x200 [ 505.567439][T14507] do_syscall_64+0xcd/0x250 [ 505.567474][T14507] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 505.567508][T14507] RIP: 0033:0x7f181a58d169 [ 505.567528][T14507] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 505.567551][T14507] RSP: 002b:00007f181b444038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 505.567575][T14507] RAX: ffffffffffffffda RBX: 00007f181a7a5fa0 RCX: 00007f181a58d169 [ 505.567592][T14507] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 000000000000000c [ 505.567608][T14507] RBP: 00007f181a60e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 505.567625][T14507] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 505.567639][T14507] R13: 0000000000000000 R14: 00007f181a7a5fa0 R15: 00007fff704488d8 [ 505.567673][T14507] [ 505.881140][T14512] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 505.949078][T14512] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 505.957575][T14512] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 505.967458][T14512] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 505.975113][T14512] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 505.982566][T14512] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 506.453751][ T8093] ------------[ cut here ]------------ [ 506.459358][ T8093] ODEBUG: free active (active state 0) object: ffff8880660b9248 object type: timer_list hint: hci_devcd_timeout+0x0/0x2f0 [ 506.506457][ T8093] WARNING: CPU: 1 PID: 8093 at lib/debugobjects.c:612 debug_print_object+0x1a2/0x2b0 [ 506.516662][ T8093] Modules linked in: [ 506.520592][ T8093] CPU: 1 UID: 0 PID: 8093 Comm: syz.0.556 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 506.533107][ T8093] Tainted: [U]=USER [ 506.537173][ T8093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 506.547733][ T8093] RIP: 0010:debug_print_object+0x1a2/0x2b0 [ 506.553582][ T8093] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 48 8b 14 dd 40 68 d3 8b 41 56 4c 89 e6 48 c7 c7 c0 5c d3 8b e8 0f 66 b2 fc 90 <0f> 0b 90 90 58 83 05 96 f9 9a 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d [ 506.574701][ T8093] RSP: 0018:ffffc9000485f768 EFLAGS: 00010286 [ 506.581445][ T8093] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817a2229 [ 506.589927][ T8093] RDX: ffff8880660c1e00 RSI: ffffffff817a2236 RDI: 0000000000000001 [ 506.598006][ T8093] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000 [ 506.606006][ T8093] R10: 0000000000000001 R11: fffffffffffc7e68 R12: ffffffff8bd36360 [ 506.614093][ T8093] R13: ffffffff8b6fb900 R14: ffffffff8a5f7d70 R15: ffffc9000485f878 [ 506.622355][ T8093] FS: 0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 506.631491][ T8093] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 506.638700][ T8093] CR2: 0000000001101000 CR3: 000000006be32000 CR4: 00000000003526f0 [ 506.646815][ T8093] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 506.655063][ T8093] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 506.663409][ T8093] Call Trace: [ 506.666764][ T8093] [ 506.669988][ T8093] ? __warn+0xea/0x3c0 [ 506.674085][ T8093] ? preempt_schedule_notrace+0x62/0xe0 [ 506.680009][ T8093] ? debug_print_object+0x1a2/0x2b0 [ 506.685487][ T8093] ? report_bug+0x3c0/0x580 [ 506.690387][ T8093] ? handle_bug+0x54/0xa0 [ 506.694752][ T8093] ? exc_invalid_op+0x17/0x50 [ 506.699500][ T8093] ? asm_exc_invalid_op+0x1a/0x20 [ 506.704550][ T8093] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 506.710110][ T8093] ? __warn_printk+0x199/0x350 [ 506.714895][ T8093] ? __warn_printk+0x1a6/0x350 [ 506.719758][ T8093] ? debug_print_object+0x1a2/0x2b0 [ 506.724982][ T8093] ? debug_print_object+0x1a1/0x2b0 [ 506.730263][ T8093] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 