last executing test programs: 23.331341116s ago: executing program 1 (id=2380): r0 = socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(r0, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0xb, 0x10000, 0x16, 0x401, 0x8) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioperm$auto(0x3, 0x8001, 0x2000000000000149) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) kexec_load$auto(0xff, 0x2, 0x0, 0x4) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) execve$auto(0x0, 0x0, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffff7fffffffffd, 0xd1, 0x3, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x31, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) write$auto(0xffffffffffffffff, 0x0, 0xa3d9) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_zero_fops_mem(0xffffffffffffff9c, 0x0, 0x109002, 0x0) read$auto_proc_pid_maps_operations_internal(0xffffffffffffffff, 0x0, 0x0) timer_settime$auto(0x0, 0x8, 0x0, &(0x7f0000000100)={{0xa01, 0x4}, {0x1009000, 0x800}}) pread64$auto(0xffffffffffffffff, 0x0, 0x8, 0xffff) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) 22.194678673s ago: executing program 1 (id=2382): r0 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0) write$auto_fuse_dev_operations_fuse_i(r0, &(0x7f0000000440), 0x0) r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/security/tomoyo/profile\x00', 0x1, 0x0) write$auto_tomoyo_operations_securityfs_if(r1, &(0x7f0000001300)="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", 0xbd9) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/ns_last_pid\x00', 0x68001, 0x0) write$auto(r2, 0x0, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x540b, 0xfffffffffffffffd) socket(0x3, 0x3, 0xc24) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r5 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(r5, 0x2, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x8000001f, 0x2, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000) fsopen$auto(0x0, 0x1) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) setsockopt$auto(r3, 0xc, 0x7fff, &(0x7f0000000040)='/]&&\x00', 0x7) socket(0xa, 0x5, 0x94) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) unshare$auto(0x40000080) socket(0xa, 0x1, 0x100) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/net/bond0/bonding/primary_reselect\x00', 0x1e2142, 0x0) 20.391209545s ago: executing program 1 (id=2388): ioperm$auto(0x7, 0x6, 0x2) ioperm$auto(0x8000000000000001, 0x5, 0x6) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/platform/snd_virmidi.0/sound/card2/dmmidi2/power/runtime_status\x00', 0x757a80, 0x0) write$auto(r0, 0x0, 0x81) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000000)=""/112, 0x70) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) r1 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000040), 0x8300, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0x3e1e6c34, 0x3fd, 0x8000) r2 = socket(0x2, 0x1, 0x100) sysfs$auto(0x2, 0x4, 0x0) getsockopt$auto(r2, 0x0, 0x42, 0x0, &(0x7f00000000c0)=0x1e) ioctl$auto_RTC_PIE_ON(r1, 0x7005, 0x0) r3 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r3, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r3, 0x7a0, 0x6) ioctl$auto_IOCTL_VMCI_SET_NOTIFY(r3, 0x7cb, 0xf4) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f602, 0x0) ioctl$auto_XFS_IOC_ALLOCSP64(0xffffffffffffffff, 0x40305824, &(0x7f0000000040)={0x7b3, 0x7ff, 0x6, 0x9, 0xe35, 0xffffffffffffffff}) capget$auto(&(0x7f0000000080)={0xdcd9}, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) 19.266331429s ago: executing program 1 (id=2390): r0 = socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(r0, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0xb, 0x10000, 0x16, 0x401, 0x8) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioperm$auto(0x3, 0x8001, 0x2000000000000149) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) kexec_load$auto(0xff, 0x2, 0x0, 0x4) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) execve$auto(0x0, 0x0, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffff7fffffffffd, 0xd1, 0x3, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x31, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) write$auto(0xffffffffffffffff, 0x0, 0xa3d9) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_zero_fops_mem(0xffffffffffffff9c, 0x0, 0x109002, 0x0) read$auto_proc_pid_maps_operations_internal(0xffffffffffffffff, 0x0, 0x0) timer_settime$auto(0x0, 0x8, 0x0, &(0x7f0000000100)={{0xa01, 0x4}, {0x1009000, 0x800}}) pread64$auto(0xffffffffffffffff, 0x0, 0x8, 0xffff) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) 17.440645596s ago: executing program 1 (id=2395): mmap$auto(0x3, 0x2020009, 0x100000001, 0x15, 0xffffffffffffffff, 0x9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) mmap$auto(0x0, 0x4040009, 0xd2, 0x411, 0x7, 0x28000) write$auto(0x3, 0x0, 0x7fffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume_offset\x00', 0x828100, 0x0) read$auto(r0, 0x0, 0x20) write$auto(0x1, 0x0, 0x3) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) r1 = socket(0x2b, 0x1, 0x1) r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0) sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r1, 0x0, 0x20000001) mmap$auto(0x7fffffff, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0004, 0x19) kill$auto(0x0, 0x21) madvise$auto(0x0, 0x200007, 0x8) madvise$auto(0x0, 0x2003f0, 0x15) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) r3 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x62800, 0x0) ioctl$auto_VHOST_SET_LOG_FD2(r3, 0xaf02, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001480)={'veth0_virt_wifi\x00'}) sendmsg$auto_NL80211_CMD_GET_MPP(r1, 0x0, 0x880) munmap$auto(0x8000, 0xffffffff) getrandom$auto(0x0, 0x6000000, 0x3) r4 = syz_genetlink_get_family_id$auto_nfc(&(0x7f00000000c0), r1) sendmsg$auto_NFC_CMD_STOP_POLL(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='X\x00!\x00', @ANYRES16=r4, @ANYBLOB="00022abd7000fcdbdf2507000000080004000a00000007000200283a2d000800030003000000060014"], 0x58}, 0x1, 0x0, 0x0, 0x40000}, 0x44084) mmap$auto(0x0, 0x6426, 0x3, 0x400000eb1, 0xfffffffffffffffa, 0x8000) 16.19736721s ago: executing program 1 (id=2399): socket(0x2d, 0x2, 0x0) socket(0x1e, 0x1, 0x0) socket(0xa, 0x80803, 0x6) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/mtd/mtd0/subpagesize\x00', 0x80000, 0x0) socket(0x2b, 0x1, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kvm/parameters/nx_huge_pages\x00', 0x42080, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x10, 0x2, 0x14) socket(0x11, 0x3, 0x9) close_range$auto(0x2, 0x8, 0x0) socket(0xf, 0x5, 0x1001) memfd_create$auto(0x0, 0x2) ioctl$auto(0x3, 0x1, 0x90000800000402) sendmsg$auto_NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, 0x0, 0x20040045) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/vm/nr_hugepages_mempolicy\x00', 0x141241, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/net/teql0/statistics/rx_dropped\x00', 0x80000, 0x0) read$auto(r0, 0x0, 0x9) write$auto(0x3, 0x0, 0xfdef) socket(0xa, 0x2, 0x0) openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48001, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x202002, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) 8.998593595s ago: executing program 3 (id=2417): mmap$auto(0x3, 0x2020009, 0x100000001, 0x15, 0xffffffffffffffff, 0x9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) mmap$auto(0x0, 0x4040009, 0xd2, 0x411, 0x7, 0x28000) write$auto(0x3, 0x0, 0x7fffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume_offset\x00', 0x828100, 0x0) read$auto(r0, 0x0, 0x20) write$auto(0x1, 0x0, 0x3) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) r1 = socket(0x2b, 0x1, 0x1) r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0) sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r1, 0x0, 0x20000001) mmap$auto(0x7fffffff, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0004, 0x19) kill$auto(0x0, 0x21) madvise$auto(0x0, 0x200007, 0x8) madvise$auto(0x0, 0x2003f0, 0x15) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) r3 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000000), 0x62800, 0x0) ioctl$auto_VHOST_SET_LOG_FD2(r3, 0xaf02, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001480)={'veth0_virt_wifi\x00'}) sendmsg$auto_NL80211_CMD_GET_MPP(r1, 0x0, 0x880) munmap$auto(0x8000, 0xffffffff) getrandom$auto(0x0, 0x6000000, 0x3) r4 = syz_genetlink_get_family_id$auto_nfc(0x0, r1) sendmsg$auto_NFC_CMD_STOP_POLL(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='X\x00!\x00', @ANYRES16=r4, @ANYBLOB="00022abd7000fcdbdf2507000000080004000a00000007000200283a2d000800030003000000060014"], 0x58}, 0x1, 0x0, 0x0, 0x40000}, 0x44084) mmap$auto(0x0, 0x6426, 0x3, 0x400000eb1, 0xfffffffffffffffa, 0x8000) 7.429269632s ago: executing program 3 (id=2420): openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x2004c0c4) sendmmsg$auto(r0, 0x0, 0x7, 0x8) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0xa2741, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'veth0_virt_wifi\x00'}) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/virtual/bdi/7:10/max_ratio\x00', 0x68e00, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f00000001c0)=""/112, 0x70) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r3 = socket(0x28, 0x1, 0x0) getsockopt$auto(r3, 0x28, 0x6, 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) process_vm_readv$auto(0x0, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000002400)='/sys/devices/virtual/mtd/mtd0/mtdblock0/ro\x00', 0x20000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r4 = fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) syz_genetlink_get_family_id$auto_ila(&(0x7f00000003c0), r4) r5 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r5, &(0x7f00000004c0), 0x0) 6.270975264s ago: executing program 3 (id=2423): socket(0x9, 0x2, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) waitid$auto_P_PIDFD(0x3, r1, 0x0, 0x7, 0x0) socket(0x1e, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x80803, 0x6) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/mtd/mtd0/subpagesize\x00', 0x80000, 0x0) socket(0x2b, 0x1, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kvm/parameters/nx_huge_pages\x00', 0x42080, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x10, 0x2, 0x14) socket(0x11, 0x3, 0x9) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x5, 0x0) memfd_create$auto(0x0, 0x2) openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48001, 0x0) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x202002, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYRES32=0x0, @ANYRES8=r2], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x8800) write$auto(r3, &(0x7f0000000000)='-\x00', 0xfdef) 5.920202262s ago: executing program 3 (id=2425): sendmsg$auto_NL80211_CMD_SET_MESH_CONFIG(0xffffffffffffffff, 0x0, 0x24008804) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x734f, 0x36, 0x67f, 0x1ffde, 0x7, 0x3, 0x20000002, 0xd, 0x3, 0x1, 0x2091, 0xb4, 0x9, 0x6, 0x6, 0x80, 0x4, 0x1cd7, 0x1000, 0x2000, 0x203, 0x0, 0x84}, 0x1fe, 0xd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x13, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8040) mmap$auto(0x4, 0x10000, 0x4000000000e3, 0x11, 0xffffffffffffffff, 0x10008001) keyctl$auto(0x1d, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x8) open(&(0x7f0000000100)='.\x00', 0x591002, 0x408) r0 = socket(0x10, 0x2, 0x0) getcwd$auto(&(0x7f0000000040)='HSR\x00', 0x5) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000140), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video14\x00', 0x1a1983, 0x0) r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) getdents$auto(r1, 0x0, 0x400018) ioctl$auto(0x3, 0xc0485619, 0x38) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) r2 = socket(0x2b, 0x1, 0x1) r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0) mmap$auto(0xf500, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000001480)={'veth0_virt_wifi\x00'}) 5.181872137s ago: executing program 0 (id=2428): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/net/bpq3/statistics/rx_packets\x00', 0xa0140, 0x0) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) gettid() mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mlockall$auto(0x8000000000000001) statx$auto(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0xffffffff, 0x5, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)=""/212, 0xd4) 3.756359654s ago: executing program 3 (id=2430): sendmsg$auto_NL80211_CMD_SET_MESH_CONFIG(0xffffffffffffffff, 0x0, 0x24008804) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x734f, 0x36, 0x67f, 0x1ffde, 0x7, 0x3, 0x20000002, 0xd, 0x3, 0x1, 0x2091, 0xb4, 0x9, 0x6, 0x6, 0x80, 0x4, 0x1cd7, 0x1000, 0x2000, 0x203, 0x0, 0x84}, 0x1fe, 0xd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x13, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8040) mmap$auto(0x4, 0x10000, 0x4000000000e3, 0x11, 0xffffffffffffffff, 0x10008001) keyctl$auto(0x1d, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x8) r0 = open(&(0x7f0000000100)='.\x00', 0x591002, 0x408) process_madvise$auto_MADV_REMOVE(r0, &(0x7f00000000c0)={&(0x7f0000000380)="fd24d7326e4c0c601c71fb42c168bd6a34afa0cb51aa60a4c16b58cddee6c4a51410e27dc6350a07ff5337b0dbcb57c149e2f579813ab1adf04bf0dc012e20469bffea4a7b9ad5f86da0109cb817ab91f2b282978cb720fd54ec1b5279daff63c5bd31ed48624aadcd43db", 0xb2751c5}, 0xd1, 0x9, 0x9) r1 = socket(0x10, 0x2, 0x0) getcwd$auto(&(0x7f0000000040)='HSR\x00', 0x5) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000140), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video14\x00', 0x1a1983, 0x0) r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) getdents$auto(r2, 0x0, 0x400018) ioctl$auto(0x3, 0xc0485619, 0x38) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) r3 = socket(0x2b, 0x1, 0x1) r4 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r4, 0xc004743e, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000001480)={'veth0_virt_wifi\x00'}) 3.751934934s ago: executing program 2 (id=2431): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001040)='/proc/asound/card1/pcm1c/sub7/info\x00', 0x28102, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/module/pcie_aspm/parameters/policy\x00', 0x80000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000004c0)=""/206, 0xce) r1 = socket$nl_generic(0x10, 0x3, 0x10) open(&(0x7f0000000100)='.\x00', 0x0, 0x408) r2 = socket(0x10, 0x2, 0xc) sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000003740)={&(0x7f0000000000)=ANY=[@ANYBLOB="b1000000", @ANYRES16, @ANYBLOB="0100"], 0x20}, 0x1, 0x0, 0x0, 0x41}, 0x40080) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r2, @ANYRES8=r1], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050) 3.478905555s ago: executing program 2 (id=2432): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) fcntl$auto(0x3, 0x8, 0x9ebfffffffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NFC_CMD_LLC_SET_PARAMS(r1, 0x0, 0x4000000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) fadvise64$auto(r2, 0x20000008002, 0x9, 0x3) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) unshare$auto(0x2) writev$auto(r3, &(0x7f00000001c0)={0x0, 0x7}, 0x3) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x8000, 0x0) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x6a742, 0x0) r5 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/block/loop13/hctx0/active\x00', 0x2, 0x0) ioctl$auto_SG_SET_RESERVED_SIZE2(0xffffffffffffffff, 0x2275, &(0x7f0000000300)="f410b902653b01916210725033e8c85d946e7fa92433647dd3e53d09b5bba7ee1947c99e2407a280a85e360f773936285a4cba41f771281bff7c853374bb699af8d8ff58273cdd06dc9e2d58925ab133e88cd38b170946ba747db7dfb96689108f053f747bff2c5412e7a2267c96358134f0484e3c4770c30d9c891af613537a6454dd0000") r6 = socket(0x2, 0x3, 0x2) setsockopt$auto(r6, 0x0, 0xcf, 0xfffffffffffffffc, 0x1) write$auto(r5, 0x0, 0x3a55) ioctl$auto_BLKPBSZGET(r4, 0x127b, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x110) r7 = open(&(0x7f0000000080)='./file0\x00', 0x0, 0x31) mmap$auto(0xf000, 0x1, 0x3ff, 0x12, r7, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video52\x00', 0x0, 0x0) close_range$auto(0xffffffffffffffff, 0x8, 0x0) openat$auto_lockdown_ops_lockdown(0xffffffffffffff9c, &(0x7f0000000000), 0xa0042, 0x0) r8 = socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r8, @ANYBLOB="01"], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x80) 3.349460686s ago: executing program 0 (id=2433): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/net/bpq3/statistics/rx_packets\x00', 0xa0140, 0x0) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) gettid() mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mlockall$auto(0x8000000000000001) statx$auto(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0xffffffff, 0x5, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)=""/212, 0xd4) 2.871881447s ago: executing program 2 (id=2434): arch_prctl$auto_ARCH_GET_FS(0x1003, 0x3ff) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000080), 0xffffffffffffffff) r0 = socket(0x10, 0x2, 0x4) mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000) r1 = socket(0x2, 0x1, 0x0) signalfd$auto(0xffffffffffffffff, &(0x7f0000000340)={0xffffffff}, 0x7fffffffffffffff) getsockopt$auto(r0, 0x200000000, 0x15, 0xfffffffffffffffc, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x2c, 0x3, 0x0) mmap$auto(0x0, 0x4, 0x10000000000, 0x11, 0x3, 0x100000000) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)={0x2c, r3, 0x13, 0x70bd2c, 0x25dfdbdd, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r5}, @NL80211_ATTR_WIPHY_TX_POWER_SETTING={0x8, 0x61, 0x1}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24004080}, 0x20040894) sendmsg$auto_NL80211_CMD_NEW_MPATH(0xffffffffffffffff, &(0x7f0000000f40)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000f00)={&(0x7f00000009c0)=ANY=[@ANYBLOB="c8000000", @ANYRES16=r3, @ANYBLOB="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"], 0xc8}}, 0x4048004) sendmsg$auto_NL80211_CMD_DEL_PMK(r1, &(0x7f0000000180)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="ea8fc1b3", @ANYRES16=r3, @ANYBLOB="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"], 0x53c}, 0x1, 0x0, 0x0, 0x4080}, 0x10) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r6 = syz_genetlink_get_family_id$auto_net_dm(&(0x7f0000000200), r2) sendmsg$auto_NET_DM_CMD_STOP(r0, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0x94, r6, 0x200, 0x70bd28, 0x25dfdbfb, {}, [@NET_DM_ATTR_SW_DROPS={0x4}, @NET_DM_ATTR_SW_DROPS={0x4}, @NET_DM_ATTR_UNSPEC={0x75, 0x0, "097288b223abb800e347595dd6fa13f528758207d53d5e4013dabfbcae4c306d210fc47e493bafd52a3639455bde87b37d60bc54e332e92d3442166d983fc3c038e17a589fcbebc3a8fd4011d089d7f8589742651dab6482eabf7f23500f29f15d8f791501688020edcd4c9e42ff9190f3"}]}, 0x94}, 0x1, 0x0, 0x0, 0x4004}, 0x0) r7 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/030/001\x00', 0x2901, 0x0) r8 = fcntl$auto_F_RDLCK(r2, 0x1, 0x0) epoll_ctl$auto(r7, 0x1, r8, &(0x7f0000000980)={0x2, 0x9}) close_range$auto(0x2, 0x8000, 0x0) r9 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) io_uring_enter$auto(r9, 0x9, 0x820e, 0x2a, 0x0, 0x18) 2.518817743s ago: executing program 2 (id=2435): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001040)='/proc/asound/card1/pcm1c/sub7/info\x00', 0x28102, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/module/pcie_aspm/parameters/policy\x00', 0x80000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000004c0)=""/206, 0xce) r1 = socket$nl_generic(0x10, 0x3, 0x10) open(&(0x7f0000000100)='.\x00', 0x0, 0x408) r2 = socket(0x10, 0x2, 0xc) sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000003740)={&(0x7f0000000000)=ANY=[@ANYBLOB="b1000000", @ANYRES16, @ANYBLOB="0100"], 0x20}, 0x1, 0x0, 0x0, 0x41}, 0x40080) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r2, @ANYRES8=r1], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050) 2.160360936s ago: executing program 2 (id=2436): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) r0 = gettid() process_vm_writev$auto(r0, &(0x7f0000002980)={0x0, 0x7ff}, 0x3, &(0x7f0000002a40)={0x0, 0x100000004007}, 0x4, 0x0) close_range$auto(0x2, 0x8, 0x0) memfd_secret$auto(0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x8, 0xfffffffffffffffa, 0x13, 0x3, 0x0) r1 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(r1, 0x80503d0a, 0x0) clone$auto(0x6, 0x9, 0x0, 0x0, 0xe08) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) preadv$auto(0x40000000000003, 0x0, 0x6, 0x8, 0x5) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/irq/12/hwirq\x00', 0x2000, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/dev_snmp6/team_slave_1\x00', 0x86fb16d8bb90233e, 0x0) pread64$auto(r3, 0x0, 0x8100000041, 0x413e) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) socket(0x2c, 0x801, 0x3) mmap$auto(0x8000000000000000, 0x2020009, 0x1, 0xeb2, 0xfffffffffffffffb, 0x10001) 1.130650269s ago: executing program 0 (id=2437): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001040)='/proc/asound/card1/pcm1c/sub7/info\x00', 0x28102, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/module/pcie_aspm/parameters/policy\x00', 0x80000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000004c0)=""/206, 0xce) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) r2 = socket(0x10, 0x2, 0xc) sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000003740)={&(0x7f0000000000)=ANY=[@ANYBLOB="b1000000", @ANYRES16, @ANYBLOB="0100"], 0x20}, 0x1, 0x0, 0x0, 0x41}, 0x40080) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r2, @ANYRES8=r1], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050) 814.300388ms ago: executing program 0 (id=2438): madvise$auto(0x1, 0x7fffffffffffffff, 0xa) (async) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ioctl$auto(0x3, 0x4020565b, 0x38) sendmsg$auto_NETDEV_CMD_QUEUE_GET2(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000004c0)={&(0x7f0000000880)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="200025bd7000fddbdf250a00000008000200", @ANYRES32=0x0, @ANYBLOB="08000200", @ANYBLOB="681d081a34a8bbd9f044f0cbff4ccb662651aba4e304118b73ab2597a3e10cc0c85123f5f3bbfc9931658d9cbac731d06597be2c909ad9bdab00b7fd36faa52fb88aa99048693bfa1aa438423b6fd186c48047889492ca5c5730ae1cd8e4ecd868c08aafcb7809b1aad283c366993b4d5a0b7b9738eac304a0e89e1ad640739fe5f4d0bdf9921037eedf4fc3268ac57d4bcc690228725727", @ANYBLOB="fb7b989b95fab1c3811d7cb161ad618ce6e9a18afca3be1c990c6f77aeb9f21eba11d5ca74043b530067e348579f85b57b1a98b34230b8a7263d58a054ffce1d5a6078294e0290ed9ee98c9643094927c694d65cad82f371a98fd679e331450346ff49c5d6b5500d4e5fd0a4e268cce7d5eabb1c79cae3329f56fa3eecb0fe287e1e8e9f00"/144, @ANYRES32=0x0, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB="b7c729d757bb2b0c1d449cd1056c85c7206cbc73e471b0c9571dca4bb0", @ANYRES32=0x0, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB="080002a61c2cf23573d51ab01ead2c419e0852be73d82bd8508ab6ec2e286a6e8595a62e836e8ea560e29f5bc39420bbb24b6ee5aa85fc1e050c3cf6767ff067bd0cf125e429ea90094bae4e7e2d6db32b7369a09e6f0af0072d3a967c7cedc36fc2e58804d7f78c2c3583d696ed4f3d8bb7d765e3dba8e431644db0d56e1278c329aefecd774c8d5dc67d47ed7bd848e234a964da9c054f6c62ba977a978d6b000000000000000000", @ANYRES32=0x0, @ANYBLOB], 0x64}, 0x1, 0x0, 0x0, 0x8020}, 0x0) (async) mmap$auto(0x0, 0x40009, 0x6, 0x9b72, 0x7, 0x28000) r0 = io_uring_setup$auto(0x2, 0x0) r1 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cec28\x00', 0x101000, 0x0) (async) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/rpc/nfsd.fh/content\x00', 0x40c80, 0x0) (async) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.4/usb5/5-0:1.0/bNumEndpoints\x00', 0x8000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000180)=""/239, 0xef) (async) pread64$auto(r2, &(0x7f0000000540)='veth1\x00\xe0,\x17\xa0\xf7\x89Pl\x84K?