last executing test programs: 5.338118181s ago: executing program 0 (id=4652): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f0000000140), 0x55) rseq$auto(0x0, 0x8000, 0x0, 0x6) getsockopt$auto(r0, 0x7, 0x9, &(0x7f00000000c0)='^#-&-\x00', &(0x7f0000000100)=0x9) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000b00), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000b40)={0x1c, r2, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@HWSIM_ATTR_RADIO_NAME={0x5, 0x11, '/'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4008040}, 0x4000800) poll$auto(&(0x7f0000000d40)={0x3, 0x1, 0xa}, 0x5, 0x400) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D0\x00', 0x2, 0x0) ioctl$auto_SNDRV_RAWMIDI_IOCTL_STATUS32(r3, 0xc0245720, &(0x7f0000000000)={0xffffffc0, 0x800, 0x0, 0x800, 0x5, "2c2272abb2403b486a8defb877e70dbc"}) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0xa, 0x1, 0x84) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f0000000280), 0x55) 4.109637877s ago: executing program 3 (id=4659): r0 = openat$auto_cpu_latency_qos_fops_qos(0xffffffffffffff9c, &(0x7f0000006640), 0x2, 0x0) read$auto(r0, &(0x7f0000000080)='/dev/cpu_dma_latency\x00', 0x86c1) 4.098814752s ago: executing program 1 (id=4661): socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYRES32, @ANYBLOB="c09272e2ca039e0604efb081bd"], 0x58}, 0x1, 0x0, 0x0, 0x40080}, 0x40) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) r0 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r0, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000340), r1) sendmsg$auto_TIPC_NL_NET_SET(r1, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002cbd7000ffdbdf250f0000000c00078008000200", @ANYRES32=0xee00, @ANYBLOB], 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x2) close_range$auto(0x0, 0x5, 0x0) 4.06653835s ago: executing program 2 (id=4662): r0 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f00000000c0)={0x1, "e6c26c22ab89af11056b0001ac097e0a0728d9300000c500", 0x8}) newfstatat$auto(0xffffffffffffff9c, 0x0, &(0x7f0000000380)={0x5, 0x6, 0xa9, 0x4, 0x0, 0xee01, 0x0, 0x6, 0x3, 0x0, 0x4, 0x8, 0xbc, 0x1, 0x4, 0x0, 0x53}, 0x1) ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3ff, 0x4}, 0x7f, 0x0, 0x0, 0x8) (fail_nth: 3) 3.921265338s ago: executing program 1 (id=4663): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) socket(0x23, 0x80805, 0x0) memfd_secret$auto(0x0) socket(0x2b, 0x1, 0x1) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) r0 = openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f00000000c0), 0x642, 0x0) write$auto_split_huge_pages_fops_huge_memory(r0, &(0x7f0000000100)="3173a3", 0x3) socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16, @ANYBLOB="1b0026bd7000fddbdf250300000004000800100003800c000b8008001c"], 0x4c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1300"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) socket(0xa, 0x801, 0x84) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) getsockopt$auto(0x6, 0x84, 0x11, 0x0, &(0x7f0000000080)=0x9c8) mmap$auto(0x0, 0x2020009, 0x6, 0xeb1, 0x7, 0x0) getpeername$auto(0x3, 0x0, 0x0) 3.831153449s ago: executing program 3 (id=4664): openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x123403, 0x0) (fail_nth: 3) 3.349992738s ago: executing program 2 (id=4665): connect$auto(0x3, &(0x7f0000000280), 0x55) 3.346280194s ago: executing program 0 (id=4666): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f0000000140), 0x55) rseq$auto(0x0, 0x8000, 0x0, 0x6) getsockopt$auto(r0, 0x7, 0x9, &(0x7f00000000c0)='^#-&-\x00', &(0x7f0000000100)=0x9) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000b00), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000b40)={0x1c, r2, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@HWSIM_ATTR_RADIO_NAME={0x5, 0x11, '/'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4008040}, 0x4000800) poll$auto(&(0x7f0000000d40)={0x3, 0x1, 0xa}, 0x5, 0x400) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D0\x00', 0x2, 0x0) ioctl$auto_SNDRV_RAWMIDI_IOCTL_STATUS32(r3, 0xc0245720, &(0x7f0000000000)={0xffffffc0, 0x800, 0x0, 0x800, 0x5, "2c2272abb2403b486a8defb877e70dbc"}) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0xa, 0x1, 0x84) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f0000000280), 0x55) 3.07368722s ago: executing program 2 (id=4668): mmap$auto(0x0, 0xe983, 0x83c6, 0xeb1, 0x1c85, 0x8000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) r0 = openat$auto_stat_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/proc/stat\x00', 0x101382, 0x0) mmap$auto(0x6, 0x1a, 0x4, 0x15, 0x6, 0x400) io_uring_register$auto(r0, 0xffff8513, &(0x7f0000000040)=[0x4, 0x7, 0x8, 0x7, 0x4739, 0xffff, 0xde, 0xc, 0x7], 0x7) 2.933124434s ago: executing program 2 (id=4669): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) ioctl$auto_def_blk_fops_fs(r0, 0x1, &(0x7f0000000000)) (fail_nth: 3) 2.805517552s ago: executing program 1 (id=4670): r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000001040)='/sys/kernel/security/tomoyo/manager\x00', 0x14b942, 0x0) write$auto_tomoyo_operations_securityfs_if(r0, &(0x7f0000000040)="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", 0x460) 2.061586968s ago: executing program 3 (id=4671): r0 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) ptrace$auto(0x3, 0x100000001, 0x7, 0x6) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r1 = socket(0x11, 0x3, 0x2) getsockopt$auto(r1, 0x107, 0x8, 0x0, 0x0) ioctl$auto_USB_RAW_IOCTL_INIT(r0, 0x41015500, &(0x7f0000000140)={"a7a018b09bb196a05739a38a73473b93f5452886bc599ef976c54a71a5dc79483a251405ce72a9af15390e93a8760df83859e16320e8d0b1161f13d13afae66b1d900a4958396aa98d3504ca431aabab1964249251e57fa70517cc19b0e3974dc2a89edac932b8859c767780d65e849700", "e600d778751f5f9e03e1f2b96e39a8ac08de7e036d650e2184857e6b64f6a2c7fb08c6f5ce3828fb4e9498c076bef49c99c9cd91332e12b53664dc20fa879020fbd184b8d300c13be6e57970685ce029fb2385ae6e132c1c6adbcfbd873a3b925d397a08fb733e19ef5ec4f40b0b473c72efd18b8a9e9f3d12c5e44468922beb", 0x5}) ioctl$auto_USB_RAW_IOCTL_RUN(r0, 0x5501, 0x0) 2.061181926s ago: executing program 1 (id=4672): statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x2c, 0x940, 0x1ffde, 0x3, 0x6, 0x2, 0x9, 0x5, 0x2, 0x4, 0xb0, 0xb, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd]}, 0x1fe, 0x81) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0xc0189436, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) socket(0xa, 0x801, 0x84) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) setsockopt$auto(0x3, 0x10000000084, 0x15, 0x0, 0x8) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) listmount$auto(&(0x7f0000000000)={0x8, 0x8001, 0xfffffffffffffff7}, &(0x7f0000000040)=0x4, 0x3c6ea1fe, 0x7) 1.648519344s ago: executing program 3 (id=4673): socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYRES32, @ANYBLOB="c09272e2ca039e0604efb081bd"], 0x58}, 0x1, 0x0, 0x0, 0x40080}, 0x40) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) r0 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r0, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000340), r1) sendmsg$auto_TIPC_NL_NET_SET(r1, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002cbd7000ffdbdf250f0000000c00078008000200", @ANYRES32=0xee00, @ANYBLOB="ddcbccf08eb244dbf021fdbc4f"], 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x2) close_range$auto(0x0, 0x5, 0x0) 1.550948087s ago: executing program 2 (id=4674): r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event0\x00', 0x80, 0x0) ioctl$auto_evdev_fops_evdev(r0, 0x40044591, 0x0) (fail_nth: 3) 1.419832337s ago: executing program 0 (id=4675): r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event0\x00', 0x80, 0x0) ioctl$auto_evdev_fops_evdev(r0, 0x40044591, 0x0) 1.349439449s ago: executing program 3 (id=4676): connect$auto(0x3, &(0x7f0000000280), 0x55) 1.326738862s ago: executing program 1 (id=4677): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f0000000140), 0x55) rseq$auto(0x0, 0x8000, 0x0, 0x6) getsockopt$auto(r0, 0x7, 0x9, &(0x7f00000000c0)='^#-&-\x00', &(0x7f0000000100)=0x9) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000b00), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000b40)={0x1c, r2, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@HWSIM_ATTR_RADIO_NAME={0x5, 0x11, '/'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4008040}, 0x4000800) poll$auto(&(0x7f0000000d40)={0x3, 0x1, 0xa}, 0x5, 0x400) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D0\x00', 0x2, 0x0) ioctl$auto_SNDRV_RAWMIDI_IOCTL_STATUS32(r3, 0xc0245720, &(0x7f0000000000)={0xffffffc0, 0x800, 0x0, 0x800, 0x5, "2c2272abb2403b486a8defb877e70dbc"}) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0xa, 0x1, 0x84) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f0000000280), 0x55) 940.628398ms ago: executing program 3 (id=4678): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) socket(0x23, 0x80805, 0x0) memfd_secret$auto(0x0) socket(0x2b, 0x1, 0x1) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) r0 = openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f00000000c0), 0x642, 0x0) write$auto_split_huge_pages_fops_huge_memory(r0, &(0x7f0000000100)="3173a3", 0x3) socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16, @ANYBLOB="1b0026bd7000fddbdf250300000004000800100003800c000b8008001c"], 0x4c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1300"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) socket(0xa, 0x801, 0x84) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) getsockopt$auto(0x6, 0x84, 0x11, 0x0, &(0x7f0000000080)=0x9c8) mmap$auto(0x0, 0x2020009, 0x6, 0xeb1, 0x7, 0x0) getpeername$auto(0x3, 0x0, 0x0) 908.640509ms ago: executing program 0 (id=4679): r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x40c80, 0x0) read$auto_tracing_buffers_fops_trace(r0, 0x0, 0x0) 272.724868ms ago: executing program 0 (id=4680): r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000001040)='/sys/kernel/security/tomoyo/manager\x00', 0x14b942, 0x0) write$auto_tomoyo_operations_securityfs_if(r0, &(0x7f0000000040)="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", 0x460) (fail_nth: 3) 190.874061ms ago: executing program 2 (id=4681): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00'}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) syz_genetlink_get_family_id$auto_nlctrl(0x0, 0xffffffffffffffff) io_uring_setup$auto(0x6, 0x0) mknod$auto(&(0x7f0000000580)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_', 0x1081, 0x9) r1 = open(&(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', 0x2000, 0xb5d1af1605322c72) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) statx$auto(0x2, 0x0, 0x1000, 0xbdfa, 0x0) r2 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r2, 0x29, 0x1b, 0x0, 0x201) open_by_handle_at$auto(r1, &(0x7f0000000040)={0x8, 0x2, "9700000000000000"}, 0x2) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={{&(0x7f0000000040)=[0xa], 0xc88, 0x0, 0x0, 0x0, 0xa1b, 0x80000000}, 0x5}, 0x3b8b, 0xa) r3 = socket(0x15, 0x5, 0x0) sendmsg$auto(r3, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x3, 0x0, 0x200, 0x4}, 0x0) read$auto_aoe_fops_aoechr(r1, &(0x7f00000000c0)=""/30, 0x1e) close_range$auto(0x2, 0x8, 0x0) acct$auto(&(0x7f0000000040)='*\x00') wait4$auto(0x0, &(0x7f0000000000)=0x9, 0x2, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'team_slave_0\x00'}) mq_timedsend$auto(0x9, &(0x7f0000000040)=')-#:\x00', 0xffffffff, 0x7, &(0x7f0000000080)={0x9, 0x5}) 113.68µs ago: executing program 0 (id=4682): r0 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) ptrace$auto(0x3, 0x100000001, 0x7, 0x6) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r1 = socket(0x11, 0x3, 0x2) getsockopt$auto(r1, 0x107, 0x8, 0x0, 0x0) ioctl$auto_USB_RAW_IOCTL_INIT(r0, 0x41015500, &(0x7f0000000140)={"a7a018b09bb196a05739a38a73473b93f5452886bc599ef976c54a71a5dc79483a251405ce72a9af15390e93a8760df83859e16320e8d0b1161f13d13afae66b1d900a4958396aa98d3504ca431aabab1964249251e57fa70517cc19b0e3974dc2a89edac932b8859c767780d65e849700", "e600d778751f5f9e03e1f2b96e39a8ac08de7e036d650e2184857e6b64f6a2c7fb08c6f5ce3828fb4e9498c076bef49c99c9cd91332e12b53664dc20fa879020fbd184b8d300c13be6e57970685ce029fb2385ae6e132c1c6adbcfbd873a3b925d397a08fb733e19ef5ec4f40b0b473c72efd18b8a9e9f3d12c5e44468922beb", 0x5}) ioctl$auto_USB_RAW_IOCTL_RUN(r0, 0x5501, 0x0) 0s ago: executing program 1 (id=4683): mmap$auto(0x2000000, 0x400008, 0xdf, 0x9b72, 0x100000000002, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) rseq$auto(&(0x7f0000000300)={0xe, 0xc01, 0x0, 0x6, 0xffffffff, 0x2}, 0x8004, 0x0, 0x6) mlock2$auto(0x1, 0x8001, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x53b401, 0x0) kernel console output (not intermixed with test programs): rve[]: 0 2465 2466 0 0 [ 668.550313][T17923] Node 0 DMA32 free:1171260kB boost:0kB min:34200kB low:42748kB high:51296kB reserved_highatomic:0KB active_anon:207488kB inactive_anon:4kB active_file:16284kB inactive_file:223380kB unevictable:1536kB writepending:3024kB present:3129332kB managed:2551336kB mlocked:0kB bounce:0kB free_pcp:3904kB local_pcp:916kB free_cma:0kB [ 668.675843][T17923] lowmem_reserve[]: 0 0 0 0 0 [ 668.680634][T17923] Node 0 Normal free:8kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:36kB inactive_anon:0kB active_file:0kB inactive_file:816kB unevictable:0kB writepending:0kB present:1048580kB managed:876kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB [ 668.800430][T17923] lowmem_reserve[]: 0 0 0 0 0 [ 668.830942][T17923] Node 1 Normal free:3877928kB boost:0kB min:55688kB low:69608kB high:83528kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:26288kB local_pcp:20516kB free_cma:0kB [ 668.948034][T17923] lowmem_reserve[]: 0 0 0 0 0 [ 668.975736][T17923] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 669.020519][T17923] Node 0 DMA32: 99*4kB (UME) 275*8kB (UME) 17*16kB (UE) 32*32kB (UE) 10*64kB (UME) 574*128kB (UME) 730*256kB (UME) 262*512kB (UM) 123*1024kB (UME) 17*2048kB (UME) 147*4096kB (UM) = 1161908kB [ 669.095199][T17923] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 669.134589][T17923] Node 1 Normal: 46*4kB (UME) 50*8kB (UME) 24*16kB (UME) 203*32kB (UME) 116*64kB (UME) 32*128kB (UME) 18*256kB (UME) 4*512kB (UM) 8*1024kB (UME) 5*2048kB (ME) 936*4096kB (M) = 3877928kB [ 669.209120][T17923] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 669.245252][T17923] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 669.281022][T17923] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 669.311036][T17923] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 669.337462][T17923] 94037 total pagecache pages [ 669.361277][T17923] 1010 pages in swap cache [ 669.365721][T17923] Free swap = 115652kB [ 669.369884][T17923] Total swap = 124996kB [ 669.405702][T17923] 2097051 pages RAM [ 669.417037][T17923] 0 pages HighMem/MovableOnly [ 669.438872][T17923] 427367 pages reserved [ 669.461171][T17923] 0 pages cma reserved [ 670.925238][T17945] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3780'. [ 671.600422][T17951] netlink: 252 bytes leftover after parsing attributes in process `syz.3.3782'. [ 671.630095][T17951] netlink: 252 bytes leftover after parsing attributes in process `syz.3.3782'. [ 673.176498][T17987] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3795'. [ 674.671145][T18034] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3812'. [ 674.971233][T18045] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3811'. [ 675.313334][T18052] sctp: [Deprecated]: syz.2.3818 (pid 18052) Use of struct sctp_assoc_value in delayed_ack socket option. [ 675.313334][T18052] Use struct sctp_sack_info instead [ 676.229693][T18080] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3831'. [ 676.954173][T18110] FAULT_INJECTION: forcing a failure. [ 676.954173][T18110] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 676.983949][T18110] CPU: 0 UID: 0 PID: 18110 Comm: syz.2.3837 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 676.994784][T18110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 677.004872][T18110] Call Trace: [ 677.008175][T18110] [ 677.011129][T18110] dump_stack_lvl+0x16c/0x1f0 [ 677.015843][T18110] should_fail_ex+0x497/0x5b0 [ 677.020549][T18110] ? fs_reclaim_acquire+0xae/0x150 [ 677.025704][T18110] should_fail_alloc_page+0xe7/0x130 [ 677.031030][T18110] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 677.037227][T18110] __alloc_pages_noprof+0x190/0x25b0 [ 677.042558][T18110] ? hlock_class+0x4e/0x130 [ 677.047104][T18110] ? hlock_class+0x4e/0x130 [ 677.051642][T18110] ? mark_lock+0xb5/0xc60 [ 677.056029][T18110] ? __pfx_mark_lock+0x10/0x10 [ 677.060831][T18110] ? hlock_class+0x4e/0x130 [ 677.065375][T18110] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 677.071143][T18110] ? hlock_class+0x4e/0x130 [ 677.075705][T18110] ? mark_lock+0xb5/0xc60 [ 677.080085][T18110] ? __pfx_mark_lock+0x10/0x10 [ 677.084896][T18110] ? __pfx___lock_acquire+0x10/0x10 [ 677.090137][T18110] ? find_held_lock+0x2d/0x110 [ 677.094940][T18110] ? hlock_class+0x4e/0x130 [ 677.099481][T18110] ? __lock_acquire+0xcc5/0x3c40 [ 677.104463][T18110] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 677.110400][T18110] ? policy_nodemask+0xea/0x4e0 [ 677.115300][T18110] alloc_pages_mpol_noprof+0x2c9/0x610 [ 677.120809][T18110] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 