last executing test programs: 31m22.607208039s ago: executing program 1 (id=2890): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0004, 0x19) madvise$auto(0xfffffffffffffffc, 0x200007, 0x8) mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000) madvise$auto(0x0, 0x200007, 0x19) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000007c0)='/sys/kernel/mm/ksm/pages_skipped\x00', 0x40c00, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x801, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) socket(0x10, 0x3, 0x6) socket(0x22, 0x2, 0x2) socket(0x2b, 0x1, 0x1) unshare$auto(0x40000080) io_uring_setup$auto(0x1, 0x0) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000007c0), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r1, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)={&(0x7f0000000f00)={0x14, r2, 0x705, 0x70bd25, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x880) 31m19.718158463s ago: executing program 1 (id=2896): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0004, 0x19) madvise$auto(0xfffffffffffffffc, 0x200007, 0x8) mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000) madvise$auto(0x0, 0x200007, 0x19) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000007c0)='/sys/kernel/mm/ksm/pages_skipped\x00', 0x40c00, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x801, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) socket(0x10, 0x3, 0x6) socket(0x22, 0x2, 0x2) socket(0x2b, 0x1, 0x1) unshare$auto(0x40000080) io_uring_setup$auto(0x1, 0x0) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000007c0), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r0, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)={&(0x7f0000000f00)={0x14, r1, 0x705, 0x70bd25, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x880) 31m17.52904004s ago: executing program 1 (id=2901): mmap$auto(0x0, 0x3, 0xdf, 0xeb1, 0x401, 0x8000) mkdir$auto(&(0x7f00000001c0)='}[,&*}\x00', 0xc001) unshare$auto(0x40000080) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x801}, 0x80) fcntl$auto(r0, 0x0, 0x9) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC0\x00', 0x60000, 0x0) r1 = socket(0x1d, 0x4, 0x0) mq_open$auto(&(0x7f0000000200)='#)-\\&[}\x00', 0xde8, 0xb, &(0x7f0000000240)={0x9, 0x4, 0x2, 0x5}) mq_open$auto(&(0x7f0000000280)='#)-\\&[}\x00', 0x5, 0x10, 0x0) mmap$auto(0x0, 0x8001, 0x4000000000df, 0x610, 0x6, 0x300000000000) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x3, 0x43, 0xdf, 0x17, 0x7, 0x40000000028000) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000000), r1) sendmsg$auto_GTP_CMD_NEWPDP(r2, &(0x7f0000003080)={0x0, 0x0, &(0x7f0000003040)={&(0x7f0000000080)={0x1c, r3, 0x0, 0x70bd2b, 0x25dfdbfd, {}, [@GTPA_VERSION={0x8, 0x2, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000810}, 0x80) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) 31m15.246131413s ago: executing program 1 (id=2903): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0004, 0x19) madvise$auto(0xfffffffffffffffc, 0x200007, 0x8) mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000) madvise$auto(0x0, 0x200007, 0x19) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000007c0)='/sys/kernel/mm/ksm/pages_skipped\x00', 0x40c00, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x801, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) socket(0x10, 0x3, 0x6) socket(0x22, 0x2, 0x2) socket(0x2b, 0x1, 0x1) unshare$auto(0x40000080) io_uring_setup$auto(0x1, 0x0) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000007c0), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r1, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)={&(0x7f0000000f00)={0x14, r2, 0x705, 0x70bd25, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x880) 31m12.780412486s ago: executing program 1 (id=2909): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\t\xf8p\xc6nA6\x1a\xb9\xac\xde\x0e\x90\x18\xf1\x13I\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd\x14\x81\xbe\xab\xed\xd5MI\x830_\xc2\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14\x94o\x1b[\xa8]\x9b\x03\x95\xc3\xad\xad\x1d#oi|\x04\x93N\xfa\x17\xf3b\xf6\xcf\x00'/236, 0x4, 0x0) mmap$auto(0x0, 0x1000, 0xe2, 0x9b72, 0x7, 0x28000) getcwd$auto(0x0, 0xffffffffffffffff) mount_setattr$auto(0x5, 0x0, 0x8000, &(0x7f0000000640)={0x0, 0x4, 0x100000}, 0x283) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) write$auto(0x3, 0x0, 0xfffffdef) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x801}, 0x0) r2 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000080), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_DP_CMD_DEL(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000200)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002abd7000fedbdf2502"], 0x38}, 0x1, 0x0, 0x0, 0x20040011}, 0x20000000) fcntl$auto(0xffffffffffffffff, 0x401, 0x5) sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, 0x0, 0x40) write$auto(0x3, 0x0, 0xfffffdef) unshare$auto(0x40000080) 31m9.59496948s ago: executing program 1 (id=2916): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/timers\x00', 0x0, 0x0) mlockall$auto(0x7) inotify_rm_watch$auto(0xffffffffffffffff, 0x84e4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0) madvise$auto(0x0, 0x2000040080000004, 0xe) modify_ldt$auto(0x1, 0x0, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0xfffffffffffffffd, 0xffffffffffff0002, 0x19) fallocate$auto(r0, 0x1, 0x9, 0x80000000) mmap$auto(0x2, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x1010001, 0x100000003) setgroups$auto(0xe32, &(0x7f0000000040)=0x9) uname$auto(&(0x7f0000000280)={"017a23d49d4e4f89b7bb66d0528142ad4998ea9c70c06d0408e91b30b0b0d300722823e67e78003cff84dfc2528569e4ca4367c6216df84c3958d96ed2c499caff", "1e2157148e99091f121521269985a6a599863e135818f2ccc77a864d50fd1b2447c13d33dfb37033d53d69c4ff062abf19efab53fd75a00d4af7dbdef66e913103", "1fa81ccc6ffd05b516bdc4046cdfee68955b5ae48f8a322b6a0e4d8233d9491029f04050fca8a76d8b02739e3347e73f0f398e219952ca06e6c78655a70e097917", "0749ebba3d6f1ed9c077eeeb6deae36535af268af804ea0614e6c5ef0445f6fb05bec835636e440d94396dbeef246ceff774a1af2e8884df1be20351da9874f6fa", "4fbb5ffd975d9cf0800c3bf9046b1351f7371fcaea1fac30b4de0ac23b4d950cba906c482378f4337fe941454b8dbd36e51d285c95a92a20bec5a9907616fad85e", "d802740973602ea52b49799bc04ddb3c4e8995a5f9bd70c8c718fc2ebdffc648dd1195b4ac34305e0d8651eee2435736984e421114030659dd79fedec147e0e6ee"}) ppoll$auto(0x0, 0x9, 0x0, 0x0, 0x8) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) madvise$auto(0x0, 0x200007, 0x19) socket$nl_generic(0x10, 0x3, 0x10) 30m54.153477566s ago: executing program 32 (id=2916): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/timers\x00', 0x0, 0x0) mlockall$auto(0x7) inotify_rm_watch$auto(0xffffffffffffffff, 0x84e4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0) madvise$auto(0x0, 0x2000040080000004, 0xe) modify_ldt$auto(0x1, 0x0, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0xfffffffffffffffd, 0xffffffffffff0002, 0x19) fallocate$auto(r0, 0x1, 0x9, 0x80000000) mmap$auto(0x2, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x1010001, 0x100000003) setgroups$auto(0xe32, &(0x7f0000000040)=0x9) uname$auto(&(0x7f0000000280)={"017a23d49d4e4f89b7bb66d0528142ad4998ea9c70c06d0408e91b30b0b0d300722823e67e78003cff84dfc2528569e4ca4367c6216df84c3958d96ed2c499caff", "1e2157148e99091f121521269985a6a599863e135818f2ccc77a864d50fd1b2447c13d33dfb37033d53d69c4ff062abf19efab53fd75a00d4af7dbdef66e913103", "1fa81ccc6ffd05b516bdc4046cdfee68955b5ae48f8a322b6a0e4d8233d9491029f04050fca8a76d8b02739e3347e73f0f398e219952ca06e6c78655a70e097917", "0749ebba3d6f1ed9c077eeeb6deae36535af268af804ea0614e6c5ef0445f6fb05bec835636e440d94396dbeef246ceff774a1af2e8884df1be20351da9874f6fa", "4fbb5ffd975d9cf0800c3bf9046b1351f7371fcaea1fac30b4de0ac23b4d950cba906c482378f4337fe941454b8dbd36e51d285c95a92a20bec5a9907616fad85e", "d802740973602ea52b49799bc04ddb3c4e8995a5f9bd70c8c718fc2ebdffc648dd1195b4ac34305e0d8651eee2435736984e421114030659dd79fedec147e0e6ee"}) ppoll$auto(0x0, 0x9, 0x0, 0x0, 0x8) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) madvise$auto(0x0, 0x200007, 0x19) socket$nl_generic(0x10, 0x3, 0x10) 6.829557131s ago: executing program 3 (id=6493): mknod$auto(&(0x7f0000000040)=':,\x00', 0xc9, 0xc8) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) vmsplice$auto(0x1, &(0x7f0000000000)={0x0, 0x5}, 0x6, 0x8) 6.053649909s ago: executing program 3 (id=6495): prctl$auto(0x18, 0x2, 0x7fffffffeffe, 0x0, 0x0) 5.483501971s ago: executing program 3 (id=6499): sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008844}, 0x2000c000) sendmsg$auto_NL80211_CMD_EXTERNAL_AUTH(0xffffffffffffffff, 0x0, 0x4040810) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, 0x0, 0x4048801) socket(0x2, 0x1, 0x106) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x80002) clone$auto(0x1, 0x100, 0x0, 0x0, 0x800) migrate_pages$auto(0x0, 0x4, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) mkdir$auto(&(0x7f0000001280)='./file0\x00', 0xf6) mount$auto(0x0, &(0x7f0000001500)='./file0\x00', 0x0, 0x8000, 0x0) 5.26259475s ago: executing program 0 (id=6501): mmap$auto(0x0, 0xc, 0x9c0f, 0x44eb2, 0xfffffffffffff800, 0x300008000000) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x1000, 0x0) (async) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x1000, 0x0) ustat$auto(0x801, 0x0) mincore$auto(0x1000, 0x8001, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_setup$auto(0x6, 0x0) mincore$auto(0xc929, 0x101, &(0x7f0000000000)='@\x00') (async) mincore$auto(0xc929, 0x101, &(0x7f0000000000)='@\x00') 5.043428867s ago: executing program 0 (id=6502): madvise$auto(0x0, 0x5, 0x15) ioperm$auto(0x800, 0x5, 0xd) fanotify_init$auto(0x5, 0x2) open(&(0x7f0000000000)='./file0\x00', 0x7ffd, 0x10c) pwritev2$auto(0x4, &(0x7f0000000100)={&(0x7f0000000140), 0x1}, 0x4, 0x4, 0x9f4, 0x22) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008844}, 0x2000c000) sendmsg$auto_NL80211_CMD_EXTERNAL_AUTH(0xffffffffffffffff, 0x0, 0x4040810) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) r0 = openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000001340), 0x0, 0x0) read$auto_dvb_dvr_fops_dmxdev(r0, &(0x7f0000001380)=""/111, 0x6f) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, 0x0, 0x4048801) socket(0x2, 0x1, 0x106) clone$auto(0x1, 0x100, 0x0, 0x0, 0x800) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) mkdir$auto(&(0x7f0000001280)='./file0\x00', 0x0) 4.642210722s ago: executing program 4 (id=6505): r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0xf6) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x404, 0x8000) io_uring_setup$auto(0x2, 0x0) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) flock$auto(0xffffffffffffffff, 0x4) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0000, 0x15) setresgid$auto(0x81, 0x800000a0, 0x8) 4.322830185s ago: executing program 0 (id=6507): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$auto_BATADV_CMD_GET_DAT_CACHE(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000440)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="57e72dbd7000ffdbdf250d000000"], 0x1c}}, 0x10) 3.821791438s ago: executing program 4 (id=6508): openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/softnet_stat\x00', 0x4c, 0x0) sendfile$auto(0x2, 0x3, 0x0, 0xc3e0) 3.782343441s ago: executing program 0 (id=6509): mmap$auto(0x0, 0x20009, 0x12, 0xeb1, 0x401, 0x8000) (async) socket(0x2, 0x1, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0xaa03, 0x0) (async) r0 = socket(0x2, 0x6, 0x0) epoll_create$auto(0x4) clone$auto(0x7, 0x2, &(0x7f0000000000)=0x4, &(0x7f0000000040)=0x9, 0x3) (async) epoll_wait$auto(0x5, 0x0, 0x2, 0xfffffffd) (async) mmap$auto(0x80000001, 0x2, 0x1, 0x111, r0, 0xffffffffffff61da) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) epoll_ctl$auto(0x5, 0x1, r1, 0x0) (async) capset$auto(0x0, 0xfffffffffffffffe) (async) epoll_ctl$auto(0x5, 0x3, r1, 0x0) 3.691482622s ago: executing program 3 (id=6510): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) r0 = openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0) write$auto(0x3, 0x0, 0x81) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(r0, &(0x7f0000000080)=@vsock={0x28, 0x0, 0x2710, @host}, 0x200054) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmsg$auto_HANDSHAKE_CMD_ACCEPT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x33580}}, 0x4064890) r1 = epoll_create$auto(0x0) close_range$auto(0x2, 0x8, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), r2) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'wlan1\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_RINGS_SET(r2, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000001d40)={0x28, r3, 0x1, 0x70bd27, 0x25dfdbff, {}, [@ETHTOOL_A_RINGS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}, @ETHTOOL_A_RINGS_RX_MINI={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x90}, 0x80000) dup$auto(r1) 3.41676819s ago: executing program 4 (id=6511): unshare$auto(0x40000080) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x100, 0x0) ioctl$auto(0x3, 0x50434902, 0x38) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) sendmsg$auto_IEEE802154_LLSEC_LIST_KEY(0xffffffffffffffff, 0x0, 0x24000000) socket(0x11, 0xa, 0x300) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) read$auto(0xffffffffffffffff, &(0x7f0000002840)='\x00', 0x10000) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xa00) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, 0x0, 0x103041, 0x0) write$auto(r1, 0x0, 0x9) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'veth0_to_hsr\x00', 0x0}) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001480), r2) sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001c80)={&(0x7f0000000100)={0x28, r4, 0x1, 0x70bd2a, 0x25dfdc00, {}, [@ETHTOOL_A_CHANNELS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @ETHTOOL_A_CHANNELS_TX_COUNT={0x8, 0x7, 0x2}]}, 0x28}, 0x1, 0x0, 0x0, 0x8800}, 0x4) fstat$auto(0xffffffffffffffff, &(0x7f0000000040)={0xffffffffffffffff, 0x117, 0xd8d3, 0x5, 0x0, 0xee00, 0x0, 0xffff, 0x9, 0x1, 0x8007, 0xe, 0x5, 0xea, 0x9, 0xff, 0x8}) sendmsg$auto_ETHTOOL_MSG_PRIVFLAGS_SET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000140)={&(0x7f0000001e00)=ANY=[@ANYBLOB="e19dfdf17c3a4546592b00f4", @ANYRES16=r4, @ANYBLOB="000828bd7000fbdbdf250e000000a30202801002478008000400", @ANYRES32=r1, @ANYBLOB="04006b8086001800c10be922973d70de4f6523d8cde4489e87212cdace03f4f92f31efea92f525e81d2b3102e24002d9f0c222a49bec39d22b6c4665e447ff4de41aaee41cf6432e9590473eda94d1f6ad40b59c237918d5239f5683d1f8174f71f89b3a19d77ae6a4d8c4199a116374c899a13836ae8bd95e25d02b328fe7cc05d80bb3711854ca42a1000004000f80fb52c43f68cb8aa86aac8a5f8db6fa003ddd187dbe737c45b8e22aaedaf2632bbc7dc3e7eb5163a7811fa1f2cc8aeb9e996a52d3734d1208687ac77b20593cfe68e7296d206b0205b97bc47d7be18d0b66b8ae3c19d40dcbe323f33e2ed95abd654c8ea13e96dd9bc0726e615d1c370d56843007bbd104d3a27404114423632933359b8c1086fc254f4b408bdb628668557be0a84d49353c021b5b307f4b345a20d26c244e45f5f3846a021e850e65a846cc26af3b0c7b76b1e8f768469a00e600e27349adaf9814c078257f0a10e98961b195c0004ee184791fb44c7c1d26f50a86ef3d3776d5eba9f312780bce5fb80a4c4b986e665edb0f63cb3b8d48fb575176a8c5adf91f5983db59ce741c7e23eb968cbaebaff57dbdbd77bc295bf73b9c203ed70d8d30c2d97926d8b03bd07b42fcdde5e04938aed8819d1891b249b87723e217548eeb3ba7703f48b373341fbb82046b55a8d000009829acc240fd51f2d88ac1128441d14f2fe12308002f00", @ANYRES32=r5, @ANYBLOB='\b\x00/\x00', @ANYRES32=r5, @ANYBLOB="5c60b7266ddf499aa672290f63e21b508e3a11c6efe80e9d26428fc603f7a519eaf79c323a88b0f375efc09ad19875dc54d3701ee5141a5d056e06a18f88b99657ceda30f1f59974d3cec9b16bb201ed0c080da5b613dc2eb41532b022ead840fa7a915aa56ba0ff8fafe8b5354be68d6cb0a8133d1c9ecb45e1912250a90d3afeb2702690dee20044000180080003000600000014000200626f6e64300000000000000000000000140002007465616d30000000000000000000000008000300db21000008000100", @ANYRES32=r3, @ANYBLOB="d8000280d19c98aff64915140109116c91af66482d9c802642c491ccfb27d7725281af09c1849cdce1cfec6a643c4710743df439915f0f9c4e31b788be0a7b4a5dd17c5c3cefa31d6e9e2741cf38c964ae7644f3ce242706dc799ae5f380affd1c6063b49dc4f838740c29e7773e751e426699f6958f88082f03ddd26e6c5463205e1e9366be9d7033e559ee02d4de80076e76cbf3c56f54821401d94ba44bf757e7ff1f6410063f86565cf4ff8414db056f1d287a4c83980efef93b0b3607d955fcbc1614005900fe80000000000000000000000000001a0a130280f600758014001600ff0100000000000000000000000000010f00b0002f70726f632f737461740000991484ff15a929b1ae523ef0e2e4c53cf24180542e4ac6b51caa963e72a6457e8e59b103d6160dcc7607547642a29ac6f5ae57d2af5e7dc47e4d43872cbd9ed0e77e6d517145465cda9cf2a3df9b790b58e1ccc9f1f33967bcade6d3b0a2461c0c2d325ce6207ecff595ebb3b386f25d6ebace5b405e73b6addf6f07f3e7c10e7b908c81265c3d33cd0090305b825a21a7d342f9d4e96a1c4e18c2dfe16b73ae6d8ece969b5d3903cab8d6a081a5928d1f6a22a2a7ea2e114b04c4130c446a0a12878fb418e432a868426206f03100008b0024800800c7000600000004007f00d05dce7553f8e8919f4c820f8aa67ca3960c156d5983ce5f6b8c8159d1c5eb6fddbc28c6565e42ea8d8e2dfc36dbac8879cd5f951dc2e45df942ad813aef2adeb7b9a489f855525e6b2de3a30371d25cdd15e2022469abeba63bda402566acc25464b13812bb4f2be2def3fd4bd44e5d4d1bde3ec7434ef1c328e200bd740b8e394f89bac6a49abbc7221d64408447d1aacac24409e467b97d2bd20c8d9872fe3f1571693aa3213480fc8f06d3b0909ab54a07697b8edee900e7193a541f698ac594774c8a1f29a42f8d6a5d0aa2d3f313428a6d868651870c88a1819a56f0a3d92313d4396df873d860785078b1d313b22470caaab062e58342b4c0d7a35dd8d6fcbf7469046edd4f5a4199f8d81af8eb06e78bdb58b98414ca2236af8b97c165f6357ac51f0a2648fc04aa6abc4b1aae2c72522fcfb970cf94bf642973db2085d542d396827d1d8c256468e90653b983d2946b91521dcb3ae56ff642140eb1b8d7040e0f38f5915a328cd0b22b0d82755fb3c6b24505a8a5167ee45a2f897e20b17eee94765b719de83c4d77fcc65090549cfc4f1cbc47d9eb65e7bf2c2404beda3abe570dca75a6ee18c53263e0195f1a0aeebd565abfe02d3fb4eb1ee6e110ebbaabd0d0d050a01b94875840cbd5b628ce4eb65b45b99df9a103d6e28c9d5b1946e4cc95307d374a5aa8469576f3b7ade785578be0d80a431ba1130a4b86158ca8eb369a07cdb414b7943755cff4f611ba452986873c45474c7177f0b157f56f0ae84285c0950caafb479cc08256f77e0d8add344b35a275ffbf7dbc58ca26f0602bf12571d950145982895baf270896b90e16059360690bb2b8ab8ee0851aeb1fbc9802232615d1713faba063d41a8dc6c685ab3e25cda8275e956ef69317c37d9022726e01dc7e3f8261f5521b0157adb9a83cd2f9148041356552e816f0adb283fc764b378341ca488344ddbf3cac853b0dbc98b9ed4b8bbcfe5b510b6d9abd641a62fe74b44bba0fa84c7bb301053e8384067e8fae36d8edc5b07bcc1347490766fac45ec3a7a2eb25b536baec73347a6e1cd572d3a8180c514d3841d2c38c4ae3cb96beb972135c492dd7e84ffd33967430f9da4ba0af84547ed1a8388a0171f0275b5ec0e4dcaab644a100dc9533bbb2063fdf1da964f84b92381acc149bf54981be92c23db5597b691d9a6ba7ab6c54d6d89e78aaf68fe8f28c2d6a0135206dae1b4d427d7801960f710e0596a61e2ca6034580dcd3dbd15ebebecdd0318d19477653ac3dad32e44ce1c183770af29f163f40a69f30f7d3af27ec169c03afde2b57836a3234f7fbf281cd4e216a5cee0b27202e6340b6418d231129d505bcbdb5f4e994d4cee58afddb9f78ac64efeb443c833b3330143f31ca9b6580f4d2f9e0771c77eb8450ea8c010c20af43992323429e4a298f621749b9f49527318c8738917c60eb6d4b703166985bddb14aa13d8a76ebf927fe7a300ee7d40aa80367458199f5e02808c5205488d006d8b7cd35e1f95762e7b28c42e1fc19227aff50e38376297851ab8dc285f0c7b49af2802959c9d5dddec863c7f033261493e1075ba38db2303e2de5b8e6833e25475ea6f5ea60948feef0f24766667d107fe8a4ed3c10f07c24709b54b5b63cda5b0ec2647d19c9abfd2aee3d1608b1e4a3fb1711ef8f54ff22b95383d72f82d0ab19b5728cc18e1cebdf85dc779bb86ede025f11323df29fa2eb56a4613e9fef9c8b68fcdbc192bb3364548090f262f63c87615a4519017bb5910a924dccf3133a9c0fcbd98b9db920e9a2d3a2f2b9d3333f0f6e5ac5e0157213a6f509f6a11a623e4920f17ec8eca86ba7c23cd4331841ccac9fb23fc2a609cf4af6e410ed128d2d0ae6d530d0cecdedb941ed67cf190e3fb29194a4a0fa4e0d68c3fdcd704e9ce81c2656561e4284a3f9c60357b354ff7dbe17e8133ce93a28f63ab03f3059ab07120036ef2d62b493acb7601f0e409737850254ab457139a434934842fcb0cb31eee3cc59b954747003d46e82cad8cfa49081f73f567e0579930cd782b05d50f8d1f0af67394b8f0bace0b04231b7f118c7d0bfce3e071d81eff6ea7d315e8c0aa96257b219c67b744a14622f0ed17db5d2de5088ff3fed17b03642146a6ce8dc9da19aebb832728941327e6468f7c219c8664f43bed1b01cdb24a0f113242f224b368f892920cbb3a0ca0632cba6d720f43d09855296d132688361b58097082d10e923ed72f2ba480115924990e2e5870d82024c1c551eb779ba4d0e1713b23162f430dece305c665621b892f5a1db2421ada2b6418b8ef5d4605e5f35659fa0ba498ed40c63e7b4580422844ad95d124d949a2bcf566a79b3003f3026e6f8646d66fbab0e2c23c6e61690626577b01c15725af6d10b00023288c4363664cb50cde94acc1d34476840833ffd96433f5853757d6298787975c39264ef687915980eb231545d2df80fc8555d688db14630f7e573472e3d3716c800cb9f0a69df401a50f71934fc69dc54c73ef4f80e6800ed8c30efebdbebc60c196101351310788b5427de60a9b135f953c0585ff1268f337d738129cc0c22570209a62267313f1dd0ff9c4186fa25b2f975c3abbd1e6a87560225682784c5da4fe1855dca7ef453e60ea0063c3fc18a1cad07e14a52c2a0bdba10f34043035b601859ad58e02444132c6aa2eaf736b71134927876314b406d88507a163332ab3d151096d80668f822c46bfa9d4323baa1670e4a3425aaf6020b9ca65c3a8b89e4e400b00260cc426bc9783856aefac836e0788b36e18967b6fd86b5575c3da3f0c37057414b52588964abc54c0b252c23b2722fffb09b9a625e76c597d12da311985a1959e23514c33f2c9ca3ad3aea37829577da0d6fc1118f4e983975fde82c4aee5149063af19df46a3a7be698a7bd5b93b8262cd8494b2266e57e2aa02be4d1f2b6ebfcd0f18b308c48a4405637ba311777a01d041e6d58fedb2e9dab5bf40de0309399bc0b2142bb57dbb1c5f759b44a7c20e3475aa32acd72b6591be52a0dc02b116d9ef83047e330bff3e4ce6293e3ff8479d5614e997f01741c5fb919c6b52980a34234635afb42355e35483e87a5f27c5f13eafb6fe0c01954bdde07af7f22fd66889f27e1dacd03c290ad4276d9a28c26817ae4210b04c74c835a279515dd2ad79cd2f58a0aea9d0cb542c6750d4ab55498e6f3b534012fc5bf256b54d95827641e02960e6ca3e85eb8433373fed1c975f7a86eb910389da5dfc2af6eb9fa422adb590bdead82dfa1b681282ae13190a159b06f008de2b3f0a92a0bacc30ccebe3b8b7a9f8093de8ef3f6894c5ea3fd1cf3b565d25fca7fbb0956025a3b8157e0375515868cfa450af27399e906ee989486493b112d9743a2bddf595ae95e8d986f9b82818b7623eb526ea5836db252a0a01c6cb271af3ce14be