\x01\x84\xa1i\xe00\x81p\xa0U \f\xdbP`:\xe2\'\xa7\xbf\xbd\x04\x18\xad\x90I^\x99M\xe0W\x14\x11\xf4\xeb\x90:\v\xc5\x13*\xfe\x90\xb1\xa9O\xa5\x05\xaa\x8fTi\xd6\x88Q\xda\xca', 0x20000000003f, 0x1) (async) ioctl$auto_CEC_DQEVENT(r1, 0xc0506107, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000840), r4) mmap$auto(0xb, 0xd74, 0x2, 0x18, r0, 0x3) (async) sendmsg$auto_OVS_CT_LIMIT_CMD_SET(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYBLOB=' .\x00\x00', @ANYRES16=r5, @ANYBLOB="0100cbdf250100040004000180e13b112500000000007d5a65a2defc9b0652a004dc292a4e3b83f9b8d70d1a3fe287ff"], 0x2e20}, 0x1, 0x0, 0x0, 0x2000c040}, 0x4) (async) msgget$auto(0x0, 0x77d9) (async) poll$auto(&(0x7f0000001180)={r1, 0xd, 0x1000}, 0x5, 0x1000) (async) close_range$auto(0x2, 0x8, 0x0) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async) r6 = socket(0x2, 0x2, 0x1) r7 = bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_4={0x1f, r6, 0x10000, r0}, 0x10) mmap$auto(0x0, 0x9, 0xffffffff, 0x8000200008011, r7, 0x8000) (async) syz_clone(0x20000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000) (async) mlockall$auto(0x7) modify_ldt$auto(0x1, &(0x7f00000001c0), 0x10) set_mempolicy$auto(0x4006, 0x0, 0x7) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop2/queue/iostats\x00', 0x20b02, 0x0) 371.868534ms ago: executing program 0 (id=2439): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001040)='/proc/asound/card1/pcm1c/sub7/info\x00', 0x28102, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/module/pcie_aspm/parameters/policy\x00', 0x80000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000004c0)=""/206, 0xce) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) open(&(0x7f0000000100)='.\x00', 0x0, 0x408) r1 = socket(0x10, 0x2, 0xc) sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000003740)={&(0x7f0000000000)=ANY=[@ANYBLOB="b1000000", @ANYRES16, @ANYBLOB="0100"], 0x20}, 0x1, 0x0, 0x0, 0x41}, 0x40080) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r1, @ANYRES8], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050) 79.166402ms ago: executing program 3 (id=2440): r0 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0) write$auto_fuse_dev_operations_fuse_i(r0, &(0x7f0000000440), 0x0) r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/security/tomoyo/profile\x00', 0x1, 0x0) write$auto_tomoyo_operations_securityfs_if(r1, &(0x7f0000001300)="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", 0xbd9) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/ns_last_pid\x00', 0x68001, 0x0) write$auto(r2, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x540b, 0xfffffffffffffffd) socket(0x3, 0x3, 0xc24) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r4 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(r4, 0x2, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x8000001f, 0x2, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000) fsopen$auto(0x0, 0x1) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) socket(0xa, 0x5, 0x94) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x100) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/net/bond0/bonding/primary_reselect\x00', 0x1e2142, 0x0) 57.424301ms ago: executing program 0 (id=2441): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0xd, 0x2020009, 0x5, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = socket(0x2, 0x3, 0xa) connect$auto(r0, 0x0, 0x55) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x55) socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x90}, 0x20000081) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) socket(0x10, 0x3, 0x6) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x7ff, 0x9, 0x63, 0x0, 0x0, 0x0, 0x8, 0x200, 0x800000000100002, 0x40000406, 0x2, 0xc, 0x2, 0x11, 0x6, 0x7}) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}, 0x1, 0x0, 0x0, 0x2000c000}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xee46}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x9fe) ustat$auto(0x20000801, &(0x7f0000000000)={0xbff, 0x2, "be5705f65205", "064885ca64ad"}) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(r0, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000100)=ANY=[@ANYRESDEC], 0xa8}}, 0xc2) sigaltstack$auto(&(0x7f0000000080)={0x0, 0x80000002}, 0x0) 0s ago: executing program 2 (id=2442): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) io_uring_setup$auto(0x7, 0x0) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4000000}, 0x4c091) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}, 0x1, 0x0, 0x0, 0x4000804}, 0x40000) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001100)='/proc/bus/pci/00/03.0\x00', 0xa0581, 0x0) write$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000001140)="8cbdca", 0x3) writev$auto(r2, &(0x7f0000001d40)={0x0, 0x2}, 0x6) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x8}, 0x7, 0x8) r3 = socket(0x29, 0x2, 0x0) ioctl$auto(r3, 0x8910, 0x24) r4 = openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/environ\x00', 0x2000, 0x0) read$auto_proc_environ_operations_base(r4, &(0x7f0000000240)=""/80, 0x50) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) mbind$auto(0x0, 0x2091d2, 0x6, 0x0, 0x6, 0x2) r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x80900, 0x0) openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, 0x0, 0x20a01, 0x0) ioctl$auto_BLKFLSBUF(r6, 0x1261, 0x0) mmap$auto(0xb2, 0x14, 0xffb, 0x8000000008015, r5, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) io_uring_setup$auto(0x3501, &(0x7f0000000080)={0x80, 0x1000, 0x8, 0x5, 0x3, 0xfffffff1, r5, [0xbc, 0xffff, 0x40], {0x81, 0x9, 0x0, 0x80000000, 0x3, 0x101, 0xffff, 0x0, 0x6}, {0x7, 0xa, 0xf, 0x7fff, 0x3, 0x0, 0x0, 0xfffffffa, 0xc}}) ioctl$auto_BLKTRACETEARDOWN(r6, 0x1276, 0x0) madvise$auto(0x0, 0x20499d, 0x9) socket$nl_generic(0x10, 0x3, 0x10) kernel console output (not intermixed with test programs): 673][ T30] audit: type=1802 audit(6040695938.569:32): pid=11051 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1136" res=0 errno=0 [ 390.632450][T11059] netlink: 'syz.2.1139': attribute type 2 has an invalid length. [ 393.132300][T11094] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1149'. [ 393.350842][T11096] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1150'. [ 394.349030][T11117] Invalid ELF header magic: != ELF [ 394.629776][T11131] ima: policy update failed [ 394.651935][ T30] audit: type=1802 audit(6040695943.309:33): pid=11131 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1156" res=0 errno=0 [ 394.866853][T11133] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 399.067853][T11214] ima: policy update failed [ 399.078319][ T30] audit: type=1802 audit(6040695947.749:34): pid=11214 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1174" res=0 errno=0 [ 399.231858][ T55] Bluetooth: hci0: unexpected subevent 0x01 length: 4 < 18 [ 401.236368][T11242] Invalid ELF header magic: != ELF [ 402.011077][T11251] netlink: 186 bytes leftover after parsing attributes in process `syz.2.1183'. [ 402.089254][T11268] FAULT_INJECTION: forcing a failure. [ 402.089254][T11268] name failslab, interval 1, probability 0, space 0, times 0 [ 402.103191][T11268] CPU: 0 UID: 0 PID: 11268 Comm: syz.3.1186 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 402.103243][T11268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 402.103262][T11268] Call Trace: [ 402.103272][T11268] [ 402.103283][T11268] dump_stack_lvl+0x16c/0x1f0 [ 402.103325][T11268] should_fail_ex+0x512/0x640 [ 402.103365][T11268] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 402.103497][T11268] should_failslab+0xc2/0x120 [ 402.103537][T11268] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 402.103572][T11268] ? getname_kernel+0x52/0x370 [ 402.103624][T11268] getname_kernel+0x52/0x370 [ 402.103661][T11268] kern_path+0x1d/0x50 [ 402.103709][T11268] lookup_bdev+0xd8/0x280 [ 402.103744][T11268] ? __pfx_lookup_bdev+0x10/0x10 [ 402.103793][T11268] bdev_file_open_by_path+0x82/0x330 [ 402.103835][T11268] ? __pfx_bdev_file_open_by_path+0x10/0x10 [ 402.103879][T11268] ? __asan_memcpy+0x3c/0x60 [ 402.103934][T11268] __bch2_read_super+0x425/0x1120 [ 402.103976][T11268] ? __pfx_stack_trace_save+0x10/0x10 [ 402.104009][T11268] ? stack_depot_put+0x120/0x160 [ 402.104059][T11268] ? __pfx___bch2_read_super+0x10/0x10 [ 402.104106][T11268] ? __bch2_darray_resize_noprof+0xf6/0x2d0 [ 402.104150][T11268] ? bch2_fs_open+0x494/0xb40 [ 402.104181][T11268] ? bch2_ioctl_fsck_offline+0x6d3/0x8f0 [ 402.104221][T11268] ? bch2_chardev_ioctl+0x10f/0x140 [ 402.104252][T11268] ? __x64_sys_ioctl+0x190/0x200 [ 402.104360][T11268] ? __bch2_darray_resize_noprof+0x1cd/0x2d0 [ 402.104411][T11268] bch2_fs_open+0x2d0/0xb40 [ 402.104449][T11268] ? __pfx_stack_trace_save+0x10/0x10 [ 402.104483][T11268] ? __pfx_bch2_fs_open+0x10/0x10 [ 402.104527][T11268] ? kasan_save_stack+0x42/0x60 [ 402.104558][T11268] ? kasan_save_stack+0x33/0x60 [ 402.104585][T11268] ? kasan_save_track+0x14/0x30 [ 402.104623][T11268] ? kasan_save_free_info+0x3b/0x60 [ 402.104667][T11268] ? __kasan_slab_free+0x51/0x70 [ 402.104755][T11268] bch2_ioctl_fsck_offline+0x6d3/0x8f0 [ 402.104843][T11268] ? __pfx_bch2_ioctl_fsck_offline+0x10/0x10 [ 402.104890][T11268] ? find_held_lock+0x2b/0x80 [ 402.104930][T11268] ? __fget_files+0x20e/0x3c0 [ 402.104986][T11268] bch2_chardev_ioctl+0x10f/0x140 [ 402.105020][T11268] ? __pfx_bch2_chardev_ioctl+0x10/0x10 [ 402.105057][T11268] __x64_sys_ioctl+0x190/0x200 [ 402.105102][T11268] do_syscall_64+0xcd/0x230 [ 402.105144][T11268] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 402.105177][T11268] RIP: 0033:0x7efd6cd8e969 [ 402.105203][T11268] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 402.105234][T11268] RSP: 002b:00007efd6dbb8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 402.105264][T11268] RAX: ffffffffffffffda RBX: 00007efd6cfb5fa0 RCX: 00007efd6cd8e969 [ 402.105285][T11268] RDX: 0000200000000100 RSI: 000000004018bc13 RDI: 0000000000000003 [ 402.105305][T11268] RBP: 00007efd6dbb8090 R08: 0000000000000000 R09: 0000000000000000 [ 402.105324][T11268] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 402.105342][T11268] R13: 0000000000000000 R14: 00007efd6cfb5fa0 R15: 00007ffee0d5ddf8 [ 402.105384][T11268] [ 404.113320][T11297] Invalid ELF header magic: != ELF [ 405.659320][T11304] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 406.012766][T11326] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(5) [ 407.914064][T11358] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1208'. [ 410.582569][T11390] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1214'. [ 410.683798][T11392] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1216'. [ 411.017352][T11397] FAULT_INJECTION: forcing a failure. [ 411.017352][T11397] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 411.060213][T11397] CPU: 1 UID: 0 PID: 11397 Comm: syz.1.1218 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 411.060259][T11397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 411.060277][T11397] Call Trace: [ 411.060287][T11397] [ 411.060298][T11397] dump_stack_lvl+0x16c/0x1f0 [ 411.060340][T11397] should_fail_ex+0x512/0x640 [ 411.060388][T11397] _copy_from_user+0x2e/0xd0 [ 411.060437][T11397] kstrtouint_from_user+0xd6/0x1d0 [ 411.060472][T11397] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 411.060507][T11397] ? __lock_acquire+0xaa4/0x1ba0 [ 411.060567][T11397] proc_fail_nth_write+0x83/0x250 [ 411.060619][T11397] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 411.060676][T11397] vfs_write+0x25c/0x1180 [ 411.060702][T11397] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 411.060751][T11397] ? __pfx___mutex_lock+0x10/0x10 [ 411.060789][T11397] ? __pfx_vfs_write+0x10/0x10 [ 411.060830][T11397] ? __fget_files+0x20e/0x3c0 [ 411.060891][T11397] ksys_write+0x12a/0x240 [ 411.060919][T11397] ? __pfx_ksys_write+0x10/0x10 [ 411.060944][T11397] ? rcu_is_watching+0x12/0xc0 [ 411.060983][T11397] do_syscall_64+0xcd/0x230 [ 411.061026][T11397] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 411.061058][T11397] RIP: 0033:0x7fa82e38d41f [ 411.061082][T11397] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 411.061113][T11397] RSP: 002b:00007fa82f14d030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 411.061142][T11397] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa82e38d41f [ 411.061162][T11397] RDX: 0000000000000001 RSI: 00007fa82f14d0a0 RDI: 0000000000000004 [ 411.061181][T11397] RBP: 00007fa82f14d090 R08: 0000000000000000 R09: 0000000000000000 [ 411.061200][T11397] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 411.061218][T11397] R13: 0000000000000000 R14: 00007fa82e5b5fa0 R15: 00007ffd16557938 [ 411.061260][T11397] [ 412.942273][T11419] netlink: 186 bytes leftover after parsing attributes in process `syz.0.1225'. [ 413.350837][T11436] netlink: 'syz.0.1231': attribute type 4 has an invalid length. [ 413.375294][T11436] netlink: 314 bytes leftover after parsing attributes in process `syz.0.1231'. [ 413.627267][T11444] netlink: 'syz.0.1234': attribute type 2 has an invalid length. [ 413.960011][T11454] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1236'. syzkaller syzkaller login: [ 414.822696][T11446] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1235'. [ 416.200594][T11467] Invalid ELF header magic: != ELF [ 416.430229][T11473] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1239'. [ 417.060807][T11498] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1244'. [ 417.281474][T11500] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1245'. [ 417.308481][T11500] FAULT_INJECTION: forcing a failure. [ 417.308481][T11500] name failslab, interval 1, probability 0, space 0, times 0 [ 417.328410][T11500] CPU: 0 UID: 0 PID: 11500 Comm: syz.1.1245 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 417.328461][T11500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 417.328482][T11500] Call Trace: [ 417.328492][T11500] [ 417.328505][T11500] dump_stack_lvl+0x16c/0x1f0 [ 417.328552][T11500] should_fail_ex+0x512/0x640 [ 417.328598][T11500] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 417.328638][T11500] should_failslab+0xc2/0x120 [ 417.328675][T11500] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 417.328711][T11500] ? trace_kmalloc+0x2b/0xd0 [ 417.328751][T11500] ? seq_open+0x55/0x170 [ 417.328794][T11500] seq_open+0x55/0x170 [ 417.328852][T11500] __seq_open_private+0x3e/0xd0 [ 417.328897][T11500] seq_open_net+0x30d/0x4e0 [ 417.328938][T11500] ? __pfx_seq_open_net+0x10/0x10 [ 417.328973][T11500] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 417.329007][T11500] ? __pfx_apparmor_file_open+0x10/0x10 [ 417.329049][T11500] ? proc_reg_open+0x21d/0x610 [ 417.329080][T11500] ? __pfx_seq_open_net+0x10/0x10 [ 417.329119][T11500] proc_reg_open+0x286/0x610 [ 417.329153][T11500] do_dentry_open+0x741/0x1c10 [ 417.329186][T11500] ? __pfx_proc_reg_open+0x10/0x10 [ 417.329221][T11500] vfs_open+0x82/0x3f0 [ 417.329264][T11500] path_openat+0x1e5e/0x2d40 [ 417.329308][T11500] ? __pfx_path_openat+0x10/0x10 [ 417.329350][T11500] do_filp_open+0x20b/0x470 [ 417.329380][T11500] ? __pfx_do_filp_open+0x10/0x10 [ 417.329425][T11500] ? __pfx_kfree_link+0x10/0x10 [ 417.329478][T11500] ? alloc_fd+0x471/0x7d0 [ 417.329540][T11500] do_sys_openat2+0x11b/0x1d0 [ 417.329579][T11500] ? __pfx_do_sys_openat2+0x10/0x10 [ 417.329622][T11500] ? __sys_sendmsg+0x199/0x220 [ 417.329663][T11500] __x64_sys_openat+0x174/0x210 [ 417.329706][T11500] ? __pfx___x64_sys_openat+0x10/0x10 [ 417.329752][T11500] ? rcu_is_watching+0x12/0xc0 [ 417.329792][T11500] do_syscall_64+0xcd/0x230 [ 417.329846][T11500] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 417.329879][T11500] RIP: 0033:0x7fa82e38e969 [ 417.329905][T11500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 417.329938][T11500] RSP: 002b:00007fa82f14d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 417.329969][T11500] RAX: ffffffffffffffda RBX: 00007fa82e5b5fa0 RCX: 00007fa82e38e969 [ 417.329992][T11500] RDX: 0000000000000880 RSI: 00002000000001c0 RDI: ffffffffffffff9c [ 417.330013][T11500] RBP: 00007fa82e410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 417.330033][T11500] R10: 0000000000001800 R11: 0000000000000246 R12: 0000000000000000 [ 417.330052][T11500] R13: 0000000000000000 R14: 00007fa82e5b5fa0 R15: 00007ffd16557938 [ 417.330093][T11500] [ 417.605233][ C0] vkms_vblank_simulate: vblank timer overrun [ 419.001318][T11527] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1250'. [ 420.805315][T11548] Invalid ELF header magic: != ELF [ 421.963581][T11568] zswap: compressor not available [ 422.038995][T11577] ima: policy update failed [ 422.072918][ T30] audit: type=1802 audit(6040695978.749:35): pid=11577 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1261" res=0 errno=0 [ 422.149949][T11560] netlink: 186 bytes leftover after parsing attributes in process `syz.0.1258'. [ 422.204690][T11584] netlink: 'syz.1.1264': attribute type 4 has an invalid length. [ 422.216693][T11584] netlink: 314 bytes leftover after parsing attributes in process `syz.1.1264'. [ 422.396493][T11586] Invalid ELF header magic: != ELF [ 422.548955][T11590] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1265'. [ 423.486248][T11598] Invalid ELF header magic: != ELF [ 424.639344][T11623] FAULT_INJECTION: forcing a failure. [ 424.639344][T11623] name failslab, interval 1, probability 0, space 0, times 0 [ 424.652539][T11623] CPU: 0 UID: 0 PID: 11623 Comm: syz.3.1274 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 424.652586][T11623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 424.652606][T11623] Call Trace: [ 424.652618][T11623] [ 424.652630][T11623] dump_stack_lvl+0x16c/0x1f0 [ 424.652676][T11623] should_fail_ex+0x512/0x640 [ 424.652721][T11623] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 424.652780][T11623] should_failslab+0xc2/0x120 [ 424.652819][T11623] __kmalloc_cache_noprof+0x6a/0x3e0 [ 424.652874][T11623] ? snd_seq_oss_open+0x55/0xa20 [ 424.652928][T11623] snd_seq_oss_open+0x55/0xa20 [ 424.652978][T11623] odev_open+0x6f/0x90 [ 424.653010][T11623] ? __pfx_odev_open+0x10/0x10 [ 424.653045][T11623] soundcore_open+0x409/0x580 [ 424.653084][T11623] ? __pfx_soundcore_open+0x10/0x10 [ 424.653117][T11623] chrdev_open+0x231/0x6a0 [ 424.653150][T11623] ? __pfx_apparmor_file_open+0x10/0x10 [ 424.653191][T11623] ? __pfx_chrdev_open+0x10/0x10 [ 424.653230][T11623] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 424.653288][T11623] do_dentry_open+0x741/0x1c10 [ 424.653323][T11623] ? __pfx_chrdev_open+0x10/0x10 [ 424.653366][T11623] vfs_open+0x82/0x3f0 [ 424.653413][T11623] path_openat+0x1e5e/0x2d40 [ 424.653461][T11623] ? __pfx_path_openat+0x10/0x10 [ 424.653505][T11623] do_filp_open+0x20b/0x470 [ 424.653536][T11623] ? __pfx_do_filp_open+0x10/0x10 [ 424.653600][T11623] ? alloc_fd+0x471/0x7d0 [ 424.653661][T11623] do_sys_openat2+0x11b/0x1d0 [ 424.653705][T11623] ? __pfx_do_sys_openat2+0x10/0x10 [ 424.653765][T11623] __x64_sys_openat+0x174/0x210 [ 424.653811][T11623] ? __pfx___x64_sys_openat+0x10/0x10 [ 424.653858][T11623] ? rcu_is_watching+0x12/0xc0 [ 424.653901][T11623] do_syscall_64+0xcd/0x230 [ 424.653955][T11623] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 424.653990][T11623] RIP: 0033:0x7efd6cd8e969 [ 424.654016][T11623] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 424.654049][T11623] RSP: 002b:00007efd6dbb8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 424.654081][T11623] RAX: ffffffffffffffda RBX: 00007efd6cfb5fa0 RCX: 00007efd6cd8e969 [ 424.654103][T11623] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 424.654124][T11623] RBP: 00007efd6ce10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 424.654144][T11623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 424.654162][T11623] R13: 0000000000000000 R14: 00007efd6cfb5fa0 R15: 00007ffee0d5ddf8 [ 424.654205][T11623] [ 425.720088][T11639] netlink: 'syz.3.1277': attribute type 21 has an invalid length. [ 425.751652][T11634] netlink: 186 bytes leftover after parsing attributes in process `syz.2.1276'. [ 425.773905][T11639] netlink: 326 bytes leftover after parsing attributes in process `syz.3.1277'. [ 426.339094][T11652] ima: policy update failed [ 426.348453][ T30] audit: type=1802 audit(6040695983.022:36): pid=11652 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1279" res=0 errno=0 [ 427.345121][T11671] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1283'. [ 427.834995][T11654] Invalid ELF header magic: != ELF [ 428.045058][T11678] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1285'. [ 428.166312][T11679] ima: policy update failed [ 428.172347][ T30] audit: type=1802 audit(6040695984.852:37): pid=11679 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1284" res=0 errno=0 [ 429.528273][T11711] can: request_module (can-proto-3) failed. [ 430.243734][T11697] scsi_dev_info_list_add_str: bad dev info string ')–õÒzD éú÷5fk+*X€©#åR8¾ð4*œýVs÷nîdv»ø¼qQWˆ}ûÄ~YrÈ€-8VGDƘ¹‹åLáBÍ%v—†õv‘}–Ypq|ƒí?