677.126831][T18110] ? __lock_acquire+0xcc5/0x3c40 [ 677.131831][T18110] folio_alloc_mpol_noprof+0x36/0xd0 [ 677.137172][T18110] vma_alloc_folio_noprof+0xee/0x1b0 [ 677.142508][T18110] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 677.148451][T18110] ? find_held_lock+0x2d/0x110 [ 677.153265][T18110] do_pte_missing+0x2017/0x3e00 [ 677.158168][T18110] __handle_mm_fault+0x103c/0x2a40 [ 677.163330][T18110] ? __pfx___handle_mm_fault+0x10/0x10 [ 677.168830][T18110] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 677.174514][T18110] ? find_vma+0xc0/0x140 [ 677.178791][T18110] ? __pfx_find_vma+0x10/0x10 [ 677.183504][T18110] handle_mm_fault+0x3fa/0xaa0 [ 677.188336][T18110] do_user_addr_fault+0x7a3/0x13f0 [ 677.193497][T18110] exc_page_fault+0x5c/0xc0 [ 677.198034][T18110] asm_exc_page_fault+0x26/0x30 [ 677.202920][T18110] RIP: 0010:rep_movs_alternative+0x4a/0x70 [ 677.208771][T18110] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1 [ 677.228416][T18110] RSP: 0018:ffffc900046b7bc0 EFLAGS: 00050206 [ 677.234519][T18110] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000000200 [ 677.242521][T18110] RDX: 0000000000000000 RSI: ffff88802e0b7e00 RDI: 0000000020001000 [ 677.250521][T18110] RBP: 0000000020000200 R08: 0000000000000000 R09: ffffed1005c16fff [ 677.258520][T18110] R10: ffff88802e0b7fff R11: 0000000000000000 R12: ffff88802e0b7000 [ 677.266520][T18110] R13: 0000000020001200 R14: 00007ffffffff000 R15: 0000000000000000 [ 677.274537][T18110] _copy_to_user+0xbb/0xd0 [ 677.279007][T18110] vcs_read+0x794/0xbd0 [ 677.283215][T18110] ? __pfx_vcs_read+0x10/0x10 [ 677.287927][T18110] ? bpf_lsm_file_permission+0x9/0x10 [ 677.293352][T18110] ? security_file_permission+0x71/0x210 [ 677.299031][T18110] ? __pfx_vcs_read+0x10/0x10 [ 677.303761][T18110] vfs_read+0x1df/0xbe0 [ 677.307958][T18110] ? __fget_files+0x1fc/0x3a0 [ 677.312677][T18110] ? __pfx_lock_release+0x10/0x10 [ 677.317768][T18110] ? __pfx_vfs_read+0x10/0x10 [ 677.322486][T18110] ? lock_acquire+0x2f/0xb0 [ 677.327032][T18110] ? __fget_files+0x40/0x3a0 [ 677.331670][T18110] ? __fget_files+0x206/0x3a0 [ 677.336403][T18110] ksys_read+0x12b/0x250 [ 677.340681][T18110] ? __pfx_ksys_read+0x10/0x10 [ 677.345495][T18110] do_syscall_64+0xcd/0x250 [ 677.350038][T18110] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 677.355969][T18110] RIP: 0033:0x7fc3f2b85d19 [ 677.360415][T18110] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 677.380062][T18110] RSP: 002b:00007fc3f09f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 677.388514][T18110] RAX: ffffffffffffffda RBX: 00007fc3f2d75fa0 RCX: 00007fc3f2b85d19 [ 677.396518][T18110] RDX: 0000000000001000 RSI: 0000000020000200 RDI: 0000000000000003 [ 677.404519][T18110] RBP: 00007fc3f09f6090 R08: 0000000000000000 R09: 0000000000000000 [ 677.412520][T18110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 677.420521][T18110] R13: 0000000000000000 R14: 00007fc3f2d75fa0 R15: 00007ffd28d69ba8 [ 677.428539][T18110] [ 678.028574][T18132] FAULT_INJECTION: forcing a failure. [ 678.028574][T18132] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 678.138240][T18132] CPU: 1 UID: 0 PID: 18132 Comm: syz.3.3845 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 678.149075][T18132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 678.159158][T18132] Call Trace: [ 678.162458][T18132] [ 678.165408][T18132] dump_stack_lvl+0x16c/0x1f0 [ 678.170121][T18132] should_fail_ex+0x497/0x5b0 [ 678.174834][T18132] _copy_from_user+0x2e/0xd0 [ 678.179470][T18132] move_addr_to_kernel+0x68/0x160 [ 678.184529][T18132] __copy_msghdr+0x386/0x470 [ 678.189153][T18132] copy_msghdr_from_user+0xc2/0x160 [ 678.194389][T18132] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 678.200230][T18132] ? __lock_acquire+0xcc5/0x3c40 [ 678.205220][T18132] ___sys_sendmsg+0xff/0x1e0 [ 678.209846][T18132] ? __pfx____sys_sendmsg+0x10/0x10 [ 678.215099][T18132] ? trace_lock_acquire+0x14e/0x1f0 [ 678.220351][T18132] __sys_sendmmsg+0x201/0x420 [ 678.225073][T18132] ? __pfx___sys_sendmmsg+0x10/0x10 [ 678.230316][T18132] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 678.236343][T18132] ? fput+0x67/0x440 [ 678.240278][T18132] ? ksys_write+0x1ba/0x250 [ 678.244813][T18132] ? __pfx_ksys_write+0x10/0x10 [ 678.249708][T18132] __x64_sys_sendmmsg+0x9c/0x100 [ 678.254686][T18132] ? lockdep_hardirqs_on+0x7c/0x110 [ 678.259915][T18132] do_syscall_64+0xcd/0x250 [ 678.264459][T18132] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 678.270383][T18132] RIP: 0033:0x7ff3fef85d19 [ 678.274821][T18132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 678.294475][T18132] RSP: 002b:00007ff3ffde5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 678.302923][T18132] RAX: ffffffffffffffda RBX: 00007ff3ff175fa0 RCX: 00007ff3fef85d19 [ 678.310924][T18132] RDX: 0000000000000001 RSI: 0000000020000180 RDI: 0000000000000003 [ 678.319006][T18132] RBP: 00007ff3ffde5090 R08: 0000000000000000 R09: 0000000000000000 [ 678.327002][T18132] R10: 000000000000000a R11: 0000000000000246 R12: 0000000000000001 [ 678.334997][T18132] R13: 0000000000000000 R14: 00007ff3ff175fa0 R15: 00007fff73276498 [ 678.343012][T18132] [ 678.585564][T18137] netlink: 252 bytes leftover after parsing attributes in process `syz.2.3846'. [ 678.635323][T18136] netlink: 252 bytes leftover after parsing attributes in process `syz.2.3846'. [ 680.262342][T18181] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3864'. [ 680.345757][T18182] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3862'. [ 682.319921][T18234] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3884'. [ 684.612139][T18278] FAULT_INJECTION: forcing a failure. [ 684.612139][T18278] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 684.730968][T18278] CPU: 1 UID: 0 PID: 18278 Comm: syz.3.3898 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 684.741796][T18278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 684.751877][T18278] Call Trace: [ 684.755169][T18278] [ 684.758114][T18278] dump_stack_lvl+0x16c/0x1f0 [ 684.762824][T18278] should_fail_ex+0x497/0x5b0 [ 684.767541][T18278] _copy_to_user+0x32/0xd0 [ 684.771997][T18278] simple_read_from_buffer+0xd0/0x160 [ 684.777429][T18278] proc_fail_nth_read+0x198/0x270 [ 684.782499][T18278] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 684.788092][T18278] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 684.793678][T18278] vfs_read+0x1df/0xbe0 [ 684.797862][T18278] ? __fget_files+0x1fc/0x3a0 [ 684.802571][T18278] ? __pfx___mutex_lock+0x10/0x10 [ 684.807628][T18278] ? __pfx_vfs_read+0x10/0x10 [ 684.812343][T18278] ? __fget_files+0x206/0x3a0 [ 684.817061][T18278] ksys_read+0x12b/0x250 [ 684.821329][T18278] ? __pfx_ksys_read+0x10/0x10 [ 684.826131][T18278] do_syscall_64+0xcd/0x250 [ 684.830665][T18278] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 684.836588][T18278] RIP: 0033:0x7ff3fef8472c [ 684.841022][T18278] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 684.860659][T18278] RSP: 002b:00007ff3ffde5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 684.869112][T18278] RAX: ffffffffffffffda RBX: 00007ff3ff175fa0 RCX: 00007ff3fef8472c [ 684.877117][T18278] RDX: 000000000000000f RSI: 00007ff3ffde50a0 RDI: 0000000000000004 [ 684.885130][T18278] RBP: 00007ff3ffde5090 R08: 0000000000000000 R09: 0000000000000000 [ 684.893137][T18278] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 684.901141][T18278] R13: 0000000000000000 R14: 00007ff3ff175fa0 R15: 00007fff73276498 [ 684.909165][T18278] [ 685.126016][T18275] netlink: 330 bytes leftover after parsing attributes in process `syz.2.3896'. [ 685.327557][T18285] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3902'. [ 685.744249][T18294] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3905'. [ 685.920595][T18303] netlink: 350 bytes leftover after parsing attributes in process `syz.0.3907'. [ 686.143011][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 686.149361][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 686.887234][T18322] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3914'. [ 687.581852][T18313] Invalid ELF header magic: != ELF [ 688.297711][T18347] FAULT_INJECTION: forcing a failure. [ 688.297711][T18347] name failslab, interval 1, probability 0, space 0, times 0 [ 688.350387][T18347] CPU: 0 UID: 0 PID: 18347 Comm: syz.3.3925 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 688.361222][T18347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 688.371304][T18347] Call Trace: [ 688.374597][T18347] [ 688.377541][T18347] dump_stack_lvl+0x16c/0x1f0 [ 688.382260][T18347] should_fail_ex+0x497/0x5b0 [ 688.386966][T18347] ? fs_reclaim_acquire+0xae/0x150 [ 688.392105][T18347] should_failslab+0xc2/0x120 [ 688.396816][T18347] __kmalloc_cache_noprof+0x68/0x420 [ 688.402138][T18347] snd_pcm_oss_change_params_locked+0x1d6/0x3a50 [ 688.408500][T18347] ? rcu_is_watching+0x12/0xc0 [ 688.413299][T18347] ? __mutex_lock+0x1cc/0xa60 [ 688.418013][T18347] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 688.424799][T18347] ? __mutex_lock+0x1cc/0xa60 [ 688.429507][T18347] ? __pfx___mutex_lock+0x10/0x10 [ 688.434565][T18347] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 688.440579][T18347] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 688.446856][T18347] snd_pcm_oss_set_channels+0x23e/0x370 [ 688.452432][T18347] ? __pfx_snd_pcm_oss_set_channels+0x10/0x10 [ 688.458523][T18347] ? lock_acquire+0x2f/0xb0 [ 688.463114][T18347] ? __might_fault+0xe3/0x190 [ 688.467836][T18347] snd_pcm_oss_ioctl+0x218d/0x3780 [ 688.472975][T18347] ? trace_lock_acquire+0x14e/0x1f0 [ 688.478213][T18347] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 688.483704][T18347] ? __fget_files+0x206/0x3a0 [ 688.488416][T18347] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 688.493907][T18347] __x64_sys_ioctl+0x190/0x200 [ 688.498716][T18347] do_syscall_64+0xcd/0x250 [ 688.503279][T18347] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 688.509200][T18347] RIP: 0033:0x7ff3fef85d19 [ 688.513635][T18347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 688.533269][T18347] RSP: 002b:00007ff3ffde5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 688.541716][T18347] RAX: ffffffffffffffda RBX: 00007ff3ff175fa0 RCX: 00007ff3fef85d19 [ 688.549712][T18347] RDX: 0000000020000080 RSI: 00000000c0045006 RDI: 0000000000000003 [ 688.557707][T18347] RBP: 00007ff3ffde5090 R08: 0000000000000000 R09: 0000000000000000 [ 688.565703][T18347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 688.573699][T18347] R13: 0000000000000000 R14: 00007ff3ff175fa0 R15: 00007fff73276498 [ 688.581720][T18347] [ 689.200681][T18358] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3928'. [ 689.890187][T18383] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3937'. [ 690.123278][T18391] FAULT_INJECTION: forcing a failure. [ 690.123278][T18391] name failslab, interval 1, probability 0, space 0, times 0 [ 690.136157][T18391] CPU: 1 UID: 0 PID: 18391 Comm: syz.2.3941 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 690.146953][T18391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 690.157036][T18391] Call Trace: [ 690.160335][T18391] [ 690.163287][T18391] dump_stack_lvl+0x16c/0x1f0 [ 690.168083][T18391] should_fail_ex+0x497/0x5b0 [ 690.172790][T18391] ? fs_reclaim_acquire+0xae/0x150 [ 690.177943][T18391] should_failslab+0xc2/0x120 [ 690.182675][T18391] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 690.188519][T18391] ? __alloc_skb+0x2b3/0x380 [ 690.193146][T18391] __alloc_skb+0x2b3/0x380 [ 690.197597][T18391] ? __pfx___alloc_skb+0x10/0x10 [ 690.202563][T18391] ? lock_acquire+0x2f/0xb0 [ 690.207085][T18391] netlink_alloc_large_skb+0x69/0x130 [ 690.212468][T18391] netlink_sendmsg+0x689/0xd70 [ 690.217242][T18391] ? __pfx_netlink_sendmsg+0x10/0x10 [ 690.222543][T18391] ____sys_sendmsg+0x9ae/0xb40 [ 690.227310][T18391] ? copy_msghdr_from_user+0x10b/0x160 [ 690.232777][T18391] ? __pfx_____sys_sendmsg+0x10/0x10 [ 690.238090][T18391] ___sys_sendmsg+0x135/0x1e0 [ 690.242782][T18391] ? __pfx____sys_sendmsg+0x10/0x10 [ 690.248005][T18391] ? __pfx_lock_release+0x10/0x10 [ 690.253059][T18391] ? trace_lock_acquire+0x14e/0x1f0 [ 690.258272][T18391] ? __fget_files+0x206/0x3a0 [ 690.262961][T18391] __sys_sendmsg+0x16e/0x220 [ 690.267562][T18391] ? __pfx___sys_sendmsg+0x10/0x10 [ 690.272699][T18391] do_syscall_64+0xcd/0x250 [ 690.277212][T18391] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 690.283111][T18391] RIP: 0033:0x7fc3f2b85d19 [ 690.287529][T18391] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 690.307140][T18391] RSP: 002b:00007fc3f09f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 690.315563][T18391] RAX: ffffffffffffffda RBX: 00007fc3f2d75fa0 RCX: 00007fc3f2b85d19 [ 690.323539][T18391] RDX: 0000000000040000 RSI: 0000000020000240 RDI: 0000000000000004 [ 690.331512][T18391] RBP: 00007fc3f09f6090 R08: 0000000000000000 R09: 0000000000000000 [ 690.339501][T18391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 690.347488][T18391] R13: 0000000000000000 R14: 00007fc3f2d75fa0 R15: 00007ffd28d69ba8 [ 690.355484][T18391] [ 691.208808][T18420] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3952'. [ 692.270709][T18449] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3963'. [ 692.292173][T18453] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3964'. [ 692.745645][T18470] netlink: 504 bytes leftover after parsing attributes in process `syz.1.3971'. [ 692.860587][T18476] netlink: 'syz.1.3972': attribute type 1 has an invalid length. [ 692.995849][T18478] FAULT_INJECTION: forcing a failure. [ 692.995849][T18478] name failslab, interval 1, probability 0, space 0, times 0 [ 693.047172][T18478] CPU: 1 UID: 0 PID: 18478 Comm: syz.2.3974 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 693.058006][T18478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 693.068094][T18478] Call Trace: [ 693.071403][T18478] [ 693.074365][T18478] dump_stack_lvl+0x16c/0x1f0 [ 693.079083][T18478] should_fail_ex+0x497/0x5b0 [ 693.083803][T18478] ? fs_reclaim_acquire+0xae/0x150 [ 693.088951][T18478] should_failslab+0xc2/0x120 [ 693.093666][T18478] __kmalloc_node_track_caller_noprof+0xcf/0x520 [ 693.100018][T18478] ? argv_split+0x35/0x440 [ 693.104455][T18478] ? create_dyn_event+0x80/0x1c0 [ 693.109399][T18478] ? __pfx___trace_eprobe_create+0x10/0x10 [ 693.115214][T18478] kstrndup+0x48/0xb0 [ 693.119205][T18478] argv_split+0x35/0x440 [ 693.123464][T18478] ? __pfx___trace_eprobe_create+0x10/0x10 [ 693.129281][T18478] trace_probe_create+0x7e/0x110 [ 693.134231][T18478] ? __pfx_trace_probe_create+0x10/0x10 [ 693.139795][T18478] create_dyn_event+0xeb/0x1c0 [ 693.144585][T18478] trace_parse_run_command+0x193/0x300 [ 693.150060][T18478] ? __pfx_create_dyn_event+0x10/0x10 [ 693.155442][T18478] ? __pfx_dyn_event_write+0x10/0x10 [ 693.160733][T18478] vfs_write+0x24c/0x1150 [ 693.165073][T18478] ? __fget_files+0x1fc/0x3a0 [ 693.169762][T18478] ? __pfx___mutex_lock+0x10/0x10 [ 693.174799][T18478] ? __pfx_vfs_write+0x10/0x10 [ 693.179587][T18478] ? __fget_files+0x206/0x3a0 [ 693.184281][T18478] ksys_write+0x12b/0x250 [ 693.188618][T18478] ? __pfx_ksys_write+0x10/0x10 [ 693.193488][T18478] do_syscall_64+0xcd/0x250 [ 693.198004][T18478] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 693.203906][T18478] RIP: 0033:0x7fc3f2b85d19 [ 693.208322][T18478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 693.227934][T18478] RSP: 002b:00007fc3f09f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 693.236352][T18478] RAX: ffffffffffffffda RBX: 00007fc3f2d75fa0 RCX: 00007fc3f2b85d19 [ 693.244326][T18478] RDX: 0000000000000007 RSI: 00000000200000c0 RDI: 0000000000000003 [ 693.252299][T18478] RBP: 00007fc3f09f6090 R08: 0000000000000000 R09: 0000000000000000 [ 693.260272][T18478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 693.268244][T18478] R13: 0000000000000000 R14: 00007fc3f2d75fa0 R15: 00007ffd28d69ba8 [ 693.276322][T18478] [ 693.594069][T18488] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3977'. [ 693.656784][T18493] netlink: 338 bytes leftover after parsing attributes in process `syz.1.3979'. [ 693.687508][T18493] netlink: 338 bytes leftover after parsing attributes in process `syz.1.3979'. [ 693.868274][T18503] FAULT_INJECTION: forcing a failure. [ 693.868274][T18503] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 693.905053][T18503] CPU: 1 UID: 0 PID: 18503 Comm: syz.3.3981 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 693.915890][T18503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 693.925976][T18503] Call Trace: [ 693.929278][T18503] [ 693.932236][T18503] dump_stack_lvl+0x16c/0x1f0 [ 693.936949][T18503] should_fail_ex+0x497/0x5b0 [ 693.941672][T18503] _copy_to_user+0x32/0xd0 [ 693.946140][T18503] simple_read_from_buffer+0xd0/0x160 [ 693.951560][T18503] proc_fail_nth_read+0x198/0x270 [ 693.956629][T18503] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 693.962230][T18503] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 693.967818][T18503] vfs_read+0x1df/0xbe0 [ 693.972007][T18503] ? __fget_files+0x1fc/0x3a0 [ 693.976722][T18503] ? __pfx___mutex_lock+0x10/0x10 [ 693.981801][T18503] ? __pfx_vfs_read+0x10/0x10 [ 693.986534][T18503] ? __fget_files+0x206/0x3a0 [ 