6d708b54b31c496a560eada05fc99cf592edd717248ea2b983789c322c7fa39842ac4e4707170b3faf99c751dffdadfda8b0f91ca74bf06465937d51a10071df0c59b233182b06a94a74fc4f5fbfd04948eb90d8b0e7618095b4604201dd0b8f257d60ce5501d4dbbab5eb0d1455380608d7a9e0e7ed25b200d33b4c8dd74e89c273324003196b76271e7f267e6976e16a227faefdbcc929256929404df1d44a6449981227ce2fae3141bc5d9edd91ccddd7ddcc2bd69599de9f16418640b31048fe365b7853330b7f4916f0277b9a641d997d1168fc7a149e4631ec56f42f31ebd883a4ff4d386243ea64ba97ddb497b3aed120f8b66e1babee86709a1c417363f973958ae22922c4cf9fa16f093180518ef80556936e203fe5ec608a3a7f5c4670f0d050b04f54ddaf3e09fd48df2923974410454b8cb5625c60e2b771bc00ae74c3aa23713b8368e3d68940df4d67f83a99aa8ab5812b92d265039125bb61d5b44e38e2f50ab7c6456893a7e5218f679fdc888456408492b8c1fc926033188100c9c9b7407718202e700b88a6e222a1301d5b026b3119c847debb9b36af195abb80424c6789f881c607c3111955f0a1c52e3377715c9ed99491cf49facfe8821b7d60427db6befab55954d761d4f65788db42f2d7ddb9f7005ca0ca7577c55af929114406a20ad2792e6fe6626c31b499eb9cbf04e83f524cb88ff9927065427fef9e1cec6f25b593f7b459895baa0839e3b3775a1d7f7feabc379d1faea1a605470d735a18bf88a8a590b13951b8ead6dfda69a924e315e088a2441926c4cec22d2cf9cc4544ed7b13d3217ca89668d54fe8c42d82f24e8ffeca57658dbad8839f5cc6c41fd73a3082c4dd2e1b4e5faccb62c785be9e30528795034b8d742ba5d6e39f9f85e02e5a0a91fa305ddbd97a1d6115b7b4ecbbad70210bfa75fe8c5373358619147b8eb4972e7b6b7fe804fb944139bde81face21819902c987b7e128383355c4d0744c491a62481f0d8c03c0c555d682fc7922601d72c25eba77999d8de6c6e4e04d86636cb1a3166d1f7da9816de1d3fc773fbb96c61babcd08b5cbc135adeb329811eaa475d9b6f5e4d204c1b74a2763db4dbd57e051ca9a4983e956c06aa659cc896dae3b33783bc3b2316aff9ed7ea6f5ca94fc94d06b4d917e7bcf27920b68cd7aab107ff8a0da639fe325d367d7e12373ebbdff62e01c9fec6adadaed5047c1ee316dd398f5ef39d088f5e024f45fcd26910cff5c7a51cf407d2c1316ea8c4d6e5c74ddd274a10b7fb62c3f1c54e84c8f4cc213a640fc509d1440d2513b1dc08226c10059527e39160dfdeb1734a75df3c8284436dd459c433477464475ae651575b00ec1abf01b5a9b17d985e0dfb006b1240657aa81d98a05c395d4804ff612319a8e1e488cd786f4db499d78164ca721d201b95ab18d782ce48e5805c19d8bceda85c7bb6e95a9802394b76d9cbe12ddf4422d73e179ba908e893b6170f31e20bcefda02f12d63819833e4645cad1537a5692afceeb564446ab6abf84120243a7b6ef1122fd78d0b2ad41fd16db575faa4a2f06df35a433e0002428d9d851b2845374b0cf846839fe234f86cc0228e15ce8d724aabe470ddfc5008d47cf862b75236510565289f1ae6c547f9f07cc610909df497336338acafe87451326350626e4ebc4ca9c1a085e87e554389adcf4c8e269e143af1d872c4c20afe7ee7d0c895566f852cf267a5fc0cf4d2a600ecaa890b8c35d7a5f24e3aa76f660f39caa8bb64643373fbf6fb1b7b5ab13bed66434d95040cc4e05acc8ae45e1906cae3d59d4d71915fbd21b956a27677b2b3a5956ef71e333971292cc58fe1ceb2515fc9027642f6441d760fede6a8f303a704f55cd2cb817c9af641fdf671e93cb2d3e041d6cffce4b95d7b2287f6736c4ce980ac362bc19d7c83a066098739527c5fcd5830124eab13965ea2a2788042695a993d61d0ffa536dbefa69caa8525570d61c8f6013e85cf0b20c7e9cebfda479d6f5c22a1ae96d3a45e4288d0b0b77b17e690994ecf0ad3565e8007c05584a65f0e51c12ec8ec963c8b50c5ce9d0567df2d20171c7d4e0b7ace62e9c65abb9588edc7e1d0b1446d7f83c902e78120145d61885b702d31576c1e7d46fc47b29e769cbc51a55084111037cd7ca67871be142743a6e77245eaee58a7922905770a931c29d41ac73da2e198ffab1824ecc83955a420a31e5e841c31064b60b17eb91273df6a10c4dfce1339a5b276f8e925d89f736b2b5859038fd18b9b7e8835e3e4b5f1fb21818a6ce642098a8db800f81bc41663f19a57470cb7351d7713f7755a440f85b3f3b855b414e7de13e973508a17791764d22d08b864138af0f7224a8ea2daf3f2eff3ea1375d773d21fdffe7218ce4d44c17623eedf22525a4e662d75bc9980f742194e015650c2955ddaafde9445acce271f60262eb059228ecf837dadbaa251b861cee9771e6bce43531e5cdb2418f745e9d388565900fce7fde624fe0f7ce2b38079f40c06e1a83ebb02f0d4db789e5f223496f8a622b02016410a925dd1bb22641e6db32aa28097fd57d33862895937c9a558dda5f48dce25c972b26120668ab440d246e865b17ffb4961dde8339d94b0c6b93eb4f073a2d65f6916247777f048b3c00ac5e9b4855319c981f3739c813ebc164cf48ff2406bb69d7acb24972b1b8073c23716dc2975474e6cca427bf8113e55920b80d117808845e6ea4498e16d134ab66a95643db9f63ad0899af0e7a9515545fdcde74e5cc98f1e4efa1ee24e09c444d8b99bbcbac5eacdfcabdf9255afacb408d942d7b735391c06269c635deb4fccbb6ade57e5dcf546a3bbd800038800400058004001480e4bed96e6c88413c7473ce50a1152960a317af56ebff7ce74bfc597f56e2aa96a5f093deeecc0ace10d3c3d86459b2a334a9da5393911e08d75add2833afb0de15da7d2106f4f9de4bd740e61e62e2f8d9421a5d0fe86ab5b68e550fa76acbd1be9cdeb270c779cfeff3b9ff625f3561e3ada24204005b800000"], 0x16e0}}, 0x80) sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x54, r4, 0x8, 0x70bd25, 0x25dfdbfe, {}, [@ETHTOOL_A_PAUSE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}]}, @ETHTOOL_A_PAUSE_RX={0x5, 0x3, 0x1}, @ETHTOOL_A_PAUSE_TX={0x5, 0x4, 0xff}, @ETHTOOL_A_PAUSE_RX={0x5, 0x3, 0x3}, @ETHTOOL_A_PAUSE_RX={0x5, 0x3, 0x4}, @ETHTOOL_A_PAUSE_AUTONEG={0x5, 0x2, 0xe}]}, 0x54}, 0x1, 0x0, 0x0, 0x4840}, 0x4000000) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000340)='/proc/sys/net/netfilter/nf_conntrack_buckets\x00', 0x101000, 0x0) write$auto(0x3, 0x0, 0xfdef) 3.078036117s ago: executing program 2 (id=6513): sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x4000804) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0xd, 0x100000001, 0x63, 0x0, 0x0, 0x0, 0x1000000006, 0x6, 0x7, 0x400, 0x7ffffff9, 0x5, 0xffffffff80000000, 0x9, 0x61, 0x105}) r0 = socket$nl_generic(0x10, 0x3, 0x10) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x89\x06s\x1cJ\x99\x8a>c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3) ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/keys\x00', 0x8340, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$auto(0x3, 0x541b, 0x38) 2.783809931s ago: executing program 2 (id=6514): r0 = socket(0x29, 0x2, 0x800001) setsockopt$auto(r0, 0x0, 0x2, &(0x7f0000000000)='\xda\x00', 0x41) mmap$auto(0x7, 0x3, 0xffffffffffffffef, 0xeb3, r0, 0x9) socket(0x2, 0x1, 0x0) r1 = openat$auto_dai_list_fops_(0xffffffffffffff9c, &(0x7f0000000140), 0x103400, 0x0) read$auto_dai_list_fops_(r1, &(0x7f0000000180)=""/199, 0xc7) sendmsg$auto_OVS_METER_CMD_FEATURES(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000300)={&(0x7f0000001900)={0x434, 0x0, 0x400, 0x70bd2a, 0x25dfdbfd, {}, [@OVS_METER_ATTR_USED={0xc, 0x5, 0x1}, @OVS_METER_ATTR_CLEAR={0x4}, @OVS_METER_ATTR_BANDS={0x3f4, 0x4, 0x0, 0x1, [@nested={0x3f0, 0x18, 0x0, 0x1, [@generic="0218ebf3a9369428959f56fdac03a84431b3ce28cdaf8e5f396ed54cc75cd535f40e4cdb82d583d181275f07271be0dc77956bf6754abbc9e39794e53a09109b1c07aeec89264651e57f71d24f7aec20c4055a3c382077bd4fd7b83017a4a014909bccaaf53868e58e62b490a9ef84ef736bb5876db2843952f6e2a9b2701ad45b5a7df370174329f5082110295c6739bd3ed98614f0496da55411f3c2d1cf82b1c21fb181ea893f3bb580b4dee23bb90fa51173df46643ce5498664b9b59e7f83f92a5f04f47e4fbed501468c1d7130bdd20582acc65ec696edcc4497b9e52229d284", @generic="ddb64986efebfad5e4f8f306a89e7d64994aaf2e64e8b16d5d58cadce9c907ec76ccaeef984a9c461b6aeff8c7023ae4e290693d6fcfcf5e6bffc8d89489bb53ee4603fd6280d227dadac044e2296bb39a5d25d5acf96e51b2d1b97f98abab0877f62afba0f35ec5784dd9490c4bad9c24bae6e29ba13d9ac49a5da80f26cae567b6f78e34bda38cef5a2059779c", @typed={0x8, 0x146, 0x0, 0x0, @fd}, @generic="af95522474bfeada8ade00ca6a7daf6a4d5c3626ae85863e62a37d5474723eb06f4e53364500f3ae1dd01b1a2fbca17f4e30b84c0029d756ed66b1b277456f8c74421af39c7b0795c3aaafc4c6ed03d53be540eab0cc1d192967cf03e9803a40eb3e4f4b4b3bfd2dff0c64e91d7353368947633c71500ebd638b0e50f061284ab7bd697930f70252e304acbab0a35e69407580db16390e82367cb9e58c3185da605b86cb2d39bf392adfa089d99b15b5bb8b9f0e6ae4bdad9e45a82331256ba1cd54b0ddcd2749bf", @typed={0x14, 0x2c, 0x0, 0x0, @ipv6=@private0={0xfc, 0x0, '\x00', 0x1}}, @typed={0xc, 0x5, 0x0, 0x0, @u64=0x3}, @generic="fc1979c1e3696c35fa714492e5bda8e7ebf43bc2dd9398b7d60c2043cf5f447b8d2d855b07e239cb89f1b0ce94eabe2e86a19ba64b44bcdfb574eb308e87277e6bdbe6148449e97a115398a22fe102c0623c84194bc2a3ee1f64fb7ec18256eccc63b74f63f0409d20db0a17f8dd5df569471806da5803ede4f332eee095fc31111c1abeaff01fbee6d3a7b28fec09fb421fad091d6275ffed96559e0e933e21232ecf76864c0e63b1ae2ff31d3e41bc0df8886acc553bfe66aceaf81cc72c9f1d85135ce80bae1fbb18b7525e3bab7799e34eddb1b346e32687", @typed={0x4, 0x39}, @generic="2136f8818ebf1e0f1297732ec7779a64d22ef7c90cafa50fe6a7cee2b58c30c49f489e864dac23f45382284b96a0ad0ba2b7ba69a2563da60c7b5c2b4463df83176ecb0037d952a6d23450ee847926166bb57785606c21663503f454e2a99bdca1271dbce421f7ca4134dec0853bd1b62eeb10a6da1c47a282460c2365539a50c32d56d57a608c4e91da42f00b079e8b7565551484a4efcd57687ed558625632e35d2ee933771210c9db7f0c3a", @generic]}]}, @OVS_METER_ATTR_USED={0xc, 0x5, 0x1}, @OVS_METER_ATTR_MAX_BANDS={0x8}, @OVS_METER_ATTR_MAX_METERS={0x8, 0x7, 0x1}]}, 0x434}, 0x1, 0x0, 0x0, 0x24000001}, 0x40) open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x10a) setresuid$auto(0x0, 0x8, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xc18, 0x8000) r2 = socket(0x2, 0x1, 0x0) r3 = getsockopt$auto(r2, 0x0, 0x42, 0x0, &(0x7f00000000c0)=0x1e) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @rand_addr=0x64010102}, 0x8) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/node/node0/meminfo\x00', 0x800, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000700)=""/4096, 0x1000) mmap$auto(0x0, 0x400000000000006, 0xdf, 0x9b72, 0x8000000000000003, 0x8000) socket(0x2, 0x801, 0x84) socket(0x29, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x88) mmap$auto(0x0, 0x1004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) capget$auto(0x0, 0x0) getsockopt$auto(0x6, 0x40000000029, 0x8, 0xfffffffffffffffe, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x840000000002, 0x3, 0xff) write$auto_snd_pcm_oss_f_reg_pcm_oss(r3, &(0x7f0000000280)="ae31be9e36643930fcd22a9eb1042e027f2c6dd916a29333243fe7e6e62be35b1778ea5982405bf570983d2e6ceedba69ee8e9e9f20b413dc297d487b01527d839ab6d594d7e621748dc03cfef1761ac78", 0x51) 2.679327584s ago: executing program 0 (id=6515): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000003040), 0xffffffffffffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_ETHTOOL_MSG_RINGS_GET(0xffffffffffffffff, 0x0, 0x2000c800) madvise$auto(0x0, 0xffffffffffff0001, 0x15) clock_nanosleep$auto(0x2, 0x1000, 0x0, 0x0) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) mlock$auto(0xfbe8, 0x4) mlock$auto(0x81, 0x0) sendmsg$auto_OVS_METER_CMD_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)={0x30, r1, 0x82652360e804c8d3, 0x9, 0x25dfdbfe, {}, [@OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_USED={0xc, 0x5, 0x2}, @OVS_METER_ATTR_BANDS={0x4}, @OVS_METER_ATTR_ID={0x8, 0x1, 0xfffffff8}]}, 0x30}}, 0x8080) getuid() 2.471539827s ago: executing program 2 (id=6516): openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/keys\x00', 0x8340, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$auto(0x3, 0x541b, 0x38) (fail_nth: 3) 2.466339602s ago: executing program 3 (id=6517): r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0xf6) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x404, 0x8000) io_uring_setup$auto(0x2, 0x0) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) flock$auto(0xffffffffffffffff, 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0000, 0x15) setresgid$auto(0x81, 0x800000a0, 0x8) 2.317038223s ago: executing program 4 (id=6518): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$auto_BATADV_CMD_GET_DAT_CACHE(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000440)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="57e72dbd7000ffdbdf250d0000000800030097a60a"], 0x1c}}, 0x10) 2.084106663s ago: executing program 4 (id=6519): listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1) 1.659461455s ago: executing program 2 (id=6520): fcntl$auto(0x2, 0x408, 0x80000001) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/conf/default/drop_gratuitous_arp\x00', 0x141241, 0x0) pwrite64$auto(r0, &(0x7f0000000000)='\x00', 0xb6d, 0x7fffffff) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x40802, 0x0) rt_sigaction$auto(0x36, 0x0, 0x0, 0x8) pipe$auto(0x0) ioctl$auto(0x3, 0x541b, 0xfffffffffffff4e0) select$auto(0x4, 0x0, &(0x7f0000000080)={[0x209c, 0xe9e, 0x4, 0x5, 0x1000, 0x100000001, 0xc, 0xf, 0x0, 0x40, 0xe, 0xd59, 0x101, 0xff, 0x2, 0x80080001]}, 0x0, 0x0) 1.650257017s ago: executing program 4 (id=6521): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000015c0), r0) mmap$auto(0x3, 0x400008, 0xc34, 0x8000000000000011, r0, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) write$auto(0x3, 0x0, 0x100082) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) unshare$auto(0x40000080) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000000), 0x80001, 0x0) bpf$auto(0x5, 0x0, 0x7) get_robust_list$auto(0x0, 0x0, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) ioctl$auto(r1, 0x3b84, 0x38) openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/set_event_pid\x00', 0x164c2, 0x0) fcntl$auto(0xffffffffffffffff, 0x401, 0x5) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffff7ffffffffffa, 0x8000) r2 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0) ioctl$auto_TUNSETQUEUE(r2, 0x400454d9, 0x0) execve$auto(0xfffffffffffffffd, 0xfffffffffffffffc, 0xffffffffffffffff) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) mmap$auto(0x0, 0x8, 0xdc, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r3, 0x40107447, 0x0) socket(0x2c, 0x3, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) 1.352755695s ago: executing program 2 (id=6522): r0 = socket$nl_generic(0x10, 0x3, 0x10) memfd_create$auto(&(0x7f0000000040)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00'/54, 0x4) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x6b000000000000) sendmsg$auto_BATADV_CMD_SET_VLAN(r0, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x24, 0x0, 0x20, 0x70bd2c, 0x25dfdbfd, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_DAT_CACHE_VID={0x6, 0x25, 0xa}]}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x40000) r1 = open(&(0x7f0000000240)='./cgroup\x00', 0x10b600, 0x23) fchdir$auto(r1) ioctl$auto_UDMABUF_CREATE(r1, 0x40187542, &(0x7f00000004c0)={r0, 0x9, 0xffffffffffefffff, 0x2}) socket(0x9, 0x80000, 0x401) sendmsg$auto_WG_CMD_SET_DEVICE(r0, &(0x7f00000028c0)={0x0, 0x0, &(0x7f0000002880)={&(0x7f0000000000)={0x30, 0x0, 0x21, 0x70bd26, 0x25dfdbfe, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e20}]}, 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x80) mkdir$auto(&(0x7f0000000040)='./cgroup/../file0\x00', 0x9) 1.066540579s ago: executing program 2 (id=6523): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_cpu_latency_qos_fops_qos(0xffffffffffffff9c, &(0x7f0000006640), 0x2, 0x0) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r0 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/vkms_config\x00', 0x6000, 0x0) pwrite64$auto(r0, &(0x7f0000000040)='{@^\x00', 0x100000001, 0x0) membarrier$auto(0x4, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x400005, 0x200, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x3, 0x66) mprotect$auto(0x0, 0x4, 0x6) ioctl$auto(0xc8, 0x400454cb, 0x0) 640.918291ms ago: executing program 3 (id=6524): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/vhci_hcd.11/usb31/31-0:1.0/usb31-port6/power/runtime_status\x00', 0x82a00, 0x0) r1 = openat$auto_lockdown_ops_lockdown(0xffffffffffffff9c, &(0x7f0000000000), 0x20682, 0x0) write$auto_lockdown_ops_lockdown(r1, &(0x7f0000000040)="3e928e", 0x3) r2 = openat$auto_bdi_debug_stats_fops_(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/bdi/43:192/stats\x00', 0x700, 0x0) pread64$auto(r2, &(0x7f0000000080)='(![', 0x80, 0x2) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) ioctl$auto_def_blk_fops_fs(r3, 0x1267, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000080)=""/162, 0xa2) r4 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x106) setsockopt$auto(0x200000004, 0x6, 0x19, 0xffffffffffffffff, 0x2) fallocate$auto(r4, 0x0, 0x400000a, 0x4b) lseek$auto(0x3, 0x2, 0x4) open_by_handle_at$auto(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x1b}, 0x403) r5 = socket(0x11, 0x3, 0x9) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) socket(0x15, 0x5, 0x0) ioctl$auto(0x3, 0x8b35, 0x91) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/snd_hda_intel/parameters/power_save\x00', 0x80002, 0x0) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) access$auto(&(0x7f00000001c0)='./file0\x00', 0x9) read$auto(r5, 0x0, 0x80) write$auto(0x3, 0x0, 0xfffffdef) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) close_range$auto(0x2, 0xa, 0x0) sendmmsg$auto(r5, &(0x7f0000000480)={{&(0x7f0000000040)="acb627c581c1866c1b2e0ee858d985781d4ebf3077df4d77524734515b3a80dc47ec4d69ba916cbda7d8afe847f5e208b4aec9748316b666edbb323fde497b48cac4562478d390dbb8ef9598d599bbb8b32560f73ae74fc72304f357fed62c5e4f1f7a51ae", 0x5aa, &(0x7f00000000c0)={&(0x7f0000000380)="435f38825b", 0x49}, 0x8, &(0x7f0000000300), 0x6, 0x1000}, 0x5}, 0x2, 0xfd) 0s ago: executing program 0 (id=6525): r0 = socket(0x29, 0x2, 0x800001) setsockopt$auto(r0, 0x0, 0x2, &(0x7f0000000000)='\xda\x00', 0x41) mmap$auto(0x7, 0x3, 0xffffffffffffffef, 0xeb3, r0, 0x9) socket(0x2, 0x1, 0x0) r1 = openat$auto_dai_list_fops_(0xffffffffffffff9c, &(0x7f0000000140), 0x103400, 0x0) read$auto_dai_list_fops_(r1, &(0x7f0000000180)=""/199, 0xc7) sendmsg$auto_OVS_METER_CMD_FEATURES(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000300)={&(0x7f0000001900)={0x434, 0x0, 0x400, 0x70bd2a, 0x25dfdbfd, {}, [@OVS_METER_ATTR_USED={0xc, 0x5, 0x1}, @OVS_METER_ATTR_CLEAR={0x4}, @OVS_METER_ATTR_BANDS={0x3f4, 0x4, 0x0, 0x1, [@nested={0x3f0, 0x18, 0x0, 0x1, [@generic="0218ebf3a9369428959f56fdac03a84431b3ce28cdaf8e5f396ed54cc75cd535f40e4cdb82d583d181275f07271be0dc77956bf6754abbc9e39794e53a09109b1c07aeec89264651e57f71d24f7aec20c4055a3c382077bd4fd7b83017a4a014909bccaaf53868e58e62b490a9ef84ef736bb5876db2843952f6e2a9b2701ad45b5a7df370174329f5082110295c6739bd3ed98614f0496da55411f3c2d1cf82b1c21fb181ea893f3bb580b4dee23bb90fa51173df46643ce5498664b9b59e7f83f92a5f04f47e4fbed501468c1d7130bdd20582acc65ec696edcc4497b9e52229d284", @generic="ddb64986efebfad5e4f8f306a89e7d64994aaf2e64e8b16d5d58cadce9c907ec76ccaeef984a9c461b6aeff8c7023ae4e290693d6fcfcf5e6bffc8d89489bb53ee4603fd6280d227dadac044e2296bb39a5d25d5acf96e51b2d1b97f98abab0877f62afba0f35ec5784dd9490c4bad9c24bae6e29ba13d9ac49a5da80f26cae567b6f78e34bda38cef5a2059779c", @typed={0x8, 0x146, 0x0, 0x0, @fd}, @generic="af95522474bfeada8ade00ca6a7daf6a4d5c3626ae85863e62a37d5474723eb06f4e53364500f3ae1dd01b1a2fbca17f4e30b84c0029d756ed66b1b277456f8c74421af39c7b0795c3aaafc4c6ed03d53be540eab0cc1d192967cf03e9803a40eb3e4f4b4b3bfd2dff0c64e91d7353368947633c71500ebd638b0e50f061284ab7bd697930f70252e304acbab0a35e69407580db16390e82367cb9e58c3185da605b86cb2d39bf392adfa089d99b15b5bb8b9f0e6ae4bdad9e45a82331256ba1cd54b0ddcd2749bf", @typed={0x14, 0x2c, 0x0, 0x0, @ipv6=@private0={0xfc, 0x0, '\x00', 0x1}}, @typed={0xc, 0x5, 0x0, 0x0, @u64=0x3}, @generic="fc1979c1e3696c35fa714492e5bda8e7ebf43bc2dd9398b7d60c2043cf5f447b8d2d855b07e239cb89f1b0ce94eabe2e86a19ba64b44bcdfb574eb308e87277e6bdbe6148449e97a115398a22fe102c0623c84194bc2a3ee1f64fb7ec18256eccc63b74f63f0409d20db0a17f8dd5df569471806da5803ede4f332eee095fc31111c1abeaff01fbee6d3a7b28fec09fb421fad091d6275ffed96559e0e933e21232ecf76864c0e63b1ae2ff31d3e41bc0df8886acc553bfe66aceaf81cc72c9f1d85135ce80bae1fbb18b7525e3bab7799e34eddb1b346e32687", @typed={0x4, 0x39}, @generic="2136f8818ebf1e0f1297732ec7779a64d22ef7c90cafa50fe6a7cee2b58c30c49f489e864dac23f45382284b96a0ad0ba2b7ba69a2563da60c7b5c2b4463df83176ecb0037d952a6d23450ee847926166bb57785606c21663503f454e2a99bdca1271dbce421f7ca4134dec0853bd1b62eeb10a6da1c47a282460c2365539a50c32d56d57a608c4e91da42f00b079e8b7565551484a4efcd57687ed558625632e35d2ee933771210c9db7f0c3a", @generic]}]}, @OVS_METER_ATTR_USED={0xc, 0x5, 0x1}, @OVS_METER_ATTR_MAX_BANDS={0x8}, @OVS_METER_ATTR_MAX_METERS={0x8, 0x7, 0x1}]}, 0x434}, 0x1, 0x0, 0x0, 0x24000001}, 0x40) open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x10a) setresuid$auto(0x0, 0x8, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xc18, 0x8000) r2 = socket(0x2, 0x1, 0x0) r3 = getsockopt$auto(r2, 0x0, 0x42, 0x0, &(0x7f00000000c0)=0x1e) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @rand_addr=0x64010102}, 0x8) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/node/node0/meminfo\x00', 0x800, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000700)=""/4096, 0x1000) mmap$auto(0x0, 0x400000000000006, 0xdf, 0x9b72, 0x8000000000000003, 0x8000) socket(0x2, 0x801, 0x84) socket(0x29, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x88) mmap$auto(0x0, 0x1004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) capget$auto(0x0, 0x0) getsockopt$auto(0x6, 0x40000000029, 0x8, 0xfffffffffffffffe, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x840000000002, 0x3, 0xff) write$auto_snd_pcm_oss_f_reg_pcm_oss(r3, &(0x7f0000000280)="ae31be9e36643930fcd22a9eb1042e027f2c6dd916a29333243fe7e6e62be35b1778ea5982405bf570983d2e6ceedba69ee8e9e9f20b413dc297d487b01527d839ab6d594d7e621748dc03cfef1761ac78", 0x51) kernel console output (not intermixed with test programs): 411] RSP: 002b:00007fa051df9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2845.254595][ T1411] RAX: ffffffffffffffda RBX: 00007fa052175fa0 RCX: 00007fa051f85d29 [ 2845.262621][ T1411] RDX: 0000000004004040 RSI: 00000000200040c0 RDI: 0000000000000003 [ 2845.270650][ T1411] RBP: 00007fa051df9090 R08: 0000000000000000 R09: 0000000000000000 [ 2845.278676][ T1411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2845.286709][ T1411] R13: 0000000000000000 R14: 00007fa052175fa0 R15: 00007ffdde207278 [ 2845.294746][ T1411] [ 2846.175719][ T1422] tipc: Can't bind to reserved service type 63 [ 2849.606965][ T1455] FAULT_INJECTION: forcing a failure. [ 2849.606965][ T1455] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2849.737452][ T1455] CPU: 0 UID: 0 PID: 1455 Comm: syz.4.5889 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2849.748223][ T1455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2849.758341][ T1455] Call Trace: [ 2849.761658][ T1455] [ 2849.764631][ T1455] dump_stack_lvl+0x16c/0x1f0 [ 2849.769372][ T1455] should_fail_ex+0x497/0x5b0 [ 2849.774109][ T1455] ? fs_reclaim_acquire+0xae/0x150 [ 2849.779295][ T1455] should_fail_alloc_page+0xe7/0x130 [ 2849.784660][ T1455] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 2849.790886][ T1455] __alloc_pages_noprof+0x190/0x25b0 [ 2849.796257][ T1455] ? __pfx_mark_lock+0x10/0x10 [ 2849.801115][ T1455] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 2849.806976][ T1455] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 2849.812931][ T1455] ? policy_nodemask+0xea/0x4e0 [ 2849.817860][ T1455] alloc_pages_mpol_noprof+0x2c9/0x610 [ 2849.823401][ T1455] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 2849.829458][ T1455] ? find_held_lock+0x2d/0x110 [ 2849.834286][ T1455] ? mt_find+0x82d/0xa20 [ 2849.838597][ T1455] __pmd_alloc+0x3f/0x860 [ 2849.842987][ T1455] __handle_mm_fault+0x94a/0x2a40 [ 2849.848090][ T1455] ? __pfx___handle_mm_fault+0x10/0x10 [ 2849.853651][ T1455] handle_mm_fault+0x3fa/0xaa0 [ 2849.858492][ T1455] __get_user_pages+0x8d9/0x3b50 [ 2849.863505][ T1455] ? __pfx_mt_find+0x10/0x10 [ 2849.868171][ T1455] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 2849.873857][ T1455] ? __pfx___get_user_pages+0x10/0x10 [ 2849.879299][ T1455] ? __mm_populate+0x21d/0x380 [ 2849.884141][ T1455] populate_vma_page_range+0x27f/0x3a0 [ 2849.889671][ T1455] ? __pfx_populate_vma_page_range+0x10/0x10 [ 2849.895721][ T1455] ? __pfx_find_vma_intersection+0x10/0x10 [ 2849.901588][ T1455] ? vm_mmap_pgoff+0x25b/0x360 [ 2849.906420][ T1455] __mm_populate+0x1d6/0x380 [ 2849.911080][ T1455] ? __pfx___mm_populate+0x10/0x10 [ 2849.916268][ T1455] ? up_write+0x1b2/0x520 [ 2849.920659][ T1455] vm_mmap_pgoff+0x293/0x360 [ 2849.925320][ T1455] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 2849.930498][ T1455] ? __fget_files+0x206/0x3a0 [ 2849.935246][ T1455] ksys_mmap_pgoff+0x7d/0x5c0 [ 2849.940028][ T1455] ? __pfx_ksys_write+0x10/0x10 [ 2849.944940][ T1455] __x64_sys_mmap+0x125/0x190 [ 2849.949677][ T1455] do_syscall_64+0xcd/0x250 [ 2849.954246][ T1455] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2849.960210][ T1455] RIP: 0033:0x7fadc1b85d29 [ 2849.964669][ T1455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2849.984346][ T1455] RSP: 002b:00007fadc297e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 2849.992832][ T1455] RAX: ffffffffffffffda RBX: 00007fadc1d75fa0 RCX: 00007fadc1b85d29 [ 2850.000858][ T1455] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 2850.008889][ T1455] RBP: 00007fadc297e090 R08: 0000000000000002 R09: 0000000000008000 [ 2850.016910][ T1455] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000001 [ 2850.024929][ T1455] R13: 0000000000000001 R14: 00007fadc1d75fa0 R15: 00007ffe58157da8 [ 2850.032978][ T1455] [ 2855.279230][ T1519] FAULT_INJECTION: forcing a failure. [ 2855.279230][ T1519] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2855.353248][ T1519] CPU: 1 UID: 0 PID: 1519 Comm: syz.3.5906 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2855.364029][ T1519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2855.374141][ T1519] Call Trace: [ 2855.377465][ T1519] [ 2855.380435][ T1519] dump_stack_lvl+0x16c/0x1f0 [ 2855.385178][ T1519] should_fail_ex+0x497/0x5b0 [ 2855.389928][ T1519] ? fs_reclaim_acquire+0xae/0x150 [ 2855.395114][ T1519] should_fail_alloc_page+0xe7/0x130 [ 2855.400488][ T1519] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 2855.406720][ T1519] __alloc_pages_noprof+0x190/0x25b0 [ 2855.412078][ T1519] ? __pfx_mark_lock+0x10/0x10 [ 2855.416935][ T1519] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 2855.422747][ T1519] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 2855.428700][ T1519] ? policy_nodemask+0xea/0x4e0 [ 2855.433661][ T1519] alloc_pages_mpol_noprof+0x2c9/0x610 [ 2855.439202][ T1519] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 2855.445253][ T1519] ? find_held_lock+0x2d/0x110 [ 2855.450082][ T1519] ? mt_find+0x82d/0xa20 [ 2855.454400][ T1519] __pmd_alloc+0x3f/0x860 [ 2855.458808][ T1519] __handle_mm_fault+0x94a/0x2a40 [ 2855.463914][ T1519] ? __pfx___handle_mm_fault+0x10/0x10 [ 2855.469482][ T1519] handle_mm_fault+0x3fa/0xaa0 [ 2855.474320][ T1519] __get_user_pages+0x8d9/0x3b50 [ 2855.479334][ T1519] ? __pfx_mt_find+0x10/0x10 [ 2855.483996][ T1519] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 2855.489686][ T1519] ? __pfx___get_user_pages+0x10/0x10 [ 2855.495139][ T1519] ? __mm_populate+0x21d/0x380 [ 2855.499988][ T1519] populate_vma_page_range+0x27f/0x3a0 [ 2855.505521][ T1519] ? __pfx_populate_vma_page_range+0x10/0x10 [ 2855.511575][ T1519] ? __pfx_find_vma_intersection+0x10/0x10 [ 2855.517451][ T1519] ? vm_mmap_pgoff+0x25b/0x360 [ 2855.522288][ T1519] __mm_populate+0x1d6/0x380 [ 2855.526951][ T1519] ? __pfx___mm_populate+0x10/0x10 [ 2855.532144][ T1519] ? up_write+0x1b2/0x520 [ 2855.536540][ T1519] vm_mmap_pgoff+0x293/0x360 [ 2855.541201][ T1519] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 2855.546392][ T1519] ? __fget_files+0x206/0x3a0 [ 2855.551148][ T1519] ksys_mmap_pgoff+0x7d/0x5c0 [ 2855.555889][ T1519] ? __pfx_ksys_write+0x10/0x10 [ 2855.560808][ T1519] __x64_sys_mmap+0x125/0x190 [ 2855.565581][ T1519] do_syscall_64+0xcd/0x250 [ 2855.570152][ T1519] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2855.576202][ T1519] RIP: 0033:0x7fa051f85d29 [ 2855.580664][ T1519] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2855.600334][ T1519] RSP: 002b:00007fa051df9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 2855.608813][ T1519] RAX: ffffffffffffffda RBX: 00007fa052175fa0 RCX: 00007fa051f85d29 [ 2855.616843][ T1519] RDX: fffffffffffffffe RSI: 0000000000400005 RDI: 0000000000000000 [ 2855.624891][ T1519] RBP: 00007fa051df9090 R08: 0000000000000002 R09: 0000000000008000 [ 2855.632921][ T1519] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000001 [ 2855.640961][ T1519] R13: 0000000000000001 R14: 00007fa052175fa0 R15: 00007ffdde207278 [ 2855.649033][ T1519] [ 2855.652108][ C1] vkms_vblank_simulate: vblank timer overrun [ 2859.987386][ T1556] FAULT_INJECTION: forcing a failure. [ 2859.987386][ T1556] name failslab, interval 1, probability 0, space 0, times 0 [ 2860.106472][ T1556] CPU: 1 UID: 0 PID: 1556 Comm: syz.2.5917 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2860.117258][ T1556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2860.127373][ T1556] Call Trace: [ 2860.130688][ T1556] [ 2860.133672][ T1556] dump_stack_lvl+0x16c/0x1f0 [ 2860.138417][ T1556] should_fail_ex+0x497/0x5b0 [ 2860.143156][ T1556] ? find_held_lock+0x2d/0x110 [ 2860.147994][ T1556] should_failslab+0xc2/0x120 [ 2860.152754][ T1556] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 2860.158192][ T1556] ? __pfx_lock_release+0x10/0x10 [ 2860.163278][ T1556] ? dst_alloc+0x99/0x1a0 [ 2860.167684][ T1556] dst_alloc+0x99/0x1a0 [ 2860.171902][ T1556] rt_dst_alloc+0x35/0x3a0 [ 2860.176391][ T1556] ip_route_output_key_hash_rcu+0x8a5/0x2770 [ 2860.182447][ T1556] ip_route_output_key_hash+0x138/0x2e0 [ 2860.188057][ T1556] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 2860.194207][ T1556] ? __call_rcu_common.constprop.0+0x36e/0x7a0 [ 2860.200432][ T1556] ? lockdep_hardirqs_on+0x7c/0x110 [ 2860.205703][ T1556] ip_route_output_flow+0x27/0x150 [ 2860.210879][ T1556] tcp_v4_connect+0x85b/0x1b80 [ 2860.215725][ T1556] ? __pfx_tcp_v4_connect+0x10/0x10 [ 2860.220992][ T1556] ? __local_bh_enable_ip+0xa4/0x120 [ 2860.226355][ T1556] mptcp_connect+0x66b/0xee0 [ 2860.231043][ T1556] __inet_stream_connect+0x3c7/0x1020 [ 2860.236479][ T1556] ? find_held_lock+0x2d/0x110 [ 2860.241355][ T1556] ? __pfx___inet_stream_connect+0x10/0x10 [ 2860.247224][ T1556] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 2860.252657][ T1556] ? __pfx_inet_stream_connect+0x10/0x10 [ 2860.258354][ T1556] ? mark_held_locks+0x9f/0xe0 [ 2860.263194][ T1556] ? __local_bh_enable_ip+0xa4/0x120 [ 2860.268543][ T1556] ? __pfx_inet_stream_connect+0x10/0x10 [ 2860.274318][ T1556] inet_stream_connect+0x57/0xa0 [ 2860.279402][ T1556] __sys_connect_file+0x13e/0x1a0 [ 2860.284499][ T1556] __sys_connect+0x14f/0x170 [ 2860.289152][ T1556] ? __pfx___sys_connect+0x10/0x10 [ 2860.294345][ T1556] ? __pfx_ksys_write+0x10/0x10 [ 2860.299268][ T1556] __x64_sys_connect+0x72/0xb0 [ 2860.304097][ T1556] ? lockdep_hardirqs_on+0x7c/0x110 [ 2860.309360][ T1556] do_syscall_64+0xcd/0x250 [ 2860.313938][ T1556] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2860.319899][ T1556] RIP: 0033:0x7f2dfb985d29 [ 2860.324361][ T1556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2860.344031][ T1556] RSP: 002b:00007f2dfc786038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 2860.352509][ T1556] RAX: ffffffffffffffda RBX: 00007f2dfbb76080 RCX: 00007f2dfb985d29 [ 2860.360533][ T1556] RDX: 0000000000000055 RSI: 00000000200000c0 RDI: 0000000000000003 [ 2860.368554][ T1556] RBP: 00007f2dfc786090 R08: 0000000000000000 R09: 0000000000000000 [ 2860.376571][ T1556] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2860.384593][ T1556] R13: 0000000000000000 R14: 00007f2dfbb76080 R15: 00007fff493b3fa8 [ 2860.392644][ T1556] [ 2865.878699][ T1616] FAULT_INJECTION: forcing a failure. [ 2865.878699][ T1616] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2865.995683][ T1616] CPU: 0 UID: 0 PID: 1616 Comm: syz.2.5931 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2866.006453][ T1616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2866.016568][ T1616] Call Trace: [ 2866.019891][ T1616] [ 2866.022873][ T1616] dump_stack_lvl+0x16c/0x1f0 [ 2866.027621][ T1616] should_fail_ex+0x497/0x5b0 [ 2866.032369][ T1616] _copy_from_iter+0x29b/0x1400 [ 2866.037296][ T1616] ? trace_lock_acquire+0x14e/0x1f0 [ 2866.042573][ T1616] ? __alloc_skb+0x200/0x380 [ 2866.047229][ T1616] ? __pfx__copy_from_iter+0x10/0x10 [ 2866.052593][ T1616] ? __virt_addr_valid+0x1a4/0x590 [ 2866.057778][ T1616] ? __virt_addr_valid+0x5e/0x590 [ 2866.062873][ T1616] ? __phys_addr_symbol+0x30/0x80 [ 2866.067977][ T1616] ? __check_object_size+0x488/0x710 [ 2866.073346][ T1616] netlink_sendmsg+0x813/0xd70 [ 2866.078177][ T1616] ? __pfx_netlink_sendmsg+0x10/0x10 [ 2866.083537][ T1616] ____sys_sendmsg+0x9ae/0xb40 [ 2866.088362][ T1616] ? copy_msghdr_from_user+0x10b/0x160 [ 2866.093893][ T1616] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2866.099233][ T1616] ? __lock_acquire+0xcc5/0x3c40 [ 2866.104241][ T1616] ___sys_sendmsg+0x135/0x1e0 [ 2866.109013][ T1616] ? __pfx____sys_sendmsg+0x10/0x10 [ 2866.114309][ T1616] ? trace_lock_acquire+0x14e/0x1f0 [ 2866.119599][ T1616] __sys_sendmmsg+0x201/0x420 [ 2866.124346][ T1616] ? __pfx___sys_sendmmsg+0x10/0x10 [ 2866.129625][ T1616] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 2866.135682][ T1616] ? fput+0x67/0x440 [ 2866.139646][ T1616] ? ksys_write+0x1ba/0x250 [ 2866.144211][ T1616] ? __pfx_ksys_write+0x10/0x10 [ 2866.149137][ T1616] __x64_sys_sendmmsg+0x9c/0x100 [ 2866.154160][ T1616] ? lockdep_hardirqs_on+0x7c/0x110 [ 2866.159426][ T1616] do_syscall_64+0xcd/0x250 [ 2866.164001][ T1616] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2866.169970][ T1616] RIP: 0033:0x7f2dfb985d29 [ 2866.174434][ T1616] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2866.194099][ T1616] RSP: 002b:00007f2dfc7a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 2866.202578][ T1616] RAX: ffffffffffffffda RBX: 00007f2dfbb75fa0 RCX: 00007f2dfb985d29 [ 2866.210601][ T1616] RDX: 0000000000000003 RSI: 0000000020000080 RDI: 0000000000000003 [ 2866.218706][ T1616] RBP: 00007f2dfc7a7090 R08: 0000000000000000 R09: 0000000000000000 [ 2866.226730][ T1616] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2866.234750][ T1616] R13: 0000000000000000 R14: 00007f2dfbb75fa0 R15: 00007fff493b3fa8 [ 2866.242797][ T1616] [ 2874.199901][ T1680] netlink: 'syz.3.5949': attribute type 4 has an invalid length. [ 2874.236347][ T1682] netlink: 'syz.4.5948': attribute type 4 has an invalid length. [ 2877.106909][ T1704] FAULT_INJECTION: forcing a failure. [ 2877.106909][ T1704] name failslab, interval 1, probability 0, space 0, times 0 [ 2877.155826][ T1704] CPU: 1 UID: 0 PID: 1704 Comm: syz.2.5956 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2877.166688][ T1704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2877.176800][ T1704] Call Trace: [ 2877.180120][ T1704] [ 2877.183096][ T1704] dump_stack_lvl+0x16c/0x1f0 [ 2877.187845][ T1704] should_fail_ex+0x497/0x5b0 [ 2877.192588][ T1704] ? fs_reclaim_acquire+0xae/0x150 [ 2877.197763][ T1704] should_failslab+0xc2/0x120 [ 2877.202522][ T1704] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 2877.207965][ T1704] ? getname_flags.part.0+0x4c/0x550 [ 2877.213337][ T1704] ? vfs_write+0x306/0x1150 [ 2877.217903][ T1704] getname_flags.part.0+0x4c/0x550 [ 2877.223100][ T1704] getname+0x8d/0xe0 [ 2877.227062][ T1704] do_sys_openat2+0x104/0x1e0 [ 2877.231816][ T1704] ? __pfx_do_sys_openat2+0x10/0x10 [ 2877.237653][ T1704] ? __fget_files+0x206/0x3a0 [ 2877.242491][ T1704] __x64_sys_openat+0x175/0x210 [ 2877.247431][ T1704] ? __pfx___x64_sys_openat+0x10/0x10 [ 2877.252874][ T1704] ? ksys_write+0x1ba/0x250 [ 2877.257466][ T1704] do_syscall_64+0xcd/0x250 [ 2877.262052][ T1704] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2877.268013][ T1704] RIP: 0033:0x7f2dfb985d29 [ 2877.272480][ T1704] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2877.292160][ T1704] RSP: 002b:00007f2dfc7a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 2877.300644][ T1704] RAX: ffffffffffffffda RBX: 00007f2dfbb75fa0 RCX: 00007f2dfb985d29 [ 2877.308671][ T1704] RDX: 0000000000000200 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 2877.316694][ T1704] RBP: 00007f2dfc7a7090 R08: 0000000000000000 R09: 0000000000000000 [ 2877.324721][ T1704] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2877.332760][ T1704] R13: 0000000000000001 R14: 00007f2dfbb75fa0 R15: 00007fff493b3fa8 [ 2877.340803][ T1704] [ 2881.725687][ T1739] netlink: 334 bytes leftover after parsing attributes in process `syz.0.5965'. [ 2888.592241][ T1819] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5987'. [ 2888.826678][ T1817] FAULT_INJECTION: forcing a failure. [ 2888.826678][ T1817] name failslab, interval 1, probability 0, space 0, times 0 [ 2888.895643][ T1817] CPU: 1 UID: 0 PID: 1817 Comm: syz.3.5986 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2888.906420][ T1817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2888.916534][ T1817] Call Trace: [ 2888.919853][ T1817] [ 2888.922831][ T1817] dump_stack_lvl+0x16c/0x1f0 [ 2888.927581][ T1817] should_fail_ex+0x497/0x5b0 [ 2888.932341][ T1817] ? fs_reclaim_acquire+0xae/0x150 [ 2888.937519][ T1817] should_failslab+0xc2/0x120 [ 2888.942266][ T1817] __kmalloc_noprof+0xce/0x4f0 [ 2888.947097][ T1817] ? tomoyo_realpath_from_path+0xbf/0x710 [ 2888.952901][ T1817] tomoyo_realpath_from_path+0xbf/0x710 [ 2888.958516][ T1817] ? tomoyo_path_number_perm+0x235/0x5b0 [ 2888.964250][ T1817] tomoyo_path_number_perm+0x248/0x5b0 [ 2888.969791][ T1817] ? tomoyo_path_number_perm+0x235/0x5b0 [ 2888.975515][ T1817] ? lockdep_hardirqs_on_prepare+0x401/0x420 [ 2888.981684][ T1817] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 2888.987788][ T1817] ? do_raw_spin_unlock+0x172/0x230 [ 2888.993056][ T1817] ? _raw_spin_unlock+0x28/0x50 [ 2888.997981][ T1817] ? d_add+0x43c/0x730 [ 2889.002144][ T1817] ? do_raw_spin_unlock+0x172/0x230 [ 2889.007421][ T1817] ? simple_lookup+0x12c/0x180 [ 2889.012249][ T1817] ? lookup_one_qstr_excl+0x39/0x190 [ 2889.017628][ T1817] tomoyo_path_mkdir+0x9c/0xe0 [ 2889.022481][ T1817] ? __pfx_tomoyo_path_mkdir+0x10/0x10 [ 2889.028007][ T1817] ? lock_acquire+0x2f/0xb0 [ 2889.032580][ T1817] ? get_current_fs_domain+0x184/0x1f0 [ 2889.038255][ T1817] security_path_mkdir+0x154/0x2f0 [ 2889.043437][ T1817] do_mkdirat+0x176/0x3a0 [ 2889.047841][ T1817] ? __pfx_do_mkdirat+0x10/0x10 [ 2889.052772][ T1817] ? getname_flags.part.0+0x1c5/0x550 [ 2889.058223][ T1817] __x64_sys_mkdir+0xef/0x140 [ 2889.062955][ T1817] do_syscall_64+0xcd/0x250 [ 2889.067507][ T1817] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2889.073444][ T1817] RIP: 0033:0x7fa051f85d29 [ 2889.077890][ T1817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2889.097539][ T1817] RSP: 002b:00007fa051df9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 2889.105989][ T1817] RAX: ffffffffffffffda RBX: 00007fa052175fa0 RCX: 00007fa051f85d29 [ 2889.113990][ T1817] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020001280 [ 2889.122005][ T1817] RBP: 00007fa051df9090 R08: 0000000000000000 R09: 0000000000000000 [ 2889.130004][ T1817] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2889.138002][ T1817] R13: 0000000000000000 R14: 00007fa052175fa0 R15: 00007ffdde207278 [ 2889.146016][ T1817] [ 2889.167207][ T1828] FAULT_INJECTION: forcing a failure. [ 2889.167207][ T1828] name failslab, interval 1, probability 0, space 0, times 0 [ 2889.265794][ T1828] CPU: 0 UID: 0 PID: 1828 Comm: syz.4.5990 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2889.276561][ T1828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2889.286651][ T1828] Call Trace: [ 2889.290041][ T1828] [ 2889.292991][ T1828] dump_stack_lvl+0x16c/0x1f0 [ 2889.297719][ T1828] should_fail_ex+0x497/0x5b0 [ 2889.302435][ T1828] ? fs_reclaim_acquire+0xae/0x150 [ 2889.307596][ T1828] should_failslab+0xc2/0x120 [ 2889.312324][ T1828] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 2889.317739][ T1828] ? security_file_alloc+0x34/0x2b0 [ 2889.322981][ T1828] security_file_alloc+0x34/0x2b0 [ 2889.328038][ T1828] init_file+0x93/0x480 [ 2889.332237][ T1828] alloc_empty_file+0x91/0x1e0 [ 2889.337052][ T1828] path_openat+0xe1/0x2d60 [ 2889.341504][ T1828] ? hlock_class+0x4e/0x130 [ 2889.346048][ T1828] ? __lock_acquire+0x15a9/0x3c40 [ 2889.351125][ T1828] ? __pfx_path_openat+0x10/0x10 [ 2889.356098][ T1828] ? __pfx___lock_acquire+0x10/0x10 [ 2889.361326][ T1828] ? lock_acquire.part.0+0x11b/0x380 [ 2889.366639][ T1828] ? find_held_lock+0x2d/0x110 [ 2889.371448][ T1828] do_filp_open+0x20c/0x470 [ 2889.376004][ T1828] ? __pfx_do_filp_open+0x10/0x10 [ 2889.381065][ T1828] ? find_held_lock+0x2d/0x110 [ 2889.385904][ T1828] ? alloc_fd+0x41f/0x760 [ 2889.390306][ T1828] do_sys_openat2+0x17a/0x1e0 [ 2889.395027][ T1828] ? __pfx_do_sys_openat2+0x10/0x10 [ 2889.400292][ T1828] ? __fget_files+0x206/0x3a0 [ 2889.405008][ T1828] __x64_sys_openat+0x175/0x210 [ 2889.409902][ T1828] ? __pfx___x64_sys_openat+0x10/0x10 [ 2889.415319][ T1828] ? ksys_write+0x1ba/0x250 [ 2889.419864][ T1828] do_syscall_64+0xcd/0x250 [ 2889.424432][ T1828] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2889.430368][ T1828] RIP: 0033:0x7fadc1b85d29 [ 2889.434808][ T1828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2889.454451][ T1828] RSP: 002b:00007fadc297e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 2889.462900][ T1828] RAX: ffffffffffffffda RBX: 00007fadc1d75fa0 RCX: 00007fadc1b85d29 [ 2889.470897][ T1828] RDX: 0000000000082802 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 2889.478896][ T1828] RBP: 00007fadc297e090 R08: 0000000000000000 R09: 0000000000000000 [ 2889.486899][ T1828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2889.494896][ T1828] R13: 0000000000000000 R14: 00007fadc1d75fa0 R15: 00007ffe58157da8 [ 2889.502912][ T1828] [ 2889.765765][ T1817] ERROR: Out of memory at tomoyo_realpath_from_path. [ 2890.690763][ T1834] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2890.720588][ T1834] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 2890.827835][ T1834] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2890.833919][ T1834] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 2890.981363][ T1834] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 2891.048703][ T1834] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 2891.118526][ T1834] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2891.165867][ T1834] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 2891.790051][ T1851] FAULT_INJECTION: forcing a failure. [ 2891.790051][ T1851] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2891.935666][ T1851] CPU: 1 UID: 0 PID: 1851 Comm: syz.0.5996 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2891.946450][ T1851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2891.956561][ T1851] Call Trace: [ 2891.959884][ T1851] [ 2891.962864][ T1851] dump_stack_lvl+0x16c/0x1f0 [ 2891.967613][ T1851] should_fail_ex+0x497/0x5b0 [ 2891.972363][ T1851] ? fs_reclaim_acquire+0xae/0x150 [ 2891.977538][ T1851] should_fail_alloc_page+0xe7/0x130 [ 2891.982898][ T1851] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 2891.989221][ T1851] __alloc_pages_noprof+0x190/0x25b0 [ 2891.994585][ T1851] ? hlock_class+0x4e/0x130 [ 2891.999157][ T1851] ? mark_lock+0xb5/0xc60 [ 2892.003561][ T1851] ? hlock_class+0x4e/0x130 [ 2892.008129][ T1851] ? __lock_acquire+0xcc5/0x3c40 [ 2892.013128][ T1851] ? __pfx_mark_lock+0x10/0x10 [ 2892.017969][ T1851] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 2892.023782][ T1851] ? hlock_class+0x4e/0x130 [ 2892.028356][ T1851] ? hlock_class+0x4e/0x130 [ 2892.032929][ T1851] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 2892.038886][ T1851] ? policy_nodemask+0xea/0x4e0 [ 2892.043787][ T1851] alloc_pages_mpol_noprof+0x2c9/0x610 [ 2892.049481][ T1851] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 2892.055518][ T1851] ? __pfx___lock_acquire+0x10/0x10 [ 2892.060850][ T1851] ? lock_acquire+0x2f/0xb0 [ 2892.065386][ T1851] ? is_bpf_text_address+0x30/0x1a0 [ 2892.070628][ T1851] ? bpf_ksym_find+0x124/0x1c0 [ 2892.075436][ T1851] pte_alloc_one+0x20/0x390 [ 2892.079972][ T1851] do_pte_missing+0x1ae7/0x3e00 [ 2892.084873][ T1851] __handle_mm_fault+0x103c/0x2a40 [ 2892.090036][ T1851] ? __pfx___handle_mm_fault+0x10/0x10 [ 2892.095534][ T1851] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 2892.101224][ T1851] ? find_vma+0xc0/0x140 [ 2892.105512][ T1851] ? __pfx_find_vma+0x10/0x10 [ 2892.110230][ T1851] handle_mm_fault+0x3fa/0xaa0 [ 2892.115045][ T1851] do_user_addr_fault+0x7a3/0x13f0 [ 2892.120196][ T1851] exc_page_fault+0x5c/0xc0 [ 2892.124736][ T1851] asm_exc_page_fault+0x26/0x30 [ 2892.129623][ T1851] RIP: 0010:rep_movs_alternative+0x30/0x70 [ 2892.135473][ T1851] Code: f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 [ 2892.155207][ T1851] RSP: 0018:ffffc9000c1afc50 EFLAGS: 00050246 [ 2892.161316][ T1851] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000008 [ 2892.169310][ T1851] RDX: fffff52001835f98 RSI: 0000000000000000 RDI: ffffc9000c1afcb8 [ 2892.177302][ T1851] RBP: 0000000000000008 R08: 0000000000000001 R09: fffff52001835f97 [ 2892.185295][ T1851] R10: ffffc9000c1afcbf R11: 0000000000000001 R12: 0000000000000000 [ 2892.193291][ T1851] R13: ffffc9000c1afcb8 R14: 0000000000000000 R15: ffff88814d85a1e8 [ 2892.201308][ T1851] _copy_from_user+0x9a/0xd0 [ 2892.206034][ T1851] snd_ctl_tlv_ioctl+0xe5/0x760 [ 2892.210913][ T1851] ? snd_ctl_ioctl+0x8d1/0x1080 [ 2892.215795][ T1851] ? __pfx_snd_ctl_tlv_ioctl+0x10/0x10 [ 2892.221308][ T1851] snd_ctl_ioctl+0x8df/0x1080 [ 2892.226019][ T1851] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 2892.231160][ T1851] ? __pfx_lock_release+0x10/0x10 [ 2892.236209][ T1851] ? trace_lock_acquire+0x14e/0x1f0 [ 2892.241459][ T1851] ? __fget_files+0x206/0x3a0 [ 2892.246184][ T1851] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 2892.251336][ T1851] __x64_sys_ioctl+0x190/0x200 [ 2892.256141][ T1851] do_syscall_64+0xcd/0x250 [ 2892.260726][ T1851] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2892.266754][ T1851] RIP: 0033:0x7fba6d185d29 [ 2892.271194][ T1851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2892.290836][ T1851] RSP: 002b:00007fba6e062038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2892.299295][ T1851] RAX: ffffffffffffffda RBX: 00007fba6d375fa0 RCX: 00007fba6d185d29 [ 2892.307290][ T1851] RDX: 0000000000000000 RSI: 00000000c008551a RDI: 0000000000000003 [ 2892.315284][ T1851] RBP: 00007fba6e062090 R08: 0000000000000000 R09: 0000000000000000 [ 2892.323282][ T1851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2892.331280][ T1851] R13: 0000000000000000 R14: 00007fba6d375fa0 R15: 00007fffd9e05468 [ 2892.339293][ T1851] [ 2892.355209][T17933] Bluetooth: hci3: command 0x0406 tx timeout [ 2892.658552][ T1864] FAULT_INJECTION: forcing a failure. [ 2892.658552][ T1864] name failslab, interval 1, probability 0, space 0, times 0 [ 2892.705737][ T1864] CPU: 0 UID: 0 PID: 1864 Comm: syz.2.5999 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2892.716509][ T1864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2892.726615][ T1864] Call Trace: [ 2892.729930][ T1864] [ 2892.732907][ T1864] dump_stack_lvl+0x16c/0x1f0 [ 2892.737692][ T1864] should_fail_ex+0x497/0x5b0 [ 2892.742437][ T1864] ? trace_lock_acquire+0x14e/0x1f0 [ 2892.747710][ T1864] should_failslab+0xc2/0x120 [ 2892.752460][ T1864] __kmalloc_cache_noprof+0x68/0x420 [ 2892.757815][ T1864] proc_thread_self_get_link+0x1c6/0x240 [ 2892.763512][ T1864] ? __pfx_proc_thread_self_get_link+0x10/0x10 [ 2892.769727][ T1864] step_into+0x19b5/0x2230 [ 2892.774204][ T1864] ? set_root+0x3f8/0x610 [ 2892.778605][ T1864] ? __pfx_step_into+0x10/0x10 [ 2892.783468][ T1864] walk_component+0xfc/0x5b0 [ 2892.788128][ T1864] link_path_walk.part.0.constprop.0+0x669/0xd40 [ 2892.794549][ T1864] path_openat+0x228/0x2d60 [ 2892.799122][ T1864] ? hlock_class+0x4e/0x130 [ 2892.803705][ T1864] ? __pfx_path_openat+0x10/0x10 [ 2892.808700][ T1864] ? __pfx___lock_acquire+0x10/0x10 [ 2892.813952][ T1864] ? lock_acquire.part.0+0x11b/0x380 [ 2892.819294][ T1864] ? find_held_lock+0x2d/0x110 [ 2892.824219][ T1864] do_filp_open+0x20c/0x470 [ 2892.828799][ T1864] ? __pfx_do_filp_open+0x10/0x10 [ 2892.833888][ T1864] ? find_held_lock+0x2d/0x110 [ 2892.838742][ T1864] ? alloc_fd+0x41f/0x760 [ 2892.843152][ T1864] do_sys_openat2+0x17a/0x1e0 [ 2892.847914][ T1864] ? __pfx_do_sys_openat2+0x10/0x10 [ 2892.853187][ T1864] ? __fget_files+0x206/0x3a0 [ 2892.857939][ T1864] __x64_sys_openat+0x175/0x210 [ 2892.862865][ T1864] ? __pfx___x64_sys_openat+0x10/0x10 [ 2892.868311][ T1864] ? ksys_write+0x1ba/0x250 [ 2892.873069][ T1864] do_syscall_64+0xcd/0x250 [ 2892.877644][ T1864] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2892.883607][ T1864] RIP: 0033:0x7f2dfb985d29 [ 2892.888072][ T1864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2892.907739][ T1864] RSP: 002b:00007f2dfc7a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 2892.916220][ T1864] RAX: ffffffffffffffda RBX: 00007f2dfbb75fa0 RCX: 00007f2dfb985d29 [ 2892.924243][ T1864] RDX: 0000000000000000 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 2892.932271][ T1864] RBP: 00007f2dfc7a7090 R08: 0000000000000000 R09: 0000000000000000 [ 2892.940296][ T1864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2892.948323][ T1864] R13: 0000000000000001 R14: 00007f2dfbb75fa0 R15: 00007fff493b3fa8 [ 2892.956363][ T1864] [ 2892.973997][T17933] Bluetooth: hci4: command 0x0406 tx timeout [ 2893.025881][T14923] Bluetooth: hci2: command 0x0406 tx timeout [ 2893.196199][T14923] Bluetooth: hci0: command 0x0406 tx timeout [ 2894.395898][T14923] Bluetooth: hci3: command 0x0406 tx timeout [ 2895.026097][T14923] Bluetooth: hci4: command 0x0406 tx timeout [ 2895.106221][T14923] Bluetooth: hci2: command 0x0406 tx timeout [ 2895.273383][T14923] Bluetooth: hci0: command 0x0406 tx timeout [ 2901.928182][ T1968] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6022'. [ 2902.532336][ T1976] FAULT_INJECTION: forcing a failure. [ 2902.532336][ T1976] name failslab, interval 1, probability 0, space 0, times 0 [ 2902.545178][ T1976] CPU: 0 UID: 0 PID: 1976 Comm: syz.4.6023 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2902.555919][ T1976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2902.566114][ T1976] Call Trace: [ 2902.569434][ T1976] [ 2902.572398][ T1976] dump_stack_lvl+0x16c/0x1f0 [ 2902.577137][ T1976] should_fail_ex+0x497/0x5b0 [ 2902.581874][ T1976] ? hlock_class+0x4e/0x130 [ 2902.586449][ T1976] should_failslab+0xc2/0x120 [ 2902.591194][ T1976] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 2902.597072][ T1976] ? __pfx_mark_lock+0x10/0x10 [ 2902.601913][ T1976] ? __alloc_skb+0x2b3/0x380 [ 2902.606572][ T1976] __alloc_skb+0x2b3/0x380 [ 2902.611058][ T1976] ? __pfx___alloc_skb+0x10/0x10 [ 2902.616064][ T1976] ? tipc_named_publish+0x1db/0x770 [ 2902.621332][ T1976] tipc_buf_acquire+0x26/0xe0 [ 2902.626063][ T1976] named_prepare_buf+0x29/0x170 [ 2902.630963][ T1976] tipc_named_publish+0x1ed/0x770 [ 2902.636030][ T1976] tipc_nametbl_publish+0x17d/0x280 [ 2902.641276][ T1976] tipc_sk_publish+0x1d8/0x430 [ 2902.646091][ T1976] ? __pfx_tipc_sk_publish+0x10/0x10 [ 2902.651425][ T1976] ? __local_bh_enable_ip+0xa4/0x120 [ 2902.656755][ T1976] tipc_sk_bind+0x16f/0x380 [ 2902.661303][ T1976] tipc_bind+0x190/0x2a0 [ 2902.665595][ T1976] __sys_bind+0x213/0x260 [ 2902.669971][ T1976] ? __pfx___sys_bind+0x10/0x10 [ 2902.674855][ T1976] ? __fget_files+0x206/0x3a0 [ 2902.679578][ T1976] ? __pfx_ksys_write+0x10/0x10 [ 2902.684466][ T1976] __x64_sys_bind+0x72/0xb0 [ 2902.688999][ T1976] ? lockdep_hardirqs_on+0x7c/0x110 [ 2902.694233][ T1976] do_syscall_64+0xcd/0x250 [ 2902.698786][ T1976] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2902.704716][ T1976] RIP: 0033:0x7fadc1b85d29 [ 2902.709158][ T1976] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2902.731764][ T1976] RSP: 002b:00007fadc297e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 2902.740219][ T1976] RAX: ffffffffffffffda RBX: 00007fadc1d75fa0 RCX: 00007fadc1b85d29 [ 2902.748223][ T1976] RDX: 0000000000000066 RSI: 0000000020000040 RDI: 0000000000000003 [ 2902.756220][ T1976] RBP: 00007fadc297e090 R08: 0000000000000000 R09: 0000000000000000 [ 2902.764217][ T1976] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2902.772212][ T1976] R13: 0000000000000000 R14: 00007fadc1d75fa0 R15: 00007ffe58157da8 [ 2902.780241][ T1976] [ 2902.783407][ T1976] tipc: Publication distribution failure [ 2903.035035][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 2903.041792][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 2906.558942][ T2026] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6037'. [ 2907.781081][ T2029] Process accounting resumed [ 2908.137429][ T2047] FAULT_INJECTION: forcing a failure. [ 2908.137429][ T2047] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2908.234290][ T2047] CPU: 0 UID: 0 PID: 2047 Comm: syz.3.6042 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2908.245067][ T2047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2908.255178][ T2047] Call Trace: [ 2908.258499][ T2047] [ 2908.261466][ T2047] dump_stack_lvl+0x16c/0x1f0 [ 2908.266295][ T2047] should_fail_ex+0x497/0x5b0 [ 2908.271040][ T2047] ? fs_reclaim_acquire+0xae/0x150 [ 2908.276220][ T2047] should_fail_alloc_page+0xe7/0x130 [ 2908.281582][ T2047] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 2908.287795][ T2047] ? hlock_class+0x4e/0x130 [ 2908.292361][ T2047] __alloc_pages_noprof+0x190/0x25b0 [ 2908.297715][ T2047] ? __pfx_stack_trace_save+0x10/0x10 [ 2908.303154][ T2047] ? stack_depot_save_flags+0x28/0x9e0 [ 2908.308676][ T2047] ? rcu_is_watching+0x12/0xc0 [ 2908.313509][ T2047] ? kasan_save_stack+0x42/0x60 [ 2908.318424][ T2047] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 2908.324217][ T2047] ? hlock_class+0x4e/0x130 [ 2908.328786][ T2047] ? hlock_class+0x4e/0x130 [ 2908.333369][ T2047] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 2908.339323][ T2047] ? policy_nodemask+0xea/0x4e0 [ 2908.344248][ T2047] alloc_pages_mpol_noprof+0x2c9/0x610 [ 2908.349795][ T2047] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 2908.355849][ T2047] ? find_held_lock+0x2d/0x110 [ 2908.360683][ T2047] ? __pmd_alloc+0x37b/0x860 [ 2908.365345][ T2047] pte_alloc_one+0x20/0x390 [ 2908.369918][ T2047] do_pte_missing+0x1ae7/0x3e00 [ 2908.374844][ T2047] ? do_raw_spin_unlock+0x172/0x230 [ 2908.380107][ T2047] ? __pmd_alloc+0x380/0x860 [ 2908.384759][ T2047] __handle_mm_fault+0x103c/0x2a40 [ 2908.389950][ T2047] ? __pfx___handle_mm_fault+0x10/0x10 [ 2908.395466][ T2047] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 2908.401174][ T2047] ? find_vma+0xc0/0x140 [ 2908.405476][ T2047] ? __pfx_find_vma+0x10/0x10 [ 2908.410230][ T2047] handle_mm_fault+0x3fa/0xaa0 [ 2908.415070][ T2047] do_user_addr_fault+0x7a3/0x13f0 [ 2908.420248][ T2047] exc_page_fault+0x5c/0xc0 [ 2908.424808][ T2047] asm_exc_page_fault+0x26/0x30 [ 2908.429724][ T2047] RIP: 0010:rep_movs_alternative+0x4a/0x70 [ 2908.435608][ T2047] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1 [ 2908.455303][ T2047] RSP: 0018:ffffc9000dc47c40 EFLAGS: 00050202 [ 2908.461429][ T2047] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000ad4 [ 2908.469485][ T2047] RDX: ffffed100d9efd5a RSI: 0000000000000000 RDI: ffff88806cf7e000 [ 2908.477503][ T2047] RBP: 0000000000000ad4 R08: 0000000000000001 R09: ffffed100d9efd5a [ 2908.485515][ T2047] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000 [ 2908.493535][ T2047] R13: ffff88806cf7e000 R14: 0000000000000000 R15: 0000000000000ad4 [ 2908.501576][ T2047] _copy_from_user+0x9a/0xd0 [ 2908.506238][ T2047] sctp_setsockopt+0x422/0xb880 [ 2908.511170][ T2047] ? __pfx_sctp_setsockopt+0x10/0x10 [ 2908.516525][ T2047] ? __pfx_aa_sk_perm+0x10/0x10 [ 2908.521460][ T2047] ? sock_common_setsockopt+0x2e/0xf0 [ 2908.526889][ T2047] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 2908.532845][ T2047] do_sock_setsockopt+0x222/0x480 [ 2908.537965][ T2047] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 2908.543565][ T2047] ? lock_acquire+0x2f/0xb0 [ 2908.548144][ T2047] __sys_setsockopt+0x1a0/0x230 [ 2908.553075][ T2047] __x64_sys_setsockopt+0xbd/0x160 [ 2908.558255][ T2047] ? do_syscall_64+0x91/0x250 [ 2908.562991][ T2047] ? lockdep_hardirqs_on+0x7c/0x110 [ 2908.568252][ T2047] do_syscall_64+0xcd/0x250 [ 2908.572825][ T2047] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2908.578786][ T2047] RIP: 0033:0x7fa051f85d29 [ 2908.583247][ T2047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2908.603005][ T2047] RSP: 002b:00007fa051df9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 2908.611486][ T2047] RAX: ffffffffffffffda RBX: 00007fa052175fa0 RCX: 00007fa051f85d29 [ 2908.619512][ T2047] RDX: 000000000000007f RSI: 0000010000000084 RDI: 0000000000000003 [ 2908.627547][ T2047] RBP: 00007fa051df9090 R08: 0000000000000ad4 R09: 0000000000000000 [ 2908.635570][ T2047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2908.643599][ T2047] R13: 0000000000000000 R14: 00007fa052175fa0 R15: 00007ffdde207278 [ 2908.651639][ T2047] [ 2909.065771][ T2053] netlink: 342 bytes leftover after parsing attributes in process `syz.4.6044'. [ 2909.485825][ T2056] netlink: 342 bytes leftover after parsing attributes in process `syz.4.6044'. [ 2910.301475][ T2055] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2910.307985][ T2055] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2910.317721][ T2055] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 2910.324657][ T2055] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2911.354755][ T2072] netlink: 330 bytes leftover after parsing attributes in process `syz.4.6049'. [ 2911.586199][ T2072] netdevsim netdevsim4 ›: renamed from netdevsim0 (while UP) [ 2911.825823][T17933] Bluetooth: hci3: command 0x0406 tx timeout [ 2912.385714][T17933] Bluetooth: hci0: command 0x0406 tx timeout [ 2912.393012][T17933] Bluetooth: hci2: command 0x0406 tx timeout [ 2912.399304][T17933] Bluetooth: hci4: command 0x0406 tx timeout [ 2913.329301][ T2102] FAULT_INJECTION: forcing a failure. [ 2913.329301][ T2102] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2913.365682][ T2102] CPU: 0 UID: 0 PID: 2102 Comm: syz.3.6056 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2913.376455][ T2102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2913.386648][ T2102] Call Trace: [ 2913.389971][ T2102] [ 2913.392942][ T2102] dump_stack_lvl+0x16c/0x1f0 [ 2913.397776][ T2102] should_fail_ex+0x497/0x5b0 [ 2913.402516][ T2102] ? fs_reclaim_acquire+0xae/0x150 [ 2913.407693][ T2102] should_fail_alloc_page+0xe7/0x130 [ 2913.413058][ T2102] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 2913.419276][ T2102] ? __pfx_mark_lock+0x10/0x10 [ 2913.424113][ T2102] __alloc_pages_noprof+0x190/0x25b0 [ 2913.429569][ T2102] ? hlock_class+0x4e/0x130 [ 2913.434143][ T2102] ? mark_lock+0xb5/0xc60 [ 2913.438555][ T2102] ? hlock_class+0x4e/0x130 [ 2913.443125][ T2102] ? __lock_acquire+0xcc5/0x3c40 [ 2913.448119][ T2102] ? __pfx_mark_lock+0x10/0x10 [ 2913.452956][ T2102] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 2913.458764][ T2102] ? hlock_class+0x4e/0x130 [ 2913.463336][ T2102] ? hlock_class+0x4e/0x130 [ 2913.467901][ T2102] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 2913.473856][ T2102] ? policy_nodemask+0xea/0x4e0 [ 2913.478871][ T2102] alloc_pages_mpol_noprof+0x2c9/0x610 [ 2913.484405][ T2102] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 2913.490464][ T2102] ? __pfx___lock_acquire+0x10/0x10 [ 2913.495724][ T2102] ? lock_acquire+0x2f/0xb0 [ 2913.500276][ T2102] ? is_bpf_text_address+0x30/0x1a0 [ 2913.505556][ T2102] pte_alloc_one+0x20/0x390 [ 2913.510123][ T2102] do_pte_missing+0x1ae7/0x3e00 [ 2913.515056][ T2102] __handle_mm_fault+0x103c/0x2a40 [ 2913.520253][ T2102] ? __pfx___handle_mm_fault+0x10/0x10 [ 2913.525803][ T2102] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 2913.531530][ T2102] ? find_vma+0xc0/0x140 [ 2913.535831][ T2102] ? __pfx_find_vma+0x10/0x10 [ 2913.540578][ T2102] handle_mm_fault+0x3fa/0xaa0 [ 2913.545423][ T2102] do_user_addr_fault+0x7a3/0x13f0 [ 2913.550602][ T2102] exc_page_fault+0x5c/0xc0 [ 2913.555172][ T2102] asm_exc_page_fault+0x26/0x30 [ 2913.560094][ T2102] RIP: 0010:rep_movs_alternative+0x4a/0x70 [ 2913.565979][ T2102] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1 [ 2913.585642][ T2102] RSP: 0018:ffffc9000d28f7e8 EFLAGS: 00050206 [ 2913.591766][ T2102] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 00000000000000c4 [ 2913.599786][ T2102] RDX: ffffed100dc3f319 RSI: 0000000000000000 RDI: ffff88806e1f9800 [ 2913.607811][ T2102] RBP: ffffc9000d28fd60 R08: 0000000000000001 R09: ffffed100dc3f318 [ 2913.615837][ T2102] R10: ffff88806e1f98c3 R11: 0000000000000000 R12: 00000000000000c4 [ 2913.623860][ T2102] R13: 00007ffffffff000 R14: ffff88806e1f9800 R15: 00000000000000c4 [ 2913.631907][ T2102] _copy_from_iter+0x384/0x1400 [ 2913.636849][ T2102] ? trace_lock_acquire+0x14e/0x1f0 [ 2913.642117][ T2102] ? __alloc_skb+0x200/0x380 [ 2913.646777][ T2102] ? __pfx__copy_from_iter+0x10/0x10 [ 2913.652130][ T2102] ? __virt_addr_valid+0x1a4/0x590 [ 2913.657309][ T2102] ? __virt_addr_valid+0x5e/0x590 [ 2913.662398][ T2102] ? __phys_addr_symbol+0x30/0x80 [ 2913.667483][ T2102] ? __check_object_size+0x488/0x710 [ 2913.672844][ T2102] netlink_sendmsg+0x813/0xd70 [ 2913.677680][ T2102] ? __pfx_netlink_sendmsg+0x10/0x10 [ 2913.683050][ T2102] ____sys_sendmsg+0x9ae/0xb40 [ 2913.687875][ T2102] ? copy_msghdr_from_user+0x10b/0x160 [ 2913.693417][ T2102] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2913.698761][ T2102] ? __lock_acquire+0xcc5/0x3c40 [ 2913.703767][ T2102] ___sys_sendmsg+0x135/0x1e0 [ 2913.708514][ T2102] ? __pfx____sys_sendmsg+0x10/0x10 [ 2913.713796][ T2102] ? trace_lock_acquire+0x14e/0x1f0 [ 2913.719087][ T2102] __sys_sendmmsg+0x201/0x420 [ 2913.723840][ T2102] ? __pfx___sys_sendmmsg+0x10/0x10 [ 2913.729133][ T2102] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 2913.735200][ T2102] ? fput+0x67/0x440 [ 2913.739171][ T2102] ? ksys_write+0x1ba/0x250 [ 2913.743738][ T2102] ? __pfx_ksys_write+0x10/0x10 [ 2913.748664][ T2102] __x64_sys_sendmmsg+0x9c/0x100 [ 2913.753674][ T2102] ? lockdep_hardirqs_on+0x7c/0x110 [ 2913.758934][ T2102] do_syscall_64+0xcd/0x250 [ 2913.763511][ T2102] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2913.769475][ T2102] RIP: 0033:0x7fa051f85d29 [ 2913.773944][ T2102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2913.793706][ T2102] RSP: 002b:00007fa051df9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 2913.802193][ T2102] RAX: ffffffffffffffda RBX: 00007fa052175fa0 RCX: 00007fa051f85d29 [ 2913.810221][ T2102] RDX: 0000000000000003 RSI: 0000000020000080 RDI: 0000000000000003 [ 2913.818246][ T2102] RBP: 00007fa051df9090 R08: 0000000000000000 R09: 0000000000000000 [ 2913.826271][ T2102] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2913.834298][ T2102] R13: 0000000000000000 R14: 00007fa052175fa0 R15: 00007ffdde207278 [ 2913.842350][ T2102] [ 2918.289583][ T2161] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6075'. [ 2919.066574][ T2169] FAULT_INJECTION: forcing a failure. [ 2919.066574][ T2169] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2919.165767][ T2169] CPU: 0 UID: 0 PID: 2169 Comm: syz.4.6077 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2919.176540][ T2169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2919.186650][ T2169] Call Trace: [ 2919.189970][ T2169] [ 2919.192944][ T2169] dump_stack_lvl+0x16c/0x1f0 [ 2919.197693][ T2169] should_fail_ex+0x497/0x5b0 [ 2919.202434][ T2169] ? fs_reclaim_acquire+0xae/0x150 [ 2919.207610][ T2169] should_fail_alloc_page+0xe7/0x130 [ 2919.212971][ T2169] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 2919.219191][ T2169] ? __pfx_mark_lock+0x10/0x10 [ 2919.224037][ T2169] __alloc_pages_noprof+0x190/0x25b0 [ 2919.229438][ T2169] ? hlock_class+0x4e/0x130 [ 2919.234012][ T2169] ? mark_lock+0xb5/0xc60 [ 2919.238415][ T2169] ? hlock_class+0x4e/0x130 [ 2919.242981][ T2169] ? __lock_acquire+0xcc5/0x3c40 [ 2919.247970][ T2169] ? __pfx_mark_lock+0x10/0x10 [ 2919.252817][ T2169] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 2919.258635][ T2169] ? hlock_class+0x4e/0x130 [ 2919.263210][ T2169] ? hlock_class+0x4e/0x130 [ 2919.267774][ T2169] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 2919.273734][ T2169] ? policy_nodemask+0xea/0x4e0 [ 2919.278660][ T2169] alloc_pages_mpol_noprof+0x2c9/0x610 [ 2919.284205][ T2169] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 2919.290266][ T2169] ? __pfx___lock_acquire+0x10/0x10 [ 2919.295534][ T2169] ? lock_acquire+0x2f/0xb0 [ 2919.300094][ T2169] ? is_bpf_text_address+0x30/0x1a0 [ 2919.305383][ T2169] pte_alloc_one+0x20/0x390 [ 2919.309952][ T2169] do_pte_missing+0x1ae7/0x3e00 [ 2919.314883][ T2169] __handle_mm_fault+0x103c/0x2a40 [ 2919.320085][ T2169] ? __pfx___handle_mm_fault+0x10/0x10 [ 2919.325610][ T2169] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 2919.331328][ T2169] ? find_vma+0xc0/0x140 [ 2919.335630][ T2169] ? __pfx_find_vma+0x10/0x10 [ 2919.340379][ T2169] handle_mm_fault+0x3fa/0xaa0 [ 2919.345221][ T2169] do_user_addr_fault+0x7a3/0x13f0 [ 2919.350399][ T2169] exc_page_fault+0x5c/0xc0 [ 2919.354968][ T2169] asm_exc_page_fault+0x26/0x30 [ 2919.359887][ T2169] RIP: 0010:rep_movs_alternative+0x4a/0x70 [ 2919.365772][ T2169] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1 [ 2919.385459][ T2169] RSP: 0018:ffffc9000c3077e8 EFLAGS: 00050206 [ 2919.391588][ T2169] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 