last executing test programs: 7.763455352s ago: executing program 3 (id=1826): openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x40901, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x9, 0x81, 0xdfffffffffff628e, 0x6, 0xdeb1, 0x808}) socket(0x2b, 0x1, 0x1) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x4a801, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, 0x0, 0x12000, 0x0) socket(0x3, 0x5, 0x5) r1 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mtd0ro\x00', 0x2000, 0x0) sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b30000c4acc64e6db6d344dafa772e702fbb1dd5276186c557bb1869f6a7a444861ed9130000995aecaec6fb535f6b7124c15f5573c3529dd7549e7f1b3706dc2eee524c6e554298bff456895cbd0ef84796eec97de123d41f7ffc", @ANYRES16=0x0, @ANYBLOB="010026bd7000080000000f000000"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810) r2 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010029bd700001dcdf2503000000040006000c000180080010000400"], 0x24}, 0x1, 0x0, 0x0, 0x40010}, 0x800) ioctl$auto_MTDFILEMODE(r1, 0x4d13, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, &(0x7f00000002c0)="3098412d1d2a21f9821bbb6575682f4fa969d6d8f51ad133eb2fb3cd698bac435177fc1942f009b507130df5d599f4ff6031c5518c8e660d59059846f0326039e724f62ba81e019302f5") sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) r4 = eventfd$auto(0x34b) read$auto(r4, 0x0, 0xcc9c) socket(0xa, 0x5, 0x84) 6.889451578s ago: executing program 3 (id=1829): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x8, &(0x7f0000000140)={0x3ff, 0x2, 0x9, 0x10001, 0xc, 0xc05, 0xffffffffffffffff, [0x7fd, 0x1001, 0x8], {0x9, 0x4, 0x8, 0x0, 0x420, 0x1001, 0x3fdc, 0x3, 0x5}, {0xa, 0x140, 0x54ed, 0x0, 0x101, 0xff, 0x7, 0xa, 0x100000001}}) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 6.874890584s ago: executing program 0 (id=1830): openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0) openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x40901, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x8, 0x0, 0x1, 0x368e, 0x5, {0x100000000, 0xfffe}, 0x5, 0x7, 0xfffffffffffffffd, 0x1008000, 0x0, 0x9, 0x81, 0xdfffffffffff628e, 0x6, 0xdeb1, 0x808}) adjtimex$auto(&(0x7f00000002c0)={0x6, 0x0, 0x6, 0x9, 0x4, 0x8, 0x0, 0x0, 0x6, 0x100000000, 0x7fffffff, {0x9, 0x2}, 0x6, 0x1, 0x7, 0xc25, 0x0, 0xe00000000000, 0x7fff, 0x1, 0x8, 0x8000000000000000, 0xc}) socket(0x2b, 0x1, 0x1) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/afs/cells\x00', 0x4a801, 0x0) write$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000080)="1020e10000", 0x5) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) r2 = openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/tracing/uprobe_events\x00', 0x12000, 0x0) mq_timedreceive$auto(r2, &(0x7f0000000200)='/dev/sequencer2\x00', 0x3, &(0x7f0000000240)=0xffffffff, &(0x7f0000000280)={0x6, 0x5f99}) socket(0xa, 0x2, 0x73) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, 0x0, 0x2000, 0x0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000002640)='/sys/kernel/debug/tracing/set_event_pid\x00', 0x2002, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000011c0)='./cgroup.cpu/hugetlb.1GB.rsvd.failcnt\x00', 0x0, 0x0) r4 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/softnet_stat\x00', 0x40102, 0x0) pread64$auto(r4, &(0x7f0000000040)='/proc/scsi/sg/devices\x00', 0x100000001, 0x100) read$auto(r3, 0x0, 0x20) write$auto(0x3, 0x0, 0xfdef) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/usb/drivers/usb_serial_simple/bind\x00', 0x8702, 0x0) mmap$auto(0x0, 0x10000000000002, 0x3, 0xeb1, 0xfffffffffffffffa, 0x7fffffff) read$auto(r5, 0x0, 0x4009) r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x48041, 0x0) write$auto(r6, 0x0, 0x6) ioctl$auto(0xffffffffffffffff, 0x64c7, 0x1e2) open(&(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', 0x2000, 0xb5d1af1605322c72) 6.770454959s ago: executing program 1 (id=1831): r0 = socket(0x2, 0x3, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fb0\x00', 0x20401, 0x0) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000032c0)='/dev/mtd0\x00', 0x22801, 0x0) syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000080), r0) r1 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) socket(0x1e, 0x2, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x40440, 0x40) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r1, 0x200000e, &(0x7f0000000240)="08e719330d040000000001010020a0b383aa8ce37a50b19646196ce198e8d7de645da8af1c38e60ae3ca23d4a05dc39a870c76d161ffff99ae651080f01f71be9f9d50c476d78746bb48ade5cc7956fd6da6bdeb1cec9d4bf0849f10a0d6a4bcee7ddfd1e8995b153ead9afc39aca2b96b3ff970b24dfa74b002fb7414c067067e30cd86f40f3ff4fc4b1dd640494964373782bd13ed4d3cdbbcf97bfb2a1a5bb954df5bf126de3b910d586488d72c43de50845d785a43d039edbdf9607cb12c49c65f26ad7204b45f57ae269220f480e1d9204de005eee68aec59dec07067c1cd76689a764e2af0fe4faf701ef6e834527976f051") r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r3 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r2, 0x541c, r3) 6.654186757s ago: executing program 3 (id=1832): madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x1) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(r0, 0xffffffffffffffff, 0x3) r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/radio4\x00', 0x40e203, 0x0) ioctl$auto(r1, 0xc0585611, r1) r2 = openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/per_cpu/cpu1/trace\x00', 0x1a6b75d63882a712, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, r2, 0x28000) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_TIOCVHANGUP2(0xffffffffffffffff, 0x5437, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mmap$auto(0xf0, 0xe9, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) recvfrom$auto(0x3, 0x0, 0x800000000e, 0xf90000, 0x0, 0xfffffffffffffffd) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000140), r3) r4 = openat$auto_ftrace_formats_fops_trace_printk(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/printk_formats\x00', 0x0, 0x0) read$auto_ftrace_formats_fops_trace_printk(r4, &(0x7f0000000540)=""/4096, 0x1000) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/rpc/use-gss-proxy\x00', 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r5, &(0x7f0000000000)=""/223, 0xdf) r6 = openat$auto_tracing_thresh_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/tracing_thresh\x00', 0x401, 0x0) write$auto(r6, 0x0, 0x100082) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) 6.116752962s ago: executing program 1 (id=1833): mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0x24b7}, 0x8, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x6) r0 = socket(0x29, 0x2, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r1, 0x0, 0xfffffff9, 0x10, 0x0) ioctl$auto(r0, 0x8914, 0x24) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x25, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004c18}, 0x810) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x140040b0}, 0x24002001) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYRES32, @ANYBLOB="000226bd7000fedbdf2503000000080003000002000006000700008000000800040001"], 0x68}, 0x1, 0x0, 0x0, 0x40084}, 0x40090) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='.\x00'], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) r3 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r3, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)={0x14, 0x0, 0x1, 0x70bd2c, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='H'], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 5.967047008s ago: executing program 0 (id=1834): remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) 5.659565096s ago: executing program 0 (id=1836): mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x15) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1000afd003a5394e965231da1bd312e7af6d67d09340d0a4bd7805e18ac78f35cb77d1029c69e7270148078c13a91f6dff64055ad11607f0fbd3aa88661e4db7e590d54e149920a2a16ad21b"], 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mmap$auto(0x0, 0x240009, 0xdf, 0x9b72, 0x7, 0x28000) sysfs$auto(0x2, 0x40, 0x0) r0 = fsopen$auto(0x0, 0x1) fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sda\x00', 0x202, 0x0) sendmsg$auto_IOAM6_CMD_ADD_NAMESPACE(0xffffffffffffffff, &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8040}, 0x24004054) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = socket(0x2, 0x1, 0x106) connect$auto(0x3, &(0x7f0000000140), 0x55) setsockopt$auto(r1, 0x6, 0xd, 0x0, 0x6) syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f00000016c0), 0xffffffffffffffff) getrandom$auto(0x0, 0x6000000, 0x3) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) 5.543151047s ago: executing program 3 (id=1837): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), r0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xf, 0x3, 0x2) accept$auto(0x3, 0xffffffffffffffff, 0xffffffffffffffff) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0) mmap$auto(0x0, 0x400008, 0xffffffffffffffff, 0x9b72, 0x2, 0x8000) r1 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r1, 0x107, 0x12, 0x0, 0x4) socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x4, 0x6, 0x8, 0x17, 0xffffffffffffffff, 0x7fffffff) mmap$auto(0x0, 0x400005, 0xffffffffffeffffe, 0x9b72, 0xc76, 0x8000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x4008081}, 0x10004010) socket(0x2, 0x80802, 0x0) r2 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_fastopen_blackhole_timeout_sec\x00', 0x0, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x1) read$auto(0x3, 0x0, 0x1f40) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x2000040080000004, 0xe) read$auto_cgwb_debug_stats_fops_(0xffffffffffffffff, &(0x7f0000000180)=""/165, 0xa5) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) madvise$auto(0x0, 0xffffffffffff0001, 0x15) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0xa901, 0x0) clone$auto(0xffffffff00000000, 0x12, 0x0, 0x0, 0xfffffffffffffffd) 4.966109135s ago: executing program 1 (id=1838): openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x40901, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x9, 0x81, 0xdfffffffffff628e, 0x6, 0xdeb1, 0x808}) socket(0x2b, 0x1, 0x1) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x4a801, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, 0x0, 0x12000, 0x0) socket(0x3, 0x5, 0x5) r1 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mtd0ro\x00', 0x2000, 0x0) sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b30000c4acc64e6db6d344dafa772e702fbb1dd5276186c557bb1869f6a7a444861ed9130000995aecaec6fb535f6b7124c15f5573c3529dd7549e7f1b3706dc2eee524c6e554298bff456895cbd0ef84796eec97de123d41f7ffc", @ANYRES16=0x0, @ANYBLOB="010026bd7000080000000f000000"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810) r2 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010029bd700001dcdf2503000000040006000c000180080010000400"], 0x24}, 0x1, 0x0, 0x0, 0x40010}, 0x800) ioctl$auto_MTDFILEMODE(r1, 0x4d13, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, &(0x7f00000002c0)="3098412d1d2a21f9821bbb6575682f4fa969d6d8f51ad133eb2fb3cd698bac435177fc1942f009b507130df5d599f4ff6031c5518c8e660d59059846f0326039e724f62ba81e019302f5") r4 = eventfd$auto(0x34b) readv$auto(r4, &(0x7f0000000380)={0x0, 0x8}, 0x4) read$auto(r4, 0x0, 0xcc9c) socket(0xa, 0x5, 0x84) 3.932568091s ago: executing program 1 (id=1839): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), r0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xf, 0x3, 0x2) accept$auto(0x3, 0xffffffffffffffff, 0xffffffffffffffff) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0) mmap$auto(0x0, 0x400008, 0xffffffffffffffff, 0x9b72, 0x2, 0x8000) r1 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r1, 0x107, 0x12, 0x0, 0x4) socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x4, 0x6, 0x8, 0x17, 0xffffffffffffffff, 0x7fffffff) mmap$auto(0x0, 0x400005, 0xffffffffffeffffe, 0x9b72, 0xc76, 0x8000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x4008081}, 0x10004010) socket(0x2, 0x80802, 0x0) r2 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_fastopen_blackhole_timeout_sec\x00', 0x0, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x1) read$auto(0x3, 0x0, 0x1f40) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x2000040080000004, 0xe) read$auto_cgwb_debug_stats_fops_(0xffffffffffffffff, &(0x7f0000000180)=""/165, 0xa5) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) madvise$auto(0x0, 0xffffffffffff0001, 0x15) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0xa901, 0x0) clone$auto(0xffffffff00000000, 0x12, 0x0, 0x0, 0xfffffffffffffffd) 3.869849239s ago: executing program 2 (id=1840): socket(0x28, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0xfffffffffffffffb, 0x2, 0x100000021, 0x400009b75, 0xea8a, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) fsconfig$auto_SHMEM_HUGE_FORCE(r0, 0x6, 0x0, &(0x7f0000000100)="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", 0xfffffffffffffffe) kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000) ioctl$auto_TIOCVHANGUP2(r0, 0x5437, 0x0) socket(0x2, 0x80002, 0x73) socket(0x2, 0x1, 0x84) socket(0xf, 0x3, 0x2) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) select$auto(0x11, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x7, 0x2, 0x1, 0x948b, 0x1000000000000004, 0x15f4da0a, 0x39, 0x3, 0x2fffffffffffffe, 0x80000002, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0) openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000080)='/proc/kpageflags\x00', 0x2, 0x0) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000040)='/dev/usbmon26\x00', 0x240a01, 0x0) timerfd_create$auto(0x0, 0x0) socket(0x2, 0x6, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x25, 0x1, 0x3) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_state_fops_(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0) 3.677785381s ago: executing program 0 (id=1841): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x8, &(0x7f0000000140)={0x3ff, 0x2, 0x9, 0x10001, 0xc, 0xc05, 0xffffffffffffffff, [0x7fd, 0x1001, 0x8], {0x9, 0x4, 0x8, 0x0, 0x420, 0x1001, 0x3fdc, 0x3, 0x5}, {0xa, 0x140, 0x54ed, 0x0, 0x101, 0xff, 0x7, 0xa, 0x100000001}}) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 3.347184185s ago: executing program 0 (id=1842): mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x15) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1000afd003a5394e965231da1bd312e7af6d67d09340d0a4bd7805e18ac78f35cb77d1029c69e7270148078c13a91f6dff64055ad11607f0fbd3aa88661e4db7e590d54e149920a2a16ad21b"], 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mmap$auto(0x0, 0x240009, 0xdf, 0x9b72, 0x7, 0x28000) sysfs$auto(0x2, 0x40, 0x0) r0 = fsopen$auto(0x0, 0x1) fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sda\x00', 0x202, 0x0) sendmsg$auto_IOAM6_CMD_ADD_NAMESPACE(0xffffffffffffffff, &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8040}, 0x24004054) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = socket(0x2, 0x1, 0x106) setsockopt$auto(r2, 0x6, 0xd, 0x0, 0x6) r3 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f00000016c0), 0xffffffffffffffff) sendmsg$auto_OVS_METER_CMD_GET(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x24, r3, 0x100, 0x70bd25, 0x25dfdbfb, {}, [@OVS_METER_ATTR_ID={0x8, 0x1, 0xfff}, @OVS_METER_ATTR_MAX_BANDS={0x8, 0x8, 0xfffffeff}]}, 0x24}, 0x1, 0x0, 0x0, 0x40008c0}, 0x8000000) getrandom$auto(0x0, 0x6000000, 0x3) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) socket$nl_generic(0x10, 0x3, 0x10) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) mlockall$auto(0x7) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$auto_IOC_PR_RELEASE(r1, 0x401070ca, 0x0) 2.709984258s ago: executing program 3 (id=1843): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x0, 0xffffffffffffffff, 0x6, 0x7) write$auto(r0, &(0x7f0000000000)='\'\x00', 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) r1 = semctl$auto_SEM_INFO(0x3, 0xfffffff9, 0x13, 0x8) prctl$auto_PR_SET_MM_START_STACK(0x46, 0x5, r1, 0xcd8, 0x100) madvise$auto(0x0, 0x20499d, 0x9) ioctl$auto(0xffffffffffffffff, 0x40046205, 0x9) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16, @ANYBLOB="010029bd700002dcdf25030000000400087918000180140010800c"], 0x30}, 0x1, 0x0, 0x0, 0x200400f0}, 0x800) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) timer_create$auto(0x7, 0x0, 0x0) timer_settime$auto(0x0, 0x2, &(0x7f0000000080)={{0x400f, 0x10006}, {0x7a59e464000000, 0x1}}, 0x0) 2.600798504s ago: executing program 2 (id=1844): r0 = socket(0x10, 0x2, 0x0) bpf$auto(0xff, &(0x7f00000004c0)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x4, 0x5, 0xffffffffffffffff, @relative_id=0x4, 0x5}, 0x3fc) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='f\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x803}, 0x4, 0x8) r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/input/event2\x00', 0x8080, 0x0) ioctl$auto_EVIOCGKEYCODE_V2(r1, 0x80284504, &(0x7f0000000080)={0x9c, 0xa, 0x193e, 0x7fffffff, "27194cc25cbeb8a7d241e36a3ea24061b4eb7c0b003db3a8a2982613fe9ddea1"}) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x11, 0x3, 0x9) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) open(&(0x7f0000000180)='./file0\x00', 0xe3ea21, 0x144) setitimer$auto(0x2, &(0x7f0000000040)={{0x0, 0x5}, {0x0, 0x8}}, 0x0) setitimer$auto_ITIMER_PROF(0x2, 0x0, 0x0) socket(0x2000000000000021, 0x2, 0x10000000000002) socket(0x10, 0x3, 0xa) bpf$auto(0x7, &(0x7f0000000000)=@query={@target_ifindex, 0x80000002, 0xc6c3, 0xa24, 0x8000010002, @count=0x42, 0x0, 0x9, 0x9, 0x0, 0x3}, 0xa3) sendmmsg$auto(r3, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={0x0, 0x49}, 0x4, &(0x7f0000000180), 0x5, 0x1000}, 0x5}, 0x2, 0x100) mmap$auto(0x0, 0x7f, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0x9, 0x0) r4 = fsopen$auto(0x0, 0x1) fsconfig$auto(r4, 0x6, 0x0, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'macvlan1\x00'}) sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)=ANY=[@ANYBLOB="06000000", @ANYRES16, @ANYBLOB="01002cbd7000fddbdf2502000000080001000a000000450004002f7379732f646576696365732f706c6174666f726d2f64756d6d795f6863642e362f757362372f706f7765722f77616b6575705f6163746976655f636f756e740000000008000200a3000000"], 0x6c}, 0x1, 0x0, 0x0, 0x4004891}, 0x4000) 2.294544827s ago: executing program 2 (id=1845): ppoll$auto(&(0x7f0000000080)={0xffffffffffffffff, 0xf7f, 0x81}, 0x10, 0x0, 0x0, 0x8) 1.37540714s ago: executing program 1 (id=1846): mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0x24b7}, 0x8, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x6) r0 = socket(0x29, 0x2, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r1, 0x0, 0xfffffff9, 0x10, 0x0) ioctl$auto(r0, 0x8914, 0x24) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x25, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004c18}, 0x810) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x140040b0}, 0x24002001) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYRES32, @ANYBLOB="000226bd7000fedbdf2503000000080003000002000006000700008000000800040001"], 0x68}, 0x1, 0x0, 0x0, 0x40084}, 0x40090) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='.