last executing test programs: 10m3.606744306s ago: executing program 2 (id=450): mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYRESHEX], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x2000c041) r0 = socket(0x2a, 0x1, 0x0) bind$auto(r0, &(0x7f0000000080)=@in={0x2, 0x2, @dev={0xac, 0x14, 0x14, 0xa}}, 0x9fb2) connect$auto(0x3, &(0x7f00000000c0)=@llc={0x1a, 0x301, 0x7f, 0x5, 0x5, 0xb, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1d}}, 0x55) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) fcntl$auto(0xffffffffffffffff, 0x401, 0x5) sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc0}, 0x40) write$auto(0x3, 0x0, 0xfffffdef) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) gettid() r1 = openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000b00)='/proc/self/smaps\x00', 0x42000, 0x0) read$auto_proc_pid_smaps_operations_internal(r1, &(0x7f0000000000)=""/173, 0xad) 10m2.932968455s ago: executing program 2 (id=458): r0 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) clone$auto(0x3fff, 0xad3, 0x0, 0x0, 0x2) ioctl$auto_PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x7, 0x6, 0x7c9, 0x1, 0x6, 0xfffffffffffffffb, 0x7, 0x8, 0x2, 0x8}) write$auto(r0, &(0x7f0000000000)='/proc/thread-self/pagemap\x00', 0x100) 10m2.81279241s ago: executing program 2 (id=460): mq_unlink$auto(0x0) 10m2.631066364s ago: executing program 2 (id=461): socket(0xa, 0x3, 0x5) mmap$auto(0x0, 0x200004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) mlockall$auto(0x7) mseal$auto(0x0, 0x7dda, 0x0) futex$auto(0xfffffffffffffffe, 0x5, 0x47, 0x0, 0xfffffffffffffffc, 0x9f9) futex$auto(&(0x7f0000000000)=0xd, 0x4, 0xfff, 0x0, &(0x7f0000000080)=0xfffffff7, 0x4) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) process_vm_readv$auto(0xbd4, &(0x7f0000000040)={0x0, 0x2}, 0x8, &(0x7f0000000080)={0x0}, 0x47, 0x0) rseq$auto(&(0x7f0000000100)={0x0, 0x80, 0x1, 0x100, 0x1, 0x9b, "812149e5434b6c0a90dbfd3d742c577cd216762d8bb8e51f08e6a6651bbfbf51ed4846d3cf9a"}, 0x5, 0x9, 0x5) socket(0x2, 0x3, 0xa) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NFC_CMD_LLC_SET_PARAMS(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0xde8065d277046c55, 0x70bd29, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0xc000}, 0x0) sendmsg$auto_NL80211_CMD_GET_INTERFACE(r2, &(0x7f0000002780)={0x0, 0x0, &(0x7f0000002740)={&(0x7f0000001dc0)={0x14, 0x0, 0x10, 0x70bd26, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x50080014}, 0x20004090) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) ioctl$auto(0x4000000000000c8, 0x800454d3, 0x3) r3 = socket(0x29, 0x2, 0x0) getsockopt$auto(r3, 0x119, 0x6, 0x0, 0x0) mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x1, 0x8000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x89fc, &(0x7f0000000000)={'ip_vti0\x00'}) connect$auto(0x3, 0x0, 0x55) msgget$auto(0x6, 0x200) msgrcv$auto(0x0, 0xfffffffffffffffd, 0x200000000000000, 0x225, 0x2) sendmmsg$auto(0x3, 0x0, 0x9a7, 0xa00) kill$auto(0x0, 0x11) rt_sigtimedwait$auto(0x0, 0x0, 0x0, 0x8) r4 = socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000013c0)=ANY=[@ANYBLOB="18000000", @ANYRES8=r4, @ANYRES8=r1, @ANYRES32], 0x18}, 0x1, 0x0, 0x0, 0x40}, 0x80) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r4, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x10048884) 10m1.433065749s ago: executing program 2 (id=471): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x1, 0x0) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0xffffffd6) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) clone$auto(0xd2d4, 0x101, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd) tkill$auto(0x1, 0x7) openat$auto_sync_info_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) 10m0.655540046s ago: executing program 2 (id=477): mmap$auto(0x0, 0x7fff, 0xdf, 0x16, 0xffffffff, 0x1000) clock_gettime$auto(0x8, 0x0) mmap$auto(0x1, 0x0, 0x8, 0x15, 0x3, 0x9) mmap$auto(0x0, 0x7fff, 0xdf, 0x16, 0xffffffff, 0x1000) (async) clock_gettime$auto(0x8, 0x0) (async) mmap$auto(0x1, 0x0, 0x8, 0x15, 0x3, 0x9) (async) 10m0.357293936s ago: executing program 32 (id=477): mmap$auto(0x0, 0x7fff, 0xdf, 0x16, 0xffffffff, 0x1000) clock_gettime$auto(0x8, 0x0) mmap$auto(0x1, 0x0, 0x8, 0x15, 0x3, 0x9) mmap$auto(0x0, 0x7fff, 0xdf, 0x16, 0xffffffff, 0x1000) (async) clock_gettime$auto(0x8, 0x0) (async) mmap$auto(0x1, 0x0, 0x8, 0x15, 0x3, 0x9) (async) 8m7.83487303s ago: executing program 3 (id=1140): sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000000)={{0x0, 0x3aa5, 0x0, 0xe, 0x0, 0x8b, 0x3}, 0x8}, 0x201, 0x6) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) ioctl$auto_def_blk_fops_fs(r0, 0x1, &(0x7f0000000000)) 8m7.637174903s ago: executing program 3 (id=1144): sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 8m7.540050584s ago: executing program 3 (id=1145): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram15\x00', 0x80, 0x0) fsync$auto(r0) 8m7.527693062s ago: executing program 3 (id=1146): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram15\x00', 0x80, 0x0) fsync$auto(r0) (fail_nth: 1) 8m7.135918394s ago: executing program 3 (id=1147): mmap$auto(0x1, 0x9, 0x3ff57699, 0x9b72, 0x4, 0x8000000000008000) tkill$auto(0x80000000000001, 0x7) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) mmap$auto(0x0, 0x20009, 0x4000000000e3, 0x40000000000eb1, 0x401, 0xd) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) io_uring_setup$auto(0x6, 0x0) read$auto(0x3, 0x0, 0x80) close_range$auto(0x2, 0x8000, 0x0) socket(0x25, 0x1, 0x3) open(0x0, 0x22240, 0x154) socket(0xa, 0x2, 0x0) socket(0x840000000002, 0x3, 0xff) socket(0xa, 0x3, 0x6) mq_open$auto(&(0x7f0000000000)='.\xf1e4\xdf\x16\x95kxE\xd9x\x15\xb0\xf6V\x93\xb4E\x06\xc5}l', 0x56a, 0xb275, 0x0) mknod$auto(0x0, 0xc9, 0xc8) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) mq_timedreceive$auto(0x8, 0x0, 0xfffffffd, 0x0, &(0x7f00000000c0)={0x2, 0x1}) r0 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) r1 = openat$auto_nvmf_dev_fops_fabrics(0xffffffffffffff9c, &(0x7f00000004c0), 0x101202, 0x0) write$auto_nvmf_dev_fops_fabrics(r1, &(0x7f0000001500)='7', 0x1) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000f40)={'batadv0\x00', 0x0}) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r2) sendmsg$auto_NL80211_CMD_CHANGE_NAN_CONFIG(r2, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r4, @ANYRES8=r1], 0x54}, 0x1, 0x0, 0x0, 0x40}, 0x4040800) ptrace$auto(0xfffffffffffffffc, 0x0, 0x7, 0x7fffffffffffffff) sendmsg$auto_BATADV_CMD_SET_MESH(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="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", @ANYRES32=r3, @ANYBLOB="0500330002000000"], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x140080e4) mmap$auto(0x7ff, 0x1, 0x1, 0x400000012, 0x8, 0x1) 8m5.943818793s ago: executing program 3 (id=1156): poll$auto(&(0x7f0000000000)={0xffffffffffffffff, 0x2, 0x1}, 0x2, 0x5) 8m5.620289204s ago: executing program 33 (id=1156): poll$auto(&(0x7f0000000000)={0xffffffffffffffff, 0x2, 0x1}, 0x2, 0x5) 7m25.440258791s ago: executing program 5 (id=1394): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) r1 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) copy_file_range$auto(r1, &(0x7f0000000140)=0xffff, r1, 0x0, 0x21c1, 0x0) openat2$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x4100c0, 0x3c, 0x3c}, 0x18) cachestat$auto(r0, 0x0, 0x0, 0x0) 7m23.347993016s ago: executing program 5 (id=1406): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="5e0027617c36720add70ab0343990f7d0bbc96dc0b"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) read$auto(r0, &(0x7f0000000040)='\x00', 0x10001) sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x20008010}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) socket(0x10, 0x2, 0x0) unshare$auto(0x200) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="010029bd7000fbdbdfa78727670008000300", @ANYRES32=r1, @ANYBLOB='\b\x00a'], 0x24}, 0x1, 0x0, 0x0, 0x24048080}, 0x80) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'macvlan1\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'veth1_virt_wifi\x00', 0x0}) sendmsg$auto_NET_SHAPER_CMD_GET2(r0, &(0x7f00000003c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x34, 0x0, 0x100, 0x70bd27, 0x25dfdbfc, {}, [@NET_SHAPER_A_IFINDEX={0x8}, @NET_SHAPER_A_IFINDEX={0x8, 0x8, r1}, @NET_SHAPER_A_IFINDEX={0x8, 0x8, r2}, @NET_SHAPER_A_IFINDEX={0x8, 0x8, r3}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0) r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000400)='ns/mnt\x00') setns(r4, 0x0) setresuid$auto(0x0, 0x7, 0x0) syz_clone(0x98280000, 0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10000010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="19"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 7m22.181151801s ago: executing program 5 (id=1411): r0 