00000000000000c4 [ 2919.399614][ T2169] RDX: ffffed100f8590d9 RSI: 0000000000000000 RDI: ffff88807c2c8600 [ 2919.407637][ T2169] RBP: ffffc9000c307d60 R08: 0000000000000001 R09: ffffed100f8590d8 [ 2919.415662][ T2169] R10: ffff88807c2c86c3 R11: 0000000000000000 R12: 00000000000000c4 [ 2919.423693][ T2169] R13: 00007ffffffff000 R14: ffff88807c2c8600 R15: 00000000000000c4 [ 2919.431736][ T2169] _copy_from_iter+0x384/0x1400 [ 2919.436661][ T2169] ? trace_lock_acquire+0x14e/0x1f0 [ 2919.441928][ T2169] ? __alloc_skb+0x200/0x380 [ 2919.446592][ T2169] ? __pfx__copy_from_iter+0x10/0x10 [ 2919.451952][ T2169] ? __virt_addr_valid+0x1a4/0x590 [ 2919.457232][ T2169] ? __virt_addr_valid+0x5e/0x590 [ 2919.462331][ T2169] ? __phys_addr_symbol+0x30/0x80 [ 2919.467424][ T2169] ? __check_object_size+0x488/0x710 [ 2919.472784][ T2169] netlink_sendmsg+0x813/0xd70 [ 2919.477613][ T2169] ? __pfx_netlink_sendmsg+0x10/0x10 [ 2919.482969][ T2169] ____sys_sendmsg+0x9ae/0xb40 [ 2919.487795][ T2169] ? copy_msghdr_from_user+0x10b/0x160 [ 2919.493375][ T2169] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2919.498721][ T2169] ? __lock_acquire+0xcc5/0x3c40 [ 2919.503734][ T2169] ___sys_sendmsg+0x135/0x1e0 [ 2919.508487][ T2169] ? __pfx____sys_sendmsg+0x10/0x10 [ 2919.513781][ T2169] ? trace_lock_acquire+0x14e/0x1f0 [ 2919.519131][ T2169] __sys_sendmmsg+0x201/0x420 [ 2919.523888][ T2169] ? __pfx___sys_sendmmsg+0x10/0x10 [ 2919.529171][ T2169] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 2919.535238][ T2169] ? fput+0x67/0x440 [ 2919.539208][ T2169] ? ksys_write+0x1ba/0x250 [ 2919.543772][ T2169] ? __pfx_ksys_write+0x10/0x10 [ 2919.548689][ T2169] __x64_sys_sendmmsg+0x9c/0x100 [ 2919.553701][ T2169] ? lockdep_hardirqs_on+0x7c/0x110 [ 2919.558966][ T2169] do_syscall_64+0xcd/0x250 [ 2919.563541][ T2169] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2919.569502][ T2169] RIP: 0033:0x7fadc1b85d29 [ 2919.573974][ T2169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2919.593641][ T2169] RSP: 002b:00007fadc297e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 2919.602119][ T2169] RAX: ffffffffffffffda RBX: 00007fadc1d75fa0 RCX: 00007fadc1b85d29 [ 2919.610151][ T2169] RDX: 0000000000000003 RSI: 0000000020000080 RDI: 0000000000000003 [ 2919.618177][ T2169] RBP: 00007fadc297e090 R08: 0000000000000000 R09: 0000000000000000 [ 2919.626203][ T2169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2919.634244][ T2169] R13: 0000000000000000 R14: 00007fadc1d75fa0 R15: 00007ffe58157da8 [ 2919.642311][ T2169] [ 2920.645175][ T2187] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6081'. [ 2923.510704][ T2231] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2923.527213][ T2231] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2923.533368][ T2231] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 2923.606190][ T2231] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2923.887687][ T2247] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6098'. [ 2923.905814][ T2247] macsec0: entered promiscuous mode [ 2924.138067][ T2251] sctp: [Deprecated]: syz.4.6101 (pid 2251) Use of int in max_burst socket option deprecated. [ 2924.138067][ T2251] Use struct sctp_assoc_value instead [ 2924.865815][ T2091] Bluetooth: hci3: command 0x0406 tx timeout [ 2925.604763][ T2091] Bluetooth: hci2: command 0x0406 tx timeout [ 2925.610959][ T2091] Bluetooth: hci4: command 0x0406 tx timeout [ 2925.665724][ T2091] Bluetooth: hci0: command 0x0406 tx timeout [ 2925.816098][ T2267] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2925.822264][ T2267] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2925.856591][ T2267] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 2925.862720][ T2267] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2926.789418][ T2278] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2926.823153][ T2278] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2926.830393][ T2278] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 2926.851709][ T2278] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2927.618088][ T2304] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6116'. [ 2927.645726][ T2304] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 2927.653258][ T2304] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 2927.776775][ T2304] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 2927.816446][ T2304] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 2927.892904][ T2311] FAULT_INJECTION: forcing a failure. [ 2927.892904][ T2311] name failslab, interval 1, probability 0, space 0, times 0 [ 2927.942408][ T2311] CPU: 0 UID: 0 PID: 2311 Comm: syz.4.6118 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2927.953190][ T2311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2927.963304][ T2311] Call Trace: [ 2927.966632][ T2311] [ 2927.969614][ T2311] dump_stack_lvl+0x16c/0x1f0 [ 2927.974367][ T2311] should_fail_ex+0x497/0x5b0 [ 2927.979119][ T2311] ? fs_reclaim_acquire+0xae/0x150 [ 2927.984299][ T2311] should_failslab+0xc2/0x120 [ 2927.989066][ T2311] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 2927.994512][ T2311] ? ptlock_alloc+0x1f/0x70 [ 2927.999095][ T2311] ptlock_alloc+0x1f/0x70 [ 2928.003503][ T2311] pte_alloc_one+0x74/0x390 [ 2928.008067][ T2311] do_pte_missing+0x1ae7/0x3e00 [ 2928.012998][ T2311] __handle_mm_fault+0x103c/0x2a40 [ 2928.018190][ T2311] ? __pfx___handle_mm_fault+0x10/0x10 [ 2928.023721][ T2311] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 2928.029444][ T2311] ? find_vma+0xc0/0x140 [ 2928.033747][ T2311] ? __pfx_find_vma+0x10/0x10 [ 2928.038494][ T2311] handle_mm_fault+0x3fa/0xaa0 [ 2928.043333][ T2311] do_user_addr_fault+0x7a3/0x13f0 [ 2928.048534][ T2311] exc_page_fault+0x5c/0xc0 [ 2928.053106][ T2311] asm_exc_page_fault+0x26/0x30 [ 2928.058027][ T2311] RIP: 0010:rep_movs_alternative+0x30/0x70 [ 2928.064001][ T2311] Code: f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 [ 2928.083669][ T2311] RSP: 0018:ffffc9000c177c50 EFLAGS: 00050246 [ 2928.089799][ T2311] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000008 [ 2928.097826][ T2311] RDX: fffff5200182ef98 RSI: 0000000000000000 RDI: ffffc9000c177cb8 [ 2928.106028][ T2311] RBP: 0000000000000008 R08: 0000000000000001 R09: fffff5200182ef97 [ 2928.114056][ T2311] R10: ffffc9000c177cbf R11: 0000000000000001 R12: 0000000000000000 [ 2928.122083][ T2311] R13: ffffc9000c177cb8 R14: 0000000000000000 R15: ffff88814d85a1e8 [ 2928.130126][ T2311] _copy_from_user+0x9a/0xd0 [ 2928.134787][ T2311] snd_ctl_tlv_ioctl+0xe5/0x760 [ 2928.139692][ T2311] ? snd_ctl_ioctl+0x8d1/0x1080 [ 2928.144604][ T2311] ? __pfx_snd_ctl_tlv_ioctl+0x10/0x10 [ 2928.150145][ T2311] snd_ctl_ioctl+0x8df/0x1080 [ 2928.154872][ T2311] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 2928.155158][T14923] Bluetooth: hci3: command 0x0406 tx timeout [ 2928.160011][ T2311] ? __pfx_lock_release+0x10/0x10 [ 2928.160149][ T2311] ? trace_lock_acquire+0x14e/0x1f0 [ 2928.176512][ T2311] ? __fget_files+0x206/0x3a0 [ 2928.181262][ T2311] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 2928.186449][ T2311] __x64_sys_ioctl+0x190/0x200 [ 2928.191276][ T2311] do_syscall_64+0xcd/0x250 [ 2928.195856][ T2311] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2928.201820][ T2311] RIP: 0033:0x7fadc1b85d29 [ 2928.206290][ T2311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2928.226049][ T2311] RSP: 002b:00007fadc297e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2928.234538][ T2311] RAX: ffffffffffffffda RBX: 00007fadc1d75fa0 RCX: 00007fadc1b85d29 [ 2928.242567][ T2311] RDX: 0000000000000000 RSI: 00000000c008551a RDI: 0000000000000003 [ 2928.250592][ T2311] RBP: 00007fadc297e090 R08: 0000000000000000 R09: 0000000000000000 [ 2928.258611][ T2311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2928.266633][ T2311] R13: 0000000000000000 R14: 00007fadc1d75fa0 R15: 00007ffe58157da8 [ 2928.274679][ T2311] [ 2928.354677][ T2309] netlink: 338 bytes leftover after parsing attributes in process `syz.3.6117'. [ 2928.865746][T14923] Bluetooth: hci0: command 0x0406 tx timeout [ 2928.871853][T14923] Bluetooth: hci2: command 0x0406 tx timeout [ 2928.878478][ T2091] Bluetooth: hci4: command 0x0406 tx timeout [ 2928.992573][ T2318] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6120'. [ 2929.755132][ T2325] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2929.796354][ T2325] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2929.802505][ T2325] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 2929.816219][ T2325] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2930.386865][ T2352] FAULT_INJECTION: forcing a failure. [ 2930.386865][ T2352] name failslab, interval 1, probability 0, space 0, times 0 [ 2930.430152][ T2352] CPU: 1 UID: 0 PID: 2352 Comm: syz.4.6127 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2930.440926][ T2352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2930.451037][ T2352] Call Trace: [ 2930.454365][ T2352] [ 2930.457342][ T2352] dump_stack_lvl+0x16c/0x1f0 [ 2930.462088][ T2352] should_fail_ex+0x497/0x5b0 [ 2930.466829][ T2352] ? fs_reclaim_acquire+0xae/0x150 [ 2930.472010][ T2352] should_failslab+0xc2/0x120 [ 2930.476768][ T2352] kmem_cache_alloc_lru_noprof+0x73/0x3b0 [ 2930.482559][ T2352] ? __d_alloc+0x35/0x8c0 [ 2930.486963][ T2352] __d_alloc+0x35/0x8c0 [ 2930.491192][ T2352] d_alloc+0x4a/0x1e0 [ 2930.495251][ T2352] d_alloc_parallel+0xe9/0x12b0 [ 2930.500168][ T2352] ? __pfx_d_alloc_parallel+0x10/0x10 [ 2930.505594][ T2352] ? lockdep_init_map_type+0x16d/0x7d0 [ 2930.511104][ T2352] ? lock_acquire.part.0+0x11b/0x380 [ 2930.516442][ T2352] ? lockdep_init_map_type+0x16d/0x7d0 [ 2930.521963][ T2352] __lookup_slow+0x194/0x460 [ 2930.526623][ T2352] ? __pfx___lookup_slow+0x10/0x10 [ 2930.531822][ T2352] ? walk_component+0x342/0x5b0 [ 2930.536742][ T2352] ? lookup_fast+0x155/0x540 [ 2930.541388][ T2352] walk_component+0x350/0x5b0 [ 2930.546125][ T2352] link_path_walk.part.0.constprop.0+0x669/0xd40 [ 2930.552534][ T2352] path_openat+0x228/0x2d60 [ 2930.557102][ T2352] ? hlock_class+0x4e/0x130 [ 2930.561690][ T2352] ? __pfx_path_openat+0x10/0x10 [ 2930.566689][ T2352] ? __pfx___lock_acquire+0x10/0x10 [ 2930.571940][ T2352] ? lock_acquire.part.0+0x11b/0x380 [ 2930.577283][ T2352] ? find_held_lock+0x2d/0x110 [ 2930.582110][ T2352] do_filp_open+0x20c/0x470 [ 2930.586675][ T2352] ? __pfx_do_filp_open+0x10/0x10 [ 2930.591762][ T2352] ? find_held_lock+0x2d/0x110 [ 2930.596599][ T2352] ? __pfx_kfree_link+0x10/0x10 [ 2930.601529][ T2352] ? alloc_fd+0x41f/0x760 [ 2930.605927][ T2352] do_sys_openat2+0x17a/0x1e0 [ 2930.610668][ T2352] ? __pfx_do_sys_openat2+0x10/0x10 [ 2930.615933][ T2352] ? __fget_files+0x206/0x3a0 [ 2930.620666][ T2352] __x64_sys_openat+0x175/0x210 [ 2930.625581][ T2352] ? __pfx___x64_sys_openat+0x10/0x10 [ 2930.631017][ T2352] ? ksys_write+0x1ba/0x250 [ 2930.635592][ T2352] do_syscall_64+0xcd/0x250 [ 2930.640166][ T2352] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2930.646132][ T2352] RIP: 0033:0x7fadc1b85d29 [ 2930.650594][ T2352] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2930.670273][ T2352] RSP: 002b:00007fadc297e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 2930.678767][ T2352] RAX: ffffffffffffffda RBX: 00007fadc1d75fa0 RCX: 00007fadc1b85d29 [ 2930.686791][ T2352] RDX: 0000000000000000 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 2930.694808][ T2352] RBP: 00007fadc297e090 R08: 0000000000000000 R09: 0000000000000000 [ 2930.702819][ T2352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2930.710839][ T2352] R13: 0000000000000001 R14: 00007fadc1d75fa0 R15: 00007ffe58157da8 [ 2930.718879][ T2352] [ 2931.040976][T17933] Bluetooth: hci3: command 0x0406 tx timeout [ 2931.051340][ T2363] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6132'. [ 2931.247544][ T2363] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6132'. [ 2931.295930][ T2363] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6132'. [ 2931.305090][ T2363] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6132'. [ 2931.825897][T17933] Bluetooth: hci2: command 0x0406 tx timeout [ 2931.832003][T17933] Bluetooth: hci0: command 0x0406 tx timeout [ 2931.838570][T17933] Bluetooth: hci4: command 0x0406 tx timeout [ 2934.750139][ T2421] FAULT_INJECTION: forcing a failure. [ 2934.750139][ T2421] name failslab, interval 1, probability 0, space 0, times 0 [ 2934.805638][ T2421] CPU: 0 UID: 0 PID: 2421 Comm: syz.0.6146 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2934.816416][ T2421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2934.826527][ T2421] Call Trace: [ 2934.829853][ T2421] [ 2934.832827][ T2421] dump_stack_lvl+0x16c/0x1f0 [ 2934.837573][ T2421] should_fail_ex+0x497/0x5b0 [ 2934.842347][ T2421] ? fs_reclaim_acquire+0xae/0x150 [ 2934.847616][ T2421] should_failslab+0xc2/0x120 [ 2934.852368][ T2421] __kmalloc_noprof+0xce/0x4f0 [ 2934.857204][ T2421] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 2934.862892][ T2421] ? tomoyo_realpath_from_path+0xbf/0x710 [ 2934.868678][ T2421] tomoyo_realpath_from_path+0xbf/0x710 [ 2934.874328][ T2421] ? tomoyo_path_number_perm+0x235/0x5b0 [ 2934.880045][ T2421] tomoyo_path_number_perm+0x248/0x5b0 [ 2934.885580][ T2421] ? tomoyo_path_number_perm+0x235/0x5b0 [ 2934.891292][ T2421] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 2934.897382][ T2421] ? __pfx_lock_release+0x10/0x10 [ 2934.902467][ T2421] ? trace_lock_acquire+0x14e/0x1f0 [ 2934.907761][ T2421] ? lock_acquire+0x2f/0xb0 [ 2934.912321][ T2421] ? __fget_files+0x40/0x3a0 [ 2934.916984][ T2421] ? __fget_files+0x206/0x3a0 [ 2934.921734][ T2421] security_file_ioctl+0x9b/0x240 [ 2934.926816][ T2421] __x64_sys_ioctl+0xb7/0x200 [ 2934.931551][ T2421] do_syscall_64+0xcd/0x250 [ 2934.936126][ T2421] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2934.942096][ T2421] RIP: 0033:0x7fba6d185d29 [ 2934.946566][ T2421] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2934.966248][ T2421] RSP: 002b:00007fba6e062038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2934.974734][ T2421] RAX: ffffffffffffffda RBX: 00007fba6d375fa0 RCX: 00007fba6d185d29 [ 2934.982767][ T2421] RDX: 0000000000000038 RSI: 000000000000541b RDI: 0000000000000003 [ 2934.990795][ T2421] RBP: 00007fba6e062090 R08: 0000000000000000 R09: 0000000000000000 [ 2934.998820][ T2421] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2935.006844][ T2421] R13: 0000000000000000 R14: 00007fba6d375fa0 R15: 00007fffd9e05468 [ 2935.014898][ T2421] [ 2935.066725][ T2421] ERROR: Out of memory at tomoyo_realpath_from_path. [ 2935.510912][ T2430] Invalid ELF header magic: != ELF [ 2936.141691][ T2431] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6147'. [ 2936.259009][ T2431] geneve1: entered allmulticast mode [ 2936.983198][ T2454] FAULT_INJECTION: forcing a failure. [ 2936.983198][ T2454] name failslab, interval 1, probability 0, space 0, times 0 [ 2937.005685][ T2454] CPU: 0 UID: 0 PID: 2454 Comm: syz.0.6152 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2937.016452][ T2454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2937.026647][ T2454] Call Trace: [ 2937.029975][ T2454] [ 2937.032945][ T2454] dump_stack_lvl+0x16c/0x1f0 [ 2937.037697][ T2454] should_fail_ex+0x497/0x5b0 [ 2937.042450][ T2454] ? fs_reclaim_acquire+0xae/0x150 [ 2937.047650][ T2454] should_failslab+0xc2/0x120 [ 2937.052395][ T2454] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 2937.057852][ T2454] ? lockdep_init_map_type+0x16d/0x7d0 [ 2937.063459][ T2454] ? security_inode_alloc+0x3b/0x2b0 [ 2937.068824][ T2454] security_inode_alloc+0x3b/0x2b0 [ 2937.074009][ T2454] inode_init_always_gfp+0xce4/0x1030 [ 2937.079450][ T2454] alloc_inode+0x82/0x230 [ 2937.083848][ T2454] sock_alloc+0x40/0x280 [ 2937.088172][ T2454] __sock_create+0xc1/0x8d0 [ 2937.092745][ T2454] smc_create_clcsk+0x38/0x200 [ 2937.097571][ T2454] smc_create+0x147/0x240 [ 2937.101977][ T2454] __sock_create+0x335/0x8d0 [ 2937.106634][ T2454] __sys_socket+0x14f/0x260 [ 2937.111193][ T2454] ? __pfx___sys_socket+0x10/0x10 [ 2937.116269][ T2454] ? ksys_write+0x1ba/0x250 [ 2937.120836][ T2454] ? __pfx_ksys_write+0x10/0x10 [ 2937.125747][ T2454] __x64_sys_socket+0x72/0xb0 [ 2937.130478][ T2454] ? lockdep_hardirqs_on+0x7c/0x110 [ 2937.135734][ T2454] do_syscall_64+0xcd/0x250 [ 2937.140307][ T2454] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2937.146262][ T2454] RIP: 0033:0x7fba6d185d29 [ 2937.150725][ T2454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2937.170394][ T2454] RSP: 002b:00007fba6e062038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 2937.178877][ T2454] RAX: ffffffffffffffda RBX: 00007fba6d375fa0 RCX: 00007fba6d185d29 [ 2937.186905][ T2454] RDX: 0000000000000001 RSI: 0000000000000001 RDI: 000000000000002b [ 2937.194932][ T2454] RBP: 00007fba6e062090 R08: 0000000000000000 R09: 0000000000000000 [ 2937.202962][ T2454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2937.210986][ T2454] R13: 0000000000000001 R14: 00007fba6d375fa0 R15: 00007fffd9e05468 [ 2937.219031][ T2454] [ 2937.256981][ T2454] socket: no more sockets [ 2937.606166][ T2449] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2937.618592][ T2449] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2937.628253][ T2449] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 2937.645437][ T2449] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2938.113105][ T2470] Process accounting paused [ 2938.121604][ T2475] FAULT_INJECTION: forcing a failure. [ 2938.121604][ T2475] name failslab, interval 1, probability 0, space 0, times 0 [ 2938.203954][ T2475] CPU: 1 UID: 0 PID: 2475 Comm: syz.0.6166 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2938.214733][ T2475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2938.218393][ T2480] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6159'. [ 2938.224814][ T2475] Call Trace: [ 2938.224845][ T2475] [ 2938.224860][ T2475] dump_stack_lvl+0x16c/0x1f0 [ 2938.244771][ T2475] should_fail_ex+0x497/0x5b0 [ 2938.249524][ T2475] ? fs_reclaim_acquire+0xae/0x150 [ 2938.254743][ T2475] should_failslab+0xc2/0x120 [ 2938.259495][ T2475] __kmalloc_noprof+0xce/0x4f0 [ 2938.264325][ T2475] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 2938.265791][ T2480] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 2938.269982][ T2475] ? tomoyo_realpath_from_path+0xbf/0x710 [ 2938.270037][ T2475] tomoyo_realpath_from_path+0xbf/0x710 [ 2938.288744][ T2475] ? tomoyo_path_number_perm+0x235/0x5b0 [ 2938.294464][ T2475] tomoyo_path_number_perm+0x248/0x5b0 [ 2938.300003][ T2475] ? tomoyo_path_number_perm+0x235/0x5b0 [ 2938.302552][ T2480] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 2938.305696][ T2475] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 2938.305787][ T2475] ? __pfx_lock_release+0x10/0x10 [ 2938.305819][ T2475] ? trace_lock_acquire+0x14e/0x1f0 [ 2938.305869][ T2475] ? lock_acquire+0x2f/0xb0 [ 2938.305899][ T2475] ? __fget_files+0x40/0x3a0 [ 2938.305941][ T2475] ? __fget_files+0x206/0x3a0 [ 2938.305986][ T2475] security_file_ioctl+0x9b/0x240 [ 2938.306023][ T2475] __x64_sys_ioctl+0xb7/0x200 [ 2938.352935][ T2475] do_syscall_64+0xcd/0x250 [ 2938.357489][ T2475] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2938.363429][ T2475] RIP: 0033:0x7fba6d185d29 [ 2938.367872][ T2475] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2938.387540][ T2475] RSP: 002b:00007fba6e062038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2938.395991][ T2475] RAX: ffffffffffffffda RBX: 00007fba6d375fa0 RCX: 00007fba6d185d29 [ 2938.403995][ T2475] RDX: 00000000200000c0 RSI: 00000000000089fc RDI: 0000000000000003 [ 2938.411990][ T2475] RBP: 00007fba6e062090 R08: 0000000000000000 R09: 0000000000000000 [ 2938.419982][ T2475] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2938.427976][ T2475] R13: 0000000000000000 R14: 00007fba6d375fa0 R15: 00007fffd9e05468 [ 2938.436001][ T2475] [ 2938.561664][ T2480] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 2938.615774][ T2475] ERROR: Out of memory at tomoyo_realpath_from_path. [ 2938.633015][ T2480] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 2938.946401][ T2323] Bluetooth: hci3: command 0x0406 tx timeout [ 2939.665699][ T2323] Bluetooth: hci0: command 0x0406 tx timeout [ 2939.671812][ T2323] Bluetooth: hci2: command 0x0406 tx timeout [ 2939.678760][T17933] Bluetooth: hci4: command 0x0406 tx timeout [ 2940.916640][ T2513] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2940.925453][ T2513] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2940.957152][ T2513] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 2940.996116][ T2513] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2942.145874][ T2323] Bluetooth: hci3: command 0x0406 tx timeout [ 2942.359079][ T2541] netlink: 4112 bytes leftover after parsing attributes in process `syz.4.6172'. [ 2942.965631][ T2323] Bluetooth: hci4: command 0x0406 tx timeout [ 2943.025747][ T2323] Bluetooth: hci0: command 0x0406 tx timeout [ 2943.028827][T17933] Bluetooth: hci2: command 0x0406 tx timeout [ 2943.446939][ T2576] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6176'. [ 2943.585713][ T2576] nbd: must specify at least one socket [ 2946.447814][ T29] audit: type=1326 audit(4143.440:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2597 comm="syz.2.6184" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2dfb985d29 code=0x0 [ 2946.499468][ T29] audit: type=1326 audit(4143.450:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2597 comm="syz.2.6184" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2dfb985d29 code=0x0 [ 2946.853172][ T2595] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2946.885902][ T2595] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2946.922673][ T2595] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 2946.967007][ T2595] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2948.316466][T17933] Bluetooth: hci3: command 0x0406 tx timeout [ 2948.945707][T17933] Bluetooth: hci2: command 0x0406 tx timeout [ 2948.951904][ T2323] Bluetooth: hci4: command 0x0406 tx timeout [ 2949.025946][T17933] Bluetooth: hci0: command 0x0406 tx timeout [ 2949.555241][ T2631] zswap: compressor 84 not available [ 2951.928056][ T2695] FAULT_INJECTION: forcing a failure. [ 2951.928056][ T2695] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2951.965848][ T2695] CPU: 1 UID: 0 PID: 2695 Comm: syz.2.6207 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2951.976617][ T2695] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2951.986754][ T2695] Call Trace: [ 2951.990070][ T2695] [ 2951.993049][ T2695] dump_stack_lvl+0x16c/0x1f0 [ 2951.997791][ T2695] should_fail_ex+0x497/0x5b0 [ 2952.002531][ T2695] ? fs_reclaim_acquire+0xae/0x150 [ 2952.007734][ T2695] should_fail_alloc_page+0xe7/0x130 [ 2952.013088][ T2695] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 2952.019313][ T2695] __alloc_pages_noprof+0x190/0x25b0 [ 2952.024674][ T2695] ? mark_lock+0xb5/0xc60 [ 2952.029078][ T2695] ? hlock_class+0x4e/0x130 [ 2952.033644][ T2695] ? mark_lock+0xb5/0xc60 [ 2952.038045][ T2695] ? __pfx_mark_lock+0x10/0x10 [ 2952.042878][ T2695] ? __pfx_mark_lock+0x10/0x10 [ 2952.047711][ T2695] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 2952.053497][ T2695] ? stack_depot_save_flags+0x28/0x9e0 [ 2952.059039][ T2695] ? kmem_cache_alloc_noprof+0x1c8/0x3b0 [ 2952.064750][ T2695] ? hlock_class+0x4e/0x130 [ 2952.069312][ T2695] ? __lock_acquire+0x15a9/0x3c40 [ 2952.074387][ T2695] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 2952.080330][ T2695] ? policy_nodemask+0xea/0x4e0 [ 2952.085225][ T2695] alloc_pages_mpol_noprof+0x2c9/0x610 [ 2952.090737][ T2695] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 2952.096776][ T2695] pte_alloc_one+0x20/0x390 [ 2952.101316][ T2695] __pte_alloc+0x6e/0x3b0 [ 2952.105763][ T2695] ? __pfx___pte_alloc+0x10/0x10 [ 2952.110737][ T2695] ? __pfx_lock_release+0x10/0x10 [ 2952.115798][ T2695] ? do_raw_spin_lock+0x12d/0x2c0 [ 2952.120856][ T2695] do_pte_missing+0x2810/0x3e00 [ 2952.125755][ T2695] ? _raw_spin_unlock+0x28/0x50 [ 2952.130642][ T2695] ? __pmd_alloc+0x380/0x860 [ 2952.135271][ T2695] __handle_mm_fault+0x103c/0x2a40 [ 2952.140432][ T2695] ? __pfx___handle_mm_fault+0x10/0x10 [ 2952.145957][ T2695] handle_mm_fault+0x3fa/0xaa0 [ 2952.150766][ T2695] __get_user_pages+0x8d9/0x3b50 [ 2952.155762][ T2695] ? __pfx_mt_find+0x10/0x10 [ 2952.160416][ T2695] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 2952.166077][ T2695] ? __pfx___get_user_pages+0x10/0x10 [ 2952.171488][ T2695] ? __mm_populate+0x21d/0x380 [ 2952.176296][ T2695] populate_vma_page_range+0x27f/0x3a0 [ 2952.181796][ T2695] ? __pfx_populate_vma_page_range+0x10/0x10 [ 2952.187814][ T2695] ? __pfx_find_vma_intersection+0x10/0x10 [ 2952.193666][ T2695] ? vm_mmap_pgoff+0x25b/0x360 [ 2952.198471][ T2695] __mm_populate+0x1d6/0x380 [ 2952.203101][ T2695] ? __pfx___mm_populate+0x10/0x10 [ 2952.208255][ T2695] ? up_write+0x1b2/0x520 [ 2952.212625][ T2695] vm_mmap_pgoff+0x293/0x360 [ 2952.217261][ T2695] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 2952.222409][ T2695] ? __fget_files+0x206/0x3a0 [ 2952.227130][ T2695] ksys_mmap_pgoff+0x7d/0x5c0 [ 2952.231866][ T2695] ? __pfx_ksys_write+0x10/0x10 [ 2952.236763][ T2695] __x64_sys_mmap+0x125/0x190 [ 2952.241475][ T2695] do_syscall_64+0xcd/0x250 [ 2952.246020][ T2695] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2952.251953][ T2695] RIP: 0033:0x7f2dfb985d29 [ 2952.256402][ T2695] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2952.276061][ T2695] RSP: 002b:00007f2dfc7a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 2952.284510][ T2695] RAX: ffffffffffffffda RBX: 00007f2dfbb75fa0 RCX: 00007f2dfb985d29 [ 2952.292598][ T2695] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 2952.300622][ T2695] RBP: 00007f2dfc7a7090 R08: 0000000000000002 R09: 0000000000008000 [ 2952.308625][ T2695] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000001 [ 2952.316629][ T2695] R13: 0000000000000001 R14: 00007f2dfbb75fa0 R15: 00007fff493b3fa8 [ 2952.324655][ T2695] [ 2955.161998][ T2726] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2955.170761][ T2726] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2955.185886][ T2726] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 2955.196370][ T2726] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2955.835370][ T2751] program syz.0.6223 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 2956.046648][ T2751] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 2956.554737][T17933] Bluetooth: hci3: command 0x0406 tx timeout [ 2957.185974][T17933] Bluetooth: hci4: command 0x0406 tx timeout [ 2957.265691][T17933] Bluetooth: hci0: command 0x0406 tx timeout [ 2957.265699][ T2323] Bluetooth: hci2: command 0x0406 tx timeout [ 2959.191977][ T2801] FAULT_INJECTION: forcing a failure. [ 2959.191977][ T2801] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2959.269337][ T2801] CPU: 1 UID: 0 PID: 2801 Comm: syz.3.6236 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2959.280110][ T2801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2959.290225][ T2801] Call Trace: [ 2959.293541][ T2801] [ 2959.296516][ T2801] dump_stack_lvl+0x16c/0x1f0 [ 2959.301266][ T2801] should_fail_ex+0x497/0x5b0 [ 2959.306012][ T2801] ? fs_reclaim_acquire+0xae/0x150 [ 2959.311196][ T2801] should_fail_alloc_page+0xe7/0x130 [ 2959.316563][ T2801] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 2959.322792][ T2801] __alloc_pages_noprof+0x190/0x25b0 [ 2959.328160][ T2801] ? mark_lock+0xb5/0xc60 [ 2959.332563][ T2801] ? hlock_class+0x4e/0x130 [ 2959.337122][ T2801] ? mark_lock+0xb5/0xc60 [ 2959.341534][ T2801] ? __pfx_mark_lock+0x10/0x10 [ 2959.346367][ T2801] ? __pfx_mark_lock+0x10/0x10 [ 2959.351207][ T2801] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 2959.356995][ T2801] ? stack_depot_save_flags+0x28/0x9e0 [ 2959.362530][ T2801] ? kmem_cache_alloc_noprof+0x1c8/0x3b0 [ 2959.368238][ T2801] ? hlock_class+0x4e/0x130 [ 2959.372804][ T2801] ? __lock_acquire+0x15a9/0x3c40 [ 2959.377881][ T2801] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 2959.383838][ T2801] ? policy_nodemask+0xea/0x4e0 [ 2959.388760][ T2801] alloc_pages_mpol_noprof+0x2c9/0x610 [ 2959.394315][ T2801] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 2959.400380][ T2801] pte_alloc_one+0x20/0x390 [ 2959.404937][ T2801] __pte_alloc+0x6e/0x3b0 [ 2959.409411][ T2801] ? __pfx___pte_alloc+0x10/0x10 [ 2959.414411][ T2801] ? __pfx_lock_release+0x10/0x10 [ 2959.419489][ T2801] ? do_raw_spin_lock+0x12d/0x2c0 [ 2959.424575][ T2801] do_pte_missing+0x2810/0x3e00 [ 2959.429498][ T2801] ? _raw_spin_unlock+0x28/0x50 [ 2959.434400][ T2801] ? __pmd_alloc+0x380/0x860 [ 2959.439058][ T2801] __handle_mm_fault+0x103c/0x2a40 [ 2959.444244][ T2801] ? __pfx___handle_mm_fault+0x10/0x10 [ 2959.449804][ T2801] handle_mm_fault+0x3fa/0xaa0 [ 2959.454651][ T2801] __get_user_pages+0x8d9/0x3b50 [ 2959.459670][ T2801] ? __pfx_mt_find+0x10/0x10 [ 2959.464335][ T2801] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 2959.470030][ T2801] ? __pfx___get_user_pages+0x10/0x10 [ 2959.475477][ T2801] ? __mm_populate+0x21d/0x380 [ 2959.480338][ T2801] populate_vma_page_range+0x27f/0x3a0 [ 2959.485880][ T2801] ? __pfx_populate_vma_page_range+0x10/0x10 [ 2959.491953][ T2801] ? __pfx_find_vma_intersection+0x10/0x10 [ 2959.497850][ T2801] ? vm_mmap_pgoff+0x25b/0x360 [ 2959.502688][ T2801] __mm_populate+0x1d6/0x380 [ 2959.507347][ T2801] ? __pfx___mm_populate+0x10/0x10 [ 2959.512517][ T2801] ? up_write+0x1b2/0x520 [ 2959.516906][ T2801] vm_mmap_pgoff+0x293/0x360 [ 2959.521581][ T2801] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 2959.526764][ T2801] ? __fget_files+0x206/0x3a0 [ 2959.531520][ T2801] ksys_mmap_pgoff+0x7d/0x5c0 [ 2959.536258][ T2801] ? __pfx_ksys_write+0x10/0x10 [ 2959.541178][ T2801] __x64_sys_mmap+0x125/0x190 [ 2959.545916][ T2801] do_syscall_64+0xcd/0x250 [ 2959.550516][ T2801] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2959.556473][ T2801] RIP: 0033:0x7fa051f85d29 [ 2959.560937][ T2801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2959.580697][ T2801] RSP: 002b:00007fa051df9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 2959.589172][ T2801] RAX: ffffffffffffffda RBX: 00007fa052175fa0 RCX: 00007fa051f85d29 [ 2959.597191][ T2801] RDX: fffffffffffffffe RSI: 0000000000400005 RDI: 0000000000000000 [ 2959.605214][ T2801] RBP: 00007fa051df9090 R08: 0000000000000002 R09: 0000000000008000 [ 2959.613244][ T2801] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000001 [ 2959.621273][ T2801] R13: 0000000000000001 R14: 00007fa052175fa0 R15: 00007ffdde207278 [ 2959.629324][ T2801] [ 2960.787465][ T2827] netlink: 'syz.2.6243': attribute type 4 has an invalid length. [ 2964.468901][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 2964.475335][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 2964.799683][ T2910] FAULT_INJECTION: forcing a failure. [ 2964.799683][ T2910] name failslab, interval 1, probability 0, space 0, times 0 [ 2964.812947][ T2910] CPU: 0 UID: 0 PID: 2910 Comm: syz.0.6262 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2964.823699][ T2910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2964.833837][ T2910] Call Trace: [ 2964.837163][ T2910] [ 2964.840139][ T2910] dump_stack_lvl+0x16c/0x1f0 [ 2964.844874][ T2910] should_fail_ex+0x497/0x5b0 [ 2964.849610][ T2910] ? find_held_lock+0x2d/0x110 [ 2964.854450][ T2910] should_failslab+0xc2/0x120 [ 2964.859199][ T2910] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 2964.864654][ T2910] ? dst_alloc+0x99/0x1a0 [ 2964.869049][ T2910] dst_alloc+0x99/0x1a0 [ 2964.873271][ T2910] rt_dst_alloc+0x35/0x3a0 [ 2964.877764][ T2910] ip_route_output_key_hash_rcu+0x8a5/0x2770 [ 2964.883834][ T2910] ip_route_output_key_hash+0x138/0x2e0 [ 2964.889487][ T2910] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 2964.895619][ T2910] ? unwind_get_return_address+0x59/0xa0 [ 2964.901336][ T2910] ip_route_output_flow+0x27/0x150 [ 2964.906522][ T2910] ip_tunnel_xmit+0x1975/0x3580 [ 2964.911462][ T2910] ? kmem_cache_alloc_node_noprof+0x1ca/0x3b0 [ 2964.917598][ T2910] ? kmalloc_reserve+0x18b/0x2c0 [ 2964.922590][ T2910] ? __pfx_ip_tunnel_xmit+0x10/0x10 [ 2964.927858][ T2910] ? __ip_append_data+0x19c7/0x4160 [ 2964.933136][ T2910] ? ip_make_skb+0x234/0x300 [ 2964.937816][ T2910] ? udp_sendmsg+0x185d/0x29b0 [ 2964.942720][ T2910] ? inet_sendmsg+0x105/0x140 [ 2964.947648][ T2910] ? ____sys_sendmsg+0x907/0xb40 [ 2964.952654][ T2910] ? ___sys_sendmsg+0x135/0x1e0 [ 2964.957681][ T2910] ? __sys_sendmmsg+0x201/0x420 [ 2964.962612][ T2910] ? __x64_sys_sendmmsg+0x9c/0x100 [ 2964.967814][ T2910] ? do_syscall_64+0xcd/0x250 [ 2964.972579][ T2910] ? hlock_class+0x4e/0x130 [ 2964.977165][ T2910] sit_tunnel_xmit__.isra.0+0xe6/0x140 [ 2964.982708][ T2910] sit_tunnel_xmit+0x2f6/0x2940 [ 2964.987646][ T2910] ? skb_network_protocol+0x127/0x6d0 [ 2964.993090][ T2910] ? __pfx_sit_tunnel_xmit+0x10/0x10 [ 2964.998452][ T2910] ? skb_csum_hwoffload_help+0x137/0x5f0 [ 2965.004148][ T2910] ? __pfx_skb_network_protocol+0x10/0x10 [ 2965.009932][ T2910] ? lock_acquire.part.0+0x11b/0x380 [ 2965.015285][ T2910] ? __pfx_skb_csum_hwoffload_help+0x10/0x10 [ 2965.021379][ T2910] ? validate_xmit_xfrm+0x492/0x12c0 [ 2965.026732][ T2910] ? netif_skb_features+0x3b0/0xd50 [ 2965.031999][ T2910] dev_hard_start_xmit+0x9a/0x7b0 [ 2965.037098][ T2910] __dev_queue_xmit+0x7f0/0x43e0 [ 2965.042103][ T2910] ? hlock_class+0x4e/0x130 [ 2965.046677][ T2910] ? __lock_acquire+0x15a9/0x3c40 [ 2965.051758][ T2910] ? __pfx___dev_queue_xmit+0x10/0x10 [ 2965.057216][ T2910] ? __pfx___lock_acquire+0x10/0x10 [ 2965.062489][ T2910] ? find_held_lock+0x2d/0x110 [ 2965.067331][ T2910] ? ip_finish_output2+0x7f0/0x2130 [ 2965.072606][ T2910] ? __pfx_lock_release+0x10/0x10 [ 2965.077699][ T2910] ? trace_lock_acquire+0x14e/0x1f0 [ 2965.082966][ T2910] ? ip_finish_output2+0x7f0/0x2130 [ 2965.088243][ T2910] neigh_connected_output+0x45c/0x630 [ 2965.093710][ T2910] ip_finish_output2+0x7f0/0x2130 [ 2965.098824][ T2910] ? __pfx_ip_finish_output2+0x10/0x10 [ 2965.104362][ T2910] ? ip_skb_dst_mtu+0x3fc/0xc70 [ 2965.109291][ T2910] ? __pfx_ip_skb_dst_mtu+0x10/0x10 [ 2965.114578][ T2910] ? __pfx_nf_hook+0x10/0x10 [ 2965.119256][ T2910] __ip_finish_output+0x49e/0x950 [ 2965.124370][ T2910] ip_finish_output+0x35/0x380 [ 2965.129217][ T2910] ip_output+0x13b/0x2a0 [ 2965.133538][ T2910] ? __pfx_ip_output+0x10/0x10 [ 2965.138388][ T2910] ip_send_skb+0x3e5/0x560 [ 2965.142885][ T2910] udp_send_skb+0x6f1/0x1510 [ 2965.147565][ T2910] udp_sendmsg+0x1899/0x29b0 [ 2965.152245][ T2910] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 2965.157888][ T2910] ? __pfx_udp_sendmsg+0x10/0x10 [ 2965.162932][ T2910] ? __pfx___might_resched+0x10/0x10 [ 2965.168291][ T2910] ? aa_sk_perm+0x2f5/0xb20 [ 2965.172884][ T2910] ? __pfx_udp_sendmsg+0x10/0x10 [ 2965.177901][ T2910] inet_sendmsg+0x105/0x140 [ 2965.182462][ T2910] ____sys_sendmsg+0x907/0xb40 [ 2965.187289][ T2910] ? copy_msghdr_from_user+0x10b/0x160 [ 2965.192829][ T2910] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2965.198170][ T2910] ? __lock_acquire+0xcc5/0x3c40 [ 2965.203182][ T2910] ___sys_sendmsg+0x135/0x1e0 [ 2965.207932][ T2910] ? __pfx____sys_sendmsg+0x10/0x10 [ 2965.213233][ T2910] ? trace_lock_acquire+0x14e/0x1f0 [ 2965.218534][ T2910] __sys_sendmmsg+0x201/0x420 [ 2965.223287][ T2910] ? __pfx___sys_sendmmsg+0x10/0x10 [ 2965.228570][ T2910] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 2965.234634][ T2910] ? fput+0x67/0x440 [ 2965.238614][ T2910] ? ksys_write+0x1ba/0x250 [ 2965.243194][ T2910] ? __pfx_ksys_write+0x10/0x10 [ 2965.248121][ T2910] __x64_sys_sendmmsg+0x9c/0x100 [ 2965.253137][ T2910] ? lockdep_hardirqs_on+0x7c/0x110 [ 2965.258402][ T2910] do_syscall_64+0xcd/0x250 [ 2965.262977][ T2910] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2965.268935][ T2910] RIP: 0033:0x7fba6d185d29 [ 2965.273408][ T2910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2965.293085][ T2910] RSP: 002b:00007fba6e062038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 2965.301570][ T2910] RAX: ffffffffffffffda RBX: 00007fba6d375fa0 RCX: 00007fba6d185d29 [ 2965.309598][ T2910] RDX: 0000000000000003 RSI: 0000000000000000 RDI: 0000000000000003 [ 2965.317631][ T2910] RBP: 00007fba6e062090 R08: 0000000000000000 R09: 0000000000000000 [ 2965.325660][ T2910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2965.333735][ T2910] R13: 0000000000000000 R14: 00007fba6d375fa0 R15: 00007fffd9e05468 [ 2965.341790][ T2910] [ 2965.717289][ T2916] Invalid ELF header magic: != ELF [ 2968.476322][ T2959] FAULT_INJECTION: forcing a failure. [ 2968.476322][ T2959] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2968.545742][ T2959] CPU: 1 UID: 0 PID: 2959 Comm: syz.4.6275 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2968.556523][ T2959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2968.566640][ T2959] Call Trace: [ 2968.569958][ T2959] [ 2968.572935][ T2959] dump_stack_lvl+0x16c/0x1f0 [ 2968.577679][ T2959] should_fail_ex+0x497/0x5b0 [ 2968.582425][ T2959] _copy_to_user+0x32/0xd0 [ 2968.586928][ T2959] simple_read_from_buffer+0xd0/0x160 [ 2968.592362][ T2959] proc_fail_nth_read+0x198/0x270 [ 2968.597497][ T2959] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 2968.603126][ T2959] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 2968.608752][ T2959] vfs_read+0x1df/0xbe0 [ 2968.612971][ T2959] ? __fget_files+0x1fc/0x3a0 [ 2968.617708][ T2959] ? __pfx___mutex_lock+0x10/0x10 [ 2968.622792][ T2959] ? __pfx_vfs_read+0x10/0x10 [ 2968.627538][ T2959] ? __fget_files+0x206/0x3a0 [ 2968.632288][ T2959] ksys_read+0x12b/0x250 [ 2968.636593][ T2959] ? __pfx_ksys_read+0x10/0x10 [ 2968.641513][ T2959] do_syscall_64+0xcd/0x250 [ 2968.646081][ T2959] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2968.652125][ T2959] RIP: 0033:0x7fadc1b8473c [ 2968.656593][ T2959] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 2968.676266][ T2959] RSP: 002b:00007fadc295d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2968.684746][ T2959] RAX: ffffffffffffffda RBX: 00007fadc1d76080 RCX: 00007fadc1b8473c [ 2968.692771][ T2959] RDX: 000000000000000f RSI: 00007fadc295d0a0 RDI: 0000000000000003 [ 2968.700799][ T2959] RBP: 00007fadc295d090 R08: 0000000000000000 R09: 0000000000000000 [ 2968.708840][ T2959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2968.717121][ T2959] R13: 0000000000000001 R14: 00007fadc1d76080 R15: 00007ffe58157da8 [ 2968.725171][ T2959] [ 2969.294515][ T2900] Process accounting resumed [ 2969.349157][ T2966] synth uevent: /devices/platform/vhci_hcd.11: unknown uevent action string [ 2969.485761][ T2966] vhci_hcd vhci_hcd.11: uevent: failed to send synthetic uevent: -22 [ 2969.520477][ T2973] FAULT_INJECTION: forcing a failure. [ 2969.520477][ T2973] name failslab, interval 1, probability 0, space 0, times 0 [ 2969.533642][ T2973] CPU: 0 UID: 0 PID: 2973 Comm: syz.3.6278 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2969.544388][ T2973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2969.554611][ T2973] Call Trace: [ 2969.557947][ T2973] [ 2969.560929][ T2973] dump_stack_lvl+0x16c/0x1f0 [ 2969.565681][ T2973] should_fail_ex+0x497/0x5b0 [ 2969.570424][ T2973] ? fs_reclaim_acquire+0xae/0x150 [ 2969.575602][ T2973] should_failslab+0xc2/0x120 [ 2969.580361][ T2973] __kmalloc_noprof+0xce/0x4f0 [ 2969.585219][ T2973] ? tomoyo_encode2+0x100/0x3e0 [ 2969.590148][ T2973] tomoyo_encode2+0x100/0x3e0 [ 2969.594892][ T2973] tomoyo_realpath_from_path+0x1a7/0x710 [ 2969.600938][ T2973] ? tomoyo_path_number_perm+0x235/0x5b0 [ 2969.606653][ T2973] tomoyo_path_number_perm+0x248/0x5b0 [ 2969.612190][ T2973] ? tomoyo_path_number_perm+0x235/0x5b0 [ 2969.617912][ T2973] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 2969.624005][ T2973] ? __pfx_lock_release+0x10/0x10 [ 2969.629087][ T2973] ? trace_lock_acquire+0x14e/0x1f0 [ 2969.634355][ T2973] ? lock_acquire+0x2f/0xb0 [ 2969.638908][ T2973] ? __fget_files+0x40/0x3a0 [ 2969.643571][ T2973] ? __fget_files+0x206/0x3a0 [ 2969.648327][ T2973] security_file_ioctl+0x9b/0x240 [ 2969.653433][ T2973] __x64_sys_ioctl+0xb7/0x200 [ 2969.658173][ T2973] do_syscall_64+0xcd/0x250 [ 2969.662752][ T2973] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2969.668718][ T2973] RIP: 0033:0x7fa051f85d29 [ 2969.673183][ T2973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2969.692853][ T2973] RSP: 002b:00007fa051dd8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2969.701338][ T2973] RAX: ffffffffffffffda RBX: 00007fa052176080 RCX: 00007fa051f85d29 [ 2969.709368][ T2973] RDX: 0000000000000038 RSI: 000000000000541b RDI: 0000000000000003 [ 2969.717399][ T2973] RBP: 00007fa051dd8090 R08: 0000000000000000 R09: 0000000000000000 [ 2969.725427][ T2973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2969.733455][ T2973] R13: 0000000000000001 R14: 00007fa052176080 R15: 00007ffdde207278 [ 2969.741507][ T2973] [ 2969.757727][ T2973] ERROR: Out of memory at tomoyo_realpath_from_path. [ 2972.147025][ T3002] FAULT_INJECTION: forcing a failure. [ 2972.147025][ T3002] name failslab, interval 1, probability 0, space 0, times 0 [ 2972.225240][ T3002] CPU: 1 UID: 0 PID: 3002 Comm: syz.0.6287 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2972.236021][ T3002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2972.246130][ T3002] Call Trace: [ 2972.249459][ T3002] [ 2972.252428][ T3002] dump_stack_lvl+0x16c/0x1f0 [ 2972.257174][ T3002] should_fail_ex+0x497/0x5b0 [ 2972.261910][ T3002] ? fs_reclaim_acquire+0xae/0x150 [ 2972.267082][ T3002] should_failslab+0xc2/0x120 [ 2972.271841][ T3002] __kmalloc_noprof+0xce/0x4f0 [ 2972.276670][ T3002] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 2972.282357][ T3002] ? tomoyo_realpath_from_path+0xbf/0x710 [ 2972.288153][ T3002] tomoyo_realpath_from_path+0xbf/0x710 [ 2972.293766][ T3002] ? tomoyo_path_number_perm+0x235/0x5b0 [ 2972.299478][ T3002] tomoyo_path_number_perm+0x248/0x5b0 [ 2972.305031][ T3002] ? tomoyo_path_number_perm+0x235/0x5b0 [ 2972.310746][ T3002] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 2972.316833][ T3002] ? __pfx_lock_release+0x10/0x10 [ 2972.321920][ T3002] ? trace_lock_acquire+0x14e/0x1f0 [ 2972.327219][ T3002] ? lock_acquire+0x2f/0xb0 [ 2972.331780][ T3002] ? __fget_files+0x40/0x3a0 [ 2972.336440][ T3002] ? __fget_files+0x206/0x3a0 [ 2972.341192][ T3002] security_file_ioctl+0x9b/0x240 [ 2972.346278][ T3002] __x64_sys_ioctl+0xb7/0x200 [ 2972.351013][ T3002] do_syscall_64+0xcd/0x250 [ 2972.355594][ T3002] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2972.361554][ T3002] RIP: 0033:0x7fba6d185d29 [ 2972.366018][ T3002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2972.385688][ T3002] RSP: 002b:00007fba6e062038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2972.394172][ T3002] RAX: ffffffffffffffda RBX: 00007fba6d375fa0 RCX: 00007fba6d185d29 [ 2972.402202][ T3002] RDX: 0000000020001680 RSI: 0000000090009427 RDI: 0000000000000003 [ 2972.410228][ T3002] RBP: 00007fba6e062090 R08: 0000000000000000 R09: 0000000000000000 [ 2972.418254][ T3002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2972.426280][ T3002] R13: 0000000000000000 R14: 00007fba6d375fa0 R15: 00007fffd9e05468 [ 2972.434335][ T3002] [ 