last executing test programs: 8.393307456s ago: executing program 1 (id=2873): munmap$auto(0x1000000, 0x2000000c) madvise$auto(0x0, 0xffffffffffff0001, 0x9) r0 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) sendmsg$auto_NBD_CMD_DISCONNECT(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="100025bd7000fbdbdf250200000008000100fb19a1450c000e"], 0x28}}, 0x4) r1 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = openat$auto_fops_u32_(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/netdevsim/netdevsim7/health/binary_len\x00', 0x301100, 0x0) io_uring_setup$auto(0x0, &(0x7f00000003c0)={0x7ff, 0x5, 0x9efc, 0x40, 0x1, 0xfffffff8, r2, [0x1, 0x97c, 0x9], {0x1, 0x818, 0xfffffffb, 0xe75c, 0x9, 0x0, 0x6, 0x2, 0x4}, {0x1, 0x4a4f, 0x658, 0x7, 0x10001, 0x5, 0x2645, 0x9, 0x3}}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004c18}, 0x810) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000100)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="586e39fd6c01002cbd7000fb4903ebdf7ea773c2aad057dbdf"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="00009000", @ANYRESDEC=r1], 0x1ac}}, 0x40000) r3 = socketcall$auto_SYS_LISTEN(0x4, &(0x7f0000000140)=0xba60) ioctl$auto_userfaultfd_dev_fops_userfaultfd(r3, 0x9, &(0x7f0000000300)="4454269d51653e5c48ee068f02400d3bd866121c6d26dd4d49ebcc4f5b260b7bb69cfb033a01a4cfa1373115eb2c42472b4bdb7158b48a532dc5534de33ae49fd02fbfecf4175df873c6c53bb5da8beebad6d3f2e7b8744a2c2996d97b8ae82d5429374432c23d00959d43bf1e4355ae282d53ed40cfac2fa49347fcb11827c3577602c345e837") sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mlockall$auto(0x3) 6.726870459s ago: executing program 1 (id=2877): prctl$auto(0x39, 0x1, 0x0, 0x0, 0x0) socket(0x2b, 0x1, 0x1) socket(0xa, 0x4, 0x4073) socket(0xa, 0x2, 0x3a) r0 = socket(0xa, 0x2, 0x88) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r0, @new_prog_fd=0x4, 0x1801, @old_map_fd=0x3ff}, 0xa3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x3, 0x4, 0x4000000000dc, 0x40eb2, 0xa1c, 0x8) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) open(&(0x7f0000000100)='.\x00', 0x0, 0x408) getdents$auto(0x0, 0x0, 0x18) socket(0x2, 0x80002, 0x73) fcntl$auto(0x8000000000000001, 0x26, 0x8) prctl$auto(0x41555856, 0x4, 0x2008, 0x0, 0x0) fcntl$auto(0x8000000000000001, 0x25, 0x8) madvise$auto(0x0, 0x1000000000053, 0x9) 4.477221914s ago: executing program 3 (id=2886): openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/scsi/sg/debug\x00', 0x100, 0x0) write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f00000000c0)="78473b61b4db6adc4cabfcfe475540d2dcfade2acc3475b01b97d4530dd0e1fa6dd5123446b39f769fe5c369446365f99ec16b44cafc53be45319ca267a062187b4327b25e9c7b6f200b26479c7425351124c89b471eee11202e023b075d709194", 0x61) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TIOCGPTPEER2(r0, 0x5441, 0x0) setreuid$auto(0x0, 0x0) kcmp$auto(0xb, 0x1, 0x7, 0x9, 0x7ff) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) getpid() sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4008000}, 0x200480d0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000880)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x24040004}, 0x800) socket(0xa, 0x80000, 0xff) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0xffffffffffffffff, 0x7, 0x1, 0x20000000007181, 0x1ffde, 0x7, 0x3, 0x8, 0x9, 0x80003, 0x4, 0x200000000001, 0x380, 0x9, 0x8, 0x10006, 0x7, 0x0, 0x0, 0xe, 0x22000, 0xb28, 0x0, 0x84, [0x3, 0x2, 0xffffffffffffffff, 0x2, 0x0, 0x402000, 0x0, 0x4000000000f, 0x1, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x8, 0x0, 0x6, 0x0, 0x8, 0x20000, 0x8, 0x10000000000, 0xffffffffffffffff, 0x3d, 0x2f, 0x0, 0x0, 0x1006, 0x400000000005b8, 0xffff, 0x0, 0x100, 0x0, 0x4, 0x2, 0x88e, 0x40, 0xfffffffffffffffc, 0x8, 0xa38, 0x4, 0x3, 0xfffffffffffffffc, 0x2, 0x8, 0x10000000007, 0xc567]}, 0x1fa, 0xd) r1 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r1, 0x2, &(0x7f0000000380)="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") ioctl$auto__ctl_fops_dm_ioctl(r1, 0xfffffff7effffd05, &(0x7f00000001c0)) 4.139051763s ago: executing program 1 (id=2888): madvise$auto(0x110c230000, 0x1, 0x9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x21, 0x2, 0x2) socket(0x1d, 0x2, 0x2) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x4000) socket(0x23, 0x2, 0x0) openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0) r0 = socket(0x2c, 0x2, 0x4) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/fb0\x00', 0x800, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) fcntl$auto(0x8000000000000001, 0x5, 0x8) read$auto(0xffffffffffffffff, 0x0, 0x8) readv$auto(0x3, 0x0, 0x1) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_LINKINFO_GET(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="250f0cbd7000fcdbdf2504040000"], 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x4044054) syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000400), r2) mmap$auto(0x1000, 0x1, 0x7ff, 0x19, 0xffffffffffffffff, 0x1) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) mmap$auto(0x0, 0xe983, 0xdf, 0x16, 0x401, 0x7ffc) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0xb, 0x4, 0x16, 0x940, 0x1ffe0, 0x3, 0x6, 0x2, 0x2, 0x25, 0xfff, 0x7, 0x4, 0x9, 0x5, 0x20000003, 0x5, 0x7, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, [0x0, 0x2, 0x0, 0x400000000, 0x0, 0x0, 0x3, 0x0, 0x1000000000000, 0x0, 0x40000000003, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xbd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0xb, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x10000, 0xbf]}, 0x1fe, 0xfffffb26) ioctl$auto(0x3, 0x8008743f, 0x1) r4 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000080), r0) sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET2(r0, &(0x7f0000000480)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, r4, 0x100, 0x70bd2a, 0x25dfdbfb, {}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20008091}, 0x90) socket(0x2c, 0x3, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r5 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmsg$auto_ETHTOOL_MSG_PHY_GET(r1, &(0x7f0000000800)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000007c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="30010000", @ANYRES16=r3, @ANYBLOB="000227bd7000ffdbdf252d000000040001801400018008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="5400018008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="140002007465616d5f736c6176655f3000000000080003000100000008000100", @ANYRES32=0x0, @ANYBLOB="1400020076657468315f746f5f7465616d0000000800030009000000180001801400020067726530000000000000000000000000640001801400020076657468315f766c616e00000000000014000200626f6e6430000000000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="140002006e657464657673696d3000000000000008000300252e050000001400020070696d72656731000000000000000000340001801400020076651f861c48b6aa457fbed1b6c07285ddb97468305f746f5f626f6e640000001400026f6e645f736c6176655f310000000008000100b77687b474f832546436bd4b6063d37fb7a8ef05c74cf3172d014b1cd51b51f6840626ca1d124e4f53c00c99557f95500983d51a0d5d170dbc48a1eac7be37e81ee3d8f0e93cb100"/199, @ANYRES32=0x0, @ANYBLOB], 0x130}, 0x1, 0x0, 0x0, 0x804}, 0x4) sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 4.10874845s ago: executing program 3 (id=2891): mmap$auto(0x7d, 0x20009, 0xf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x5b6, 0x7fffffffffffffff, 0xa) sysfs$auto(0x2, 0x23, 0x0) (async) sysfs$auto(0x2, 0x23, 0x0) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) (async) r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r0, 0x0, 0x4) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) clone$auto(0x21002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9) (async) clone$auto(0x21002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC0\x00', 0x80, 0x0) splice$auto(r1, &(0x7f0000000200)=0xfffffffffffffffb, r1, &(0x7f0000000240)=0x2, 0x1da520, 0x7d3) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) gettimeofday$auto(0x0, 0x0) (async) gettimeofday$auto(0x0, 0x0) r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f00000001c0), 0x100, 0x0) (async) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f00000001c0), 0x100, 0x0) sendmsg$auto_CTRL_CMD_GETFAMILY2(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="00012abda888fb2ed00ee60100000600010003000000170002002f6465762f736e642f636f6e74896f6c433fd069b20002002c2c00000600010005000000"], 0x54}, 0x1, 0x0, 0x0, 0x4044001}, 0x30004850) ioctl$auto(r1, 0xc0045540, r1) socket(0xa, 0x5, 0x0) (async) socket(0xa, 0x5, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x83, 0x0, 0x0) set_mempolicy$auto(0x6, &(0x7f0000000080)=0x3, 0x21) (async) set_mempolicy$auto(0x6, &(0x7f0000000080)=0x3, 0x21) sendmsg$auto_NCSI_CMD_SET_PACKAGE_MASK(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000003c0)=ANY=[], 0x14}}, 0x0) seccomp$auto(0x1, 0x8, &(0x7f0000000400)) r3 = openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/buffer_size_kb\x00', 0x80402, 0x0) clock_gettime$auto(0x4, &(0x7f00000002c0)={0x5, 0x6}) (async) clock_gettime$auto(0x4, &(0x7f00000002c0)={0x5, 0x6}) read$auto_tracing_entries_fops_trace(r3, 0x0, 0x0) r4 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r4, 0xc004743e, 0x0) 3.651141087s ago: executing program 0 (id=2893): r0 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/tty/driver/serial\x00', 0x2, 0x0) r1 = socket(0x29, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vidtv.0/i2c-0/0-0060/uevent\x00', 0xac00, 0x0) preadv2$auto(r0, &(0x7f0000000340)={&(0x7f0000000040)="3bdafa454026d0038332095ada5fa369fc9ecfcbc5b407728a71f979c3c6b9ed7224e4a8", 0x8}, 0x100000000e7e, 0x7, 0x200, 0x9) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000001c00)=""/4111, 0x100f) r3 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r3, 0x29, 0x6, 0x0, 0x50) close_range$auto(r1, r1, 0x8) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/loop13/queue/wbt_lat_usec\x00', 0x62, 0x0) write$auto(r5, &(0x7f0000000440)='Y\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) r6 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000040), 0xffffffffffffffff) r7 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ILA_CMD_DEL(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x50, r6, 0x1, 0x70bd21, 0x25dfdbfb, {}, [@ILA_ATTR_LOCATOR_MATCH={0xc, 0x3, 0xd}, @ILA_ATTR_LOCATOR_MATCH={0xc}, @ILA_ATTR_IDENT_TYPE={0x5, 0x8, 0x5}, @ILA_ATTR_IFINDEX={0x8}, @ILA_ATTR_CSUM_MODE={0x5, 0x7, 0x3}, @ILA_ATTR_LOCATOR={0xc, 0x1, 0x1ff}]}, 0x50}, 0x1, 0x0, 0x0, 0x4004004}, 0x10) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_NEW_KEY(r8, &(0x7f00000048c0)={0x0, 0x0, &(0x7f0000004880)={&(0x7f0000013c40)=ANY=[@ANYBLOB="2c66cb00", @ANYRES16=r3, @ANYRES16=r1], 0x2c}, 0x1, 0x0, 0x0, 0x40890}, 0x404c001) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r3, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB="00412bbd7000fcdb00050013010900000077d6309cdc8fcd48533f1579e3d44af290e34c29bb9f3e0000000000000000", @ANYRES16=r4], 0x24}, 0x1, 0x0, 0x0, 0xc4}, 0x800) statmount$auto(&(0x7f00000002c0)={0xffffffff, @raw=0x5, 0x40, 0x3ff, 0x6}, &(0x7f0000000400)={0x0, 0xfffffffe, 0x100000001, 0x4, 0x6, 0x3, 0x7, 0x50, 0x8000, 0xde, 0x9c89, 0x62da, 0x1, 0x3, 0x6, 0x807, 0x0, 0x2b0, 0x81, 0x758, 0x37fd, 0x81, 0x6, 0x8, 0xc598, 0xd, [0x13, 0x1d3a, 0xfff, 0x80000004, 0x10, 0x10, 0x4, 0x7, 0xffffffffffffff45, 0xe, 0x4000000000015af, 0x7fe0, 0xab4c, 0x3, 0xc595, 0x66, 0xd20, 0x7, 0x8, 0x0, 0x8cc, 0xffffffffffffffff, 0x1, 0x7, 0x6, 0x2, 0x1, 0x6, 0xda00, 0x7, 0x401, 0x3, 0x10000, 0x4, 0xaaa, 0x7, 0x54b4, 0xe, 0x4, 0x7, 0xa9, 0x0, 0x223, 0x1, 0x80000000002, 0x5], "46a35abd6286c73157346175ff585d7bb5cc59307a45e2867d2a5c4cda8f969cb9194f52d979f8f0fb128bd3df4b886ae540b73793dc9a2a55b245515a1f77d953b7b7df130c184d7a8333436867fe10ca20ad6d6d410ee5be005bea0e903803c1082e7ddec245bc35f51be50de92416798fb73ccdc10fefde76888ba02f671f2c7393785c625974b9a90fd960b4cfddcda3faa6ab5d7260d011718bd0bca810588ac7596851e678d5f637222006dad7f006736ed08aee3e74437cee22a24d150ab7f3dfc885062d2233615bafe20c01d36850071618e9091d6c8d755e78b861079dc311fad02c1e1e78374e8e658b6d738de7c46893f51db5ed3fb8"}, 0x6, 0x9) sendmmsg$auto(r1, &(0x7f00000001c0)={{&(0x7f0000000000), 0x1aa, &(0x7f0000000100)={&(0x7f00000003c0)="4a67d23edb3100000000000000000075210d", 0x49}, 0x5, &(0x7f0000000180), 0x5}, 0x1}, 0x2, 0x101) read$auto_proc_single_file_operations_base(r0, &(0x7f00000000c0)=""/41, 0x11) 3.554662687s ago: executing program 1 (id=2895): madvise$auto(0x0, 0xffffffffffff0001, 0x15) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x80102, 0x0) socket(0x1f, 0x800, 0xffffff01) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x1, 0x0) socket(0x28, 0x1, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, 0x0, 0x4000000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/fs/pipe-max-size\x00', 0x382, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x2, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0) madvise$auto(0x108000, 0x800034, 0xa) unshare$auto(0x40000080) syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_TUNNEL_GET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[], 0x6c}, 0x1, 0x0, 0x0, 0x44810}, 0x40045) r2 = open$auto(&(0x7f0000000200)='./file0\x00', 0x49193, 0xff90) ioctl$auto_PPPIOCGFLAGS(r2, 0x8004745a, 0x0) r3 = openat$auto_fuse_conn_congestion_threshold_ops_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$auto_COMEDI_LOCK(r3, 0x6405, 0x0) write$auto_tomoyo_operations_securityfs_if(0xffffffffffffffff, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0) write$auto_seq_oss_f_ops_seq_oss(r4, &(0x7f0000000c80)="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", 0x300) close_range$auto(0x0, 0xfffffffffffff000, 0x0) clone$auto(0xffffffff00000000, 0xf, 0x0, 0x0, 0xfffffffffffffffd) mincore$auto(0x1000, 0x8001, 0x0) 2.944524407s ago: executing program 2 (id=2896): mlockall$auto(0x7) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000de, 0xeb1, 0x401, 0x8000) mknodat$auto(0x5, 0x0, 0xfffffffffffff084, 0x400) ioctl$auto(0x3, 0x227f, 0x38) set_mempolicy$auto(0x2005, &(0x7f0000000080)=0x87e, 0x4) close_range$auto(0x0, 0xfffffffffffff001, 0x2) socket(0x2, 0x1, 0x0) socket(0x18, 0x2, 0x0) mmap$auto(0x0, 0xc, 0x4000000000df, 0x44eb2, 0x10006, 0x300000000000) 2.811078002s ago: executing program 0 (id=2897): r0 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/tty/driver/serial\x00', 0x2, 0x0) r1 = socket(0x29, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vidtv.0/i2c-0/0-0060/uevent\x00', 0xac00, 0x0) preadv2$auto(r0, &(0x7f0000000340)={&(0x7f0000000040)="3bdafa454026d0038332095ada5fa369fc9ecfcbc5b407728a71f979c3c6b9ed7224e4a8", 0x8}, 0x100000000e7e, 0x7, 0x200, 0x9) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000001c00)=""/4111, 0x100f) r3 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r3, 0x29, 0x6, 0x0, 0x50) close_range$auto(r1, r1, 0x8) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/loop13/queue/wbt_lat_usec\x00', 0x62, 0x0) write$auto(r5, &(0x7f0000000440)='Y\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) r6 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000040), 0xffffffffffffffff) r7 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ILA_CMD_DEL(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x50, r6, 0x1, 0x70bd21, 0x25dfdbfb, {}, [@ILA_ATTR_LOCATOR_MATCH={0xc, 0x3, 0xd}, @ILA_ATTR_LOCATOR_MATCH={0xc}, @ILA_ATTR_IDENT_TYPE={0x5, 0x8, 0x5}, @ILA_ATTR_IFINDEX={0x8}, @ILA_ATTR_CSUM_MODE={0x5, 0x7, 0x3}, @ILA_ATTR_LOCATOR={0xc, 0x1, 0x1ff}]}, 0x50}, 0x1, 0x0, 0x0, 0x4004004}, 0x10) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_NEW_KEY(r8, &(0x7f00000048c0)={0x0, 0x0, &(0x7f0000004880)={&(0x7f0000013c40)=ANY=[@ANYBLOB="2c66cb00", @ANYRES16=r3, @ANYRES16=r1], 0x2c}, 0x1, 0x0, 0x0, 0x40890}, 0x404c001) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r3, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB="00412bbd7000fcdb00050013010900000077d6309cdc8fcd48533f1579e3d44af290e34c29bb9f3e0000000000000000", @ANYRES16=r4], 0x24}, 0x1, 0x0, 0x0, 0xc4}, 0x800) statmount$auto(&(0x7f00000002c0)={0xffffffff, @raw=0x5, 0x40, 0x3ff, 0x6}, &(0x7f0000000400)={0x0, 0xfffffffe, 0x100000001, 0x4, 0x6, 0x3, 0x7, 0x50, 0x8000, 0xde, 0x9c89, 0x62da, 0x1, 0x3, 0x6, 0x807, 0x0, 0x2b0, 0x81, 0x758, 0x37fd, 0x81, 0x6, 0x8, 0xc598, 0xd, [0x13, 0x1d3a, 0xfff, 0x80000004, 0x10, 0x10, 0x4, 0x7, 0xffffffffffffff45, 0xe, 0x4000000000015af, 0x7fe0, 0xab4c, 0x3, 0xc595, 0x66, 0xd20, 0x7, 0x8, 0x0, 0x8cc, 0xffffffffffffffff, 0x1, 0x7, 0x6, 0x2, 0x1, 0x6, 0xda00, 0x7, 0x401, 0x3, 0x10000, 0x4, 0xaaa, 0x7, 0x54b4, 0xe, 0x4, 0x7, 0xa9, 0x0, 0x223, 0x1, 0x80000000002, 0x5], "46a35abd6286c73157346175ff585d7bb5cc59307a45e2867d2a5c4cda8f969cb9194f52d979f8f0fb128bd3df4b886ae540b73793dc9a2a55b245515a1f77d953b7b7df130c184d7a8333436867fe10ca20ad6d6d410ee5be005bea0e903803c1082e7ddec245bc35f51be50de92416798fb73ccdc10fefde76888ba02f671f2c7393785c625974b9a90fd960b4cfddcda3faa6ab5d7260d011718bd0bca810588ac7596851e678d5f637222006dad7f006736ed08aee3e74437cee22a24d150ab7f3dfc885062d2233615bafe20c01d36850071618e9091d6c8d755e78b861079dc311fad02c1e1e78374e8e658b6d738de7c46893f51db5ed3fb8"}, 0x6, 0x9) sendmmsg$auto(r1, &(0x7f00000001c0)={{&(0x7f0000000000), 0x1aa, &(0x7f0000000100)={&(0x7f00000003c0)="4a67d23edb3100000000000000000075210d2de444", 0x49}, 0x5, &(0x7f0000000180), 0x5}, 0x1}, 0x2, 0x101) read$auto_proc_single_file_operations_base(r0, &(0x7f00000000c0)=""/41, 0x11) 2.64492283s ago: executing program 1 (id=2898): mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r0 = clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_LEAVE_OCB(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x0, 0x400, 0x70bd2b, 0x25dfdbfb, {}, [@NL80211_ATTR_TSID={0x5, 0xd2, 0x7}, @NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0xcc}, @NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x2404c890}, 0x4000000) madvise$auto(0x0, 0xffffff7fffff0005, 0x8) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto_PR_SET_NO_NEW_PRIVS(0x26, 0x4, r0, 0x57b5, 0x4) 2.487706397s ago: executing program 2 (id=2899): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000) memfd_create$auto(0x0, 0xb) socket(0x2, 0x1, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x1, 0x84) socket(0xa, 0x801, 0x84) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/psaux\x00', 0x0, 0x0) open(0x0, 0x161342, 0x100) socket(0x2, 0x2, 0x1) io_uring_setup$auto(0xc, 0x0) io_uring_setup$auto(0x6, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) io_uring_setup$auto(0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) socketpair$auto(0x4, 0x1, 0x20000, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) ioctl$auto_TIOCVHANGUP2(r0, 0x5437, 0x0) 2.38277379s ago: executing program 0 (id=2900): r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)) r1 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cec27\x00', 0x80200, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xb432, 0x401, 0x8000) r2 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000080), 0x40400, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(r2, 0x40103d02, 0x0) ioctl$auto_CEC_S_MODE(r1, 0x40046109, &(0x7f0000000140)=0x11) mlockall$auto(0x7) set_mempolicy$auto(0x2005, &(0x7f0000000080)=0x87e, 0x4) mmap$auto(0x0, 0xe, 0x2, 0x15, 0x10006, 0x300200000000) r3 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtd0ro\x00', 0x800, 0x0) ioctl$auto_MEMREADOOB(r3, 0xc0104d04, &(0x7f0000000080)={0x7761, 0x80, 0x0}) fcntl$auto(r0, 0x402, 0x2) fcntl$auto(r0, 0x402, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) poll$auto(0x0, 0x81, 0x4) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000140), 0xffffffffffffffff) mmap$auto(0x0, 0x2, 0xdf, 0x9b72, 0x2, 0x401) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0xfffffffffffffffe, 0xa89, 0xfffffffffffffff7, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0xa, 0x801, 0x84) close_range$auto(0x0, 0xffffeffe, 0x2) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000) 2.22560484s ago: executing program 2 (id=2901): munmap$auto(0x1000000, 0x2000000c) madvise$auto(0x0, 0xffffffffffff0001, 0x9) r0 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'vcan0\x00'}) sendmsg$auto_NBD_CMD_DISCONNECT(r0, 0x0, 0x4) r1 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = openat$auto_fops_u32_(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/netdevsim/netdevsim7/health/binary_len\x00', 