last executing test programs: 24m42.974656858s ago: executing program 0 (id=1989): socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0x40047452, &(0x7f0000000080)=0xfffffffe) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f00000008c0)='/sys/kernel/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x2, 0x0) writev$auto(r1, &(0x7f0000001900)={0x0, 0x100000000}, 0x9) r2 = open(&(0x7f00000004c0)='./cgroup\x00', 0x181080, 0x118) open_by_handle_at$auto(r2, &(0x7f0000000140)={0x4, 0x1, "04000000"}, 0x42) splice$auto(0x4, 0x0, 0x2, 0x0, 0x14000000000, 0xf) openat$auto_objects_fops_(0xffffffffffffff9c, 0x0, 0x202200, 0x0) sendmsg$auto_IPVS_CMD_GET_CONFIG(0xffffffffffffffff, 0x0, 0x4000081) write$auto_console_fops_tty_io(0xffffffffffffffff, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x2, 0x1, 0x106) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x2c, 0x80003, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x80040, 0x0) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, 0x0, 0x240, 0x0) finit_module$auto(0x3, 0xfffffffffffffffe, 0x2) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x55) socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000040), 0xffffffffffffffff) socketpair$auto(0x101, 0x5, 0x7, &(0x7f0000000140)=0xd) 24m42.565644507s ago: executing program 0 (id=1992): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) read$auto(r0, 0x0, 0x24) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) memfd_create$auto(0x0, 0x0) madvise$auto(0x0, 0xffffffffffff0007, 0x19) r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000080), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_DP_CMD_DEL(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000340)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002abd7000fedbdf250200000008000200", @ANYRES32=0xc, @ANYBLOB="0800070003000000110001006f76735f646174667061746800000000"], 0x38}, 0x1, 0x0, 0x0, 0x20040011}, 0x20000000) mbind$auto(0x9, 0x2091d2, 0x3, 0x0, 0x6, 0x2) madvise$auto(0x0, 0x8000000000000000, 0x15) write$auto(0x3, 0x0, 0xfff5) close_range$auto(0x2, 0x8, 0x0) r3 = eventfd$auto(0x3) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/snd_hda_intel/parameters/power_save\x00', 0x80002, 0x0) mmap$auto(0x3ff, 0x4, 0xe2, 0xeb3, 0x401, 0x8000) getsockopt$auto_SO_SNDLOWAT(0xffffffffffffffff, 0x1, 0x13, 0x0, &(0x7f0000003140)=0x8) mmap$auto(0x0, 0x40009, 0xa, 0x9b72, 0x2, 0x28000) r4 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, 0x0, 0x48402, 0x0) read$auto(r4, 0x0, 0x1f40) r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/fail-nth\x00', 0x8c2, 0x0) r6 = openat$auto_usbfs_devices_fops_usb(0xffffffffffffff9c, &(0x7f0000000180), 0x48402, 0x0) r7 = socket(0x2, 0x801, 0x100) poll$auto(&(0x7f0000000080)={r7, 0x81, 0x3}, 0x4, 0x7fffffff) connect$auto(0x3, &(0x7f0000000000), 0x55) read$auto_mon_fops_text_t_mon_text(r3, &(0x7f0000000100)=""/57, 0x39) read$auto(r6, 0x0, 0x0) writev$auto(r5, &(0x7f0000000200)={0x0, 0x7}, 0x3) syz_open_procfs$namespace(0x0, &(0x7f0000000280)='ns/pid_for_children\x00') write$auto(0x3, 0x0, 0xfdef) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sg0\x00', 0x400402, 0x0) 24m41.840918618s ago: executing program 0 (id=1994): prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) write$auto(0x3, 0x0, 0x100082) syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xeb, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x0, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/bus/usb/040/001\x00', 0x470801, 0x0) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0) ioctl$auto_SNDCTL_DSP_GETTRIGGER(r1, 0x80045010, &(0x7f0000004440)) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x1cb842, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20005, 0xdf, 0xeb1, r0, 0x3) setsockopt$auto(0xffffffffffffffff, 0x1, 0x1021, 0x0, 0xd) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x100000000, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) ioperm$auto(0x7, 0x6, 0x2) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x0) close_range$auto(0x2, 0xa, 0x0) listmount$auto(&(0x7f0000000000)={0x1f, @raw, 0x80000024, 0x0, 0x2}, 0x0, 0x0, 0x1) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0) r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000300)={&(0x7f0000000500)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16, @ANYBLOB="000428bd7000ffdbdf25050000002e0002002f7379732f6b65726e656c2f73656375726974792f746f6d6f796f2f64676d61696e5f706f6c69637900000005000b002300000008001d008d0d000008000400bbb4000008001500090000007f19ce422836dd553063314f3e14fab2ae2d8958c03d7a6e2a4e55005075158e21f5f86d63a21af5aed90c79e2dd80d8791dc6c633526224d9bc5725bec6c3da66143317c1cd28e9bafa4d"], 0x64}, 0x1, 0x0, 0x0, 0x4008000}, 0x4000) read$auto(r2, 0x0, 0xb4d3) 24m40.052988292s ago: executing program 0 (id=1999): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x2c, 0x3, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x202, 0x0) socket(0xa, 0x3, 0x73) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1, 0x1, 0x1) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) socket(0xa, 0x2, 0x0) socket(0xa, 0x2, 0x3a) socket(0xa, 0x2, 0x88) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/mmap_min_addr\x00', 0x101302, 0x0) signalfd$auto(0xffffffff, 0x0, 0x8) socket(0x2a, 0x2, 0x5) socket(0x2, 0x2, 0x1) io_uring_setup$auto(0x6, 0x0) io_uring_setup$auto(0x6, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) io_uring_setup$auto(0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001080)='/proc/thread-self/net/xfrm_stat\x00', 0x42080, 0x0) socketpair$auto(0x1ff, 0xf, 0x4, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) ioctl$auto_TCFLSH2(r0, 0x5457, 0x0) 24m39.739321181s ago: executing program 0 (id=2000): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:01/wakeup/wakeup1/prevent_suspend_time_ms\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)=""/62, 0x3e) (async) mmap$auto(0x0, 0x80004020009, 0xdf, 0xeb1, r0, 0x7ffe) (async) close_range$auto(0x2, 0x8, 0x0) clone$auto(0x3fff, 0xad3, 0x0, 0x0, 0x8000002) r1 = socket(0x11, 0x3, 0x2) (async, rerun: 32) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) (async, rerun: 32) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="130026bd70cdb91953b15cc1580008000300", @ANYRES32=r4], 0x24}, 0x1, 0x0, 0x0, 0x4004080}, 0x20040894) ioctl$sock_SIOCGIFINDEX(r1, 0x8953, 0x0) (async) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/pm_debug_messages\x00', 0xa001, 0x0) write$auto(r5, &(0x7f00000000c0)='7\x10\\\xa0\x04|\x03\x12\xfa\b\x1c\xe0k\x0f32Z0\xfbf\xe7\xe8\x97\a~\x00', 0xa3e) (async) syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000000140), r1) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400) (async, rerun: 64) openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2201, 0x0) (async, rerun: 64) socket(0x23, 0x1, 0x10) (async, rerun: 64) ioperm$auto(0x7, 0x5ad2, 0x8) (async, rerun: 64) modify_ldt$auto(0x1, 0x0, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0) r6 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) pread64$auto(r6, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{W\xed>\xe7l\xcb\x90\\/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x800, 0x400) (async) socket(0x1e, 0x1, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) r7 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0x21, 0x3, 0x9) (async, rerun: 32) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async, rerun: 32) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) select$auto(0xef, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r7, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) 24m38.975520042s ago: executing program 0 (id=2005): r0 = socket(0xa, 0x3, 0x5) sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0xc88, 0x0, 0x0, &(0x7f00000000c0), 0x8, 0x200}, 0x5}, 0x3b8b, 0x800) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socketpair$auto(0x1, 0x2, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) mbind$auto(0x9, 0x84, 0x4, 0x0, 0x80000000, 0x7f) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = socketpair$auto(0x9, 0x4, 0x7, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) shutdown$auto(0x200000003, 0x2) mlockall$auto(0x7) mbind$auto(0x5, 0x4, 0x6, &(0x7f0000000100)=0x2, 0x6, 0xffffffff) madvise$auto(0x0, 0x2000040080000004, 0xc) modify_ldt$auto(0x1, 0x0, 0x10) modify_ldt$auto(0x4000000, 0x0, 0x40100000000aa) recvmmsg$auto(0x3, 0x0, 0x86873cbd, 0xa, 0x0) getrandom$auto(0x0, 0xff, 0x2002) r2 = openat$auto_stat_fops_(0xffffffffffffff9c, &(0x7f0000003300), 0x80880, 0x0) read$auto_stat_fops_(r2, &(0x7f0000003340)=""/132, 0x84) mmap$auto(0x800000000001002, 0x6000000, 0x9, 0x16, r1, 0x300000002800) pread64$auto(0xffffffffffffffff, 0x0, 0x20000000001, 0x7fff) socket(0x2c, 0x80003, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x2000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000) sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, 0x0, 0x4000884) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000) getpid() pipe2$auto(&(0x7f00000000c0), 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4000084}, 0x800) 24m23.464870588s ago: executing program 32 (id=2005): r0 = socket(0xa, 0x3, 0x5) sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0xc88, 0x0, 0x0, &(0x7f00000000c0), 0x8, 0x200}, 0x5}, 0x3b8b, 0x800) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socketpair$auto(0x1, 0x2, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) mbind$auto(0x9, 0x84, 0x4, 0x0, 0x80000000, 0x7f) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = socketpair$auto(0x9, 0x4, 0x7, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) shutdown$auto(0x200000003, 0x2) mlockall$auto(0x7) mbind$auto(0x5, 0x4, 0x6, &(0x7f0000000100)=0x2, 0x6, 0xffffffff) madvise$auto(0x0, 0x2000040080000004, 0xc) modify_ldt$auto(0x1, 0x0, 0x10) modify_ldt$auto(0x4000000, 0x0, 0x40100000000aa) recvmmsg$auto(0x3, 0x0, 0x86873cbd, 0xa, 0x0) getrandom$auto(0x0, 0xff, 0x2002) r2 = openat$auto_stat_fops_(0xffffffffffffff9c, &(0x7f0000003300), 0x80880, 0x0) read$auto_stat_fops_(r2, &(0x7f0000003340)=""/132, 0x84) mmap$auto(0x800000000001002, 0x6000000, 0x9, 0x16, r1, 0x300000002800) pread64$auto(0xffffffffffffffff, 0x0, 0x20000000001, 0x7fff) socket(0x2c, 0x80003, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x2000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000) sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, 0x0, 0x4000884) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000) getpid() pipe2$auto(&(0x7f00000000c0), 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4000084}, 0x800) 7.93797559s ago: executing program 2 (id=5877): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8947, &(0x7f0000000240)={'vlan1\x00'}) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.1/usb11/11-0:1.0/usb11-port6/power/autosuspend_delay_ms\x00', 0x11da80, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/power/wakeup_total_time_ms\x00', 0x0, 0x0) r3 = ioctl$auto_TUNSETFILTEREBPF(0xffffffffffffffff, 0x800454e1, &(0x7f0000000080)=0xfffffff3) ioctl$auto_SW_SYNC_IOC_INC(r3, 0x40045701, &(0x7f00000000c0)=0x5) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) r4 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto_TIOCMGET2(0xffffffffffffffff, 0x5415, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) execve$auto(0x0, 0x0, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) r5 = clone$auto(0x4, 0x100001, 0x0, 0x0, 0x200) migrate_pages$auto(r5, 0x4, 0x0, &(0x7f0000000180)=0x2) sendmsg$auto_TIPC_NL_MEDIA_SET(r4, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000180)={&(0x7f0000001080)=ANY=[@ANYBLOB="f8410000", @ANYRES16=0x0, @ANYBLOB="000226bd7000fcdbdf250c0000000c00068008006400", @ANYRES32=r3, @ANYBLOB="e4150380be13f0aef0da8ab9dc51b3e27eca3330a0762bc4d5acb26996b27b43387475834cfd272207b10457d5dcb7674035c163e8804db2737279df1fc2842cbf778e57cf5fe38d33445d63d7d7f50f9ffea54ee20df27a9449ab8efb3b65c69df4c136998496aa0fb059d5902be0b13ea93b4224d0eafc6829b057545149e0030a7c9f6eff5188b169e90cfad242d6d75a38adfa732e633a1367677e98620ef293b648897af323b8928377a54bbc38d8847ef5f194ddf6e449a263c029196802a1474d2093570255417086781e74f0e17e2b838f19efbeb98b97f548a700448004004f809e821d9b53e971b100d81384f230a49aee57689b91b2a298a5e9750a12f491d95b8ef8b0fc86b2d9e1edb2aa4aa8026bf19086370db95dc37fc7961b1866ac47b2e995d91a4a8f81b1279e1da6206d9ce99a4780923bc13377c20ad3523107fe8ccdafd1dc65287fbc4ad435bf7a88c173744301c378c0af06252110a1797612bd7080c29c7ae08f06cf350400bd800800c400640101020800b600", @ANYRES32=0x0, @ANYBLOB, @ANYRES32, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=r5, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="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"], 0x41f8}}, 0x20000011) openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vkms/graphics/fb0/bits_per_pixel\x00', 0x82942, 0x0) sendfile$auto(r6, r6, 0x0, 0x200) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x129800, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r7 = openat$auto_hwflags_ops_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy0/hwflags\x00', 0x101000, 0x0) r8 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x28900, 0x0) r9 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/002/001\x00', 0xa901, 0x0) ioctl$auto_USBDEVFS_CONTROL(r9, 0xc0185500, &(0x7f0000001040)={0x1, 0xa, 0x400, 0x1, 0x9, 0xff, 0x0}) ioctl$auto(r8, 0x64d0, 0x40) read$auto_hwflags_ops_debugfs(r7, 0x0, 0x0) ioctl$auto(r1, 0x80045530, r2) read$auto(r2, 0x0, 0x20) sendfile$auto(0x1, 0x3, 0x0, 0x6) 6.427970434s ago: executing program 4 (id=5883): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x2, 0x400008, 0x8, 0x9b72, 0xffffffffffffffff, 0x0) close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x1, 0x0) socket(0xa, 0x3, 0xff) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x6, 0x101, 0x1, 0xfffffffffffffff1, 0x2, 0x8000) madvise$auto(0x0, 0x2000040080000004, 0xe) r0 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0) write$auto_proc_mem_operations_base(r0, &(0x7f0000001680)="a7", 0x80000) mmap$auto(0x0, 0x20009, 0x4001000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1) write$auto(0xffffffffffffffff, 0x0, 0x2b6) close_range$auto(0x2, 0x8, 0x0) 6.399354439s ago: executing program 2 (id=5885): r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/fail-nth\x00', 0x222602, 0x0) mmap$auto(0xfffffffffffffffe, 0xc, 0xdf, 0x20eb1, r0, 0x2) (async) close_range$auto(0x2, 0x8, 0x2000000) (async) io_uring_setup$auto(0x6, 0x0) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/audit\x00', 0x200, 0x0) (async) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) timer_create$auto(0x0, 0x0, 0x0) (async) timer_settime$auto(0x0, 0x803, &(0x7f0000000000)={{0x800000008, 0x6}, {0x9, 0x2}}, 0x0) (async) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/pcmC0D0p\x00', 0xa00, 0x0) (async) r2 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/trace_options\x00', 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xa0b3, 0x9b72, r2, 0x28000) (async) bpf$auto(0x23, 0x0, 0xe000000000000) (async) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram4\x00', 0x8fd01, 0x0) ioctl$auto_BLKRRPART(r3, 0x125f, 0x0) (async) open(0x0, 0x161342, 0x100) (async) msync$auto(0x1ffff000, 0x1800000ff010000, 0x400000004) (async) open(0x0, 0xeee00, 0x31) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x0) msgctl$auto(0x8000, 0x6, 0x0) socket(0x21, 0x2, 0x2) (async) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x34000, 0x948b, 0x3, 0x15f4da06, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) (async) socket(0xa, 0xa, 0x84) (async) socket(0xa, 0x801, 0x84) (async) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) (async) r4 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r4, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x6, 0x50b301a, 0x2c, 0x2c, 0x0, 0x2}) 6.330005167s ago: executing program 3 (id=5886): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x2, 0x1, 0x106) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) socket(0x2, 0x1, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/input/event0\x00', 0x40000, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/mnt\x00') r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x200009, 0x2, 0x40eb1, 0x602, 0x300000000000) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) madvise$auto(0x0, 0x20499d, 0x9) setsockopt$auto(r1, 0x80, 0xffffffff, 0x0, 0x4) mmap$auto(0x2, 0xa10004, 0xffb, 0x50, r1, 0x8000) ioctl$auto(0xffffffffffffffff, 0x541d, r1) sendmsg$auto_NL80211_CMD_SET_INTERFACE(r0, 0x0, 0x4000) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) madvise$auto(0x0, 0xffffffffffff0005, 0x19) socket(0xf, 0x3, 0x2) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0xd680000000) 5.369284328s ago: executing program 4 (id=5887): r0 = socket(0x15, 0x5, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0xa, 0x0) io_uring_setup$auto(0x6, 0x0) getsockopt$auto_SO_PASSCRED(r0, 0x2, 0x10, &(0x7f0000000000)='*\x00', &(0x7f0000000080)=0x5f) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x101440, 0x0) r1 = gettid() r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto(r2, 0x5522, 0xf15) ioctl$auto(r2, 0x5523, r2) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0x0, 0x0) fchownat$auto(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x90}, 0x20000081) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x8, 0x1ff, 0x7c6, 0x25, 0x4909b6f5, 0x1ffde, 0x7, 0x3, 0x20000009, 0x9, 0x3, 0x4, 0x1, 0xb5, 0x9, 0x8, 0x10003, 0x80, 0x3, 0xfffffffd, 0x1000, 0x22000, 0x200, 0x0, 0x84}, 0x1fe, 0xd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r3 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000140), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) r4 = socket(0x10, 0x3, 0x6) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x7ff, 0x9, 0x63, 0x0, 0x0, 0x0, 0x8, 0x200, 0x800000000100002, 0x40000406, 0x2, 0xc, 0x2, 0x11, 0x6, 0x7}) sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000400)=ANY=[@ANYRESOCT=r1, @ANYRES16=r4], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x6c011) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}, 0x1, 0x0, 0x0, 0x2000c000}, 0x4004) tkill$auto(r1, 0x7) 5.191584233s ago: executing program 2 (id=5889): clock_nanosleep$auto(0x0, 0x7, &(0x7f0000000180)={0x8000000000000000}, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000040), 0x2a540, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/swradio1\x00', 0x62100, 0x0) mmap$auto(0x0, 0xede8, 0xdf, 0x9b72, 0x5, 0x28000) io_uring_setup$auto(0xa, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) close_range$auto(0x2, 0xa, 0x0) recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000f80)={{0x0, 0x9, 0x0, 0x5, 0x0, 0x1, 0x80}, 0x8}, 0x10000, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x2, 0x801, 0x100) listen$auto(0x3, 0x81) poll$auto(&(0x7f0000000180)={r0, 0x6, 0x6}, 0x6, 0x8) listen$auto(r1, 0x1004) mmap$auto(0x0, 0xdb33, 0xe2, 0xeb1, 0x405, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) write$auto(0xffffffffffffffff, 0x0, 0xffe) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x1ff, 0xdf, 0x200000810, 0xffffffffffffffff, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/zram0/algorithm_params\x00', 0xa001, 0x0) write$auto(r2, &(0x7f0000000540)='7\x81=\"\xad\xff\x8d\xf9;\x18\xa4\xb0\xb4\xd9\x82=\xe1P~\x17\xfb&L\xeb=j\a\xf1y\xb3\"', 0x81) madvise$auto(0x0, 0x200007, 0x19) madvise$auto(0x0, 0x2003f0, 0x15) madvise$auto(0x3, 0x1d, 0x7) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x29a02, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000001080)='/dev/v4l-touch5\x00', 0x2040, 0x0) madvise$auto(0x100000, 0xfffffffffffefffd, 0xf) open(0x0, 0xa240, 0x15e) 4.433097912s ago: executing program 4 (id=5890): r0 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/dri/vkms/gem_names\x00', 0x101402, 0x0) read$auto_drm_debugfs_entry_fops_drm_debugfs(r0, &(0x7f0000000240)=""/194, 0xc2) r1 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x0) socket(0x2, 0x1, 0x0) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x2, 0x4, 0x8201, 0xfffffffb, 0x408, 0xc, 0xe3, 0x4000000002, 0x3}, 0x6f4) syz_genetlink_get_family_id$auto_ovs_meter(0x0, 0xffffffffffffffff) close_range$auto(0x0, 0x5, 0x0) fanotify_init$auto(0x5, 0x2000000000002) r2 = inotify_init1$auto(0x3000000000000) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000340), r3) sendmsg$auto_SMC_NETLINK_DUMP_UEID(r1, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000280)={0x5c, r4, 0x4, 0x70bd27, 0x25dfdbfb, {}, "9ad91aef43210043628b763ed01b29f84515e376c14b2d99603b8a7278e1c89f520a507f46c27db8564ac059dfa8d35ad53bbc3870f35f868a90fe3d6c3629a5397fd7a860"}, 0x5c}, 0x1, 0x0, 0x0, 0x10000004}, 0x884) socket(0x15, 0x5, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/module/kvm_intel/parameters/vmentry_l1d_flush\x00', 0x82942, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) read$auto_proc_iter_file_ops_compat_inode(r2, &(0x7f0000000380)=""/255, 0xff) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x48000, 0x0) r5 = openat$auto_stats_fops_2(0xffffffffffffff9c, &(0x7f0000000580), 0x400, 0x0) recvmmsg$auto(r5, &(0x7f00000007c0)={{&(0x7f00000005c0)="53c6aaeb75e25d3c07576c588db6011392115edb23b3105a29c49d7fe082684b70ac2b40d79d2d0be767fd6eddcbaa57c44f06cbf2f87214234a528804b4e3b8b6c9a580a0d736936cd1c827885d509059c3de8f5d508001385d59e1844cc98934aca8446ea00454798297fe3a321991fe9f3b94f6cca0bfbfd000c8f0dfc1c8f0a3163b26822e296577b2", 0x1, &(0x7f0000000700)={&(0x7f0000000680)="586fd1ba7053472795b727a37f96ecfd2d2533736b06dcaa4f051a91f596bc298c09825c816befc3377d21a1bff7524ae571040047f7a8c3f21f8c27ea8c801a67498e60d3f1cb7c0f7e79fe16529a7d370ae94cb3aaabec46322c3978d24574351f59bf794a", 0x2}, 0xfff, &(0x7f0000000740)="829b8361d67b4e1ed7f154f218b53cf5291fbabfaeb618e696aae6ede699985b2403baaf4e2e7d1dee9e7515e6aa177ffd0a1c8f310184ebc49c77e77b5b6ed6c153a1ad824292350bef7530e7357fdc3505dcfb6518ae8b50fa898e174f6e313fef8b6b9d", 0x81, 0xd}, 0x9}, 0x1, 0xa, &(0x7f0000000800)={0x2, 0x2}) r6 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/adsp1\x00', 0x40002, 0x0) ioctl$auto_SOUND_MIXER_READ_RECSRC2(r6, 0x80044dff, &(0x7f0000000500)="56fc984a9a1e85fdd49ebadc4f30927157c1da11d6b78185befa8e5ae714fef81176a555d99e1123fadfa3df155f04d9526509d4a50f576774bc071a14cb4565d75da90609d53673ec5164fe701023") openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x200, 0x0) mmap$auto(0x0, 0x2000a, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) 4.273425707s ago: executing program 3 (id=5891): mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x602, 0x1) fanotify_mark$auto(0x0, 0x451, 0x40, 0xffffffffffffffff, 0x0) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) socket(0xa, 0x801, 0x106) pipe2$auto(0x0, 0x4800) splice$auto(0x4, 0x0, 0x2, 0x0, 0x1000, 0xf) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x200, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x7, 0x0, 0x0, 0x0, 0x0) r1 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000000), 0x88600, 0x0) ioctl$auto_UBI_IOCATT(r1, 0x40186f40, 0x0) r2 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r2, 0x0, 0x1, 0x0, 0x1e) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) socket(0xa, 0x802, 0x3a) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x44) socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x90}, 0x20000081) 3.667561918s ago: executing program 2 (id=5893): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) mmap$auto(0x0, 0x10000, 0xde, 0x11, r0, 0x28000) madvise$auto(0x0, 0x2000040080000004, 0xe) fcntl$auto_F_SETLK(r0, 0x6, 0x0) madvise$auto(0x0, 0x2003f0, 0x15) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) writev$auto(0x3, 0x0, 0x8009) setitimer$auto(0x0, 0xfffffffffffffffe, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x0, 0x0) ioctl$auto(r1, 0x900064b6, 0x6162) pwritev$auto(0x3, 0x0, 0x5, 0x3, 0x9) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_PHY_GET(r2, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000000040)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="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"], 0x2c}, 0x1, 0x0, 0x0, 0x2404c012}, 0x80) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000040), r4) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000640)={'wlan1\x00', 0x0}) sendmsg$auto_NETDEV_CMD_QSTATS_GET(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="310001e0", @ANYRES16=r5, @ANYBLOB="010329bd700001dcdf250c00000008000100", @ANYRES32=r7, @ANYBLOB="08000100", @ANYRES32=r7, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x20000000) sendmsg$auto_NETDEV_CMD_NAPI_GET(r2, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x34, r5, 0x8, 0x70bd25, 0x25dfdbfe, {}, [@NETDEV_A_NAPI_ID={0x8, 0x2, 0x8}, @NETDEV_A_NAPI_ID={0x8, 0x2, 0x3}, @NETDEV_A_NAPI_ID={0x8, 0x2, 0x6}, @NETDEV_A_NAPI_ID={0x8, 0x2, 0x8e}]}, 0x34}, 0x1, 0x0, 0x0, 0x40001}, 0x2404c874) 3.571493052s ago: executing program 1 (id=5894): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x41900, 0x0) read$auto(r0, 0x0, 0xe8) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f682, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket(0xf, 0x3, 0x2) r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/security/tomoyo/stat\x00', 0x40802, 0x0) read$auto(r2, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0xfdef) 2.940072577s ago: executing program 4 (id=5895): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x41900, 0x0) read$auto(r0, 0x0, 0xe8) writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f682, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0xa, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram11\x00', 0x20000, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/mptcp/pm_type\x00', 0xe0002, 0x0) r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/security/tomoyo/stat\x00', 0x40802, 0x0) read$auto(r1, 0x0, 0xb4d3) 2.776935697s ago: executing program 4 (id=5896): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x2, 0x400008, 0x8, 0x9b72, 0xffffffffffffffff, 0x0) close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x1, 0x0) socket(0xa, 0x3, 0xff) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x6, 0x101, 0x1, 0xfffffffffffffff1, 0x2, 0x8000) madvise$auto(0x0, 0x2000040080000004, 0xe) r0 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0) write$auto_proc_mem_operations_base(r0, &(0x7f0000001680)="a7", 0x80000) mmap$auto(0x0, 0x20009, 0x4001000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1) write$auto(0xffffffffffffffff, 0x0, 0x2b6) close_range$auto(0x2, 0x8, 0x0) 2.756026637s ago: executing program 1 (id=5897): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000580)={0x1c, r1, 0x301, 0x70b52c, 0x25dfdbfb, {}, [@CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x17}]}, 0x1c}, 0x1, 0x0, 0x0, 0x400c01d}, 0x0) (fail_nth: 2) 2.709280989s ago: executing program 3 (id=5898): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) mmap$auto(0x0, 0x10000, 0xde, 0x11, r0, 0x28000) madvise$auto(0x0, 0x2000040080000004, 0xe) fcntl$auto_F_SETLK(r0, 0x6, 0x0) madvise$auto(0x0, 0x2003f0, 0x15) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) writev$auto(0x3, 0x0, 0x8009) setitimer$auto(0x0, 0xfffffffffffffffe, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x0, 0x0) ioctl$auto(r1, 0x900064b6, 0x6162) pwritev$auto(0x3, 0x0, 0x5, 0x3, 0x9) read$auto(0x3, 0x0, 0xf34) write$auto(0x3, 0x0, 0xffd8) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_PHY_GET(r2, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000000040)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="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"], 0x2c}, 0x1, 0x0, 0x0, 0x2404c012}, 0x80) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000040), r4) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000640)={'wlan1\x00', 0x0}) sendmsg$auto_NETDEV_CMD_QSTATS_GET(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="310001e0", @ANYRES16=r5, @ANYBLOB="010329bd700001dcdf250c00000008000100", @ANYRES32=r7, @ANYBLOB, @ANYRES32=r7, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x20000000) sendmsg$auto_NETDEV_CMD_NAPI_GET(r2, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x34, r5, 0x8, 0x70bd25, 0x25dfdbfe, {}, [@NETDEV_A_NAPI_ID={0x8, 0x2, 0x8}, @NETDEV_A_NAPI_ID={0x8, 0x2, 0x3}, @NETDEV_A_NAPI_ID={0x8, 0x2, 0x6}, @NETDEV_A_NAPI_ID={0x8, 0x2, 0x8e}]}, 0x34}, 0x1, 0x0, 0x0, 0x40001}, 0x2404c874) 2.231487611s ago: executing program 1 (id=5899): r0 = socket(0x15, 0x5, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0xa, 0x0) io_uring_setup$auto(0x6, 0x0) getsockopt$auto_SO_PASSCRED(r0, 0x2, 0x10, &(0x7f0000000000)='*\x00', &(0x7f0000000080)=0x5f) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x101440, 0x0) r1 = gettid() r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto(r2, 0x5522, 0xf15) ioctl$auto(r2, 0x5523, r2) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0x0, 0x0) fchownat$auto(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x90}, 0x20000081) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x8, 0x1ff, 0x7c6, 0x25, 0x4909b6f5, 0x1ffde, 0x7, 0x3, 0x20000009, 0x9, 0x3, 0x4, 0x1, 0xb5, 0x9, 0x8, 0x10003, 0x80, 0x3, 0xfffffffd, 0x1000, 0x22000, 0x200, 0x0, 0x84}, 0x1fe, 0xd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r3 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000140), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) r4 = socket(0x10, 0x3, 0x6) sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000400)=ANY=[@ANYRESOCT=r1, @ANYRES16=r4], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x6c011) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}, 0x1, 0x0, 0x0, 0x2000c000}, 0x4004) tkill$auto(r1, 0x7) 2.141130775s ago: executing program 4 (id=5900): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x2, 0x1, 0x106) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) socket(0x2, 0x1, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/input/event0\x00', 0x40000, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/mnt\x00') r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x200009, 0x2, 0x40eb1, 0x602, 0x300000000000) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) madvise$auto(0x0, 0x20499d, 0x9) setsockopt$auto(r1, 0x80, 0xffffffff, 0x0, 0x4) mmap$auto(0x2, 0xa10004, 0xffb, 0x50, r1, 0x8000) ioctl$auto(0xffffffffffffffff, 0x541d, r1) sendmsg$auto_NL80211_CMD_SET_INTERFACE(r0, 0x0, 0x4000) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) madvise$auto(0x0, 0xffffffffffff0005, 0x19) socket(0xf, 0x3, 0x2) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0xd680000000) 2.026528832s ago: executing program 1 (id=5901): openat$auto_fops_ulong_ro_(0xffffffffffffff9c, 0x0, 0x1010c0, 0x0) lsm_get_self_attr$auto(0x0, 0x0, 0x0, 0xbe5) (async) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) (async) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/rdma_readwrite_threshold\x00', 0x48041, 0x0) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) (async) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async) r2 = socket(0x2, 0x3, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async) sendmsg$auto_NL80211_CMD_SET_QOS_MAP(r2, 0x0, 0x80) (async) setsockopt$auto(0x3, 0x0, 0x5, 0x0, 0x28) (async) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) (async) setsockopt$auto(0x3, 0x0, 0x5, 0x0, 0x28) (async) r3 = openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x2082, 0x0) r4 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cpu/0/cpuid\x00', 0x200000, 0x0) setsockopt$auto_SO_DONTROUTE(r4, 0x1, 0x5, &(0x7f0000000340)='/sys/devices/platform/vidtv.0/i2c-0/delete_device\x00', 0x10000) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/fs/orangefs/dcache_timeout_msecs\x00', 0x8ea182, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000000)="42bf", 0x2) (async) r6 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) ioctl$auto_UI_SET_SWBIT(r6, 0x4004556d, 0x0) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/platform/vidtv.0/i2c-0/delete_device\x00', 0x1, 0x0) (async) write$auto_drm_edid_fops_drm_debugfs(r3, 0x0, 0x0) (async) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000140), r7) sendmsg$auto_ETHTOOL_MSG_WOL_SET(r7, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000240)={&(0x7f00000003c0)=ANY=[@ANYBLOB="18000000", @ANYRES16=0x0, @ANYBLOB="c75ee1dfa43630f8f424e331b25145912a8673aba84849866734f38431a8650eac468d83de2ebe512080e65c339a1f18002e4628d57b840c9d78decfa3a1f1db9710b605120bb4219620feee30f77161fd5bc114451ec9dffbdc24f9a5798e60655fb7fdb4dc68ea694214c0c9b5b72661b36e7f594ff35ad303086e98c101e630329f5193dc898f465a0316fbd5d4ff7b2246695c45ad02578c11fb6c27644efd125762f37795abf2398f7aa3bfa5c459ab30c9f0f990d86eafcf542a523ddfabf46ead160259bbb48d1789dfbfef020da8c289e125bd97d95d749633006af8d8168fcb1639bf177c5c778dc5ecbaf8cf9fa1ab"], 0x18}, 0x1, 0x0, 0x0, 0x810}, 0x40004) (async) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x14, r8, 0x1, 0x70bd26, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x44004811}, 0x40000c0) 1.360867558s ago: executing program 2 (id=5902): clock_nanosleep$auto(0x0, 0x7, &(0x7f0000000180)={0x8000000000000000}, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000040), 0x2a540, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/swradio1\x00', 0x62100, 0x0) mmap$auto(0x0, 0xede8, 0xdf, 0x9b72, 0x5, 0x28000) io_uring_setup$auto(0xa, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) close_range$auto(0x2, 0xa, 0x0) recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000f80)={{0x0, 0x9, 0x0, 0x5, 0x0, 0x1, 0x80}, 0x8}, 0x10000, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x2, 0x801, 0x100) listen$auto(0x3, 0x81) poll$auto(&(0x7f0000000180)={r0, 0x6, 0x6}, 0x6, 0x8) listen$auto(r1, 0x1004) mmap$auto(0x0, 0xdb33, 0xe2, 0xeb1, 0x405, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) write$auto(0xffffffffffffffff, 0x0, 0xffe) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x1ff, 0xdf, 0x200000810, 0xffffffffffffffff, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/zram0/algorithm_params\x00', 0xa001, 0x0) write$auto(r2, &(0x7f0000000540)='7\x81=\"\xad\xff\x8d\xf9;\x18\xa4\xb0\xb4\xd9\x82=\xe1P~\x17\xfb&L\xeb=j\a\xf1y\xb3\"', 0x81) madvise$auto(0x0, 0x200007, 0x19) madvise$auto(0x0, 0x2003f0, 0x15) madvise$auto(0x3, 0x1d, 0x7) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x29a02, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000001080)='/dev/v4l-touch5\x00', 0x2040, 0x0) madvise$auto(0x100000, 0xfffffffffffefffd, 0xf) open(0x0, 0xa240, 0x15e) 1.227391505s ago: executing program 1 (id=5903): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), r0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) mount_setattr$auto(0x0, 0xfffffffffffffffe, 0x100, 0x0, 0x6) r1 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) fcntl$auto(r1, 0x400, 0x1) execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) socket(0xa, 0x2, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ip6_mr_vif\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000140)=""/12, 0xc) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd3/queue/iosched/write_expire\x00', 0x20681, 0x0) r3 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) r4 = openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/buffer_percent\x00', 0x1, 0x0) writev$auto(r4, 0x0, 0x9) fcntl$auto(r3, 0xfffffffd, 0x0) r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x101a02, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r5, 0xc1105517, &(0x7f00000001c0)={{@raw=0xfff, 0x100110d, 0xfffd, 0x6, "e927783f468fa2e92fe8ec7a46cbb766439daa1ee1aa0000000000040000660e0701000000000000008000"}, 0x6, 0x0, 0x4, @raw=0x404, @enumerated={0x55d3, 0x7, "bf154d70dcfcea02faacb07c4222db1f207fdb681dc9b0bf2c6c9ce16d51ebc73df6a7aa16659cd5e4dc8374caf945548e604179f1f87c3bd8701d3d5c3d998c", 0xffffffffffffffff, 0x91e0}, "a4699d30a05edbe0d28473c399a7dc920b153e9b1675451d7de94b4123f970bedd3460c667373fcc59b584d81592f6ab606c276852295e00af49e6de6e768034"}) execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) execve$auto(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) r6 = openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/ubifs/chk_lprops\x00', 0x40400, 0x0) read$auto_dfs_global_fops_debug(r6, 0x0, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f00000000c0)='-7', 0x2) close_range$auto(0x2, 0x8, 0x0) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/vkms/graphics/fb0/blank\x00', 0xa001, 0x0) write$auto(r7, &(0x7f0000000140)='7\x00\xb1\x9a\xc0\xf9\xc0e\xd2T\xbe\xb6I\x9d\xd9\x18\xf5\x91\xbfq\xfe\xf2\x9a\x02\x9fC0xb\xccW(\xc1n+\n|5\xa5\x9c=^\xf1\x11H\x1c\xf73\x16\xd2\a\xfaw\xcc\xf1\xff7\xab\xa1\xeaF\x04\x17\x99\xd3\xd1\x83\xccG^\xbbdC\x8a\n\x88\xbcW@+\xafD\xd1\x8a\xc13W\xf66\x86\xe5\xee\xa7\x1d\x0f\x90\x00\xcf\xdb\xf5\xbf\xd4\xc8\x84\xb3\xeeb\xb0\xc7kN\x80\x93\xfd\x89\xe1\xc9tp\xd4jm\x7f\xf0a\xc3\x02\x14\xcf\xcf\\e!\a\x82\t,\xa7\x00\xbd&\xcax\xf8P\xc1\x8f\x87\x83\x0f\x93z', 0x1) 1.050767733s ago: executing program 3 (id=5904): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x41900, 0x0) read$auto(r0, 0x0, 0xe8) writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f682, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0xa, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram11\x00', 0x20000, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/mptcp/pm_type\x00', 0xe0002, 0x0) r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/security/tomoyo/stat\x00', 0x40802, 0x0) read$auto(r1, 0x0, 0xb4d3) 568.897755ms ago: executing program 3 (id=5905): r0 = socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socketpair$auto(0x3, 0x5, 0x7, 0x0) setsockopt$auto(0x3, 0x0, 0x13, 0x0, 0x9) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x37}}, 0x6e) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) write$auto(0x3, 0x0, 0xfffffdef) (fail_nth: 7) 300.672617ms ago: executing program 1 (id=5906): openat$auto_bm_register_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000001a00), 0x4080, 0x0) ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000001a40)) openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/set_event\x00', 0xa00, 0x0) readv$auto(0x3, 0x0, 0x1) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) mmap$auto(0x0, 0x22009, 0x4000000000df, 0xeb1, 0x401, 0x8400) r0 = socket(0xa, 0x1, 0x100) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) sendmsg$auto_TIPC_NL_PUBL_GET(r0, &(0x7f00000019c0)={&(0x7f0000000080), 0xc, &(0x7f0000001980)={&(0x7f00000001c0)={0x14, 0x0, 0x300, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x2000c000}, 0x80) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) r2 = open(0x0, 0x261c2, 0x84) mincore$auto(0x1000, 0x8001, 0x0) read$auto(0x3, 0x0, 0x80) ptrace$auto(0x4206, 0x1, 0x0, 0x200005) ioctl$auto_XFS_IOC_OPEN_BY_HANDLE(r2, 0xc038586b, &(0x7f0000000400)={r1, &(0x7f0000000200)="555d58daa41f963498466b79751c8f116932ae25ccbc2397d789e170ad1ed4a7734328c5adeedeac0f157e0318aab071ee70578efea77438784c8de0799da2745417d360cd2ec1cbf1265672036b38f38ed2fe4aa2f010aec98b532c71aacfd052ae0a919a2e98", 0x7, &(0x7f0000000280)="e5a419d8357c4ccda7da30544a05b1cbfc0a520c7432132505833fbdf2fc5d10526b8862d865674a64c92ec3a345275b6be89a6e177bed6421980a41d3afbf2c1c11410b0840fd125e0b9a4800b02c36bf25a5e5e9bb8e3d5dea19c0e26c9b840509631d8f233a7989141d7749f8a59ccc9c76acf2b55b427abea57ef50a838062833904fe3ce6818d557941596c2c5a08f3ee659a72ebca27ba502b9c437403e0aab766c3c0a7c9f79d557f346612eec7287a6ec68cd834c36448cafb9d0ab2848e41d34dbf1a7ad68a53752a51152da31f7174b1f4ebf635941a6681cf044ad7fbcf6a1ff0ea4cf7dc2ed6ac0caae3bd91d8caec7b1d987b", 0x6, &(0x7f0000000380), &(0x7f00000003c0)=0x74c}) 115.677205ms ago: executing program 3 (id=5907): openat$auto_bm_register_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000001a00), 0x4080, 0x0) ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000001a40)) openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/set_event\x00', 0xa00, 0x0) readv$auto(0x3, 0x0, 0x1) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) mmap$auto(0x0, 0x22009, 0x4000000000df, 0xeb1, 0x401, 0x8400) r0 = socket(0xa, 0x1, 0x100) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) sendmsg$auto_TIPC_NL_PUBL_GET(r0, &(0x7f00000019c0)={&(0x7f0000000080), 0xc, &(0x7f0000001980)={&(0x7f00000001c0)={0x14, 0x0, 0x300, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x2000c000}, 0x80) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) r2 = open(0x0, 0x261c2, 0x84) mincore$auto(0x1000, 0x8001, 0x0) read$auto(0x3, 0x0, 0x80) (fail_nth: 2) ptrace$auto(0x4206, 0x1, 0x0, 0x200005) ioctl$auto_XFS_IOC_OPEN_BY_HANDLE(r2, 0xc038586b, &(0x7f0000000400)={r1, &(0x7f0000000200)="555d58daa41f963498466b79751c8f116932ae25ccbc2397d789e170ad1ed4a7734328c5adeedeac0f157e0318aab071ee70578efea77438784c8de0799da2745417d360cd2ec1cbf1265672036b38f38ed2fe4aa2f010aec98b532c71aacfd052ae0a919a2e98", 0x7, &(0x7f0000000280)="e5a419d8357c4ccda7da30544a05b1cbfc0a520c7432132505833fbdf2fc5d10526b8862d865674a64c92ec3a345275b6be89a6e177bed6421980a41d3afbf2c1c11410b0840fd125e0b9a4800b02c36bf25a5e5e9bb8e3d5dea19c0e26c9b840509631d8f233a7989141d7749f8a59ccc9c76acf2b55b427abea57ef50a838062833904fe3ce6818d557941596c2c5a08f3ee659a72ebca27ba502b9c437403e0aab766c3c0a7c9f79d557f346612eec7287a6ec68cd834c36448cafb9d0ab2848e41d34dbf1a7ad68a53752a51152da31f7174b1f4ebf635941a6681cf044ad7fbcf6a1ff0ea4cf7dc2ed6ac0caae3bd91d8caec7b1d987b", 0x6, &(0x7f0000000380), &(0x7f00000003c0)=0x74c}) 0s ago: executing program 2 (id=5908): sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00042cbd7000fb3d89cb80"], 0x24}, 0x1, 0x0, 0x0, 0x20008010}, 0x400d0) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}, 0x1, 0x0, 0x0, 0x4000804}, 0x40000) (async) r0 = socket(0x10, 0x2, 0x0) (async, rerun: 32) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f000001f300), 0xffffffffffffffff) (rerun: 32) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRES32=r1], 0x1ac}}, 0x40000) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4) r2 = syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x2000021}, 0x0, 0x0, 0x0, 0x0}, 0x58) mq_open$auto(0x0, 0x0, 