693.991261][T18503] ksys_read+0x12b/0x250 [ 693.995538][T18503] ? __pfx_ksys_read+0x10/0x10 [ 694.000342][T18503] ? syscall_user_dispatch+0x77/0x140 [ 694.005759][T18503] do_syscall_64+0xcd/0x250 [ 694.010312][T18503] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 694.016240][T18503] RIP: 0033:0x7ff3fef8472c [ 694.020682][T18503] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 694.040321][T18503] RSP: 002b:00007ff3ffde5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 694.048780][T18503] RAX: ffffffffffffffda RBX: 00007ff3ff175fa0 RCX: 00007ff3fef8472c [ 694.056788][T18503] RDX: 000000000000000f RSI: 00007ff3ffde50a0 RDI: 0000000000000003 [ 694.064798][T18503] RBP: 00007ff3ffde5090 R08: 0000000000000000 R09: 0000000000000000 [ 694.072802][T18503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 694.080808][T18503] R13: 0000000000000000 R14: 00007ff3ff175fa0 R15: 00007fff73276498 [ 694.088843][T18503] [ 694.292470][T18513] FAULT_INJECTION: forcing a failure. [ 694.292470][T18513] name failslab, interval 1, probability 0, space 0, times 0 [ 694.350936][T18513] CPU: 0 UID: 0 PID: 18513 Comm: syz.3.3985 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 694.361775][T18513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 694.371865][T18513] Call Trace: [ 694.375167][T18513] [ 694.378123][T18513] dump_stack_lvl+0x16c/0x1f0 [ 694.382834][T18513] should_fail_ex+0x497/0x5b0 [ 694.387545][T18513] ? fs_reclaim_acquire+0xae/0x150 [ 694.392695][T18513] should_failslab+0xc2/0x120 [ 694.397420][T18513] __kmalloc_node_track_caller_noprof+0xcf/0x520 [ 694.403796][T18513] ? argv_split+0x35/0x440 [ 694.408263][T18513] kstrndup+0x48/0xb0 [ 694.412282][T18513] argv_split+0x35/0x440 [ 694.416580][T18513] dyn_event_release+0x8e/0x4d0 [ 694.421493][T18513] ? trace_lock_acquire+0x14e/0x1f0 [ 694.426731][T18513] ? __pfx_dyn_event_release+0x10/0x10 [ 694.432228][T18513] ? lock_acquire+0x2f/0xb0 [ 694.436761][T18513] ? __might_fault+0xe3/0x190 [ 694.441482][T18513] create_dyn_event+0x13f/0x1c0 [ 694.446348][T18513] trace_parse_run_command+0x193/0x300 [ 694.451819][T18513] ? __pfx_create_dyn_event+0x10/0x10 [ 694.457206][T18513] ? __pfx_dyn_event_write+0x10/0x10 [ 694.462496][T18513] vfs_write+0x24c/0x1150 [ 694.466837][T18513] ? __fget_files+0x1fc/0x3a0 [ 694.471527][T18513] ? __pfx___mutex_lock+0x10/0x10 [ 694.476563][T18513] ? __pfx_vfs_write+0x10/0x10 [ 694.481340][T18513] ? __fget_files+0x206/0x3a0 [ 694.486028][T18513] ksys_write+0x12b/0x250 [ 694.490363][T18513] ? __pfx_ksys_write+0x10/0x10 [ 694.495224][T18513] do_syscall_64+0xcd/0x250 [ 694.499735][T18513] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 694.505646][T18513] RIP: 0033:0x7ff3fef85d19 [ 694.510062][T18513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 694.529676][T18513] RSP: 002b:00007ff3ffde5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 694.538098][T18513] RAX: ffffffffffffffda RBX: 00007ff3ff175fa0 RCX: 00007ff3fef85d19 [ 694.546071][T18513] RDX: 0000000000000001 RSI: 00000000200046c0 RDI: 0000000000000003 [ 694.554050][T18513] RBP: 00007ff3ffde5090 R08: 0000000000000000 R09: 0000000000000000 [ 694.562025][T18513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 694.570002][T18513] R13: 0000000000000000 R14: 00007ff3ff175fa0 R15: 00007fff73276498 [ 694.577993][T18513] [ 694.899912][T18521] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3989'. [ 695.242805][T18532] Line length is too long: Should be less than 4094 [ 695.613822][T18544] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3996'. [ 698.429097][T18593] FAULT_INJECTION: forcing a failure. [ 698.429097][T18593] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 698.448561][T18593] CPU: 1 UID: 0 PID: 18593 Comm: syz.2.4011 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 698.459375][T18593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 698.469468][T18593] Call Trace: [ 698.472773][T18593] [ 698.475726][T18593] dump_stack_lvl+0x16c/0x1f0 [ 698.480450][T18593] should_fail_ex+0x497/0x5b0 [ 698.485176][T18593] _copy_from_iter+0x4a5/0x1400 [ 698.490076][T18593] ? __pfx__copy_from_iter+0x10/0x10 [ 698.495400][T18593] ? __virt_addr_valid+0x1a4/0x590 [ 698.500561][T18593] ? __virt_addr_valid+0x5e/0x590 [ 698.505626][T18593] ? __phys_addr_symbol+0x30/0x80 [ 698.510685][T18593] ? __check_object_size+0x488/0x710 [ 698.516017][T18593] qrtr_tun_write_iter+0xeb/0x1a0 [ 698.521085][T18593] do_iter_readv_writev+0x532/0x7f0 [ 698.526320][T18593] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 698.532082][T18593] ? bpf_lsm_file_permission+0x9/0x10 [ 698.537498][T18593] ? security_file_permission+0x71/0x210 [ 698.543174][T18593] vfs_writev+0x363/0xdd0 [ 698.547544][T18593] ? __pfx_lock_release+0x10/0x10 [ 698.552608][T18593] ? proc_fail_nth_write+0xa0/0x250 [ 698.557844][T18593] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 698.563522][T18593] ? __pfx_vfs_writev+0x10/0x10 [ 698.568411][T18593] ? vfs_write+0x306/0x1150 [ 698.572949][T18593] ? do_user_addr_fault+0xdc7/0x13f0 [ 698.578292][T18593] ? do_user_addr_fault+0xe50/0x13f0 [ 698.583620][T18593] ? __pfx_lock_release+0x10/0x10 [ 698.588693][T18593] ? do_writev+0x133/0x340 [ 698.593136][T18593] do_writev+0x133/0x340 [ 698.597409][T18593] ? __pfx_do_writev+0x10/0x10 [ 698.602227][T18593] do_syscall_64+0xcd/0x250 [ 698.606766][T18593] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 698.612699][T18593] RIP: 0033:0x7fc3f2b85d19 [ 698.617160][T18593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 698.636801][T18593] RSP: 002b:00007fc3f09f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 698.645252][T18593] RAX: ffffffffffffffda RBX: 00007fc3f2d75fa0 RCX: 00007fc3f2b85d19 [ 698.653267][T18593] RDX: 00000000000000a2 RSI: 0000000020000140 RDI: 0000000000000003 [ 698.661243][T18593] RBP: 00007fc3f09f6090 R08: 0000000000000000 R09: 0000000000000000 [ 698.669227][T18593] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 698.677220][T18593] R13: 0000000000000000 R14: 00007fc3f2d75fa0 R15: 00007ffd28d69ba8 [ 698.685215][T18593] [ 700.304307][T18628] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4022'. [ 700.831581][T18642] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4027'. [ 701.146627][T18653] FAULT_INJECTION: forcing a failure. [ 701.146627][T18653] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 701.183824][T18653] CPU: 0 UID: 0 PID: 18653 Comm: syz.3.4030 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 701.194659][T18653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 701.204746][T18653] Call Trace: [ 701.208055][T18653] [ 701.211006][T18653] dump_stack_lvl+0x16c/0x1f0 [ 701.215734][T18653] should_fail_ex+0x497/0x5b0 [ 701.220449][T18653] _copy_to_user+0x32/0xd0 [ 701.224913][T18653] simple_read_from_buffer+0xd0/0x160 [ 701.230338][T18653] proc_fail_nth_read+0x198/0x270 [ 701.235410][T18653] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 701.241013][T18653] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 701.246612][T18653] vfs_read+0x1df/0xbe0 [ 701.250809][T18653] ? __fget_files+0x1fc/0x3a0 [ 701.255523][T18653] ? __pfx___mutex_lock+0x10/0x10 [ 701.260587][T18653] ? __pfx_vfs_read+0x10/0x10 [ 701.265311][T18653] ? __fget_files+0x206/0x3a0 [ 701.270042][T18653] ksys_read+0x12b/0x250 [ 701.274320][T18653] ? __pfx_ksys_read+0x10/0x10 [ 701.279128][T18653] do_syscall_64+0xcd/0x250 [ 701.283675][T18653] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 701.289600][T18653] RIP: 0033:0x7ff3fef8472c [ 701.294044][T18653] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 701.313691][T18653] RSP: 002b:00007ff3ffde5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 701.322146][T18653] RAX: ffffffffffffffda RBX: 00007ff3ff175fa0 RCX: 00007ff3fef8472c [ 701.330147][T18653] RDX: 000000000000000f RSI: 00007ff3ffde50a0 RDI: 0000000000000004 [ 701.338148][T18653] RBP: 00007ff3ffde5090 R08: 0000000000000000 R09: 0000000000000000 [ 701.346153][T18653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 701.354159][T18653] R13: 0000000000000000 R14: 00007ff3ff175fa0 R15: 00007fff73276498 [ 701.362187][T18653] [ 701.602581][T18675] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4037'. [ 702.436709][T18702] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4049'. [ 703.003031][T18721] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4054'. [ 703.041457][T18717] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4054'. [ 703.129829][T18725] FAULT_INJECTION: forcing a failure. [ 703.129829][T18725] name failslab, interval 1, probability 0, space 0, times 0 [ 703.151818][T18725] CPU: 1 UID: 0 PID: 18725 Comm: syz.3.4057 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 703.162640][T18725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 703.172704][T18725] Call Trace: [ 703.175994][T18725] [ 703.178936][T18725] dump_stack_lvl+0x16c/0x1f0 [ 703.183627][T18725] should_fail_ex+0x497/0x5b0 [ 703.188316][T18725] ? fs_reclaim_acquire+0xae/0x150 [ 703.193438][T18725] should_failslab+0xc2/0x120 [ 703.198130][T18725] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 703.203516][T18725] ? alloc_empty_file+0x73/0x1e0 [ 703.208469][T18725] alloc_empty_file+0x73/0x1e0 [ 703.213251][T18725] path_openat+0xe1/0x2d60 [ 703.217680][T18725] ? hlock_class+0x4e/0x130 [ 703.222195][T18725] ? __lock_acquire+0x15a9/0x3c40 [ 703.227263][T18725] ? __pfx_path_openat+0x10/0x10 [ 703.232218][T18725] ? __pfx___lock_acquire+0x10/0x10 [ 703.237438][T18725] ? lock_acquire.part.0+0x11b/0x380 [ 703.242738][T18725] ? find_held_lock+0x2d/0x110 [ 703.247517][T18725] do_filp_open+0x20c/0x470 [ 703.252032][T18725] ? __pfx_do_filp_open+0x10/0x10 [ 703.257065][T18725] ? find_held_lock+0x2d/0x110 [ 703.261871][T18725] ? alloc_fd+0x41f/0x760 [ 703.266218][T18725] do_sys_openat2+0x17a/0x1e0 [ 703.270911][T18725] ? __pfx_do_sys_openat2+0x10/0x10 [ 703.276211][T18725] ? do_user_addr_fault+0xe50/0x13f0 [ 703.281510][T18725] ? __pfx_lock_release+0x10/0x10 [ 703.286552][T18725] __x64_sys_openat+0x175/0x210 [ 703.291414][T18725] ? __pfx___x64_sys_openat+0x10/0x10 [ 703.296804][T18725] ? do_user_addr_fault+0x83d/0x13f0 [ 703.302105][T18725] do_syscall_64+0xcd/0x250 [ 703.306615][T18725] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 703.312517][T18725] RIP: 0033:0x7ff3fef85d19 [ 703.316938][T18725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 703.336552][T18725] RSP: 002b:00007ff3ffde5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 703.344972][T18725] RAX: ffffffffffffffda RBX: 00007ff3ff175fa0 RCX: 00007ff3fef85d19 [ 703.352945][T18725] RDX: 0000000000002000 RSI: 0000000020026d00 RDI: ffffffffffffff9c [ 703.360924][T18725] RBP: 00007ff3ffde5090 R08: 0000000000000000 R09: 0000000000000000 [ 703.368896][T18725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 703.376871][T18725] R13: 0000000000000001 R14: 00007ff3ff175fa0 R15: 00007fff73276498 [ 703.384860][T18725] [ 703.812735][T18736] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4062'. [ 704.541435][T18766] netlink: 40 bytes leftover after parsing attributes in process `syz.0.4070'. [ 704.818246][T18777] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4076'. [ 704.854501][T18777] bridge_slave_1: left allmulticast mode [ 704.861936][T18777] bridge_slave_1: left promiscuous mode [ 704.868287][T18777] bridge0: port 2(bridge_slave_1) entered disabled state [ 704.893944][T18777] bridge_slave_0: left allmulticast mode [ 704.900639][T18780] FAULT_INJECTION: forcing a failure. [ 704.900639][T18780] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 704.910261][T18777] bridge_slave_0: left promiscuous mode [ 704.919703][T18777] bridge0: port 1(bridge_slave_0) entered disabled state [ 704.954538][T18780] CPU: 0 UID: 0 PID: 18780 Comm: syz.3.4077 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 704.965359][T18780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 704.975420][T18780] Call Trace: [ 704.978876][T18780] [ 704.981812][T18780] dump_stack_lvl+0x16c/0x1f0 [ 704.986502][T18780] should_fail_ex+0x497/0x5b0 [ 704.991195][T18780] _copy_to_user+0x32/0xd0 [ 704.995627][T18780] simple_read_from_buffer+0xd0/0x160 [ 705.001031][T18780] proc_fail_nth_read+0x198/0x270 [ 705.006077][T18780] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 705.011643][T18780] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 705.017203][T18780] vfs_read+0x1df/0xbe0 [ 705.021369][T18780] ? __fget_files+0x1fc/0x3a0 [ 705.026055][T18780] ? __pfx___mutex_lock+0x10/0x10 [ 705.031087][T18780] ? __pfx_vfs_read+0x10/0x10 [ 705.035778][T18780] ? __fget_files+0x206/0x3a0 [ 705.040468][T18780] ksys_read+0x12b/0x250 [ 705.044723][T18780] ? __pfx_ksys_read+0x10/0x10 [ 705.049505][T18780] do_syscall_64+0xcd/0x250 [ 705.054022][T18780] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 705.059924][T18780] RIP: 0033:0x7ff3fef8472c [ 705.064348][T18780] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 705.083968][T18780] RSP: 002b:00007ff3ffde5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 705.092393][T18780] RAX: ffffffffffffffda RBX: 00007ff3ff175fa0 RCX: 00007ff3fef8472c [ 705.100365][T18780] RDX: 000000000000000f RSI: 00007ff3ffde50a0 RDI: 0000000000000004 [ 705.108340][T18780] RBP: 00007ff3ffde5090 R08: 0000000000000000 R09: 0000000000000000 [ 705.116315][T18780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 705.124289][T18780] R13: 0000000000000000 R14: 00007ff3ff175fa0 R15: 00007fff73276498 [ 705.132280][T18780] [ 706.689487][T18819] netlink: 330 bytes leftover after parsing attributes in process `syz.2.4089'. [ 707.188152][T18836] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4095'. [ 707.957785][T18860] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4102'. [ 708.319624][T18868] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4104'. [ 708.403754][T18868] team0: left allmulticast mode [ 708.408775][T18868] team_slave_1: left allmulticast mode [ 708.414914][T18868] team0: left promiscuous mode [ 708.427675][T18868] team_slave_1: left promiscuous mode [ 708.445084][T18868] bridge0: port 3(team0) entered disabled state [ 708.473994][T18868] bridge_slave_1: left allmulticast mode [ 708.479797][T18868] bridge_slave_1: left promiscuous mode [ 708.501545][T18868] bridge0: port 2(bridge_slave_1) entered disabled state [ 708.528024][T18868] bridge_slave_0: left allmulticast mode [ 708.541314][T18868] bridge_slave_0: left promiscuous mode [ 708.551834][T18868] bridge0: port 1(bridge_slave_0) entered disabled state [ 709.051294][T18885] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4119'. [ 709.288156][T18893] netlink: 338 bytes leftover after parsing attributes in process `syz.0.4112'. [ 709.916724][T18911] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4118'. [ 710.261032][T18918] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4122'. [ 710.688886][T18931] ubi5: attaching mtd0 [ 710.770745][T18938] netlink: 'syz.3.4130': attribute type 27 has an invalid length. [ 710.802105][T18938] netlink: 334 bytes leftover after parsing attributes in process `syz.3.4130'. [ 711.351180][T18949] openvswitch: netlink: push_nsh: missing base or metadata attributes [ 711.413830][T18953] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4137'. [ 712.030208][T18967] netlink: 322 bytes leftover after parsing attributes in process `syz.1.4143'. [ 712.145445][T18971] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4145'. [ 712.185046][T18969] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4144'. [ 713.502061][T18999] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4154'. [ 713.578021][T18999] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 713.970102][T19007] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4156'. [ 713.984768][T18999] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 715.855954][T19029] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4163'. [ 716.443205][T19041] netlink: del zone limit has 8 unknown bytes [ 716.475345][T19045] netlink: 'syz.2.4169': attribute type 4 has an invalid length. [ 716.574731][T19046] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock [ 716.829944][T19055] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4172'. [ 716.963025][T19057] FAULT_INJECTION: forcing a failure. [ 716.963025][T19057] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 717.035900][T19057] CPU: 0 UID: 0 PID: 19057 Comm: syz.3.4174 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 717.046739][T19057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 717.056834][T19057] Call Trace: [ 717.060138][T19057] [ 717.063143][T19057] dump_stack_lvl+0x16c/0x1f0 [ 717.067859][T19057] should_fail_ex+0x497/0x5b0 [ 717.072584][T19057] _copy_from_user+0x2e/0xd0 [ 717.077215][T19057] ptp_ioctl+0x2a5/0x1d10 [ 717.081595][T19057] ? __pfx_ptp_ioctl+0x10/0x10 [ 717.086398][T19057] ? __lock_acquire+0x15a9/0x3c40 [ 717.091479][T19057] ? __pfx___lock_acquire+0x10/0x10 [ 717.096714][T19057] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 717.102654][T19057] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 717.108322][T19057] ? lock_acquire+0x2f/0xb0 [ 717.112843][T19057] ? posix_clock_ioctl+0x6b/0x170 [ 717.117919][T19057] ? __fget_files+0x206/0x3a0 [ 717.122626][T19057] ? __pfx_ptp_ioctl+0x10/0x10 [ 717.127419][T19057] posix_clock_ioctl+0xf6/0x170 [ 717.132282][T19057] ? __pfx_posix_clock_ioctl+0x10/0x10 [ 717.137757][T19057] __x64_sys_ioctl+0x190/0x200 [ 717.142541][T19057] do_syscall_64+0xcd/0x250 [ 717.147059][T19057] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 717.152962][T19057] RIP: 0033:0x7ff3fef85d19 [ 717.157386][T19057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 717.177088][T19057] RSP: 002b:00007ff3ffde5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 717.185507][T19057] RAX: ffffffffffffffda RBX: 00007ff3ff175fa0 RCX: 00007ff3fef85d19 [ 717.193483][T19057] RDX: 0000000000000000 RSI: 0000000040603d10 RDI: 0000000000000003 [ 717.201719][T19057] RBP: 00007ff3ffde5090 R08: 0000000000000000 R09: 0000000000000000 [ 717.209777][T19057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 717.217749][T19057] R13: 0000000000000000 R14: 00007ff3ff175fa0 R15: 00007fff73276498 [ 717.225758][T19057] [ 717.817474][T19072] netlink: 342 bytes leftover after parsing attributes in process `syz.0.4179'. [ 718.232432][T19080] FAULT_INJECTION: forcing a failure. [ 718.232432][T19080] name failslab, interval 1, probability 0, space 0, times 0 [ 718.291013][T19080] CPU: 0 UID: 0 PID: 19080 Comm: syz.2.4181 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 718.301839][T19080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 718.311920][T19080] Call Trace: [ 718.315219][T19080] [ 718.318172][T19080] dump_stack_lvl+0x16c/0x1f0 [ 718.322896][T19080] should_fail_ex+0x497/0x5b0 [ 718.327598][T19080] ? fs_reclaim_acquire+0xae/0x150 [ 718.332720][T19080] should_failslab+0xc2/0x120 [ 718.337412][T19080] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 718.342794][T19080] ? mas_alloc_nodes+0x18b/0x880 [ 718.347739][T19080] mas_alloc_nodes+0x18b/0x880 [ 718.352512][T19080] mas_node_count_gfp+0x105/0x130 [ 718.357547][T19080] mas_preallocate+0x53f/0xce0 [ 718.362324][T19080] ? __pfx_mas_preallocate+0x10/0x10 [ 718.367632][T19080] ? anon_vma_name+0x75/0x100 [ 718.372335][T19080] __split_vma+0x474/0x1210 [ 718.376868][T19080] ? __pfx___split_vma+0x10/0x10 [ 718.381819][T19080] ? mark_lock+0xb5/0xc60 [ 718.386168][T19080] ? __pfx_mark_lock+0x10/0x10 [ 718.390950][T19080] vms_gather_munmap_vmas+0x1c3/0x1730 [ 718.396428][T19080] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 718.402334][T19080] ? mas_walk+0x6a6/0x910 [ 718.406677][T19080] __mmap_region+0x31d/0x2670 [ 718.411375][T19080] ? __pfx___mmap_region+0x10/0x10 [ 718.416497][T19080] ? hlock_class+0x4e/0x130 [ 718.421008][T19080] ? mark_lock+0xb5/0xc60 [ 718.425358][T19080] ? hlock_class+0x4e/0x130 [ 718.429871][T19080] ? __pfx___lock_acquire+0x10/0x10 [ 718.435123][T19080] ? cap_mmap_addr+0x53/0x320 [ 718.439818][T19080] mmap_region+0x127/0x320 [ 718.444251][T19080] do_mmap+0xc00/0xfc0 [ 718.448332][T19080] vm_mmap_pgoff+0x1ba/0x360 [ 718.452934][T19080] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 718.458058][T19080] ? __fget_files+0x206/0x3a0 [ 718.462749][T19080] ksys_mmap_pgoff+0x32c/0x5c0 [ 718.467523][T19080] ? __pfx_ksys_write+0x10/0x10 [ 718.472387][T19080] __x64_sys_mmap+0x125/0x190 [ 718.477075][T19080] do_syscall_64+0xcd/0x250 [ 718.481589][T19080] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 718.487489][T19080] RIP: 0033:0x7fc3f2b85d19 [ 718.491940][T19080] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 718.511551][T19080] RSP: 002b:00007fc3f09f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 718.519969][T19080] RAX: ffffffffffffffda RBX: 00007fc3f2d75fa0 RCX: 00007fc3f2b85d19 [ 718.527944][T19080] RDX: 0000000000000001 RSI: 0000000000004000 RDI: 0000000020ff9000 [ 718.535915][T19080] RBP: 00007fc3f09f6090 R08: 0000000000000003 R09: 0000000100000000 [ 718.543888][T19080] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000001 [ 718.551858][T19080] R13: 0000000000000000 R14: 00007fc3f2d75fa0 R15: 00007ffd28d69ba8 [ 718.559843][T19080] [ 719.762976][T19100] FAULT_INJECTION: forcing a failure. [ 719.762976][T19100] name failslab, interval 1, probability 0, space 0, times 0 [ 719.826907][T19100] CPU: 0 UID: 0 PID: 19100 Comm: syz.2.4191 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 719.837735][T19100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 719.847819][T19100] Call Trace: [ 719.851124][T19100] [ 719.854084][T19100] dump_stack_lvl+0x16c/0x1f0 [ 719.858792][T19100] should_fail_ex+0x497/0x5b0 [ 719.863501][T19100] ? fs_reclaim_acquire+0xae/0x150 [ 719.868646][T19100] should_failslab+0xc2/0x120 [ 719.873361][T19100] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 719.878770][T19100] ? mas_alloc_nodes+0x18b/0x880 [ 719.883737][T19100] mas_alloc_nodes+0x18b/0x880 [ 719.888544][T19100] mas_node_count_gfp+0x105/0x130 [ 719.893600][T19100] mas_preallocate+0x53f/0xce0 [ 719.898404][T19100] ? __pfx_mas_preallocate+0x10/0x10 [ 719.903744][T19100] ? anon_vma_name+0x75/0x100 [ 719.908472][T19100] __split_vma+0x474/0x1210 [ 719.913023][T19100] ? __pfx___split_vma+0x10/0x10 [ 719.918002][T19100] ? mark_lock+0xb5/0xc60 [ 719.922379][T19100] ? __pfx_mark_lock+0x10/0x10 [ 719.927194][T19100] vms_gather_munmap_vmas+0x1c3/0x1730 [ 719.932700][T19100] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 719.938633][T19100] ? mas_walk+0x6a6/0x910 [ 719.943005][T19100] __mmap_region+0x31d/0x2670 [ 719.947733][T19100] ? __pfx___mmap_region+0x10/0x10 [ 719.952882][T19100] ? hlock_class+0x4e/0x130 [ 719.957413][T19100] ? mark_lock+0xb5/0xc60 [ 719.961791][T19100] ? hlock_class+0x4e/0x130 [ 719.966331][T19100] ? __pfx___lock_acquire+0x10/0x10 [ 719.971628][T19100] mmap_region+0x127/0x320 [ 719.976083][T19100] do_mmap+0xc00/0xfc0 [ 719.980194][T19100] vm_mmap_pgoff+0x1ba/0x360 [ 719.984828][T19100] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 719.989980][T19100] ? __fget_files+0x206/0x3a0 [ 719.994700][T19100] ksys_mmap_pgoff+0x32c/0x5c0 [ 719.999493][T19100] ? __pfx_ksys_write+0x10/0x10 [ 720.004390][T19100] __x64_sys_mmap+0x125/0x190 [ 720.009102][T19100] do_syscall_64+0xcd/0x250 [ 720.013643][T19100] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 720.019576][T19100] RIP: 0033:0x7fc3f2b85d19 [ 720.024013][T19100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 720.043656][T19100] RSP: 002b:00007fc3f09f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 720.052100][T19100] RAX: ffffffffffffffda RBX: 00007fc3f2d75fa0 RCX: 00007fc3f2b85d19 [ 720.060093][T19100] RDX: 0000000000000001 RSI: 0000000000004000 RDI: 0000000020ffc000 [ 720.068085][T19100] RBP: 00007fc3f09f6090 R08: 0000000000000003 R09: 0000000000000000 [ 720.076081][T19100] R10: 000000000008e051 R11: 0000000000000246 R12: 0000000000000001 [ 720.084077][T19100] R13: 0000000000000000 R14: 00007fc3f2d75fa0 R15: 00007ffd28d69ba8 [ 720.092087][T19100] [ 720.385374][T19105] FAULT_INJECTION: forcing a failure. [ 720.385374][T19105] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 720.458568][T19105] CPU: 1 UID: 0 PID: 19105 Comm: syz.2.4193 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 720.469399][T19105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 720.479484][T19105] Call Trace: [ 720.482791][T19105] [ 720.485742][T19105] dump_stack_lvl+0x16c/0x1f0 [ 720.490462][T19105] should_fail_ex+0x497/0x5b0 [ 720.495178][T19105] _copy_from_user+0x2e/0xd0 [ 720.499802][T19105] evdev_do_ioctl+0xce9/0x1ae0 [ 720.504600][T19105] ? __pfx_evdev_do_ioctl+0x10/0x10 [ 720.509834][T19105] ? trace_lock_acquire+0x14e/0x1f0 [ 720.515077][T19105] ? __pfx_evdev_ioctl+0x10/0x10 [ 720.520050][T19105] evdev_ioctl+0x16a/0x1a0 [ 720.524491][T19105] ? __pfx_evdev_ioctl+0x10/0x10 [ 720.529438][T19105] __x64_sys_ioctl+0x190/0x200 [ 720.534217][T19105] do_syscall_64+0xcd/0x250 [ 720.538727][T19105] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 720.544652][T19105] RIP: 0033:0x7fc3f2b85d19 [ 720.549069][T19105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 720.570589][T19105] RSP: 002b:00007fc3f09f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 720.579005][T19105] RAX: ffffffffffffffda RBX: 00007fc3f2d75fa0 RCX: 00007fc3f2b85d19 [ 720.586978][T19105] RDX: 0000000000000000 RSI: 0000000080104592 RDI: 0000000000000003 [ 720.594949][T19105] RBP: 00007fc3f09f6090 R08: 0000000000000000 R09: 0000000000000000 [ 720.602918][T19105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 720.610892][T19105] R13: 0000000000000000 R14: 00007fc3f2d75fa0 R15: 00007ffd28d69ba8 [ 720.618881][T19105] [ 721.240608][T19111] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4195'. [ 721.607169][T19117] FAULT_INJECTION: forcing a failure. [ 721.607169][T19117] name failslab, interval 1, probability 0, space 0, times 0 [ 721.640885][T19117] CPU: 0 UID: 0 PID: 19117 Comm: syz.2.4199 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 721.651700][T19117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 721.661775][T19117] Call Trace: [ 721.665070][T19117] [ 721.668019][T19117] dump_stack_lvl+0x16c/0x1f0 [ 721.672748][T19117] should_fail_ex+0x497/0x5b0 [ 721.677460][T19117] ? fs_reclaim_acquire+0xae/0x150 [ 721.682584][T19117] should_failslab+0xc2/0x120 [ 721.687274][T19117] __kmalloc_noprof+0xce/0x4f0 [ 721.692045][T19117] ? d_absolute_path+0x137/0x1b0 [ 721.696990][T19117] ? tomoyo_encode2+0x100/0x3e0 [ 721.701852][T19117] tomoyo_encode2+0x100/0x3e0 [ 721.706533][T19117] tomoyo_realpath_from_path+0x1a7/0x710 [ 721.712186][T19117] tomoyo_path_number_perm+0x248/0x5b0 [ 721.717656][T19117] ? tomoyo_path_number_perm+0x235/0x5b0 [ 721.723302][T19117] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 721.729316][T19117] ? __pfx_lock_release+0x10/0x10 [ 721.734353][T19117] ? trace_lock_acquire+0x14e/0x1f0 [ 721.739562][T19117] ? lock_acquire+0x2f/0xb0 [ 721.744070][T19117] ? __fget_files+0x40/0x3a0 [ 721.748669][T19117] ? __fget_files+0x206/0x3a0 [ 721.753361][T19117] security_file_ioctl+0x9b/0x240 [ 721.758393][T19117] __x64_sys_ioctl+0xb7/0x200 [ 721.763087][T19117] do_syscall_64+0xcd/0x250 [ 721.767600][T19117] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 721.773504][T19117] RIP: 0033:0x7fc3f2b85d19 [ 721.777926][T19117] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 721.797536][T19117] RSP: 002b:00007fc3f09f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 721.805956][T19117] RAX: ffffffffffffffda RBX: 00007fc3f2d75fa0 RCX: 00007fc3f2b85d19 [ 721.813935][T19117] RDX: 0000000000000003 RSI: 0000000040085112 RDI: 000000000000000c [ 721.821910][T19117] RBP: 00007fc3f09f6090 R08: 0000000000000000 R09: 0000000000000000 [ 721.829886][T19117] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 721.837874][T19117] R13: 0000000000000000 R14: 00007fc3f2d75fa0 R15: 00007ffd28d69ba8 [ 721.845877][T19117] [ 721.981369][T19117] ERROR: Out of memory at tomoyo_realpath_from_path. [ 724.002855][T19168] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4213'. [ 724.332178][T19171] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4215'. [ 724.472405][T19177] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4217'. [ 724.513389][T19177] netlink: 118 bytes leftover after parsing attributes in process `syz.3.4217'. [ 724.655898][T19184] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4220'. [ 724.967575][T19194] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4223'. [ 725.100229][T19195] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4222'. [ 725.372987][T19194] bond0: (slave bond_slave_0): Releasing backup interface [ 725.557026][T19195] netlink: 118 bytes leftover after parsing attributes in process `syz.2.4222'. [ 726.116556][T19211] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4227'. [ 726.761282][T19217] FAULT_INJECTION: forcing a failure. [ 726.761282][T19217] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 726.844171][T19217] CPU: 1 UID: 0 PID: 19217 Comm: syz.2.4228 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 726.855008][T19217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 726.865095][T19217] Call Trace: [ 726.868392][T19217] [ 726.871345][T19217] dump_stack_lvl+0x16c/0x1f0 [ 726.876044][T19217] should_fail_ex+0x497/0x5b0 [ 726.880734][T19217] _copy_from_user+0x2e/0xd0 [ 726.885341][T19217] i2cdev_ioctl+0x572/0x820 [ 726.889851][T19217] ? __pfx_i2cdev_ioctl+0x10/0x10 [ 726.894882][T19217] ? __fget_files+0x206/0x3a0 [ 726.899572][T19217] ? __pfx_i2cdev_ioctl+0x10/0x10 [ 726.904607][T19217] __x64_sys_ioctl+0x190/0x200 [ 726.909387][T19217] do_syscall_64+0xcd/0x250 [ 726.913897][T19217] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 726.919796][T19217] RIP: 0033:0x7fc3f2b85d19 [ 726.924211][T19217] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 726.943832][T19217] RSP: 002b:00007fc3f09d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 726.952249][T19217] RAX: ffffffffffffffda RBX: 00007fc3f2d76080 RCX: 00007fc3f2b85d19 [ 726.960224][T19217] RDX: 0000000000000000 RSI: 0000000000000707 RDI: 0000000000000003 [ 726.968198][T19217] RBP: 00007fc3f09d5090 R08: 0000000000000000 R09: 0000000000000000 [ 726.976175][T19217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 726.984153][T19217] R13: 0000000000000000 R14: 00007fc3f2d76080 R15: 00007ffd28d69ba8 [ 726.992139][T19217] [ 729.831942][T19243] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4234'. [ 730.606144][T19243] bond0: (slave bond_slave_0): Releasing backup interface [ 731.292458][T19274] FAULT_INJECTION: forcing a failure. [ 731.292458][T19274] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 731.331010][T19274] CPU: 1 UID: 0 PID: 19274 Comm: syz.3.4244 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 731.341869][T19274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 731.351961][T19274] Call Trace: [ 731.355263][T19274] [ 731.358221][T19274] dump_stack_lvl+0x16c/0x1f0 [ 731.362944][T19274] should_fail_ex+0x497/0x5b0 [ 731.367666][T19274] _copy_to_user+0x32/0xd0 [ 731.372129][T19274] simple_read_from_buffer+0xd0/0x160 [ 731.377558][T19274] proc_fail_nth_read+0x198/0x270 [ 731.382634][T19274] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 731.388239][T19274] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 731.393843][T19274] vfs_read+0x1df/0xbe0 [ 731.398030][T19274] ? __fget_files+0x1fc/0x3a0 [ 731.402742][T19274] ? __pfx___mutex_lock+0x10/0x10 [ 731.407783][T19274] ? __pfx_vfs_read+0x10/0x10 [ 731.412470][T19274] ? __fget_files+0x206/0x3a0 [ 731.417160][T19274] ksys_read+0x12b/0x250 [ 731.421410][T19274] ? __pfx_ksys_read+0x10/0x10 [ 731.426187][T19274] do_syscall_64+0xcd/0x250 [ 731.430703][T19274] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 731.436604][T19274] RIP: 0033:0x7ff3fef8472c [ 731.441038][T19274] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 731.460654][T19274] RSP: 002b:00007ff3ffde5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 731.469073][T19274] RAX: ffffffffffffffda RBX: 00007ff3ff175fa0 RCX: 00007ff3fef8472c [ 731.477138][T19274] RDX: 000000000000000f RSI: 00007ff3ffde50a0 RDI: 0000000000000004 [ 731.485116][T19274] RBP: 00007ff3ffde5090 R08: 0000000000000000 R09: 0000000000000000 [ 731.493102][T19274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 731.501076][T19274] R13: 0000000000000000 R14: 00007ff3ff175fa0 R15: 00007fff73276498 [ 731.509065][T19274] [ 732.905666][T19307] FAULT_INJECTION: forcing a failure. [ 732.905666][T19307] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 732.933588][T19307] CPU: 0 UID: 0 PID: 19307 Comm: syz.3.4256 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 732.944456][T19307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 732.954538][T19307] Call Trace: [ 732.957840][T19307] [ 732.960793][T19307] dump_stack_lvl+0x16c/0x1f0 [ 732.965509][T19307] should_fail_ex+0x497/0x5b0 [ 732.970228][T19307] _copy_to_user+0x32/0xd0 [ 732.974697][T19307] simple_read_from_buffer+0xd0/0x160 [ 732.980113][T19307] proc_fail_nth_read+0x198/0x270 [ 732.985179][T19307] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 732.990768][T19307] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 732.996346][T19307] vfs_read+0x1df/0xbe0 [ 733.000552][T19307] ? __fget_files+0x1fc/0x3a0 [ 733.005250][T19307] ? __pfx___mutex_lock+0x10/0x10 [ 733.010288][T19307] ? __pfx_vfs_read+0x10/0x10 [ 733.014987][T19307] ? __fget_files+0x206/0x3a0 [ 733.019679][T19307] ksys_read+0x12b/0x250 [ 733.023938][T19307] ? __pfx_ksys_read+0x10/0x10 [ 733.028718][T19307] do_syscall_64+0xcd/0x250 [ 733.033233][T19307] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 733.039144][T19307] RIP: 0033:0x7ff3fef8472c [ 733.043577][T19307] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 733.063361][T19307] RSP: 002b:00007ff3ffde5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 733.071783][T19307] RAX: ffffffffffffffda RBX: 00007ff3ff175fa0 RCX: 00007ff3fef8472c [ 733.079756][T19307] RDX: 000000000000000f RSI: 00007ff3ffde50a0 RDI: 0000000000000004 [ 733.087742][T19307] RBP: 00007ff3ffde5090 R08: 0000000000000000 R09: 0000000000000000 [ 733.095713][T19307] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 733.103696][T19307] R13: 0000000000000000 R14: 00007ff3ff175fa0 R15: 00007fff73276498 [ 733.111691][T19307] [ 733.860023][T19329] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4262'. [ 734.471894][T19338] FAULT_INJECTION: forcing a failure. [ 734.471894][T19338] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 