\x00'], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) r3 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r3, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)={0x14, 0x0, 0x1, 0x70bd2c, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='H'], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.315866926s ago: executing program 2 (id=1847): openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x40901, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x9, 0x81, 0xdfffffffffff628e, 0x6, 0xdeb1, 0x808}) socket(0x2b, 0x1, 0x1) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x4a801, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, 0x0, 0x12000, 0x0) socket(0x3, 0x5, 0x5) r1 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mtd0ro\x00', 0x2000, 0x0) sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b30000c4acc64e6db6d344dafa772e702fbb1dd5276186c557bb1869f6a7a444861ed9130000995aecaec6fb535f6b7124c15f5573c3529dd7549e7f1b3706dc2eee524c6e554298bff456895cbd0ef84796eec97de123d41f7ffc", @ANYRES16=0x0, @ANYBLOB="010026bd7000080000000f000000"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810) r2 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010029bd700001dcdf2503000000040006000c000180080010000400"], 0x24}, 0x1, 0x0, 0x0, 0x40010}, 0x800) ioctl$auto_MTDFILEMODE(r1, 0x4d13, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, &(0x7f00000002c0)="3098412d1d2a21f9821bbb6575682f4fa969d6d8f51ad133eb2fb3cd698bac435177fc1942f009b507130df5d599f4ff6031c5518c8e660d59059846f0326039e724f62ba81e019302f5") r4 = eventfd$auto(0x34b) readv$auto(r4, &(0x7f0000000380)={0x0, 0x8}, 0x4) read$auto(r4, 0x0, 0xcc9c) socket(0xa, 0x5, 0x84) 872.254633ms ago: executing program 0 (id=1848): ioperm$auto(0x3, 0x38c, 0x9) openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000000900)='/sys/kernel/debug/tracing/uprobe_events\x00', 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x20042, 0x0) r0 = io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x0) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r1 = prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x7fff, 0x0, 0x4, 0x46) ioctl$auto(r0, 0x80286f4e, r1) ioctl$auto_IOCTL_VMCI_CTX_ADD_NOTIFICATION(r0, 0x7af, 0x0) ioctl$auto(0x3, 0x80000541b, 0x38) read$auto(0xffffffffffffffff, 0x0, 0x20) io_uring_setup$auto(0x59, 0x0) close_range$auto(0x2, 0x8, 0x0) memfd_secret$auto(0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x1080, 0x0) write$auto(0x3, 0x0, 0xfffffdef) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80002, 0x0) write$auto_ocfs2_control_fops_stack_user(r2, 0x0, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80002, 0x0) sendfile$auto(r3, r3, 0x0, 0x400000000003) socket(0xa, 0x4, 0x7ff) setuid$auto(0xe) newfstatat$auto(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x1, 0x108, 0x6, 0x1, 0xee00, 0xee00, 0x0, 0x8000000000000001, 0xe69b, 0x1000000, 0x4, 0x2, 0x4, 0x9, 0x1000, 0xfffffffffffffffd}, 0x7fff) r4 = openat$auto_stat_fops_(0xffffffffffffff9c, &(0x7f0000000180)='/proc/stat\x00', 0x800, 0x0) lseek$auto(r4, 0x8a05, 0x1) mmap$auto(0x74e, 0x9, 0xdf, 0x9b72, r1, 0x8) 334.10577ms ago: executing program 2 (id=1849): r0 = fcntl$auto_F_RDLCK(0xffffffffffffffff, 0x5, 0x0) r1 = socket(0x10, 0x2, 0xf) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)={0x7f4, r2, 0x785202f68de70351, 0x70bd2b, 0x25dfdbfc, {}, [@NL80211_ATTR_DISABLE_VHT={0x4}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x7}, @NL80211_ATTR_SMPS_MODE={0x5, 0xd5, 0x5}, @NL80211_ATTR_CNTDWN_OFFS_BEACON={0xf5, 0xba, "509b15adc70c6689b38c58b49068807ab6929df0f107cbd746f9b800783b9e2e8c91ec324b6c5b2eff37d77e6c43c6952a3e02dc2164c22404b7ea0132281cbaae9e3d6934ebe15d276bba0e5633a8855a60fe6680b08cf7277cfffaf8edd88a1393d9ddc5c6a63a18860ca09f1bf162d4e30c9c0cdc19adafa700d12320f2e6e565c249ef6bece6028f488fe89c044e80f0294d600a63ae3ab142ce7972777bfd2af5aa8aa1753428a6f9fdedf90725c859311195207ec60f987ce18f7fa0b07bd00a2d9b3bc43d19bece8e0541ef3b4a76a12463ccf7449db58682554e4139cfc0fe362e14a41887e47336d40183b77c"}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, 0x1000}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x4e23}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x6c4}]}, 0x7f4}, 0x1, 0x0, 0x0, 0x40000}, 0x20000800) sendmsg$auto_NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x1000102}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x1c, r2, 0x400, 0x70bd2d, 0x25dfdbfe, {}, [@NL80211_ATTR_WIPHY_ANTENNA_TX={0x8, 0x69, 0xfffffff3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x10) r3 = openat$auto_tracing_mark_fops_trace(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/tracing/trace_marker\x00', 0x40001, 0x0) writev$auto(r3, &(0x7f0000001040)={0x0, 0x7fff}, 0x9) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$auto(0x3, 0x80106f53, r4) r5 = openat$auto_comedi_fops_comedi_fops(0xffffffffffffff9c, &(0x7f00000002c0), 0x305000, 0x0) r6 = pidfd_getfd$auto(r4, r5, 0xfff) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = socket(0x10, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000003b40)={'xfrm0\x00', 0x0}) read$auto_media_devnode_fops_mc_devnode(0xffffffffffffffff, 0x0, 0x0) r10 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r10, 0xc0045516, &(0x7f0000000040)=0x5) read$auto_snd_ctl_f_ops_control(r10, &(0x7f0000000080)=""/185, 0xb9) r11 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r11, 0xc1105517, &(0x7f0000000580)={{@raw=0x7fffffff, 0xf0f1, 0x20009, 0x1, "790eaa833e6fc65b6b3cf70500000078ad8eac3cdafc1f64010043eeb030530300", @raw=0x81}, 0x4, 0x866, 0xf, @raw=0x20, @integer={0x8000000000000011, 0x2000000b752, 0x548}, "6cc1294d63a4f1b4285854c5368de438f8cc142ef6df12bf3373a1183bedbd31b642b4051b078fa1c1c61c329794e5311121c760cb9611c78e6947a99807bcc1"}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYRESDEC=r7], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYRES64=0x0, @ANYRES16=r9], 0x1ac}}, 0x40001) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r8, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) ioctl$auto_MON_IOCX_GET(r6, 0x40189206, &(0x7f0000000400)={&(0x7f0000000340)={0x7, 0xc, 0x6, 0x40, 0x81, 0x9, 0xcf, 0x10, 0x8000000000000001, 0x102, 0x9, 0x6, 0x1, @iso={0x3, 0x1}, 0x1ff, 0x7, 0xfcb, 0xc3}, &(0x7f0000000380)="a8bd83702924bc22dbb8d09303d3bca8cef9b474c1724349e809b29704650ad7b303a2b069765d1eebf16c40fa36cb10ddb5c0e014c407c844f2459312a4c764bfe65f7008ad400427f68f290037c0ed56e6561253fa93d367a64da3bdb88b6b1a5d2f993741", 0x1ff}) r12 = socket$nl_generic(0x10, 0x3, 0x10) r13 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r12, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r13, @ANYBLOB="01002bbd7000ffdbdf2502004e5e60679447bf6dffff59614cc5ffff0000"], 0x24}, 0x1, 0x0, 0x0, 0x4002000}, 0x40010) 125.273483ms ago: executing program 3 (id=1850): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) inotify_init1$auto(0x3000000000000) io_uring_setup$auto(0x6, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty0\x00', 0x0, 0x0) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0) io_uring_setup$auto(0x101, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) r0 = socket(0x29, 0x2, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/can/rcvlist_eff\x00', 0xb00, 0x0) pread64$auto(r1, 0x0, 0x594c, 0x5) ioctl$auto(r0, 0x8923, 0x24) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x5) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000300), 0xffffffffffffffff) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, r2, 0x8000) madvise$auto(0x1000, 0xd0, 0x1) socket(0xa, 0x801, 0x84) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x100, 0x4000000000df, 0x80000000eb1, 0x401, 0x8000) r4 = socket(0x10, 0x2, 0x0) io_uring_setup$auto(0x4bf15e08, &(0x7f0000000000)={0x408, 0x3, 0x10101, 0x6fb7, 0x8a, 0x4, r4, [0x100, 0x7, 0x7f], {0x2, 0x7, 0x3034, 0xc, 0x8f, 0x3, 0x5, 0xfffffff9, 0x6}, {0x4000, 0xffffffff, 0x0, 0xbffff000, 0x8, 0x20b85, 0x5, 0x837, 0x8}}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='_\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) 113.296118ms ago: executing program 2 (id=1851): r0 = socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) sendmsg$auto_NL802154_CMD_NEW_SEC_LEVEL(r0, 0x0, 0x4) lsm_list_modules$auto(0x0, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x201, 0x0) openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, 0x0, 0xb41c0, 0x0) pwrite64$auto(0xc8, 0x0, 0x10, 0x6) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000) mmap$auto(0x3, 0x400008, 0x8, 0x9b75, 0x2, 0x9000) sendmmsg$auto(0x3, 0x0, 0x9a5, 0x47ffff7a) r1 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/block/loop12/hctx0/tags\x00', 0x8080, 0x0) read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r1, &(0x7f0000000080)=""/229, 0xe5) (fail_nth: 1) getsockopt$auto_SO_TIMESTAMPNS_NEW(r1, 0x7, 0x40, &(0x7f0000000000)='-:^@\x00', &(0x7f0000000040)=0xc75cb5cb) mmap$auto(0x40000000, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) 0s ago: executing program 1 (id=1852): r0 = socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x0, 0x2, 0x401) select$auto(0x5, &(0x7f0000000040)={[0x9, 0x2, 0x35, 0x9, 0xfffffffffffffffc, 0x1, 0xa, 0x6, 0x5, 0x30c, 0x0, 0xcf, 0x5, 0xa, 0x5, 0xb98]}, 0x0, 0x0, 0x0) sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=ANY=[@ANYBLOB='J\x00\x00\x00', @ANYRES16, @ANYBLOB="010025bd7000fcdbdf25020000002c00018028003c8008001b"], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x44) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x4044010}, 0x800) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="04000000", @ANYRES16=0x0, @ANYBLOB="10002cbd7000fddbdf250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x31}}, 0x54) sendmsg$auto_NL802154_CMD_NEW_SEC_LEVEL(r0, 0x0, 0x4) lsm_list_modules$auto(0x0, 0x0, 0x0) r1 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/ieee80211/phy10/reset\x00', 0x40081, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000bc0)='/dev/cec31\x00', 0x42, 0x0) poll$auto(&(0x7f0000000c00)={r2, 0x200, 0x9}, 0x1, 0x8) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x201, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x6, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) fcntl$auto(0xffffffffffffffff, 0x10, 0x2) mbind$auto(0x0, 0xfa9d, 0x8001, &(0x7f0000000300)=0xc9e, 0x400, 0x1) openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, 0x0, 0xb41c0, 0x0) pwrite64$auto(r1, 0x0, 0x2, 0x200) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/net/bpq3/statistics/rx_packets\x00', 0xa0140, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000040)=""/212, 0xd4) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000) mmap$auto(0x3, 0x400008, 0x8, 0x9b75, 0x2, 0x9000) kernel console output (not intermixed with test programs): trace_kmalloc+0x2b/0xd0 [ 371.363324][ T9730] ? devinet_init_net+0xeb/0x910 [ 371.363351][ T9730] ? __asan_memcpy+0x3c/0x60 [ 371.363383][ T9730] devinet_init_net+0x347/0x910 [ 371.363410][ T9730] ? __pfx_devinet_init_net+0x10/0x10 [ 371.363435][ T9730] ops_init+0x1df/0x5f0 [ 371.363485][ T9730] setup_net+0x21e/0x850 [ 371.363530][ T9730] ? __pfx_setup_net+0x10/0x10 [ 371.363570][ T9730] ? lockdep_init_map_type+0x5c/0x280 [ 371.363618][ T9730] ? __pfx_down_read_killable+0x10/0x10 [ 371.363653][ T9730] ? debug_mutex_init+0x37/0x70 [ 371.363692][ T9730] copy_net_ns+0x2a6/0x5f0 [ 371.363723][ T9730] create_new_namespaces+0x3ea/0xad0 [ 371.363772][ T9730] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 371.363816][ T9730] ksys_unshare+0x45b/0xa40 [ 371.363840][ T9730] ? __pfx_ksys_unshare+0x10/0x10 [ 371.363862][ T9730] ? xfd_validate_state+0x5d/0x180 [ 371.363894][ T9730] ? rcu_is_watching+0x12/0xc0 [ 371.363941][ T9730] __x64_sys_unshare+0x31/0x40 [ 371.363965][ T9730] do_syscall_64+0xcd/0x260 [ 371.364018][ T9730] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 371.364046][ T9730] RIP: 0033:0x7f9bbc38d169 [ 371.364068][ T9730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 371.364096][ T9730] RSP: 002b:00007f9bbd204038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 371.364123][ T9730] RAX: ffffffffffffffda RBX: 00007f9bbc5a5fa0 RCX: 00007f9bbc38d169 [ 371.364141][ T9730] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 371.364158][ T9730] RBP: 00007f9bbc40e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 371.364175][ T9730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 371.364190][ T9730] R13: 0000000000000000 R14: 00007f9bbc5a5fa0 R15: 00007ffeaa8cbd78 [ 371.364226][ T9730] [ 371.380298][ T9732] nbd: must specify an index to disconnect [ 371.921079][ T9742] netlink: 330 bytes leftover after parsing attributes in process `syz.1.995'. [ 372.061379][ T9742] bridge0: port 3(team0) entered disabled state [ 372.350912][ T9746] nbd: must specify an index to disconnect [ 374.098649][ T9767] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1001'. [ 375.534381][ T9785] FAULT_INJECTION: forcing a failure. [ 375.534381][ T9785] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 375.646810][ T9785] CPU: 0 UID: 0 PID: 9785 Comm: syz.0.1006 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 375.646855][ T9785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 375.646874][ T9785] Call Trace: [ 375.646885][ T9785] [ 375.646897][ T9785] dump_stack_lvl+0x16c/0x1f0 [ 375.646953][ T9785] should_fail_ex+0x512/0x640 [ 375.647001][ T9785] _copy_to_user+0x32/0xd0 [ 375.647049][ T9785] simple_read_from_buffer+0xcb/0x170 [ 375.647087][ T9785] proc_fail_nth_read+0x197/0x270 [ 375.647123][ T9785] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 375.647159][ T9785] ? rw_verify_area+0xcf/0x680 [ 375.647210][ T9785] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 375.647244][ T9785] vfs_read+0x1de/0xc70 [ 375.647284][ T9785] ? __pfx___mutex_lock+0x10/0x10 [ 375.647334][ T9785] ? __pfx_vfs_read+0x10/0x10 [ 375.647379][ T9785] ? __fget_files+0x20e/0x3c0 [ 375.647429][ T9785] ksys_read+0x12a/0x240 [ 375.647464][ T9785] ? __pfx_ksys_read+0x10/0x10 [ 375.647495][ T9785] ? rcu_is_watching+0x12/0xc0 [ 375.647548][ T9785] do_syscall_64+0xcd/0x260 [ 375.647602][ T9785] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 375.647635][ T9785] RIP: 0033:0x7f5bcd98bb7c [ 375.647659][ T9785] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 375.647697][ T9785] RSP: 002b:00007f5bcb7f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 375.647727][ T9785] RAX: ffffffffffffffda RBX: 00007f5bcdba5fa0 RCX: 00007f5bcd98bb7c [ 375.647748][ T9785] RDX: 000000000000000f RSI: 00007f5bcb7f60a0 RDI: 0000000000000004 [ 375.647767][ T9785] RBP: 00007f5bcb7f6090 R08: 0000000000000000 R09: 0000000000000000 [ 375.647785][ T9785] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 375.647802][ T9785] R13: 0000000000000000 R14: 00007f5bcdba5fa0 R15: 00007ffdcafaa348 [ 375.647841][ T9785] [ 375.872708][ T9787] FAULT_INJECTION: forcing a failure. [ 375.872708][ T9787] name failslab, interval 1, probability 0, space 0, times 0 [ 375.959671][ T9787] CPU: 1 UID: 0 PID: 9787 Comm: syz.3.1007 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 375.959716][ T9787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 375.959736][ T9787] Call Trace: [ 375.959747][ T9787] [ 375.959760][ T9787] dump_stack_lvl+0x16c/0x1f0 [ 375.959813][ T9787] should_fail_ex+0x512/0x640 [ 375.959854][ T9787] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 375.959901][ T9787] should_failslab+0xc2/0x120 [ 375.959946][ T9787] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 375.959986][ T9787] ? kernel_text_address+0x8d/0x100 [ 375.960026][ T9787] ? __d_alloc+0x31/0xaa0 [ 375.960075][ T9787] __d_alloc+0x31/0xaa0 [ 375.960123][ T9787] d_alloc+0x4a/0x1e0 [ 375.960168][ T9787] d_alloc_parallel+0xe3/0x12e0 [ 375.960199][ T9787] ? __pfx_stack_trace_save+0x10/0x10 [ 375.960242][ T9787] ? stack_depot_save_flags+0x28/0xa50 [ 375.960296][ T9787] ? kasan_save_stack+0x42/0x60 [ 375.960331][ T9787] ? kasan_save_stack+0x33/0x60 [ 375.960369][ T9787] ? __pfx_d_alloc_parallel+0x10/0x10 [ 375.960404][ T9787] ? lockdep_init_map_type+0x5c/0x280 [ 375.960439][ T9787] ? lockdep_init_map_type+0x5c/0x280 [ 375.960489][ T9787] __lookup_slow+0x193/0x460 [ 375.960539][ T9787] ? __pfx___lookup_slow+0x10/0x10 [ 375.960594][ T9787] ? perf_trace_mm_compaction_kcompactd_sleep+0x170/0x410 [ 375.960668][ T9787] ? perf_trace_mm_compaction_kcompactd_sleep+0x170/0x410 [ 375.960726][ T9787] ? d_lookup+0xe7/0x190 [ 375.960763][ T9787] lookup_one_len+0x17f/0x1b0 [ 375.960812][ T9787] ? __pfx_lookup_one_len+0x10/0x10 [ 375.960865][ T9787] ? mntput+0x10/0x90 [ 375.960902][ T9787] start_creating.part.0+0x12f/0x3a0 [ 375.960959][ T9787] debugfs_create_dir+0x6c/0x5f0 [ 375.960994][ T9787] ldisc_open+0x24d/0x970 [ 375.961026][ T9787] ? __pfx_ldisc_open+0x10/0x10 [ 375.961062][ T9787] ? tty_set_ldisc+0x2b8/0x780 [ 375.961112][ T9787] ? down_write+0x14d/0x200 [ 375.961148][ T9787] ? __pfx_ldisc_open+0x10/0x10 [ 375.961178][ T9787] tty_ldisc_open+0x9c/0x120 [ 375.961230][ T9787] tty_set_ldisc+0x32b/0x780 [ 375.961287][ T9787] tty_ioctl+0xbd7/0x15f0 [ 375.961323][ T9787] ? __pfx_tty_ioctl+0x10/0x10 [ 375.961370][ T9787] ? find_held_lock+0x2b/0x80 [ 375.961411][ T9787] ? hook_file_ioctl_common+0x145/0x410 [ 375.961525][ T9787] ? __fget_files+0x20e/0x3c0 [ 375.961569][ T9787] ? __pfx_tty_ioctl+0x10/0x10 [ 375.961604][ T9787] __x64_sys_ioctl+0x190/0x200 [ 375.961660][ T9787] do_syscall_64+0xcd/0x260 [ 375.961714][ T9787] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 375.961747][ T9787] RIP: 0033:0x7fc088f8d169 [ 375.961772][ T9787] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 375.961805][ T9787] RSP: 002b:00007fc089dde038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 375.961841][ T9787] RAX: ffffffffffffffda RBX: 00007fc0891a5fa0 RCX: 00007fc088f8d169 [ 375.961863][ T9787] RDX: 0000000000000000 RSI: 0000000000005423 RDI: 0000000000000016 [ 375.961882][ T9787] RBP: 00007fc089dde090 R08: 0000000000000000 R09: 0000000000000000 [ 375.961907][ T9787] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 375.961927][ T9787] R13: 0000000000000000 R14: 00007fc0891a5fa0 R15: 00007ffd5c361538 [ 375.961974][ T9787] [ 376.754591][ T9794] nbd: must specify an index to disconnect [ 377.860929][ T9792] netlink: 744 bytes leftover after parsing attributes in process `syz.2.1009'. [ 378.339113][ T9808] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1012'. [ 378.356400][ T9808] team0: left allmulticast mode [ 378.363133][ T9808] team_slave_0: left allmulticast mode [ 378.371123][ T9808] team_slave_1: left allmulticast mode [ 378.430697][ T9808] team0: left promiscuous mode [ 378.435631][ T9808] team_slave_0: left promiscuous mode [ 378.447970][ T9808] team_slave_1: left promiscuous mode [ 378.453851][ T9808] bridge0: port 3(team0) entered disabled state [ 378.543829][ T9808] bridge_slave_1: left allmulticast mode [ 378.565504][ T9808] bridge_slave_1: left promiscuous mode [ 378.597885][ T9808] bridge0: port 2(bridge_slave_1) entered disabled state [ 378.680747][ T9808] bridge_slave_0: left allmulticast mode [ 378.700209][ T9808] bridge_slave_0: left promiscuous mode [ 378.727151][ T9808] bridge0: port 1(bridge_slave_0) entered disabled state [ 378.982243][ T9828] FAULT_INJECTION: forcing a failure. [ 378.982243][ T9828] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 378.999146][ T9828] CPU: 0 UID: 0 PID: 9828 Comm: syz.2.1019 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 378.999189][ T9828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 378.999217][ T9828] Call Trace: [ 378.999226][ T9828] [ 378.999237][ T9828] dump_stack_lvl+0x16c/0x1f0 [ 378.999292][ T9828] should_fail_ex+0x512/0x640 [ 378.999338][ T9828] strncpy_from_user+0x3b/0x2e0 [ 378.999379][ T9828] getname_flags.part.0+0x8b/0x540 [ 378.999432][ T9828] getname_flags+0x93/0xf0 [ 378.999484][ T9828] do_sys_openat2+0xb8/0x1d0 [ 378.999530][ T9828] ? __pfx_do_sys_openat2+0x10/0x10 [ 378.999581][ T9828] ? __fget_files+0x20e/0x3c0 [ 378.999615][ T9828] ? __up_read+0x140/0x750 [ 378.999658][ T9828] __x64_sys_openat+0x174/0x210 [ 378.999705][ T9828] ? __pfx___x64_sys_openat+0x10/0x10 [ 378.999751][ T9828] ? ksys_write+0x1b9/0x240 [ 378.999800][ T9828] do_syscall_64+0xcd/0x260 [ 378.999853][ T9828] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 378.999886][ T9828] RIP: 0033:0x7f9bbc38d169 [ 378.999910][ T9828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 378.999942][ T9828] RSP: 002b:00007f9bbd204038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 378.999971][ T9828] RAX: ffffffffffffffda RBX: 00007f9bbc5a5fa0 RCX: 00007f9bbc38d169 [ 378.999993][ T9828] RDX: 000000000008e000 RSI: 00002000000000c0 RDI: ffffffffffffff9c [ 379.000015][ T9828] RBP: 00007f9bbd204090 R08: 0000000000000000 R09: 0000000000000000 [ 379.000035][ T9828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 379.000053][ T9828] R13: 0000000000000001 R14: 00007f9bbc5a5fa0 R15: 00007ffeaa8cbd78 [ 379.000094][ T9828] [ 379.235368][ T9830] nfsd: Unknown parameter '' [ 379.628710][ T9841] nbd: must specify an index to disconnect [ 382.168261][ T9879] nfsd: Unknown parameter '' [ 383.113650][ T9890] nbd: must specify an index to disconnect [ 383.927281][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 383.933658][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 384.253814][ T9905] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1040'. [ 385.705493][ T9908] Invalid ELF header magic: != ELF [ 386.198018][ T9943] nbd: must specify an index to disconnect [ 387.836242][ T9967] nbd: must specify an index to disconnect [ 388.803711][ T9987] FAULT_INJECTION: forcing a failure. [ 388.803711][ T9987] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 388.926077][ T9987] CPU: 1 UID: 0 PID: 9987 Comm: syz.1.1060 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 388.926135][ T9987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 388.926164][ T9987] Call Trace: [ 388.926179][ T9987] [ 388.926197][ T9987] dump_stack_lvl+0x16c/0x1f0 [ 388.926279][ T9987] should_fail_ex+0x512/0x640 [ 388.926356][ T9987] should_fail_alloc_page+0xe7/0x130 [ 388.926422][ T9987] prepare_alloc_pages+0x3c2/0x610 [ 388.926462][ T9987] __alloc_frozen_pages_noprof+0x18f/0x2370 [ 388.926505][ T9987] ? stack_trace_save+0x8e/0xc0 [ 388.926557][ T9987] ? __pfx_stack_trace_save+0x10/0x10 [ 388.926601][ T9987] ? stack_depot_save_flags+0x28/0xa50 [ 388.926642][ T9987] ? __lock_acquire+0x5ca/0x1ba0 [ 388.926680][ T9987] ? kasan_save_stack+0x42/0x60 [ 388.926718][ T9987] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 388.926759][ T9987] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 388.926798][ T9987] ? __handle_mm_fault+0x94e/0x2a50 [ 388.926835][ T9987] ? __get_user_pages+0x771/0x36f0 [ 388.926868][ T9987] ? populate_vma_page_range+0x278/0x3a0 [ 388.926905][ T9987] ? __mm_populate+0x1d8/0x380 [ 388.926938][ T9987] ? vm_mmap_pgoff+0x362/0x450 [ 388.926969][ T9987] ? ksys_mmap_pgoff+0x7d/0x5c0 [ 388.926995][ T9987] ? __x64_sys_mmap+0x125/0x190 [ 388.927030][ T9987] ? do_syscall_64+0xcd/0x260 [ 388.927097][ T9987] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 388.927135][ T9987] ? policy_nodemask+0xea/0x4e0 [ 388.927181][ T9987] alloc_pages_mpol+0x1fb/0x550 [ 388.927228][ T9987] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 388.927274][ T9987] ? cgroup_rstat_updated+0x2a/0xb20 [ 388.927325][ T9987] alloc_pages_noprof+0x131/0x390 [ 388.927372][ T9987] pte_alloc_one+0x19/0x380 [ 388.927415][ T9987] do_pte_missing+0x1b1c/0x3ea0 [ 388.927453][ T9987] ? do_raw_spin_unlock+0x172/0x230 [ 388.927495][ T9987] ? __pmd_alloc+0x3c2/0x870 [ 388.927531][ T9987] __handle_mm_fault+0x1043/0x2a50 [ 388.927587][ T9987] ? __pfx___handle_mm_fault+0x10/0x10 [ 388.927664][ T9987] handle_mm_fault+0x404/0xae0 [ 388.927708][ T9987] __get_user_pages+0x771/0x36f0 [ 388.927756][ T9987] ? __pfx_mt_find+0x10/0x10 [ 388.927789][ T9987] ? __pfx___get_user_pages+0x10/0x10 [ 388.927842][ T9987] populate_vma_page_range+0x278/0x3a0 [ 388.927884][ T9987] ? __pfx_populate_vma_page_range+0x10/0x10 [ 388.927922][ T9987] ? __pfx_find_vma_intersection+0x10/0x10 [ 388.927957][ T9987] ? do_mmap+0x69c/0x11b0 [ 388.927991][ T9987] __mm_populate+0x1d8/0x380 [ 388.928032][ T9987] ? __pfx___mm_populate+0x10/0x10 [ 388.928074][ T9987] ? up_write+0x1b2/0x520 [ 388.928114][ T9987] vm_mmap_pgoff+0x362/0x450 [ 388.928156][ T9987] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 388.928196][ T9987] ? __fget_files+0x20e/0x3c0 [ 388.928247][ T9987] ksys_mmap_pgoff+0x7d/0x5c0 [ 388.928277][ T9987] ? __pfx_ksys_write+0x10/0x10 [ 388.928310][ T9987] ? rcu_is_watching+0x12/0xc0 [ 388.928355][ T9987] __x64_sys_mmap+0x125/0x190 [ 388.928397][ T9987] do_syscall_64+0xcd/0x260 [ 388.928450][ T9987] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 388.928483][ T9987] RIP: 0033:0x7f5979b8d169 [ 388.928508][ T9987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 388.928574][ T9987] RSP: 002b:00007f597a90b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 388.928605][ T9987] RAX: ffffffffffffffda RBX: 00007f5979da5fa0 RCX: 00007f5979b8d169 [ 388.928625][ T9987] RDX: 0100001000000004 RSI: 0000000000000061 RDI: 0000000000000000 [ 388.928645][ T9987] RBP: 00007f597a90b090 R08: 0000000000000400 R09: 0000000000008000 [ 388.928665][ T9987] R10: 000000000000fa31 R11: 0000000000000246 R12: 0000000000000002 [ 388.928685][ T9987] R13: 0000000000000000 R14: 00007f5979da5fa0 R15: 00007ffc7f6f3a68 [ 388.928727][ T9987] [ 389.394602][ T9992] FAULT_INJECTION: forcing a failure. [ 389.394602][ T9992] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 389.452517][ T9992] CPU: 0 UID: 0 PID: 9992 Comm: syz.2.1063 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 389.452567][ T9992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 389.452589][ T9992] Call Trace: [ 389.452599][ T9992] [ 389.452612][ T9992] dump_stack_lvl+0x16c/0x1f0 [ 389.452673][ T9992] should_fail_ex+0x512/0x640 [ 389.452722][ T9992] should_fail_alloc_page+0xe7/0x130 [ 389.452780][ T9992] prepare_alloc_pages+0x3c2/0x610 [ 389.452813][ T9992] ? rcu_is_watching+0x12/0xc0 [ 389.452860][ T9992] __alloc_frozen_pages_noprof+0x18f/0x2370 [ 389.452905][ T9992] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 389.452954][ T9992] ? is_bpf_text_address+0x94/0x1a0 [ 389.453008][ T9992] ? kernel_text_address+0x8d/0x100 [ 389.453050][ T9992] ? __kernel_text_address+0xd/0x40 [ 389.453089][ T9992] ? unwind_get_return_address+0x59/0xa0 [ 389.453135][ T9992] ? arch_stack_walk+0xa6/0x100 [ 389.453184][ T9992] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 389.453244][ T9992] ? stack_depot_save_flags+0x28/0xa50 [ 389.453289][ T9992] ? stack_trace_save+0x8e/0xc0 [ 389.453334][ T9992] ? __pfx_stack_trace_save+0x10/0x10 [ 389.453383][ T9992] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 389.453423][ T9992] ? policy_nodemask+0xea/0x4e0 [ 389.453472][ T9992] alloc_pages_mpol+0x1fb/0x550 [ 389.453524][ T9992] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 389.453583][ T9992] alloc_pages_noprof+0x131/0x390 [ 389.453632][ T9992] kimage_alloc_pages+0x75/0x300 [ 389.453674][ T9992] kimage_alloc_control_pages+0x15d/0x910 [ 389.453725][ T9992] ? __pfx_kimage_alloc_control_pages+0x10/0x10 [ 389.453784][ T9992] do_kexec_load+0x480/0x8d0 [ 389.453829][ T9992] ? __pfx_do_kexec_load+0x10/0x10 [ 389.453874][ T9992] ? _copy_from_user+0x59/0xd0 [ 389.453925][ T9992] __x64_sys_kexec_load+0x1bf/0x230 [ 389.453970][ T9992] do_syscall_64+0xcd/0x260 [ 389.454026][ T9992] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 389.454061][ T9992] RIP: 0033:0x7f9bbc38d169 [ 389.454087][ T9992] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 389.454121][ T9992] RSP: 002b:00007f9bbd204038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6 [ 389.454154][ T9992] RAX: ffffffffffffffda RBX: 00007f9bbc5a5fa0 RCX: 00007f9bbc38d169 [ 389.454176][ T9992] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000005 [ 389.454196][ T9992] RBP: 00007f9bbc40e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 389.454216][ T9992] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 389.454236][ T9992] R13: 0000000000000000 R14: 00007f9bbc5a5fa0 R15: 00007ffeaa8cbd78 [ 389.454277][ T9992] [ 389.732115][ T9994] nbd: must specify an index to disconnect [ 389.839858][ T9992] kexec: Could not allocate control_code_buffer [ 391.321151][ T30] audit: type=1800 audit(6038431863.032:27): pid=10032 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1074" name=22050820 dev="tmpfs" ino=1355 res=0 errno=0 [ 391.399287][T10037] ======================================================= [ 391.399287][T10037] WARNING: The mand mount option has been deprecated and [ 391.399287][T10037] and is ignored by this kernel. Remove the mand [ 391.399287][T10037] option from the mount to silence this warning. [ 391.399287][T10037] ======================================================= [ 391.629724][T10042] FAULT_INJECTION: forcing a failure. [ 391.629724][T10042] name failslab, interval 1, probability 0, space 0, times 0 [ 391.653967][T10028] netlink: 'syz.1.1072': attribute type 2 has an invalid length. [ 391.689370][T10042] CPU: 0 UID: 0 PID: 10042 Comm: syz.0.1076 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 391.689412][T10042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 391.689429][T10042] Call Trace: [ 391.689439][T10042] [ 391.689449][T10042] dump_stack_lvl+0x16c/0x1f0 [ 391.689502][T10042] should_fail_ex+0x512/0x640 [ 391.689552][T10042] ? __kmalloc_node_noprof+0xc5/0x500 [ 391.689600][T10042] should_failslab+0xc2/0x120 [ 391.689643][T10042] __kmalloc_node_noprof+0xd8/0x500 [ 391.689686][T10042] ? alloc_slab_obj_exts+0x41/0xa0 [ 391.689727][T10042] alloc_slab_obj_exts+0x41/0xa0 [ 391.689760][T10042] __memcg_slab_post_alloc_hook+0x27b/0x940 [ 391.689819][T10042] ? __register_sysctl_table+0xb3/0x1900 [ 391.689866][T10042] __kmalloc_noprof+0x3f9/0x510 [ 391.689916][T10042] __register_sysctl_table+0xb3/0x1900 [ 391.689965][T10042] ? is_module_address+0x5f/0xf0 [ 391.690003][T10042] ? __pfx___register_sysctl_table+0x10/0x10 [ 391.690049][T10042] ? is_module_address+0x69/0xf0 [ 391.690078][T10042] ? register_net_sysctl_sz+0x228/0x3e0 [ 391.690111][T10042] ? __asan_memcpy+0x3c/0x60 [ 391.690149][T10042] devinet_init_net+0x378/0x910 [ 391.690182][T10042] ? __pfx_devinet_init_net+0x10/0x10 [ 391.690212][T10042] ops_init+0x1df/0x5f0 [ 391.690266][T10042] setup_net+0x21e/0x850 [ 391.690319][T10042] ? __pfx_setup_net+0x10/0x10 [ 391.690372][T10042] ? lockdep_init_map_type+0x5c/0x280 [ 391.690404][T10042] ? __pfx_down_read_killable+0x10/0x10 [ 391.690442][T10042] ? debug_mutex_init+0x37/0x70 [ 391.690489][T10042] copy_net_ns+0x2a6/0x5f0 [ 391.690525][T10042] create_new_namespaces+0x3ea/0xad0 [ 391.690594][T10042] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 391.690647][T10042] ksys_unshare+0x45b/0xa40 [ 391.690677][T10042] ? __pfx_ksys_unshare+0x10/0x10 [ 391.690702][T10042] ? xfd_validate_state+0x5d/0x180 [ 391.690742][T10042] ? rcu_is_watching+0x12/0xc0 [ 391.690812][T10042] __x64_sys_unshare+0x31/0x40 [ 391.690841][T10042] do_syscall_64+0xcd/0x260 [ 391.690897][T10042] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 391.690930][T10042] RIP: 0033:0x7f5bcd98d169 [ 391.690956][T10042] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 391.690989][T10042] RSP: 002b:00007f5bcb7f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 391.691020][T10042] RAX: ffffffffffffffda RBX: 00007f5bcdba5fa0 RCX: 00007f5bcd98d169 [ 391.691053][T10042] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 391.691071][T10042] RBP: 00007f5bcda0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 391.691090][T10042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 391.691108][T10042] R13: 0000000000000000 R14: 00007f5bcdba5fa0 R15: 00007ffdcafaa348 [ 391.691148][T10042] [ 393.161626][T10058] nbd: must specify an index to disconnect [ 395.545868][ T30] audit: type=1800 audit(6038431867.252:28): pid=10078 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1085" name=22050820 dev="tmpfs" ino=1367 res=0 errno=0 [ 395.684137][T10083] nbd: must specify an index to disconnect [ 396.288775][T10096] nbd: must specify an index to disconnect [ 397.084838][T10110] FAULT_INJECTION: forcing a failure. [ 397.084838][T10110] name failslab, interval 1, probability 0, space 0, times 0 [ 397.121865][T10110] CPU: 0 UID: 0 PID: 10110 Comm: syz.0.1094 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 397.121915][T10110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 397.121944][T10110] Call Trace: [ 397.121955][T10110] [ 397.121968][T10110] dump_stack_lvl+0x16c/0x1f0 [ 397.122027][T10110] should_fail_ex+0x512/0x640 [ 397.122069][T10110] ? __kmalloc_noprof+0xbf/0x510 [ 397.122113][T10110] ? __register_sysctl_table+0xb3/0x1900 [ 397.122161][T10110] should_failslab+0xc2/0x120 [ 397.122206][T10110] __kmalloc_noprof+0xd2/0x510 [ 397.122258][T10110] __register_sysctl_table+0xb3/0x1900 [ 397.122308][T10110] ? is_module_address+0x5f/0xf0 [ 397.122347][T10110] ? __pfx___register_sysctl_table+0x10/0x10 [ 397.122396][T10110] ? is_module_address+0x69/0xf0 [ 397.122427][T10110] ? register_net_sysctl_sz+0x228/0x3e0 [ 397.122463][T10110] ? __asan_memcpy+0x3c/0x60 [ 397.122503][T10110] devinet_init_net+0x378/0x910 [ 397.122537][T10110] ? __pfx_devinet_init_net+0x10/0x10 [ 397.122567][T10110] ops_init+0x1df/0x5f0 [ 397.122624][T10110] setup_net+0x21e/0x850 [ 397.122679][T10110] ? __pfx_setup_net+0x10/0x10 [ 397.122727][T10110] ? lockdep_init_map_type+0x5c/0x280 [ 397.122761][T10110] ? __pfx_down_read_killable+0x10/0x10 [ 397.122800][T10110] ? debug_mutex_init+0x37/0x70 [ 397.122848][T10110] copy_net_ns+0x2a6/0x5f0 [ 397.122885][T10110] create_new_namespaces+0x3ea/0xad0 [ 397.122952][T10110] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 397.123007][T10110] ksys_unshare+0x45b/0xa40 [ 397.123037][T10110] ? __pfx_ksys_unshare+0x10/0x10 [ 397.123065][T10110] ? xfd_validate_state+0x5d/0x180 [ 397.123105][T10110] ? rcu_is_watching+0x12/0xc0 [ 397.123157][T10110] __x64_sys_unshare+0x31/0x40 [ 397.123187][T10110] do_syscall_64+0xcd/0x260 [ 397.123242][T10110] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 397.123276][T10110] RIP: 0033:0x7f5bcd98d169 [ 397.123302][T10110] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 397.123335][T10110] RSP: 002b:00007f5bcb7f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 397.123367][T10110] RAX: ffffffffffffffda RBX: 00007f5bcdba5fa0 RCX: 00007f5bcd98d169 [ 397.123388][T10110] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 397.123408][T10110] RBP: 00007f5bcda0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 397.123428][T10110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 397.123447][T10110] R13: 0000000000000000 R14: 00007f5bcdba5fa0 R15: 00007ffdcafaa348 [ 397.123490][T10110] [ 397.694168][ T30] audit: type=1800 audit(6038431869.392:29): pid=10119 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1096" name=22050820 dev="tmpfs" ino=1641 res=0 errno=0 [ 398.531510][ T5853] Bluetooth: hci1: unexpected subevent 0x01 length: 4 < 18 [ 400.027544][T10145] kAFS: No cell specified [ 400.113571][T10150] FAULT_INJECTION: forcing a failure. [ 400.113571][T10150] name failslab, interval 1, probability 0, space 0, times 0 [ 400.150035][T10150] CPU: 0 UID: 0 PID: 10150 Comm: syz.0.1104 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 400.150081][T10150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 400.150100][T10150] Call Trace: [ 400.150110][T10150] [ 400.150122][T10150] dump_stack_lvl+0x16c/0x1f0 [ 400.150179][T10150] should_fail_ex+0x512/0x640 [ 400.150220][T10150] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 400.150266][T10150] should_failslab+0xc2/0x120 [ 400.150310][T10150] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 400.150349][T10150] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 400.150384][T10150] ? sock_alloc_inode+0x25/0x1c0 [ 400.150421][T10150] ? __pfx_sock_alloc_inode+0x10/0x10 [ 400.150450][T10150] sock_alloc_inode+0x25/0x1c0 [ 400.150479][T10150] alloc_inode+0x61/0x240 [ 400.150528][T10150] sock_alloc+0x40/0x280 [ 400.150579][T10150] __sock_create+0xc1/0x8d0 [ 400.150622][T10150] inet_ctl_sock_create+0x94/0x230 [ 400.150657][T10150] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 400.150690][T10150] ? ndisc_net_init+0x1bc/0x250 [ 400.150719][T10150] ? __pfx_ndisc_net_init+0x10/0x10 [ 400.150783][T10150] igmp6_net_init+0x1b2/0x470 [ 400.150815][T10150] ? __pfx_igmp6_net_init+0x10/0x10 [ 400.150844][T10150] ops_init+0x1df/0x5f0 [ 400.150898][T10150] setup_net+0x21e/0x850 [ 400.150951][T10150] ? __pfx_setup_net+0x10/0x10 [ 400.150999][T10150] ? lockdep_init_map_type+0x5c/0x280 [ 400.151032][T10150] ? __pfx_down_read_killable+0x10/0x10 [ 400.151070][T10150] ? debug_mutex_init+0x37/0x70 [ 400.151116][T10150] copy_net_ns+0x2a6/0x5f0 [ 400.151151][T10150] create_new_namespaces+0x3ea/0xad0 [ 400.151208][T10150] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 400.151259][T10150] ksys_unshare+0x45b/0xa40 [ 400.151289][T10150] ? __pfx_ksys_unshare+0x10/0x10 [ 400.151315][T10150] ? xfd_validate_state+0x5d/0x180 [ 400.151353][T10150] ? rcu_is_watching+0x12/0xc0 [ 400.151404][T10150] __x64_sys_unshare+0x31/0x40 [ 400.151432][T10150] do_syscall_64+0xcd/0x260 [ 400.151485][T10150] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 400.151517][T10150] RIP: 0033:0x7f5bcd98d169 [ 400.151542][T10150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 400.151574][T10150] RSP: 002b:00007f5bcb7f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 400.151621][T10150] RAX: ffffffffffffffda RBX: 00007f5bcdba5fa0 RCX: 00007f5bcd98d169 [ 400.151643][T10150] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 400.151663][T10150] RBP: 00007f5bcda0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 400.151684][T10150] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 400.151703][T10150] R13: 0000000000000000 R14: 00007f5bcdba5fa0 R15: 00007ffdcafaa348 [ 400.151746][T10150] [ 400.151779][T10150] socket: no more sockets [ 400.240830][T10157] nbd: must specify an index to disconnect [ 400.307559][T10150] Failed to initialize the IGMP6 autojoin socket (err -23) [ 401.390387][T10172] nfsd: Unknown parameter '' [ 402.160761][T10178] nbd: must specify an index to disconnect [ 402.246611][T10183] nbd: must specify an index to disconnect [ 402.990353][T10207] nbd: must specify an index to disconnect [ 403.751466][T10222] FAULT_INJECTION: forcing a failure. [ 403.751466][T10222] name failslab, interval 1, probability 0, space 0, times 0 [ 403.850455][T10222] CPU: 0 UID: 0 PID: 10222 Comm: syz.1.1125 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 403.850504][T10222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 403.850523][T10222] Call