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0xd00, 0x0) ioctl$auto_TUNSETVNETLE(r0, 0x400454dc, &(0x7f0000000040)) 7m21.563887593s ago: executing program 5 (id=1417): openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000040)='/dev/binderfs/binder1\x00', 0x800, 0x0) landlock_create_ruleset$auto(&(0x7f0000000040)={0x1, 0x3, 0xffffffffffff76ad}, 0x8, 0x0) ioctl$auto(0x3, 0x80000541b, 0x38) 7m20.772227743s ago: executing program 5 (id=1421): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="1b0026bd7000fddbdf2503000000ff48d5ab8a58fb617243bcae8de535c718dace780c6d35c01d9a66342da54c7f791bda6152fc026013760de224e61c0168bf9ed043049301bdb4dd4665e2bf2c3a344afd6f37a8e41380fec05f05e6eea33af64a59fb4fa9cde1bf43238eae34eb9c9b86c5b377c66cb9b1cc08d90334b042ad4cc8c3fbaacac1"], 0x14}, 0x1, 0x0, 0x0, 0x4004040}, 0x48c0) setxattrat$auto(0xffffffffffffffff, 0x0, 0x100, 0x0, &(0x7f00000000c0)={0x69fc, 0x6, 0x7}, 0x5d8) keyctl$auto(0x1, 0x0, 0x2, 0x8, 0xd87f) sendto$auto(0x4, 0x0, 0xfffffffffffffffb, 0x6, 0x0, 0xe) close_range$auto(0x2, 0x8000, 0x0) ioperm$auto(0x8, 0x6, 0x1) tkill$auto(0x80000000000001, 0x7) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x00\rs\x1cJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeep\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x2, 0x4, 0x3, 0x2, 0x8, 0xc, 0xe3, 0x400000000a, 0x3}, 0x6f4) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) bpf$auto(0x18, &(0x7f0000000040)=@bpf_attr_4={0x7, r0, 0x5, r0}, 0x92) r1 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0xd00, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r2 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0x7, 0x400, 0x7}, 0x9, 0x0) landlock_restrict_self$auto(r2, 0x0) mkdir$auto(&(0x7f0000000040)='./file0\x00', 0x2) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x8000, 0x70) mknodat$auto(r3, &(0x7f00000003c0)='./file0\x00', 0xfff, 0xfffffff8) mkdirat$auto(r3, &(0x7f0000000080)='./file1\x00', 0xc7a) r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x8000, 0x70) renameat2$auto(r4, &(0x7f0000000200)='./file0\x00', r4, &(0x7f0000000240)='./file1\x00', 0x2) ioctl$auto_TUNSETVNETLE(r1, 0x400454dc, &(0x7f0000000040)) 7m18.206535477s ago: executing program 5 (id=1432): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, &(0x7f0000000180)={0x1, 0x7, 0x6}) r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0) ioctl$auto_CEC_S_MODE(r0, 0x40046109, &(0x7f0000002c40)=0xd0) 7m17.773375789s ago: executing program 34 (id=1432): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, &(0x7f0000000180)={0x1, 0x7, 0x6}) r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0) ioctl$auto_CEC_S_MODE(r0, 0x40046109, &(0x7f0000002c40)=0xd0) 7.568535088s ago: executing program 6 (id=3861): prctl$auto(0x1000000001c, 0x5, 0x100000000, 0x400000000009, 0x3fffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xebd, 0xfffffffffffffffa, 0x8000) socket(0x10, 0x2, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x106) r2 = socket(0x10, 0x2, 0xf) close_range$auto(0x0, 0xffffeffe, 0x2) pipe$auto(0x0) r3 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f00000001c0), r0) sendmsg$auto_SMC_NETLINK_DUMP_SEID(r1, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="54612abd7000ffdbec250d0000000500000200000000400001013206006d"], 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0) socket(0xa, 0x3, 0xff) pipe$auto(0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'bond0\x00', 0x0}) bpf$auto(0x0, &(0x7f0000000080)=@query={@target_ifindex=r4, 0xe, 0x4a, 0x1, 0x0, @count=0x7fff, 0x0, 0x1f8c, 0x6, 0x0, 0x7}, 0x18) bpf$auto(0x2, &(0x7f0000000080)=@bpf_attr_3={0x5, 0x0, 0x702955be, 0x40000, 0x4, 0x5, 0x80, 0xe4, 0xfffff800, "0566c8ee7c78a925488276d7697a12bd", 0x0, 0x5, 0xffffffffffffffff, 0x7, 0x9, 0x4, 0x7, 0x10001, 0x0, 0x8001, @attach_prog_fd=r2, 0x7e, 0x4, 0x1, 0x5, 0x3}, 0x5) setreuid$auto(0x15, 0x5) openat$auto_tracing_thresh_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/tracing_thresh\x00', 0x82, 0x0) mknod$auto(&(0x7f0000000040)='.\x00', 0xc7, 0xc8) 7.452094009s ago: executing program 6 (id=3862): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000040), r0) newfstatat$auto(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x8, 0x3ff, 0x8, 0xd49d, 0xffffffffffffffff, 0x0, 0x0, 0xffffffff, 0x1, 0x7fff, 0x5, 0xffffffffffffff2e, 0x3, 0x9f, 0x401, 0x5, 0x9}, 0x10001) r3 = socket(0x27, 0x2, 0x4) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000340), r3) sendmsg$auto_OVS_FLOW_CMD_DEL(r0, &(0x7f0000000540)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000500)={&(0x7f0000000180)={0x360, r1, 0x400, 0x70bd29, 0x25dfdbfe, {}, [@OVS_FLOW_ATTR_MASK={0x24f, 0x7, 0x0, 0x1, [@generic="04eb518eb4b00855cf462d1b5af2e9de45e7bb80971c4d563f1b554b6bc69d3c2323adcd4efbbcf7614bb153afb5a3b314aa99fdd9eb77fa6394922b4f2cf425b83014d38f2fa9fdf6051ea1794f8cff10eddb09cb4d787b0cf723b1f84594b0ebd6da935a84ce6b38d2da36034176f2bc57b985f1c0851d3d4726c21e4e30ff980687fa24c5f2d5512d8447e0dbc0f771e0311d4d656ca855647fe06c968da7c951b4df9252f64149b6462aa4014e3e1e3deb3d21877dc5a31d6c46c5c0daa353", @generic="6787043a7e5ed060435eaf1a639d1d63a3504a35bb9c4f8240dcd420514634c41e3806827d8aae2b839dd432890ead927aff573d5a535f9359d9971e0e436169f2062ad6b3b5598464dd65f8bc161927eae94dbe54aebeeade584cbe2bfd665a449e909132deca56adf42d4412e1c5f9cbf8e18bef01ce0732fa952a4e57eab101c4b23dd9098ffc16c3ea6b006a71db930c21e7ad549d4135fe14cfe167439bf7ba897faa6442bb07124a282431cfdeec6aa4d6938d", @generic="7d2c47779defa147712fa1cf5b84865e71351e2131b3e0d09b4a2f6ac29ba13488aa41de103a950879fd91bfc73d1e56f1a7d4203ae4b67173d4d160eae4d4f5dda91bfa0848e62eca1025e4071a56e790977865634d1170a464ca9f1a0b8d376057b76a8e79216e440d8fa9e67f5d3b096d347b068e6a8aed8cc62ef3ac79a7622081ed0fba3e8deb973f4dae9f9d2c93eb6924e807fe08ee253db0921242ec7ca447eb498f5da0d4e390c72c10cf578b3438cdb759cc03bd331307080e7333527bdc625bf1a3decd9b87f3aa1faf3e110f0ac8"]}, @OVS_FLOW_ATTR_ACTIONS={0xe2, 0x2, 0x0, 0x1, [@generic="3c1447a26f85ee5751f9268b9b62f02dda70f8341edd5ab79de7dab74410c99affb0ae81a54f6d4bd2fe1edaa861062145e094dc783040f2109bc98dbf6c92366287d3b35297ee4f3504430f79984035886415f1c188ba2fba1906e380f40988e3793564eaa293aafacd3e3a3fdf0da43b20e7156bcf6573b38d3aa7b4e84d6d0aca38a417902f7eed5d71d6627ab5f72461ec69f857c9989cabc686daed63f429c7ecf3c8b136852fe521bd812fd67d751e517bf6a13ebed84cdcc60bb13b5dbaf5645e06373ed1cc9e6f860d29a49b80f256a09c96", @typed={0x8, 0x120, 0x0, 0x0, @uid=r2}]}, @OVS_FLOW_ATTR_UFID_FLAGS={0x8, 0xa, 0x59b}, @OVS_FLOW_ATTR_UFID_FLAGS={0x8, 0xa, 0x6}, @OVS_FLOW_ATTR_CLEAR={0x4}, @OVS_FLOW_ATTR_PROBE={0x4}]}, 0x360}}, 0x20000004) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000140), r4) sendmsg$auto_TASKSTATS_CMD_GET(r4, &(0x7f0000000200)={0x0, 0xf3e0fff77c47799f, &(0x7f00000001c0)={&(0x7f0000000040)={0x24, r5, 0xa01, 0x70bd25, 0x25dfdbfd, {}, [@TASKSTATS_CMD_ATTR_DEREGISTER_CPUMASK={0xe}]}, 0x24}, 0x1, 0x0, 0x0, 0x4001}, 0x20000000) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) io_uring_setup$auto(0x6, 0x0) r6 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x4610, 0x0) sendmsg$auto_BATADV_CMD_GET_HARDIF(0xffffffffffffffff, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000000)={0x1c, 0x0, 0x0, 0x70b92f, 0x25dfdbfc, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0xfe03, 0x31, 0x14}]}, 0x1c}, 0x1, 0x0, 0x0, 0x14040014}, 0x4000004) r7 = socket(0xa, 0x3, 0x5) sendmmsg$auto(r7, &(0x7f0000000180)={{&(0x7f0000000000)=[0xa, 0x80fe], 0xb8, 0x0, 0x0, &(0x7f0000000140), 0x8, 0x80000000}, 0x5}, 0x1, 0xa) r8 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f00000061c0), 0xffffffffffffffff) mmap$auto(0x0, 0x20007, 0x80000000000000df, 0x10004000eb1, 0x8, 0x8000) pipe$auto(0x0) r9 = socket(0xa, 0x2, 0x0) setsockopt$auto(r9, 0x29, 0x1b, 0x0, 0x56b) sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000006280)={0x0, 0x0, &(0x7f0000006240)={&(0x7f0000006200)={0x2c, r8, 0x1, 0x70bd26, 0x25dfdbfe, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x8}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0xfffffffa}, @NFSD_A_SERVER_LEASETIME={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20004008}, 0x4) 7.292185119s ago: executing program 6 (id=3865): io_uring_setup$auto(0x0, &(0x7f0000000000)={0xa, 0x66, 0x2, 0x14, 0x9, 0x4, 0xffffffffffffffff, [0x7, 0x34, 0x7fffffff], {0x6, 0x6, 0x4355, 0x80000000, 0xa5, 0x2, 0xb, 0x8, 0xffffffffffffffff}, {0xfffffc00, 0x6, 0x0, 0x401, 0x8, 0x8, 0x80000001, 0x7, 0x7}}) lstat$auto(&(0x7f0000000000)='./file1\x00', 0x0) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/controlC0\x00', 0x0, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, &(0x7f0000000700)={{0x9, 0x3, 0x9, 0x9, "d08a4a423bd019632e5f87b2b8ec3974f013d38093481a3c5611a9e4c5920983f395aa88531ab223832009dd", 0x4}, 0x1, @iec958={"5def5b535dca61e30f1197bd1c6e0700e1631ee71ece3983", "1963d81073684057075ffd2ef807fe95cc44281c954525ee5bf84b07abc0f217869974d6dc513dc3f9c7ceb47965d10af303debe3609d8a4a98d69dfdabb143fb68d3e6d4f7491095b3fd61ace361a32f4e32ed410273621efefc714023105f2255582382eafa6de32f1875d839edf5c77b1122e3cf82e1d34b78e2988029131dc8fc7528f8d3ff2fcb0ce01a275ebdacd1952", 0x0, "0ce8cc04"}, "c75e96eb1fbd078af5ba88ed2ba6685283483138540699e4a5f5d43d269f95bb2ec9c400fc32c207db7ba36ddc5fbbfded04790fcaea61ad8eb1aa27372817e8e41e0b78383dae5587408cf355c6c7eb6d63cb2df1028da1c9583e422a911c528587bc1c6598b38a12a08c222564eda2e8d810c41a410795d28c3963d9f12aec"}) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0x2, 0x6, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'bond_slave_1\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(r1, &(0x7f0000021740)={0x0, 0x0, &(0x7f0000021700)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x4004804) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyd7\x00', 0x28400, 0x0) openat$auto_gpiolib_fops_(0xffffffffffffff9c, &(0x7f0000000440), 0x109000, 0x0) ioctl$auto_TIOCMBIS2(r4, 0x5416, 0x0) 7.041905582s ago: executing program 6 (id=3870): ioperm$auto(0x7, 0x6, 0x2) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x89/s\x1cJ\x99\x00:\x00!