last executing test programs: 3.319271287s ago: executing program 3 (id=2561): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd10/queue/iosched/read_expire\x00', 0x1c2b02, 0x0) r1 = socket(0x2b, 0x1, 0x1) chmod$auto(0x0, 0x4) listen$auto(0x3, 0x81) mmap$auto(0x0, 0x9, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) ftruncate$auto(r0, 0x3) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x6) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x1fe, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_L2TP_CMD_NOOP(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="000028bd7000ffdbdf25000700000800010002"], 0x1c}, 0x1, 0x0, 0x0, 0x40080}, 0x8c1) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1700", @ANYBLOB="7f"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) socket(0x1e, 0x805, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0) io_uring_setup$auto(0x6, 0x0) ioctl$auto(0x3, 0x40045532, 0x38) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D0c\x00', 0x88c00, 0x0) read$auto(r0, 0x0, 0x80) mprotect$auto(0x1ffff000, 0x8000000000000004, 0xd) acct$auto(&(0x7f0000000040)='/sys/module/kvm/parameters/pi_inject_timer\x00') sendmsg$auto_NFSD_CMD_POOL_MODE_GET(r1, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x14, 0x0, 0x200, 0x70bd2b, 0x25dfdbfc, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x40) r2 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC1D1c\x00', 0x800, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_DELAY2(r2, 0x80084121, &(0x7f0000000080)=0x83) acct$auto(0x0) 2.687617773s ago: executing program 3 (id=2564): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) unshare$auto(0x40000080) socket(0xa, 0x3, 0x3a) setsockopt$auto(0x400000000000003, 0x29, 0xc8, 0x0, 0x4) 2.466092677s ago: executing program 2 (id=2565): mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) openat$auto_regulator_summary_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) statmount$auto(0x0, &(0x7f0000000180)={0x8000008, 0x1, 0x38a1, 0x3, 0x26, 0x940, 0x1ffde, 0x3, 0x6, 0x902c, 0x6, 0x400005, 0x3, 0x4, 0xb0, 0x8, 0x9, 0x3, 0x5, 0x6, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, [0x3, 0x3, 0x200000000, 0x400000000, 0x0, 0x3901, 0x0, 0x4, 0x3, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0xffffffeffffffffe, 0x4, 0x0, 0xceb, 0x0, 0xfffffffffffffffc, 0x0, 0x1, 0x96f, 0xffffffffffffffff, 0x2, 0x4001, 0x3, 0x0, 0xb548, 0x8, 0x1, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb, 0x3]}, 0xfffff7fffffffffa, 0x81) setrlimit$auto(0x0, &(0x7f0000000000)={0x0, 0x3ff}) syz_clone3(&(0x7f00000005c0)={0x2000, &(0x7f00000000c0)=0xffffffffffffffff, &(0x7f0000000100), &(0x7f0000000140), {0x3c}, &(0x7f0000000380)=""/251, 0xfb, &(0x7f0000000480)=""/249, &(0x7f0000000580)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff], 0xa}, 0x58) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/fs/cifs/smbd_send_credit_target\x00', 0x40, 0x0) process_mrelease$auto(r0, 0x2) sendmsg$auto_MACSEC_CMD_DEL_RXSC(0xffffffffffffffff, 0x0, 0x80) unshare$auto(0x40000080) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto_ocfs2_control_fops_stack_user(0xffffffffffffffff, 0x0, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) socket(0x2b, 0x1, 0x6) syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff) getsockopt$auto(0x6, 0x107, 0xc, 0x0, 0x0) syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_NET_SHAPER_CMD_GET2(0xffffffffffffffff, 0x0, 0x401d0) io_uring_setup$auto(0x2, 0x0) 2.229002753s ago: executing program 3 (id=2566): mmap$auto(0x3, 0x2020009, 0xffffffff, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xf, 0x3, 0x2) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) openat$auto_cpu_latency_qos_fops_qos(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0xc) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) futex$auto(&(0x7f0000000080)=0x1, 0xb, 0x1, 0x0, 0x0, 0xfffffffa) futex$auto(&(0x7f0000000080)=0x2, 0xa, 0x0, 0x0, 0x0, 0x440a48d2) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) write$auto(0x3, 0x0, 0xfffffdef) r1 = fcntl$auto(0x3, 0x4, 0xa553) mmap$auto(0x0, 0xc04, 0xfffffffffffffffe, 0x9b72, 0x2, 0xc7f6) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, 0x0, 0x2000c041) bind$auto(0x3, 0x0, 0x6b) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x121041, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x8, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000) madvise$auto(0x0, 0xffffffffffff0004, 0x19) tee$auto(r0, r1, 0x0, 0xef8) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) ioperm$auto(0x7, 0x6, 0x2) madvise$auto(0x0, 0x200007, 0x8) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x51c100, 0x0) 1.784922707s ago: executing program 1 (id=2567): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYRES32, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYRES32, @ANYBLOB="060006ff05000000080003009b"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4008810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.750755887s ago: executing program 2 (id=2568): mmap$auto(0x0, 0x6, 0xdf, 0x9b72, 0x2, 0x8000) syz_clone(0x100000, 0x0, 0x0, 0x0, 0x0, 0x0) futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) 1.565640382s ago: executing program 0 (id=2570): openat$auto_bsg_fops_bsg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bsg/1:0:0:0\x00', 0x2000, 0x0) ioctl$auto(0x3, 0xc0105502, 0x1) openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/dynamic_events\x00', 0x18b042, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_seg6(&(0x7f00000003c0), 0xffffffffffffffff) sendmsg$auto_SEG6_CMD_SET_TUNSRC(r0, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000040)={0x28, r1, 0x11, 0x70bd26, 0x25dfdbff, {}, [@SEG6_ATTR_DST={0x14, 0x1, @mcast1}]}, 0x28}, 0x1, 0x0, 0x0, 0x10}, 0x44892) 1.564884204s ago: executing program 1 (id=2571): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/devices.allow\x00', 0x100, 0x0) ioperm$auto(0x7, 0x6, 0x1) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x40400, 0x0) prctl$auto_PR_SET_MEMORY_MERGE(0x43, 0xde1, 0xffffffffffffffff, 0x200, 0x7) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) write$auto(0xffffffffffffffff, 0x0, 0x6) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0) ioctl$auto_VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/rpc/nfs4.nametoid/channel\x00', 0x22002, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) readv$auto(0x0, 0x0, 0x7ff) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000100)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0xc040810) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000280)={'virt_wifi0\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32=r2, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYRES32=r2, @ANYBLOB="060006ff05000000080003009b"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4008810}, 0x800) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000780)='/proc/sys/net/ipv6/neigh/virt_wifi0/retrans_time\x00', 0x101000, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) read$auto(0x4, 0x0, 0xfdef) mprotect$auto(0x1ffff000, 0x8000000000000004, 0xd) acct$auto(&(0x7f0000000000)='/sys/devices/platform/i8042/serio1/resync_time\x00') acct$auto(0x0) 1.494138709s ago: executing program 0 (id=2572): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x28102, 0x0) write$auto(0x3, 0x0, 0x81) 1.41863882s ago: executing program 2 (id=2573): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/devices.allow\x00', 0x100, 0x0) ioperm$auto(0x7, 0x6, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x40400, 0x0) prctl$auto_PR_SET_MEMORY_MERGE(0x43, 0xde1, 0xffffffffffffffff, 0x200, 0x7) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) write$auto(0xffffffffffffffff, 0x0, 0x6) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x2000, 0x0) ioctl$auto_VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/rpc/nfs4.nametoid/channel\x00', 0x22002, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) readv$auto(0x0, 0x0, 0x7ff) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000100)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0xc040810) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000280)={'virt_wifi0\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32=r2, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYRES32=r2, @ANYBLOB="060006ff05000000080003009b"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4008810}, 0x800) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000780)='/proc/sys/net/ipv6/neigh/virt_wifi0/retrans_time\x00', 0x101000, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) read$auto(0x4, 0x0, 0xfdef) mprotect$auto(0x1ffff000, 0x8000000000000004, 0xd) acct$auto(&(0x7f0000000000)='/sys/devices/platform/i8042/serio1/resync_time\x00') acct$auto(0x0) 1.318903187s ago: executing program 0 (id=2574): r0 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/lru_gen\x00', 0x20000, 0x0) ioctl$auto_VHOST_SET_VRING_CALL2(0xffffffffffffffff, 0x4008af21, &(0x7f0000000440)={0xfffffbff, r0}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) timerfd_create$auto(0x1000009, 0x0) semctl$auto(0x1ff, 0x2, 0x94aa, 0x4) ioctl$auto(r0, 0x4, 0x5) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x80000000}, 0x1) 1.002802753s ago: executing program 1 (id=2575): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC1D0p\x00', 0x800000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0x401, 0x8000) ioctl$auto_SNDRV_PCM_IOCTL_REWIND(r0, 0x40084146, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) close_range$auto(0x2, 0xa, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000013c0)=ANY=[@ANYBLOB="18000000", @ANYRES8=r1, @ANYRES8=r2, @ANYRES8], 0x18}}, 0x200080c0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r3, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x10048884) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0xc) socket(0x2, 0x1, 0x0) socket(0x9, 0xa, 0x56390e13) getsockopt$auto(0x7, 0x29, 0x44, 0x0, 0x0) bind$auto(r4, &(0x7f0000000080)=@nl=@proc={0x10, 0x0, 0x25dfdbf8, 0x4000}, 0x6b) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) close_range$auto(0x2, 0x8, 0x0) socket(0x15, 0x80000, 0xffff0003) socket(0x2, 0x1, 0x106) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) ioctl$auto(0x3, 0x541b, 0x38) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg1\x00', 0x0, 0x0) 913.72428ms ago: executing program 0 (id=2576): r0 = socket(0xa, 0x5, 0x0) setsockopt$auto(r0, 0x10000000084, 0x13, 0x0, 0x4) mmap$auto(0x0, 0x101, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r1 = socket(0x15, 0x5, 0x0) bind$auto(r1, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) ustat$auto(0x801, 0x0) sendmsg$auto(r1, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b75, r0, 0x8001) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x4810004, 0x200000000ffb, 0x16, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0) r4 = gettid() ioctl$auto_BLKFRASET(r2, 0x1264, 0x0) process_vm_writev$auto(r4, &(0x7f0000002980)={0x0, 0x7ff}, 0x3, &(0x7f0000002a40)={0x0, 0x100000004007}, 0x4, 0x0) setfsuid$auto(0xee01) ioctl$auto_BLKTRACESETUP32(r2, 0xc0401273, 0x0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000240)='/dev/admmidi2\x00', 0x101000, 0x0) ioctl$auto_SNDRV_RAWMIDI_IOCTL_STATUS32(r5, 0xc0245720, 0x0) sendmsg$auto_MACSEC_CMD_UPD_RXSA(r3, 0x0, 0x44004) r6 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0) ioctl$auto(r6, 0x40104d14, r6) openat$auto_adf_ctl_ops_adf_ctl_drv(0xffffffffffffff9c, 0x0, 0x0, 0x0) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000) socketpair$auto(0xfffff800, 0x5, 0x8000000000000000, 0x0) set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7fffffffffffffff, 0x4) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) 684.206655ms ago: executing program 0 (id=2577): mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) openat$auto_regulator_summary_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) statmount$auto(0x0, &(0x7f0000000180)={0x8000008, 0x1, 0x38a1, 0x3, 0x26, 0x940, 0x1ffde, 0x3, 0x6, 0x902c, 0x6, 0x400005, 0x3, 0x4, 0xb0, 0x8, 0x9, 0x3, 0x5, 0x6, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, [0x3, 0x3, 0x200000000, 0x400000000, 0x0, 0x3901, 0x0, 0x4, 0x3, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0xffffffeffffffffe, 0x4, 0x0, 0xceb, 0x0, 0xfffffffffffffffc, 0x0, 0x1, 0x96f, 0xffffffffffffffff, 0x2, 0x4001, 0x3, 0x0, 0xb548, 0x8, 0x1, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb, 0x3]}, 0xfffff7fffffffffa, 0x81) setrlimit$auto(0x0, &(0x7f0000000000)={0x0, 0x3ff}) syz_clone3(&(0x7f00000005c0)={0x2000, &(0x7f00000000c0)=0xffffffffffffffff, &(0x7f0000000100), &(0x7f0000000140), {0x3c}, &(0x7f0000000380)=""/251, 0xfb, &(0x7f0000000480)=""/249, &(0x7f0000000580)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff], 0xa}, 0x58) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/fs/cifs/smbd_send_credit_target\x00', 0x40, 0x0) process_mrelease$auto(r0, 0x2) sendmsg$auto_MACSEC_CMD_DEL_RXSC(0xffffffffffffffff, 0x0, 0x80) unshare$auto(0x40000080) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto_ocfs2_control_fops_stack_user(0xffffffffffffffff, 0x0, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) socket(0x2b, 0x1, 0x6) syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff) getsockopt$auto(0x6, 0x107, 0xc, 0x0, 0x0) syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_NET_SHAPER_CMD_GET2(0xffffffffffffffff, 0x0, 0x401d0) io_uring_setup$auto(0x2, 0x0) 684.148449ms ago: executing program 2 (id=2578): mq_timedreceive$auto(0xffffffffffffffff, 0x0, 0x6, 0x0, 0x0) 578.154447ms ago: executing program 1 (id=2579): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYRES32, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYRES32, @ANYBLOB="060006ff05000000080003009b"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4008810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 575.788635ms ago: executing program 3 (id=2580): openat$auto_bsg_fops_bsg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bsg/1:0:0:0\x00', 0x2000, 0x0) ioctl$auto(0x3, 0xc0105502, 0x1) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_seg6(&(0x7f00000003c0), 0xffffffffffffffff) sendmsg$auto_SEG6_CMD_SET_TUNSRC(r0, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000040)={0x28, r1, 0x11, 0x70bd26, 0x25dfdbff, {}, [@SEG6_ATTR_DST={0x14, 0x1, @mcast1}]}, 0x28}, 0x1, 0x0, 0x0, 0x10}, 0x44892) 512.906518ms ago: executing program 2 (id=2581): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) close_range$auto(0x2, 0x8, 0x0) (async) r0 = openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000100), 0x80, 0x0) ioctl$auto_BCH_IOCTL_FSCK_OFFLINE(r0, 0x4018bc13, 0x0) (async) adjtimex$auto(0x0) readv$auto(0x3, 0x0, 0x6) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async) madvise$auto(0x0, 0xffffff7fffff0005, 0x8) (async) madvise$auto(0x0, 0x2003f0, 0x14) 347.641613ms ago: executing program 1 (id=2582): r0 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x22a40, 0x0) read$auto_mISDN_fops_timerdev(r0, &(0x7f0000000040)=""/210, 0xd2) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) shmat$auto(0x7, &(0x7f0000000000)='/proc/fs/cifs/Stats\x00', 0x1) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x28102, 0x0) write$auto(0x3, 0x0, 0x81) 347.219622ms ago: executing program 3 (id=2583): r0 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/profile\x00', 0x40802, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) read$auto(0x3, 0x0, 0x1f40) ioctl$auto_PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f0000000180)={0x1, 0x2, 0x0, 0xe18, 0x9, 0x8, 0x3ff, 0x2, 0x10001, 0xffffffffffffffff, 0x1, 0x2}) write$auto(0x3, 0x0, 0xfdef) connect$auto(0x3, 0x0, 0x54) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) r2 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$auto_IEEE802154_LLSEC_DEL_DEVKEY(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x40, r2, 0x100, 0x70bd27, 0x25dfdbfd, {}, [@IEEE802154_ATTR_CCA_MODE={0x5, 0x23, 0x4}, @IEEE802154_ATTR_SRC_HW_ADDR={0xc, 0xc, 0x7}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0xc2}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x1}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0xb}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x90) sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x7c, r1, 0x2, 0x70bd28, 0x25dfdbfe, {}, [@HWSIM_ATTR_PERM_ADDR={0x68, 0x16, "10bb986c569ff553eda8aa028b0691fd16f9583c43b97210a57739ca9e43ff79eb5839d21908f25c9b5a29f8567db1af42bfe665f43ca69a37feecea590059e3dfbe52543b7148cbfee4626bb50032b3c8b126be85aeea0ae2c9c4b39af9e243b3579e17"}]}, 0x7c}, 0x1, 0x0, 0x0, 0x4040040}, 0x804) read$auto(0x3, 0x0, 0xfdef) 238.439501ms ago: executing program 2 (id=2584): r0 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/lru_gen\x00', 0x20000, 0x0) ioctl$auto_VHOST_SET_VRING_CALL2(0xffffffffffffffff, 0x4008af21, &(0x7f0000000440)={0xfffffbff, r0}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) timerfd_create$auto(0x1000009, 0x0) semctl$auto(0x1ff, 0x2, 0x94aa, 0x4) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x80000000}, 