734.521027][T19338] CPU: 1 UID: 0 PID: 19338 Comm: syz.3.4267 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 734.531862][T19338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 734.541944][T19338] Call Trace: [ 734.545251][T19338] [ 734.548206][T19338] dump_stack_lvl+0x16c/0x1f0 [ 734.552922][T19338] should_fail_ex+0x497/0x5b0 [ 734.557654][T19338] _copy_from_user+0x2e/0xd0 [ 734.562292][T19338] vhost_dev_ioctl+0x1a8/0xe20 [ 734.567099][T19338] ? __pfx_vhost_dev_ioctl+0x10/0x10 [ 734.572437][T19338] vhost_net_ioctl+0x7bf/0x16e0 [ 734.577323][T19338] ? __pfx_lock_release+0x10/0x10 [ 734.582390][T19338] ? __pfx_vhost_net_ioctl+0x10/0x10 [ 734.587714][T19338] ? __fget_files+0x206/0x3a0 [ 734.592429][T19338] ? __pfx_vhost_net_ioctl+0x10/0x10 [ 734.597745][T19338] __x64_sys_ioctl+0x190/0x200 [ 734.602552][T19338] do_syscall_64+0xcd/0x250 [ 734.607090][T19338] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 734.613018][T19338] RIP: 0033:0x7ff3fef85d19 [ 734.617456][T19338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 734.637097][T19338] RSP: 002b:00007ff3ffde5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 734.645552][T19338] RAX: ffffffffffffffda RBX: 00007ff3ff175fa0 RCX: 00007ff3fef85d19 [ 734.653550][T19338] RDX: 0000000000000000 RSI: 000000004008af03 RDI: 0000000000000003 [ 734.661553][T19338] RBP: 00007ff3ffde5090 R08: 0000000000000000 R09: 0000000000000000 [ 734.669558][T19338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 734.677553][T19338] R13: 0000000000000000 R14: 00007ff3ff175fa0 R15: 00007fff73276498 [ 734.685576][T19338] [ 734.867836][T19341] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4266'. [ 735.318043][T19341] bond0: (slave bond_slave_0): Releasing backup interface [ 735.542446][T19350] aoe: invalid device specification [ 735.771086][T19353] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4271'. [ 736.692352][T19369] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4277'. [ 738.031515][T19004] syz.0.4155 (19004) used greatest stack depth: 19520 bytes left [ 738.251113][T19392] delete_channel: no stack [ 738.781513][T19401] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4286'. [ 741.465446][T19039] syz.1.4165 (19039) used greatest stack depth: 19312 bytes left [ 741.552535][T19452] FAULT_INJECTION: forcing a failure. [ 741.552535][T19452] name failslab, interval 1, probability 0, space 0, times 0 [ 741.586937][T19452] CPU: 0 UID: 0 PID: 19452 Comm: syz.2.4307 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 741.597762][T19452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 741.607830][T19452] Call Trace: [ 741.611113][T19452] [ 741.614046][T19452] dump_stack_lvl+0x16c/0x1f0 [ 741.618823][T19452] should_fail_ex+0x497/0x5b0 [ 741.623511][T19452] ? fs_reclaim_acquire+0xae/0x150 [ 741.628634][T19452] should_failslab+0xc2/0x120 [ 741.633324][T19452] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 741.638715][T19452] ? ptlock_alloc+0x1f/0x70 [ 741.643229][T19452] ? __pfx_filemap_map_pages+0x10/0x10 [ 741.648694][T19452] ptlock_alloc+0x1f/0x70 [ 741.653033][T19452] pte_alloc_one+0x74/0x390 [ 741.657542][T19452] __do_fault+0x320/0x490 [ 741.661877][T19452] ? __pfx_filemap_map_pages+0x10/0x10 [ 741.667358][T19452] do_pte_missing+0xebd/0x3e00 [ 741.672144][T19452] __handle_mm_fault+0x103c/0x2a40 [ 741.677275][T19452] ? __pfx___handle_mm_fault+0x10/0x10 [ 741.682741][T19452] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 741.688392][T19452] ? find_vma+0xc0/0x140 [ 741.692637][T19452] ? __pfx_find_vma+0x10/0x10 [ 741.697321][T19452] handle_mm_fault+0x3fa/0xaa0 [ 741.702102][T19452] do_user_addr_fault+0x7a3/0x13f0 [ 741.707234][T19452] exc_page_fault+0x5c/0xc0 [ 741.711746][T19452] asm_exc_page_fault+0x26/0x30 [ 741.716604][T19452] RIP: 0010:rep_movs_alternative+0x30/0x70 [ 741.722426][T19452] Code: f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 [ 741.742045][T19452] RSP: 0018:ffffc9000cf27c00 EFLAGS: 00050216 [ 741.748116][T19452] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000017 [ 741.756182][T19452] RDX: ffffed1006853308 RSI: 0000000000000000 RDI: ffff888034299828 [ 741.764156][T19452] RBP: 0000000000000017 R08: 0000000000000001 R09: ffffed1006853307 [ 741.772127][T19452] R10: ffff88803429983e R11: 0000000000000003 R12: 0000000000000000 [ 741.780102][T19452] R13: ffff888034299828 R14: 0000000000000000 R15: ffff888034299808 [ 741.788089][T19452] _copy_from_user+0x9a/0xd0 [ 741.792701][T19452] simple_attr_write_xsigned.constprop.0.isra.0+0x119/0x300 [ 741.799995][T19452] ? __pfx_simple_attr_write_xsigned.constprop.0.isra.0+0x10/0x10 [ 741.807810][T19452] ? trace_lock_acquire+0x14e/0x1f0 [ 741.813027][T19452] debugfs_attr_write+0x74/0xa0 [ 741.817896][T19452] ? __pfx_debugfs_attr_write+0x10/0x10 [ 741.823454][T19452] vfs_write+0x24c/0x1150 [ 741.827791][T19452] ? __fget_files+0x1fc/0x3a0 [ 741.832475][T19452] ? __pfx___mutex_lock+0x10/0x10 [ 741.837508][T19452] ? __pfx_vfs_write+0x10/0x10 [ 741.842287][T19452] ? __fget_files+0x206/0x3a0 [ 741.846983][T19452] ksys_write+0x12b/0x250 [ 741.851321][T19452] ? __pfx_ksys_write+0x10/0x10 [ 741.856191][T19452] do_syscall_64+0xcd/0x250 [ 741.860706][T19452] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 741.866624][T19452] RIP: 0033:0x7fc3f2b85d19 [ 741.871100][T19452] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 741.890738][T19452] RSP: 002b:00007fc3f09f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 741.899165][T19452] RAX: ffffffffffffffda RBX: 00007fc3f2d75fa0 RCX: 00007fc3f2b85d19 [ 741.907163][T19452] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 741.915148][T19452] RBP: 00007fc3f09f6090 R08: 0000000000000000 R09: 0000000000000000 [ 741.923128][T19452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 741.931118][T19452] R13: 0000000000000000 R14: 00007fc3f2d75fa0 R15: 00007ffd28d69ba8 [ 741.939129][T19452] [ 745.841891][T19540] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4334'. [ 746.137228][T19546] FAULT_INJECTION: forcing a failure. [ 746.137228][T19546] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 746.181544][T19546] CPU: 1 UID: 0 PID: 19546 Comm: syz.3.4337 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 746.192380][T19546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 746.202496][T19546] Call Trace: [ 746.205804][T19546] [ 746.208756][T19546] dump_stack_lvl+0x16c/0x1f0 [ 746.213474][T19546] should_fail_ex+0x497/0x5b0 [ 746.218185][T19546] ? fs_reclaim_acquire+0xae/0x150 [ 746.223333][T19546] should_fail_alloc_page+0xe7/0x130 [ 746.228661][T19546] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 746.234849][T19546] ? hlock_class+0x4e/0x130 [ 746.239397][T19546] __alloc_pages_noprof+0x190/0x25b0 [ 746.244735][T19546] ? hlock_class+0x4e/0x130 [ 746.249271][T19546] ? mark_lock+0xb5/0xc60 [ 746.253640][T19546] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 746.259406][T19546] ? __pfx_mark_lock+0x10/0x10 [ 746.264210][T19546] ? find_held_lock+0x2d/0x110 [ 746.269015][T19546] ? is_bpf_text_address+0x8a/0x1a0 [ 746.274259][T19546] ? __pfx_lock_release+0x10/0x10 [ 746.279321][T19546] ? trace_lock_acquire+0x14e/0x1f0 [ 746.284555][T19546] ? hlock_class+0x4e/0x130 [ 746.289087][T19546] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 746.295006][T19546] ? policy_nodemask+0xea/0x4e0 [ 746.299880][T19546] alloc_pages_mpol_noprof+0x2c9/0x610 [ 746.305359][T19546] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 746.311359][T19546] ? __pfx___lock_acquire+0x10/0x10 [ 746.316573][T19546] ? __pfx_filemap_map_pages+0x10/0x10 [ 746.322044][T19546] pte_alloc_one+0x20/0x390 [ 746.326570][T19546] __do_fault+0x320/0x490 [ 746.330911][T19546] ? __pfx_filemap_map_pages+0x10/0x10 [ 746.336390][T19546] do_pte_missing+0xebd/0x3e00 [ 746.341178][T19546] __handle_mm_fault+0x103c/0x2a40 [ 746.346307][T19546] ? __pfx___handle_mm_fault+0x10/0x10 [ 746.351772][T19546] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 746.357421][T19546] ? find_vma+0xc0/0x140 [ 746.361671][T19546] ? __pfx_find_vma+0x10/0x10 [ 746.366353][T19546] handle_mm_fault+0x3fa/0xaa0 [ 746.371136][T19546] do_user_addr_fault+0x7a3/0x13f0 [ 746.376266][T19546] exc_page_fault+0x5c/0xc0 [ 746.380776][T19546] asm_exc_page_fault+0x26/0x30 [ 746.385640][T19546] RIP: 0010:__get_user_4+0x1a/0x30 [ 746.390763][T19546] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 ba 00 f0 ff ff ff 7f 00 00 48 39 c2 48 19 d2 48 09 d0 0f 01 cb <8b> 10 31 c0 0f 01 ca c3 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 [ 746.410379][T19546] RSP: 0018:ffffc900106ffd38 EFLAGS: 00050202 [ 746.416454][T19546] RAX: 0000000000000038 RBX: 0000000040045532 RCX: ffffc900106ffca0 [ 746.424431][T19546] RDX: 0000000000000000 RSI: ffffffff88bc0fdf RDI: ffffffff8bb156e0 [ 746.432409][T19546] RBP: 00000000fffffdfd R08: 0000000000000000 R09: fffffbfff2039862 [ 746.440385][T19546] R10: ffffffff901cc317 R11: 0000000000000001 R12: 0000000040045532 [ 746.448357][T19546] R13: ffff888029c52e00 R14: ffff8880301f8028 R15: ffff88802efdb200 [ 746.456340][T19546] ? snd_pcm_control_ioctl+0x21f/0x670 [ 746.461822][T19546] snd_pcm_control_ioctl+0x228/0x670 [ 746.467122][T19546] snd_ctl_ioctl+0xa61/0x1080 [ 746.471805][T19546] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 746.476923][T19546] ? __pfx_lock_release+0x10/0x10 [ 746.481973][T19546] ? trace_lock_acquire+0x14e/0x1f0 [ 746.487194][T19546] ? __fget_files+0x206/0x3a0 [ 746.491886][T19546] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 746.497006][T19546] __x64_sys_ioctl+0x190/0x200 [ 746.501797][T19546] do_syscall_64+0xcd/0x250 [ 746.506322][T19546] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 746.512228][T19546] RIP: 0033:0x7ff3fef85d19 [ 746.516645][T19546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 746.536432][T19546] RSP: 002b:00007ff3ffde5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 746.544854][T19546] RAX: ffffffffffffffda RBX: 00007ff3ff175fa0 RCX: 00007ff3fef85d19 [ 746.552828][T19546] RDX: 0000000000000038 RSI: 0000000040045532 RDI: 0000000000000003 [ 746.560804][T19546] RBP: 00007ff3ffde5090 R08: 0000000000000000 R09: 0000000000000000 [ 746.568780][T19546] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 746.576750][T19546] R13: 0000000000000000 R14: 00007ff3ff175fa0 R15: 00007fff73276498 [ 746.584741][T19546] [ 747.661306][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 747.667687][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 749.966208][T19581] netlink: 330 bytes leftover after parsing attributes in process `syz.3.4349'. [ 751.248507][T19597] netlink: 'syz.0.4352': attribute type 6 has an invalid length. [ 751.272165][T19597] netlink: 306 bytes leftover after parsing attributes in process `syz.0.4352'. [ 752.792247][T19607] FAULT_INJECTION: forcing a failure. [ 752.792247][T19607] name failslab, interval 1, probability 0, space 0, times 0 [ 752.808651][T19607] CPU: 1 UID: 0 PID: 19607 Comm: syz.2.4355 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 752.819459][T19607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 752.829532][T19607] Call Trace: [ 752.832871][T19607] [ 752.835820][T19607] dump_stack_lvl+0x16c/0x1f0 [ 752.840535][T19607] should_fail_ex+0x497/0x5b0 [ 752.845235][T19607] ? fs_reclaim_acquire+0xae/0x150 [ 752.850374][T19607] should_failslab+0xc2/0x120 [ 752.855081][T19607] __kmalloc_noprof+0xce/0x4f0 [ 752.859876][T19607] ? event_inject_write+0x34a/0x1ec0 [ 752.865197][T19607] event_inject_write+0x34a/0x1ec0 [ 752.870350][T19607] ? __pfx_event_inject_write+0x10/0x10 [ 752.875941][T19607] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 752.881623][T19607] ? rcu_is_watching+0x12/0xc0 [ 752.886425][T19607] ? trace_lock_acquire+0x14e/0x1f0 [ 752.891661][T19607] ? ksys_write+0x12b/0x250 [ 752.896199][T19607] ? __pfx_event_inject_write+0x10/0x10 [ 752.901776][T19607] vfs_write+0x24c/0x1150 [ 752.906134][T19607] ? __fget_files+0x1fc/0x3a0 [ 752.910837][T19607] ? __pfx___mutex_lock+0x10/0x10 [ 752.915884][T19607] ? __pfx_vfs_write+0x10/0x10 [ 752.920684][T19607] ? __fget_files+0x206/0x3a0 [ 752.925399][T19607] ksys_write+0x12b/0x250 [ 752.929762][T19607] ? __pfx_ksys_write+0x10/0x10 [ 752.934655][T19607] do_syscall_64+0xcd/0x250 [ 752.939193][T19607] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 752.945114][T19607] RIP: 0033:0x7fc3f2b85d19 [ 752.949554][T19607] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 752.969198][T19607] RSP: 002b:00007fc3f09f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 752.977648][T19607] RAX: ffffffffffffffda RBX: 00007fc3f2d75fa0 RCX: 00007fc3f2b85d19 [ 752.985651][T19607] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 752.993672][T19607] RBP: 00007fc3f09f6090 R08: 0000000000000000 R09: 0000000000000000 [ 753.001677][T19607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 753.009676][T19607] R13: 0000000000000000 R14: 00007fc3f2d75fa0 R15: 00007ffd28d69ba8 [ 753.017696][T19607] [ 753.481425][T19615] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4356'. [ 753.518551][T19615] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 753.545640][T19615] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 753.612304][T19615] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 753.619757][T19615] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 755.697820][T19649] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4365'. [ 755.707599][T19651] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4366'. [ 755.827098][T19655] FAULT_INJECTION: forcing a failure. [ 755.827098][T19655] name failslab, interval 1, probability 0, space 0, times 0 [ 755.860901][T19655] CPU: 1 UID: 0 PID: 19655 Comm: syz.2.4369 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 755.871905][T19655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 755.881989][T19655] Call Trace: [ 755.885298][T19655] [ 755.888259][T19655] dump_stack_lvl+0x16c/0x1f0 [ 755.892969][T19655] should_fail_ex+0x497/0x5b0 [ 755.897675][T19655] ? fs_reclaim_acquire+0xae/0x150 [ 755.902821][T19655] should_failslab+0xc2/0x120 [ 755.907543][T19655] __kmalloc_cache_noprof+0x68/0x420 [ 755.912867][T19655] ? __might_fault+0xe3/0x190 [ 755.917588][T19655] mISDN_ioctl+0x411/0xa20 [ 755.922041][T19655] ? __pfx_mISDN_ioctl+0x10/0x10 [ 755.927019][T19655] __x64_sys_ioctl+0x190/0x200 [ 755.931823][T19655] do_syscall_64+0xcd/0x250 [ 755.936358][T19655] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 755.942290][T19655] RIP: 0033:0x7fc3f2b85d19 [ 755.946729][T19655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 755.966373][T19655] RSP: 002b:00007fc3f09f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 755.974820][T19655] RAX: ffffffffffffffda RBX: 00007fc3f2d75fa0 RCX: 00007fc3f2b85d19 [ 755.982797][T19655] RDX: 0000000020000140 RSI: 0000000080044940 RDI: 0000000000000003 [ 755.990767][T19655] RBP: 00007fc3f09f6090 R08: 0000000000000000 R09: 0000000000000000 [ 755.998743][T19655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 756.006713][T19655] R13: 0000000000000000 R14: 00007fc3f2d75fa0 R15: 00007ffd28d69ba8 [ 756.014709][T19655] [ 756.035992][T19660] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4368'. [ 756.045152][T19660] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 756.073946][T19660] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 756.606885][T19679] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4376'. [ 757.187243][T19704] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4385'. [ 757.271078][T19707] FAULT_INJECTION: forcing a failure. [ 757.271078][T19707] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 757.284823][T19707] CPU: 0 UID: 0 PID: 19707 Comm: syz.2.4386 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 757.295618][T19707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 757.305681][T19707] Call Trace: [ 757.308959][T19707] [ 757.311894][T19707] dump_stack_lvl+0x16c/0x1f0 [ 757.316581][T19707] should_fail_ex+0x497/0x5b0 [ 757.321271][T19707] _copy_to_user+0x32/0xd0 [ 757.325706][T19707] simple_read_from_buffer+0xd0/0x160 [ 757.331098][T19707] proc_fail_nth_read+0x198/0x270 [ 757.336138][T19707] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 757.341713][T19707] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 757.347271][T19707] vfs_readv+0x6bf/0x890 [ 757.351526][T19707] ? fdget_pos+0x267/0x390 [ 757.355956][T19707] ? __pfx_vfs_readv+0x10/0x10 [ 757.360719][T19707] ? __mutex_lock+0x1cc/0xa60 [ 757.365407][T19707] ? find_held_lock+0x2d/0x110 [ 757.370229][T19707] ? __pfx___mutex_lock+0x10/0x10 [ 757.375260][T19707] ? trace_lock_acquire+0x14e/0x1f0 [ 757.380486][T19707] ? __fget_files+0x206/0x3a0 [ 757.385178][T19707] ? do_readv+0x133/0x340 [ 757.389512][T19707] do_readv+0x133/0x340 [ 757.393677][T19707] ? __pfx_do_readv+0x10/0x10 [ 757.398368][T19707] do_syscall_64+0xcd/0x250 [ 757.402882][T19707] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 757.408783][T19707] RIP: 0033:0x7fc3f2b85d19 [ 757.413198][T19707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 757.432810][T19707] RSP: 002b:00007fc3f09f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 757.441226][T19707] RAX: ffffffffffffffda RBX: 00007fc3f2d75fa0 RCX: 00007fc3f2b85d19 [ 757.449201][T19707] RDX: 0000000000000001 RSI: 0000000020000a80 RDI: 