\r?\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2\x00'/97, 0xe, 0x3) munmap$auto(0x1000000, 0x2000000c) madvise$auto(0x0, 0xffffffffffff0001, 0x9) mlockall$auto(0x3) socket(0xa, 0x801, 0x106) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) connect$auto(0x3, 0x0, 0x55) write$auto(0xffffffffffffffff, 0x0, 0x10000) fanotify_init$auto(0x5, 0x2000000000002) inotify_init1$auto(0x3000000000000) socket(0x15, 0x5, 0x0) getsockopt$auto(0x2, 0x114, 0x2720, 0xfffffffffffffffc, 0x0) setsockopt$auto(0x3, 0x0, 0xf, 0x0, 0xb) clock_adjtime$auto(0x4000003f, &(0x7f0000000000)={0x7, 0x8, 0x1596, 0x8, 0x7fffffff, 0xffffffc0, 0x6, 0x5, 0x3, 0x0, 0xba, {}, 0x1000, 0x10, 0xd, 0x5, 0x2000006, 0xb, 0x7fff, 0x3, 0x5, 0x1}) socket(0x1d, 0x2, 0x6) setsockopt$auto(0x3, 0x6a, 0x7, 0xffffffffffffffff, 0x3) pipe$auto(0x0) pipe$auto(0x0) clone$auto(0x21002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9) r0 = socket(0xa, 0x5, 0x0) getsockopt$auto(r0, 0x84, 0xb, 0x0, 0x0) mmap$auto(0x7, 0x8, 0x0, 0x3ff, 0x1, 0x5) mlockall$auto(0x7) 6.527958954s ago: executing program 6 (id=3875): close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f00000000c0)={0x30, r1, 0x1, 0x70bd25, 0x25dfdbfd, {}, [@NBD_ATTR_SOCKETS={0x10, 0x7, 0x0, 0x1, [@nested={0xc, 0x1, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@generic='\x00\x00\x00\x00']}]}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x8880) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_NEW_INTERFACE(r0, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0xd0, r2, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@NL80211_ATTR_PID={0x8}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0x5e}, @NL80211_ATTR_FTM_RESPONDER={0xa4, 0x10e, 0x0, 0x1, [@NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_LCI={0x1f, 0x2, "2ae7af43013bb408f18830ce688abd78ca9afbf97564942016b29c"}, @NL80211_FTM_RESP_ATTR_LCI={0x71, 0x2, "36978ea3eadfa74caff62a998527d2990575fd741f0cff070baf4690a9079804589daa7f9a4ce3fb667e9308cfbb1939ea853c8ddec2119c6609bcbce0164e4bd569b83810e757e2e853c763f1ffc43634f81da4a7fcc0d311345a56468a7e13456289fdfb7bea3e7942164d40"}]}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0x532}]}, 0xd0}, 0x1, 0x0, 0x0, 0x4000001}, 0x4000801) r3 = openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f00000000c0), 0x642, 0x0) write$auto_split_huge_pages_fops_huge_memory(r3, &(0x7f0000000100)="3173a3", 0x3) 3.566070473s ago: executing program 4 (id=3897): r0 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x12db01, 0x0) write$auto(0x1, 0x0, 0x80000000) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xebd, 0x401, 0x8000) socket(0x29, 0x2, 0x0) socket(0x2, 0x6, 0x0) epoll_create$auto(0x4) r1 = socket(0xa, 0x3, 0x3a) setresuid$auto(0x0, 0x0, 0x0) fcntl$getown(r1, 0x9) getpid() getpgrp(0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[], 0x1fc4}, 0x1, 0x0, 0x0, 0x4081}, 0x4008840) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) connect$auto(0x3, &(0x7f0000000140), 0x55) bpf$auto(0x8000000000000020, 0xffffffffffffffff, 0x0) r2 = socket(0x6, 0x80000, 0x2) io_uring_setup$auto(0x9, 0x0) bpf$auto(0x1eb, &(0x7f0000001600)=@info={r2, 0x7, 0xfffffffffffff761}, 0x8000) clock_nanosleep$auto(0x2, 0x1000, 0x0, 0x0) connect$auto(0x3, &(0x7f0000000140), 0x55) write$auto(r1, 0x0, 0xffd8) epoll_ctl$auto(0x5, 0x1, 0xffffffffffffffff, 0x0) connect$auto(0x3, 0x0, 0x55) statmount$auto(0x0, &(0x7f0000000180)={0x2, 0x4, 0x9, 0xffffffff, 0x3e, 0x940, 0x7, 0x3, 0x6, 0x2, 0x9, 0xb5, 0x4, 0x803, 0xb0, 0x9, 0x0, 0xb, 0x5, 0x7fffffff, 0xb, 0x4, 0x1, 0xfffffffc, 0x0, 0x10, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x4, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1000, 0x200000000000000, 0x400000, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0xfff, 0x0, 0x800, 0x0, 0x1, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff]}, 0x3fc, 0x81) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r3 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) write$auto(r0, &(0x7f0000000380)='r\xd9X\x89\xefG\xd7\x8a\x9a\xf7\xea;\n\xac\x01\xe3e\x8b{\xf6\xce\xca\xaaY\xb0\xe6Hm\x86\xe0>)\x1c8:t\"_\x86\xeegHh\'\xcb\xf2E\x9d3\t\xf9\x107jG\xe4\bE\x94\xb8/M\x18|8u)\x93S6x\v\x8a\x87n\xee\xadq\x83\xb4\xa2?P{\x84\xfa\\\x9e\x1b7$\x1a\xa4\xb3E\x9f\xc1\xab7\xfb\xf8\xd7\x7fK\xde\xa5YW\xe2\xa0\xb8\xe4Lx\x0f\xf9\xda\xc9\xf4\x11\xdf\x82\x9fdR\xfd\x83\xceR\x12\xd8\xaf|\xe6\x1d\r\"\xe4v\xd7\xe89\xf5K%%\r\xb3\xd4\x1eF\x16', 0x3) 2.434583993s ago: executing program 4 (id=3901): open(&(0x7f0000000240)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x138) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x2, 0x3, 0xa) getsockopt$auto(r0, 0x0, 0x30, 0x0, &(0x7f0000000040)=0xdbb) socket(0xa, 0x3, 0xff) connect$auto(0x3, &(0x7f0000000140), 0x55) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x5, 0x3, 0x19, 0x940, 0x1, 0x3, 0x6, 0x4, 0x80, 0x5, 0x2, 0x9, 0xb0, 0x9, 0x2, 0x3, 0x5, 0x7}, 0x4, 0x81) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000040)={{0x0, 0x0, 0x0, 0x5, &(0x7f0000000240)=[0xaf, 0x100000001], 0x8000, 0x40}, 0x8}, 0x1, 0x9) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), 0xffffffffffffffff) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop7\x00', 0x20203, 0x0) sendmsg$auto_NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000002dc0)={0x0, 0x0, &(0x7f0000002d80)={&(0x7f00000016c0)=ANY=[@ANYBLOB="00060000", @ANYRES16=r1, @ANYBLOB="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"], 0x600}, 0x1, 0x0, 0x0, 0x800}, 0x8000) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) 2.174214836s ago: executing program 0 (id=3904): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), r0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000080), r0) sendmsg$auto_NFSD_CMD_RPC_STATUS_GET(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x126a7608a1c37b4d}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r2, 0x10, 0x70bd27, 0x25dfdbfe, {}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x40004) socket$nl_generic(0x10, 0x3, 0x10) (async) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), r0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000080), r0) (async) sendmsg$auto_NFSD_CMD_RPC_STATUS_GET(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x126a7608a1c37b4d}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r2, 0x10, 0x70bd27, 0x25dfdbfe, {}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x40004) (async) 1.927998316s ago: executing program 0 (id=3907): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x2, 0x5, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x71, 0x0, 0x8) mmap$auto(0x0, 0x400008, 0x95, 0x9b72, 0x4000002, 0x8000) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000240)='/dev/admmidi2\x00', 0x101000, 0x0) ioctl$auto_SNDRV_RAWMIDI_IOCTL_STATUS32(r1, 0xc0245720, 0x0) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040)=[0x8000000000000002], 0x10, &(0x7f00000000c0)={0x0, 0x4e4}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x7fffffff) r2 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x40302, 0x0) ioctl$auto_PROCMAP_QUERY(r2, 0xc0686611, &(0x7f0000000340)={0x18, 0x0, 0x4, 0x1, 0x8, 0x1, 0x0, 0x6, 0x5, 0x200, 0xffff7ffe, 0x80000000, 0x7ff, 0x7, 0x9}) r3 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x7, 0x3, 0x9b76, 0x0, 0x7) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x202000a, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0xffffffffffff0005, 0x19) fgetxattr$auto(0xca, 0x0, 0x0, 0x1) close_range$auto(0x2, 0xfffffffffffff000, 0x2) bpf$auto(0x8000000000000020, 