Trace: [ 403.850535][T10222] [ 403.850547][T10222] dump_stack_lvl+0x16c/0x1f0 [ 403.850624][T10222] should_fail_ex+0x512/0x640 [ 403.850681][T10222] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 403.850758][T10222] should_failslab+0xc2/0x120 [ 403.850806][T10222] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 403.850855][T10222] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 403.850901][T10222] ? fib_notifier_ops_register+0x32/0x270 [ 403.850961][T10222] kmemdup_noprof+0x29/0x60 [ 403.850993][T10222] fib_notifier_ops_register+0x32/0x270 [ 403.851050][T10222] fib4_notifier_init+0x4f/0xd0 [ 403.851100][T10222] fib_net_init+0xbf/0x3f0 [ 403.851152][T10222] ? __pfx_fib_net_init+0x10/0x10 [ 403.851202][T10222] ? lockdep_init_map_type+0x5c/0x280 [ 403.851238][T10222] ? do_init_timer+0xc9/0x110 [ 403.851288][T10222] ? devinet_init_net+0x5c2/0x910 [ 403.851327][T10222] ? __pfx_fib_net_init+0x10/0x10 [ 403.851376][T10222] ops_init+0x1df/0x5f0 [ 403.851433][T10222] setup_net+0x21e/0x850 [ 403.851489][T10222] ? __pfx_setup_net+0x10/0x10 [ 403.851539][T10222] ? lockdep_init_map_type+0x5c/0x280 [ 403.851573][T10222] ? __pfx_down_read_killable+0x10/0x10 [ 403.851612][T10222] ? debug_mutex_init+0x37/0x70 [ 403.851660][T10222] copy_net_ns+0x2a6/0x5f0 [ 403.851698][T10222] create_new_namespaces+0x3ea/0xad0 [ 403.851765][T10222] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 403.851818][T10222] ksys_unshare+0x45b/0xa40 [ 403.851848][T10222] ? __pfx_ksys_unshare+0x10/0x10 [ 403.851877][T10222] ? xfd_validate_state+0x5d/0x180 [ 403.851917][T10222] ? rcu_is_watching+0x12/0xc0 [ 403.851971][T10222] __x64_sys_unshare+0x31/0x40 [ 403.852000][T10222] do_syscall_64+0xcd/0x260 [ 403.852056][T10222] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 403.852091][T10222] RIP: 0033:0x7f5979b8d169 [ 403.852118][T10222] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 403.852152][T10222] RSP: 002b:00007f597a90b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 403.852184][T10222] RAX: ffffffffffffffda RBX: 00007f5979da5fa0 RCX: 00007f5979b8d169 [ 403.852206][T10222] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 403.852226][T10222] RBP: 00007f5979c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 403.852246][T10222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 403.852266][T10222] R13: 0000000000000000 R14: 00007f5979da5fa0 R15: 00007ffc7f6f3a68 [ 403.852309][T10222] [ 404.121009][ C0] vkms_vblank_simulate: vblank timer overrun [ 405.137886][T10238] nbd: must specify an index to disconnect [ 407.027466][T10263] nfsd: Unknown parameter '' [ 407.091133][T10265] nbd: must specify an index to disconnect [ 409.054491][T10287] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 409.066912][T10287] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 409.085115][T10287] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 409.102694][T10287] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 410.396353][ T5853] Bluetooth: hci0: command 0x0406 tx timeout [ 411.121470][ T5853] Bluetooth: hci3: command 0x0406 tx timeout [ 411.127796][ T55] Bluetooth: hci2: command 0x0406 tx timeout [ 411.133920][ T5859] Bluetooth: hci1: command 0x0406 tx timeout [ 413.330464][T10354] nbd: must specify an index to disconnect [ 414.816466][T10379] FAULT_INJECTION: forcing a failure. [ 414.816466][T10379] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 414.856048][T10379] CPU: 1 UID: 0 PID: 10379 Comm: syz.3.1166 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 414.856094][T10379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 414.856125][T10379] Call Trace: [ 414.856135][T10379] [ 414.856147][T10379] dump_stack_lvl+0x16c/0x1f0 [ 414.856202][T10379] should_fail_ex+0x512/0x640 [ 414.856248][T10379] _copy_to_user+0x32/0xd0 [ 414.856294][T10379] simple_read_from_buffer+0xcb/0x170 [ 414.856330][T10379] proc_fail_nth_read+0x197/0x270 [ 414.856364][T10379] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 414.856399][T10379] ? rw_verify_area+0xcf/0x680 [ 414.856446][T10379] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 414.856479][T10379] vfs_read+0x1de/0xc70 [ 414.856516][T10379] ? __pfx___mutex_lock+0x10/0x10 [ 414.856563][T10379] ? __pfx_vfs_read+0x10/0x10 [ 414.856606][T10379] ? __fget_files+0x20e/0x3c0 [ 414.856652][T10379] ksys_read+0x12a/0x240 [ 414.856689][T10379] ? __pfx_ksys_read+0x10/0x10 [ 414.856732][T10379] do_syscall_64+0xcd/0x260 [ 414.856782][T10379] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 414.856813][T10379] RIP: 0033:0x7fc088f8bb7c [ 414.856836][T10379] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 414.856867][T10379] RSP: 002b:00007fc089dbd030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 414.856895][T10379] RAX: ffffffffffffffda RBX: 00007fc0891a6080 RCX: 00007fc088f8bb7c [ 414.856915][T10379] RDX: 000000000000000f RSI: 00007fc089dbd0a0 RDI: 0000000000000006 [ 414.856933][T10379] RBP: 00007fc089dbd090 R08: 0000000000000000 R09: 0000000000000000 [ 414.856951][T10379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 414.856968][T10379] R13: 0000000000000000 R14: 00007fc0891a6080 R15: 00007ffd5c361538 [ 414.857008][T10379] [ 415.643139][T10392] nbd: must specify an index to disconnect [ 416.807850][T10406] nbd: must specify an index to disconnect [ 418.615133][T10427] FAULT_INJECTION: forcing a failure. [ 418.615133][T10427] name failslab, interval 1, probability 0, space 0, times 0 [ 418.678338][T10427] CPU: 0 UID: 0 PID: 10427 Comm: syz.3.1177 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 418.678387][T10427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 418.678408][T10427] Call Trace: [ 418.678419][T10427] [ 418.678431][T10427] dump_stack_lvl+0x16c/0x1f0 [ 418.678491][T10427] should_fail_ex+0x512/0x640 [ 418.678532][T10427] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 418.678583][T10427] should_failslab+0xc2/0x120 [ 418.678627][T10427] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 418.678684][T10427] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 418.678728][T10427] ? fib_notifier_ops_register+0x32/0x270 [ 418.678785][T10427] kmemdup_noprof+0x29/0x60 [ 418.678816][T10427] fib_notifier_ops_register+0x32/0x270 [ 418.678867][T10427] fib4_notifier_init+0x4f/0xd0 [ 418.678904][T10427] fib_net_init+0xbf/0x3f0 [ 418.678944][T10427] ? __pfx___register_sysctl_table+0x10/0x10 [ 418.678982][T10427] ? __pfx_fib_net_init+0x10/0x10 [ 418.679017][T10427] ? lockdep_init_map_type+0x5c/0x280 [ 418.679042][T10427] ? do_init_timer+0xc9/0x110 [ 418.679081][T10427] ? devinet_init_net+0x5c2/0x910 [ 418.679105][T10427] ? __pfx_fib_net_init+0x10/0x10 [ 418.679139][T10427] ops_init+0x1df/0x5f0 [ 418.679178][T10427] setup_net+0x21e/0x850 [ 418.679218][T10427] ? __pfx_setup_net+0x10/0x10 [ 418.679252][T10427] ? lockdep_init_map_type+0x5c/0x280 [ 418.679277][T10427] ? __pfx_down_read_killable+0x10/0x10 [ 418.679305][T10427] ? debug_mutex_init+0x37/0x70 [ 418.679338][T10427] copy_net_ns+0x2a6/0x5f0 [ 418.679364][T10427] create_new_namespaces+0x3ea/0xad0 [ 418.679405][T10427] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 418.679445][T10427] ksys_unshare+0x45b/0xa40 [ 418.679466][T10427] ? __pfx_ksys_unshare+0x10/0x10 [ 418.679485][T10427] ? xfd_validate_state+0x5d/0x180 [ 418.679512][T10427] ? rcu_is_watching+0x12/0xc0 [ 418.679548][T10427] __x64_sys_unshare+0x31/0x40 [ 418.679568][T10427] do_syscall_64+0xcd/0x260 [ 418.679607][T10427] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 418.679629][T10427] RIP: 0033:0x7fc088f8d169 [ 418.679648][T10427] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 418.679680][T10427] RSP: 002b:00007fc089dde038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 418.679701][T10427] RAX: ffffffffffffffda RBX: 00007fc0891a5fa0 RCX: 00007fc088f8d169 [ 418.679717][T10427] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 418.679731][T10427] RBP: 00007fc08900e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 418.679745][T10427] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 418.679759][T10427] R13: 0000000000000000 R14: 00007fc0891a5fa0 R15: 00007ffd5c361538 [ 418.679788][T10427] [ 419.897257][T10441] nbd: must specify an index to disconnect [ 420.066025][ T30] audit: type=1800 audit(6038431899.765:30): pid=10443 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1184" name=22050820 dev="tmpfs" ino=1763 res=0 errno=0 [ 420.460342][T10454] syz.0.1186 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 422.185982][ T30] audit: type=1800 audit(6038431901.875:31): pid=10479 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1194" name=22050820 dev="tmpfs" ino=1518 res=0 errno=0 [ 422.446728][T10486] nbd: must specify an index to disconnect [ 423.512437][T10502] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1989559738.2581557979.3574392550), cmd(18) [ 423.702220][T10508] device-mapper: ioctl: only supply one of name or uuid, cmd(17) [ 423.902798][T10512] FAULT_INJECTION: forcing a failure. [ 423.902798][T10512] name failslab, interval 1, probability 0, space 0, times 0 [ 423.948432][T10512] CPU: 0 UID: 0 PID: 10512 Comm: syz.1.1202 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 423.948486][T10512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 423.948506][T10512] Call Trace: [ 423.948518][T10512] [ 423.948530][T10512] dump_stack_lvl+0x16c/0x1f0 [ 423.948589][T10512] should_fail_ex+0x512/0x640 [ 423.948631][T10512] ? __kmalloc_noprof+0xbf/0x510 [ 423.948676][T10512] ? __netlink_kernel_create+0x17f/0x750 [ 423.948727][T10512] should_failslab+0xc2/0x120 [ 423.948775][T10512] __kmalloc_noprof+0xd2/0x510 [ 423.948826][T10512] __netlink_kernel_create+0x17f/0x750 [ 423.948883][T10512] ? __pfx___netlink_kernel_create+0x10/0x10 [ 423.948950][T10512] fib_net_init+0x26d/0x3f0 [ 423.948999][T10512] ? __pfx___register_sysctl_table+0x10/0x10 [ 423.949051][T10512] ? __pfx_fib_net_init+0x10/0x10 [ 423.949100][T10512] ? lockdep_init_map_type+0x5c/0x280 [ 423.949135][T10512] ? __pfx_nl_fib_input+0x10/0x10 [ 423.949190][T10512] ? devinet_init_net+0x5c2/0x910 [ 423.949233][T10512] ? __pfx_fib_net_init+0x10/0x10 [ 423.949281][T10512] ops_init+0x1df/0x5f0 [ 423.949346][T10512] setup_net+0x21e/0x850 [ 423.949402][T10512] ? __pfx_setup_net+0x10/0x10 [ 423.949452][T10512] ? lockdep_init_map_type+0x5c/0x280 [ 423.949485][T10512] ? __pfx_down_read_killable+0x10/0x10 [ 423.949524][T10512] ? debug_mutex_init+0x37/0x70 [ 423.949572][T10512] copy_net_ns+0x2a6/0x5f0 [ 423.949610][T10512] create_new_namespaces+0x3ea/0xad0 [ 423.949669][T10512] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 423.949724][T10512] ksys_unshare+0x45b/0xa40 [ 423.949755][T10512] ? __pfx_ksys_unshare+0x10/0x10 [ 423.949782][T10512] ? xfd_validate_state+0x5d/0x180 [ 423.949821][T10512] ? rcu_is_watching+0x12/0xc0 [ 423.949870][T10512] __x64_sys_unshare+0x31/0x40 [ 423.949898][T10512] do_syscall_64+0xcd/0x260 [ 423.949950][T10512] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 423.949983][T10512] RIP: 0033:0x7f5979b8d169 [ 423.950008][T10512] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 423.950041][T10512] RSP: 002b:00007f597a90b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 423.950071][T10512] RAX: ffffffffffffffda RBX: 00007f5979da5fa0 RCX: 00007f5979b8d169 [ 423.950093][T10512] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 423.950113][T10512] RBP: 00007f5979c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 423.950133][T10512] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 423.950152][T10512] R13: 0000000000000000 R14: 00007f5979da5fa0 R15: 00007ffc7f6f3a68 [ 423.950195][T10512] [ 425.372507][T10529] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1206'. [ 426.329857][T10545] FAULT_INJECTION: forcing a failure. [ 426.329857][T10545] name failslab, interval 1, probability 0, space 0, times 0 [ 426.347920][T10545] CPU: 0 UID: 0 PID: 10545 Comm: syz.0.1210 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 426.347963][T10545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 426.347982][T10545] Call Trace: [ 426.347991][T10545] [ 426.348002][T10545] dump_stack_lvl+0x16c/0x1f0 [ 426.348056][T10545] should_fail_ex+0x512/0x640 [ 426.348095][T10545] ? __kmalloc_noprof+0xbf/0x510 [ 426.348143][T10545] ? alloc_pipe_info+0x1ec/0x590 [ 426.348180][T10545] should_failslab+0xc2/0x120 [ 426.348224][T10545] __kmalloc_noprof+0xd2/0x510 [ 426.348271][T10545] alloc_pipe_info+0x1ec/0x590 [ 426.348315][T10545] splice_direct_to_actor+0x77d/0xa30 [ 426.348352][T10545] ? __pfx_direct_splice_actor+0x10/0x10 [ 426.348391][T10545] ? __pfx_aa_file_perm+0x10/0x10 [ 426.348440][T10545] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 426.348473][T10545] ? get_pid_task+0xfc/0x250 [ 426.348514][T10545] do_splice_direct+0x174/0x240 [ 426.348549][T10545] ? __pfx_do_splice_direct+0x10/0x10 [ 426.348585][T10545] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 426.348620][T10545] ? bpf_lsm_file_permission+0x9/0x10 [ 426.348658][T10545] ? security_file_permission+0x71/0x210 [ 426.348706][T10545] ? rw_verify_area+0xcf/0x680 [ 426.348760][T10545] do_sendfile+0xafd/0xe50 [ 426.348798][T10545] ? __pfx_do_sendfile+0x10/0x10 [ 426.348829][T10545] ? __fget_files+0x20e/0x3c0 [ 426.348875][T10545] __x64_sys_sendfile64+0x1d8/0x220 [ 426.348915][T10545] ? ksys_write+0x1b9/0x240 [ 426.348947][T10545] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 426.348987][T10545] ? rcu_is_watching+0x12/0xc0 [ 426.349039][T10545] do_syscall_64+0xcd/0x260 [ 426.349090][T10545] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 426.349126][T10545] RIP: 0033:0x7f5bcd98d169 [ 426.349151][T10545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 426.349182][T10545] RSP: 002b:00007f5bcb7d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 426.349211][T10545] RAX: ffffffffffffffda RBX: 00007f5bcdba6080 RCX: 00007f5bcd98d169 [ 426.349231][T10545] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000005 [ 426.349250][T10545] RBP: 00007f5bcb7d5090 R08: 0000000000000000 R09: 0000000000000000 [ 426.349269][T10545] R10: 0010000800000003 R11: 0000000000000246 R12: 0000000000000001 [ 426.349288][T10545] R13: 0000000000000000 R14: 00007f5bcdba6080 R15: 00007ffdcafaa348 [ 426.349328][T10545] [ 426.671826][T10527] Invalid ELF header magic: != ELF [ 427.052493][T10552] nbd: must specify an index to disconnect [ 427.414518][T10562] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1214'. [ 428.417248][T10575] netlink: 146 bytes leftover after parsing attributes in process `syz.3.1219'. [ 429.183395][T10584] nbd: must specify an index to disconnect [ 430.241300][T10604] nfsd: Unknown parameter '' [ 432.774488][T10630] nbd: must specify an index to disconnect [ 432.904328][T10635] nfsd: Unknown parameter '' [ 433.093302][T10641] FAULT_INJECTION: forcing a failure. [ 433.093302][T10641] name failslab, interval 1, probability 0, space 0, times 0 [ 433.181618][T10641] CPU: 0 UID: 0 PID: 10641 Comm: syz.1.1239 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 433.181661][T10641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 433.181688][T10641] Call Trace: [ 433.181698][T10641] [ 433.181709][T10641] dump_stack_lvl+0x16c/0x1f0 [ 433.181780][T10641] should_fail_ex+0x512/0x640 [ 433.181834][T10641] ? __kmalloc_noprof+0xbf/0x510 [ 433.181894][T10641] ? sk_prot_alloc+0x1a8/0x2a0 [ 433.181922][T10641] should_failslab+0xc2/0x120 [ 433.181966][T10641] __kmalloc_noprof+0xd2/0x510 [ 433.182006][T10641] ? evm_inode_alloc_security+0x49/0xc0 [ 433.182047][T10641] sk_prot_alloc+0x1a8/0x2a0 [ 433.182083][T10641] sk_alloc+0x36/0xc20 [ 433.182128][T10641] __netlink_create+0x5e/0x2c0 [ 433.182177][T10641] __netlink_kernel_create+0xed/0x750 [ 433.182233][T10641] ? __pfx___netlink_kernel_create+0x10/0x10 [ 433.182300][T10641] fib_net_init+0x26d/0x3f0 [ 433.182349][T10641] ? __pfx___register_sysctl_table+0x10/0x10 [ 433.182400][T10641] ? __pfx_fib_net_init+0x10/0x10 [ 433.182449][T10641] ? lockdep_init_map_type+0x5c/0x280 [ 433.182483][T10641] ? __pfx_nl_fib_input+0x10/0x10 [ 433.182541][T10641] ? devinet_init_net+0x5c2/0x910 [ 433.182576][T10641] ? __pfx_fib_net_init+0x10/0x10 [ 433.182624][T10641] ops_init+0x1df/0x5f0 [ 433.182687][T10641] setup_net+0x21e/0x850 [ 433.182744][T10641] ? __pfx_setup_net+0x10/0x10 [ 433.182803][T10641] ? lockdep_init_map_type+0x5c/0x280 [ 433.182835][T10641] ? __pfx_down_read_killable+0x10/0x10 [ 433.182874][T10641] ? debug_mutex_init+0x37/0x70 [ 433.182920][T10641] copy_net_ns+0x2a6/0x5f0 [ 433.182955][T10641] create_new_namespaces+0x3ea/0xad0 [ 433.183014][T10641] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 433.183066][T10641] ksys_unshare+0x45b/0xa40 [ 433.183096][T10641] ? __pfx_ksys_unshare+0x10/0x10 [ 433.183123][T10641] ? xfd_validate_state+0x5d/0x180 [ 433.183161][T10641] ? rcu_is_watching+0x12/0xc0 [ 433.183212][T10641] __x64_sys_unshare+0x31/0x40 [ 433.183240][T10641] do_syscall_64+0xcd/0x260 [ 433.183294][T10641] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 433.183327][T10641] RIP: 0033:0x7f5979b8d169 [ 433.183352][T10641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 433.183385][T10641] RSP: 002b:00007f597a90b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 433.183415][T10641] RAX: ffffffffffffffda RBX: 00007f5979da5fa0 RCX: 00007f5979b8d169 [ 433.183436][T10641] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 433.183455][T10641] RBP: 00007f5979c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 433.183474][T10641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 433.183492][T10641] R13: 0000000000000000 R14: 00007f5979da5fa0 R15: 00007ffc7f6f3a68 [ 433.183533][T10641] [ 434.299935][T10662] nbd: must specify an index to disconnect [ 435.811696][T10687] nbd: must specify an index to disconnect [ 436.338547][T10702] nbd: must specify an index to disconnect [ 437.460422][T10715] netlink: 'syz.2.1256': attribute type 4 has an invalid length. [ 437.479561][T10715] netlink: 314 bytes leftover after parsing attributes in process `syz.2.1256'. [ 437.667428][T10721] nbd: must specify an index to disconnect [ 437.774689][T10724] nbd: must specify an index to disconnect [ 438.555810][T10730] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1262'. [ 440.632309][ T30] audit: type=1800 audit(6038431920.345:32): pid=10761 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1270" name=22050820 dev="tmpfs" ino=1891 res=0 errno=0 [ 440.915090][T10766] nbd: must specify an index to disconnect [ 441.667078][T10776] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1275'. [ 442.019277][T10779] FAULT_INJECTION: forcing a failure. [ 442.019277][T10779] name failslab, interval 1, probability 0, space 0, times 0 [ 442.073516][T10779] CPU: 0 UID: 0 PID: 10779 Comm: syz.2.1276 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 442.073551][T10779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 442.073565][T10779] Call Trace: [ 442.073573][T10779] [ 442.073582][T10779] dump_stack_lvl+0x16c/0x1f0 [ 442.073624][T10779] should_fail_ex+0x512/0x640 [ 442.073654][T10779] ? __kmalloc_noprof+0xbf/0x510 [ 442.073685][T10779] ? lsm_blob_alloc+0x68/0x90 [ 442.073706][T10779] should_failslab+0xc2/0x120 [ 442.073738][T10779] __kmalloc_noprof+0xd2/0x510 [ 442.073786][T10779] lsm_blob_alloc+0x68/0x90 [ 