0000000000000003 [ 757.457175][T19707] RBP: 00007fc3f09f6090 R08: 0000000000000000 R09: 0000000000000000 [ 757.465151][T19707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 757.473122][T19707] R13: 0000000000000000 R14: 00007fc3f2d75fa0 R15: 00007ffd28d69ba8 [ 757.481109][T19707] [ 757.761988][T19720] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4390'. [ 758.853665][T19747] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4396'. [ 759.421876][T19769] netlink: 330 bytes leftover after parsing attributes in process `syz.3.4402'. [ 759.820028][T19780] netlink: 40 bytes leftover after parsing attributes in process `syz.1.4409'. [ 760.624367][T19805] netlink: 338 bytes leftover after parsing attributes in process `syz.2.4419'. [ 761.631040][T19826] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [35] [ 762.753266][T19840] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4431'. [ 762.839158][T19844] FAULT_INJECTION: forcing a failure. [ 762.839158][T19844] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 762.870893][T19844] CPU: 0 UID: 0 PID: 19844 Comm: syz.3.4432 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 762.881982][T19844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 762.892048][T19844] Call Trace: [ 762.895328][T19844] [ 762.898259][T19844] dump_stack_lvl+0x16c/0x1f0 [ 762.902984][T19844] should_fail_ex+0x497/0x5b0 [ 762.907686][T19844] ? fs_reclaim_acquire+0xae/0x150 [ 762.912808][T19844] should_fail_alloc_page+0xe7/0x130 [ 762.918109][T19844] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 762.924275][T19844] __alloc_pages_noprof+0x190/0x25b0 [ 762.929575][T19844] ? __pfx_mark_lock+0x10/0x10 [ 762.934364][T19844] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 762.940092][T19844] ? hlock_class+0x4e/0x130 [ 762.944610][T19844] ? hlock_class+0x4e/0x130 [ 762.949139][T19844] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 762.955041][T19844] ? policy_nodemask+0xea/0x4e0 [ 762.959906][T19844] alloc_pages_mpol_noprof+0x2c9/0x610 [ 762.965386][T19844] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 762.971382][T19844] ? find_held_lock+0x2d/0x110 [ 762.976161][T19844] __pmd_alloc+0x3f/0x860 [ 762.980504][T19844] __handle_mm_fault+0x94a/0x2a40 [ 762.985561][T19844] ? __pfx___handle_mm_fault+0x10/0x10 [ 762.991040][T19844] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 762.996700][T19844] ? find_vma+0xc0/0x140 [ 763.000950][T19844] ? __pfx_find_vma+0x10/0x10 [ 763.005652][T19844] handle_mm_fault+0x3fa/0xaa0 [ 763.010448][T19844] do_user_addr_fault+0x7a3/0x13f0 [ 763.015589][T19844] exc_page_fault+0x5c/0xc0 [ 763.020104][T19844] asm_exc_page_fault+0x26/0x30 [ 763.024966][T19844] RIP: 0010:copy_iovec_from_user+0x84/0x170 [ 763.030876][T19844] Code: e8 41 ce 02 fd 4d 85 ff 0f 85 c6 00 00 00 e8 83 cc 02 fd 0f 01 cb 0f ae e8 49 bf 00 00 00 00 00 fc ff df e8 6e cc 02 fd 31 db <48> 8b 45 08 31 ff 89 de 49 89 c6 e8 9c ce 02 fd 85 db 0f 85 b1 00 [ 763.050504][T19844] RSP: 0018:ffffc9000ddcfb80 EFLAGS: 00050246 [ 763.056768][T19844] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff8496715f [ 763.064751][T19844] RDX: ffff88802793da00 RSI: ffffffff84967182 RDI: 0000000000000006 [ 763.072733][T19844] RBP: 0000000020000a80 R08: 0000000000000006 R09: 0000000020000a80 [ 763.080711][T19844] R10: 0000000020000a90 R11: 0000000000000000 R12: ffffc9000ddcfd80 [ 763.088689][T19844] R13: 0000000000000001 R14: 00007ffffffff000 R15: dffffc0000000000 [ 763.096671][T19844] ? copy_iovec_from_user+0x5f/0x170 [ 763.101971][T19844] ? copy_iovec_from_user+0x82/0x170 [ 763.107275][T19844] __import_iovec+0x4b6/0x6d0 [ 763.111966][T19844] ? __pfx_lock_release+0x10/0x10 [ 763.117012][T19844] import_iovec+0x108/0x140 [ 763.121532][T19844] vfs_readv+0x19b/0x890 [ 763.125785][T19844] ? __pfx_lock_release+0x10/0x10 [ 763.130828][T19844] ? proc_fail_nth_write+0xa0/0x250 [ 763.136053][T19844] ? __pfx_vfs_readv+0x10/0x10 [ 763.140828][T19844] ? vfs_write+0x306/0x1150 [ 763.145348][T19844] ? do_user_addr_fault+0xdc7/0x13f0 [ 763.150659][T19844] ? do_user_addr_fault+0xe50/0x13f0 [ 763.155958][T19844] ? __pfx_lock_release+0x10/0x10 [ 763.161003][T19844] ? do_readv+0x297/0x340 [ 763.165333][T19844] do_readv+0x297/0x340 [ 763.169491][T19844] ? __pfx_do_readv+0x10/0x10 [ 763.174177][T19844] do_syscall_64+0xcd/0x250 [ 763.178689][T19844] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 763.184596][T19844] RIP: 0033:0x7ff3fef85d19 [ 763.189010][T19844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 763.208618][T19844] RSP: 002b:00007ff3ffde5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 763.217039][T19844] RAX: ffffffffffffffda RBX: 00007ff3ff175fa0 RCX: 00007ff3fef85d19 [ 763.225016][T19844] RDX: 0000000000000001 RSI: 0000000020000a80 RDI: 0000000000000003 [ 763.232988][T19844] RBP: 00007ff3ffde5090 R08: 0000000000000000 R09: 0000000000000000 [ 763.240972][T19844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 763.248949][T19844] R13: 0000000000000000 R14: 00007ff3ff175fa0 R15: 00007fff73276498 [ 763.256944][T19844] [ 763.385333][T19846] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4433'. [ 763.710738][T19860] FAULT_INJECTION: forcing a failure. [ 763.710738][T19860] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 763.735118][T19858] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4437'. [ 763.737778][T19860] CPU: 1 UID: 0 PID: 19860 Comm: syz.3.4436 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 763.754861][T19860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 763.764935][T19860] Call Trace: [ 763.768229][T19860] [ 763.771177][T19860] dump_stack_lvl+0x16c/0x1f0 [ 763.775886][T19860] should_fail_ex+0x497/0x5b0 [ 763.780595][T19860] _copy_to_user+0x32/0xd0 [ 763.785048][T19860] simple_read_from_buffer+0xd0/0x160 [ 763.790468][T19860] proc_fail_nth_read+0x198/0x270 [ 763.795524][T19860] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 763.801090][T19860] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 763.806650][T19860] vfs_read+0x1df/0xbe0 [ 763.810816][T19860] ? __fget_files+0x1fc/0x3a0 [ 763.815503][T19860] ? __pfx___mutex_lock+0x10/0x10 [ 763.820534][T19860] ? __pfx_vfs_read+0x10/0x10 [ 763.825222][T19860] ? __fget_files+0x206/0x3a0 [ 763.829913][T19860] ksys_read+0x12b/0x250 [ 763.834163][T19860] ? __pfx_ksys_read+0x10/0x10 [ 763.838944][T19860] do_syscall_64+0xcd/0x250 [ 763.843459][T19860] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 763.849361][T19860] RIP: 0033:0x7ff3fef8472c [ 763.853778][T19860] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 763.873387][T19860] RSP: 002b:00007ff3ffdc4030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 763.881988][T19860] RAX: ffffffffffffffda RBX: 00007ff3ff176080 RCX: 00007ff3fef8472c [ 763.889986][T19860] RDX: 000000000000000f RSI: 00007ff3ffdc40a0 RDI: 0000000000000015 [ 763.897967][T19860] RBP: 00007ff3ffdc4090 R08: 0000000000000000 R09: 0000000000000000 [ 763.905940][T19860] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 763.913920][T19860] R13: 0000000000000000 R14: 00007ff3ff176080 R15: 00007fff73276498 [ 763.921924][T19860] [ 764.017858][T19862] [U] [ 764.021003][T19862] [U] [ 764.023745][T19862] [U] [ 764.026479][T19862] [U] [ 764.071121][T19862] [U] [ 764.073896][T19862] [U] [ 764.076637][T19862] [U] [ 764.079370][T19862] [U] [ 764.225895][T19868] [U] [ 764.228668][T19868] [U] [ 764.231399][T19868] [U] [ 764.234127][T19868] [U] [ 764.275510][T19868] [U] [ 764.278271][T19868] [U] [ 764.281001][T19868] [U] [ 764.283726][T19868] [U] [ 764.304365][T19870] FAULT_INJECTION: forcing a failure. [ 764.304365][T19870] name failslab, interval 1, probability 0, space 0, times 0 [ 764.317431][T19868] [U] [ 764.320179][T19868] [U] [ 764.322906][T19868] [U] [ 764.325631][T19868] [U] [ 764.351121][T19870] CPU: 1 UID: 0 PID: 19870 Comm: syz.2.4442 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 764.361933][T19870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 764.372012][T19870] Call Trace: [ 764.375310][T19870] [ 764.378261][T19870] dump_stack_lvl+0x16c/0x1f0 [ 764.382973][T19870] should_fail_ex+0x497/0x5b0 [ 764.387676][T19870] ? fs_reclaim_acquire+0xae/0x150 [ 764.392822][T19870] should_failslab+0xc2/0x120 [ 764.397532][T19870] __kmalloc_noprof+0xce/0x4f0 [ 764.402324][T19870] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 764.408153][T19870] ? scsi_ioctl_reset+0x136/0x850 [ 764.413208][T19870] scsi_ioctl_reset+0x136/0x850 [ 764.418087][T19870] scsi_ioctl+0x1221/0x1840 [ 764.421055][T19868] [U] [ 764.422614][T19870] ? __pfx___might_resched+0x10/0x10 [ 764.425309][T19868] [U] [ 764.430542][T19870] ? __pfx_scsi_ioctl+0x10/0x10 [ 764.433236][T19868] [U] [ 764.438036][T19870] ? scsi_block_when_processing_errors+0x2c1/0x380 [ 764.440724][T19868] [U] [ 764.447168][T19870] ? __pfx_scsi_block_when_processing_errors+0x10/0x10 [ 764.456810][T19870] sd_ioctl+0x1b1/0x2c0 [ 764.461005][T19870] ? __pfx_sd_ioctl+0x10/0x10 [ 764.461059][T19868] [U] [ 764.465697][T19870] blkdev_ioctl+0x273/0x670 [ 764.468390][T19868] [U] [ 764.472842][T19870] ? __pfx_blkdev_ioctl+0x10/0x10 [ 764.475541][T19868] [U] [ 764.480512][T19870] ? __fget_files+0x206/0x3a0 [ 764.483201][T19868] [U] [ 764.487832][T19870] ? __pfx_blkdev_ioctl+0x10/0x10 [ 764.495583][T19870] __x64_sys_ioctl+0x190/0x200 [ 764.500365][T19870] do_syscall_64+0xcd/0x250 [ 764.504963][T19870] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 764.510863][T19870] RIP: 0033:0x7fc3f2b85d19 [ 764.515280][T19870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 764.534891][T19870] RSP: 002b:00007fc3f09f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 764.543309][T19870] RAX: ffffffffffffffda RBX: 00007fc3f2d75fa0 RCX: 00007fc3f2b85d19 [ 764.551284][T19870] RDX: 0000000000000008 RSI: 0000000000002284 RDI: 0000000000000003 [ 764.559256][T19870] RBP: 00007fc3f09f6090 R08: 0000000000000000 R09: 0000000000000000 [ 764.567227][T19870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 764.575201][T19870] R13: 0000000000000000 R14: 00007fc3f2d75fa0 R15: 00007ffd28d69ba8 [ 764.583186][T19870] [ 764.588157][T19868] [U] [ 764.590901][T19868] [U] [ 764.593621][T19868] [U] [ 764.596338][T19868] [U] [ 764.631233][T19868] [U] [ 764.633998][T19868] [U] [ 764.636724][T19868] [U] [ 764.639447][T19868] [U] [ 764.660509][T19868] [U] [ 764.663280][T19868] [U] [ 764.666004][T19868] [U] [ 764.668727][T19868] [U] [ 764.796908][T19868] [U] [ 764.799853][T19868] [U] [ 764.802579][T19868] [U] [ 764.804241][T19879] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4445'. [ 764.805283][T19868] [U] [ 764.830056][T19868] [U] [ 764.832823][T19868] [U] [ 764.835546][T19868] [U] [ 764.838271][T19868] [U] [ 764.842204][T19868] [U] [ 764.844948][T19868] [U] [ 764.847675][T19868] [U] [ 764.850391][T19868] [U] [ 764.871610][T19868] [U] [ 764.874362][T19868] [U] [ 764.877097][T19868] [U] [ 764.879840][T19868] [U] [ 764.891663][T19868] [U] [ 764.894417][T19868] [U] [ 764.897150][T19868] [U] [ 764.899873][T19868] [U] [ 764.908982][T19868] [U] [ 764.911728][T19868] [U] [ 764.914456][T19868] [U] [ 764.917188][T19868] [U] [ 764.930349][T19868] [U] [ 764.933101][T19868] [U] [ 764.935831][T19868] [U] [ 764.938557][T19868] [U] [ 765.209631][T19895] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4450'. [ 765.560066][T19910] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4456'. [ 765.699215][T19913] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4459'. [ 765.756114][T19917] ima: policy update failed [ 765.765180][ T29] kauditd_printk_skb: 2 callbacks suppressed [ 765.765196][ T29] audit: type=1802 audit(4294968744.527:41): pid=19917 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.4461" res=0 errno=0 [ 765.823564][T19918] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4458'. [ 766.232717][T19943] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4467'. [ 767.101955][T19967] ima: policy update failed [ 767.201003][ T29] audit: type=1802 audit(4294968745.877:42): pid=19967 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.4473" res=0 errno=0 [ 768.566286][T19983] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4478'. [ 770.001202][T20008] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4488'. [ 771.921906][T20056] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4500'. [ 772.273412][T20054] netlink: 330 bytes leftover after parsing attributes in process `syz.2.4498'. [ 773.619764][T20106] netlink: 330 bytes leftover after parsing attributes in process `syz.3.4518'. [ 774.525638][T20139] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4531'. [ 774.581591][T20132] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4527'. [ 774.863252][T20147] FAULT_INJECTION: forcing a failure. [ 774.863252][T20147] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 774.880872][T20132] hsr_slave_0 (unregistering): left promiscuous mode [ 774.896139][T20147] CPU: 0 UID: 0 PID: 20147 Comm: syz.3.4534 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 774.906942][T20147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 774.917028][T20147] Call Trace: [ 774.920323][T20147] [ 774.923274][T20147] dump_stack_lvl+0x16c/0x1f0 [ 774.927979][T20147] should_fail_ex+0x497/0x5b0 [ 774.932690][T20147] _copy_to_user+0x32/0xd0 [ 774.937143][T20147] simple_read_from_buffer+0xd0/0x160 [ 774.942556][T20147] proc_fail_nth_read+0x198/0x270 [ 774.947615][T20147] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 774.953196][T20147] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 774.958777][T20147] vfs_read+0x1df/0xbe0 [ 774.962985][T20147] ? __fget_files+0x1fc/0x3a0 [ 774.967689][T20147] ? __pfx___mutex_lock+0x10/0x10 [ 774.972739][T20147] ? __pfx_vfs_read+0x10/0x10 [ 774.977450][T20147] ? __fget_files+0x206/0x3a0 [ 774.982168][T20147] ksys_read+0x12b/0x250 [ 774.986435][T20147] ? __pfx_ksys_read+0x10/0x10 [ 774.991236][T20147] do_syscall_64+0xcd/0x250 [ 774.995771][T20147] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 775.001688][T20147] RIP: 0033:0x7ff3fef8472c [ 775.006121][T20147] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 775.025759][T20147] RSP: 002b:00007ff3ffde5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 775.034206][T20147] RAX: ffffffffffffffda RBX: 00007ff3ff175fa0 RCX: 00007ff3fef8472c [ 775.042202][T20147] RDX: 000000000000000f RSI: 00007ff3ffde50a0 RDI: 0000000000000004 [ 775.050190][T20147] RBP: 00007ff3ffde5090 R08: 0000000000000000 R09: 0000000000000000 [ 775.058183][T20147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 775.066175][T20147] R13: 0000000000000000 R14: 00007ff3ff175fa0 R15: 00007fff73276498 [ 775.074188][T20147] [ 775.265522][ T5838] Bluetooth: hci4: command 0x0406 tx timeout [ 775.712377][T20166] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4541'. [ 775.828325][T20175] netlink: 36 bytes leftover after parsing attributes in process `syz.1.4545'. [ 775.870334][T20178] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4546'. [ 776.489849][T20195] netlink: 330 bytes leftover after parsing attributes in process `syz.3.4549'. [ 776.911667][T20208] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4554'. [ 777.352173][T20215] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4556'. [ 777.510620][T20215] hsr_slave_0 (unregistering): left promiscuous mode [ 778.387901][T20234] binder: 20232:20234 ioctl 541b 38 returned -22 [ 778.400978][T20233] binder: 20232:20233 ioctl 541b 38 returned -22 [ 781.632825][T20281] FAULT_INJECTION: forcing a failure. [ 781.632825][T20281] name failslab, interval 1, probability 0, space 0, times 0 [ 781.679887][T20281] CPU: 0 UID: 0 PID: 20281 Comm: syz.2.4577 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 781.690730][T20281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 781.700811][T20281] Call Trace: [ 781.704101][T20281] [ 781.707036][T20281] dump_stack_lvl+0x16c/0x1f0 [ 781.711724][T20281] should_fail_ex+0x497/0x5b0 [ 781.716406][T20281] ? fs_reclaim_acquire+0xae/0x150 [ 781.721524][T20281] should_failslab+0xc2/0x120 [ 781.726209][T20281] __kmalloc_cache_noprof+0x68/0x420 [ 781.731501][T20281] ? __mutex_trylock_common+0xea/0x250 [ 781.736968][T20281] snd_pcm_oss_change_params_locked+0x1d6/0x3a50 [ 781.743302][T20281] ? rcu_is_watching+0x12/0xc0 [ 781.748072][T20281] ? trace_contention_end+0xee/0x140 [ 781.753364][T20281] ? __mutex_lock+0x1cc/0xa60 [ 781.758058][T20281] ? __pfx___lock_acquire+0x10/0x10 [ 781.763289][T20281] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 781.770060][T20281] ? __pfx___mutex_lock+0x10/0x10 [ 781.775100][T20281] ? __might_fault+0x13b/0x190 [ 781.779881][T20281] snd_pcm_oss_make_ready+0xe6/0x1b0 [ 781.785191][T20281] snd_pcm_oss_set_trigger.isra.0+0x32/0x6b0 [ 781.791181][T20281] snd_pcm_oss_ioctl+0x1d00/0x3780 [ 781.796296][T20281] ? trace_lock_acquire+0x14e/0x1f0 [ 781.801506][T20281] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 781.806976][T20281] ? __fget_files+0x206/0x3a0 [ 781.811666][T20281] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 781.817133][T20281] __x64_sys_ioctl+0x190/0x200 [ 781.821916][T20281] do_syscall_64+0xcd/0x250 [ 781.826427][T20281] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 781.832325][T20281] RIP: 0033:0x7fc3f2b85d19 [ 781.836740][T20281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 