2972.525741][ T3002] ERROR: Out of memory at tomoyo_realpath_from_path. [ 2972.803355][ T3011] FAULT_INJECTION: forcing a failure. [ 2972.803355][ T3011] name failslab, interval 1, probability 0, space 0, times 0 [ 2972.816299][ T3011] CPU: 0 UID: 0 PID: 3011 Comm: syz.0.6289 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2972.827058][ T3011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2972.837158][ T3011] Call Trace: [ 2972.840481][ T3011] [ 2972.843457][ T3011] dump_stack_lvl+0x16c/0x1f0 [ 2972.848201][ T3011] should_fail_ex+0x497/0x5b0 [ 2972.852949][ T3011] ? fs_reclaim_acquire+0xae/0x150 [ 2972.858118][ T3011] should_failslab+0xc2/0x120 [ 2972.862845][ T3011] kmem_cache_alloc_lru_noprof+0x73/0x3b0 [ 2972.868607][ T3011] ? proc_alloc_inode+0x25/0x200 [ 2972.873615][ T3011] ? __pfx_proc_alloc_inode+0x10/0x10 [ 2972.879020][ T3011] proc_alloc_inode+0x25/0x200 [ 2972.883815][ T3011] alloc_inode+0x5d/0x230 [ 2972.888191][ T3011] new_inode+0x22/0x210 [ 2972.892399][ T3011] proc_pid_make_inode+0x22/0x160 [ 2972.897455][ T3011] proc_pident_instantiate+0x85/0x320 [ 2972.902863][ T3011] proc_tid_base_lookup+0x214/0x280 [ 2972.908098][ T3011] __lookup_slow+0x24f/0x460 [ 2972.912731][ T3011] ? __pfx___lookup_slow+0x10/0x10 [ 2972.917892][ T3011] ? walk_component+0x342/0x5b0 [ 2972.922786][ T3011] ? lookup_fast+0x155/0x540 [ 2972.927410][ T3011] walk_component+0x350/0x5b0 [ 2972.932126][ T3011] link_path_walk.part.0.constprop.0+0x669/0xd40 [ 2972.938498][ T3011] path_openat+0x228/0x2d60 [ 2972.943040][ T3011] ? hlock_class+0x4e/0x130 [ 2972.947597][ T3011] ? __pfx_path_openat+0x10/0x10 [ 2972.952572][ T3011] ? __pfx___lock_acquire+0x10/0x10 [ 2972.957799][ T3011] ? lock_acquire.part.0+0x11b/0x380 [ 2972.963111][ T3011] ? find_held_lock+0x2d/0x110 [ 2972.967914][ T3011] do_filp_open+0x20c/0x470 [ 2972.972457][ T3011] ? __pfx_do_filp_open+0x10/0x10 [ 2972.977514][ T3011] ? find_held_lock+0x2d/0x110 [ 2972.982323][ T3011] ? __pfx_kfree_link+0x10/0x10 [ 2972.987233][ T3011] ? alloc_fd+0x41f/0x760 [ 2972.991605][ T3011] do_sys_openat2+0x17a/0x1e0 [ 2972.996322][ T3011] ? __pfx_do_sys_openat2+0x10/0x10 [ 2973.001572][ T3011] ? __fget_files+0x206/0x3a0 [ 2973.006287][ T3011] __x64_sys_openat+0x175/0x210 [ 2973.011203][ T3011] ? __pfx___x64_sys_openat+0x10/0x10 [ 2973.016618][ T3011] ? ksys_write+0x1ba/0x250 [ 2973.021161][ T3011] do_syscall_64+0xcd/0x250 [ 2973.025703][ T3011] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2973.031630][ T3011] RIP: 0033:0x7fba6d185d29 [ 2973.036068][ T3011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2973.055715][ T3011] RSP: 002b:00007fba6e062038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 2973.064159][ T3011] RAX: ffffffffffffffda RBX: 00007fba6d375fa0 RCX: 00007fba6d185d29 [ 2973.072153][ T3011] RDX: 0000000000000000 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 2973.080169][ T3011] RBP: 00007fba6e062090 R08: 0000000000000000 R09: 0000000000000000 [ 2973.088162][ T3011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2973.096156][ T3011] R13: 0000000000000001 R14: 00007fba6d375fa0 R15: 00007fffd9e05468 [ 2973.104177][ T3011] [ 2975.197083][ T3031] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2975.278868][ T3031] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2975.388177][ T3031] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 2975.403004][ T3031] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2976.610414][ T3030] kexec: Could not allocate control_code_buffer [ 2976.786122][T17933] Bluetooth: hci3: command 0x0406 tx timeout [ 2977.266348][T17933] Bluetooth: hci4: command 0x0406 tx timeout [ 2977.355919][T17933] Bluetooth: hci2: command 0x0406 tx timeout [ 2977.449759][T17933] Bluetooth: hci0: command 0x0406 tx timeout [ 2977.967343][ T3060] FAULT_INJECTION: forcing a failure. [ 2977.967343][ T3060] name failslab, interval 1, probability 0, space 0, times 0 [ 2978.036357][ T3060] CPU: 0 UID: 0 PID: 3060 Comm: syz.0.6304 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 2978.047213][ T3060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 2978.057331][ T3060] Call Trace: [ 2978.060743][ T3060] [ 2978.063726][ T3060] dump_stack_lvl+0x16c/0x1f0 [ 2978.068483][ T3060] should_fail_ex+0x497/0x5b0 [ 2978.073224][ T3060] ? fs_reclaim_acquire+0xae/0x150 [ 2978.078403][ T3060] should_failslab+0xc2/0x120 [ 2978.083153][ T3060] __kmalloc_noprof+0xce/0x4f0 [ 2978.087990][ T3060] ? tomoyo_encode2+0x100/0x3e0 [ 2978.092918][ T3060] tomoyo_encode2+0x100/0x3e0 [ 2978.097659][ T3060] tomoyo_realpath_from_path+0x1a7/0x710 [ 2978.103357][ T3060] ? tomoyo_path_number_perm+0x235/0x5b0 [ 2978.109069][ T3060] tomoyo_path_number_perm+0x248/0x5b0 [ 2978.114599][ T3060] ? tomoyo_path_number_perm+0x235/0x5b0 [ 2978.120314][ T3060] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 2978.126407][ T3060] ? __pfx_lock_release+0x10/0x10 [ 2978.131481][ T3060] ? trace_lock_acquire+0x14e/0x1f0 [ 2978.136761][ T3060] ? lock_acquire+0x2f/0xb0 [ 2978.141320][ T3060] ? __fget_files+0x40/0x3a0 [ 2978.145982][ T3060] ? __fget_files+0x206/0x3a0 [ 2978.150735][ T3060] security_file_ioctl+0x9b/0x240 [ 2978.155820][ T3060] __x64_sys_ioctl+0xb7/0x200 [ 2978.160554][ T3060] do_syscall_64+0xcd/0x250 [ 2978.165132][ T3060] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2978.171096][ T3060] RIP: 0033:0x7fba6d185d29 [ 2978.175555][ T3060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2978.195227][ T3060] RSP: 002b:00007fba6e062038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2978.203715][ T3060] RAX: ffffffffffffffda RBX: 00007fba6d375fa0 RCX: 00007fba6d185d29 [ 2978.211817][ T3060] RDX: 0000000000000038 RSI: 000000000000541b RDI: 0000000000000003 [ 2978.219876][ T3060] RBP: 00007fba6e062090 R08: 0000000000000000 R09: 0000000000000000 [ 2978.227990][ T3060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2978.236013][ T3060] R13: 0000000000000000 R14: 00007fba6d375fa0 R15: 00007fffd9e05468 [ 2978.244061][ T3060] [ 2978.306741][ T3060] ERROR: Out of memory at tomoyo_realpath_from_path. [ 2978.687302][ T3055] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2978.725611][ T3055] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2978.747944][ T3055] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 2978.785906][ T3055] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2980.543500][ T3073] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2980.606276][ T3073] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2980.647518][ T3073] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 2980.698016][ T3073] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2981.755828][T17933] Bluetooth: hci3: command 0x0406 tx timeout [ 2982.626281][T17933] Bluetooth: hci4: command 0x0406 tx timeout [ 2982.705794][T17933] Bluetooth: hci2: command 0x0406 tx timeout [ 2982.785682][T17933] Bluetooth: hci0: command 0x0406 tx timeout [ 2985.686729][ T3132] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2985.735643][ T3132] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2985.816794][ T3132] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 2985.822913][ T3132] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2987.345950][ T2323] Bluetooth: hci3: command 0x0406 tx timeout [ 2987.746661][ T2323] Bluetooth: hci4: command 0x0406 tx timeout [ 2987.905715][ T2323] Bluetooth: hci2: command 0x0406 tx timeout [ 2987.915715][ T2323] Bluetooth: hci0: command 0x0406 tx timeout [ 2991.497732][ T3176] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 2991.504258][ T3176] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 2991.525968][ T3176] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 2991.542364][ T3176] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2992.737735][ T2323] Bluetooth: hci3: command 0x0406 tx timeout [ 2993.505805][ T2323] Bluetooth: hci4: command 0x0406 tx timeout [ 2993.587090][ T2323] Bluetooth: hci0: command 0x0406 tx timeout [ 2993.593190][ T2323] Bluetooth: hci2: command 0x0406 tx timeout [ 2999.906061][ T3267] Process accounting paused [ 3000.996722][ T3283] FAULT_INJECTION: forcing a failure. [ 3000.996722][ T3283] name failslab, interval 1, probability 0, space 0, times 0 [ 3001.096811][ T3283] CPU: 0 UID: 0 PID: 3283 Comm: syz.4.6361 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 3001.107595][ T3283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 3001.117709][ T3283] Call Trace: [ 3001.121022][ T3283] [ 3001.123997][ T3283] dump_stack_lvl+0x16c/0x1f0 [ 3001.128748][ T3283] should_fail_ex+0x497/0x5b0 [ 3001.133582][ T3283] ? fs_reclaim_acquire+0xae/0x150 [ 3001.138761][ T3283] should_failslab+0xc2/0x120 [ 3001.143505][ T3283] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 3001.148944][ T3283] ? __pfx___might_resched+0x10/0x10 [ 3001.154294][ T3283] ? __anon_vma_prepare+0x344/0x5e0 [ 3001.159584][ T3283] __anon_vma_prepare+0x344/0x5e0 [ 3001.164681][ T3283] ? __pfx___pte_alloc+0x10/0x10 [ 3001.169723][ T3283] __vmf_anon_prepare+0x11c/0x240 [ 3001.174814][ T3283] do_pte_missing+0x1020/0x3e00 [ 3001.179735][ T3283] ? mt_find+0x82d/0xa20 [ 3001.184058][ T3283] __handle_mm_fault+0x103c/0x2a40 [ 3001.189259][ T3283] ? __pfx___handle_mm_fault+0x10/0x10 [ 3001.194918][ T3283] handle_mm_fault+0x3fa/0xaa0 [ 3001.199767][ T3283] __get_user_pages+0x8d9/0x3b50 [ 3001.205101][ T3283] ? __pfx_mt_find+0x10/0x10 [ 3001.209769][ T3283] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 3001.215470][ T3283] ? __pfx___get_user_pages+0x10/0x10 [ 3001.220913][ T3283] ? __mm_populate+0x21d/0x380 [ 3001.225755][ T3283] populate_vma_page_range+0x27f/0x3a0 [ 3001.231287][ T3283] ? __pfx_populate_vma_page_range+0x10/0x10 [ 3001.237344][ T3283] ? __pfx_find_vma_intersection+0x10/0x10 [ 3001.243314][ T3283] ? vm_mmap_pgoff+0x25b/0x360 [ 3001.248249][ T3283] __mm_populate+0x1d6/0x380 [ 3001.252929][ T3283] ? __pfx___mm_populate+0x10/0x10 [ 3001.258126][ T3283] ? up_write+0x1b2/0x520 [ 3001.262575][ T3283] vm_mmap_pgoff+0x293/0x360 [ 3001.267255][ T3283] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 3001.272443][ T3283] ? __fget_files+0x206/0x3a0 [ 3001.277202][ T3283] ksys_mmap_pgoff+0x7d/0x5c0 [ 3001.281985][ T3283] ? __pfx_ksys_write+0x10/0x10 [ 3001.286916][ T3283] __x64_sys_mmap+0x125/0x190 [ 3001.291669][ T3283] do_syscall_64+0xcd/0x250 [ 3001.296254][ T3283] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 3001.302402][ T3283] RIP: 0033:0x7fadc1b85d29 [ 3001.306874][ T3283] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 3001.326552][ T3283] RSP: 002b:00007fadc297e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 3001.335031][ T3283] RAX: ffffffffffffffda RBX: 00007fadc1d75fa0 RCX: 00007fadc1b85d29 [ 3001.343053][ T3283] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 3001.351256][ T3283] RBP: 00007fadc297e090 R08: 0000000000000002 R09: 0000000000008000 [ 3001.359304][ T3283] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000001 [ 3001.367351][ T3283] R13: 0000000000000001 R14: 00007fadc1d75fa0 R15: 00007ffe58157da8 [ 3001.375407][ T3283] [ 3002.361540][ T3287] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 3002.368217][ T3287] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 3002.374379][ T3287] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 3002.406172][ T3287] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 3003.497663][ T3305] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6375'. [ 3003.566272][ T3311] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6375'. [ 3003.905662][ T2323] Bluetooth: hci3: command 0x0406 tx timeout [ 3004.395860][ T2323] Bluetooth: hci2: command 0x0406 tx timeout [ 3004.395873][T17933] Bluetooth: hci4: command 0x0406 tx timeout [ 3004.466423][ T2323] Bluetooth: hci0: command 0x0406 tx timeout [ 3011.083722][ T3368] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 3011.176589][ T3368] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 3011.205570][ T3368] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 3011.278328][ T3368] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 3013.115677][ T2323] Bluetooth: hci3: command 0x0406 tx timeout [ 3013.185689][ T2323] Bluetooth: hci2: command 0x0406 tx timeout [ 3013.191949][T17933] Bluetooth: hci4: command 0x0406 tx timeout [ 3013.266535][ T2323] Bluetooth: hci0: command 0x0406 tx timeout [ 3016.767413][ T3437] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 3016.856113][ T3437] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 3016.862283][ T3437] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 3017.025771][ T3437] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 3018.526014][ T3446] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 3018.532224][ T3446] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 3018.685857][ T3446] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 3018.692026][ T3446] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 3020.036018][ T3443] netlink: 'syz.0.6408': attribute type 1 has an invalid length. [ 3020.066381][ T2323] Bluetooth: hci3: command 0x0406 tx timeout [ 3020.247302][ T3443] netlink: 'syz.0.6408': attribute type 1 has an invalid length. [ 3020.565832][ T2323] Bluetooth: hci4: command 0x0406 tx timeout [ 3020.795636][ T2323] Bluetooth: hci0: command 0x0406 tx timeout [ 3020.795647][T17933] Bluetooth: hci2: command 0x0406 tx timeout syzkaller syzkaller login: [ 3022.324895][ T3483] FAULT_INJECTION: forcing a failure. [ 3022.324895][ T3483] name failslab, interval 1, probability 0, space 0, times 0 [ 3022.368518][ T3483] CPU: 1 UID: 0 PID: 3483 Comm: syz.2.6410 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 3022.379310][ T3483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 3022.389438][ T3483] Call Trace: [ 3022.392766][ T3483] [ 3022.395743][ T3483] dump_stack_lvl+0x16c/0x1f0 [ 3022.400491][ T3483] should_fail_ex+0x497/0x5b0 [ 3022.405342][ T3483] ? fs_reclaim_acquire+0xae/0x150 [ 3022.410595][ T3483] should_failslab+0xc2/0x120 [ 3022.415351][ T3483] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 3022.420800][ T3483] ? security_file_alloc+0x34/0x2b0 [ 3022.426062][ T3483] security_file_alloc+0x34/0x2b0 [ 3022.431227][ T3483] init_file+0x93/0x480 [ 3022.435451][ T3483] alloc_empty_file+0x91/0x1e0 [ 3022.440284][ T3483] path_openat+0xe1/0x2d60 [ 3022.444764][ T3483] ? hlock_class+0x4e/0x130 [ 3022.449335][ T3483] ? __lock_acquire+0x15a9/0x3c40 [ 3022.454428][ T3483] ? __pfx_path_openat+0x10/0x10 [ 3022.459446][ T3483] ? __pfx___lock_acquire+0x10/0x10 [ 3022.464704][ T3483] ? lock_acquire.part.0+0x11b/0x380 [ 3022.470071][ T3483] ? find_held_lock+0x2d/0x110 [ 3022.474902][ T3483] do_filp_open+0x20c/0x470 [ 3022.479491][ T3483] ? __pfx_do_filp_open+0x10/0x10 [ 3022.484613][ T3483] ? find_held_lock+0x2d/0x110 [ 3022.489463][ T3483] ? alloc_fd+0x41f/0x760 [ 3022.493867][ T3483] do_sys_openat2+0x17a/0x1e0 [ 3022.498635][ T3483] ? __pfx_do_sys_openat2+0x10/0x10 [ 3022.503930][ T3483] ? __fget_files+0x206/0x3a0 [ 3022.508683][ T3483] __x64_sys_openat+0x175/0x210 [ 3022.513619][ T3483] ? __pfx___x64_sys_openat+0x10/0x10 [ 3022.519066][ T3483] ? ksys_write+0x1ba/0x250 [ 3022.523649][ T3483] do_syscall_64+0xcd/0x250 [ 3022.528223][ T3483] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 3022.534182][ T3483] RIP: 0033:0x7f2dfb985d29 [ 3022.538649][ T3483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 3022.558333][ T3483] RSP: 002b:00007f2dfc7a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 3022.566823][ T3483] RAX: ffffffffffffffda RBX: 00007f2dfbb75fa0 RCX: 00007f2dfb985d29 [ 3022.574851][ T3483] RDX: 0000000000000200 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 3022.582883][ T3483] RBP: 00007f2dfc7a7090 R08: 0000000000000000 R09: 0000000000000000 [ 3022.590904][ T3483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3022.598935][ T3483] R13: 0000000000000001 R14: 00007f2dfbb75fa0 R15: 00007fff493b3fa8 [ 3022.606978][ T3483] [ 3022.835453][ T3475] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 3022.874952][ T3475] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 3022.895758][ T3475] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 3022.902090][ T3475] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 3024.225686][T17933] Bluetooth: hci3: command 0x0406 tx timeout [ 3024.865711][T17933] Bluetooth: hci4: command 0x0406 tx timeout [ 3024.877638][ T3500] FAULT_INJECTION: forcing a failure. [ 3024.877638][ T3500] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 3024.955022][T17933] Bluetooth: hci0: command 0x0406 tx timeout [ 3024.962447][ T2323] Bluetooth: hci2: command 0x0406 tx timeout [ 3025.076220][ T3500] CPU: 0 UID: 0 PID: 3500 Comm: syz.3.6416 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 3025.086993][ T3500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 3025.097108][ T3500] Call Trace: [ 3025.100432][ T3500] [ 3025.103407][ T3500] dump_stack_lvl+0x16c/0x1f0 [ 3025.108161][ T3500] should_fail_ex+0x497/0x5b0 [ 3025.112940][ T3500] ? fs_reclaim_acquire+0xae/0x150 [ 3025.118142][ T3500] should_fail_alloc_page+0xe7/0x130 [ 3025.123512][ T3500] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 3025.129750][ T3500] __alloc_pages_noprof+0x190/0x25b0 [ 3025.135127][ T3500] ? __pfx_mark_lock+0x10/0x10 [ 3025.139968][ T3500] ? __pfx___lock_acquire+0x10/0x10 [ 3025.145228][ T3500] ? mark_lock+0xb5/0xc60 [ 3025.149637][ T3500] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 3025.155444][ T3500] ? hlock_class+0x4e/0x130 [ 3025.160008][ T3500] ? __lock_acquire+0xcc5/0x3c40 [ 3025.165011][ T3500] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 3025.170971][ T3500] ? policy_nodemask+0xea/0x4e0 [ 3025.175896][ T3500] alloc_pages_mpol_noprof+0x2c9/0x610 [ 3025.181442][ T3500] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 3025.187598][ T3500] ? find_held_lock+0x2d/0x110 [ 3025.192537][ T3500] folio_alloc_mpol_noprof+0x36/0xd0 [ 3025.197893][ T3500] shmem_alloc_folio+0x135/0x160 [ 3025.202914][ T3500] shmem_alloc_and_add_folio+0x48b/0xc00 [ 3025.208612][ T3500] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 3025.214569][ T3500] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 3025.220783][ T3500] ? shmem_huge_global_enabled+0x176/0x250 [ 3025.226663][ T3500] ? shmem_allowable_huge_orders+0xcd/0x3e0 [ 3025.232635][ T3500] shmem_get_folio_gfp+0x689/0x1530 [ 3025.237916][ T3500] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 3025.243624][ T3500] ? filemap_map_pages+0xf92/0x16b0 [ 3025.248901][ T3500] shmem_fault+0x200/0xae0 [ 3025.253394][ T3500] ? __pfx_shmem_fault+0x10/0x10 [ 3025.258435][ T3500] ? do_pte_missing+0xdd7/0x3e00 [ 3025.263444][ T3500] ? __pfx_lock_release+0x10/0x10 [ 3025.268545][ T3500] __do_fault+0x10a/0x490 [ 3025.272944][ T3500] do_pte_missing+0xebd/0x3e00 [ 3025.277882][ T3500] __handle_mm_fault+0x103c/0x2a40 [ 3025.283086][ T3500] ? __pfx___handle_mm_fault+0x10/0x10 [ 3025.288614][ T3500] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 3025.294329][ T3500] ? find_vma+0xc0/0x140 [ 3025.298633][ T3500] ? __pfx_find_vma+0x10/0x10 [ 3025.303381][ T3500] handle_mm_fault+0x3fa/0xaa0 [ 3025.308225][ T3500] do_user_addr_fault+0x7a3/0x13f0 [ 3025.313406][ T3500] exc_page_fault+0x5c/0xc0 [ 3025.317998][ T3500] asm_exc_page_fault+0x26/0x30 [ 3025.322918][ T3500] RIP: 0010:rep_movs_alternative+0x4a/0x70 [ 3025.328893][ T3500] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1 [ 3025.348571][ T3500] RSP: 0018:ffffc9000bc877e8 EFLAGS: 00050206 [ 3025.354790][ T3500] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 00000000000000c4 [ 3025.362853][ T3500] RDX: ffffed100f5fb879 RSI: 0000000000000000 RDI: ffff88807afdc300 [ 3025.370884][ T3500] RBP: ffffc9000bc87d60 R08: 0000000000000001 R09: ffffed100f5fb878 [ 3025.379003][ T3500] R10: ffff88807afdc3c3 R11: 0000000000000000 R12: 00000000000000c4 [ 3025.387033][ T3500] R13: 00007ffffffff000 R14: ffff88807afdc300 R15: 00000000000000c4 [ 3025.395081][ T3500] _copy_from_iter+0x384/0x1400 [ 3025.400016][ T3500] ? trace_lock_acquire+0x14e/0x1f0 [ 3025.405288][ T3500] ? __alloc_skb+0x200/0x380 [ 3025.409956][ T3500] ? __pfx__copy_from_iter+0x10/0x10 [ 3025.415317][ T3500] ? __virt_addr_valid+0x1a4/0x590 [ 3025.420504][ T3500] ? __virt_addr_valid+0x5e/0x590 [ 3025.425602][ T3500] ? __phys_addr_symbol+0x30/0x80 [ 3025.430694][ T3500] ? __check_object_size+0x488/0x710 [ 3025.436066][ T3500] netlink_sendmsg+0x813/0xd70 [ 3025.440904][ T3500] ? __pfx_netlink_sendmsg+0x10/0x10 [ 3025.446271][ T3500] ____sys_sendmsg+0x9ae/0xb40 [ 3025.451279][ T3500] ? copy_msghdr_from_user+0x10b/0x160 [ 3025.456815][ T3500] ? __pfx_____sys_sendmsg+0x10/0x10 [ 3025.462244][ T3500] ? __lock_acquire+0xcc5/0x3c40 [ 3025.467256][ T3500] ___sys_sendmsg+0x135/0x1e0 [ 3025.472011][ T3500] ? __pfx____sys_sendmsg+0x10/0x10 [ 3025.477301][ T3500] ? trace_lock_acquire+0x14e/0x1f0 [ 3025.482604][ T3500] __sys_sendmmsg+0x201/0x420 [ 3025.487453][ T3500] ? __pfx___sys_sendmmsg+0x10/0x10 [ 3025.492743][ T3500] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 3025.499000][ T3500] ? fput+0x67/0x440 [ 3025.502977][ T3500] ? ksys_write+0x1ba/0x250 [ 3025.507549][ T3500] ? __pfx_ksys_write+0x10/0x10 [ 3025.512471][ T3500] __x64_sys_sendmmsg+0x9c/0x100 [ 3025.517487][ T3500] ? lockdep_hardirqs_on+0x7c/0x110 [ 3025.522764][ T3500] do_syscall_64+0xcd/0x250 [ 3025.527341][ T3500] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 3025.533390][ T3500] RIP: 0033:0x7fa051f85d29 [ 3025.537855][ T3500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 3025.557629][ T3500] RSP: 002b:00007fa051df9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3025.566891][ T3500] RAX: ffffffffffffffda RBX: 00007fa052175fa0 RCX: 00007fa051f85d29 [ 3025.575003][ T3500] RDX: 0000000000000003 RSI: 0000000020000080 RDI: 0000000000000003 [ 3025.583032][ T3500] RBP: 00007fa051df9090 R08: 0000000000000000 R09: 0000000000000000 [ 3025.591061][ T3500] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3025.599087][ T3500] R13: 0000000000000000 R14: 00007fa052175fa0 R15: 00007ffdde207278 [ 3025.607137][ T3500] [ 3025.908191][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 3025.914847][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 3027.136193][ T3513] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 3027.155917][ T3513] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 3027.162270][ T3513] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 3027.186747][ T3513] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 3028.385939][T17933] Bluetooth: hci3: command 0x0406 tx timeout [ 3029.185770][T17933] Bluetooth: hci2: command 0x0406 tx timeout [ 3029.189880][ T2323] Bluetooth: hci4: command 0x0406 tx timeout [ 3029.265758][ T2323] Bluetooth: hci0: command 0x0406 tx timeout [ 3029.970555][ T3543] Process accounting resumed [ 3031.926704][ T3557] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 3031.932920][ T3557] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 3031.956599][ T3557] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 3031.962979][ T3557] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 3033.231331][ T3595] vivid-013: ================= START STATUS ================= [ 3033.265769][ T3595] vivid-013: Generate PTS: true [ 3033.281334][ T3595] vivid-013: Generate SCR: true [ 3033.326826][ T3595] tpg source WxH: 640x360 (Y'CbCr) [ 3033.341980][ T3595] tpg field: 1 [ 3033.345421][ T3595] tpg crop: 640x360@0x0 [ 3033.376097][ T3595] tpg compose: 640x360@0x0 [ 3033.390983][ T3595] tpg colorspace: 8 [ 3033.394863][ T3595] tpg transfer function: 0/0 [ 3033.425756][ T2323] Bluetooth: hci3: command 0x0406 tx timeout [ 3033.425817][ T3595] tpg Y'CbCr encoding: 0/0 [ 3033.456109][ T3595] tpg quantization: 0/0 [ 3033.485648][ T3595] tpg RGB range: 0/2 [ 3033.505751][ T3595] vivid-013: ================== END STATUS ================== [ 3033.985769][ T2323] Bluetooth: hci0: command 0x0406 tx timeout [ 3033.985934][T17933] Bluetooth: hci2: command 0x0406 tx timeout [ 3033.991869][ T2323] Bluetooth: hci4: command 0x0406 tx timeout [ 3035.506205][ T3616] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 3035.513875][ T3616] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 3035.601050][ T3616] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 3035.685898][ T3616] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 3037.038760][T17933] Bluetooth: hci3: command 0x0406 tx timeout [ 3037.603517][T17933] Bluetooth: hci4: command 0x0406 tx timeout [ 3037.665704][T17933] Bluetooth: hci2: command 0x0406 tx timeout [ 3037.745673][T17933] Bluetooth: hci0: command 0x0406 tx timeout [ 3039.535694][ T3661] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 3039.587579][ T3661] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 3039.645645][ T3661] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 3039.715684][ T3661] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 3040.795606][T17933] Bluetooth: hci3: command 0x0406 tx timeout [ 3041.585615][T17933] Bluetooth: hci4: command 0x0406 tx timeout [ 3041.675772][T17933] Bluetooth: hci0: command 0x0406 tx timeout [ 3041.681959][T14923] Bluetooth: hci2: command 0x0406 tx timeout [ 3043.026936][ T3731] FAULT_INJECTION: forcing a failure. [ 3043.026936][ T3731] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 3043.249273][ T3731] CPU: 0 UID: 0 PID: 3731 Comm: syz.4.6479 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 3043.260054][ T3731] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 3043.270339][ T3731] Call Trace: [ 3043.273663][ T3731] [ 3043.276645][ T3731] dump_stack_lvl+0x16c/0x1f0 [ 3043.281397][ T3731] should_fail_ex+0x497/0x5b0 [ 3043.286151][ T3731] _copy_from_user+0x2e/0xd0 [ 3043.290828][ T3731] kstrtouint_from_user+0xd7/0x1c0 [ 3043.295997][ T3731] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 3043.301788][ T3731] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 3043.307483][ T3731] proc_fail_nth_write+0x84/0x250 [ 3043.312587][ T3731] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 3043.318307][ T3731] ? ksys_write+0x12b/0x250 [ 3043.322895][ T3731] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 3043.328604][ T3731] vfs_write+0x24c/0x1150 [ 3043.333087][ T3731] ? __fget_files+0x1fc/0x3a0 [ 3043.337829][ T3731] ? __pfx___mutex_lock+0x10/0x10 [ 3043.342918][ T3731] ? __pfx_vfs_write+0x10/0x10 [ 3043.347757][ T3731] ? __fget_files+0x206/0x3a0 [ 3043.352511][ T3731] ksys_write+0x12b/0x250 [ 3043.356900][ T3731] ? __pfx_ksys_write+0x10/0x10 [ 3043.361822][ T3731] do_syscall_64+0xcd/0x250 [ 3043.366401][ T3731] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 3043.372538][ T3731] RIP: 0033:0x7fadc1b847df [ 3043.377049][ T3731] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 3043.396813][ T3731] RSP: 002b:00007fadc295d030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 3043.405299][ T3731] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fadc1b847df [ 3043.413334][ T3731] RDX: 0000000000000001 RSI: 00007fadc295d0a0 RDI: 0000000000000004 [ 3043.421925][ T3731] RBP: 00007fadc295d090 R08: 0000000000000000 R09: 0000000000000000 [ 3043.429959][ T3731] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 3043.437993][ T3731] R13: 0000000000000000 R14: 00007fadc1d76080 R15: 00007ffe58157da8 [ 3043.446165][ T3731] [ 3043.676754][ T3719] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 3043.705839][ T3719] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 3043.821345][ T3719] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 3043.845850][ T3719] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 3044.366489][ T3754] FAULT_INJECTION: forcing a failure. [ 3044.366489][ T3754] name failslab, interval 1, probability 0, space 0, times 0 [ 3044.485785][ T3754] CPU: 1 UID: 0 PID: 3754 Comm: syz.3.6483 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 3044.496570][ T3754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 3044.506682][ T3754] Call Trace: [ 3044.510012][ T3754] [ 3044.512992][ T3754] dump_stack_lvl+0x16c/0x1f0 [ 3044.517745][ T3754] should_fail_ex+0x497/0x5b0 [ 3044.522490][ T3754] ? fs_reclaim_acquire+0xae/0x150 [ 3044.527673][ T3754] should_failslab+0xc2/0x120 [ 3044.532508][ T3754] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 3044.537950][ T3754] ? security_inode_alloc+0x3b/0x2b0 [ 3044.543324][ T3754] security_inode_alloc+0x3b/0x2b0 [ 3044.548517][ T3754] inode_init_always_gfp+0xce4/0x1030 [ 3044.553964][ T3754] alloc_inode+0x82/0x230 [ 3044.558373][ T3754] new_inode+0x22/0x210 [ 3044.562692][ T3754] proc_pid_make_inode+0x22/0x160 [ 3044.567902][ T3754] proc_pident_instantiate+0x85/0x320 [ 3044.573346][ T3754] proc_tid_base_lookup+0x214/0x280 [ 3044.578708][ T3754] __lookup_slow+0x24f/0x460 [ 3044.583469][ T3754] ? __pfx___lookup_slow+0x10/0x10 [ 3044.588753][ T3754] ? walk_component+0x342/0x5b0 [ 3044.593683][ T3754] ? lookup_fast+0x155/0x540 [ 3044.598349][ T3754] walk_component+0x350/0x5b0 [ 3044.603097][ T3754] link_path_walk.part.0.constprop.0+0x669/0xd40 [ 3044.609710][ T3754] path_openat+0x228/0x2d60 [ 3044.614290][ T3754] ? hlock_class+0x4e/0x130 [ 3044.619053][ T3754] ? __pfx_path_openat+0x10/0x10 [ 3044.624069][ T3754] ? __pfx___lock_acquire+0x10/0x10 [ 3044.629387][ T3754] ? lock_acquire.part.0+0x11b/0x380 [ 3044.634741][ T3754] ? find_held_lock+0x2d/0x110 [ 3044.639677][ T3754] do_filp_open+0x20c/0x470 [ 3044.644266][ T3754] ? __pfx_do_filp_open+0x10/0x10 [ 3044.649367][ T3754] ? find_held_lock+0x2d/0x110 [ 3044.654216][ T3754] ? __pfx_kfree_link+0x10/0x10 [ 3044.659159][ T3754] ? alloc_fd+0x41f/0x760 [ 3044.663573][ T3754] do_sys_openat2+0x17a/0x1e0 [ 3044.668329][ T3754] ? __pfx_do_sys_openat2+0x10/0x10 [ 3044.673611][ T3754] ? __fget_files+0x206/0x3a0 [ 3044.678380][ T3754] __x64_sys_openat+0x175/0x210 [ 3044.683409][ T3754] ? __pfx___x64_sys_openat+0x10/0x10 [ 3044.688856][ T3754] ? ksys_write+0x1ba/0x250 [ 3044.693440][ T3754] do_syscall_64+0xcd/0x250 [ 3044.698108][ T3754] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 3044.704176][ T3754] RIP: 0033:0x7fa051f85d29 [ 3044.708700][ T3754] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 3044.728551][ T3754] RSP: 002b:00007fa051df9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 3044.737043][ T3754] RAX: ffffffffffffffda RBX: 00007fa052175fa0 RCX: 00007fa051f85d29 [ 3044.745079][ T3754] RDX: 0000000000000000 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 3044.753134][ T3754] RBP: 00007fa051df9090 R08: 0000000000000000 R09: 0000000000000000 [ 3044.761436][ T3754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3044.769460][ T3754] R13: 0000000000000001 R14: 00007fa052175fa0 R15: 00007ffdde207278 [ 3044.777505][ T3754] [ 3044.945644][T17933] Bluetooth: hci3: command 0x0406 tx timeout [ 3045.287137][ T3764] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6487'. [ 3045.749389][T17933] Bluetooth: hci2: command 0x0406 tx timeout [ 3045.756392][T14923] Bluetooth: hci4: command 0x0406 tx timeout [ 3045.915856][T17933] Bluetooth: hci0: command 0x0406 tx timeout [ 3046.865735][ T3791] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 3046.872089][ T3791] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 3046.882073][ T3791] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 3046.888439][ T3791] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 3048.075699][T17933] Bluetooth: hci3: command 0x0406 tx timeout [ 3048.956097][T17933] Bluetooth: hci0: command 0x0406 tx timeout [ 3048.962196][T17933] Bluetooth: hci2: command 0x0406 tx timeout [ 3048.969354][T14923] Bluetooth: hci4: command 0x0406 tx timeout [ 3050.434426][ T3870] FAULT_INJECTION: forcing a failure. [ 3050.434426][ T3870] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 3050.485710][ T3870] CPU: 0 UID: 0 PID: 3870 Comm: syz.2.6516 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 3050.496780][ T3870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 3050.507002][ T3870] Call Trace: [ 3050.510337][ T3870] [ 3050.514025][ T3870] dump_stack_lvl+0x16c/0x1f0 [ 3050.519050][ T3870] should_fail_ex+0x497/0x5b0 [ 3050.523821][ T3870] ? fs_reclaim_acquire+0xae/0x150 [ 3050.529140][ T3870] should_fail_alloc_page+0xe7/0x130 [ 3050.534518][ T3870] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 3050.540757][ T3870] ? hlock_class+0x4e/0x130 [ 3050.545347][ T3870] __alloc_pages_noprof+0x190/0x25b0 [ 3050.550721][ T3870] ? hlock_class+0x4e/0x130 [ 3050.555298][ T3870] ? __lock_acquire+0xcc5/0x3c40 [ 3050.560391][ T3870] ? hlock_class+0x4e/0x130 [ 3050.564968][ T3870] ? mark_lock+0xb5/0xc60 [ 3050.569380][ T3870] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 3050.575176][ T3870] ? __pfx_mark_lock+0x10/0x10 [ 3050.580050][ T3870] ? __pfx___lock_acquire+0x10/0x10 [ 3050.585392][ T3870] ? find_held_lock+0x2d/0x110 [ 3050.590306][ T3870] ? find_held_lock+0x2d/0x110 [ 3050.595134][ T3870] ? hlock_class+0x4e/0x130 [ 3050.599705][ T3870] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 3050.605784][ T3870] ? policy_nodemask+0xea/0x4e0 [ 3050.610811][ T3870] alloc_pages_mpol_noprof+0x2c9/0x610 [ 3050.616367][ T3870] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 3050.622440][ T3870] ? __pfx___lock_acquire+0x10/0x10 [ 3050.627781][ T3870] ? __kernel_text_address+0xd/0x40 [ 3050.633043][ T3870] ? __pfx_filemap_map_pages+0x10/0x10 [ 3050.638565][ T3870] pte_alloc_one+0x20/0x390 [ 3050.643139][ T3870] __do_fault+0x320/0x490 [ 3050.647536][ T3870] ? __pfx_filemap_map_pages+0x10/0x10 [ 3050.653056][ T3870] do_pte_missing+0x1a8/0x3e00 [ 3050.657911][ T3870] __handle_mm_fault+0x103c/0x2a40 [ 3050.663105][ T3870] ? __pfx___handle_mm_fault+0x10/0x10 [ 3050.668633][ T3870] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 3050.674386][ T3870] ? find_vma+0xc0/0x140 [ 3050.678726][ T3870] ? __pfx_find_vma+0x10/0x10 [ 3050.683489][ T3870] handle_mm_fault+0x3fa/0xaa0 [ 3050.688340][ T3870] do_user_addr_fault+0x7a3/0x13f0 [ 3050.693532][ T3870] exc_page_fault+0x5c/0xc0 [ 3050.698109][ T3870] asm_exc_page_fault+0x26/0x30 [ 3050.703024][ T3870] RIP: 0010:__put_user_4+0x11/0x20 [ 3050.708205][ T3870] Code: 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 [ 3050.727966][ T3870] RSP: 0018:ffffc9000be87cc0 EFLAGS: 00050202 [ 3050.734088][ T3870] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000038 [ 3050.742294][ T3870] RDX: dffffc0000000000 RSI: ffffffff8212b206 RDI: ffff88802e734ba0 [ 3050.750332][ T3870] RBP: 1ffff920017d0f9b R08: 0000000000000000 R09: fffffbfff2039c92 [ 3050.758446][ T3870] R10: ffffffff901ce497 R11: 0000000000000000 R12: ffff88806260a028 [ 3050.766561][ T3870] R13: 0000000000000038 R14: 0000000000008000 R15: 000000000000541b [ 3050.774634][ T3870] ? do_vfs_ioctl+0x1446/0x1950 [ 3050.779563][ T3870] do_vfs_ioctl+0x149b/0x1950 [ 3050.784321][ T3870] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 3050.789434][ T3870] ? __pfx_lock_release+0x10/0x10 [ 3050.794525][ T3870] ? trace_lock_acquire+0x14e/0x1f0 [ 3050.799954][ T3870] ? __fget_files+0x206/0x3a0 [ 3050.804825][ T3870] __x64_sys_ioctl+0x11d/0x200 [ 3050.809762][ T3870] do_syscall_64+0xcd/0x250 [ 3050.814358][ T3870] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 3050.820333][ T3870] RIP: 0033:0x7f2dfb985d29 [ 3050.824922][ T3870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 3050.845045][ T3870] RSP: 002b:00007f2dfc7a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3050.853538][ T3870] RAX: ffffffffffffffda RBX: 00007f2dfbb75fa0 RCX: 00007f2dfb985d29 [ 3050.861576][ T3870] RDX: 0000000000000038 RSI: 000000000000541b RDI: 0000000000000003 [ 3050.869623][ T3870] RBP: 00007f2dfc7a7090 R08: 0000000000000000 R09: 0000000000000000 [ 3050.877745][ T3870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3050.885770][ T3870] R13: 0000000000000000 R14: 00007f2dfbb75fa0 R15: 00007fff493b3fa8 [ 3050.893818][ T3870] [ 3053.303232][ T3896] ------------[ cut here ]------------ [ 3053.309369][ T3896] WARNING: CPU: 0 PID: 3896 at mm/page_alloc.c:4729 __alloc_pages_noprof+0xeff/0x25b0 [ 3053.319188][ T3896] Modules linked in: [ 3053.323169][ T3896] CPU: 0 UID: 0 PID: 3896 Comm: syz.3.6524 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 3053.335463][ T3896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 3053.347039][ T3896] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0 [ 3053.353265][ T3896] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 de b2 fe ff e9 69 f9 ff ff c6 05 33 6e 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 6f a4 0c 00 8b 14 24 e9 [ 3053.373215][ T3896] RSP: 0018:ffffc9000bf7f9c8 EFLAGS: 00010246 [ 3053.379493][ T3896] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 3053.387587][ T3896] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0 [ 3053.395672][ T3896] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 3053.403708][ T3896] R10: 0000000080000000 R11: 0000000000000001 R12: 0000000000000013 [ 3053.411980][ T3896] R13: 0000000000040cc0 R14: 1ffff920017eff4d R15: 00000000ffffffff [ 3053.420661][ T3896] FS: 00007fa051dd86c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 3053.431677][ T3896] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3053.440281][ T3896] CR2: 0000001b2c519ff8 CR3: 0000000041804000 CR4: 00000000003526f0 [ 3053.448962][ T3896] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3053.457110][ T3896] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3053.465155][ T3896] Call Trace: [ 3053.468609][ T3896] [ 3053.471613][ T3896] ? __warn+0xea/0x3c0 [ 3053.475838][ T3896] ? __alloc_pages_noprof+0xeff/0x25b0 [ 3053.481394][ T3896] ? report_bug+0x3c0/0x580 [ 3053.486131][ T3896] ? handle_bug+0x54/0xa0 [ 3053.490562][ T3896] ? exc_invalid_op+0x17/0x50 [ 3053.495338][ T3896] ? asm_exc_invalid_op+0x1a/0x20 [ 3053.500561][ T3896] ? __alloc_pages_noprof+0xeff/0x25b0 [ 3053.506171][ T3896] ? __pfx_mark_lock+0x10/0x10 [ 3053.511054][ T3896] ? find_held_lock+0x2d/0x110 [ 3053.515976][ T3896] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 3053.521846][ T3896] ? __pfx___lock_acquire+0x10/0x10 [ 3053.527386][ T3896] ? __pfx___lock_acquire+0x10/0x10 [ 3053.534076][ T3896] ___kmalloc_large_node+0x84/0x1b0 [ 3053.540697][ T3896] __kmalloc_large_node_noprof+0x1c/0x70 [ 3053.546513][ T3896] __kmalloc_node_track_caller_noprof.cold+0x5/0x5f [ 3053.553217][ T3896] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 3053.559088][ T3896] ? lockdown_write+0x2d/0x290 [ 3053.563942][ T3896] memdup_user_nul+0x2b/0x110 [ 3053.568817][ T3896] lockdown_write+0x2d/0x290 [ 3053.573506][ T3896] ? __pfx_lockdown_write+0x10/0x10 [ 3053.578820][ T3896] vfs_write+0x24c/0x1150 [ 3053.583240][ T3896] ? __fget_files+0x1fc/0x3a0 [ 3053.588102][ T3896] ? __pfx___mutex_lock+0x10/0x10 [ 3053.593232][ T3896] ? __pfx_vfs_write+0x10/0x10 [ 3053.598141][ T3896] ? __fget_files+0x206/0x3a0 [ 3053.602921][ T3896] ksys_write+0x12b/0x250 [ 3053.607418][ T3896] ? __pfx_ksys_write+0x10/0x10 [ 3053.612365][ T3896] do_syscall_64+0xcd/0x250 [ 3053.617097][ T3896] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 3053.623095][ T3896] RIP: 0033:0x7fa051f85d29 [ 3053.627746][ T3896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 3053.649003][ T3896] RSP: 002b:00007fa051dd8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 3053.659067][ T3896] RAX: ffffffffffffffda RBX: 00007fa052176080 RCX: 00007fa051f85d29 [ 3053.667226][ T3896] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 3053.675292][ T3896] RBP: 00007fa052001aa8 R08: 0000000000000000 R09: 0000000000000000 [ 3053.683441][ T3896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 3053.691565][ T3896] R13: 0000000000000000 R14: 00007fa052176080 R15: 00007ffdde207278 [ 3053.699674][ T3896] [ 3053.702754][ T3896] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 3053.710083][ T3896] CPU: 0 UID: 0 PID: 3896 Comm: syz.3.6524 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0 [ 3053.720826][ T3896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 3053.731029][ T3896] Call Trace: [ 3053.734357][ T3896] [ 3053.737331][ T3896] dump_stack_lvl+0x3d/0x1f0 [ 3053.741998][ T3896] panic+0x71d/0x800 [ 3053.745979][ T3896] ? __pfx_panic+0x10/0x10 [ 3053.750491][ T3896] ? show_trace_log_lvl+0x29d/0x3d0 [ 3053.755784][ T3896] ? __alloc_pages_noprof+0xeff/0x25b0 [ 3053.761330][ T3896] check_panic_on_warn+0xab/0xb0 [ 3053.766394][ T3896] __warn+0xf6/0x3c0 [ 3053.770369][ T3896] ? __alloc_pages_noprof+0xeff/0x25b0 [ 3053.775918][ T3896] report_bug+0x3c0/0x580 [ 3053.780334][ T3896] handle_bug+0x54/0xa0 [ 3053.784590][ T3896] exc_invalid_op+0x17/0x50 [ 3053.789173][ T3896] asm_exc_invalid_op+0x1a/0x20 [ 3053.794105][ T3896] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0 [ 3053.800341][ T3896] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 de b2 fe ff e9 69 f9 ff ff c6 05 33 6e 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 6f a4 0c 00 8b 14 24 e9 [ 3053.820286][ T3896] RSP: 0018:ffffc9000bf7f9c8 EFLAGS: 00010246 [ 3053.826515][ T3896] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 3053.834635][ T3896] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0 [ 3053.842673][ T3896] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 3053.850797][ T3896] R10: 0000000080000000 R11: 0000000000000001 R12: 0000000000000013 [ 3053.858839][ T3896] R13: 0000000000040cc0 R14: 1ffff920017eff4d R15: 00000000ffffffff [ 3053.866896][ T3896] ? __pfx_mark_lock+0x10/0x10 [ 3053.871764][ T3896] ? find_held_lock+0x2d/0x110 [ 3053.876627][ T3896] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 3053.882471][ T3896] ? __pfx___lock_acquire+0x10/0x10 [ 3053.887747][ T3896] ? __pfx___lock_acquire+0x10/0x10 [ 3053.893049][ T3896] ___kmalloc_large_node+0x84/0x1b0 [ 3053.898327][ T3896] __kmalloc_large_node_noprof+0x1c/0x70 [ 3053.904079][ T3896] __kmalloc_node_track_caller_noprof.cold+0x5/0x5f [ 3053.911018][ T3896] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 3053.916725][ T3896] ? lockdown_write+0x2d/0x290 [ 3053.921570][ T3896] memdup_user_nul+0x2b/0x110 [ 3053.926416][ T3896] lockdown_write+0x2d/0x290 [ 3053.931112][ T3896] ? __pfx_lockdown_write+0x10/0x10 [ 3053.936584][ T3896] vfs_write+0x24c/0x1150 [ 3053.941029][ T3896] ? __fget_files+0x1fc/0x3a0 [ 3053.945787][ T3896] ? __pfx___mutex_lock+0x10/0x10 [ 3053.950899][ T3896] ? __pfx_vfs_write+0x10/0x10 [ 3053.955752][ T3896] ? __fget_files+0x206/0x3a0 [ 3053.960521][ T3896] ksys_write+0x12b/0x250 [ 3053.964920][ T3896] ? __pfx_ksys_write+0x10/0x10 [ 3053.969859][ T3896] do_syscall_64+0xcd/0x250 [ 3053.974458][ T3896] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 3053.980454][ T3896] RIP: 0033:0x7fa051f85d29 [ 3053.984931][ T3896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 3054.004619][ T3896] RSP: 002b:00007fa051dd8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 3054.013115][ T3896] RAX: ffffffffffffffda RBX: 00007fa052176080 RCX: 00007fa051f85d29 [ 3054.021309][ T3896] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 3054.029343][ T3896] RBP: 00007fa052001aa8 R08: 0000000000000000 R09: 0000000000000000 [ 3054.037482][ T3896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 3054.045515][ T3896] R13: 0000000000000000 R14: 00007fa052176080 R15: 00007ffdde207278 [ 3054.053683][ T3896] [ 3054.057131][ T3896] Kernel Offset: disabled [ 3054.061583][ T3896] Rebooting in 86400 seconds..