0x1) 124.893318ms ago: executing program 1 (id=2585): close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000005680)='/sys/kernel/debug/tracing/set_event\x00', 0x8000, 0x0) read$auto(0x3, 0x0, 0x400000) (fail_nth: 2) 87.872435ms ago: executing program 3 (id=2586): pselect6$auto(0x9, &(0x7f0000000000)={[0x200000000000bd12, 0x7, 0x20000001, 0x6, 0x485c, 0x4, 0xfff, 0x9, 0x5, 0xf2ff, 0x8000000000000001, 0x4, 0x1, 0x83e8, 0x4, 0x4]}, 0x0, 0x0, 0x0, 0x0) r0 = socket(0xa, 0x3, 0xa9) r1 = openat$auto_o2hb_debug_fops_heartbeat(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/o2hb/livenodes\x00', 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x5, 0x0) setsockopt$auto(0x4, 0x84, 0x65, 0xfffffffffffffffe, 0x0) openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f00000011c0)='/sys/kernel/tracing/set_event_pid\x00', 0x2000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x28, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) getsockopt$auto(0x3, 0x200000000001, 0x37, 0x0, 0x0) read$auto_o2hb_debug_fops_heartbeat(r1, &(0x7f0000000040)=""/4096, 0x1000) sendmmsg$auto(r0, &(0x7f0000000180)={{&(0x7f0000000040), 0xc8b, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x8000005}, 0x3b8b, 0xa) 0s ago: executing program 0 (id=2587): mmap$auto(0x0, 0x8, 0x4, 0x9b72, 0x2, 0x8000) syz_clone(0x100000, 0x0, 0x0, 0x0, 0x0, 0x0) read$auto(0xc8, 0x0, 0x0) sendmsg$auto_TIPC_NL_BEARER_SET(0xffffffffffffffff, &(0x7f0000002600)={0x0, 0x0, &(0x7f00000025c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="010026bdff000000000000000000"], 0x14}, 0x1, 0x0, 0x0, 0x4008841}, 0x884) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'team_slave_1\x00'}) openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/kvm/insn_emulation_fail\x00', 0x2401, 0x0) r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x121000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x6, 0x22000f, 0x4000000000df, 0x4000000000eb1, r1, 0x5) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x2008000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:1a/eject\x00', 0x20000, 0x0) sendfile$auto(r2, r2, 0x0, 0xe00000000) mmap$auto(0x7, 0x8, 0x7, 0x18, 0x42c8b44c, 0x0) mmap$auto(0x40, 0x2, 0x9, 0x111, 0x9, 0x7) signalfd4$auto(0xffffffffffffffff, &(0x7f0000000080)={0x9}, 0x6, 0x6) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x1000, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x2003ec, 0x14) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) mbind$auto(0xf000, 0x8000000000000001, 0x100000000, 0x0, 0x6, 0x2) msync$auto(0x0, 0x2000000005, 0x6) kernel console output (not intermixed with test programs): write not supported for file net/rpc/nfs4.nametoid/channel (pid: 14470 comm: syz.3.2182) [ 612.751260][T14480] sp0: Synchronizing with TNC [ 614.260315][T14502] warn_unsupported: 3 callbacks suppressed [ 614.260337][T14502] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 14502 comm: syz.1.2192) [ 614.332842][T14520] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2194'. [ 614.377393][T14520] Process accounting resumed [ 614.402119][T14520] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 14520 comm: syz.2.2194) [ 614.425454][T14514] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2193'. [ 614.457524][T14507] Process accounting resumed [ 614.462349][T14507] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 14507 comm: syz.3.2193) [ 614.662657][T14526] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2195'. [ 614.677570][T14532] FAULT_INJECTION: forcing a failure. [ 614.677570][T14532] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 614.710908][T14525] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 14525 comm: syz.1.2195) [ 614.712681][T14532] CPU: 0 UID: 0 PID: 14532 Comm: syz.0.2196 Not tainted 6.14.0-rc1-syzkaller #0 [ 614.712721][T14532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 614.712741][T14532] Call Trace: [ 614.712750][T14532] [ 614.712762][T14532] dump_stack_lvl+0x16c/0x1f0 [ 614.712820][T14532] should_fail_ex+0x50a/0x650 [ 614.712859][T14532] ? __pfx___might_resched+0x10/0x10 [ 614.712909][T14532] should_fail_alloc_page+0xe7/0x130 [ 614.712955][T14532] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 614.713018][T14532] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 614.713072][T14532] ? __pfx_mark_lock+0x10/0x10 [ 614.713114][T14532] ? __pfx___lock_acquire+0x10/0x10 [ 614.713152][T14532] ? mark_lock+0xb5/0xc60 [ 614.713188][T14532] ? find_held_lock+0x2d/0x110 [ 614.713241][T14532] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 614.713310][T14532] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 614.713358][T14532] ? policy_nodemask+0xea/0x4e0 [ 614.713413][T14532] alloc_pages_mpol+0x1fc/0x540 [ 614.713463][T14532] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 614.713499][T14532] ? find_held_lock+0x2d/0x110 [ 614.713548][T14532] folio_alloc_mpol_noprof+0x36/0x2f0 [ 614.713592][T14532] shmem_alloc_folio+0x135/0x160 [ 614.713630][T14532] shmem_alloc_and_add_folio+0x48e/0xc10 [ 614.713677][T14532] ? shmem_huge_global_enabled+0x72/0x6b0 [ 614.713716][T14532] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 614.713761][T14532] ? shmem_allowable_huge_orders+0xd0/0x410 [ 614.713811][T14532] shmem_get_folio_gfp+0x689/0x1530 [ 614.713861][T14532] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 614.713908][T14532] ? filemap_map_pages+0xf92/0x16b0 [ 614.713956][T14532] shmem_fault+0x200/0xae0 [ 614.713999][T14532] ? __pfx_shmem_fault+0x10/0x10 [ 614.714052][T14532] ? do_pte_missing+0xde9/0x3e10 [ 614.714084][T14532] ? __pfx_lock_release+0x10/0x10 [ 614.714125][T14532] __do_fault+0x10a/0x490 [ 614.714167][T14532] do_pte_missing+0xecf/0x3e10 [ 614.714200][T14532] ? do_raw_spin_unlock+0x172/0x230 [ 614.714243][T14532] ? __pmd_alloc+0x3c2/0x870 [ 614.714273][T14532] __handle_mm_fault+0x1166/0x2c60 [ 614.714315][T14532] ? __pfx___handle_mm_fault+0x10/0x10 [ 614.714346][T14532] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 614.714400][T14532] ? find_vma+0xc0/0x140 [ 614.714442][T14532] ? __pfx_find_vma+0x10/0x10 [ 614.714489][T14532] handle_mm_fault+0x3fa/0xaa0 [ 614.714527][T14532] do_user_addr_fault+0x7a3/0x13f0 [ 614.714573][T14532] exc_page_fault+0x5c/0xc0 [ 614.714614][T14532] asm_exc_page_fault+0x26/0x30 [ 614.714652][T14532] RIP: 0010:rep_movs_alternative+0x13/0x70 [ 614.714688][T14532] Code: cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 83 f9 40 73 40 83 f9 08 73 21 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f [ 614.714715][T14532] RSP: 0018:ffffc900033a7740 EFLAGS: 00050202 [ 614.714737][T14532] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000002 [ 614.714753][T14532] RDX: fffff52000674efc RSI: 0000000000000000 RDI: ffffc900033a77e0 [ 614.714771][T14532] RBP: 0000000000000002 R08: 0000000000000001 R09: fffff52000674efc [ 614.714788][T14532] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000 [ 614.714804][T14532] R13: ffffc900033a77e0 R14: ffff88802403c030 R15: ffff88802403c000 [ 614.714839][T14532] _copy_from_user+0x98/0xd0 [ 614.714880][T14532] ip6_mroute_setsockopt+0x13d5/0x25b0 [ 614.714919][T14532] ? hlock_class+0x4e/0x130 [ 614.714960][T14532] ? mark_lock+0xb5/0xc60 [ 614.714994][T14532] ? __pfx_ip6_mroute_setsockopt+0x10/0x10 [ 614.715030][T14532] ? hlock_class+0x4e/0x130 [ 614.715077][T14532] ? mark_lock+0xb5/0xc60 [ 614.715113][T14532] ? __pfx_mark_lock+0x10/0x10 [ 614.715142][T14532] ? find_held_lock+0x2d/0x110 [ 614.715190][T14532] ? is_bpf_text_address+0x8a/0x1a0 [ 614.715223][T14532] ? __pfx_lock_release+0x10/0x10 [ 614.715271][T14532] ? __pfx_mark_lock+0x10/0x10 [ 614.715301][T14532] ? __lock_acquire+0x15a9/0x3c40 [ 614.715345][T14532] ? do_ipv6_setsockopt+0x8f7/0x4660 [ 614.715374][T14532] do_ipv6_setsockopt+0x8f7/0x4660 [ 614.715411][T14532] ? __pfx_do_ipv6_setsockopt+0x10/0x10 [ 614.715439][T14532] ? __lock_acquire+0xcc5/0x3c40 [ 614.715480][T14532] ? hlock_class+0x4e/0x130 [ 614.715521][T14532] ? mark_lock+0xb5/0xc60 [ 614.715550][T14532] ? aa_label_sk_perm+0x19d/0x5a0 [ 614.715580][T14532] ? __pfx_mark_lock+0x10/0x10 [ 614.715612][T14532] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 614.715648][T14532] ? find_held_lock+0x2d/0x110 [ 614.715713][T14532] ? ipv6_setsockopt+0xcb/0x170 [ 614.715740][T14532] ipv6_setsockopt+0xcb/0x170 [ 614.715773][T14532] rawv6_setsockopt+0xdc/0x700 [ 614.715819][T14532] ? __pfx_rawv6_setsockopt+0x10/0x10 [ 614.715869][T14532] ? sock_common_setsockopt+0x2e/0xf0 [ 614.715907][T14532] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 614.715944][T14532] do_sock_setsockopt+0x222/0x480 [ 614.715978][T14532] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 614.716015][T14532] ? lock_acquire+0x2f/0xb0 [ 614.716069][T14532] __sys_setsockopt+0x1a0/0x230 [ 614.716121][T14532] __x64_sys_setsockopt+0xbd/0x160 [ 614.716148][T14532] ? do_syscall_64+0x91/0x250 [ 614.716174][T14532] ? lockdep_hardirqs_on+0x7c/0x110 [ 614.716218][T14532] do_syscall_64+0xcd/0x250 [ 614.716247][T14532] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 614.716288][T14532] RIP: 0033:0x7f558fb8cda9 [ 614.716311][T14532] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 614.716338][T14532] RSP: 002b:00007f5590a44038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 614.716363][T14532] RAX: ffffffffffffffda RBX: 00007f558fda6080 RCX: 00007f558fb8cda9 [ 614.716383][T14532] RDX: 00000000000000cb RSI: 0000000000000029 RDI: 0400000000000003 [ 614.716401][T14532] RBP: 00007f5590a44090 R08: 0000000000000004 R09: 0000000000000000 [ 614.716419][T14532] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 614.716437][T14532] R13: 0000000000000000 R14: 00007f558fda6080 R15: 00007ffcb9a4b718 [ 614.716473][T14532] [ 614.813040][T14526] Process accounting resumed [ 615.334022][T14526] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 14526 comm: syz.1.2195) [ 615.367137][T14536] sp0: Synchronizing with TNC [ 615.991248][T14550] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2202'. [ 616.899471][T14572] sp0: Synchronizing with TNC [ 617.215825][T14582] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2207'. [ 617.253267][T14581] FAULT_INJECTION: forcing a failure. [ 617.253267][T14581] name failslab, interval 1, probability 0, space 0, times 0 [ 617.272396][T14582] Process accounting resumed [ 617.283554][T14582] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 14582 comm: syz.1.2207) [ 617.301151][T14581] CPU: 0 UID: 0 PID: 14581 Comm: syz.3.2209 Not tainted 6.14.0-rc1-syzkaller #0 [ 617.301187][T14581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 617.301205][T14581] Call Trace: [ 617.301213][T14581] [ 617.301224][T14581] dump_stack_lvl+0x16c/0x1f0 [ 617.301275][T14581] should_fail_ex+0x50a/0x650 [ 617.301309][T14581] ? fs_reclaim_acquire+0xae/0x150 [ 617.301359][T14581] should_failslab+0xc2/0x120 [ 617.301397][T14581] __kmalloc_noprof+0xce/0x4f0 [ 617.301430][T14581] ? fib_default_rule_add+0x4f/0x420 [ 617.301478][T14581] fib_default_rule_add+0x4f/0x420 [ 617.301519][T14581] ? __pfx_fib6_rules_net_init+0x10/0x10 [ 617.301565][T14581] fib6_rules_net_init+0x95/0x140 [ 617.301609][T14581] ops_init+0x1df/0x5f0 [ 617.301649][T14581] setup_net+0x21f/0x860 [ 617.301683][T14581] ? __pfx_setup_net+0x10/0x10 [ 617.301712][T14581] ? down_read_killable+0xcc/0x380 [ 617.301742][T14581] ? __pfx_down_read_killable+0x10/0x10 [ 617.301774][T14581] ? debug_mutex_init+0x37/0x70 [ 617.301823][T14581] copy_net_ns+0x2b4/0x6c0 [ 617.301860][T14581] create_new_namespaces+0x3ea/0xad0 [ 617.301910][T14581] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 617.301953][T14581] ksys_unshare+0x45d/0xa40 [ 617.301997][T14581] ? __pfx_ksys_unshare+0x10/0x10 [ 617.302041][T14581] ? xfd_validate_state+0x5d/0x180 [ 617.302080][T14581] ? syscall_user_dispatch+0x77/0x140 [ 617.302127][T14581] __x64_sys_unshare+0x31/0x40 [ 617.302170][T14581] do_syscall_64+0xcd/0x250 [ 617.302203][T14581] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 617.302242][T14581] RIP: 0033:0x7fc9a178cda9 [ 617.302293][T14581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 617.302324][T14581] RSP: 002b:00007fc9a2556038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 617.302355][T14581] RAX: ffffffffffffffda RBX: 00007fc9a19a5fa0 RCX: 00007fc9a178cda9 [ 617.302377][T14581] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 617.302395][T14581] RBP: 00007fc9a180e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 617.302414][T14581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 617.302432][T14581] R13: 0000000000000000 R14: 00007fc9a19a5fa0 R15: 00007ffc84fd93f8 [ 617.302471][T14581] [ 617.547773][T14579] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2208'. [ 617.565714][T14579] Process accounting resumed [ 617.570361][T14579] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 14579 comm: syz.2.2208) [ 617.617114][T14587] sp0: Synchronizing with TNC [ 617.853068][T14594] Process accounting resumed [ 618.444402][T14614] sp0: Synchronizing with TNC [ 618.765449][T14618] FAULT_INJECTION: forcing a failure. [ 618.765449][T14618] name failslab, interval 1, probability 0, space 0, times 0 [ 618.779908][T14618] CPU: 0 UID: 0 PID: 14618 Comm: syz.2.2221 Not tainted 6.14.0-rc1-syzkaller #0 [ 618.779944][T14618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 618.779961][T14618] Call Trace: [ 618.779970][T14618] [ 618.779981][T14618] dump_stack_lvl+0x16c/0x1f0 [ 618.780031][T14618] should_fail_ex+0x50a/0x650 [ 618.780065][T14618] ? fs_reclaim_acquire+0xae/0x150 [ 618.780114][T14618] ? dccp_feat_entry_new+0x1a2/0x380 [ 618.780148][T14618] should_failslab+0xc2/0x120 [ 618.780185][T14618] __kmalloc_cache_noprof+0x68/0x420 [ 618.780214][T14618] ? trace_kmalloc+0x2d/0xd0 [ 618.780253][T14618] ? __kmalloc_node_track_caller_noprof+0x23b/0x520 [ 618.780295][T14618] dccp_feat_entry_new+0x1a2/0x380 [ 618.780335][T14618] __feat_register_sp+0x301/0x520 [ 618.780379][T14618] dccp_feat_init+0x2e6/0x800 [ 618.780420][T14618] ? __pfx_dccp_feat_init+0x10/0x10 [ 618.780457][T14618] ? lockdep_init_map_type+0xa0/0x7d0 [ 618.780496][T14618] ? do_init_timer+0xc9/0x110 [ 618.780523][T14618] ? __pfx_dccp_keepalive_timer+0x10/0x10 [ 618.780567][T14618] ? __pfx_dccp_delack_timer+0x10/0x10 [ 618.780602][T14618] dccp_init_sock+0x327/0x420 [ 618.780644][T14618] ? __pfx_dccp_v6_init_sock+0x10/0x10 [ 618.780691][T14618] dccp_v6_init_sock+0x1f/0xd0 [ 618.780733][T14618] ? __pfx_dccp_v6_init_sock+0x10/0x10 [ 618.780778][T14618] inet6_create+0xb53/0x1320 [ 618.780836][T14618] ? inet6_create+0x5d/0x1320 [ 618.780887][T14618] __sock_create+0x335/0x8d0 [ 618.780935][T14618] inet_ctl_sock_create+0x96/0x230 [ 618.780977][T14618] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 618.781028][T14618] ? __pfx_dccp_v6_init_net+0x10/0x10 [ 618.781074][T14618] dccp_v6_init_net+0x63/0x90 [ 618.781139][T14618] ops_init+0x1df/0x5f0 [ 618.781177][T14618] setup_net+0x21f/0x860 [ 618.781215][T14618] ? __pfx_setup_net+0x10/0x10 [ 618.781248][T14618] ? down_read_killable+0xcc/0x380 [ 618.781282][T14618] ? __pfx_down_read_killable+0x10/0x10 [ 618.781320][T14618] ? debug_mutex_init+0x37/0x70 [ 618.781375][T14618] copy_net_ns+0x2b4/0x6c0 [ 618.781463][T14618] create_new_namespaces+0x3ea/0xad0 [ 618.781521][T14618] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 618.781574][T14618] ksys_unshare+0x45d/0xa40 [ 618.781627][T14618] ? __pfx_ksys_unshare+0x10/0x10 [ 618.781677][T14618] ? xfd_validate_state+0x5d/0x180 [ 618.781723][T14618] ? syscall_user_dispatch+0x77/0x140 [ 618.781779][T14618] __x64_sys_unshare+0x31/0x40 [ 618.781839][T14618] do_syscall_64+0xcd/0x250 [ 618.781872][T14618] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 618.781918][T14618] RIP: 0033:0x7f689878cda9 [ 618.781942][T14618] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 618.781975][T14618] RSP: 002b:00007f68995c9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 618.782007][T14618] RAX: ffffffffffffffda RBX: 00007f68989a5fa0 RCX: 00007f689878cda9 [ 618.782028][T14618] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 618.782047][T14618] RBP: 00007f689880e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 618.782067][T14618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 618.782086][T14618] R13: 0000000000000000 R14: 00007f68989a5fa0 R15: 00007ffdadde7cc8 [ 618.782127][T14618] [ 619.277695][T14625] sp0: Synchronizing with TNC [ 619.506553][T14632] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2222'. [ 619.519072][T14632] Process accounting resumed [ 619.523699][T14632] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 14632 comm: syz.0.2222) [ 619.752632][T14637] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2227'. [ 619.769753][T14635] FAULT_INJECTION: forcing a failure. [ 619.769753][T14635] name fail_futex, interval 1, probability 0, space 0, times 0 [ 619.865397][T14635] CPU: 0 UID: 0 PID: 14635 Comm: syz.2.2225 Not tainted 6.14.0-rc1-syzkaller #0 [ 619.865431][T14635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 