0x301100, 0x0) io_uring_setup$auto(0x0, &(0x7f00000003c0)={0x7ff, 0x5, 0x9efc, 0x40, 0x1, 0xfffffff8, r2, [0x1, 0x97c, 0x9], {0x1, 0x818, 0xfffffffb, 0xe75c, 0x9, 0x0, 0x6, 0x2, 0x4}, {0x1, 0x4a4f, 0x658, 0x7, 0x10001, 0x5, 0x2645, 0x9, 0x3}}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004c18}, 0x810) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000100)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="586e39fd6c01002cbd7000fb4903ebdf7ea773c2aad057dbdf"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="00009000", @ANYRESDEC=r1], 0x1ac}}, 0x40000) r3 = socketcall$auto_SYS_LISTEN(0x4, &(0x7f0000000140)=0xba60) ioctl$auto_userfaultfd_dev_fops_userfaultfd(r3, 0x9, &(0x7f0000000300)="4454269d51653e5c48ee068f02400d3bd866121c6d26dd4d49ebcc4f5b260b7bb69cfb033a01a4cfa1373115eb2c42472b4bdb7158b48a532dc5534de33ae49fd02fbfecf4175df873c6c53bb5da8beebad6d3f2e7b8744a2c2996d97b8ae82d5429374432c23d00959d43bf1e4355ae282d53ed40cfac2fa49347fcb11827c3577602c345e837") sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mlockall$auto(0x3) 2.070294176s ago: executing program 3 (id=2902): r0 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0xd, 0x8}) sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000080), 0x49}, 0x4, &(0x7f0000000180), 0x5, 0x1000}, 0x5}, 0x2, 0x100) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) r1 = memfd_create$auto(0x0, 0x12) mmap$auto(0x0, 0x1, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = socket(0x2, 0x801, 0x106) getsockopt$auto(r2, 0x6, 0xd, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x800, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) read$auto(0x3, 0x0, 0x80) ioctl$auto_COMEDI_CHANINFO(r1, 0x80306403, &(0x7f00000000c0)={0x80000001, &(0x7f0000000000)=0xa, &(0x7f0000000040)=0xfffffffb, &(0x7f0000000080)}) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty12\x00', 0x800, 0x0) r4 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r3, 0x541c, r4) 1.996390033s ago: executing program 0 (id=2903): openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48001, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC0\x00', 0x80, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D1c\x00', 0x0, 0x0) socket(0x15, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x2, &(0x7f0000000140)={0x7, 0xff, 0x8, 0x4, 0x8, 0x7fffffff, r0, [0x7, 0x9, 0x6], {0xc79, 0x4, 0x32, 0x1ff, 0x6, 0xffffeebc, 0xfffffe01, 0x10000, 0x800}, {0x2, 0x5, 0xa, 0x1, 0xfffffff9, 0x5, 0x0, 0xffff, 0x10001}}) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/v4l-subdev5\x00', 0x0, 0x0) r2 = getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfde}, 0x800000001, &(0x7f0000000280)={&(0x7f0000000100)="e325488b4745cccb410cad7e47bb", 0x1ffffffff}, 0x6, 0x0) ioctl$auto(r1, 0xc0305602, 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = prctl$auto_PR_LOCK_SHADOW_STACK_STATUS(0x4c, 0x4, 0x0, 0x92eb, 0xee) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/handlers\x00', 0x40100, 0x0) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) r5 = syz_genetlink_get_family_id$auto_nlbl_cipsov4(0x0, 0xffffffffffffffff) sendmsg$auto_NLBL_CIPSOV4_C_LISTALL(r4, &(0x7f0000001900)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000018c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="b4140000", @ANYRES16=r5, @ANYBLOB="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", @ANYRES32, @ANYBLOB="00004e097f451b821903890aad89b2e64e7a8bac1c863d040ba06c09844790da6d491cea24e40535c8dbe395cb9bd39493bf3831e292559bcf9470b864fb125f606dfb4f75f5a3467709df7a33033fe2e3e920f94ed783aa08b6971ebe3a824f0ea3f52d8cc24bcac7e56abe7e62bdf0104cb021dcb89d4aeedd4653b59ab4b06dc7b90b81b30693d339999257e07ba486d45605502cc251a1945e20b9cdba409fbd1a1a58078bb2028f867ee011ee35e94a47d1f819c8cc19fef198bce9cf6d66e54309f4309e73096df7b192a60ff02d964407aee7b8a045dc506924dc029e0f193895d6aa9979172707434c7def49a988f9db669102cf5835c910e55e6f466284068046487a7c6b6933d4abcbb0e6adfac78c302699698321c9218ef795c6c311fd26865bea7edd24da13bece3743629404a86dace42b49f47f8530e3a7670eb0e547e8823208000900010000000800050007000000080005000600000008000500ed00000005000300a000000008000a0015ffffff"], 0x14b4}, 0x1, 0x0, 0x0, 0x4000800}, 0x4000) mkdir$auto(&(0x7f0000000040)='./file0\x00', 0x2) r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x8000, 0x70) mknodat$auto(r6, &(0x7f00000003c0)='./file0\x00', 0xfff, 0xfffffff8) renameat2$auto(r6, &(0x7f0000000200)='./file0\x00', r6, &(0x7f0000000240)='./file1\x00', 0x1) r7 = openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x8000, 0x70) mkdir$auto(&(0x7f0000000000)='./file0/file0\x00', 0x3) renameat2$auto(r7, &(0x7f0000000200)='./file0\x00', r7, &(0x7f0000000240)='./file1\x00', 0x2) sendmsg$auto_GTP_CMD_ECHOREQ(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="dd01ffff", @ANYRES16=0x0, @ANYRESOCT=r3], 0x1c}, 0x1, 0x0, 0x0, 0x20000840}, 0x40000d4) 1.764270325s ago: executing program 3 (id=2904): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000200), 0xffffffffffffffff) r2 = set_tid_address$auto(&(0x7f0000000240)=0x9) sendmsg$auto_NL80211_CMD_SET_REG(0xffffffffffffffff, 0x0, 0x4800) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0x2000000080000001, 0x3) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) membarrier$auto(0x4, 0x8000000000000000, 0x0) sendmsg$auto_TIPC_NL_NET_SET(r0, &(0x7f0000000440)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000400)={&(0x7f00000010c0)=ANY=[@ANYBLOB="78010000", @ANYRES16=r1, @ANYBLOB="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", @ANYRES32=r2, @ANYBLOB="0c20018008004d800400a66f9c74"], 0x178}, 0x1, 0x0, 0x0, 0x8045}, 0x8004010) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r3 = socket(0x2, 0x1, 0x0) socket(0x10, 0x2, 0x14) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x13, 0x0, 0x7, 0x0, 0x1f, 0xfffffff8}, 0x800009}, 0xffff, 0x20000004) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socket(0xa, 0x3, 0x3a) setsockopt$auto(0x400000000000003, 0x29, 0xc8, 0x0, 0x567) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/fs/orangefs/getattr_timeout_msecs\x00', 0x8a82b6a56f18970a, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, 0x0, 0x0) write$auto(0x3, 0x0, 0xffd8) write$auto(0x3, 0x0, 0xffd8) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/snd_aloop.0/sound/card1/number\x00', 0x80000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000000)=""/45, 0x2d) futex_waitv$auto(&(0x7f0000000180)={0x3fb, 0x6, 0x2, 0xfff}, 0x3, 0xbffffffc, 0x0, 0x81) openat$auto_ftrace_formats_fops_trace_printk(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/printk_formats\x00', 0x286001, 0x0) 1.302584465s ago: executing program 0 (id=2905): close_range$auto(0x2, 0x8, 0x0) socket(0x2b, 0x1, 0x1) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram6\x00', 0x125740, 0x0) r0 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x28000, 0x0) sync_file_range$auto(0xffffffffffffffff, 0x1, 0x2f, 0x7) socket(0x2, 0x4, 0x8) ioctl$auto_TUNSETOFFLOAD(r0, 0x400454d0, 0x0) 1.046066733s ago: executing program 2 (id=2906): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) r2 = socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'wg0\x00', 0x0}) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/scsi/sg/allow_dio\x00', 0x101181, 0x0) write$auto(r5, 0x0, 0xb) bpf$auto(0x0, &(0x7f00000002c0)=@bpf_attr_5={@target_ifindex=r4, r3, 0x8, 0x1ff, r2, @relative_id=0x13, 0xe600}, 0xf) pipe2$auto(0x0, 0x800) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r1, 0x0, 0x3}, 0xc) 979.147085ms ago: executing program 0 (id=2907): r0 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) openat$auto_rb_simple_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/tracing_on\x00', 0x40001, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x80000001, 0x7fffffffffffffff, 0x7fffffffffffffff, 0x561299fe, r0, 0x7) socket(0x15, 0x5, 0x0) r2 = socket(0xa, 0x1, 0x84) getsockopt$auto(r2, 0x4, 0x2, 0x0, &(0x7f0000000000)=0x8) sendmsg$auto_NL80211_CMD_STOP_AP(r1, &(0x7f00000004c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0xc}, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/029/001\x00', 0xa101, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r4 = socket(0x10, 0x2, 0x0) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/pid_for_children\x00') mmap$auto(0x0, 0x202000d, 0x0, 0xeb1, 0x51c, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) r5 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) ioctl$auto(r6, 0x5393, r5) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) clone$auto(0x7, 0x6, &(0x7f0000000180)=0x7, &(0x7f00000001c0)=0x6, 0x10) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) recvmmsg$auto(r4, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x1e, 0x6, 0x0) sendmsg$auto_NL80211_CMD_SET_NOACK_MAP(r2, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f0000000500)={0xa4, 0x0, 0x2, 0x70bd28, 0x25dfdbfd, {}, [@NL80211_ATTR_MPATH_NEXT_HOP={0x87, 0x1a, "f912a2e3421fb8b1ce56e6cc87ca32b222e81322438ea069eb5d5bd588c02ebbcdc759fd908f92ac8392b9afe4351cb90a7605c915522ddb48d2ef788718e2cd328f9cc2ee175e0f723d78ceb9af72cf282e21fc6b6a1bac6c641c6d230544355189c570adf2416b79cfbb7d206daf84d1c8effb83e9ecb5b81ca69aad85fcf3a96657"}, @NL80211_ATTR_STA_SUPPORTED_RATES={0x7, 0x13, "f12e87"}]}, 0xa4}, 0x1, 0x0, 0x0, 0x5}, 0x1) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x1, 0x3, 0x0, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0) openat$auto_minstrel_ht_stat_csv_fops_rc80211_minstrel_ht_debugfs(0xffffffffffffff9c, &(0x7f0000001280)='/sys/kernel/debug/ieee80211/phy7/netdev:wlan0/stations/08:02:11:00:00:01/rc_stats_csv\x00', 0xa0140, 0x0) 904.491649ms ago: executing program 1 (id=2908): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket(0x10, 0x2, 0x0) select$auto(0x0, &(0x7f0000000040)={[0x1000000009, 0x4, 0x800000c8c1, 0x9, 0x6, 0x0, 0xb, 0x6, 0x5, 0xa, 0x800007, 0x200cf, 0x45, 0xc, 0x5, 0xb98]}, 0x0, 0x0, 0x0) sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=ANY=[@ANYBLOB='J\x00\x00\x00', @ANYRES16, @ANYBLOB="010025bd7000fcdbdf25020000002c00018028003c8008001b"], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x44) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) mmap$auto(0x0, 0x7fffffff, 0x101, 0x9b72, r0, 0x8000) r1 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x91) read$auto(r1, 0x0, 0x1) mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x20400008, 0x1df, 0x9b72, r0, 0x8000) prctl$auto_PR_GET_FPEMU(0x9, 0xa4d, 0xffffffffffffffff, 0x2, 0x80000001) r2 = socket(0x10, 0x2, 0x0) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_WOL_SET(r2, 0x0, 0x0) unshare$auto(0x40000080) openat$auto_ctl_device_fops_user(0xffffffffffffff9c, &(0x7f0000000100), 0x20002, 0x0) socket(0x11, 0x4, 0x3) openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000040), 0x2dc08f24db163610, 0x0) fcntl$auto(0x2, 0x409, 0x10) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/thread-self/net/rxrpc/peers\x00', 0x8f3b7a51b80ebd01, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x100002, 0x0) socket(0xa, 0x2, 0x88) socketpair$auto(0x1e, 0x1, 0x0, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0) ioctl$auto_TCFLSH2(r3, 0x8924, 0x0) 868.803003ms ago: executing program 2 (id=2909): r0 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/tty/driver/serial\x00', 0x2, 0x0) r1 = socket(0x29, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vidtv.0/i2c-0/0-0060/uevent\x00', 0xac00, 0x0) preadv2$auto(r0, &(0x7f0000000340)={&(0x7f0000000040)="3bdafa454026d0038332095ada5fa369fc9ecfcbc5b407728a71f979c3c6b9ed7224e4a8", 0x8}, 0x100000000e7e, 0x7, 0x200, 0x9) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000001c00)=""/4111, 0x100f) r3 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r3, 0x29, 0x6, 0x0, 0x50) close_range$auto(r1, r1, 0x8) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/loop13/queue/wbt_lat_usec\x00', 0x62, 0x0) write$auto(r5, &(0x7f0000000440)='Y\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) r6 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000040), 0xffffffffffffffff) r7 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ILA_CMD_DEL(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x50, r6, 0x1, 0x70bd21, 0x25dfdbfb, {}, [@ILA_ATTR_LOCATOR_MATCH={0xc, 0x3, 0xd}, @ILA_ATTR_LOCATOR_MATCH={0xc}, @ILA_ATTR_IDENT_TYPE={0x5, 0x8, 0x5}, @ILA_ATTR_IFINDEX={0x8}, @ILA_ATTR_CSUM_MODE={0x5, 0x7, 0x3}, @ILA_ATTR_LOCATOR={0xc, 0x1, 0x1ff}]}, 0x50}, 0x1, 0x0, 0x0, 0x4004004}, 0x10) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_NEW_KEY(r8, &(0x7f00000048c0)={0x0, 0x0, &(0x7f0000004880)={&(0x7f0000013c40)=ANY=[@ANYBLOB="2c66cb00", @ANYRES16=r3, @ANYRES16=r1], 0x2c}, 0x1, 0x0, 0x0, 0x40890}, 0x404c001) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r3, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB="00412bbd7000fcdb00050013010900000077d6309cdc8fcd48533f1579e3d44af290e34c29bb9f3e0000000000000000", @ANYRES16=r4], 0x24}, 0x1, 0x0, 0x0, 0xc4}, 0x800) statmount$auto(&(0x7f00000002c0)={0xffffffff, @raw=0x5, 0x40, 0x3ff, 0x6}, &(0x7f0000000400)={0x0, 0xfffffffe, 0x100000001, 0x4, 0x6, 0x3, 0x7, 0x50, 0x8000, 0xde, 0x9c89, 0x62da, 0x1, 0x3, 0x6, 0x807, 0x0, 0x2b0, 0x81, 0x758, 0x37fd, 0x81, 0x6, 0x8, 0xc598, 0xd, [0x13, 0x1d3a, 0xfff, 0x80000004, 0x10, 0x10, 0x4, 0x7, 0xffffffffffffff45, 0xe, 0x4000000000015af, 0x7fe0, 0xab4c, 0x3, 0xc595, 0x66, 0xd20, 0x7, 0x8, 0x0, 0x8cc, 0xffffffffffffffff, 0x1, 0x7, 0x6, 0x2, 0x1, 0x6, 0xda00, 0x7, 0x401, 0x3, 0x10000, 0x4, 0xaaa, 0x7, 0x54b4, 0xe, 0x4, 0x7, 0xa9, 0x0, 0x223, 0x1, 0x80000000002, 0x5], "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"}, 0x6, 0x9) sendmmsg$auto(r1, &(0x7f00000001c0)={{&(0x7f0000000000), 0x1aa, &(0x7f0000000100)={&(0x7f00000003c0)="4a67d23edb3100000000000000000075210d2de444", 0x49}, 0x5, &(0x7f0000000180), 0x5}, 0x1}, 0x2, 0x101) read$auto_proc_single_file_operations_base(r0, &(0x7f00000000c0)=""/41, 0x11) 512.411873ms ago: executing program 3 (id=2910): r0 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/tty/driver/serial\x00', 0x2, 0x0) r1 = socket(0x29, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vidtv.0/i2c-0/0-0060/uevent\x00', 0xac00, 0x0) preadv2$auto(r0, &(0x7f0000000340)={&(0x7f0000000040)="3bdafa454026d0038332095ada5fa369fc9ecfcbc5b407728a71f979c3c6b9ed7224e4a8", 0x8}, 0x100000000e7e, 0x7, 0x200, 0x9) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000001c00)=""/4111, 0x100f) r3 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r3, 0x29, 0x6, 0x0, 0x50) close_range$auto(r1, r1, 0x8) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/loop13/queue/wbt_lat_usec\x00', 0x62, 0x0) write$auto(r5, &(0x7f0000000440)='Y\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) r6 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000040), 0xffffffffffffffff) r7 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ILA_CMD_DEL(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x50, r6, 0x1, 0x70bd21, 0x25dfdbfb, {}, [@ILA_ATTR_LOCATOR_MATCH={0xc, 0x3, 0xd}, @ILA_ATTR_LOCATOR_MATCH={0xc}, @ILA_ATTR_IDENT_TYPE={0x5, 0x8, 0x5}, @ILA_ATTR_IFINDEX={0x8}, @ILA_ATTR_CSUM_MODE={0x5, 0x7, 0x3}, @ILA_ATTR_LOCATOR={0xc, 0x1, 0x1ff}]}, 0x50}, 0x1, 0x0, 0x0, 0x4004004}, 0x10) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_NEW_KEY(r8, &(0x7f00000048c0)={0x0, 0x0, &(0x7f0000004880)={&(0x7f0000013c40)=ANY=[@ANYBLOB="2c66cb00", @ANYRES16=r3, @ANYRES16=r1], 0x2c}, 0x1, 0x0, 0x0, 0x40890}, 0x404c001) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r3, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB="00412bbd7000fcdb00050013010900000077d6309cdc8fcd48533f1579e3d44af290e34c29bb9f3e0000000000000000", @ANYRES16=r4], 0x24}, 0x1, 0x0, 0x0, 0xc4}, 0x800) statmount$auto(&(0x7f00000002c0)={0xffffffff, @raw=0x5, 0x40, 0x3ff, 0x6}, &(0x7f0000000400)={0x0, 0xfffffffe, 0x100000001, 0x4, 0x6, 0x3, 0x7, 0x50, 0x8000, 0xde, 0x9c89, 0x62da, 0x1, 0x3, 0x6, 0x807, 0x0, 0x2b0, 0x81, 0x758, 0x37fd, 0x81, 0x6, 0x8, 0xc598, 0xd, [0x13, 0x1d3a, 0xfff, 0x80000004, 0x10, 0x10, 0x4, 0x7, 0xffffffffffffff45, 0xe, 0x4000000000015af, 0x7fe0, 0xab4c, 0x3, 0xc595, 0x66, 0xd20, 0x7, 0x8, 0x0, 0x8cc, 0xffffffffffffffff, 0x1, 0x7, 0x6, 0x2, 0x1, 0x6, 0xda00, 0x7, 0x401, 0x3, 0x10000, 0x4, 0xaaa, 0x7, 0x54b4, 0xe, 0x4, 0x7, 0xa9, 0x0, 0x223, 0x1, 0x80000000002, 0x5], "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"}, 0x6, 0x9) sendmmsg$auto(r1, &(0x7f00000001c0)={{&(0x7f0000000000), 0x1aa, &(0x7f0000000100)={&(0x7f00000003c0)="4a67d23edb3100000000000000000075210d", 0x49}, 0x5, &(0x7f0000000180), 0x5}, 0x1}, 0x2, 0x101) read$auto_proc_single_file_operations_base(r0, &(0x7f00000000c0)=""/41, 0x11) 47.601354ms ago: executing program 2 (id=2911): r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0) mmap$auto(0x2000, 0x9, 0x8, 0x8000000008011, r0, 0x0) (fail_nth: 6) 0s ago: executing program 3 (id=2912): mlockall$auto(0x7) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000de, 0xeb1, 0x401, 0x8000) mknodat$auto(0x5, 0x0, 0xfffffffffffff084, 0x400) ioctl$auto(0x3, 0x227f, 0x38) set_mempolicy$auto(0x2005, &(0x7f0000000080)=0x87e, 0x4) close_range$auto(0x0, 0xfffffffffffff001, 0x2) socket(0x2, 0x1, 0x0) socket(0x18, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0xc, 0x4000000000df, 0x44eb2, 0x10006, 0x300000000000) kernel console output (not intermixed with test programs): 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 557.051026][T14265] RSP: 002b:00007f422dc5b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 557.051050][T14265] RAX: ffffffffffffffda RBX: 00007f422cfa6080 RCX: 00007f422cd8cd29 [ 557.051066][T14265] RDX: 0000000000001000 RSI: 0000000020000ec0 RDI: 0000000000000007 [ 557.051080][T14265] RBP: 00007f422ce0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 557.051094][T14265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 557.051117][T14265] R13: 0000000000000000 R14: 00007f422cfa6080 R15: 00007ffc3f4ff188 [ 557.051152][T14265] [ 557.279501][ C0] vkms_vblank_simulate: vblank timer overrun [ 559.629087][T14322] FAULT_INJECTION: forcing a failure. [ 559.629087][T14322] name failslab, interval 1, probability 0, space 0, times 0 [ 559.662329][T14322] CPU: 0 UID: 0 PID: 14322 Comm: syz.3.2370 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 559.662361][T14322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 559.662373][T14322] Call Trace: [ 559.662379][T14322] [ 559.662387][T14322] dump_stack_lvl+0x16c/0x1f0 [ 559.662420][T14322] should_fail_ex+0x497/0x5b0 [ 559.662444][T14322] ? fs_reclaim_acquire+0xae/0x150 [ 559.662479][T14322] should_failslab+0xc2/0x120 [ 559.662507][T14322] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 559.662533][T14322] ? __alloc_skb+0x2b3/0x380 [ 559.662566][T14322] __alloc_skb+0x2b3/0x380 [ 559.662594][T14322] ? __pfx___alloc_skb+0x10/0x10 [ 559.662620][T14322] ? __lock_acquire+0xcc5/0x3c40 [ 559.662658][T14322] alloc_skb_with_frags+0xe4/0x850 [ 559.662690][T14322] ? __pfx___lock_acquire+0x10/0x10 [ 559.662715][T14322] ? __lock_acquire+0x15a9/0x3c40 [ 559.662746][T14322] sock_alloc_send_pskb+0x7f1/0x980 [ 559.662777][T14322] ? find_held_lock+0x2d/0x110 [ 559.662826][T14322] ? __pfx_sock_alloc_send_pskb+0x10/0x10 [ 559.662858][T14322] ? lock_acquire+0x2f/0xb0 [ 559.662882][T14322] ? dev_get_by_index+0x37/0x380 [ 559.662917][T14322] packet_sendmsg+0x1fd3/0x56c0 [ 559.662969][T14322] ? __pfx___might_resched+0x10/0x10 [ 559.662997][T14322] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 559.663032][T14322] ? __pfx_packet_sendmsg+0x10/0x10 [ 559.663065][T14322] ? aa_get_newest_label+0x410/0x680 [ 559.663108][T14322] __sys_sendto+0x488/0x4f0 [ 559.663137][T14322] ? __pfx___sys_sendto+0x10/0x10 [ 559.663190][T14322] ? ksys_write+0x1ba/0x250 [ 559.663222][T14322] ? __pfx_ksys_write+0x10/0x10 [ 559.663259][T14322] __x64_sys_sendto+0xe0/0x1c0 [ 559.663286][T14322] ? do_syscall_64+0x91/0x250 [ 559.663314][T14322] ? lockdep_hardirqs_on+0x7c/0x110 [ 559.663341][T14322] do_syscall_64+0xcd/0x250 [ 559.663370][T14322] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 559.663398][T14322] RIP: 0033:0x7fbe9758cd29 [ 559.663416][T14322] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 559.663437][T14322] RSP: 002b:00007fbe983a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 559.663458][T14322] RAX: ffffffffffffffda RBX: 00007fbe977a5fa0 RCX: 00007fbe9758cd29 [ 559.663473][T14322] RDX: 0000000000000013 RSI: 0000000000000000 RDI: 0000000000000003 [ 559.663486][T14322] RBP: 00007fbe983a7090 R08: 0000000020000440 R09: 0000000000000022 [ 559.663499][T14322] R10: 00000000fffffff8 R11: 0000000000000246 R12: 0000000000000001 [ 559.663512][T14322] R13: 0000000000000000 R14: 00007fbe977a5fa0 R15: 00007ffecf6ccbe8 [ 559.663542][T14322] [ 559.929464][ C0] vkms_vblank_simulate: vblank timer overrun [ 560.162532][T14327] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2374'. [ 560.340513][T14334] FAULT_INJECTION: forcing a failure. [ 560.340513][T14334] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 560.378417][T14332] FAULT_INJECTION: forcing a failure. [ 560.378417][T14332] name failslab, interval 1, probability 0, space 0, times 0 [ 560.392326][T14334] CPU: 1 UID: 0 PID: 14334 Comm: syz.2.2376 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 560.392357][T14334] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 560.392371][T14334] Call Trace: [ 560.392377][T14334] [ 560.392386][T14334] dump_stack_lvl+0x16c/0x1f0 [ 560.392424][T14334] should_fail_ex+0x497/0x5b0 [ 560.392453][T14334] _copy_to_user+0x32/0xd0 [ 560.392483][T14334] simple_read_from_buffer+0xd0/0x160 [ 560.392518][T14334] proc_fail_nth_read+0x198/0x270 [ 560.392549][T14334] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 560.392581][T14334] ? rw_verify_area+0xcf/0x680 [ 560.392610][T14334] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 560.392640][T14334] vfs_read+0x1df/0xbf0 [ 560.392672][T14334] ? __fget_files+0x1fc/0x3a0 [ 560.392694][T14334] ? __pfx___mutex_lock+0x10/0x10 [ 560.392731][T14334] ? __pfx_vfs_read+0x10/0x10 [ 560.392773][T14334] ? __fget_files+0x206/0x3a0 [ 560.392805][T14334] ksys_read+0x12b/0x250 [ 560.392836][T14334] ? __pfx_ksys_read+0x10/0x10 [ 560.392879][T14334] do_syscall_64+0xcd/0x250 [ 560.392908][T14334] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 560.392936][T14334] RIP: 0033:0x7fb2c6f8b73c [ 560.392955][T14334] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 560.392975][T14334] RSP: 002b:00007fb2c7d31030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 560.392995][T14334] RAX: ffffffffffffffda RBX: 00007fb2c71a5fa0 RCX: 00007fb2c6f8b73c [ 560.393010][T14334] RDX: 000000000000000f RSI: 00007fb2c7d310a0 RDI: 0000000000000004 [ 560.393023][T14334] RBP: 00007fb2c7d31090 R08: 0000000000000000 R09: 0000000000000000 [ 560.393036][T14334] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 560.393048][T14334] R13: 0000000000000000 R14: 00007fb2c71a5fa0 R15: 00007ffd9f5af998 [ 560.393080][T14334] [ 560.409415][T14332] CPU: 0 UID: 0 PID: 14332 Comm: syz.1.2375 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 560.409449][T14332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 560.409463][T14332] Call Trace: [ 560.409471][T14332] [ 560.409480][T14332] dump_stack_lvl+0x16c/0x1f0 [ 560.409515][T14332] should_fail_ex+0x497/0x5b0 [ 560.409539][T14332] ? fs_reclaim_acquire+0xae/0x150 [ 560.409578][T14332] should_failslab+0xc2/0x120 [ 560.409608][T14332] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 560.409636][T14332] ? lock_acquire+0x2f/0xb0 [ 560.409661][T14332] ? __proc_create+0xa4/0x8b0 [ 560.409683][T14332] ? __proc_create+0x2c3/0x8b0 [ 560.409711][T14332] __proc_create+0x2c3/0x8b0 [ 560.409736][T14332] ? __pfx___proc_create+0x10/0x10 [ 560.409768][T14332] ? proc_register+0x9e/0x5f0 [ 560.409799][T14332] ? _raw_write_unlock+0x28/0x50 [ 560.409832][T14332] proc_create_reg+0x7d/0x180 [ 560.409858][T14332] ? __pfx_fib_triestat_seq_show+0x10/0x10 [ 560.409890][T14332] proc_create_net_single+0x87/0x170 [ 560.409916][T14332] ? __pfx_proc_create_net_single+0x10/0x10 [ 560.409942][T14332] ? __pfx___netlink_kernel_create+0x10/0x10 [ 560.409970][T14332] ? fib_default_rule_add+0x342/0x420 [ 560.410001][T14332] fib_proc_init+0xa3/0x1b0 [ 560.410032][T14332] fib_net_init+0x279/0x3d0 [ 560.410065][T14332] ? __pfx_fib_net_init+0x10/0x10 [ 560.410099][T14332] ? __pfx_nl_fib_input+0x10/0x10 [ 560.410137][T14332] ? devinet_init_net+0x5b3/0x8f0 [ 560.410163][T14332] ? __pfx_fib_net_init+0x10/0x10 [ 560.410196][T14332] ops_init+0x1df/0x5f0 [ 560.410232][T14332] setup_net+0x21f/0x860 [ 560.410265][T14332] ? __pfx_setup_net+0x10/0x10 [ 560.410296][T14332] ? down_read_killable+0xcc/0x380 [ 560.410327][T14332] ? __pfx_down_read_killable+0x10/0x10 [ 560.410360][T14332] ? debug_mutex_init+0x37/0x70 [ 560.410399][T14332] copy_net_ns+0x2b4/0x6c0 [ 560.410436][T14332] create_new_namespaces+0x3ea/0xad0 [ 560.410476][T14332] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 560.410511][T14332] ksys_unshare+0x45d/0xa40 [ 560.410546][T14332] ? __pfx_ksys_unshare+0x10/0x10 [ 560.410580][T14332] ? __pfx___x64_sys_open+0x10/0x10 [ 560.410618][T14332] __x64_sys_unshare+0x31/0x40 [ 560.410652][T14332] do_syscall_64+0xcd/0x250 [ 560.410684][T14332] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 560.410716][T14332] RIP: 0033:0x7f422cd8cd29 [ 560.410735][T14332] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 560.410766][T14332] RSP: 002b:00007f422dc7c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 560.410788][T14332] RAX: ffffffffffffffda RBX: 00007f422cfa5fa0 RCX: 00007f422cd8cd29 [ 560.410804][T14332] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 560.410819][T14332] RBP: 00007f422ce0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 560.410833][T14332] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 560.410847][T14332] R13: 0000000000000000 R14: 00007f422cfa5fa0 R15: 00007ffc3f4ff188 [ 560.410879][T14332] [ 560.935593][T14335] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2375'. [ 562.392712][T14371] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2387'. [ 563.154378][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.160941][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 564.243962][T14409] mkiss: ax0: crc mode is auto. [ 564.300569][T14407] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2398'. [ 564.407267][T14405] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2399'. [ 565.353918][T14432] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2407'. [ 565.592851][T14418] ima: policy update failed [ 565.598617][ T5832] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 565.607835][ T29] audit: type=1802 audit(4294967339.020:48): pid=14418 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.2402" res=0 errno=0 [ 565.609149][ T5832] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 565.634342][ T5832] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 565.659091][ T5832] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 565.667079][ T5832] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 565.674720][ T5832] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 565.937357][T14437] chnl_net:caif_netlink_parms(): no params data found [ 566.077392][T14437] bridge0: port 1(bridge_slave_0) entered blocking state [ 566.111627][T14437] bridge0: port 1(bridge_slave_0) entered disabled state [ 566.192558][T14437] bridge_slave_0: entered allmulticast mode [ 566.205143][T14437] bridge_slave_0: entered promiscuous mode [ 566.229827][T14437] bridge0: port 2(bridge_slave_1) entered blocking state [ 566.244428][T14437] bridge0: port 2(bridge_slave_1) entered disabled state [ 566.253630][T14437] bridge_slave_1: entered allmulticast mode [ 566.260630][T14437] bridge_slave_1: entered promiscuous mode [ 566.310536][T14437] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 566.358187][T14437] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 566.533817][T14437] team0: Port device team_slave_0 added [ 566.564797][T14437] team0: Port device team_slave_1 added [ 566.688687][T14437] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 566.723981][T14437] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 566.749987][ C0] vkms_vblank_simulate: vblank timer overrun [ 566.838475][T14437] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 566.857826][T14463] mkiss: ax0: crc mode is auto. [ 566.887409][T14437] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 566.894964][T14437] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 566.921645][T14437] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 567.168058][T14437] hsr_slave_0: entered promiscuous mode [ 567.174534][T14437] hsr_slave_1: entered promiscuous mode [ 567.180737][T14437] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 567.189687][T14437] Cannot create hsr debugfs directory [ 567.599710][T14437] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 567.722361][ T5834] Bluetooth: hci0: command tx timeout [ 567.739425][T14472] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2415'. [ 567.812340][T14437] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 568.024201][T14437] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 568.140665][T14437] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 568.565748][T14437] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 568.579160][T14437] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 568.642735][T14437] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 568.703182][T14437] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 568.910220][T14437] 8021q: adding VLAN 0 to HW filter on device bond0 [ 568.976127][T14437] 8021q: adding VLAN 0 to HW filter on device team0 [ 569.020732][ T3539] bridge0: port 1(bridge_slave_0) entered blocking state [ 569.027920][ T3539] bridge0: port 1(bridge_slave_0) entered forwarding state [ 569.084663][ T61] bridge0: port 2(bridge_slave_1) entered blocking state [ 569.091872][ T61] bridge0: port 2(bridge_slave_1) entered forwarding state [ 569.227766][T14437] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 569.262907][T14437] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 569.714158][T14437] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 569.793166][ T5834] Bluetooth: hci0: command tx timeout [ 569.800185][T14510] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2424'. [ 569.854413][T14437] veth0_vlan: entered promiscuous mode [ 569.876579][T14437] veth1_vlan: entered promiscuous mode [ 570.077896][T14437] veth0_macvtap: entered promiscuous mode [ 570.120141][T14437] veth1_macvtap: entered promiscuous mode [ 570.166132][T14437] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 570.192596][T14437] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 570.203123][T14437] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 570.214653][T14437] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 570.225041][T14437] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 570.236343][T14437] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 570.252582][T14437] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 570.264117][T14437] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 570.284363][T14437] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 570.295418][T14437] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 570.306064][T14437] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 570.316914][T14437] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 570.327882][T14437] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 570.338363][T14437] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 570.358746][T14437] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 570.379083][T14437] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 570.395811][T14437] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 570.419498][T14437] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 570.456722][T14437] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 570.490785][T14437] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 570.520944][T14437] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 570.543939][T14437] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 570.877936][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 570.908545][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 570.974169][T14519] netlink: 326 bytes leftover after parsing attributes in process `syz.3.2426'. [ 571.030319][ T6535] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 571.048916][ T6535] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 571.872403][ T5834] Bluetooth: hci0: command tx timeout [ 573.411516][T14563] mkiss: ax0: crc mode is auto. [ 573.952966][ T5834] Bluetooth: hci0: command tx timeout [ 574.787648][T14567] Invalid ELF header magic: != ELF [ 575.376996][T14568] MTRR 1 not used [ 575.416806][T14567] can: request_module (can-proto-0) failed. [ 575.823309][T14587] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2442'. [ 578.337279][ T5832] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 578.348363][ T5832] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 578.356672][ T5832] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 578.365554][ T5832] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 578.373952][ T5832] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 578.384557][ T5832] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 578.750057][T14622] chnl_net:caif_netlink_parms(): no params data found [ 578.889521][T14612] Process accounting resumed [ 579.231709][T14622] bridge0: port 1(bridge_slave_0) entered blocking state [ 579.259153][T14622] bridge0: port 1(bridge_slave_0) entered disabled state [ 579.282418][T14622] bridge_slave_0: entered allmulticast mode [ 579.289495][T14622] bridge_slave_0: entered promiscuous mode [ 579.321513][T14622] bridge0: port 2(bridge_slave_1) entered blocking state [ 579.342391][T14622] bridge0: port 2(bridge_slave_1) entered disabled state [ 579.372475][T14622] bridge_slave_1: entered allmulticast mode [ 579.379576][T14622] bridge_slave_1: entered promiscuous mode [ 579.454650][T14622] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 579.493345][T14622] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 579.663865][T14622] team0: Port device team_slave_0 added [ 579.671903][T14622] team0: Port device team_slave_1 added [ 579.918185][T14622] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 579.942421][T14622] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 580.019407][T14622] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 580.071403][T14622] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 580.092860][T14622] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 580.152331][T14622] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 580.387269][T14622] hsr_slave_0: entered promiscuous mode [ 580.403150][T14622] hsr_slave_1: entered promiscuous mode [ 580.414710][T14622] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 580.432689][ T5832] Bluetooth: hci2: command tx timeout [ 580.441268][T14622] Cannot create hsr debugfs directory [ 580.766564][T14622] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 580.899425][T14622] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 581.006250][T14665] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2464'. [ 581.022991][T14622] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 581.101181][T14622] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 581.369972][T14622] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 581.414982][T14622] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 581.445716][T14622] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 581.498463][T14622] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 581.670690][T14622] 8021q: adding VLAN 0 to HW filter on device bond0 [ 581.689650][T14622] 8021q: adding VLAN 0 to HW filter on device team0 [ 581.708637][ T6535] bridge0: port 1(bridge_slave_0) entered blocking state [ 581.715783][ T6535] bridge0: port 1(bridge_slave_0) entered forwarding state [ 581.751950][T14675] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2468'. [ 581.788865][ T6535] bridge0: port 2(bridge_slave_1) entered blocking state [ 581.796037][ T6535] bridge0: port 2(bridge_slave_1) entered forwarding state [ 581.960517][T14679] Invalid ELF header magic: != ELF [ 581.978837][T14690] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2472'. [ 582.195998][T14622] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 582.210698][T14698] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2473'. [ 582.210954][T14679] can: request_module (can-proto-0) failed. [ 582.244012][T14686] MTRR 1 not used [ 582.292119][T14622] veth0_vlan: entered promiscuous mode [ 582.314532][T14622] veth1_vlan: entered promiscuous mode [ 582.373407][T14622] veth0_macvtap: entered promiscuous mode [ 582.381538][T14703] FAULT_INJECTION: forcing a failure. [ 582.381538][T14703] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 582.397551][T14622] veth1_macvtap: entered promiscuous mode [ 582.402610][T14703] CPU: 0 UID: 0 PID: 14703 Comm: syz.1.2474 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 582.402639][T14703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 582.402652][T14703] Call Trace: [ 582.402658][T14703] [ 582.402667][T14703] dump_stack_lvl+0x16c/0x1f0 [ 582.402699][T14703] should_fail_ex+0x497/0x5b0 [ 582.402726][T14703] _copy_from_user+0x2e/0xd0 [ 582.402754][T14703] snd_rawmidi_kernel_write1+0x35e/0x860 [ 582.402788][T14703] ? _raw_spin_unlock_irq+0x23/0x50 [ 582.402815][T14703] snd_rawmidi_write+0x267/0xbe0 [ 582.402849][T14703] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 582.402878][T14703] ? __pfx_default_wake_function+0x10/0x10 [ 582.402906][T14703] ? bpf_lsm_file_permission+0x9/0x10 [ 582.402932][T14703] ? security_file_permission+0x71/0x210 [ 582.402967][T14703] ? rw_verify_area+0xcf/0x680 [ 582.402997][T14703] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 582.403023][T14703] vfs_write+0x24c/0x1150 [ 582.403055][T14703] ? __fget_files+0x1fc/0x3a0 [ 582.403075][T14703] ? __pfx_lock_release+0x10/0x10 [ 582.403100][T14703] ? __pfx_vfs_write+0x10/0x10 [ 582.403133][T14703] ? lock_acquire+0x2f/0xb0 [ 582.403156][T14703] ? __fget_files+0x40/0x3a0 [ 582.403180][T14703] ? __fget_files+0x206/0x3a0 [ 582.403208][T14703] ksys_write+0x207/0x250 [ 582.403239][T14703] ? __pfx_ksys_write+0x10/0x10 [ 582.403278][T14703] do_syscall_64+0xcd/0x250 [ 582.403306][T14703] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 582.403333][T14703] RIP: 0033:0x7f422cd8cd29 [ 582.403350][T14703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 582.403369][T14703] RSP: 002b:00007f422dc7c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 582.403390][T14703] RAX: ffffffffffffffda RBX: 00007f422cfa5fa0 RCX: 00007f422cd8cd29 [ 582.403404][T14703] RDX: 000000000000a3d9 RSI: 0000000020000400 RDI: 0000000000000006 [ 582.403417][T14703] RBP: 00007f422dc7c090 R08: 0000000000000000 R09: 0000000000000000 [ 582.403430][T14703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 582.403443][T14703] R13: 0000000000000000 R14: 00007f422cfa5fa0 R15: 00007ffc3f4ff188 [ 582.403476][T14703] [ 582.621828][ T5832] Bluetooth: hci2: command tx timeout [ 582.790594][T14622] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 582.805804][T14622] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 582.822686][T14622] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 582.834581][T14622] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 582.845007][T14622] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 582.856020][T14622] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 582.866467][T14622] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 582.877591][T14622] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 582.888829][T14622] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 582.899838][T14622] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 582.917323][T14622] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 582.937990][T14622] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 582.948684][T14622] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 582.958646][T14622] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 582.969855][T14622] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 582.979808][T14622] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 582.990759][T14622] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 