0xffffffffffffffff, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x0) syncfs$auto(0x4) close_range$auto(r2, 0x8, 0xfffffffc) r4 = socket(0x22, 0x2, 0x0) getsockopt$auto(r4, 0x6, 0x1d, 0x0, &(0x7f0000000100)=0x14) r5 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) copy_file_range$auto(r5, &(0x7f0000000140)=0xffff, r5, 0x0, 0xfffffffffffffffc, 0x0) ioctl$auto_PROCMAP_QUERY(r5, 0xc0686611, &(0x7f0000000080)={0x1, 0x8, 0xfffffffffffffffd, 0x6, 0x8000000000000000, 0x4, 0xa0, 0x400, 0x3, 0x10000, 0x2, 0x781919c7, 0x801, 0x1, 0x768700ee}) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000001c0), r5) sendmsg$auto_NL80211_CMD_FRAME_WAIT_CANCEL(r3, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r6, @ANYBLOB="000227bd7000ffdbdf25430000000a0034009e56e90d4f9b0000c793ddee87855b983a1b2d87c78b47ac53fc28790a86b6f6b3db3cb928ee0f9f70b10bd9a02c6e5cf75dd156d665dd1a8b66b028f7e6a324064350fd700a0c3db19e4c5c0e64deb014a65f565b24ca"], 0x20}}, 0x4011) 1.918762113s ago: executing program 4 (id=3908): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x1d, 0x0) fsopen$auto(0x0, 0x1) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) madvise$auto(0x0, 0x2000040080000004, 0xe) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) mprotect$auto(0x1ffff000, 0x100000002, 0x8) mprotect$auto(0x1ffff000, 0x810002, 0x6) 1.844483743s ago: executing program 4 (id=3909): openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000040)='/dev/usbmon26\x00', 0x40000, 0x0) r0 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x20) close_range$auto(0x0, 0xfffffffffffff001, 0x2) socket(0x2, 0x1, 0x0) socket(0x1e, 0x5, 0x0) r1 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) write$auto_urandom_fops_random(r1, &(0x7f00000000c0)="cfbe3858c87cf5713daeab7f9d9d9bb7bcd52ed9669a14daba0a83dc87f67fd550a8889bc512bce1bb2101145526", 0x2e) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x8, 0x1000000016, 0x13, 0x3, 0x400180000000) execveat$auto(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000040)='/dev/usbmon26\x00', 0x40000, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) 1.589118662s ago: executing program 4 (id=3910): open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) mount$auto(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='nfs\x00\x00', 0x200, &(0x7f0000000240)=[0x5, 0x7, 0x994, 0x8, 0x400, 0xcab]) ioperm$auto(0x7, 0x6, 0x3) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x123002, 0x0) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18"], 0x18}, 0x1, 0x0, 0x0, 0x64048001}, 0x80) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$auto(0xc8, 0x8927, 0x5c8d) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)=0x10000) write$auto_snd_pcm_oss_f_reg_pcm_oss(r0, &(0x7f00000001c0)='UO', 0x2) mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x5) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000200", @ANYRES32=0x0, @ANYBLOB="060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a00010000000000000000000600060009000000080003000800000008000400ff"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000002f40), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_GET(r1, &(0x7f0000003080)={0x0, 0x0, &(0x7f0000003040)={&(0x7f0000001b00)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="ffff2b2c9e088fdbdf250b0000001800018014000200776731"], 0x2c}, 0x1, 0x0, 0x0, 0x20004800}, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0xc01) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) prctl$auto(0x1000000001c, 0x497, 0x1, 0x9, 0x80001) setreuid$auto(0x15, 0x5) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsa1\x00', 0x48080, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0x3, 0x67) rename$auto(&(0x7f0000000180)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', &(0x7f0000000300)='v#\xd5\xaf>=\x14\xe6%\xf7\x8a\x8d\x9a\xae\x1a\xd6\xa8\xb8\x1d\xf5(\xb0\x1f\xbd\xcbV\n\"\xe3V\xfeP\xceN\xb2\xc32\xaf\xcc\x80\xfa\xf0\xd4\xd9|\xfe\x03y\xd16\x17\x99R\xca\xe5\xf4\xb4T\xfcv\xfc\xe6\x9cv\a\x00\xc2a\x16\xd1\x8a\x80\x90\x87\xa5s\x10\xed\x93\xd4\x15=\xc0\x1f\x0e\xb0\x18v}\x03!\xf0I\xe3}\x90\x9b\x92[\xfe2<7\xd3\x81\x9a~\xcd\r\x19\x9e\x10(5\xfd\x8b\x82\xd4\xc85\xc3\x93t\t\xd0\x9d\xca^n\xf3\xcb>\x1bO\xcej\xe0\xef\xf2\xd7\xc2}\x18\xd9`AO\x95<\x9aH\vu\xae\xd4\xea\x12\xb8\xd1\n\x01\x83r\x85\xbf*\x18\xa7 S:R\x14\x89Z3\x94\x8bP)') 1.227883633s ago: executing program 0 (id=3911): r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/ext4/sda1/mb_structs_summary\x00', 0xa000, 0x0) read$auto(r0, &(0x7f0000003a80)='/proc/self/net/rpc/nfs4.nametoid/channel\x00', 0x861) read$auto_proc_iter_file_ops_compat_inode(r0, &(0x7f0000000080)=""/245, 0xf5) 1.149220346s ago: executing program 1 (id=3912): mbind$auto(0x0, 0x1, 0x0, &(0x7f0000000000)=0x6466, 0x7, 0x6) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) mbind$auto(0x7fffffffffffffff, 0x10, 0x7bbc, &(0x7f0000000140)=0x80000001, 0x6, 0x952) r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x82081, 0x0) ioctl$auto_IOCTL_VMCI_DATAGRAM_SEND(r0, 0x7ab, 0x81) socket(0x25, 0x1, 0x0) socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x8, 0xdf, 0x2bc000000010, 0x2, 0x8000) socket(0x2, 0x1, 0x106) mmap$auto(0x0, 0x8, 0xfff, 0xeb2, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = socket(0xa, 0x1, 0x84) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x3, 0x9) recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0) recvfrom$auto(0xffffffffffffffff, 0x0, 0x101d0, 0x26e604a3, 0x0, 0x0) close_range$auto(r1, 0xffffffffffffffff, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0x29, 0x2, 0x0) sendmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x7, 0x0, 0x0, 0x0, 0xdd0, 0x5}, 0x3}, 0x10009a6, 0xe2e) socket$nl_generic(0x10, 0x3, 0x10) sysfs$auto(0x2, 0x20, 0x0) fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) 1.142540246s ago: executing program 0 (id=3913): statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x14, 0x940, 0x1ffe0, 0x8003, 0x6, 0x6, 0x7, 0x5, 0x2, 0x9, 0x6, 0x9, 0x2, 0x3, 0x2, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x1fe, 0x7) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) socket(0x2, 0x1, 0x106) shutdown$auto(0x200000003, 0x2) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) 1.005240957s ago: executing program 1 (id=3914): socket$nl_generic(0x10, 0x3, 0x10) openat$auto_stat_fops_(0xffffffffffffff9c, &(0x7f0000001f40)='/sys/kernel/debug/f2fs/status\x00', 0x0, 0x0) sendmsg$auto(0xffffffffffffffff, 0x0, 0xadca) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x2) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) mmap$auto(0x100000001, 0x3, 0x9, 0x73, 0x7, 0xe) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0xcf2a, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x801, 0x84) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) bind$auto(0x3, 0x0, 0x68) sendto$auto(0x3, 0x0, 0x2000f, 0x9, 0x0, 0x1c) mmap$auto(0x0, 0x20009, 0xbec7, 0xeb1, 0x404, 0x8000) setsockopt$auto(0x3, 0x10000000084, 0x85, 0x0, 0x90) sendfile$auto(0xffffffffffffffff, 0x3, 0x0, 0x2) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_TIPC_NL_PEER_REMOVE(r0, 0x0, 0x20) listmount$auto(&(0x7f0000000040)={0x18, 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x0, 0xf4240, 0x0) fcntl$auto(0x8000000000000001, 0x26, 0x8) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r0) 625.283461ms ago: executing program 4 (id=3915): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x123002, 0x0) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x200, 0x3, 0x8, 0xc, 0x2e, 0x0, 0x3}, 0x6f4) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x200, 0x1001, 0x8, 0xf, 0x66b, 0x0, 0x5}, 0x6f4) openat$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/trap_flow_action_cookie\x00', 0x2202, 0x0) read$auto(0x3, 0x0, 0x80) ioctl$auto_SNDCTL_DSP_SUBDIVIDE(r0, 0xc0045009, &(0x7f0000000200)=0x1) socket(0x6, 0x6, 0xe4) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC1\x00', 0x22000, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(r1, 0xc4c85513, &(0x7f00000002c0)={{0x1, 0x6aa, 0x8, 0x80000000, "9fa6bd3912a6fe795b1e253e8ead295ecad66c03788e91c817bd1215eb15efe5cbd990a5f6f521bc43b2348b", 0xe}, 0x1, @iec958={"88adbd25b090183d7c6abae540acfaf7ef6668de02fdee15", "3bf4b56e8b6955761023cee322755d8cd351485e65ce6ab726135bc4fce14aa53fdf754e4fb0a35736c60c69ac5379c162abb30af794b5401dac3240323d22e5f4cc18238e6ce7d1b4002b173025609774f60c46e79474c747ff18c8f516db2bd3b593e8e9279ab464ef253c0195522e47834573e43726be2ebf89bd7c50711d27709720687ef92aee1af6ea120cb225a05f11", 0x0, "e98b1e81"}, "fade247f7c4212c2fda4ffd7ddb57865384b31aa4e39f5a663d0485b847dcf1a73b5df57689a372699f931d9f1b873320580e01e56e6f22ad02b53ae93d32fe9dd314e6653369d10bd328e00473230bcfd7506e4353707e2e37028bb65307e89a81bb92f102fccdf9ec5890e9342ad4ba2a58ecc8819759ece7f4e241d1e268b"}) ioctl$auto_SNDRV_CTL_IOCTL_TLV_WRITE(r1, 