last executing test programs: 8.244537317s ago: executing program 1 (id=4236): write$auto(0xca, 0x0, 0x1ff) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000340), 0x108800, 0x0) (async) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000340), 0x108800, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) bpf$auto(0x7, &(0x7f00000000c0)=@link_create={@prog_fd=r0, @target_ifindex, 0x6f, 0x2796, @netkit={@relative_id=0x6, 0x82b1}}, 0x2) (async) bpf$auto(0x7, &(0x7f00000000c0)=@link_create={@prog_fd=r0, @target_ifindex, 0x6f, 0x2796, @netkit={@relative_id=0x6, 0x82b1}}, 0x2) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x100, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000000), r1) (async) r2 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000000), r1) sendmsg$auto_IOAM6_CMD_ADD_SCHEMA(r1, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="01000abd700927da8bb7b016700900fbdbdf25040000090800040009000000"], 0x1c}, 0x1, 0x3000000, 0x0, 0x1}, 0x8010) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x2, 0x2) prctl$auto_PR_SCHED_CORE_GET(0x7fffffff, 0x0, 0xffffffffffffffff, 0x5a, 0x1) (async) r3 = prctl$auto_PR_SCHED_CORE_GET(0x7fffffff, 0x0, 0xffffffffffffffff, 0x5a, 0x1) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'pimreg\x00'}) (async) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'pimreg\x00'}) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x80102, 0x0) r4 = socket(0x1f, 0x800, 0xffffff01) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x400, 0xdf, 0x8000000000000eb1, r4, 0x0) (async) mmap$auto(0x0, 0x400, 0xdf, 0x8000000000000eb1, r4, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x801, 0x84) io_uring_setup$auto(0x4, 0x0) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) io_uring_enter$auto(0x3, 0x0, 0x1, 0x3, 0x0, 0x2) io_uring_enter$auto(r0, 0x11, 0x2688, 0x5, 0x0, 0x7) (async) io_uring_enter$auto(r0, 0x11, 0x2688, 0x5, 0x0, 0x7) 6.082416037s ago: executing program 0 (id=4246): mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) timer_settime$auto(0x3, 0x0, 0xfffffffffffffffd, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0x24, 0x0) r2 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r2, 0x0, 0x4) 5.491717605s ago: executing program 0 (id=4248): select$auto(0x4, 0x0, &(0x7f0000000080)={[0x209c, 0xe9e, 0x1, 0xd, 0x250, 0x100000001, 0x3, 0x2017d, 0x4, 0x40, 0xd, 0xd59, 0xfb, 0xff, 0x21, 0x100000001]}, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff) (async) r1 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff) pidfd_open$auto(0x1, 0x0) pidfd_getfd$auto(0x3, 0x1, 0x100000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) (async) io_uring_setup$auto(0x6, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x0) mmap$auto(0x0, 0x40009, 0xa, 0x9b72, 0x2, 0x28000) (async) mmap$auto(0x0, 0x40009, 0xa, 0x9b72, 0x2, 0x28000) getsockopt$auto(0x100000006, 0x11, 0x68, 0xfffffffffffffffc, 0x0) sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="013b"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000180), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) mmap$auto(0x0, 0x5, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) mmap$auto(0x0, 0x5, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x10, 0x2, 0x0) fstat$auto(0xffffffffffffffff, &(0x7f0000000000)={0x5, 0x80000003, 0x1, 0x100, 0x0, 0x0, 0x0, 0xffffffffffffff91, 0x8000fd3, 0x2, 0xef, 0x4, 0x80040000081, 0x8, 0x2, 0xfffffffffffffff8, 0x63}) syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="1a0027"], 0x1ac}, 0x1, 0x0, 0x0, 0x4001}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r2 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000180), 0x2241, 0x0) ioctl$auto_LOOP_CTL_ADD(r2, 0x4c80, &(0x7f00000001c0)) (async) ioctl$auto_LOOP_CTL_ADD(r2, 0x4c80, &(0x7f00000001c0)) 5.400829459s ago: executing program 1 (id=4249): socket(0xa, 0x2, 0x3a) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) semctl$auto(0x1ff, 0x2, 0x13, 0x1) setsockopt$auto(0x3, 0x0, 0xb, 0x0, 0x17) (fail_nth: 2) 4.71244256s ago: executing program 0 (id=4251): r0 = io_uring_setup$auto(0x6, 0x0) ioctl$auto(0x3, 0x1274, r0) r1 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r0, &(0x7f0000000880)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000840)={&(0x7f0000000180)={0x128, r1, 0x820, 0x70bd2d, 0x25dfdbfc, {}, [@NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x40}, @NFC_ATTR_SE_APDU={0xef, 0x19, "379407619dd137c067a6e310ec943416125ccdbe816a5a02f5b358e0f72a485e2f48ac869efeaa6311fedd13e3211fc4d3b40491b35c161767233103286cd2289ff146587c4fc24545ef97fee62b71e96afaf7e3291e3d9db2a39b45364547724f26529fc33310052ddc9c09a67979a20f68a2bc76ecb5a39c538dacb7e29dbf1e6c8508fce3bba3e129aec51413da6b6744f1c815f8e956a8849924945d05fcef9d1f3393752ca5d0f1164417517928597c96f483a9a2b2e51267e0de57c3d16f167a631ec49bfc25558786e7bb9fb3008b3164248f88c73ea2737d74ee1a39dee9c4c17b69a5113c3ff8"}, @NFC_ATTR_SE_APDU={0x12, 0x19, "976a9968c650ed67dcfc92f5a80b"}, @NFC_ATTR_LLC_PARAM_MIUX={0x6, 0x11, 0xfff4}]}, 0x128}, 0x1, 0x0, 0x0, 0x8000}, 0x800) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) setsockopt$auto_SO_TIMESTAMPING_NEW(r2, 0x3, 0x41, &(0x7f00000000c0)='&\x00', 0x9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x1, 0x0) mmap$auto(0x80, 0xfc0000000, 0x10000000003, 0x200004000eb1, 0xfffffffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/tty/ttyc7/dev\x00', 0x4000, 0x0) getpid() r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x60800, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(r3, 0xc4c85513, &(0x7f0000000340)={{@raw=0x7, 0x7, 0xba28, 0x0, "708c58271a7985a7f5ed0dd58af8d149fc53d81fd4a7553c2ff48b48a8a57689adcc1ca6d2cbfa93b50590c9"}, 0x0, @bytes=@data="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", "fa491e08108961dd5708680f1134935851612a52d629535f54f3832490fc4e7f79daef312b3df3307044713a4801d409aefe3f932f78fc311771094e769c0095f94ee6d74f2517f34a0bbbf502bf3392ac4d93bde5f733ba936c0890312cf035bc44117db9b683eedc5e02a703fc82750d8d6ebac0c3019ef8e6c1eecea33a59"}) timer_settime$auto(0x0, 0xd80, &(0x7f0000000040)={{0x40000000000026b, 0x4}, {0x0, 0x83}}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0xa, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0xff) readv$auto(0xffffffffffffffff, 0x0, 0x2) r4 = openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, 0x0, 0x200, 0x0) read$auto(0x3, 0x0, 0x80) io_uring_setup$auto(0x1, &(0x7f00000002c0)={0x100, 0xb, 0x0, 0xc, 0xcfc, 0x0, r4, [0x4, 0x5, 0x9], {0x7, 0x0, 0x6, 0x8d, 0x80000001, 0xffff, 0x6, 0x5, 0x400}, {0x7f, 0x6, 0x241, 0x1, 0x5, 0x5, 0x7fffffff, 0x9, 0x6}}) 4.66884836s ago: executing program 1 (id=4252): r0 = socket(0x25, 0x1, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(r0, &(0x7f0000000040)=@generic={0x25, "835aabaf5dc454e38226799f73aa"}, 0x18) (fail_nth: 2) 4.104505612s ago: executing program 1 (id=4253): openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/neigh/hsr_slave_0/ucast_solicit\x00', 0x8cd42, 0x0) (async) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) 3.584734903s ago: executing program 1 (id=4255): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0xf000, 0xd, 0x1000000003, 0x38, 0x5, 0x8000) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) mmap$auto(0x0, 0x4000b, 0x7, 0x9b72, 0x7, 0x28000) io_uring_setup$auto(0x6, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'vlan0\x00', 0x0}) sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="7d082d228a9ffac001ba782fbd6700fcdbdf", @ANYRES32=r1], 0x1c}, 0x1, 0x0, 0x0, 0x8}, 0x4000044) r2 = socket(0xa, 0x5, 0x84) sendto$auto(r2, 0x0, 0x401, 0x101, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c) close_range$auto(0x2, 0x8, 0x0) madvise$auto(0x0, 0x20200, 0x15) bind$auto(0x3, 0x0, 0x6a) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(r3, 0x0, 0xd0) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x5, 0x311) unshare$auto(0x40000080) ioperm$auto(0xfb, 0x5, 0xe) 3.568080418s ago: executing program 0 (id=4256): socket(0xa, 0x2, 0x3a) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) semctl$auto(0x1ff, 0x2, 0x13, 0x1) setsockopt$auto(0x3, 0x0, 0xb, 0x0, 0x17) 3.470858889s ago: executing program 2 (id=4257): close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x1, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) pipe2$auto(0x0, 0x80) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x5, 0x0) recvmmsg$auto(0x3, 0x0, 0x7bf, 0x7bd6, 0x0) 3.378541776s ago: executing program 3 (id=4258): mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) r0 = socketcall$auto_SYS_GETSOCKNAME(0x6, &(0x7f0000000000)=0x3) write$auto_tracing_free_buffer_fops_trace(r0, &(0x7f0000000040)="2bc2eacdb0a5e88cf0bf4c82f13de07edf1a7405ebe24d743d6e44cd9f5764c1766fd6b36278ff6cac9f4b9161e62e2d4d0524464536dda4d45a02ab66b2749c96106df203f1397dd2172d56575e90ff88add2f689cc692c", 0x58) setrlimit$auto(0x1000000007, 0x0) socket(0x18, 0x5, 0x0) 3.245911398s ago: executing program 3 (id=4259): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = open(&(0x7f0000000080)='./file0/file0\x00', 0x22240, 0x144) fcntl$auto(r0, 0x400, 0x1) execve$auto(0x0, 0x0, 0x0) socket(0xa, 0x2, 0x0) unshare$auto(0x40000080) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x200, 0x0) r2 = openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) read$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(r2, 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, 0x0, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) r3 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) fcntl$auto(r3, 0x400, 0x1) execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) 3.230464203s ago: executing program 0 (id=4260): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000300), 0xffffffffffffffff) sendmsg$auto_SMC_NETLINK_DUMP_HS_LIMITATION(r0, &(0x7f00000007c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000340)={&(0x7f00000006c0)={0xc8, r1, 0x1, 0x70bd29, 0x25dfdbfe, {}, "374b989e7f9147b03f822007438aee92e925f4eec903fe74ef9a281dc4ca10be6bc1797f6bd67008a9ad10aae8b2581c7f03048b371e31102c0562f5b497ae7473fb839ec856f01ab4191820d2f55def2bcbeed2550412954b8a8892aeb977c2de4f00240bd19f44a136612746af1cf3202d13ef9d1d1c51bbfd61d38a6abcecdf9677399a0961a6ca11d885f60ca42d7b84fc7bf8857928926ea4f31083b7280a0f4c9d376c03b555ec8608a76f6e760ee62113"}, 0xc8}, 0x1, 0x0, 0x0, 0x4008844}, 0x800) socket(0x1e, 0x1, 0x0) execve$auto(&(0x7f0000000000)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00', 0x0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'veth1_to_bridge\x00'}) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto(0xffffffffffffffff, &(0x7f0000000380)='0\x81=\"\xad/\x8d\b\x00\x18\xa4\xb0\xb4\xd9\x82=~\x17\xfb&L\xeb=j\a\xf1y\xb3\"\xeb\a\xdd\xf4\xf4Ry\xee\xd7\x1e\x1c\x86\x0f\xcf\x7f\xbf\xab\x12{\xc2\xc2*\xc1M+6/v8\xea\xe9\x85s4\xfe\xe5\t\x7fc\xfb7^\xb86J_\x1d1s!\x01\xff\xff\xff\xff\xff\xff\xff\x1dF\xe6\xf6\x17\x10+\xc0\xb0\xafc\x99\xd4\x150Y~\x1e\xe2\xd6x4fW\x13\xc4U`\x9e-X\xd7\xe2H^\fLS`\xfc\xbb\r\f\x00\xeaN\xa5\xd2\x82;\x7f\xa0.\x9a\xfb\x8d\xf3l\xf2\xd3\x95\xc1M5\xcb\xa6I\x067\xe36\xea\xe9\xe3\xf44oT_`8\xb3\xef\x04 \x05K\xf9\x87pl\xac\x86\nE\xc7e\xc5Q\x89\xcd@\x1c\x92\x00\x87\x976\x9f>\xa2\xcfm\xec\r\x11\x7f\x00\x00\x00\xb1\xde@\x02\xce\x03\xb7\xb1\xfb\x9fr\v\xb2\xe3\xc7\b\x85K /zm\x7f\x8fg,p\a\xc8\x7f\xa5\x87\x02\x87\xbbR=A\x00\x1f\x8a\xa7/Q\"J\xbb\xb0m\xf2SP\x84\x84S\xf0\xba\x9a\xf6\xb6`WI\xba\xba*8\x9f\xea\xe8K/\x98\xbc7~>\x12\x9buB\xcb\xe4\x8aKf\xba\x8c\x19m\xe6I\x02\xde\x80\x9d\x87}\xf4\xbd9\xaa\xd6\xdb1]\xde\xa0r\x14\xca56^\x94\xd2\xd8\xe6}9\x91\xb6\xf7\xa1=\x96\x11\xf1\\\xa91\x0e\xd1\xe4z\xc1;Pw!\x8b\xf5{\xc7Xd\xf1\xf2}\x96EVf\xc9\xa8\xcd\xe4\xc9\x8d\x1d7\xd5\x94\\\xb5\r\xd2\xaa\xe6H\xfe)\xb3a\x04\x1eRMl\xa3F\xa8W0\x90\xc9Ky#\x03\xf5~\xd2Z\xe9(\x99\b\x00M\xde\x01]\r\xd09k\xc2\x84\xc1\xabN\x96\x8a6\x98@\xd3\xab\xa8m\xdf\x8d\x1d\b\x82\xfcP\x87\x93\x80\x97Q\x86\x8a\x9c\xf8L\x0f\xa8@VE2\x9d\x1e`#\xd8\xd7M\xd4k1\xe6\x13Y\\\x83E\xd0e\x0eM\xa9Q\xac\x0e\x1d]\a\x19H\x81\xd2\xccF\xc6\xd4\xe2R$\xfa\xd6}\xbdsN\x18\xdf\xf5\xffP\xf5\f\xccL\xef\x83\xb3$\xd4\xf4\xb5\xe6\xd0 \xb9\xa7\x8e6\t\x83q\xef\b\xd2\xdb', 0x1) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) r3 = socket(0x10, 0x3, 0x6) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_IPVS_CMD_GET_INFO(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r6, @ANYBLOB="010025bd7000b02d45af50ef918db22be68db72461ee18277b1819a8c208000000bc3e21fdda903f34c7aaf1f45657b9f752e7c6070b04636ff3296e0f7c7eb38d635e2b2bc3a5b6583dbee492404a0aa319fbeaf3e938275b44fcee39bfdc32b05783732217430947780cb55567b066c4ade66d9aaf45073b43133deef663e360a2f0c9157f8da333b48579ba40ea8e938959887f47bf068b23e918dcd87b6db91eab3a5ed1f1f04d3ea1effb5ba1b755642ebb1c7a418cd7450166d4fe261cd97cb62bae87"], 0x14}, 0x1, 0x0, 0x0, 0x40011}, 0x4000000) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="f0020000", @ANYRES16=r4, @ANYBLOB="01002dbd7000fedbdf2505000000da0203800800c000e000000204002a000400110008002e00", @ANYRES32, @ANYBLOB="d152e64e22695352dd73864415aa8a78c65e6ab752fb4d469a47a092ae7d5061cdd9690cac4138553ecfbb1b32"], 0x2f0}, 0x1, 0x0, 0x0, 0x40000}, 0x50) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c7"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) ioctl$auto_TIOCGETD2(0xffffffffffffffff, 0x5424, &(0x7f0000000180)="2811e12e02eebf02fb5aec3310fdc9364846b752080e83f58c1a0bbea47fb504b03b46e1c9e64a9800bdedeca284a14612f3f9daae594b0aba3c0980644ca56ae2be4bcd78bad260beb4772272e768ad326fc54c152cb2e6e312") r7 = socket(0x10, 0x2, 0x4) write$auto(r7, &(0x7f0000000000)='-\x00', 0x2fb) 3.015405238s ago: executing program 2 (id=4261): socket(0x1e, 0x1, 0x0) execve$auto(&(0x7f0000000000)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00', 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth1_to_bridge\x00'}) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c7"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) r1 = socket(0x10, 0x2, 0x4) write$auto(r1, &(0x7f0000000000)='-\x00', 0x2fb) (fail_nth: 2) 2.975175396s ago: executing program 0 (id=4262): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x1d, 0x2, 0x2) sendmsg$auto_NL80211_CMD_DISASSOCIATE(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="6364c2b5e2251b6417d61d60ce6bd353c3f3b17fb3774a578541f0539282be2fbc67c783fe98681eced92b52fa215b14c01c3158af3fa39f7251c731687c55d182d86f1352449220ebd148abcbb1755fa24e65d31dec117273eb9a212e7bf7fde76cc1aa6d2fb94ba8c823e1308166e905ba8541733d0743434d7025abb171ce6f94c62e445c1f1e26c8b08fa7a413aff7ccf0f0d3255f72ea6d4b71ef79995c2b2e67eaeebf446329072923ce6ee15654", @ANYRES16=0x0, @ANYBLOB="02002abd7000fbdbdf25280000003500fa009aea7b23492654c3fb73763d86a05bf478037c98e5f964298f4e214f6fe91851f6393096dbd10f454ac6616c21e3bdf581000000b500a680040073000800c900020000000800a4000000000004004801b9005a80"], 0x1d8}, 0x1, 0x0, 0x0, 0x24040000}, 0x0) r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000380), 0xffffffffffffffff) sendmsg$auto_NL802154_CMD_STOP_BEACONS(r0, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x820c000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="031801000000fcdbdf25270000000500290000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x10000000}, 0x20040000) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000480)={'batadv0\x00', 0x0}) bpf$auto(0xf56a, &(0x7f00000004c0)=@query={@target_ifindex=r2, 0xfff, 0xf, 0xe, 0xf92b, @count=0x9, 0x0, 0x3, 0x721, 0xb, 0x7}, 0x9) pread64$auto(0xffffffffffffffff, 0x0, 0x8100000041, 0x3) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x11c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x3d7}, 0x7}, 0x803, 0x0) ioctl$auto_XFS_IOC_EXCHANGE_RANGE(0xffffffffffffffff, 0x40285881, &(0x7f00000001c0)={0xffffffffffffffff, 0x0, 0xfffffffff11b1459, 0x10, 0x3, 0xffffffffffffff31}) setsockopt$auto_SO_RCVMARK(r3, 0xff, 0x4b, &(0x7f0000000200)='\x00', 0x6) r4 = open(&(0x7f0000000140)='./file0\x00', 0x220c0, 0x4) r5 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x10000, 0x4000000000000006, 0xeb1, r5, 0x8000) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) read$auto(r5, 0x0, 0x8) chmod$auto(&(0x7f00000000c0)='./file0\x00', 0xf4ba) execve$auto(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000340)='/dev/ptyy1\x00', 0x523c80, 0x0) r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x98380, 0x0) ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, 0x0, 0x400, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) syz_clone(0x100000, 0x0, 0x0, 0x0, 0x0, 0x0) mprotect$auto(0x0, 0x8, 0xa) 2.604794407s ago: executing program 2 (id=4263): close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x1, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) pipe2$auto(0x0, 0x80) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x5, 0x0) recvmmsg$auto(0x3, 0x0, 0x7bf, 0x7bd6, 0x0) (fail_nth: 2) 2.566212172s ago: executing program 3 (id=4264): mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0x24, 0x0) r2 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r2, 0x0, 0x4) (fail_nth: 2) 2.126517443s ago: executing program 2 (id=4265): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) ioctl$auto_XFS_IOC_ALLOCSP64(0xffffffffffffffff, 0x40305824, &(0x7f0000000040)={0x7b3, 0x7ff, 0x6, 0x9, 0xe35, 0xffffffffffffffff}) capget$auto(&(0x7f0000000080)={0xdcd9}, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) (async) statmount$auto(0x0, &(0x7f0000000180)={0x9, 0x1, 0x401bf, 0x7352, 0x3f, 0x7ffe, 0x1, 0x7, 0x2, 0x4, 0x9, 0x3, 0x0, 0x8, 0x3000, 0x9, 0x6, 0x10002, 0x80, 0x5a6e, 0x0, 0x7, 0x1ffc, 0x203, 0x400, 0x84, [0xffffffffffffffff, 0x70bd, 0x4, 0xff, 0x4, 0x26, 0xfffffffffffffffd, 0xa, 0x1000000070624ce7, 0x0, 0xa, 0x947, 0x3, 0x1, 0x0, 0xffffffffffffffff, 0x16128f2c, 0x5, 0x200000000000, 0x0, 0xffffffffefffffff, 0x3, 0x0, 0x7, 0x2, 0x4, 0x400000000005b7, 0xc, 0x4000000002, 0x8, 0x4, 0x6, 0x6, 0x890, 0x800000000000a, 0x3, 0x1000, 0xa38, 0x0, 0x4, 0xfffffffffffffffc, 0x2, 0x4000000000, 0x8, 0x0, 0x100000]}, 0x1fe, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x24008000) socket$nl_generic(0x10, 0x3, 0x10) (async) socket(0x26, 0x80805, 0x0) (async) r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto(r0, 0x405c5503, 0x81) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/fs/xfs/panic_mask\x00', 0xa0202, 0x0) sendfile$auto(r1, r1, 0x0, 0x7fffe000) (async) r2 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async) sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0xfe, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 1.572690968s ago: executing program 3 (id=4266): unshare$auto(0x40000080) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) io_uring_setup$auto(0x6, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) socket(0x18, 0x4, 0x0) (async) openat$auto_fops_blob_file(0xffffffffffffff9c, &(0x7f0000011500), 0x40002, 0x0) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x3, 0x0) (async) socket(0x2, 0x801, 0x6) openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/uid_map\x00', 0x80a01, 0x0) (async) write$auto(0x3, 0x0, 