619.865447][T14635] Call Trace: [ 619.865455][T14635] [ 619.865466][T14635] dump_stack_lvl+0x16c/0x1f0 [ 619.865520][T14635] should_fail_ex+0x50a/0x650 [ 619.865556][T14635] get_futex_key+0x4a3/0x1000 [ 619.865601][T14635] ? __pfx_get_futex_key+0x10/0x10 [ 619.865649][T14635] ? kasan_save_track+0x14/0x30 [ 619.865678][T14635] ? __kasan_kmalloc+0xaa/0xb0 [ 619.865708][T14635] futex_lock_pi+0x282/0x7b0 [ 619.865744][T14635] ? __pfx_futex_lock_pi+0x10/0x10 [ 619.865776][T14635] ? find_held_lock+0x2d/0x110 [ 619.865838][T14635] ? find_held_lock+0x2d/0x110 [ 619.865884][T14635] ? __pfx_futex_wake_mark+0x10/0x10 [ 619.865921][T14635] ? vfs_write+0x306/0x1150 [ 619.865953][T14635] do_futex+0x11b/0x350 [ 619.865982][T14635] ? __pfx_do_futex+0x10/0x10 [ 619.866019][T14635] __x64_sys_futex+0x1e1/0x4c0 [ 619.866049][T14635] ? fput+0x67/0x440 [ 619.866083][T14635] ? __pfx___x64_sys_futex+0x10/0x10 [ 619.866110][T14635] ? ksys_write+0x1ba/0x250 [ 619.866136][T14635] ? __pfx_ksys_write+0x10/0x10 [ 619.866173][T14635] do_syscall_64+0xcd/0x250 [ 619.866199][T14635] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 619.866236][T14635] RIP: 0033:0x7f689878cda9 [ 619.866256][T14635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 619.866282][T14635] RSP: 002b:00007f68995c9038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 619.866307][T14635] RAX: ffffffffffffffda RBX: 00007f68989a5fa0 RCX: 00007f689878cda9 [ 619.866323][T14635] RDX: 0000000000000047 RSI: 0000000000000006 RDI: 0000000000000000 [ 619.866337][T14635] RBP: 00007f68995c9090 R08: 0000000000000000 R09: 0000000000000000 [ 619.866352][T14635] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 619.866366][T14635] R13: 0000000000000000 R14: 00007f68989a5fa0 R15: 00007ffdadde7cc8 [ 619.866397][T14635] [ 620.366196][T14654] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2226'. [ 620.411006][T14654] Process accounting resumed [ 620.456160][T14658] nvme_fabrics: missing parameter 'transport=%s' [ 620.462636][T14658] nvme_fabrics: missing parameter 'nqn=%s' [ 620.463861][T14654] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 14654 comm: syz.0.2226) [ 620.682586][T14665] FAULT_INJECTION: forcing a failure. [ 620.682586][T14665] name failslab, interval 1, probability 0, space 0, times 0 [ 620.695370][T14665] CPU: 1 UID: 0 PID: 14665 Comm: syz.1.2234 Not tainted 6.14.0-rc1-syzkaller #0 [ 620.695402][T14665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 620.695420][T14665] Call Trace: [ 620.695429][T14665] [ 620.695440][T14665] dump_stack_lvl+0x16c/0x1f0 [ 620.695489][T14665] should_fail_ex+0x50a/0x650 [ 620.695525][T14665] ? fs_reclaim_acquire+0xae/0x150 [ 620.695575][T14665] ? dccp_feat_entry_new+0x1a2/0x380 [ 620.695607][T14665] should_failslab+0xc2/0x120 [ 620.695643][T14665] __kmalloc_cache_noprof+0x68/0x420 [ 620.695680][T14665] ? trace_kmalloc+0x2d/0xd0 [ 620.695721][T14665] ? __kmalloc_node_track_caller_noprof+0x23b/0x520 [ 620.695764][T14665] dccp_feat_entry_new+0x1a2/0x380 [ 620.695802][T14665] __feat_register_sp+0x301/0x520 [ 620.695844][T14665] dccp_feat_init+0x2ae/0x800 [ 620.695885][T14665] ? __pfx_dccp_feat_init+0x10/0x10 [ 620.695920][T14665] ? lockdep_init_map_type+0xa0/0x7d0 [ 620.695961][T14665] ? do_init_timer+0xc9/0x110 [ 620.695986][T14665] ? __pfx_dccp_keepalive_timer+0x10/0x10 [ 620.696013][T14665] ? __pfx_dccp_delack_timer+0x10/0x10 [ 620.696044][T14665] dccp_init_sock+0x327/0x420 [ 620.696084][T14665] ? __pfx_dccp_v6_init_sock+0x10/0x10 [ 620.696127][T14665] dccp_v6_init_sock+0x1f/0xd0 [ 620.696166][T14665] ? __pfx_dccp_v6_init_sock+0x10/0x10 [ 620.696207][T14665] inet6_create+0xb53/0x1320 [ 620.696252][T14665] ? inet6_create+0x5d/0x1320 [ 620.696301][T14665] __sock_create+0x335/0x8d0 [ 620.696346][T14665] inet_ctl_sock_create+0x96/0x230 [ 620.696386][T14665] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 620.696434][T14665] ? __pfx_dccp_v6_init_net+0x10/0x10 [ 620.696474][T14665] dccp_v6_init_net+0x63/0x90 [ 620.696515][T14665] ops_init+0x1df/0x5f0 [ 620.696549][T14665] setup_net+0x21f/0x860 [ 620.696581][T14665] ? __pfx_setup_net+0x10/0x10 [ 620.696611][T14665] ? down_read_killable+0xcc/0x380 [ 620.696640][T14665] ? __pfx_down_read_killable+0x10/0x10 [ 620.696681][T14665] ? debug_mutex_init+0x37/0x70 [ 620.696728][T14665] copy_net_ns+0x2b4/0x6c0 [ 620.696766][T14665] create_new_namespaces+0x3ea/0xad0 [ 620.696815][T14665] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 620.696860][T14665] ksys_unshare+0x45d/0xa40 [ 620.696904][T14665] ? __pfx_ksys_unshare+0x10/0x10 [ 620.696946][T14665] ? xfd_validate_state+0x5d/0x180 [ 620.696986][T14665] ? syscall_user_dispatch+0x77/0x140 [ 620.697032][T14665] __x64_sys_unshare+0x31/0x40 [ 620.697077][T14665] do_syscall_64+0xcd/0x250 [ 620.697106][T14665] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 620.697145][T14665] RIP: 0033:0x7f1fb498cda9 [ 620.697167][T14665] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 620.697194][T14665] RSP: 002b:00007f1fb5761038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 620.697220][T14665] RAX: ffffffffffffffda RBX: 00007f1fb4ba5fa0 RCX: 00007f1fb498cda9 [ 620.697239][T14665] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 620.697256][T14665] RBP: 00007f1fb4a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 620.697273][T14665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 620.697289][T14665] R13: 0000000000000000 R14: 00007f1fb4ba5fa0 R15: 00007ffe4476d3b8 [ 620.697324][T14665] [ 621.162321][T14669] nvme_fabrics: missing parameter 'transport=%s' [ 621.183043][T14669] nvme_fabrics: missing parameter 'nqn=%s' [ 621.257643][T14671] FAULT_INJECTION: forcing a failure. [ 621.257643][T14671] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 621.271410][T14671] CPU: 1 UID: 0 PID: 14671 Comm: syz.3.2235 Not tainted 6.14.0-rc1-syzkaller #0 [ 621.271442][T14671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 621.271459][T14671] Call Trace: [ 621.271467][T14671] [ 621.271477][T14671] dump_stack_lvl+0x16c/0x1f0 [ 621.271526][T14671] should_fail_ex+0x50a/0x650 [ 621.271565][T14671] _copy_to_iter+0x4a5/0x1400 [ 621.271612][T14671] ? __pfx__copy_to_iter+0x10/0x10 [ 621.271657][T14671] ? __virt_addr_valid+0x1a4/0x590 [ 621.271687][T14671] ? __virt_addr_valid+0x5e/0x590 [ 621.271713][T14671] ? __phys_addr_symbol+0x30/0x80 [ 621.271749][T14671] ? __check_object_size+0x488/0x710 [ 621.271787][T14671] seq_read_iter+0xd00/0x12b0 [ 621.271844][T14671] seq_read+0x39f/0x4e0 [ 621.271886][T14671] ? __pfx_seq_read+0x10/0x10 [ 621.271928][T14671] ? import_ubuf+0x1b6/0x220 [ 621.271977][T14671] ? bpf_lsm_file_permission+0x9/0x10 [ 621.272011][T14671] ? security_file_permission+0x71/0x210 [ 621.272046][T14671] ? rw_verify_area+0xcf/0x680 [ 621.272089][T14671] ? __pfx_seq_read+0x10/0x10 [ 621.272129][T14671] vfs_readv+0x6c2/0x8a0 [ 621.272169][T14671] ? find_held_lock+0x2d/0x110 [ 621.272227][T14671] ? __pfx_vfs_readv+0x10/0x10 [ 621.272291][T14671] ? find_held_lock+0x2d/0x110 [ 621.272347][T14671] ? __pfx_lock_release+0x10/0x10 [ 621.272384][T14671] ? trace_lock_acquire+0x14e/0x1f0 [ 621.272428][T14671] ? __fget_files+0x206/0x3a0 [ 621.272472][T14671] ? do_readv+0x133/0x340 [ 621.272518][T14671] do_readv+0x133/0x340 [ 621.272568][T14671] ? __pfx_do_readv+0x10/0x10 [ 621.272638][T14671] do_syscall_64+0xcd/0x250 [ 621.272671][T14671] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 621.272716][T14671] RIP: 0033:0x7fc9a178cda9 [ 621.272739][T14671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 621.272769][T14671] RSP: 002b:00007fc9a2535038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 621.272797][T14671] RAX: ffffffffffffffda RBX: 00007fc9a19a6080 RCX: 00007fc9a178cda9 [ 621.272817][T14671] RDX: 0000000000000001 RSI: 0000000020000a80 RDI: 0000000000000003 [ 621.272835][T14671] RBP: 00007fc9a2535090 R08: 0000000000000000 R09: 0000000000000000 [ 621.272853][T14671] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 621.272869][T14671] R13: 0000000000000001 R14: 00007fc9a19a6080 R15: 00007ffc84fd93f8 [ 621.272907][T14671] [ 621.590258][T14673] nvme_fabrics: missing parameter 'transport=%s' [ 621.601662][T14673] nvme_fabrics: missing parameter 'nqn=%s' [ 621.610062][T14675] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2238'. [ 621.903512][T14694] FAULT_INJECTION: forcing a failure. [ 621.903512][T14694] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 621.916748][T14694] CPU: 1 UID: 0 PID: 14694 Comm: syz.3.2244 Not tainted 6.14.0-rc1-syzkaller #0 [ 621.916780][T14694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 621.916796][T14694] Call Trace: [ 621.916804][T14694] [ 621.916814][T14694] dump_stack_lvl+0x16c/0x1f0 [ 621.916861][T14694] should_fail_ex+0x50a/0x650 [ 621.916900][T14694] _copy_to_user+0x32/0xd0 [ 621.916942][T14694] simple_read_from_buffer+0xd0/0x160 [ 621.916988][T14694] proc_fail_nth_read+0x198/0x270 [ 621.917029][T14694] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 621.917072][T14694] ? rw_verify_area+0xcf/0x680 [ 621.917115][T14694] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 621.917155][T14694] vfs_read+0x1df/0xbf0 [ 621.917183][T14694] ? __fget_files+0x1fc/0x3a0 [ 621.917213][T14694] ? __pfx___mutex_lock+0x10/0x10 [ 621.917258][T14694] ? __pfx_vfs_read+0x10/0x10 [ 621.917295][T14694] ? __fget_files+0x206/0x3a0 [ 621.917335][T14694] ksys_read+0x12b/0x250 [ 621.917367][T14694] ? __pfx_ksys_read+0x10/0x10 [ 621.917406][T14694] do_syscall_64+0xcd/0x250 [ 621.917433][T14694] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 621.917472][T14694] RIP: 0033:0x7fc9a178b7bc [ 621.917493][T14694] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 621.917519][T14694] RSP: 002b:00007fc9a2556030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 621.917543][T14694] RAX: ffffffffffffffda RBX: 00007fc9a19a5fa0 RCX: 00007fc9a178b7bc [ 621.917561][T14694] RDX: 000000000000000f RSI: 00007fc9a25560a0 RDI: 0000000000000004 [ 621.917577][T14694] RBP: 00007fc9a2556090 R08: 0000000000000000 R09: 0000000000000000 [ 621.917593][T14694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 621.917608][T14694] R13: 0000000000000000 R14: 00007fc9a19a5fa0 R15: 00007ffc84fd93f8 [ 621.917642][T14694] [ 623.400610][T14728] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2252'. [ 623.507326][T14717] ptrace attach of "./syz-executor exec"[5844] was attempted by "./syz-executor exec"[14717] [ 623.562036][T14730] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2251'. [ 623.573098][T14730] Process accounting resumed [ 623.577973][T14730] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 14730 comm: syz.1.2251) [ 623.720865][T14717] can: request_module (can-proto-0) failed. [ 624.006727][T14744] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2253'. [ 624.068312][T14735] Process accounting resumed [ 624.072978][T14735] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 14735 comm: syz.3.2253) [ 624.561363][T14750] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2256'. [ 624.573861][T14750] Process accounting resumed [ 624.578758][T14750] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 14750 comm: syz.1.2256) [ 624.730923][T14756] FAULT_INJECTION: forcing a failure. [ 624.730923][T14756] name failslab, interval 1, probability 0, space 0, times 0 [ 624.748390][T14756] CPU: 0 UID: 0 PID: 14756 Comm: syz.1.2261 Not tainted 6.14.0-rc1-syzkaller #0 [ 624.748422][T14756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 624.748438][T14756] Call Trace: [ 624.748446][T14756] [ 624.748456][T14756] dump_stack_lvl+0x16c/0x1f0 [ 624.748502][T14756] should_fail_ex+0x50a/0x650 [ 624.748534][T14756] ? fs_reclaim_acquire+0xae/0x150 [ 624.748582][T14756] should_failslab+0xc2/0x120 [ 624.748618][T14756] __kmalloc_node_noprof+0xd1/0x520 [ 624.748653][T14756] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 624.748688][T14756] __kvmalloc_node_noprof+0xad/0x1a0 [ 624.748719][T14756] seq_read_iter+0x82a/0x12b0 [ 624.748775][T14756] seq_read+0x39f/0x4e0 [ 624.748818][T14756] ? __pfx_seq_read+0x10/0x10 [ 624.748879][T14756] ? rw_verify_area+0xcf/0x680 [ 624.748922][T14756] ? __pfx_seq_read+0x10/0x10 [ 624.748965][T14756] vfs_read+0x1df/0xbf0 [ 624.748993][T14756] ? __fget_files+0x1fc/0x3a0 [ 624.749040][T14756] ? __pfx___mutex_lock+0x10/0x10 [ 624.749085][T14756] ? __pfx_vfs_read+0x10/0x10 [ 624.749139][T14756] ? __fget_files+0x206/0x3a0 [ 624.749188][T14756] ksys_read+0x12b/0x250 [ 624.749218][T14756] ? __pfx_ksys_read+0x10/0x10 [ 624.749259][T14756] do_syscall_64+0xcd/0x250 [ 624.749290][T14756] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 624.749331][T14756] RIP: 0033:0x7f1fb498cda9 [ 624.749354][T14756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 624.749382][T14756] RSP: 002b:00007f1fb5761038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 624.749408][T14756] RAX: ffffffffffffffda RBX: 00007f1fb4ba5fa0 RCX: 00007f1fb498cda9 [ 624.749425][T14756] RDX: 0000000000400000 RSI: 0000000000000000 RDI: 0000000000000003 [ 624.749441][T14756] RBP: 00007f1fb5761090 R08: 0000000000000000 R09: 0000000000000000 [ 624.749455][T14756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 624.749470][T14756] R13: 0000000000000000 R14: 00007f1fb4ba5fa0 R15: 00007ffe4476d3b8 [ 624.749506][T14756] [ 625.700035][T14770] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2266'. [ 625.731211][T14770] Process accounting resumed [ 625.768240][T14770] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 14770 comm: syz.1.2266) [ 626.831637][T14791] netlink: 182 bytes leftover after parsing attributes in process `syz.2.2271'. [ 627.437138][T14803] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2264'. [ 627.455348][T14803] Process accounting resumed [ 627.460194][T14803] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 14803 comm: syz.0.2264) [ 627.766494][T14813] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2276'. [ 627.792944][T14813] Process accounting resumed [ 627.797651][T14813] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 14813 comm: syz.1.2276) [ 628.076192][T14824] FAULT_INJECTION: forcing a failure. [ 628.076192][T14824] name failslab, interval 1, probability 0, space 0, times 0 [ 628.133666][T14824] CPU: 0 UID: 0 PID: 14824 Comm: syz.1.2280 Not tainted 6.14.0-rc1-syzkaller #0 [ 628.133706][T14824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 628.133723][T14824] Call Trace: [ 628.133732][T14824] [ 628.133743][T14824] dump_stack_lvl+0x16c/0x1f0 [ 628.133793][T14824] should_fail_ex+0x50a/0x650 [ 628.133826][T14824] ? fs_reclaim_acquire+0xae/0x150 [ 628.133875][T14824] should_failslab+0xc2/0x120 [ 628.133910][T14824] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 628.133943][T14824] ? sk_prot_alloc+0x60/0x2a0 [ 628.133986][T14824] sk_prot_alloc+0x60/0x2a0 [ 628.134025][T14824] sk_alloc+0x36/0xb90 [ 628.134072][T14824] inet6_create+0x380/0x1320 [ 628.134119][T14824] ? inet6_create+0x5d/0x1320 [ 628.134168][T14824] __sock_create+0x335/0x8d0 [ 628.134221][T14824] inet_ctl_sock_create+0x96/0x230 [ 628.134262][T14824] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 628.134311][T14824] ? __pfx_dccp_v6_init_net+0x10/0x10 [ 628.134352][T14824] dccp_v6_init_net+0x63/0x90 [ 628.134393][T14824] ops_init+0x1df/0x5f0 [ 628.134427][T14824] setup_net+0x21f/0x860 [ 628.134460][T14824] ? __pfx_setup_net+0x10/0x10 [ 628.134489][T14824] ? down_read_killable+0xcc/0x380 [ 628.134518][T14824] ? __pfx_down_read_killable+0x10/0x10 [ 628.134551][T14824] ? debug_mutex_init+0x37/0x70 [ 628.134599][T14824] copy_net_ns+0x2b4/0x6c0 [ 628.134636][T14824] create_new_namespaces+0x3ea/0xad0 [ 628.134685][T14824] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 628.134733][T14824] ksys_unshare+0x45d/0xa40 [ 628.134777][T14824] ? __pfx_ksys_unshare+0x10/0x10 [ 628.134819][T14824] ? xfd_validate_state+0x5d/0x180 [ 628.134857][T14824] ? syscall_user_dispatch+0x77/0x140 [ 628.134904][T14824] __x64_sys_unshare+0x31/0x40 [ 628.134947][T14824] do_syscall_64+0xcd/0x250 [ 628.134975][T14824] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 628.135013][T14824] RIP: 0033:0x7f1fb498cda9 [ 628.135034][T14824] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 628.135060][T14824] RSP: 002b:00007f1fb5761038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 628.135087][T14824] RAX: ffffffffffffffda RBX: 00007f1fb4ba5fa0 RCX: 00007f1fb498cda9 [ 628.135105][T14824] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 628.135122][T14824] RBP: 00007f1fb4a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 628.135138][T14824] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 628.135153][T14824] R13: 0000000000000000 R14: 00007f1fb4ba5fa0 R15: 00007ffe4476d3b8 [ 628.135192][T14824] [ 628.966817][T14840] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2281'. [ 628.988072][T14840] Process accounting resumed [ 629.010937][T14840] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 14840 comm: syz.2.2281) [ 629.219078][T14852] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2286'. [ 629.230604][T14852] Process