583.001613][T14622] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 583.012814][T14622] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 583.022830][T14622] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 583.033773][T14622] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 583.044943][T14622] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 583.061862][T14622] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 583.070783][T14622] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 583.081476][T14622] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 583.091127][T14622] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 583.275953][ T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 583.290503][T14723] FAULT_INJECTION: forcing a failure. [ 583.290503][T14723] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 583.312520][ T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 583.328412][T14723] CPU: 0 UID: 0 PID: 14723 Comm: syz.0.2478 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 583.328439][T14723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 583.328452][T14723] Call Trace: [ 583.328458][T14723] [ 583.328467][T14723] dump_stack_lvl+0x16c/0x1f0 [ 583.328500][T14723] should_fail_ex+0x497/0x5b0 [ 583.328525][T14723] ? fs_reclaim_acquire+0xae/0x150 [ 583.328577][T14723] should_fail_alloc_page+0xe7/0x130 [ 583.328606][T14723] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 583.328639][T14723] ? __pfx_mark_lock+0x10/0x10 [ 583.328669][T14723] __alloc_pages_noprof+0x18e/0x2470 [ 583.328699][T14723] ? hlock_class+0x4e/0x130 [ 583.328730][T14723] ? mark_lock+0xb5/0xc60 [ 583.328759][T14723] ? __pfx_mark_lock+0x10/0x10 [ 583.328786][T14723] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 583.328824][T14723] ? hlock_class+0x4e/0x130 [ 583.328860][T14723] ? hlock_class+0x4e/0x130 [ 583.328891][T14723] ? __lock_acquire+0xcc5/0x3c40 [ 583.328915][T14723] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 583.328947][T14723] ? policy_nodemask+0xea/0x4e0 [ 583.328977][T14723] alloc_pages_mpol_noprof+0x2c8/0x620 [ 583.329010][T14723] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 583.329038][T14723] ? __pfx_lock_release+0x10/0x10 [ 583.329064][T14723] ? trace_lock_acquire+0x14e/0x1f0 [ 583.329097][T14723] pte_alloc_one+0x20/0x390 [ 583.329128][T14723] do_pte_missing+0x1ae7/0x3e00 [ 583.329155][T14723] ? __pfx_lock_release+0x10/0x10 [ 583.329190][T14723] __handle_mm_fault+0x1166/0x2c60 [ 583.329224][T14723] ? __pfx___handle_mm_fault+0x10/0x10 [ 583.329247][T14723] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 583.329292][T14723] ? find_vma+0xc0/0x140 [ 583.329321][T14723] ? __pfx_find_vma+0x10/0x10 [ 583.329353][T14723] handle_mm_fault+0x3fa/0xaa0 [ 583.329381][T14723] do_user_addr_fault+0x7a3/0x13f0 [ 583.329410][T14723] exc_page_fault+0x5c/0xc0 [ 583.329435][T14723] asm_exc_page_fault+0x26/0x30 [ 583.329463][T14723] RIP: 0010:copy_iovec_from_user+0x84/0x170 [ 583.329490][T14723] Code: e8 41 ae fe fc 4d 85 ff 0f 85 c6 00 00 00 e8 c3 b3 fe fc 0f 01 cb 0f ae e8 49 bf 00 00 00 00 00 fc ff df e8 ae b3 fe fc 31 db <48> 8b 45 08 31 ff 89 de 49 89 c6 e8 9c ae fe fc 85 db 0f 85 b1 00 [ 583.329509][T14723] RSP: 0018:ffffc900036978e8 EFLAGS: 00050246 [ 583.329526][T14723] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff84ba3ebf [ 583.329539][T14723] RDX: ffff888035825a00 RSI: ffffffff84ba3ee2 RDI: 0000000000000006 [ 583.329553][T14723] RBP: 0000000000000000 R08: 0000000000000006 R09: 0000000000000000 [ 583.329570][T14723] R10: 0000000000001010 R11: 0000000000000000 R12: ffff888075cfc000 [ 583.329584][T14723] R13: 0000000000000101 R14: 00007ffffffff000 R15: dffffc0000000000 [ 583.329608][T14723] ? copy_iovec_from_user+0x5f/0x170 [ 583.329632][T14723] ? copy_iovec_from_user+0x82/0x170 [ 583.329660][T14723] ? copy_iovec_from_user+0x82/0x170 [ 583.329688][T14723] iovec_from_user.part.0+0x65/0x130 [ 583.329717][T14723] __import_iovec+0xd6/0x6d0 [ 583.329753][T14723] import_iovec+0x108/0x140 [ 583.329782][T14723] copy_msghdr_from_user+0xfa/0x160 [ 583.329813][T14723] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 583.329840][T14723] ? __lock_acquire+0xcc5/0x3c40 [ 583.329877][T14723] ___sys_sendmsg+0xff/0x1e0 [ 583.329907][T14723] ? __pfx____sys_sendmsg+0x10/0x10 [ 583.329950][T14723] ? trace_lock_acquire+0x14e/0x1f0 [ 583.329990][T14723] __sys_sendmmsg+0x201/0x420 [ 583.330016][T14723] ? __pfx___sys_sendmmsg+0x10/0x10 [ 583.330047][T14723] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 583.330086][T14723] ? fput+0x67/0x440 [ 583.330111][T14723] ? ksys_write+0x1ba/0x250 [ 583.330142][T14723] ? __pfx_ksys_write+0x10/0x10 [ 583.330179][T14723] __x64_sys_sendmmsg+0x9c/0x100 [ 583.330206][T14723] ? lockdep_hardirqs_on+0x7c/0x110 [ 583.330232][T14723] do_syscall_64+0xcd/0x250 [ 583.330262][T14723] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 583.330290][T14723] RIP: 0033:0x7fef9598cd29 [ 583.330306][T14723] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 583.330324][T14723] RSP: 002b:00007fef9682a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 583.330341][T14723] RAX: ffffffffffffffda RBX: 00007fef95ba5fa0 RCX: 00007fef9598cd29 [ 583.330354][T14723] RDX: 0000000000000005 RSI: 0000000020000140 RDI: 0000000000000003 [ 583.330367][T14723] RBP: 00007fef9682a090 R08: 0000000000000000 R09: 0000000000000000 [ 583.330379][T14723] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001 [ 583.330391][T14723] R13: 0000000000000000 R14: 00007fef95ba5fa0 R15: 00007ffffad3c1e8 [ 583.330417][T14723] [ 583.345414][ T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 583.365126][T14725] MTRR 1 not used [ 583.369299][ T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 583.674916][T14729] FAULT_INJECTION: forcing a failure. [ 583.674916][T14729] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 583.871070][T14729] CPU: 0 UID: 0 PID: 14729 Comm: syz.0.2481 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 583.871099][T14729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 583.871112][T14729] Call Trace: [ 583.871118][T14729] [ 583.871127][T14729] dump_stack_lvl+0x16c/0x1f0 [ 583.871159][T14729] should_fail_ex+0x497/0x5b0 [ 583.871183][T14729] ? fs_reclaim_acquire+0xae/0x150 [ 583.871216][T14729] should_fail_alloc_page+0xe7/0x130 [ 583.871263][T14729] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 583.871301][T14729] __alloc_pages_noprof+0x18e/0x2470 [ 583.871328][T14729] ? find_held_lock+0x2d/0x110 [ 583.871362][T14729] ? hlock_class+0x4e/0x130 [ 583.871393][T14729] ? mark_lock+0xb5/0xc60 [ 583.871421][T14729] ? __pfx_mark_lock+0x10/0x10 [ 583.871447][T14729] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 583.871476][T14729] ? __pfx_lock_release+0x10/0x10 [ 583.871508][T14729] ? trace_lock_acquire+0x14e/0x1f0 [ 583.871535][T14729] ? hlock_class+0x4e/0x130 [ 583.871571][T14729] ? hlock_class+0x4e/0x130 [ 583.871601][T14729] ? __lock_acquire+0xcc5/0x3c40 [ 583.871624][T14729] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 583.871655][T14729] ? policy_nodemask+0xea/0x4e0 [ 583.871682][T14729] alloc_pages_mpol_noprof+0x2c8/0x620 [ 583.871712][T14729] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 583.871757][T14729] pte_alloc_one+0x20/0x390 [ 583.871789][T14729] do_pte_missing+0x1ae7/0x3e00 [ 583.871816][T14729] ? __pfx_lock_release+0x10/0x10 [ 583.871850][T14729] __handle_mm_fault+0x1166/0x2c60 [ 583.871885][T14729] ? __pfx___handle_mm_fault+0x10/0x10 [ 583.871909][T14729] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 583.871955][T14729] ? find_vma+0xc0/0x140 [ 583.871986][T14729] ? __pfx_find_vma+0x10/0x10 [ 583.872022][T14729] handle_mm_fault+0x3fa/0xaa0 [ 583.872054][T14729] do_user_addr_fault+0x7a3/0x13f0 [ 583.872090][T14729] exc_page_fault+0x5c/0xc0 [ 583.872119][T14729] asm_exc_page_fault+0x26/0x30 [ 583.872147][T14729] RIP: 0010:__get_user_4+0x18/0x30 [ 583.872168][T14729] Code: 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 ba 00 f0 ff ff ff 7f 00 00 48 39 d0 48 0f 47 c2 0f 01 cb <8b> 10 31 c0 0f 01 ca c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 [ 583.872191][T14729] RSP: 0018:ffffc90003697d68 EFLAGS: 00050283 [ 583.872208][T14729] RAX: 0000000000000007 RBX: 00000000400c4d07 RCX: ffffc90003697cd0 [ 583.872222][T14729] RDX: 00007ffffffff000 RSI: ffffffff81635c06 RDI: ffffffff8bd26ae0 [ 583.872235][T14729] RBP: 0000000000000007 R08: 0000000000000000 R09: fffffbfff20bfbfa [ 583.872247][T14729] R10: ffffffff905fdfd7 R11: 0000000000000000 R12: 1ffff920006d2fb0 [ 583.872260][T14729] R13: ffff88806d9bd500 R14: 0000000000000007 R15: 00000000400c4d07 [ 583.872285][T14729] ? mtrr_ioctl+0x3b6/0xcd0 [ 583.872317][T14729] mtrr_ioctl+0x3be/0xcd0 [ 583.872344][T14729] ? __pfx_mtrr_ioctl+0x10/0x10 [ 583.872374][T14729] ? __pfx_lock_release+0x10/0x10 [ 583.872414][T14729] ? __fget_files+0x206/0x3a0 [ 583.872436][T14729] ? __pfx_mtrr_ioctl+0x10/0x10 [ 583.872463][T14729] proc_reg_unlocked_ioctl+0x226/0x320 [ 583.872485][T14729] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 583.872517][T14729] __x64_sys_ioctl+0x190/0x200 [ 583.872550][T14729] do_syscall_64+0xcd/0x250 [ 583.872579][T14729] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 583.872606][T14729] RIP: 0033:0x7fef9598cd29 [ 583.872622][T14729] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 583.872641][T14729] RSP: 002b:00007fef9682a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 583.872659][T14729] RAX: ffffffffffffffda RBX: 00007fef95ba5fa0 RCX: 00007fef9598cd29 [ 583.872696][T14729] RDX: 0000000000000007 RSI: 00000000400c4d07 RDI: 0000000000000003 [ 583.872709][T14729] RBP: 00007fef9682a090 R08: 0000000000000000 R09: 0000000000000000 [ 583.872721][T14729] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 583.872733][T14729] R13: 0000000000000000 R14: 00007fef95ba5fa0 R15: 00007ffffad3c1e8 [ 583.872762][T14729] [ 584.679004][ T5832] Bluetooth: hci2: command tx timeout [ 585.093258][T14740] netlink: 326 bytes leftover after parsing attributes in process `syz.2.2449'. [ 585.471835][ T5834] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 585.487231][ T5834] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 585.496951][ T5834] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 585.523104][ T5834] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 585.534013][ T5834] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 585.541310][ T5834] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 585.824782][T14759] Invalid ELF header magic: != ELF [ 586.061744][T14754] chnl_net:caif_netlink_parms(): no params data found [ 586.114207][T14757] openvswitch: netlink: ct_state flags 03001eac unsupported [ 586.320445][T14774] mkiss: ax0: crc mode is auto. [ 586.385568][T14754] bridge0: port 1(bridge_slave_0) entered blocking state [ 586.402583][T14754] bridge0: port 1(bridge_slave_0) entered disabled state [ 586.409893][T14754] bridge_slave_0: entered allmulticast mode [ 586.422105][T14754] bridge_slave_0: entered promiscuous mode [ 586.442055][T14754] bridge0: port 2(bridge_slave_1) entered blocking state [ 586.452357][T14754] bridge0: port 2(bridge_slave_1) entered disabled state [ 586.459613][T14754] bridge_slave_1: entered allmulticast mode [ 586.503537][T14754] bridge_slave_1: entered promiscuous mode [ 586.569350][T14754] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 586.601329][T14754] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 586.752653][T14750] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2485'. [ 586.752718][ T5832] Bluetooth: hci2: command tx timeout [ 586.861756][T14754] team0: Port device team_slave_0 added [ 586.885832][T14754] team0: Port device team_slave_1 added [ 587.034718][T14754] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 587.041874][T14754] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 587.069462][T14754] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 587.093544][T14754] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 587.100537][T14754] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 587.244963][T14754] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 587.377316][T14754] hsr_slave_0: entered promiscuous mode [ 587.387943][T14754] hsr_slave_1: entered promiscuous mode [ 587.400597][T14754] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 587.412657][T14754] Cannot create hsr debugfs directory [ 587.418223][T14787] FAULT_INJECTION: forcing a failure. [ 587.418223][T14787] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 587.456904][T14787] CPU: 0 UID: 0 PID: 14787 Comm: syz.0.2492 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 587.456932][T14787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 587.456944][T14787] Call Trace: [ 587.456950][T14787] [ 587.456958][T14787] dump_stack_lvl+0x16c/0x1f0 [ 587.456991][T14787] should_fail_ex+0x497/0x5b0 [ 587.457018][T14787] _copy_from_user+0x2e/0xd0 [ 587.457044][T14787] copy_msghdr_from_user+0x99/0x160 [ 587.457076][T14787] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 587.457112][T14787] ? __pfx___lock_acquire+0x10/0x10 [ 587.457200][T14787] ___sys_recvmsg+0xdc/0x1a0 [ 587.457230][T14787] ? __pfx____sys_recvmsg+0x10/0x10 [ 587.457255][T14787] ? find_held_lock+0x2d/0x110 [ 587.457298][T14787] ? __pfx___might_resched+0x10/0x10 [ 587.457342][T14787] ? __might_fault+0xe3/0x190 [ 587.457370][T14787] do_recvmmsg+0x2f8/0x740 [ 587.457403][T14787] ? __pfx_do_recvmmsg+0x10/0x10 [ 587.457429][T14787] ? vfs_write+0x306/0x1150 [ 587.457466][T14787] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 587.457504][T14787] ? __fget_files+0x206/0x3a0 [ 587.457531][T14787] __x64_sys_recvmmsg+0x239/0x290 [ 587.457562][T14787] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 587.457601][T14787] do_syscall_64+0xcd/0x250 [ 587.457630][T14787] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 587.457657][T14787] RIP: 0033:0x7fef9598cd29 [ 587.457675][T14787] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 587.457696][T14787] RSP: 002b:00007fef9682a038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 587.457723][T14787] RAX: ffffffffffffffda RBX: 00007fef95ba5fa0 RCX: 00007fef9598cd29 [ 587.457737][T14787] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 587.457749][T14787] RBP: 00007fef9682a090 R08: 0000000000000000 R09: 0000000000000000 [ 587.457760][T14787] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001 [ 587.457771][T14787] R13: 0000000000000000 R14: 00007fef95ba5fa0 R15: 00007ffffad3c1e8 [ 587.457799][T14787] [ 587.663920][ C0] vkms_vblank_simulate: vblank timer overrun [ 587.683626][ T5832] Bluetooth: hci1: command tx timeout [ 588.095373][T14793] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2494'. [ 588.203006][T14791] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2494'. [ 588.228750][T14793] mac80211_hwsim hwsim13 ›: renamed from wlan0 (while UP) [ 588.540789][T14754] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 588.656209][T14754] bridge0: port 3(netdevsim2) entered disabled state [ 588.801989][T14754] netdevsim netdevsim1 netdevsim2 (unregistering): left allmulticast mode [ 588.832249][T14754] netdevsim netdevsim1 netdevsim2 (unregistering): left promiscuous mode [ 588.841019][T14754] bridge0: port 3(netdevsim2) entered disabled state [ 588.869062][T14754] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 589.093140][T14754] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 589.264923][T14754] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 589.531332][T14754] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 589.568623][T14754] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 589.622711][T14754] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 589.645115][T14754] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 589.715974][ T5832] Bluetooth: hci1: command tx timeout [ 589.872155][T14754] 8021q: adding VLAN 0 to HW filter on device bond0 [ 589.935760][T14754] 8021q: adding VLAN 0 to HW filter on device team0 [ 589.991569][ T295] bridge0: port 1(bridge_slave_0) entered blocking state [ 589.998747][ T295] bridge0: port 1(bridge_slave_0) entered forwarding state [ 590.074238][ T295] bridge0: port 2(bridge_slave_1) entered blocking state [ 590.081394][ T295] bridge0: port 2(bridge_slave_1) entered forwarding state [ 590.160143][T14754] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 590.604391][T14754] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 590.744957][T14754] veth0_vlan: entered promiscuous mode [ 590.789857][T14754] veth1_vlan: entered promiscuous mode [ 590.864844][T14754] veth0_macvtap: entered promiscuous mode [ 590.948287][T14754] veth1_macvtap: entered promiscuous mode [ 590.962382][T14821] mkiss: ax0: crc mode is auto. [ 591.063772][T14754] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 591.121199][T14754] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 591.170739][T14754] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 591.219938][T14754] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 591.252425][T14754] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 591.282393][T14754] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 591.311257][T14754] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 591.338519][T14754] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 591.361930][T14754] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 591.381001][T14754] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 591.392162][T14754] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 591.428330][T14754] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 591.453859][T14754] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 591.504858][T14754] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 591.527819][T14754] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 591.558491][T14754] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 591.585730][T14754] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 591.632958][T14754] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 591.662406][T14754] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 591.681198][T14754] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 591.711261][T14754] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 591.722176][T14754] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 591.750763][T14754] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 591.772610][T14754] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 591.792775][ T5832] Bluetooth: hci1: command tx timeout [ 591.810596][T14754] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 591.830662][T14754] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 591.843711][T14812] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2499'. [ 591.971025][T14754] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 591.990314][T14754] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 592.010690][T14754] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 592.034542][T14754] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 592.383794][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 592.383820][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 592.458596][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 592.480892][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 592.899223][T14833] FAULT_INJECTION: forcing a failure. [ 592.899223][T14833] name failslab, interval 1, probability 0, space 0, times 0 [ 592.922778][T14833] CPU: 1 UID: 0 PID: 14833 Comm: syz.1.2484 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 592.922813][T14833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 592.922826][T14833] Call Trace: [ 592.922833][T14833] [ 592.922842][T14833] dump_stack_lvl+0x16c/0x1f0 [ 592.922876][T14833] should_fail_ex+0x497/0x5b0 [ 592.922899][T14833] ? fs_reclaim_acquire+0xae/0x150 [ 592.922934][T14833] should_failslab+0xc2/0x120 [ 592.922961][T14833] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 592.922986][T14833] ? __alloc_skb+0x2b3/0x380 [ 592.923020][T14833] __alloc_skb+0x2b3/0x380 [ 592.923047][T14833] ? __pfx___alloc_skb+0x10/0x10 [ 592.923087][T14833] netlink_alloc_large_skb+0x69/0x130 [ 592.923116][T14833] netlink_sendmsg+0x689/0xd70 [ 592.923146][T14833] ? __pfx_netlink_sendmsg+0x10/0x10 [ 592.923184][T14833] ____sys_sendmsg+0x9ae/0xb40 [ 592.923206][T14833] ? copy_msghdr_from_user+0x10b/0x160 [ 592.923232][T14833] ? __pfx_____sys_sendmsg+0x10/0x10 [ 592.923270][T14833] ___sys_sendmsg+0x135/0x1e0 [ 592.923301][T14833] ? __pfx____sys_sendmsg+0x10/0x10 [ 592.923338][T14833] ? __pfx_lock_release+0x10/0x10 [ 592.923364][T14833] ? trace_lock_acquire+0x14e/0x1f0 [ 592.923397][T14833] ? __fget_files+0x206/0x3a0 [ 592.923428][T14833] __sys_sendmsg+0x16e/0x220 [ 592.923458][T14833] ? __pfx___sys_sendmsg+0x10/0x10 [ 592.923510][T14833] do_syscall_64+0xcd/0x250 [ 592.923542][T14833] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 592.923580][T14833] RIP: 0033:0x7fa4fe78cd29 [ 592.923599][T14833] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 592.923620][T14833] RSP: 002b:00007fa4ff69b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 592.923642][T14833] RAX: ffffffffffffffda RBX: 00007fa4fe9a5fa0 RCX: 00007fa4fe78cd29 [ 592.923658][T14833] RDX: 0000000020000000 RSI: 0000000020000200 RDI: 0000000000000003 [ 592.923672][T14833] RBP: 00007fa4ff69b090 R08: 0000000000000000 R09: 0000000000000000 [ 592.923686][T14833] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 592.923699][T14833] R13: 0000000000000000 R14: 00007fa4fe9a5fa0 R15: 00007ffc890e92b8 [ 592.923729][T14833] [ 593.884836][ T5832] Bluetooth: hci1: command tx timeout [ 594.343368][T14837] FAULT_INJECTION: forcing a failure. [ 594.343368][T14837] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 594.392267][T14837] CPU: 1 UID: 0 PID: 14837 Comm: syz.2.2505 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 594.392302][T14837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 594.392315][T14837] Call Trace: [ 594.392321][T14837] [ 594.392329][T14837] dump_stack_lvl+0x16c/0x1f0 [ 594.392361][T14837] should_fail_ex+0x497/0x5b0 [ 594.392382][T14837] ? fs_reclaim_acquire+0xae/0x150 [ 594.392417][T14837] should_fail_alloc_page+0xe7/0x130 [ 594.392445][T14837] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 594.392483][T14837] __alloc_pages_noprof+0x18e/0x2470 [ 594.392510][T14837] ? hlock_class+0x4e/0x130 [ 594.392540][T14837] ? mark_lock+0xb5/0xc60 [ 594.392564][T14837] ? hlock_class+0x4e/0x130 [ 594.392591][T14837] ? __lock_acquire+0xcc5/0x3c40 [ 594.392616][T14837] ? __pfx_mark_lock+0x10/0x10 [ 594.392641][T14837] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 594.392680][T14837] ? hlock_class+0x4e/0x130 [ 594.392716][T14837] ? hlock_class+0x4e/0x130 [ 594.392746][T14837] ? __lock_acquire+0xcc5/0x3c40 [ 594.392769][T14837] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 594.392802][T14837] ? policy_nodemask+0xea/0x4e0 [ 594.392831][T14837] alloc_pages_mpol_noprof+0x2c8/0x620 [ 594.392861][T14837] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 594.392889][T14837] ? lock_acquire+0x2f/0xb0 [ 594.392911][T14837] ? is_bpf_text_address+0x30/0x1a0 [ 594.392942][T14837] pte_alloc_one+0x20/0x390 [ 594.392971][T14837] do_pte_missing+0x1ae7/0x3e00 [ 594.392999][T14837] ? __pfx_lock_release+0x10/0x10 [ 594.393027][T14837] __handle_mm_fault+0x1166/0x2c60 [ 594.393058][T14837] ? __pfx___handle_mm_fault+0x10/0x10 [ 594.393079][T14837] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 594.393120][T14837] ? find_vma+0xc0/0x140 [ 594.393148][T14837] ? __pfx_find_vma+0x10/0x10 [ 594.393189][T14837] handle_mm_fault+0x3fa/0xaa0 [ 594.393217][T14837] do_user_addr_fault+0x7a3/0x13f0 [ 594.393250][T14837] exc_page_fault+0x5c/0xc0 [ 594.393275][T14837] asm_exc_page_fault+0x26/0x30 [ 594.393303][T14837] RIP: 0010:rep_movs_alternative+0x13/0x70 [ 594.393326][T14837] Code: cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 83 f9 40 73 40 83 f9 08 73 21 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f [ 594.393346][T14837] RSP: 0018:ffffc90004797ca0 EFLAGS: 00050202 [ 594.393365][T14837] RAX: 0000000000000001 RBX: 0000000000000006 RCX: 0000000000000004 [ 594.393377][T14837] RDX: ffffed100663b2e8 RSI: 0000000000000006 RDI: ffff8880331d9740 [ 594.393390][T14837] RBP: 0000000000000004 R08: 0000000000000001 R09: ffffed100663b2e8 [ 594.393403][T14837] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000 [ 594.393414][T14837] R13: ffff8880331d9740 R14: 0000000000000000 R15: ffff8880338d9180 [ 594.393445][T14837] _copy_from_user+0x98/0xd0 [ 594.393474][T14837] __sys_bpf+0x453b/0x57a0 [ 594.393505][T14837] ? __pfx___sys_bpf+0x10/0x10 [ 594.393531][T14837] ? vfs_write+0x306/0x1150 [ 594.393570][T14837] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 594.393617][T14837] ? fput+0x67/0x440 [ 594.393643][T14837] ? ksys_write+0x1ba/0x250 [ 594.393674][T14837] ? __pfx_ksys_write+0x10/0x10 [ 594.393713][T14837] __x64_sys_bpf+0x78/0xc0 [ 594.393741][T14837] ? lockdep_hardirqs_on+0x7c/0x110 [ 594.393767][T14837] do_syscall_64+0xcd/0x250 [ 594.393798][T14837] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 594.393826][T14837] RIP: 0033:0x7f2d19d8cd29 [ 594.393845][T14837] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 594.393866][T14837] RSP: 002b:00007f2d1aca3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 594.393887][T14837] RAX: ffffffffffffffda RBX: 00007f2d19fa5fa0 RCX: 00007f2d19d8cd29 [ 594.393903][T14837] RDX: 000000000000000c RSI: 00000000200001c0 RDI: 0000000000000002 [ 594.393917][T14837] RBP: 00007f2d1aca3090 R08: 0000000000000000 R09: 0000000000000000 [ 594.393930][T14837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 594.393944][T14837] R13: 0000000000000000 R14: 00007f2d19fa5fa0 R15: 00007ffe0ff39a28 [ 594.393975][T14837] [ 595.498449][T14845] mkiss: ax0: crc mode is auto. [ 597.182013][T14852] ima: policy update failed [ 597.209395][ T29] audit: type=1802 audit(4294967370.599:49): pid=14852 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.2509" res=0 errno=0 [ 599.941534][T14887] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2517'. [ 600.689106][T14890] ima: policy update failed [ 600.702337][ T29] audit: type=1802 audit(4294967374.109:50): pid=14890 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.2519" res=0 errno=0 [ 600.913707][T14915] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2526'. [ 601.399804][T14925] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 601.906206][T14939] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2535'. [ 602.493525][T14957] mkiss: ax0: crc mode is auto. [ 602.913051][T14964] FAULT_INJECTION: forcing a failure. [ 602.913051][T14964] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 602.931441][T14964] CPU: 0 UID: 0 PID: 14964 Comm: syz.1.2541 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 602.931474][T14964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 602.931488][T14964] Call Trace: [ 602.931495][T14964] [ 602.931505][T14964] dump_stack_lvl+0x16c/0x1f0 [ 602.931539][T14964] should_fail_ex+0x497/0x5b0 [ 602.931568][T14964] _copy_from_user+0x2e/0xd0 [ 602.931597][T14964] clear_refs_write+0xeb/0xc10 [ 602.931628][T14964] ? __pfx___lock_acquire+0x10/0x10 [ 602.931655][T14964] ? __pfx___lock_acquire+0x10/0x10 [ 602.931680][T14964] ? __pfx_aa_file_perm+0x10/0x10 [ 602.931705][T14964] ? __pfx_clear_refs_write+0x10/0x10 [ 602.931748][T14964] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 602.931776][T14964] ? rcu_is_watching+0x12/0xc0 [ 602.931808][T14964] ? trace_lock_acquire+0x14e/0x1f0 [ 602.931839][T14964] ? __pfx_clear_refs_write+0x10/0x10 [ 602.931868][T14964] vfs_write+0x24c/0x1150 [ 602.931904][T14964] ? __fget_files+0x1fc/0x3a0 [ 602.931926][T14964] ? __pfx___mutex_lock+0x10/0x10 [ 602.931955][T14964] ? __pfx_vfs_write+0x10/0x10 [ 602.931997][T14964] ? __fget_files+0x206/0x3a0 [ 602.932029][T14964] ksys_write+0x12b/0x250 [ 602.932061][T14964] ? __pfx_ksys_write+0x10/0x10 [ 602.932104][T14964] do_syscall_64+0xcd/0x250 [ 602.932136][T14964] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 602.932167][T14964] RIP: 0033:0x7fa4fe78cd29 [ 602.932188][T14964] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 602.932207][T14964] RSP: 002b:00007fa4ff67a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 602.932226][T14964] RAX: ffffffffffffffda RBX: 00007fa4fe9a6080 RCX: 00007fa4fe78cd29 [ 602.932239][T14964] RDX: 00000000ffffff4b RSI: 0000000000000000 RDI: 0000000000000003 [ 602.932251][T14964] RBP: 00007fa4ff67a090 R08: 0000000000000000 R09: 0000000000000000 [ 602.932264][T14964] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 602.932277][T14964] R13: 0000000000000001 R14: 00007fa4fe9a6080 R15: 00007ffc890e92b8 [ 602.932316][T14964] [ 603.030839][T14946] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2537'. [ 603.033633][ C0] vkms_vblank_simulate: vblank timer overrun [ 603.039079][T14946] ipvlan1: entered allmulticast mode [ 603.161664][T14946] veth0_vlan: entered allmulticast mode [ 603.816337][T14979] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2546'. [ 604.458898][T14989] netlink: 326 bytes leftover after parsing attributes in process `syz.2.2549'. [ 604.487960][T14994] mkiss: ax0: crc mode is auto. [ 605.322126][T14995] ima: policy update failed [ 605.336488][ T29] audit: type=1802 audit(4294967378.749:51): pid=14995 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.2551" res=0 errno=0 [ 605.462305][T15019] mkiss: ax0: crc mode is auto. [ 605.566036][T15016] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2556'. [ 606.238327][T15027] raw_sendmsg: syz.3.2560 forgot to set AF_INET. Fix it! [ 606.430548][T15030] netlink: 326 bytes leftover after parsing attributes in process `syz.1.2561'. [ 606.456750][T15037] cgroup2: Unknown parameter '/sys/devices/system/memory/memory0/online' [ 606.891359][T15038] dlm: plock device version mismatch: kernel (1.2.0), user (1489226698.240317300.1121487582) [ 608.025246][T15057] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2568'. [ 608.415653][T15063] FAULT_INJECTION: forcing a failure. [ 608.415653][T15063] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 608.462689][T15063] CPU: 0 UID: 0 PID: 15063 Comm: syz.0.2570 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 608.462732][T15063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 608.462744][T15063] Call Trace: [ 608.462751][T15063] [ 608.462759][T15063] dump_stack_lvl+0x16c/0x1f0 [ 608.462793][T15063] should_fail_ex+0x497/0x5b0 [ 608.462822][T15063] _copy_from_user+0x2e/0xd0 [ 608.462850][T15063] csum_and_copy_from_iter_full+0x218/0x1eb0 [ 608.462884][T15063] ? rcu_is_watching+0x12/0xc0 [ 608.462917][T15063] ? trace_kmalloc+0x2d/0xd0 [ 608.462947][T15063] ? __pfx_csum_and_copy_from_iter_full+0x10/0x10 [ 608.462972][T15063] ? rcu_watching_snap_stopped_since+0xf1/0x110 [ 608.463004][T15063] ? __alloc_skb+0x164/0x380 [ 608.463038][T15063] ? __build_skb_around+0x278/0x3b0 [ 608.463067][T15063] ip_generic_getfrag+0x175/0x260 [ 608.463102][T15063] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 608.463136][T15063] ? hlock_class+0x4e/0x130 [ 608.463167][T15063] ? __pfx_mark_lock+0x10/0x10 [ 608.463191][T15063] ? mark_lock+0xb5/0xc60 [ 608.463220][T15063] __ip_append_data+0x26c8/0x4160 [ 608.463250][T15063] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 608.463295][T15063] ? ip_dst_mtu_maybe_forward.constprop.0+0x274/0x4c0 [ 608.463324][T15063] ? __pfx___ip_append_data+0x10/0x10 [ 608.463354][T15063] ip_make_skb+0x27d/0x300 [ 608.463380][T15063] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 608.463416][T15063] ? __pfx_ip_make_skb+0x10/0x10 [ 608.463458][T15063] ? udp_sendmsg+0x189b/0x29f0 [ 608.463479][T15063] udp_sendmsg+0x189b/0x29f0 [ 608.463508][T15063] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 608.463548][T15063] ? __pfx_udp_sendmsg+0x10/0x10 [ 608.463584][T15063] ? trace_lock_acquire+0x14e/0x1f0 [ 608.463606][T15063] ? __pfx___might_resched+0x10/0x10 [ 608.463641][T15063] ? aa_sk_perm+0x2f5/0xb20 [ 608.463678][T15063] ? find_held_lock+0x2d/0x110 [ 608.463718][T15063] ? __pfx_udp_sendmsg+0x10/0x10 [ 608.463742][T15063] inet_sendmsg+0x105/0x140 [ 608.463768][T15063] sock_write_iter+0x4ac/0x5b0 [ 608.463793][T15063] ? __pfx_sock_write_iter+0x10/0x10 [ 608.463832][T15063] ? rw_verify_area+0xcf/0x680 [ 608.463866][T15063] vfs_write+0x5ae/0x1150 [ 608.463898][T15063] ? __pfx_sock_write_iter+0x10/0x10 [ 608.463925][T15063] ? __pfx_vfs_write+0x10/0x10 [ 608.463958][T15063] ? __fget_files+0x40/0x3a0 [ 608.463995][T15063] ksys_write+0x207/0x250 [ 608.464027][T15063] ? __pfx_ksys_write+0x10/0x10 [ 608.464069][T15063] do_syscall_64+0xcd/0x250 [ 608.464100][T15063] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 608.464129][T15063] RIP: 0033:0x7fef9598cd29 [ 608.464148][T15063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 608.464169][T15063] RSP: 002b:00007fef9682a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 608.464191][T15063] RAX: ffffffffffffffda RBX: 00007fef95ba5fa0 RCX: 00007fef9598cd29 [ 608.464206][T15063] RDX: 000000000000ffd8 RSI: 0000000000000000 RDI: 0000000000000003 [ 608.464219][T15063] RBP: 00007fef9682a090 R08: 0000000000000000 R09: 0000000000000000 [ 608.464233][T15063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 608.464246][T15063] R13: 0000000000000000 R14: 00007fef95ba5fa0 R15: 00007ffffad3c1e8 [ 608.464276][T15063] [ 608.789067][ C0] vkms_vblank_simulate: vblank timer overrun [ 609.195258][T15069] mkiss: ax0: crc mode is auto. [ 609.325786][T15067] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2571'. [ 609.996937][T15083] mkiss: ax0: crc mode is auto. [ 610.867918][T15094] Invalid ELF header magic: != ELF [ 611.448633][T15100] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2582'. [ 611.607202][T15106] do_dccp_getsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app [ 612.018125][T15117] Process accounting resumed [ 613.223425][T15128] dlm: plock device version mismatch: kernel (1.2.0), user (1489226698.240317300.1121487582) [ 613.292362][T15133] mkiss: ax0: crc mode is auto. [ 614.105507][T15149] blk_print_req_error: 58 callbacks suppressed [ 614.105529][T15149] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 614.142400][T15149] buffer_io_error: 56 callbacks suppressed [ 614.142421][T15149] Buffer I/O error on dev nbd2, logical block 0, async page read [ 614.184729][T15149] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 614.226636][T15149] Buffer I/O error on dev nbd2, logical block 0, async page read [ 614.252727][T15149] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 614.261885][T15149] Buffer I/O error on dev nbd2, logical block 0, async page read [ 614.327048][T15149] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 614.343475][T15149] Buffer I/O error on dev nbd2, logical block 0, async page read [ 614.351579][T15149] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 614.376599][T15149] Buffer I/O error on dev nbd2, logical block 0, async page read [ 614.393208][T15149] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 614.458596][T15149] Buffer I/O error on dev nbd2, logical block 0, async page read [ 614.497744][T15149] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 614.534533][T15149] Buffer I/O error on dev nbd2, logical block 0, async page read [ 614.548601][T15153] netlink: 326 bytes leftover after parsing attributes in process `syz.3.2594'. [ 614.550882][T15149] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 614.577048][T15149] Buffer I/O error on dev nbd2, logical block 0, async page read [ 614.587201][T15149] ldm_validate_partition_table(): Disk read failed. [ 614.600657][T15149] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 614.620805][T15149] Buffer I/O error on dev nbd2, logical block 0, async page read [ 614.628917][T15149] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 614.639450][T15149] Buffer I/O error on dev nbd2, logical block 0, async page read [ 614.647679][T15149] Dev nbd2: unable to read RDB block 0 [ 614.654788][T15149] nbd2: unable to read partition table [ 616.403543][T15177] mkiss: ax0: crc mode is auto. [ 616.625103][T15191] cgroup2: Unknown parameter '/sys/devices/system/memory/memory0/online' [ 616.642708][T15186] dlm: plock device version mismatch: kernel (1.2.0), user (1489226698.240317300.1121487582) [ 616.785181][T15196] FAULT_INJECTION: forcing a failure. [ 616.785181][T15196] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 616.799536][T15196] CPU: 1 UID: 0 PID: 15196 Comm: syz.1.2604 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 616.799567][T15196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 616.799578][T15196] Call Trace: [ 616.799584][T15196] [ 616.799593][T15196] dump_stack_lvl+0x16c/0x1f0 [ 616.799624][T15196] should_fail_ex+0x497/0x5b0 [ 616.799647][T15196] ? fs_reclaim_acquire+0xae/0x150 [ 616.799680][T15196] should_fail_alloc_page+0xe7/0x130 [ 616.799708][T15196] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 616.799745][T15196] __alloc_pages_noprof+0x18e/0x2470 [ 616.799771][T15196] ? __pfx_mark_lock+0x10/0x10 [ 616.799819][T15196] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 616.799864][T15196] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 616.799891][T15196] ? policy_nodemask+0xea/0x4e0 [ 616.799919][T15196] alloc_pages_mpol_noprof+0x2c8/0x620 [ 616.799948][T15196] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 616.799975][T15196] ? find_held_lock+0x2d/0x110 [ 616.800004][T15196] ? mt_find+0x82d/0xa20 [ 616.800028][T15196] __pmd_alloc+0x3f/0x8b0 [ 616.800050][T15196] __handle_mm_fault+0x9fb/0x2c60 [ 616.800083][T15196] ? __pfx___handle_mm_fault+0x10/0x10 [ 616.800105][T15196] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 616.800149][T15196] ? find_vma+0xc0/0x140 [ 616.800178][T15196] ? __pfx_find_vma+0x10/0x10 [ 616.800213][T15196] handle_mm_fault+0x3fa/0xaa0 [ 616.800244][T15196] do_user_addr_fault+0x7a3/0x13f0 [ 616.800279][T15196] exc_page_fault+0x5c/0xc0 [ 616.800307][T15196] asm_exc_page_fault+0x26/0x30 [ 616.800335][T15196] RIP: 0010:rep_movs_alternative+0x13/0x70 [ 616.800356][T15196] Code: cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 83 f9 40 73 40 83 f9 08 73 21 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f [ 616.800375][T15196] RSP: 0018:ffffc90002ff7d60 EFLAGS: 00050202 [ 616.800392][T15196] RAX: 0000000000000001 RBX: 00000000200000c0 RCX: 0000000000000004 [ 616.800405][T15196] RDX: fffff520005fefbc RSI: 00000000200000c0 RDI: ffffc90002ff7de0 [ 616.800419][T15196] RBP: 0000000000000004 R08: 0000000000000001 R09: fffff520005fefbc [ 616.800432][T15196] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000 [ 616.800443][T15196] R13: ffffc90002ff7de0 R14: 0000000000000000 R15: 0000000000000084 [ 616.800472][T15196] _copy_from_user+0x98/0xd0 [ 616.800500][T15196] do_sock_getsockopt+0x319/0x870 [ 616.800522][T15196] ? trace_lock_acquire+0x110/0x1f0 [ 616.800544][T15196] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 616.800565][T15196] ? lock_acquire+0x2f/0xb0 [ 616.800588][T15196] ? __fget_files+0x40/0x3a0 [ 616.800611][T15196] ? __fget_files+0x206/0x3a0 [ 616.800637][T15196] __sys_getsockopt+0x12f/0x260 [ 616.800671][T15196] __x64_sys_getsockopt+0xbd/0x160 [ 616.800697][T15196] ? do_syscall_64+0x91/0x250 [ 616.800721][T15196] ? lockdep_hardirqs_on+0x7c/0x110 [ 616.800745][T15196] do_syscall_64+0xcd/0x250 [ 616.800774][T15196] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 616.800801][T15196] RIP: 0033:0x7fa4fe78cd29 [ 616.800824][T15196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 616.800844][T15196] RSP: 002b:00007fa4ff69b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 616.800863][T15196] RAX: ffffffffffffffda RBX: 00007fa4fe9a5fa0 RCX: 00007fa4fe78cd29 [ 616.800877][T15196] RDX: 0000000000000085 RSI: 0000000000000084 RDI: 0000000000000003 [ 616.800890][T15196] RBP: 00007fa4ff69b090 R08: 00000000200000c0 R09: 0000000000000000 [ 616.800903][T15196] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 616.800916][T15196] R13: 0000000000000000 R14: 00007fa4fe9a5fa0 R15: 00007ffc890e92b8 [ 616.800946][T15196] [ 617.020821][T15194] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2603'. [ 617.472149][T15210] do_dccp_getsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app [ 617.911529][T15219] mkiss: ax0: crc mode is auto. [ 618.937349][T15236] dlm: plock device version mismatch: kernel (1.2.0), user (1489226698.240317300.1121487582) [ 619.323133][T15239] dlm: plock