0xfdef) (async) openat$auto_proc_mounts_operations_mnt_namespace(0xffffffffffffff9c, 0x0, 0x121080, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x20400, 0x0) (async) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x103400, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x42dc0, 0x10a) socket$nl_generic(0x10, 0x3, 0x10) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x8102, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/tty17\x00', 0x0, 0x0) (async) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyab\x00', 0x0, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) ioctl$auto_TIOCSTI2(r0, 0x5412, 0x0) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) 1.178190821s ago: executing program 2 (id=4267): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000400)='/dev/cuse\x00', 0x1c1041, 0x0) r0 = fcntl$auto(0x3, 0x4, 0xa553) getcwd$auto(0x0, 0xffffffffffffffff) renameat2$auto(r0, &(0x7f0000000280)='./file0\x00', r0, &(0x7f00000002c0)='./file0\x00', 0x1) r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/swradio0\x00', 0x108e00, 0x0) poll$auto(&(0x7f0000000480)={r1, 0xffff, 0x29}, 0x6, 0x8) openat$auto_lockdown_ops_lockdown(0xffffffffffffff9c, &(0x7f0000000340), 0xa0042, 0x0) write$auto_lockdown_ops_lockdown(0xffffffffffffffff, &(0x7f00000004c0)="a3c72e71ed506a221381f0538fefa465158fbbeb89451043553ff869189cf3250b65c544ccd3988b29f3cdb20660e616d3daa3e36b174c5661e383221287595a7e873202add9b0f11733de4ec2cd9c5b048058ed89c590d73c2e44d11636cb85ea9cb4180c5d1ab11f731cec20c57489baf87d298ef21b138e83a6a13cfdc39ffcf7c18ae6946c0d58c5026cd804c5d2f1a5348a159fe5e6746038217e838e23a24c5cda52d0af4c570a9983422fb706704f8410113a38fc2decb77fbcbca9e8f3dd2b2ccb939869852e91137af1e79ab833c8b104726d0a00", 0xd9) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r1, 0x8000) openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0) set_mempolicy_home_node$auto(0x0, 0x2010001, 0x0, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) ioperm$auto(0x7, 0x86, 0x40006) socket(0xf, 0x2, 0x3a) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x0, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xffffeffe, 0x2) pipe$auto(0x0) pipe$auto(0x0) fcntl$auto(r2, 0x8, 0x1) fcntl$auto(r2, 0x10, 0x2) r3 = socket(0x2, 0x5, 0x0) setsockopt$auto(r3, 0x0, 0x10, 0x0, 0x17) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) 726.111291ms ago: executing program 3 (id=4268): mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) read$auto(r0, 0x0, 0x20) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) socket(0x2, 0x1, 0x106) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x2c, 0x80003, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/mtrr\x00', 0xa8240, 0x0) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x55) socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmsg$auto_NL80211_CMD_REQ_SET_REG(r1, &(0x7f0000002140)={0x0, 0x0, &(0x7f0000002100)={&(0x7f0000001fc0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002dbd7000fddbdf251b000000"], 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = socket$nl_generic(0x10, 0x3, 0x10) fcntl$auto(r3, 0x8, 0x1) fcntl$auto(r3, 0x11, 0x2) socket(0x2b, 0x1, 0x0) r4 = socket(0xa, 0x3, 0x3a) setsockopt$auto(r4, 0x29, 0x3c, 0xffffffffffffffff, 0x1) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3, @rand_addr=0x40020000}, 0x55) r5 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, r5, 0x300000000000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x50580, 0x0) 221.713864ms ago: executing program 1 (id=4269): mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0x24, 0x0) r2 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r2, 0x0, 0x4) 83.02927ms ago: executing program 2 (id=4270): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) epoll_create$auto(0x2) (async) epoll_create$auto(0x2) r0 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0) ioctl$auto_SNAPSHOT_ALLOC_SWAP_PAGE(r0, 0x80083314, 0x0) ptrace$auto(0xe, 0x0, 0x2, 0x53) close_range$auto(0x2, 0xa, 0x0) r1 = io_uring_setup$auto(0x6, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) (async) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffa, 0x8000) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffa, 0x8000) socket(0x2, 0x801, 0x106) (async) r3 = socket(0x2, 0x801, 0x106) close_range$auto(0x2, 0x8, 0x0) fanotify_init$auto(0x5, 0x2000000000002) (async) fanotify_init$auto(0x5, 0x2000000000002) socket(0x2, 0x801, 0x100) connect$auto(0x3, &(0x7f00000000c0), 0x55) setsockopt$auto(r3, 0x6, 0x3, 0x0, 0xa1) ioctl$auto_SNDCTL_DSP_SPEED(r2, 0xc0045002, 0x0) (async) ioctl$auto_SNDCTL_DSP_SPEED(r2, 0xc0045002, 0x0) read$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffffff, &(0x7f0000000200)=""/238, 0xee) (async) read$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffffff, &(0x7f0000000200)=""/238, 0xee) ioctl$auto_SNDCTL_DSP_SYNC(r2, 0x5001, 0xfffffffffffffffc) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc000) r4 = prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x7fff, 0x0, 0x5, 0x7) ioctl$auto(r1, 0x80046f45, r4) (async) ioctl$auto(r1, 0x80046f45, r4) mincore$auto(0x1000, 0x8003, 0x0) (async) mincore$auto(0x1000, 0x8003, 0x0) setsockopt$auto(0x3, 0x0, 0x20, 0x0, 0x28) fcntl$auto_F_SETSIG(r0, 0xa, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x400, 0x202000b, 0x5, 0xeb0, r0, 0x6) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) write$auto(0x3, 0x0, 0xfffffdef) 0s ago: executing program 3 (id=4271): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0xf000, 0xd, 0x1000000003, 0x38, 0x5, 0x8000) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) madvise$auto(0x0, 0x20200, 0x15) bind$auto(0x3, 0x0, 0x6a) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(r0, 0x0, 0xd0) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x5, 0x311) unshare$auto(0x40000080) ioperm$auto(0xfb, 0x5, 0xe) kernel console output (not intermixed with test programs): ed event 0x1d length: 6 > 5 [ 1888.787551][T23906] Bluetooth: hci4: unexpected event 0x1d length: 6 > 5 [ 1889.370065][T24663] busy [ 1889.572304][T23906] Bluetooth: hci0: unexpected subevent 0x01 length: 4 < 18 [ 1889.746416][ T30] audit: type=1800 audit(6037745801.051:98): pid=24667 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3265" name="dbroot" dev="configfs" ino=93672 res=0 errno=0 [ 1890.941745][T23906] Bluetooth: hci3: unexpected subevent 0x01 length: 4 < 18 [ 1891.022418][T24670] kexec: Could not allocate control_code_buffer [ 1891.177882][ T30] audit: type=1800 audit(6037745810.321:99): pid=24673 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3266" name="dbroot" dev="configfs" ino=93142 res=0 errno=0 [ 1891.834407][T24678] busy [ 1892.304965][T24673] kexec: Could not allocate control_code_buffer [ 1892.924104][T23906] Bluetooth: hci4: unexpected event 0x1d length: 6 > 5 [ 1893.067666][T23906] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 1893.475232][T23906] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 1893.903374][T23906] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 1894.992298][T23906] Bluetooth: hci0: unexpected subevent 0x01 length: 4 < 18 [ 1895.109363][ T30] audit: type=1800 audit(6037745822.403:100): pid=24707 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3273" name="dbroot" dev="configfs" ino=94330 res=0 errno=0 [ 1895.567013][T23906] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 1896.347024][T24715] busy [ 1897.468344][T23906] Bluetooth: hci3: unexpected subevent 0x01 length: 4 < 18 [ 1897.555115][ T30] audit: type=1800 audit(6037745832.857:101): pid=24721 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3277" name="dbroot" dev="configfs" ino=94350 res=0 errno=0 [ 1897.934981][T24707] kexec: Could not allocate control_code_buffer [ 1897.964506][T23906] Bluetooth: hci4: unexpected subevent 0x01 length: 4 < 18 [ 1898.569230][T23906] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 1899.575490][T23906] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 1899.607716][T23906] Bluetooth: hci3: unexpected subevent 0x01 length: 4 < 18 [ 1899.757946][ T30] audit: type=1800 audit(6037745851.058:102): pid=24739 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3280" name="dbroot" dev="configfs" ino=93843 res=0 errno=0 [ 1900.645124][T23906] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18 [ 1901.408012][T23906] Bluetooth: hci4: unexpected event 0x1d length: 6 > 5 [ 1901.556890][T24739] kexec: Could not allocate control_code_buffer [ 1902.451577][T24762] busy [ 1902.728139][T23906] Bluetooth: hci0: unexpected subevent 0x01 length: 4 < 18 [ 1903.075398][ T30] audit: type=1800 audit(6037745870.279:103): pid=24765 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3285" name="dbroot" dev="configfs" ino=93912 res=0 errno=0 [ 1903.521326][T23906] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 1904.809830][T24770] busy [ 1905.021913][T24774] busy [ 1905.494875][T24776] busy [ 1905.683610][T24765] kexec: Could not allocate control_code_buffer [ 1905.740014][T24780] busy [ 1906.240577][T24786] busy [ 1906.380313][T23906] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18 [ 1906.521873][ T30] audit: type=1800 audit(6037745881.789:104): pid=24791 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3293" name="dbroot" dev="configfs" ino=93939 res=0 errno=0 [ 1906.797099][T23906] Bluetooth: hci3: unexpected subevent 0x01 length: 4 < 18 [ 1907.243330][T23906] Bluetooth: hci4: unexpected event 0x1d length: 6 > 5 [ 1907.847502][T24798] busy [ 1907.899483][T24801] kexec: Could not allocate control_code_buffer [ 1908.498121][T24818] busy [ 1908.578014][T23906] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 1908.596393][T23906] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 1908.701708][T23906] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 1909.963146][T24822] busy [ 1910.337066][T24827] busy [ 1910.347897][T24825] busy [ 1910.579772][T23906] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 1911.214526][T23906] Bluetooth: hci4: unexpected event 0x1d length: 6 > 5 [ 1911.772696][T23906] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 1913.054609][T23906] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 1914.201526][T24855] busy [ 1915.120164][T23906] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 1915.420367][T23906] Bluetooth: hci4: unexpected event 0x1d length: 6 > 5 [ 1915.915797][T24876] busy [ 1916.750799][T23906] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 1917.576491][T23906] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 1918.290317][T24891] busy [ 1918.873900][T24889] busy [ 1919.183733][T23906] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 1919.788880][T24908] busy [ 1919.936057][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 1919.943507][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 1920.198538][T24911] busy [ 1920.932153][T23906] Bluetooth: hci4: unexpected event 0x1d length: 6 > 5 [ 1921.388641][T23906] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 1921.607835][T24920] busy [ 1921.958982][T24925] busy [ 1923.168508][T24935] busy [ 1923.587558][T23906] Bluetooth: hci4: unexpected event 0x1d length: 6 > 5 [ 1924.221650][T23906] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 1925.083061][T23906] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 1925.083064][T20651] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 1925.245127][T20651] Bluetooth: hci4: unexpected event 0x1d length: 6 > 5 [ 1926.713124][T24960] busy [ 1927.416928][T24971] busy [ 1927.733428][T20651] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 1928.451421][T20651] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 1929.031299][T20651] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 1930.206323][T24990] busy [ 1930.431415][T20651] Bluetooth: hci4: unexpected event 0x1d length: 6 > 5 [ 1930.966064][T20651] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 1931.389856][T24998] busy [ 1931.402310][T20651] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 1933.274290][T25013] busy [ 1933.497555][T20651] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 1934.215539][T20651] Bluetooth: hci4: unexpected event 0x1d length: 6 > 5 [ 1935.156018][T25023] busy [ 1935.402735][T20651] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 1935.732919][T20651] Bluetooth: hci4: unexpected event 0x1d length: 6 > 5 [ 1937.071351][T20651] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 1937.596672][T20651] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 1938.631654][T25051] busy [ 1939.282301][T20651] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 1939.295502][T20651] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 1940.024149][T20651] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 1941.872577][T25070] busy [ 1942.304153][T25083] busy [ 1942.450559][T25084] busy [ 1943.295237][T20651] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 1943.660164][T20651] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 1943.917833][T20651] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 1944.439244][T20651] Bluetooth: hci4: unexpected event 0x1d length: 6 > 5 [ 1945.489474][T25108] busy [ 1946.362757][T25114] busy [ 1946.566170][T20651] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 1946.745745][T20651] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 1947.139170][T25119] busy [ 1948.342507][T20651] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 1948.696772][T20651] Bluetooth: hci4: unexpected event 0x1d length: 6 > 5 [ 1950.877356][T20651] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 1950.966185][T20651] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 1951.270946][T25147] busy [ 1952.176867][T25157] busy [ 1952.457503][T20651] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 1953.459418][T20651] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 1953.924924][T25167] busy [ 1954.356777][T25176] busy [ 1954.458825][T20651] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 1955.110894][T20651] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 1955.934803][T25181] busy [ 1956.497822][T25190] busy [ 1956.857815][T25192] busy [ 1957.329562][T20651] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 1957.807819][T20651] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 1958.132549][T25205] busy [ 1959.161633][T25215] busy [ 1959.424380][T20651] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 1960.237914][T25224] busy [ 1960.579888][T20651] Bluetooth: hci4: unexpected event 0x1d length: 6 > 5 [ 1961.509811][T20651] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 1961.973849][T20651] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 1962.739489][T20651] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 1963.255594][T20651] Bluetooth: hci4: unexpected event 0x1d length: 6 > 5 [ 1963.441330][T20651] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 1964.203778][T20651] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 1964.654392][T20651] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 1966.477433][T25266] busy [ 1966.602482][T25265] busy [ 1966.985638][T25271] busy [ 1967.215055][T25270] busy [ 1967.643710][T25273] busy [ 1967.790993][T25277] busy [ 1968.436668][T20651] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 1968.631325][T20651] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 1969.513399][T25288] busy [ 1969.741644][T20651] Bluetooth: hci4: unexpected event 0x1d length: 6 > 5 [ 1970.058071][T25297] busy [ 1970.876693][T25301] busy [ 1971.063996][T20651] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 1971.639885][T20651] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 1971.832634][T25315] busy [ 1972.022511][T20651] Bluetooth: hci4: unexpected event 0x1d length: 6 > 5 [ 1974.391391][T25327] busy [ 1974.810902][T25331] busy [ 1974.899645][T20651] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 1975.713602][T25343] busy [ 1975.820410][T20651] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 1976.183519][T20651] Bluetooth: hci4: unexpected event 0x1d length: 6 > 5 [ 1976.886568][T25352] busy [ 1976.937111][T25353] busy [ 1977.646095][T20651] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 1977.661871][T25360] busy [ 1978.273232][T20651] Bluetooth: hci4: unexpected event 0x1d length: 6 > 5 [ 1978.578731][T25368] busy [ 1979.159994][T25371] busy [ 1979.202153][T20651] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 1979.653327][T25376] busy [ 1979.983475][T25379] busy [ 1980.558587][T25383] busy [ 1981.211646][T25391] busy [ 1981.344254][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 1981.350866][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 1981.368113][T25394] busy [ 1982.274640][T25397] busy [ 1982.410872][T20651] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 1983.101450][T25405] busy [ 1983.350907][T20651] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 1983.781377][T25412] busy [ 1984.494111][T25425] busy [ 1985.006844][T20651] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 1985.606469][T20651] Bluetooth: hci4: unexpected event 0x1d length: 6 > 5 [ 1985.802875][T20651] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 1985.816544][T20651] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 1986.989198][T25444] busy [ 1988.301462][T25451] busy [ 1989.271325][T25450] busy [ 1989.310252][T25455] busy [ 1989.683880][T25460] busy [ 1990.224100][T25470] busy [ 1990.730064][T20651] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 1990.964797][T20651] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 1992.578794][T25475] busy [ 1992.820687][T25478] busy [ 1992.966359][T25481] busy [ 1994.130844][T25488] busy [ 1994.149967][T25490] busy [ 1994.557294][T25494] busy [ 1995.084696][T25497] busy [ 1995.144688][T25499] busy [ 1995.853384][T25507] busy [ 1996.370315][T25505] busy [ 1996.424949][T25514] busy [ 1996.731444][T20651] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 1997.662901][T25525] busy [ 1997.759276][T20651] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 1998.423965][T25531] busy [ 1999.492679][T25536] busy [ 1999.749711][T25540] busy [ 1999.898038][T25543] busy [ 2001.399711][T25550] busy [ 2001.922313][T25561] busy [ 2002.015082][T25557] busy [ 2002.049569][T25558] busy [ 2002.615699][T25566] busy [ 2003.131693][T25573] busy [ 2003.729204][T25575] busy [ 2003.845471][T25574] busy [ 2005.671951][T25587] busy [ 2005.699615][T25588] busy [ 2006.710895][T25597] busy [ 2008.129194][T25602] busy [ 2008.140483][T25607] busy [ 2008.677222][T25613] busy [ 2009.132999][T25612] busy [ 2009.174114][T25616] busy [ 2009.865431][T25619] busy [ 2010.591996][T25625] busy [ 2011.781369][T25635] busy [ 2011.898039][T25636] busy [ 2012.486697][T25642] busy [ 2013.123606][T25650] busy [ 2013.372114][T25649] busy [ 2013.780151][T25652] busy [ 2014.146505][T25660] busy [ 2014.841548][T25664] busy [ 