accounting resumed [ 629.235249][T14852] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 14852 comm: syz.3.2286) [ 629.515692][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 629.522111][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 630.307489][T14884] netlink: 182 bytes leftover after parsing attributes in process `syz.0.2293'. [ 630.545997][T14888] FAULT_INJECTION: forcing a failure. [ 630.545997][T14888] name failslab, interval 1, probability 0, space 0, times 0 [ 630.615254][T14888] CPU: 0 UID: 0 PID: 14888 Comm: syz.2.2295 Not tainted 6.14.0-rc1-syzkaller #0 [ 630.615294][T14888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 630.615314][T14888] Call Trace: [ 630.615324][T14888] [ 630.615337][T14888] dump_stack_lvl+0x16c/0x1f0 [ 630.615411][T14888] should_fail_ex+0x50a/0x650 [ 630.615447][T14888] ? fs_reclaim_acquire+0xae/0x150 [ 630.615495][T14888] ? ccid_get_builtin_ccids+0x79/0x200 [ 630.615527][T14888] should_failslab+0xc2/0x120 [ 630.615564][T14888] __kmalloc_cache_noprof+0x68/0x420 [ 630.615604][T14888] ccid_get_builtin_ccids+0x79/0x200 [ 630.615641][T14888] dccp_feat_init+0x363/0x800 [ 630.615682][T14888] ? __pfx_dccp_feat_init+0x10/0x10 [ 630.615719][T14888] ? lockdep_init_map_type+0xa0/0x7d0 [ 630.615761][T14888] ? do_init_timer+0xc9/0x110 [ 630.615787][T14888] ? __pfx_dccp_keepalive_timer+0x10/0x10 [ 630.615815][T14888] ? __pfx_dccp_delack_timer+0x10/0x10 [ 630.615847][T14888] dccp_init_sock+0x327/0x420 [ 630.615890][T14888] ? __pfx_dccp_v6_init_sock+0x10/0x10 [ 630.615934][T14888] dccp_v6_init_sock+0x1f/0xd0 [ 630.615972][T14888] ? __pfx_dccp_v6_init_sock+0x10/0x10 [ 630.616013][T14888] inet6_create+0xb53/0x1320 [ 630.616061][T14888] ? inet6_create+0x5d/0x1320 [ 630.616119][T14888] __sock_create+0x335/0x8d0 [ 630.616168][T14888] inet_ctl_sock_create+0x96/0x230 [ 630.616209][T14888] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 630.616257][T14888] ? __pfx_dccp_v6_init_net+0x10/0x10 [ 630.616306][T14888] dccp_v6_init_net+0x63/0x90 [ 630.616349][T14888] ops_init+0x1df/0x5f0 [ 630.616383][T14888] setup_net+0x21f/0x860 [ 630.616417][T14888] ? __pfx_setup_net+0x10/0x10 [ 630.616447][T14888] ? down_read_killable+0xcc/0x380 [ 630.616477][T14888] ? __pfx_down_read_killable+0x10/0x10 [ 630.616510][T14888] ? debug_mutex_init+0x37/0x70 [ 630.616560][T14888] copy_net_ns+0x2b4/0x6c0 [ 630.616599][T14888] create_new_namespaces+0x3ea/0xad0 [ 630.616649][T14888] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 630.616695][T14888] ksys_unshare+0x45d/0xa40 [ 630.616743][T14888] ? __pfx_ksys_unshare+0x10/0x10 [ 630.616786][T14888] ? xfd_validate_state+0x5d/0x180 [ 630.616826][T14888] ? syscall_user_dispatch+0x77/0x140 [ 630.616877][T14888] __x64_sys_unshare+0x31/0x40 [ 630.616922][T14888] do_syscall_64+0xcd/0x250 [ 630.616952][T14888] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 630.616993][T14888] RIP: 0033:0x7f689878cda9 [ 630.617015][T14888] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 630.617043][T14888] RSP: 002b:00007f68995c9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 630.617071][T14888] RAX: ffffffffffffffda RBX: 00007f68989a5fa0 RCX: 00007f689878cda9 [ 630.617100][T14888] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 630.617118][T14888] RBP: 00007f689880e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 630.617136][T14888] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 630.617154][T14888] R13: 0000000000000000 R14: 00007f68989a5fa0 R15: 00007ffdadde7cc8 [ 630.617191][T14888] [ 631.120988][T14891] FAULT_INJECTION: forcing a failure. [ 631.120988][T14891] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 631.172041][T14891] CPU: 1 UID: 0 PID: 14891 Comm: syz.1.2297 Not tainted 6.14.0-rc1-syzkaller #0 [ 631.172076][T14891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 631.172092][T14891] Call Trace: [ 631.172101][T14891] [ 631.172111][T14891] dump_stack_lvl+0x16c/0x1f0 [ 631.172159][T14891] should_fail_ex+0x50a/0x650 [ 631.172198][T14891] _copy_from_user+0x2e/0xd0 [ 631.172239][T14891] sctp_getsockopt+0x1f55/0x7ae0 [ 631.172303][T14891] ? hlock_class+0x4e/0x130 [ 631.172354][T14891] ? mark_lock+0xb5/0xc60 [ 631.172389][T14891] ? aa_label_sk_perm+0x19d/0x5a0 [ 631.172426][T14891] ? __pfx_sctp_getsockopt+0x10/0x10 [ 631.172471][T14891] ? __lock_acquire+0x15a9/0x3c40 [ 631.172526][T14891] ? __pfx___lock_acquire+0x10/0x10 [ 631.172580][T14891] ? find_held_lock+0x2d/0x110 [ 631.172636][T14891] ? __might_fault+0x13b/0x190 [ 631.172680][T14891] ? __pfx_lock_release+0x10/0x10 [ 631.172744][T14891] ? trace_lock_acquire+0x14e/0x1f0 [ 631.172782][T14891] ? lock_acquire+0x2f/0xb0 [ 631.172819][T14891] ? __might_fault+0xe3/0x190 [ 631.172864][T14891] ? __might_fault+0xe3/0x190 [ 631.172911][T14891] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 631.172958][T14891] ? do_sock_getsockopt+0x3fe/0x870 [ 631.173000][T14891] do_sock_getsockopt+0x3fe/0x870 [ 631.173047][T14891] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 631.173088][T14891] ? lock_acquire+0x2f/0xb0 [ 631.173124][T14891] ? __fget_files+0x40/0x3a0 [ 631.173163][T14891] ? __fget_files+0x206/0x3a0 [ 631.173206][T14891] __sys_getsockopt+0x12f/0x260 [ 631.173248][T14891] __x64_sys_getsockopt+0xbd/0x160 [ 631.173279][T14891] ? do_syscall_64+0x91/0x250 [ 631.173307][T14891] ? lockdep_hardirqs_on+0x7c/0x110 [ 631.173358][T14891] do_syscall_64+0xcd/0x250 [ 631.173390][T14891] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 631.173436][T14891] RIP: 0033:0x7f1fb498cda9 [ 631.173471][T14891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 631.173496][T14891] RSP: 002b:00007f1fb5761038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 631.173520][T14891] RAX: ffffffffffffffda RBX: 00007f1fb4ba5fa0 RCX: 00007f1fb498cda9 [ 631.173537][T14891] RDX: 0000000000000072 RSI: 0000000000000084 RDI: 0000000000000003 [ 631.173552][T14891] RBP: 00007f1fb5761090 R08: 0000000020000100 R09: 0000000000000000 [ 631.173568][T14891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 631.173583][T14891] R13: 0000000000000000 R14: 00007f1fb4ba5fa0 R15: 00007ffe4476d3b8 [ 631.173615][T14891] [ 632.340022][T14862] can: request_module (can-proto-0) failed. [ 632.388910][T14919] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2302'. [ 633.061156][T14937] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2308'. [ 633.062771][T14934] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2307'. [ 633.134916][T14937] Process accounting resumed [ 633.139581][T14937] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 14937 comm: syz.1.2308) [ 633.417959][T14945] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2311'. syzkaller syzkaller login: [ 634.959982][T14977] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2318'. [ 634.972550][T14977] Process accounting resumed [ 634.977192][T14977] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 14977 comm: syz.0.2318) [ 635.077736][T14981] FAULT_INJECTION: forcing a failure. [ 635.077736][T14981] name failslab, interval 1, probability 0, space 0, times 0 [ 635.161087][T14981] CPU: 1 UID: 0 PID: 14981 Comm: syz.1.2320 Not tainted 6.14.0-rc1-syzkaller #0 [ 635.161128][T14981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 635.161146][T14981] Call Trace: [ 635.161155][T14981] [ 635.161167][T14981] dump_stack_lvl+0x16c/0x1f0 [ 635.161222][T14981] should_fail_ex+0x50a/0x650 [ 635.161259][T14981] ? fs_reclaim_acquire+0xae/0x150 [ 635.161313][T14981] should_failslab+0xc2/0x120 [ 635.161353][T14981] __kmalloc_noprof+0xce/0x4f0 [ 635.161390][T14981] ? tomoyo_encode2+0x100/0x3e0 [ 635.161433][T14981] tomoyo_encode2+0x100/0x3e0 [ 635.161474][T14981] tomoyo_realpath_from_path+0x1a7/0x710 [ 635.161535][T14981] ? tomoyo_path_number_perm+0x235/0x5b0 [ 635.161573][T14981] tomoyo_path_number_perm+0x248/0x5b0 [ 635.161604][T14981] ? tomoyo_path_number_perm+0x235/0x5b0 [ 635.161640][T14981] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 635.161709][T14981] ? __pfx_lock_release+0x10/0x10 [ 635.161754][T14981] ? trace_lock_acquire+0x14e/0x1f0 [ 635.161790][T14981] ? lock_acquire+0x2f/0xb0 [ 635.161824][T14981] ? __fget_files+0x40/0x3a0 [ 635.161862][T14981] ? __fget_files+0x206/0x3a0 [ 635.161902][T14981] security_file_ioctl+0x9b/0x240 [ 635.161939][T14981] __x64_sys_ioctl+0xb7/0x200 [ 635.161991][T14981] do_syscall_64+0xcd/0x250 [ 635.162023][T14981] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 635.162068][T14981] RIP: 0033:0x7f1fb498cda9 [ 635.162092][T14981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 635.162128][T14981] RSP: 002b:00007f1fb5761038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 635.162156][T14981] RAX: ffffffffffffffda RBX: 00007f1fb4ba5fa0 RCX: 00007f1fb498cda9 [ 635.162176][T14981] RDX: 0000000000000008 RSI: 000000000000890c RDI: 0000000000000001 [ 635.162198][T14981] RBP: 00007f1fb5761090 R08: 0000000000000000 R09: 0000000000000000 [ 635.162217][T14981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 635.162235][T14981] R13: 0000000000000000 R14: 00007f1fb4ba5fa0 R15: 00007ffe4476d3b8 [ 635.162274][T14981] [ 635.418371][T14981] ERROR: Out of memory at tomoyo_realpath_from_path. [ 635.522301][T14993] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2322'. [ 635.574726][T14993] Process accounting resumed [ 635.579381][T14993] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 14993 comm: syz.3.2322) [ 636.020960][T14996] base or size exceeds the MTRR width [ 636.101271][T14996] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9 [ 637.057836][T15034] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2331'. [ 637.079904][T15034] Process accounting resumed [ 637.103865][T15034] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15034 comm: syz.3.2331) [ 637.721707][T15046] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2336'. [ 637.801292][T15057] Process accounting resumed [ 637.811827][T15057] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15057 comm: syz.3.2336) [ 638.404356][T15064] FAULT_INJECTION: forcing a failure. [ 638.404356][T15064] name failslab, interval 1, probability 0, space 0, times 0 [ 638.428128][T15064] CPU: 0 UID: 0 PID: 15064 Comm: syz.1.2347 Not tainted 6.14.0-rc1-syzkaller #0 [ 638.428165][T15064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 638.428182][T15064] Call Trace: [ 638.428192][T15064] [ 638.428203][T15064] dump_stack_lvl+0x16c/0x1f0 [ 638.428253][T15064] should_fail_ex+0x50a/0x650 [ 638.428288][T15064] ? fs_reclaim_acquire+0xae/0x150 [ 638.428340][T15064] should_failslab+0xc2/0x120 [ 638.428376][T15064] __kmalloc_node_track_caller_noprof+0xcf/0x520 [ 638.428416][T15064] ? sctp_sysctl_net_register+0x30/0x200 [ 638.428452][T15064] ? __pfx_sctp_defaults_init+0x10/0x10 [ 638.428485][T15064] kmemdup_noprof+0x29/0x60 [ 638.428536][T15064] sctp_sysctl_net_register+0x30/0x200 [ 638.428572][T15064] ? __pfx_sctp_defaults_init+0x10/0x10 [ 638.428604][T15064] sctp_defaults_init+0x6c4/0xd80 [ 638.428638][T15064] ? __pfx_sctp_defaults_init+0x10/0x10 [ 638.428669][T15064] ops_init+0x1df/0x5f0 [ 638.428704][T15064] setup_net+0x21f/0x860 [ 638.428738][T15064] ? __pfx_setup_net+0x10/0x10 [ 638.428767][T15064] ? down_read_killable+0xcc/0x380 [ 638.428798][T15064] ? __pfx_down_read_killable+0x10/0x10 [ 638.428830][T15064] ? debug_mutex_init+0x37/0x70 [ 638.428879][T15064] copy_net_ns+0x2b4/0x6c0 [ 638.428917][T15064] create_new_namespaces+0x3ea/0xad0 [ 638.428965][T15064] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 638.429010][T15064] ksys_unshare+0x45d/0xa40 [ 638.429055][T15064] ? __pfx_ksys_unshare+0x10/0x10 [ 638.429099][T15064] ? xfd_validate_state+0x5d/0x180 [ 638.429140][T15064] ? syscall_user_dispatch+0x77/0x140 [ 638.429188][T15064] __x64_sys_unshare+0x31/0x40 [ 638.429231][T15064] do_syscall_64+0xcd/0x250 [ 638.429259][T15064] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 638.429297][T15064] RIP: 0033:0x7f1fb498cda9 [ 638.429319][T15064] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 638.429346][T15064] RSP: 002b:00007f1fb5761038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 638.429368][T15064] RAX: ffffffffffffffda RBX: 00007f1fb4ba5fa0 RCX: 00007f1fb498cda9 [ 638.429383][T15064] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 638.429397][T15064] RBP: 00007f1fb4a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 638.429411][T15064] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 638.429424][T15064] R13: 0000000000000000 R14: 00007f1fb4ba5fa0 R15: 00007ffe4476d3b8 [ 638.429453][T15064] [ 639.754141][T15092] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2344'. [ 639.817224][T15092] Process accounting resumed [ 639.822148][T15092] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15092 comm: syz.3.2344) [ 640.160508][T15100] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2346'. [ 640.259308][T15100] Process accounting resumed [ 640.263989][T15100] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15100 comm: syz.0.2346) [ 640.310954][T15104] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2348'. [ 640.322825][T15104] Process accounting resumed [ 640.327747][T15104] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15104 comm: syz.2.2348) [ 640.792756][T15112] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2350'. [ 640.825752][T15112] syz_tun: left allmulticast mode [ 640.830849][T15112] syz_tun: left promiscuous mode [ 640.851351][T15112] bridge0: port 3(syz_tun) entered disabled state [ 640.927769][T15112] bridge_slave_1: left allmulticast mode [ 640.943758][T15112] bridge_slave_1: left promiscuous mode [ 640.949991][T15112] bridge0: port 2(bridge_slave_1) entered disabled state [ 640.976970][T15112] bridge_slave_0: left allmulticast mode [ 640.982838][T15112] bridge_slave_0: left promiscuous mode [ 641.003333][T15112] bridge0: port 1(bridge_slave_0) entered disabled state [ 641.563594][T15130] FAULT_INJECTION: forcing a failure. [ 641.563594][T15130] name failslab, interval 1, probability 0, space 0, times 0 [ 641.635170][T15130] CPU: 1 UID: 0 PID: 15130 Comm: syz.0.2355 Not tainted 6.14.0-rc1-syzkaller #0 [ 641.635207][T15130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 641.635225][T15130] Call Trace: [ 641.635233][T15130] [ 641.635245][T15130] dump_stack_lvl+0x16c/0x1f0 [ 641.635305][T15130] should_fail_ex+0x50a/0x650 [ 641.635339][T15130] ? fs_reclaim_acquire+0xae/0x150 [ 641.635389][T15130] ? dccp_feat_entry_new+0x1a2/0x380 [ 641.635422][T15130] should_failslab+0xc2/0x120 [ 641.635459][T15130] __kmalloc_cache_noprof+0x68/0x420 [ 641.635488][T15130] ? trace_kmalloc+0x2d/0xd0 [ 641.635528][T15130] ? __kmalloc_node_track_caller_noprof+0x23b/0x520 [ 641.635575][T15130] dccp_feat_entry_new+0x1a2/0x380 [ 641.635614][T15130] __feat_register_sp+0x301/0x520 [ 641.635657][T15130] dccp_feat_init+0x2ae/0x800 [ 641.635697][T15130] ? __pfx_dccp_feat_init+0x10/0x10 [ 641.635734][T15130] ? lockdep_init_map_type+0xa0/0x7d0 [ 641.635776][T15130] ? do_init_timer+0xc9/0x110 [ 641.635802][T15130] ? __pfx_dccp_keepalive_timer+0x10/0x10 [ 641.635828][T15130] ? __pfx_dccp_delack_timer+0x10/0x10 [ 641.635860][T15130] dccp_init_sock+0x327/0x420 [ 641.635901][T15130] ? __pfx_dccp_v6_init_sock+0x10/0x10 [ 641.635945][T15130] dccp_v6_init_sock+0x1f/0xd0 [ 641.635984][T15130] ? __pfx_dccp_v6_init_sock+0x10/0x10 [ 641.636026][T15130] inet6_create+0xb53/0x1320 [ 641.636074][T15130] ? inet6_create+0x5d/0x1320 [ 641.636122][T15130] __sock_create+0x335/0x8d0 [ 641.636168][T15130] inet_ctl_sock_create+0x96/0x230 [ 641.636207][T15130] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 641.636255][T15130] ? __pfx_dccp_v6_init_net+0x10/0x10 [ 641.636307][T15130] dccp_v6_init_net+0x63/0x90 [ 641.636350][T15130] ops_init+0x1df/0x5f0 [ 641.636383][T15130] setup_net+0x21f/0x860 [ 641.636417][T15130] ? __pfx_setup_net+0x10/0x10 [ 641.636445][T15130] ? down_read_killable+0xcc/0x380 [ 641.636476][T15130] ? __pfx_down_read_killable+0x10/0x10 [ 641.636508][T15130] ? debug_mutex_init+0x37/0x70 [ 641.636555][T15130] copy_net_ns+0x2b4/0x6c0 [ 641.636595][T15130] create_new_namespaces+0x3ea/0xad0 [ 641.636644][T15130] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 641.636689][T15130] ksys_unshare+0x45d/0xa40 [ 641.636734][T15130] ? __pfx_ksys_unshare+0x10/0x10 [ 641.636773][T15130] ? xfd_validate_state+0x5d/0x180 [ 641.636809][T15130] ? syscall_user_dispatch+0x77/0x140 [ 641.636856][T15130] __x64_sys_unshare+0x31/0x40 [ 641.636900][T15130] do_syscall_64+0xcd/0x250 [ 641.636930][T15130] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 641.636970][T15130] RIP: 0033:0x7f558fb8cda9 [ 641.636992][T15130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 641.637019][T15130] RSP: 002b:00007f5590a65038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 641.637043][T15130] RAX: ffffffffffffffda RBX: 00007f558fda5fa0 RCX: 00007f558fb8cda9 [ 641.637061][T15130] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 641.637077][T15130] RBP: 00007f558fc0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 