device version mismatch: kernel (1.2.0), user (1489226698.240317300.1121487582) [ 619.959911][T15242] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2615'. [ 620.173869][T15248] netlink: 326 bytes leftover after parsing attributes in process `syz.2.2617'. [ 621.306890][T15253] ima: policy update failed [ 621.314687][T15257] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2619'. [ 621.325905][ T29] audit: type=1802 audit(4294967394.739:52): pid=15253 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.2618" res=0 errno=0 [ 622.741091][T15275] netlink: 326 bytes leftover after parsing attributes in process `syz.3.2620'. [ 623.960486][T15284] ima: policy update failed [ 623.965505][ T29] audit: type=1802 audit(4294967397.379:53): pid=15284 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.2626" res=0 errno=0 [ 624.563657][T15308] dlm: plock device version mismatch: kernel (1.2.0), user (1489226698.240317300.1121487582) [ 624.598159][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.609352][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 624.741183][T15318] mkiss: ax0: crc mode is auto. [ 626.029824][T15333] netlink: 326 bytes leftover after parsing attributes in process `syz.1.2636'. [ 626.089008][T15334] mkiss: ax0: crc mode is auto. [ 627.076104][T15357] FAULT_INJECTION: forcing a failure. [ 627.076104][T15357] name failslab, interval 1, probability 0, space 0, times 0 [ 627.109819][T15357] CPU: 0 UID: 0 PID: 15357 Comm: syz.1.2644 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 627.109861][T15357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 627.109881][T15357] Call Trace: [ 627.109889][T15357] [ 627.109899][T15357] dump_stack_lvl+0x16c/0x1f0 [ 627.109936][T15357] should_fail_ex+0x497/0x5b0 [ 627.109973][T15357] should_failslab+0xc2/0x120 [ 627.110004][T15357] __kmalloc_noprof+0xce/0x4f0 [ 627.110042][T15357] ? sctp_assoc_update_frag_point+0x21c/0x330 [ 627.110068][T15357] ? sctp_make_init_ack+0x30f/0x12b0 [ 627.110107][T15357] sctp_make_init_ack+0x30f/0x12b0 [ 627.110150][T15357] ? __pfx_sctp_make_init_ack+0x10/0x10 [ 627.110193][T15357] ? sctp_bind_addr_copy+0x23a/0x530 [ 627.110231][T15357] sctp_sf_do_unexpected_init.isra.0+0xdd3/0x16e0 [ 627.110273][T15357] ? __pfx_sctp_sf_do_unexpected_init.isra.0+0x10/0x10 [ 627.110307][T15357] ? __pfx_sctp_sm_lookup_event+0x10/0x10 [ 627.110340][T15357] ? hlock_class+0x4e/0x130 [ 627.110377][T15357] ? __pfx_sctp_cname+0x10/0x10 [ 627.110408][T15357] sctp_do_sm+0x17f/0x5c90 [ 627.110440][T15357] ? __lock_acquire+0x15a9/0x3c40 [ 627.110473][T15357] ? __pfx_sctp_do_sm+0x10/0x10 [ 627.110504][T15357] ? hlock_class+0x4e/0x130 [ 627.110570][T15357] ? mark_held_locks+0x9f/0xe0 [ 627.110600][T15357] ? ktime_get+0x200/0x310 [ 627.110623][T15357] ? lockdep_hardirqs_on+0x7c/0x110 [ 627.110658][T15357] sctp_assoc_bh_rcv+0x392/0x6f0 [ 627.110706][T15357] sctp_inq_push+0x1d8/0x270 [ 627.110732][T15357] sctp_backlog_rcv+0x169/0x590 [ 627.110765][T15357] ? __pfx_sctp_backlog_rcv+0x10/0x10 [ 627.110794][T15357] __release_sock+0x35f/0x400 [ 627.110827][T15357] ? release_sock+0x21/0x220 [ 627.110866][T15357] release_sock+0x5a/0x220 [ 627.110900][T15357] sctp_wait_for_connect+0x1c6/0x5c0 [ 627.110941][T15357] ? __pfx_sctp_wait_for_connect+0x10/0x10 [ 627.110976][T15357] ? skb_set_owner_w+0x320/0x710 [ 627.111005][T15357] ? __pfx_autoremove_wake_function+0x10/0x10 [ 627.111048][T15357] ? sctp_datamsg_put+0x58/0x5f0 [ 627.111079][T15357] ? sctp_primitive_SEND+0x9f/0xd0 [ 627.111116][T15357] sctp_sendmsg_to_asoc+0x1765/0x1ad0 [ 627.111158][T15357] ? sctp_assoc_add_peer+0x254/0x14b0 [ 627.111191][T15357] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10 [ 627.111230][T15357] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 627.111258][T15357] ? lock_acquire+0x2f/0xb0 [ 627.111283][T15357] ? sctp_endpoint_lookup_assoc+0xac/0x2a0 [ 627.111329][T15357] sctp_sendmsg+0x129c/0x1f10 [ 627.111366][T15357] ? __pfx_sctp_sendmsg+0x10/0x10 [ 627.111394][T15357] ? __pfx___might_resched+0x10/0x10 [ 627.111440][T15357] ? __pfx_aa_sk_perm+0x10/0x10 [ 627.111471][T15357] ? __might_fault+0xe3/0x190 [ 627.111502][T15357] ? __might_fault+0xe3/0x190 [ 627.111532][T15357] ? __pfx_sctp_sendmsg+0x10/0x10 [ 627.111559][T15357] inet_sendmsg+0x119/0x140 [ 627.111588][T15357] ____sys_sendmsg+0x907/0xb40 [ 627.111615][T15357] ? __pfx_____sys_sendmsg+0x10/0x10 [ 627.111639][T15357] ? __lock_acquire+0xcc5/0x3c40 [ 627.111683][T15357] ___sys_sendmsg+0x135/0x1e0 [ 627.111718][T15357] ? __pfx____sys_sendmsg+0x10/0x10 [ 627.111765][T15357] ? trace_lock_acquire+0x14e/0x1f0 [ 627.111812][T15357] __sys_sendmmsg+0x201/0x420 [ 627.111849][T15357] ? __pfx___sys_sendmmsg+0x10/0x10 [ 627.111880][T15357] ? __pfx_inet_bind_sk+0x10/0x10 [ 627.111917][T15357] ? __pfx_do_futex+0x10/0x10 [ 627.111958][T15357] ? xfd_validate_state+0x5d/0x180 [ 627.111990][T15357] ? rcu_is_watching+0x12/0xc0 [ 627.112031][T15357] __x64_sys_sendmmsg+0x9c/0x100 [ 627.112072][T15357] ? lockdep_hardirqs_on+0x7c/0x110 [ 627.112103][T15357] do_syscall_64+0xcd/0x250 [ 627.112137][T15357] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 627.112170][T15357] RIP: 0033:0x7fa4fe78cd29 [ 627.112189][T15357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 627.112211][T15357] RSP: 002b:00007fa4ff69b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 627.112232][T15357] RAX: ffffffffffffffda RBX: 00007fa4fe9a5fa0 RCX: 00007fa4fe78cd29 [ 627.112245][T15357] RDX: 0000000000000005 RSI: 0000000020000140 RDI: 0000000000000003 [ 627.112258][T15357] RBP: 00007fa4fe80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 627.112271][T15357] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000000 [ 627.112283][T15357] R13: 0000000000000000 R14: 00007fa4fe9a5fa0 R15: 00007ffc890e92b8 [ 627.112311][T15357] [ 627.538355][ C0] vkms_vblank_simulate: vblank timer overrun [ 627.611068][T15362] FAULT_INJECTION: forcing a failure. [ 627.611068][T15362] name failslab, interval 1, probability 0, space 0, times 0 [ 627.623881][T15362] CPU: 0 UID: 0 PID: 15362 Comm: syz.3.2646 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 627.623911][T15362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 627.623924][T15362] Call Trace: [ 627.623931][T15362] [ 627.623940][T15362] dump_stack_lvl+0x16c/0x1f0 [ 627.623983][T15362] should_fail_ex+0x497/0x5b0 [ 627.624007][T15362] ? fs_reclaim_acquire+0xae/0x150 [ 627.624044][T15362] should_failslab+0xc2/0x120 [ 627.624072][T15362] __kmalloc_cache_noprof+0x68/0x420 [ 627.624094][T15362] ? __genradix_ptr_alloc+0x32e/0x5d0 [ 627.624130][T15362] sctp_auth_shkey_create+0x87/0x1f0 [ 627.624166][T15362] sctp_auth_asoc_copy_shkeys+0x1f4/0x360 [ 627.624207][T15362] sctp_association_new+0x197b/0x28b0 [ 627.624240][T15362] sctp_connect_new_asoc+0x1b7/0x790 [ 627.624268][T15362] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 627.624295][T15362] ? lock_acquire+0x2f/0xb0 [ 627.624319][T15362] ? sctp_endpoint_lookup_assoc+0xac/0x2a0 [ 627.624358][T15362] ? bpf_lsm_sctp_bind_connect+0x9/0x10 [ 627.624389][T15362] sctp_sendmsg+0x162a/0x1f10 [ 627.624424][T15362] ? __pfx_sctp_sendmsg+0x10/0x10 [ 627.624451][T15362] ? __pfx___might_resched+0x10/0x10 [ 627.624495][T15362] ? __pfx_aa_sk_perm+0x10/0x10 [ 627.624525][T15362] ? __might_fault+0xe3/0x190 [ 627.624554][T15362] ? __might_fault+0xe3/0x190 [ 627.624583][T15362] ? __pfx_sctp_sendmsg+0x10/0x10 [ 627.624609][T15362] inet_sendmsg+0x119/0x140 [ 627.624638][T15362] ____sys_sendmsg+0x907/0xb40 [ 627.624665][T15362] ? __pfx_____sys_sendmsg+0x10/0x10 [ 627.624687][T15362] ? __lock_acquire+0xcc5/0x3c40 [ 627.624728][T15362] ___sys_sendmsg+0x135/0x1e0 [ 627.624761][T15362] ? __pfx____sys_sendmsg+0x10/0x10 [ 627.624808][T15362] ? trace_lock_acquire+0x14e/0x1f0 [ 627.624854][T15362] __sys_sendmmsg+0x201/0x420 [ 627.624890][T15362] ? __pfx___sys_sendmmsg+0x10/0x10 [ 627.624933][T15362] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 627.624982][T15362] ? fput+0x67/0x440 [ 627.625010][T15362] ? ksys_write+0x1ba/0x250 [ 627.625043][T15362] ? __pfx_ksys_write+0x10/0x10 [ 627.625082][T15362] __x64_sys_sendmmsg+0x9c/0x100 [ 627.625113][T15362] ? lockdep_hardirqs_on+0x7c/0x110 [ 627.625140][T15362] do_syscall_64+0xcd/0x250 [ 627.625173][T15362] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 627.625203][T15362] RIP: 0033:0x7fbe9758cd29 [ 627.625222][T15362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 627.625244][T15362] RSP: 002b:00007fbe983a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 627.625266][T15362] RAX: ffffffffffffffda RBX: 00007fbe977a5fa0 RCX: 00007fbe9758cd29 [ 627.625281][T15362] RDX: 0000000000000005 RSI: 0000000020000140 RDI: 0000000000000003 [ 627.625295][T15362] RBP: 00007fbe983a7090 R08: 0000000000000000 R09: 0000000000000000 [ 627.625308][T15362] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000001 [ 627.625321][T15362] R13: 0000000000000000 R14: 00007fbe977a5fa0 R15: 00007ffecf6ccbe8 [ 627.625353][T15362] [ 627.760977][T15350] ima: policy update failed [ 627.761150][ C0] vkms_vblank_simulate: vblank timer overrun [ 627.849728][ T29] audit: type=1802 audit(4294967401.209:54): pid=15350 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.2642" res=0 errno=0 [ 627.850211][ C0] vkms_vblank_simulate: vblank timer overrun [ 628.058910][ C0] vkms_vblank_simulate: vblank timer overrun [ 628.512941][T15381] device-mapper: ioctl: Unable to rename non-existent device, to µ&^„ [ 628.524227][T15376] netlink: 326 bytes leftover after parsing attributes in process `syz.1.2649'. [ 628.775876][T15387] mkiss: ax0: crc mode is auto. [ 629.018183][T15378] lo: entered allmulticast mode [ 629.104969][T15378] lo: left allmulticast mode [ 630.668099][T15404] cgroup2: Unknown parameter '/sys/devices/system/memory/memory0/online' [ 634.859180][T15438] vivid-003: ================= START STATUS ================= [ 634.890748][T15438] vivid-003: Radio HW Seek Mode: Bounded [ 634.924354][T15438] vivid-003: Radio Programmable HW Seek: false [ 634.953707][T15438] vivid-003: RDS Rx I/O Mode: Block I/O [ 635.049801][T15438] vivid-003: Generate RBDS Instead of RDS: false [ 635.109116][T15438] vivid-003: RDS Reception: true [ 635.159513][T15438] vivid-003: RDS Program Type: 0 inactive [ 635.265658][T15438] vivid-003: RDS PS Name: inactive [ 635.275630][T15438] vivid-003: RDS Radio Text: inactive [ 635.281178][T15438] vivid-003: RDS Traffic Announcement: false inactive [ 635.307725][T15438] vivid-003: RDS Traffic Program: false inactive [ 635.399029][T15438] vivid-003: RDS Music: false inactive [ 635.442345][T15438] vivid-003: ================== END STATUS ================== [ 635.522947][T15439] ima: policy update failed [ 635.527622][ T29] audit: type=1802 audit(4294967408.939:55): pid=15439 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.2667" res=0 errno=0 [ 635.665258][T15449] FAULT_INJECTION: forcing a failure. [ 635.665258][T15449] name failslab, interval 1, probability 0, space 0, times 0 [ 635.712474][T15449] CPU: 0 UID: 0 PID: 15449 Comm: syz.1.2668 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 635.712510][T15449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 635.712525][T15449] Call Trace: [ 635.712532][T15449] [ 635.712541][T15449] dump_stack_lvl+0x16c/0x1f0 [ 635.712579][T15449] should_fail_ex+0x497/0x5b0 [ 635.712604][T15449] ? fs_reclaim_acquire+0xae/0x150 [ 635.712644][T15449] should_failslab+0xc2/0x120 [ 635.712673][T15449] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 635.712701][T15449] ? __kernfs_new_node+0xd3/0x890 [ 635.712740][T15449] __kernfs_new_node+0xd3/0x890 [ 635.712777][T15449] ? __pfx___kernfs_new_node+0x10/0x10 [ 635.712811][T15449] ? __pfx_lock_release+0x10/0x10 [ 635.712850][T15449] ? kernfs_add_one+0x39d/0x520 [ 635.712885][T15449] ? up_write+0x1b2/0x520 [ 635.712923][T15449] kernfs_new_node+0x186/0x240 [ 635.712954][T15449] __kernfs_create_file+0x53/0x350 [ 635.712987][T15449] sysfs_add_file_mode_ns+0x1ff/0x3b0 [ 635.713028][T15449] internal_create_group+0x56c/0xf10 [ 635.713071][T15449] ? __pfx_internal_create_group+0x10/0x10 [ 635.713110][T15449] ? kernfs_create_link+0x1bd/0x240 [ 635.713144][T15449] internal_create_groups+0x9d/0x150 [ 635.713182][T15449] device_add+0x6d3/0x1a70 [ 635.713213][T15449] ? __pfx_device_add+0x10/0x10 [ 635.713244][T15449] ? __init_waitqueue_head+0xca/0x150 [ 635.713288][T15449] netdev_register_kobject+0x183/0x3a0 [ 635.713322][T15449] register_netdevice+0x147b/0x1e50 [ 635.713363][T15449] ? __pfx_register_netdevice+0x10/0x10 [ 635.713402][T15449] ? __pfx_loopback_net_init+0x10/0x10 [ 635.713435][T15449] register_netdev+0x34/0x50 [ 635.713469][T15449] loopback_net_init+0x7a/0x170 [ 635.713502][T15449] ? __pfx_loopback_net_init+0x10/0x10 [ 635.713532][T15449] ops_init+0x1df/0x5f0 [ 635.713569][T15449] setup_net+0x21f/0x860 [ 635.713604][T15449] ? __pfx_setup_net+0x10/0x10 [ 635.713636][T15449] ? down_read_killable+0xcc/0x380 [ 635.713669][T15449] ? __pfx_down_read_killable+0x10/0x10 [ 635.713704][T15449] ? debug_mutex_init+0x37/0x70 [ 635.713743][T15449] copy_net_ns+0x2b4/0x6c0 [ 635.713783][T15449] create_new_namespaces+0x3ea/0xad0 [ 635.713825][T15449] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 635.713872][T15449] ksys_unshare+0x45d/0xa40 [ 635.713910][T15449] ? __pfx_ksys_unshare+0x10/0x10 [ 635.713942][T15449] ? xfd_validate_state+0x5d/0x180 [ 635.713986][T15449] __x64_sys_unshare+0x31/0x40 [ 635.714020][T15449] do_syscall_64+0xcd/0x250 [ 635.714053][T15449] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 635.714085][T15449] RIP: 0033:0x7fa4fe78cd29 [ 635.714105][T15449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 635.714128][T15449] RSP: 002b:00007fa4ff69b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 635.714151][T15449] RAX: ffffffffffffffda RBX: 00007fa4fe9a5fa0 RCX: 00007fa4fe78cd29 [ 635.714167][T15449] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 635.714182][T15449] RBP: 00007fa4fe80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 635.714196][T15449] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 635.714210][T15449] R13: 0000000000000000 R14: 00007fa4fe9a5fa0 R15: 00007ffc890e92b8 [ 635.714242][T15449] [ 636.039406][ C0] vkms_vblank_simulate: vblank timer overrun [ 636.722384][T15453] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2669'. [ 636.848000][T15465] mkiss: ax0: crc mode is auto. [ 637.246158][T15458] ima: policy update failed [ 637.250839][ T29] audit: type=1802 audit(4294967410.659:56): pid=15458 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.2671" res=0 errno=0 [ 637.316428][T15473] cgroup2: Unknown parameter '/sys/devices/system/memory/memory0/online' [ 637.356872][T15469] netlink: 326 bytes leftover after parsing attributes in process `syz.0.2673'. [ 638.461936][T15489] device-mapper: ioctl: Unable to rename non-existent device, to µ&^„ [ 638.539694][T15489] lo: entered allmulticast mode [ 638.579727][T15487] netlink: 326 bytes leftover after parsing attributes in process `syz.2.2679'. [ 638.636736][T15491] lo: left allmulticast mode [ 639.676651][T15518] vivid-003: ================= START STATUS ================= [ 639.684782][T15518] vivid-003: Radio HW Seek Mode: Bounded [ 639.690512][T15518] vivid-003: Radio Programmable HW Seek: false [ 639.706199][T15518] vivid-003: RDS Rx I/O Mode: Block I/O [ 639.734758][T15518] vivid-003: Generate RBDS Instead of RDS: false [ 639.772385][T15518] vivid-003: RDS Reception: true [ 639.777450][T15518] vivid-003: RDS Program Type: 0 inactive [ 639.822489][T15518] vivid-003: RDS PS Name: inactive [ 639.827818][T15518] vivid-003: RDS Radio Text: inactive [ 639.853112][T15518] vivid-003: RDS Traffic Announcement: false inactive [ 639.921621][T15505] ima: policy update failed [ 639.929734][T15518] vivid-003: RDS Traffic Program: false inactive [ 639.936547][ T29] audit: type=1802 audit(4294967413.349:57): pid=15505 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.2684" res=0 errno=0 [ 639.945904][T15518] vivid-003: RDS Music: false inactive [ 640.032518][T15518] vivid-003: ================== END STATUS ================== [ 640.824699][T15537] device-mapper: ioctl: Unable to rename non-existent device, to µ&^„ [ 640.852807][T15537] lo: entered allmulticast mode [ 640.946993][T15546] FAULT_INJECTION: forcing a failure. [ 640.946993][T15546] name failslab, interval 1, probability 0, space 0, times 0 [ 640.960470][T15541] lo: left allmulticast mode [ 641.010116][T15546] CPU: 1 UID: 0 PID: 15546 Comm: syz.0.2692 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 641.010145][T15546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 641.010156][T15546] Call Trace: [ 641.010162][T15546] [ 641.010171][T15546] dump_stack_lvl+0x16c/0x1f0 [ 641.010209][T15546] should_fail_ex+0x497/0x5b0 [ 641.010231][T15546] ? fs_reclaim_acquire+0xae/0x150 [ 641.010262][T15546] should_failslab+0xc2/0x120 [ 641.010282][T15546] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 641.010305][T15546] ? mas_alloc_nodes+0x18b/0x880 [ 641.010332][T15546] mas_alloc_nodes+0x18b/0x880 [ 641.010362][T15546] mas_node_count_gfp+0x105/0x130 [ 641.010385][T15546] mas_preallocate+0x53f/0xce0 [ 641.010419][T15546] ? __pfx_mas_preallocate+0x10/0x10 [ 641.010461][T15546] ? anon_vma_name+0x75/0x100 [ 641.010500][T15546] __split_vma+0x474/0x1210 [ 641.010531][T15546] ? __pfx___split_vma+0x10/0x10 [ 641.010572][T15546] vms_gather_munmap_vmas+0x38b/0x1730 [ 641.010609][T15546] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 641.010639][T15546] ? mas_walk+0x6a6/0x910 [ 641.010678][T15546] __mmap_region+0x32c/0x2760 [ 641.010708][T15546] ? __pfx___mmap_region+0x10/0x10 [ 641.010750][T15546] ? lock_acquire.part.0+0x11b/0x380 [ 641.010786][T15546] ? find_held_lock+0x2d/0x110 [ 641.010864][T15546] ? cap_capable+0xb3/0x250 [ 641.010899][T15546] mmap_region+0x270/0x320 [ 641.010927][T15546] do_mmap+0xa09/0x1050 [ 641.010957][T15546] vm_mmap_pgoff+0x203/0x3a0 [ 641.010988][T15546] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 641.011016][T15546] ? __fget_files+0x206/0x3a0 [ 641.011043][T15546] ksys_mmap_pgoff+0x32c/0x5c0 [ 641.011075][T15546] ? __pfx_ksys_write+0x10/0x10 [ 641.011111][T15546] __x64_sys_mmap+0x125/0x190 [ 641.011145][T15546] do_syscall_64+0xcd/0x250 [ 641.011177][T15546] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 641.011207][T15546] RIP: 0033:0x7fef9598cd29 [ 641.011226][T15546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 641.011248][T15546] RSP: 002b:00007fef9682a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 641.011269][T15546] RAX: ffffffffffffffda RBX: 00007fef95ba5fa0 RCX: 00007fef9598cd29 [ 641.011284][T15546] RDX: 0000001000000004 RSI: 0000000000000008 RDI: 0000000000000000 [ 641.011297][T15546] RBP: 00007fef9682a090 R08: 0000000000000003 R09: 0000000110000000 [ 641.011312][T15546] R10: 0000000000000013 R11: 0000000000000246 R12: 0000000000000001 [ 641.011325][T15546] R13: 0000000000000000 R14: 00007fef95ba5fa0 R15: 00007ffffad3c1e8 [ 641.011356][T15546] [ 643.124785][T15588] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2702'. [ 643.322141][T15584] ima: policy update failed [ 643.338071][ T29] audit: type=1802 audit(4294967416.739:58): pid=15584 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.2701" res=0 errno=0 [ 643.579462][T15601] device-mapper: ioctl: Unable to rename non-existent device, to µ&^„ [ 643.935130][T15617] mkiss: ax0: crc mode is auto. [ 643.961882][T15616] mkiss: ax1: crc mode is auto. [ 644.217519][T15626] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2713'. [ 644.430278][T15624] netlink: 326 bytes leftover after parsing attributes in process `syz.1.2712'. [ 644.611589][T15630] netlink: 326 bytes leftover after parsing attributes in process `syz.0.2714'. [ 645.685039][T15643] netlink: 326 bytes leftover after parsing attributes in process `syz.0.2718'. [ 646.412901][T15663] netlink: 326 bytes leftover after parsing attributes in process `syz.2.2727'. [ 646.486536][T15660] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2725'. [ 647.097572][ T29] audit: type=1800 audit(4294967420.509:59): pid=15674 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2729" name="members" dev="configfs" ino=62772 res=0 errno=0 [ 647.447311][T15676] nvme_fabrics: missing parameter 'transport=%s' [ 647.488476][T15676] nvme_fabrics: missing parameter 'nqn=%s' [ 647.902519][T15683] ima: policy update failed [ 647.907263][ T29] audit: type=1802 audit(4294967421.319:60): pid=15683 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.2733" res=0 errno=0 [ 648.114774][T15700] FAULT_INJECTION: forcing a failure. [ 648.114774][T15700] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 648.194393][T15700] CPU: 0 UID: 0 PID: 15700 Comm: syz.2.2737 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 648.194425][T15700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 648.194438][T15700] Call Trace: [ 648.194444][T15700] [ 648.194453][T15700] dump_stack_lvl+0x16c/0x1f0 [ 648.194487][T15700] should_fail_ex+0x497/0x5b0 [ 648.194522][T15700] _copy_to_user+0x32/0xd0 [ 648.194551][T15700] simple_read_from_buffer+0xd0/0x160 [ 648.194585][T15700] proc_fail_nth_read+0x198/0x270 [ 648.194616][T15700] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 648.194647][T15700] ? rw_verify_area+0xcf/0x680 [ 648.194676][T15700] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 648.194705][T15700] vfs_read+0x1df/0xbf0 [ 648.194736][T15700] ? __fget_files+0x1fc/0x3a0 [ 648.194756][T15700] ? __pfx___mutex_lock+0x10/0x10 [ 648.194783][T15700] ? __pfx_vfs_read+0x10/0x10 [ 648.194823][T15700] ? __fget_files+0x206/0x3a0 [ 648.194854][T15700] ksys_read+0x12b/0x250 [ 648.194884][T15700] ? __pfx_ksys_read+0x10/0x10 [ 648.194922][T15700] do_syscall_64+0xcd/0x250 [ 648.194952][T15700] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 648.194982][T15700] RIP: 0033:0x7f2d19d8b73c [ 648.194999][T15700] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 648.195020][T15700] RSP: 002b:00007f2d1ac82030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 648.195040][T15700] RAX: ffffffffffffffda RBX: 00007f2d19fa6080 RCX: 00007f2d19d8b73c [ 648.195054][T15700] RDX: 000000000000000f RSI: 00007f2d1ac820a0 RDI: 0000000000000005 [ 648.195067][T15700] RBP: 00007f2d1ac82090 R08: 0000000000000000 R09: 0000000000000000 [ 648.195080][T15700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 648.195092][T15700] R13: 0000000000000000 R14: 00007f2d19fa6080 R15: 00007ffe0ff39a28 [ 648.195121][T15700] [ 648.386634][ C0] vkms_vblank_simulate: vblank timer overrun [ 649.534598][T15715] FAULT_INJECTION: forcing a failure. [ 649.534598][T15715] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 649.582478][T15715] CPU: 0 UID: 0 PID: 15715 Comm: syz.3.2743 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 649.582512][T15715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 649.582526][T15715] Call Trace: [ 649.582532][T15715] [ 649.582540][T15715] dump_stack_lvl+0x16c/0x1f0 [ 649.582574][T15715] should_fail_ex+0x497/0x5b0 [ 649.582603][T15715] _copy_to_user+0x32/0xd0 [ 649.582632][T15715] simple_read_from_buffer+0xd0/0x160 [ 649.582667][T15715] proc_fail_nth_read+0x198/0x270 [ 649.582698][T15715] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 649.582729][T15715] ? rw_verify_area+0xcf/0x680 [ 649.582759][T15715] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 649.582788][T15715] vfs_read+0x1df/0xbf0 [ 649.582822][T15715] ? __fget_files+0x1fc/0x3a0 [ 649.582843][T15715] ? __pfx___mutex_lock+0x10/0x10 [ 649.582872][T15715] ? __pfx_vfs_read+0x10/0x10 [ 649.582914][T15715] ? __fget_files+0x206/0x3a0 [ 649.582945][T15715] ksys_read+0x12b/0x250 [ 649.582977][T15715] ? __pfx_ksys_read+0x10/0x10 [ 649.583019][T15715] do_syscall_64+0xcd/0x250 [ 649.583050][T15715] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 649.583081][T15715] RIP: 0033:0x7fbe9758b73c [ 649.583099][T15715] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 649.583120][T15715] RSP: 002b:00007fbe983a7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 649.583141][T15715] RAX: ffffffffffffffda RBX: 00007fbe977a5fa0 RCX: 00007fbe9758b73c [ 649.583155][T15715] RDX: 000000000000000f RSI: 00007fbe983a70a0 RDI: 0000000000000004 [ 649.583168][T15715] RBP: 00007fbe983a7090 R08: 0000000000000000 R09: 0000000000000000 [ 649.583182][T15715] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 649.583195][T15715] R13: 0000000000000000 R14: 00007fbe977a5fa0 R15: 00007ffecf6ccbe8 [ 649.583225][T15715] [ 649.776822][ C0] vkms_vblank_simulate: vblank timer overrun [ 650.323222][T15725] Line length is too long: Should be less than 4094 [ 650.827979][T15736] mkiss: ax0: crc mode is auto. [ 652.058328][T15752] kAFS: bad VL server IP address [ 652.449084][T15748] netlink: 326 bytes leftover after parsing attributes in process `syz.2.2750'. [ 654.123323][T15776] mkiss: ax0: crc mode is auto. [ 654.365378][T15768] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2756'. [ 655.402811][T15784] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2762'. [ 655.966353][T15790] FAULT_INJECTION: forcing a failure. [ 655.966353][T15790] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 656.045361][T15790] CPU: 0 UID: 0 PID: 15790 Comm: syz.3.2763 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 656.045398][T15790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 656.045412][T15790] Call Trace: [ 656.045420][T15790] [ 656.045429][T15790] dump_stack_lvl+0x16c/0x1f0 [ 656.045467][T15790] should_fail_ex+0x497/0x5b0 [ 656.045497][T15790] strncpy_from_user+0x3b/0x2d0 [ 656.045537][T15790] getname_flags.part.0+0x8f/0x550 [ 656.045571][T15790] getname_flags+0x93/0xf0 [ 656.045606][T15790] user_path_at+0x24/0x60 [ 656.045628][T15790] __do_sys_pivot_root+0x175/0x1660 [ 656.045672][T15790] ? __x64_sys_futex+0x1e1/0x4c0 [ 656.045696][T15790] ? __x64_sys_futex+0x1ea/0x4c0 [ 656.045721][T15790] ? __pfx___do_sys_pivot_root+0x10/0x10 [ 656.045750][T15790] ? xfd_validate_state+0x5d/0x180 [ 656.045782][T15790] ? rcu_is_watching+0x12/0xc0 [ 656.045826][T15790] do_syscall_64+0xcd/0x250 [ 656.045859][T15790] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 656.045891][T15790] RIP: 0033:0x7fbe9758cd29 [ 656.045909][T15790] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 656.045932][T15790] RSP: 002b:00007fbe983a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000009b [ 656.045955][T15790] RAX: ffffffffffffffda RBX: 00007fbe977a5fa0 RCX: 00007fbe9758cd29 [ 656.045972][T15790] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000020000100 [ 656.045987][T15790] RBP: 00007fbe9760e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 656.046002][T15790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 656.046016][T15790] R13: 0000000000000000 R14: 00007fbe977a5fa0 R15: 00007ffecf6ccbe8 [ 656.046048][T15790] [ 656.223417][ C0] vkms_vblank_simulate: vblank timer overrun [ 656.640605][T15792] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2764'. [ 657.153584][T15813] FAULT_INJECTION: forcing a failure. [ 657.153584][T15813] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 657.169052][T15813] CPU: 1 UID: 0 PID: 15813 Comm: syz.3.2771 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 657.169084][T15813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 657.169097][T15813] Call Trace: [ 657.169103][T15813] [ 657.169112][T15813] dump_stack_lvl+0x16c/0x1f0 [ 657.169147][T15813] should_fail_ex+0x497/0x5b0 [ 657.169175][T15813] _copy_to_user+0x32/0xd0 [ 657.169206][T15813] simple_read_from_buffer+0xd0/0x160 [ 657.169240][T15813] proc_fail_nth_read+0x198/0x270 [ 657.169272][T15813] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 657.169304][T15813] ? rw_verify_area+0xcf/0x680 [ 657.169334][T15813] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 657.169364][T15813] vfs_read+0x1df/0xbf0 [ 657.169396][T15813] ? __fget_files+0x1fc/0x3a0 [ 657.169418][T15813] ? __pfx___mutex_lock+0x10/0x10 [ 657.169447][T15813] ? __pfx_vfs_read+0x10/0x10 [ 657.169489][T15813] ? __fget_files+0x206/0x3a0 [ 657.169520][T15813] ksys_read+0x12b/0x250 [ 657.169551][T15813] ? __pfx_ksys_read+0x10/0x10 [ 657.169592][T15813] do_syscall_64+0xcd/0x250 [ 657.169624][T15813] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 657.169654][T15813] RIP: 0033:0x7fbe9758b73c [ 657.169672][T15813] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 657.169694][T15813] RSP: 002b:00007fbe983a7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 657.169715][T15813] RAX: ffffffffffffffda RBX: 00007fbe977a5fa0 RCX: 00007fbe9758b73c [ 657.169730][T15813] RDX: 000000000000000f RSI: 00007fbe983a70a0 RDI: 0000000000000006 [ 657.169744][T15813] RBP: 00007fbe983a7090 R08: 0000000000000000 R09: 0000000000000000 [ 657.169757][T15813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 657.169770][T15813] R13: 0000000000000000 R14: 00007fbe977a5fa0 R15: 00007ffecf6ccbe8 [ 657.169808][T15813] [ 661.093149][T15838] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2778'. [ 661.973668][T15856] mkiss: ax0: crc mode is auto. [ 662.512338][ T5832] Bluetooth: hci4: command 0x0406 tx timeout [ 663.546411][T15877] netlink: 326 bytes leftover after parsing attributes in process `syz.2.2789'. [ 663.944968][T15888] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2792'. [ 664.992457][T15903] mkiss: ax0: crc mode is auto. [ 667.225971][T15918] mkiss: ax0: crc mode is auto. [ 667.538397][T15898] ima: policy update failed [ 667.552441][ T29] audit: type=1802 audit(4294967440.959:61): pid=15898 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.2794" res=0 errno=0 [ 668.301640][T15920] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2799'. [ 668.444333][T15932] device-mapper: ioctl: ioctl interface mismatch: kernel(4.48.0), user(0.0.0), cmd(5) [ 669.113641][T15945] delete_channel: no stack [ 669.287474][T15944] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2804'. [ 670.152053][T15963] mkiss: ax0: crc mode is auto. [ 670.593904][T15971] device-mapper: ioctl: ioctl interface mismatch: kernel(4.48.0), user(0.0.0), cmd(5) [ 670.889194][T15975] binder: 15974:15975 ioctl c00c620f 9 returned -22 [ 671.387731][T15979] netlink: 326 bytes leftover after parsing attributes in process `syz.2.2815'. [ 672.505279][T15998] FAULT_INJECTION: forcing a failure. [ 672.505279][T15998] name failslab, interval 1, probability 0, space 0, times 0 [ 672.552359][T15998] CPU: 0 UID: 0 PID: 15998 Comm: syz.2.2819 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 672.552391][T15998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 672.552404][T15998] Call Trace: [ 672.552411][T15998] [ 672.552420][T15998] dump_stack_lvl+0x16c/0x1f0 [ 672.552450][T15998] should_fail_ex+0x497/0x5b0 [ 672.552469][T15998] ? fs_reclaim_acquire+0xae/0x150 [ 672.552501][T15998] should_failslab+0xc2/0x120 [ 672.552526][T15998] __kmalloc_cache_noprof+0x68/0x420 [ 672.552549][T15998] ? snd_seq_port_use_ptr+0x3c/0x1a0 [ 672.552582][T15998] snd_seq_port_connect+0x61/0x550 [ 672.552600][T15998] ? _raw_read_unlock+0x28/0x50 [ 672.552622][T15998] ? check_subscription_permission.isra.0+0xf5/0x240 [ 672.552656][T15998] snd_seq_ioctl_subscribe_port+0x1fe/0x3f0 [ 672.552680][T15998] ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10 [ 672.552706][T15998] ? mark_held_locks+0x9f/0xe0 [ 672.552733][T15998] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 672.552755][T15998] snd_seq_oss_midi_open+0x5c5/0x6b0 [ 672.552781][T15998] ? __pfx_snd_seq_oss_midi_open+0x10/0x10 [ 672.552813][T15998] ? rcu_is_watching+0x12/0xc0 [ 672.552840][T15998] ? trace_contention_end+0xee/0x140 [ 672.552869][T15998] snd_seq_oss_synth_reset+0x3e3/0x740 [ 672.552895][T15998] ? __pfx_snd_seq_oss_synth_reset+0x10/0x10 [ 672.552921][T15998] ? __pfx___fsnotify_parent+0x10/0x10 [ 672.552953][T15998] snd_seq_oss_reset+0x73/0x290 [ 672.552974][T15998] ? __pfx_odev_release+0x10/0x10 [ 672.552992][T15998] snd_seq_oss_release+0x7c/0x180 [ 672.553013][T15998] odev_release+0x4c/0x70 [ 672.553030][T15998] __fput+0x3ff/0xb70 [ 672.553057][T15998] task_work_run+0x14e/0x250 [ 672.553080][T15998] ? __pfx_task_work_run+0x10/0x10 [ 672.553102][T15998] ? __pfx___do_sys_close_range+0x10/0x10 [ 672.553127][T15998] syscall_exit_to_user_mode+0x27b/0x2a0 [ 672.553153][T15998] do_syscall_64+0xda/0x250 [ 672.553184][T15998] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 672.553210][T15998] RIP: 0033:0x7f2d19d8cd29 [ 672.553225][T15998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 672.553243][T15998] RSP: 002b:00007f2d1aca3038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 672.553261][T15998] RAX: 0000000000000000 RBX: 00007f2d19fa5fa0 RCX: 00007f2d19d8cd29 [ 672.553273][T15998] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 672.553284][T15998] RBP: 00007f2d1aca3090 R08: 0000000000000000 R09: 0000000000000000 [ 672.553295][T15998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 672.553306][T15998] R13: 0000000000000000 R14: 00007f2d19fa5fa0 R15: 00007ffe0ff39a28 [ 672.553331][T15998] [ 672.826201][ C0] vkms_vblank_simulate: vblank timer overrun [ 674.152485][T16024] mkiss: ax0: crc mode is auto. [ 674.315326][T16023] netlink: 326 bytes leftover after parsing attributes in process `syz.1.2825'. [ 675.617271][T16039] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2829'. [ 675.936911][T16037] netlink: 326 bytes leftover after parsing attributes in process `syz.3.2828'. [ 676.224910][T16055] FAULT_INJECTION: forcing a failure. [ 676.224910][T16055] name failslab, interval 1, probability 0, space 0, times 0 [ 676.262307][T16055] CPU: 0 UID: 0 PID: 16055 Comm: syz.2.2834 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 676.262341][T16055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 676.262355][T16055] Call Trace: [ 676.262361][T16055] [ 676.262370][T16055] dump_stack_lvl+0x16c/0x1f0 [ 676.262406][T16055] should_fail_ex+0x497/0x5b0 [ 676.262429][T16055] ? fs_reclaim_acquire+0xae/0x150 [ 676.262465][T16055] should_failslab+0xc2/0x120 [ 676.262495][T16055] __kmalloc_node_noprof+0xd1/0x520 [ 676.262530][T16055] ? __pfx_aa_file_perm+0x10/0x10 [ 676.262551][T16055] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 676.262580][T16055] __kvmalloc_node_noprof+0xad/0x1a0 [ 676.262628][T16055] seq_read_iter+0x82a/0x12b0 [ 676.262669][T16055] ? __mutex_trylock_common+0xea/0x250 [ 676.262708][T16055] kernfs_fop_read_iter+0x414/0x580 [ 676.262734][T16055] ? rw_verify_area+0xcf/0x680 [ 676.262768][T16055] vfs_read+0x886/0xbf0 [ 676.262807][T16055] ? __pfx_vfs_read+0x10/0x10 [ 676.262863][T16055] ksys_read+0x12b/0x250 [ 676.262894][T16055] ? __pfx_ksys_read+0x10/0x10 [ 676.262937][T16055] do_syscall_64+0xcd/0x250 [ 676.262969][T16055] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 676.262999][T16055] RIP: 0033:0x7f2d19d8cd29 [ 676.263017][T16055] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 676.263038][T16055] RSP: 002b:00007f2d1aca3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 676.263059][T16055] RAX: ffffffffffffffda RBX: 00007f2d19fa5fa0 RCX: 00007f2d19d8cd29 [ 676.263075][T16055] RDX: 000000000000000f RSI: 00000000200000c0 RDI: 0000000000000003 [ 676.263088][T16055] RBP: 00007f2d1aca3090 R08: 0000000000000000 R09: 0000000000000000 [ 676.263101][T16055] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 676.263114][T16055] R13: 0000000000000000 R14: 00007f2d19fa5fa0 R15: 00007ffe0ff39a28 [ 676.263146][T16055] [ 676.462513][ C0] vkms_vblank_simulate: vblank timer overrun [ 677.211935][T16067] Process accounting resumed [ 678.114663][T16077] device-mapper: ioctl: Unable to rename non-existent device, to µ&^„ [ 678.412931][T16083] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2843'. [ 680.233087][T16110] openvswitch: netlink: Key type 130 is out of range max 32 [ 680.664301][T16118] netlink: 'syz.2.2852': attribute type 27 has an invalid length. [ 680.672374][T16118] netlink: 146 bytes leftover after parsing attributes in process `syz.2.2852'. [ 680.686768][T16118] FAULT_INJECTION: forcing a failure. [ 680.686768][T16118] name failslab, interval 1, probability 0, space 0, times 0 [ 680.700040][T16118] CPU: 0 UID: 0 PID: 16118 Comm: syz.2.2852 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 680.700074][T16118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 680.700087][T16118] Call Trace: [ 680.700094][T16118] [ 680.700103][T16118] dump_stack_lvl+0x16c/0x1f0 [ 680.700154][T16118] should_fail_ex+0x497/0x5b0 [ 680.700185][T16118] ? fs_reclaim_acquire+0xae/0x150 [ 680.700226][T16118] should_failslab+0xc2/0x120 [ 680.700258][T16118] __kmalloc_node_noprof+0xd1/0x520 [ 680.700288][T16118] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 680.700320][T16118] __kvmalloc_node_noprof+0xad/0x1a0 [ 680.700348][T16118] alloc_fdtable+0xee/0x2b0 [ 680.700388][T16118] dup_fd+0x92b/0xca0 [ 680.700415][T16118] ? __pfx_make_vfsuid+0x10/0x10 [ 680.700450][T16118] unshare_files+0xbf/0x190 [ 680.700492][T16118] do_coredump+0x1596/0x45d0 [ 680.700537][T16118] ? __pfx_do_coredump+0x10/0x10 [ 680.700568][T16118] ? syscall_exit_to_user_mode+0x150/0x2a0 [ 680.700661][T16118] get_signal+0x23f3/0x2610 [ 680.700704][T16118] ? lockdep_hardirqs_on+0x7c/0x110 [ 680.700737][T16118] ? __pfx_get_signal+0x10/0x10 [ 680.700770][T16118] ? force_sig_info_to_task+0x3a0/0x660 [ 680.700812][T16118] arch_do_signal_or_restart+0x90/0x7e0 [ 680.700840][T16118] ? __pfx_force_exit_sig+0x10/0x10 [ 680.700874][T16118] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 680.700920][T16118] syscall_exit_to_user_mode+0x150/0x2a0 [ 680.700956][T16118] do_syscall_64+0xda/0x250 [ 680.700992][T16118] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 680.701028][T16118] RIP: 0033:0x7f2d19d8cd29 [ 680.701071][T16118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 680.701097][T16118] RSP: 002b:00007f2d1aca30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 680.701121][T16118] RAX: ffffffffffffffda RBX: 00007f2d19fa5fa8 RCX: 00007f2d19d8cd29 [ 680.701139][T16118] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f2d19fa5fac [ 680.701163][T16118] RBP: 00007f2d19fa5fa0 R08: 00007f2d1aca4000 R09: 0000000000000000 [ 680.701181][T16118] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2d19fa5fac [ 680.701198][T16118] R13: 0000000000000000 R14: 00007ffe0ff39940 R15: 00007ffe0ff39a28 [ 680.701230][T16118] [ 682.144017][T16126] ima: policy update failed [ 682.148693][ T29] audit: type=1802 audit(4294967455.559:62): pid=16126 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.2854" res=0 errno=0 [ 683.566475][T16160] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2866'. [ 684.967398][T16177] mkiss: ax0: crc mode is auto. [ 685.553277][T16172] ima: policy update failed [ 685.578373][ T29] audit: type=1802 audit(4294967458.989:63): pid=16172 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.2869" res=0 errno=0 [ 686.037723][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 686.048162][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 686.922608][T16206] FAULT_INJECTION: forcing a failure. [ 686.922608][T16206] name failslab, interval 1, probability 0, space 0, times 0 [ 686.952305][T16206] CPU: 0 UID: 0 PID: 16206 Comm: syz.2.2876 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 686.952339][T16206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 686.952352][T16206] Call Trace: [ 686.952359][T16206] [ 686.952369][T16206] dump_stack_lvl+0x16c/0x1f0 [ 686.952402][T16206] should_fail_ex+0x497/0x5b0 [ 686.952426][T16206] ? fs_reclaim_acquire+0xae/0x150 [ 686.952462][T16206] should_failslab+0xc2/0x120 [ 686.952489][T16206] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 686.952515][T16206] ? __alloc_skb+0x2b3/0x380 [ 686.952544][T16206] ? genl_start+0x1e7/0x960 [ 686.952575][T16206] __alloc_skb+0x2b3/0x380 [ 686.952603][T16206] ? __pfx___alloc_skb+0x10/0x10 [ 686.952629][T16206] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 686.952675][T16206] netlink_dump+0x699/0xd00 [ 686.952710][T16206] ? __pfx_netlink_dump+0x10/0x10 [ 686.952750][T16206] ? kasan_save_track+0x14/0x30 [ 686.952773][T16206] ? __kasan_kmalloc+0xaa/0xb0 [ 686.952797][T16206] ? genl_start+0x67d/0x960 [ 686.952829][T16206] __netlink_dump_start+0x6d9/0x980 [ 686.952860][T16206] genl_family_rcv_msg_dumpit+0x1e1/0x2e0 [ 686.952893][T16206] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 686.952923][T16206] ? rcu_is_watching+0x12/0xc0 [ 686.952963][T16206] ? __pfx_genl_start+0x10/0x10 [ 686.952988][T16206] ? __pfx_genl_dumpit+0x10/0x10 [ 686.953014][T16206] ? __pfx_genl_done+0x10/0x10 [ 686.953043][T16206] ? bpf_lsm_capable+0x9/0x10 [ 