2015.171673][T25666] busy [ 2015.350329][T25671] busy [ 2016.308904][T25681] busy [ 2016.423228][T25679] busy [ 2018.212363][T25691] busy [ 2018.311861][T25690] busy [ 2018.371457][T25692] busy [ 2018.423747][T25694] busy [ 2019.394163][T25702] busy [ 2019.820338][T25706] busy [ 2020.451051][T25713] busy [ 2021.701281][T25716] busy [ 2021.733492][T25720] busy [ 2021.940098][T25721] busy [ 2022.164078][T25726] busy [ 2023.716550][T25733] busy [ 2023.730644][T25734] busy [ 2023.734999][T25732] busy [ 2024.340354][T25742] busy [ 2025.192018][T25749] busy [ 2025.805954][T25747] busy [ 2025.863296][T25748] busy [ 2026.565267][T25766] busy [ 2027.130443][T25763] busy [ 2027.167668][T25762] busy [ 2027.287054][T25756] busy [ 2027.868961][T25772] busy [ 2028.116349][T25773] busy [ 2029.113210][T25778] busy [ 2029.296437][T25780] busy [ 2029.535782][T25788] busy [ 2030.599521][T25790] busy [ 2030.612543][T25785] busy [ 2030.840374][T25793] busy [ 2031.558431][T25798] busy [ 2032.026407][T25802] busy [ 2032.741632][T25811] busy [ 2033.280959][T25810] busy [ 2033.564373][T25813] busy [ 2034.506545][T25820] busy [ 2034.798511][T25819] busy [ 2034.884377][T25825] busy [ 2035.421375][T25828] busy [ 2036.091432][T25832] busy [ 2037.297596][T25836] busy [ 2037.339165][T25838] busy [ 2037.349146][T25837] busy [ 2037.735498][T25847] busy [ 2038.562556][T25850] busy [ 2039.091580][T25848] busy [ 2039.522676][T25854] busy [ 2039.806830][T25862] busy [ 2039.841917][T25863] busy [ 2040.068586][T25864] busy [ 2041.371493][T25871] busy [ 2042.154309][T25879] busy [ 2042.172040][T25877] busy [ 2042.291261][T25880] busy [ 2042.825575][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 2042.859028][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 2043.444023][T25897] busy [ 2043.552683][T25888] busy [ 2043.716427][T25892] busy [ 2044.155190][T25894] busy [ 2044.642433][T25908] busy [ 2045.027304][T25910] busy [ 2045.957315][T25914] busy [ 2047.102897][T25921] busy [ 2047.186741][T25918] busy [ 2047.192003][T25922] busy [ 2047.592115][T25930] busy [ 2048.110665][T20651] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 2048.340212][T25938] busy [ 2048.692697][T25942] busy [ 2049.452487][T25949] busy [ 2049.606119][T25950] busy [ 2050.262539][T25952] busy [ 2050.297686][T25954] busy [ 2050.487682][T25965] busy [ 2051.202859][T25969] busy [ 2051.383078][T25973] busy [ 2051.638303][T25979] busy [ 2052.547656][T25985] busy [ 2052.565334][T25984] busy [ 2053.412193][T25988] busy [ 2054.165882][T26000] busy [ 2054.577284][T26007] busy [ 2056.336801][T26020] busy [ 2056.344550][T26022] busy [ 2056.693622][T26023] busy [ 2057.307713][T26034] busy [ 2058.428122][T26033] busy [ 2058.442287][T26037] busy [ 2058.545810][T26043] busy [ 2059.366056][T26052] busy [ 2059.668570][T26054] busy [ 2061.263359][T26079] busy [ 2062.765953][T26100] input: isc as /devices/virtual/input/input5 [ 2062.795318][T26100] FAULT_INJECTION: forcing a failure. [ 2062.795318][T26100] name failslab, interval 1, probability 0, space 0, times 0 [ 2062.811005][T26100] CPU: 1 UID: 0 PID: 26100 Comm: syz.0.3613 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2062.811047][T26100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2062.811066][T26100] Call Trace: [ 2062.811104][T26100] [ 2062.811117][T26100] dump_stack_lvl+0x16c/0x1f0 [ 2062.811212][T26100] should_fail_ex+0x50a/0x650 [ 2062.811302][T26100] ? fs_reclaim_acquire+0xae/0x150 [ 2062.811349][T26100] should_failslab+0xc2/0x120 [ 2062.811383][T26100] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 2062.811436][T26100] ? __kernfs_new_node+0xd3/0x890 [ 2062.811490][T26100] __kernfs_new_node+0xd3/0x890 [ 2062.811534][T26100] ? __pfx___lock_acquire+0x10/0x10 [ 2062.811585][T26100] ? __pfx___kernfs_new_node+0x10/0x10 [ 2062.811648][T26100] ? find_held_lock+0x2d/0x110 [ 2062.811692][T26100] kernfs_new_node+0x186/0x240 [ 2062.811752][T26100] kernfs_create_dir_ns+0x4c/0x150 [ 2062.811812][T26100] internal_create_group+0x34e/0xf10 [ 2062.811871][T26100] ? __pfx_internal_create_group+0x10/0x10 [ 2062.811925][T26100] ? __pfx_dev_add_physical_location+0x10/0x10 [ 2062.812015][T26100] ? bus_to_subsys+0x12d/0x160 [ 2062.812070][T26100] dpm_sysfs_add+0x80/0x280 [ 2062.812158][T26100] device_add+0x9a8/0x1a70 [ 2062.812230][T26100] ? __pfx_device_add+0x10/0x10 [ 2062.812290][T26100] ? __pfx_exact_lock+0x10/0x10 [ 2062.812356][T26100] ? kobject_get+0xbb/0x150 [ 2062.812408][T26100] cdev_device_add+0xc2/0x1e0 [ 2062.812456][T26100] evdev_connect+0x3a4/0x4c0 [ 2062.812519][T26100] input_attach_handler.isra.0+0x181/0x260 [ 2062.812576][T26100] input_register_device+0xa84/0x1130 [ 2062.812611][T26100] ? __pfx_uinput_ioctl+0x10/0x10 [ 2062.812691][T26100] uinput_ioctl_handler.isra.0+0x130c/0x1d70 [ 2062.812742][T26100] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 2062.812795][T26100] ? __pfx_lock_release+0x10/0x10 [ 2062.812836][T26100] ? trace_lock_acquire+0x14e/0x1f0 [ 2062.812885][T26100] ? __fget_files+0x206/0x3a0 [ 2062.812936][T26100] ? __pfx_uinput_ioctl+0x10/0x10 [ 2062.812983][T26100] __x64_sys_ioctl+0x190/0x200 [ 2062.813022][T26100] do_syscall_64+0xcd/0x250 [ 2062.813072][T26100] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2062.813143][T26100] RIP: 0033:0x7f1a8078d169 [ 2062.813173][T26100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2062.813210][T26100] RSP: 002b:00007f1a7e5f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2062.813240][T26100] RAX: ffffffffffffffda RBX: 00007f1a809a5fa0 RCX: 00007f1a8078d169 [ 2062.813262][T26100] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000005 [ 2062.813282][T26100] RBP: 00007f1a8080e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 2062.813302][T26100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2062.813321][T26100] R13: 0000000000000000 R14: 00007f1a809a5fa0 R15: 00007ffd4b300598 [ 2062.813363][T26100] [ 2063.155072][T26100] input: failed to attach handler evdev to device input5, error: -12 [ 2064.020131][T26119] busy [ 2067.169085][T26162] input: isc as /devices/virtual/input/input6 [ 2067.251764][T26162] FAULT_INJECTION: forcing a failure. [ 2067.251764][T26162] name failslab, interval 1, probability 0, space 0, times 0 [ 2067.361132][T26162] CPU: 0 UID: 0 PID: 26162 Comm: syz.1.3625 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2067.361180][T26162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2067.361199][T26162] Call Trace: [ 2067.361210][T26162] [ 2067.361223][T26162] dump_stack_lvl+0x16c/0x1f0 [ 2067.361281][T26162] should_fail_ex+0x50a/0x650 [ 2067.361314][T26162] ? fs_reclaim_acquire+0xae/0x150 [ 2067.361362][T26162] should_failslab+0xc2/0x120 [ 2067.361395][T26162] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 2067.361449][T26162] ? __kernfs_new_node+0xd3/0x890 [ 2067.361502][T26162] __kernfs_new_node+0xd3/0x890 [ 2067.361553][T26162] ? __pfx___lock_acquire+0x10/0x10 [ 2067.361606][T26162] ? __pfx___kernfs_new_node+0x10/0x10 [ 2067.361668][T26162] ? find_held_lock+0x2d/0x110 [ 2067.361715][T26162] kernfs_new_node+0x186/0x240 [ 2067.361775][T26162] kernfs_create_dir_ns+0x4c/0x150 [ 2067.361832][T26162] internal_create_group+0x34e/0xf10 [ 2067.361891][T26162] ? __pfx_internal_create_group+0x10/0x10 [ 2067.361945][T26162] ? __pfx_dev_add_physical_location+0x10/0x10 [ 2067.361989][T26162] ? bus_to_subsys+0x12d/0x160 [ 2067.362026][T26162] dpm_sysfs_add+0x80/0x280 [ 2067.362073][T26162] device_add+0x9a8/0x1a70 [ 2067.362125][T26162] ? __pfx_device_add+0x10/0x10 [ 2067.362172][T26162] ? __pfx_exact_lock+0x10/0x10 [ 2067.362243][T26162] ? kobject_get+0xbb/0x150 [ 2067.362298][T26162] cdev_device_add+0xc2/0x1e0 [ 2067.362350][T26162] evdev_connect+0x3a4/0x4c0 [ 2067.362394][T26162] input_attach_handler.isra.0+0x181/0x260 [ 2067.362439][T26162] input_register_device+0xa84/0x1130 [ 2067.362476][T26162] ? __pfx_uinput_ioctl+0x10/0x10 [ 2067.362529][T26162] uinput_ioctl_handler.isra.0+0x130c/0x1d70 [ 2067.362590][T26162] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 2067.362648][T26162] ? __pfx_lock_release+0x10/0x10 [ 2067.362694][T26162] ? trace_lock_acquire+0x14e/0x1f0 [ 2067.362747][T26162] ? __fget_files+0x206/0x3a0 [ 2067.362802][T26162] ? __pfx_uinput_ioctl+0x10/0x10 [ 2067.362854][T26162] __x64_sys_ioctl+0x190/0x200 [ 2067.362898][T26162] do_syscall_64+0xcd/0x250 [ 2067.362951][T26162] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2067.362998][T26162] RIP: 0033:0x7f9d83d8d169 [ 2067.363025][T26162] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2067.363060][T26162] RSP: 002b:00007f9d84b02038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2067.363092][T26162] RAX: ffffffffffffffda RBX: 00007f9d83fa5fa0 RCX: 00007f9d83d8d169 [ 2067.363114][T26162] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000005 [ 2067.363134][T26162] RBP: 00007f9d83e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 2067.363154][T26162] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2067.363173][T26162] R13: 0000000000000000 R14: 00007f9d83fa5fa0 R15: 00007ffdfd312698 [ 2067.363225][T26162] [ 2068.043281][T26162] input: failed to attach handler evdev to device input6, error: -12 [ 2070.593616][T26198] busy [ 2070.961914][T26204] busy [ 2071.590211][T26216] busy [ 2071.768364][T26214] busy [ 2073.341688][T26231] busy [ 2076.109608][T26261] busy [ 2076.507503][T26263] busy [ 2076.953854][T26272] busy [ 2080.252607][T26293] busy [ 2081.102402][T26304] busy [ 2081.306559][T26308] busy [ 2081.782885][T20651] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 2082.169833][T26315] busy [ 2082.533293][T26318] busy [ 2083.209252][T26321] busy [ 2084.503358][T26339] busy [ 2084.844929][T20651] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 2085.834774][T26349] busy [ 2086.116097][T26353] input: isc as /devices/virtual/input/input7 [ 2086.162301][T26353] FAULT_INJECTION: forcing a failure. [ 2086.162301][T26353] name failslab, interval 1, probability 0, space 0, times 0 [ 2086.187669][T26353] CPU: 0 UID: 0 PID: 26353 Comm: syz.2.3670 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2086.187709][T26353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2086.187727][T26353] Call Trace: [ 2086.187735][T26353] [ 2086.187746][T26353] dump_stack_lvl+0x16c/0x1f0 [ 2086.187798][T26353] should_fail_ex+0x50a/0x650 [ 2086.187828][T26353] ? fs_reclaim_acquire+0xae/0x150 [ 2086.187871][T26353] should_failslab+0xc2/0x120 [ 2086.187900][T26353] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 2086.187949][T26353] ? __kernfs_new_node+0xd3/0x890 [ 2086.187998][T26353] __kernfs_new_node+0xd3/0x890 [ 2086.188044][T26353] ? __pfx___kernfs_new_node+0x10/0x10 [ 2086.188095][T26353] ? __pfx_lock_release+0x10/0x10 [ 2086.188140][T26353] ? kernfs_add_one+0x39d/0x520 [ 2086.188201][T26353] ? up_write+0x1b2/0x520 [ 2086.188265][T26353] kernfs_new_node+0x186/0x240 [ 2086.188316][T26353] __kernfs_create_file+0x53/0x350 [ 2086.188351][T26353] sysfs_add_file_mode_ns+0x1ff/0x3b0 [ 2086.188397][T26353] sysfs_merge_group+0x1b1/0x340 [ 2086.188439][T26353] ? __pfx_sysfs_merge_group+0x10/0x10 [ 2086.188485][T26353] ? __pfx_dev_add_physical_location+0x10/0x10 [ 2086.188525][T26353] ? bus_to_subsys+0x12d/0x160 [ 2086.188555][T26353] dpm_sysfs_add+0x237/0x280 [ 2086.188596][T26353] device_add+0x9a8/0x1a70 [ 2086.188642][T26353] ? __pfx_device_add+0x10/0x10 [ 2086.188683][T26353] ? __pfx_exact_lock+0x10/0x10 [ 2086.188731][T26353] ? kobject_get+0xbb/0x150 [ 2086.188779][T26353] cdev_device_add+0xc2/0x1e0 [ 2086.188825][T26353] evdev_connect+0x3a4/0x4c0 [ 2086.188873][T26353] input_attach_handler.isra.0+0x181/0x260 [ 2086.188909][T26353] input_register_device+0xa84/0x1130 [ 2086.188940][T26353] ? __pfx_uinput_ioctl+0x10/0x10 [ 2086.188983][T26353] uinput_ioctl_handler.isra.0+0x130c/0x1d70 [ 2086.189028][T26353] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 2086.189080][T26353] ? __pfx_lock_release+0x10/0x10 [ 2086.189118][T26353] ? trace_lock_acquire+0x14e/0x1f0 [ 2086.189149][T26353] ? __pfx___schedule+0x10/0x10 [ 2086.189195][T26353] ? __fget_files+0x206/0x3a0 [ 2086.189238][T26353] ? __pfx_uinput_ioctl+0x10/0x10 [ 2086.189280][T26353] __x64_sys_ioctl+0x190/0x200 [ 2086.189315][T26353] do_syscall_64+0xcd/0x250 [ 2086.189357][T26353] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2086.189396][T26353] RIP: 0033:0x7f52c598d169 [ 2086.189417][T26353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2086.189443][T26353] RSP: 002b:00007f52c6824038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2086.189469][T26353] RAX: ffffffffffffffda RBX: 00007f52c5ba5fa0 RCX: 00007f52c598d169 [ 2086.189487][T26353] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000005 [ 2086.189502][T26353] RBP: 00007f52c5a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 2086.189518][T26353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2086.189534][T26353] R13: 0000000000000000 R14: 00007f52c5ba5fa0 R15: 00007ffccfc43888 [ 2086.189567][T26353] [ 2086.788628][T26353] input: failed to attach handler evdev to device input7, error: -12 [ 2087.047754][T26367] busy [ 2087.632139][T26369] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3673'. [ 2087.782475][T26369] netlink: 354 bytes leftover after parsing attributes in process `syz.2.3673'. [ 2088.163669][T26374] busy [ 2088.752970][T26376] busy [ 2089.921035][T26388] busy [ 2090.655565][T26395] busy [ 2091.606567][T26399] busy [ 2091.778699][T26396] busy [ 2092.107346][T26406] busy [ 2093.030539][T26416] busy [ 2093.079540][T26408] busy [ 2093.300555][T26418] busy [ 2094.058304][T26423] busy [ 2095.120874][T26438] busy [ 2098.378927][T26475] busy [ 2099.205708][T26481] busy [ 2099.759227][T26489] busy [ 2100.478981][T26493] busy [ 2100.488906][T26490] busy [ 2100.900481][T26496] input: isc as /devices/virtual/input/input8 [ 2100.917228][T26496] FAULT_INJECTION: forcing a failure. [ 2100.917228][T26496] name failslab, interval 1, probability 0, space 0, times 0 [ 2100.937804][T26496] CPU: 1 UID: 0 PID: 26496 Comm: syz.1.3706 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2100.937857][T26496] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2100.937877][T26496] Call Trace: [ 2100.937887][T26496] [ 2100.937899][T26496] dump_stack_lvl+0x16c/0x1f0 [ 2100.937956][T26496] should_fail_ex+0x50a/0x650 [ 2100.937988][T26496] ? fs_reclaim_acquire+0xae/0x150 [ 2100.938035][T26496] should_failslab+0xc2/0x120 [ 2100.938068][T26496] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 2100.938122][T26496] ? __kernfs_new_node+0xd3/0x890 [ 2100.938174][T26496] __kernfs_new_node+0xd3/0x890 [ 2100.938219][T26496] ? __pfx___lock_acquire+0x10/0x10 [ 2100.938270][T26496] ? __pfx___kernfs_new_node+0x10/0x10 [ 2100.938334][T26496] ? find_held_lock+0x2d/0x110 [ 2100.938380][T26496] kernfs_new_node+0x186/0x240 [ 2100.938438][T26496] kernfs_create_dir_ns+0x4c/0x150 [ 2100.938497][T26496] internal_create_group+0x34e/0xf10 [ 2100.938555][T26496] ? __pfx_internal_create_group+0x10/0x10 [ 2100.938609][T26496] ? __pfx_dev_add_physical_location+0x10/0x10 [ 2100.938654][T26496] ? bus_to_subsys+0x12d/0x160 [ 2100.938691][T26496] dpm_sysfs_add+0x80/0x280 [ 2100.938738][T26496] device_add+0x9a8/0x1a70 [ 2100.938791][T26496] ? __pfx_device_add+0x10/0x10 [ 2100.938846][T26496] ? __pfx_exact_lock+0x10/0x10 [ 2100.938904][T26496] ? kobject_get+0xbb/0x150 [ 2100.938961][T26496] cdev_device_add+0xc2/0x1e0 [ 2100.939016][T26496] evdev_connect+0x3a4/0x4c0 [ 2100.939061][T26496] input_attach_handler.isra.0+0x181/0x260 [ 2100.939107][T26496] input_register_device+0xa84/0x1130 [ 2100.939146][T26496] ? __pfx_uinput_ioctl+0x10/0x10 [ 2100.939201][T26496] uinput_ioctl_handler.isra.0+0x130c/0x1d70 [ 2100.939258][T26496] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 2100.939317][T26496] ? __pfx_lock_release+0x10/0x10 [ 2100.939364][T26496] ? trace_lock_acquire+0x14e/0x1f0 [ 2100.939417][T26496] ? __fget_files+0x206/0x3a0 [ 2100.939470][T26496] ? __pfx_uinput_ioctl+0x10/0x10 [ 2100.939522][T26496] __x64_sys_ioctl+0x190/0x200 [ 2100.939567][T26496] do_syscall_64+0xcd/0x250 [ 2100.939623][T26496] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2100.939670][T26496] RIP: 0033:0x7f9d83d8d169 [ 2100.939696][T26496] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2100.939729][T26496] RSP: 002b:00007f9d84b02038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2100.939761][T26496] RAX: ffffffffffffffda RBX: 00007f9d83fa5fa0 RCX: 00007f9d83d8d169 [ 2100.939782][T26496] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000005 [ 2100.939800][T26496] RBP: 00007f9d83e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 2100.939826][T26496] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2100.939846][T26496] R13: 0000000000000000 R14: 00007f9d83fa5fa0 R15: 00007ffdfd312698 [ 2100.939888][T26496] [ 2101.225037][T26496] input: failed to attach handler evdev to device input8, error: -12 [ 2101.496339][T26505] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3710'. [ 2101.569639][T26505] netlink: 354 bytes leftover after parsing attributes in process `syz.3.3710'. [ 2102.037443][T26511] busy [ 2104.226181][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 2104.232619][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 2104.995952][T26531] busy [ 2105.670827][T26534] busy [ 2106.408878][T26542] busy [ 2106.423047][T26539] busy [ 2107.682606][T26551] busy [ 2108.024767][T26552] busy [ 2109.111478][T26564] busy [ 2110.136614][T26577] busy [ 2111.506044][T26591] busy [ 2113.883151][T26613] busy [ 2114.601528][T26617] input: isc as /devices/virtual/input/input9 [ 2114.607963][T26617] FAULT_INJECTION: forcing a failure. [ 2114.607963][T26617] name failslab, interval 1, probability 0, space 0, times 0 [ 2114.662147][T26617] CPU: 0 UID: 0 PID: 26617 Comm: syz.1.3736 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2114.662194][T26617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2114.662214][T26617] Call Trace: [ 2114.662223][T26617] [ 2114.662235][T26617] dump_stack_lvl+0x16c/0x1f0 [ 2114.662289][T26617] should_fail_ex+0x50a/0x650 [ 2114.662320][T26617] ? fs_reclaim_acquire+0xae/0x150 [ 2114.662368][T26617] should_failslab+0xc2/0x120 [ 2114.662398][T26617] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 2114.662451][T26617] ? __kernfs_new_node+0xd3/0x890 [ 2114.662503][T26617] __kernfs_new_node+0xd3/0x890 [ 2114.662556][T26617] ? __pfx___kernfs_new_node+0x10/0x10 [ 2114.662614][T26617] ? __pfx_lock_release+0x10/0x10 [ 2114.662659][T26617] ? kernfs_add_one+0x39d/0x520 [ 2114.662723][T26617] ? up_write+0x1b2/0x520 [ 2114.662782][T26617] kernfs_new_node+0x186/0x240 [ 2114.662840][T26617] __kernfs_create_file+0x53/0x350 [ 2114.662879][T26617] sysfs_add_file_mode_ns+0x1ff/0x3b0 [ 2114.662929][T26617] sysfs_merge_group+0x1b1/0x340 [ 2114.662970][T26617] ? __pfx_sysfs_merge_group+0x10/0x10 [ 2114.663024][T26617] ? __pfx_dev_add_physical_location+0x10/0x10 [ 2114.663069][T26617] ? bus_to_subsys+0x12d/0x160 [ 2114.663104][T26617] dpm_sysfs_add+0x237/0x280 [ 2114.663153][T26617] device_add+0x9a8/0x1a70 [ 2114.663204][T26617] ? __pfx_device_add+0x10/0x10 [ 2114.663252][T26617] ? __pfx_exact_lock+0x10/0x10 [ 2114.663308][T26617] ? kobject_get+0xbb/0x150 [ 2114.663377][T26617] cdev_device_add+0xc2/0x1e0 [ 2114.663428][T26617] evdev_connect+0x3a4/0x4c0 [ 2114.663490][T26617] input_attach_handler.isra.0+0x181/0x260 [ 2114.663536][T26617] input_register_device+0xa84/0x1130 [ 2114.663575][T26617] ? __pfx_uinput_ioctl+0x10/0x10 [ 2114.663638][T26617] uinput_ioctl_handler.isra.0+0x130c/0x1d70 [ 2114.663694][T26617] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 2114.663754][T26617] ? __pfx_lock_release+0x10/0x10 [ 2114.663798][T26617] ? trace_lock_acquire+0x14e/0x1f0 [ 2114.663850][T26617] ? __fget_files+0x206/0x3a0 [ 2114.663905][T26617] ? __pfx_uinput_ioctl+0x10/0x10 [ 2114.663957][T26617] __x64_sys_ioctl+0x190/0x200 [ 2114.664000][T26617] do_syscall_64+0xcd/0x250 [ 2114.664052][T26617] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2114.664098][T26617] RIP: 0033:0x7f9d83d8d169 [ 2114.664124][T26617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2114.664155][T26617] RSP: 002b:00007f9d84b02038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2114.664185][T26617] RAX: ffffffffffffffda RBX: 00007f9d83fa5fa0 RCX: 00007f9d83d8d169 [ 2114.664206][T26617] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000005 [ 2114.664223][T26617] RBP: 00007f9d83e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 2114.664242][T26617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2114.664260][T26617] R13: 0000000000000000 R14: 00007f9d83fa5fa0 R15: 00007ffdfd312698 [ 2114.664298][T26617] [ 2114.984452][T26617] input: failed to attach handler evdev to device input9, error: -12 [ 2118.217596][T26662] busy [ 2118.469199][T26666] busy [ 2124.618875][T26720] FAULT_INJECTION: forcing a failure. [ 2124.618875][T26720] name failslab, interval 1, probability 0, space 0, times 0 [ 2124.698281][T26720] CPU: 1 UID: 0 PID: 26720 Comm: syz.3.3760 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2124.698323][T26720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2124.698342][T26720] Call Trace: [ 2124.698351][T26720] [ 2124.698363][T26720] dump_stack_lvl+0x16c/0x1f0 [ 2124.698412][T26720] should_fail_ex+0x50a/0x650 [ 2124.698440][T26720] ? fs_reclaim_acquire+0xae/0x150 [ 2124.698481][T26720] should_failslab+0xc2/0x120 [ 2124.698509][T26720] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 2124.698554][T26720] ? percpu_counter_add_batch+0xb5/0x1e0 [ 2124.698659][T26720] ? vm_area_dup+0x53/0x2f0 [ 2124.698708][T26720] vm_area_dup+0x53/0x2f0 [ 2124.698754][T26720] copy_process+0x776f/0x8c50 [ 2124.698814][T26720] ? __pfx_copy_process+0x10/0x10 [ 2124.698840][T26720] ? __pfx___futex_wait+0x10/0x10 [ 2124.698916][T26720] kernel_clone+0xfd/0x960 [ 2124.698947][T26720] ? __pfx_kernel_clone+0x10/0x10 [ 2124.698997][T26720] __do_sys_clone+0xcf/0x120 [ 2124.699025][T26720] ? __pfx___do_sys_clone+0x10/0x10 [ 2124.699071][T26720] ? rcu_is_watching+0x12/0xc0 [ 2124.699118][T26720] do_syscall_64+0xcd/0x250 [ 2124.699164][T26720] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2124.699206][T26720] RIP: 0033:0x7f59fdd8d169 [ 2124.699229][T26720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2124.699256][T26720] RSP: 002b:00007f59febbdfe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 2124.699283][T26720] RAX: ffffffffffffffda RBX: 00007f59fdfa5fa0 RCX: 00007f59fdd8d169 [ 2124.699301][T26720] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011 [ 2124.699317][T26720] RBP: 00007f59fde0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 2124.699333][T26720] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 2124.699349][T26720] R13: 0000000000000000 R14: 00007f59fdfa5fa0 R15: 00007ffef6aee0b8 [ 2124.699384][T26720] [ 2125.305527][T26730] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3764'. [ 2125.336477][T26730] netlink: 354 bytes leftover after parsing attributes in process `syz.0.3764'. [ 2135.079126][T26831] FAULT_INJECTION: forcing a failure. [ 2135.079126][T26831] name failslab, interval 1, probability 0, space 0, times 0 [ 2135.126410][T26831] CPU: 1 UID: 0 PID: 26831 Comm: syz.0.3786 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2135.126467][T26831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2135.126486][T26831] Call Trace: [ 2135.126495][T26831] [ 2135.126507][T26831] dump_stack_lvl+0x16c/0x1f0 [ 2135.126562][T26831] should_fail_ex+0x50a/0x650 [ 2135.126597][T26831] ? fs_reclaim_acquire+0xae/0x150 [ 2135.126642][T26831] should_failslab+0xc2/0x120 [ 2135.126673][T26831] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 2135.126722][T26831] ? anon_vma_fork+0xe6/0x620 [ 2135.126774][T26831] anon_vma_fork+0xe6/0x620 [ 2135.126818][T26831] ? anon_vma_name+0x75/0x100 [ 2135.126874][T26831] copy_process+0x82c8/0x8c50 [ 2135.126939][T26831] ? __pfx_copy_process+0x10/0x10 [ 2135.126971][T26831] ? __pfx___futex_wait+0x10/0x10 [ 2135.127023][T26831] ? try_to_wake_up+0x158/0x1490 [ 2135.127104][T26831] kernel_clone+0xfd/0x960 [ 2135.127141][T26831] ? __pfx_kernel_clone+0x10/0x10 [ 2135.127200][T26831] __do_sys_clone+0xcf/0x120 [ 2135.127233][T26831] ? __pfx___do_sys_clone+0x10/0x10 [ 2135.127288][T26831] ? rcu_is_watching+0x12/0xc0 [ 2135.127338][T26831] do_syscall_64+0xcd/0x250 [ 2135.127393][T26831] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2135.127441][T26831] RIP: 0033:0x7f1a8078d169 [ 2135.127467][T26831] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2135.127499][T26831] RSP: 002b:00007f1a7e5f5fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 2135.127530][T26831] RAX: ffffffffffffffda RBX: 00007f1a809a5fa0 RCX: 00007f1a8078d169 [ 2135.127552][T26831] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011 [ 2135.127571][T26831] RBP: 00007f1a8080e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 2135.127589][T26831] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 2135.127616][T26831] R13: 0000000000000000 R14: 00007f1a809a5fa0 R15: 00007ffd4b300598 [ 2135.127659][T26831] [ 2146.271348][T26935] input: isc as /devices/virtual/input/input13 [ 2146.320957][T26935] FAULT_INJECTION: forcing a failure. [ 2146.320957][T26935] name failslab, interval 1, probability 0, space 0, times 0 [ 2146.356399][T26935] CPU: 1 UID: 0 PID: 26935 Comm: syz.0.3812 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2146.356444][T26935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2146.356464][T26935] Call Trace: [ 2146.356474][T26935] [ 2146.356486][T26935] dump_stack_lvl+0x16c/0x1f0 [ 2146.356540][T26935] should_fail_ex+0x50a/0x650 [ 2146.356571][T26935] ? fs_reclaim_acquire+0xae/0x150 [ 2146.356616][T26935] should_failslab+0xc2/0x120 [ 2146.356657][T26935] __kmalloc_cache_node_noprof+0x6e/0x420 [ 2146.356706][T26935] ? __get_vm_area_node+0x101/0x2f0 [ 2146.356754][T26935] __get_vm_area_node+0x101/0x2f0 [ 2146.356802][T26935] __vmalloc_node_range_noprof+0x26a/0x1530 [ 2146.356849][T26935] ? kernel_clone+0xfd/0x960 [ 2146.356883][T26935] ? mod_objcg_state+0x4c4/0x8d0 [ 2146.356928][T26935] ? lockdep_hardirqs_on+0x7c/0x110 [ 2146.356977][T26935] ? kernel_clone+0xfd/0x960 [ 2146.357015][T26935] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 2146.357075][T26935] ? rcu_is_watching+0x12/0xc0 [ 2146.357107][T26935] ? trace_kmem_cache_alloc+0x2d/0xd0 [ 2146.357143][T26935] ? kmem_cache_alloc_node_noprof+0x272/0x3c0 [ 2146.357192][T26935] ? copy_process+0x4be/0x8c50 [ 2146.357221][T26935] ? kernel_clone+0xfd/0x960 [ 2146.357249][T26935] copy_process+0x2ef2/0x8c50 [ 2146.357275][T26935] ? kernel_clone+0xfd/0x960 [ 2146.357315][T26935] ? plist_add+0x458/0x600 [ 2146.357359][T26935] ? lock_acquire+0x2f/0xb0 [ 2146.357391][T26935] ? schedule+0x1fd/0x350 [ 2146.357425][T26935] ? futex_wait_queue+0x41/0x1f0 [ 2146.357469][T26935] ? schedule+0xf1/0x350 [ 2146.357506][T26935] ? futex_unqueue+0xba/0x140 [ 2146.357544][T26935] ? __pfx_copy_process+0x10/0x10 [ 2146.357569][T26935] ? __pfx___futex_wait+0x10/0x10 [ 2146.357620][T26935] ? __pfx_futex_wake_mark+0x10/0x10 [ 2146.357684][T26935] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 2146.357739][T26935] kernel_clone+0xfd/0x960 [ 2146.357770][T26935] ? __pfx_kernel_clone+0x10/0x10 [ 2146.357806][T26935] ? uinput_ioctl_handler.isra.0+0x804/0x1d70 [ 2146.357864][T26935] __do_sys_clone+0xcf/0x120 [ 2146.357895][T26935] ? __pfx___do_sys_clone+0x10/0x10 [ 2146.357960][T26935] ? rcu_is_watching+0x12/0xc0 [ 2146.358005][T26935] do_syscall_64+0xcd/0x250 [ 2146.358056][T26935] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2146.358103][T26935] RIP: 0033:0x7f1a8078d169 [ 2146.358128][T26935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2146.358160][T26935] RSP: 002b:00007f1a7e5f5fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 2146.358191][T26935] RAX: ffffffffffffffda RBX: 00007f1a809a5fa0 RCX: 00007f1a8078d169 [ 2146.358211][T26935] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011 [ 2146.358229][T26935] RBP: 00007f1a8080e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 2146.358248][T26935] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 2146.358266][T26935] R13: 0000000000000000 R14: 00007f1a809a5fa0 R15: 00007ffd4b300598 [ 2146.358303][T26935] [ 2146.358316][T26935] syz.0.3812: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null) [ 2146.728234][T26944] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3815'. [ 2146.750748][T26935] ,cpuset=/,mems_allowed=0-1 [ 2146.899010][T26944] netlink: 354 bytes leftover after parsing attributes in process `syz.2.3815'. [ 2147.090021][T26935] CPU: 0 UID: 0 PID: 26935 Comm: syz.0.3812 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2147.090066][T26935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2147.090085][T26935] Call Trace: [ 2147.090094][T26935] [ 2147.090106][T26935] dump_stack_lvl+0x16c/0x1f0 [ 2147.090161][T26935] warn_alloc+0x24d/0x3a0 [ 2147.090218][T26935] ? __pfx_warn_alloc+0x10/0x10 [ 2147.090269][T26935] ? rcu_is_watching+0x12/0xc0 [ 2147.090312][T26935] ? __kmalloc_cache_node_noprof+0x2ad/0x420 [ 2147.090370][T26935] ? __kasan_kmalloc+0x8a/0xb0 [ 2147.090421][T26935] ? __get_vm_area_node+0x1dc/0x2f0 [ 2147.090473][T26935] __vmalloc_node_range_noprof+0xd24/0x1530 [ 2147.090528][T26935] ? mod_objcg_state+0x4c4/0x8d0 [ 2147.090575][T26935] ? lockdep_hardirqs_on+0x7c/0x110 [ 2147.090625][T26935] ? kernel_clone+0xfd/0x960 [ 2147.090666][T26935] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 2147.090716][T26935] ? rcu_is_watching+0x12/0xc0 [ 2147.090751][T26935] ? trace_kmem_cache_alloc+0x2d/0xd0 [ 2147.090792][T26935] ? kmem_cache_alloc_node_noprof+0x272/0x3c0 [ 2147.090845][T26935] ? copy_process+0x4be/0x8c50 [ 2147.090877][T26935] ? kernel_clone+0xfd/0x960 [ 2147.090908][T26935] copy_process+0x2ef2/0x8c50 [ 2147.090948][T26935] ? kernel_clone+0xfd/0x960 [ 2147.090977][T26935] ? plist_add+0x458/0x600 [ 2147.091017][T26935] ? lock_acquire+0x2f/0xb0 [ 2147.091062][T26935] ? schedule+0x1fd/0x350 [ 2147.091106][T26935] ? futex_wait_queue+0x41/0x1f0 [ 2147.091151][T26935] ? schedule+0xf1/0x350 [ 2147.091194][T26935] ? futex_unqueue+0xba/0x140 [ 2147.091237][T26935] ? __pfx_copy_process+0x10/0x10 [ 2147.091267][T26935] ? __pfx___futex_wait+0x10/0x10 [ 2147.091324][T26935] ? __pfx_futex_wake_mark+0x10/0x10 [ 2147.091381][T26935] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 2147.091441][T26935] kernel_clone+0xfd/0x960 [ 2147.091476][T26935] ? __pfx_kernel_clone+0x10/0x10 [ 2147.091517][T26935] ? uinput_ioctl_handler.isra.0+0x804/0x1d70 [ 2147.091582][T26935] __do_sys_clone+0xcf/0x120 [ 2147.091614][T26935] ? __pfx___do_sys_clone+0x10/0x10 [ 2147.091664][T26935] ? rcu_is_watching+0x12/0xc0 [ 2147.091712][T26935] do_syscall_64+0xcd/0x250 [ 2147.091764][T26935] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2147.091811][T26935] RIP: 0033:0x7f1a8078d169 [ 2147.091837][T26935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2147.091870][T26935] RSP: 002b:00007f1a7e5f5fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 2147.091901][T26935] RAX: ffffffffffffffda RBX: 00007f1a809a5fa0 RCX: 00007f1a8078d169 [ 2147.091928][T26935] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011 [ 2147.091947][T26935] RBP: 00007f1a8080e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 2147.091966][T26935] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 2147.091985][T26935] R13: 0000000000000000 R14: 00007f1a809a5fa0 R15: 00007ffd4b300598 [ 2147.092023][T26935] [ 2147.404909][T26935] Mem-Info: [ 2147.408083][T26935] active_anon:13261 inactive_anon:0 isolated_anon:0 [ 2147.408083][T26935] active_file:9557 inactive_file:48112 isolated_file:0 [ 2147.408083][T26935] unevictable:768 dirty:400 writeback:0 [ 2147.408083][T26935] slab_reclaimable:10838 slab_unreclaimable:100544 [ 2147.408083][T26935] mapped:25971 shmem:1648 pagetables:794 [ 2147.408083][T26935] sec_pagetables:0 bounce:0 [ 2147.408083][T26935] kernel_misc_reclaimable:0 [ 2147.408083][T26935] free:1323224 free_pcp:1139 free_cma:0 [ 2147.462528][T26935] Node 0 active_anon:53144kB inactive_anon:0kB active_file:38228kB inactive_file:192372kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:102984kB dirty:1600kB writeback:0kB shmem:4156kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10388kB pagetables:3176kB sec_pagetables:0kB all_unreclaimable? no [ 2147.504387][T26935] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 2147.540880][T26935] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 2147.573425][T26935] lowmem_reserve[]: 0 2487 2487 2487 2487 [ 2147.579314][T26935] Node 0 DMA32 free:1375720kB boost:0kB min:34152kB low:42688kB high:51224kB reserved_highatomic:0KB active_anon:52436kB inactive_anon:0kB active_file:38228kB inactive_file:192272kB unevictable:1536kB writepending:1600kB present:3129332kB managed:2547520kB mlocked:0kB bounce:0kB free_pcp:1856kB local_pcp:1416kB free_cma:0kB [ 2147.618836][T26935] lowmem_reserve[]: 0 0 0 0 0 [ 2147.625922][T26935] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:100kB unevictable:0kB writepending:0kB present:1048580kB managed:108kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 2147.652901][T26935] lowmem_reserve[]: 0 0 0 0 0 [ 2147.657687][T26935] Node 1 Normal free:3905272kB boost:0kB min:55748kB low:69684kB high:83620kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 2147.746169][T26935] lowmem_reserve[]: 0 0 0 0 0 [ 2147.751014][T26935] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 2147.872819][T26935] Node 0 DMA32: 3800*4kB (UME) 4390*8kB (UME) 2867*16kB (UME) 1927*32kB (UME) 1576*64kB (UME) 994*128kB (UM) 530*256kB (UM) 267*512kB (UME) 105*1024kB (UM) 37*2048kB (UME) 130*4096kB (UME) = 1374112kB [ 2147.969172][T26935] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 2148.042813][T26935] Node 1 Normal: 234*4kB (UE) 60*8kB (UME) 41*16kB (UME) 227*32kB (UME) 114*64kB (UME) 34*128kB (UME) 13*256kB (UM) 6*512kB (UM) 7*1024kB (UME) 4*2048kB (UE) 943*4096kB (M) = 3905272kB [ 2148.248905][T26935] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 2148.267981][T26952] input: isc as /devices/virtual/input/input14 [ 2148.324882][T26935] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 2148.342422][T26952] FAULT_INJECTION: forcing a failure. [ 2148.342422][T26952] name failslab, interval 1, probability 0, space 0, times 0 [ 2148.390104][T26935] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 2148.430859][T26952] CPU: 1 UID: 0 PID: 26952 Comm: syz.2.3816 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2148.430905][T26952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2148.430924][T26952] Call Trace: [ 2148.430935][T26952] [ 2148.430958][T26952] dump_stack_lvl+0x16c/0x1f0 [ 2148.431011][T26952] should_fail_ex+0x50a/0x650 [ 2148.431043][T26952] ? fs_reclaim_acquire+0xae/0x150 [ 2148.431089][T26952] should_failslab+0xc2/0x120 [ 2148.431140][T26952] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 2148.431191][T26952] ? lockdep_init_map_type+0x16d/0x7d0 [ 2148.431243][T26952] ? security_inode_alloc+0x3b/0x2b0 [ 2148.431361][T26952] security_inode_alloc+0x3b/0x2b0 [ 2148.431404][T26952] inode_init_always_gfp+0xce4/0x1030 [ 2148.431463][T26952] alloc_inode+0x82/0x230 [ 2148.431496][T26952] sock_alloc+0x40/0x280 [ 2148.431532][T26952] __sock_create+0xc1/0x8d0 [ 2148.431582][T26952] __sys_socket+0x14f/0x260 [ 2148.431626][T26952] ? __pfx___sys_socket+0x10/0x10 [ 2148.431672][T26952] ? rcu_is_watching+0x12/0xc0 [ 2148.431716][T26952] __x64_sys_socket+0x72/0xb0 [ 2148.431766][T26952] ? lockdep_hardirqs_on+0x7c/0x110 [ 2148.431815][T26952] do_syscall_64+0xcd/0x250 [ 2148.431870][T26952] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2148.431919][T26952] RIP: 0033:0x7f52c598d169 [ 2148.431945][T26952] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2148.431978][T26952] RSP: 002b:00007f52c6824038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 2148.432010][T26952] RAX: ffffffffffffffda RBX: 00007f52c5ba5fa0 RCX: 00007f52c598d169 [ 2148.432032][T26952] RDX: 0000000000000084 RSI: 0000000000000801 RDI: 000000000000000a [ 2148.432053][T26952] RBP: 00007f52c5a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 2148.432074][T26952] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2148.432095][T26952] R13: 0000000000000000 R14: 00007f52c5ba5fa0 R15: 00007ffccfc43888 [ 2148.432135][T26952] [ 2148.480779][T26935] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 2148.676193][T26935] 59308 total pagecache pages [ 2148.680940][T26935] 0 pages in swap cache [ 2148.688485][T26952] socket: no more sockets [ 2148.721272][T26935] Free swap = 124852kB [ 2148.725492][T26935] Total swap = 124996kB [ 2148.729694][T26935] 2097051 pages RAM [ 2148.751222][T26935] 0 pages HighMem/MovableOnly [ 2148.756039][T26935] 428513 pages reserved [ 2148.760705][T26935] 0 pages cma reserved [ 2157.641415][T27046] input: isc as /devices/virtual/input/input15 [ 2161.812584][T27097] input: isc as /devices/virtual/input/input16 [ 2162.695458][T27109] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3853'. [ 2162.806705][T27109] netlink: 354 bytes leftover after parsing attributes in process `syz.3.3853'. [ 2165.674133][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 2165.680490][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 2169.258949][T27167] busy [ 2180.308642][T27266] input: isc as /devices/virtual/input/input17 [ 2180.315488][T27266] FAULT_INJECTION: forcing a failure. [ 2180.315488][T27266] name failslab, interval 1, probability 0, space 0, times 0 [ 2180.329353][T27266] CPU: 1 UID: 0 PID: 27266 Comm: syz.3.3887 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2180.329394][T27266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2180.329423][T27266] Call Trace: [ 2180.329431][T27266] [ 2180.329442][T27266] dump_stack_lvl+0x16c/0x1f0 [ 2180.329492][T27266] should_fail_ex+0x50a/0x650 [ 2180.329523][T27266] ? fs_reclaim_acquire+0xae/0x150 [ 2180.329564][T27266] should_failslab+0xc2/0x120 [ 2180.329593][T27266] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 2180.329638][T27266] ? __kernfs_new_node+0xd3/0x890 [ 2180.329686][T27266] __kernfs_new_node+0xd3/0x890 [ 2180.329740][T27266] ? __pfx___lock_acquire+0x10/0x10 [ 2180.329789][T27266] ? __pfx___kernfs_new_node+0x10/0x10 [ 2180.329846][T27266] ? find_held_lock+0x2d/0x110 [ 2180.329879][T27266] kernfs_new_node+0x186/0x240 [ 2180.329924][T27266] kernfs_create_dir_ns+0x4c/0x150 [ 2180.329981][T27266] internal_create_group+0x34e/0xf10 [ 2180.330025][T27266] ? __pfx_internal_create_group+0x10/0x10 [ 2180.330066][T27266] ? __pfx_dev_add_physical_location+0x10/0x10 [ 2180.330101][T27266] ? bus_to_subsys+0x12d/0x160 [ 2180.330127][T27266] dpm_sysfs_add+0x80/0x280 [ 2180.330162][T27266] device_add+0x9a8/0x1a70 [ 2180.330202][T27266] ? __pfx_device_add+0x10/0x10 [ 2180.330238][T27266] ? __pfx_exact_lock+0x10/0x10 [ 2180.330280][T27266] ? kobject_get+0xbb/0x150 [ 2180.330321][T27266] cdev_device_add+0xc2/0x1e0 [ 2180.330360][T27266] evdev_connect+0x3a4/0x4c0 [ 2180.330394][T27266] input_attach_handler.isra.0+0x181/0x260 [ 2180.330444][T27266] input_register_device+0xa84/0x1130 [ 2180.330487][T27266] ? __pfx_uinput_ioctl+0x10/0x10 [ 2180.330545][T27266] uinput_ioctl_handler.isra.0+0x130c/0x1d70 [ 2180.330590][T27266] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 2180.330636][T27266] ? __pfx_lock_release+0x10/0x10 [ 2180.330672][T27266] ? trace_lock_acquire+0x14e/0x1f0 [ 2180.330714][T27266] ? __fget_files+0x206/0x3a0 [ 2180.330756][T27266] ? __pfx_uinput_ioctl+0x10/0x10 [ 2180.330797][T27266] __x64_sys_ioctl+0x190/0x200 [ 2180.330831][T27266] do_syscall_64+0xcd/0x250 [ 2180.330873][T27266] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2180.330910][T27266] RIP: 0033:0x7f59fdd8d169 [ 2180.330929][T27266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2180.330955][T27266] RSP: 002b:00007f59febbe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2180.331002][T27266] RAX: ffffffffffffffda RBX: 00007f59fdfa5fa0 RCX: 00007f59fdd8d169 [ 2180.331021][T27266] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000005 [ 2180.331037][T27266] RBP: 00007f59fde0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 2180.331053][T27266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2180.331069][T27266] R13: 0000000000000000 R14: 00007f59fdfa5fa0 R15: 00007ffef6aee0b8 [ 2180.331108][T27266] [ 2180.778814][T27266] input: failed to attach handler evdev to device input17, error: -12 [ 2181.492145][T27279] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3890'. [ 2181.637782][T27279] Invalid ELF header magic: != ELF [ 2193.430019][T27364] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3911'. [ 2193.627826][T27364] Invalid ELF header magic: != ELF [ 2193.689423][T27369] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3913'. [ 2193.889514][T27369] Invalid ELF header magic: != ELF [ 2194.084959][T27373] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3914'. [ 2194.113827][T27373] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3914'. [ 2195.915327][T27394] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3919'. [ 2195.989892][T27394] Invalid ELF header magic: != ELF [ 2197.240953][T27411] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3922'. [ 2197.650161][T27411] Invalid ELF header magic: != ELF [ 2198.508483][T27423] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3925'. [ 2198.879674][T27423] Invalid ELF header magic: != ELF [ 2199.100147][T27430] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3927'. [ 2199.415633][T27430] Invalid ELF header magic: != ELF [ 2200.702920][T27449] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3930'. [ 2201.118825][T27449] Invalid ELF header magic: != ELF [ 2206.570159][T27532] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3946'. [ 2207.107845][T27532] Invalid ELF header magic: != ELF [ 2215.763025][T27695] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3975'. [ 2215.857928][T27695] Invalid ELF header magic: != ELF [ 2216.798537][T27714] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3979'. [ 2216.919848][T27720] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3980'. [ 2217.200258][T27720] Invalid ELF header magic: != ELF [ 2219.838830][T27761] Invalid ELF header magic: != ELF [ 2221.831986][T27791] Invalid ELF header magic: != ELF [ 2221.850920][T27797] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3996'. [ 2221.888995][T27798] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3995'. [ 2222.163760][T27797] Invalid ELF header magic: != ELF [ 2223.576039][T27815] Invalid ELF header magic: != ELF [ 2225.309354][T27849] Invalid ELF header magic: != ELF [ 2225.333241][T27856] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4007'. [ 2225.344560][T27852] Invalid ELF header magic: != ELF [ 2225.518549][T27856] Invalid ELF header magic: != ELF [ 2227.107503][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 2227.117179][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 2227.458671][T27870] bond0: option all_slaves_active: invalid value () [ 2228.264591][T27911] blktrace: Concurrent blktraces are not allowed on ram7 [ 2228.405163][T27911] syz.0.4015: vmalloc error: size 1691648, failed to allocate pages, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 2228.429163][T27911] CPU: 0 UID: 0 PID: 27911 Comm: syz.0.4015 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2228.429201][T27911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2228.429236][T27911] Call Trace: [ 2228.429245][T27911] [ 2228.429256][T27911] dump_stack_lvl+0x16c/0x1f0 [ 2228.429311][T27911] warn_alloc+0x24d/0x3a0 [ 2228.429364][T27911] ? __pfx_warn_alloc+0x10/0x10 [ 2228.429418][T27911] ? alloc_pages_mpol+0x25b/0x540 [ 2228.429451][T27911] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 2228.429499][T27911] __vmalloc_node_range_noprof+0x12bd/0x1530 [ 2228.429556][T27911] ? __snd_dma_alloc_pages+0x50/0x90 [ 2228.429615][T27911] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 2228.429662][T27911] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 2228.429719][T27911] ? __snd_dma_alloc_pages+0x50/0x90 [ 2228.429769][T27911] vmalloc_noprof+0x6b/0x90 [ 2228.429811][T27911] ? __snd_dma_alloc_pages+0x50/0x90 [ 2228.429866][T27911] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 2228.429916][T27911] __snd_dma_alloc_pages+0x50/0x90 [ 2228.429966][T27911] snd_dma_alloc_dir_pages+0x151/0x240 [ 2228.430018][T27911] do_alloc_pages+0x115/0x270 [ 2228.430068][T27911] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 2228.430123][T27911] snd_pcm_hw_params+0x15e6/0x1b20 [ 2228.430180][T27911] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 2228.430228][T27911] ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0 [ 2228.430276][T27911] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 2228.430325][T27911] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 2228.430375][T27911] snd_pcm_oss_change_params_locked+0x1406/0x3a60 [ 2228.430434][T27911] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 2228.430479][T27911] ? snd_pcm_oss_sync+0x306/0x7f0 [ 2228.430542][T27911] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 2228.430586][T27911] snd_pcm_oss_sync+0x326/0x7f0 [ 2228.430629][T27911] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 2228.430668][T27911] snd_pcm_oss_release+0x28b/0x310 [ 2228.430711][T27911] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 2228.430751][T27911] __fput+0x3ff/0xb70 [ 2228.430792][T27911] task_work_run+0x14e/0x250 [ 2228.430865][T27911] ? __pfx_task_work_run+0x10/0x10 [ 2228.430908][T27911] ? __pfx___do_sys_close_range+0x10/0x10 [ 2228.430970][T27911] syscall_exit_to_user_mode+0x27b/0x2a0 [ 2228.431021][T27911] do_syscall_64+0xda/0x250 [ 2228.431077][T27911] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2228.431124][T27911] RIP: 0033:0x7f1a8078d169 [ 2228.431149][T27911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2228.431180][T27911] RSP: 002b:00007f1a7e5f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 2228.431211][T27911] RAX: 0000000000000000 RBX: 00007f1a809a5fa0 RCX: 00007f1a8078d169 [ 2228.431232][T27911] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 2228.431251][T27911] RBP: 00007f1a8080e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 2228.431271][T27911] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2228.431289][T27911] R13: 0000000000000000 R14: 00007f1a809a5fa0 R15: 00007ffd4b300598 [ 2228.431328][T27911] [ 2228.753996][T27911] Mem-Info: [ 2228.757156][T27911] active_anon:15477 inactive_anon:0 isolated_anon:0 [ 2228.757156][T27911] active_file:9580 inactive_file:48133 isolated_file:0 [ 2228.757156][T27911] unevictable:768 dirty:601 writeback:0 [ 2228.757156][T27911] slab_reclaimable:10931 slab_unreclaimable:98984 [ 2228.757156][T27911] mapped:25688 shmem:1416 pagetables:814 [ 2228.757156][T27911] sec_pagetables:0 bounce:0 [ 2228.757156][T27911] kernel_misc_reclaimable:0 [ 2228.757156][T27911] free:1320904 free_pcp:378 free_cma:0 [ 2228.808638][T27911] Node 0 active_anon:61908kB inactive_anon:0kB active_file:38320kB inactive_file:192456kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:102752kB dirty:2404kB writeback:0kB shmem:4128kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10400kB pagetables:3256kB sec_pagetables:0kB all_unreclaimable? no [ 2228.849299][T27911] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 2228.938620][T27911] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 2229.022465][T27911] lowmem_reserve[]: 0 2487 2487 2487 2487 [ 2229.061748][T27911] Node 0 DMA32 free:1358088kB boost:0kB min:34152kB low:42688kB high:51224kB reserved_highatomic:0KB active_anon:60656kB inactive_anon:0kB active_file:38320kB inactive_file:192356kB unevictable:1536kB writepending:2404kB present:3129332kB managed:2547520kB mlocked:0kB bounce:0kB free_pcp:6044kB local_pcp:5228kB free_cma:0kB [ 2229.235284][T27911] lowmem_reserve[]: 0 0 0 0 0 [ 2229.245954][T27911] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:100kB unevictable:0kB writepending:0kB present:1048580kB managed:108kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 2229.355694][T27911] lowmem_reserve[]: 0 0 0 0 0 [ 2229.374825][T27911] Node 1 Normal free:3907304kB boost:0kB min:55748kB low:69684kB high:83620kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 2229.439457][T27911] lowmem_reserve[]: 0 0 0 0 0 [ 2229.459341][T27911] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 2229.501284][T27911] Node 0 DMA32: 1838*4kB (UME) 3708*8kB (UME) 2800*16kB (UME) 2062*32kB (UME) 1602*64kB (UME) 993*128kB (UM) 530*256kB (UM) 269*512kB (UME) 105*1024kB (UM) 36*2048kB (UME) 130*4096kB (UME) = 1364568kB [ 2229.581354][T27911] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 2229.593852][T27911] Node 1 Normal: 230*4kB (UE) 60*8kB (UME) 41*16kB (UME) 227*32kB (UME) 114*64kB (UME) 34*128kB (UME) 13*256kB (UM) 6*512kB (UM) 7*1024kB (UME) 5*2048kB (UME) 943*4096kB (M) = 3907304kB [ 2229.631209][T27911] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 2229.651237][T27911] Node 0 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB [ 2229.681207][T27911] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 2229.694582][T27911] Node 1 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 2229.730247][T27911] 59381 total pagecache pages [ 2229.740610][T27911] 0 pages in swap cache [ 2229.761173][T27911] Free swap = 124800kB [ 2229.765525][T27911] Total swap = 124996kB [ 2229.769716][T27911] 2097051 pages RAM [ 2229.785178][T27911] 0 pages HighMem/MovableOnly [ 2229.795774][T27911] 428513 pages reserved [ 2229.800098][T27911] 0 pages cma reserved [ 2230.076119][T27933] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4019'. [ 2230.139784][T27933] Invalid ELF header magic: != ELF [ 2230.641356][T27943] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4022'. [ 2231.307156][T27938] bond0: option all_slaves_active: invalid value () [ 2231.701313][T27954] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4024'. [ 2231.911493][T27958] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4026'. [ 2232.150228][T27954] Invalid ELF header magic: != ELF [ 2232.260181][T27960] Invalid ELF header magic: != ELF [ 2233.057654][T27975] blktrace: Concurrent blktraces are not allowed on ram7 [ 2233.072315][T27973] Invalid ELF header magic: != ELF [ 2233.497445][T27984] blktrace: Concurrent blktraces are not allowed on ram7 [ 2233.738502][T27986] Invalid ELF header magic: != ELF [ 2234.039084][T28000] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4036'. [ 2234.135313][T28000] Invalid ELF header magic: != ELF [ 2234.470141][T28008] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4037'. [ 2234.534647][T28008] Invalid ELF header magic: != ELF [ 2235.066719][T28023] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4041'. [ 2235.256295][T28023] Invalid ELF header magic: != ELF [ 2235.320480][T28028] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4042'. [ 2235.460918][T28028] Invalid ELF header magic: != ELF [ 2236.211250][T28041] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4046'. [ 2236.296699][T28041] Invalid ELF header magic: != ELF [ 2236.991501][T28054] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4050'. [ 2237.100573][T28054] Invalid ELF header magic: != ELF [ 2238.004678][T28072] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4055'. [ 2238.092500][T28072] Invalid ELF header magic: != ELF [ 2239.156465][T28094] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4059'. [ 2239.250849][T28094] Invalid ELF header magic: != ELF [ 2239.531915][T28103] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4062'. [ 2239.687849][T28103] Invalid ELF header magic: != ELF [ 2241.231615][T28137] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4067'. [ 2241.244998][T28135] blktrace: Concurrent blktraces are not allowed on ram7 [ 2241.300307][T28135] warn_alloc: 2 callbacks suppressed [ 2241.300332][T28135] syz.2.4066: vmalloc error: size 1552384, failed to allocate pages, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 2241.331002][T28135] CPU: 0 UID: 0 PID: 28135 Comm: syz.2.4066 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2241.331043][T28135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2241.331067][T28135] Call Trace: [ 2241.331075][T28135] [ 2241.331086][T28135] dump_stack_lvl+0x16c/0x1f0 [ 2241.331143][T28135] warn_alloc+0x24d/0x3a0 [ 2241.331213][T28135] ? __pfx_warn_alloc+0x10/0x10 [ 2241.331267][T28135] ? alloc_pages_mpol+0x25b/0x540 [ 2241.331301][T28135] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 2241.331351][T28135] __vmalloc_node_range_noprof+0x12bd/0x1530 [ 2241.331413][T28135] ? __snd_dma_alloc_pages+0x50/0x90 [ 2241.331475][T28135] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 2241.331526][T28135] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 2241.331585][T28135] ? __snd_dma_alloc_pages+0x50/0x90 [ 2241.331638][T28135] vmalloc_noprof+0x6b/0x90 [ 2241.331684][T28135] ? __snd_dma_alloc_pages+0x50/0x90 [ 2241.331731][T28135] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 2241.331790][T28135] __snd_dma_alloc_pages+0x50/0x90 [ 2241.331843][T28135] snd_dma_alloc_dir_pages+0x151/0x240 [ 2241.331901][T28135] do_alloc_pages+0x115/0x270 [ 2241.331954][T28135] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 2241.332013][T28135] snd_pcm_hw_params+0x15e6/0x1b20 [ 2241.332073][T28135] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 2241.332125][T28135] ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0 [ 2241.332176][T28135] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 2241.332227][T28135] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 2241.332280][T28135] snd_pcm_oss_change_params_locked+0x1406/0x3a60 [ 2241.332350][T28135] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 2241.332393][T28135] ? snd_pcm_oss_sync+0x306/0x7f0 [ 2241.332455][T28135] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 2241.332498][T28135] snd_pcm_oss_sync+0x326/0x7f0 [ 2241.332541][T28135] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 2241.332579][T28135] snd_pcm_oss_release+0x28b/0x310 [ 2241.332620][T28135] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 2241.332657][T28135] __fput+0x3ff/0xb70 [ 2241.332695][T28135] task_work_run+0x14e/0x250 [ 2241.332737][T28135] ? __pfx_task_work_run+0x10/0x10 [ 2241.332786][T28135] ? __pfx___do_sys_close_range+0x10/0x10 [ 2241.332842][T28135] syscall_exit_to_user_mode+0x27b/0x2a0 [ 2241.332889][T28135] do_syscall_64+0xda/0x250 [ 2241.332954][T28135] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2241.332999][T28135] RIP: 0033:0x7f52c598d169 [ 2241.333024][T28135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2241.333055][T28135] RSP: 002b:00007f52c6824038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 2241.333084][T28135] RAX: 0000000000000000 RBX: 00007f52c5ba5fa0 RCX: 00007f52c598d169 [ 2241.333105][T28135] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 2241.333124][T28135] RBP: 00007f52c5a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 2241.333143][T28135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2241.333160][T28135] R13: 0000000000000000 R14: 00007f52c5ba5fa0 R15: 00007ffccfc43888 [ 2241.333198][T28135] [ 2241.645300][T28135] Mem-Info: [ 2241.648459][T28135] active_anon:14629 inactive_anon:0 isolated_anon:75 [ 2241.648459][T28135] active_file:9693 inactive_file:48024 isolated_file:0 [ 2241.648459][T28135] unevictable:768 dirty:389 writeback:0 [ 2241.648459][T28135] slab_reclaimable:10923 slab_unreclaimable:97601 [ 2241.648459][T28135] mapped:25829 shmem:1571 pagetables:801 [ 2241.648459][T28135] sec_pagetables:0 bounce:0 [ 2241.648459][T28135] kernel_misc_reclaimable:0 [ 2241.648459][T28135] free:1323032 free_pcp:980 free_cma:0 [ 2241.707405][T28135] Node 0 active_anon:58816kB inactive_anon:0kB active_file:38772kB inactive_file:192020kB unevictable:1536kB isolated(anon):100kB isolated(file):0kB mapped:103316kB dirty:1656kB writeback:0kB shmem:4748kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10340kB pagetables:3204kB sec_pagetables:0kB all_unreclaimable? no [ 2241.742490][T28135] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 2241.773749][T28135] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 2241.802162][T28135] lowmem_reserve[]: 0 2487 2487 2487 2487 [ 2241.808022][T28135] Node 0 DMA32 free:1370508kB boost:0kB min:34152kB low:42688kB high:51224kB reserved_highatomic:0KB active_anon:58808kB inactive_anon:0kB active_file:38772kB inactive_file:191920kB unevictable:1536kB writepending:1656kB present:3129332kB managed:2547520kB mlocked:0kB bounce:0kB free_pcp:3444kB local_pcp:360kB free_cma:0kB [ 2241.839121][T28135] lowmem_reserve[]: 0 0 0 0 0 [ 