442.073809][T10779] security_sk_alloc+0x30/0x270 [ 442.073840][T10779] sk_prot_alloc+0x1c7/0x2a0 [ 442.073866][T10779] sk_alloc+0x36/0xc20 [ 442.073899][T10779] __netlink_create+0x5e/0x2c0 [ 442.073933][T10779] __netlink_kernel_create+0xed/0x750 [ 442.073972][T10779] ? __pfx___netlink_kernel_create+0x10/0x10 [ 442.074019][T10779] fib_net_init+0x26d/0x3f0 [ 442.074054][T10779] ? __pfx___register_sysctl_table+0x10/0x10 [ 442.074090][T10779] ? __pfx_fib_net_init+0x10/0x10 [ 442.074125][T10779] ? lockdep_init_map_type+0x5c/0x280 [ 442.074149][T10779] ? __pfx_nl_fib_input+0x10/0x10 [ 442.074188][T10779] ? devinet_init_net+0x5c2/0x910 [ 442.074212][T10779] ? __pfx_fib_net_init+0x10/0x10 [ 442.074247][T10779] ops_init+0x1df/0x5f0 [ 442.074286][T10779] setup_net+0x21e/0x850 [ 442.074325][T10779] ? __pfx_setup_net+0x10/0x10 [ 442.074360][T10779] ? lockdep_init_map_type+0x5c/0x280 [ 442.074383][T10779] ? __pfx_down_read_killable+0x10/0x10 [ 442.074410][T10779] ? debug_mutex_init+0x37/0x70 [ 442.074443][T10779] copy_net_ns+0x2a6/0x5f0 [ 442.074468][T10779] create_new_namespaces+0x3ea/0xad0 [ 442.074510][T10779] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 442.074548][T10779] ksys_unshare+0x45b/0xa40 [ 442.074569][T10779] ? __pfx_ksys_unshare+0x10/0x10 [ 442.074588][T10779] ? xfd_validate_state+0x5d/0x180 [ 442.074616][T10779] ? rcu_is_watching+0x12/0xc0 [ 442.074652][T10779] __x64_sys_unshare+0x31/0x40 [ 442.074672][T10779] do_syscall_64+0xcd/0x260 [ 442.074710][T10779] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 442.074733][T10779] RIP: 0033:0x7f9bbc38d169 [ 442.074758][T10779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 442.074781][T10779] RSP: 002b:00007f9bbd204038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 442.074803][T10779] RAX: ffffffffffffffda RBX: 00007f9bbc5a5fa0 RCX: 00007f9bbc38d169 [ 442.074819][T10779] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 442.074832][T10779] RBP: 00007f9bbc40e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 442.074846][T10779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 442.074860][T10779] R13: 0000000000000000 R14: 00007f9bbc5a5fa0 R15: 00007ffeaa8cbd78 [ 442.074889][T10779] [ 443.183301][T10794] nfsd: Unknown parameter '' [ 443.189230][T10794] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1278'. [ 444.695305][T10816] nbd: must specify an index to disconnect [ 445.371731][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.380409][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 445.708103][T10827] nfsd: Unknown parameter '' [ 445.734916][T10827] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1288'. [ 446.276681][T10834] FAULT_INJECTION: forcing a failure. [ 446.276681][T10834] name failslab, interval 1, probability 0, space 0, times 0 [ 446.308993][T10834] CPU: 0 UID: 0 PID: 10834 Comm: syz.3.1290 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 446.309024][T10834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 446.309037][T10834] Call Trace: [ 446.309044][T10834] [ 446.309052][T10834] dump_stack_lvl+0x16c/0x1f0 [ 446.309091][T10834] should_fail_ex+0x512/0x640 [ 446.309119][T10834] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 446.309168][T10834] should_failslab+0xc2/0x120 [ 446.309200][T10834] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 446.309229][T10834] ? alloc_empty_file+0x55/0x1e0 [ 446.309264][T10834] alloc_empty_file+0x55/0x1e0 [ 446.309297][T10834] path_openat+0xe0/0x2d40 [ 446.309321][T10834] ? __x64_sys_openat+0x174/0x210 [ 446.309353][T10834] ? do_syscall_64+0xcd/0x260 [ 446.309386][T10834] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 446.309424][T10834] ? __pfx_path_openat+0x10/0x10 [ 446.309458][T10834] do_filp_open+0x20b/0x470 [ 446.309484][T10834] ? __pfx_do_filp_open+0x10/0x10 [ 446.309530][T10834] ? alloc_fd+0x471/0x7d0 [ 446.309563][T10834] do_sys_openat2+0x11b/0x1d0 [ 446.309594][T10834] ? __pfx_do_sys_openat2+0x10/0x10 [ 446.309629][T10834] ? __fget_files+0x20e/0x3c0 [ 446.309652][T10834] ? __up_read+0x140/0x750 [ 446.309681][T10834] __x64_sys_openat+0x174/0x210 [ 446.309714][T10834] ? __pfx___x64_sys_openat+0x10/0x10 [ 446.309746][T10834] ? ksys_write+0x1b9/0x240 [ 446.309779][T10834] do_syscall_64+0xcd/0x260 [ 446.309815][T10834] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 446.309838][T10834] RIP: 0033:0x7fc088f8d169 [ 446.309855][T10834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 446.309877][T10834] RSP: 002b:00007fc089dde038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 446.309898][T10834] RAX: ffffffffffffffda RBX: 00007fc0891a5fa0 RCX: 00007fc088f8d169 [ 446.309913][T10834] RDX: 000000000008e000 RSI: 00002000000000c0 RDI: ffffffffffffff9c [ 446.309927][T10834] RBP: 00007fc089dde090 R08: 0000000000000000 R09: 0000000000000000 [ 446.309941][T10834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 446.309954][T10834] R13: 0000000000000001 R14: 00007fc0891a5fa0 R15: 00007ffd5c361538 [ 446.309982][T10834] [ 446.620753][T10836] nbd: must specify an index to disconnect [ 448.569049][T10865] nbd: must specify an index to disconnect [ 449.651537][T10883] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1306'. [ 450.759123][T10883] sd 0:0:1:0: PR command failed: 1026 [ 450.859880][T10883] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 450.898941][T10883] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 452.193165][T10916] nbd: must specify an index to disconnect [ 453.259293][ T30] audit: type=1800 audit(6038431932.975:33): pid=10931 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1318" name=22050820 dev="tmpfs" ino=1564 res=0 errno=0 [ 453.259403][T10931] FAULT_INJECTION: forcing a failure. [ 453.259403][T10931] name failslab, interval 1, probability 0, space 0, times 0 [ 453.569418][T10931] CPU: 0 UID: 0 PID: 10931 Comm: syz.2.1318 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 453.569464][T10931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 453.569483][T10931] Call Trace: [ 453.569492][T10931] [ 453.569504][T10931] dump_stack_lvl+0x16c/0x1f0 [ 453.569558][T10931] should_fail_ex+0x512/0x640 [ 453.569597][T10931] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 453.569636][T10931] should_failslab+0xc2/0x120 [ 453.569679][T10931] __kmalloc_cache_noprof+0x6a/0x3e0 [ 453.569716][T10931] ? ima_add_digest_entry+0x52/0x540 [ 453.569775][T10931] ima_add_digest_entry+0x52/0x540 [ 453.569832][T10931] ima_add_template_entry+0x452/0x870 [ 453.569896][T10931] ? __pfx_ima_add_template_entry+0x10/0x10 [ 453.569946][T10931] ? __kmalloc_noprof+0x242/0x510 [ 453.569991][T10931] ? ima_calc_field_array_hash+0x371/0x440 [ 453.570033][T10931] ima_store_template+0xda/0x150 [ 453.570073][T10931] ima_store_measurement+0x224/0x5c0 [ 453.570113][T10931] ? __pfx_ima_store_measurement+0x10/0x10 [ 453.570150][T10931] ? vfs_getxattr_alloc+0xec/0x340 [ 453.570207][T10931] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 453.570268][T10931] process_measurement+0x1eec/0x2360 [ 453.570312][T10931] ? __pfx_process_measurement+0x10/0x10 [ 453.570341][T10931] ? __lock_acquire+0x5ca/0x1ba0 [ 453.570430][T10931] ? get_pid_task+0x106/0x250 [ 453.570470][T10931] ima_file_mmap+0x1b1/0x1d0 [ 453.570501][T10931] ? __pfx_ima_file_mmap+0x10/0x10 [ 453.570542][T10931] security_mmap_file+0x88c/0x990 [ 453.570592][T10931] vm_mmap_pgoff+0xec/0x450 [ 453.570630][T10931] ? find_held_lock+0x2b/0x80 [ 453.570672][T10931] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 453.570716][T10931] ? __fget_files+0x20e/0x3c0 [ 453.570760][T10931] ksys_mmap_pgoff+0x32c/0x5c0 [ 453.570791][T10931] ? __pfx_ksys_write+0x10/0x10 [ 453.570823][T10931] ? rcu_is_watching+0x12/0xc0 [ 453.570869][T10931] __x64_sys_mmap+0x125/0x190 [ 453.570912][T10931] do_syscall_64+0xcd/0x260 [ 453.570967][T10931] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 453.571000][T10931] RIP: 0033:0x7f9bbc38d169 [ 453.571025][T10931] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 453.571056][T10931] RSP: 002b:00007f9bbd204038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 453.571085][T10931] RAX: ffffffffffffffda RBX: 00007f9bbc5a5fa0 RCX: 00007f9bbc38d169 [ 453.571106][T10931] RDX: fffffffffffffffe RSI: 0000000000000002 RDI: 0000000001000000 [ 453.571126][T10931] RBP: 00007f9bbd204090 R08: 0000000000000002 R09: 0000000000008000 [ 453.571146][T10931] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000002 [ 453.571165][T10931] R13: 0000000000000000 R14: 00007f9bbc5a5fa0 R15: 00007ffeaa8cbd78 [ 453.571213][T10931] [ 453.571226][T10931] ima: OUT OF MEMORY ERROR creating queue entry [ 453.876650][ T30] audit: type=1804 audit(6038431933.595:34): pid=10931 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.2.1318" name=2F6E6577726F6F742F3239352F22050820 dev="tmpfs" ino=1564 res=0 errno=0 [ 454.156825][T10945] nbd: must specify an index to disconnect [ 455.808135][T10970] nbd: must specify an index to disconnect [ 456.464512][T10981] FAULT_INJECTION: forcing a failure. [ 456.464512][T10981] name failslab, interval 1, probability 0, space 0, times 0 [ 456.566039][T10981] CPU: 0 UID: 0 PID: 10981 Comm: syz.3.1331 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 456.566088][T10981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 456.566108][T10981] Call Trace: [ 456.566120][T10981] [ 456.566132][T10981] dump_stack_lvl+0x16c/0x1f0 [ 456.566191][T10981] should_fail_ex+0x512/0x640 [ 456.566233][T10981] ? __kmalloc_noprof+0xbf/0x510 [ 456.566278][T10981] ? __netlink_kernel_create+0x17f/0x750 [ 456.566329][T10981] should_failslab+0xc2/0x120 [ 456.566374][T10981] __kmalloc_noprof+0xd2/0x510 [ 456.566424][T10981] __netlink_kernel_create+0x17f/0x750 [ 456.566481][T10981] ? __pfx___netlink_kernel_create+0x10/0x10 [ 456.566547][T10981] fib_net_init+0x26d/0x3f0 [ 456.566596][T10981] ? __pfx___register_sysctl_table+0x10/0x10 [ 456.566648][T10981] ? __pfx_fib_net_init+0x10/0x10 [ 456.566697][T10981] ? lockdep_init_map_type+0x5c/0x280 [ 456.566731][T10981] ? __pfx_nl_fib_input+0x10/0x10 [ 456.566796][T10981] ? devinet_init_net+0x5c2/0x910 [ 456.566831][T10981] ? __pfx_fib_net_init+0x10/0x10 [ 456.566878][T10981] ops_init+0x1df/0x5f0 [ 456.566934][T10981] setup_net+0x21e/0x850 [ 456.566989][T10981] ? __pfx_setup_net+0x10/0x10 [ 456.567039][T10981] ? lockdep_init_map_type+0x5c/0x280 [ 456.567073][T10981] ? __pfx_down_read_killable+0x10/0x10 [ 456.567112][T10981] ? debug_mutex_init+0x37/0x70 [ 456.567160][T10981] copy_net_ns+0x2a6/0x5f0 [ 456.567197][T10981] create_new_namespaces+0x3ea/0xad0 [ 456.567256][T10981] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 456.567311][T10981] ksys_unshare+0x45b/0xa40 [ 456.567342][T10981] ? __pfx_ksys_unshare+0x10/0x10 [ 456.567370][T10981] ? xfd_validate_state+0x5d/0x180 [ 456.567410][T10981] ? rcu_is_watching+0x12/0xc0 [ 456.567463][T10981] __x64_sys_unshare+0x31/0x40 [ 456.567492][T10981] do_syscall_64+0xcd/0x260 [ 456.567547][T10981] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 456.567580][T10981] RIP: 0033:0x7fc088f8d169 [ 456.567606][T10981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 456.567639][T10981] RSP: 002b:00007fc089dde038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 456.567670][T10981] RAX: ffffffffffffffda RBX: 00007fc0891a5fa0 RCX: 00007fc088f8d169 [ 456.567690][T10981] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 456.567710][T10981] RBP: 00007fc08900e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 456.567730][T10981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 456.567750][T10981] R13: 0000000000000000 R14: 00007fc0891a5fa0 R15: 00007ffd5c361538 [ 456.567800][T10981] [ 457.960838][T10989] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1334'. [ 458.995301][T10996] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1335'. [ 459.883144][T11020] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 459.883144][T11020] The task syz.3.1341 (11020) triggered the difference, watch for misbehavior. [ 459.986255][T11020] snd_aloop snd_aloop.0: control 16781581:65535:6:é'x?F¢é/èìzFË·fCªáª:8 is already present [ 460.257967][T11028] nfsd: Unknown parameter '' [ 461.209206][T11031] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1345'. [ 461.966978][ T5853] Bluetooth: hci1: unexpected subevent 0x01 length: 125 > 18 [ 461.975657][ T5853] Bluetooth: hci1: Invalid handle: 0x1e1a > 0x0eff [ 462.566090][T11064] mkiss: ax0: crc mode is auto. [ 463.707591][ T30] audit: type=1800 audit(6038431943.425:35): pid=11084 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1358" name=22050820 dev="tmpfs" ino=1847 res=0 errno=0 [ 463.821733][T11086] netlink: 146 bytes leftover after parsing attributes in process `syz.0.1359'. [ 464.219385][T11092] nbd: must specify an index to disconnect [ 464.272471][T11095] nfsd: Unknown parameter '' [ 464.688219][T11087] sd 0:0:1:0: PR command failed: 1026 [ 464.746125][T11087] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 464.752971][T11087] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 465.070501][T11105] nbd: must specify an index to disconnect [ 465.344916][T11099] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1363'. [ 467.293875][T11130] nbd: must specify an index to disconnect [ 468.344281][T11126] sd 0:0:1:0: PR command failed: 1026 [ 468.443048][T11126] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 468.537788][T11126] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 468.582566][T11148] nbd: must specify an index to disconnect [ 469.209859][T11160] nfsd: Unknown parameter '' [ 470.769181][T11186] nbd: must specify an index to disconnect [ 472.162325][T11205] nbd: must specify an index to disconnect [ 475.648654][T11239] nfsd: Unknown parameter '' [ 475.708054][T11242] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1400'. [ 477.158346][T11266] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 477.414515][T11273] nfsd: Unknown parameter '' [ 478.141395][T11292] nbd: must specify an index to disconnect [ 478.331161][T11298] nbd: must specify an index to disconnect [ 478.804436][T11280] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1412'. [ 480.152869][T11315] nfsd: Unknown parameter '' [ 480.247001][T11318] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1421'. [ 480.284088][T11322] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1422'. [ 481.562618][T11350] nfsd: Unknown parameter '' [ 481.596734][T11341] netlink: 744 bytes leftover after parsing attributes in process `syz.0.1427'. [ 481.834427][T11355] netlink: 146 bytes leftover after parsing attributes in process `syz.2.1432'. [ 483.136111][T11371] sd 0:0:1:0: PR command failed: 1026 [ 483.141617][T11371] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 483.361395][T11371] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 484.293894][T11387] nfsd: Unknown parameter '' [ 484.971886][T11397] nbd: must specify an index to disconnect [ 485.699880][T11392] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1442'. [ 485.817407][T11411] nbd: must specify an index to disconnect [ 486.235188][T11416] netlink: 146 bytes leftover after parsing attributes in process `syz.2.1448'. [ 487.853343][T11430] nfsd: Unknown parameter '' [ 487.962173][T11423] sd 0:0:1:0: PR command failed: 1026 [ 488.104411][T11423] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 488.221564][T11423] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 489.785924][ T30] audit: type=1800 audit(6038431969.485:36): pid=11461 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1458" name=22050820 dev="tmpfs" ino=1740 res=0 errno=0 [ 490.178073][T11436] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1453'. [ 490.704211][T11470] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1461'. [ 490.990214][T11476] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 491.028157][T11475] nbd: must specify an index to disconnect [ 492.206640][T11487] nbd: must specify an index to disconnect [ 493.751499][T11516] nbd: must specify an index to disconnect [ 493.839975][T11518] nbd: must specify an index to disconnect [ 494.766819][T11536] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1476'. [ 494.888211][T11537] netlink: 'syz.2.1476': attribute type 2 has an invalid length. [ 495.013469][T11541] netlink: 146 bytes leftover after parsing attributes in process `syz.3.1478'. [ 495.249758][T11547] nbd: must specify an index to disconnect [ 496.835599][T11545] sd 0:0:1:0: PR command failed: 1026 [ 496.871995][T11545] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 496.903142][T11545] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 497.747762][T11585] netlink: 146 bytes leftover after parsing attributes in process `syz.0.1489'. [ 498.505811][T11591] sd 0:0:1:0: PR command failed: 1026 [ 498.555968][T11591] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 498.562762][T11591] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 498.662883][T11597] nbd: must specify an index to disconnect [ 498.937406][ T30] audit: type=1800 audit(6038431978.655:37): pid=11601 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1493" name=22050820 dev="tmpfs" ino=2008 res=0 errno=0 [ 499.375233][ T30] audit: type=1800 audit(6038431979.085:38): pid=11606 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1494" name=22050820 dev="tmpfs" ino=1907 res=0 errno=0 [ 499.938923][T11618] FAULT_INJECTION: forcing a failure. [ 499.938923][T11618] name failslab, interval 1, probability 0, space 0, times 0 [ 500.216030][T11618] CPU: 0 UID: 0 PID: 11618 Comm: syz.2.1497 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 500.216077][T11618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 500.216097][T11618] Call Trace: [ 500.216107][T11618] [ 500.216120][T11618] dump_stack_lvl+0x16c/0x1f0 [ 500.216180][T11618] should_fail_ex+0x512/0x640 [ 500.216222][T11618] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 500.216263][T11618] should_failslab+0xc2/0x120 [ 500.216308][T11618] __kmalloc_cache_noprof+0x6a/0x3e0 [ 500.216344][T11618] ? alloc_pipe_info+0x10e/0x590 [ 500.216391][T11618] alloc_pipe_info+0x10e/0x590 [ 500.216437][T11618] splice_direct_to_actor+0x77d/0xa30 [ 500.216476][T11618] ? __pfx_direct_splice_actor+0x10/0x10 [ 500.216516][T11618] ? __pfx_aa_file_perm+0x10/0x10 [ 500.216567][T11618] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 500.216601][T11618] ? get_pid_task+0xfc/0x250 [ 500.216645][T11618] do_splice_direct+0x174/0x240 [ 500.216681][T11618] ? __pfx_do_splice_direct+0x10/0x10 [ 500.216718][T11618] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 500.216755][T11618] ? bpf_lsm_file_permission+0x9/0x10 [ 500.216795][T11618] ? security_file_permission+0x71/0x210 [ 500.216845][T11618] ? rw_verify_area+0xcf/0x680 [ 500.216912][T11618] do_sendfile+0xafd/0xe50 [ 500.216952][T11618] ? __pfx_do_sendfile+0x10/0x10 [ 500.216985][T11618] ? __fget_files+0x20e/0x3c0 [ 500.217033][T11618] __x64_sys_sendfile64+0x1d8/0x220 [ 500.217075][T11618] ? ksys_write+0x1b9/0x240 [ 500.217109][T11618] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 500.217152][T11618] ? rcu_is_watching+0x12/0xc0 [ 500.217205][T11618] do_syscall_64+0xcd/0x260 [ 500.217261][T11618] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 500.217294][T11618] RIP: 0033:0x7f9bbc38d169 [ 500.217319][T11618] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 