0xc008551b, 0x0) socket(0x2, 0x2, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x1c8340, 0x0) ioctl$auto(r2, 0x40045108, 0x3) setrlimit$auto(0x7, &(0x7f0000001380)={0x5, 0x6}) socket(0x2, 0x1, 0x0) inotify_init1$auto(0x3000000000000) mprotect$auto(0x8, 0x5, 0x5) ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000040)=0x4) 507.544244ms ago: executing program 6 (id=3916): socket$nl_generic(0x10, 0x3, 0x10) openat$auto_stat_fops_(0xffffffffffffff9c, &(0x7f0000001f40)='/sys/kernel/debug/f2fs/status\x00', 0x0, 0x0) sendmsg$auto(0xffffffffffffffff, 0x0, 0xadca) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x2) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) mmap$auto(0x100000001, 0x3, 0x9, 0x73, 0x7, 0xe) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) (fail_nth: 1) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0xcf2a, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x801, 0x84) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) bind$auto(0x3, 0x0, 0x68) sendto$auto(0x3, 0x0, 0x2000f, 0x9, 0x0, 0x1c) mmap$auto(0x0, 0x20009, 0xbec7, 0xeb1, 0x404, 0x8000) setsockopt$auto(0x3, 0x10000000084, 0x85, 0x0, 0x90) sendfile$auto(0xffffffffffffffff, 0x3, 0x0, 0x2) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_TIPC_NL_PEER_REMOVE(r0, 0x0, 0x20) listmount$auto(&(0x7f0000000040)={0x18, 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x0, 0xf4240, 0x0) fcntl$auto(0x8000000000000001, 0x26, 0x8) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r0) 360.379476ms ago: executing program 1 (id=3917): open(&(0x7f0000000240)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x138) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x2, 0x3, 0xa) getsockopt$auto(r0, 0x0, 0x30, 0x0, &(0x7f0000000040)=0xdbb) socket(0xa, 0x3, 0xff) connect$auto(0x3, &(0x7f0000000140), 0x55) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x5, 0x3, 0x19, 0x940, 0x1, 0x3, 0x6, 0x4, 0x80, 0x5, 0x2, 0x9, 0xb0, 0x9, 0x2, 0x3, 0x5, 0x7}, 0x4, 0x81) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000040)={{0x0, 0x0, 0x0, 0x5, &(0x7f0000000240)=[0xaf, 0x100000001], 0x8000, 0x40}, 0x8}, 0x1, 0x9) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), 0xffffffffffffffff) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop7\x00', 0x20203, 0x0) sendmsg$auto_NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000002dc0)={0x0, 0x0, &(0x7f0000002d80)={&(0x7f00000016c0)=ANY=[@ANYBLOB="00060000", @ANYRES16=r1, @ANYBLOB="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"], 0x600}, 0x1, 0x0, 0x0, 0x800}, 0x8000) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) 249.735326ms ago: executing program 1 (id=3918): r0 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x189002, 0x0) mprotect$auto(0x1ffff000, 0x8000000001000001, 0xd) write$auto_configfs_file_operations_configfs_internal(r0, 0x0, 0x0) 173.002867ms ago: executing program 1 (id=3919): statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x401bf, 0x7352, 0x40, 0x65f, 0x1ffde, 0x7, 0x3, 0x2, 0x9, 0x3, 0x5, 0x4, 0x3000, 0x9, 0x6, 0x10003, 0x80, 0x4, 0x0, 0x7, 0x1ffc, 0x203, 0x400, 0x84, [0x0, 0x0, 0x0, 0x100, 0x0, 0x2000, 0xfffffffffffffffd, 0xa, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0x0, 0x3, 0x1, 0x4, 0x7, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x200000000000, 0x0, 0xffffffffefffffff, 0x3, 0x0, 0x0, 0x2, 0xfffffffffffffffd, 0x400000000005b8, 0xc, 0x4000000000, 0x8, 0x4, 0x6, 0xffffffffffffffff, 0x890, 0x800000000000a, 0xfffffffffffffffc, 0x1000, 0xa38, 0x0, 0x0, 0xfffffffffffffffc, 0x2, 0x4000000000, 0x6, 0x0, 0x100000]}, 0x1fe, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 147.30709ms ago: executing program 0 (id=3920): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) (async) io_uring_setup$auto(0x59, 0x0) r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000080)={&(0x7f0000000280)={0xd4, r0, 0x400, 0x70bd2d, 0x25dfdbfe, {}, [@NL80211_ATTR_S1G_CAPABILITY_MASK={0x5a, 0x129, "2c9d5f76c6bec03f1b057129c11900d002233e770ddc5d94b80997bd345340b78c8873d5754edbbdff1769b368ec178bcb9195b2e99250949cba7b61d8d191a71a9bc6bbe4e3957b4a5a275580c4af2d4beea93449f3"}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x9}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "046464cec10ad6528f79bccf9bf1b2a601823edb0541b180"}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0x7}, @NL80211_ATTR_BEACON_INTERVAL={0x8, 0xc, 0x17}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xa63f}, @NL80211_ATTR_SSID={0xc, 0x34, "46006b577cb9910f"}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x7}, @NL80211_ATTR_HT_CAPABILITY={0xf, 0x1f, "89fd1069831156b3594811"}]}, 0xd4}, 0x1, 0x0, 0x0, 0x4040080}, 0x2004004) (async) socket(0xf, 0x3, 0x2) (async) bpf$auto(0x0, &(0x7f0000000100)=@link_create={@prog_fd=0x1, @target_fd=0xa, 0x3, 0x8, @tracing={0x4, 0xffffffff}}, 0xfbf) (async) bpf$auto(0x1, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc) 68.281929ms ago: executing program 1 (id=3921): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="5e0027617c36720add70ab0343990f7d0bbc96dc0b"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) read$auto(r0, &(0x7f0000000040)='\x00', 0x10001) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) ppoll$auto(0x0, 0x1, 0x0, 0x0, 0x8) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10000010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB, @ANYBLOB="19"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 0s ago: executing program 0 (id=3922): r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/manager\x00', 0x2, 0x0) r1 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_IEEE802154_LLSEC_LIST_DEVKEY(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x2c, r1, 0x405, 0x70bd2c, 0x25dfdbfb, {}, [@IEEE802154_ATTR_SCAN_TYPE={0x5, 0x13, 0x6}, @IEEE802154_ATTR_LBT_ENABLED={0x5, 0x22, 0x1}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5, 0x37, 0x84}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24004004}, 0x20044800) write$auto_tomoyo_operations_securityfs_if(r0, &(0x7f00000000c0)="0a1b9a5c2a0f8262cd1aec49ec53c2efa01492586e163bb154d7886d8ea5c2574c58e9867ecec3371cadb848770dc8f745b2c76eedba12b9f694dabdbcf3401910bb733aca465c9bd40a", 0x4a) kernel console output (not intermixed with test programs): ridge_slave_1) entered disabled state [ 527.711005][T15416] bridge_slave_1: entered allmulticast mode [ 527.733072][T15416] bridge_slave_1: entered promiscuous mode [ 527.827236][T15416] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 527.854085][T15461] FAULT_INJECTION: forcing a failure. [ 527.854085][T15461] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 527.873260][T15416] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 527.882656][T15461] CPU: 0 UID: 0 PID: 15461 Comm: syz.0.2788 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 527.894215][T15461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 527.904315][T15461] Call Trace: [ 527.907644][T15461] [ 527.910698][T15461] dump_stack_lvl+0x16c/0x1f0 [ 527.915452][T15461] should_fail_ex+0x497/0x5b0 [ 527.920274][T15461] _copy_to_user+0x32/0xd0 [ 527.924745][T15461] simple_read_from_buffer+0xd0/0x160 [ 527.930631][T15461] proc_fail_nth_read+0x198/0x270 [ 527.935815][T15461] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 527.942395][T15461] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 527.948178][T15461] vfs_read+0x1df/0xbe0 [ 527.952570][T15461] ? __fget_files+0x1fc/0x3a0 [ 527.958428][T15461] ? __pfx___mutex_lock+0x10/0x10 [ 527.963681][T15461] ? __pfx_vfs_read+0x10/0x10 [ 527.968501][T15461] ? __fget_files+0x206/0x3a0 [ 527.973670][T15461] ksys_read+0x12b/0x250 [ 527.978234][T15461] ? __pfx_ksys_read+0x10/0x10 [ 527.983141][T15461] do_syscall_64+0xcd/0x250 [ 527.987795][T15461] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 527.993741][T15461] RIP: 0033:0x7f1eef58472c [ 527.998196][T15461] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 528.018305][T15461] RSP: 002b:00007f1ef0442030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 528.026858][T15461] RAX: ffffffffffffffda RBX: 00007f1eef775fa0 RCX: 00007f1eef58472c [ 528.034921][T15461] RDX: 000000000000000f RSI: 00007f1ef04420a0 RDI: 0000000000000004 [ 528.042936][T15461] RBP: 00007f1ef0442090 R08: 0000000000000000 R09: 0000000000000000 [ 528.051216][T15461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 528.059482][T15461] R13: 0000000000000000 R14: 00007f1eef775fa0 R15: 00007ffc98122768 [ 528.067520][T15461] [ 528.138075][T15416] team0: Port device team_slave_0 added [ 528.161595][T15416] team0: Port device team_slave_1 added [ 528.243971][T15467] FAULT_INJECTION: forcing a failure. [ 528.243971][T15467] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 