2241.844262][T28135] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:100kB unevictable:0kB writepending:0kB present:1048580kB managed:108kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 2241.859046][T28137] Invalid ELF header magic: != ELF [ 2241.872503][T28135] lowmem_reserve[]: 0 0 0 0 0 [ 2241.881647][T28135] Node 1 Normal free:3907308kB boost:0kB min:55748kB low:69684kB high:83620kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 2241.913034][T28135] lowmem_reserve[]: 0 0 0 0 0 [ 2241.917841][T28135] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 2241.931405][T28135] Node 0 DMA32: 1526*4kB (UME) 4086*8kB (UME) 2762*16kB (UME) 2191*32kB (UME) 1604*64kB (UME) 990*128kB (UM) 533*256kB (UM) 269*512kB (UME) 105*1024kB (UM) 36*2048kB (UME) 130*4096kB (UME) = 1370376kB [ 2241.951976][T28135] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 2241.964325][T28135] Node 1 Normal: 231*4kB (UE) 60*8kB (UME) 41*16kB (UME) 227*32kB (UME) 114*64kB (UME) 34*128kB (UME) 13*256kB (UM) 6*512kB (UM) 7*1024kB (UME) 5*2048kB (UME) 943*4096kB (M) = 3907308kB [ 2241.983635][T28135] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 2241.993754][T28135] Node 0 hugepages_total=3 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 2242.003365][T28135] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 2242.013331][T28135] Node 1 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 2242.023070][T28135] 59388 total pagecache pages [ 2242.027889][T28135] 0 pages in swap cache [ 2242.032547][T28135] Free swap = 124756kB [ 2242.036730][T28135] Total swap = 124996kB [ 2242.041036][T28135] 2097051 pages RAM [ 2242.045503][T28135] 0 pages HighMem/MovableOnly [ 2242.050217][T28135] 428513 pages reserved [ 2242.057224][T28135] 0 pages cma reserved [ 2242.237282][T28143] Invalid ELF header magic: != ELF [ 2243.200836][T28161] blktrace: Concurrent blktraces are not allowed on ram7 [ 2243.648089][T28167] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4073'. [ 2243.820527][T28167] Invalid ELF header magic: != ELF [ 2244.010095][T28169] Invalid ELF header magic: != ELF [ 2244.220061][T28176] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4075'. [ 2244.520710][T28176] Invalid ELF header magic: != ELF [ 2245.099464][T28186] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4077'. [ 2245.397723][T28186] Invalid ELF header magic: != ELF [ 2245.714275][T28196] blktrace: Concurrent blktraces are not allowed on ram7 [ 2246.005864][T28200] blktrace: Concurrent blktraces are not allowed on ram7 [ 2246.317814][T28206] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4081'. [ 2246.542029][T28206] Invalid ELF header magic: != ELF [ 2248.114955][T28230] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4086'. [ 2248.170863][T28233] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4088'. [ 2248.192315][T28230] Invalid ELF header magic: != ELF [ 2248.309091][T28235] Invalid ELF header magic: != ELF [ 2248.343772][T28233] Invalid ELF header magic: != ELF [ 2249.340921][T28250] Invalid ELF header magic: != ELF [ 2249.364735][T28257] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4093'. [ 2249.454046][T28255] Invalid ELF header magic: != ELF [ 2249.482125][T28257] Invalid ELF header magic: != ELF [ 2251.027912][T28279] blktrace: Concurrent blktraces are not allowed on ram7 [ 2251.226169][T28283] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4097'. [ 2251.377362][T28283] Invalid ELF header magic: != ELF [ 2251.608822][T28290] Invalid ELF header magic: != ELF [ 2252.228477][T28298] blktrace: Concurrent blktraces are not allowed on ram7 [ 2252.696908][T28306] Invalid ELF header magic: != ELF [ 2253.015422][T28315] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4104'. [ 2253.428325][T28318] Invalid ELF header magic: != ELF [ 2254.051371][T28326] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4105'. [ 2254.155788][T28326] Invalid ELF header magic: != ELF [ 2254.162569][T28327] Invalid ELF header magic: != ELF [ 2254.540936][T28335] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4108'. [ 2254.617649][T28335] Invalid ELF header magic: != ELF [ 2254.973044][T28343] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4109'. [ 2255.069625][T28343] Invalid ELF header magic: != ELF [ 2255.147953][T28344] Invalid ELF header magic: != ELF [ 2255.494560][T28350] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4113'. [ 2255.534069][T28352] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4112'. [ 2255.602867][T28350] Invalid ELF header magic: != ELF [ 2255.655110][T28352] Invalid ELF header magic: != ELF [ 2255.825307][T28357] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4114'. [ 2255.876639][T28357] Invalid ELF header magic: != ELF [ 2256.243014][T28366] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4116'. [ 2256.258498][T28368] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4117'. [ 2256.314919][T28366] Invalid ELF header magic: != ELF [ 2256.357079][T28368] Invalid ELF header magic: != ELF [ 2257.059165][T28379] blktrace: Concurrent blktraces are not allowed on ram7 [ 2257.318626][T28386] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4121'. [ 2257.494899][T28386] Invalid ELF header magic: != ELF [ 2258.295390][T28403] blktrace: Concurrent blktraces are not allowed on ram7 [ 2258.440583][T28410] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4128'. [ 2258.456108][T28403] warn_alloc: 4 callbacks suppressed [ 2258.456130][T28403] syz.3.4126: vmalloc error: size 1544192, failed to allocate pages, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null) [ 2258.517844][T28410] Invalid ELF header magic: != ELF [ 2258.536972][T28403] ,cpuset=/,mems_allowed=0-1 [ 2258.537064][T28403] CPU: 0 UID: 0 PID: 28403 Comm: syz.3.4126 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2258.537118][T28403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2258.537137][T28403] Call Trace: [ 2258.537146][T28403] [ 2258.537157][T28403] dump_stack_lvl+0x16c/0x1f0 [ 2258.537210][T28403] warn_alloc+0x24d/0x3a0 [ 2258.537270][T28403] ? __pfx_warn_alloc+0x10/0x10 [ 2258.537325][T28403] ? alloc_pages_mpol+0x25b/0x540 [ 2258.537358][T28403] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 2258.537405][T28403] __vmalloc_node_range_noprof+0x12bd/0x1530 [ 2258.537464][T28403] ? __snd_dma_alloc_pages+0x50/0x90 [ 2258.537534][T28403] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 2258.537590][T28403] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 2258.537641][T28403] ? __snd_dma_alloc_pages+0x50/0x90 [ 2258.537686][T28403] vmalloc_noprof+0x6b/0x90 [ 2258.537729][T28403] ? __snd_dma_alloc_pages+0x50/0x90 [ 2258.537773][T28403] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 2258.537820][T28403] __snd_dma_alloc_pages+0x50/0x90 [ 2258.537866][T28403] snd_dma_alloc_dir_pages+0x151/0x240 [ 2258.537915][T28403] do_alloc_pages+0x115/0x270 [ 2258.537962][T28403] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 2258.538017][T28403] snd_pcm_hw_params+0x15e6/0x1b20 [ 2258.538068][T28403] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 2258.538117][T28403] ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0 [ 2258.538162][T28403] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 2258.538207][T28403] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 2258.538262][T28403] snd_pcm_oss_change_params_locked+0x1406/0x3a60 [ 2258.538318][T28403] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 2258.538360][T28403] ? snd_pcm_oss_sync+0x306/0x7f0 [ 2258.538422][T28403] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 2258.538462][T28403] snd_pcm_oss_sync+0x326/0x7f0 [ 2258.538504][T28403] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 2258.538540][T28403] snd_pcm_oss_release+0x28b/0x310 [ 2258.538580][T28403] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 2258.538616][T28403] __fput+0x3ff/0xb70 [ 2258.538655][T28403] task_work_run+0x14e/0x250 [ 2258.538697][T28403] ? __pfx_task_work_run+0x10/0x10 [ 2258.538739][T28403] ? __pfx___do_sys_close_range+0x10/0x10 [ 2258.538794][T28403] syscall_exit_to_user_mode+0x27b/0x2a0 [ 2258.538840][T28403] do_syscall_64+0xda/0x250 [ 2258.538887][T28403] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2258.538929][T28403] RIP: 0033:0x7f59fdd8d169 [ 2258.538952][T28403] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2258.538980][T28403] RSP: 002b:00007f59febbe038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 2258.539007][T28403] RAX: 0000000000000000 RBX: 00007f59fdfa5fa0 RCX: 00007f59fdd8d169 [ 2258.539026][T28403] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 2258.539044][T28403] RBP: 00007f59fde0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 2258.539062][T28403] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2258.539081][T28403] R13: 0000000000000000 R14: 00007f59fdfa5fa0 R15: 00007ffef6aee0b8 [ 2258.539120][T28403] [ 2258.540756][T28403] Mem-Info: [ 2258.900259][T28403] active_anon:15436 inactive_anon:0 isolated_anon:0 [ 2258.900259][T28403] active_file:9567 inactive_file:48158 isolated_file:0 [ 2258.900259][T28403] unevictable:768 dirty:605 writeback:0 [ 2258.900259][T28403] slab_reclaimable:10924 slab_unreclaimable:96586 [ 2258.900259][T28403] mapped:26948 shmem:1674 pagetables:789 [ 2258.900259][T28403] sec_pagetables:0 bounce:0 [ 2258.900259][T28403] kernel_misc_reclaimable:0 [ 2258.900259][T28403] free:1323740 free_pcp:753 free_cma:0 [ 2259.011625][T28403] Node 0 active_anon:57844kB inactive_anon:0kB active_file:38268kB inactive_file:192556kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:111892kB dirty:2420kB writeback:0kB shmem:5160kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10308kB pagetables:3156kB sec_pagetables:0kB all_unreclaimable? no [ 2259.119122][T28403] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 2259.201406][T28403] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 2259.243408][T28403] lowmem_reserve[]: 0 2487 2487 2487 2487 [ 2259.249297][T28403] Node 0 DMA32 free:1374148kB boost:0kB min:34152kB low:42688kB high:51224kB reserved_highatomic:0KB active_anon:56224kB inactive_anon:0kB active_file:38268kB inactive_file:192456kB unevictable:1536kB writepending:2436kB present:3129332kB managed:2547520kB mlocked:0kB bounce:0kB free_pcp:8080kB local_pcp:7340kB free_cma:0kB [ 2259.285437][T28403] lowmem_reserve[]: 0 0 0 0 0 [ 2259.290267][T28403] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:100kB unevictable:0kB writepending:0kB present:1048580kB managed:108kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 2259.380312][T28403] lowmem_reserve[]: 0 0 0 0 0 [ 2259.451186][T28403] Node 1 Normal free:3907308kB boost:0kB min:55748kB low:69684kB high:83620kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 2259.463105][T28420] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4129'. [ 2259.527775][T28403] lowmem_reserve[]: 0 0 0 0 0 [ 2259.542609][T28403] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 2259.556915][T28403] Node 0 DMA32: 3297*4kB (UME) 4134*8kB (UME) 2810*16kB (UME) 2255*32kB (UME) 1608*64kB (UME) 990*128kB (UM) 534*256kB (UM) 269*512kB (UME) 105*1024kB (UM) 36*2048kB (UME) 130*4096kB (UME) = 1381172kB [ 2259.597496][T28403] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 2259.612941][T28403] Node 1 Normal: 231*4kB (UE) 60*8kB (UME) 41*16kB (UME) 227*32kB (UME) 114*64kB (UME) 34*128kB (UME) 13*256kB (UM) 6*512kB (UM) 7*1024kB (UME) 5*2048kB (UME) 943*4096kB (M) = 3907308kB [ 2259.656218][T28403] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 2259.676671][T28420] Invalid ELF header magic: != ELF [ 2259.683949][T28403] Node 0 hugepages_total=3 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 2259.694090][T28403] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 2259.717027][T28403] Node 1 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 2259.747104][T28403] 59385 total pagecache pages [ 2259.771214][T28403] 1 pages in swap cache [ 2259.785918][T28403] Free swap = 124768kB [ 2259.948269][T28403] Total swap = 124996kB [ 2259.955598][T28403] 2097051 pages RAM [ 2259.991245][T28403] 0 pages HighMem/MovableOnly [ 2260.006341][T28403] 428513 pages reserved [ 2260.016491][T28403] 0 pages cma reserved [ 2260.654847][T28439] blktrace: Concurrent blktraces are not allowed on ram7 [ 2260.668881][T28441] blktrace: Concurrent blktraces are not allowed on ram7 [ 2260.874384][T28446] blktrace: Concurrent blktraces are not allowed on ram7 [ 2261.406856][T28462] blktrace: Concurrent blktraces are not allowed on ram7 [ 2262.050299][T28469] busy [ 2262.081724][T28467] busy [ 2262.435297][T28479] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4145'. [ 2262.473072][T28479] Invalid ELF header magic: != ELF [ 2262.539423][T28476] busy [ 2262.851341][T28484] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4146'. [ 2263.024418][T28484] Invalid ELF header magic: != ELF [ 2264.132091][T28494] busy [ 2264.314720][T28495] busy [ 2264.663750][T28508] busy [ 2264.841007][T28511] busy [ 2265.763299][T28519] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4155'. [ 2266.004307][T28528] busy [ 2266.149947][T28519] Invalid ELF header magic: != ELF [ 2266.645041][T28533] busy [ 2266.883155][T28537] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4159'. [ 2267.057972][T28537] Invalid ELF header magic: != ELF [ 2267.082922][T28541] busy [ 2267.886674][T28546] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4163'. [ 2268.040748][T28546] Invalid ELF header magic: != ELF [ 2268.302831][T28554] FAULT_INJECTION: forcing a failure. [ 2268.302831][T28554] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 2268.326995][T28554] CPU: 0 UID: 0 PID: 28554 Comm: syz.2.4165 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2268.327031][T28554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2268.327048][T28554] Call Trace: [ 2268.327056][T28554] [ 2268.327066][T28554] dump_stack_lvl+0x16c/0x1f0 [ 2268.327113][T28554] should_fail_ex+0x50a/0x650 [ 2268.327151][T28554] _copy_from_user+0x2e/0xd0 [ 2268.327266][T28554] __x64_sys_sigaltstack+0x12a/0x370 [ 2268.327301][T28554] ? __pfx___x64_sys_sigaltstack+0x10/0x10 [ 2268.327339][T28554] ? ksys_write+0x1ba/0x250 [ 2268.327389][T28554] do_syscall_64+0xcd/0x250 [ 2268.327456][T28554] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2268.327501][T28554] RIP: 0033:0x7f52c598d169 [ 2268.327524][T28554] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2268.327553][T28554] RSP: 002b:00007f52c6824038 EFLAGS: 00000246 ORIG_RAX: 0000000000000083 [ 2268.327581][T28554] RAX: ffffffffffffffda RBX: 00007f52c5ba5fa0 RCX: 00007f52c598d169 [ 2268.327600][T28554] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000040 [ 2268.327618][T28554] RBP: 00007f52c6824090 R08: 0000000000000000 R09: 0000000000000000 [ 2268.327635][T28554] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2268.327651][T28554] R13: 0000000000000001 R14: 00007f52c5ba5fa0 R15: 00007ffccfc43888 [ 2268.327688][T28554] [ 2268.569811][T28559] busy [ 2268.609248][T28560] busy [ 2269.729578][T28568] busy [ 2269.962358][T28567] busy [ 2270.118579][T28569] busy [ 2270.803093][T28578] FAULT_INJECTION: forcing a failure. [ 2270.803093][T28578] name failslab, interval 1, probability 0, space 0, times 0 [ 2270.879071][T28578] CPU: 1 UID: 0 PID: 28578 Comm: syz.0.4173 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2270.879113][T28578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2270.879130][T28578] Call Trace: [ 2270.879141][T28578] [ 2270.879153][T28578] dump_stack_lvl+0x16c/0x1f0 [ 2270.879213][T28578] should_fail_ex+0x50a/0x650 [ 2270.879245][T28578] ? fs_reclaim_acquire+0xae/0x150 [ 2270.879291][T28578] ? kernfs_fop_write_iter+0x223/0x500 [ 2270.879324][T28578] should_failslab+0xc2/0x120 [ 2270.879358][T28578] __kmalloc_noprof+0xcb/0x510 [ 2270.879406][T28578] ? rcu_is_watching+0x12/0xc0 [ 2270.879450][T28578] kernfs_fop_write_iter+0x223/0x500 [ 2270.879492][T28578] vfs_write+0x5ae/0x1150 [ 2270.879540][T28578] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 2270.879578][T28578] ? __pfx___mutex_lock+0x10/0x10 [ 2270.879628][T28578] ? __pfx_vfs_write+0x10/0x10 [ 2270.879703][T28578] ksys_write+0x12b/0x250 [ 2270.879749][T28578] ? __pfx_ksys_write+0x10/0x10 [ 2270.879808][T28578] do_syscall_64+0xcd/0x250 [ 2270.879861][T28578] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2270.879907][T28578] RIP: 0033:0x7f1a8078d169 [ 2270.879936][T28578] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2270.879967][T28578] RSP: 002b:00007f1a7e5f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 2270.879997][T28578] RAX: ffffffffffffffda RBX: 00007f1a809a5fa0 RCX: 00007f1a8078d169 [ 2270.880016][T28578] RDX: 0000000000000001 RSI: 0000200000000080 RDI: 0000000000000003 [ 2270.880034][T28578] RBP: 00007f1a7e5f6090 R08: 0000000000000000 R09: 0000000000000000 [ 2270.880051][T28578] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2270.880068][T28578] R13: 0000000000000000 R14: 00007f1a809a5fa0 R15: 00007ffd4b300598 [ 2270.880107][T28578] [ 2271.264597][T28581] FAULT_INJECTION: forcing a failure. [ 2271.264597][T28581] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2271.431088][T28581] CPU: 0 UID: 0 PID: 28581 Comm: syz.1.4174 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2271.431125][T28581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2271.431141][T28581] Call Trace: [ 2271.431149][T28581] [ 2271.431159][T28581] dump_stack_lvl+0x16c/0x1f0 [ 2271.431226][T28581] should_fail_ex+0x50a/0x650 [ 2271.431264][T28581] _copy_from_user+0x2e/0xd0 [ 2271.431303][T28581] core_sys_select+0x318/0xb80 [ 2271.431360][T28581] ? __pfx_core_sys_select+0x10/0x10 [ 2271.431413][T28581] ? find_held_lock+0x2d/0x110 [ 2271.431481][T28581] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 2271.431542][T28581] kern_select+0x15e/0x1e0 [ 2271.431587][T28581] ? __pfx_kern_select+0x10/0x10 [ 2271.431639][T28581] ? __pfx_ksys_write+0x10/0x10 [ 2271.431692][T28581] __x64_sys_select+0xbd/0x160 [ 2271.431737][T28581] ? do_syscall_64+0x91/0x250 [ 2271.431784][T28581] ? lockdep_hardirqs_on+0x7c/0x110 [ 2271.431831][T28581] do_syscall_64+0xcd/0x250 [ 2271.431888][T28581] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2271.431936][T28581] RIP: 0033:0x7f9d83d8d169 [ 2271.431961][T28581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2271.431992][T28581] RSP: 002b:00007f9d84b02038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 2271.432023][T28581] RAX: ffffffffffffffda RBX: 00007f9d83fa5fa0 RCX: 00007f9d83d8d169 [ 2271.432044][T28581] RDX: 0000200000000100 RSI: 0000000000000000 RDI: 0000000000000804 [ 2271.432063][T28581] RBP: 00007f9d84b02090 R08: 0000000000000000 R09: 0000000000000000 [ 2271.432082][T28581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2271.432101][T28581] R13: 0000000000000000 R14: 00007f9d83fa5fa0 R15: 00007ffdfd312698 [ 2271.432141][T28581] [ 2271.642159][T28583] busy [ 2272.013736][ T30] audit: type=1807 