781.856349][T20281] RSP: 002b:00007fc3f09f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 781.864786][T20281] RAX: ffffffffffffffda RBX: 00007fc3f2d75fa0 RCX: 00007fc3f2b85d19 [ 781.872770][T20281] RDX: 00000000200000c0 RSI: 0000000040045010 RDI: 0000000000000003 [ 781.880757][T20281] RBP: 00007fc3f09f6090 R08: 0000000000000000 R09: 0000000000000000 [ 781.888738][T20281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 781.896720][T20281] R13: 0000000000000000 R14: 00007fc3f2d75fa0 R15: 00007ffd28d69ba8 [ 781.904710][T20281] [ 782.104527][T20290] netlink: 36 bytes leftover after parsing attributes in process `syz.2.4580'. [ 782.268850][T20297] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4581'. [ 783.107266][T20323] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4596'. [ 783.728835][T20343] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4602'. [ 784.057670][T20349] netlink: 36 bytes leftover after parsing attributes in process `syz.3.4604'. [ 784.546676][T20357] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4606'. [ 785.080934][T20368] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4613'. [ 785.102054][T20368] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4613'. [ 785.292601][T20378] netlink: 334 bytes leftover after parsing attributes in process `syz.1.4615'. [ 785.324238][T20380] netlink: 334 bytes leftover after parsing attributes in process `syz.1.4615'. [ 786.153328][T20393] FAULT_INJECTION: forcing a failure. [ 786.153328][T20393] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 786.209150][T20393] CPU: 1 UID: 0 PID: 20393 Comm: syz.3.4620 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 786.219977][T20393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 786.230059][T20393] Call Trace: [ 786.233356][T20393] [ 786.236309][T20393] dump_stack_lvl+0x16c/0x1f0 [ 786.241019][T20393] should_fail_ex+0x497/0x5b0 [ 786.245730][T20393] _copy_to_user+0x32/0xd0 [ 786.250184][T20393] simple_read_from_buffer+0xd0/0x160 [ 786.255598][T20393] proc_fail_nth_read+0x198/0x270 [ 786.260663][T20393] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 786.266253][T20393] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 786.271841][T20393] vfs_read+0x1df/0xbe0 [ 786.276027][T20393] ? reacquire_held_locks+0x20b/0x4c0 [ 786.281438][T20393] ? do_user_addr_fault+0xdc7/0x13f0 [ 786.286760][T20393] ? __pfx_vfs_read+0x10/0x10 [ 786.291462][T20393] ? find_held_lock+0x59/0x110 [ 786.296265][T20393] ? find_held_lock+0x2d/0x110 [ 786.301058][T20393] ? do_user_addr_fault+0xe50/0x13f0 [ 786.306382][T20393] ? __pfx_lock_release+0x10/0x10 [ 786.311446][T20393] ksys_read+0x12b/0x250 [ 786.315710][T20393] ? __pfx_ksys_read+0x10/0x10 [ 786.320486][T20393] do_syscall_64+0xcd/0x250 [ 786.324997][T20393] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 786.330907][T20393] RIP: 0033:0x7ff3fef8472c [ 786.335334][T20393] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 786.354947][T20393] RSP: 002b:00007ff3ffde5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 786.363372][T20393] RAX: ffffffffffffffda RBX: 00007ff3ff175fa0 RCX: 00007ff3fef8472c [ 786.371349][T20393] RDX: 000000000000000f RSI: 00007ff3ffde50a0 RDI: 000000000000000a [ 786.379332][T20393] RBP: 00007ff3ffde5090 R08: 0000000000000000 R09: 0000000000000000 [ 786.387305][T20393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 786.395275][T20393] R13: 0000000000000000 R14: 00007ff3ff175fa0 R15: 00007fff73276498 [ 786.403262][T20393] [ 788.151140][T20406] __nla_validate_parse: 2 callbacks suppressed [ 788.151165][T20406] netlink: 330 bytes leftover after parsing attributes in process `syz.2.4623'. [ 788.192760][T20427] FAULT_INJECTION: forcing a failure. [ 788.192760][T20427] name failslab, interval 1, probability 0, space 0, times 0 [ 788.289817][T20427] CPU: 1 UID: 0 PID: 20427 Comm: syz.3.4630 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 788.300641][T20427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 788.310721][T20427] Call Trace: [ 788.314020][T20427] [ 788.316974][T20427] dump_stack_lvl+0x16c/0x1f0 [ 788.321683][T20427] should_fail_ex+0x497/0x5b0 [ 788.326394][T20427] ? fs_reclaim_acquire+0xae/0x150 [ 788.331549][T20427] should_failslab+0xc2/0x120 [ 788.336263][T20427] __kmalloc_cache_noprof+0x68/0x420 [ 788.341585][T20427] ? kasan_save_track+0x14/0x30 [ 788.346471][T20427] snd_pcm_oss_change_params_locked+0x242/0x3a50 [ 788.352839][T20427] ? snd_pcm_oss_write+0x482/0xa00 [ 788.357990][T20427] ? rcu_is_watching+0x12/0xc0 [ 788.362782][T20427] ? trace_contention_end+0xee/0x140 [ 788.368092][T20427] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 788.374888][T20427] ? snd_pcm_oss_write+0x482/0xa00 [ 788.380040][T20427] ? __lock_acquire+0xcc5/0x3c40 [ 788.385028][T20427] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 788.390952][T20427] snd_pcm_oss_write+0x4a3/0xa00 [ 788.395914][T20427] ? security_file_permission+0x71/0x210 [ 788.401575][T20427] ? rw_verify_area+0xd0/0x700 [ 788.406370][T20427] ? __pfx_snd_pcm_oss_write+0x10/0x10 [ 788.411861][T20427] vfs_write+0x24c/0x1150 [ 788.416225][T20427] ? __fget_files+0x1fc/0x3a0 [ 788.420934][T20427] ? __pfx_lock_release+0x10/0x10 [ 788.426002][T20427] ? __pfx_vfs_write+0x10/0x10 [ 788.430791][T20427] ? lock_acquire+0x2f/0xb0 [ 788.435313][T20427] ? __fget_files+0x40/0x3a0 [ 788.439934][T20427] ? __fget_files+0x206/0x3a0 [ 788.444653][T20427] ksys_write+0x12b/0x250 [ 788.449012][T20427] ? __pfx_ksys_write+0x10/0x10 [ 788.453901][T20427] do_syscall_64+0xcd/0x250 [ 788.458440][T20427] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 788.464362][T20427] RIP: 0033:0x7ff3fef85d19 [ 788.468799][T20427] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 788.488435][T20427] RSP: 002b:00007ff3ffde5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 788.496878][T20427] RAX: ffffffffffffffda RBX: 00007ff3ff175fa0 RCX: 00007ff3fef85d19 [ 788.504872][T20427] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 788.512866][T20427] RBP: 00007ff3ffde5090 R08: 0000000000000000 R09: 0000000000000000 [ 788.520864][T20427] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 788.528855][T20427] R13: 0000000000000000 R14: 00007ff3ff175fa0 R15: 00007fff73276498 [ 788.536863][T20427] [ 788.730406][T20430] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4631'. [ 789.255739][T20441] can: request_module (can-proto-0) failed. [ 789.405645][T20448] netlink: 36 bytes leftover after parsing attributes in process `syz.0.4636'. [ 790.484087][T20466] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4643'. [ 792.080928][T20485] netlink: 36 bytes leftover after parsing attributes in process `syz.1.4647'. [ 794.745396][T20506] debugfs: Directory '!' with parent 'ieee80211' already present! [ 795.182866][T20517] netlink: 36 bytes leftover after parsing attributes in process `syz.2.4654'. [ 795.422913][T20522] FAULT_INJECTION: forcing a failure. [ 795.422913][T20522] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 795.510927][T20522] CPU: 0 UID: 0 PID: 20522 Comm: syz.3.4653 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 795.521770][T20522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 795.531848][T20522] Call Trace: [ 795.535148][T20522] [ 795.538102][T20522] dump_stack_lvl+0x16c/0x1f0 [ 795.542817][T20522] should_fail_ex+0x497/0x5b0 [ 795.547531][T20522] _copy_from_user+0x2e/0xd0 [ 795.552157][T20522] cec_ioctl+0x6b8/0x2800 [ 795.556520][T20522] ? __pfx_cec_ioctl+0x10/0x10 [ 795.561312][T20522] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 795.567333][T20522] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 795.573256][T20522] ? do_vfs_ioctl+0x513/0x1950 [ 795.578056][T20522] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 795.583136][T20522] ? __pfx_lock_release+0x10/0x10 [ 795.588198][T20522] ? trace_lock_acquire+0x14e/0x1f0 [ 795.593437][T20522] ? __fget_files+0x206/0x3a0 [ 795.598147][T20522] ? __pfx_cec_ioctl+0x10/0x10 [ 795.602939][T20522] __x64_sys_ioctl+0x190/0x200 [ 795.607751][T20522] do_syscall_64+0xcd/0x250 [ 795.612287][T20522] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 795.618210][T20522] RIP: 0033:0x7ff3fef85d19 [ 795.622648][T20522] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 795.642279][T20522] RSP: 002b:00007ff3ffde5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 795.650718][T20522] RAX: ffffffffffffffda RBX: 00007ff3ff175fa0 RCX: 00007ff3fef85d19 [ 795.658718][T20522] RDX: 0000000000000000 RSI: 0000000040046109 RDI: 0000000000000003 [ 795.666716][T20522] RBP: 00007ff3ffde5090 R08: 0000000000000000 R09: 0000000000000000 [ 795.674711][T20522] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 795.682704][T20522] R13: 0000000000000000 R14: 00007ff3ff175fa0 R15: 00007fff73276498 [ 795.690716][T20522] [ 795.994556][T20528] netlink: 36 bytes leftover after parsing attributes in process `syz.3.4658'. [ 796.012783][T20515] debugfs: Directory '!' with parent 'ieee80211' already present! [ 796.369430][T20538] FAULT_INJECTION: forcing a failure. [ 796.369430][T20538] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 796.441205][T20538] CPU: 0 UID: 0 PID: 20538 Comm: syz.2.4662 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 796.452027][T20538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 796.462110][T20538] Call Trace: [ 796.465393][T20538] [ 796.468324][T20538] dump_stack_lvl+0x16c/0x1f0 [ 796.473013][T20538] should_fail_ex+0x497/0x5b0 [ 796.477703][T20538] _copy_from_user+0x2e/0xd0 [ 796.482311][T20538] do_sys_poll+0x1d6/0xde0 [ 796.486736][T20538] ? __pfx_mark_lock+0x10/0x10 [ 796.491518][T20538] ? __pfx_do_sys_poll+0x10/0x10 [ 796.496480][T20538] ? __pfx___lock_acquire+0x10/0x10 [ 796.501741][T20538] ? __mutex_unlock_slowpath+0x164/0x690 [ 796.507387][T20538] ? set_user_sigmask+0x217/0x2a0 [ 796.512417][T20538] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 796.518406][T20538] ? __pfx_set_user_sigmask+0x10/0x10 [ 796.523783][T20538] ? __fget_files+0x206/0x3a0 [ 796.528468][T20538] __x64_sys_ppoll+0x25a/0x2d0 [ 796.533242][T20538] ? __pfx___x64_sys_ppoll+0x10/0x10 [ 796.538532][T20538] ? ksys_write+0x1ba/0x250 [ 796.543044][T20538] ? __pfx_ksys_write+0x10/0x10 [ 796.547906][T20538] do_syscall_64+0xcd/0x250 [ 796.552451][T20538] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 796.558355][T20538] RIP: 0033:0x7fc3f2b85d19 [ 796.562776][T20538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 796.582390][T20538] RSP: 002b:00007fc3f09f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000010f [ 796.590812][T20538] RAX: ffffffffffffffda RBX: 00007fc3f2d75fa0 RCX: 00007fc3f2b85d19 [ 796.598791][T20538] RDX: 0000000000000000 RSI: 000000000000007f RDI: 0000000020000140 [ 796.606776][T20538] RBP: 00007fc3f09f6090 R08: 0000000000000008 R09: 0000000000000000 [ 796.614754][T20538] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 796.622727][T20538] R13: 0000000000000000 R14: 00007fc3f2d75fa0 R15: 00007ffd28d69ba8 [ 796.630714][T20538] [ 796.692695][T20543] FAULT_INJECTION: forcing a failure. [ 796.692695][T20543] name failslab, interval 1, probability 0, space 0, times 0 [ 796.726172][T20543] CPU: 0 UID: 0 PID: 20543 Comm: syz.3.4664 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 796.736998][T20543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 796.747078][T20543] Call Trace: [ 796.750379][T20543] [ 796.753332][T20543] dump_stack_lvl+0x16c/0x1f0 [ 796.758054][T20543] should_fail_ex+0x497/0x5b0 [ 796.762770][T20543] ? fs_reclaim_acquire+0xae/0x150 [ 796.767919][T20543] should_failslab+0xc2/0x120 [ 796.772649][T20543] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 796.778064][T20543] ? alloc_empty_file+0x73/0x1e0 [ 796.783048][T20543] alloc_empty_file+0x73/0x1e0 [ 796.787852][T20543] path_openat+0xe1/0x2d60 [ 796.792298][T20543] ? hlock_class+0x4e/0x130 [ 796.796839][T20543] ? __lock_acquire+0x15a9/0x3c40 [ 796.801912][T20543] ? __pfx_path_openat+0x10/0x10 [ 796.806889][T20543] ? __pfx___lock_acquire+0x10/0x10 [ 796.812134][T20543] ? lock_acquire.part.0+0x11b/0x380 [ 796.817446][T20543] ? find_held_lock+0x2d/0x110 [ 796.822260][T20543] do_filp_open+0x20c/0x470 [ 796.826796][T20543] ? __pfx_do_filp_open+0x10/0x10 [ 796.831852][T20543] ? find_held_lock+0x2d/0x110 [ 796.836674][T20543] ? alloc_fd+0x41f/0x760 [ 796.841050][T20543] do_sys_openat2+0x17a/0x1e0 [ 796.845772][T20543] ? __pfx_do_sys_openat2+0x10/0x10 [ 796.851012][T20543] ? do_user_addr_fault+0xe50/0x13f0 [ 796.856337][T20543] ? __pfx_lock_release+0x10/0x10 [ 796.861411][T20543] __x64_sys_openat+0x175/0x210 [ 796.866302][T20543] ? __pfx___x64_sys_openat+0x10/0x10 [ 796.871718][T20543] ? do_user_addr_fault+0x83d/0x13f0 [ 796.877056][T20543] do_syscall_64+0xcd/0x250 [ 796.881607][T20543] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 796.887534][T20543] RIP: 0033:0x7ff3fef85d19 [ 796.891975][T20543] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 796.911701][T20543] RSP: 002b:00007ff3ffde5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 796.920151][T20543] RAX: ffffffffffffffda RBX: 00007ff3ff175fa0 RCX: 00007ff3fef85d19 [ 796.928149][T20543] RDX: 0000000000123403 RSI: 00000000200000c0 RDI: ffffffffffffff9c [ 796.936147][T20543] RBP: 00007ff3ffde5090 R08: 0000000000000000 R09: 0000000000000000 [ 796.944145][T20543] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 796.952142][T20543] R13: 0000000000000001 R14: 00007ff3ff175fa0 R15: 00007fff73276498 [ 796.960159][T20543] [ 797.482699][T20547] sysfs: cannot create duplicate filename '/class/ieee80211/!' [ 797.490712][T20547] CPU: 0 UID: 0 PID: 20547 Comm: syz.0.4666 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 797.501517][T20547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 797.511603][T20547] Call Trace: [ 797.514490][T20554] FAULT_INJECTION: forcing a failure. [ 797.514490][T20554] name failslab, interval 1, probability 0, space 0, times 0 [ 797.514884][T20547] [ 797.530434][T20547] dump_stack_lvl+0x16c/0x1f0 [ 797.535155][T20547] sysfs_warn_dup+0x7f/0xa0 [ 797.539711][T20547] sysfs_do_create_link_sd+0x124/0x140 [ 797.545221][T20547] sysfs_create_link+0x61/0xc0 [ 797.550034][T20547] device_add+0x62e/0x1a70 [ 797.554504][T20547] ? __pfx_device_add+0x10/0x10 [ 797.559400][T20547] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 797.565333][T20547] ? ieee80211_set_bitrate_flags+0x249/0x6a0 [ 797.571370][T20547] wiphy_register+0x1c7a/0x2860 [ 797.576259][T20547] ? netdev_run_todo+0x837/0x12d0 [ 797.581336][T20547] ? __pfx_wiphy_register+0x10/0x10 [ 797.586593][T20547] ieee80211_register_hw+0x2951/0x3fa0 [ 797.592103][T20547] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 797.597945][T20547] ? net_generic+0xea/0x2a0 [ 797.602493][T20547] ? lockdep_init_map_type+0x16d/0x7d0 [ 797.607991][T20547] ? rcu_is_watching+0x12/0xc0 [ 797.612797][T20547] ? trace_hrtimer_init+0x1a6/0x230 [ 797.618037][T20547] ? __hrtimer_init+0x106/0x2c0 [ 797.622929][T20547] mac80211_hwsim_new_radio+0x2c47/0x56c0 [ 797.628719][T20547] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 797.634831][T20547] ? hwsim_new_radio_nl+0x9ff/0x12b0 [ 797.640177][T20547] hwsim_new_radio_nl+0xb42/0x12b0 [ 797.645331][T20547] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 797.650922][T20547] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 797.658327][T20547] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 797.665744][T20547] genl_family_rcv_msg_doit+0x202/0x2f0 [ 797.671330][T20547] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 797.677434][T20547] ? genl_get_cmd+0x195/0x580 [ 797.682168][T20547] ? bpf_lsm_capable+0x9/0x10 [ 797.686890][T20547] ? security_capable+0x7e/0x260 [ 797.691875][T20547] ? ns_capable+0xd7/0x110 [ 797.696331][T20547] genl_rcv_msg+0x565/0x800 [ 797.700881][T20547] ? __pfx_genl_rcv_msg+0x10/0x10 [ 797.705947][T20547] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 797.711560][T20547] netlink_rcv_skb+0x165/0x410 [ 797.716360][T20547] ? __pfx_genl_rcv_msg+0x10/0x10 [ 797.721428][T20547] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 797.726760][T20547] ? down_read+0xc9/0x330 [ 797.731125][T20547] ? __pfx_down_read+0x10/0x10 [ 797.735935][T20547] ? netlink_deliver_tap+0x1ae/0xca0 [ 797.741274][T20547] genl_rcv+0x28/0x40 [ 797.745286][T20547] netlink_unicast+0x53c/0x7f0 [ 797.750083][T20547] ? __pfx_netlink_unicast+0x10/0x10 [ 797.755403][T20547] ? __phys_addr_symbol+0x30/0x80 [ 797.760479][T20547] ? __check_object_size+0x488/0x710 [ 797.765808][T20547] netlink_sendmsg+0x8b8/0xd70 [ 797.770612][T20547] ? __pfx_netlink_sendmsg+0x10/0x10 [ 797.775949][T20547] ____sys_sendmsg+0x9ae/0xb40 [ 797.780747][T20547] ? copy_msghdr_from_user+0x10b/0x160 [ 797.786243][T20547] ? __pfx_____sys_sendmsg+0x10/0x10 [ 797.791574][T20547] ___sys_sendmsg+0x135/0x1e0 [ 797.796294][T20547] ? __pfx____sys_sendmsg+0x10/0x10 [ 797.801542][T20547] ? __pfx_lock_release+0x10/0x10 [ 797.806616][T20547] ? trace_lock_acquire+0x14e/0x1f0 [ 797.811869][T20547] ? __fget_files+0x206/0x3a0 [ 797.816592][T20547] __sys_sendmsg+0x16e/0x220 [ 797.821231][T20547] ? __pfx___sys_sendmsg+0x10/0x10 [ 797.826385][T20547] ? __x64_sys_futex+0x1e1/0x4c0 [ 797.831384][T20547] do_syscall_64+0xcd/0x250 [ 797.835922][T20547] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 