ñºO¼ö[ŒÐ,!ä Ù7xWDr¾Ÿµ% [Û}†Eµ$3?ñGË™Î9–Ff=ŠÃlør«GH;2L<õ»=ÒÚ|èž¿®ô8ƒ -c¡„ FÕ¸šë"™ž£É[v9¯qôÂ4‚ MmËvq®ékñ¹¹ò[ÕãËú(i¨ýˆNDСÄMîËX PS­êq•èqX4‰X`VððŸ!;r¶Ö ±È)y]×W¨šzfIðH0êáÓ,àëí¬é¢vß{q8ÊìÛשU·Ü¹ä‘‰mØ›ŽH•ŽT´¸wí™C€Ïzø-óŠÊnR%§2]ÌÎx0Òéª5oùÐëâòÕ•|3>ÕlñS*LŒõÝ/«CdgÓ‘àŠ[C=Cw‹e•Äm)«ÿòÕl#È' '‹ï'“Sž‰¡.ÍsHgi-à»ÛTY%ܹF§…*8úÒnFTÿH‡—ýæ¿?“ÿ–Þi{' '' [ 430.931930][T11725] ima: policy update failed [ 430.943262][ T30] audit: type=1802 audit(6040695987.622:38): pid=11725 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1295" res=0 errno=0 [ 430.968961][T11724] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1296'. [ 431.290681][T11730] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1297'. [ 431.311458][T11731] ima: policy update failed [ 431.324524][ T30] audit: type=1802 audit(6040695987.992:39): pid=11731 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1298" res=0 errno=0 [ 431.941863][T11726] netlink: 186 bytes leftover after parsing attributes in process `syz.3.1294'. [ 434.113160][T11756] FAULT_INJECTION: forcing a failure. [ 434.113160][T11756] name failslab, interval 1, probability 0, space 0, times 0 [ 434.141086][T11756] CPU: 0 UID: 0 PID: 11756 Comm: syz.3.1306 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 434.141126][T11756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 434.141141][T11756] Call Trace: [ 434.141150][T11756] [ 434.141160][T11756] dump_stack_lvl+0x16c/0x1f0 [ 434.141203][T11756] should_fail_ex+0x512/0x640 [ 434.141251][T11756] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 434.141289][T11756] should_failslab+0xc2/0x120 [ 434.141323][T11756] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 434.141357][T11756] ? __proc_create+0xc3/0x8c0 [ 434.141390][T11756] ? __proc_create+0x2ce/0x8c0 [ 434.141428][T11756] __proc_create+0x2ce/0x8c0 [ 434.141463][T11756] ? __pfx___proc_create+0x10/0x10 [ 434.141514][T11756] _proc_mkdir+0xb9/0x200 [ 434.141548][T11756] ? __pfx__proc_mkdir+0x10/0x10 [ 434.141580][T11756] ? trace_kmem_cache_alloc+0x28/0xc0 [ 434.141623][T11756] ? crng_make_state+0x48e/0x6d0 [ 434.141673][T11756] proc_net_ns_init+0x265/0x410 [ 434.141709][T11756] ? __pfx_proc_net_ns_init+0x10/0x10 [ 434.141743][T11756] ops_init+0x1df/0x5f0 [ 434.141781][T11756] setup_net+0x21e/0x850 [ 434.141816][T11756] ? __pfx_setup_net+0x10/0x10 [ 434.141847][T11756] ? lockdep_init_map_type+0x5c/0x280 [ 434.141888][T11756] ? __pfx_down_read_killable+0x10/0x10 [ 434.141937][T11756] ? debug_mutex_init+0x37/0x70 [ 434.141991][T11756] copy_net_ns+0x2a6/0x5f0 [ 434.142031][T11756] create_new_namespaces+0x3ea/0xad0 [ 434.142076][T11756] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 434.142115][T11756] ksys_unshare+0x45b/0xa40 [ 434.142159][T11756] ? __pfx_ksys_unshare+0x10/0x10 [ 434.142201][T11756] ? ksys_write+0x1b9/0x240 [ 434.142238][T11756] ? rcu_is_watching+0x12/0xc0 [ 434.142278][T11756] __x64_sys_unshare+0x31/0x40 [ 434.142319][T11756] do_syscall_64+0xcd/0x230 [ 434.142361][T11756] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 434.142392][T11756] RIP: 0033:0x7efd6cd8e969 [ 434.142416][T11756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 434.142447][T11756] RSP: 002b:00007efd6dbb8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 434.142476][T11756] RAX: ffffffffffffffda RBX: 00007efd6cfb5fa0 RCX: 00007efd6cd8e969 [ 434.142497][T11756] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 434.142516][T11756] RBP: 00007efd6dbb8090 R08: 0000000000000000 R09: 0000000000000000 [ 434.142535][T11756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 434.142554][T11756] R13: 0000000000000000 R14: 00007efd6cfb5fa0 R15: 00007ffee0d5ddf8 [ 434.142596][T11756] [ 437.425117][T11802] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8 [ 438.050881][T11820] FAULT_INJECTION: forcing a failure. [ 438.050881][T11820] name failslab, interval 1, probability 0, space 0, times 0 [ 438.115423][T11820] CPU: 1 UID: 0 PID: 11820 Comm: syz.3.1320 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 438.115469][T11820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 438.115487][T11820] Call Trace: [ 438.115497][T11820] [ 438.115508][T11820] dump_stack_lvl+0x16c/0x1f0 [ 438.115553][T11820] should_fail_ex+0x512/0x640 [ 438.115596][T11820] ? fs_reclaim_acquire+0xae/0x150 [ 438.115644][T11820] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 438.115687][T11820] should_failslab+0xc2/0x120 [ 438.115726][T11820] __kmalloc_noprof+0xd2/0x510 [ 438.115771][T11820] tomoyo_realpath_from_path+0xc2/0x6e0 [ 438.115836][T11820] tomoyo_check_open_permission+0x2ab/0x3c0 [ 438.115877][T11820] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 438.115958][T11820] ? find_held_lock+0x2b/0x80 [ 438.116002][T11820] tomoyo_file_open+0x6b/0x90 [ 438.116054][T11820] security_file_open+0x84/0x1e0 [ 438.116097][T11820] do_dentry_open+0x596/0x1c10 [ 438.116141][T11820] vfs_open+0x82/0x3f0 [ 438.116187][T11820] path_openat+0x1e5e/0x2d40 [ 438.116233][T11820] ? __pfx_path_openat+0x10/0x10 [ 438.116276][T11820] do_filp_open+0x20b/0x470 [ 438.116307][T11820] ? __pfx_do_filp_open+0x10/0x10 [ 438.116352][T11820] ? __pfx_kfree_link+0x10/0x10 [ 438.116404][T11820] ? alloc_fd+0x471/0x7d0 [ 438.116465][T11820] do_sys_openat2+0x11b/0x1d0 [ 438.116505][T11820] ? __pfx_do_sys_openat2+0x10/0x10 [ 438.116564][T11820] __x64_sys_openat+0x174/0x210 [ 438.116608][T11820] ? __pfx___x64_sys_openat+0x10/0x10 [ 438.116653][T11820] ? rcu_is_watching+0x12/0xc0 [ 438.116694][T11820] do_syscall_64+0xcd/0x230 [ 438.116736][T11820] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 438.116768][T11820] RIP: 0033:0x7efd6cd8d2d0 [ 438.116800][T11820] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 438.116831][T11820] RSP: 002b:00007efd6dbb7fe0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 438.116860][T11820] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007efd6cd8d2d0 [ 438.116880][T11820] RDX: 0000000000000002 RSI: 00007efd6ce10d96 RDI: 00000000ffffff9c [ 438.116900][T11820] RBP: 00007efd6ce10d96 R08: 0000000000000000 R09: 00007efd6dbb9000 [ 438.116920][T11820] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000006 [ 438.116938][T11820] R13: 0000000000000000 R14: 00007efd6cfb5fa0 R15: 00007ffee0d5ddf8 [ 438.116979][T11820] [ 438.166633][T11820] ERROR: Out of memory at tomoyo_realpath_from_path. [ 438.376152][T11820] FAULT_INJECTION: forcing a failure. [ 438.376152][T11820] name failslab, interval 1, probability 0, space 0, times 0 [ 438.441856][T11820] CPU: 0 UID: 0 PID: 11820 Comm: syz.3.1320 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 438.441903][T11820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 438.441921][T11820] Call Trace: [ 438.441930][T11820] [ 438.441941][T11820] dump_stack_lvl+0x16c/0x1f0 [ 438.441983][T11820] should_fail_ex+0x512/0x640 [ 438.442026][T11820] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 438.442065][T11820] should_failslab+0xc2/0x120 [ 438.442103][T11820] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 438.442136][T11820] ? d_instantiate+0x77/0x90 [ 438.442165][T11820] ? alloc_empty_file+0x55/0x1e0 [ 438.442208][T11820] alloc_empty_file+0x55/0x1e0 [ 438.442248][T11820] alloc_file_pseudo+0x13a/0x230 [ 438.442289][T11820] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 438.442325][T11820] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 438.442387][T11820] create_pipe_files+0x364/0x930 [ 438.442425][T11820] do_pipe2+0xaf/0x1c0 [ 438.442456][T11820] ? __pfx_do_pipe2+0x10/0x10 [ 438.442488][T11820] ? __pfx_ksys_write+0x10/0x10 [ 438.442528][T11820] __x64_sys_pipe+0x33/0x50 [ 438.442560][T11820] do_syscall_64+0xcd/0x230 [ 438.442601][T11820] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 438.442633][T11820] RIP: 0033:0x7efd6cd8e969 [ 438.442658][T11820] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 438.442688][T11820] RSP: 002b:00007efd6dbb8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016 [ 438.442725][T11820] RAX: ffffffffffffffda RBX: 00007efd6cfb5fa0 RCX: 00007efd6cd8e969 [ 438.442746][T11820] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 438.442764][T11820] RBP: 00007efd6dbb8090 R08: 0000000000000000 R09: 0000000000000000 [ 438.442783][T11820] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 438.442801][T11820] R13: 0000000000000000 R14: 00007efd6cfb5fa0 R15: 00007ffee0d5ddf8 [ 438.442841][T11820] [ 445.286683][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.300711][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 446.006470][T11948] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1345'. [ 446.183291][T11951] ima: policy update failed [ 446.188814][ T30] audit: type=1802 audit(6040696002.862:40): pid=11951 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1346" res=0 errno=0 [ 447.666403][T11978] Invalid ELF header magic: != ELF [ 447.826650][T11984] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1353'. [ 448.347284][T11993] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1356'. [ 448.768970][T11993] zswap: compressor not available [ 451.571410][T12040] ima: policy update failed [ 451.607431][ T30] audit: type=1802 audit(6040696008.262:41): pid=12040 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1368" res=0 errno=0 [ 451.776096][T12042] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1369'. [ 452.124961][T12050] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1371'. [ 452.445226][T12059] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1373'. [ 452.798269][T12056] FAULT_INJECTION: forcing a failure. [ 452.798269][T12056] name failslab, interval 1, probability 0, space 0, times 0 [ 452.870066][T12056] CPU: 1 UID: 0 PID: 12056 Comm: syz.1.1375 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 452.870114][T12056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 452.870137][T12056] Call Trace: [ 452.870147][T12056] [ 452.870160][T12056] dump_stack_lvl+0x16c/0x1f0 [ 452.870207][T12056] should_fail_ex+0x512/0x640 [ 452.870264][T12056] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 452.870309][T12056] should_failslab+0xc2/0x120 [ 452.870352][T12056] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 452.870390][T12056] ? sock_alloc_inode+0x25/0x1c0 [ 452.870436][T12056] ? __pfx_sock_alloc_inode+0x10/0x10 [ 452.870476][T12056] sock_alloc_inode+0x25/0x1c0 [ 452.870516][T12056] alloc_inode+0x61/0x240 [ 452.870564][T12056] sock_alloc+0x40/0x280 [ 452.870603][T12056] __sock_create+0xc1/0x8d0 [ 452.870651][T12056] __sys_socket+0x14d/0x260 [ 452.870704][T12056] ? __pfx___sys_socket+0x10/0x10 [ 452.870753][T12056] ? rcu_is_watching+0x12/0xc0 [ 452.870792][T12056] __x64_sys_socket+0x72/0xb0 [ 452.870837][T12056] ? lockdep_hardirqs_on+0x7c/0x110 [ 452.870873][T12056] do_syscall_64+0xcd/0x230 [ 452.870920][T12056] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 452.870953][T12056] RIP: 0033:0x7fa82e38e969 [ 452.870985][T12056] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 452.871015][T12056] RSP: 002b:00007fa82f14d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 452.871042][T12056] RAX: ffffffffffffffda RBX: 00007fa82e5b5fa0 RCX: 00007fa82e38e969 [ 452.871065][T12056] RDX: 0000000000000007 RSI: 0000000000000801 RDI: 000000000000002c [ 452.871091][T12056] RBP: 00007fa82e410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 452.871110][T12056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 452.871130][T12056] R13: 0000000000000000 R14: 00007fa82e5b5fa0 R15: 00007ffd16557938 [ 452.871177][T12056] [ 453.079729][T12056] net_ratelimit: 24 callbacks suppressed [ 453.079754][T12056] socket: no more sockets [ 455.988823][T12099] ima: policy update failed [ 456.028262][ T30] audit: type=1802 audit(6040696012.692:42): pid=12099 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1382" res=0 errno=0 [ 456.454648][T12106] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1384'. [ 459.293289][T12135] ima: policy update failed [ 459.308156][ T30] audit: type=1802 audit(6040696015.972:43): pid=12135 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1392" res=0 errno=0 [ 459.497951][T12123] Invalid ELF header magic: != ELF [ 459.579751][T12138] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1393'. [ 459.686637][T12142] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1395'. [ 459.989065][T12147] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1396'. [ 460.394766][T12138] zswap: compressor not available [ 462.881651][T12163] netlink: 186 bytes leftover after parsing attributes in process `syz.2.1400'. [ 463.359731][T12189] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1407'. [ 463.531061][T12184] Invalid ELF header magic: != ELF [ 464.082166][ T30] audit: type=1800 audit(6040696020.762:44): pid=12201 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1409" name="file0" dev="tmpfs" ino=1779 res=0 errno=0 [ 466.568796][T12237] ima: policy update failed [ 466.575351][ T30] audit: type=1802 audit(6040696023.252:45): pid=12237 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1416" res=0 errno=0 [ 466.890684][T12219] Invalid ELF header magic: != ELF [ 467.917738][T12247] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1420'. [ 468.124756][T12243] Invalid ELF header magic: != ELF [ 468.408705][T12252] zswap: compressor not available [ 468.521328][T12259] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1422'. [ 471.024466][T12304] can: request_module (can-proto-3) failed. [ 472.580116][T12319] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1433'. [ 472.875773][T12319] zswap: compressor not available [ 472.964117][T12329] FAULT_INJECTION: forcing a failure. [ 472.964117][T12329] name failslab, interval 1, probability 0, space 0, times 0 [ 472.982697][T12329] CPU: 0 UID: 0 PID: 12329 Comm: syz.2.1436 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 472.982741][T12329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 472.982760][T12329] Call Trace: [ 472.982771][T12329] [ 472.982783][T12329] dump_stack_lvl+0x16c/0x1f0 [ 472.982833][T12329] should_fail_ex+0x512/0x640 [ 472.982875][T12329] ? fs_reclaim_acquire+0xae/0x150 [ 472.982922][T12329] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 472.982965][T12329] should_failslab+0xc2/0x120 [ 472.983003][T12329] __kmalloc_noprof+0xd2/0x510 [ 472.983046][T12329] tomoyo_realpath_from_path+0xc2/0x6e0 [ 472.983095][T12329] ? tomoyo_profile+0x47/0x60 [ 472.983143][T12329] tomoyo_path_number_perm+0x245/0x580 [ 472.983178][T12329] ? tomoyo_path_number_perm+0x237/0x580 [ 472.983217][T12329] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 472.983255][T12329] ? find_held_lock+0x2b/0x80 [ 472.983321][T12329] ? find_held_lock+0x2b/0x80 [ 472.983347][T12329] ? hook_file_ioctl_common+0x145/0x410 [ 472.983390][T12329] ? __fget_files+0x20e/0x3c0 [ 472.983445][T12329] security_file_ioctl+0x9b/0x240 [ 472.983485][T12329] __x64_sys_ioctl+0xb7/0x200 [ 472.983531][T12329] do_syscall_64+0xcd/0x230 [ 472.983572][T12329] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 472.983605][T12329] RIP: 0033:0x7faefb18e969 [ 472.983630][T12329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 472.983662][T12329] RSP: 002b:00007faefbfa1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 472.983692][T12329] RAX: ffffffffffffffda RBX: 00007faefb3b5fa0 RCX: 00007faefb18e969 [ 472.983712][T12329] RDX: 0000000000000038 RSI: 00000000c0485619 RDI: 0000000000000003 [ 472.983731][T12329] RBP: 00007faefbfa1090 R08: 0000000000000000 R09: 0000000000000000 [ 472.983751][T12329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 472.983769][T12329] R13: 0000000000000000 R14: 00007faefb3b5fa0 R15: 00007ffe5267b0d8 [ 472.983810][T12329] [ 472.984319][T12329] ERROR: Out of memory at tomoyo_realpath_from_path. [ 474.758508][T12349] Invalid ELF header magic: != ELF [ 478.709398][T12410] Invalid ELF header magic: != ELF [ 480.347369][T12432] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1458'. [ 480.707718][T12432] zswap: compressor not available [ 481.325354][T12451] ima: policy update failed [ 481.335267][ T30] audit: type=1802 audit(6040696038.012:46): pid=12451 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1462" res=0 errno=0 [ 481.926241][T12458] ima: policy update failed [ 481.934618][ T30] audit: type=1802 audit(6040696038.612:47): pid=12458 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1463" res=0 errno=0 [ 483.916879][T12482] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1470'. [ 484.319421][T12482] zswap: compressor not available [ 484.866608][T12496] ima: policy update failed [ 484.930440][ T30] audit: type=1802 audit(6040696041.582:48): pid=12496 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1472" res=0 errno=0 [ 485.412185][ T55] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 485.412231][ T55] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 485.429064][ T55] Bluetooth: hci2: Unknown advertising packet type: 0x7f [ 485.429163][ T55] Bluetooth: hci2: Malformed LE Event: 0x0d [ 485.563182][T12499] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1474'. [ 485.773066][T12505] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 486.911502][T12519] ima: policy update failed [ 486.926332][ T30] audit: type=1802 audit(6040696043.592:49): pid=12519 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1480" res=0 errno=0 [ 489.786332][T12572] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 491.537988][T12603] ima: policy update failed [ 491.573124][ T30] audit: type=1802 audit(6040696048.252:50): pid=12603 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1493" res=0 errno=0 [ 491.741385][T12606] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1494'. [ 491.777414][T12606] FAULT_INJECTION: forcing a failure. [ 491.777414][T12606] name failslab, interval 1, probability 0, space 0, times 0 [ 491.813743][T12606] CPU: 0 UID: 0 PID: 12606 Comm: syz.2.1494 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 491.813792][T12606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 491.813821][T12606] Call Trace: [ 491.813832][T12606] [ 491.813844][T12606] dump_stack_lvl+0x16c/0x1f0 [ 491.813890][T12606] should_fail_ex+0x512/0x640 [ 491.813933][T12606] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 491.813974][T12606] should_failslab+0xc2/0x120 [ 491.814014][T12606] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 491.814049][T12606] ? __pfx_apparmor_file_open+0x10/0x10 [ 491.814088][T12606] ? proc_reg_open+0x21d/0x610 [ 491.814123][T12606] proc_reg_open+0x21d/0x610 [ 491.814155][T12606] do_dentry_open+0x741/0x1c10 [ 491.814188][T12606] ? __pfx_proc_reg_open+0x10/0x10 [ 491.814227][T12606] vfs_open+0x82/0x3f0 [ 491.814273][T12606] path_openat+0x1e5e/0x2d40 [ 491.814317][T12606] ? __pfx_path_openat+0x10/0x10 [ 491.814358][T12606] do_filp_open+0x20b/0x470 [ 491.814389][T12606] ? __pfx_do_filp_open+0x10/0x10 [ 491.814433][T12606] ? __pfx_kfree_link+0x10/0x10 [ 491.814486][T12606] ? alloc_fd+0x471/0x7d0 [ 491.814548][T12606] do_sys_openat2+0x11b/0x1d0 [ 491.814590][T12606] ? __pfx_do_sys_openat2+0x10/0x10 [ 491.814634][T12606] ? __sys_sendmsg+0x199/0x220 [ 491.814673][T12606] __x64_sys_openat+0x174/0x210 [ 491.814717][T12606] ? __pfx___x64_sys_openat+0x10/0x10 [ 491.814761][T12606] ? rcu_is_watching+0x12/0xc0 [ 491.814799][T12606] do_syscall_64+0xcd/0x230 [ 491.814852][T12606] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 491.814886][T12606] RIP: 0033:0x7faefb18e969 [ 491.814914][T12606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 491.814965][T12606] RSP: 002b:00007faefbfa1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 491.815000][T12606] RAX: ffffffffffffffda RBX: 00007faefb3b5fa0 RCX: 00007faefb18e969 [ 491.815025][T12606] RDX: 0000000000000880 RSI: 00002000000001c0 RDI: ffffffffffffff9c [ 491.815048][T12606] RBP: 00007faefb210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 491.815068][T12606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 491.815087][T12606] R13: 0000000000000000 R14: 00007faefb3b5fa0 R15: 00007ffe5267b0d8 [ 491.815127][T12606] [ 492.717130][T12617] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1497'. [ 493.722732][T12631] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1500'. [ 497.927551][T12680] netlink: 186 bytes leftover after parsing attributes in process `syz.3.1511'. [ 498.355008][T12690] FAULT_INJECTION: forcing a failure. [ 498.355008][T12690] name failslab, interval 1, probability 0, space 0, times 0 [ 498.378384][T12690] CPU: 1 UID: 0 PID: 12690 Comm: syz.1.1513 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 498.378432][T12690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 498.378451][T12690] Call Trace: [ 498.378461][T12690] [ 498.378472][T12690] dump_stack_lvl+0x16c/0x1f0 [ 498.378515][T12690] should_fail_ex+0x512/0x640 [ 498.378558][T12690] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 498.378615][T12690] should_failslab+0xc2/0x120 [ 498.378659][T12690] __kmalloc_cache_noprof+0x6a/0x3e0 [ 498.378711][T12690] ? snd_seq_port_connect+0x61/0x550 [ 498.378752][T12690] snd_seq_port_connect+0x61/0x550 [ 498.378787][T12690] ? _raw_read_unlock+0x28/0x50 [ 498.378822][T12690] ? check_subscription_permission.isra.0+0xf5/0x240 [ 498.378866][T12690] snd_seq_ioctl_subscribe_port+0x211/0x450 [ 498.378911][T12690] ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10 [ 498.378971][T12690] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 498.379014][T12690] snd_seq_oss_midi_open+0x442/0x660 [ 498.379064][T12690] ? __pfx_snd_seq_oss_midi_open+0x10/0x10 [ 498.379124][T12690] ? rcu_is_watching+0x12/0xc0 [ 498.379153][T12690] ? trace_contention_end+0xdd/0x130 [ 498.379201][T12690] snd_seq_oss_synth_reset+0x437/0x880 [ 498.379251][T12690] ? __pfx_snd_seq_oss_synth_reset+0x10/0x10 [ 498.379297][T12690] ? __pfx___fsnotify_parent+0x10/0x10 [ 498.379353][T12690] snd_seq_oss_reset+0x73/0x290 [ 498.379403][T12690] ? __pfx_odev_release+0x10/0x10 [ 498.379436][T12690] snd_seq_oss_release+0x7c/0x180 [ 498.379476][T12690] odev_release+0x4c/0x70 [ 498.379509][T12690] __fput+0x3ff/0xb70 [ 498.379557][T12690] task_work_run+0x14d/0x240 [ 498.379608][T12690] ? __pfx_task_work_run+0x10/0x10 [ 498.379657][T12690] ? __pfx_ksys_write+0x10/0x10 [ 498.379695][T12690] syscall_exit_to_user_mode+0x27b/0x2a0 [ 498.379737][T12690] do_syscall_64+0xda/0x230 [ 498.379780][T12690] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 498.379812][T12690] RIP: 0033:0x7fa82e38e969 [ 498.379837][T12690] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 498.379868][T12690] RSP: 002b:00007fa82f12c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 498.379898][T12690] RAX: 0000000000000007 RBX: 00007fa82e5b6080 RCX: 00007fa82e38e969 [ 498.379918][T12690] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 498.379937][T12690] RBP: 00007fa82f12c090 R08: 0000000000000000 R09: 0000000000000000 [ 498.379955][T12690] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001 [ 498.379975][T12690] R13: 0000000000000001 R14: 00007fa82e5b6080 R15: 00007ffd16557938 [ 498.380018][T12690] [ 502.595685][T12740] mkiss: ax0: crc mode is auto. [ 503.916887][T12762] ima: policy update failed [ 503.921982][ T30] audit: type=1802 audit(6040696060.602:51): pid=12762 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1530" res=0 errno=0 [ 505.933000][T12790] can: request_module (can-proto-3) failed. [ 506.230409][T12798] ima: policy update failed [ 506.239150][ T30] audit: type=1802 audit(6040696062.912:52): pid=12798 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1538" res=0 errno=0 [ 506.716535][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 506.723038][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 506.966802][T12811] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1541'. [ 507.560410][T12811] zswap: compressor not available [ 512.002147][T12868] ima: policy update failed [ 512.018153][ T30] audit: type=1802 audit(6040696068.692:53): pid=12868 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1555" res=0 errno=0 [ 512.300037][T12875] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1558'. [ 512.683266][T12885] kafs: addr_prefs: Invalid Command [ 515.607653][T12942] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 520.024562][T13014] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 520.085003][T13014] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 520.208062][T13014] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 520.247921][T13014] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 520.348325][T13014] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 520.393475][T13014] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 521.438250][ T55] Bluetooth: hci0: command 0x0406 tx timeout [ 522.228321][ T55] Bluetooth: hci1: command 0x0406 tx timeout [ 522.308247][ T55] Bluetooth: hci2: command 0x0406 tx timeout [ 522.468537][ T55] Bluetooth: hci3: command 0x0406 tx timeout [ 522.835311][T13087] FAULT_INJECTION: forcing a failure. [ 522.835311][T13087] name failslab, interval 1, probability 0, space 0, times 0 [ 522.906678][T13087] CPU: 1 UID: 0 PID: 13087 Comm: syz.3.1599 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 522.906723][T13087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 522.906742][T13087] Call Trace: [ 522.906753][T13087] [ 522.906765][T13087] dump_stack_lvl+0x16c/0x1f0 [ 522.906811][T13087] should_fail_ex+0x512/0x640 [ 522.906858][T13087] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 522.906900][T13087] should_failslab+0xc2/0x120 [ 522.906939][T13087] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 522.906975][T13087] ? __kernfs_new_node+0xd2/0x8a0 [ 522.907035][T13087] __kernfs_new_node+0xd2/0x8a0 [ 522.907091][T13087] ? __pfx___kernfs_new_node+0x10/0x10 [ 522.907154][T13087] ? find_held_lock+0x2b/0x80 [ 522.907185][T13087] ? kernfs_root+0xee/0x2a0 [ 522.907245][T13087] kernfs_new_node+0x13c/0x1e0 [ 522.907288][T13087] __kernfs_create_file+0x53/0x350 [ 522.907337][T13087] sysfs_add_file_mode_ns+0x207/0x3c0 [ 522.907398][T13087] internal_create_group+0x578/0xf30 [ 522.907461][T13087] ? __pfx_internal_create_group+0x10/0x10 [ 522.907530][T13087] ? kernfs_create_link+0x1bd/0x240 [ 522.907578][T13087] internal_create_groups+0x9d/0x150 [ 522.907614][T13087] device_add+0x6d1/0x1a70 [ 522.907660][T13087] ? __pfx_device_add+0x10/0x10 [ 522.907702][T13087] ? lockdep_init_map_type+0x5c/0x280 [ 522.907748][T13087] ? __init_waitqueue_head+0xca/0x150 [ 522.907805][T13087] netdev_register_kobject+0x182/0x3a0 [ 522.907848][T13087] register_netdevice+0x13dc/0x2270 [ 522.907895][T13087] ? __pfx_register_netdevice+0x10/0x10 [ 522.907945][T13087] __ip_tunnel_create+0x4a8/0x680 [ 522.907985][T13087] ? __pfx___ip_tunnel_create+0x10/0x10 [ 522.908031][T13087] ip_tunnel_init_net+0x22f/0x7d0 [ 522.908072][T13087] ? __pfx_ip_tunnel_init_net+0x10/0x10 [ 522.908116][T13087] ? trace_kmalloc+0x2b/0xd0 [ 522.908158][T13087] ? lockdep_init_map_type+0x5c/0x280 [ 522.908207][T13087] ? __pfx_ipgre_tap_init_net+0x10/0x10 [ 522.908255][T13087] ops_init+0x1df/0x5f0 [ 522.908293][T13087] setup_net+0x21e/0x850 [ 522.908331][T13087] ? __pfx_setup_net+0x10/0x10 [ 522.908361][T13087] ? lockdep_init_map_type+0x5c/0x280 [ 522.908404][T13087] ? __pfx_down_read_killable+0x10/0x10 [ 522.908454][T13087] ? debug_mutex_init+0x37/0x70 [ 522.908519][T13087] copy_net_ns+0x2a6/0x5f0 [ 522.908561][T13087] create_new_namespaces+0x3ea/0xad0 [ 522.908609][T13087] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 522.908647][T13087] ksys_unshare+0x45b/0xa40 [ 522.908693][T13087] ? __pfx_ksys_unshare+0x10/0x10 [ 522.908734][T13087] ? xfd_validate_state+0x5d/0x180 [ 522.908790][T13087] ? rcu_is_watching+0x12/0xc0 [ 522.908830][T13087] __x64_sys_unshare+0x31/0x40 [ 522.908871][T13087] do_syscall_64+0xcd/0x230 [ 522.908914][T13087] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 522.908946][T13087] RIP: 0033:0x7efd6cd8e969 [ 522.908973][T13087] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 522.909004][T13087] RSP: 002b:00007efd6dbb8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 522.909034][T13087] RAX: ffffffffffffffda RBX: 00007efd6cfb5fa0 RCX: 00007efd6cd8e969 [ 522.909055][T13087] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 522.909075][T13087] RBP: 00007efd6ce10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 522.909093][T13087] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 522.909111][T13087] R13: 0000000000000000 R14: 00007efd6cfb5fa0 R15: 00007ffee0d5ddf8 [ 522.909151][T13087] [ 523.508146][ T55] Bluetooth: hci0: command 0x0406 tx timeout [ 524.398521][ T55] Bluetooth: hci2: command 0x0406 tx timeout [ 524.823733][T13114] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1607'. [ 526.569696][T13138] netlink: 'syz.0.1612': attribute type 2 has an invalid length. [ 527.803848][T13139] Invalid ELF header magic: != ELF [ 528.793449][T13163] ima: policy update failed [ 528.809489][ T30] audit: type=1802 audit(6040696085.479:54): pid=13163 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1618" res=0 errno=0 [ 529.014425][T13168] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 530.707109][T13213] ima: policy update failed [ 530.716681][ T30] audit: type=1802 audit(6040696087.389:55): pid=13213 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1630" res=0 errno=0 [ 532.809585][T13256] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 534.914784][T13278] netlink: 110 bytes leftover after parsing attributes in process `syz.0.1646'. [ 536.546471][T13311] Invalid ELF header magic: != ELF [ 537.678418][T13318] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1655'. [ 538.193182][T13331] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1659'. [ 538.967385][T13327] can: request_module (can-proto-4) failed. [ 540.640218][T13361] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1664'. [ 540.681007][T13360] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1665'. [ 540.783164][T13364] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1666'. [ 542.663533][T13384] sd 0:0:1:0: PR command failed: 1026 [ 542.669219][T13384] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 542.676120][T13384] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 542.787485][T13393] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1672'. [ 542.887574][T13386] raw_sendmsg: syz.3.1669 forgot to set AF_INET. Fix it! [ 543.084336][T13396] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1673'. [ 546.441376][T13443] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1682'. [ 546.873190][T13447] ima: policy update failed [ 546.898064][ T30] audit: type=1802 audit(6040696103.549:56): pid=13447 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1683" res=0 errno=0 [ 548.123559][T13456] Invalid ELF header magic: != ELF [ 551.138493][T13484] can: request_module (can-proto-3) failed. [ 553.256786][T13519] ima: policy update failed [ 553.264415][ T30] audit: type=1802 audit(6040696109.939:57): pid=13519 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1697" res=0 errno=0 [ 553.295773][T13510] netlink: 186 bytes leftover after parsing attributes in process `syz.1.1693'. [ 554.110400][T13525] ima: policy update failed [ 554.115372][ T30] audit: type=1802 audit(6040696110.789:58): pid=13525 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1699" res=0 errno=0 [ 556.231444][T13565] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1709'. [ 557.665364][T13583] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1712'. [ 559.185072][T13602] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1717'. [ 560.441978][T13622] zswap: compressor not available [ 560.981108][T13635] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1723'. [ 561.255543][T13638] FAULT_INJECTION: forcing a failure. [ 561.255543][T13638] name failslab, interval 1, probability 0, space 0, times 0 [ 561.268590][T13638] CPU: 1 UID: 0 PID: 13638 Comm: syz.2.1724 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 561.268639][T13638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 561.268660][T13638] Call Trace: [ 561.268671][T13638] [ 561.268683][T13638] dump_stack_lvl+0x16c/0x1f0 [ 561.268730][T13638] should_fail_ex+0x512/0x640 [ 561.268775][T13638] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 561.268831][T13638] should_failslab+0xc2/0x120 [ 561.268869][T13638] __kmalloc_cache_noprof+0x6a/0x3e0 [ 561.268918][T13638] ? do_raw_spin_lock+0x12c/0x2b0 [ 561.268966][T13638] ? single_open+0x4d/0x1f0 [ 561.269011][T13638] ? __pfx_tracing_clock_show+0x10/0x10 [ 561.269058][T13638] single_open+0x4d/0x1f0 [ 561.269099][T13638] tracing_clock_open+0xa7/0x100 [ 561.269140][T13638] do_dentry_open+0x741/0x1c10 [ 561.269174][T13638] ? __pfx_tracing_clock_open+0x10/0x10 [ 561.269221][T13638] vfs_open+0x82/0x3f0 [ 561.269268][T13638] path_openat+0x1e5e/0x2d40 [ 561.269313][T13638] ? __pfx_path_openat+0x10/0x10 [ 561.269355][T13638] do_filp_open+0x20b/0x470 [ 561.269386][T13638] ? __pfx_do_filp_open+0x10/0x10 [ 561.269457][T13638] ? alloc_fd+0x471/0x7d0 [ 561.269517][T13638] do_sys_openat2+0x11b/0x1d0 [ 561.269559][T13638] ? __pfx_do_sys_openat2+0x10/0x10 [ 561.269620][T13638] __x64_sys_openat+0x174/0x210 [ 561.269664][T13638] ? __pfx___x64_sys_openat+0x10/0x10 [ 561.269714][T13638] ? rcu_is_watching+0x12/0xc0 [ 561.269756][T13638] do_syscall_64+0xcd/0x230 [ 561.269799][T13638] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 561.269833][T13638] RIP: 0033:0x7faefb18e969 [ 561.269859][T13638] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 561.269892][T13638] RSP: 002b:00007faefbfa1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 561.269924][T13638] RAX: ffffffffffffffda RBX: 00007faefb3b5fa0 RCX: 00007faefb18e969 [ 561.269946][T13638] RDX: 0000000000022500 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 561.269968][T13638] RBP: 00007faefb210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 561.269990][T13638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 561.270010][T13638] R13: 0000000000000000 R14: 00007faefb3b5fa0 R15: 00007ffe5267b0d8 [ 561.270051][T13638] [ 561.981415][T13644] netlink: 'syz.1.1727': attribute type 4 has an invalid length. [ 561.989889][T13644] netlink: 314 bytes leftover after parsing attributes in process `syz.1.1727'. [ 562.674921][T13650] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1728'. [ 562.835565][T13646] netlink: 186 bytes leftover after parsing attributes in process `syz.0.1726'. [ 564.088757][ T55] Bluetooth: hci1: unexpected subevent 0x01 length: 122 > 18 [ 564.444033][T13677] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1736'. [ 566.345185][T13703] zswap: compressor not available [ 566.988209][T13725] netlink: 'syz.2.1748': attribute type 4 has an invalid length. [ 566.996230][T13725] netlink: 314 bytes leftover after parsing attributes in process `syz.2.1748'. [ 567.016468][T13725] netlink: 'syz.2.1748': attribute type 4 has an invalid length. [ 567.038152][T13725] netlink: 314 bytes leftover after parsing attributes in process `syz.2.1748'. [ 568.162627][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 568.169400][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 570.197935][T13794] can: request_module (can-proto-3) failed. [ 570.206845][T13790] can: request_module (can-proto-3) failed. [ 573.488627][T13845] FAULT_INJECTION: forcing a failure. [ 573.488627][T13845] name failslab, interval 1, probability 0, space 0, times 0 [ 573.539922][T13845] CPU: 1 UID: 0 PID: 13845 Comm: syz.2.1773 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 573.539969][T13845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 573.539990][T13845] Call Trace: [ 573.540000][T13845] [ 573.540013][T13845] dump_stack_lvl+0x16c/0x1f0 [ 573.540060][T13845] should_fail_ex+0x512/0x640 [ 573.540106][T13845] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 573.540165][T13845] should_failslab+0xc2/0x120 [ 573.540205][T13845] __kmalloc_cache_noprof+0x6a/0x3e0 [ 573.540256][T13845] ? do_raw_spin_lock+0x12c/0x2b0 [ 573.540312][T13845] ? single_open+0x4d/0x1f0 [ 573.540356][T13845] ? __pfx_tracing_clock_show+0x10/0x10 [ 573.540401][T13845] single_open+0x4d/0x1f0 [ 573.540444][T13845] tracing_clock_open+0xa7/0x100 [ 573.540486][T13845] do_dentry_open+0x741/0x1c10 [ 573.540519][T13845] ? __pfx_tracing_clock_open+0x10/0x10 [ 573.540567][T13845] vfs_open+0x82/0x3f0 [ 573.540613][T13845] path_openat+0x1e5e/0x2d40 [ 573.540658][T13845] ? __pfx_path_openat+0x10/0x10 [ 573.540700][T13845] do_filp_open+0x20b/0x470 [ 573.540731][T13845] ? __pfx_do_filp_open+0x10/0x10 [ 573.540791][T13845] ? alloc_fd+0x471/0x7d0 [ 573.540849][T13845] do_sys_openat2+0x11b/0x1d0 [ 573.540890][T13845] ? __pfx_do_sys_openat2+0x10/0x10 [ 573.540949][T13845] __x64_sys_openat+0x174/0x210 [ 573.540990][T13845] ? __pfx___x64_sys_openat+0x10/0x10 [ 573.541037][T13845] ? rcu_is_watching+0x12/0xc0 [ 573.541078][T13845] do_syscall_64+0xcd/0x230 [ 573.541122][T13845] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 573.541155][T13845] RIP: 0033:0x7faefb18e969 [ 573.541180][T13845] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 573.541213][T13845] RSP: 002b:00007faefbfa1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 573.541245][T13845] RAX: ffffffffffffffda RBX: 00007faefb3b5fa0 RCX: 00007faefb18e969 [ 573.541268][T13845] RDX: 0000000000022500 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 573.541289][T13845] RBP: 00007faefb210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 573.541315][T13845] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 573.541334][T13845] R13: 0000000000000000 R14: 00007faefb3b5fa0 R15: 00007ffe5267b0d8 [ 573.541377][T13845] [ 577.377476][T13902] netlink: 186 bytes leftover after parsing attributes in process `syz.1.1789'. [ 579.077754][T13950] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1802'. [ 579.326204][T13959] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1804'. [ 579.387858][T13950] zswap: compressor not available [ 580.419131][T13960] netlink: 186 bytes leftover after parsing attributes in process `syz.0.1803'. [ 586.039542][T14072] FAULT_INJECTION: forcing a failure. [ 586.039542][T14072] name failslab, interval 1, probability 0, space 0, times 0 [ 586.052406][T14072] CPU: 1 UID: 0 PID: 14072 Comm: syz.3.1825 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 586.052449][T14072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 586.052467][T14072] Call Trace: [ 586.052478][T14072] [ 586.052489][T14072] dump_stack_lvl+0x16c/0x1f0 [ 586.052533][T14072] should_fail_ex+0x512/0x640 [ 586.052576][T14072] ? fs_reclaim_acquire+0xae/0x150 [ 586.052625][T14072] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 586.052685][T14072] should_failslab+0xc2/0x120 [ 586.052722][T14072] __kmalloc_noprof+0xd2/0x510 [ 586.052772][T14072] tomoyo_realpath_from_path+0xc2/0x6e0 [ 586.052825][T14072] tomoyo_check_open_permission+0x2ab/0x3c0 [ 586.052863][T14072] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 586.052941][T14072] ? find_held_lock+0x2b/0x80 [ 586.052980][T14072] tomoyo_file_open+0x6b/0x90 [ 586.053028][T14072] security_file_open+0x84/0x1e0 [ 586.053067][T14072] do_dentry_open+0x596/0x1c10 [ 586.053111][T14072] vfs_open+0x82/0x3f0 [ 586.053155][T14072] path_openat+0x1e5e/0x2d40 [ 586.053200][T14072] ? __pfx_path_openat+0x10/0x10 [ 586.053240][T14072] do_filp_open+0x20b/0x470 [ 586.053269][T14072] ? __pfx_do_filp_open+0x10/0x10 [ 586.053313][T14072] ? __pfx_kfree_link+0x10/0x10 [ 586.053366][T14072] ? alloc_fd+0x471/0x7d0 [ 586.053423][T14072] do_sys_openat2+0x11b/0x1d0 [ 586.053463][T14072] ? __pfx_do_sys_openat2+0x10/0x10 [ 586.053520][T14072] __x64_sys_openat+0x174/0x210 [ 586.053573][T14072] ? __pfx___x64_sys_openat+0x10/0x10 [ 586.053617][T14072] ? rcu_is_watching+0x12/0xc0 [ 586.053655][T14072] do_syscall_64+0xcd/0x230 [ 586.053698][T14072] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 586.053729][T14072] RIP: 0033:0x7efd6cd8d2d0 [ 586.053762][T14072] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 586.053792][T14072] RSP: 002b:00007efd6dbb7fe0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 586.053822][T14072] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007efd6cd8d2d0 [ 586.053842][T14072] RDX: 0000000000000002 RSI: 00007efd6ce10d96 RDI: 00000000ffffff9c [ 586.053861][T14072] RBP: 00007efd6ce10d96 R08: 0000000000000000 R09: 00007efd6dbb9000 [ 586.053880][T14072] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000008 [ 586.053898][T14072] R13: 0000000000000000 R14: 00007efd6cfb5fa0 R15: 00007ffee0d5ddf8 [ 586.053938][T14072] [ 586.053950][T14072] ERROR: Out of memory at tomoyo_realpath_from_path. [ 588.135993][T14115] Invalid ELF header magic: != ELF [ 588.875665][T14143] FAULT_INJECTION: forcing a failure. [ 588.875665][T14143] name failslab, interval 1, probability 0, space 0, times 0 [ 588.893256][T14143] CPU: 1 UID: 0 PID: 14143 Comm: syz.2.1836 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 588.893311][T14143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 588.893333][T14143] Call Trace: [ 588.893345][T14143] [ 588.893358][T14143] dump_stack_lvl+0x16c/0x1f0 [ 588.893406][T14143] should_fail_ex+0x512/0x640 [ 588.893457][T14143] ? fs_reclaim_acquire+0xae/0x150 [ 588.893517][T14143] should_failslab+0xc2/0x120 [ 588.893561][T14143] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 588.893603][T14143] ? ima_inode_get+0x120/0x580 [ 588.893664][T14143] ima_inode_get+0x120/0x580 [ 588.893723][T14143] process_measurement+0x585/0x23e0 [ 588.893806][T14143] ? __pfx_process_measurement+0x10/0x10 [ 588.893872][T14143] ? mod_objcg_state+0x5eb/0xa50 [ 588.893960][T14143] ? __pfx_tracing_clock_show+0x10/0x10 [ 588.894027][T14143] ? single_open+0x15f/0x1f0 [ 588.894078][T14143] ? inode_to_bdi+0x9e/0x160 [ 588.894133][T14143] ima_file_check+0xc5/0x110 [ 588.894188][T14143] ? __pfx_ima_file_check+0x10/0x10 [ 588.894263][T14143] security_file_post_open+0x8e/0x210 [ 588.894312][T14143] path_openat+0x147d/0x2d40 [ 588.894365][T14143] ? __pfx_path_openat+0x10/0x10 [ 588.894412][T14143] do_filp_open+0x20b/0x470 [ 588.894449][T14143] ? __pfx_do_filp_open+0x10/0x10 [ 588.894517][T14143] ? alloc_fd+0x471/0x7d0 [ 588.894587][T14143] do_sys_openat2+0x11b/0x1d0 [ 588.894635][T14143] ? __pfx_do_sys_openat2+0x10/0x10 [ 588.894704][T14143] __x64_sys_openat+0x174/0x210 [ 588.894769][T14143] ? __pfx___x64_sys_openat+0x10/0x10 [ 588.894822][T14143] ? rcu_is_watching+0x12/0xc0 [ 588.894879][T14143] do_syscall_64+0xcd/0x230 [ 588.894934][T14143] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 588.894972][T14143] RIP: 0033:0x7faefb18e969 [ 588.895001][T14143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 588.895037][T14143] RSP: 002b:00007faefbfa1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 588.895073][T14143] RAX: ffffffffffffffda RBX: 00007faefb3b5fa0 RCX: 00007faefb18e969 [ 588.895097][T14143] RDX: 0000000000022500 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 