528.260619][T15416] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 528.267812][T15416] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 528.295871][T15467] CPU: 0 UID: 0 PID: 15467 Comm: syz.0.2791 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 528.307593][T15467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 528.317865][T15467] Call Trace: [ 528.321170][T15467] [ 528.321172][T15416] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 528.321193][T15467] dump_stack_lvl+0x16c/0x1f0 [ 528.337267][T15416] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 528.340402][T15467] should_fail_ex+0x497/0x5b0 [ 528.340441][T15467] strncpy_from_user+0x3b/0x2d0 [ 528.340471][T15467] getname_flags.part.0+0x8f/0x550 [ 528.347624][T15416] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 528.352155][T15467] getname+0x8d/0xe0 [ 528.352184][T15467] do_sys_openat2+0x104/0x1e0 [ 528.352216][T15467] ? __pfx_do_sys_openat2+0x10/0x10 [ 528.352250][T15467] ? __fget_files+0x206/0x3a0 [ 528.352282][T15467] __x64_sys_openat+0x175/0x210 [ 528.352316][T15467] ? __pfx___x64_sys_openat+0x10/0x10 [ 528.352348][T15467] ? ksys_write+0x1ba/0x250 [ 528.352385][T15467] do_syscall_64+0xcd/0x250 [ 528.352416][T15467] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 528.352445][T15467] RIP: 0033:0x7f1eef585d19 [ 528.352467][T15467] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 528.352491][T15467] RSP: 002b:00007f1ef0442038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 528.352524][T15467] RAX: ffffffffffffffda RBX: 00007f1eef775fa0 RCX: 00007f1eef585d19 [ 528.352542][T15467] RDX: 0000000000020100 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 528.352559][T15467] RBP: 00007f1ef0442090 R08: 0000000000000000 R09: 0000000000000000 [ 528.352576][T15467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 528.352592][T15467] R13: 0000000000000001 R14: 00007f1eef775fa0 R15: 00007ffc98122768 [ 528.352626][T15467] [ 528.539782][ T5843] Bluetooth: hci1: command tx timeout [ 528.548536][T15416] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 528.634165][T15416] hsr_slave_0: entered promiscuous mode [ 528.643459][T15416] hsr_slave_1: entered promiscuous mode [ 528.684424][T15416] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 528.699496][T15416] Cannot create hsr debugfs directory [ 529.045791][T15416] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 529.219830][T15416] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 529.300143][T15416] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 529.417945][T15416] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 529.606061][T15488] FAULT_INJECTION: forcing a failure. [ 529.606061][T15488] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 529.610105][T15416] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 529.636383][T15488] CPU: 0 UID: 0 PID: 15488 Comm: syz.0.2799 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 529.642862][T15416] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 529.647357][T15488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 529.664611][T15488] Call Trace: [ 529.668095][T15488] [ 529.671158][T15488] dump_stack_lvl+0x16c/0x1f0 [ 529.676150][T15488] should_fail_ex+0x497/0x5b0 [ 529.681057][T15488] _copy_from_user+0x2e/0xd0 [ 529.685699][T15488] move_addr_to_kernel+0x68/0x160 [ 529.690856][T15488] __copy_msghdr+0x386/0x470 [ 529.695489][T15488] copy_msghdr_from_user+0xc2/0x160 [ 529.701257][T15488] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 529.707098][T15488] ? __lock_acquire+0xcc5/0x3c40 [ 529.712512][T15488] ___sys_sendmsg+0xff/0x1e0 [ 529.717207][T15488] ? __pfx____sys_sendmsg+0x10/0x10 [ 529.722456][T15488] ? trace_lock_acquire+0x14e/0x1f0 [ 529.727783][T15488] __sys_sendmmsg+0x201/0x420 [ 529.732480][T15488] ? __pfx___sys_sendmmsg+0x10/0x10 [ 529.737900][T15488] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 529.743901][T15488] ? fput+0x67/0x440 [ 529.747911][T15488] ? ksys_write+0x1ba/0x250 [ 529.752709][T15488] ? __pfx_ksys_write+0x10/0x10 [ 529.757659][T15488] __x64_sys_sendmmsg+0x9c/0x100 [ 529.762619][T15488] ? lockdep_hardirqs_on+0x7c/0x110 [ 529.767837][T15488] do_syscall_64+0xcd/0x250 [ 529.772430][T15488] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 529.778650][T15488] RIP: 0033:0x7f1eef585d19 [ 529.783370][T15488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 529.803905][T15488] RSP: 002b:00007f1ef0442038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 529.812435][T15488] RAX: ffffffffffffffda RBX: 00007f1eef775fa0 RCX: 00007f1eef585d19 [ 529.820966][T15488] RDX: 00000000ffffffff RSI: 0000000020000140 RDI: 0000000000000003 [ 529.829180][T15488] RBP: 00007f1ef0442090 R08: 0000000000000000 R09: 0000000000000000 [ 529.837784][T15488] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001 [ 529.845824][T15488] R13: 0000000000000000 R14: 00007f1eef775fa0 R15: 00007ffc98122768 [ 529.854574][T15488] [ 529.870129][T15416] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 529.880329][T15416] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 530.092791][T15416] 8021q: adding VLAN 0 to HW filter on device bond0 [ 530.121007][T15416] 8021q: adding VLAN 0 to HW filter on device team0 [ 530.144639][ T3568] bridge0: port 1(bridge_slave_0) entered blocking state [ 530.152051][ T3568] bridge0: port 1(bridge_slave_0) entered forwarding state [ 530.183456][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 530.190669][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 530.518689][T15500] lo: entered promiscuous mode [ 530.577926][T15500] lo: left promiscuous mode [ 530.599555][ T5843] Bluetooth: hci1: command tx timeout [ 530.601271][T15500] smc: net device syz_tun applied user defined pnetid ETHTOOL [ 530.647706][T15416] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 531.019067][T15520] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2809'. [ 531.118688][T15416] veth0_vlan: entered promiscuous mode [ 531.130691][T15416] veth1_vlan: entered promiscuous mode [ 531.165088][T15416] veth0_macvtap: entered promiscuous mode [ 531.178590][T15416] veth1_macvtap: entered promiscuous mode [ 531.204766][T15416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 531.225699][T15416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 531.250843][T15416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 531.279610][T15416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 531.290399][T15416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 531.301799][T15416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 531.314158][T15416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 531.324870][T15416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 531.336219][T15416] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 531.357343][T15416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 531.379242][T15416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 531.391869][T15416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 531.409941][T15416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 531.439636][T15416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 531.459551][T15416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 531.479965][T15416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 531.509480][T15416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 531.540680][T15416] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 531.573268][T15416] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 531.599901][T15416] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 531.618904][T15416] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 531.639137][T15416] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 531.810984][ T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 531.819149][ T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 531.904324][ T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 531.921851][ T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 532.516580][T15539] FAULT_INJECTION: forcing a failure. [ 532.516580][T15539] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 532.545363][T15539] CPU: 0 UID: 0 PID: 15539 Comm: syz.0.2815 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 532.556490][T15539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 532.566762][T15539] Call Trace: [ 532.570170][T15539] [ 532.573143][T15539] dump_stack_lvl+0x16c/0x1f0 [ 532.578330][T15539] should_fail_ex+0x497/0x5b0 [ 532.583423][T15539] strncpy_from_user+0x3b/0x2d0 [ 532.588340][T15539] getname_flags.part.0+0x8f/0x550 [ 532.593515][T15539] __x64_sys_rmdir+0xb0/0x110 [ 532.598948][T15539] do_syscall_64+0xcd/0x250 [ 532.603516][T15539] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 532.609818][T15539] RIP: 0033:0x7f1eef585d19 [ 