audit(6037746255.318:105): UNKNOWN=0"û]$|Ë1jë0B|d™¹ýÓ‰OŸ¬+ö×/ÉéxÔóÈõWÓ¦–Ó^¸´gq%ḦrêOŽ res=0 [ 2272.028162][ T30] audit: type=1802 audit(6037746255.338:106): pid=28585 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.3.4176" res=0 errno=0 [ 2272.157635][T28592] FAULT_INJECTION: forcing a failure. [ 2272.157635][T28592] name failslab, interval 1, probability 0, space 0, times 0 [ 2272.181212][T28592] CPU: 1 UID: 0 PID: 28592 Comm: syz.0.4179 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2272.181252][T28592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2272.181270][T28592] Call Trace: [ 2272.181278][T28592] [ 2272.181288][T28592] dump_stack_lvl+0x16c/0x1f0 [ 2272.181339][T28592] should_fail_ex+0x50a/0x650 [ 2272.181369][T28592] ? fs_reclaim_acquire+0xae/0x150 [ 2272.181414][T28592] should_failslab+0xc2/0x120 [ 2272.181444][T28592] __kmalloc_node_noprof+0xd1/0x510 [ 2272.181497][T28592] ? __pfx_aa_file_perm+0x10/0x10 [ 2272.181628][T28592] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 2272.181679][T28592] __kvmalloc_node_noprof+0xad/0x1a0 [ 2272.181727][T28592] seq_read_iter+0x82a/0x12b0 [ 2272.181772][T28592] ? __mutex_trylock_common+0xea/0x250 [ 2272.181832][T28592] kernfs_fop_read_iter+0x414/0x580 [ 2272.181867][T28592] ? rw_verify_area+0xcf/0x680 [ 2272.181913][T28592] vfs_read+0x886/0xbf0 [ 2272.181964][T28592] ? __pfx_vfs_read+0x10/0x10 [ 2272.182037][T28592] ksys_read+0x12b/0x250 [ 2272.182089][T28592] ? __pfx_ksys_read+0x10/0x10 [ 2272.182146][T28592] do_syscall_64+0xcd/0x250 [ 2272.182198][T28592] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2272.182243][T28592] RIP: 0033:0x7f1a8078d169 [ 2272.182267][T28592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2272.182297][T28592] RSP: 002b:00007f1a7e5f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2272.182325][T28592] RAX: ffffffffffffffda RBX: 00007f1a809a5fa0 RCX: 00007f1a8078d169 [ 2272.182358][T28592] RDX: 00000000000000bb RSI: 0000200000000180 RDI: 0000000000000003 [ 2272.182376][T28592] RBP: 00007f1a7e5f6090 R08: 0000000000000000 R09: 0000000000000000 [ 2272.182392][T28592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2272.182407][T28592] R13: 0000000000000000 R14: 00007f1a809a5fa0 R15: 00007ffd4b300598 [ 2272.182444][T28592] [ 2272.801878][T28584] ima: policy update failed [ 2272.811262][ T30] audit: type=1802 audit(6037746256.108:107): pid=28584 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.4176" res=0 errno=0 [ 2272.920426][T28611] busy [ 2273.617890][T28615] busy [ 2273.680596][T28619] FAULT_INJECTION: forcing a failure. [ 2273.680596][T28619] name failslab, interval 1, probability 0, space 0, times 0 [ 2273.765883][T28619] CPU: 0 UID: 0 PID: 28619 Comm: syz.0.4187 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2273.765923][T28619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2273.765940][T28619] Call Trace: [ 2273.765949][T28619] [ 2273.765960][T28619] dump_stack_lvl+0x16c/0x1f0 [ 2273.766008][T28619] should_fail_ex+0x50a/0x650 [ 2273.766036][T28619] ? fs_reclaim_acquire+0xae/0x150 [ 2273.766077][T28619] should_failslab+0xc2/0x120 [ 2273.766105][T28619] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 2273.766151][T28619] ? getname_flags.part.0+0x4c/0x550 [ 2273.766191][T28619] getname_flags.part.0+0x4c/0x550 [ 2273.766230][T28619] getname_flags+0x93/0xf0 [ 2273.766273][T28619] user_path_at+0x24/0x60 [ 2273.766316][T28619] __x64_sys_mount+0x1fd/0x310 [ 2273.766345][T28619] ? __pfx___x64_sys_mount+0x10/0x10 [ 2273.766384][T28619] do_syscall_64+0xcd/0x250 [ 2273.766431][T28619] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2273.766471][T28619] RIP: 0033:0x7f1a8078d169 [ 2273.766492][T28619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2273.766520][T28619] RSP: 002b:00007f1a7e5f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2273.766546][T28619] RAX: ffffffffffffffda RBX: 00007f1a809a5fa0 RCX: 00007f1a8078d169 [ 2273.766565][T28619] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000000 [ 2273.766581][T28619] RBP: 00007f1a7e5f6090 R08: 0000000000000000 R09: 0000000000000000 [ 2273.766597][T28619] R10: 0000000000003379 R11: 0000000000000246 R12: 0000000000000001 [ 2273.766612][T28619] R13: 0000000000000000 R14: 00007f1a809a5fa0 R15: 00007ffd4b300598 [ 2273.766645][T28619] [ 2274.277746][T28628] busy [ 2274.638611][T28629] kernel read not supported for file /\*)A (pid: 28629 comm: syz.3.4190) [ 2275.042185][ T30] audit: type=1800 audit(6037746258.348:108): pid=28629 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.4190" name="\*)A" dev="mqueue" ino=108124 res=0 errno=0 [ 2275.389503][T28633] busy [ 2276.063387][T28651] busy [ 2276.471912][T20651] Bluetooth: hci0: unexpected subevent 0x01 length: 4 < 18 [ 2276.641745][ T30] audit: type=1800 audit(6037746267.954:109): pid=28659 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.4199" name="dbroot" dev="configfs" ino=108183 res=0 errno=0 [ 2277.129194][T28661] FAULT_INJECTION: forcing a failure. [ 2277.129194][T28661] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2277.218193][T28661] CPU: 0 UID: 0 PID: 28661 Comm: syz.3.4201 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2277.218236][T28661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2277.218255][T28661] Call Trace: [ 2277.218264][T28661] [ 2277.218275][T28661] dump_stack_lvl+0x16c/0x1f0 [ 2277.218328][T28661] should_fail_ex+0x50a/0x650 [ 2277.218380][T28661] _copy_from_user+0x2e/0xd0 [ 2277.218443][T28661] move_addr_to_kernel+0x68/0x160 [ 2277.218489][T28661] __sys_connect+0xb0/0x170 [ 2277.218534][T28661] ? __pfx___sys_connect+0x10/0x10 [ 2277.218596][T28661] ? __pfx_ksys_write+0x10/0x10 [ 2277.218653][T28661] __x64_sys_connect+0x72/0xb0 [ 2277.218698][T28661] ? lockdep_hardirqs_on+0x7c/0x110 [ 2277.218745][T28661] do_syscall_64+0xcd/0x250 [ 2277.218798][T28661] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2277.218844][T28661] RIP: 0033:0x7f59fdd8d169 [ 2277.218869][T28661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2277.218899][T28661] RSP: 002b:00007f59febbe038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 2277.218928][T28661] RAX: ffffffffffffffda RBX: 00007f59fdfa5fa0 RCX: 00007f59fdd8d169 [ 2277.218947][T28661] RDX: 0000000000000018 RSI: 0000200000000040 RDI: 0000000000000003 [ 2277.218966][T28661] RBP: 00007f59febbe090 R08: 0000000000000000 R09: 0000000000000000 [ 2277.218984][T28661] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2277.219001][T28661] R13: 0000000000000000 R14: 00007f59fdfa5fa0 R15: 00007ffef6aee0b8 [ 2277.219039][T28661] [ 2277.717631][T28676] netlink: 504 bytes leftover after parsing attributes in process `syz.3.4204'. [ 2278.582647][T20651] Bluetooth: hci0: unexpected subevent 0x01 length: 4 < 18 [ 2278.783400][ T30] audit: type=1800 audit(6037746278.058:110): pid=28699 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.4209" name="dbroot" dev="configfs" ino=108243 res=0 errno=0 [ 2279.555662][T28704] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4208'. [ 2280.133477][T28718] busy [ 2280.146440][T28715] netlink: 330 bytes leftover after parsing attributes in process `syz.0.4211'. [ 2280.390715][T28722] busy [ 2280.803840][T28730] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(1) [ 2281.554277][T28740] capability: warning: `syz.0.4217' uses 32-bit capabilities (legacy support in use) [ 2283.744385][T28771] FAULT_INJECTION: forcing a failure. [ 2283.744385][T28771] name failslab, interval 1, probability 0, space 0, times 0 [ 2283.841192][T28771] CPU: 0 UID: 0 PID: 28771 Comm: syz.0.4224 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2283.841238][T28771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2283.841257][T28771] Call Trace: [ 2283.841266][T28771] [ 2283.841277][T28771] dump_stack_lvl+0x16c/0x1f0 [ 2283.841328][T28771] should_fail_ex+0x50a/0x650 [ 2283.841359][T28771] ? fs_reclaim_acquire+0xae/0x150 [ 2283.841401][T28771] ? tomoyo_realpath_from_path+0xb9/0x720 [ 2283.841525][T28771] should_failslab+0xc2/0x120 [ 2283.841557][T28771] __kmalloc_noprof+0xcb/0x510 [ 2283.841606][T28771] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 2283.841663][T28771] tomoyo_realpath_from_path+0xb9/0x720 [ 2283.841710][T28771] ? tomoyo_path_number_perm+0x235/0x590 [ 2283.841753][T28771] ? tomoyo_path_number_perm+0x235/0x590 [ 2283.841798][T28771] tomoyo_path_number_perm+0x248/0x590 [ 2283.841838][T28771] ? tomoyo_path_number_perm+0x235/0x590 [ 2283.841889][T28771] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 2283.841967][T28771] ? __pfx_lock_release+0x10/0x10 [ 2283.842012][T28771] ? trace_lock_acquire+0x14e/0x1f0 [ 2283.842055][T28771] ? lock_acquire+0x2f/0xb0 [ 2283.842097][T28771] ? __fget_files+0x40/0x3a0 [ 2283.842151][T28771] ? __fget_files+0x206/0x3a0 [ 2283.842204][T28771] security_file_ioctl+0x9b/0x240 [ 2283.842268][T28771] __x64_sys_ioctl+0xb7/0x200 [ 2283.842312][T28771] do_syscall_64+0xcd/0x250 [ 2283.842366][T28771] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2283.842424][T28771] RIP: 0033:0x7f1a8078d169 [ 2283.842448][T28771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2283.842477][T28771] RSP: 002b:00007f1a7e5f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2283.842505][T28771] RAX: ffffffffffffffda RBX: 00007f1a809a5fa0 RCX: 00007f1a8078d169 [ 2283.842524][T28771] RDX: fffffffffffff4e0 RSI: 0000000080204705 RDI: 0000000000000003 [ 2283.842541][T28771] RBP: 00007f1a7e5f6090 R08: 0000000000000000 R09: 0000000000000000 [ 2283.842557][T28771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2283.842573][T28771] R13: 0000000000000000 R14: 00007f1a809a5fa0 R15: 00007ffd4b300598 [ 2283.842608][T28771] [ 2283.842674][T28771] ERROR: Out of memory at tomoyo_realpath_from_path. [ 2284.201844][T28778] FAULT_INJECTION: forcing a failure. [ 2284.201844][T28778] name failslab, interval 1, probability 0, space 0, times 0 [ 2284.281455][T28778] CPU: 1 UID: 0 PID: 28778 Comm: syz.3.4226 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2284.281497][T28778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2284.281515][T28778] Call Trace: [ 2284.281524][T28778] [ 2284.281536][T28778] dump_stack_lvl+0x16c/0x1f0 [ 2284.281588][T28778] should_fail_ex+0x50a/0x650 [ 2284.281619][T28778] ? fs_reclaim_acquire+0xae/0x150 [ 2284.281661][T28778] ? tomoyo_realpath_from_path+0xb9/0x720 [ 2284.281709][T28778] should_failslab+0xc2/0x120 [ 2284.281739][T28778] __kmalloc_noprof+0xcb/0x510 [ 2284.281786][T28778] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 2284.281837][T28778] tomoyo_realpath_from_path+0xb9/0x720 [ 2284.281883][T28778] ? tomoyo_path_number_perm+0x235/0x590 [ 2284.281925][T28778] ? tomoyo_path_number_perm+0x235/0x590 [ 2284.281969][T28778] tomoyo_path_number_perm+0x248/0x590 [ 2284.282006][T28778] ? tomoyo_path_number_perm+0x235/0x590 [ 2284.282051][T28778] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 2284.282137][T28778] ? __pfx_lock_release+0x10/0x10 [ 2284.282180][T28778] ? trace_lock_acquire+0x14e/0x1f0 [ 2284.282222][T28778] ? lock_acquire+0x2f/0xb0 [ 2284.282266][T28778] ? __fget_files+0x40/0x3a0 [ 2284.282317][T28778] ? __fget_files+0x206/0x3a0 [ 2284.282369][T28778] security_file_ioctl+0x9b/0x240 [ 2284.282425][T28778] __x64_sys_ioctl+0xb7/0x200 [ 2284.282465][T28778] do_syscall_64+0xcd/0x250 [ 2284.282535][T28778] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2284.282581][T28778] RIP: 0033:0x7f59fdd8d169 [ 2284.282605][T28778] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2284.282634][T28778] RSP: 002b:00007f59febbe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2284.282662][T28778] RAX: ffffffffffffffda RBX: 00007f59fdfa5fa0 RCX: 00007f59fdd8d169 [ 2284.282681][T28778] RDX: 0000000000000000 RSI: 00000000405c5503 RDI: 0000000000000003 [ 2284.282697][T28778] RBP: 00007f59febbe090 R08: 0000000000000000 R09: 0000000000000000 [ 2284.282714][T28778] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2284.282730][T28778] R13: 0000000000000000 R14: 00007f59fdfa5fa0 R15: 00007ffef6aee0b8 [ 2284.282768][T28778] [ 2284.282780][T28778] ERROR: Out of memory at tomoyo_realpath_from_path. [ 2284.557851][T28784] FAULT_INJECTION: forcing a failure. [ 2284.557851][T28784] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2284.579354][T28784] CPU: 0 UID: 0 PID: 28784 Comm: syz.0.4228 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2284.579391][T28784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2284.579407][T28784] Call Trace: [ 2284.579416][T28784] [ 2284.579426][T28784] dump_stack_lvl+0x16c/0x1f0 [ 2284.579475][T28784] should_fail_ex+0x50a/0x650 [ 2284.579519][T28784] _copy_to_user+0x32/0xd0 [ 2284.579553][T28784] simple_read_from_buffer+0xd0/0x160 [ 2284.579593][T28784] proc_fail_nth_read+0x198/0x270 [ 2284.579629][T28784] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 2284.579665][T28784] ? rw_verify_area+0xcf/0x680 [ 2284.579699][T28784] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 2284.579734][T28784] vfs_read+0x1df/0xbf0 [ 2284.579772][T28784] ? __fget_files+0x1fc/0x3a0 [ 2284.579820][T28784] ? __pfx___mutex_lock+0x10/0x10 [ 2284.579861][T28784] ? __pfx_vfs_read+0x10/0x10 [ 2284.579927][T28784] ? __fget_files+0x206/0x3a0 [ 2284.579981][T28784] ksys_read+0x12b/0x250 [ 2284.580021][T28784] ? __pfx_ksys_read+0x10/0x10 [ 2284.580073][T28784] do_syscall_64+0xcd/0x250 [ 2284.580120][T28784] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2284.580161][T28784] RIP: 0033:0x7f1a8078bb7c [ 2284.580183][T28784] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 2284.580210][T28784] RSP: 002b:00007f1a7e5f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2284.580236][T28784] RAX: ffffffffffffffda RBX: 00007f1a809a5fa0 RCX: 00007f1a8078bb7c [ 2284.580255][T28784] RDX: 000000000000000f RSI: 00007f1a7e5f60a0 RDI: 0000000000000003 [ 2284.580272][T28784] RBP: 00007f1a7e5f6090 R08: 0000000000000000 R09: 0000000000000000 [ 2284.580289][T28784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2284.580305][T28784] R13: 0000000000000001 R14: 00007f1a809a5fa0 R15: 00007ffd4b300598 [ 2284.580341][T28784] [ 2285.302663][T28801] netlink: 'syz.0.4230': attribute type 2 has an invalid length. [ 2285.529425][T28781] i2c i2c-0: new_device: Can't parse I2C address [ 2285.723165][T28810] netlink: 342 bytes leftover after parsing attributes in process `syz.0.4230'. [ 2285.886535][T28801] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4230'. [ 2287.776952][T28849] busy [ 2288.544038][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 2288.550422][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 2288.683199][T28868] FAULT_INJECTION: forcing a failure. [ 2288.683199][T28868] name failslab, interval 1, probability 0, space 0, times 0 [ 2288.799829][T28868] CPU: 1 UID: 0 PID: 28868 Comm: syz.0.4243 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2288.799872][T28868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2288.799889][T28868] Call Trace: [ 2288.799898][T28868] [ 2288.799909][T28868] dump_stack_lvl+0x16c/0x1f0 [ 2288.799960][T28868] should_fail_ex+0x50a/0x650 [ 2288.799989][T28868] ? fs_reclaim_acquire+0xae/0x150 [ 2288.800032][T28868] ? alloc_pipe_info+0x1ec/0x590 [ 2288.800080][T28868] should_failslab+0xc2/0x120 [ 2288.800109][T28868] __kmalloc_noprof+0xcb/0x510 [ 2288.800165][T28868] alloc_pipe_info+0x1ec/0x590 [ 2288.800217][T28868] splice_direct_to_actor+0x793/0xa40 [ 2288.800261][T28868] ? get_pid_task+0xfc/0x250 [ 2288.800295][T28868] ? __pfx_direct_splice_actor+0x10/0x10 [ 2288.800343][T28868] ? __pfx_aa_file_perm+0x10/0x10 [ 2288.800396][T28868] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 2288.800444][T28868] ? __fget_files+0x1fc/0x3a0 [ 2288.800494][T28868] do_splice_direct+0x178/0x250 [ 2288.800537][T28868] ? __pfx_do_splice_direct+0x10/0x10 [ 2288.800582][T28868] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 2288.800630][T28868] ? rw_verify_area+0xcf/0x680 [ 2288.800673][T28868] do_sendfile+0xafb/0xe40 [ 2288.800720][T28868] ? __pfx_do_sendfile+0x10/0x10 [ 2288.800763][T28868] ? __fget_files+0x206/0x3a0 [ 2288.800818][T28868] __x64_sys_sendfile64+0x1da/0x220 [ 2288.800850][T28868] ? ksys_write+0x1ba/0x250 [ 2288.800892][T28868] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 2288.800935][T28868] do_syscall_64+0xcd/0x250 [ 2288.800986][T28868] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2288.801030][T28868] RIP: 0033:0x7f1a8078d169 [ 2288.801052][T28868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2288.801081][T28868] RSP: 002b:00007f1a7e5f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 2288.801108][T28868] RAX: ffffffffffffffda RBX: 00007f1a809a5fa0 RCX: 00007f1a8078d169 [ 2288.801127][T28868] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003 [ 2288.801145][T28868] RBP: 00007f1a7e5f6090 R08: 0000000000000000 R09: 0000000000000000 [ 2288.801164][T28868] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 2288.801201][T28868] R13: 0000000000000000 R14: 00007f1a809a5fa0 R15: 00007ffd4b300598 [ 2288.801238][T28868] [ 2289.595560][T28877] FAULT_INJECTION: forcing a failure. [ 2289.595560][T28877] name failslab, interval 1, probability 0, space 0, times 0 [ 2289.641602][T28877] CPU: 1 UID: 0 PID: 28877 Comm: syz.3.4244 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2289.641649][T28877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2289.641668][T28877] Call Trace: [ 2289.641678][T28877] [ 2289.641690][T28877] dump_stack_lvl+0x16c/0x1f0 [ 2289.641745][T28877] should_fail_ex+0x50a/0x650 [ 2289.641777][T28877] ? fs_reclaim_acquire+0xae/0x150 [ 2289.641823][T28877] ? tracepoint_add_func+0x2a9/0xeb0 [ 2289.641877][T28877] should_failslab+0xc2/0x120 [ 2289.641909][T28877] __kmalloc_noprof+0xcb/0x510 [ 2289.641968][T28877] ? __pfx_trace_event_raw_event_nfsd_cb_nodelegs+0x10/0x10 [ 2289.642025][T28877] tracepoint_add_func+0x2a9/0xeb0 [ 2289.642079][T28877] ? __pfx_trace_event_raw_event_nfsd_cb_nodelegs+0x10/0x10 [ 2289.642142][T28877] ? __pfx_trace_event_raw_event_nfsd_cb_nodelegs+0x10/0x10 [ 2289.642193][T28877] tracepoint_probe_register+0xc0/0x110 [ 2289.642250][T28877] ? __pfx_tracepoint_probe_register+0x10/0x10 [ 2289.642306][T28877] ? __pfx_trace_event_raw_event_nfsd_cb_nodelegs+0x10/0x10 [ 2289.642368][T28877] ? __pfx_probe_sched_switch+0x10/0x10 [ 2289.642431][T28877] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 2289.642484][T28877] trace_event_reg+0x209/0x340 [ 2289.642527][T28877] __ftrace_event_enable_disable+0x299/0x850 [ 2289.642588][T28877] __ftrace_set_clr_event_nolock+0x397/0xb80 [ 2289.642655][T28877] ftrace_set_clr_event+0x16f/0x330 [ 2289.642691][T28877] ? __pfx_ftrace_set_clr_event+0x10/0x10 [ 2289.642738][T28877] ftrace_event_write+0x245/0x290 [ 2289.642786][T28877] ? __pfx_ftrace_event_write+0x10/0x10 [ 2289.642819][T28877] ? ksys_write+0x12b/0x250 [ 2289.642867][T28877] ? __pfx_ftrace_event_write+0x10/0x10 [ 2289.642895][T28877] vfs_write+0x24c/0x1150 [ 