797.841858][T20547] RIP: 0033:0x7fc374b85d19 [ 797.846305][T20547] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 797.865967][T20547] RSP: 002b:00007fc375a7c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 797.874414][T20547] RAX: ffffffffffffffda RBX: 00007fc374d75fa0 RCX: 00007fc374b85d19 [ 797.882417][T20547] RDX: 0000000004000800 RSI: 0000000020000e00 RDI: 0000000000000004 [ 797.890421][T20547] RBP: 00007fc374c01a20 R08: 0000000000000000 R09: 0000000000000000 [ 797.898421][T20547] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 797.906415][T20547] R13: 0000000000000000 R14: 00007fc374d75fa0 R15: 00007fffa3141648 [ 797.914439][T20547] [ 797.917480][T20554] CPU: 1 UID: 0 PID: 20554 Comm: syz.2.4669 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 797.928275][T20554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 797.938345][T20554] Call Trace: [ 797.941641][T20554] [ 797.944595][T20554] dump_stack_lvl+0x16c/0x1f0 [ 797.949307][T20554] should_fail_ex+0x497/0x5b0 [ 797.954010][T20554] ? fs_reclaim_acquire+0xae/0x150 [ 797.959131][T20554] should_failslab+0xc2/0x120 [ 797.963820][T20554] __kmalloc_noprof+0xce/0x4f0 [ 797.968600][T20554] ? d_absolute_path+0x137/0x1b0 [ 797.973551][T20554] ? tomoyo_encode2+0x100/0x3e0 [ 797.978416][T20554] tomoyo_encode2+0x100/0x3e0 [ 797.983103][T20554] tomoyo_realpath_from_path+0x1a7/0x710 [ 797.988757][T20554] tomoyo_path_number_perm+0x248/0x5b0 [ 797.994254][T20554] ? tomoyo_path_number_perm+0x235/0x5b0 [ 797.999910][T20554] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 798.005929][T20554] ? __pfx_lock_release+0x10/0x10 [ 798.010973][T20554] ? trace_lock_acquire+0x14e/0x1f0 [ 798.016195][T20554] ? lock_acquire+0x2f/0xb0 [ 798.020700][T20554] ? __fget_files+0x40/0x3a0 [ 798.025309][T20554] ? __fget_files+0x206/0x3a0 [ 798.030002][T20554] security_file_ioctl+0x9b/0x240 [ 798.035033][T20554] __x64_sys_ioctl+0xb7/0x200 [ 798.039729][T20554] do_syscall_64+0xcd/0x250 [ 798.044245][T20554] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 798.050143][T20554] RIP: 0033:0x7fc3f2b85d19 [ 798.054564][T20554] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 798.074180][T20554] RSP: 002b:00007fc3f09f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 798.082597][T20554] RAX: ffffffffffffffda RBX: 00007fc3f2d75fa0 RCX: 00007fc3f2b85d19 [ 798.090578][T20554] RDX: 0000000020000000 RSI: 0000000000000001 RDI: 0000000000000003 [ 798.098550][T20554] RBP: 00007fc3f09f6090 R08: 0000000000000000 R09: 0000000000000000 [ 798.106526][T20554] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 798.114511][T20554] R13: 0000000000000000 R14: 00007fc3f2d75fa0 R15: 00007ffd28d69ba8 [ 798.122517][T20554] [ 798.366819][T20558] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 798.375760][T20554] ERROR: Out of memory at tomoyo_realpath_from_path. [ 798.412814][T20558] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 798.417833][T20561] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4672'. [ 798.420667][T20554] program syz.2.4669 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 798.857712][T20567] FAULT_INJECTION: forcing a failure. [ 798.857712][T20567] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 798.966666][T20567] CPU: 1 UID: 0 PID: 20567 Comm: syz.2.4674 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 798.977522][T20567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 798.987608][T20567] Call Trace: [ 798.990903][T20567] [ 798.993852][T20567] dump_stack_lvl+0x16c/0x1f0 [ 798.998592][T20567] should_fail_ex+0x497/0x5b0 [ 799.003319][T20567] _copy_to_user+0x32/0xd0 [ 799.007782][T20567] simple_read_from_buffer+0xd0/0x160 [ 799.013206][T20567] proc_fail_nth_read+0x198/0x270 [ 799.018279][T20567] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 799.023869][T20567] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 799.029455][T20567] vfs_read+0x1df/0xbe0 [ 799.033645][T20567] ? __fget_files+0x1fc/0x3a0 [ 799.038357][T20567] ? __pfx___mutex_lock+0x10/0x10 [ 799.043410][T20567] ? __pfx_vfs_read+0x10/0x10 [ 799.048129][T20567] ? __fget_files+0x206/0x3a0 [ 799.052854][T20567] ksys_read+0x12b/0x250 [ 799.057134][T20567] ? __pfx_ksys_read+0x10/0x10 [ 799.061944][T20567] do_syscall_64+0xcd/0x250 [ 799.066493][T20567] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 799.072425][T20567] RIP: 0033:0x7fc3f2b8472c [ 799.076860][T20567] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 799.096476][T20567] RSP: 002b:00007fc3f09f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 799.104898][T20567] RAX: ffffffffffffffda RBX: 00007fc3f2d75fa0 RCX: 00007fc3f2b8472c [ 799.112875][T20567] RDX: 000000000000000f RSI: 00007fc3f09f60a0 RDI: 0000000000000004 [ 799.120852][T20567] RBP: 00007fc3f09f6090 R08: 0000000000000000 R09: 0000000000000000 [ 799.128832][T20567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 799.136809][T20567] R13: 0000000000000000 R14: 00007fc3f2d75fa0 R15: 00007ffd28d69ba8 [ 799.144801][T20567] [ 799.336791][T20569] sysfs: cannot create duplicate filename '/class/ieee80211/!' [ 799.370342][T20569] CPU: 0 UID: 0 PID: 20569 Comm: syz.1.4677 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 799.381174][T20569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 799.391267][T20569] Call Trace: [ 799.394568][T20569] [ 799.397524][T20569] dump_stack_lvl+0x16c/0x1f0 [ 799.402249][T20569] sysfs_warn_dup+0x7f/0xa0 [ 799.406798][T20569] sysfs_do_create_link_sd+0x124/0x140 [ 799.412307][T20569] sysfs_create_link+0x61/0xc0 [ 799.417122][T20569] device_add+0x62e/0x1a70 [ 799.421589][T20569] ? __pfx_device_add+0x10/0x10 [ 799.426486][T20569] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 799.432427][T20569] ? ieee80211_set_bitrate_flags+0x249/0x6a0 [ 799.438463][T20569] wiphy_register+0x1c7a/0x2860 [ 799.443359][T20569] ? netdev_run_todo+0x837/0x12d0 [ 799.448438][T20569] ? __pfx_wiphy_register+0x10/0x10 [ 799.453696][T20569] ieee80211_register_hw+0x2951/0x3fa0 [ 799.459208][T20569] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 799.465047][T20569] ? net_generic+0xea/0x2a0 [ 799.469600][T20569] ? lockdep_init_map_type+0x16d/0x7d0 [ 799.475100][T20569] ? rcu_is_watching+0x12/0xc0 [ 799.479902][T20569] ? trace_hrtimer_init+0x1a6/0x230 [ 799.485138][T20569] ? __hrtimer_init+0x106/0x2c0 [ 799.490031][T20569] mac80211_hwsim_new_radio+0x2c47/0x56c0 [ 799.495827][T20569] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 799.501946][T20569] ? hwsim_new_radio_nl+0x9ff/0x12b0 [ 799.507285][T20569] hwsim_new_radio_nl+0xb42/0x12b0 [ 799.512447][T20569] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 799.518060][T20569] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 799.525474][T20569] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 799.532901][T20569] genl_family_rcv_msg_doit+0x202/0x2f0 [ 799.538491][T20569] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 799.544618][T20569] ? genl_get_cmd+0x195/0x580 [ 799.549339][T20569] ? bpf_lsm_capable+0x9/0x10 [ 799.554052][T20569] ? security_capable+0x7e/0x260 [ 799.559037][T20569] ? ns_capable+0xd7/0x110 [ 799.563496][T20569] genl_rcv_msg+0x565/0x800 [ 799.568058][T20569] ? __pfx_genl_rcv_msg+0x10/0x10 [ 799.573127][T20569] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 799.578737][T20569] netlink_rcv_skb+0x165/0x410 [ 799.583551][T20569] ? __pfx_genl_rcv_msg+0x10/0x10 [ 799.588625][T20569] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 799.593961][T20569] ? down_read+0xc9/0x330 [ 799.598329][T20569] ? __pfx_down_read+0x10/0x10 [ 799.603136][T20569] ? netlink_deliver_tap+0x1ae/0xca0 [ 799.608566][T20569] genl_rcv+0x28/0x40 [ 799.612583][T20569] netlink_unicast+0x53c/0x7f0 [ 799.617391][T20569] ? __pfx_netlink_unicast+0x10/0x10 [ 799.622718][T20569] ? __phys_addr_symbol+0x30/0x80 [ 799.627780][T20569] ? __check_object_size+0x488/0x710 [ 799.633113][T20569] netlink_sendmsg+0x8b8/0xd70 [ 799.637919][T20569] ? __pfx_netlink_sendmsg+0x10/0x10 [ 799.643253][T20569] ____sys_sendmsg+0x9ae/0xb40 [ 799.648047][T20569] ? copy_msghdr_from_user+0x10b/0x160 [ 799.653551][T20569] ? __pfx_____sys_sendmsg+0x10/0x10 [ 799.658890][T20569] ___sys_sendmsg+0x135/0x1e0 [ 799.663614][T20569] ? __pfx____sys_sendmsg+0x10/0x10 [ 799.668875][T20569] ? __pfx_lock_release+0x10/0x10 [ 799.673946][T20569] ? trace_lock_acquire+0x14e/0x1f0 [ 799.679202][T20569] ? __fget_files+0x206/0x3a0 [ 799.683929][T20569] __sys_sendmsg+0x16e/0x220 [ 799.688563][T20569] ? __pfx___sys_sendmsg+0x10/0x10 [ 799.693715][T20569] ? __x64_sys_futex+0x1e1/0x4c0 [ 799.698720][T20569] do_syscall_64+0xcd/0x250 [ 799.703265][T20569] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 799.709193][T20569] RIP: 0033:0x7f5257f85d19 [ 799.713638][T20569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 799.733279][T20569] RSP: 002b:00007f5258d6b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 799.741729][T20569] RAX: ffffffffffffffda RBX: 00007f5258175fa0 RCX: 00007f5257f85d19 [ 799.749727][T20569] RDX: 0000000004000800 RSI: 0000000020000e00 RDI: 0000000000000004 [ 799.757728][T20569] RBP: 00007f5258001a20 R08: 0000000000000000 R09: 0000000000000000 [ 799.765728][T20569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 799.773727][T20569] R13: 0000000000000000 R14: 00007f5258175fa0 R15: 00007ffc883aff68 [ 799.781755][T20569] [ 800.923508][T20579] netlink: 330 bytes leftover after parsing attributes in process `syz.3.4678'. [ 801.102191][T20583] [ 801.104578][T20583] ====================================================== [ 801.111688][T20583] WARNING: possible circular locking dependency detected [ 801.118721][T20583] 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 Not tainted [ 801.125848][T20583] ------------------------------------------------------ [ 801.132878][T20583] syz.2.4681/20583 is trying to acquire lock: [ 801.138958][T20583] ffffffff8fabdbc8 (rtnl_mutex){+.+.}-{4:4}, at: do_ipv6_setsockopt+0x1f4d/0x4660 [ 801.148233][T20583] [ 801.148233][T20583] but task is already holding lock: [ 801.155609][T20583] ffff888079bf21a8 (&smc->clcsock_release_lock){+.+.}-{4:4}, at: smc_setsockopt+0x101/0xc00 [ 801.165757][T20583] [ 801.165757][T20583] which lock already depends on the new lock. [ 801.165757][T20583] [ 801.176177][T20583] [ 801.176177][T20583] the existing dependency chain (in reverse order) is: [ 801.185202][T20583] [ 801.185202][T20583] -> #2 (&smc->clcsock_release_lock){+.+.}-{4:4}: [ 801.193837][T20583] __mutex_lock+0x19b/0xa60 [ 801.198891][T20583] smc_switch_to_fallback+0x2d/0xa00 [ 801.204732][T20583] smc_sendmsg+0x13d/0x520 [ 801.209699][T20583] ____sys_sendmsg+0x9ae/0xb40 [ 801.215004][T20583] ___sys_sendmsg+0x135/0x1e0 [ 801.220213][T20583] __sys_sendmsg+0x16e/0x220 [ 801.225332][T20583] do_syscall_64+0xcd/0x250 [ 801.230375][T20583] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 801.236796][T20583] [ 801.236796][T20583] -> #1 (sk_lock-AF_INET){+.+.}-{0:0}: [ 801.244448][T20583] lock_sock_nested+0x3a/0xf0 [ 801.249654][T20583] sockopt_lock_sock+0x54/0x70 [ 801.254945][T20583] do_ip_getsockopt+0x115c/0x2bf0 [ 801.260492][T20583] ip_getsockopt+0x9c/0x1e0 [ 801.265516][T20583] raw_getsockopt+0x4d/0x1e0 [ 801.270640][T20583] do_sock_getsockopt+0x3fe/0x870 [ 801.276194][T20583] __sys_getsockopt+0x12f/0x260 [ 801.281573][T20583] __x64_sys_getsockopt+0xbd/0x160 [ 801.287207][T20583] do_syscall_64+0xcd/0x250 [ 801.292230][T20583] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 801.298645][T20583] [ 801.298645][T20583] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 801.305859][T20583] __lock_acquire+0x249e/0x3c40 [ 801.311244][T20583] lock_acquire.part.0+0x11b/0x380 [ 801.316885][T20583] __mutex_lock+0x19b/0xa60 [ 801.321912][T20583] do_ipv6_setsockopt+0x1f4d/0x4660 [ 801.327634][T20583] ipv6_setsockopt+0xcb/0x170 [ 801.332833][T20583] tcp_setsockopt+0xa4/0x100 [ 801.337946][T20583] smc_setsockopt+0x1b4/0xc00 [ 801.343152][T20583] do_sock_setsockopt+0x222/0x480 [ 801.348712][T20583] __sys_setsockopt+0x1a0/0x230 [ 801.354085][T20583] __x64_sys_setsockopt+0xbd/0x160 [ 801.359721][T20583] do_syscall_64+0xcd/0x250 [ 801.364747][T20583] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 801.371166][T20583] [ 801.371166][T20583] other info that might help us debug this: [ 801.371166][T20583] [ 801.381399][T20583] Chain exists of: [ 801.381399][T20583] rtnl_mutex --> sk_lock-AF_INET --> &smc->clcsock_release_lock [ 801.381399][T20583] [ 801.394960][T20583] Possible unsafe locking scenario: [ 801.394960][T20583] [ 801.402396][T20583] CPU0 CPU1 [ 801.407750][T20583] ---- ---- [ 801.413109][T20583] lock(&smc->clcsock_release_lock); [ 801.418482][T20583] lock(sk_lock-AF_INET); [ 801.425424][T20583] lock(&smc->clcsock_release_lock); [ 801.433313][T20583] lock(rtnl_mutex); [ 801.437297][T20583] [ 801.437297][T20583] *** DEADLOCK *** [ 801.437297][T20583] [ 801.445429][T20583] 1 lock held by syz.2.4681/20583: [ 801.450534][T20583] #0: ffff888079bf21a8 (&smc->clcsock_release_lock){+.+.}-{4:4}, at: smc_setsockopt+0x101/0xc00 [ 801.461169][T20583] [ 801.461169][T20583] stack backtrace: [ 801.467048][T20583] CPU: 1 UID: 0 PID: 20583 Comm: syz.2.4681 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 801.477805][T20583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 801.487857][T20583] Call Trace: [ 801.491130][T20583] [ 801.494057][T20583] dump_stack_lvl+0x116/0x1f0 [ 801.498737][T20583] print_circular_bug+0x41c/0x610 [ 801.503772][T20583] check_noncircular+0x31a/0x400 [ 801.508721][T20583] ? __pfx_check_noncircular+0x10/0x10 [ 801.514187][T20583] ? hlock_class+0x4e/0x130 [ 801.518694][T20583] ? hlock_class+0x4e/0x130 [ 801.523202][T20583] ? lockdep_lock+0xc6/0x200 [ 801.527795][T20583] ? __pfx_lockdep_lock+0x10/0x10 [ 801.532825][T20583] ? __pfx_mark_lock+0x10/0x10 [ 801.537600][T20583] __lock_acquire+0x249e/0x3c40 [ 801.542470][T20583] ? __pfx___lock_acquire+0x10/0x10 [ 801.547677][T20583] ? __lock_acquire+0x15a9/0x3c40 [ 801.552711][T20583] lock_acquire.part.0+0x11b/0x380 [ 801.557819][T20583] ? do_ipv6_setsockopt+0x1f4d/0x4660 [ 801.563199][T20583] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 801.568832][T20583] ? rcu_is_watching+0x12/0xc0 [ 801.573601][T20583] ? trace_lock_acquire+0x14e/0x1f0 [ 801.578821][T20583] ? do_ipv6_setsockopt+0x1f4d/0x4660 [ 801.584220][T20583] ? lock_acquire+0x2f/0xb0 [ 801.588727][T20583] ? do_ipv6_setsockopt+0x1f4d/0x4660 [ 801.594104][T20583] __mutex_lock+0x19b/0xa60 [ 801.598612][T20583] ? do_ipv6_setsockopt+0x1f4d/0x4660 [ 801.603989][T20583] ? __pfx_mark_lock+0x10/0x10 [ 801.608767][T20583] ? do_ipv6_setsockopt+0x1f4d/0x4660 [ 801.614146][T20583] ? __pfx___mutex_lock+0x10/0x10 [ 801.619178][T20583] ? __pfx_register_lock_class+0x10/0x10 [ 801.624815][T20583] ? finish_task_switch.isra.0+0x217/0xcc0 [ 801.630625][T20583] ? __switch_to+0x749/0x1190 [ 801.635315][T20583] ? hlock_class+0x4e/0x130 [ 801.639833][T20583] ? do_ipv6_setsockopt+0x1f4d/0x4660 [ 801.645211][T20583] ? rtnl_lock+0x9/0x20 [ 801.649378][T20583] do_ipv6_setsockopt+0x1f4d/0x4660 [ 801.654591][T20583] ? __pfx_do_ipv6_setsockopt+0x10/0x10 [ 801.660142][T20583] ? lock_acquire.part.0+0x11b/0x380 [ 801.665430][T20583] ? __mutex_trylock_common+0xea/0x250 [ 801.670891][T20583] ? __pfx___mutex_trylock_common+0x10/0x10 [ 801.676784][T20583] ? smc_setsockopt+0x101/0xc00 [ 801.681645][T20583] ? rcu_is_watching+0x12/0xc0 [ 801.686414][T20583] ? trace_contention_end+0xee/0x140 [ 801.691698][T20583] ? __mutex_lock+0x1cc/0xa60 [ 801.696376][T20583] ? __pfx___futex_wait+0x10/0x10 [ 801.701399][T20583] ? smc_setsockopt+0x101/0xc00 [ 801.706261][T20583] ? __pfx___mutex_lock+0x10/0x10 [ 801.711294][T20583] ? ipv6_setsockopt+0xcb/0x170 [ 801.716148][T20583] ipv6_setsockopt+0xcb/0x170 [ 801.720834][T20583] tcp_setsockopt+0xa4/0x100 [ 801.725434][T20583] smc_setsockopt+0x1b4/0xc00 [ 801.730124][T20583] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 801.736032][T20583] ? __pfx_smc_setsockopt+0x10/0x10 [ 801.741250][T20583] ? __pfx_smc_setsockopt+0x10/0x10 [ 801.746478][T20583] do_sock_setsockopt+0x222/0x480 [ 801.751518][T20583] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 801.757079][T20583] ? lock_acquire+0x2f/0xb0 [ 801.761590][T20583] __sys_setsockopt+0x1a0/0x230 [ 801.766449][T20583] __x64_sys_setsockopt+0xbd/0x160 [ 801.771573][T20583] ? do_syscall_64+0x91/0x250 [ 801.776255][T20583] ? lockdep_hardirqs_on+0x7c/0x110 [ 801.781452][T20583] do_syscall_64+0xcd/0x250 [ 801.785962][T20583] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 801.791858][T20583] RIP: 0033:0x7fc3f2b85d19 [ 801.796268][T20583] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 801.815876][T20583] RSP: 002b:00007fc3f09f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 801.824301][T20583] RAX: ffffffffffffffda RBX: 00007fc3f2d75fa0 RCX: 00007fc3f2b85d19 [ 801.832279][T20583] RDX: 000000000000001b RSI: 0000000000000029 RDI: 0000000000000006 [ 801.840248][T20583] RBP: 00007fc3f2c01a20 R08: 0000000000000201 R09: 0000000000000000 [ 801.848218][T20583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 801.856184][T20583] R13: 0000000000000000 R14: 00007fc3f2d75fa0 R15: 00007ffd28d69ba8 [ 801.864159][T20583] [ 809.022523][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 809.028827][ T1296] ieee802154 phy1 wpan1: encryption failed: -22