506.735750][ T8093] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 506.741658][ T8093] debug_check_no_obj_freed+0x4b7/0x600 [ 506.747304][ T8093] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 506.753702][ T8093] ? kmem_cache_free+0x2e2/0x4d0 [ 506.759008][ T8093] ? kfree_skbmem+0x1a4/0x1f0 [ 506.763722][ T8093] kfree+0x29f/0x4d0 [ 506.767729][ T8093] ? hci_release_dev+0x4d9/0x600 [ 506.772977][ T8093] hci_release_dev+0x4d9/0x600 [ 506.778100][ T8093] ? __pfx_hci_release_dev+0x10/0x10 [ 506.783427][ T8093] ? rcu_is_watching+0x12/0xc0 [ 506.788508][ T8093] ? kfree+0x260/0x4d0 [ 506.792623][ T8093] bt_host_release+0x6a/0xb0 [ 506.797545][ T8093] ? __pfx_bt_host_release+0x10/0x10 [ 506.802868][ T8093] device_release+0xa1/0x240 [ 506.807564][ T8093] kobject_put+0x1e4/0x5a0 [ 506.812017][ T8093] ? __pfx_vhci_release+0x10/0x10 [ 506.817139][ T8093] put_device+0x1f/0x30 [ 506.821337][ T8093] vhci_release+0x81/0xf0 [ 506.825692][ T8093] __fput+0x3ff/0xb70 [ 506.829791][ T8093] task_work_run+0x14e/0x250 [ 506.834421][ T8093] ? __pfx_task_work_run+0x10/0x10 [ 506.839631][ T8093] do_exit+0xad8/0x2d70 [ 506.843818][ T8093] ? get_signal+0x1d3e/0x26c0 [ 506.848632][ T8093] ? __pfx_do_exit+0x10/0x10 [ 506.853247][ T8093] ? cgroup_update_frozen_flag+0x107/0x210 [ 506.859384][ T8093] do_group_exit+0xd3/0x2a0 [ 506.863922][ T8093] get_signal+0x24ed/0x26c0 [ 506.868778][ T8093] ? __pfx_hrtimer_nanosleep+0x10/0x10 [ 506.874538][ T8093] ? __pfx_get_signal+0x10/0x10 [ 506.880001][ T8093] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 506.885249][ T8093] arch_do_signal_or_restart+0x90/0x7e0 [ 506.891131][ T8093] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 506.897657][ T8093] ? __pfx___x64_sys_clock_nanosleep+0x10/0x10 [ 506.903849][ T8093] syscall_exit_to_user_mode+0x150/0x2a0 [ 506.909622][ T8093] do_syscall_64+0xda/0x250 [ 506.914169][ T8093] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 506.920150][ T8093] RIP: 0033:0x7f0221bbfa25 [ 506.924594][ T8093] Code: Unable to access opcode bytes at 0x7f0221bbf9fb. [ 506.931694][ T8093] RSP: 002b:00007f022293df80 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6 [ 506.940225][ T8093] RAX: fffffffffffffdfc RBX: 00007f0221da6080 RCX: 00007f0221bbfa25 [ 506.948307][ T8093] RDX: 00007f022293dfc0 RSI: 0000000000000000 RDI: 0000000000000000 [ 506.956609][ T8093] RBP: 00007f0221c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 506.964606][ T8093] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 506.973129][ T8093] R13: 0000000000000000 R14: 00007f0221da6080 R15: 00007ffcebe2dd08 [ 506.981441][ T8093] [ 506.984478][ T8093] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 506.991772][ T8093] CPU: 1 UID: 0 PID: 8093 Comm: syz.0.556 Tainted: G U 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 507.003861][ T8093] Tainted: [U]=USER [ 507.007681][ T8093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 507.017751][ T8093] Call Trace: [ 507.021030][ T8093] [ 507.023965][ T8093] dump_stack_lvl+0x3d/0x1f0 [ 507.028564][ T8093] panic+0x71d/0x800 [ 507.032464][ T8093] ? __pfx_panic+0x10/0x10 [ 507.036884][ T8093] ? show_trace_log_lvl+0x29d/0x3d0 [ 507.042099][ T8093] ? check_panic_on_warn+0x1f/0xb0 [ 507.047218][ T8093] ? debug_print_object+0x1a2/0x2b0 [ 507.052420][ T8093] check_panic_on_warn+0xab/0xb0 [ 507.057375][ T8093] __warn+0xf6/0x3c0 [ 507.061277][ T8093] ? preempt_schedule_notrace+0x62/0xe0 [ 507.066829][ T8093] ? debug_print_object+0x1a2/0x2b0 [ 507.072029][ T8093] report_bug+0x3c0/0x580 [ 507.076366][ T8093] handle_bug+0x54/0xa0 [ 507.080529][ T8093] exc_invalid_op+0x17/0x50 [ 507.085036][ T8093] asm_exc_invalid_op+0x1a/0x20 [ 507.089904][ T8093] RIP: 0010:debug_print_object+0x1a2/0x2b0 [ 507.095724][ T8093] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 48 8b 14 dd 40 68 d3 8b 41 56 4c 89 e6 48 c7 c7 c0 5c d3 8b e8 0f 66 b2 fc 90 <0f> 0b 90 90 58 83 05 96 f9 9a 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d [ 507.115329][ T8093] RSP: 0018:ffffc9000485f768 EFLAGS: 00010286 [ 507.121398][ T8093] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817a2229 [ 507.129378][ T8093] RDX: ffff8880660c1e00 RSI: ffffffff817a2236 RDI: 0000000000000001 [ 507.137352][ T8093] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000 [ 507.145317][ T8093] R10: 0000000000000001 R11: fffffffffffc7e68 R12: ffffffff8bd36360 [ 507.153283][ T8093] R13: ffffffff8b6fb900 R14: ffffffff8a5f7d70 R15: ffffc9000485f878 [ 507.161254][ T8093] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 507.166722][ T8093] ? __warn_printk+0x199/0x350 [ 507.171488][ T8093] ? __warn_printk+0x1a6/0x350 [ 507.176255][ T8093] ? debug_print_object+0x1a1/0x2b0 [ 507.181454][ T8093] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 507.186923][ T8093] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 507.192734][ T8093] debug_check_no_obj_freed+0x4b7/0x600 [ 507.198291][ T8093] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 507.204366][ T8093] ? kmem_cache_free+0x2e2/0x4d0 [ 507.209308][ T8093] ? kfree_skbmem+0x1a4/0x1f0 [ 507.214078][ T8093] kfree+0x29f/0x4d0 [ 507.217979][ T8093] ? hci_release_dev+0x4d9/0x600 [ 507.222931][ T8093] hci_release_dev+0x4d9/0x600 [ 507.227700][ T8093] ? __pfx_hci_release_dev+0x10/0x10 [ 507.232994][ T8093] ? rcu_is_watching+0x12/0xc0 [ 507.237761][ T8093] ? kfree+0x260/0x4d0 [ 507.241836][ T8093] bt_host_release+0x6a/0xb0 [ 507.246423][ T8093] ? __pfx_bt_host_release+0x10/0x10 [ 507.251707][ T8093] device_release+0xa1/0x240 [ 507.256304][ T8093] kobject_put+0x1e4/0x5a0 [ 507.260727][ T8093] ? __pfx_vhci_release+0x10/0x10 [ 507.265756][ T8093] put_device+0x1f/0x30 [ 507.269922][ T8093] vhci_release+0x81/0xf0 [ 507.274255][ T8093] __fput+0x3ff/0xb70 [ 507.278243][ T8093] task_work_run+0x14e/0x250 [ 507.282840][ T8093] ? __pfx_task_work_run+0x10/0x10 [ 507.287964][ T8093] do_exit+0xad8/0x2d70 [ 507.292123][ T8093] ? get_signal+0x1d3e/0x26c0 [ 507.296807][ T8093] ? __pfx_do_exit+0x10/0x10 [ 507.301393][ T8093] ? cgroup_update_frozen_flag+0x107/0x210 [ 507.307215][ T8093] do_group_exit+0xd3/0x2a0 [ 507.311722][ T8093] get_signal+0x24ed/0x26c0 [ 507.316242][ T8093] ? __pfx_hrtimer_nanosleep+0x10/0x10 [ 507.321702][ T8093] ? __pfx_get_signal+0x10/0x10 [ 507.326559][ T8093] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 507.331770][ T8093] arch_do_signal_or_restart+0x90/0x7e0 [ 507.337318][ T8093] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 507.343479][ T8093] ? __pfx___x64_sys_clock_nanosleep+0x10/0x10 [ 507.349637][ T8093] syscall_exit_to_user_mode+0x150/0x2a0 [ 507.355275][ T8093] do_syscall_64+0xda/0x250 [ 507.359786][ T8093] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 507.365689][ T8093] RIP: 0033:0x7f0221bbfa25 [ 507.370099][ T8093] Code: Unable to access opcode bytes at 0x7f0221bbf9fb. [ 507.377118][ T8093] RSP: 002b:00007f022293df80 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6 [ 507.385533][ T8093] RAX: fffffffffffffdfc RBX: 00007f0221da6080 RCX: 00007f0221bbfa25 [ 507.393504][ T8093] RDX: 00007f022293dfc0 RSI: 0000000000000000 RDI: 0000000000000000 [ 507.401470][ T8093] RBP: 00007f0221c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 507.409436][ T8093] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 507.417403][ T8093] R13: 0000000000000000 R14: 00007f0221da6080 R15: 00007ffcebe2dd08 [ 507.425386][ T8093] [ 507.428631][ T8093] Kernel Offset: disabled [ 507.433293][ T8093] Rebooting in 86400 seconds..