500.217351][T11618] RSP: 002b:00007f9bbd1e3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 500.217381][T11618] RAX: ffffffffffffffda RBX: 00007f9bbc5a6080 RCX: 00007f9bbc38d169 [ 500.217402][T11618] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000005 [ 500.217420][T11618] RBP: 00007f9bbd1e3090 R08: 0000000000000000 R09: 0000000000000000 [ 500.217439][T11618] R10: 0010000800000003 R11: 0000000000000246 R12: 0000000000000001 [ 500.217458][T11618] R13: 0000000000000000 R14: 00007f9bbc5a6080 R15: 00007ffeaa8cbd78 [ 500.217498][T11618] [ 502.060204][T11630] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1500'. [ 502.288678][T11638] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1503'. [ 503.073032][T11648] nfsd: Unknown parameter '' [ 503.142212][T11643] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1504'. [ 503.392254][T11646] sd 0:0:1:0: PR command failed: 1026 [ 503.490314][T11646] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 503.556007][T11646] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 503.852656][T11658] FAULT_INJECTION: forcing a failure. [ 503.852656][T11658] name failslab, interval 1, probability 0, space 0, times 0 [ 503.893377][T11658] CPU: 1 UID: 0 PID: 11658 Comm: syz.2.1508 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 503.893421][T11658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 503.893439][T11658] Call Trace: [ 503.893449][T11658] [ 503.893461][T11658] dump_stack_lvl+0x16c/0x1f0 [ 503.893517][T11658] should_fail_ex+0x512/0x640 [ 503.893556][T11658] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 503.893597][T11658] should_failslab+0xc2/0x120 [ 503.893651][T11658] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 503.893692][T11658] ? alloc_empty_file+0x55/0x1e0 [ 503.893749][T11658] alloc_empty_file+0x55/0x1e0 [ 503.893797][T11658] path_openat+0xe0/0x2d40 [ 503.893832][T11658] ? __x64_sys_openat+0x174/0x210 [ 503.893877][T11658] ? do_syscall_64+0xcd/0x260 [ 503.893925][T11658] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 503.893973][T11658] ? __pfx_path_openat+0x10/0x10 [ 503.894022][T11658] do_filp_open+0x20b/0x470 [ 503.894060][T11658] ? __pfx_do_filp_open+0x10/0x10 [ 503.894127][T11658] ? alloc_fd+0x471/0x7d0 [ 503.894174][T11658] do_sys_openat2+0x11b/0x1d0 [ 503.894236][T11658] ? __pfx_do_sys_openat2+0x10/0x10 [ 503.894288][T11658] ? __fget_files+0x20e/0x3c0 [ 503.894321][T11658] ? __up_read+0x140/0x750 [ 503.894363][T11658] __x64_sys_openat+0x174/0x210 [ 503.894410][T11658] ? __pfx___x64_sys_openat+0x10/0x10 [ 503.894456][T11658] ? ksys_write+0x1b9/0x240 [ 503.894504][T11658] do_syscall_64+0xcd/0x260 [ 503.894558][T11658] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 503.894590][T11658] RIP: 0033:0x7f9bbc38d169 [ 503.894614][T11658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 503.894663][T11658] RSP: 002b:00007f9bbd204038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 503.894693][T11658] RAX: ffffffffffffffda RBX: 00007f9bbc5a5fa0 RCX: 00007f9bbc38d169 [ 503.894713][T11658] RDX: 000000000008e000 RSI: 00002000000000c0 RDI: ffffffffffffff9c [ 503.894734][T11658] RBP: 00007f9bbd204090 R08: 0000000000000000 R09: 0000000000000000 [ 503.894753][T11658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 503.894771][T11658] R13: 0000000000000001 R14: 00007f9bbc5a5fa0 R15: 00007ffeaa8cbd78 [ 503.894812][T11658] [ 505.157093][T11670] nbd: must specify an index to disconnect [ 506.040347][T11673] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1513'. [ 506.818572][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 506.825834][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 508.691288][T11726] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 509.165044][T11729] nbd: must specify an index to disconnect [ 509.811297][ T5853] Bluetooth: hci3: unexpected subevent 0x01 length: 4 < 18 [ 511.724365][T11756] FAULT_INJECTION: forcing a failure. [ 511.724365][T11756] name failslab, interval 1, probability 0, space 0, times 0 [ 511.782153][T11756] CPU: 1 UID: 0 PID: 11756 Comm: syz.3.1533 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 511.782201][T11756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 511.782221][T11756] Call Trace: [ 511.782231][T11756] [ 511.782244][T11756] dump_stack_lvl+0x16c/0x1f0 [ 511.782301][T11756] should_fail_ex+0x512/0x640 [ 511.782343][T11756] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 511.782396][T11756] should_failslab+0xc2/0x120 [ 511.782441][T11756] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 511.782487][T11756] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 511.782532][T11756] ? fib_notifier_ops_register+0x32/0x270 [ 511.782588][T11756] kmemdup_noprof+0x29/0x60 [ 511.782619][T11756] fib_notifier_ops_register+0x32/0x270 [ 511.782673][T11756] fib4_notifier_init+0x4f/0xd0 [ 511.782721][T11756] fib_net_init+0xbf/0x3f0 [ 511.782766][T11756] ? __pfx___register_sysctl_table+0x10/0x10 [ 511.782816][T11756] ? __pfx_fib_net_init+0x10/0x10 [ 511.782866][T11756] ? lockdep_init_map_type+0x5c/0x280 [ 511.782900][T11756] ? do_init_timer+0xc9/0x110 [ 511.782947][T11756] ? devinet_init_net+0x5c2/0x910 [ 511.782982][T11756] ? __pfx_fib_net_init+0x10/0x10 [ 511.783030][T11756] ops_init+0x1df/0x5f0 [ 511.783090][T11756] setup_net+0x21e/0x850 [ 511.783145][T11756] ? __pfx_setup_net+0x10/0x10 [ 511.783193][T11756] ? lockdep_init_map_type+0x5c/0x280 [ 511.783225][T11756] ? __pfx_down_read_killable+0x10/0x10 [ 511.783264][T11756] ? debug_mutex_init+0x37/0x70 [ 511.783310][T11756] copy_net_ns+0x2a6/0x5f0 [ 511.783346][T11756] create_new_namespaces+0x3ea/0xad0 [ 511.783405][T11756] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 511.783458][T11756] ksys_unshare+0x45b/0xa40 [ 511.783488][T11756] ? __pfx_ksys_unshare+0x10/0x10 [ 511.783515][T11756] ? xfd_validate_state+0x5d/0x180 [ 511.783554][T11756] ? rcu_is_watching+0x12/0xc0 [ 511.783606][T11756] __x64_sys_unshare+0x31/0x40 [ 511.783635][T11756] do_syscall_64+0xcd/0x260 [ 511.783690][T11756] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 511.783723][T11756] RIP: 0033:0x7fc088f8d169 [ 511.783748][T11756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 511.783781][T11756] RSP: 002b:00007fc089dde038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 511.783811][T11756] RAX: ffffffffffffffda RBX: 00007fc0891a5fa0 RCX: 00007fc088f8d169 [ 511.783832][T11756] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 511.783852][T11756] RBP: 00007fc08900e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 511.783873][T11756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 511.783892][T11756] R13: 0000000000000000 R14: 00007fc0891a5fa0 R15: 00007ffd5c361538 [ 511.783933][T11756] [ 512.546134][T11769] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 512.861250][T11775] nbd: must specify an index to disconnect [ 513.856398][T11784] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 513.955713][T11786] nbd: must specify an index to disconnect [ 514.311645][T11793] nfsd: Unknown parameter '' [ 514.648815][ T30] audit: type=1800 audit(6038432002.356:39): pid=11804 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1543" name=22050820 dev="tmpfs" ino=2259 res=0 errno=0 [ 515.144536][T11812] nbd: must specify an index to disconnect [ 515.187373][T11814] FAULT_INJECTION: forcing a failure. [ 515.187373][T11814] name failslab, interval 1, probability 0, space 0, times 0 [ 515.239353][T11814] CPU: 1 UID: 0 PID: 11814 Comm: syz.3.1547 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 515.239403][T11814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 515.239424][T11814] Call Trace: [ 515.239435][T11814] [ 515.239447][T11814] dump_stack_lvl+0x16c/0x1f0 [ 515.239506][T11814] should_fail_ex+0x512/0x640 [ 515.239548][T11814] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 515.239601][T11814] should_failslab+0xc2/0x120 [ 515.239648][T11814] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 515.239695][T11814] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 515.239741][T11814] ? fib_notifier_ops_register+0x32/0x270 [ 515.239798][T11814] kmemdup_noprof+0x29/0x60 [ 515.239830][T11814] fib_notifier_ops_register+0x32/0x270 [ 515.239886][T11814] fib4_notifier_init+0x4f/0xd0 [ 515.239944][T11814] fib_net_init+0xbf/0x3f0 [ 515.239993][T11814] ? __pfx___register_sysctl_table+0x10/0x10 [ 515.240044][T11814] ? __pfx_fib_net_init+0x10/0x10 [ 515.240092][T11814] ? lockdep_init_map_type+0x5c/0x280 [ 515.240128][T11814] ? do_init_timer+0xc9/0x110 [ 515.240176][T11814] ? devinet_init_net+0x5c2/0x910 [ 515.240211][T11814] ? __pfx_fib_net_init+0x10/0x10 [ 515.240259][T11814] ops_init+0x1df/0x5f0 [ 515.240316][T11814] setup_net+0x21e/0x850 [ 515.240372][T11814] ? __pfx_setup_net+0x10/0x10 [ 515.240420][T11814] ? lockdep_init_map_type+0x5c/0x280 [ 515.240453][T11814] ? __pfx_down_read_killable+0x10/0x10 [ 515.240492][T11814] ? debug_mutex_init+0x37/0x70 [ 515.240538][T11814] copy_net_ns+0x2a6/0x5f0 [ 515.240573][T11814] create_new_namespaces+0x3ea/0xad0 [ 515.240634][T11814] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 515.240690][T11814] ksys_unshare+0x45b/0xa40 [ 515.240720][T11814] ? __pfx_ksys_unshare+0x10/0x10 [ 515.240754][T11814] ? getname_flags.part.0+0x1c2/0x540 [ 515.240815][T11814] __x64_sys_unshare+0x31/0x40 [ 515.240844][T11814] do_syscall_64+0xcd/0x260 [ 515.240907][T11814] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 515.240941][T11814] RIP: 0033:0x7fc088f8d169 [ 515.240967][T11814] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 515.241000][T11814] RSP: 002b:00007fc089dde038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 515.241030][T11814] RAX: ffffffffffffffda RBX: 00007fc0891a5fa0 RCX: 00007fc088f8d169 [ 515.241051][T11814] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 515.241071][T11814] RBP: 00007fc08900e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 515.241090][T11814] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 515.241108][T11814] R13: 0000000000000000 R14: 00007fc0891a5fa0 R15: 00007ffd5c361538 [ 515.241151][T11814] [ 516.922636][ T30] audit: type=1800 audit(6038432004.636:40): pid=11839 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1552" name=22050820 dev="tmpfs" ino=1977 res=0 errno=0 [ 517.095532][T11844] nbd: must specify an index to disconnect [ 517.991898][T11854] nbd: must specify an index to disconnect [ 519.351693][T11876] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 519.413956][ T30] audit: type=1800 audit(6038432007.126:41): pid=11875 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1562" name=22050820 dev="tmpfs" ino=2286 res=0 errno=0 [ 519.854030][T11881] nbd: must specify an index to disconnect [ 521.009479][T11899] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 522.033897][T11903] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1567'. [ 523.430606][T11938] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1574'. [ 523.444501][T11938] netlink: 354 bytes leftover after parsing attributes in process `syz.1.1574'. [ 523.650626][T11940] nbd: must specify an index to disconnect [ 524.221925][T11946] nbd: must specify an index to disconnect [ 525.770977][T11972] FAULT_INJECTION: forcing a failure. [ 525.770977][T11972] name failslab, interval 1, probability 0, space 0, times 0 [ 525.811558][T11972] CPU: 1 UID: 0 PID: 11972 Comm: syz.1.1583 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 525.811630][T11972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 525.811652][T11972] Call Trace: [ 525.811662][T11972] [ 525.811675][T11972] dump_stack_lvl+0x16c/0x1f0 [ 525.811732][T11972] should_fail_ex+0x512/0x640 [ 525.811774][T11972] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 525.811826][T11972] should_failslab+0xc2/0x120 [ 525.811872][T11972] __kmalloc_cache_noprof+0x6a/0x3e0 [ 525.811910][T11972] ? kobject_uevent_env+0x265/0x1870 [ 525.811956][T11972] kobject_uevent_env+0x265/0x1870 [ 525.812005][T11972] ? internal_create_groups+0x11a/0x150 [ 525.812052][T11972] net_rx_queue_update_kobjects+0x1de/0x770 [ 525.812115][T11972] ? kset_register+0x1bb/0x2b0 [ 525.812154][T11972] netdev_register_kobject+0x269/0x3a0 [ 525.812192][T11972] register_netdevice+0x13dc/0x2040 [ 525.812252][T11972] ? idr_alloc+0xdd/0x130 [ 525.812297][T11972] ? __pfx_register_netdevice+0x10/0x10 [ 525.812364][T11972] ppp_dev_configure+0x99b/0xc80 [ 525.812412][T11972] ppp_ioctl+0x17e0/0x2660 [ 525.812456][T11972] ? __pfx_ppp_ioctl+0x10/0x10 [ 525.812512][T11972] ? __pfx_ppp_ioctl+0x10/0x10 [ 525.812552][T11972] __x64_sys_ioctl+0x190/0x200 [ 525.812609][T11972] do_syscall_64+0xcd/0x260 [ 525.812665][T11972] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 525.812734][T11972] RIP: 0033:0x7f5979b8d169 [ 525.812760][T11972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 525.812793][T11972] RSP: 002b:00007f597a90b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 525.812832][T11972] RAX: ffffffffffffffda RBX: 00007f5979da5fa0 RCX: 00007f5979b8d169 [ 525.812853][T11972] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000000 [ 525.812873][T11972] RBP: 00007f5979c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 525.812894][T11972] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 525.812914][T11972] R13: 0000000000000000 R14: 00007f5979da5fa0 R15: 00007ffc7f6f3a68 [ 525.812957][T11972] [ 526.723385][T11982] nfsd: Unknown parameter '' [ 527.145564][ T30] audit: type=1800 audit(6038432014.856:42): pid=11991 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1588" name=22050820 dev="tmpfs" ino=1920 res=0 errno=0 [ 527.694444][T11998] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 529.627508][T12013] nfsd: Unknown parameter '' [ 530.102912][T12020] netlink: 146 bytes leftover after parsing attributes in process `syz.0.1598'. [ 530.385578][T12026] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 531.799563][T12027] sd 0:0:1:0: PR command failed: 1026 [ 531.833269][T12027] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 531.856045][T12027] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 532.294772][T12043] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 533.853890][T12055] FAULT_INJECTION: forcing a failure. [ 533.853890][T12055] name failslab, interval 1, probability 0, space 0, times 0 [ 533.895976][T12055] CPU: 1 UID: 0 PID: 12055 Comm: syz.2.1609 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 533.896021][T12055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 533.896040][T12055] Call Trace: [ 533.896050][T12055] [ 533.896061][T12055] dump_stack_lvl+0x16c/0x1f0 [ 533.896117][T12055] should_fail_ex+0x512/0x640 [ 533.896157][T12055] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 533.896207][T12055] should_failslab+0xc2/0x120 [ 533.896253][T12055] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 533.896304][T12055] ? sk_prot_alloc+0x60/0x2a0 [ 533.896344][T12055] sk_prot_alloc+0x60/0x2a0 [ 533.896380][T12055] sk_alloc+0x36/0xc20 [ 533.896425][T12055] inet6_create+0x381/0x1300 [ 533.896474][T12055] ? inet6_create+0x7f/0x1300 [ 533.896523][T12055] __sock_create+0x335/0x8d0 [ 533.896586][T12055] inet_ctl_sock_create+0x94/0x230 [ 533.896622][T12055] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 533.896657][T12055] ? ndisc_net_init+0x1bc/0x250 [ 533.896687][T12055] ? __pfx_ndisc_net_init+0x10/0x10 [ 533.896748][T12055] igmp6_net_init+0x1b2/0x470 [ 533.896779][T12055] ? __pfx_igmp6_net_init+0x10/0x10 [ 533.896809][T12055] ops_init+0x1df/0x5f0 [ 533.896865][T12055] setup_net+0x21e/0x850 [ 533.896921][T12055] ? __pfx_setup_net+0x10/0x10 [ 533.896970][T12055] ? lockdep_init_map_type+0x5c/0x280 [ 533.897004][T12055] ? __pfx_down_read_killable+0x10/0x10 [ 533.897044][T12055] ? debug_mutex_init+0x37/0x70 [ 533.897091][T12055] copy_net_ns+0x2a6/0x5f0 [ 533.897128][T12055] create_new_namespaces+0x3ea/0xad0 [ 533.897188][T12055] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 533.897242][T12055] ksys_unshare+0x45b/0xa40 [ 533.897273][T12055] ? __pfx_ksys_unshare+0x10/0x10 [ 533.897308][T12055] ? xfd_validate_state+0x5d/0x180 [ 533.897348][T12055] ? rcu_is_watching+0x12/0xc0 [ 533.897402][T12055] __x64_sys_unshare+0x31/0x40 [ 533.897432][T12055] do_syscall_64+0xcd/0x260 [ 533.897487][T12055] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 533.897521][T12055] RIP: 0033:0x7f9bbc38d169 [ 533.897547][T12055] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 533.897581][T12055] RSP: 002b:00007f9bbd204038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 533.897613][T12055] RAX: ffffffffffffffda RBX: 00007f9bbc5a5fa0 RCX: 00007f9bbc38d169 [ 533.897634][T12055] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 533.897654][T12055] RBP: 00007f9bbc40e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 533.897675][T12055] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 533.897695][T12055] R13: 0000000000000000 R14: 00007f9bbc5a5fa0 R15: 00007ffeaa8cbd78 [ 533.897739][T12055] [ 533.900839][T12055] Failed to initialize the IGMP6 autojoin socket (err -105) [ 533.904351][T12060] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1610'. [ 534.742417][T12060] sd 0:0:1:0: PR command failed: 1026 [ 534.766893][T12060] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 534.773680][T12060] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 535.040268][T12073] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 535.660598][T12078] nbd: must specify an index to disconnect [ 536.831611][T12094] netlink: 146 bytes leftover after parsing attributes in process `syz.2.1626'. [ 537.043386][T12099] nbd: must specify an index to disconnect [ 537.889191][T12097] sd 0:0:1:0: PR command failed: 1026 [ 537.891693][T12096] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1618'. [ 537.922758][T12097] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 537.950919][T12097] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 540.539562][T12147] nbd: must specify an index to disconnect [ 541.142487][T12154] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 541.668592][T12157] FAULT_INJECTION: forcing a failure. [ 541.668592][T12157] name failslab, interval 1, probability 0, space 0, times 0 [ 541.710624][T12157] CPU: 1 UID: 0 PID: 12157 Comm: syz.1.1637 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 541.710669][T12157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 541.710688][T12157] Call Trace: [ 541.710700][T12157] [ 541.710712][T12157] dump_stack_lvl+0x16c/0x1f0 [ 541.710768][T12157] should_fail_ex+0x512/0x640 [ 541.710820][T12157] ? __kmalloc_noprof+0xbf/0x510 [ 541.710862][T12157] ? lsm_blob_alloc+0x68/0x90 [ 541.710891][T12157] should_failslab+0xc2/0x120 [ 541.710935][T12157] __kmalloc_noprof+0xd2/0x510 [ 541.710984][T12157] lsm_blob_alloc+0x68/0x90 [ 541.711016][T12157] security_sk_alloc+0x30/0x270 [ 541.711057][T12157] sk_prot_alloc+0x1c7/0x2a0 [ 541.711094][T12157] sk_alloc+0x36/0xc20 [ 541.711138][T12157] can_create+0x1e5/0x600 [ 541.711187][T12157] __sock_create+0x335/0x8d0 [ 541.711229][T12157] __sys_socket+0x14d/0x260 [ 541.711264][T12157] ? __pfx___sys_socket+0x10/0x10 [ 541.711301][T12157] ? rcu_is_watching+0x12/0xc0 [ 541.711350][T12157] __x64_sys_socket+0x72/0xb0 [ 541.711385][T12157] ? lockdep_hardirqs_on+0x7c/0x110 [ 541.711431][T12157] do_syscall_64+0xcd/0x260 [ 541.711484][T12157] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 541.711516][T12157] RIP: 0033:0x7f5979b8d169 [ 541.711541][T12157] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 541.711585][T12157] RSP: 002b:00007f597a90b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 541.711614][T12157] RAX: ffffffffffffffda RBX: 00007f5979da5fa0 RCX: 00007f5979b8d169 [ 541.711635][T12157] RDX: 0000000000000006 RSI: 0000000000000002 RDI: 000000000000001d [ 541.711653][T12157] RBP: 00007f5979c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 541.711673][T12157] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 541.711692][T12157] R13: 0000000000000000 R14: 00007f5979da5fa0 R15: 00007ffc7f6f3a68 [ 541.711732][T12157] [ 542.118864][T12173] nfsd: Unknown parameter '' [ 545.171183][T12212] nfsd: Unknown parameter '' [ 545.868848][T12227] FAULT_INJECTION: forcing a failure. [ 545.868848][T12227] name failslab, interval 1, probability 0, space 0, times 0 [ 545.933571][T12227] CPU: 0 UID: 0 PID: 12227 Comm: syz.1.1652 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 545.933620][T12227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 545.933649][T12227] Call Trace: [ 545.933660][T12227] [ 545.933672][T12227] dump_stack_lvl+0x16c/0x1f0 [ 545.933729][T12227] should_fail_ex+0x512/0x640 [ 545.933772][T12227] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 545.933824][T12227] should_failslab+0xc2/0x120 [ 545.933870][T12227] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 545.933917][T12227] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 545.933964][T12227] ? fib_notifier_ops_register+0x32/0x270 [ 545.934022][T12227] kmemdup_noprof+0x29/0x60 [ 545.934054][T12227] fib_notifier_ops_register+0x32/0x270 [ 545.934110][T12227] fib4_notifier_init+0x4f/0xd0 [ 545.934159][T12227] fib_net_init+0xbf/0x3f0 [ 545.934207][T12227] ? __pfx___register_sysctl_table+0x10/0x10 [ 545.934260][T12227] ? __pfx_fib_net_init+0x10/0x10 [ 545.934309][T12227] ? lockdep_init_map_type+0x5c/0x280 [ 545.934344][T12227] ? do_init_timer+0xc9/0x110 [ 545.934392][T12227] ? devinet_init_net+0x5c2/0x910 [ 545.934427][T12227] ? __pfx_fib_net_init+0x10/0x10 [ 545.934475][T12227] ops_init+0x1df/0x5f0 [ 545.934531][T12227] setup_net+0x21e/0x850 [ 545.934588][T12227] ? __pfx_setup_net+0x10/0x10 [ 545.934646][T12227] ? lockdep_init_map_type+0x5c/0x280 [ 545.934680][T12227] ? __pfx_down_read_killable+0x10/0x10 [ 545.934717][T12227] ? debug_mutex_init+0x37/0x70 [ 545.934764][T12227] copy_net_ns+0x2a6/0x5f0 [ 545.934802][T12227] create_new_namespaces+0x3ea/0xad0 [ 545.934862][T12227] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 545.934916][T12227] ksys_unshare+0x45b/0xa40 [ 545.934948][T12227] ? __pfx_ksys_unshare+0x10/0x10 [ 545.934974][T12227] ? xfd_validate_state+0x5d/0x180 [ 545.935015][T12227] ? rcu_is_watching+0x12/0xc0 [ 545.935067][T12227] __x64_sys_unshare+0x31/0x40 [ 545.935097][T12227] do_syscall_64+0xcd/0x260 [ 545.935152][T12227] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 545.935185][T12227] RIP: 0033:0x7f5979b8d169 [ 545.935211][T12227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 545.935244][T12227] RSP: 002b:00007f597a90b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 545.935275][T12227] RAX: ffffffffffffffda RBX: 00007f5979da5fa0 RCX: 00007f5979b8d169 [ 545.935297][T12227] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 545.935317][T12227] RBP: 00007f5979c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 545.935337][T12227] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 545.935357][T12227] R13: 0000000000000000 R14: 00007f5979da5fa0 R15: 00007ffc7f6f3a68 [ 545.935399][T12227] [ 548.493435][T12252] nbd: must specify an index to disconnect [ 549.506832][T12263] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 550.518240][T12275] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 550.541931][T12274] nbd: must specify an index to disconnect [ 551.352990][T12282] netlink: 146 bytes leftover after parsing attributes in process `syz.0.1665'. [ 551.897585][T12292] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 553.294531][T12298] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1670'. [ 553.637878][T12282] sd 0:0:1:0: PR command failed: 1026 [ 553.643456][T12282] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 553.770956][T12282] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 554.158051][T12308] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 554.224928][T12310] FAULT_INJECTION: forcing a failure. [ 554.224928][T12310] name failslab, interval 1, probability 0, space 0, times 0 [ 554.239621][T12310] CPU: 1 UID: 0 PID: 12310 Comm: syz.2.1672 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 554.239666][T12310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 554.239686][T12310] Call Trace: [ 554.239697][T12310] [ 554.239710][T12310] dump_stack_lvl+0x16c/0x1f0 [ 554.239769][T12310] should_fail_ex+0x512/0x640 [ 554.239812][T12310] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 554.239863][T12310] should_failslab+0xc2/0x120 [ 554.239910][T12310] __kmalloc_cache_noprof+0x6a/0x3e0 [ 554.239946][T12310] ? fib_notifier_ops_register+0x123/0x270 [ 554.239997][T12310] ? fib_net_init+0x1a4/0x3f0 [ 554.240055][T12310] fib_net_init+0x1a4/0x3f0 [ 554.240102][T12310] ? __pfx___register_sysctl_table+0x10/0x10 [ 554.240154][T12310] ? __pfx_fib_net_init+0x10/0x10 [ 554.240203][T12310] ? lockdep_init_map_type+0x5c/0x280 [ 554.240238][T12310] ? do_init_timer+0xc9/0x110 [ 554.240287][T12310] ? devinet_init_net+0x5c2/0x910 [ 554.240322][T12310] ? __pfx_fib_net_init+0x10/0x10 [ 554.240371][T12310] ops_init+0x1df/0x5f0 [ 554.240426][T12310] setup_net+0x21e/0x850 [ 554.240479][T12310] ? __pfx_setup_net+0x10/0x10 [ 554.240527][T12310] ? lockdep_init_map_type+0x5c/0x280 [ 554.240559][T12310] ? __pfx_down_read_killable+0x10/0x10 [ 554.240599][T12310] ? debug_mutex_init+0x37/0x70 [ 554.240645][T12310] copy_net_ns+0x2a6/0x5f0 [ 554.240682][T12310] create_new_namespaces+0x3ea/0xad0 [ 554.240740][T12310] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 554.240795][T12310] ksys_unshare+0x45b/0xa40 [ 554.240824][T12310] ? __pfx_ksys_unshare+0x10/0x10 [ 554.240862][T12310] ? xfd_validate_state+0x5d/0x180 [ 554.240902][T12310] ? rcu_is_watching+0x12/0xc0 [ 554.240955][T12310] __x64_sys_unshare+0x31/0x40 [ 554.240984][T12310] do_syscall_64+0xcd/0x260 [ 554.241040][T12310] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 554.241072][T12310] RIP: 0033:0x7f9bbc38d169 [ 554.241099][T12310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 554.241131][T12310] RSP: 002b:00007f9bbd204038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 554.241161][T12310] RAX: ffffffffffffffda RBX: 00007f9bbc5a5fa0 RCX: 00007f9bbc38d169 [ 554.241183][T12310] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 554.241202][T12310] RBP: 00007f9bbc40e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 554.241222][T12310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 554.241242][T12310] R13: 0000000000000000 R14: 00007f9bbc5a5fa0 R15: 00007ffeaa8cbd78 [ 554.241286][T12310] [ 556.250171][T12335] netlink: 146 bytes leftover after parsing attributes in process `syz.0.1677'. [ 557.739184][T12352] nbd: must specify an index to disconnect [ 557.772757][T12354] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1682'. [ 557.923836][T12356] netlink: 146 bytes leftover after parsing attributes in process `syz.2.1684'. [ 558.196390][T12336] sd 0:0:1:0: PR command failed: 1026 [ 558.201857][T12336] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 558.266251][T12336] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 558.990151][T12370] nbd: must specify an index to disconnect [ 559.580744][T12360] sd 0:0:1:0: PR command failed: 1026 [ 559.606061][T12360] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 559.629875][T12360] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 559.985971][T12368] sd 0:0:1:0: PR command failed: 1026 [ 559.991499][T12368] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 560.126178][T12368] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 560.231170][ T30] audit: type=1800 audit(6038432047.946:43): pid=12385 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1690" name=22050820 dev="tmpfs" ino=2278 res=0 errno=0 [ 560.656645][T12389] FAULT_INJECTION: forcing a failure. [ 560.656645][T12389] name failslab, interval 1, probability 0, space 0, times 0 [ 560.794654][T12392] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 560.881406][T12389] CPU: 1 UID: 0 PID: 12389 Comm: syz.1.1691 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 560.881456][T12389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 560.881477][T12389] Call Trace: [ 560.881488][T12389] [ 560.881500][T12389] dump_stack_lvl+0x16c/0x1f0 [ 560.881558][T12389] should_fail_ex+0x512/0x640 [ 560.881607][T12389] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 560.881660][T12389] should_failslab+0xc2/0x120 [ 560.881707][T12389] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 560.881756][T12389] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 560.881802][T12389] ? fib_notifier_ops_register+0x32/0x270 [ 560.881860][T12389] kmemdup_noprof+0x29/0x60 [ 560.881892][T12389] fib_notifier_ops_register+0x32/0x270 [ 560.881948][T12389] fib4_notifier_init+0x4f/0xd0 [ 560.881997][T12389] fib_net_init+0xbf/0x3f0 [ 560.882045][T12389] ? __pfx___register_sysctl_table+0x10/0x10 [ 560.882096][T12389] ? __pfx_fib_net_init+0x10/0x10 [ 560.882146][T12389] ? lockdep_init_map_type+0x5c/0x280 [ 560.882181][T12389] ? do_init_timer+0xc9/0x110 [ 560.882229][T12389] ? devinet_init_net+0x5c2/0x910 [ 560.882264][T12389] ? __pfx_fib_net_init+0x10/0x10 [ 560.882313][T12389] ops_init+0x1df/0x5f0 [ 560.882368][T12389] setup_net+0x21e/0x850 [ 560.882425][T12389] ? __pfx_setup_net+0x10/0x10 [ 560.882474][T12389] ? lockdep_init_map_type+0x5c/0x280 [ 560.882508][T12389] ? __pfx_down_read_killable+0x10/0x10 [ 560.882548][T12389] ? debug_mutex_init+0x37/0x70 [ 560.882602][T12389] copy_net_ns+0x2a6/0x5f0 [ 560.882640][T12389] create_new_namespaces+0x3ea/0xad0 [ 560.882700][T12389] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 560.882754][T12389] ksys_unshare+0x45b/0xa40 [ 560.882785][T12389] ? __pfx_ksys_unshare+0x10/0x10 [ 560.882813][T12389] ? xfd_validate_state+0x5d/0x180 [ 560.882854][T12389] ? rcu_is_watching+0x12/0xc0 [ 560.882907][T12389] __x64_sys_unshare+0x31/0x40 [ 560.882937][T12389] do_syscall_64+0xcd/0x260 [ 560.882993][T12389] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 560.883026][T12389] RIP: 0033:0x7f5979b8d169 [ 560.883053][T12389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 560.883085][T12389] RSP: 002b:00007f597a90b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 560.883117][T12389] RAX: ffffffffffffffda RBX: 00007f5979da5fa0 RCX: 00007f5979b8d169 [ 560.883138][T12389] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 560.883158][T12389] RBP: 00007f5979c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 560.883180][T12389] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 560.883200][T12389] R13: 0000000000000000 R14: 00007f5979da5fa0 R15: 00007ffc7f6f3a68 [ 560.883245][T12389] [ 562.004703][T12409] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 562.754513][ T30] audit: type=1800 audit(6038432050.466:44): pid=12417 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1698" name=22050820 dev="tmpfs" ino=2082 res=0 errno=0 [ 562.898758][T12424] nfsd: Unknown parameter '' [ 563.233557][T12431] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 563.717656][T12421] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1700'. [ 564.567705][T12450] FAULT_INJECTION: forcing a failure. [ 564.567705][T12450] name failslab, interval 1, probability 0, space 0, times 0 [ 564.605918][T12450] CPU: 0 UID: 0 PID: 12450 Comm: syz.0.1709 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 564.605964][T12450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 564.605983][T12450] Call Trace: [ 564.605993][T12450] [ 564.606008][T12450] dump_stack_lvl+0x16c/0x1f0 [ 564.606065][T12450] should_fail_ex+0x512/0x640 [ 564.606108][T12450] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 564.606162][T12450] should_failslab+0xc2/0x120 [ 564.606210][T12450] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 564.606259][T12450] ? fib_rules_register+0x30/0x500 [ 564.606323][T12450] kmemdup_noprof+0x29/0x60 [ 564.606355][T12450] fib_rules_register+0x30/0x500 [ 564.606413][T12450] fib4_rules_init+0x1f/0x1c0 [ 564.606454][T12450] fib_net_init+0x1dc/0x3f0 [ 564.606504][T12450] ? __pfx___register_sysctl_table+0x10/0x10 [ 564.606556][T12450] ? __pfx_fib_net_init+0x10/0x10 [ 564.606606][T12450] ? lockdep_init_map_type+0x5c/0x280 [ 564.606646][T12450] ? do_init_timer+0xc9/0x110 [ 564.606696][T12450] ? devinet_init_net+0x5c2/0x910 [ 564.606731][T12450] ? __pfx_fib_net_init+0x10/0x10 [ 564.606779][T12450] ops_init+0x1df/0x5f0 [ 564.606837][T12450] setup_net+0x21e/0x850 [ 564.606894][T12450] ? __pfx_setup_net+0x10/0x10 [ 564.606943][T12450] ? lockdep_init_map_type+0x5c/0x280 [ 564.606977][T12450] ? __pfx_down_read_killable+0x10/0x10 [ 564.607018][T12450] ? debug_mutex_init+0x37/0x70 [ 564.607066][T12450] copy_net_ns+0x2a6/0x5f0 [ 564.607104][T12450] create_new_namespaces+0x3ea/0xad0 [ 564.607165][T12450] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 564.607220][T12450] ksys_unshare+0x45b/0xa40 [ 564.607252][T12450] ? __pfx_ksys_unshare+0x10/0x10 [ 564.607280][T12450] ? xfd_validate_state+0x5d/0x180 [ 564.607337][T12450] ? rcu_is_watching+0x12/0xc0 [ 564.607408][T12450] __x64_sys_unshare+0x31/0x40 [ 564.607438][T12450] do_syscall_64+0xcd/0x260 [ 564.607495][T12450] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 564.607530][T12450] RIP: 0033:0x7f5bcd98d169 [ 564.607557][T12450] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 564.607592][T12450] RSP: 002b:00007f5bcb7f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 564.607625][T12450] RAX: ffffffffffffffda RBX: 00007f5bcdba5fa0 RCX: 00007f5bcd98d169 [ 564.607647][T12450] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 564.607668][T12450] RBP: 00007f5bcda0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 564.607689][T12450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 564.607710][T12450] R13: 0000000000000000 R14: 00007f5bcdba5fa0 R15: 00007ffdcafaa348 [ 564.607754][T12450] [ 565.521777][ T30] audit: type=1800 audit(6038432053.236:45): pid=12459 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1710" name=22050820 dev="tmpfs" ino=2106 res=0 errno=0 [ 566.922906][T12474] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1714'. [ 568.152499][ T30] audit: type=1800 audit(6038432055.866:46): pid=12491 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1720" name=22050820 dev="tmpfs" ino=2122 res=0 errno=0 [ 568.243858][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 568.250499][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 568.956675][T12509] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 570.126089][ T30] audit: type=1800 audit(6038432057.826:47): pid=12527 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1730" name=22050820 dev="tmpfs" ino=2143 res=0 errno=0 [ 570.701612][T12536] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 572.433431][T12553] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1737'. [ 572.770851][T12566] nbd: must specify an index to disconnect [ 573.937602][T12579] FAULT_INJECTION: forcing a failure. [ 573.937602][T12579] name failslab, interval 1, probability 0, space 0, times 0 [ 574.060638][T12579] CPU: 1 UID: 0 PID: 12579 Comm: syz.0.1744 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 574.060696][T12579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 574.060715][T12579] Call Trace: [ 574.060727][T12579] [ 574.060740][T12579] dump_stack_lvl+0x16c/0x1f0 [ 574.060799][T12579] should_fail_ex+0x512/0x640 [ 574.060841][T12579] ? __kmalloc_noprof+0xbf/0x510 [ 574.060887][T12579] ? ops_init+0x77/0x5f0 [ 574.060941][T12579] should_failslab+0xc2/0x120 [ 574.060989][T12579] __kmalloc_noprof+0xd2/0x510 [ 574.061039][T12579] ops_init+0x77/0x5f0 [ 574.061095][T12579] setup_net+0x21e/0x850 [ 574.061151][T12579] ? __pfx_setup_net+0x10/0x10 [ 574.061200][T12579] ? lockdep_init_map_type+0x5c/0x280 [ 574.061234][T12579] ? __pfx_down_read_killable+0x10/0x10 [ 574.061272][T12579] ? debug_mutex_init+0x37/0x70 [ 574.061320][T12579] copy_net_ns+0x2a6/0x5f0 [ 574.061357][T12579] create_new_namespaces+0x3ea/0xad0 [ 574.061418][T12579] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 574.061476][T12579] ksys_unshare+0x45b/0xa40 [ 574.061507][T12579] ? __pfx_ksys_unshare+0x10/0x10 [ 574.061535][T12579] ? xfd_validate_state+0x5d/0x180 [ 574.061574][T12579] ? rcu_is_watching+0x12/0xc0 [ 574.061626][T12579] __x64_sys_unshare+0x31/0x40 [ 574.061662][T12579] do_syscall_64+0xcd/0x260 [ 574.061717][T12579] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 574.061750][T12579] RIP: 0033:0x7f5bcd98d169 [ 574.061777][T12579] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 574.061810][T12579] RSP: 002b:00007f5bcb7d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 574.061842][T12579] RAX: ffffffffffffffda RBX: 00007f5bcdba6080 RCX: 00007f5bcd98d169 [ 574.061863][T12579] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 574.061883][T12579] RBP: 00007f5bcda0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 574.061904][T12579] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 574.061924][T12579] R13: 0000000000000000 R14: 00007f5bcdba6080 R15: 00007ffdcafaa348 [ 574.061967][T12579] [ 574.597792][T12581] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1745'. [ 574.906567][T12594] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 575.106099][ T30] audit: type=1800 audit(6038432062.806:48): pid=12597 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1748" name="file0" dev="tmpfs" ino=2341 res=0 errno=0 [ 576.021914][T12610] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 576.136961][T12616] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 577.166561][T12629] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 577.430164][T12633] FAULT_INJECTION: forcing a failure. [ 577.430164][T12633] name failslab, interval 1, probability 0, space 0, times 0 [ 577.499947][T12633] CPU: 0 UID: 0 PID: 12633 Comm: syz.2.1758 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 577.499997][T12633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 577.500018][T12633] Call Trace: [ 577.500030][T12633] [ 577.500043][T12633] dump_stack_lvl+0x16c/0x1f0 [ 577.500103][T12633] should_fail_ex+0x512/0x640 [ 577.500146][T12633] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 577.500199][T12633] should_failslab+0xc2/0x120 [ 577.500246][T12633] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 577.500295][T12633] ? fib_rules_register+0x30/0x500 [ 577.500351][T12633] kmemdup_noprof+0x29/0x60 [ 577.500383][T12633] fib_rules_register+0x30/0x500 [ 577.500444][T12633] fib4_rules_init+0x1f/0x1c0 [ 577.500485][T12633] fib_net_init+0x1dc/0x3f0 [ 577.500535][T12633] ? __pfx___register_sysctl_table+0x10/0x10 [ 