641.637093][T15130] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 641.637109][T15130] R13: 0000000000000000 R14: 00007f558fda5fa0 R15: 00007ffcb9a4b718 [ 641.637141][T15130] [ 642.158431][T15137] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2357'. [ 642.176307][T15137] Process accounting resumed [ 642.181057][T15137] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15137 comm: syz.1.2357) [ 642.643685][T15143] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2359'. [ 642.888969][T15153] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2361'. [ 642.909602][T15149] Process accounting resumed [ 642.914255][T15149] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15149 comm: syz.0.2361) [ 643.921331][ T5145] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 643.931897][ T5145] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 643.945191][ T5145] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 643.953932][ T5145] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 643.961651][ T5145] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 643.969141][ T5145] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 644.249001][T15188] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2369'. [ 644.330511][T15192] Process accounting resumed [ 644.336911][T15192] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15192 comm: syz.2.2369) [ 644.504795][T15193] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2370'. [ 644.545277][T15193] Process accounting resumed [ 644.557128][T15193] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15193 comm: syz.1.2370) [ 644.896477][T15178] chnl_net:caif_netlink_parms(): no params data found [ 645.837818][T15178] bridge0: port 1(bridge_slave_0) entered blocking state [ 645.845030][T15178] bridge0: port 1(bridge_slave_0) entered disabled state [ 645.935571][T15178] bridge_slave_0: entered allmulticast mode [ 645.964196][T15178] bridge_slave_0: entered promiscuous mode [ 646.007920][ T5849] Bluetooth: hci0: command tx timeout [ 646.074255][T15178] bridge0: port 2(bridge_slave_1) entered blocking state [ 646.094813][T15178] bridge0: port 2(bridge_slave_1) entered disabled state [ 646.118089][T15178] bridge_slave_1: entered allmulticast mode [ 646.137514][T15178] bridge_slave_1: entered promiscuous mode [ 646.307721][T15178] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 646.364426][T15178] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 646.423274][T15222] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2376'. [ 646.487194][T15222] Process accounting resumed [ 646.507273][T15178] team0: Port device team_slave_0 added [ 646.511244][T15222] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15222 comm: syz.1.2376) [ 646.533970][T15178] team0: Port device team_slave_1 added [ 646.612450][T15178] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 646.634491][T15178] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 646.724431][T15178] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 646.736900][T15229] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2379'. [ 646.762493][T15178] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 646.766212][T15229] Process accounting resumed [ 646.782386][T15178] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 646.788197][T15229] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15229 comm: syz.2.2379) [ 646.872292][T15178] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 647.071346][T15178] hsr_slave_0: entered promiscuous mode [ 647.077728][T15178] hsr_slave_1: entered promiscuous mode [ 647.103257][T15178] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 647.115947][T15178] Cannot create hsr debugfs directory [ 647.408879][T15178] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 647.427770][T15245] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2382'. [ 647.454593][T15245] Process accounting resumed [ 647.466421][T15245] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15245 comm: syz.2.2382) [ 647.570458][T15178] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 647.639788][T15249] netlink: 246 bytes leftover after parsing attributes in process `syz.2.2384'. [ 647.766939][T15178] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 648.080125][T15258] FAULT_INJECTION: forcing a failure. [ 648.080125][T15258] name failslab, interval 1, probability 0, space 0, times 0 [ 648.097839][ T5849] Bluetooth: hci0: command tx timeout [ 648.127667][T15178] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 648.150512][T15258] CPU: 1 UID: 0 PID: 15258 Comm: syz.1.2387 Not tainted 6.14.0-rc1-syzkaller #0 [ 648.150546][T15258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 648.150562][T15258] Call Trace: [ 648.150570][T15258] [ 648.150580][T15258] dump_stack_lvl+0x16c/0x1f0 [ 648.150633][T15258] should_fail_ex+0x50a/0x650 [ 648.150666][T15258] ? fs_reclaim_acquire+0xae/0x150 [ 648.150713][T15258] should_failslab+0xc2/0x120 [ 648.150746][T15258] __kmalloc_noprof+0xce/0x4f0 [ 648.150779][T15258] ? xfrm_hash_alloc+0xd1/0x100 [ 648.150816][T15258] ? __pfx_xfrm_net_init+0x10/0x10 [ 648.150856][T15258] xfrm_hash_alloc+0xd1/0x100 [ 648.150894][T15258] xfrm_state_init+0xde/0x630 [ 648.150936][T15258] ? __pfx_xfrm_net_init+0x10/0x10 [ 648.150974][T15258] xfrm_net_init+0x211/0xcb0 [ 648.151019][T15258] ? __pfx_xfrm_net_init+0x10/0x10 [ 648.151058][T15258] ops_init+0x1df/0x5f0 [ 648.151091][T15258] setup_net+0x21f/0x860 [ 648.151123][T15258] ? __pfx_setup_net+0x10/0x10 [ 648.151150][T15258] ? down_read_killable+0xcc/0x380 [ 648.151178][T15258] ? __pfx_down_read_killable+0x10/0x10 [ 648.151207][T15258] ? debug_mutex_init+0x37/0x70 [ 648.151254][T15258] copy_net_ns+0x2b4/0x6c0 [ 648.151290][T15258] create_new_namespaces+0x3ea/0xad0 [ 648.151336][T15258] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 648.151380][T15258] ksys_unshare+0x45d/0xa40 [ 648.151424][T15258] ? __pfx_ksys_unshare+0x10/0x10 [ 648.151465][T15258] ? xfd_validate_state+0x5d/0x180 [ 648.151512][T15258] __x64_sys_unshare+0x31/0x40 [ 648.151557][T15258] do_syscall_64+0xcd/0x250 [ 648.151585][T15258] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 648.151628][T15258] RIP: 0033:0x7f1fb498cda9 [ 648.151649][T15258] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 648.151675][T15258] RSP: 002b:00007f1fb5761038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 648.151700][T15258] RAX: ffffffffffffffda RBX: 00007f1fb4ba5fa0 RCX: 00007f1fb498cda9 [ 648.151717][T15258] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 648.151732][T15258] RBP: 00007f1fb4a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 648.151747][T15258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 648.151762][T15258] R13: 0000000000000000 R14: 00007f1fb4ba5fa0 R15: 00007ffe4476d3b8 [ 648.151794][T15258] [ 648.419150][T15178] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 648.441858][T15178] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 648.473653][T15178] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 648.553341][T15178] 8021q: adding VLAN 0 to HW filter on device bond0 [ 648.570024][T15178] 8021q: adding VLAN 0 to HW filter on device team0 [ 648.601658][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 648.608810][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 648.655146][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 648.662341][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 648.693026][T15178] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 648.706186][T15178] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 649.175929][T15178] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 649.241787][T15276] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2389'. [ 649.252683][T15178] veth0_vlan: entered promiscuous mode [ 649.281690][T15178] veth1_vlan: entered promiscuous mode [ 649.297219][T15273] Process accounting resumed [ 649.302401][T15273] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15273 comm: syz.2.2389) [ 649.372266][T15178] veth0_macvtap: entered promiscuous mode [ 649.385576][T15178] veth1_macvtap: entered promiscuous mode [ 649.443853][T15178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 649.455127][T15178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 649.467326][T15178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 649.478720][T15178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 649.489445][T15178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 649.500422][T15178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 649.512133][T15178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 649.523933][T15178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 649.560873][T15178] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 649.591354][T15178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 649.617297][T15178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 649.630073][T15178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 649.641003][T15178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 649.659836][T15178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 649.679708][T15178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 649.689547][T15178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 649.712789][T15178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 649.724223][T15178] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 649.746382][T15178] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 649.765441][T15178] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 649.785031][T15178] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 649.822241][T15178] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 649.987330][ T6780] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 650.003176][ T6780] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 650.036011][T15286] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2397'. [ 650.048936][T15286] Process accounting resumed [ 650.050295][ T6794] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 650.054666][T15286] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15286 comm: syz.1.2397) [ 650.081726][ T6794] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 650.164672][ T5849] Bluetooth: hci0: command tx timeout [ 650.662276][T15298] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2372'. [ 650.680249][T15298] net veth1_virt_wifi ›: renamed from virt_wifi0 [ 650.730394][T15300] ICMPv6: process `syz.0.2372' is using deprecated sysctl (syscall) net.ipv6.neigh.›.retrans_time - use net.ipv6.neigh.›.retrans_time_ms instead [ 650.789587][T15298] Process accounting resumed [ 650.810374][T15298] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15298 comm: syz.0.2372) [ 651.052323][T15306] FAULT_INJECTION: forcing a failure. [ 651.052323][T15306] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 651.084849][T15302] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2392'. [ 651.098194][T15302] Process accounting resumed [ 651.104327][T15302] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15302 comm: syz.2.2392) [ 651.111101][T15306] CPU: 0 UID: 0 PID: 15306 Comm: syz.0.2395 Not tainted 6.14.0-rc1-syzkaller #0 [ 651.111135][T15306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 651.111152][T15306] Call Trace: [ 651.111161][T15306] [ 651.111171][T15306] dump_stack_lvl+0x16c/0x1f0 [ 651.111221][T15306] should_fail_ex+0x50a/0x650 [ 651.111262][T15306] _copy_to_iter+0x29b/0x1400 [ 651.111303][T15306] ? trace_lock_acquire+0x14e/0x1f0 [ 651.111331][T15306] ? __pfx_lock_release+0x10/0x10 [ 651.111366][T15306] ? __pfx__copy_to_iter+0x10/0x10 [ 651.111412][T15306] ? __virt_addr_valid+0x1a4/0x590 [ 651.111445][T15306] ? __virt_addr_valid+0x5e/0x590 [ 651.111472][T15306] ? __phys_addr_symbol+0x30/0x80 [ 651.111515][T15306] ? __check_object_size+0x488/0x710 [ 651.111557][T15306] seq_read_iter+0xd00/0x12b0 [ 651.111615][T15306] kernfs_fop_read_iter+0x414/0x580 [ 651.111651][T15306] ? rw_verify_area+0xcf/0x680 [ 651.111697][T15306] vfs_read+0x886/0xbf0 [ 651.111731][T15306] ? __pfx_vfs_read+0x10/0x10 [ 651.111781][T15306] ksys_read+0x12b/0x250 [ 651.111808][T15306] ? __pfx_ksys_read+0x10/0x10 [ 651.111846][T15306] do_syscall_64+0xcd/0x250 [ 651.111875][T15306] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 651.111914][T15306] RIP: 0033:0x7f9a0138cda9 [ 651.111936][T15306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 651.111963][T15306] RSP: 002b:00007f9a0228b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 651.111989][T15306] RAX: ffffffffffffffda RBX: 00007f9a015a5fa0 RCX: 00007f9a0138cda9 [ 651.112007][T15306] RDX: 00000000000000a8 RSI: 0000000020003800 RDI: 0000000000000003 [ 651.112023][T15306] RBP: 00007f9a0228b090 R08: 0000000000000000 R09: 0000000000000000 [ 651.112040][T15306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 651.112056][T15306] R13: 0000000000000000 R14: 00007f9a015a5fa0 R15: 00007ffe1c16a228 [ 651.112091][T15306] [ 651.436047][ T5145] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 651.446382][ T5145] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 651.458032][ T5145] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 651.468614][ T5145] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 651.501786][ T5145] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 651.510310][ T5145] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 651.949387][T15314] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2399'. [ 652.213754][T15309] chnl_net:caif_netlink_parms(): no params data found [ 652.241423][ T5849] Bluetooth: hci0: command tx timeout [ 652.304987][ T29] audit: type=1804 audit(6033563696.975:19): pid=15324 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.2402" name="/newroot/sys/kernel/tracing/dynamic_events" dev="tracefs" ino=1047 res=1 errno=0 [ 652.559221][T15309] bridge0: port 1(bridge_slave_0) entered blocking state [ 652.576071][T15309] bridge0: port 1(bridge_slave_0) entered disabled state [ 652.591497][T15309] bridge_slave_0: entered allmulticast mode [ 652.598635][T15309] bridge_slave_0: entered promiscuous mode [ 652.614884][T15309] bridge0: port 2(bridge_slave_1) entered blocking state [ 652.624244][T15309] bridge0: port 2(bridge_slave_1) entered disabled state [ 652.633659][T15309] bridge_slave_1: entered allmulticast mode [ 652.640824][T15309] bridge_slave_1: entered promiscuous mode [ 652.714080][T15309] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 652.737394][T15309] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 652.796517][T15309] team0: Port device team_slave_0 added [ 652.823706][T15309] team0: Port device team_slave_1 added [ 652.892944][T15309] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 652.899943][T15309] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 652.957856][T15309] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 653.010241][T15309] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 653.021435][T15309] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 653.069252][T15309] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 653.196835][T15309] hsr_slave_0: entered promiscuous mode [ 653.220552][T15309] hsr_slave_1: entered promiscuous mode [ 653.238010][T15309] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 653.254727][T15309] Cannot create hsr debugfs directory [ 653.540818][T15309] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 653.553572][T15335] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2404'. [ 653.602070][ T5849] Bluetooth: hci4: command tx timeout [ 653.619920][T15340] Process accounting resumed [ 653.624914][T15340] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15340 comm: syz.2.2404) [ 653.830840][T15343] FAULT_INJECTION: forcing a failure. [ 653.830840][T15343] name failslab, interval 1, probability 0, space 0, times 0 [ 653.855968][T15309] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 653.903624][T15343] CPU: 0 UID: 0 PID: 15343 Comm: syz.0.2406 Not tainted 6.14.0-rc1-syzkaller #0 [ 653.903661][T15343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 653.903680][T15343] Call Trace: [ 653.903689][T15343] [ 653.903700][T15343] dump_stack_lvl+0x16c/0x1f0 [ 653.903751][T15343] should_fail_ex+0x50a/0x650 [ 653.903787][T15343] ? fs_reclaim_acquire+0xae/0x150 [ 653.903837][T15343] should_failslab+0xc2/0x120 [ 653.903875][T15343] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 653.903910][T15343] ? __kernfs_new_node+0xd3/0x890 [ 653.903962][T15343] __kernfs_new_node+0xd3/0x890 [ 653.904012][T15343] ? __pfx___kernfs_new_node+0x10/0x10 [ 653.904058][T15343] ? __pfx_lock_release+0x10/0x10 [ 653.904092][T15343] ? kernfs_add_one+0x39d/0x520 [ 653.904135][T15343] ? up_write+0x1b2/0x520 [ 653.904179][T15343] kernfs_new_node+0x186/0x240 [ 653.904217][T15343] __kernfs_create_file+0x53/0x350 [ 653.904261][T15343] sysfs_add_file_mode_ns+0x1ff/0x3b0 [ 653.904313][T15343] sysfs_merge_group+0x1b1/0x340 [ 653.904343][T15343] ? __pfx_sysfs_merge_group+0x10/0x10 [ 