532.615493][T15539] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 532.638132][T15539] RSP: 002b:00007f1ef0442038 EFLAGS: 00000246 ORIG_RAX: 0000000000000054 [ 532.647437][T15539] RAX: ffffffffffffffda RBX: 00007f1eef775fa0 RCX: 00007f1eef585d19 [ 532.655543][T15539] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000100 [ 532.663892][T15539] RBP: 00007f1ef0442090 R08: 0000000000000000 R09: 0000000000000000 [ 532.673203][T15539] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 532.682397][T15539] R13: 0000000000000000 R14: 00007f1eef775fa0 R15: 00007ffc98122768 [ 532.691143][T15539] [ 532.818561][ T5843] Bluetooth: hci1: command tx timeout [ 533.030004][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 533.043793][ T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!! [ 533.056072][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 533.066279][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 533.077512][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 533.214328][T15555] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2820'. [ 533.239738][T15555] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 533.471960][T15555] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 534.013300][T15567] FAULT_INJECTION: forcing a failure. [ 534.013300][T15567] name failslab, interval 1, probability 0, space 0, times 0 [ 534.036870][T15567] CPU: 1 UID: 0 PID: 15567 Comm: syz.6.2822 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 534.047809][T15567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 534.058088][T15567] Call Trace: [ 534.061396][T15567] [ 534.064356][T15567] dump_stack_lvl+0x16c/0x1f0 [ 534.069698][T15567] should_fail_ex+0x497/0x5b0 [ 534.074698][T15567] ? fs_reclaim_acquire+0xae/0x150 [ 534.080039][T15567] should_failslab+0xc2/0x120 [ 534.087298][T15567] __kmalloc_noprof+0xce/0x4f0 [ 534.092389][T15567] ? do_sys_poll+0x24b/0xde0 [ 534.097026][T15567] do_sys_poll+0x24b/0xde0 [ 534.101684][T15567] ? __pfx_mark_lock+0x10/0x10 [ 534.106776][T15567] ? __pfx_do_sys_poll+0x10/0x10 [ 534.111958][T15567] ? __pfx___lock_acquire+0x10/0x10 [ 534.117248][T15567] ? __mutex_unlock_slowpath+0x164/0x690 [ 534.123311][T15567] ? set_user_sigmask+0x217/0x2a0 [ 534.129212][T15567] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 534.135238][T15567] ? __pfx_set_user_sigmask+0x10/0x10 [ 534.140944][T15567] ? __fget_files+0x206/0x3a0 [ 534.146255][T15567] __x64_sys_ppoll+0x25a/0x2d0 [ 534.151212][T15567] ? __pfx___x64_sys_ppoll+0x10/0x10 [ 534.156883][T15567] ? ksys_write+0x1ba/0x250 [ 534.161411][T15567] ? __pfx_ksys_write+0x10/0x10 [ 534.166292][T15567] do_syscall_64+0xcd/0x250 [ 534.171006][T15567] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 534.177450][T15567] RIP: 0033:0x7f5ecef85d19 [ 534.182068][T15567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 534.202085][T15567] RSP: 002b:00007f5ecfe56038 EFLAGS: 00000246 ORIG_RAX: 000000000000010f [ 534.211584][T15567] RAX: ffffffffffffffda RBX: 00007f5ecf175fa0 RCX: 00007f5ecef85d19 [ 534.219579][T15567] RDX: 0000000000000000 RSI: 000000000000007f RDI: 0000000020000140 [ 534.228384][T15567] RBP: 00007f5ecfe56090 R08: 0000000000000008 R09: 0000000000000000 [ 534.237593][T15567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 534.246286][T15567] R13: 0000000000000000 R14: 00007f5ecf175fa0 R15: 00007ffee458c518 [ 534.254318][T15567] [ 534.452067][T15572] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2832'. [ 534.482527][T15572] IPv6: NLM_F_CREATE should be specified when creating new route [ 534.505514][T15572] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 534.512960][T15572] IPv6: NLM_F_CREATE should be set when creating new route [ 534.520475][T15572] IPv6: NLM_F_CREATE should be set when creating new route [ 534.837983][ T5843] Bluetooth: hci1: command tx timeout [ 535.043660][T15589] Unable to find swap-space signature [ 536.917606][T15600] FAULT_INJECTION: forcing a failure. [ 536.917606][T15600] name failslab, interval 1, probability 0, space 0, times 0 [ 536.950919][T15604] FAULT_INJECTION: forcing a failure. [ 536.950919][T15604] name failslab, interval 1, probability 0, space 0, times 0 [ 536.963863][T15600] CPU: 0 UID: 0 PID: 15600 Comm: syz.6.2834 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 536.974768][T15600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 536.986172][T15600] Call Trace: [ 536.990099][T15600] [ 536.993338][T15600] dump_stack_lvl+0x16c/0x1f0 [ 536.998574][T15600] should_fail_ex+0x497/0x5b0 [ 537.003395][T15600] ? fs_reclaim_acquire+0xae/0x150 [ 537.008559][T15600] should_failslab+0xc2/0x120 [ 537.013290][T15600] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 537.019586][T15600] ? __alloc_skb+0x2b3/0x380 [ 537.024253][T15600] __alloc_skb+0x2b3/0x380 [ 537.028744][T15600] ? __pfx___alloc_skb+0x10/0x10 [ 537.034214][T15600] ? lock_acquire+0x2f/0xb0 [ 537.038883][T15600] netlink_alloc_large_skb+0x69/0x130 [ 537.044324][T15600] netlink_sendmsg+0x689/0xd70 [ 537.049758][T15600] ? __pfx_netlink_sendmsg+0x10/0x10 [ 537.056068][T15600] ____sys_sendmsg+0x9ae/0xb40 [ 537.060974][T15600] ? copy_msghdr_from_user+0x10b/0x160 [ 537.066482][T15600] ? __pfx_____sys_sendmsg+0x10/0x10 [ 537.071909][T15600] ? __lock_acquire+0xcc5/0x3c40 [ 537.077009][T15600] ___sys_sendmsg+0x135/0x1e0 [ 537.081730][T15600] ? __pfx____sys_sendmsg+0x10/0x10 [ 537.086981][T15600] ? trace_lock_acquire+0x14e/0x1f0 [ 537.092309][T15600] __sys_sendmmsg+0x201/0x420 [ 537.097120][T15600] ? __pfx___sys_sendmmsg+0x10/0x10 [ 537.103220][T15600] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 537.110197][T15600] ? fput+0x67/0x440 [ 537.114296][T15600] ? ksys_write+0x1ba/0x250 [ 537.119366][T15600] ? __pfx_ksys_write+0x10/0x10 [ 537.125061][T15600] __x64_sys_sendmmsg+0x9c/0x100 [ 537.130651][T15600] ? lockdep_hardirqs_on+0x7c/0x110 [ 537.136153][T15600] do_syscall_64+0xcd/0x250 [ 537.140706][T15600] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 537.146998][T15600] RIP: 0033:0x7f5ecef85d19 [ 537.152067][T15600] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 537.172772][T15600] RSP: 002b:00007f5ecfe56038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 537.181923][T15600] RAX: ffffffffffffffda RBX: 00007f5ecf175fa0 RCX: 00007f5ecef85d19 [ 537.190546][T15600] RDX: 0000000000000003 RSI: 0000000020000080 RDI: 0000000000000003 [ 537.198553][T15600] RBP: 00007f5ecfe56090 R08: 0000000000000000 R09: 0000000000000000 [ 537.206715][T15600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 537.214924][T15600] R13: 0000000000000000 R14: 00007f5ecf175fa0 R15: 00007ffee458c518 [ 537.223737][T15600] [ 537.249611][T15604] CPU: 0 UID: 0 PID: 15604 Comm: syz.0.2836 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 537.260554][T15604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 537.270654][T15604] Call Trace: [ 537.274057][T15604] [ 537.277030][T15604] dump_stack_lvl+0x16c/0x1f0 [ 537.282113][T15604] should_fail_ex+0x497/0x5b0 [ 537.287000][T15604] ? fs_reclaim_acquire+0xae/0x150 [ 537.292575][T15604] should_failslab+0xc2/0x120 [ 537.297447][T15604] __kmalloc_cache_noprof+0x68/0x420 [ 537.303357][T15604] ? __mutex_unlock_slowpath+0x164/0x690 [ 537.309199][T15604] resv_map_alloc+0x46/0x400 [ 537.313961][T15604] hugetlbfs_get_inode+0x343/0x740 [ 537.319220][T15604] ? __fget_files+0x206/0x3a0 [ 537.324199][T15604] hugetlb_file_setup+0x15b/0x620 [ 537.329278][T15604] ksys_mmap_pgoff+0x189/0x5c0 [ 537.334100][T15604] __x64_sys_mmap+0x125/0x190 [ 537.339278][T15604] do_syscall_64+0xcd/0x250 [ 537.344003][T15604] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 537.349949][T15604] RIP: 0033:0x7f1eef585d19 [ 537.354510][T15604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 537.374359][T15604] RSP: 002b:00007f1ef0442038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 537.383440][T15604] RAX: ffffffffffffffda RBX: 00007f1eef775fa0 RCX: 00007f1eef585d19 [ 537.391977][T15604] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000 [ 537.396967][T15602] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2835'. [ 537.400657][T15604] RBP: 00007f1ef0442090 R08: 0000000000000401 R09: 0000300000000000 [ 537.400682][T15604] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000001 [ 537.400697][T15604] R13: 0000000000000000 R14: 00007f1eef775fa0 R15: 00007ffc98122768 [ 537.400727][T15604] [ 537.868053][ T29] audit: type=1800 audit(4294967340.860:31): pid=15598 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2833" name="lu_gp_id" dev="configfs" ino=46382 res=0 errno=0 [ 538.140016][T15617] netlink: 342 bytes leftover after parsing attributes in process `syz.6.2841'. [ 538.204284][T15617] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 538.211962][T15617] IPv6: NLM_F_CREATE should be set when creating