588.895121][T14143] RBP: 00007faefb210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 588.895144][T14143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 588.895181][T14143] R13: 0000000000000000 R14: 00007faefb3b5fa0 R15: 00007ffe5267b0d8 [ 588.895236][T14143] [ 591.605263][T14177] netlink: 186 bytes leftover after parsing attributes in process `syz.2.1845'. [ 594.852348][T14234] Invalid ELF header magic: != ELF [ 595.614149][T14248] openvswitch: netlink: Multiple metadata blocks provided [ 597.602400][T14280] FAULT_INJECTION: forcing a failure. [ 597.602400][T14280] name failslab, interval 1, probability 0, space 0, times 0 [ 597.621759][T14280] CPU: 0 UID: 0 PID: 14280 Comm: syz.2.1869 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 597.621795][T14280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 597.621809][T14280] Call Trace: [ 597.621817][T14280] [ 597.621827][T14280] dump_stack_lvl+0x16c/0x1f0 [ 597.621860][T14280] should_fail_ex+0x512/0x640 [ 597.621893][T14280] ? fs_reclaim_acquire+0xae/0x150 [ 597.621932][T14280] should_failslab+0xc2/0x120 [ 597.621960][T14280] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 597.621987][T14280] ? ima_inode_get+0x120/0x580 [ 597.622026][T14280] ima_inode_get+0x120/0x580 [ 597.622063][T14280] process_measurement+0x585/0x23e0 [ 597.622107][T14280] ? __pfx_process_measurement+0x10/0x10 [ 597.622148][T14280] ? mod_objcg_state+0x5eb/0xa50 [ 597.622201][T14280] ? __pfx_tracing_clock_show+0x10/0x10 [ 597.622236][T14280] ? single_open+0x15f/0x1f0 [ 597.622264][T14280] ? inode_to_bdi+0x9e/0x160 [ 597.622298][T14280] ima_file_check+0xc5/0x110 [ 597.622332][T14280] ? __pfx_ima_file_check+0x10/0x10 [ 597.622374][T14280] security_file_post_open+0x8e/0x210 [ 597.622404][T14280] path_openat+0x147d/0x2d40 [ 597.622446][T14280] ? __pfx_path_openat+0x10/0x10 [ 597.622476][T14280] do_filp_open+0x20b/0x470 [ 597.622498][T14280] ? __pfx_do_filp_open+0x10/0x10 [ 597.622541][T14280] ? alloc_fd+0x471/0x7d0 [ 597.622584][T14280] do_sys_openat2+0x11b/0x1d0 [ 597.622615][T14280] ? __pfx_do_sys_openat2+0x10/0x10 [ 597.622656][T14280] __x64_sys_openat+0x174/0x210 [ 597.622687][T14280] ? __pfx___x64_sys_openat+0x10/0x10 [ 597.622720][T14280] ? rcu_is_watching+0x12/0xc0 [ 597.622749][T14280] do_syscall_64+0xcd/0x230 [ 597.622868][T14280] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 597.622894][T14280] RIP: 0033:0x7faefb18e969 [ 597.622914][T14280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 597.622938][T14280] RSP: 002b:00007faefbfa1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 597.622959][T14280] RAX: ffffffffffffffda RBX: 00007faefb3b5fa0 RCX: 00007faefb18e969 [ 597.622975][T14280] RDX: 0000000000022500 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 597.622991][T14280] RBP: 00007faefb210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 597.623005][T14280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 597.623019][T14280] R13: 0000000000000000 R14: 00007faefb3b5fa0 R15: 00007ffe5267b0d8 [ 597.623049][T14280] [ 598.872757][T14290] Invalid ELF header magic: != ELF [ 598.890064][T14295] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1872'. [ 601.375017][T14332] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1883'. [ 601.947742][T14310] netlink: 186 bytes leftover after parsing attributes in process `syz.3.1875'. [ 601.997563][T14339] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1886'. [ 602.082945][T14339] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1886'. [ 605.139383][T14398] FAULT_INJECTION: forcing a failure. [ 605.139383][T14398] name failslab, interval 1, probability 0, space 0, times 0 [ 605.208082][T14398] CPU: 0 UID: 0 PID: 14398 Comm: syz.2.1894 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 605.208124][T14398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 605.208139][T14398] Call Trace: [ 605.208148][T14398] [ 605.208159][T14398] dump_stack_lvl+0x16c/0x1f0 [ 605.208201][T14398] should_fail_ex+0x512/0x640 [ 605.208242][T14398] ? fs_reclaim_acquire+0xae/0x150 [ 605.208285][T14398] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 605.208323][T14398] should_failslab+0xc2/0x120 [ 605.208357][T14398] __kmalloc_noprof+0xd2/0x510 [ 605.208402][T14398] tomoyo_realpath_from_path+0xc2/0x6e0 [ 605.208444][T14398] ? tomoyo_profile+0x47/0x60 [ 605.208488][T14398] tomoyo_path_number_perm+0x245/0x580 [ 605.208518][T14398] ? tomoyo_path_number_perm+0x237/0x580 [ 605.208553][T14398] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 605.208586][T14398] ? find_held_lock+0x2b/0x80 [ 605.208640][T14398] ? find_held_lock+0x2b/0x80 [ 605.208664][T14398] ? hook_file_ioctl_common+0x145/0x410 [ 605.208701][T14398] ? __fget_files+0x20e/0x3c0 [ 605.208751][T14398] security_file_ioctl+0x9b/0x240 [ 605.208791][T14398] __x64_sys_ioctl+0xb7/0x200 [ 605.208835][T14398] do_syscall_64+0xcd/0x230 [ 605.208875][T14398] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 605.208905][T14398] RIP: 0033:0x7faefb18e969 [ 605.208933][T14398] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 605.208962][T14398] RSP: 002b:00007faefbfa1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 605.208990][T14398] RAX: ffffffffffffffda RBX: 00007faefb3b5fa0 RCX: 00007faefb18e969 [ 605.209009][T14398] RDX: 0000000000000000 RSI: 0000000000004161 RDI: 0000000000000003 [ 605.209027][T14398] RBP: 00007faefbfa1090 R08: 0000000000000000 R09: 0000000000000000 [ 605.209045][T14398] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 605.209062][T14398] R13: 0000000000000000 R14: 00007faefb3b5fa0 R15: 00007ffe5267b0d8 [ 605.209098][T14398] [ 605.209108][T14398] ERROR: Out of memory at tomoyo_realpath_from_path. [ 605.855066][T14411] ima: policy update failed [ 605.956480][ T30] audit: type=1802 audit(6040696162.552:59): pid=14411 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1896" res=0 errno=0 [ 608.677801][T14457] Invalid ELF header magic: != ELF [ 610.630817][T14495] netlink: 246 bytes leftover after parsing attributes in process `syz.0.1919'. [ 611.298148][T13669] Bluetooth: hci0: unexpected event 0x3d length: 726 > 14 [ 613.427091][T14527] Invalid ELF header magic: != ELF [ 614.038967][T14537] program syz.3.1930 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 614.089792][T14537] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 615.310795][T14557] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1935'. [ 615.540603][ T30] audit: type=1800 audit(6040696172.222:60): pid=14559 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1933" name="file0" dev="tmpfs" ino=2451 res=0 errno=0 [ 617.554985][T14580] netlink: 186 bytes leftover after parsing attributes in process `syz.2.1939'. [ 619.294012][T14584] netlink: 186 bytes leftover after parsing attributes in process `syz.0.1940'. [ 619.816542][ T30] audit: type=1804 audit(6040696176.492:61): pid=14604 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1945" name="file0" dev="tmpfs" ino=2817 res=1 errno=0 [ 619.908339][ T30] audit: type=1800 audit(6040696176.562:62): pid=14604 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1945" name="file0" dev="tmpfs" ino=2817 res=0 errno=0 [ 620.622002][T14601] Invalid ELF header magic: != ELF [ 620.686571][T14618] ima: policy update failed [ 620.820471][ T30] audit: type=1802 audit(6040696177.502:63): pid=14618 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1948" res=0 errno=0 [ 621.456757][T14629] FAULT_INJECTION: forcing a failure. [ 621.456757][T14629] name failslab, interval 1, probability 0, space 0, times 0 [ 621.498124][T14629] CPU: 1 UID: 0 PID: 14629 Comm: syz.2.1950 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 621.498170][T14629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 621.498187][T14629] Call Trace: [ 621.498197][T14629] [ 621.498217][T14629] dump_stack_lvl+0x16c/0x1f0 [ 621.498259][T14629] should_fail_ex+0x512/0x640 [ 621.498307][T14629] should_failslab+0xc2/0x120 [ 621.498342][T14629] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 621.498379][T14629] ? skb_clone+0x190/0x3f0 [ 621.498419][T14629] skb_clone+0x190/0x3f0 [ 621.498451][T14629] netlink_deliver_tap+0xabd/0xd30 [ 621.498490][T14629] netlink_unicast+0x6b2/0x7f0 [ 621.498527][T14629] ? __pfx_netlink_unicast+0x10/0x10 [ 621.498568][T14629] ctrl_getfamily+0x40a/0x540 [ 621.498601][T14629] ? __pfx_ctrl_getfamily+0x10/0x10 [ 621.498635][T14629] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 621.498669][T14629] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 621.498710][T14629] genl_family_rcv_msg_doit+0x206/0x2f0 [ 621.498744][T14629] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 621.498776][T14629] ? __pfx___mutex_lock+0x10/0x10 [ 621.498806][T14629] ? genl_get_cmd+0x194/0x580 [ 621.498844][T14629] ? __local_bh_enable_ip+0xa4/0x120 [ 621.498872][T14629] ? __dev_queue_xmit+0x896/0x43e0 [ 621.498907][T14629] ? __radix_tree_lookup+0x21f/0x2c0 [ 621.498940][T14629] genl_rcv_msg+0x55c/0x800 [ 621.498977][T14629] ? __pfx_genl_rcv_msg+0x10/0x10 [ 621.499006][T14629] ? __pfx___dev_queue_xmit+0x10/0x10 [ 621.499042][T14629] ? __pfx_ctrl_getfamily+0x10/0x10 [ 621.499078][T14629] ? __lock_acquire+0xaa4/0x1ba0 [ 621.499117][T14629] netlink_rcv_skb+0x16a/0x440 [ 621.499144][T14629] ? __pfx_genl_rcv_msg+0x10/0x10 [ 621.499177][T14629] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 621.499227][T14629] ? __pfx_down_read+0x10/0x10 [ 621.499262][T14629] ? netlink_deliver_tap+0x1ae/0xd30 [ 621.499292][T14629] genl_rcv+0x28/0x40 [ 621.499319][T14629] netlink_unicast+0x53a/0x7f0 [ 621.499350][T14629] ? __pfx_netlink_unicast+0x10/0x10 [ 621.499387][T14629] netlink_sendmsg+0x8d1/0xdd0 [ 621.499419][T14629] ? __pfx_netlink_sendmsg+0x10/0x10 [ 621.499460][T14629] __sys_sendto+0x495/0x510 [ 621.499500][T14629] ? __pfx___sys_sendto+0x10/0x10 [ 621.499550][T14629] ? count_memcg_events_mm.constprop.0+0x138/0x340 [ 621.499610][T14629] __x64_sys_sendto+0xe0/0x1c0 [ 621.499647][T14629] ? do_syscall_64+0x91/0x230 [ 621.499678][T14629] ? lockdep_hardirqs_on+0x7c/0x110 [ 621.499707][T14629] do_syscall_64+0xcd/0x230 [ 621.499741][T14629] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 621.499767][T14629] RIP: 0033:0x7faefb1907fc [ 621.499787][T14629] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b [ 621.499813][T14629] RSP: 002b:00007faefbf9fec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 621.499838][T14629] RAX: ffffffffffffffda RBX: 00007faefbf9ffc0 RCX: 00007faefb1907fc [ 621.499854][T14629] RDX: 0000000000000020 RSI: 00007faefbfa0010 RDI: 0000000000000005 [ 621.499870][T14629] RBP: 0000000000000000 R08: 00007faefbf9ff14 R09: 000000000000000c [ 621.499885][T14629] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000005 [ 621.499900][T14629] R13: 00007faefbf9ff68 R14: 00007faefbfa0010 R15: 0000000000000000 [ 621.499934][T14629] [ 623.523170][T14664] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1958'. [ 623.634724][T14660] Invalid ELF header magic: != ELF [ 624.693807][T14675] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1961'. [ 626.624621][T14709] can: request_module (can-proto-3) failed. [ 626.659436][T14712] ima: policy update failed [ 626.671025][ T30] audit: type=1802 audit(6040696183.352:64): pid=14712 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1970" res=0 errno=0 [ 628.322931][T14731] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1974'. [ 629.593903][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 629.600441][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 629.823016][T14748] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 629.868120][T14748] CIFS mount error: No usable UNC path provided in device string! [ 629.868120][T14748] [ 629.888715][T14748] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 631.679277][T14771] FAULT_INJECTION: forcing a failure. [ 631.679277][T14771] name failslab, interval 1, probability 0, space 0, times 0 [ 631.732976][T14771] CPU: 0 UID: 0 PID: 14771 Comm: syz.3.1984 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 631.733026][T14771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 631.733049][T14771] Call Trace: [ 631.733061][T14771] [ 631.733073][T14771] dump_stack_lvl+0x16c/0x1f0 [ 631.733125][T14771] should_fail_ex+0x512/0x640 [ 631.733171][T14771] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 631.733233][T14771] should_failslab+0xc2/0x120 [ 631.733273][T14771] __kmalloc_cache_noprof+0x6a/0x3e0 [ 631.733324][T14771] ? do_raw_spin_lock+0x12c/0x2b0 [ 631.733377][T14771] ? single_open+0x4d/0x1f0 [ 631.733423][T14771] ? __pfx_tracing_clock_show+0x10/0x10 [ 631.733471][T14771] single_open+0x4d/0x1f0 [ 631.733512][T14771] tracing_clock_open+0xa7/0x100 [ 631.733554][T14771] do_dentry_open+0x741/0x1c10 [ 631.733590][T14771] ? __pfx_tracing_clock_open+0x10/0x10 [ 631.733639][T14771] vfs_open+0x82/0x3f0 [ 631.733688][T14771] path_openat+0x1e5e/0x2d40 [ 631.733734][T14771] ? __pfx_path_openat+0x10/0x10 [ 631.733780][T14771] do_filp_open+0x20b/0x470 [ 631.733810][T14771] ? __pfx_do_filp_open+0x10/0x10 [ 631.733883][T14771] ? alloc_fd+0x471/0x7d0 [ 631.733950][T14771] do_sys_openat2+0x11b/0x1d0 [ 631.733991][T14771] ? __pfx_do_sys_openat2+0x10/0x10 [ 631.734052][T14771] __x64_sys_openat+0x174/0x210 [ 631.734096][T14771] ? __pfx___x64_sys_openat+0x10/0x10 [ 631.734149][T14771] ? rcu_is_watching+0x12/0xc0 [ 631.734191][T14771] do_syscall_64+0xcd/0x230 [ 631.734239][T14771] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 631.734273][T14771] RIP: 0033:0x7efd6cd8e969 [ 631.734299][T14771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 631.734337][T14771] RSP: 002b:00007efd6dbb8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 631.734366][T14771] RAX: ffffffffffffffda RBX: 00007efd6cfb5fa0 RCX: 00007efd6cd8e969 [ 631.734387][T14771] RDX: 0000000000022500 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 631.734408][T14771] RBP: 00007efd6ce10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 631.734427][T14771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 631.734445][T14771] R13: 0000000000000000 R14: 00007efd6cfb5fa0 R15: 00007ffee0d5ddf8 [ 631.734483][T14771] [ 633.288686][T14791] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1989'. [ 636.361122][T14828] Invalid ELF header magic: != ELF [ 636.403487][T14809] Invalid ELF header magic: != ELF [ 637.216992][T14837] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1998'. [ 637.250332][T14837] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1998'. [ 640.949830][T14888] netlink: 314 bytes leftover after parsing attributes in process `syz.3.2009'. [ 641.261694][T14890] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2010'. [ 641.400106][T14892] netlink: 'syz.0.2011': attribute type 4 has an invalid length. [ 641.413368][T14892] netlink: 314 bytes leftover after parsing attributes in process `syz.0.2011'. [ 641.582586][T14894] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2012'. [ 642.955271][T14904] ima: policy update failed [ 642.994407][ T30] audit: type=1802 audit(6040696199.672:65): pid=14904 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.2016" res=0 errno=0 [ 643.601838][T14919] netlink: 314 bytes leftover after parsing attributes in process `syz.0.2019'. [ 645.865866][T14958] netlink: 'syz.0.2027': attribute type 4 has an invalid length. [ 645.875240][T14958] netlink: 314 bytes leftover after parsing attributes in process `syz.0.2027'. [ 645.890640][T14958] netlink: 'syz.0.2027': attribute type 4 has an invalid length. [ 645.928009][T14958] netlink: 314 bytes leftover after parsing attributes in process `syz.0.2027'. [ 646.239877][T14963] netlink: 314 bytes leftover after parsing attributes in process `syz.0.2029'. [ 648.534219][T15022] netlink: 314 bytes leftover after parsing attributes in process `syz.0.2039'. [ 651.433696][T15070] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2048'. [ 652.457863][T15089] netlink: 'syz.3.2054': attribute type 16 has an invalid length. [ 652.496977][T15089] netlink: 50 bytes leftover after parsing attributes in process `syz.3.2054'. [ 653.303372][T15107] ima: policy update failed [ 653.313178][ T30] audit: type=1802 audit(6040696218.987:66): pid=15107 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.2058" res=0 errno=0 [ 653.605072][T15112] can: request_module (can-proto-3) failed. [ 655.700089][T15119] netlink: 186 bytes leftover after parsing attributes in process `syz.0.2059'. [ 658.380209][T15177] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2070'. [ 658.724740][T15164] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2068'. [ 661.995437][T15231] Invalid ELF header magic: != ELF [ 663.677160][T15278] can: request_module (can-proto-3) failed. [ 665.218045][ T30] audit: type=1800 audit(6040696230.887:67): pid=15309 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2091" name="file0" dev="tmpfs" ino=3013 res=0 errno=0 [ 668.826000][T15358] netlink: 314 bytes leftover after parsing attributes in process `syz.2.2102'. [ 672.562825][T15401] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2111'. [ 673.754243][T15417] Invalid ELF header magic: != ELF [ 676.083898][T15441] netlink: 186 bytes leftover after parsing attributes in process `syz.2.2121'. [ 676.817134][T15474] Invalid ELF header magic: != ELF [ 676.859424][T15482] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2129'. [ 680.272256][T15529] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2141'. [ 680.289588][T15520] Invalid ELF header magic: != ELF [ 680.309010][T15529] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2141'. [ 684.291267][T15581] netlink: 'syz.1.2156': attribute type 1 has an invalid length. [ 684.929819][T15590] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2166'. [ 685.104164][T15594] capability: warning: `syz.1.2159' uses 32-bit capabilities (legacy support in use) [ 685.155248][T15594] HfR: entered promiscuous mode [ 685.204914][T15594] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2159'. [ 685.214152][T15594] HfR: left promiscuous mode [ 685.475042][T15603] ima: policy update failed [ 685.541344][ T30] audit: type=1802 audit(6040696251.217:68): pid=15603 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.2161" res=0 errno=0 [ 686.655213][T15625] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2168'. [ 687.406900][T15644] Ignoring unsupported numa_zonelist_order value: [ 687.406900][T15644] [ 688.330917][T15659] FAULT_INJECTION: forcing a failure. [ 688.330917][T15659] name failslab, interval 1, probability 0, space 0, times 0 [ 688.352372][T15659] CPU: 0 UID: 0 PID: 15659 Comm: syz.3.2178 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 688.352439][T15659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 688.352458][T15659] Call Trace: [ 688.352468][T15659] [ 688.352480][T15659] dump_stack_lvl+0x16c/0x1f0 [ 688.352526][T15659] should_fail_ex+0x512/0x640 [ 688.352571][T15659] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 688.352614][T15659] should_failslab+0xc2/0x120 [ 688.352653][T15659] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 688.352689][T15659] ? security_file_alloc+0x34/0x2b0 [ 688.352736][T15659] security_file_alloc+0x34/0x2b0 [ 688.352778][T15659] init_file+0x93/0x4c0 [ 688.352815][T15659] alloc_empty_file+0x73/0x1e0 [ 688.352856][T15659] path_openat+0xe0/0x2d40 [ 688.352883][T15659] ? __x64_sys_openat+0x174/0x210 [ 688.352925][T15659] ? do_syscall_64+0xcd/0x230 [ 688.352961][T15659] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 688.353008][T15659] ? __pfx_path_openat+0x10/0x10 [ 688.353060][T15659] do_filp_open+0x20b/0x470 [ 688.353091][T15659] ? __pfx_do_filp_open+0x10/0x10 [ 688.353150][T15659] ? alloc_fd+0x471/0x7d0 [ 688.353209][T15659] do_sys_openat2+0x11b/0x1d0 [ 688.353252][T15659] ? __pfx_do_sys_openat2+0x10/0x10 [ 688.353309][T15659] __x64_sys_openat+0x174/0x210 [ 688.353351][T15659] ? __pfx___x64_sys_openat+0x10/0x10 [ 688.353397][T15659] ? rcu_is_watching+0x12/0xc0 [ 688.353436][T15659] do_syscall_64+0xcd/0x230 [ 688.353478][T15659] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 688.353511][T15659] RIP: 0033:0x7efd6cd8e969 [ 688.353538][T15659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 688.353569][T15659] RSP: 002b:00007efd6dbb8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 688.353599][T15659] RAX: ffffffffffffffda RBX: 00007efd6cfb5fa0 RCX: 00007efd6cd8e969 [ 688.353621][T15659] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffff9c [ 688.353641][T15659] RBP: 00007efd6ce10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 688.353661][T15659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 688.353680][T15659] R13: 0000000000000000 R14: 00007efd6cfb5fa0 R15: 00007ffee0d5ddf8 [ 688.353721][T15659] [ 688.582306][ C0] vkms_vblank_simulate: vblank timer overrun [ 689.362617][T15679] can: request_module (can-proto-3) failed. [ 690.386458][T15708] can: request_module (can-proto-3) failed. [ 691.033359][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 691.039850][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 691.115587][T15721] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2190'. [ 691.285236][T13669] Bluetooth: hci3: unexpected subevent 0x01 length: 122 > 18 [ 691.351014][ T30] audit: type=1807 audit(6040696257.027:69): UNKNOWN=§ res=0 [ 691.388198][ T30] audit: type=1802 audit(6040696257.047:70): pid=15726 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.2.2191" res=0 errno=0 [ 692.237047][T15725] ima: policy update failed [ 692.252265][ T30] audit: type=1802 audit(6040696257.927:71): pid=15725 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.2191" res=0 errno=0 [ 693.491371][T15778] netlink: 314 bytes leftover after parsing attributes in process `syz.0.2198'. [ 693.843918][T15772] Invalid ELF header magic: != ELF [ 694.279628][T15799] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2203'. [ 695.187657][T15796] netlink: 186 bytes leftover after