2289.642938][T28877] ? __fget_files+0x1fc/0x3a0 [ 2289.642981][T28877] ? __pfx___mutex_lock+0x10/0x10 [ 2289.643024][T28877] ? __pfx_vfs_write+0x10/0x10 [ 2289.643076][T28877] ? __fget_files+0x206/0x3a0 [ 2289.643130][T28877] ksys_write+0x12b/0x250 [ 2289.643168][T28877] ? __pfx_ksys_write+0x10/0x10 [ 2289.643204][T28877] ? syscall_user_dispatch+0x7a/0x130 [ 2289.643261][T28877] do_syscall_64+0xcd/0x250 [ 2289.643308][T28877] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2289.643355][T28877] RIP: 0033:0x7f59fdd8d169 [ 2289.643377][T28877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2289.643405][T28877] RSP: 002b:00007f59febbe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 2289.643432][T28877] RAX: ffffffffffffffda RBX: 00007f59fdfa5fa0 RCX: 00007f59fdd8d169 [ 2289.643450][T28877] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 000000000000000c [ 2289.643466][T28877] RBP: 00007f59fde0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 2289.643483][T28877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2289.643498][T28877] R13: 0000000000000000 R14: 00007f59fdfa5fa0 R15: 00007ffef6aee0b8 [ 2289.643535][T28877] [ 2289.643650][T28877] event trace: Could not enable event nfsd_cb_nodelegs [ 2290.439430][T28900] FAULT_INJECTION: forcing a failure. [ 2290.439430][T28900] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2290.496938][T28900] CPU: 0 UID: 0 PID: 28900 Comm: syz.1.4249 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2290.496977][T28900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2290.496994][T28900] Call Trace: [ 2290.497002][T28900] [ 2290.497012][T28900] dump_stack_lvl+0x16c/0x1f0 [ 2290.497061][T28900] should_fail_ex+0x50a/0x650 [ 2290.497095][T28900] _copy_to_user+0x32/0xd0 [ 2290.497131][T28900] simple_read_from_buffer+0xd0/0x160 [ 2290.497174][T28900] proc_fail_nth_read+0x198/0x270 [ 2290.497212][T28900] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 2290.497290][T28900] ? rw_verify_area+0xcf/0x680 [ 2290.497329][T28900] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 2290.497368][T28900] vfs_read+0x1df/0xbf0 [ 2290.497412][T28900] ? __fget_files+0x1fc/0x3a0 [ 2290.497460][T28900] ? __pfx___mutex_lock+0x10/0x10 [ 2290.497507][T28900] ? __pfx_vfs_read+0x10/0x10 [ 2290.497561][T28900] ? __fget_files+0x206/0x3a0 [ 2290.497619][T28900] ksys_read+0x12b/0x250 [ 2290.497661][T28900] ? __pfx_ksys_read+0x10/0x10 [ 2290.497716][T28900] do_syscall_64+0xcd/0x250 [ 2290.497766][T28900] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2290.497810][T28900] RIP: 0033:0x7f9d83d8bb7c [ 2290.497834][T28900] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 2290.497863][T28900] RSP: 002b:00007f9d84b02030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2290.497891][T28900] RAX: ffffffffffffffda RBX: 00007f9d83fa5fa0 RCX: 00007f9d83d8bb7c [ 2290.497912][T28900] RDX: 000000000000000f RSI: 00007f9d84b020a0 RDI: 0000000000000004 [ 2290.497929][T28900] RBP: 00007f9d84b02090 R08: 0000000000000000 R09: 0000000000000000 [ 2290.497947][T28900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2290.497964][T28900] R13: 0000000000000000 R14: 00007f9d83fa5fa0 R15: 00007ffdfd312698 [ 2290.498002][T28900] [ 2291.241711][T28922] FAULT_INJECTION: forcing a failure. [ 2291.241711][T28922] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2291.321295][T28922] CPU: 1 UID: 0 PID: 28922 Comm: syz.1.4252 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2291.321339][T28922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2291.321356][T28922] Call Trace: [ 2291.321365][T28922] [ 2291.321375][T28922] dump_stack_lvl+0x16c/0x1f0 [ 2291.321427][T28922] should_fail_ex+0x50a/0x650 [ 2291.321465][T28922] _copy_to_user+0x32/0xd0 [ 2291.321505][T28922] simple_read_from_buffer+0xd0/0x160 [ 2291.321552][T28922] proc_fail_nth_read+0x198/0x270 [ 2291.321593][T28922] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 2291.321636][T28922] ? rw_verify_area+0xcf/0x680 [ 2291.321676][T28922] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 2291.321717][T28922] vfs_read+0x1df/0xbf0 [ 2291.321762][T28922] ? __fget_files+0x1fc/0x3a0 [ 2291.321811][T28922] ? __pfx___mutex_lock+0x10/0x10 [ 2291.321861][T28922] ? __pfx_vfs_read+0x10/0x10 [ 2291.321916][T28922] ? __fget_files+0x206/0x3a0 [ 2291.321976][T28922] ksys_read+0x12b/0x250 [ 2291.322020][T28922] ? __pfx_ksys_read+0x10/0x10 [ 2291.322077][T28922] do_syscall_64+0xcd/0x250 [ 2291.322129][T28922] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2291.322182][T28922] RIP: 0033:0x7f9d83d8bb7c [ 2291.322207][T28922] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 2291.322238][T28922] RSP: 002b:00007f9d84b02030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2291.322267][T28922] RAX: ffffffffffffffda RBX: 00007f9d83fa5fa0 RCX: 00007f9d83d8bb7c [ 2291.322288][T28922] RDX: 000000000000000f RSI: 00007f9d84b020a0 RDI: 0000000000000005 [ 2291.322306][T28922] RBP: 00007f9d84b02090 R08: 0000000000000000 R09: 0000000000000000 [ 2291.322328][T28922] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2291.322348][T28922] R13: 0000000000000000 R14: 00007f9d83fa5fa0 R15: 00007ffdfd312698 [ 2291.322387][T28922] [ 2292.535496][T28953] netlink: 504 bytes leftover after parsing attributes in process `syz.0.4260'. [ 2292.548947][T28953] netlink: 504 bytes leftover after parsing attributes in process `syz.0.4260'. [ 2293.184535][T28964] FAULT_INJECTION: forcing a failure. [ 2293.184535][T28964] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2293.192159][T28966] FAULT_INJECTION: forcing a failure. [ 2293.192159][T28966] name failslab, interval 1, probability 0, space 0, times 0 [ 2293.261393][T28966] CPU: 0 UID: 0 PID: 28966 Comm: syz.3.4264 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2293.261437][T28966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2293.261456][T28966] Call Trace: [ 2293.261465][T28966] [ 2293.261477][T28966] dump_stack_lvl+0x16c/0x1f0 [ 2293.261532][T28966] should_fail_ex+0x50a/0x650 [ 2293.261561][T28966] ? fs_reclaim_acquire+0xae/0x150 [ 2293.261606][T28966] ? tracepoint_add_func+0x2a9/0xeb0 [ 2293.261657][T28966] should_failslab+0xc2/0x120 [ 2293.261688][T28966] __kmalloc_noprof+0xcb/0x510 [ 2293.261735][T28966] ? trace_contention_end+0xee/0x140 [ 2293.261788][T28966] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 2293.261837][T28966] tracepoint_add_func+0x2a9/0xeb0 [ 2293.261888][T28966] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 2293.261946][T28966] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 2293.261994][T28966] tracepoint_probe_register+0xc0/0x110 [ 2293.262046][T28966] ? __pfx_tracepoint_probe_register+0x10/0x10 [ 2293.262109][T28966] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 2293.262171][T28966] tracing_start_sched_switch+0xaf/0x1e0 [ 2293.262217][T28966] __ftrace_event_enable_disable+0x64d/0x850 [ 2293.262279][T28966] __ftrace_set_clr_event_nolock+0x397/0xb80 [ 2293.262347][T28966] ftrace_set_clr_event+0x16f/0x330 [ 2293.262382][T28966] ? __pfx_ftrace_set_clr_event+0x10/0x10 [ 2293.262445][T28966] ftrace_event_write+0x245/0x290 [ 2293.262478][T28966] ? __pfx_ftrace_event_write+0x10/0x10 [ 2293.262514][T28966] ? ksys_write+0x12b/0x250 [ 2293.262567][T28966] ? __pfx_ftrace_event_write+0x10/0x10 [ 2293.262599][T28966] vfs_write+0x24c/0x1150 [ 2293.262645][T28966] ? __fget_files+0x1fc/0x3a0 [ 2293.262693][T28966] ? __pfx___mutex_lock+0x10/0x10 [ 2293.262740][T28966] ? __pfx_vfs_write+0x10/0x10 [ 2293.262797][T28966] ? __fget_files+0x206/0x3a0 [ 2293.262855][T28966] ksys_write+0x12b/0x250 [ 2293.262898][T28966] ? __pfx_ksys_write+0x10/0x10 [ 2293.262954][T28966] do_syscall_64+0xcd/0x250 [ 2293.263005][T28966] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2293.263060][T28966] RIP: 0033:0x7f59fdd8d169 [ 2293.263090][T28966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2293.263118][T28966] RSP: 002b:00007f59febbe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 2293.263144][T28966] RAX: ffffffffffffffda RBX: 00007f59fdfa5fa0 RCX: 00007f59fdd8d169 [ 2293.263163][T28966] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000005 [ 2293.263179][T28966] RBP: 00007f59febbe090 R08: 0000000000000000 R09: 0000000000000000 [ 2293.263195][T28966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2293.263211][T28966] R13: 0000000000000000 R14: 00007f59fdfa5fa0 R15: 00007ffef6aee0b8 [ 2293.263249][T28966] [ 2293.269083][T28966] wakeup trace: Couldn't activate tracepoint probe to kernel_sched_wakeup [ 2293.286653][T28964] CPU: 1 UID: 0 PID: 28964 Comm: syz.2.4263 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2293.286691][T28964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2293.286710][T28964] Call Trace: [ 2293.286730][T28964] [ 2293.286740][T28964] dump_stack_lvl+0x16c/0x1f0 [ 2293.286793][T28964] should_fail_ex+0x50a/0x650 [ 2293.286828][T28964] _copy_to_user+0x32/0xd0 [ 2293.286876][T28964] simple_read_from_buffer+0xd0/0x160 [ 2293.286917][T28964] proc_fail_nth_read+0x198/0x270 [ 2293.286954][T28964] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 2293.286992][T28964] ? rw_verify_area+0xcf/0x680 [ 2293.287027][T28964] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 2293.287061][T28964] vfs_read+0x1df/0xbf0 [ 2293.287100][T28964] ? __fget_files+0x1fc/0x3a0 [ 2293.287141][T28964] ? __pfx___mutex_lock+0x10/0x10 [ 2293.287184][T28964] ? __pfx_vfs_read+0x10/0x10 [ 2293.287232][T28964] ? __fget_files+0x206/0x3a0 [ 2293.287283][T28964] ksys_read+0x12b/0x250 [ 2293.287327][T28964] ? __pfx_ksys_read+0x10/0x10 [ 2293.287375][T28964] do_syscall_64+0xcd/0x250 [ 2293.287420][T28964] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2293.287461][T28964] RIP: 0033:0x7f52c598bb7c [ 2293.287484][T28964] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 2293.287513][T28964] RSP: 002b:00007f52c6824030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2293.287539][T28964] RAX: ffffffffffffffda RBX: 00007f52c5ba5fa0 RCX: 00007f52c598bb7c [ 2293.287558][T28964] RDX: 000000000000000f RSI: 00007f52c68240a0 RDI: 0000000000000008 [ 2293.287575][T28964] RBP: 00007f52c6824090 R08: 0000000000000000 R09: 0000000000000000 [ 2293.287592][T28964] R10: 0000000000007bd6 R11: 0000000000000246 R12: 0000000000000001 [ 2293.287609][T28964] R13: 0000000000000000 R14: 00007f52c5ba5fa0 R15: 00007ffccfc43888 [ 2293.287645][T28964] [ 2293.878896][T28972] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4265'. [ 2294.103148][T28972] veth0_macvtap: left promiscuous mode [ 2294.191345][T28972] macvtap0: entered promiscuous mode [ 2294.196756][T28972] macvtap0: entered allmulticast mode [ 2295.674743][T28996] ------------[ cut here ]------------ [ 2295.680654][T28996] WARNING: CPU: 1 PID: 28996 at kernel/tracepoint.c:358 tracepoint_probe_unregister+0x894/0xd70 [ 2295.691268][T28996] Modules linked in: [ 2295.695866][T28996] CPU: 1 UID: 0 PID: 28996 Comm: syz.1.4269 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2295.707507][T28996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2295.717994][T28996] RIP: 0010:tracepoint_probe_unregister+0x894/0xd70 [ 2295.725043][T28996] Code: 41 5e 41 5f c3 cc cc cc cc e8 38 1a fe ff 48 c7 c6 70 c4 bb 81 48 89 df e8 89 d9 e4 ff eb 9f bb fe ff ff ff e8 1d 1a fe ff 90 <0f> 0b 90 eb 91 e8 12 1a fe ff 48 89 da 48 b8 00 00 00 00 00 fc ff [ 2295.744902][T28996] RSP: 0018:ffffc90004a4f890 EFLAGS: 00010202 [ 2295.751122][T28996] RAX: 0000000000000003 RBX: 00000000fffffffe RCX: ffffffff81bbd30f [ 2295.759149][T28996] RDX: ffff888029a58000 RSI: ffffffff81bbd5b3 RDI: 000000000001ffff [ 2295.761995][T29002] random: crng reseeded on system resumption [ 2295.767345][T28996] RBP: ffffffff8e5aa8e0 R08: 0000000000000005 R09: 0000000000000000 [ 2295.781393][T28996] R10: 0000000000000001 R11: 000000000007fffc R12: ffffffff81c19640 [ 2295.789425][T28996] R13: 0000000000000602 R14: 0000000000000002 R15: ffffffff8e2410b8 [ 2295.798235][T28996] FS: 00007f9d84b026c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 2295.808091][T28996] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2295.814825][T28996] CR2: 0000001b2f301fc0 CR3: 000000006cc78000 CR4: 00000000003526f0 [ 2295.823194][T28996] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2295.831576][T28996] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2295.839612][T28996] Call Trace: [ 2295.842955][T28996] [ 2295.845939][T28996] ? __warn+0xea/0x3c0 [ 2295.850081][T28996] ? tracepoint_probe_unregister+0x894/0xd70 [ 2295.856258][T28996] ? report_bug+0x3c0/0x580 [ 2295.860863][T28996] ? handle_bug+0x54/0xa0 [ 2295.865281][T28996] ? exc_invalid_op+0x17/0x50 [ 2295.870017][T28996] ? asm_exc_invalid_op+0x1a/0x20 [ 2295.875185][T28996] ? __pfx_probe_sched_switch+0x10/0x10 [ 2295.880810][T28996] ? tracepoint_probe_unregister+0x5ef/0xd70 [ 2295.886930][T28996] ? tracepoint_probe_unregister+0x893/0xd70 [ 2295.893027][T28996] ? tracepoint_probe_unregister+0x894/0xd70 [ 2295.899798][T28996] ? __pfx_tracepoint_probe_unregister+0x10/0x10 [ 2295.906935][T28996] tracing_stop_cmdline_record+0x66/0xa0 [ 2295.912911][T28996] __ftrace_event_enable_disable+0x73f/0x850 [ 2295.918982][T28996] ftrace_event_set_open+0x240/0x390 [ 2295.924618][T28996] do_dentry_open+0x735/0x1c40 [ 2295.929444][T28996] ? __pfx_ftrace_event_set_open+0x10/0x10 [ 2295.935381][T28996] ? inode_permission+0xdd/0x5f0 [ 2295.940370][T28996] vfs_open+0x82/0x3f0 [ 2295.944597][T28996] ? may_open+0x1f2/0x400 [ 2295.948993][T28996] path_openat+0x1e88/0x2d80 [ 2295.953727][T28996] ? __pfx_path_openat+0x10/0x10 [ 2295.958749][T28996] ? __pfx___lock_acquire+0x10/0x10 [ 2295.964059][T28996] ? lock_acquire.part.0+0x11b/0x380 [ 2295.969399][T28996] ? find_held_lock+0x2d/0x110 [ 2295.974338][T28996] do_filp_open+0x20c/0x470 [ 2295.978903][T28996] ? __pfx_do_filp_open+0x10/0x10 [ 2295.984028][T28996] ? find_held_lock+0x2d/0x110 [ 2295.988902][T28996] ? alloc_fd+0x41f/0x760 [ 2295.993380][T28996] do_sys_openat2+0x17a/0x1e0 [ 2295.998126][T28996] ? __pfx_do_sys_openat2+0x10/0x10 [ 2296.004178][T28996] __x64_sys_openat+0x175/0x210 [ 2296.009063][T28996] ? __pfx___x64_sys_openat+0x10/0x10 [ 2296.009123][T28996] do_syscall_64+0xcd/0x250 [ 2296.020126][T28996] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2296.026423][T28996] RIP: 0033:0x7f9d83d8d169 [ 2296.030881][T28996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2296.050561][T28996] RSP: 002b:00007f9d84b02038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 2296.059082][T28996] RAX: ffffffffffffffda RBX: 00007f9d83fa5fa0 RCX: 00007f9d83d8d169 [ 2296.067195][T28996] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 2296.075287][T28996] RBP: 00007f9d83e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 2296.083388][T28996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2296.088005][T29002] PM: hibernation: Marking nosave pages: [mem 0xbfffd000-0xffffffff] [ 2296.091406][T28996] R13: 0000000000000000 R14: 00007f9d83fa5fa0 R15: 00007ffdfd312698 [ 2296.091457][T28996] [ 2296.091476][T28996] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 2296.091495][T28996] CPU: 1 UID: 0 PID: 28996 Comm: syz.1.4269 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 2296.091535][T28996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 2296.091558][T28996] Call Trace: [ 2296.091571][T28996] [ 2296.091585][T28996] dump_stack_lvl+0x3d/0x1f0 [ 2296.091645][T28996] panic+0x71d/0x800 [ 2296.091688][T28996] ? __pfx_panic+0x10/0x10 [ 2296.091729][T28996] ? show_trace_log_lvl+0x29d/0x3d0 [ 2296.091802][T28996] ? check_panic_on_warn+0x1f/0xb0 [ 2296.091851][T28996] ? tracepoint_probe_unregister+0x894/0xd70 [ 2296.091912][T28996] check_panic_on_warn+0xab/0xb0 [ 2296.091956][T28996] __warn+0xf6/0x3c0 [ 2296.091997][T28996] ? tracepoint_probe_unregister+0x894/0xd70 [ 2296.092058][T28996] report_bug+0x3c0/0x580 [ 2296.092113][T28996] handle_bug+0x54/0xa0 [ 2296.092144][T28996] exc_invalid_op+0x17/0x50 [ 2296.092183][T28996] asm_exc_invalid_op+0x1a/0x20 [ 2296.092232][T28996] RIP: 0010:tracepoint_probe_unregister+0x894/0xd70 [ 2296.092292][T28996] Code: 41 5e 41 5f c3 cc cc cc cc e8 38 1a fe ff 48 c7 c6 70 c4 bb 81 48 89 df e8 89 d9 e4 ff eb 9f bb fe ff ff ff e8 1d 1a fe ff 90 <0f> 0b 90 eb 91 e8 12 1a fe ff 48 89 da 48 b8 00 00 00 00 00 fc ff [ 2296.092340][T28996] RSP: 0018:ffffc90004a4f890 EFLAGS: 00010202 [ 2296.092369][T28996] RAX: 0000000000000003 RBX: 00000000fffffffe RCX: ffffffff81bbd30f [ 2296.092392][T28996] RDX: ffff888029a58000 RSI: ffffffff81bbd5b3 RDI: 000000000001ffff [ 2296.092427][T28996] RBP: ffffffff8e5aa8e0 R08: 0000000000000005 R09: 0000000000000000 [ 2296.092447][T28996] R10: 0000000000000001 R11: 000000000007fffc R12: ffffffff81c19640 [ 2296.092467][T28996] R13: 0000000000000602 R14: 0000000000000002 R15: ffffffff8e2410b8 [ 2296.092490][T28996] ? __pfx_probe_sched_switch+0x10/0x10 [ 2296.092563][T28996] ? tracepoint_probe_unregister+0x5ef/0xd70 [ 2296.092619][T28996] ? tracepoint_probe_unregister+0x893/0xd70 [ 2296.092692][T28996] ? __pfx_tracepoint_probe_unregister+0x10/0x10 [ 2296.092764][T28996] tracing_stop_cmdline_record+0x66/0xa0 [ 2296.092822][T28996] __ftrace_event_enable_disable+0x73f/0x850 [ 2296.092886][T28996] ftrace_event_set_open+0x240/0x390 [ 2296.092949][T28996] do_dentry_open+0x735/0x1c40 [ 2296.093003][T28996] ? __pfx_ftrace_event_set_open+0x10/0x10 [ 2296.093062][T28996] ? inode_permission+0xdd/0x5f0 [ 2296.093105][T28996] vfs_open+0x82/0x3f0 [ 2296.093139][T28996] ? may_open+0x1f2/0x400 [ 2296.093183][T28996] path_openat+0x1e88/0x2d80 [ 2296.093251][T28996] ? __pfx_path_openat+0x10/0x10 [ 2296.093302][T28996] ? __pfx___lock_acquire+0x10/0x10 [ 2296.093350][T28996] ? lock_acquire.part.0+0x11b/0x380 [ 2296.093400][T28996] ? find_held_lock+0x2d/0x110 [ 2296.093443][T28996] do_filp_open+0x20c/0x470 [ 2296.093496][T28996] ? __pfx_do_filp_open+0x10/0x10 [ 2296.093544][T28996] ? find_held_lock+0x2d/0x110 [ 2296.093612][T28996] ? alloc_fd+0x41f/0x760 [ 2296.093675][T28996] do_sys_openat2+0x17a/0x1e0 [ 2296.093712][T28996] ? __pfx_do_sys_openat2+0x10/0x10 [ 2296.093767][T28996] __x64_sys_openat+0x175/0x210 [ 2296.093812][T28996] ? __pfx___x64_sys_openat+0x10/0x10 [ 2296.093869][T28996] do_syscall_64+0xcd/0x250 [ 2296.093923][T28996] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2296.093971][T28996] RIP: 0033:0x7f9d83d8d169 [ 2296.093999][T28996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2296.094032][T28996] RSP: 002b:00007f9d84b02038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 2296.094064][T28996] RAX: ffffffffffffffda RBX: 00007f9d83fa5fa0 RCX: 00007f9d83d8d169 [ 2296.094088][T28996] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 2296.094111][T28996] RBP: 00007f9d83e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 2296.094133][T28996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2296.094155][T28996] R13: 0000000000000000 R14: 00007f9d83fa5fa0 R15: 00007ffdfd312698 [ 2296.094210][T28996] [ 2296.099876][T28996] Kernel Offset: disabled