0x1, &(0x7f0000000280)={0x3, 0x5, 0x100000001, 0x62}) (async) mmap$auto(0x8001, 0xff, 0x80000001, 0x1010, 0xffffffffffffffff, 0x28004) (async) mmap$auto(0xc1, 0x2000, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) (async) socket(0x29, 0x5, 0x8) (async) socket(0xa, 0x1, 0x100) r3 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20881, 0x0) write$auto(r3, &(0x7f0000000040)='/dev/input/event1\x00', 0x10001) (async, rerun: 64) ioctl$auto_USBDEVFS_ALLOW_SUSPEND(0xffffffffffffffff, 0x5522, 0x0) (rerun: 64) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) sysfs$auto(0x0, 0x9, 0x7) prctl$auto(0x20000004, 0x1, r2, 0x8000, 0x0) r5 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0) mq_timedsend$auto(r5, &(0x7f0000000200)='\\*)A\x00', 0x2, 0x6, &(0x7f0000000240)={0x3, 0x101}) (async) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) (async) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0x1d, 0x8fd6, 0x400000000000948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) (async) write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) (async, rerun: 64) select$auto(0xe, 0x0, 0x0, &(0x7f0000000240)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x2]}, 0x0) (async, rerun: 64) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0xb02, 0x0) (async) readlinkat$auto(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='\\\x00', 0x80) (async) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) kernel console output (not intermixed with test programs): 0 RSI: 0000000000000010 RDI: 0000000002360411 [ 2159.598646][T31997] RBP: 00007f2399010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 2159.598666][T31997] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 2159.598685][T31997] R13: 0000000000000000 R14: 00007f23991b5fa0 R15: 00007ffed00dbbd8 [ 2159.598735][T31997] [ 2163.116356][T12772] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260 [ 2163.116406][T12772] Bluetooth: hci4: unexpected subevent 0x0d length: 725 > 260 [ 2163.132253][T12772] Bluetooth: hci4: Unknown advertising packet type: 0x7f [ 2163.132280][T12772] Bluetooth: hci4: adv larger than maximum supported [ 2163.139579][T12772] Bluetooth: hci4: Unknown advertising packet type: 0x73 [ 2163.146665][T12772] Bluetooth: hci4: adv larger than maximum supported [ 2163.155343][T12772] Bluetooth: hci4: Malformed LE Event: 0x0d [ 2164.585999][T32071] ubi0: attaching mtd0 [ 2164.625049][T32071] ubi0: scanning is finished [ 2164.629723][T32071] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 2164.762638][T32071] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 2165.615235][T32077] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 2165.649636][T32077] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 2165.668583][T32077] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2165.685090][T32077] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 2165.706017][T32077] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2165.712169][T32077] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 2165.766111][T32077] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2165.774929][T32077] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 2166.892433][T12772] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 2166.892481][T12772] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 2166.907903][T12772] bt_err_ratelimited: 2 callbacks suppressed [ 2166.907926][T12772] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 2166.913976][T12772] Bluetooth: hci1: adv larger than maximum supported [ 2166.921166][T12772] Bluetooth: hci1: Unknown advertising packet type: 0x73 [ 2166.927935][T12772] Bluetooth: hci1: adv larger than maximum supported [ 2166.935040][T12772] Bluetooth: hci1: adv larger than maximum supported [ 2166.941789][T12772] Bluetooth: hci1: Unknown advertising packet type: 0x20 [ 2166.949776][T12772] Bluetooth: hci1: Malformed LE Event: 0x0d [ 2167.224862][T12772] Bluetooth: hci1: command 0x0406 tx timeout [ 2167.708173][T12772] Bluetooth: hci3: command 0x0406 tx timeout [ 2167.784398][T12772] Bluetooth: hci0: command 0x0406 tx timeout [ 2167.790609][T21807] Bluetooth: hci4: command 0x0406 tx timeout [ 2169.284868][T32124] random: crng reseeded on system resumption [ 2169.304373][T12772] Bluetooth: hci1: command 0x0406 tx timeout [ 2169.786759][T12772] Bluetooth: hci3: command 0x0406 tx timeout [ 2169.874615][T12772] Bluetooth: hci0: command 0x0406 tx timeout [ 2169.880792][T21807] Bluetooth: hci4: command 0x0406 tx timeout [ 2170.111100][T32128] binder: 32126:32128 ioctl 4030582b 6 returned -22 [ 2170.829357][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 2170.836997][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 2171.479377][T12772] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 2171.479425][T12772] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 2171.494340][T12772] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 2171.494374][T12772] Bluetooth: hci0: adv larger than maximum supported [ 2171.501451][T12772] Bluetooth: hci0: Unknown advertising packet type: 0x73 [ 2171.513811][T12772] Bluetooth: hci0: adv larger than maximum supported [ 2171.521063][T12772] Bluetooth: hci0: Malformed LE Event: 0x0d [ 2172.033676][T32159] ubi0: attaching mtd0 [ 2172.039827][T32159] ubi0: scanning is finished [ 2172.047934][T32159] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 2172.297651][T32159] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 2174.549000][T32181] binder: 32180:32181 ioctl 4030582b 6 returned -22 [ 2180.661889][T32253] ubi0: attaching mtd0 [ 2180.679095][T32253] ubi0: scanning is finished [ 2180.683752][T32253] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 2181.003785][T32253] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 2181.574097][T32265] ubi0: attaching mtd0 [ 2181.579738][T32265] ubi0: scanning is finished [ 2181.584881][T32265] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 2181.742759][T32265] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 2182.639133][T12772] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 2182.639180][T12772] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 2182.655210][T12772] bt_err_ratelimited: 2 callbacks suppressed [ 2182.655233][T12772] Bluetooth: hci3: Unknown advertising packet type: 0x7f [ 2182.661279][T12772] Bluetooth: hci3: adv larger than maximum supported [ 2182.668694][T12772] Bluetooth: hci3: Unknown advertising packet type: 0x73 [ 2182.675526][T12772] Bluetooth: hci3: adv larger than maximum supported [ 2182.682602][T12772] Bluetooth: hci3: adv larger than maximum supported [ 2182.689383][T12772] Bluetooth: hci3: Unknown advertising packet type: 0x20 [ 2182.696222][T12772] Bluetooth: hci3: Malformed LE Event: 0x0d [ 2183.156129][T32276] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5332'. [ 2183.884632][T32289] ubi0: attaching mtd0 [ 2183.890431][T32289] ubi0: scanning is finished [ 2183.895507][T32289] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 2184.158667][T32289] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 2185.065510][T12772] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260 [ 2185.065561][T12772] Bluetooth: hci4: unexpected subevent 0x0d length: 725 > 260 [ 2185.082965][T12772] Bluetooth: hci4: Unknown advertising packet type: 0x7f [ 2185.082999][T12772] Bluetooth: hci4: adv larger than maximum supported [ 2185.090432][T12772] Bluetooth: hci4: Unknown advertising packet type: 0x73 [ 2185.097904][T12772] Bluetooth: hci4: adv larger than maximum supported [ 2185.105533][T12772] Bluetooth: hci4: Malformed LE Event: 0x0d [ 2185.113427][T32307] ubi0: attaching mtd0 [ 2185.232614][T32307] ubi0: scanning is finished [ 2185.237887][T32307] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 2185.539210][T32307] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 2186.435200][T12772] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 2186.435296][T12772] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 2186.450571][T12772] Bluetooth: hci0: Malformed LE Event: 0x0d [ 2187.234856][T32330] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 2189.050856][T32354] ubi0: attaching mtd0 [ 2189.056540][T32354] ubi0: scanning is finished [ 2189.062842][T32354] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 2189.569004][T32354] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 2193.153620][T32406] binder: 32405:32406 ioctl 4030582b 6 returned -22 [ 2193.445275][T32414] ubi0: attaching mtd0 [ 2193.450889][T32414] ubi0: scanning is finished [ 2193.455816][T32414] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 2193.995414][T32414] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 2194.004114][T32422] ubi0: attaching mtd0 [ 2194.011520][T32422] ubi0: scanning is finished [ 2194.016702][T32422] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 2194.155090][T32422] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 2195.955935][T12772] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 2195.955981][T12772] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 2195.971189][T12772] bt_err_ratelimited: 8 callbacks suppressed [ 2195.971212][T12772] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 2195.977308][T12772] Bluetooth: hci0: adv larger than maximum supported [ 2195.986662][T12772] Bluetooth: hci0: Unknown advertising packet type: 0x73 [ 2195.993398][T12772] Bluetooth: hci0: adv larger than maximum supported [ 2196.000593][T12772] Bluetooth: hci0: adv larger than maximum supported [ 2196.007388][T12772] Bluetooth: hci0: Unknown advertising packet type: 0x20 [ 2196.014109][T12772] Bluetooth: hci0: Malformed LE Event: 0x0d [ 2197.338115][T12772] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 2197.338166][T12772] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 2197.353652][T12772] Bluetooth: hci3: Unknown advertising packet type: 0x7f [ 2197.353711][T12772] Bluetooth: hci3: adv larger than maximum supported [ 2197.361274][T12772] Bluetooth: hci3: Unknown advertising packet type: 0x73 [ 2197.368467][T12772] Bluetooth: hci3: adv larger than maximum supported [ 2197.375789][T12772] Bluetooth: hci3: Malformed LE Event: 0x0d [ 2199.869998][T32489] binder: 32487:32489 ioctl 4030582b 6 returned -22 [ 2200.785136][T12772] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 2200.785187][T12772] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 2200.800668][T12772] Bluetooth: hci3: Malformed LE Event: 0x0d [ 2203.649794][T32545] ubi0: attaching mtd0 [ 2203.655719][T32545] ubi0: scanning is finished [ 2203.660368][T32545] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 2203.840767][T32545] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 2205.016353][T32563] FAULT_INJECTION: forcing a failure. [ 2205.016353][T32563] name failslab, interval 1, probability 0, space 0, times 0 [ 2205.076276][T32563] CPU: 0 UID: 0 PID: 32563 Comm: syz.4.5393 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2205.076329][T32563] Tainted: [U]=USER [ 2205.076340][T32563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2205.076360][T32563] Call Trace: [ 2205.076372][T32563] [ 2205.076384][T32563] dump_stack_lvl+0x16c/0x1f0 [ 2205.076440][T32563] should_fail_ex+0x512/0x640 [ 2205.076497][T32563] should_failslab+0xc2/0x120 [ 2205.076542][T32563] __kmalloc_cache_noprof+0x6a/0x3e0 [ 2205.076578][T32563] ? sctp_add_bind_addr+0xae/0x3f0 [ 2205.076639][T32563] sctp_add_bind_addr+0xae/0x3f0 [ 2205.076694][T32563] sctp_copy_local_addr_list+0x39d/0x5a0 [ 2205.076758][T32563] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 2205.076823][T32563] ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360 [ 2205.076867][T32563] ? sctp_bind_addr_copy+0xe0/0x530 [ 2205.076916][T32563] sctp_bind_addr_copy+0xe0/0x530 [ 2205.076977][T32563] sctp_connect_new_asoc+0x1d7/0x790 [ 2205.077022][T32563] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 2205.077066][T32563] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 2205.077117][T32563] __sctp_connect+0x3f3/0xc60 [ 2205.077163][T32563] ? do_raw_spin_lock+0x12c/0x2b0 [ 2205.077218][T32563] ? __pfx___sctp_connect+0x10/0x10 [ 2205.077266][T32563] ? __pfx_sctp_inet_connect+0x10/0x10 [ 2205.077308][T32563] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 2205.077360][T32563] ? __pfx_sctp_inet_connect+0x10/0x10 [ 2205.077398][T32563] sctp_inet_connect+0x15f/0x200 [ 2205.077441][T32563] __sys_connect_file+0x141/0x1a0 [ 2205.077484][T32563] __sys_connect+0x14d/0x170 [ 2205.077520][T32563] ? __pfx___sys_connect+0x10/0x10 [ 2205.077573][T32563] ? __pfx_ksys_write+0x10/0x10 [ 2205.077614][T32563] ? rcu_is_watching+0x12/0xc0 [ 2205.077657][T32563] __x64_sys_connect+0x72/0xb0 [ 2205.077691][T32563] ? lockdep_hardirqs_on+0x7c/0x110 [ 2205.077742][T32563] do_syscall_64+0xcd/0x230 [ 2205.077796][T32563] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2205.077832][T32563] RIP: 0033:0x7fc8cdf8e969 [ 2205.077858][T32563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2205.077891][T32563] RSP: 002b:00007fc8ced7a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 2205.077923][T32563] RAX: ffffffffffffffda RBX: 00007fc8ce1b6080 RCX: 00007fc8cdf8e969 [ 2205.077944][T32563] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 2205.077964][T32563] RBP: 00007fc8ced7a090 R08: 0000000000000000 R09: 0000000000000000 [ 2205.077984][T32563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2205.078004][T32563] R13: 0000000000000000 R14: 00007fc8ce1b6080 R15: 00007ffce73a7598 [ 2205.078049][T32563] [ 2205.557213][T32562] < [ 2206.043473][T32572] netlink: 'syz.3.5398': attribute type 1 has an invalid length. [ 2206.078088][T32572] netlink: 326 bytes leftover after parsing attributes in process `syz.3.5398'. [ 2207.841835][T32596] ubi0: attaching mtd0 [ 2207.885247][T32596] ubi0: scanning is finished [ 2207.889905][T32596] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 2207.913044][T32587] can: request_module (can-proto-0) failed. [ 2208.044663][T32587] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input78 [ 2208.111921][T32596] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 2208.136306][T32601] ubi0: attaching mtd0 [ 2208.187120][T32601] ubi0: scanning is finished [ 2208.215558][T32601] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 2208.555928][T32601] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 2208.943195][T32610] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input79 [ 2210.800817][ T30] audit: type=1800 audit(4294977531.301:18): pid=32633 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.5411" name="dummy_udc" dev="gadgetfs" ino=6607 res=0 errno=0 [ 2211.165241][T32647] binder: 32646:32647 ioctl 4030582b 6 returned -22 [ 2211.586367][T32644] ptrace attach of "./syz-executor exec"[29432] was attempted by "./syz-executor exec"[32644] [ 2212.557189][T32656] binder: 32655:32656 ioctl 4030582b 6 returned -22 [ 2213.115453][T32674] ERROR: Out of memory at tomoyo_memory_ok. [ 2213.132407][T32666] ERROR: Out of memory at tomoyo_memory_ok. [ 2213.257154][T32674] ERROR: Out of memory at tomoyo_memory_ok. [ 2213.773967][T32678] ERROR: Out of memory at tomoyo_memory_ok. [ 2213.803723][T32674] ERROR: Out of memory at tomoyo_memory_ok. [ 2216.143689][T32706] ICMPv6: process `syz.1.5429' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 2216.629304][ T30] audit: type=1800 audit(4294977537.141:19): pid=32720 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.5433" name="lu_gp_id" dev="configfs" ino=111173 res=0 errno=0 [ 2217.170607][T32715] can: request_module (can-proto-0) failed. [ 2217.566844][T32733] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5437'. [ 2218.746450][T32743] svc: failed to register nfsdv3 RPC service (errno 111). [ 2218.940879][T32743] svc: failed to register nfsaclv3 RPC service (errno 111). [ 2219.091074][T32741] kexec: Could not allocate control_code_buffer [ 2219.628390][T32754] netlink: 8768 bytes leftover after parsing attributes in process `syz.1.5444'. [ 2219.643831][T32754] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 2219.897210][T32759] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5446'. [ 2220.539233][ T305] mkiss: ax0: crc mode is auto. [ 2221.292955][ T301] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 2221.313805][ T301] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2221.321440][ T301] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2221.328649][ T301] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2221.744211][ T322] HfR: entered promiscuous mode [ 2221.761975][ T324] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5454'. [ 2221.886835][ T327] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5455'. [ 2222.158062][ T327] team0: Port device team_slave_0 removed [ 2222.321413][ T337] zram: Added device: zram41 [ 2222.330203][ T337] FAULT_INJECTION: forcing a failure. [ 2222.330203][ T337] name failslab, interval 1, probability 0, space 0, times 0 [ 2222.394311][ T337] CPU: 0 UID: 0 PID: 337 Comm: syz.3.5458 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2222.394361][ T337] Tainted: [U]=USER [ 2222.394372][ T337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2222.394391][ T337] Call Trace: [ 2222.394401][ T337] [ 2222.394413][ T337] dump_stack_lvl+0x16c/0x1f0 [ 2222.394467][ T337] should_fail_ex+0x512/0x640 [ 2222.394518][ T337] ? fs_reclaim_acquire+0xae/0x150 [ 2222.394574][ T337] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 2222.394624][ T337] should_failslab+0xc2/0x120 [ 2222.394668][ T337] __kmalloc_noprof+0xd2/0x510 [ 2222.394718][ T337] tomoyo_realpath_from_path+0xc2/0x6e0 [ 2222.394774][ T337] ? tomoyo_profile+0x47/0x60 [ 2222.394811][ T337] tomoyo_path_number_perm+0x245/0x580 [ 2222.394853][ T337] ? tomoyo_path_number_perm+0x237/0x580 [ 2222.394901][ T337] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 2222.394947][ T337] ? find_held_lock+0x2b/0x80 [ 2222.395030][ T337] ? find_held_lock+0x2b/0x80 [ 2222.395064][ T337] ? hook_file_ioctl_common+0x145/0x410 [ 2222.395114][ T337] ? __fget_files+0x20e/0x3c0 [ 2222.395153][ T337] security_file_ioctl+0x9b/0x240 [ 2222.395201][ T337] __x64_sys_ioctl+0xb7/0x200 [ 2222.395252][ T337] do_syscall_64+0xcd/0x230 [ 2222.395308][ T337] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2222.395343][ T337] RIP: 0033:0x7f2398f8e969 [ 2222.395369][ T337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2222.395402][ T337] RSP: 002b:00007f2399e64038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2222.395432][ T337] RAX: ffffffffffffffda RBX: 00007f23991b5fa0 RCX: 00007f2398f8e969 [ 2222.395455][ T337] RDX: 00002000000012c0 RSI: 00000000c4c85512 RDI: 0000000000000009 [ 2222.395475][ T337] RBP: 00007f2399e64090 R08: 0000000000000000 R09: 0000000000000000 [ 2222.395496][ T337] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2222.395516][ T337] R13: 0000000000000000 R14: 00007f23991b5fa0 R15: 00007ffed00dbbd8 [ 2222.395559][ T337] [ 2222.395572][ T337] ERROR: Out of memory at tomoyo_realpath_from_path. [ 2222.834328][T12772] Bluetooth: hci1: command 0x0406 tx timeout [ 2223.310452][T12772] Bluetooth: hci3: command 0x0406 tx timeout [ 2223.320179][T12772] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 2223.320211][T12772] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 2223.335398][T12772] bt_err_ratelimited: 8 callbacks suppressed [ 2223.335418][T12772] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 2223.341462][T12772] Bluetooth: hci1: adv larger than maximum supported [ 2223.348726][T12772] Bluetooth: hci1: Unknown advertising packet type: 0x73 [ 2223.355682][T12772] Bluetooth: hci1: adv larger than maximum supported [ 2223.362809][T12772] Bluetooth: hci1: adv larger than maximum supported [ 2223.370059][T12772] Bluetooth: hci1: Unknown advertising packet type: 0x20 [ 2223.376926][T12772] Bluetooth: hci1: Malformed LE Event: 0x0d [ 2223.390147][T21807] Bluetooth: hci0: command 0x0406 tx timeout [ 2223.396362][T21807] Bluetooth: hci4: command 0x0406 tx timeout [ 2223.413978][ T346] zram: Added device: zram42 [ 2225.889956][ T384] FAULT_INJECTION: forcing a failure. [ 2225.889956][ T384] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2225.910875][ T384] CPU: 1 UID: 0 PID: 384 Comm: syz.2.5469 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2225.910925][ T384] Tainted: [U]=USER [ 2225.910935][ T384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2225.910953][ T384] Call Trace: [ 2225.910963][ T384] [ 2225.910976][ T384] dump_stack_lvl+0x16c/0x1f0 [ 2225.911024][ T384] should_fail_ex+0x512/0x640 [ 2225.911075][ T384] _copy_to_user+0x32/0xd0 [ 2225.911106][ T384] do_pages_stat+0x608/0x800 [ 2225.911157][ T384] ? __pfx_do_pages_stat+0x10/0x10 [ 2225.911229][ T384] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 2225.911274][ T384] ? lockdep_hardirqs_on+0x7c/0x110 [ 2225.911323][ T384] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 2225.911395][ T384] kernel_move_pages+0xfd5/0x13a0 [ 2225.911456][ T384] ? __pfx_kernel_move_pages+0x10/0x10 [ 2225.911506][ T384] ? __fget_files+0x20e/0x3c0 [ 2225.911546][ T384] ? fput+0x70/0xf0 [ 2225.911586][ T384] ? ksys_write+0x1b9/0x240 [ 2225.911619][ T384] ? __pfx_ksys_write+0x10/0x10 [ 2225.911657][ T384] ? rcu_is_watching+0x12/0xc0 [ 2225.911696][ T384] __x64_sys_move_pages+0xe0/0x1c0 [ 2225.911744][ T384] ? do_syscall_64+0x91/0x230 [ 2225.911795][ T384] ? lockdep_hardirqs_on+0x7c/0x110 [ 2225.911842][ T384] do_syscall_64+0xcd/0x230 [ 2225.911894][ T384] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2225.911929][ T384] RIP: 0033:0x7f213b98e969 [ 2225.911956][ T384] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2225.911988][ T384] RSP: 002b:00007f213c89c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000117 [ 2225.912020][ T384] RAX: ffffffffffffffda RBX: 00007f213bbb5fa0 RCX: 00007f213b98e969 [ 2225.912042][ T384] RDX: 0000000000000000 RSI: 0000000000001002 RDI: 0000000000000000 [ 2225.912063][ T384] RBP: 00007f213c89c090 R08: 0000000000000000 R09: 0000000000000002 [ 2225.912084][ T384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2225.912104][ T384] R13: 0000000000000000 R14: 00007f213bbb5fa0 R15: 00007ffe629ce038 [ 2225.912146][ T384] [ 2226.123127][ C1] vkms_vblank_simulate: vblank timer overrun [ 2226.852718][ T352] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 2226.852764][ T352] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 2226.873470][ T352] Bluetooth: hci3: Unknown advertising packet type: 0x7f [ 2226.873510][ T352] Bluetooth: hci3: adv larger than maximum supported [ 2226.880669][ T352] Bluetooth: hci3: Unknown advertising packet type: 0x73 [ 2226.887569][ T352] Bluetooth: hci3: adv larger than maximum supported [ 2226.894724][ T352] Bluetooth: hci3: Malformed LE Event: 0x0d [ 2227.398320][ T396] Setting dangerous option i915.mitigations - tainting kernel [ 2227.449172][ T396] Bad "i915.mitigations=!h@S", 'h@S' is unknown [ 2230.271908][ T443] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5480'. [ 2230.295501][ T443] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 2230.411429][ T443] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 2232.242772][ T445] zswap: compressor not available [ 2232.280311][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 2232.312453][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 2232.495852][ T459] FAULT_INJECTION: forcing a failure. [ 2232.495852][ T459] name failslab, interval 1, probability 0, space 0, times 0 [ 2232.544495][ T459] CPU: 1 UID: 0 PID: 459 Comm: syz.2.5484 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2232.544551][ T459] Tainted: [U]=USER [ 2232.544562][ T459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2232.544581][ T459] Call Trace: [ 2232.544592][ T459] [ 2232.544605][ T459] dump_stack_lvl+0x16c/0x1f0 [ 2232.544661][ T459] should_fail_ex+0x512/0x640 [ 2232.544719][ T459] should_failslab+0xc2/0x120 [ 2232.544774][ T459] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 2232.544818][ T459] ? skb_clone+0x190/0x3f0 [ 2232.544868][ T459] skb_clone+0x190/0x3f0 [ 2232.544911][ T459] netlink_deliver_tap+0xabd/0xd30 [ 2232.544964][ T459] netlink_unicast+0x5df/0x7f0 [ 2232.545016][ T459] ? __pfx_netlink_unicast+0x10/0x10 [ 2232.545074][ T459] netlink_sendmsg+0x8d1/0xdd0 [ 2232.545128][ T459] ? __pfx_netlink_sendmsg+0x10/0x10 [ 2232.545190][ T459] ____sys_sendmsg+0xa95/0xc70 [ 2232.545244][ T459] ? copy_msghdr_from_user+0x10a/0x160 [ 2232.545287][ T459] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2232.545361][ T459] ___sys_sendmsg+0x134/0x1d0 [ 2232.545407][ T459] ? __pfx____sys_sendmsg+0x10/0x10 [ 2232.545507][ T459] __sys_sendmsg+0x16d/0x220 [ 2232.545550][ T459] ? __pfx___sys_sendmsg+0x10/0x10 [ 2232.545593][ T459] ? __x64_sys_futex+0x1e0/0x4c0 [ 2232.545643][ T459] ? rcu_is_watching+0x12/0xc0 [ 2232.545688][ T459] do_syscall_64+0xcd/0x230 [ 2232.545742][ T459] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2232.545787][ T459] RIP: 0033:0x7f213b98e969 [ 2232.545813][ T459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2232.545846][ T459] RSP: 002b:00007f213c89c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2232.545878][ T459] RAX: ffffffffffffffda RBX: 00007f213bbb5fa0 RCX: 00007f213b98e969 [ 2232.545900][ T459] RDX: 0000000000040004 RSI: 0000200000000280 RDI: 0000000000000007 [ 2232.545922][ T459] RBP: 00007f213ba10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 2232.545942][ T459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2232.545963][ T459] R13: 0000000000000000 R14: 00007f213bbb5fa0 R15: 00007ffe629ce038 [ 2232.546006][ T459] [ 2233.407846][ T352] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 2236.494081][ T516] ERROR: Out of memory at tomoyo_memory_ok. [ 2236.501592][ T521] ERROR: Out of memory at tomoyo_memory_ok. [ 2236.509841][ T513] ERROR: Out of memory at tomoyo_memory_ok. [ 2237.357663][ T528] can: request_module (can-proto-0) failed. [ 2238.329592][ T546] can: request_module (can-proto-3) failed. [ 2238.575372][ T552] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 2238.712656][ T552] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2238.888822][ T552] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 2238.960203][ T555] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input81 [ 2239.165706][ T552] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2239.210676][ T552] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2240.499905][ T570] snd_aloop snd_aloop.0: control 1:262152:7::0 is already present [ 2240.594567][ T352] Bluetooth: hci1: command 0x0406 tx timeout [ 2240.744411][ T352] Bluetooth: hci3: command 0x0406 tx timeout [ 2241.086753][ T577] FAULT_INJECTION: forcing a failure. [ 2241.086753][ T577] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2241.137573][ T577] CPU: 0 UID: 0 PID: 577 Comm: syz.3.5508 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2241.137625][ T577] Tainted: [U]=USER [ 2241.137636][ T577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2241.137654][ T577] Call Trace: [ 2241.137666][ T577] [ 2241.137679][ T577] dump_stack_lvl+0x16c/0x1f0 [ 2241.137731][ T577] should_fail_ex+0x512/0x640 [ 2241.137792][ T577] _copy_to_user+0x32/0xd0 [ 2241.137827][ T577] simple_read_from_buffer+0xcb/0x170 [ 2241.137881][ T577] proc_fail_nth_read+0x197/0x270 [ 2241.137931][ T577] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 2241.137984][ T577] ? rw_verify_area+0xcf/0x680 [ 2241.138033][ T577] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 2241.138083][ T577] vfs_read+0x1de/0xc70 [ 2241.138122][ T577] ? __pfx___mutex_lock+0x10/0x10 [ 2241.138172][ T577] ? __pfx_vfs_read+0x10/0x10 [ 2241.138217][ T577] ? __fget_files+0x20e/0x3c0 [ 2241.138262][ T577] ksys_read+0x12a/0x240 [ 2241.138296][ T577] ? __pfx_ksys_read+0x10/0x10 [ 2241.138342][ T577] do_syscall_64+0xcd/0x230 [ 2241.138396][ T577] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2241.138431][ T577] RIP: 0033:0x7f2398f8d37c [ 2241.138457][ T577] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 2241.138488][ T577] RSP: 002b:00007f2399e64030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2241.138518][ T577] RAX: ffffffffffffffda RBX: 00007f23991b5fa0 RCX: 00007f2398f8d37c [ 2241.138540][ T577] RDX: 000000000000000f RSI: 00007f2399e640a0 RDI: 0000000000000008 [ 2241.138560][ T577] RBP: 00007f2399e64090 R08: 0000000000000000 R09: 0000000000000000 [ 2241.138581][ T577] R10: 9999999999999999 R11: 0000000000000246 R12: 0000000000000001 [ 2241.138601][ T577] R13: 0000000000000000 R14: 00007f23991b5fa0 R15: 00007ffed00dbbd8 [ 2241.138645][ T577] [ 2241.335265][ T352] Bluetooth: hci0: command 0x0406 tx timeout [ 2241.341463][ T352] Bluetooth: hci4: command 0x0406 tx timeout [ 2242.824352][ T352] Bluetooth: hci3: command 0x0406 tx timeout [ 2243.207855][ T609] FAULT_INJECTION: forcing a failure. [ 2243.207855][ T609] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2243.233084][ T609] CPU: 1 UID: 0 PID: 609 Comm: syz.1.5517 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2243.233137][ T609] Tainted: [U]=USER [ 2243.233149][ T609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2243.233167][ T609] Call Trace: [ 2243.233178][ T609] [ 2243.233191][ T609] dump_stack_lvl+0x16c/0x1f0 [ 2243.233245][ T609] should_fail_ex+0x512/0x640 [ 2243.233299][ T609] _copy_to_user+0x32/0xd0 [ 2243.233332][ T609] simple_read_from_buffer+0xcb/0x170 [ 2243.233385][ T609] proc_fail_nth_read+0x197/0x270 [ 2243.233431][ T609] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 2243.233478][ T609] ? rw_verify_area+0xcf/0x680 [ 2243.233523][ T609] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 2243.233573][ T609] vfs_read+0x1de/0xc70 [ 2243.233611][ T609] ? __pfx___mutex_lock+0x10/0x10 [ 2243.233663][ T609] ? __pfx_vfs_read+0x10/0x10 [ 2243.233706][ T609] ? __fget_files+0x20e/0x3c0 [ 2243.233752][ T609] ksys_read+0x12a/0x240 [ 2243.233779][ T609] ? __pfx_ksys_read+0x10/0x10 [ 2243.233804][ T609] ? rcu_is_watching+0x12/0xc0 [ 2243.233841][ T609] do_syscall_64+0xcd/0x230 [ 2243.233886][ T609] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2243.233914][ T609] RIP: 0033:0x7f9a9b38d37c [ 2243.233936][ T609] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 2243.233963][ T609] RSP: 002b:00007f9a9c1aa030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2243.233989][ T609] RAX: ffffffffffffffda RBX: 00007f9a9b5b5fa0 RCX: 00007f9a9b38d37c [ 2243.234007][ T609] RDX: 000000000000000f RSI: 00007f9a9c1aa0a0 RDI: 0000000000000004 [ 2243.234025][ T609] RBP: 00007f9a9c1aa090 R08: 0000000000000000 R09: 0000000000000000 [ 2243.234042][ T609] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2243.234060][ T609] R13: 0000000000000000 R14: 00007f9a9b5b5fa0 R15: 00007ffda5b5f048 [ 2243.234100][ T609] [ 2246.672921][ T657] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 2246.731085][ T657] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 2250.036775][ T696] FAULT_INJECTION: forcing a failure. [ 2250.036775][ T696] name failslab, interval 1, probability 0, space 0, times 0 [ 2250.077911][ T696] CPU: 0 UID: 0 PID: 696 Comm: syz.4.5534 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2250.077991][ T696] Tainted: [U]=USER [ 2250.078005][ T696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2250.078028][ T696] Call Trace: [ 2250.078041][ T696] [ 2250.078055][ T696] dump_stack_lvl+0x16c/0x1f0 [ 2250.078116][ T696] should_fail_ex+0x512/0x640 [ 2250.078169][ T696] ? fs_reclaim_acquire+0xae/0x150 [ 2250.078228][ T696] ? tomoyo_encode2+0x100/0x3e0 [ 2250.078277][ T696] should_failslab+0xc2/0x120 [ 2250.078324][ T696] __kmalloc_noprof+0xd2/0x510 [ 2250.078363][ T696] ? d_absolute_path+0x136/0x1a0 [ 2250.078418][ T696] tomoyo_encode2+0x100/0x3e0 [ 2250.078478][ T696] tomoyo_encode+0x29/0x50 [ 2250.078530][ T696] tomoyo_realpath_from_path+0x18f/0x6e0 [ 2250.078608][ T696] tomoyo_get_exe+0x63/0xa0 [ 2250.078649][ T696] tomoyo_write_control+0x689/0x1430 [ 2250.078707][ T696] ? __pfx_tomoyo_write_control+0x10/0x10 [ 2250.078761][ T696] vfs_write+0x25c/0x1180 [ 2250.078811][ T696] ? __pfx_tomoyo_write+0x10/0x10 [ 2250.078880][ T696] ? __pfx___mutex_lock+0x10/0x10 [ 2250.078939][ T696] ? __pfx_vfs_write+0x10/0x10 [ 2250.078990][ T696] ? __fget_files+0x20e/0x3c0 [ 2250.079038][ T696] ksys_write+0x12a/0x240 [ 2250.079079][ T696] ? __pfx_ksys_write+0x10/0x10 [ 2250.079115][ T696] ? rcu_is_watching+0x12/0xc0 [ 2250.079165][ T696] do_syscall_64+0xcd/0x230 [ 2250.079225][ T696] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2250.079263][ T696] RIP: 0033:0x7fc8cdf8e969 [ 2250.079291][ T696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2250.079325][ T696] RSP: 002b:00007fc8ced9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 2250.079359][ T696] RAX: ffffffffffffffda RBX: 00007fc8ce1b5fa0 RCX: 00007fc8cdf8e969 [ 2250.079383][ T696] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003 [ 2250.079405][ T696] RBP: 00007fc8ce010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 2250.079427][ T696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2250.079449][ T696] R13: 0000000000000000 R14: 00007fc8ce1b5fa0 R15: 00007ffce73a7598 [ 2250.079498][ T696] [ 2250.084561][ T696] ERROR: Out of memory at tomoyo_realpath_from_path. [ 2252.448862][ T731] can: request_module (can-proto-3) failed. [ 2253.332710][ T742] netlink: 140 bytes leftover after parsing attributes in process `syz.2.5543'. [ 2254.487704][ T760] ptrace attach of "./syz-executor exec"[27778] was attempted by "./syz-executor exec"[760] [ 2254.506905][ T759] FAULT_INJECTION: forcing a failure. [ 2254.506905][ T759] name failslab, interval 1, probability 0, space 0, times 0 [ 2254.548700][ T759] CPU: 0 UID: 0 PID: 759 Comm: syz.4.5545 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2254.548752][ T759] Tainted: [U]=USER [ 2254.548759][ T759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2254.548772][ T759] Call Trace: [ 2254.548780][ T759] [ 2254.548789][ T759] dump_stack_lvl+0x16c/0x1f0 [ 2254.548828][ T759] should_fail_ex+0x512/0x640 [ 2254.548863][ T759] ? __kvmalloc_node_noprof+0x122/0x600 [ 2254.548894][ T759] should_failslab+0xc2/0x120 [ 2254.548926][ T759] __kvmalloc_node_noprof+0x135/0x600 [ 2254.548951][ T759] ? find_held_lock+0x2b/0x80 [ 2254.548974][ T759] ? seq_read_iter+0x826/0x12c0 [ 2254.549014][ T759] ? seq_read_iter+0x826/0x12c0 [ 2254.549045][ T759] ? aa_file_perm+0x4d6/0xfb0 [ 2254.549078][ T759] seq_read_iter+0x826/0x12c0 [ 2254.549125][ T759] seq_read+0x39e/0x4e0 [ 2254.549159][ T759] ? __pfx_seq_read+0x10/0x10 [ 2254.549193][ T759] ? get_pid_task+0xfc/0x250 [ 2254.549228][ T759] ? __mutex_trylock_common+0xe9/0x250 [ 2254.549271][ T759] ? rw_verify_area+0xcf/0x680 [ 2254.549309][ T759] ? __pfx_seq_read+0x10/0x10 [ 2254.549346][ T759] vfs_read+0x1de/0xc70 [ 2254.549374][ T759] ? __pfx___mutex_lock+0x10/0x10 [ 2254.549412][ T759] ? __pfx_vfs_read+0x10/0x10 [ 2254.549444][ T759] ? __fget_files+0x20e/0x3c0 [ 2254.549478][ T759] ksys_read+0x12a/0x240 [ 2254.549501][ T759] ? __pfx_ksys_read+0x10/0x10 [ 2254.549523][ T759] ? rcu_is_watching+0x12/0xc0 [ 2254.549561][ T759] do_syscall_64+0xcd/0x230 [ 2254.549599][ T759] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2254.549623][ T759] RIP: 0033:0x7fc8cdf8e969 [ 2254.549642][ T759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2254.549666][ T759] RSP: 002b:00007fc8ced7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2254.549688][ T759] RAX: ffffffffffffffda RBX: 00007fc8ce1b6080 RCX: 00007fc8cdf8e969 [ 2254.549705][ T759] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000003 [ 2254.549719][ T759] RBP: 00007fc8ced7a090 R08: 0000000000000000 R09: 0000000000000000 [ 2254.549735][ T759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2254.549749][ T759] R13: 0000000000000000 R14: 00007fc8ce1b6080 R15: 00007ffce73a7598 [ 2254.549780][ T759] [ 2255.043055][ T759] ptrace attach of "./syz-executor exec"[28066] was attempted by "./syz-executor exec"[759] [ 2255.400072][ T733] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 2255.490080][ T733] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2255.601791][ T733] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2255.611909][ T733] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2255.642842][ T770] FAULT_INJECTION: forcing a failure. [ 2255.642842][ T770] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2255.671244][ T770] CPU: 0 UID: 0 PID: 770 Comm: syz.1.5547 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2255.671299][ T770] Tainted: [U]=USER [ 2255.671312][ T770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2255.671332][ T770] Call Trace: [ 2255.671344][ T770] [ 2255.671358][ T770] dump_stack_lvl+0x16c/0x1f0 [ 2255.671414][ T770] should_fail_ex+0x512/0x640 [ 2255.671473][ T770] _copy_to_user+0x32/0xd0 [ 2255.671511][ T770] tomoyo_flush+0x161/0x520 [ 2255.671573][ T770] tomoyo_set_string+0xaf/0xe0 [ 2255.671628][ T770] tomoyo_read_stat+0x19c/0x4e0 [ 2255.671685][ T770] ? __pfx_tomoyo_read_stat+0x10/0x10 [ 2255.671740][ T770] ? tomoyo_flush+0x3f5/0x520 [ 2255.671803][ T770] tomoyo_read_control+0x29c/0x540 [ 2255.671843][ T770] ? __pfx_tomoyo_read+0x10/0x10 [ 2255.671898][ T770] vfs_read+0x1de/0xc70 [ 2255.671942][ T770] ? __pfx_vfs_read+0x10/0x10 [ 2255.671973][ T770] ? do_futex+0x122/0x350 [ 2255.672012][ T770] ? __pfx_do_futex+0x10/0x10 [ 2255.672064][ T770] ? __x64_sys_futex+0x1e0/0x4c0 [ 2255.672101][ T770] ? __x64_sys_futex+0x1e9/0x4c0 [ 2255.672147][ T770] ksys_read+0x12a/0x240 [ 2255.672180][ T770] ? __pfx_ksys_read+0x10/0x10 [ 2255.672225][ T770] ? rcu_is_watching+0x12/0xc0 [ 2255.672272][ T770] do_syscall_64+0xcd/0x230 [ 2255.672326][ T770] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2255.672362][ T770] RIP: 0033:0x7f9a9b38e969 [ 2255.672390][ T770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2255.672423][ T770] RSP: 002b:00007f9a9c1aa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2255.672456][ T770] RAX: ffffffffffffffda RBX: 00007f9a9b5b5fa0 RCX: 00007f9a9b38e969 [ 2255.672478][ T770] RDX: 000000000000b4d3 RSI: 0000000000000000 RDI: 0000000000000005 [ 2255.672500][ T770] RBP: 00007f9a9b410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 2255.672521][ T770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2255.672542][ T770] R13: 0000000000000000 R14: 00007f9a9b5b5fa0 R15: 00007ffda5b5f048 [ 2255.672587][ T770] [ 2256.114338][ T352] Bluetooth: hci1: command 0x0406 tx timeout [ 2256.377582][ T777] snd_aloop snd_aloop.0: control 1:262152:7::0 is already present [ 2257.554979][ T352] Bluetooth: hci3: command 0x0406 tx timeout [ 2257.628592][T31602] Bluetooth: hci4: command 0x0406 tx timeout [ 2257.634884][ T352] Bluetooth: hci0: command 0x0406 tx timeout [ 2258.696834][ T812] program syz.4.5556 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 2258.781569][ T812] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 2259.350333][ T352] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260 [ 2259.350380][ T352] Bluetooth: hci4: unexpected subevent 0x0d length: 725 > 260 [ 2259.365257][ T352] bt_err_ratelimited: 2 callbacks suppressed [ 2259.365273][ T352] Bluetooth: hci4: Unknown advertising packet type: 0x7f [ 2259.371299][ T352] Bluetooth: hci4: adv larger than maximum supported [ 2259.379009][ T352] Bluetooth: hci4: Unknown advertising packet type: 0x73 [ 2259.386261][ T352] Bluetooth: hci4: adv larger than maximum supported [ 2259.393438][ T352] Bluetooth: hci4: adv larger than maximum supported [ 2259.400455][ T352] Bluetooth: hci4: Unknown advertising packet type: 0x20 [ 2259.407220][ T352] Bluetooth: hci4: Malformed LE Event: 0x0d [ 2259.856101][ T830] netlink: 80 bytes leftover after parsing attributes in process `syz.3.5560'. [ 2260.289305][ T841] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5562'. [ 2260.742983][ T352] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 2260.743030][ T352] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 2260.763678][ T352] Bluetooth: hci3: Unknown advertising packet type: 0x7f [ 2260.763720][ T352] Bluetooth: hci3: adv larger than maximum supported [ 2260.770971][ T352] Bluetooth: hci3: Unknown advertising packet type: 0x73 [ 2260.777890][ T352] Bluetooth: hci3: adv larger than maximum supported [ 2260.785203][ T352] Bluetooth: hci3: Malformed LE Event: 0x0d [ 2262.368430][ T869] netlink: 56 bytes leftover after parsing attributes in process `syz.2.5569'. [ 2264.178640][ T894] netlink: zone id is out of range [ 2264.183836][ T894] netlink: zone id is out of range [ 2264.225280][ T894] netlink: zone id is out of range [ 2264.251640][ T894] netlink: zone id is out of range [ 2264.275656][ T894] netlink: zone id is out of range [ 2264.297976][ T894] netlink: zone id is out of range [ 2264.329467][ T894] netlink: zone id is out of range [ 2264.385597][ T894] netlink: zone id is out of range [ 2264.391183][ T894] netlink: zone id is out of range [ 2264.400175][ T894] netlink: zone id is out of range [ 2266.396113][ T352] Bluetooth: hci3: unexpected subevent 0x04 length: 122 > 11 [ 2266.534347][ T352] Bluetooth: hci3: unexpected subevent 0x04 length: 122 > 11 [ 2266.666164][ T958] FAULT_INJECTION: forcing a failure. [ 2266.666164][ T958] name failslab, interval 1, probability 0, space 0, times 0 [ 2266.915763][ T958] CPU: 1 UID: 0 PID: 958 Comm: syz.1.5582 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2266.915813][ T958] Tainted: [U]=USER [ 2266.915824][ T958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2266.915841][ T958] Call Trace: [ 2266.915852][ T958] [ 2266.915863][ T958] dump_stack_lvl+0x16c/0x1f0 [ 2266.915914][ T958] should_fail_ex+0x512/0x640 [ 2266.915958][ T958] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 2266.915993][ T958] should_failslab+0xc2/0x120 [ 2266.916041][ T958] __kmalloc_cache_noprof+0x6a/0x3e0 [ 2266.916072][ T958] ? trace_cap_capable+0x18d/0x200 [ 2266.916102][ T958] ? sctp_association_new+0xbb/0x2a00 [ 2266.916142][ T958] sctp_association_new+0xbb/0x2a00 [ 2266.916179][ T958] ? sctp_v4_scope+0x183/0x1a0 [ 