686.953072][T16206] ? security_capable+0x7e/0x260 [ 686.953103][T16206] ? ns_capable+0xd7/0x110 [ 686.953134][T16206] genl_rcv_msg+0x470/0x800 [ 686.953167][T16206] ? __pfx_genl_rcv_msg+0x10/0x10 [ 686.953197][T16206] ? __pfx_batadv_hardif_neigh_dump+0x10/0x10 [ 686.953235][T16206] netlink_rcv_skb+0x165/0x410 [ 686.953262][T16206] ? __pfx_genl_rcv_msg+0x10/0x10 [ 686.953293][T16206] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 686.953334][T16206] ? down_read+0xc9/0x330 [ 686.953363][T16206] ? __pfx_down_read+0x10/0x10 [ 686.953394][T16206] ? netlink_deliver_tap+0x1ae/0xca0 [ 686.953424][T16206] genl_rcv+0x28/0x40 [ 686.953449][T16206] netlink_unicast+0x53c/0x7f0 [ 686.953479][T16206] ? __pfx_netlink_unicast+0x10/0x10 [ 686.953506][T16206] ? __phys_addr_symbol+0x30/0x80 [ 686.953539][T16206] ? __check_object_size+0x488/0x710 [ 686.953570][T16206] netlink_sendmsg+0x8b8/0xd70 [ 686.953602][T16206] ? __pfx_netlink_sendmsg+0x10/0x10 [ 686.953642][T16206] ____sys_sendmsg+0x9ae/0xb40 [ 686.953666][T16206] ? copy_msghdr_from_user+0x10b/0x160 [ 686.953696][T16206] ? __pfx_____sys_sendmsg+0x10/0x10 [ 686.953743][T16206] ___sys_sendmsg+0x135/0x1e0 [ 686.953772][T16206] ? __pfx____sys_sendmsg+0x10/0x10 [ 686.953830][T16206] ? __pfx_lock_release+0x10/0x10 [ 686.953855][T16206] ? trace_lock_acquire+0x14e/0x1f0 [ 686.953890][T16206] ? __fget_files+0x206/0x3a0 [ 686.953921][T16206] __sys_sendmsg+0x16e/0x220 [ 686.953952][T16206] ? __pfx___sys_sendmsg+0x10/0x10 [ 686.954006][T16206] do_syscall_64+0xcd/0x250 [ 686.954038][T16206] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 686.954067][T16206] RIP: 0033:0x7f2d19d8cd29 [ 686.954085][T16206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 686.954107][T16206] RSP: 002b:00007f2d1aca3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 686.954129][T16206] RAX: ffffffffffffffda RBX: 00007f2d19fa5fa0 RCX: 00007f2d19d8cd29 [ 686.954144][T16206] RDX: 0000000004009800 RSI: 00000000200007c0 RDI: 0000000000000003 [ 686.954157][T16206] RBP: 00007f2d1aca3090 R08: 0000000000000000 R09: 0000000000000000 [ 686.954171][T16206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 686.954183][T16206] R13: 0000000000000000 R14: 00007f2d19fa5fa0 R15: 00007ffe0ff39a28 [ 686.954215][T16206] [ 688.112853][T16208] Bluetooth: hci0: command 0x0406 tx timeout [ 688.295282][T16222] mkiss: ax0: crc mode is auto. [ 688.432477][ T5832] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 689.432710][T16246] device-mapper: ioctl: Unable to rename non-existent device, to µ&^„ [ 689.519543][T16251] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2887'. [ 689.902882][T16267] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2892'. [ 690.008765][T16256] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2888'. [ 690.174318][T16273] FAULT_INJECTION: forcing a failure. [ 690.174318][T16273] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 690.235694][T16273] CPU: 1 UID: 0 PID: 16273 Comm: syz.2.2894 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 690.235724][T16273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 690.235736][T16273] Call Trace: [ 690.235742][T16273] [ 690.235751][T16273] dump_stack_lvl+0x16c/0x1f0 [ 690.235784][T16273] should_fail_ex+0x497/0x5b0 [ 690.235808][T16273] ? fs_reclaim_acquire+0xae/0x150 [ 690.235843][T16273] should_fail_alloc_page+0xe7/0x130 [ 690.235873][T16273] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 690.235912][T16273] __alloc_pages_noprof+0x18e/0x2470 [ 690.235945][T16273] ? __pfx_mark_lock+0x10/0x10 [ 690.235975][T16273] ? __pfx___lock_acquire+0x10/0x10 [ 690.236001][T16273] ? hlock_class+0x4e/0x130 [ 690.236034][T16273] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 690.236070][T16273] ? hlock_class+0x4e/0x130 [ 690.236101][T16273] ? __lock_acquire+0xcc5/0x3c40 [ 690.236134][T16273] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 690.236165][T16273] ? policy_nodemask+0xea/0x4e0 [ 690.236196][T16273] alloc_pages_mpol_noprof+0x2c8/0x620 [ 690.236228][T16273] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 690.236263][T16273] ? find_held_lock+0x2d/0x110 [ 690.236302][T16273] folio_alloc_mpol_noprof+0x36/0xd0 [ 690.236344][T16273] shmem_alloc_folio+0x135/0x160 [ 690.236374][T16273] shmem_alloc_and_add_folio+0x48b/0xc00 [ 690.236414][T16273] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 690.236449][T16273] ? shmem_allowable_huge_orders+0xd0/0x410 [ 690.236489][T16273] shmem_get_folio_gfp+0x689/0x1530 [ 690.236528][T16273] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 690.236567][T16273] ? filemap_map_pages+0xf92/0x16b0 [ 690.236605][T16273] shmem_fault+0x200/0xae0 [ 690.236639][T16273] ? __pfx_shmem_fault+0x10/0x10 [ 690.236677][T16273] ? do_pte_missing+0xdd7/0x3e00 [ 690.236701][T16273] ? __pfx_lock_release+0x10/0x10 [ 690.236735][T16273] __do_fault+0x10a/0x490 [ 690.236768][T16273] do_pte_missing+0xebd/0x3e00 [ 690.236795][T16273] ? __pfx_lock_release+0x10/0x10 [ 690.236829][T16273] __handle_mm_fault+0x1166/0x2c60 [ 690.236863][T16273] ? __pfx___handle_mm_fault+0x10/0x10 [ 690.236887][T16273] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 690.236934][T16273] ? find_vma+0xc0/0x140 [ 690.236965][T16273] ? __pfx_find_vma+0x10/0x10 [ 690.237002][T16273] handle_mm_fault+0x3fa/0xaa0 [ 690.237033][T16273] do_user_addr_fault+0x7a3/0x13f0 [ 690.237069][T16273] exc_page_fault+0x5c/0xc0 [ 690.237098][T16273] asm_exc_page_fault+0x26/0x30 [ 690.237127][T16273] RIP: 0010:rep_movs_alternative+0x30/0x70 [ 690.237150][T16273] Code: f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 [ 690.237172][T16273] RSP: 0018:ffffc9000d35fb40 EFLAGS: 00050212 [ 690.237191][T16273] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000010 [ 690.237205][T16273] RDX: fffff52001a6bfa5 RSI: 0000000000000000 RDI: ffffc9000d35fd18 [ 690.237218][T16273] RBP: 0000000000000010 R08: 0000000000000001 R09: fffff52001a6bfa4 [ 690.237230][T16273] R10: ffffc9000d35fd27 R11: 0000000000000001 R12: 0000000000000000 [ 690.237242][T16273] R13: ffffc9000d35fd18 R14: ffffc9000d35fc60 R15: 0000000040103d02 [ 690.237272][T16273] _copy_from_user+0x98/0xd0 [ 690.237297][T16273] ptp_ioctl+0x120a/0x1d10 [ 690.237336][T16273] ? __pfx_ptp_ioctl+0x10/0x10 [ 690.237361][T16273] ? __lock_acquire+0x15a9/0x3c40 [ 690.237397][T16273] ? __pfx___lock_acquire+0x10/0x10 [ 690.237420][T16273] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 690.237464][T16273] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 690.237501][T16273] ? lock_acquire+0x2f/0xb0 [ 690.237524][T16273] ? posix_clock_ioctl+0x6b/0x170 [ 690.237561][T16273] ? __fget_files+0x206/0x3a0 [ 690.237584][T16273] ? __pfx_ptp_ioctl+0x10/0x10 [ 690.237610][T16273] posix_clock_ioctl+0xf6/0x170 [ 690.237630][T16273] ? __pfx_posix_clock_ioctl+0x10/0x10 [ 690.237653][T16273] __x64_sys_ioctl+0x190/0x200 [ 690.237684][T16273] do_syscall_64+0xcd/0x250 [ 690.237712][T16273] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 690.237739][T16273] RIP: 0033:0x7f2d19d8cd29 [ 690.237757][T16273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 690.237778][T16273] RSP: 002b:00007f2d1aca3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 690.237798][T16273] RAX: ffffffffffffffda RBX: 00007f2d19fa5fa0 RCX: 00007f2d19d8cd29 [ 690.237813][T16273] RDX: 0000000000000000 RSI: 0000000040103d02 RDI: 0000000000000003 [ 690.237826][T16273] RBP: 00007f2d1aca3090 R08: 0000000000000000 R09: 0000000000000000 [ 690.237839][T16273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 690.237851][T16273] R13: 0000000000000000 R14: 00007f2d19fa5fa0 R15: 00007ffe0ff39a28 [ 690.237881][T16273] [ 690.704064][ C1] vkms_vblank_simulate: vblank timer overrun [ 692.138039][T16308] ima: policy update failed [ 692.263052][ T29] audit: type=1802 audit(4294967465.679:64): pid=16308 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.2903" res=0 errno=0 [ 693.495901][T16333] mkiss: ax0: crc mode is auto. [ 693.803317][T16340] FAULT_INJECTION: forcing a failure. [ 693.803317][T16340] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 693.837199][T16340] CPU: 0 UID: 0 PID: 16340 Comm: syz.2.2911 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 693.837233][T16340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 693.837246][T16340] Call Trace: [ 693.837253][T16340] [ 693.837261][T16340] dump_stack_lvl+0x16c/0x1f0 [ 693.837296][T16340] should_fail_ex+0x497/0x5b0 [ 693.837319][T16340] ? fs_reclaim_acquire+0xae/0x150 [ 693.837355][T16340] should_fail_alloc_page+0xe7/0x130 [ 693.837385][T16340] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 693.837418][T16340] ? hlock_class+0x4e/0x130 [ 693.837455][T16340] __alloc_pages_noprof+0x18e/0x2470 [ 693.837494][T16340] ? hlock_class+0x4e/0x130 [ 693.837525][T16340] ? mark_lock+0xb5/0xc60 [ 693.837551][T16340] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 693.837578][T16340] ? __pfx_mark_lock+0x10/0x10 [ 693.837604][T16340] ? register_lock_class+0xb1/0x1240 [ 693.837636][T16340] ? find_next_iomem_res+0x3fb/0x4f0 [ 693.837668][T16340] ? __pfx_register_lock_class+0x10/0x10 [ 693.837695][T16340] ? trace_lock_acquire+0x14e/0x1f0 [ 693.837720][T16340] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 693.837752][T16340] ? policy_nodemask+0xea/0x4e0 [ 693.837782][T16340] alloc_pages_mpol_noprof+0x2c8/0x620 [ 693.837815][T16340] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 693.837847][T16340] ? __pfx_pagerange_is_ram_callback+0x10/0x10 [ 693.837881][T16340] ? __pfx___lock_acquire+0x10/0x10 [ 693.837910][T16340] ? __pfx_walk_system_ram_range+0x10/0x10 [ 693.837941][T16340] pte_alloc_one+0x20/0x390 [ 693.837973][T16340] __pte_alloc+0x6e/0x3b0 [ 693.838004][T16340] ? __pfx___pte_alloc+0x10/0x10 [ 693.838045][T16340] remap_pfn_range_internal+0xaa7/0xdb0 [ 693.838072][T16340] ? track_pfn_remap+0x2c3/0x490 [ 693.838112][T16340] ? __pfx_remap_pfn_range_internal+0x10/0x10 [ 693.838137][T16340] ? up_write+0x1b2/0x520 [ 693.838176][T16340] remap_pfn_range+0xcb/0x160 [ 693.838200][T16340] ? __pfx_remap_pfn_range+0x10/0x10 [ 693.838233][T16340] usbdev_mmap+0x7d9/0xb30 [ 693.838270][T16340] ? __pfx_usbdev_mmap+0x10/0x10 [ 693.838302][T16340] ? __raw_spin_lock_init+0x3a/0x110 [ 693.838340][T16340] __mmap_region+0x1823/0x2760 [ 693.838372][T16340] ? __pfx___mmap_region+0x10/0x10 [ 693.838398][T16340] ? hlock_class+0x4e/0x130 [ 693.838429][T16340] ? mark_lock+0xb5/0xc60 [ 693.838534][T16340] mmap_region+0x270/0x320 [ 693.838562][T16340] do_mmap+0xa09/0x1050 [ 693.838591][T16340] vm_mmap_pgoff+0x203/0x3a0 [ 693.838622][T16340] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 693.838650][T16340] ? __fget_files+0x206/0x3a0 [ 693.838678][T16340] ksys_mmap_pgoff+0x32c/0x5c0 [ 693.838711][T16340] ? __pfx_ksys_write+0x10/0x10 [ 693.838749][T16340] __x64_sys_mmap+0x125/0x190 [ 693.838783][T16340] do_syscall_64+0xcd/0x250 [ 693.838814][T16340] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 693.838845][T16340] RIP: 0033:0x7f2d19d8cd29 [ 693.838863][T16340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 693.838884][T16340] RSP: 002b:00007f2d1aca3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 693.838910][T16340] RAX: ffffffffffffffda RBX: 00007f2d19fa5fa0 RCX: 00007f2d19d8cd29 [ 693.838925][T16340] RDX: 0000000000000008 RSI: 0000000000000009 RDI: 0000000000002000 [ 693.838939][T16340] RBP: 00007f2d1aca3090 R08: 0000000000000003 R09: 0000000000000000 [ 693.838953][T16340] R10: 0008000000008011 R11: 0000000000000246 R12: 0000000000000001 [ 693.838967][T16340] R13: 0000000000000000 R14: 00007f2d19fa5fa0 R15: 00007ffe0ff39a28 [ 693.838999][T16340] [ 693.839093][T16340] ------------[ cut here ]------------ [ 694.194690][T16340] WARNING: CPU: 0 PID: 16340 at arch/x86/mm/pat/memtype.c:983 get_pat_info+0x2c1/0x320 [ 694.204586][T16340] Modules linked in: [ 694.208505][T16340] CPU: 0 UID: 0 PID: 16340 Comm: syz.2.2911 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 694.219164][T16340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 694.229509][T16340] RIP: 0010:get_pat_info+0x2c1/0x320 [ 694.234990][T16340] Code: 49 89 1c 24 e9 0f ff ff ff e8 fb ac 4d 00 90 0f 0b 90 e9 ff fd ff ff 4c 89 ef e8 7a 7d b0 00 e9 f0 fe ff ff e8 e0 ac 4d 00 90 <0f> 0b 90 bb ea ff ff ff e9 e3 fe ff ff 4c 89 ff e8 6a 7c b0 00 e9 [ 694.255060][T16340] RSP: 0018:ffffc9000d37f488 EFLAGS: 00010293 [ 694.261171][T16340] RAX: 0000000000000000 RBX: ffff888039679d90 RCX: ffffffff816b4534 [ 694.269588][T16340] RDX: ffff88802fdada00 RSI: ffffffff816b45b0 RDI: 0000000000000007 [ 694.277961][T16340] RBP: 1ffff92001a6fe92 R08: 0000000000000007 R09: 0000000000000020 [ 694.286054][T16340] R10: 0000000000000028 R11: 0000000000000001 R12: ffffc9000d37f590 [ 694.294128][T16340] R13: 0000000000000000 R14: 0000000000000028 R15: ffff888039679db0 [ 694.302312][T16340] FS: 00007f2d1aca36c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 694.311280][T16340] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 694.318220][T16340] CR2: 0000000000ed9000 CR3: 0000000071ad8000 CR4: 00000000003526f0 [ 694.326467][T16340] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 694.334565][T16340] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 694.342987][T16340] Call Trace: [ 694.346295][T16340] [ 694.349267][T16340] ? __warn+0xea/0x3c0 [ 694.353760][T16340] ? get_pat_info+0x2c1/0x320 [ 694.358601][T16340] ? report_bug+0x3c0/0x580 [ 694.363712][T16340] ? handle_bug+0x54/0xa0 [ 694.368083][T16340] ? exc_invalid_op+0x17/0x50 [ 694.372929][T16340] ? asm_exc_invalid_op+0x1a/0x20 [ 694.378002][T16340] ? get_pat_info+0x244/0x320 [ 694.382802][T16340] ? get_pat_info+0x2c0/0x320 [ 694.387517][T16340] ? get_pat_info+0x2c1/0x320 [ 694.392331][T16340] ? get_pat_info+0x2c0/0x320 [ 694.397048][T16340] ? __pfx_get_pat_info+0x10/0x10 [ 694.402272][T16340] untrack_pfn+0xf7/0x4d0 [ 694.406640][T16340] ? __pfx_untrack_pfn+0x10/0x10 [ 694.411615][T16340] ? zap_page_range_single+0x307/0x560 [ 694.417239][T16340] ? __pfx_lock_release+0x10/0x10 [ 694.422477][T16340] ? uprobe_munmap+0x20/0x5c0 [ 694.427178][T16340] ? trace_lock_acquire+0x14e/0x1f0 [ 694.432694][T16340] unmap_single_vma+0x1bd/0x2b0 [ 694.437597][T16340] zap_page_range_single+0x326/0x560 [ 694.443219][T16340] ? __pfx_zap_page_range_single+0x10/0x10 [ 694.449072][T16340] ? remap_pfn_range_internal+0xadb/0xdb0 [ 694.455176][T16340] ? track_pfn_remap+0x2c3/0x490 [ 694.460183][T16340] remap_pfn_range+0x130/0x160 [ 694.465067][T16340] ? __pfx_remap_pfn_range+0x10/0x10 [ 694.470391][T16340] usbdev_mmap+0x7d9/0xb30 [ 694.474994][T16340] ? __pfx_usbdev_mmap+0x10/0x10 [ 694.479970][T16340] ? __raw_spin_lock_init+0x3a/0x110 [ 694.485362][T16340] __mmap_region+0x1823/0x2760 [ 694.490251][T16340] ? __pfx___mmap_region+0x10/0x10 [ 694.495485][T16340] ? hlock_class+0x4e/0x130 [ 694.500027][T16340] ? mark_lock+0xb5/0xc60 [ 694.504661][T16340] mmap_region+0x270/0x320 [ 694.509116][T16340] do_mmap+0xa09/0x1050 [ 694.513380][T16340] vm_mmap_pgoff+0x203/0x3a0 [ 694.518015][T16340] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 694.523383][T16340] ? __fget_files+0x206/0x3a0 [ 694.528104][T16340] ksys_mmap_pgoff+0x32c/0x5c0 [ 694.533147][T16340] ? __pfx_ksys_write+0x10/0x10 [ 694.538038][T16340] __x64_sys_mmap+0x125/0x190 [ 694.542850][T16340] do_syscall_64+0xcd/0x250 [ 694.547643][T16340] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 694.553888][T16340] RIP: 0033:0x7f2d19d8cd29 [ 694.558343][T16340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 694.578076][T16340] RSP: 002b:00007f2d1aca3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 694.586592][T16340] RAX: ffffffffffffffda RBX: 00007f2d19fa5fa0 RCX: 00007f2d19d8cd29 [ 694.595151][T16340] RDX: 0000000000000008 RSI: 0000000000000009 RDI: 0000000000002000 [ 694.603211][T16340] RBP: 00007f2d1aca3090 R08: 0000000000000003 R09: 0000000000000000 [ 694.611326][T16340] R10: 0008000000008011 R11: 0000000000000246 R12: 0000000000000001 [ 694.619410][T16340] R13: 0000000000000000 R14: 00007f2d19fa5fa0 R15: 00007ffe0ff39a28 [ 694.627637][T16340] [ 694.630688][T16340] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 694.637985][T16340] CPU: 0 UID: 0 PID: 16340 Comm: syz.2.2911 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0 [ 694.648417][T16340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 694.658494][T16340] Call Trace: [ 694.661881][T16340] [ 694.664843][T16340] dump_stack_lvl+0x3d/0x1f0 [ 694.669472][T16340] panic+0x71d/0x800 [ 694.673392][T16340] ? __pfx_panic+0x10/0x10 [ 694.677831][T16340] ? show_trace_log_lvl+0x29d/0x3d0 [ 694.683075][T16340] ? check_panic_on_warn+0x1f/0xb0 [ 694.688207][T16340] ? get_pat_info+0x2c1/0x320 [ 694.692906][T16340] check_panic_on_warn+0xab/0xb0 [ 694.697846][T16340] __warn+0xf6/0x3c0 [ 694.701744][T16340] ? get_pat_info+0x2c1/0x320 [ 694.706431][T16340] report_bug+0x3c0/0x580 [ 694.710773][T16340] handle_bug+0x54/0xa0 [ 694.714939][T16340] exc_invalid_op+0x17/0x50 [ 694.719449][T16340] asm_exc_invalid_op+0x1a/0x20 [ 694.724310][T16340] RIP: 0010:get_pat_info+0x2c1/0x320 [ 694.729606][T16340] Code: 49 89 1c 24 e9 0f ff ff ff e8 fb ac 4d 00 90 0f 0b 90 e9 ff fd ff ff 4c 89 ef e8 7a 7d b0 00 e9 f0 fe ff ff e8 e0 ac 4d 00 90 <0f> 0b 90 bb ea ff ff ff e9 e3 fe ff ff 4c 89 ff e8 6a 7c b0 00 e9 [ 694.749222][T16340] RSP: 0018:ffffc9000d37f488 EFLAGS: 00010293 [ 694.755300][T16340] RAX: 0000000000000000 RBX: ffff888039679d90 RCX: ffffffff816b4534 [ 694.763272][T16340] RDX: ffff88802fdada00 RSI: ffffffff816b45b0 RDI: 0000000000000007 [ 694.771239][T16340] RBP: 1ffff92001a6fe92 R08: 0000000000000007 R09: 0000000000000020 [ 694.779208][T16340] R10: 0000000000000028 R11: 0000000000000001 R12: ffffc9000d37f590 [ 694.787177][T16340] R13: 0000000000000000 R14: 0000000000000028 R15: ffff888039679db0 [ 694.795152][T16340] ? get_pat_info+0x244/0x320 [ 694.799841][T16340] ? get_pat_info+0x2c0/0x320 [ 694.804535][T16340] ? get_pat_info+0x2c0/0x320 [ 694.809222][T16340] ? __pfx_get_pat_info+0x10/0x10 [ 694.814267][T16340] untrack_pfn+0xf7/0x4d0 [ 694.818611][T16340] ? __pfx_untrack_pfn+0x10/0x10 [ 694.823557][T16340] ? zap_page_range_single+0x307/0x560 [ 694.829029][T16340] ? __pfx_lock_release+0x10/0x10 [ 694.834057][T16340] ? uprobe_munmap+0x20/0x5c0 [ 694.838733][T16340] ? trace_lock_acquire+0x14e/0x1f0 [ 694.843937][T16340] unmap_single_vma+0x1bd/0x2b0 [ 694.848803][T16340] zap_page_range_single+0x326/0x560 [ 694.854098][T16340] ? __pfx_zap_page_range_single+0x10/0x10 [ 694.859913][T16340] ? remap_pfn_range_internal+0xadb/0xdb0 [ 694.865634][T16340] ? track_pfn_remap+0x2c3/0x490 [ 694.870599][T16340] remap_pfn_range+0x130/0x160 [ 694.875362][T16340] ? __pfx_remap_pfn_range+0x10/0x10 [ 694.880655][T16340] usbdev_mmap+0x7d9/0xb30 [ 694.885084][T16340] ? __pfx_usbdev_mmap+0x10/0x10 [ 694.890026][T16340] ? __raw_spin_lock_init+0x3a/0x110 [ 694.895322][T16340] __mmap_region+0x1823/0x2760 [ 694.900091][T16340] ? __pfx___mmap_region+0x10/0x10 [ 694.905202][T16340] ? hlock_class+0x4e/0x130 [ 694.909710][T16340] ? mark_lock+0xb5/0xc60 [ 694.914098][T16340] mmap_region+0x270/0x320 [ 694.918521][T16340] do_mmap+0xa09/0x1050 [ 694.922683][T16340] vm_mmap_pgoff+0x203/0x3a0 [ 694.927283][T16340] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 694.932407][T16340] ? __fget_files+0x206/0x3a0 [ 694.937096][T16340] ksys_mmap_pgoff+0x32c/0x5c0 [ 694.941873][T16340] ? __pfx_ksys_write+0x10/0x10 [ 694.946733][T16340] __x64_sys_mmap+0x125/0x190 [ 694.951420][T16340] do_syscall_64+0xcd/0x250 [ 694.955931][T16340] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 694.961830][T16340] RIP: 0033:0x7f2d19d8cd29 [ 694.966250][T16340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 694.985863][T16340] RSP: 002b:00007f2d1aca3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 694.994288][T16340] RAX: ffffffffffffffda RBX: 00007f2d19fa5fa0 RCX: 00007f2d19d8cd29 [ 695.002274][T16340] RDX: 0000000000000008 RSI: 0000000000000009 RDI: 0000000000002000 [ 695.010246][T16340] RBP: 00007f2d1aca3090 R08: 0000000000000003 R09: 0000000000000000 [ 695.018220][T16340] R10: 0008000000008011 R11: 0000000000000246 R12: 0000000000000001 [ 695.026195][T16340] R13: 0000000000000000 R14: 00007f2d19fa5fa0 R15: 00007ffe0ff39a28 [ 695.034184][T16340] [ 695.037440][T16340] Kernel Offset: disabled [ 695.041892][T16340] Rebooting in 86400 seconds..