parsing attributes in process `syz.1.2201'. [ 695.998869][T15832] netlink: 314 bytes leftover after parsing attributes in process `syz.3.2208'. [ 696.251714][T15831] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2209'. [ 696.719583][T15854] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2214'. [ 696.727801][T15845] Invalid ELF header magic: != ELF [ 696.999998][T15854] zswap: compressor not available [ 698.440724][T15891] FAULT_INJECTION: forcing a failure. [ 698.440724][T15891] name failslab, interval 1, probability 0, space 0, times 0 [ 698.468712][T15891] CPU: 1 UID: 0 PID: 15891 Comm: syz.2.2221 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 698.468757][T15891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 698.468771][T15891] Call Trace: [ 698.468779][T15891] [ 698.468788][T15891] dump_stack_lvl+0x16c/0x1f0 [ 698.468820][T15891] should_fail_ex+0x512/0x640 [ 698.468853][T15891] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 698.468882][T15891] should_failslab+0xc2/0x120 [ 698.468910][T15891] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 698.468937][T15891] ? d_instantiate+0x77/0x90 [ 698.468960][T15891] ? alloc_empty_file+0x55/0x1e0 [ 698.468992][T15891] alloc_empty_file+0x55/0x1e0 [ 698.469021][T15891] alloc_file_pseudo+0x13a/0x230 [ 698.469052][T15891] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 698.469079][T15891] ? bpf_lsm_socket_post_create+0x9/0x10 [ 698.469119][T15891] sock_alloc_file+0x50/0x210 [ 698.469145][T15891] __sys_socketpair+0x31c/0x5a0 [ 698.469178][T15891] ? __pfx___sys_socketpair+0x10/0x10 [ 698.469210][T15891] ? __pfx___x64_sys_futex+0x10/0x10 [ 698.469237][T15891] ? rcu_is_watching+0x12/0xc0 [ 698.469262][T15891] __x64_sys_socketpair+0x96/0x100 [ 698.469293][T15891] ? lockdep_hardirqs_on+0x7c/0x110 [ 698.469319][T15891] do_syscall_64+0xcd/0x230 [ 698.469349][T15891] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 698.469373][T15891] RIP: 0033:0x7faefb18e969 [ 698.469390][T15891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 698.469413][T15891] RSP: 002b:00007faefbf80038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 [ 698.469435][T15891] RAX: ffffffffffffffda RBX: 00007faefb3b6080 RCX: 00007faefb18e969 [ 698.469451][T15891] RDX: 8000000000000000 RSI: 0000000000000002 RDI: 0000000000000001 [ 698.469465][T15891] RBP: 00007faefb210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 698.469479][T15891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 698.469493][T15891] R13: 0000000000000000 R14: 00007faefb3b6080 R15: 00007ffe5267b0d8 [ 698.469521][T15891] [ 699.747801][T15910] Invalid ELF header magic: != ELF [ 701.616809][T13669] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 701.627500][T13669] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 701.636805][T13669] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 701.645748][T13669] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 701.660036][T13669] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 701.961075][T15920] Invalid ELF header magic: != ELF [ 702.016927][ T1147] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 702.440989][ T1147] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 702.690276][ T1147] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 702.912324][T15945] ima: policy update failed [ 702.917229][ T30] audit: type=1802 audit(6040696268.587:72): pid=15945 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.2232" res=0 errno=0 [ 702.957564][ T1147] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 703.163111][T15935] chnl_net:caif_netlink_parms(): no params data found [ 703.211340][ T5850] Bluetooth: hci1: unexpected event 0x3d length: 726 > 14 [ 703.545199][T15960] netlink: 'syz.1.2237': attribute type 4 has an invalid length. [ 703.594996][T15960] netlink: 314 bytes leftover after parsing attributes in process `syz.1.2237'. [ 703.748165][ T5850] Bluetooth: hci4: command tx timeout [ 703.824963][T15935] bridge0: port 1(bridge_slave_0) entered blocking state [ 703.845338][T15935] bridge0: port 1(bridge_slave_0) entered disabled state [ 703.855377][T15935] bridge_slave_0: entered allmulticast mode [ 703.867568][T15935] bridge_slave_0: entered promiscuous mode [ 703.932956][ T1147] team0: left allmulticast mode [ 703.946332][ T1147] team_slave_0: left allmulticast mode [ 703.956274][ T1147] team_slave_1: left allmulticast mode [ 703.965410][ T1147] team0: left promiscuous mode [ 703.974193][ T1147] team_slave_0: left promiscuous mode [ 703.991979][ T1147] team_slave_1: left promiscuous mode [ 704.003779][ T1147] bridge0: port 2(team0) entered disabled state [ 704.027411][ T1147] bridge_slave_0: left allmulticast mode [ 704.040431][ T1147] bridge_slave_0: left promiscuous mode [ 704.046544][ T1147] bridge0: port 1(bridge_slave_0) entered disabled state [ 705.261124][ T1147] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 705.276660][ T1147] bond0 (unregistering): Released all slaves [ 705.322440][T15935] bridge0: port 2(bridge_slave_1) entered blocking state [ 705.339854][T15935] bridge0: port 2(bridge_slave_1) entered disabled state [ 705.351664][T15935] bridge_slave_1: entered allmulticast mode [ 705.371563][T15935] bridge_slave_1: entered promiscuous mode [ 705.511353][T15935] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 705.603567][T15935] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 705.828219][ T5850] Bluetooth: hci4: command tx timeout [ 706.033647][T15935] team0: Port device team_slave_0 added [ 706.125037][T15935] team0: Port device team_slave_1 added [ 707.377482][T15935] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 707.407213][T15935] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 707.488134][T15935] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 707.587418][T15997] netlink: 186 bytes leftover after parsing attributes in process `syz.2.2242'. [ 707.619019][T15935] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 707.626616][T15935] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 707.787991][T15935] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 707.908038][ T5850] Bluetooth: hci4: command tx timeout [ 708.145716][T15935] hsr_slave_0: entered promiscuous mode [ 708.155973][T15935] hsr_slave_1: entered promiscuous mode [ 708.168392][T16012] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2245'. [ 708.183875][T15935] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 708.191761][T15935] Cannot create hsr debugfs directory [ 708.223807][T16012] FAULT_INJECTION: forcing a failure. [ 708.223807][T16012] name failslab, interval 1, probability 0, space 0, times 0 [ 708.251261][T16012] CPU: 1 UID: 0 PID: 16012 Comm: syz.2.2245 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 708.251306][T16012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 708.251324][T16012] Call Trace: [ 708.251334][T16012] [ 708.251346][T16012] dump_stack_lvl+0x16c/0x1f0 [ 708.251385][T16012] should_fail_ex+0x512/0x640 [ 708.251421][T16012] ? __kmalloc_noprof+0xbf/0x510 [ 708.251451][T16012] ? __seq_open_private+0x22/0xd0 [ 708.251483][T16012] should_failslab+0xc2/0x120 [ 708.251512][T16012] __kmalloc_noprof+0xd2/0x510 [ 708.251546][T16012] __seq_open_private+0x22/0xd0 [ 708.251583][T16012] seq_open_net+0x30d/0x4e0 [ 708.251613][T16012] ? __pfx_seq_open_net+0x10/0x10 [ 708.251644][T16012] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 708.251674][T16012] ? __pfx_apparmor_file_open+0x10/0x10 [ 708.251722][T16012] ? proc_reg_open+0x21d/0x610 [ 708.251745][T16012] ? __pfx_seq_open_net+0x10/0x10 [ 708.251776][T16012] proc_reg_open+0x286/0x610 [ 708.251801][T16012] do_dentry_open+0x741/0x1c10 [ 708.251829][T16012] ? __pfx_proc_reg_open+0x10/0x10 [ 708.251861][T16012] vfs_open+0x82/0x3f0 [ 708.251904][T16012] path_openat+0x1e5e/0x2d40 [ 708.251944][T16012] ? __pfx_path_openat+0x10/0x10 [ 708.251985][T16012] do_filp_open+0x20b/0x470 [ 708.252014][T16012] ? __pfx_do_filp_open+0x10/0x10 [ 708.252052][T16012] ? __pfx_kfree_link+0x10/0x10 [ 708.252097][T16012] ? alloc_fd+0x471/0x7d0 [ 708.252151][T16012] do_sys_openat2+0x11b/0x1d0 [ 708.252192][T16012] ? __pfx_do_sys_openat2+0x10/0x10 [ 708.252235][T16012] ? __sys_sendmsg+0x199/0x220 [ 708.252274][T16012] __x64_sys_openat+0x174/0x210 [ 708.252318][T16012] ? __pfx___x64_sys_openat+0x10/0x10 [ 708.252362][T16012] ? rcu_is_watching+0x12/0xc0 [ 708.252401][T16012] do_syscall_64+0xcd/0x230 [ 708.252445][T16012] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 708.252475][T16012] RIP: 0033:0x7faefb18e969 [ 708.252500][T16012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 708.252532][T16012] RSP: 002b:00007faefbfa1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 708.252562][T16012] RAX: ffffffffffffffda RBX: 00007faefb3b5fa0 RCX: 00007faefb18e969 [ 708.252582][T16012] RDX: 0000000000000880 RSI: 00002000000001c0 RDI: ffffffffffffff9c [ 708.252599][T16012] RBP: 00007faefb210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 708.252615][T16012] R10: 0000000000006d41 R11: 0000000000000246 R12: 0000000000000000 [ 708.252631][T16012] R13: 0000000000000000 R14: 00007faefb3b5fa0 R15: 00007ffe5267b0d8 [ 708.252668][T16012] [ 708.616425][T16008] svc: failed to register nfsdv3 RPC service (errno 111). [ 708.625589][T16008] svc: failed to register nfsaclv3 RPC service (errno 111). [ 709.624606][T16028] Invalid ELF header magic: != ELF [ 709.997316][ T5850] Bluetooth: hci4: command tx timeout [ 710.815450][T16046] netlink: 'syz.1.2249': attribute type 4 has an invalid length. [ 710.868575][T16046] netlink: 314 bytes leftover after parsing attributes in process `syz.1.2249'. [ 710.946432][T16047] netlink: 'syz.1.2249': attribute type 4 has an invalid length. [ 710.973322][T16047] netlink: 314 bytes leftover after parsing attributes in process `syz.1.2249'. [ 711.952263][ T1147] hsr_slave_0: left promiscuous mode [ 712.204838][ T1147] hsr_slave_1: left promiscuous mode [ 712.261547][ T1147] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 712.277043][T16062] netlink: 186 bytes leftover after parsing attributes in process `syz.1.2252'. [ 712.288095][ T1147] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 712.365516][ T1147] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 712.376755][ T1147] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 713.488225][T16090] Invalid ELF header magic: != ELF [ 713.599087][ T1147] team0 (unregistering): Port device team_slave_1 removed [ 713.691733][ T1147] team0 (unregistering): Port device team_slave_0 removed [ 714.563461][T16096] ima: policy update failed [ 714.573212][ T30] audit: type=1802 audit(6040696280.251:73): pid=16096 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.2259" res=0 errno=0 [ 715.117258][T15935] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 715.182588][T15935] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 715.224317][T15935] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 715.264723][T15935] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 715.817247][T16119] ima: policy update failed [ 715.840354][ T30] audit: type=1802 audit(6040696281.521:74): pid=16119 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.2262" res=0 errno=0 [ 715.922932][T15935] 8021q: adding VLAN 0 to HW filter on device bond0 [ 716.042867][T15935] 8021q: adding VLAN 0 to HW filter on device team0 [ 716.289404][ T1156] bridge0: port 1(bridge_slave_0) entered blocking state [ 716.296672][ T1156] bridge0: port 1(bridge_slave_0) entered forwarding state [ 716.360202][ T1156] bridge0: port 2(bridge_slave_1) entered blocking state [ 716.367421][ T1156] bridge0: port 2(bridge_slave_1) entered forwarding state [ 717.423061][T15935] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 717.713413][T15935] veth0_vlan: entered promiscuous mode [ 717.870261][T15935] veth1_vlan: entered promiscuous mode [ 718.021934][T15935] veth0_macvtap: entered promiscuous mode [ 718.070619][T15935] veth1_macvtap: entered promiscuous mode [ 718.121454][T16165] Invalid ELF header magic: != ELF [ 718.424655][T15935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 718.468756][T15935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 718.518157][T15935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 718.548835][T15935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 718.559487][T15935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 718.579172][T15935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 718.605638][T15935] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 718.631470][T15935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 718.654207][T15935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 718.681382][T15935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 718.692300][T16179] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2269'. [ 718.718041][T15935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 718.729350][T15935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 718.742884][T16180] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2269'. [ 718.758015][T15935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 718.787734][T15935] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 718.862013][T15935] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 718.887499][T15935] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 718.918403][T15935] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 718.927198][T15935] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 719.158482][T16185] FAULT_INJECTION: forcing a failure. [ 719.158482][T16185] name failslab, interval 1, probability 0, space 0, times 0 [ 719.228217][T16185] CPU: 1 UID: 0 PID: 16185 Comm: syz.2.2270 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 719.228268][T16185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 719.228289][T16185] Call Trace: [ 719.228299][T16185] [ 719.228312][T16185] dump_stack_lvl+0x16c/0x1f0 [ 719.228359][T16185] should_fail_ex+0x512/0x640 [ 719.228404][T16185] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 719.228469][T16185] should_failslab+0xc2/0x120 [ 719.228509][T16185] __kmalloc_cache_noprof+0x6a/0x3e0 [ 719.228564][T16185] ? snd_seq_port_connect+0x61/0x550 [ 719.228608][T16185] snd_seq_port_connect+0x61/0x550 [ 719.228644][T16185] ? _raw_read_unlock+0x28/0x50 [ 719.228679][T16185] ? check_subscription_permission.isra.0+0xf5/0x240 [ 719.228725][T16185] snd_seq_ioctl_subscribe_port+0x211/0x450 [ 719.228771][T16185] ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10 [ 719.228841][T16185] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 719.228885][T16185] snd_seq_oss_midi_open+0x564/0x660 [ 719.228937][T16185] ? __pfx_snd_seq_oss_midi_open+0x10/0x10 [ 719.228998][T16185] ? lockdep_hardirqs_on+0x7c/0x110 [ 719.229036][T16185] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 719.229080][T16185] snd_seq_oss_synth_setup_midi+0x131/0x580 [ 719.229137][T16185] snd_seq_oss_open+0x893/0xa20 [ 719.229186][T16185] odev_open+0x6f/0x90 [ 719.229217][T16185] ? __pfx_odev_open+0x10/0x10 [ 719.229250][T16185] soundcore_open+0x409/0x580 [ 719.229289][T16185] ? __pfx_soundcore_open+0x10/0x10 [ 719.229323][T16185] chrdev_open+0x231/0x6a0 [ 719.229355][T16185] ? __pfx_apparmor_file_open+0x10/0x10 [ 719.229397][T16185] ? __pfx_chrdev_open+0x10/0x10 [ 719.229435][T16185] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 719.229493][T16185] do_dentry_open+0x741/0x1c10 [ 719.229527][T16185] ? __pfx_chrdev_open+0x10/0x10 [ 719.229571][T16185] vfs_open+0x82/0x3f0 [ 719.229618][T16185] path_openat+0x1e5e/0x2d40 [ 719.229665][T16185] ? __pfx_path_openat+0x10/0x10 [ 719.229707][T16185] do_filp_open+0x20b/0x470 [ 719.229739][T16185] ? __pfx_do_filp_open+0x10/0x10 [ 719.229808][T16185] ? alloc_fd+0x471/0x7d0 [ 719.229870][T16185] do_sys_openat2+0x11b/0x1d0 [ 719.229913][T16185] ? __pfx_do_sys_openat2+0x10/0x10 [ 719.229974][T16185] __x64_sys_openat+0x174/0x210 [ 719.230019][T16185] ? __pfx___x64_sys_openat+0x10/0x10 [ 719.230067][T16185] ? rcu_is_watching+0x12/0xc0 [ 719.230110][T16185] do_syscall_64+0xcd/0x230 [ 719.230154][T16185] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 719.230188][T16185] RIP: 0033:0x7faefb18e969 [ 719.230216][T16185] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 719.230249][T16185] RSP: 002b:00007faefbfa1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 719.230278][T16185] RAX: ffffffffffffffda RBX: 00007faefb3b5fa0 RCX: 00007faefb18e969 [ 719.230301][T16185] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 719.230322][T16185] RBP: 00007faefb210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 719.230343][T16185] R10: 0000000000000900 R11: 0000000000000246 R12: 0000000000000000 [ 719.230362][T16185] R13: 0000000000000000 R14: 00007faefb3b5fa0 R15: 00007ffe5267b0d8 [ 719.230407][T16185] [ 719.649682][ T9880] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 719.657586][ T9880] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 719.665282][ T9880] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 719.673374][ T9880] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 720.254301][T16172] netlink: 186 bytes leftover after parsing attributes in process `syz.3.2267'. [ 720.655802][T16205] netlink: 314 bytes leftover after parsing attributes in process `syz.2.2272'. [ 722.627385][T16243] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2279'. [ 722.984603][T16237] Invalid ELF header magic: != ELF [ 724.648768][T16283] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2285'. [ 724.891577][T16264] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2283'. [ 725.355721][T16290] ima: policy update failed [ 725.374812][ T30] audit: type=1802 audit(6040696291.051:75): pid=16290 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.2286" res=0 errno=0 [ 725.463072][T16292] ima: policy update failed [ 725.480225][ T30] audit: type=1802 audit(6040696291.151:76): pid=16292 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.2287" res=0 errno=0 [ 725.697821][T16281] netlink: 186 bytes leftover after parsing attributes in process `syz.1.2284'. [ 726.479759][T16304] MTRR 1 not used [ 727.245760][T16319] FAULT_INJECTION: forcing a failure. [ 727.245760][T16319] name fail_futex, interval 1, probability 0, space 0, times 0 [ 727.279885][T16319] CPU: 0 UID: 0 PID: 16319 Comm: syz.0.2295 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 727.279932][T16319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 727.279951][T16319] Call Trace: [ 727.279963][T16319] [ 727.279974][T16319] dump_stack_lvl+0x16c/0x1f0 [ 727.280018][T16319] should_fail_ex+0x512/0x640 [ 727.280070][T16319] get_futex_key+0x49e/0x1000 [ 727.280109][T16319] ? __pfx_get_futex_key+0x10/0x10 [ 727.280159][T16319] futex_wake+0xe7/0x4e0 [ 727.280204][T16319] ? __pfx_futex_wake+0x10/0x10 [ 727.280249][T16319] ? kmem_cache_free+0x2d4/0x4d0 [ 727.280282][T16319] ? find_held_lock+0x2b/0x80 [ 727.280309][T16319] ? putname+0x154/0x1a0 [ 727.280344][T16319] ? do_sys_openat2+0x1b0/0x1d0 [ 727.280391][T16319] do_futex+0x1e3/0x350 [ 727.280426][T16319] ? __pfx_do_futex+0x10/0x10 [ 727.280470][T16319] __x64_sys_futex+0x1e0/0x4c0 [ 727.280507][T16319] ? __x64_sys_openat+0x174/0x210 [ 727.280549][T16319] ? __pfx___x64_sys_futex+0x10/0x10 [ 727.280584][T16319] ? rcu_is_watching+0x12/0xc0 [ 727.280622][T16319] do_syscall_64+0xcd/0x230 [ 727.280666][T16319] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 727.280696][T16319] RIP: 0033:0x7f8f9d18e969 [ 727.280722][T16319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 727.280755][T16319] RSP: 002b:00007f8f9dfb10e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 727.280786][T16319] RAX: ffffffffffffffda RBX: 00007f8f9d3b5fa8 RCX: 00007f8f9d18e969 [ 727.280808][T16319] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f8f9d3b5fac [ 727.280829][T16319] RBP: 00007f8f9d3b5fa0 R08: 00007f8f9dfb2000 R09: 0000000000000000 [ 727.280858][T16319] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f8f9d3b5fac [ 727.280880][T16319] R13: 0000000000000000 R14: 00007ffe8687d900 R15: 00007ffe8687d9e8 [ 727.280923][T16319] [ 728.275166][T16320] netlink: 186 bytes leftover after parsing attributes in process `syz.3.2294'. [ 728.572441][T16342] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2298'. [ 730.560613][T16368] MTRR 1 not used [ 731.076211][T16372] Invalid ELF header magic: != ELF [ 732.633871][T16424] netlink: 314 bytes leftover after parsing attributes in process `syz.2.2313'. [ 734.237353][T16467] Invalid ELF header magic: != ELF [ 734.989744][T16443] Invalid ELF header magic: != ELF [ 736.921704][T16517] netlink: 186 bytes leftover after parsing attributes in process `syz.2.2325'. [ 736.947660][T16525] netlink: 314 bytes leftover after parsing attributes in process `syz.1.2326'. [ 738.611648][T16535] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2329'. [ 738.673314][T16554] Invalid ELF header magic: != ELF [ 740.046374][T16565] ima: policy update failed [ 740.055858][ T30] audit: type=1802 audit(6040696305.731:77): pid=16565 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.2333" res=0 errno=0 [ 740.873326][T16582] netlink: 186 bytes leftover after parsing attributes in process `syz.3.2337'. [ 743.984333][T16617] Invalid ELF header magic: != ELF [ 744.034591][T16627] netlink: 314 bytes leftover after parsing attributes in process `syz.0.2344'. [ 745.847254][T16648] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2349'. [ 749.362178][T16687] Invalid ELF header magic: != ELF [ 749.378358][T16669] netlink: 186 bytes leftover after parsing attributes in process `syz.1.2353'. [ 750.091729][T16703] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2359'. [ 752.021368][T16735] netlink: 314 bytes leftover after parsing attributes in process `syz.1.2368'. [ 752.385298][T16743] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2370'. [ 