653.904377][T15343] ? __pfx_dev_add_physical_location+0x10/0x10 [ 653.904412][T15343] ? bus_to_subsys+0x12d/0x160 [ 653.904471][T15343] dpm_sysfs_add+0x237/0x280 [ 653.904509][T15343] device_add+0x9a8/0x1a70 [ 653.904552][T15343] ? __pfx_device_add+0x10/0x10 [ 653.904595][T15343] ? __init_waitqueue_head+0xca/0x150 [ 653.904650][T15343] rfkill_register+0x1ad/0xb40 [ 653.904688][T15343] nfc_register_device+0x11f/0x3c0 [ 653.904735][T15343] nci_register_device+0x7f4/0xb80 [ 653.904773][T15343] ? __pfx_nci_register_device+0x10/0x10 [ 653.904824][T15343] virtual_ncidev_open+0x141/0x220 [ 653.904864][T15343] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 653.904904][T15343] misc_open+0x35a/0x420 [ 653.904939][T15343] ? __pfx_misc_open+0x10/0x10 [ 653.904972][T15343] chrdev_open+0x237/0x6a0 [ 653.905005][T15343] ? __pfx_apparmor_file_open+0x10/0x10 [ 653.905036][T15343] ? __pfx_chrdev_open+0x10/0x10 [ 653.905073][T15343] ? file_set_fsnotify_mode+0x163/0x5d0 [ 653.905123][T15343] do_dentry_open+0x735/0x1c40 [ 653.905154][T15343] ? __pfx_chrdev_open+0x10/0x10 [ 653.905189][T15343] ? inode_permission+0xdd/0x5f0 [ 653.905233][T15343] vfs_open+0x82/0x3f0 [ 653.905268][T15343] ? may_open+0x1f2/0x400 [ 653.905311][T15343] path_openat+0x1e88/0x2d80 [ 653.905357][T15343] ? __pfx_path_openat+0x10/0x10 [ 653.905388][T15343] ? __pfx___lock_acquire+0x10/0x10 [ 653.905421][T15343] ? lock_acquire.part.0+0x11b/0x380 [ 653.905456][T15343] ? find_held_lock+0x2d/0x110 [ 653.905512][T15343] do_filp_open+0x20c/0x470 [ 653.905544][T15343] ? __pfx_do_filp_open+0x10/0x10 [ 653.905574][T15343] ? find_held_lock+0x2d/0x110 [ 653.905643][T15343] ? alloc_fd+0x41f/0x760 [ 653.905684][T15343] do_sys_openat2+0x17a/0x1e0 [ 653.905722][T15343] ? __pfx_do_sys_openat2+0x10/0x10 [ 653.905763][T15343] ? __sys_sendmsg+0x19a/0x220 [ 653.905801][T15343] __x64_sys_openat+0x175/0x210 [ 653.905859][T15343] ? __pfx___x64_sys_openat+0x10/0x10 [ 653.905918][T15343] do_syscall_64+0xcd/0x250 [ 653.905949][T15343] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 653.905992][T15343] RIP: 0033:0x7f9a0138cda9 [ 653.906016][T15343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 653.906046][T15343] RSP: 002b:00007f9a0228b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 653.906074][T15343] RAX: ffffffffffffffda RBX: 00007f9a015a5fa0 RCX: 00007f9a0138cda9 [ 653.906094][T15343] RDX: 0000000000000002 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 653.906112][T15343] RBP: 00007f9a0140e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 653.906130][T15343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 653.906147][T15343] R13: 0000000000000000 R14: 00007f9a015a5fa0 R15: 00007ffe1c16a228 [ 653.906194][T15343] [ 654.347467][T15343] [ 654.605756][T15309] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 654.788364][T15309] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 654.849816][T15355] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2409'. [ 654.859019][T15355] bridge_slave_1: left allmulticast mode [ 654.866172][T15355] bridge_slave_1: left promiscuous mode [ 654.872009][T15355] bridge0: port 2(bridge_slave_1) entered disabled state [ 654.881084][T15355] bridge_slave_0: left allmulticast mode [ 654.887248][T15355] bridge_slave_0: left promiscuous mode [ 654.893171][T15355] bridge0: port 1(bridge_slave_0) entered disabled state [ 654.903285][T15359] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2410'. [ 655.039758][T15309] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 655.060742][T15309] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 655.088065][T15309] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 655.114954][T15309] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 655.226238][T15309] 8021q: adding VLAN 0 to HW filter on device bond0 [ 655.273469][T15309] 8021q: adding VLAN 0 to HW filter on device team0 [ 655.295032][T12661] bridge0: port 1(bridge_slave_0) entered blocking state [ 655.302225][T12661] bridge0: port 1(bridge_slave_0) entered forwarding state [ 655.350791][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 655.357914][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 655.682806][ T5849] Bluetooth: hci4: command tx timeout [ 655.837601][T15309] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 655.955105][T15309] veth0_vlan: entered promiscuous mode [ 655.971274][T15309] veth1_vlan: entered promiscuous mode [ 656.053282][T15309] veth0_macvtap: entered promiscuous mode [ 656.071071][T15309] veth1_macvtap: entered promiscuous mode [ 656.112764][T15309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 656.160220][T15309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 656.182014][T15309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 656.196105][T15309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 656.232948][T15309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 656.279170][T15309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 656.298114][T15389] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2415'. [ 656.310999][T15309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 656.327974][T15309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 656.348184][T15309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 656.373541][T15309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 656.389601][T15390] Process accounting resumed [ 656.394281][T15390] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15390 comm: syz.3.2415) [ 656.414684][T15309] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 656.485186][T15309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 656.503791][T15309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 656.522168][T15309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 656.535625][T15309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 656.545781][T15309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 656.556568][T15309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 656.583278][T15309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 656.613285][T15309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 656.638164][T15309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 656.641278][T15397] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2420'. [ 656.658750][T15309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 656.682798][T15309] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 656.715753][T15309] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 656.733742][T15309] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 656.748734][T15309] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 656.758957][T15309] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 656.888040][T12661] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 656.923343][T12661] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 656.987905][ T6783] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 656.997877][ T6783] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 657.505979][T15409] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2421'. [ 657.519343][T15409] Process accounting resumed [ 657.524160][T15409] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15409 comm: syz.2.2421) [ 657.764786][ T5849] Bluetooth: hci4: command tx timeout [ 657.969777][ T5145] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 657.979274][ T5145] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 657.987444][ T5145] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 657.997416][ T5145] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 658.018220][ T5145] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 658.032502][ T5145] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 658.163416][T15426] netlink: 338 bytes leftover after parsing attributes in process `syz.2.2428'. [ 658.434739][T15431] FAULT_INJECTION: forcing a failure. [ 658.434739][T15431] name failslab, interval 1, probability 0, space 0, times 0 [ 658.458542][T15431] CPU: 1 UID: 0 PID: 15431 Comm: syz.2.2429 Not tainted 6.14.0-rc1-syzkaller #0 [ 658.458579][T15431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 658.458596][T15431] Call Trace: [ 658.458605][T15431] [ 658.458616][T15431] dump_stack_lvl+0x16c/0x1f0 [ 658.458666][T15431] should_fail_ex+0x50a/0x650 [ 658.458701][T15431] ? fs_reclaim_acquire+0xae/0x150 [ 658.458750][T15431] should_failslab+0xc2/0x120 [ 658.458786][T15431] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 658.458820][T15431] ? __kernfs_new_node+0xd3/0x890 [ 658.458870][T15431] __kernfs_new_node+0xd3/0x890 [ 658.458926][T15431] ? __pfx___kernfs_new_node+0x10/0x10 [ 658.458971][T15431] ? __pfx_lock_release+0x10/0x10 [ 658.459005][T15431] ? kernfs_add_one+0x39d/0x520 [ 658.459046][T15431] ? up_write+0x1b2/0x520 [ 658.459087][T15431] kernfs_new_node+0x186/0x240 [ 658.459123][T15431] __kernfs_create_file+0x53/0x350 [ 658.459165][T15431] sysfs_add_file_mode_ns+0x1ff/0x3b0 [ 658.459218][T15431] sysfs_merge_group+0x1b1/0x340 [ 658.459247][T15431] ? __pfx_sysfs_merge_group+0x10/0x10 [ 658.459280][T15431] ? __pfx_dev_add_physical_location+0x10/0x10 [ 658.459315][T15431] ? bus_to_subsys+0x12d/0x160 [ 658.459365][T15431] dpm_sysfs_add+0x237/0x280 [ 658.459401][T15431] device_add+0x9a8/0x1a70 [ 658.459444][T15431] ? __pfx_device_add+0x10/0x10 [ 658.459486][T15431] ? __init_waitqueue_head+0xca/0x150 [ 658.459541][T15431] rfkill_register+0x1ad/0xb40 [ 658.459578][T15431] nfc_register_device+0x11f/0x3c0 [ 658.459624][T15431] nci_register_device+0x7f4/0xb80 [ 658.459661][T15431] ? __pfx_nci_register_device+0x10/0x10 [ 658.459711][T15431] virtual_ncidev_open+0x141/0x220 [ 658.459751][T15431] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 658.459790][T15431] misc_open+0x35a/0x420 [ 658.459825][T15431] ? __pfx_misc_open+0x10/0x10 [ 658.459859][T15431] chrdev_open+0x237/0x6a0 [ 658.459891][T15431] ? __pfx_apparmor_file_open+0x10/0x10 [ 658.459932][T15431] ? __pfx_chrdev_open+0x10/0x10 [ 658.459970][T15431] ? file_set_fsnotify_mode+0x163/0x5d0 [ 658.460020][T15431] do_dentry_open+0x735/0x1c40 [ 658.460051][T15431] ? __pfx_chrdev_open+0x10/0x10 [ 658.460086][T15431] ? inode_permission+0xdd/0x5f0 [ 658.460129][T15431] vfs_open+0x82/0x3f0 [ 658.460164][T15431] ? may_open+0x1f2/0x400 [ 658.460209][T15431] path_openat+0x1e88/0x2d80 [ 658.460254][T15431] ? __pfx_path_openat+0x10/0x10 [ 658.460284][T15431] ? __pfx___lock_acquire+0x10/0x10 [ 658.460316][T15431] ? lock_acquire.part.0+0x11b/0x380 [ 658.460350][T15431] ? find_held_lock+0x2d/0x110 [ 658.460396][T15431] do_filp_open+0x20c/0x470 [ 658.460427][T15431] ? __pfx_do_filp_open+0x10/0x10 [ 658.460456][T15431] ? find_held_lock+0x2d/0x110 [ 658.460525][T15431] ? alloc_fd+0x41f/0x760 [ 658.460566][T15431] do_sys_openat2+0x17a/0x1e0 [ 658.460603][T15431] ? __pfx_do_sys_openat2+0x10/0x10 [ 658.460644][T15431] ? __sys_sendmsg+0x19a/0x220 [ 658.460683][T15431] __x64_sys_openat+0x175/0x210 [ 658.460723][T15431] ? __pfx___x64_sys_openat+0x10/0x10 [ 658.460778][T15431] do_syscall_64+0xcd/0x250 [ 658.460808][T15431] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 658.460848][T15431] RIP: 0033:0x7f689878cda9 [ 658.460870][T15431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 658.460898][T15431] RSP: 002b:00007f68995c9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 658.460930][T15431] RAX: ffffffffffffffda RBX: 00007f68989a5fa0 RCX: 00007f689878cda9 [ 658.460948][T15431] RDX: 0000000000000002 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 658.460966][T15431] RBP: 00007f689880e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 658.460983][T15431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 658.461000][T15431] R13: 0000000000000000 R14: 00007f68989a5fa0 R15: 00007ffdadde7cc8 [ 658.461035][T15431] [ 658.490750][T15422] chnl_net:caif_netlink_parms(): no params data found [ 658.645932][T15431] [ 658.714241][T15433] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2427'. [ 658.904564][T15440] ICMPv6: process `syz.1.2427' is using deprecated sysctl (syscall) net.ipv6.neigh.virt_wifi0.retrans_time - use net.ipv6.neigh.virt_wifi0.retrans_time_ms instead [ 658.938920][T15420] Process accounting resumed [ 658.943579][T15420] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15420 comm: syz.1.2427) [ 659.193147][T15433] net veth1_virt_wifi ›: renamed from virt_wifi0 [ 659.544007][T15422] bridge0: port 1(bridge_slave_0) entered blocking state [ 659.560893][T15422] bridge0: port 1(bridge_slave_0) entered disabled state [ 659.569969][T15422] bridge_slave_0: entered allmulticast mode [ 659.591944][T15422] bridge_slave_0: entered promiscuous mode [ 659.611539][T15422] bridge0: port 2(bridge_slave_1) entered blocking state [ 659.634787][T15422] bridge0: port 2(bridge_slave_1) entered disabled state [ 659.642008][T15422] bridge_slave_1: entered allmulticast mode [ 659.682420][T15422] bridge_slave_1: entered promiscuous mode [ 659.844835][ T5849] Bluetooth: hci4: command tx timeout [ 659.923055][T15422] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 659.965573][T15422] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 659.981284][T15424] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 659.995043][T15424] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 660.004975][T15424] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 660.072076][T15424] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 660.085407][ T5849] Bluetooth: hci1: command tx timeout [ 660.099385][T15424] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 660.105948][T15422] team0: Port device team_slave_0 added [ 660.115008][T15424] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 660.123973][T15424] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 660.148646][T15424] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 660.154621][T15422] team0: Port device team_slave_1 added [ 660.165930][T15424] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 660.193269][T15424] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 660.386678][T15422] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 660.393677][T15422] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 660.495218][T15422] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 660.649756][T15422] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 660.655327][T15462] can: request_module (can-proto-5) failed. [ 660.675451][T15422] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 660.735691][T15422] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 660.745395][T15467] netlink: 338 bytes leftover after parsing attributes in process `syz.2.2436'. [ 660.956109][T15422] hsr_slave_0: entered promiscuous mode [ 660.962641][T15422] hsr_slave_1: entered promiscuous mode [ 661.006007][T15422] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 661.013612][T15422] Cannot create hsr debugfs directory [ 661.357527][T15476] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2438'. [ 661.387286][T15476] Process accounting resumed [ 661.415933][T15476] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15476 comm: syz.2.2438) [ 661.560421][T15422] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 661.699089][T15422] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 661.838265][T15422] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 662.006313][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout [ 662.012471][ T5145] Bluetooth: hci3: command 0x0419 tx timeout [ 662.097666][T15422] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 662.176511][ T5145] Bluetooth: hci1: command 0x040f tx timeout [ 662.177682][ T5849] Bluetooth: hci4: command 0x0c1a tx timeout [ 662.215445][T15492] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2439'. [ 662.242536][T15493] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2441'. [ 662.254800][T15492] Process accounting resumed [ 662.256403][T15493] Process accounting resumed [ 662.264147][T15493] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15493 comm: syz.2.2441) [ 662.265954][T15492] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15492 comm: syz.0.2439) [ 662.613023][T15422] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 662.679219][T15422] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 662.799611][T15422] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 662.900679][T15422] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 663.166153][T15422] 8021q: adding VLAN 0 to HW filter on device bond0 [ 663.229482][T15422] 8021q: adding VLAN 0 to HW filter on device team0 [ 663.263959][ T6797] bridge0: port 1(bridge_slave_0) entered blocking state [ 663.272362][ T6797] bridge0: port 1(bridge_slave_0) entered forwarding state [ 663.321173][ T6797] bridge0: port 2(bridge_slave_1) entered blocking state [ 663.328355][ T6797] bridge0: port 2(bridge_slave_1) entered forwarding state [ 663.875607][T15422] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 663.996179][T15422] veth0_vlan: entered promiscuous mode [ 664.025336][T15523] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2447'. [ 