2266.916223][ T958] sctp_connect_new_asoc+0x1b6/0x790 [ 2266.916262][ T958] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 2266.916300][ T958] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 2266.916340][ T958] __sctp_connect+0x3f3/0xc60 [ 2266.916377][ T958] ? do_raw_spin_lock+0x12c/0x2b0 [ 2266.916423][ T958] ? __pfx___sctp_connect+0x10/0x10 [ 2266.916465][ T958] ? __pfx_sctp_inet_connect+0x10/0x10 [ 2266.916502][ T958] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 2266.916548][ T958] ? __pfx_sctp_inet_connect+0x10/0x10 [ 2266.916581][ T958] sctp_inet_connect+0x15f/0x200 [ 2266.916619][ T958] __sys_connect_file+0x141/0x1a0 [ 2266.916655][ T958] __sys_connect+0x14d/0x170 [ 2266.916685][ T958] ? __pfx___sys_connect+0x10/0x10 [ 2266.916730][ T958] ? __pfx_ksys_write+0x10/0x10 [ 2266.916759][ T958] ? rcu_is_watching+0x12/0xc0 [ 2266.916794][ T958] __x64_sys_connect+0x72/0xb0 [ 2266.916823][ T958] ? lockdep_hardirqs_on+0x7c/0x110 [ 2266.916866][ T958] do_syscall_64+0xcd/0x230 [ 2266.916914][ T958] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2266.916945][ T958] RIP: 0033:0x7f9a9b38e969 [ 2266.916969][ T958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2266.916999][ T958] RSP: 002b:00007f9a9c189038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 2266.917036][ T958] RAX: ffffffffffffffda RBX: 00007f9a9b5b6080 RCX: 00007f9a9b38e969 [ 2266.917055][ T958] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 2266.917074][ T958] RBP: 00007f9a9c189090 R08: 0000000000000000 R09: 0000000000000000 [ 2266.917092][ T958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2266.917110][ T958] R13: 0000000000000000 R14: 00007f9a9b5b6080 R15: 00007ffda5b5f048 [ 2266.917149][ T958] [ 2267.649586][ T964] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5580'. [ 2268.287648][ T969] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5585'. [ 2272.507612][ T352] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260 [ 2272.507659][ T352] Bluetooth: hci4: unexpected subevent 0x0d length: 725 > 260 [ 2272.524062][ T352] bt_err_ratelimited: 2 callbacks suppressed [ 2272.524079][ T352] Bluetooth: hci4: Unknown advertising packet type: 0x7f [ 2272.530262][ T352] Bluetooth: hci4: adv larger than maximum supported [ 2272.537605][ T352] Bluetooth: hci4: Unknown advertising packet type: 0x73 [ 2272.544527][ T352] Bluetooth: hci4: adv larger than maximum supported [ 2272.551644][ T352] Bluetooth: hci4: adv larger than maximum supported [ 2272.558665][ T352] Bluetooth: hci4: Unknown advertising packet type: 0x20 [ 2272.565597][ T352] Bluetooth: hci4: Malformed LE Event: 0x0d [ 2275.456583][ T1088] FAULT_INJECTION: forcing a failure. [ 2275.456583][ T1088] name failslab, interval 1, probability 0, space 0, times 0 [ 2275.469469][ T1088] CPU: 0 UID: 0 PID: 1088 Comm: syz.3.5604 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2275.469520][ T1088] Tainted: [U]=USER [ 2275.469531][ T1088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2275.469550][ T1088] Call Trace: [ 2275.469561][ T1088] [ 2275.469574][ T1088] dump_stack_lvl+0x16c/0x1f0 [ 2275.469628][ T1088] should_fail_ex+0x512/0x640 [ 2275.469677][ T1088] ? fs_reclaim_acquire+0xae/0x150 [ 2275.469729][ T1088] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 2275.469780][ T1088] should_failslab+0xc2/0x120 [ 2275.469822][ T1088] __kmalloc_noprof+0xd2/0x510 [ 2275.469870][ T1088] tomoyo_realpath_from_path+0xc2/0x6e0 [ 2275.469926][ T1088] ? tomoyo_profile+0x47/0x60 [ 2275.469963][ T1088] tomoyo_path_number_perm+0x245/0x580 [ 2275.470005][ T1088] ? tomoyo_path_number_perm+0x237/0x580 [ 2275.470052][ T1088] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 2275.470100][ T1088] ? find_held_lock+0x2b/0x80 [ 2275.470173][ T1088] ? find_held_lock+0x2b/0x80 [ 2275.470206][ T1088] ? hook_file_ioctl_common+0x145/0x410 [ 2275.470256][ T1088] ? __fget_files+0x20e/0x3c0 [ 2275.470296][ T1088] security_file_ioctl+0x9b/0x240 [ 2275.470344][ T1088] __x64_sys_ioctl+0xb7/0x200 [ 2275.470405][ T1088] do_syscall_64+0xcd/0x230 [ 2275.470461][ T1088] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2275.470495][ T1088] RIP: 0033:0x7f2398f8e969 [ 2275.470522][ T1088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2275.470554][ T1088] RSP: 002b:00007f2399dbf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2275.470584][ T1088] RAX: ffffffffffffffda RBX: 00007f23991b6400 RCX: 00007f2398f8e969 [ 2275.470606][ T1088] RDX: 000000000000000c RSI: 00000000c0184d08 RDI: 000000000000000c [ 2275.470626][ T1088] RBP: 00007f2399dbf090 R08: 0000000000000000 R09: 0000000000000000 [ 2275.470646][ T1088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2275.470666][ T1088] R13: 0000000000000000 R14: 00007f23991b6400 R15: 00007ffed00dbbd8 [ 2275.470710][ T1088] [ 2275.470793][ T1088] ERROR: Out of memory at tomoyo_realpath_from_path. [ 2277.795826][ T1114] random: crng reseeded on system resumption [ 2278.956509][ T352] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 2278.956559][ T352] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 2278.972564][ T352] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 2278.972601][ T352] Bluetooth: hci1: adv larger than maximum supported [ 2278.980430][ T352] Bluetooth: hci1: Unknown advertising packet type: 0x73 [ 2278.987610][ T352] Bluetooth: hci1: adv larger than maximum supported [ 2278.995091][ T352] Bluetooth: hci1: adv larger than maximum supported [ 2279.001834][ T352] Bluetooth: hci1: Unknown advertising packet type: 0x20 [ 2279.009218][ T352] Bluetooth: hci1: Malformed LE Event: 0x0d [ 2279.700320][ T1114] can: request_module (can-proto-0) failed. [ 2279.983004][ T1114] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5611'. [ 2280.243529][ T352] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18 [ 2280.333735][T31602] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 2280.333790][T31602] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 2280.349458][T31602] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 2280.349484][T31602] Bluetooth: hci1: adv larger than maximum supported [ 2280.356597][T31602] Bluetooth: hci1: Unknown advertising packet type: 0x73 [ 2280.363295][T31602] Bluetooth: hci1: adv larger than maximum supported [ 2280.370448][T31602] Bluetooth: hci1: Malformed LE Event: 0x0d [ 2281.070904][ T1160] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5619'. [ 2281.290909][ T1161] can: request_module (can-proto-0) failed. [ 2281.487011][ T1171] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input83 [ 2281.509254][ T5184] ERROR: Out of memory at tomoyo_memory_ok. [ 2281.712034][ T30] audit: type=1800 audit(4294977602.221:20): pid=1171 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.5620" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 2282.993418][T31602] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260 [ 2282.993464][T31602] Bluetooth: hci4: unexpected subevent 0x0e length: 725 > 15 [ 2283.009543][T31602] Bluetooth: hci4: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f [ 2283.135475][ T1196] ubi0: attaching mtd0 [ 2283.177473][ T1196] ubi0: scanning is finished [ 2283.182284][ T1196] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 2283.463437][ T1196] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 2283.604472][T31602] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 2284.192602][ T1211] net_ratelimit: 77 callbacks suppressed [ 2284.192631][ T1211] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 2284.575445][ T1219] random: crng reseeded on system resumption [ 2285.398964][ T1230] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5635'. [ 2286.719566][ T1215] FAULT_INJECTION: forcing a failure. [ 2286.719566][ T1215] name failslab, interval 1, probability 0, space 0, times 0 [ 2286.753938][ T1215] CPU: 1 UID: 0 PID: 1215 Comm: syz.4.5630 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2286.753996][ T1215] Tainted: [U]=USER [ 2286.754007][ T1215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2286.754028][ T1215] Call Trace: [ 2286.754041][ T1215] [ 2286.754054][ T1215] dump_stack_lvl+0x16c/0x1f0 [ 2286.754114][ T1215] should_fail_ex+0x512/0x640 [ 2286.754173][ T1215] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 2286.754222][ T1215] should_failslab+0xc2/0x120 [ 2286.754265][ T1215] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 2286.754307][ T1215] ? ptlock_alloc+0x1f/0x70 [ 2286.754349][ T1215] ptlock_alloc+0x1f/0x70 [ 2286.754383][ T1215] pte_alloc_one+0x6d/0x380 [ 2286.754422][ T1215] __pte_alloc+0x6d/0x3c0 [ 2286.754467][ T1215] ? __pfx___pte_alloc+0x10/0x10 [ 2286.754511][ T1215] ? __pfx___might_resched+0x10/0x10 [ 2286.754549][ T1215] ? copy_page_range+0x197d/0x5fe0 [ 2286.754608][ T1215] copy_page_range+0x3a29/0x5fe0 [ 2286.754710][ T1215] ? __pfx_copy_page_range+0x10/0x10 [ 2286.754764][ T1215] ? mas_store+0x93a/0x10c0 [ 2286.754794][ T1215] ? __pfx___might_resched+0x10/0x10 [ 2286.754840][ T1215] ? __vma_enter_locked+0x163/0x3f0 [ 2286.754878][ T1215] ? down_write+0x14d/0x200 [ 2286.754934][ T1215] copy_process+0x8644/0x91b0 [ 2286.755011][ T1215] ? __pfx_copy_process+0x10/0x10 [ 2286.755060][ T1215] ? try_to_wake_up+0xa2f/0x1680 [ 2286.755102][ T1215] ? plist_check_head+0xa3/0x150 [ 2286.755150][ T1215] ? find_held_lock+0x2b/0x80 [ 2286.755191][ T1215] ? wake_up_q+0xb0/0x160 [ 2286.755221][ T1215] ? do_raw_spin_unlock+0x172/0x230 [ 2286.755278][ T1215] kernel_clone+0xfc/0x960 [ 2286.755324][ T1215] ? __pfx_futex_wake+0x10/0x10 [ 2286.755370][ T1215] ? __pfx_kernel_clone+0x10/0x10 [ 2286.755438][ T1215] __do_sys_clone+0xce/0x120 [ 2286.755482][ T1215] ? __pfx___do_sys_clone+0x10/0x10 [ 2286.755526][ T1215] ? ksys_unshare+0x687/0xa40 [ 2286.755605][ T1215] ? rcu_is_watching+0x12/0xc0 [ 2286.755653][ T1215] do_syscall_64+0xcd/0x230 [ 2286.755708][ T1215] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2286.755744][ T1215] RIP: 0033:0x7fc8cdf8e969 [ 2286.755777][ T1215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2286.755811][ T1215] RSP: 002b:00007fc8ced9afe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 2286.755842][ T1215] RAX: ffffffffffffffda RBX: 00007fc8ce1b5fa0 RCX: 00007fc8cdf8e969 [ 2286.755864][ T1215] RDX: 0000000000000000 RSI: 0000000000000070 RDI: 0000000002360411 [ 2286.755885][ T1215] RBP: 00007fc8ce010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 2286.755906][ T1215] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 2286.755927][ T1215] R13: 0000000000000000 R14: 00007fc8ce1b5fa0 R15: 00007ffce73a7598 [ 2286.755973][ T1215] [ 2287.031034][ C1] vkms_vblank_simulate: vblank timer overrun [ 2287.379837][ T352] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 2287.379884][ T352] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 2287.394930][ T352] bt_err_ratelimited: 2 callbacks suppressed [ 2287.394952][ T352] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 2287.401026][ T352] Bluetooth: hci1: Malformed LE Event: 0x0d [ 2288.502552][ T1282] FAULT_INJECTION: forcing a failure. [ 2288.502552][ T1282] name failslab, interval 1, probability 0, space 0, times 0 [ 2288.527939][ T1282] CPU: 0 UID: 0 PID: 1282 Comm: syz.2.5646 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2288.527992][ T1282] Tainted: [U]=USER [ 2288.528003][ T1282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2288.528019][ T1282] Call Trace: [ 2288.528030][ T1282] [ 2288.528042][ T1282] dump_stack_lvl+0x16c/0x1f0 [ 2288.528096][ T1282] should_fail_ex+0x512/0x640 [ 2288.528144][ T1282] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 2288.528183][ T1282] should_failslab+0xc2/0x120 [ 2288.528227][ T1282] __kmalloc_cache_noprof+0x6a/0x3e0 [ 2288.528261][ T1282] ? trace_pid_list_alloc+0x1b0/0x3f0 [ 2288.528307][ T1282] trace_pid_list_alloc+0x1b0/0x3f0 [ 2288.528354][ T1282] trace_pid_write+0x10e/0x460 [ 2288.528409][ T1282] ? __pfx_trace_pid_write+0x10/0x10 [ 2288.528457][ T1282] ? __pfx___mutex_lock+0x10/0x10 [ 2288.528513][ T1282] ? update_last_data+0xb3/0x480 [ 2288.528588][ T1282] event_pid_write.isra.0+0x1e4/0x7c0 [ 2288.528633][ T1282] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 2288.528706][ T1282] vfs_write+0x25c/0x1180 [ 2288.528738][ T1282] ? __pfx_ftrace_event_npid_write+0x10/0x10 [ 2288.528788][ T1282] ? __pfx___mutex_lock+0x10/0x10 [ 2288.528838][ T1282] ? __pfx_vfs_write+0x10/0x10 [ 2288.528884][ T1282] ? __fget_files+0x20e/0x3c0 [ 2288.528929][ T1282] ksys_write+0x12a/0x240 [ 2288.528967][ T1282] ? __pfx_ksys_write+0x10/0x10 [ 2288.528999][ T1282] ? rcu_is_watching+0x12/0xc0 [ 2288.529044][ T1282] do_syscall_64+0xcd/0x230 [ 2288.529099][ T1282] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2288.529134][ T1282] RIP: 0033:0x7f213b98e969 [ 2288.529160][ T1282] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2288.529192][ T1282] RSP: 002b:00007f213c89c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 2288.529223][ T1282] RAX: ffffffffffffffda RBX: 00007f213bbb5fa0 RCX: 00007f213b98e969 [ 2288.529245][ T1282] RDX: 0000000000000001 RSI: 0000200000001240 RDI: 0000000000000005 [ 2288.529265][ T1282] RBP: 00007f213c89c090 R08: 0000000000000000 R09: 0000000000000000 [ 2288.529286][ T1282] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2288.529306][ T1282] R13: 0000000000000000 R14: 00007f213bbb5fa0 R15: 00007ffe629ce038 [ 2288.529352][ T1282] [ 2289.934538][ T352] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 2289.934588][ T352] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 2289.949835][ T352] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 2289.949873][ T352] Bluetooth: hci1: adv larger than maximum supported [ 2289.957281][ T352] Bluetooth: hci1: Unknown advertising packet type: 0x73 [ 2289.964022][ T352] Bluetooth: hci1: adv larger than maximum supported [ 2289.971462][ T352] Bluetooth: hci1: adv larger than maximum supported [ 2289.978534][ T352] Bluetooth: hci1: Unknown advertising packet type: 0x20 [ 2289.987130][ T352] Bluetooth: hci1: Malformed LE Event: 0x0d [ 2292.447276][ T1302] kexec: Could not allocate control_code_buffer [ 2293.710271][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 2293.722616][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 2295.266874][ T1351] FAULT_INJECTION: forcing a failure. [ 2295.266874][ T1351] name failslab, interval 1, probability 0, space 0, times 0 [ 2295.339331][ T1351] CPU: 1 UID: 0 PID: 1351 Comm: syz.4.5659 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2295.339383][ T1351] Tainted: [U]=USER [ 2295.339394][ T1351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2295.339412][ T1351] Call Trace: [ 2295.339424][ T1351] [ 2295.339436][ T1351] dump_stack_lvl+0x16c/0x1f0 [ 2295.339489][ T1351] should_fail_ex+0x512/0x640 [ 2295.339540][ T1351] ? __kmalloc_noprof+0xbf/0x510 [ 2295.339581][ T1351] ? sock_kmalloc+0x111/0x170 [ 2295.339629][ T1351] should_failslab+0xc2/0x120 [ 2295.339671][ T1351] __kmalloc_noprof+0xd2/0x510 [ 2295.339707][ T1351] ? __import_iovec+0x1c8/0x660 [ 2295.339747][ T1351] sock_kmalloc+0x111/0x170 [ 2295.339806][ T1351] ____sys_sendmsg+0x52a/0xc70 [ 2295.339861][ T1351] ? copy_msghdr_from_user+0x10a/0x160 [ 2295.339910][ T1351] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2295.339970][ T1351] ? __pfx__kstrtoull+0x10/0x10 [ 2295.340021][ T1351] ___sys_sendmsg+0x134/0x1d0 [ 2295.340066][ T1351] ? __pfx____sys_sendmsg+0x10/0x10 [ 2295.340128][ T1351] ? find_held_lock+0x2b/0x80 [ 2295.340191][ T1351] __sys_sendmmsg+0x200/0x420 [ 2295.340239][ T1351] ? __pfx___sys_sendmmsg+0x10/0x10 [ 2295.340296][ T1351] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 2295.340368][ T1351] ? fput+0x70/0xf0 [ 2295.340411][ T1351] ? ksys_write+0x1b9/0x240 [ 2295.340444][ T1351] ? __pfx_ksys_write+0x10/0x10 [ 2295.340476][ T1351] ? rcu_is_watching+0x12/0xc0 [ 2295.340516][ T1351] __x64_sys_sendmmsg+0x9c/0x100 [ 2295.340559][ T1351] ? lockdep_hardirqs_on+0x7c/0x110 [ 2295.340608][ T1351] do_syscall_64+0xcd/0x230 [ 2295.340662][ T1351] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2295.340696][ T1351] RIP: 0033:0x7fc8cdf8e969 [ 2295.340723][ T1351] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2295.340754][ T1351] RSP: 002b:00007fc8ced9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 2295.340786][ T1351] RAX: ffffffffffffffda RBX: 00007fc8ce1b5fa0 RCX: 00007fc8cdf8e969 [ 2295.340807][ T1351] RDX: 00000000000009a6 RSI: 0000200000000000 RDI: 0000000000000003 [ 2295.340828][ T1351] RBP: 00007fc8ced9b090 R08: 0000000000000000 R09: 0000000000000000 [ 2295.340847][ T1351] R10: 000000000000ff00 R11: 0000000000000246 R12: 0000000000000002 [ 2295.340868][ T1351] R13: 0000000000000000 R14: 00007fc8ce1b5fa0 R15: 00007ffce73a7598 [ 2295.340922][ T1351] [ 2295.580676][ C1] vkms_vblank_simulate: vblank timer overrun [ 2295.586692][ C1] hrtimer: interrupt took 242540463 ns [ 2295.686735][ C1] vkms_vblank_simulate: vblank timer overrun [ 2295.857056][ T1354] svc: failed to register nfsdv3 RPC service (errno 111). [ 2295.887103][ T1354] svc: failed to register nfsaclv3 RPC service (errno 111). [ 2296.579768][ T1366] ubi0: attaching mtd0 [ 2296.589294][ T1366] ubi0: scanning is finished [ 2296.594975][ T1366] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 2297.300175][ T1366] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 2300.479013][ T352] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 2300.479058][ T352] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 2300.499585][ T352] Bluetooth: hci3: Unknown advertising packet type: 0x7f [ 2300.499626][ T352] Bluetooth: hci3: adv larger than maximum supported [ 2300.507513][ T352] Bluetooth: hci3: Unknown advertising packet type: 0x73 [ 2300.514711][ T352] Bluetooth: hci3: adv larger than maximum supported [ 2300.521795][ T352] Bluetooth: hci3: adv larger than maximum supported [ 2300.528950][ T352] Bluetooth: hci3: Unknown advertising packet type: 0x20 [ 2300.535997][ T352] Bluetooth: hci3: Malformed LE Event: 0x0d [ 2300.728441][ T1405] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 2301.441546][ T1412] Setting dangerous option i915.mitigations - tainting kernel [ 2302.459472][ T1442] FAULT_INJECTION: forcing a failure. [ 2302.459472][ T1442] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2302.479534][ T1442] CPU: 1 UID: 0 PID: 1442 Comm: syz.3.5683 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2302.479581][ T1442] Tainted: [U]=USER [ 2302.479592][ T1442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2302.479609][ T1442] Call Trace: [ 2302.479619][ T1442] [ 2302.479632][ T1442] dump_stack_lvl+0x16c/0x1f0 [ 2302.479680][ T1442] should_fail_ex+0x512/0x640 [ 2302.479745][ T1442] _copy_to_user+0x32/0xd0 [ 2302.479775][ T1442] simple_read_from_buffer+0xcb/0x170 [ 2302.479821][ T1442] proc_fail_nth_read+0x197/0x270 [ 2302.479864][ T1442] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 2302.479909][ T1442] ? rw_verify_area+0xcf/0x680 [ 2302.479951][ T1442] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 2302.479994][ T1442] vfs_read+0x1de/0xc70 [ 2302.480027][ T1442] ? __pfx___mutex_lock+0x10/0x10 [ 2302.480071][ T1442] ? __pfx_vfs_read+0x10/0x10 [ 2302.480109][ T1442] ? __fget_files+0x20e/0x3c0 [ 2302.480147][ T1442] ksys_read+0x12a/0x240 [ 2302.480184][ T1442] ? __pfx_ksys_read+0x10/0x10 [ 2302.480210][ T1442] ? rcu_is_watching+0x12/0xc0 [ 2302.480249][ T1442] do_syscall_64+0xcd/0x230 [ 2302.480296][ T1442] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2302.480325][ T1442] RIP: 0033:0x7f2398f8d37c [ 2302.480348][ T1442] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 2302.480377][ T1442] RSP: 002b:00007f2399e64030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2302.480404][ T1442] RAX: ffffffffffffffda RBX: 00007f23991b5fa0 RCX: 00007f2398f8d37c [ 2302.480424][ T1442] RDX: 000000000000000f RSI: 00007f2399e640a0 RDI: 0000000000000005 [ 2302.480442][ T1442] RBP: 00007f2399e64090 R08: 0000000000000000 R09: 0000000000000000 [ 2302.480459][ T1442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2302.480476][ T1442] R13: 0000000000000000 R14: 00007f23991b5fa0 R15: 00007ffed00dbbd8 [ 2302.480523][ T1442] [ 2302.676672][ C1] vkms_vblank_simulate: vblank timer overrun [ 2302.955896][ T1445] FAULT_INJECTION: forcing a failure. [ 2302.955896][ T1445] name fail_futex, interval 1, probability 0, space 0, times 0 [ 2302.989144][ T1445] CPU: 0 UID: 0 PID: 1445 Comm: syz.2.5682 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2302.989198][ T1445] Tainted: [U]=USER [ 2302.989210][ T1445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2302.989230][ T1445] Call Trace: [ 2302.989242][ T1445] [ 2302.989256][ T1445] dump_stack_lvl+0x16c/0x1f0 [ 2302.989310][ T1445] should_fail_ex+0x512/0x640 [ 2302.989360][ T1445] ? tomoyo_read_control+0x40f/0x540 [ 2302.989409][ T1445] get_futex_key+0x49e/0x1000 [ 2302.989445][ T1445] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 2302.989503][ T1445] ? __pfx_get_futex_key+0x10/0x10 [ 2302.989551][ T1445] ? find_held_lock+0x2b/0x80 [ 2302.989589][ T1445] futex_wake+0xe7/0x4e0 [ 2302.989634][ T1445] ? __pfx_futex_wake+0x10/0x10 [ 2302.989673][ T1445] ? __pfx_tomoyo_read+0x10/0x10 [ 2302.989722][ T1445] ? vfs_read+0x238/0xc70 [ 2302.989763][ T1445] do_futex+0x1e3/0x350 [ 2302.989802][ T1445] ? __pfx_do_futex+0x10/0x10 [ 2302.989850][ T1445] __x64_sys_futex+0x1e0/0x4c0 [ 2302.989896][ T1445] ? __pfx___x64_sys_futex+0x10/0x10 [ 2302.989934][ T1445] ? ksys_read+0x1b9/0x240 [ 2302.989968][ T1445] ? __pfx_ksys_read+0x10/0x10 [ 2302.989999][ T1445] ? rcu_is_watching+0x12/0xc0 [ 2302.990044][ T1445] do_syscall_64+0xcd/0x230 [ 2302.990100][ T1445] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2302.990136][ T1445] RIP: 0033:0x7f213b98e969 [ 2302.990164][ T1445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2302.990199][ T1445] RSP: 002b:00007f213c89c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 2302.990233][ T1445] RAX: ffffffffffffffda RBX: 00007f213bbb5fa8 RCX: 00007f213b98e969 [ 2302.990256][ T1445] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f213bbb5fac [ 2302.990279][ T1445] RBP: 00007f213bbb5fa0 R08: 00007f213c89d000 R09: 0000000000000000 [ 2302.990301][ T1445] R10: 00000000000001e8 R11: 0000000000000246 R12: 00007f213bbb5fac [ 2302.990324][ T1445] R13: 0000000000000000 R14: 00007ffe629cdf50 R15: 00007ffe629ce038 [ 2302.990368][ T1445] [ 2303.570356][ T1461] ubi0: attaching mtd0 [ 2303.604370][ T1461] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127) [ 2305.036026][ T30] audit: type=1800 audit(4294977625.551:21): pid=1479 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.5690" name="lu_gp_id" dev="configfs" ino=116161 res=0 errno=0 [ 2305.505660][ T352] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260 [ 2305.505695][ T352] Bluetooth: hci4: unexpected subevent 0x0d length: 725 > 260 [ 2305.520644][ T352] Bluetooth: hci4: Unknown advertising packet type: 0x7f [ 2305.520669][ T352] Bluetooth: hci4: adv larger than maximum supported [ 2305.527770][ T352] Bluetooth: hci4: Unknown advertising packet type: 0x73 [ 2305.534591][ T352] Bluetooth: hci4: adv larger than maximum supported [ 2305.541625][ T352] Bluetooth: hci4: adv larger than maximum supported [ 2305.548649][ T352] Bluetooth: hci4: Unknown advertising packet type: 0x20 [ 2305.555405][ T352] Bluetooth: hci4: Malformed LE Event: 0x0d [ 2306.895851][ T1515] HfR: entered promiscuous mode [ 2306.921155][ T1510] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5696'. [ 2307.037854][ T1510] HfR: left promiscuous mode [ 2307.329670][ T1520] Invalid ELF header magic: != ELF [ 2308.348935][ T1538] HfR: entered promiscuous mode [ 2308.373616][ T1538] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5706'. [ 2309.605465][ T352] Bluetooth: hci4: unexpected event 0x03 length: 725 > 11 [ 2309.923233][ T1560] can: request_module (can-proto-0) failed. [ 2310.116742][ T1569] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input85 [ 2310.951157][ T1582] FAULT_INJECTION: forcing a failure. [ 2310.951157][ T1582] name failslab, interval 1, probability 0, space 0, times 0 [ 2310.980139][ T1582] CPU: 1 UID: 0 PID: 1582 Comm: syz.1.5718 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2310.980193][ T1582] Tainted: [U]=USER [ 2310.980203][ T1582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2310.980222][ T1582] Call Trace: [ 2310.980231][ T1582] [ 2310.980242][ T1582] dump_stack_lvl+0x16c/0x1f0 [ 2310.980291][ T1582] should_fail_ex+0x512/0x640 [ 2310.980334][ T1582] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 2310.980373][ T1582] should_failslab+0xc2/0x120 [ 2310.980409][ T1582] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 2310.980443][ T1582] ? __mpol_dup+0x74/0x380 [ 2310.980488][ T1582] __mpol_dup+0x74/0x380 [ 2310.980528][ T1582] ? __pfx___mpol_dup+0x10/0x10 [ 2310.980568][ T1582] ? mas_walk+0x6a6/0x910 [ 2310.980621][ T1582] mbind_range+0x2ad/0x570 [ 2310.980666][ T1582] do_mbind+0x848/0xf30 [ 2310.980718][ T1582] ? __pfx_do_mbind+0x10/0x10 [ 2310.980757][ T1582] ? find_held_lock+0x2b/0x80 [ 2310.980788][ T1582] ? ksys_write+0x190/0x240 [ 2310.980832][ T1582] ? __pfx_get_nodes+0x10/0x10 [ 2310.980864][ T1582] ? __fget_files+0x20e/0x3c0 [ 2310.980898][ T1582] kernel_mbind+0x1e3/0x1f0 [ 2310.980943][ T1582] ? __pfx_kernel_mbind+0x10/0x10 [ 2310.980995][ T1582] do_syscall_64+0xcd/0x230 [ 2310.981042][ T1582] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2310.981072][ T1582] RIP: 0033:0x7f9a9b38e969 [ 2310.981093][ T1582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2310.981122][ T1582] RSP: 002b:00007f9a9c168038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 2310.981149][ T1582] RAX: ffffffffffffffda RBX: 00007f9a9b5b6160 RCX: 00007f9a9b38e969 [ 2310.981169][ T1582] RDX: 0000000000000004 RSI: 00000000002091ce RDI: 0000000000000000 [ 2310.981186][ T1582] RBP: 00007f9a9c168090 R08: 0000000000000006 R09: 0000000000000002 [ 2310.981204][ T1582] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2310.981221][ T1582] R13: 0000000000000001 R14: 00007f9a9b5b6160 R15: 00007ffda5b5f048 [ 2310.981258][ T1582] [ 2311.188104][ C1] vkms_vblank_simulate: vblank timer overrun [ 2311.716848][ T1590] HfR: entered promiscuous mode [ 2311.733197][ T1590] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5721'. [ 2313.627927][ T1623] FAULT_INJECTION: forcing a failure. [ 2313.627927][ T1623] name failslab, interval 1, probability 0, space 0, times 0 [ 2313.646308][ T1623] CPU: 0 UID: 0 PID: 1623 Comm: syz.3.5731 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2313.646361][ T1623] Tainted: [U]=USER [ 2313.646373][ T1623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2313.646391][ T1623] Call Trace: [ 2313.646403][ T1623] [ 2313.646416][ T1623] dump_stack_lvl+0x16c/0x1f0 [ 2313.646471][ T1623] should_fail_ex+0x512/0x640 [ 2313.646521][ T1623] ? fs_reclaim_acquire+0xae/0x150 [ 2313.646577][ T1623] should_failslab+0xc2/0x120 [ 2313.646620][ T1623] __kmalloc_cache_noprof+0x6a/0x3e0 [ 2313.646656][ T1623] ? tomoyo_init_log+0x197/0x2140 [ 2313.646711][ T1623] tomoyo_init_log+0x197/0x2140 [ 2313.646757][ T1623] ? format_decode+0x1ad/0xd40 [ 2313.646800][ T1623] ? __pfx_format_decode+0x10/0x10 [ 2313.646856][ T1623] ? __pfx_tomoyo_init_log+0x10/0x10 [ 2313.646919][ T1623] tomoyo_write_log2+0x2f7/0xc10 [ 2313.646975][ T1623] tomoyo_supervisor+0x15e/0x13b0 [ 2313.647017][ T1623] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 2313.647079][ T1623] ? lockdep_hardirqs_on+0x7c/0x110 [ 2313.647135][ T1623] ? tomoyo_check_path_acl+0xad/0x210 [ 2313.647178][ T1623] ? tomoyo_check_acl+0x1f7/0x410 [ 2313.647223][ T1623] tomoyo_path_permission+0x270/0x3b0 [ 2313.647269][ T1623] tomoyo_check_open_permission+0x37b/0x3c0 [ 2313.647314][ T1623] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 2313.647403][ T1623] ? find_held_lock+0x2b/0x80 [ 2313.647450][ T1623] tomoyo_file_open+0x6b/0x90 [ 2313.647486][ T1623] security_file_open+0x84/0x1e0 [ 2313.647536][ T1623] do_dentry_open+0x596/0x1c10 [ 2313.647586][ T1623] vfs_open+0x82/0x3f0 [ 2313.647636][ T1623] path_openat+0x1e5e/0x2d40 [ 2313.647688][ T1623] ? __pfx_path_openat+0x10/0x10 [ 2313.647734][ T1623] do_filp_open+0x20b/0x470 [ 2313.647769][ T1623] ? __pfx_do_filp_open+0x10/0x10 [ 2313.647820][ T1623] ? __pfx_kfree_link+0x10/0x10 [ 2313.647879][ T1623] ? alloc_fd+0x471/0x7d0 [ 2313.647945][ T1623] do_sys_openat2+0x11b/0x1d0 [ 2313.647992][ T1623] ? __pfx_do_sys_openat2+0x10/0x10 [ 2313.648042][ T1623] ? __sys_sendmsg+0x199/0x220 [ 2313.648101][ T1623] __x64_sys_openat+0x174/0x210 [ 2313.648149][ T1623] ? __pfx___x64_sys_openat+0x10/0x10 [ 2313.648200][ T1623] ? rcu_is_watching+0x12/0xc0 [ 2313.648246][ T1623] do_syscall_64+0xcd/0x230 [ 2313.648301][ T1623] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2313.648337][ T1623] RIP: 0033:0x7f2398f8d2d0 [ 2313.648363][ T1623] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 2313.648394][ T1623] RSP: 002b:00007f2399e63fe0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 2313.648425][ T1623] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f2398f8d2d0 [ 2313.648447][ T1623] RDX: 0000000000000002 RSI: 00007f2399010d96 RDI: 00000000ffffff9c [ 2313.648466][ T1623] RBP: 00007f2399010d96 R08: 0000000000000000 R09: 00007f2399e65000 [ 2313.648487][ T1623] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000006 [ 2313.648506][ T1623] R13: 0000000000000000 R14: 00007f23991b5fa0 R15: 00007ffed00dbbd8 [ 2313.648550][ T1623] [ 2313.649001][ T1623] FAULT_INJECTION: forcing a failure. [ 2313.649001][ T1623] name failslab, interval 1, probability 0, space 0, times 0 [ 2313.983723][ T1623] CPU: 0 UID: 0 PID: 1623 Comm: syz.3.5731 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2313.983776][ T1623] Tainted: [U]=USER [ 2313.983787][ T1623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2313.983806][ T1623] Call Trace: [ 2313.983817][ T1623] [ 2313.983830][ T1623] dump_stack_lvl+0x16c/0x1f0 [ 2313.983885][ T1623] should_fail_ex+0x512/0x640 [ 2313.983934][ T1623] ? __kmalloc_noprof+0xbf/0x510 [ 2313.983977][ T1623] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 2313.984044][ T1623] should_failslab+0xc2/0x120 [ 2313.984087][ T1623] __kmalloc_noprof+0xd2/0x510 [ 2313.984126][ T1623] ? __pfx___mutex_trylock_common+0x10/0x10 [ 2313.984183][ T1623] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 2313.984249][ T1623] genl_family_rcv_msg_doit+0xbf/0x2f0 [ 2313.984304][ T1623] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 2313.984357][ T1623] ? trace_cap_capable+0x18d/0x200 [ 2313.984404][ T1623] ? bpf_lsm_capable+0x9/0x10 [ 2313.984440][ T1623] ? security_capable+0x7e/0x260 [ 2313.984477][ T1623] ? ns_capable+0xd7/0x110 [ 2313.984517][ T1623] genl_rcv_msg+0x55c/0x800 [ 2313.984576][ T1623] ? __pfx_genl_rcv_msg+0x10/0x10 [ 2313.984624][ T1623] ? __pfx___dev_queue_xmit+0x10/0x10 [ 2313.984658][ T1623] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 2313.984718][ T1623] ? __lock_acquire+0xaa4/0x1ba0 [ 2313.984773][ T1623] netlink_rcv_skb+0x16a/0x440 [ 2313.984818][ T1623] ? __pfx_genl_rcv_msg+0x10/0x10 [ 2313.984873][ T1623] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 2313.984942][ T1623] ? __pfx_down_read+0x10/0x10 [ 2313.984977][ T1623] ? netlink_deliver_tap+0x1ae/0xd30 [ 2313.985036][ T1623] genl_rcv+0x28/0x40 [ 2313.985082][ T1623] netlink_unicast+0x53d/0x7f0 [ 2313.985133][ T1623] ? __pfx_netlink_unicast+0x10/0x10 [ 2313.985175][ T1623] ? __lock_acquire+0xaa4/0x1ba0 [ 2313.985231][ T1623] netlink_sendmsg+0x8d1/0xdd0 [ 2313.985285][ T1623] ? __pfx_netlink_sendmsg+0x10/0x10 [ 2313.985348][ T1623] ____sys_sendmsg+0xa95/0xc70 [ 2313.985402][ T1623] ? copy_msghdr_from_user+0x10a/0x160 [ 2313.985443][ T1623] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2313.985517][ T1623] ___sys_sendmsg+0x134/0x1d0 [ 2313.985562][ T1623] ? __pfx____sys_sendmsg+0x10/0x10 [ 2313.985661][ T1623] __sys_sendmsg+0x16d/0x220 [ 2313.985704][ T1623] ? __pfx___sys_sendmsg+0x10/0x10 [ 2313.985760][ T1623] ? rcu_is_watching+0x12/0xc0 [ 2313.985807][ T1623] do_syscall_64+0xcd/0x230 [ 2313.985863][ T1623] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2313.985898][ T1623] RIP: 0033:0x7f2398f8e969 [ 2313.985923][ T1623] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2313.985956][ T1623] RSP: 002b:00007f2399e64038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2313.985986][ T1623] RAX: ffffffffffffffda RBX: 00007f23991b5fa0 RCX: 00007f2398f8e969 [ 2313.986028][ T1623] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000007 [ 2313.986049][ T1623] RBP: 00007f2399e64090 R08: 0000000000000000 R09: 0000000000000000 [ 2313.986069][ T1623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2313.986088][ T1623] R13: 0000000000000000 R14: 00007f23991b5fa0 R15: 00007ffed00dbbd8 [ 2313.986131][ T1623] [ 2315.384914][ T1642] mkiss: ax0: crc mode is auto. [ 2315.486149][ T1642] FAULT_INJECTION: forcing a failure. [ 2315.486149][ T1642] name failslab, interval 1, probability 0, space 0, times 0 [ 2315.568352][ T1642] CPU: 0 UID: 0 PID: 1642 Comm: syz.3.5735 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2315.568406][ T1642] Tainted: [U]=USER [ 2315.568418][ T1642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2315.568436][ T1642] Call Trace: [ 2315.568448][ T1642] [ 2315.568462][ T1642] dump_stack_lvl+0x16c/0x1f0 [ 2315.568516][ T1642] should_fail_ex+0x512/0x640 [ 2315.568564][ T1642] ? fs_reclaim_acquire+0xae/0x150 [ 2315.568617][ T1642] should_failslab+0xc2/0x120 [ 2315.568659][ T1642] __kmalloc_cache_noprof+0x6a/0x3e0 [ 2315.568696][ T1642] ? tomoyo_init_log+0x197/0x2140 [ 2315.568752][ T1642] tomoyo_init_log+0x197/0x2140 [ 2315.568799][ T1642] ? format_decode+0x1ad/0xd40 [ 2315.568841][ T1642] ? __pfx_format_decode+0x10/0x10 [ 2315.568886][ T1642] ? number+0x9aa/0xc70 [ 2315.568928][ T1642] ? __pfx_tomoyo_init_log+0x10/0x10 [ 2315.568995][ T1642] tomoyo_write_log2+0x2f7/0xc10 [ 2315.569073][ T1642] tomoyo_supervisor+0x15e/0x13b0 [ 2315.569115][ T1642] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 2315.569154][ T1642] ? __pfx_vsnprintf+0x10/0x10 [ 2315.569223][ T1642] ? tomoyo_encode2+0x329/0x3e0 [ 2315.569282][ T1642] ? tomoyo_check_path_number_acl+0xa6/0x2f0 [ 2315.569349][ T1642] tomoyo_path_number_perm+0x448/0x580 [ 2315.569398][ T1642] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 2315.569453][ T1642] ? find_held_lock+0x2b/0x80 [ 2315.569527][ T1642] ? find_held_lock+0x2b/0x80 [ 2315.569560][ T1642] ? hook_file_ioctl_common+0x145/0x410 [ 2315.569617][ T1642] ? __fget_files+0x20e/0x3c0 [ 2315.569657][ T1642] security_file_ioctl+0x9b/0x240 [ 2315.569705][ T1642] __x64_sys_ioctl+0xb7/0x200 [ 2315.569763][ T1642] do_syscall_64+0xcd/0x230 [ 2315.569817][ T1642] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2315.569852][ T1642] RIP: 0033:0x7f2398f8e969 [ 2315.569878][ T1642] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2315.569910][ T1642] RSP: 002b:00007f2399e64038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2315.569946][ T1642] RAX: ffffffffffffffda RBX: 00007f23991b5fa0 RCX: 00007f2398f8e969 [ 2315.569968][ T1642] RDX: 0000000000000000 RSI: 0000000000008924 RDI: 0000000000000007 [ 2315.569992][ T1642] RBP: 00007f2399e64090 R08: 0000000000000000 R09: 0000000000000000 [ 2315.570014][ T1642] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2315.570034][ T1642] R13: 0000000000000000 R14: 00007f23991b5fa0 R15: 00007ffed00dbbd8 [ 2315.570078][ T1642] [ 2316.092108][ T1650] zram: Added device: zram43 [ 2317.865041][ T1687] FAULT_INJECTION: forcing a failure. [ 2317.865041][ T1687] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2317.915440][ T1687] CPU: 1 UID: 0 PID: 1687 Comm: syz.2.5748 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2317.915492][ T1687] Tainted: [U]=USER [ 2317.915539][ T1687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2317.915558][ T1687] Call Trace: [ 2317.915570][ T1687] [ 2317.915582][ T1687] dump_stack_lvl+0x16c/0x1f0 [ 2317.915634][ T1687] should_fail_ex+0x512/0x640 [ 2317.915689][ T1687] _copy_from_user+0x2e/0xd0 [ 2317.915722][ T1687] do_pages_stat+0x239/0x800 [ 2317.915781][ T1687] ? __pfx_do_pages_stat+0x10/0x10 [ 2317.915862][ T1687] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 2317.915907][ T1687] ? lockdep_hardirqs_on+0x7c/0x110 [ 2317.915954][ T1687] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 2317.916007][ T1687] kernel_move_pages+0xfd5/0x13a0 [ 2317.916069][ T1687] ? __pfx_kernel_move_pages+0x10/0x10 [ 2317.916120][ T1687] ? __fget_files+0x20e/0x3c0 [ 2317.916160][ T1687] ? fput+0x70/0xf0 [ 2317.916200][ T1687] ? ksys_write+0x1b9/0x240 [ 2317.916232][ T1687] ? __pfx_ksys_write+0x10/0x10 [ 2317.916264][ T1687] ? rcu_is_watching+0x12/0xc0 [ 2317.916301][ T1687] __x64_sys_move_pages+0xe0/0x1c0 [ 2317.916350][ T1687] ? do_syscall_64+0x91/0x230 [ 2317.916402][ T1687] ? lockdep_hardirqs_on+0x7c/0x110 [ 2317.916450][ T1687] do_syscall_64+0xcd/0x230 [ 2317.916512][ T1687] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2317.916547][ T1687] RIP: 0033:0x7f213b98e969 [ 2317.916574][ T1687] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2317.916605][ T1687] RSP: 002b:00007f213c89c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000117 [ 2317.916636][ T1687] RAX: ffffffffffffffda RBX: 00007f213bbb5fa0 RCX: 00007f213b98e969 [ 2317.916656][ T1687] RDX: 0000000000000000 RSI: 0000000000001002 RDI: 0000000000000000 [ 2317.916677][ T1687] RBP: 00007f213c89c090 R08: 0000000000000000 R09: 0000000000000002 [ 2317.916698][ T1687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2317.916718][ T1687] R13: 0000000000000000 R14: 00007f213bbb5fa0 R15: 00007ffe629ce038 [ 2317.916760][ T1687] [ 2318.132650][ C1] vkms_vblank_simulate: vblank timer overrun [ 2318.828779][ T352] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 2318.828828][ T352] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 2318.845249][ T352] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 2318.845283][ T352] Bluetooth: hci1: adv larger than maximum supported [ 2318.852367][ T352] Bluetooth: hci1: Unknown advertising packet type: 0x73 [ 2318.861984][ T352] Bluetooth: hci1: adv larger than maximum supported [ 2318.884390][ T352] Bluetooth: hci1: adv larger than maximum supported [ 2318.891163][ T352] Bluetooth: hci1: Unknown advertising packet type: 0x20 [ 2318.898310][ T352] Bluetooth: hci1: Malformed LE Event: 0x0d [ 2319.503253][ T1706] FAULT_INJECTION: forcing a failure. [ 2319.503253][ T1706] name failslab, interval 1, probability 0, space 0, times 0 [ 2319.564882][ T1706] CPU: 1 UID: 5 PID: 1706 Comm: syz.3.5750 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2319.564939][ T1706] Tainted: [U]=USER [ 2319.564951][ T1706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2319.564970][ T1706] Call Trace: [ 2319.564981][ T1706] [ 2319.564994][ T1706] dump_stack_lvl+0x16c/0x1f0 [ 2319.565051][ T1706] should_fail_ex+0x512/0x640 [ 2319.565101][ T1706] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 2319.565148][ T1706] should_failslab+0xc2/0x120 [ 2319.565193][ T1706] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 2319.565235][ T1706] ? __d_alloc+0x31/0xaa0 [ 2319.565280][ T1706] __d_alloc+0x31/0xaa0 [ 2319.565323][ T1706] d_alloc_pseudo+0x1c/0xc0 [ 2319.565371][ T1706] alloc_file_pseudo+0xcf/0x230 [ 2319.565428][ T1706] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 2319.565477][ T1706] ? alloc_fd+0x471/0x7d0 [ 2319.565537][ T1706] __anon_inode_getfile+0xf7/0x370 [ 2319.565600][ T1706] anon_inode_getfile_fmode+0x37/0xa0 [ 2319.565660][ T1706] __do_sys_fanotify_init+0x8e3/0xb80 [ 2319.565710][ T1706] do_syscall_64+0xcd/0x230 [ 2319.565767][ T1706] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2319.565802][ T1706] RIP: 0033:0x7f2398f8e969 [ 2319.565829][ T1706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2319.565863][ T1706] RSP: 002b:00007f2399e64038 EFLAGS: 00000246 ORIG_RAX: 000000000000012c [ 2319.565895][ T1706] RAX: ffffffffffffffda RBX: 00007f23991b5fa0 RCX: 00007f2398f8e969 [ 2319.565918][ T1706] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000200 [ 2319.565939][ T1706] RBP: 00007f2399010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 2319.565961][ T1706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2319.565982][ T1706] R13: 0000000000000000 R14: 00007f23991b5fa0 R15: 00007ffed00dbbd8 [ 2319.566026][ T1706] [ 2319.763206][ C1] vkms_vblank_simulate: vblank timer overrun [ 2319.861799][ T1706] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5750'. [ 2319.962315][ T1708] FAULT_INJECTION: forcing a failure. [ 2319.962315][ T1708] name failslab, interval 1, probability 0, space 0, times 0 [ 2320.024475][ T1708] CPU: 1 UID: 0 PID: 1708 Comm: syz.2.5751 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2320.024514][ T1708] Tainted: [U]=USER [ 2320.024522][ T1708] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2320.024536][ T1708] Call Trace: [ 2320.024544][ T1708] [ 2320.024554][ T1708] dump_stack_lvl+0x16c/0x1f0 [ 2320.024594][ T1708] should_fail_ex+0x512/0x640 [ 2320.024637][ T1708] should_failslab+0xc2/0x120 [ 2320.024669][ T1708] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 2320.024699][ T1708] ? skb_clone+0x190/0x3f0 [ 2320.024735][ T1708] skb_clone+0x190/0x3f0 [ 2320.024769][ T1708] netlink_deliver_tap+0xabd/0xd30 [ 2320.024808][ T1708] netlink_dump+0xb6d/0xd00 [ 2320.024844][ T1708] ? __pfx_netlink_dump+0x10/0x10 [ 2320.024893][ T1708] ? __asan_memset+0x23/0x50 [ 2320.024916][ T1708] ? genl_start+0x67f/0x980 [ 2320.024957][ T1708] __netlink_dump_start+0x6d6/0x990 [ 2320.024995][ T1708] genl_family_rcv_msg_dumpit+0x1e2/0x2e0 [ 2320.025037][ T1708] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 2320.025076][ T1708] ? genl_op_from_small+0x25/0x440 [ 2320.025119][ T1708] ? __pfx_genl_start+0x10/0x10 [ 2320.025154][ T1708] ? __pfx_genl_dumpit+0x10/0x10 [ 2320.025189][ T1708] ? __pfx_genl_done+0x10/0x10 [ 2320.025228][ T1708] ? bpf_lsm_capable+0x9/0x10 [ 2320.025255][ T1708] ? security_capable+0x7e/0x260 [ 2320.025288][ T1708] genl_rcv_msg+0x46e/0x800 [ 2320.025330][ T1708] ? __pfx_genl_rcv_msg+0x10/0x10 [ 2320.025373][ T1708] ? __pfx___dev_queue_xmit+0x10/0x10 [ 2320.025399][ T1708] ? __pfx_ip_vs_genl_dump_services+0x10/0x10 [ 2320.025438][ T1708] ? __lock_acquire+0xaa4/0x1ba0 [ 2320.025476][ T1708] netlink_rcv_skb+0x16a/0x440 [ 2320.025512][ T1708] ? __pfx_genl_rcv_msg+0x10/0x10 [ 2320.025551][ T1708] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 2320.025599][ T1708] ? __pfx_down_read+0x10/0x10 [ 2320.025624][ T1708] ? netlink_deliver_tap+0x1ae/0xd30 [ 2320.025660][ T1708] genl_rcv+0x28/0x40 [ 2320.025694][ T1708] netlink_unicast+0x53d/0x7f0 [ 2320.025732][ T1708] ? __pfx_netlink_unicast+0x10/0x10 [ 2320.025764][ T1708] ? __lock_acquire+0xaa4/0x1ba0 [ 2320.025805][ T1708] netlink_sendmsg+0x8d1/0xdd0 [ 2320.025844][ T1708] ? __pfx_netlink_sendmsg+0x10/0x10 [ 2320.025891][ T1708] ____sys_sendmsg+0xa95/0xc70 [ 2320.025931][ T1708] ? copy_msghdr_from_user+0x10a/0x160 [ 2320.025962][ T1708] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2320.026016][ T1708] ___sys_sendmsg+0x134/0x1d0 [ 2320.026049][ T1708] ? __pfx____sys_sendmsg+0x10/0x10 [ 2320.026119][ T1708] __sys_sendmsg+0x16d/0x220 [ 2320.026151][ T1708] ? __pfx___sys_sendmsg+0x10/0x10 [ 2320.026192][ T1708] ? rcu_is_watching+0x12/0xc0 [ 2320.026224][ T1708] do_syscall_64+0xcd/0x230 [ 2320.026262][ T1708] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2320.026285][ T1708] RIP: 0033:0x7f213b98e969 [ 2320.026303][ T1708] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2320.026326][ T1708] RSP: 002b:00007f213c89c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2320.026349][ T1708] RAX: ffffffffffffffda RBX: 00007f213bbb5fa0 RCX: 00007f213b98e969 [ 2320.026369][ T1708] RDX: 0000000020000800 RSI: 00002000000015c0 RDI: 0000000000000006 [ 2320.026384][ T1708] RBP: 00007f213c89c090 R08: 0000000000000000 R09: 0000000000000000 [ 2320.026399][ T1708] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2320.026414][ T1708] R13: 0000000000000000 R14: 00007f213bbb5fa0 R15: 00007ffe629ce038 [ 2320.026445][ T1708] [ 2320.371580][ C1] vkms_vblank_simulate: vblank timer overrun [ 2323.444560][ T1749] snd_aloop snd_aloop.0: control 1:262152:7::0 is already present [ 2326.719281][ T1790] snd_aloop snd_aloop.0: control 1:262152:7::0 is already present [ 2326.745960][ T1790] FAULT_INJECTION: forcing a failure. [ 2326.745960][ T1790] name failslab, interval 1, probability 0, space 0, times 0 [ 2326.761135][ T1790] CPU: 1 UID: 0 PID: 1790 Comm: syz.1.5769 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2326.761187][ T1790] Tainted: [U]=USER [ 2326.761198][ T1790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2326.761215][ T1790] Call Trace: [ 2326.761226][ T1790] [ 2326.761239][ T1790] dump_stack_lvl+0x16c/0x1f0 [ 2326.761293][ T1790] should_fail_ex+0x512/0x640 [ 2326.761343][ T1790] ? fs_reclaim_acquire+0xae/0x150 [ 2326.761398][ T1790] ? tomoyo_encode2+0x100/0x3e0 [ 2326.761446][ T1790] should_failslab+0xc2/0x120 [ 2326.761489][ T1790] __kmalloc_noprof+0xd2/0x510 [ 2326.761528][ T1790] ? d_absolute_path+0x136/0x1a0 [ 2326.761578][ T1790] tomoyo_encode2+0x100/0x3e0 [ 2326.761632][ T1790] tomoyo_encode+0x29/0x50 [ 2326.761679][ T1790] tomoyo_realpath_from_path+0x18f/0x6e0 [ 2326.761745][ T1790] tomoyo_path_number_perm+0x245/0x580 [ 2326.761784][ T1790] ? tomoyo_path_number_perm+0x237/0x580 [ 2326.761838][ T1790] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 2326.761885][ T1790] ? find_held_lock+0x2b/0x80 [ 2326.761960][ T1790] ? hook_file_ioctl_common+0x145/0x410 [ 2326.762006][ T1790] ? __rcu_read_unlock+0x2b4/0x580 [ 2326.762055][ T1790] ? __fget_files+0x20e/0x3c0 [ 2326.762095][ T1790] security_file_ioctl+0x9b/0x240 [ 2326.762142][ T1790] __x64_sys_ioctl+0xb7/0x200 [ 2326.762194][ T1790] do_syscall_64+0xcd/0x230 [ 2326.762251][ T1790] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2326.762284][ T1790] RIP: 0033:0x7f9a9b38e969 [ 2326.762310][ T1790] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2326.762342][ T1790] RSP: 002b:00007f9a9c147038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2326.762373][ T1790] RAX: ffffffffffffffda RBX: 00007f9a9b5b6240 RCX: 00007f9a9b38e969 [ 2326.762396][ T1790] RDX: 00002000000000c0 RSI: 00000000c0405519 RDI: 0000000000000004 [ 2326.762418][ T1790] RBP: 00007f9a9c147090 R08: 0000000000000000 R09: 0000000000000000 [ 2326.762438][ T1790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2326.762459][ T1790] R13: 0000000000000000 R14: 00007f9a9b5b6240 R15: 00007ffda5b5f048 [ 2326.762503][ T1790] [ 2326.762728][ T1790] ERROR: Out of memory at tomoyo_realpath_from_path. [ 2327.557935][ T1799] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 2327.604867][ T1799] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 2327.618603][ T352] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 2327.618650][ T352] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 2327.634066][ T352] Bluetooth: hci3: Unknown advertising packet type: 0x7f [ 2327.634099][ T352] Bluetooth: hci3: adv larger than maximum supported [ 2327.641273][ T352] Bluetooth: hci3: Unknown advertising packet type: 0x73 [ 2327.648500][ T352] Bluetooth: hci3: adv larger than maximum supported [ 2327.655701][ T352] Bluetooth: hci3: adv larger than maximum supported [ 2327.662574][ T352] Bluetooth: hci3: Unknown advertising packet type: 0x20 [ 2327.669390][ T352] Bluetooth: hci3: Malformed LE Event: 0x0d [ 2327.716338][ T1799] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2327.724402][ T1799] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2327.730689][ T1799] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 2327.752167][ T1799] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2329.626415][ T352] Bluetooth: hci1: command 0x0406 tx timeout [ 2329.706361][ T352] Bluetooth: hci3: command 0x0406 tx timeout [ 2329.791386][ T352] Bluetooth: hci0: command 0x0406 tx timeout [ 2329.797561][T31602] Bluetooth: hci4: command 0x0406 tx timeout [ 2331.620728][ T1854] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 2331.641260][ T1854] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2331.651884][ T1854] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2331.673814][ T1854] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2331.887121][T31602] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260 [ 2331.887170][T31602] Bluetooth: hci4: unexpected subevent 0x0d length: 725 > 260 [ 2331.902617][T31602] Bluetooth: hci4: Unknown advertising packet type: 0x7f [ 2331.902656][T31602] Bluetooth: hci4: adv larger than maximum supported [ 2331.910479][T31602] Bluetooth: hci4: Unknown advertising packet type: 0x73 [ 2331.918276][T31602] Bluetooth: hci4: adv larger than maximum supported [ 2331.925402][T31602] Bluetooth: hci4: Malformed LE Event: 0x0d [ 2331.942354][ T1859] ima: policy update failed [ 2331.972008][ T30] audit: type=1802 audit(4294978675.475:22): pid=1859 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.5785" res=0 errno=0 [ 2333.541116][ T1889] FAULT_INJECTION: forcing a failure. [ 2333.541116][ T1889] name failslab, interval 1, probability 0, space 0, times 0 [ 2333.541246][ T1889] CPU: 1 UID: 0 PID: 1889 Comm: syz.3.5790 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2333.541292][ T1889] Tainted: [U]=USER [ 2333.541303][ T1889] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2333.541321][ T1889] Call Trace: [ 2333.541332][ T1889] [ 2333.541345][ T1889] dump_stack_lvl+0x16c/0x1f0 [ 2333.541398][ T1889] should_fail_ex+0x512/0x640 [ 2333.541445][ T1889] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 2333.541487][ T1889] should_failslab+0xc2/0x120 [ 2333.541529][ T1889] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 2333.541569][ T1889] ? __pmd_alloc+0xc3/0x870 [ 2333.541623][ T1889] __pmd_alloc+0xc3/0x870 [ 2333.541676][ T1889] __handle_mm_fault+0x948/0x2a40 [ 2333.541724][ T1889] ? __pfx___handle_mm_fault+0x10/0x10 [ 2333.541798][ T1889] handle_mm_fault+0x3fe/0xad0 [ 2333.541844][ T1889] __get_user_pages+0x771/0x36f0 [ 2333.541909][ T1889] ? __pfx_mt_find+0x10/0x10 [ 2333.541941][ T1889] ? __pfx___get_user_pages+0x10/0x10 [ 2333.542013][ T1889] populate_vma_page_range+0x278/0x3a0 [ 2333.542050][ T1889] ? __pfx_populate_vma_page_range+0x10/0x10 [ 2333.542089][ T1889] ? __pfx_find_vma_intersection+0x10/0x10 [ 2333.542143][ T1889] ? do_mmap+0x69c/0x11b0 [ 2333.542197][ T1889] __mm_populate+0x1d8/0x380 [ 2333.542232][ T1889] ? __pfx___mm_populate+0x10/0x10 [ 2333.542269][ T1889] ? up_write+0x1b2/0x520 [ 2333.542323][ T1889] vm_mmap_pgoff+0x362/0x450 [ 2333.542378][ T1889] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 2333.542434][ T1889] ? __fget_files+0x20e/0x3c0 [ 2333.542474][ T1889] ksys_mmap_pgoff+0x32c/0x5c0 [ 2333.542523][ T1889] ? __pfx_ksys_write+0x10/0x10 [ 2333.542555][ T1889] ? rcu_is_watching+0x12/0xc0 [ 2333.542591][ T1889] __x64_sys_mmap+0x125/0x190 [ 2333.542630][ T1889] do_syscall_64+0xcd/0x230 [ 2333.542683][ T1889] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2333.542717][ T1889] RIP: 0033:0x7f2398f8e969 [ 2333.542742][ T1889] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2333.542775][ T1889] RSP: 002b:00007f2399e64038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 2333.542805][ T1889] RAX: ffffffffffffffda RBX: 00007f23991b5fa0 RCX: 00007f2398f8e969 [ 2333.542828][ T1889] RDX: 0000002000000efb RSI: 0000000000810004 RDI: 0000000000000000 [ 2333.542849][ T1889] RBP: 00007f2399e64090 R08: 0000000000000003 R09: 0000000000008000 [ 2333.542870][ T1889] R10: 0008000000008011 R11: 0000000000000246 R12: 0000000000000001 [ 2333.542891][ T1889] R13: 0000000000000000 R14: 00007f23991b5fa0 R15: 00007ffed00dbbd8 [ 2333.542934][ T1889] [ 2333.632767][T31602] Bluetooth: hci1: command 0x0406 tx timeout [ 2333.726080][T31602] Bluetooth: hci0: command 0x0406 tx timeout [ 2333.726160][T31602] Bluetooth: hci4: command 0x0406 tx timeout [ 2333.726214][T31602] Bluetooth: hci3: command 0x0406 tx timeout [ 2338.456393][ T1923] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 2338.463100][ T1923] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2338.471240][ T1923] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2338.477455][ T1923] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2338.523790][ T1941] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5801'. [ 2338.685420][ T1941] team0: Port device team_slave_0 removed [ 2339.353062][ T1963] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5806'. [ 2339.398182][T31602] Bluetooth: hci1: command 0x0406 tx timeout [ 2339.693567][T31602] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260 [ 2339.693618][T31602] Bluetooth: hci4: unexpected subevent 0x0d length: 725 > 260 [ 2339.710719][T31602] bt_err_ratelimited: 2 callbacks suppressed [ 2339.710745][T31602] Bluetooth: hci4: Unknown advertising packet type: 0x7f [ 2339.717102][T31602] Bluetooth: hci4: adv larger than maximum supported [ 2339.724360][T31602] Bluetooth: hci4: Unknown advertising packet type: 0x73 [ 2339.731097][T31602] Bluetooth: hci4: adv larger than maximum supported [ 2339.738677][T31602] Bluetooth: hci4: adv larger than maximum supported [ 2339.745502][T31602] Bluetooth: hci4: Unknown advertising packet type: 0x20 [ 2339.752427][T31602] Bluetooth: hci4: Malformed LE Event: 0x0d [ 2340.095070][ T1976] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5809'. [ 2340.113161][ T1974] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 2340.141035][ T1974] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2340.151743][ T1974] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2340.168477][ T1974] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2340.395231][ T1976] team0: Port device team_slave_0 removed [ 2342.192670][T31602] Bluetooth: hci0: command 0x0406 tx timeout [ 2342.192795][ T352] Bluetooth: hci4: command 0x0406 tx timeout [ 2342.198783][T31602] Bluetooth: hci3: command 0x0406 tx timeout [ 2342.205808][T21807] Bluetooth: hci1: command 0x0406 tx timeout [ 2342.285305][ T2004] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 2342.302710][ T2004] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2342.329432][ T2004] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2342.391047][ T2004] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2342.928632][ T2027] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5822'. [ 2343.249067][T31602] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 2343.249102][T31602] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 2343.264815][T31602] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 2343.264842][T31602] Bluetooth: hci0: adv larger than maximum supported [ 2343.272023][T31602] Bluetooth: hci0: Unknown advertising packet type: 0x73 [ 2343.279201][T31602] Bluetooth: hci0: adv larger than maximum supported [ 2343.287996][T31602] Bluetooth: hci0: Malformed LE Event: 0x0d [ 2343.773859][ T2046] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 2343.783335][ T2046] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2343.812711][ T2046] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2343.819377][ T2046] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2345.798049][T31602] Bluetooth: hci3: command 0x0406 tx timeout [ 2345.805267][ T352] Bluetooth: hci1: command 0x0406 tx timeout [ 2345.878567][T31602] Bluetooth: hci4: command 0x0406 tx timeout [ 2345.885045][T31602] Bluetooth: hci0: command 0x0406 tx timeout [ 2347.255693][ T2092] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 2347.261969][ T2092] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2347.289982][ T2092] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2347.314340][ T2092] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2349.316260][ T352] Bluetooth: hci0: command 0x0406 tx timeout [ 2349.316339][T12772] Bluetooth: hci3: command 0x0406 tx timeout [ 2349.322334][ T352] Bluetooth: hci1: command 0x0406 tx timeout [ 2349.329689][T31602] Bluetooth: hci4: command 0x0406 tx timeout [ 2349.483807][ T2137] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 2349.532670][ T2137] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2349.591175][ T2137] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2349.653017][ T2137] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2351.558951][ T2138] Bluetooth: hci3: command 0x0406 tx timeout [ 2351.558992][T21807] Bluetooth: hci1: command 0x0406 tx timeout [ 2351.641006][T21807] Bluetooth: hci4: command 0x0406 tx timeout [ 2351.717799][T21807] Bluetooth: hci0: command 0x0406 tx timeout [ 2352.938880][ T2184] FAULT_INJECTION: forcing a failure. [ 2352.938880][ T2184] name failslab, interval 1, probability 0, space 0, times 0 [ 2352.997997][ T2184] CPU: 1 UID: 0 PID: 2184 Comm: syz.3.5860 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2352.998060][ T2184] Tainted: [U]=USER [ 2352.998072][ T2184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2352.998091][ T2184] Call Trace: [ 2352.998104][ T2184] [ 2352.998117][ T2184] dump_stack_lvl+0x16c/0x1f0 [ 2352.998174][ T2184] should_fail_ex+0x512/0x640 [ 2352.998224][ T2184] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 2352.998276][ T2184] should_failslab+0xc2/0x120 [ 2352.998321][ T2184] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 2352.998366][ T2184] ? find_held_lock+0x2b/0x80 [ 2352.998400][ T2184] ? kstrdup_const+0x63/0x80 [ 2352.998451][ T2184] kstrdup+0x53/0x100 [ 2352.998498][ T2184] kstrdup_const+0x63/0x80 [ 2352.998543][ T2184] __kernfs_new_node+0x9b/0x8a0 [ 2352.998583][ T2184] ? __pfx___kernfs_new_node+0x10/0x10 [ 2352.998628][ T2184] ? find_held_lock+0x2b/0x80 [ 2352.998663][ T2184] ? kernfs_root+0xee/0x2a0 [ 2352.998706][ T2184] kernfs_new_node+0x13c/0x1e0 [ 2352.998747][ T2184] ? __mutex_trylock_common+0xe9/0x250 [ 2352.998799][ T2184] kernfs_create_dir_ns+0x4c/0x1a0 [ 2352.998840][ T2184] sysfs_create_dir_ns+0x13a/0x2b0 [ 2352.998892][ T2184] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 2352.998945][ T2184] ? find_held_lock+0x2b/0x80 [ 2352.998992][ T2184] ? class_dir_child_ns_type+0xd/0x60 [ 2352.999052][ T2184] kobject_add_internal+0x2c4/0x9b0 [ 2352.999097][ T2184] kobject_add+0x16e/0x240 [ 2352.999132][ T2184] ? __pfx_kobject_add+0x10/0x10 [ 2352.999168][ T2184] ? get_device_parent+0x1c5/0x4e0 [ 2352.999216][ T2184] ? kobject_put+0xab/0x5a0 [ 2352.999261][ T2184] device_add+0x288/0x1a70 [ 2352.999315][ T2184] ? __pfx_device_add+0x10/0x10 [ 2352.999360][ T2184] ? kfree+0x252/0x4d0 [ 2352.999408][ T2184] device_create_groups_vargs+0x1f8/0x270 [ 2352.999467][ T2184] device_create+0xed/0x130 [ 2352.999519][ T2184] ? __pfx_device_create+0x10/0x10 [ 2352.999575][ T2184] ? do_init_timer+0xc9/0x110 [ 2352.999615][ T2184] ? ieee80211_roc_setup+0x136/0x270 [ 2352.999665][ T2184] ? ieee80211_alloc_hw_nm+0x231/0x2260 [ 2352.999711][ T2184] mac80211_hwsim_new_radio+0x369/0x54d0 [ 2352.999789][ T2184] ? __asan_memset+0x23/0x50 [ 2352.999824][ T2184] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 2352.999895][ T2184] hwsim_new_radio_nl+0xb51/0x12c0 [ 2352.999953][ T2184] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 2353.000022][ T2184] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 2353.000087][ T2184] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 2353.000154][ T2184] genl_family_rcv_msg_doit+0x206/0x2f0 [ 2353.000213][ T2184] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 2353.000268][ T2184] ? trace_cap_capable+0x18d/0x200 [ 2353.000317][ T2184] ? bpf_lsm_capable+0x9/0x10 [ 2353.000354][ T2184] ? security_capable+0x7e/0x260 [ 2353.000392][ T2184] ? ns_capable+0xd7/0x110 [ 2353.000434][ T2184] genl_rcv_msg+0x55c/0x800 [ 2353.000491][ T2184] ? __pfx_genl_rcv_msg+0x10/0x10 [ 2353.000542][ T2184] ? __pfx___dev_queue_xmit+0x10/0x10 [ 2353.000578][ T2184] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 2353.000637][ T2184] ? __lock_acquire+0xaa4/0x1ba0 [ 2353.000691][ T2184] netlink_rcv_skb+0x16a/0x440 [ 2353.000737][ T2184] ? __pfx_genl_rcv_msg+0x10/0x10 [ 2353.000790][ T2184] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 2353.000860][ T2184] ? __pfx_down_read+0x10/0x10 [ 2353.000895][ T2184] ? netlink_deliver_tap+0x1ae/0xd30 [ 2353.000947][ T2184] genl_rcv+0x28/0x40 [ 2353.000994][ T2184] netlink_unicast+0x53d/0x7f0 [ 2353.001054][ T2184] ? __pfx_netlink_unicast+0x10/0x10 [ 2353.001102][ T2184] ? __lock_acquire+0xaa4/0x1ba0 [ 2353.001159][ T2184] netlink_sendmsg+0x8d1/0xdd0 [ 2353.001215][ T2184] ? __pfx_netlink_sendmsg+0x10/0x10 [ 2353.001281][ T2184] ____sys_sendmsg+0xa95/0xc70 [ 2353.001336][ T2184] ? copy_msghdr_from_user+0x10a/0x160 [ 2353.001380][ T2184] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2353.001440][ T2184] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 2353.001500][ T2184] ___sys_sendmsg+0x134/0x1d0 [ 2353.001546][ T2184] ? __pfx____sys_sendmsg+0x10/0x10 [ 2353.001647][ T2184] __sys_sendmsg+0x16d/0x220 [ 2353.001691][ T2184] ? __pfx___sys_sendmsg+0x10/0x10 [ 2353.001733][ T2184] ? __x64_sys_futex+0x1e0/0x4c0 [ 2353.001801][ T2184] do_syscall_64+0xcd/0x230 [ 2353.001858][ T2184] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2353.001894][ T2184] RIP: 0033:0x7f2398f8e969 [ 2353.001923][ T2184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2353.001958][ T2184] RSP: 002b:00007f2399e64038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2353.001991][ T2184] RAX: ffffffffffffffda RBX: 00007f23991b5fa0 RCX: 00007f2398f8e969 [ 2353.002015][ T2184] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000006 [ 2353.002047][ T2184] RBP: 00007f2399010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 2353.002069][ T2184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2353.002090][ T2184] R13: 0000000000000000 R14: 00007f23991b5fa0 R15: 00007ffed00dbbd8 [ 2353.002138][ T2184] [ 2353.002157][ T2184] kobject: kobject_add_internal failed for hwsim83 (error: -12 parent: mac80211_hwsim) [ 2355.165613][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 2355.172892][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 2355.427438][ T2192] zswap: compressor not available [ 2356.576053][ T2221] can: request_module (can-proto-3) failed. [ 2359.732145][T21807] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 2359.732194][T21807] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 2359.747392][T21807] bt_err_ratelimited: 2 callbacks suppressed [ 2359.747408][T21807] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 2359.753612][T21807] Bluetooth: hci0: adv larger than maximum supported [ 2359.760655][T21807] Bluetooth: hci0: Unknown advertising packet type: 0x73 [ 2359.767666][T21807] Bluetooth: hci0: adv larger than maximum supported [ 2359.774788][T21807] Bluetooth: hci0: adv larger than maximum supported [ 2359.782217][T21807] Bluetooth: hci0: Unknown advertising packet type: 0x20 [ 2359.788914][T21807] Bluetooth: hci0: Malformed LE Event: 0x0d [ 2360.600907][ T2287] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5880'. [ 2360.616406][ T2287] ipvlan1: entered allmulticast mode [ 2360.631853][ T2287] veth0_vlan: entered allmulticast mode [ 2360.663205][ T2287] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5880'. [ 2360.749207][ T2290] nfsd: Unknown parameter 'Z' [ 2361.000654][ T2295] usb usb2: usbfs: process 2295 (syz.2.5877) did not claim interface 1 before use [ 2362.029798][ T2310] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 2362.115564][ T2310] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2362.181061][ T2310] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2362.206655][ T2310] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2363.344650][ T2325] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5887'. [ 2364.042951][ T2346] FAULT_INJECTION: forcing a failure. [ 2364.042951][ T2346] name failslab, interval 1, probability 0, space 0, times 0 [ 2364.043656][T21807] Bluetooth: hci1: command 0x0406 tx timeout [ 2364.064599][ T2347] ubi0: attaching mtd0 [ 2364.073254][ T2347] ubi0: scanning is finished [ 2364.096543][ T2347] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 2364.123875][T21807] Bluetooth: hci3: command 0x0406 tx timeout [ 2364.143496][ T2346] CPU: 0 UID: 0 PID: 2346 Comm: syz.1.5892 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2364.143549][ T2346] Tainted: [U]=USER [ 2364.143560][ T2346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2364.143587][ T2346] Call Trace: [ 2364.143598][ T2346] [ 2364.143612][ T2346] dump_stack_lvl+0x16c/0x1f0 [ 2364.143668][ T2346] should_fail_ex+0x512/0x640 [ 2364.143715][ T2346] ? fs_reclaim_acquire+0xae/0x150 [ 2364.143770][ T2346] ? tomoyo_encode2+0x100/0x3e0 [ 2364.143816][ T2346] should_failslab+0xc2/0x120 [ 2364.143860][ T2346] __kmalloc_noprof+0xd2/0x510 [ 2364.143898][ T2346] ? d_absolute_path+0x136/0x1a0 [ 2364.143948][ T2346] tomoyo_encode2+0x100/0x3e0 [ 2364.144002][ T2346] tomoyo_encode+0x29/0x50 [ 2364.144049][ T2346] tomoyo_realpath_from_path+0x18f/0x6e0 [ 2364.144115][ T2346] tomoyo_get_exe+0x63/0xa0 [ 2364.144152][ T2346] tomoyo_write_control+0x689/0x1430 [ 2364.144208][ T2346] ? __pfx_tomoyo_write_control+0x10/0x10 [ 2364.144257][ T2346] vfs_write+0x25c/0x1180 [ 2364.144289][ T2346] ? __pfx_tomoyo_write+0x10/0x10 [ 2364.144347][ T2346] ? __pfx___mutex_lock+0x10/0x10 [ 2364.144397][ T2346] ? __pfx_vfs_write+0x10/0x10 [ 2364.144444][ T2346] ? __fget_files+0x20e/0x3c0 [ 2364.144489][ T2346] ksys_write+0x12a/0x240 [ 2364.144523][ T2346] ? __pfx_ksys_write+0x10/0x10 [ 2364.144554][ T2346] ? rcu_is_watching+0x12/0xc0 [ 2364.144610][ T2346] do_syscall_64+0xcd/0x230 [ 2364.144665][ T2346] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2364.144700][ T2346] RIP: 0033:0x7f9a9b38e969 [ 2364.144727][ T2346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2364.144759][ T2346] RSP: 002b:00007f9a9c1aa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 2364.144791][ T2346] RAX: ffffffffffffffda RBX: 00007f9a9b5b5fa0 RCX: 00007f9a9b38e969 [ 2364.144812][ T2346] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003 [ 2364.144833][ T2346] RBP: 00007f9a9c1aa090 R08: 0000000000000000 R09: 0000000000000000 [ 2364.144853][ T2346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2364.144874][ T2346] R13: 0000000000000000 R14: 00007f9a9b5b5fa0 R15: 00007ffda5b5f048 [ 2364.144918][ T2346] [ 2364.144948][ T2346] ERROR: Out of memory at tomoyo_realpath_from_path. [ 2364.283622][ T2138] Bluetooth: hci4: command 0x0406 tx timeout [ 2364.391528][T21807] Bluetooth: hci0: command 0x0406 tx timeout [ 2364.585008][ T2347] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 2364.722322][ T2354] FAULT_INJECTION: forcing a failure. [ 2364.722322][ T2354] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2364.739600][ T2354] CPU: 1 UID: 0 PID: 2354 Comm: syz.1.5894 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2364.739662][ T2354] Tainted: [U]=USER [ 2364.739674][ T2354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2364.739695][ T2354] Call Trace: [ 2364.739707][ T2354] [ 2364.739720][ T2354] dump_stack_lvl+0x16c/0x1f0 [ 2364.739778][ T2354] should_fail_ex+0x512/0x640 [ 2364.739841][ T2354] should_fail_alloc_page+0xe7/0x130 [ 2364.739891][ T2354] prepare_alloc_pages+0x3c2/0x610 [ 2364.739953][ T2354] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 2364.740018][ T2354] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 2364.740063][ T2354] ? __lock_acquire+0x5ca/0x1ba0 [ 2364.740140][ T2354] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 2364.740194][ T2354] ? policy_nodemask+0xea/0x4e0 [ 2364.740244][ T2354] alloc_pages_mpol+0x1fb/0x550 [ 2364.740293][ T2354] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 2364.740342][ T2354] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 2364.740395][ T2354] folio_alloc_mpol_noprof+0x36/0x2f0 [ 2364.740451][ T2354] shmem_alloc_folio+0x135/0x160 [ 2364.740490][ T2354] shmem_alloc_and_add_folio+0x499/0xc20 [ 2364.740569][ T2354] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 2364.740623][ T2354] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 2364.740698][ T2354] shmem_get_folio_gfp+0x687/0x1530 [ 2364.740755][ T2354] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 2364.740808][ T2354] ? filemap_map_pages+0xf6c/0x1680 [ 2364.740863][ T2354] shmem_fault+0x1fe/0xa30 [ 2364.740913][ T2354] ? __pfx_shmem_fault+0x10/0x10 [ 2364.740969][ T2354] ? __pfx_filemap_map_pages+0x10/0x10 [ 2364.741032][ T2354] __do_fault+0x10a/0x490 [ 2364.741084][ T2354] do_pte_missing+0x1031/0x3fb0 [ 2364.741130][ T2354] ? __handle_mm_fault+0x1010/0x2a40 [ 2364.741177][ T2354] __handle_mm_fault+0x103d/0x2a40 [ 2364.741232][ T2354] ? __pfx___handle_mm_fault+0x10/0x10 [ 2364.741300][ T2354] ? find_vma+0xbf/0x140 [ 2364.741352][ T2354] ? __pfx_find_vma+0x10/0x10 [ 2364.741412][ T2354] handle_mm_fault+0x3fe/0xad0 [ 2364.741461][ T2354] do_user_addr_fault+0x7a6/0x1370 [ 2364.741505][ T2354] ? rcu_is_watching+0x12/0xc0 [ 2364.741553][ T2354] exc_page_fault+0x5c/0xc0 [ 2364.741609][ T2354] asm_exc_page_fault+0x26/0x30 [ 2364.741643][ T2354] RIP: 0010:__get_user_1+0x14/0x30 [ 2364.741689][ T2354] Code: 12 03 04 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 ba 00 f0 ff ff ff 7f 00 00 48 39 d0 48 0f 47 c2 0f 01 cb <0f> b6 10 31 c0 0f 01 ca c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 [ 2364.741722][ T2354] RSP: 0018:ffffc90004c2fc00 EFLAGS: 00050287 [ 2364.741750][ T2354] RAX: 0000000000003000 RBX: 0000000000004000 RCX: 000000000000fdef [ 2364.741772][ T2354] RDX: 00007ffffffff000 RSI: ffffffff8483f261 RDI: ffffffff8bf48ea0 [ 2364.741795][ T2354] RBP: ffff88805d8a3000 R08: 9e28260949dcd3b2 R09: 0000000000000001 [ 2364.741818][ T2354] R10: 0000000000000004 R11: 0000000000000000 R12: 000000000000cdef [ 2364.741838][ T2354] R13: 0000000000002e18 R14: ffffed100bb14661 R15: 0000000000003fff [ 2364.741876][ T2354] ? tomoyo_write_control+0x321/0x1430 [ 2364.741919][ T2354] tomoyo_write_control+0x336/0x1430 [ 2364.741978][ T2354] ? __pfx_tomoyo_write_control+0x10/0x10 [ 2364.742032][ T2354] vfs_write+0x25c/0x1180 [ 2364.742064][ T2354] ? __pfx_tomoyo_write+0x10/0x10 [ 2364.742126][ T2354] ? __pfx___mutex_lock+0x10/0x10 [ 2364.742181][ T2354] ? __pfx_vfs_write+0x10/0x10 [ 2364.742231][ T2354] ? __fget_files+0x20e/0x3c0 [ 2364.742279][ T2354] ksys_write+0x12a/0x240 [ 2364.742316][ T2354] ? __pfx_ksys_write+0x10/0x10 [ 2364.742349][ T2354] ? rcu_is_watching+0x12/0xc0 [ 2364.742396][ T2354] do_syscall_64+0xcd/0x230 [ 2364.742454][ T2354] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2364.742491][ T2354] RIP: 0033:0x7f9a9b38e969 [ 2364.742518][ T2354] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2364.742557][ T2354] RSP: 002b:00007f9a9c1aa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 2364.742589][ T2354] RAX: ffffffffffffffda RBX: 00007f9a9b5b5fa0 RCX: 00007f9a9b38e969 [ 2364.742612][ T2354] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003 [ 2364.742634][ T2354] RBP: 00007f9a9b410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 2364.742655][ T2354] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2364.742676][ T2354] R13: 0000000000000000 R14: 00007f9a9b5b5fa0 R15: 00007ffda5b5f048 [ 2364.742723][ T2354] [ 2365.525974][ T2362] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 2365.536940][ T2365] FAULT_INJECTION: forcing a failure. [ 2365.536940][ T2365] name failslab, interval 1, probability 0, space 0, times 0 [ 2365.591882][ T2362] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2365.599595][ T2365] CPU: 0 UID: 0 PID: 2365 Comm: syz.1.5897 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2365.599646][ T2365] Tainted: [U]=USER [ 2365.599657][ T2365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2365.599677][ T2365] Call Trace: [ 2365.599687][ T2365] [ 2365.599707][ T2365] dump_stack_lvl+0x16c/0x1f0 [ 2365.599761][ T2365] should_fail_ex+0x512/0x640 [ 2365.599809][ T2365] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 2365.599853][ T2365] should_failslab+0xc2/0x120 [ 2365.599896][ T2365] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 2365.599935][ T2365] ? __alloc_skb+0x2b2/0x380 [ 2365.599981][ T2365] __alloc_skb+0x2b2/0x380 [ 2365.600019][ T2365] ? __pfx___alloc_skb+0x10/0x10 [ 2365.600063][ T2365] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 2365.600107][ T2365] ? __lock_acquire+0xaa4/0x1ba0 [ 2365.600159][ T2365] netlink_alloc_large_skb+0x69/0x130 [ 2365.600224][ T2365] netlink_sendmsg+0x6a1/0xdd0 [ 2365.600277][ T2365] ? __pfx_netlink_sendmsg+0x10/0x10 [ 2365.600341][ T2365] ____sys_sendmsg+0xa95/0xc70 [ 2365.600395][ T2365] ? copy_msghdr_from_user+0x10a/0x160 [ 2365.600437][ T2365] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2365.600510][ T2365] ___sys_sendmsg+0x134/0x1d0 [ 2365.600555][ T2365] ? __pfx____sys_sendmsg+0x10/0x10 [ 2365.600654][ T2365] __sys_sendmsg+0x16d/0x220 [ 2365.600696][ T2365] ? __pfx___sys_sendmsg+0x10/0x10 [ 2365.600757][ T2365] ? rcu_is_watching+0x12/0xc0 [ 2365.600801][ T2365] do_syscall_64+0xcd/0x230 [ 2365.600858][ T2365] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2365.600892][ T2365] RIP: 0033:0x7f9a9b38e969 [ 2365.600918][ T2365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2365.600951][ T2365] RSP: 002b:00007f9a9c1aa038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2365.600981][ T2365] RAX: ffffffffffffffda RBX: 00007f9a9b5b5fa0 RCX: 00007f9a9b38e969 [ 2365.601003][ T2365] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000003 [ 2365.601023][ T2365] RBP: 00007f9a9c1aa090 R08: 0000000000000000 R09: 0000000000000000 [ 2365.601043][ T2365] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2365.601064][ T2365] R13: 0000000000000000 R14: 00007f9a9b5b5fa0 R15: 00007ffda5b5f048 [ 2365.601106][ T2365] [ 2365.681718][ T2362] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2365.683831][ C0] vkms_vblank_simulate: vblank timer overrun [ 2365.699029][ T2362] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2366.056768][ T2372] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5899'. [ 2366.231260][ T2378] FAULT_INJECTION: forcing a failure. [ 2366.231260][ T2378] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2366.274891][ T2378] CPU: 1 UID: 0 PID: 2378 Comm: syz.1.5901 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2366.274933][ T2378] Tainted: [U]=USER [ 2366.274941][ T2378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2366.274955][ T2378] Call Trace: [ 2366.274963][ T2378] [ 2366.274972][ T2378] dump_stack_lvl+0x16c/0x1f0 [ 2366.275014][ T2378] should_fail_ex+0x512/0x640 [ 2366.275056][ T2378] should_fail_alloc_page+0xe7/0x130 [ 2366.275091][ T2378] prepare_alloc_pages+0x3c2/0x610 [ 2366.275130][ T2378] ? rcu_is_watching+0x12/0xc0 [ 2366.275156][ T2378] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 2366.275186][ T2378] ? kasan_save_stack+0x33/0x60 [ 2366.275215][ T2378] ? cgroup_rstat_updated+0x2a/0xb20 [ 2366.275259][ T2378] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 2366.275294][ T2378] ? lru_gen_add_folio+0x1a4/0xef0 [ 2366.275329][ T2378] ? __lock_acquire+0x5ca/0x1ba0 [ 2366.275362][ T2378] ? __lock_acquire+0x5ca/0x1ba0 [ 2366.275395][ T2378] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 2366.275430][ T2378] ? policy_nodemask+0xea/0x4e0 [ 2366.275464][ T2378] alloc_pages_mpol+0x1fb/0x550 [ 2366.275496][ T2378] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 2366.275527][ T2378] ? __lock_acquire+0x5ca/0x1ba0 [ 2366.275564][ T2378] folio_alloc_mpol_noprof+0x36/0x2f0 [ 2366.275601][ T2378] vma_alloc_folio_noprof+0xed/0x1e0 [ 2366.275643][ T2378] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 2366.275698][ T2378] do_pte_missing+0x223d/0x3fb0 [ 2366.275749][ T2378] __handle_mm_fault+0x103d/0x2a40 [ 2366.275797][ T2378] ? __pfx___handle_mm_fault+0x10/0x10 [ 2366.275832][ T2378] ? __pte_offset_map_lock+0x155/0x2f0 [ 2366.275880][ T2378] ? find_held_lock+0x2b/0x80 [ 2366.275911][ T2378] ? find_held_lock+0x2b/0x80 [ 2366.275973][ T2378] handle_mm_fault+0x3fe/0xad0 [ 2366.276016][ T2378] __get_user_pages+0x771/0x36f0 [ 2366.276081][ T2378] ? __pfx_mt_find+0x10/0x10 [ 2366.276114][ T2378] ? __pfx___get_user_pages+0x10/0x10 [ 2366.276185][ T2378] populate_vma_page_range+0x278/0x3a0 [ 2366.276222][ T2378] ? __pfx_populate_vma_page_range+0x10/0x10 [ 2366.276254][ T2378] ? __pfx_find_vma_intersection+0x10/0x10 [ 2366.276328][ T2378] ? do_mmap+0x69c/0x11b0 [ 2366.276383][ T2378] __mm_populate+0x1d8/0x380 [ 2366.276420][ T2378] ? __pfx___mm_populate+0x10/0x10 [ 2366.276457][ T2378] ? up_write+0x1b2/0x520 [ 2366.276512][ T2378] vm_mmap_pgoff+0x362/0x450 [ 2366.276568][ T2378] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 2366.276620][ T2378] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 2366.276685][ T2378] ? __x64_sys_futex+0x1e0/0x4c0 [ 2366.276720][ T2378] ? __x64_sys_futex+0x1e9/0x4c0 [ 2366.276765][ T2378] ksys_mmap_pgoff+0x7d/0x5c0 [ 2366.276815][ T2378] ? rcu_is_watching+0x12/0xc0 [ 2366.276853][ T2378] __x64_sys_mmap+0x125/0x190 [ 2366.276891][ T2378] do_syscall_64+0xcd/0x230 [ 2366.276948][ T2378] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2366.276982][ T2378] RIP: 0033:0x7f9a9b38e969 [ 2366.277008][ T2378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2366.277040][ T2378] RSP: 002b:00007f9a9c1aa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 2366.277071][ T2378] RAX: ffffffffffffffda RBX: 00007f9a9b5b5fa0 RCX: 00007f9a9b38e969 [ 2366.277092][ T2378] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 2366.277112][ T2378] RBP: 00007f9a9b410ab1 R08: 0000000000000002 R09: 0000000000008000 [ 2366.277133][ T2378] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 2366.277153][ T2378] R13: 0000000000000000 R14: 00007f9a9b5b5fa0 R15: 00007ffda5b5f048 [ 2366.277197][ T2378] [ 2367.553569][ T2388] ERROR: Out of memory at tomoyo_memory_ok. [ 2367.566417][ T2138] Bluetooth: hci1: command 0x0406 tx timeout [ 2367.600401][ T2389] ERROR: Out of memory at tomoyo_memory_ok. [ 2367.653093][ T2396] ERROR: Out of memory at tomoyo_memory_ok. [ 2367.659235][ T2138] Bluetooth: hci3: command 0x0406 tx timeout [ 2367.725548][ T2138] Bluetooth: hci4: command 0x0406 tx timeout [ 2367.885320][ T2138] Bluetooth: hci0: command 0x0406 tx timeout [ 2368.202792][ T2415] ptrace attach of "./syz-executor exec"[27778] was attempted by "./syz-executor exec"[2415] [ 2368.227034][ T2416] FAULT_INJECTION: forcing a failure. [ 2368.227034][ T2416] name failslab, interval 1, probability 0, space 0, times 0 [ 2368.255790][ T2416] CPU: 1 UID: 0 PID: 2416 Comm: syz.3.5907 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2368.255836][ T2416] Tainted: [U]=USER [ 2368.255846][ T2416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2368.255863][ T2416] Call Trace: [ 2368.255872][ T2416] [ 2368.255884][ T2416] dump_stack_lvl+0x16c/0x1f0 [ 2368.255930][ T2416] should_fail_ex+0x512/0x640 [ 2368.255972][ T2416] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 2368.256000][ T2416] should_failslab+0xc2/0x120 [ 2368.256031][ T2416] __kmalloc_cache_noprof+0x6a/0x3e0 [ 2368.256054][ T2416] ? rcu_is_watching+0x12/0xc0 [ 2368.256091][ T2416] ? s_start+0x7b/0x320 [ 2368.256125][ T2416] s_start+0x7b/0x320 [ 2368.256161][ T2416] seq_read_iter+0x2c1/0x12c0 [ 2368.256209][ T2416] seq_read+0x39e/0x4e0 [ 2368.256242][ T2416] ? __pfx_seq_read+0x10/0x10 [ 2368.256276][ T2416] ? get_pid_task+0xfc/0x250 [ 2368.256311][ T2416] ? __mutex_trylock_common+0xe9/0x250 [ 2368.256355][ T2416] ? rw_verify_area+0xcf/0x680 [ 2368.256389][ T2416] ? __pfx_seq_read+0x10/0x10 [ 2368.256433][ T2416] vfs_read+0x1de/0xc70 [ 2368.256460][ T2416] ? __pfx___mutex_lock+0x10/0x10 [ 2368.256499][ T2416] ? __pfx_vfs_read+0x10/0x10 [ 2368.256531][ T2416] ? __fget_files+0x20e/0x3c0 [ 2368.256563][ T2416] ksys_read+0x12a/0x240 [ 2368.256586][ T2416] ? __pfx_ksys_read+0x10/0x10 [ 2368.256608][ T2416] ? rcu_is_watching+0x12/0xc0 [ 2368.256640][ T2416] do_syscall_64+0xcd/0x230 [ 2368.256681][ T2416] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2368.256707][ T2416] RIP: 0033:0x7f2398f8e969 [ 2368.256726][ T2416] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2368.256750][ T2416] RSP: 002b:00007f2399e43038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2368.256773][ T2416] RAX: ffffffffffffffda RBX: 00007f23991b6080 RCX: 00007f2398f8e969 [ 2368.256790][ T2416] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000003 [ 2368.256804][ T2416] RBP: 00007f2399e43090 R08: 0000000000000000 R09: 0000000000000000 [ 2368.256820][ T2416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2368.256834][ T2416] R13: 0000000000000000 R14: 00007f23991b6080 R15: 00007ffed00dbbd8 [ 2368.256865][ T2416] [ 2368.256912][ T2416] [ 2368.481482][ T2416] ===================================== [ 2368.487035][ T2416] WARNING: bad unlock balance detected! [ 2368.492592][ T2416] 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 Tainted: G U [ 2368.501287][ T2416] ------------------------------------- [ 2368.506855][ T2416] syz.3.5907/2416 is trying to release lock (event_mutex) at: [ 2368.514356][ T2416] [] seq_read_iter+0x60d/0x12c0 [ 2368.520828][ T2416] but there are no more locks to release! [ 2368.526564][ T2416] [ 2368.526564][ T2416] other info that might help us debug this: [ 2368.534638][ T2416] 2 locks held by syz.3.5907/2416: [ 2368.539764][ T2416] #0: ffff888036e03eb8 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370 [ 2368.548866][ T2416] #1: ffff88807f4a10a0 (&p->lock){+.+.}-{4:4}, at: seq_read_iter+0xe1/0x12c0 [ 2368.557804][ T2416] [ 2368.557804][ T2416] stack backtrace: [ 2368.563706][ T2416] CPU: 1 UID: 0 PID: 2416 Comm: syz.3.5907 Tainted: G U 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) [ 2368.563746][ T2416] Tainted: [U]=USER [ 2368.563755][ T2416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2368.563771][ T2416] Call Trace: [ 2368.563782][ T2416] [ 2368.563792][ T2416] dump_stack_lvl+0x116/0x1f0 [ 2368.563833][ T2416] ? seq_read_iter+0x60d/0x12c0 [ 2368.563871][ T2416] print_unlock_imbalance_bug+0x11b/0x130 [ 2368.563906][ T2416] ? seq_read_iter+0x60d/0x12c0 [ 2368.563944][ T2416] lock_release+0x242/0x2f0 [ 2368.563980][ T2416] __mutex_unlock_slowpath+0xa2/0x6a0 [ 2368.564024][ T2416] ? rcu_is_watching+0x12/0xc0 [ 2368.564049][ T2416] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 2368.564092][ T2416] ? rcu_is_watching+0x12/0xc0 [ 2368.564122][ T2416] ? kfree+0x252/0x4d0 [ 2368.564144][ T2416] ? __kasan_kmalloc+0x8a/0xb0 [ 2368.564176][ T2416] seq_read_iter+0x60d/0x12c0 [ 2368.564222][ T2416] seq_read+0x39e/0x4e0 [ 2368.564260][ T2416] ? __pfx_seq_read+0x10/0x10 [ 2368.564298][ T2416] ? get_pid_task+0xfc/0x250 [ 2368.564336][ T2416] ? __mutex_trylock_common+0xe9/0x250 [ 2368.564380][ T2416] ? rw_verify_area+0xcf/0x680 [ 2368.564420][ T2416] ? __pfx_seq_read+0x10/0x10 [ 2368.564458][ T2416] vfs_read+0x1de/0xc70 [ 2368.564486][ T2416] ? __pfx___mutex_lock+0x10/0x10 [ 2368.564526][ T2416] ? __pfx_vfs_read+0x10/0x10 [ 2368.564555][ T2416] ? __fget_files+0x20e/0x3c0 [ 2368.564584][ T2416] ksys_read+0x12a/0x240 [ 2368.564608][ T2416] ? __pfx_ksys_read+0x10/0x10 [ 2368.564633][ T2416] ? rcu_is_watching+0x12/0xc0 [ 2368.564662][ T2416] do_syscall_64+0xcd/0x230 [ 2368.564704][ T2416] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2368.564732][ T2416] RIP: 0033:0x7f2398f8e969 [ 2368.564753][ T2416] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2368.564780][ T2416] RSP: 002b:00007f2399e43038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2368.564804][ T2416] RAX: ffffffffffffffda RBX: 00007f23991b6080 RCX: 00007f2398f8e969 [ 2368.564823][ T2416] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000003 [ 2368.564839][ T2416] RBP: 00007f2399e43090 R08: 0000000000000000 R09: 0000000000000000 [ 2368.564855][ T2416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2368.564872][ T2416] R13: 0000000000000000 R14: 00007f23991b6080 R15: 00007ffed00dbbd8 [ 2368.564897][ T2416] [ 2368.834423][ T2422] ptrace attach of "./syz-executor exec"[29862] was attempted by "./syz-executor exec"[2422]