752.486043][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 752.525631][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 752.601561][T16742] Invalid ELF header magic: != ELF [ 754.646035][T16778] ima: policy update failed [ 754.666632][ T30] audit: type=1802 audit(6040696320.341:78): pid=16778 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.2375" res=0 errno=0 [ 755.145483][T16790] netlink: 314 bytes leftover after parsing attributes in process `syz.1.2378'. [ 757.542862][T16832] netlink: 186 bytes leftover after parsing attributes in process `syz.3.2385'. [ 760.419645][T16879] FAULT_INJECTION: forcing a failure. [ 760.419645][T16879] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 760.491947][T16879] CPU: 0 UID: 0 PID: 16879 Comm: syz.0.2392 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 760.491992][T16879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 760.492006][T16879] Call Trace: [ 760.492014][T16879] [ 760.492023][T16879] dump_stack_lvl+0x16c/0x1f0 [ 760.492056][T16879] should_fail_ex+0x512/0x640 [ 760.492093][T16879] should_fail_alloc_page+0xe7/0x130 [ 760.492123][T16879] prepare_alloc_pages+0x3c2/0x610 [ 760.492163][T16879] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 760.492206][T16879] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 760.492245][T16879] ? __pfx___might_resched+0x10/0x10 [ 760.492269][T16879] ? rcu_is_watching+0x12/0xc0 [ 760.492290][T16879] ? lockdep_init_map_type+0x5c/0x280 [ 760.492328][T16879] ? lockdep_init_map_type+0x5c/0x280 [ 760.492360][T16879] ? lockdep_init_map_type+0x5c/0x280 [ 760.492395][T16879] ? ioctx_alloc+0x15f7/0x2060 [ 760.492427][T16879] __alloc_pages_noprof+0xb/0x1b0 [ 760.492452][T16879] ___kmalloc_large_node+0x82/0x1e0 [ 760.492489][T16879] __kmalloc_large_node_noprof+0x1c/0x70 [ 760.492526][T16879] __kmalloc_noprof.cold+0xc/0x61 [ 760.492564][T16879] ioctx_alloc+0x15f7/0x2060 [ 760.492608][T16879] ? find_held_lock+0x2b/0x80 [ 760.492629][T16879] ? __pfx_ioctx_alloc+0x10/0x10 [ 760.492664][T16879] ? __might_fault+0x13b/0x190 [ 760.492698][T16879] __x64_sys_io_setup+0xc9/0x210 [ 760.492733][T16879] do_syscall_64+0xcd/0x230 [ 760.492764][T16879] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 760.492787][T16879] RIP: 0033:0x7f8f9d18e969 [ 760.492806][T16879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 760.492829][T16879] RSP: 002b:00007f8f9dfb1038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 760.492852][T16879] RAX: ffffffffffffffda RBX: 00007f8f9d3b5fa0 RCX: 00007f8f9d18e969 [ 760.492867][T16879] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000ffff [ 760.492882][T16879] RBP: 00007f8f9d210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 760.492897][T16879] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 760.492911][T16879] R13: 0000000000000000 R14: 00007f8f9d3b5fa0 R15: 00007ffe8687d9e8 [ 760.492940][T16879] [ 761.004578][T16883] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2393'. [ 761.695554][T16902] ima: policy update failed [ 761.730599][ T30] audit: type=1802 audit(6040696327.381:79): pid=16902 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.2396" res=0 errno=0 [ 764.821266][T13669] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 764.831698][T13669] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 764.841089][T13669] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 764.849928][T13669] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 764.867258][T13669] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 765.432150][T16956] size and base must be multiples of 4 kiB [ 765.577289][T16956] CPU: 0 UID: 0 PID: 16956 Comm: syz.3.2408 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 765.577337][T16956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 765.577356][T16956] Call Trace: [ 765.577367][T16956] [ 765.577378][T16956] dump_stack_lvl+0x16c/0x1f0 [ 765.577425][T16956] mtrr_add+0xdf/0x110 [ 765.577475][T16956] mtrr_ioctl+0x7ef/0xcf0 [ 765.577521][T16956] ? __pfx_mtrr_ioctl+0x10/0x10 [ 765.577575][T16956] ? find_held_lock+0x2b/0x80 [ 765.577615][T16956] ? __fget_files+0x20e/0x3c0 [ 765.577664][T16956] ? __pfx_mtrr_ioctl+0x10/0x10 [ 765.577711][T16956] proc_reg_unlocked_ioctl+0x226/0x320 [ 765.577744][T16956] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 765.577790][T16956] __x64_sys_ioctl+0x190/0x200 [ 765.577838][T16956] do_syscall_64+0xcd/0x230 [ 765.577885][T16956] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 765.577917][T16956] RIP: 0033:0x7efd6cd8e969 [ 765.577946][T16956] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 765.577979][T16956] RSP: 002b:00007efd6db97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 765.578012][T16956] RAX: ffffffffffffffda RBX: 00007efd6cfb6080 RCX: 00007efd6cd8e969 [ 765.578034][T16956] RDX: 0000000000000003 RSI: 00000000400c4d01 RDI: 0000000000000003 [ 765.578053][T16956] RBP: 00007efd6ce10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 765.578073][T16956] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 765.578093][T16956] R13: 0000000000000000 R14: 00007efd6cfb6080 R15: 00007ffee0d5ddf8 [ 765.578135][T16956] [ 765.946434][ T1156] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 766.050517][ T1156] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 766.264577][ T1156] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 766.551221][ T1156] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 766.948392][T13669] Bluetooth: hci0: command tx timeout [ 767.203959][T16949] chnl_net:caif_netlink_parms(): no params data found [ 767.718707][ T1156] bridge_slave_1: left allmulticast mode [ 767.731808][ T1156] bridge_slave_1: left promiscuous mode [ 767.739492][ T1156] bridge0: port 2(bridge_slave_1) entered disabled state [ 767.794171][ T1156] bridge_slave_0: left allmulticast mode [ 767.906663][ T1156] bridge_slave_0: left promiscuous mode [ 767.933065][ T1156] bridge0: port 1(bridge_slave_0) entered disabled state [ 769.032829][T13669] Bluetooth: hci0: command tx timeout [ 769.496348][ T1156] bond0 (unregistering): Released all slaves [ 769.760436][T16949] bridge0: port 1(bridge_slave_0) entered blocking state [ 769.767804][T16949] bridge0: port 1(bridge_slave_0) entered disabled state [ 769.797276][T16949] bridge_slave_0: entered allmulticast mode [ 769.817573][T16949] bridge_slave_0: entered promiscuous mode [ 769.883188][T16949] bridge0: port 2(bridge_slave_1) entered blocking state [ 769.890391][T17004] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2418'. [ 769.958231][T16949] bridge0: port 2(bridge_slave_1) entered disabled state [ 769.965544][T16949] bridge_slave_1: entered allmulticast mode [ 769.985925][T16949] bridge_slave_1: entered promiscuous mode [ 770.132539][T16949] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 770.202254][T16949] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 770.847473][T16949] team0: Port device team_slave_0 added [ 770.922009][T16949] team0: Port device team_slave_1 added [ 771.108101][T13669] Bluetooth: hci0: command tx timeout [ 771.290997][T16949] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 771.312987][T16949] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 771.438873][T16949] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 771.469914][T16949] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 771.477226][T16949] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 771.643983][T16949] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 772.142841][T16949] hsr_slave_0: entered promiscuous mode [ 772.150241][T16949] hsr_slave_1: entered promiscuous mode [ 772.156806][T16949] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 772.172387][T16949] Cannot create hsr debugfs directory [ 772.206011][ T1156] hsr_slave_0: left promiscuous mode [ 772.241248][ T1156] hsr_slave_1: left promiscuous mode [ 772.247462][ T1156] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 772.277559][ T1156] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 772.297325][ T1156] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 772.306706][ T1156] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 772.500243][T17047] ima: policy update failed [ 772.505152][ T30] audit: type=1802 audit(6040696338.181:80): pid=17047 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.2423" res=0 errno=0 [ 772.762615][T17053] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2425'. [ 773.188270][T13669] Bluetooth: hci0: command tx timeout [ 773.317390][ T1156] team0 (unregistering): Port device team_slave_1 removed [ 773.435777][ T1156] team0 (unregistering): Port device team_slave_0 removed [ 774.958610][T17080] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2430'. [ 775.250799][T17088] FAULT_INJECTION: forcing a failure. [ 775.250799][T17088] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 775.288912][T17088] CPU: 0 UID: 0 PID: 17088 Comm: syz.2.2432 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 775.288960][T17088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 775.288980][T17088] Call Trace: [ 775.288991][T17088] [ 775.289003][T17088] dump_stack_lvl+0x16c/0x1f0 [ 775.289049][T17088] should_fail_ex+0x512/0x640 [ 775.289101][T17088] strncpy_from_user+0x3b/0x2e0 [ 775.289148][T17088] getname_flags.part.0+0x8f/0x550 [ 775.289196][T17088] getname_flags+0x93/0xf0 [ 775.289246][T17088] do_sys_openat2+0xb8/0x1d0 [ 775.289289][T17088] ? __pfx_do_sys_openat2+0x10/0x10 [ 775.289334][T17088] ? __pfx___might_resched+0x10/0x10 [ 775.289382][T17088] __x64_sys_open+0x153/0x1e0 [ 775.289426][T17088] ? __pfx___x64_sys_open+0x10/0x10 [ 775.289479][T17088] ? rcu_is_watching+0x12/0xc0 [ 775.289512][T17088] do_syscall_64+0xcd/0x230 [ 775.289555][T17088] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 775.289589][T17088] RIP: 0033:0x7faefb18e969 [ 775.289614][T17088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 775.289646][T17088] RSP: 002b:00007faefbfa1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 775.289677][T17088] RAX: ffffffffffffffda RBX: 00007faefb3b5fa0 RCX: 00007faefb18e969 [ 775.289699][T17088] RDX: 0000000000000031 RSI: 0000000000000000 RDI: 0000200000000080 [ 775.289719][T17088] RBP: 00007faefb210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 775.289739][T17088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 775.289758][T17088] R13: 0000000000000000 R14: 00007faefb3b5fa0 R15: 00007ffe5267b0d8 [ 775.289798][T17088] [ 775.296369][T17088] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2432'. [ 776.688846][T16949] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 776.777515][T16949] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 776.852169][T16949] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 776.906574][T16949] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 777.284872][T16949] 8021q: adding VLAN 0 to HW filter on device bond0 [ 777.353129][T16949] 8021q: adding VLAN 0 to HW filter on device team0 [ 777.395856][ T1084] bridge0: port 1(bridge_slave_0) entered blocking state [ 777.403127][ T1084] bridge0: port 1(bridge_slave_0) entered forwarding state [ 777.453224][ T1084] bridge0: port 2(bridge_slave_1) entered blocking state [ 777.460613][ T1084] bridge0: port 2(bridge_slave_1) entered forwarding state [ 777.645917][T17129] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2437'. [ 778.260438][T16949] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 778.449504][T16949] veth0_vlan: entered promiscuous mode [ 778.518796][T16949] veth1_vlan: entered promiscuous mode [ 778.659201][T16949] veth0_macvtap: entered promiscuous mode [ 778.690453][T16949] veth1_macvtap: entered promiscuous mode [ 778.753213][T16949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 778.768524][T16949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 778.778896][T16949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 778.791004][T16949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 778.828049][T16949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 778.844070][T16949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 778.863645][T16949] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 778.895736][T16949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 778.922186][T16949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 778.945534][T16949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 778.956721][T16949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 778.971317][T16949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 778.982206][T16949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 779.048649][T16949] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 779.061192][T16949] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 779.097946][T16949] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 779.106740][T16949] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 779.203561][T16949] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 779.504759][T16274] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 779.529390][T16274] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 779.735605][T16494] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 779.768088][T16494] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 813.914194][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 813.920929][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 826.228386][ T5850] Bluetooth: hci4: command 0x0406 tx timeout [ 875.351247][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 875.357651][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 887.668093][ T5850] Bluetooth: hci0: command 0x0406 tx timeout [ 928.468246][ T31] INFO: task syz-executor:5828 blocked for more than 143 seconds. [ 928.476160][ T31] Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 [ 928.484070][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 928.493221][ T31] task:syz-executor state:D stack:21368 pid:5828 tgid:5828 ppid:5826 task_flags:0x440100 flags:0x00000002 [ 928.507213][ T31] Call Trace: [ 928.510611][ T31] [ 928.513687][ T31] __schedule+0x116f/0x5de0 [ 928.518394][ T31] ? __pfx___schedule+0x10/0x10 [ 928.523328][ T31] ? find_held_lock+0x2b/0x80 [ 928.528194][ T31] ? schedule+0x2d7/0x3a0 [ 928.532596][ T31] schedule+0xe7/0x3a0 [ 928.536733][ T31] io_schedule+0xbf/0x130 [ 928.541758][ T31] bit_wait_io+0x15/0xe0 [ 928.546072][ T31] __wait_on_bit+0x62/0x180 [ 928.551592][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 928.556616][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 928.562104][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 928.568242][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 928.573788][ T31] do_get_write_access+0x93d/0x12a0 [ 928.579102][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 928.585160][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 928.591394][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 928.597018][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 928.604183][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 928.611099][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 928.617142][ T31] ? rcu_is_watching+0x12/0xc0 [ 928.622074][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 928.627778][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 928.633265][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 928.639084][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 928.644880][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 928.649933][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 928.655368][ T31] ext4_dirty_inode+0xd9/0x130 [ 928.660293][ T31] ? rcu_is_watching+0x12/0xc0 [ 928.665123][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 928.670255][ T31] generic_update_time+0xcf/0xf0 [ 928.675252][ T31] file_update_time+0x17d/0x1c0 [ 928.680232][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 928.685310][ T31] ? tcp_recvmsg+0x1f9/0x680 [ 928.690151][ T31] ? __pfx_tcp_recvmsg+0x10/0x10 [ 928.695156][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 928.701658][ T31] ? vm_normal_page+0x13b/0x2b0 [ 928.707262][ T31] ? find_held_lock+0x2b/0x80 [ 928.712293][ T31] ? find_held_lock+0x2b/0x80 [ 928.717052][ T31] do_page_mkwrite+0x171/0x380 [ 928.722012][ T31] do_wp_page+0xb9e/0x58e0 [ 928.726525][ T31] ? __pfx_do_wp_page+0x10/0x10 [ 928.731513][ T31] ? do_raw_spin_lock+0x12c/0x2b0 [ 928.736613][ T31] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 928.742083][ T31] ? ___pte_offset_map+0x1bc/0x540 [ 928.747539][ T31] __handle_mm_fault+0x1ada/0x2a40 [ 928.752788][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 928.758422][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 928.763693][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 928.769029][ T31] handle_mm_fault+0x3fe/0xad0 [ 928.773856][ T31] do_user_addr_fault+0x60c/0x1370 [ 928.779072][ T31] exc_page_fault+0x5c/0xc0 [ 928.783652][ T31] asm_exc_page_fault+0x26/0x30 [ 928.788632][ T31] RIP: 0033:0x7fcd1f477dcf [ 928.793090][ T31] RSP: 002b:00007ffd86876030 EFLAGS: 00010202 [ 928.799251][ T31] RAX: 00007fcd1e450000 RBX: 0000555559c552e0 RCX: 0000000000000003 [ 928.808653][ T31] RDX: 1ffffffff0902773 RSI: 0000555559c5d428 RDI: 0000000000000008 [ 928.816817][ T31] RBP: 00007ffd86876320 R08: 0000555559c5d430 R09: 00000000000004ee [ 928.825344][ T31] R10: 0000000000000001 R11: 00007ffd86876530 R12: 00007ffd86876380 [ 928.833504][ T31] R13: 0000000000000004 R14: 00007ffd868760a0 R15: 00007ffd86876170 [ 928.841680][ T31] [ 928.844782][ T31] INFO: task syz-executor:16949 blocked for more than 143 seconds. [ 928.852875][ T31] Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 [ 928.860661][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 928.869617][ T31] task:syz-executor state:D stack:24072 pid:16949 tgid:16949 ppid:16937 task_flags:0x440140 flags:0x00000000 [ 928.881852][ T31] Call Trace: [ 928.885157][ T31] [ 928.888210][ T31] __schedule+0x116f/0x5de0 [ 928.892811][ T31] ? __pfx___schedule+0x10/0x10 [ 928.897717][ T31] ? find_held_lock+0x2b/0x80 [ 928.902523][ T31] ? schedule+0x2d7/0x3a0 [ 928.908342][ T31] schedule+0xe7/0x3a0 [ 928.912476][ T31] io_schedule+0xbf/0x130 [ 928.916838][ T31] bit_wait_io+0x15/0xe0 [ 928.921195][ T31] __wait_on_bit+0x62/0x180 [ 928.925748][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 928.930765][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 928.936196][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 928.942372][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 928.951144][ T31] do_get_write_access+0x93d/0x12a0 [ 928.956515][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 928.963180][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 928.969685][ T31] __ext4_new_inode+0x175c/0x4d30 [ 928.974966][ T31] ? __pfx___ext4_new_inode+0x10/0x10 [ 928.980884][ T31] ? __pfx___dquot_initialize+0x10/0x10 [ 928.986509][ T31] ext4_mkdir+0x283/0xb80 [ 928.990937][ T31] ? __pfx_ext4_mkdir+0x10/0x10 [ 928.995840][ T31] ? security_inode_permission+0xbf/0x260 [ 929.001643][ T31] ? inode_permission+0xdd/0x5f0 [ 929.006645][ T31] vfs_mkdir+0x590/0x8c0 [ 929.012689][ T31] do_mkdirat+0x304/0x3e0 [ 929.017113][ T31] ? __pfx_do_mkdirat+0x10/0x10 [ 929.022121][ T31] ? getname_flags.part.0+0x1c5/0x550 [ 929.027906][ T31] __x64_sys_mkdirat+0x83/0xb0 [ 929.032720][ T31] do_syscall_64+0xcd/0x230 [ 929.037273][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 929.043417][ T31] RIP: 0033:0x7f927138d1d7 [ 929.047941][ T31] RSP: 002b:00007fffa621d768 EFLAGS: 00000206 ORIG_RAX: 0000000000000102 [ 929.056426][ T31] RAX: ffffffffffffffda RBX: 00007f9271410e89 RCX: 00007f927138d1d7 [ 929.064486][ T31] RDX: 00000000000001ff RSI: 00007f9271410e89 RDI: 00000000ffffff9c [ 929.072824][ T31] RBP: 00007f92715b6738 R08: 0000000000000000 R09: 0000000000000000 [ 929.081001][ T31] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000008 [ 929.089040][ T31] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000 [ 929.097214][ T31] [ 929.100385][ T31] INFO: task syz.0.2441:17152 blocked for more than 143 seconds. [ 929.108559][ T31] Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 [ 929.117498][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 929.126277][ T31] task:syz.0.2441 state:D stack:26488 pid:17152 tgid:17152 ppid:15935 task_flags:0x440040 flags:0x00000004 [ 929.138354][ T31] Call Trace: [ 929.141670][ T31] [ 929.144646][ T31] __schedule+0x116f/0x5de0 [ 929.149484][ T31] ? __pfx___schedule+0x10/0x10 [ 929.154404][ T31] ? find_held_lock+0x2b/0x80 [ 929.162315][ T31] ? schedule+0x2d7/0x3a0 [ 929.166723][ T31] schedule+0xe7/0x3a0 [ 929.170881][ T31] io_schedule+0xbf/0x130 [ 929.175268][ T31] bit_wait_io+0x15/0xe0 [ 929.181996][ T31] __wait_on_bit+0x62/0x180 [ 929.186558][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 929.192617][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 929.198849][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 929.205098][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 929.210690][ T31] do_get_write_access+0x93d/0x12a0 [ 929.217301][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 929.223541][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 929.229714][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 929.235307][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 929.240971][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 929.246411][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 929.252631][ T31] ? rcu_is_watching+0x12/0xc0 [ 929.257484][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 929.263292][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 929.268768][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 929.274737][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 929.282982][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 929.288159][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 929.293597][ T31] ext4_dirty_inode+0xd9/0x130 [ 929.298523][ T31] ? rcu_is_watching+0x12/0xc0 [ 929.303340][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 929.308478][ T31] generic_update_time+0xcf/0xf0 [ 929.313471][ T31] file_update_time+0x17d/0x1c0 [ 929.318767][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 929.323961][ T31] ? filemap_map_pages+0xf6c/0x1680 [ 929.329526][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 929.335034][ T31] ? vm_normal_page+0x13b/0x2b0 [ 929.340306][ T31] ? find_held_lock+0x2b/0x80 [ 929.345036][ T31] ? find_held_lock+0x2b/0x80 [ 929.349808][ T31] do_page_mkwrite+0x171/0x380 [ 929.354634][ T31] do_wp_page+0xb9e/0x58e0 [ 929.359275][ T31] ? __pfx_do_wp_page+0x10/0x10 [ 929.364200][ T31] ? do_raw_spin_lock+0x12c/0x2b0 [ 929.369481][ T31] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 929.375028][ T31] ? ___pte_offset_map+0x1bc/0x540 [ 929.380302][ T31] __handle_mm_fault+0x1ada/0x2a40 [ 929.385655][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 929.391353][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 929.396668][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 929.403705][ T31] handle_mm_fault+0x3fe/0xad0 [ 929.408653][ T31] do_user_addr_fault+0x60c/0x1370 [ 929.414046][ T31] exc_page_fault+0x5c/0xc0 [ 929.420462][ T31] asm_exc_page_fault+0x26/0x30 [ 929.425469][ T31] RIP: 0033:0x7f8f9d06eada [ 929.430049][ T31] RSP: 002b:00007ffe8687da20 EFLAGS: 00010212 [ 929.436396][ T31] RAX: 0000001b2ef192f8 RBX: 00007f8f9dee5720 RCX: 0000001b2ef192f0 [ 929.444556][ T31] RDX: 0000001b2e92021c RSI: 0000000000000008 RDI: 00007f8f9dee5720 [ 929.453199][ T31] RBP: ffffffff893a6f4b R08: 00007f8f9d3b61f8 R09: 00007f8f9d3a2000 [ 929.461436][ T31] R10: 00007f8f9bffb008 R11: 0000000000000003 R12: 0000000000000003 [ 929.469694][ T31] R13: 0000000000000001 R14: ffffffff893a6621 R15: 0000000000000001 [ 929.477973][ T31] ? __x64_sys_socket+0x11/0xb0 [ 929.482893][ T31] ? __ia32_sys_socketpair+0xfb/0x100 [ 929.488411][ T31] [ 929.491479][ T31] INFO: task syz.3.2440:17153 blocked for more than 144 seconds. [ 929.499372][ T31] Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 [ 929.507076][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 929.516085][ T31] task:syz.3.2440 state:D stack:25672 pid:17153 tgid:17153 ppid:5845 task_flags:0x440040 flags:0x00004004 [ 929.528618][ T31] Call Trace: [ 929.531954][ T31] [ 929.534940][ T31] __schedule+0x116f/0x5de0 [ 929.539599][ T31] ? __pfx___schedule+0x10/0x10 [ 929.544519][ T31] ? find_held_lock+0x2b/0x80 [ 929.549422][ T31] ? schedule+0x2d7/0x3a0 [ 929.554164][ T31] schedule+0xe7/0x3a0 [ 929.558546][ T31] io_schedule+0xbf/0x130 [ 929.562934][ T31] bit_wait_io+0x15/0xe0 [ 929.567326][ T31] __wait_on_bit+0x62/0x180 [ 929.572157][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 929.577169][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 929.582659][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 929.588811][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 929.594359][ T31] do_get_write_access+0x93d/0x12a0 [ 929.599803][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 929.606011][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 929.612252][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 929.618003][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 929.623948][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 929.629581][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 929.635657][ T31] ? rcu_is_watching+0x12/0xc0 [ 929.640632][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 929.646356][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 929.651724][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 929.657453][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 929.663230][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 929.668289][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 929.673729][ T31] ext4_dirty_inode+0xd9/0x130 [ 929.678798][ T31] ? rcu_is_watching+0x12/0xc0 [ 929.683620][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 929.688799][ T31] generic_update_time+0xcf/0xf0 [ 929.693804][ T31] file_update_time+0x17d/0x1c0 [ 929.698800][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 929.703887][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 929.709497][ T31] do_page_mkwrite+0x171/0x380 [ 929.714325][ T31] do_pte_missing+0x29c/0x3fb0 [ 929.719186][ T31] ? __handle_mm_fault+0x1010/0x2a40 [ 929.724912][ T31] __handle_mm_fault+0x103d/0x2a40 [ 929.730233][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 929.735746][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 929.741057][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 929.746364][ T31] handle_mm_fault+0x3fe/0xad0 [ 929.751253][ T31] do_user_addr_fault+0x60c/0x1370 [ 929.756426][ T31] exc_page_fault+0x5c/0xc0 [ 929.761087][ T31] asm_exc_page_fault+0x26/0x30 [ 929.766188][ T31] RIP: 0033:0x7efd6cc6f282 [ 929.770848][ T31] RSP: 002b:00007ffee0d5de50 EFLAGS: 00010202 [ 929.777065][ T31] RAX: 0000000000050008 RBX: 00007efd6dae5720 RCX: 0000000000000000 [ 929.785137][ T31] RDX: 0000001b30ed0000 RSI: 0000000000000008 RDI: 00007efd6dae5720 [ 929.793525][ T31] RBP: 0000000000000253 R08: 00007efd6c3ff048 R09: 00007efd6cfa2000 [ 929.801634][ T31] R10: 00007efd6c3ff008 R11: 0000000000000019 R12: ffffffff8a10f36d [ 929.810014][ T31] R13: 00007efd6cfb6038 R14: 0000000000000044 R15: fffffffffffb0000 [ 929.818513][ T31] ? inet6_create+0x18d/0x1300 [ 929.823386][ T31] [ 929.826471][ T31] INFO: task syz.2.2442:17159 blocked for more than 144 seconds. [ 929.834660][ T31] Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 [ 929.842395][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 929.851314][ T31] task:syz.2.2442 state:D stack:25672 pid:17159 tgid:17159 ppid:5847 task_flags:0x440040 flags:0x00004004 [ 929.863434][ T31] Call Trace: [ 929.866751][ T31] [ 929.869931][ T31] __schedule+0x116f/0x5de0 [ 929.874647][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 929.879730][ T31] ? __pfx___schedule+0x10/0x10 [ 929.884743][ T31] ? find_held_lock+0x2b/0x80 [ 929.889633][ T31] ? schedule+0x2d7/0x3a0 [ 929.894120][ T31] schedule+0xe7/0x3a0 [ 929.898652][ T31] io_schedule+0xbf/0x130 [ 929.903145][ T31] bit_wait_io+0x15/0xe0 [ 929.907420][ T31] __wait_on_bit+0x62/0x180 [ 929.912703][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 929.917729][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 929.923247][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 929.929748][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 929.935363][ T31] do_get_write_access+0x93d/0x12a0 [ 929.940803][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 929.946877][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 929.953149][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 929.958846][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 929.964392][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 929.969892][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 929.975967][ T31] ? rcu_is_watching+0x12/0xc0 [ 929.980851][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 929.986614][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 929.992448][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 929.998443][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 930.004181][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 930.009553][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 930.015013][ T31] ext4_dirty_inode+0xd9/0x130 [ 930.019902][ T31] ? rcu_is_watching+0x12/0xc0 [ 930.024773][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 930.029980][ T31] generic_update_time+0xcf/0xf0 [ 930.035245][ T31] file_update_time+0x17d/0x1c0 [ 930.040268][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 930.045401][ T31] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 930.051324][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 930.056582][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 930.062281][ T31] do_page_mkwrite+0x171/0x380 [ 930.067105][ T31] do_wp_page+0xb9e/0x58e0 [ 930.071653][ T31] ? __pfx_do_wp_page+0x10/0x10 [ 930.076651][ T31] ? do_raw_spin_lock+0x12c/0x2b0 [ 930.081803][ T31] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 930.087248][ T31] ? ___pte_offset_map+0x1bc/0x540 [ 930.092526][ T31] __handle_mm_fault+0x1ada/0x2a40 [ 930.097798][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 930.103397][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 930.108794][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 930.114085][ T31] handle_mm_fault+0x3fe/0xad0 [ 930.119150][ T31] do_user_addr_fault+0x60c/0x1370 [ 930.124350][ T31] exc_page_fault+0x5c/0xc0 [ 930.129007][ T31] asm_exc_page_fault+0x26/0x30 [ 930.134285][ T31] RIP: 0033:0x7faefb06eba8 [ 930.138820][ T31] RSP: 002b:00007ffe5267b110 EFLAGS: 00010202 [ 930.144942][ T31] RAX: fffffffffffe110c RBX: 00007faefbee5720 RCX: 0000001b30c01108 [ 930.153172][ T31] RDX: 0000001b30820220 RSI: 0000000000000004 RDI: 00007faefbee5720 [ 930.161378][ T31] RBP: ffffffff815df230 R08: 00007faefb3b62d8 R09: 00007faefb3a2000 [ 930.169479][ T31] R10: 00007faef8bf6008 R11: 0000000000000018 R12: 0000000000000018 [ 930.177493][ T31] R13: 0000000000000000 R14: ffffffff815dfb5a R15: 0000000000000000 [ 930.185554][ T31] ? __x64_sys_mmap+0x1a/0x190 [ 930.190409][ T31] ? ia32_setup_rt_frame+0x550/0xb30 [ 930.195727][ T31] [ 930.198852][ T31] INFO: task syz.2.2442:17177 blocked for more than 145 seconds. [ 930.206606][ T31] Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 [ 930.214346][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 930.223269][ T31] task:syz.2.2442 state:D stack:26776 pid:17177 tgid:17159 ppid:5847 task_flags:0x400140 flags:0x00004004 [ 930.235624][ T31] Call Trace: [ 930.239703][ T31] [ 930.242869][ T31] __schedule+0x116f/0x5de0 [ 930.247437][ T31] ? check_path.constprop.0+0x24/0x50 [ 930.253013][ T31] ? __pfx___schedule+0x10/0x10 [ 930.258016][ T31] ? find_held_lock+0x2b/0x80 [ 930.262746][ T31] ? schedule+0x2d7/0x3a0 [ 930.267109][ T31] schedule+0xe7/0x3a0 [ 930.271284][ T31] io_schedule+0xbf/0x130 [ 930.276188][ T31] folio_wait_bit_common+0x3d6/0x9e0 [ 930.281845][ T31] ? folio_wait_bit_common+0x13a/0x9e0 [ 930.287391][ T31] ? __pfx_folio_wait_bit_common+0x10/0x10 [ 930.293337][ T31] ? filemap_get_folios_tag+0x46a/0xae0 [ 930.299110][ T31] ? __pfx_wake_page_function+0x10/0x10 [ 930.304697][ T31] folio_wait_writeback+0x3c/0x90 [ 930.310144][ T31] __filemap_fdatawait_range+0x11f/0x200 [ 930.316052][ T31] ? __pfx___filemap_fdatawait_range+0x10/0x10 [ 930.322449][ T31] ? do_raw_spin_lock+0x12c/0x2b0 [ 930.327542][ T31] ? find_held_lock+0x2b/0x80 [ 930.332325][ T31] ? find_held_lock+0x2b/0x80 [ 930.337058][ T31] ? sync_inodes_sb+0x5e1/0xa70 [ 930.342567][ T31] filemap_fdatawait_keep_errors+0x21/0x30 [ 930.348627][ T31] sync_inodes_sb+0x5fa/0xa70 [ 930.353356][ T31] ? sync_inodes_sb+0x5e1/0xa70 [ 930.358316][ T31] ? __pfx_sync_inodes_sb+0x10/0x10 [ 930.363598][ T31] ? get_nr_dirty_inodes+0x170/0x1e0 [ 930.369029][ T31] sync_filesystem+0x177/0x290 [ 930.373900][ T31] ? __pfx_fs_bdev_sync+0x10/0x10 [ 930.379091][ T31] fs_bdev_sync+0x2c/0x40 [ 930.383517][ T31] blkdev_common_ioctl+0x1742/0x2480 [ 930.389161][ T31] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 930.395343][ T31] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 930.401503][ T31] ? __pfx_blkdev_common_ioctl+0x10/0x10 [ 930.407198][ T31] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 930.412429][ T31] ? find_held_lock+0x2b/0x80 [ 930.417253][ T31] blkdev_ioctl+0x1cb/0x6d0 [ 930.421853][ T31] ? __pfx_blkdev_ioctl+0x10/0x10 [ 930.426942][ T31] ? __pfx_blkdev_ioctl+0x10/0x10 [ 930.432123][ T31] __x64_sys_ioctl+0x190/0x200 [ 930.436978][ T31] do_syscall_64+0xcd/0x230 [ 930.441905][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 930.448203][ T31] RIP: 0033:0x7faefb18e969 [ 930.452844][ T31] RSP: 002b:00007faefbf5f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 930.461542][ T31] RAX: ffffffffffffffda RBX: 00007faefb3b6160 RCX: 00007faefb18e969 [ 930.469608][ T31] RDX: 0000000000000000 RSI: 0000000000001261 RDI: 000000000000000a [ 930.477607][ T31] RBP: 00007faefb210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 930.485669][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 930.494337][ T31] R13: 0000000000000000 R14: 00007faefb3b6160 R15: 00007ffe5267b0d8 [ 930.502611][ T31] [ 930.505993][ T31] [ 930.505993][ T31] Showing all locks held in the system: [ 930.513847][ T31] 1 lock held by khungtaskd/31: [ 930.518916][ T31] #0: ffffffff8e3bf440 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0 [ 930.528925][ T31] 3 locks held by syz-executor/5828: [ 930.534226][ T31] #0: ffff888034a96a88 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 930.544029][ T31] #1: ffff88814e50c518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 930.553865][ T31] #2: ffff888034ed8950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 930.563788][ T31] 2 locks held by kworker/u9:5/7824: [ 930.569195][ T31] #0: ffff88802607e948 ((wq_completion)nbd0-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70 [ 930.580341][ T31] #1: ffffc90004b57d18 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70 [ 930.591728][ T31] 2 locks held by getty/11458: [ 930.596505][ T31] #0: ffff88814e0e00a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 930.606367][ T31] #1: ffffc90017bd62f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0 [ 930.616799][ T31] 3 locks held by syz-executor/16949: [ 930.622301][ T31] #0: ffff88814e50c420 (sb_writers#4){.+.+}-{0:0}, at: filename_create+0x10e/0x4a0 [ 930.632028][ T31] #1: ffff88807aa45378 (&type->i_mutex_dir_key#3/1){+.+.}-{4:4}, at: filename_create+0x1bb/0x4a0 [ 930.643097][ T31] #2: ffff888034ed8950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 930.653367][ T31] 3 locks held by syz.0.2441/17152: [ 930.659537][ T31] #0: ffff88807e2a0588 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 930.669184][ T31] #1: ffff88814e50c518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 930.678946][ T31] #2: ffff888034ed8950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 930.688694][ T31] 3 locks held by syz.3.2440/17153: [ 930.693914][ T31] #0: ffff88807cb0cd08 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 930.703418][ T31] #1: ffff88814e50c518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 930.713049][ T31] #2: ffff888034ed8950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 930.722766][ T31] 3 locks held by syz.2.2442/17159: [ 930.728105][ T31] #0: ffff8880124d3588 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 930.737512][ T31] #1: ffff88814e50c518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 930.747215][ T31] #2: ffff888034ed8950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 930.758387][ T31] 2 locks held by syz.2.2442/17177: [ 930.763630][ T31] #0: ffff88814e50c0e0 (&type->s_umount_key#31){++++}-{4:4}, at: super_lock+0x31c/0x3f0 [ 930.773632][ T31] #1: ffff88814e50c948 (&s->s_sync_lock){+.+.}-{4:4}, at: sync_inodes_sb+0x231/0xa70 [ 930.783372][ T31] [ 930.785734][ T31] ============================================= [ 930.785734][ T31] [ 930.794712][ T31] NMI backtrace for cpu 1 [ 930.794734][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 930.794770][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 930.794787][ T31] Call Trace: [ 930.794797][ T31] [ 930.794808][ T31] dump_stack_lvl+0x116/0x1f0 [ 930.794860][ T31] nmi_cpu_backtrace+0x27b/0x390 [ 930.794911][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 930.794962][ T31] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 930.795016][ T31] watchdog+0xf70/0x12c0 [ 930.795065][ T31] ? __pfx_watchdog+0x10/0x10 [ 930.795103][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 930.795142][ T31] ? __kthread_parkme+0x19e/0x250 [ 930.795182][ T31] ? __pfx_watchdog+0x10/0x10 [ 930.795222][ T31] kthread+0x3c2/0x780 [ 930.795263][ T31] ? __pfx_kthread+0x10/0x10 [ 930.795303][ T31] ? __pfx_kthread+0x10/0x10 [ 930.795345][ T31] ? __pfx_kthread+0x10/0x10 [ 930.795386][ T31] ? __pfx_kthread+0x10/0x10 [ 930.795427][ T31] ? rcu_is_watching+0x12/0xc0 [ 930.795456][ T31] ? __pfx_kthread+0x10/0x10 [ 930.795501][ T31] ret_from_fork+0x45/0x80 [ 930.795548][ T31] ? __pfx_kthread+0x10/0x10 [ 930.795592][ T31] ret_from_fork_asm+0x1a/0x30 [ 930.795656][ T31] [ 930.795667][ T31] Sending NMI from CPU 1 to CPUs 0: [ 930.930183][ C0] NMI backtrace for cpu 0 [ 930.930203][ C0] CPU: 0 UID: 0 PID: 16274 Comm: kworker/u8:4 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 930.930235][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 930.930252][ C0] Workqueue: events_unbound nsim_dev_trap_report_work [ 930.930288][ C0] RIP: 0010:__lock_acquire+0x15a/0x1ba0 [ 930.930322][ C0] Code: 10 45 89 e0 0f b7 43 20 4c 89 5b 10 48 89 df 66 81 e2 ff 1f 4c 89 7b 18 66 25 00 e0 09 d0 66 89 43 20 48 8b 84 24 b0 00 00 00 <48> 89 43 08 41 8b 8e d4 0a 00 00 31 c0 65 8b 15 6a c4 0b 12 85 c9 [ 930.930347][ C0] RSP: 0018:ffffc9000c0b7500 EFLAGS: 00000002 [ 930.930364][ C0] RAX: ffffffff816999dd RBX: ffff8880217be590 RCX: 0000000000000007 [ 930.930381][ C0] RDX: 0000000000000007 RSI: ffff8880217be568 RDI: ffff8880217be590 [ 930.930397][ C0] RBP: ffff8880217be4f0 R08: 0000000000000000 R09: 0000000000000001 [ 930.930412][ C0] R10: 0000000000000000 R11: ffffffff8e3bf440 R12: 0000000000000000 [ 930.930427][ C0] R13: 0000000000000002 R14: ffff8880217bda00 R15: 0000000000000000 [ 930.930442][ C0] FS: 0000000000000000(0000) GS:ffff8881249ef000(0000) knlGS:0000000000000000 [ 930.930465][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 930.930481][ C0] CR2: 000055db24596600 CR3: 000000000e180000 CR4: 00000000003526f0 [ 930.930497][ C0] Call Trace: [ 930.930505][ C0] [ 930.930517][ C0] ? lock_acquire+0x179/0x350 [ 930.930551][ C0] lock_acquire+0x179/0x350 [ 930.930581][ C0] ? unwind_next_frame+0xbd/0x20a0 [ 930.930611][ C0] ? unwind_next_frame+0x3f4/0x20a0 [ 930.930638][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 930.930665][ C0] unwind_next_frame+0xd1/0x20a0 [ 930.930691][ C0] ? unwind_next_frame+0xbd/0x20a0 [ 930.930716][ C0] ? process_one_work+0x9cc/0x1b70 [ 930.930756][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 930.930782][ C0] arch_stack_walk+0x94/0x100 [ 930.930813][ C0] ? process_one_work+0x9cc/0x1b70 [ 930.930853][ C0] stack_trace_save+0x8e/0xc0 [ 930.930877][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 930.930902][ C0] ? stack_trace_save+0x8e/0xc0 [ 930.930925][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 930.930949][ C0] ? stack_depot_save_flags+0x28/0xa50 [ 930.930986][ C0] kasan_save_stack+0x33/0x60 [ 930.931010][ C0] ? kasan_save_stack+0x33/0x60 [ 930.931033][ C0] ? kasan_save_track+0x14/0x30 [ 930.931056][ C0] ? __kasan_kmalloc+0xaa/0xb0 [ 930.931086][ C0] ? __kmalloc_node_track_caller_noprof+0x221/0x510 [ 930.931116][ C0] ? kmalloc_reserve+0xef/0x2c0 [ 930.931144][ C0] ? __alloc_skb+0x166/0x380 [ 930.931180][ C0] ? nsim_dev_trap_report_work+0x2b1/0xcf0 [ 930.931210][ C0] ? process_one_work+0x9cc/0x1b70 [ 930.931268][ C0] kasan_save_track+0x14/0x30 [ 930.931292][ C0] __kasan_kmalloc+0xaa/0xb0 [ 930.931316][ C0] __kmalloc_node_track_caller_noprof+0x221/0x510 [ 930.931347][ C0] ? __alloc_skb+0x166/0x380 [ 930.931384][ C0] kmalloc_reserve+0xef/0x2c0 [ 930.931414][ C0] __alloc_skb+0x166/0x380 [ 930.931451][ C0] ? __pfx___alloc_skb+0x10/0x10 [ 930.931487][ C0] ? kfree_skbmem+0x1a4/0x1f0 [ 930.931520][ C0] ? kfree_skbmem+0x1a4/0x1f0 [ 930.931553][ C0] nsim_dev_trap_report_work+0x2b1/0xcf0 [ 930.931592][ C0] process_one_work+0x9cc/0x1b70 [ 930.931634][ C0] ? __pfx_batadv_nc_worker+0x10/0x10 [ 930.931660][ C0] ? __pfx_process_one_work+0x10/0x10 [ 930.931702][ C0] ? assign_work+0x1a0/0x250 [ 930.931737][ C0] worker_thread+0x6c8/0xf10 [ 930.931779][ C0] ? __kthread_parkme+0x19e/0x250 [ 930.931808][ C0] ? __pfx_worker_thread+0x10/0x10 [ 930.931847][ C0] kthread+0x3c2/0x780 [ 930.931880][ C0] ? __pfx_kthread+0x10/0x10 [ 930.931912][ C0] ? __pfx_kthread+0x10/0x10 [ 930.931945][ C0] ? __pfx_kthread+0x10/0x10 [ 930.931977][ C0] ? __pfx_kthread+0x10/0x10 [ 930.932010][ C0] ? rcu_is_watching+0x12/0xc0 [ 930.932032][ C0] ? __pfx_kthread+0x10/0x10 [ 930.932065][ C0] ret_from_fork+0x45/0x80 [ 930.932109][ C0] ? __pfx_kthread+0x10/0x10 [ 930.932142][ C0] ret_from_fork_asm+0x1a/0x30 [ 930.932185][ C0] [ 930.933227][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 931.337437][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) [ 931.349272][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 931.359354][ T31] Call Trace: [ 931.362653][ T31] [ 931.365611][ T31] dump_stack_lvl+0x3d/0x1f0 [ 931.370244][ T31] panic+0x71c/0x800 [ 931.374184][ T31] ? __pfx_panic+0x10/0x10 [ 931.378641][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 931.384064][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 931.390109][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 931.395540][ T31] ? watchdog+0xdda/0x12c0 [ 931.400005][ T31] ? watchdog+0xdcd/0x12c0 [ 931.404464][ T31] watchdog+0xdeb/0x12c0 [ 931.408750][ T31] ? __pfx_watchdog+0x10/0x10 [ 931.413466][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 931.418695][ T31] ? __kthread_parkme+0x19e/0x250 [ 931.423755][ T31] ? __pfx_watchdog+0x10/0x10 [ 931.428478][ T31] kthread+0x3c2/0x780 [ 931.432584][ T31] ? __pfx_kthread+0x10/0x10 [ 931.437211][ T31] ? __pfx_kthread+0x10/0x10 [ 931.441843][ T31] ? __pfx_kthread+0x10/0x10 [ 931.446471][ T31] ? __pfx_kthread+0x10/0x10 [ 931.451099][ T31] ? rcu_is_watching+0x12/0xc0 [ 931.456022][ T31] ? __pfx_kthread+0x10/0x10 [ 931.460650][ T31] ret_from_fork+0x45/0x80 [ 931.465111][ T31] ? __pfx_kthread+0x10/0x10 [ 931.469750][ T31] ret_from_fork_asm+0x1a/0x30 [ 931.474611][ T31] [ 931.477947][ T31] Kernel Offset: disabled [ 931.482312][ T31] Rebooting in 86400 seconds..