664.059083][T15422] veth1_vlan: entered promiscuous mode [ 664.088116][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout [ 664.110026][T15509] Process accounting resumed [ 664.114666][T15509] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15509 comm: syz.0.2447) [ 664.123172][T15422] veth0_macvtap: entered promiscuous mode [ 664.171436][T15422] veth1_macvtap: entered promiscuous mode [ 664.256760][ T5849] Bluetooth: hci4: command 0x0c1a tx timeout [ 664.256769][ T5145] Bluetooth: hci1: command 0x040f tx timeout [ 664.281770][T15422] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 664.331459][T15422] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 664.349637][T15422] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 664.371867][T15422] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 664.385501][T15422] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 664.405939][T15422] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 664.426858][T15422] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 664.448792][T15422] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 664.467039][T15422] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 664.486441][T15422] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 664.496946][T15422] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 664.516051][T15422] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 664.541041][T15422] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 664.561610][T15422] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 664.585988][T15422] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 664.607370][T15422] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 664.627297][T15422] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 664.647126][T15422] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 664.658134][T15422] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 664.697159][T15422] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 664.737163][T15422] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 664.747011][T15422] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 664.784812][T15422] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 664.807229][T15422] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 664.827211][T15422] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 664.848547][T15422] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 664.878569][T15422] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 664.907277][T15422] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 664.929379][T15422] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 664.942146][T15422] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 665.255389][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 665.278382][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 665.330944][T15535] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2452'. [ 665.397605][T12662] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 665.405460][T12662] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 665.413146][T15531] Process accounting resumed [ 665.430824][T15531] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15531 comm: syz.0.2452) [ 665.690671][T15525] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2451'. [ 665.713155][T15525] Process accounting resumed [ 665.736338][T15525] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15525 comm: syz.1.2451) [ 666.017282][T15538] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2454'. [ 666.039784][T15538] Process accounting resumed [ 666.044435][T15538] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15538 comm: syz.2.2454) [ 666.168250][ T5145] Bluetooth: hci0: command 0x0c1a tx timeout [ 666.328841][ T5145] Bluetooth: hci1: command 0x040f tx timeout [ 666.329710][ T5849] Bluetooth: hci4: command 0x0c1a tx timeout [ 666.875363][T15557] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2463'. [ 666.940252][T15553] Process accounting resumed [ 666.949159][T15553] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15553 comm: syz.1.2463) [ 666.958727][ T5145] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 666.979673][ T5145] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 666.989333][ T5145] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 666.997828][ T5145] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 667.006520][ T5145] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 667.014088][ T5145] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 667.336167][T15561] chnl_net:caif_netlink_parms(): no params data found [ 667.465656][T15558] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2459'. [ 667.516498][T15567] Process accounting resumed [ 667.521243][T15567] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15567 comm: syz.0.2459) [ 667.780111][T15561] bridge0: port 1(bridge_slave_0) entered blocking state [ 667.797926][T15561] bridge0: port 1(bridge_slave_0) entered disabled state [ 667.808913][T15561] bridge_slave_0: entered allmulticast mode [ 667.839319][T15561] bridge_slave_0: entered promiscuous mode [ 667.870462][T15561] bridge0: port 2(bridge_slave_1) entered blocking state [ 667.877577][T15561] bridge0: port 2(bridge_slave_1) entered disabled state [ 667.898243][T15561] bridge_slave_1: entered allmulticast mode [ 667.919871][T15561] bridge_slave_1: entered promiscuous mode [ 668.033869][T15561] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 668.079573][T15561] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 668.157136][T15561] team0: Port device team_slave_0 added [ 668.187317][T15561] team0: Port device team_slave_1 added [ 668.270047][T15561] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 668.277028][T15561] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 668.316319][T15561] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 668.419174][ T5849] Bluetooth: hci1: command 0x040f tx timeout [ 668.421156][T15561] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 668.448723][T15591] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2466'. [ 668.480430][T15561] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 668.513041][T15598] Process accounting resumed [ 668.517793][T15598] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15598 comm: syz.0.2466) [ 668.599038][T15561] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 668.612582][T15601] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2468'. [ 668.641546][T15595] Process accounting resumed [ 668.646480][T15595] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15595 comm: syz.1.2468) [ 668.767181][T15561] hsr_slave_0: entered promiscuous mode [ 668.786164][T15561] hsr_slave_1: entered promiscuous mode [ 668.796040][T15561] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 668.813946][T15561] Cannot create hsr debugfs directory [ 668.833888][T15597] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2469'. [ 668.865201][T15597] net veth1_virt_wifi ›: renamed from virt_wifi0 [ 668.906124][T15597] Process accounting resumed [ 668.913942][T15597] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15597 comm: syz.3.2469) [ 669.051203][ T5849] Bluetooth: hci2: command tx timeout [ 669.104066][T15608] WARNING! power/level is deprecated; use power/control instead [ 669.350900][T15615] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2472'. [ 669.384959][T15561] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 669.424632][T15610] Process accounting resumed [ 669.429985][T15610] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15610 comm: syz.3.2472) [ 669.564071][T15561] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 669.584218][T15620] size and base must be multiples of 4 kiB [ 669.619816][T15620] CPU: 0 UID: 0 PID: 15620 Comm: syz.0.2475 Not tainted 6.14.0-rc1-syzkaller #0 [ 669.619859][T15620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 669.619880][T15620] Call Trace: [ 669.619889][T15620] [ 669.619902][T15620] dump_stack_lvl+0x16c/0x1f0 [ 669.619956][T15620] mtrr_add+0xdf/0x110 [ 669.619995][T15620] mtrr_ioctl+0x7cd/0xcd0 [ 669.620034][T15620] ? __pfx_mtrr_ioctl+0x10/0x10 [ 669.620077][T15620] ? __pfx_lock_release+0x10/0x10 [ 669.620118][T15620] ? ksys_semctl.constprop.0+0x150/0x2e0 [ 669.620182][T15620] ? __fget_files+0x206/0x3a0 [ 669.620227][T15620] ? __pfx_mtrr_ioctl+0x10/0x10 [ 669.620266][T15620] proc_reg_unlocked_ioctl+0x226/0x320 [ 669.620300][T15620] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 669.620340][T15620] __x64_sys_ioctl+0x190/0x200 [ 669.620391][T15620] do_syscall_64+0xcd/0x250 [ 669.620424][T15620] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 669.620469][T15620] RIP: 0033:0x7f9a0138cda9 [ 669.620504][T15620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 669.620550][T15620] RSP: 002b:00007f9a0228b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 669.620579][T15620] RAX: ffffffffffffffda RBX: 00007f9a015a5fa0 RCX: 00007f9a0138cda9 [ 669.620599][T15620] RDX: 0000000000000007 RSI: 00000000400c4d01 RDI: 0000000000000004 [ 669.620618][T15620] RBP: 00007f9a0140e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 669.620637][T15620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 669.620655][T15620] R13: 0000000000000000 R14: 00007f9a015a5fa0 R15: 00007ffe1c16a228 [ 669.620703][T15620] [ 669.818710][T15627] netlink: 338 bytes leftover after parsing attributes in process `syz.1.2477'. [ 669.939698][T15561] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 670.072543][T15561] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 670.333985][T15561] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 670.360716][T15561] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 670.376177][T15561] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 670.396953][T15561] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 670.492477][ T5849] Bluetooth: hci1: command 0x040f tx timeout [ 670.637026][T15561] 8021q: adding VLAN 0 to HW filter on device bond0 [ 670.683341][T15561] 8021q: adding VLAN 0 to HW filter on device team0 [ 670.735883][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 670.743037][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 670.803663][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 670.810854][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 670.915822][T15561] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 671.056912][T15653] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2486'. [ 671.131456][ T5849] Bluetooth: hci2: command tx timeout [ 671.264234][T15561] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 671.376146][T15561] veth0_vlan: entered promiscuous mode [ 671.404386][T15561] veth1_vlan: entered promiscuous mode [ 671.476308][T15561] veth0_macvtap: entered promiscuous mode [ 671.524847][T15561] veth1_macvtap: entered promiscuous mode [ 671.573548][T15561] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 671.588273][T15561] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 671.599248][T15561] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 671.610250][T15561] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 671.634314][T15561] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 671.654256][T15561] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 671.670358][T15561] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 671.681586][T15561] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 671.698767][T15561] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 671.709693][T15561] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 671.731648][T15561] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 671.743491][T15561] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 671.753804][T15561] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 671.764741][T15561] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 671.791536][T15561] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 671.828470][T15561] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 671.848274][T15561] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 671.868424][T15561] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 671.891739][T15561] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 671.919782][T15561] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 671.969667][T15561] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 671.991507][T15561] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 672.040908][T15561] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 672.060140][T15561] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 672.072760][T15561] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 672.100837][T15561] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 672.120789][T15561] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 672.130700][T15561] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 672.143037][T15561] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 672.155824][T15561] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 672.186991][T15561] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 672.210910][T15561] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 672.219662][T15561] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 672.230060][T15561] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 672.388810][ T6797] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 672.408192][ T6797] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 672.466614][T15687] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2498'. [ 672.522956][T12662] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 672.539138][T12662] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 673.045273][T15698] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2499'. [ 673.057766][T15698] Process accounting resumed [ 673.062653][T15698] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15698 comm: syz.3.2499) [ 673.212426][ T5849] Bluetooth: hci2: command tx timeout [ 673.311985][T15714] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2506'. [ 673.427120][T15717] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2505'. [ 673.457340][T15717] Process accounting resumed [ 673.488770][T15717] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15717 comm: syz.3.2505) [ 673.545111][T15720] FAULT_INJECTION: forcing a failure. [ 673.545111][T15720] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 673.603502][T15720] CPU: 0 UID: 0 PID: 15720 Comm: syz.1.2507 Not tainted 6.14.0-rc1-syzkaller #0 [ 673.603549][T15720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 673.603566][T15720] Call Trace: [ 673.603573][T15720] [ 673.603584][T15720] dump_stack_lvl+0x16c/0x1f0 [ 673.603633][T15720] should_fail_ex+0x50a/0x650 [ 673.603671][T15720] _copy_to_user+0x32/0xd0 [ 673.603713][T15720] simple_read_from_buffer+0xd0/0x160 [ 673.603760][T15720] proc_fail_nth_read+0x198/0x270 [ 673.603802][T15720] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 673.603845][T15720] ? rw_verify_area+0xcf/0x680 [ 673.603887][T15720] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 673.603927][T15720] vfs_read+0x1df/0xbf0 [ 673.603954][T15720] ? __fget_files+0x1fc/0x3a0 [ 673.603983][T15720] ? __pfx___mutex_lock+0x10/0x10 [ 673.604024][T15720] ? __pfx_vfs_read+0x10/0x10 [ 673.604060][T15720] ? __fget_files+0x206/0x3a0 [ 673.604098][T15720] ksys_read+0x12b/0x250 [ 673.604125][T15720] ? __pfx_ksys_read+0x10/0x10 [ 673.604162][T15720] do_syscall_64+0xcd/0x250 [ 673.604194][T15720] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 673.604232][T15720] RIP: 0033:0x7f996d38b7bc [ 673.604253][T15720] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 673.604280][T15720] RSP: 002b:00007f996e13c030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 673.604305][T15720] RAX: ffffffffffffffda RBX: 00007f996d5a5fa0 RCX: 00007f996d38b7bc [ 673.604322][T15720] RDX: 000000000000000f RSI: 00007f996e13c0a0 RDI: 0000000000000003 [ 673.604338][T15720] RBP: 00007f996e13c090 R08: 0000000000000000 R09: 0000000000000000 [ 673.604353][T15720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 673.604367][T15720] R13: 0000000000000000 R14: 00007f996d5a5fa0 R15: 00007fff1b0eea68 [ 673.604400][T15720] [ 674.745428][T15753] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2515'. [ 674.756143][T15753] Process accounting resumed [ 674.760777][T15753] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15753 comm: syz.1.2515) [ 674.882569][T15752] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2519'. [ 674.894421][T15752] Process accounting resumed [ 674.899063][T15752] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15752 comm: syz.0.2519) [ 675.210182][T15756] netlink: 210 bytes leftover after parsing attributes in process `syz.2.2520'. [ 675.292643][ T5849] Bluetooth: hci2: command tx timeout [ 676.892143][T15793] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2531'. [ 676.945336][T15793] Process accounting resumed [ 