577.500587][T12633] ? __pfx_fib_net_init+0x10/0x10 [ 577.500637][T12633] ? lockdep_init_map_type+0x5c/0x280 [ 577.500672][T12633] ? do_init_timer+0xc9/0x110 [ 577.500720][T12633] ? devinet_init_net+0x5c2/0x910 [ 577.500756][T12633] ? __pfx_fib_net_init+0x10/0x10 [ 577.500805][T12633] ops_init+0x1df/0x5f0 [ 577.500860][T12633] setup_net+0x21e/0x850 [ 577.500917][T12633] ? __pfx_setup_net+0x10/0x10 [ 577.500972][T12633] ? lockdep_init_map_type+0x5c/0x280 [ 577.501006][T12633] ? __pfx_down_read_killable+0x10/0x10 [ 577.501046][T12633] ? debug_mutex_init+0x37/0x70 [ 577.501094][T12633] copy_net_ns+0x2a6/0x5f0 [ 577.501131][T12633] create_new_namespaces+0x3ea/0xad0 [ 577.501191][T12633] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 577.501246][T12633] ksys_unshare+0x45b/0xa40 [ 577.501277][T12633] ? __pfx_ksys_unshare+0x10/0x10 [ 577.501305][T12633] ? xfd_validate_state+0x5d/0x180 [ 577.501345][T12633] ? rcu_is_watching+0x12/0xc0 [ 577.501398][T12633] __x64_sys_unshare+0x31/0x40 [ 577.501434][T12633] do_syscall_64+0xcd/0x260 [ 577.501490][T12633] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 577.501523][T12633] RIP: 0033:0x7f9bbc38d169 [ 577.501550][T12633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 577.501583][T12633] RSP: 002b:00007f9bbd204038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 577.501616][T12633] RAX: ffffffffffffffda RBX: 00007f9bbc5a5fa0 RCX: 00007f9bbc38d169 [ 577.501638][T12633] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 577.501659][T12633] RBP: 00007f9bbc40e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 577.501680][T12633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 577.501701][T12633] R13: 0000000000000000 R14: 00007f9bbc5a5fa0 R15: 00007ffeaa8cbd78 [ 577.501744][T12633] [ 579.165347][T12655] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 580.115271][T12670] nbd: must specify an index to disconnect [ 580.420132][ T30] audit: type=1800 audit(6038432068.136:49): pid=12679 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1769" name="file0" dev="tmpfs" ino=2203 res=0 errno=0 [ 581.815565][T12700] FAULT_INJECTION: forcing a failure. [ 581.815565][T12700] name failslab, interval 1, probability 0, space 0, times 0 [ 581.829406][T12700] CPU: 0 UID: 0 PID: 12700 Comm: syz.3.1775 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 581.829454][T12700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 581.829475][T12700] Call Trace: [ 581.829486][T12700] [ 581.829498][T12700] dump_stack_lvl+0x16c/0x1f0 [ 581.829557][T12700] should_fail_ex+0x512/0x640 [ 581.829599][T12700] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 581.829648][T12700] should_failslab+0xc2/0x120 [ 581.829694][T12700] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 581.829740][T12700] ? __d_alloc+0x31/0xaa0 [ 581.829783][T12700] ? __pfx_dquot_alloc_inode+0x10/0x10 [ 581.829833][T12700] __d_alloc+0x31/0xaa0 [ 581.829892][T12700] d_alloc_pseudo+0x1c/0xc0 [ 581.829923][T12700] alloc_file_pseudo+0xcf/0x230 [ 581.829975][T12700] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 581.830038][T12700] __shmem_file_setup+0x210/0x300 [ 581.830090][T12700] shmem_zero_setup+0x93/0x1b0 [ 581.830125][T12700] __mmap_region+0x204f/0x27c0 [ 581.830174][T12700] ? __pfx___mmap_region+0x10/0x10 [ 581.830215][T12700] ? trace_sched_exit_tp+0xde/0x130 [ 581.830296][T12700] ? __pfx___schedule+0x10/0x10 [ 581.830389][T12700] ? trace_cap_capable+0x18d/0x200 [ 581.830430][T12700] ? cap_capable+0xb3/0x250 [ 581.830473][T12700] mmap_region+0x1ab/0x3f0 [ 581.830524][T12700] do_mmap+0xd8e/0x11b0 [ 581.830565][T12700] ? __pfx_do_mmap+0x10/0x10 [ 581.830599][T12700] ? __pfx_down_write_killable+0x10/0x10 [ 581.830632][T12700] ? kmem_cache_free+0x2d4/0x4d0 [ 581.830677][T12700] vm_mmap_pgoff+0x281/0x450 [ 581.830722][T12700] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 581.830770][T12700] ? __x64_sys_futex+0x1e0/0x4c0 [ 581.830817][T12700] ? __x64_sys_futex+0x1e9/0x4c0 [ 581.830879][T12700] ksys_mmap_pgoff+0x7d/0x5c0 [ 581.830912][T12700] ? rcu_is_watching+0x12/0xc0 [ 581.830960][T12700] __x64_sys_mmap+0x125/0x190 [ 581.831004][T12700] do_syscall_64+0xcd/0x260 [ 581.831058][T12700] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 581.831094][T12700] RIP: 0033:0x7fc088f8d169 [ 581.831121][T12700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 581.831155][T12700] RSP: 002b:00007fc089dde038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 581.831188][T12700] RAX: ffffffffffffffda RBX: 00007fc0891a5fa0 RCX: 00007fc088f8d169 [ 581.831210][T12700] RDX: 000000000000000a RSI: 0000000002020009 RDI: 0000000000000000 [ 581.831229][T12700] RBP: 00007fc08900e2a0 R08: fffffffffffffffa R09: 0000000000008000 [ 581.831250][T12700] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 581.831270][T12700] R13: 0000000000000000 R14: 00007fc0891a5fa0 R15: 00007ffd5c361538 [ 581.831312][T12700] [ 582.536213][ T5853] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 582.536263][ T5853] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 582.552567][ T5853] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 582.552642][ T5853] Bluetooth: hci0: adv larger than maximum supported [ 582.560909][ T5853] Bluetooth: hci0: Malformed LE Event: 0x0d [ 583.468560][T12723] nbd: must specify an index to disconnect [ 583.888473][T12741] FAULT_INJECTION: forcing a failure. [ 583.888473][T12741] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 583.927617][T12719] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1780'. [ 583.971516][T12741] CPU: 0 UID: 0 PID: 12741 Comm: syz.2.1787 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 583.971562][T12741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 583.971581][T12741] Call Trace: [ 583.971591][T12741] [ 583.971604][T12741] dump_stack_lvl+0x16c/0x1f0 [ 583.971657][T12741] should_fail_ex+0x512/0x640 [ 583.971703][T12741] _copy_to_user+0x32/0xd0 [ 583.971749][T12741] tomoyo_flush+0x161/0x520 [ 583.971805][T12741] tomoyo_read_manager+0x320/0x550 [ 583.971844][T12741] tomoyo_read_control+0x299/0x540 [ 583.971883][T12741] ? __pfx_tomoyo_read+0x10/0x10 [ 583.971932][T12741] vfs_readv+0x6bc/0x8a0 [ 583.971958][T12741] ? __pfx___mutex_trylock_common+0x10/0x10 [ 583.972002][T12741] ? __pfx_vfs_readv+0x10/0x10 [ 583.972038][T12741] ? __mutex_lock+0x1ca/0xb90 [ 583.972096][T12741] ? __pfx___mutex_lock+0x10/0x10 [ 583.972159][T12741] ? __fget_files+0x20e/0x3c0 [ 583.972192][T12741] ? __fget_files+0x120/0x3c0 [ 583.972238][T12741] ? do_readv+0x132/0x330 [ 583.972264][T12741] do_readv+0x132/0x330 [ 583.972294][T12741] ? __pfx_do_readv+0x10/0x10 [ 583.972336][T12741] do_syscall_64+0xcd/0x260 [ 583.972389][T12741] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 583.972421][T12741] RIP: 0033:0x7f9bbc38d169 [ 583.972445][T12741] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 583.972476][T12741] RSP: 002b:00007f9bbd204038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 583.972505][T12741] RAX: ffffffffffffffda RBX: 00007f9bbc5a5fa0 RCX: 00007f9bbc38d169 [ 583.972525][T12741] RDX: 0000000000000001 RSI: 0000200000000a80 RDI: 0000000000000003 [ 583.972543][T12741] RBP: 00007f9bbd204090 R08: 0000000000000000 R09: 0000000000000000 [ 583.972562][T12741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 583.972580][T12741] R13: 0000000000000000 R14: 00007f9bbc5a5fa0 R15: 00007ffeaa8cbd78 [ 583.972621][T12741] [ 584.498910][T12745] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1788'. [ 584.557392][T12745] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1788'. [ 586.544802][T12800] nbd: must specify an index to disconnect [ 587.127523][T12811] nfsd: Unknown parameter '' [ 587.329473][T12818] netlink: 146 bytes leftover after parsing attributes in process `syz.0.1806'. [ 588.755088][T12851] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 589.003996][ T5853] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18 [ 589.575865][T12862] nbd: must specify an index to disconnect [ 590.951281][T12905] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 591.935399][T12918] kAFS: Invalid Command on /proc/fs/afs/cells file [ 593.053838][T12941] netlink: 146 bytes leftover after parsing attributes in process `syz.0.1836'. [ 593.772156][T12949] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 595.431620][T12966] netlink: 146 bytes leftover after parsing attributes in process `syz.0.1842'. syzkaller syzkaller login: [ 596.626609][T12977] sd 0:0:1:0: PR command failed: 1026 [ 596.675156][T12977] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 596.743622][T12977] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 597.388008][T12987] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 598.610087][T13003] FAULT_INJECTION: forcing a failure. [ 598.610087][T13003] name failslab, interval 1, probability 0, space 0, times 0 [ 598.640156][T13003] CPU: 1 UID: 0 PID: 13003 Comm: syz.2.1851 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 598.640189][T13003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 598.640203][T13003] Call Trace: [ 598.640211][T13003] [ 598.640225][T13003] dump_stack_lvl+0x16c/0x1f0 [ 598.640264][T13003] should_fail_ex+0x512/0x640 [ 598.640293][T13003] ? __kvmalloc_node_noprof+0x122/0x600 [ 598.640323][T13003] should_failslab+0xc2/0x120 [ 598.640355][T13003] __kvmalloc_node_noprof+0x135/0x600 [ 598.640383][T13003] ? seq_read_iter+0x826/0x12c0 [ 598.640412][T13003] ? seq_read_iter+0x826/0x12c0 [ 598.640433][T13003] seq_read_iter+0x826/0x12c0 [ 598.640458][T13003] ? aa_file_perm+0x4d6/0xfb0 [ 598.640500][T13003] seq_read+0x39e/0x4e0 [ 598.640523][T13003] ? __pfx_seq_read+0x10/0x10 [ 598.640551][T13003] ? get_pid_task+0xfc/0x250 [ 598.640588][T13003] full_proxy_read+0x13c/0x200 [ 598.640617][T13003] ? __pfx_full_proxy_read+0x10/0x10 [ 598.640648][T13003] vfs_read+0x1de/0xc70 [ 598.640677][T13003] ? __pfx___mutex_lock+0x10/0x10 [ 598.640713][T13003] ? __pfx_vfs_read+0x10/0x10 [ 598.640745][T13003] ? __fget_files+0x20e/0x3c0 [ 598.640779][T13003] ksys_read+0x12a/0x240 [ 598.640801][T13003] ? __pfx_ksys_read+0x10/0x10 [ 598.640823][T13003] ? rcu_is_watching+0x12/0xc0 [ 598.640862][T13003] do_syscall_64+0xcd/0x260 [ 598.640900][T13003] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 598.640935][T13003] RIP: 0033:0x7f9bbc38d169 [ 598.640953][T13003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 598.640975][T13003] RSP: 002b:00007f9bbd204038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 598.640997][T13003] RAX: ffffffffffffffda RBX: 00007f9bbc5a5fa0 RCX: 00007f9bbc38d169 [ 598.641012][T13003] RDX: 00000000000000e5 RSI: 0000200000000080 RDI: 0000000000000004 [ 598.641026][T13003] RBP: 00007f9bbd204090 R08: 0000000000000000 R09: 0000000000000000 [ 598.641039][T13003] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 598.641058][T13003] R13: 0000000000000000 R14: 00007f9bbc5a5fa0 R15: 00007ffeaa8cbd78 [ 598.641087][T13003] [ 598.688623][T13008] FAULT_INJECTION: forcing a failure. [ 598.688623][T13008] name failslab, interval 1, probability 0, space 0, times 0 [ 598.945923][T13008] CPU: 0 UID: 0 PID: 13008 Comm: syz.3.1850 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 598.945969][T13008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 598.945993][T13008] Call Trace: [ 598.946003][T13008] [ 598.946016][T13008] dump_stack_lvl+0x16c/0x1f0 [ 598.946074][T13008] should_fail_ex+0x512/0x640 [ 598.946116][T13008] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 598.946164][T13008] should_failslab+0xc2/0x120 [ 598.946212][T13008] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 598.946257][T13008] ? inode_set_ctime_current+0x2a1/0x8f0 [ 598.946303][T13008] ? __d_alloc+0x31/0xaa0 [ 598.946351][T13008] __d_alloc+0x31/0xaa0 [ 598.946399][T13008] d_alloc_pseudo+0x1c/0xc0 [ 598.946429][T13008] alloc_file_pseudo+0xcf/0x230 [ 598.946480][T13008] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 598.946530][T13008] ? hugetlbfs_get_inode+0x31f/0x730 [ 598.946586][T13008] hugetlb_file_setup+0x4cd/0x620 [ 598.946643][T13008] ksys_mmap_pgoff+0x189/0x5c0 [ 598.946690][T13008] ? rcu_is_watching+0x12/0xc0 [ 598.946737][T13008] __x64_sys_mmap+0x125/0x190 [ 598.946782][T13008] do_syscall_64+0xcd/0x260 [ 598.946837][T13008] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 598.946871][T13008] RIP: 0033:0x7fc088f8d169 [ 598.946898][T13008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 598.946932][T13008] RSP: 002b:00007fc089dbd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 598.946963][T13008] RAX: ffffffffffffffda RBX: 00007fc0891a6080 RCX: 00007fc088f8d169 [ 598.946984][T13008] RDX: 0000000000000002 RSI: 0000000000200006 RDI: 0000000000000000 [ 598.947002][T13008] RBP: 00007fc08900e2a0 R08: 0000000000000602 R09: 0000300000000000 [ 598.947024][T13008] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000 [ 598.947043][T13008] R13: 0000000000000000 R14: 00007fc0891a6080 R15: 00007ffd5c361538 [ 598.947085][T13008] [ 599.346403][T13011] ------------[ cut here ]------------ [ 599.352104][T13011] WARNING: CPU: 0 PID: 13011 at net/mac80211/pm.c:171 __ieee80211_suspend+0x1056/0x1300 [ 599.362145][T13011] Modules linked in: [ 599.366342][T13011] CPU: 0 UID: 0 PID: 13011 Comm: syz.1.1852 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 599.378173][T13011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 599.388460][T13011] RIP: 0010:__ieee80211_suspend+0x1056/0x1300 [ 599.395308][T13011] Code: 1a f7 f0 41 80 a4 24 81 01 00 00 fe 4c 89 e0 48 c1 e8 03 42 80 3c 30 00 74 c4 4c 89 e7 e8 d2 8d 1a f7 eb ba e8 ab 0b b7 f6 90 <0f> 0b 90 e9 4f f8 ff ff e8 9d 0b b7 f6 90 0f 0b 90 e9 30 f6 ff ff [ 599.415801][T13011] RSP: 0018:ffffc9000b64fc48 EFLAGS: 00010287 [ 599.421996][T13011] RAX: 0000000000003ede RBX: ffff8880132e8e40 RCX: ffffc9000e9a2000 [ 599.430195][T13011] RDX: 0000000000080000 RSI: ffffffff8b042545 RDI: 0000000000000001 [ 599.438212][T13011] RBP: ffff8880132eaac0 R08: 0000000000000001 R09: 0000000000000000 [ 599.446243][T13011] R10: 0000000000000001 R11: 0000000000000000 R12: dffffc0000000000 [ 599.454228][T13011] R13: ffffed100265d1d0 R14: ffff8880132ea8c8 R15: 0000000000000001 [ 599.462343][T13011] FS: 00007f59779d56c0(0000) GS:ffff8881249da000(0000) knlGS:0000000000000000 [ 599.471330][T13011] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 599.477950][T13011] CR2: 0000001b313b2ff8 CR3: 0000000034584000 CR4: 00000000003526f0 [ 599.485971][T13011] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 599.494059][T13011] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 599.502576][T13011] Call Trace: [ 599.506319][T13011] [ 599.509301][T13011] reset_write+0x7a/0x2a0 [ 599.513663][T13011] full_proxy_write+0x13c/0x200 [ 599.518647][T13011] vfs_write+0x25c/0x1180 [ 599.522998][T13011] ? __pfx_full_proxy_write+0x10/0x10 [ 599.528436][T13011] ? __pfx_vfs_write+0x10/0x10 [ 599.533233][T13011] ? find_held_lock+0x2b/0x80 [ 599.538049][T13011] ? __fget_files+0x204/0x3c0 [ 599.542765][T13011] ? __fget_files+0x20e/0x3c0 [ 599.547537][T13011] __x64_sys_pwrite64+0x1f4/0x250 [ 599.552683][T13011] ? __pfx___x64_sys_pwrite64+0x10/0x10 [ 599.558278][T13011] ? syscall_user_dispatch+0x78/0x140 [ 599.563781][T13011] do_syscall_64+0xcd/0x260 [ 599.568358][T13011] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 599.574290][T13011] RIP: 0033:0x7f5979b8d169 [ 599.578763][T13011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 599.598832][T13011] RSP: 002b:00007f59779d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 599.607769][T13011] RAX: ffffffffffffffda RBX: 00007f5979da6160 RCX: 00007f5979b8d169 [ 599.615756][T13011] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000004 [ 599.623769][T13011] RBP: 00007f5979c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 599.631879][T13011] R10: 0000000000000200 R11: 0000000000000246 R12: 0000000000000000 [ 599.639893][T13011] R13: 0000000000000000 R14: 00007f5979da6160 R15: 00007ffc7f6f3a68 [ 599.647910][T13011] [ 599.650938][T13011] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 599.658327][T13011] CPU: 0 UID: 0 PID: 13011 Comm: syz.1.1852 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full) [ 599.670100][T13011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 599.680178][T13011] Call Trace: [ 599.683501][T13011] [ 599.686459][T13011] dump_stack_lvl+0x3d/0x1f0 [ 599.691121][T13011] panic+0x71c/0x800 [ 599.695045][T13011] ? __pfx_panic+0x10/0x10 [ 599.699489][T13011] ? show_trace_log_lvl+0x29b/0x3e0 [ 599.704749][T13011] ? __ieee80211_suspend+0x1056/0x1300 [ 599.710256][T13011] check_panic_on_warn+0xab/0xb0 [ 599.715221][T13011] __warn+0xf6/0x3c0 [ 599.719147][T13011] ? __ieee80211_suspend+0x1056/0x1300 [ 599.724668][T13011] report_bug+0x3c3/0x580 [ 599.729073][T13011] ? __ieee80211_suspend+0x1056/0x1300 [ 599.734598][T13011] handle_bug+0x184/0x210 [ 599.738957][T13011] exc_invalid_op+0x17/0x50 [ 599.743481][T13011] asm_exc_invalid_op+0x1a/0x20 [ 599.748362][T13011] RIP: 0010:__ieee80211_suspend+0x1056/0x1300 [ 599.754476][T13011] Code: 1a f7 f0 41 80 a4 24 81 01 00 00 fe 4c 89 e0 48 c1 e8 03 42 80 3c 30 00 74 c4 4c 89 e7 e8 d2 8d 1a f7 eb ba e8 ab 0b b7 f6 90 <0f> 0b 90 e9 4f f8 ff ff e8 9d 0b b7 f6 90 0f 0b 90 e9 30 f6 ff ff [ 599.774245][T13011] RSP: 0018:ffffc9000b64fc48 EFLAGS: 00010287 [ 599.780339][T13011] RAX: 0000000000003ede RBX: ffff8880132e8e40 RCX: ffffc9000e9a2000 [ 599.788415][T13011] RDX: 0000000000080000 RSI: ffffffff8b042545 RDI: 0000000000000001 [ 599.796429][T13011] RBP: ffff8880132eaac0 R08: 0000000000000001 R09: 0000000000000000 [ 599.804431][T13011] R10: 0000000000000001 R11: 0000000000000000 R12: dffffc0000000000 [ 599.812440][T13011] R13: ffffed100265d1d0 R14: ffff8880132ea8c8 R15: 0000000000000001 [ 599.820450][T13011] ? __ieee80211_suspend+0x1055/0x1300 [ 599.825987][T13011] ? __ieee80211_suspend+0x1055/0x1300 [ 599.831498][T13011] reset_write+0x7a/0x2a0 [ 599.835870][T13011] full_proxy_write+0x13c/0x200 [ 599.840763][T13011] vfs_write+0x25c/0x1180 [ 599.845116][T13011] ? __pfx_full_proxy_write+0x10/0x10 [ 599.850525][T13011] ? __pfx_vfs_write+0x10/0x10 [ 599.855311][T13011] ? find_held_lock+0x2b/0x80 [ 599.860019][T13011] ? __fget_files+0x204/0x3c0 [ 599.864722][T13011] ? __fget_files+0x20e/0x3c0 [ 599.869469][T13011] __x64_sys_pwrite64+0x1f4/0x250 [ 599.874522][T13011] ? __pfx___x64_sys_pwrite64+0x10/0x10 [ 599.880091][T13011] ? syscall_user_dispatch+0x78/0x140 [ 599.885490][T13011] do_syscall_64+0xcd/0x260 [ 599.890049][T13011] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 599.895959][T13011] RIP: 0033:0x7f5979b8d169 [ 599.900479][T13011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 599.920236][T13011] RSP: 002b:00007f59779d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 599.928699][T13011] RAX: ffffffffffffffda RBX: 00007f5979da6160 RCX: 00007f5979b8d169 [ 599.936689][T13011] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000004 [ 599.944676][T13011] RBP: 00007f5979c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 599.952665][T13011] R10: 0000000000000200 R11: 0000000000000246 R12: 0000000000000000 [ 599.960657][T13011] R13: 0000000000000000 R14: 00007f5979da6160 R15: 00007ffc7f6f3a68 [ 599.968686][T13011] [ 599.972064][T13011] Kernel Offset: disabled [ 599.976410][T13011] Rebooting in 86400 seconds..