676.978942][T15793] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15793 comm: syz.3.2531) [ 677.403138][T15811] FAULT_INJECTION: forcing a failure. [ 677.403138][T15811] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 677.493649][T15811] CPU: 0 UID: 0 PID: 15811 Comm: syz.3.2537 Not tainted 6.14.0-rc1-syzkaller #0 [ 677.493689][T15811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 677.493706][T15811] Call Trace: [ 677.493714][T15811] [ 677.493725][T15811] dump_stack_lvl+0x16c/0x1f0 [ 677.493773][T15811] should_fail_ex+0x50a/0x650 [ 677.493811][T15811] _copy_to_user+0x32/0xd0 [ 677.493853][T15811] simple_read_from_buffer+0xd0/0x160 [ 677.493900][T15811] proc_fail_nth_read+0x198/0x270 [ 677.493941][T15811] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 677.493985][T15811] ? rw_verify_area+0xcf/0x680 [ 677.494026][T15811] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 677.494066][T15811] vfs_read+0x1df/0xbf0 [ 677.494093][T15811] ? __fget_files+0x1fc/0x3a0 [ 677.494123][T15811] ? __pfx___mutex_lock+0x10/0x10 [ 677.494167][T15811] ? __pfx_vfs_read+0x10/0x10 [ 677.494203][T15811] ? __fget_files+0x206/0x3a0 [ 677.494242][T15811] ksys_read+0x12b/0x250 [ 677.494269][T15811] ? __pfx_ksys_read+0x10/0x10 [ 677.494307][T15811] do_syscall_64+0xcd/0x250 [ 677.494335][T15811] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 677.494373][T15811] RIP: 0033:0x7efdd918b7bc [ 677.494394][T15811] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 677.494421][T15811] RSP: 002b:00007efdd9f90030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 677.494447][T15811] RAX: ffffffffffffffda RBX: 00007efdd93a5fa0 RCX: 00007efdd918b7bc [ 677.494465][T15811] RDX: 000000000000000f RSI: 00007efdd9f900a0 RDI: 0000000000000004 [ 677.494481][T15811] RBP: 00007efdd9f90090 R08: 0000000000000000 R09: 0000000000000000 [ 677.494497][T15811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 677.494513][T15811] R13: 0000000000000000 R14: 00007efdd93a5fa0 R15: 00007ffe32dc2058 [ 677.494546][T15811] [ 678.185945][T15822] size and base must be multiples of 4 kiB [ 678.209943][T15822] CPU: 0 UID: 0 PID: 15822 Comm: syz.3.2541 Not tainted 6.14.0-rc1-syzkaller #0 [ 678.209982][T15822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 678.209999][T15822] Call Trace: [ 678.210009][T15822] [ 678.210020][T15822] dump_stack_lvl+0x16c/0x1f0 [ 678.210083][T15822] mtrr_add+0xdf/0x110 [ 678.210117][T15822] mtrr_ioctl+0x7cd/0xcd0 [ 678.210152][T15822] ? __pfx_mtrr_ioctl+0x10/0x10 [ 678.210190][T15822] ? __pfx_lock_release+0x10/0x10 [ 678.210227][T15822] ? ksys_semctl.constprop.0+0x150/0x2e0 [ 678.210284][T15822] ? __fget_files+0x206/0x3a0 [ 678.210315][T15822] ? __pfx_mtrr_ioctl+0x10/0x10 [ 678.210350][T15822] proc_reg_unlocked_ioctl+0x226/0x320 [ 678.210381][T15822] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 678.210416][T15822] __x64_sys_ioctl+0x190/0x200 [ 678.210462][T15822] do_syscall_64+0xcd/0x250 [ 678.210490][T15822] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 678.210529][T15822] RIP: 0033:0x7efdd918cda9 [ 678.210551][T15822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 678.210578][T15822] RSP: 002b:00007efdd9f90038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 678.210604][T15822] RAX: ffffffffffffffda RBX: 00007efdd93a5fa0 RCX: 00007efdd918cda9 [ 678.210622][T15822] RDX: 0000000000000007 RSI: 00000000400c4d01 RDI: 0000000000000004 [ 678.210637][T15822] RBP: 00007efdd920e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 678.210654][T15822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 678.210670][T15822] R13: 0000000000000000 R14: 00007efdd93a5fa0 R15: 00007ffe32dc2058 [ 678.210703][T15822] [ 679.195410][T15830] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2543'. [ 679.267601][T15830] Process accounting resumed [ 679.272282][T15830] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15830 comm: syz.1.2543) [ 679.786628][T15840] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2545'. [ 679.797376][T15840] Process accounting resumed [ 679.802024][T15840] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15840 comm: syz.1.2545) [ 680.229446][T15860] FAULT_INJECTION: forcing a failure. [ 680.229446][T15860] name fail_futex, interval 1, probability 0, space 0, times 0 [ 680.283543][T15860] CPU: 1 UID: 0 PID: 15860 Comm: syz.1.2551 Not tainted 6.14.0-rc1-syzkaller #0 [ 680.283579][T15860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 680.283596][T15860] Call Trace: [ 680.283605][T15860] [ 680.283616][T15860] dump_stack_lvl+0x16c/0x1f0 [ 680.283667][T15860] should_fail_ex+0x50a/0x650 [ 680.283707][T15860] get_futex_key+0x4a3/0x1000 [ 680.283765][T15860] ? __pfx_get_futex_key+0x10/0x10 [ 680.283814][T15860] ? __destroy_inode+0x2e4/0x730 [ 680.283854][T15860] ? __pfx_sock_free_inode+0x10/0x10 [ 680.283895][T15860] futex_wake+0xe8/0x4e0 [ 680.283929][T15860] ? __pfx_evict+0x10/0x10 [ 680.283966][T15860] ? __pfx_futex_wake+0x10/0x10 [ 680.284014][T15860] do_futex+0x1e5/0x350 [ 680.284042][T15860] ? __pfx_do_futex+0x10/0x10 [ 680.284070][T15860] ? __sock_release+0x20b/0x270 [ 680.284109][T15860] __x64_sys_futex+0x1e1/0x4c0 [ 680.284139][T15860] ? __sys_socket+0xad/0x260 [ 680.284178][T15860] ? __pfx___x64_sys_futex+0x10/0x10 [ 680.284208][T15860] ? rcu_is_watching+0x12/0xc0 [ 680.284261][T15860] do_syscall_64+0xcd/0x250 [ 680.284289][T15860] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 680.284328][T15860] RIP: 0033:0x7f996d38cda9 [ 680.284350][T15860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 680.284378][T15860] RSP: 002b:00007f996b1f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 680.284404][T15860] RAX: ffffffffffffffda RBX: 00007f996d5a6168 RCX: 00007f996d38cda9 [ 680.284422][T15860] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f996d5a616c [ 680.284440][T15860] RBP: 00007f996d5a6160 R08: 00007f996e13d000 R09: 0000000000000000 [ 680.284457][T15860] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f996d5a616c [ 680.284474][T15860] R13: 0000000000000000 R14: 00007fff1b0ee980 R15: 00007fff1b0eea68 [ 680.284508][T15860] [ 680.471787][ C1] vkms_vblank_simulate: vblank timer overrun [ 680.739461][T15865] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2553'. [ 681.159054][T15877] Loading of unsigned module is rejected [ 681.598585][T15895] FAULT_INJECTION: forcing a failure. [ 681.598585][T15895] name fail_futex, interval 1, probability 0, space 0, times 0 [ 681.611741][T15895] CPU: 0 UID: 0 PID: 15895 Comm: syz.0.2562 Not tainted 6.14.0-rc1-syzkaller #0 [ 681.611774][T15895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 681.611792][T15895] Call Trace: [ 681.611800][T15895] [ 681.611811][T15895] dump_stack_lvl+0x16c/0x1f0 [ 681.611860][T15895] should_fail_ex+0x50a/0x650 [ 681.611901][T15895] get_futex_key+0x1c3/0x1000 [ 681.611953][T15895] ? __pfx_get_futex_key+0x10/0x10 [ 681.612006][T15895] ? kasan_save_track+0x14/0x30 [ 681.612039][T15895] ? __kasan_kmalloc+0xaa/0xb0 [ 681.612074][T15895] futex_lock_pi+0x282/0x7b0 [ 681.612115][T15895] ? __pfx_futex_lock_pi+0x10/0x10 [ 681.612151][T15895] ? find_held_lock+0x2d/0x110 [ 681.612220][T15895] ? find_held_lock+0x2d/0x110 [ 681.612290][T15895] ? __pfx_futex_wake_mark+0x10/0x10 [ 681.612336][T15895] ? vfs_write+0x306/0x1150 [ 681.612378][T15895] do_futex+0x11b/0x350 [ 681.612413][T15895] ? __pfx_do_futex+0x10/0x10 [ 681.612457][T15895] __x64_sys_futex+0x1e1/0x4c0 [ 681.612493][T15895] ? fput+0x67/0x440 [ 681.612533][T15895] ? __pfx___x64_sys_futex+0x10/0x10 [ 681.612566][T15895] ? ksys_write+0x1ba/0x250 [ 681.612597][T15895] ? __pfx_ksys_write+0x10/0x10 [ 681.612641][T15895] do_syscall_64+0xcd/0x250 [ 681.612682][T15895] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 681.612727][T15895] RIP: 0033:0x7f9a0138cda9 [ 681.612751][T15895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 681.612780][T15895] RSP: 002b:00007f9a0226a038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 681.612809][T15895] RAX: ffffffffffffffda RBX: 00007f9a015a6080 RCX: 00007f9a0138cda9 [ 681.612829][T15895] RDX: 0000000000000047 RSI: 0000000000000006 RDI: 0000000000000000 [ 681.612846][T15895] RBP: 00007f9a0226a090 R08: 0000000000000000 R09: 0000000000000000 [ 681.612865][T15895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 681.612882][T15895] R13: 0000000000000001 R14: 00007f9a015a6080 R15: 00007ffe1c16a228 [ 681.612920][T15895] [ 681.835936][T15888] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2559'. [ 681.864033][T15888] net veth1_virt_wifi ›: renamed from virt_wifi0 [ 681.876178][T15890] Process accounting resumed [ 681.967283][T15896] ICMPv6: process `syz.2.2559' is using deprecated sysctl (syscall) net.ipv6.neigh.›.retrans_time - use net.ipv6.neigh.›.retrans_time_ms instead [ 682.063836][T15893] Process accounting resumed [ 682.077032][T15893] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15893 comm: syz.2.2559) [ 682.556745][T15908] FAULT_INJECTION: forcing a failure. [ 682.556745][T15908] name fail_futex, interval 1, probability 0, space 0, times 0 [ 682.607308][T15908] CPU: 1 UID: 0 PID: 15908 Comm: syz.2.2565 Not tainted 6.14.0-rc1-syzkaller #0 [ 682.607344][T15908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 682.607362][T15908] Call Trace: [ 682.607370][T15908] [ 682.607382][T15908] dump_stack_lvl+0x16c/0x1f0 [ 682.607431][T15908] should_fail_ex+0x50a/0x650 [ 682.607471][T15908] get_futex_key+0x4a3/0x1000 [ 682.607523][T15908] ? __pfx_get_futex_key+0x10/0x10 [ 682.607572][T15908] ? __destroy_inode+0x2e4/0x730 [ 682.607617][T15908] ? __pfx_sock_free_inode+0x10/0x10 [ 682.607659][T15908] futex_wake+0xe8/0x4e0 [ 682.607694][T15908] ? __pfx_evict+0x10/0x10 [ 682.607730][T15908] ? __pfx_futex_wake+0x10/0x10 [ 682.607779][T15908] do_futex+0x1e5/0x350 [ 682.607808][T15908] ? __pfx_do_futex+0x10/0x10 [ 682.607844][T15908] ? __sock_release+0x20b/0x270 [ 682.607915][T15908] __x64_sys_futex+0x1e1/0x4c0 [ 682.607947][T15908] ? __sys_socket+0xad/0x260 [ 682.607988][T15908] ? __pfx___x64_sys_futex+0x10/0x10 [ 682.608019][T15908] ? rcu_is_watching+0x12/0xc0 [ 682.608075][T15908] do_syscall_64+0xcd/0x250 [ 682.608106][T15908] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 682.608147][T15908] RIP: 0033:0x7fc00018cda9 [ 682.608170][T15908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 682.608200][T15908] RSP: 002b:00007fc000f9d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 682.608228][T15908] RAX: ffffffffffffffda RBX: 00007fc0003a6088 RCX: 00007fc00018cda9 [ 682.608254][T15908] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc0003a608c [ 682.608271][T15908] RBP: 00007fc0003a6080 R08: 00007fc000fbf000 R09: 0000000000000000 [ 682.608289][T15908] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007fc0003a608c [ 682.608307][T15908] R13: 0000000000000000 R14: 00007ffd5bc057c0 R15: 00007ffd5bc058a8 [ 682.608346][T15908] [ 682.802752][ C1] vkms_vblank_simulate: vblank timer overrun [ 683.473774][T15930] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2571'. [ 683.488557][T15930] Process accounting resumed [ 683.513985][T15930] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15930 comm: syz.1.2571) [ 683.719872][T15937] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2573'. [ 683.731660][T15937] Process accounting resumed [ 683.736297][T15937] kernel write not supported for file net/rpc/nfs4.nametoid/channel (pid: 15937 comm: syz.2.2573) [ 684.650719][T15975] FAULT_INJECTION: forcing a failure. [ 684.650719][T15975] name failslab, interval 1, probability 0, space 0, times 0 [ 684.673106][T15975] CPU: 1 UID: 0 PID: 15975 Comm: syz.1.2585 Not tainted 6.14.0-rc1-syzkaller #0 [ 684.673145][T15975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 684.673164][T15975] Call Trace: [ 684.673174][T15975] [ 684.673186][T15975] dump_stack_lvl+0x16c/0x1f0 [ 684.673242][T15975] should_fail_ex+0x50a/0x650 [ 684.673281][T15975] ? fs_reclaim_acquire+0xae/0x150 [ 684.673337][T15975] ? s_start+0x7b/0x310 [ 684.673372][T15975] should_failslab+0xc2/0x120 [ 684.673414][T15975] __kmalloc_cache_noprof+0x68/0x420 [ 684.673446][T15975] ? trace_kmalloc+0x2d/0xd0 [ 684.673504][T15975] ? __kmalloc_node_noprof+0x23d/0x520 [ 684.673540][T15975] s_start+0x7b/0x310 [ 684.673574][T15975] seq_read_iter+0x2ab/0x12b0 [ 684.673634][T15975] seq_read+0x39f/0x4e0 [ 684.673694][T15975] ? __pfx_seq_read+0x10/0x10 [ 684.673760][T15975] ? rw_verify_area+0xcf/0x680 [ 684.673805][T15975] ? __pfx_seq_read+0x10/0x10 [ 684.673851][T15975] vfs_read+0x1df/0xbf0 [ 684.673880][T15975] ? __fget_files+0x1fc/0x3a0 [ 684.673912][T15975] ? __pfx___mutex_lock+0x10/0x10 [ 684.673959][T15975] ? __pfx_vfs_read+0x10/0x10 [ 684.673998][T15975] ? __fget_files+0x206/0x3a0 [ 684.674039][T15975] ksys_read+0x12b/0x250 [ 684.674067][T15975] ? __pfx_ksys_read+0x10/0x10 [ 684.674109][T15975] do_syscall_64+0xcd/0x250 [ 684.674138][T15975] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 684.674180][T15975] RIP: 0033:0x7f996d38cda9 [ 684.674202][T15975] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 684.674230][T15975] RSP: 002b:00007f996e13c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 684.674256][T15975] RAX: ffffffffffffffda RBX: 00007f996d5a5fa0 RCX: 00007f996d38cda9 [ 684.674275][T15975] RDX: 0000000000400000 RSI: 0000000000000000 RDI: 0000000000000003 [ 684.674292][T15975] RBP: 00007f996e13c090 R08: 0000000000000000 R09: 0000000000000000 [ 684.674308][T15975] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 684.674323][T15975] R13: 0000000000000000 R14: 00007f996d5a5fa0 R15: 00007fff1b0eea68 [ 684.674360][T15975] [ 684.674384][T15975] [ 684.885503][T15975] ===================================== [ 684.891045][T15975] WARNING: bad unlock balance detected! [ 684.896584][T15975] 6.14.0-rc1-syzkaller #0 Not tainted [ 684.901951][T15975] ------------------------------------- [ 684.907484][T15975] syz.1.2585/15975 is trying to release lock (event_mutex) at: [ 684.915036][T15975] [] seq_read_iter+0x5ff/0x12b0 [ 684.921473][T15975] but there are no more locks to release! [ 684.927180][T15975] [ 684.927180][T15975] other info that might help us debug this: [ 684.935233][T15975] 2 locks held by syz.1.2585/15975: [ 684.940424][T15975] #0: ffff88805e0a09b8 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x267/0x390 [ 684.949498][T15975] #1: ffff88807e145790 (&p->lock){+.+.}-{4:4}, at: seq_read_iter+0xd8/0x12b0 [ 684.958405][T15975] [ 684.958405][T15975] stack backtrace: [ 684.964286][T15975] CPU: 1 UID: 0 PID: 15975 Comm: syz.1.2585 Not tainted 6.14.0-rc1-syzkaller #0 [ 684.964310][T15975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 684.964323][T15975] Call Trace: [ 684.964330][T15975] [ 684.964338][T15975] dump_stack_lvl+0x116/0x1f0 [ 684.964374][T15975] ? seq_read_iter+0x5ff/0x12b0 [ 684.964408][T15975] print_unlock_imbalance_bug+0x1aa/0x1f0 [ 684.964435][T15975] lock_release+0x525/0x6f0 [ 684.964464][T15975] ? seq_read_iter+0x5ff/0x12b0 [ 684.964498][T15975] ? __pfx_lock_release+0x10/0x10 [ 684.964523][T15975] ? s_start+0x7b/0x310 [ 684.964547][T15975] ? mark_held_locks+0x9f/0xe0 [ 684.964573][T15975] ? dump_stack_lvl+0x185/0x1f0 [ 684.964605][T15975] ? lockdep_hardirqs_on+0x7c/0x110 [ 684.964640][T15975] __mutex_unlock_slowpath+0xa3/0x6a0 [ 684.964677][T15975] ? rcu_is_watching+0x12/0xc0 [ 684.964711][T15975] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 684.964746][T15975] ? __kmalloc_cache_noprof+0x261/0x420 [ 684.964770][T15975] ? rcu_is_watching+0x12/0xc0 [ 684.964802][T15975] ? kfree+0x260/0x4d0 [ 684.964822][T15975] ? s_start+0x27d/0x310 [ 684.964848][T15975] seq_read_iter+0x5ff/0x12b0 [ 684.964886][T15975] seq_read+0x39f/0x4e0 [ 684.964919][T15975] ? __pfx_seq_read+0x10/0x10 [ 684.964958][T15975] ? rw_verify_area+0xcf/0x680 [ 684.964991][T15975] ? __pfx_seq_read+0x10/0x10 [ 684.965025][T15975] vfs_read+0x1df/0xbf0 [ 684.965056][T15975] ? __fget_files+0x1fc/0x3a0 [ 684.965078][T15975] ? __pfx___mutex_lock+0x10/0x10 [ 684.965112][T15975] ? __pfx_vfs_read+0x10/0x10 [ 684.965136][T15975] ? __fget_files+0x206/0x3a0 [ 684.965161][T15975] ksys_read+0x12b/0x250 [ 684.965181][T15975] ? __pfx_ksys_read+0x10/0x10 [ 684.965206][T15975] do_syscall_64+0xcd/0x250 [ 684.965227][T15975] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 684.965259][T15975] RIP: 0033:0x7f996d38cda9 [ 684.965275][T15975] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 684.965298][T15975] RSP: 002b:00007f996e13c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 684.965317][T15975] RAX: ffffffffffffffda RBX: 00007f996d5a5fa0 RCX: 00007f996d38cda9 [ 684.965332][T15975] RDX: 0000000000400000 RSI: 0000000000000000 RDI: 0000000000000003 [ 684.965346][T15975] RBP: 00007f996e13c090 R08: 0000000000000000 R09: 0000000000000000 [ 684.965359][T15975] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 684.965373][T15975] R13: 0000000000000000 R14: 00007f996d5a5fa0 R15: 00007fff1b0eea68 [ 684.965392][T15975] [ 690.982632][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 690.988941][ T1298] ieee802154 phy1 wpan1: encryption failed: -22