new route [ 538.219486][T15617] IPv6: NLM_F_CREATE should be set when creating new route [ 538.292521][T15605] kexec: Could not allocate control_code_buffer [ 538.731921][T15629] FAULT_INJECTION: forcing a failure. [ 538.731921][T15629] name failslab, interval 1, probability 0, space 0, times 0 [ 538.748583][T15629] CPU: 1 UID: 0 PID: 15629 Comm: syz.4.2846 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 538.760409][T15629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 538.770514][T15629] Call Trace: [ 538.773999][T15629] [ 538.776972][T15629] dump_stack_lvl+0x16c/0x1f0 [ 538.781703][T15629] should_fail_ex+0x497/0x5b0 [ 538.786778][T15629] ? fs_reclaim_acquire+0xae/0x150 [ 538.792214][T15629] should_failslab+0xc2/0x120 [ 538.797139][T15629] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 538.803353][T15629] ? __alloc_skb+0x2b3/0x380 [ 538.808184][T15629] __alloc_skb+0x2b3/0x380 [ 538.812821][T15629] ? __pfx___alloc_skb+0x10/0x10 [ 538.817800][T15629] ? lock_acquire+0x2f/0xb0 [ 538.822614][T15629] netlink_alloc_large_skb+0x69/0x130 [ 538.828216][T15629] netlink_sendmsg+0x689/0xd70 [ 538.833122][T15629] ? __pfx_netlink_sendmsg+0x10/0x10 [ 538.838464][T15629] ____sys_sendmsg+0x9ae/0xb40 [ 538.843448][T15629] ? copy_msghdr_from_user+0x10b/0x160 [ 538.849048][T15629] ? __pfx_____sys_sendmsg+0x10/0x10 [ 538.854394][T15629] ___sys_sendmsg+0x135/0x1e0 [ 538.859135][T15629] ? __pfx____sys_sendmsg+0x10/0x10 [ 538.864503][T15629] ? __pfx_lock_release+0x10/0x10 [ 538.869597][T15629] ? trace_lock_acquire+0x14e/0x1f0 [ 538.874854][T15629] ? __fget_files+0x206/0x3a0 [ 538.879610][T15629] __sys_sendmsg+0x16e/0x220 [ 538.884254][T15629] ? __pfx___sys_sendmsg+0x10/0x10 [ 538.889617][T15629] do_syscall_64+0xcd/0x250 [ 538.894195][T15629] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 538.900134][T15629] RIP: 0033:0x7fd71ff85d19 [ 538.904678][T15629] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 538.924857][T15629] RSP: 002b:00007fd720e28038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 538.933429][T15629] RAX: ffffffffffffffda RBX: 00007fd720175fa0 RCX: 00007fd71ff85d19 [ 538.941467][T15629] RDX: 0000000000004000 RSI: 0000000020000080 RDI: 0000000000000004 [ 538.949567][T15629] RBP: 00007fd720e28090 R08: 0000000000000000 R09: 0000000000000000 [ 538.957660][T15629] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 538.966628][T15629] R13: 0000000000000000 R14: 00007fd720175fa0 R15: 00007ffec34f5d68 [ 538.968432][T15639] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2848'. [ 538.974720][T15629] [ 539.330362][T15649] FAULT_INJECTION: forcing a failure. [ 539.330362][T15649] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 539.367330][T15649] CPU: 0 UID: 0 PID: 15649 Comm: syz.4.2853 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 539.378188][T15649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 539.388287][T15649] Call Trace: [ 539.391601][T15649] [ 539.394561][T15649] dump_stack_lvl+0x16c/0x1f0 [ 539.399279][T15649] should_fail_ex+0x497/0x5b0 [ 539.404007][T15649] strncpy_from_user+0x3b/0x2d0 [ 539.408925][T15649] getname_flags.part.0+0x8f/0x550 [ 539.414189][T15649] getname+0x8d/0xe0 [ 539.418403][T15649] do_sys_openat2+0x104/0x1e0 [ 539.423131][T15649] ? __pfx_do_sys_openat2+0x10/0x10 [ 539.428401][T15649] ? __fget_files+0x206/0x3a0 [ 539.433138][T15649] __x64_sys_openat+0x175/0x210 [ 539.438055][T15649] ? __pfx___x64_sys_openat+0x10/0x10 [ 539.443489][T15649] ? ksys_write+0x1ba/0x250 [ 539.448359][T15649] do_syscall_64+0xcd/0x250 [ 539.453982][T15649] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 539.459924][T15649] RIP: 0033:0x7fd71ff85d19 [ 539.464388][T15649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 539.484209][T15649] RSP: 002b:00007fd720e28038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 539.492770][T15649] RAX: ffffffffffffffda RBX: 00007fd720175fa0 RCX: 00007fd71ff85d19 [ 539.500959][T15649] RDX: 0000000000040000 RSI: 0000000020000040 RDI: ffffffffffffff9c [ 539.509012][T15649] RBP: 00007fd720e28090 R08: 0000000000000000 R09: 0000000000000000 [ 539.517031][T15649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 539.525140][T15649] R13: 0000000000000000 R14: 00007fd720175fa0 R15: 00007ffec34f5d68 [ 539.533436][T15649] [ 539.669827][T15659] FAULT_INJECTION: forcing a failure. [ 539.669827][T15659] name failslab, interval 1, probability 0, space 0, times 0 [ 539.764994][T15659] CPU: 0 UID: 0 PID: 15659 Comm: syz.6.2857 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 539.776708][T15659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 539.788464][T15659] Call Trace: [ 539.792598][T15659] [ 539.796274][T15659] dump_stack_lvl+0x16c/0x1f0 [ 539.801904][T15659] should_fail_ex+0x497/0x5b0 [ 539.807178][T15659] ? fs_reclaim_acquire+0xae/0x150 [ 539.812759][T15659] should_failslab+0xc2/0x120 [ 539.818153][T15659] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 539.823659][T15659] ? create_new_namespaces+0x30/0xad0 [ 539.829064][T15659] create_new_namespaces+0x30/0xad0 [ 539.834371][T15659] ? bpf_lsm_capable+0x9/0x10 [ 539.839069][T15659] ? security_capable+0x7e/0x260 [ 539.844024][T15659] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 539.849709][T15659] ksys_unshare+0x45d/0xa40 [ 539.854224][T15659] ? __pfx_ksys_unshare+0x10/0x10 [ 539.859258][T15659] ? ksys_write+0x1ba/0x250 [ 539.863867][T15659] __x64_sys_unshare+0x31/0x40 [ 539.868727][T15659] do_syscall_64+0xcd/0x250 [ 539.873338][T15659] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 539.879240][T15659] RIP: 0033:0x7f5ecef85d19 [ 539.883660][T15659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 539.903290][T15659] RSP: 002b:00007f5ecfe56038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 539.911718][T15659] RAX: ffffffffffffffda RBX: 00007f5ecf175fa0 RCX: 00007f5ecef85d19 [ 539.919801][T15659] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 539.928396][T15659] RBP: 00007f5ecfe56090 R08: 0000000000000000 R09: 0000000000000000 [ 539.936395][T15659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 539.944760][T15659] R13: 0000000000000001 R14: 00007f5ecf175fa0 R15: 00007ffee458c518 [ 539.953740][T15659] [ 540.302167][T15675] netlink: 146 bytes leftover after parsing attributes in process `syz.4.2863'. [ 540.911535][T15698] netlink: 11 bytes leftover after parsing attributes in process `syz.1.2869'. [ 541.931982][T15722] FAULT_INJECTION: forcing a failure. [ 541.931982][T15722] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 541.985307][T15722] CPU: 0 UID: 0 PID: 15722 Comm: syz.6.2877 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 541.996850][T15722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 542.006959][T15722] Call Trace: [ 542.010534][T15722] [ 542.013505][T15722] dump_stack_lvl+0x16c/0x1f0 [ 542.018489][T15722] should_fail_ex+0x497/0x5b0 [ 542.023316][T15722] _copy_from_user+0x2e/0xd0 [ 542.028011][T15722] snd_seq_oss_write+0x398/0x7b0 [ 542.033102][T15722] ? __pfx_snd_seq_oss_write+0x10/0x10 [ 542.038634][T15722] ? apparmor_file_permission+0x251/0x400 [ 542.044426][T15722] ? __pfx_odev_write+0x10/0x10 [ 542.049331][T15722] odev_write+0x51/0xa0 [ 542.053807][T15722] vfs_write+0x24c/0x1150 [ 542.059402][T15722] ? __fget_files+0x1fc/0x3a0 [ 542.064205][T15722] ? __pfx_lock_release+0x10/0x10 [ 542.069285][T15722] ? __pfx_vfs_write+0x10/0x10 [ 542.074376][T15722] ? lock_acquire+0x2f/0xb0 [ 542.079711][T15722] ? __fget_files+0x40/0x3a0 [ 542.084643][T15722] ? __fget_files+0x206/0x3a0 [ 542.089383][T15722] ksys_write+0x12b/0x250 [ 542.093772][T15722] ? __pfx_ksys_write+0x10/0x10 [ 542.098687][T15722] do_syscall_64+0xcd/0x250 [ 542.103259][T15722] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 542.109726][T15722] RIP: 0033:0x7f5ecef85d19 [ 542.115228][T15722] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 542.135674][T15722] RSP: 002b:00007f5ecfe56038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 542.144483][T15722] RAX: ffffffffffffffda RBX: 00007f5ecf175fa0 RCX: 00007f5ecef85d19 [ 542.152491][T15722] RDX: 00000000000005e8 RSI: 0000000020000040 RDI: 0000000000000003 [ 542.160767][T15722] RBP: 00007f5ecfe56090 R08: 0000000000000000 R09: 0000000000000000 [ 542.169032][T15722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 542.177235][T15722] R13: 0000000000000000 R14: 00007f5ecf175fa0 R15: 00007ffee458c518 [ 542.185705][T15722] [ 542.225484][T15720] FAULT_INJECTION: forcing a failure. [ 542.225484][T15720] name failslab, interval 1, probability 0, space 0, times 0 [ 542.259454][T15720] CPU: 0 UID: 0 PID: 15720 Comm: syz.4.2880 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 542.270814][T15720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 542.282144][T15720] Call Trace: [ 542.285460][T15720] [ 542.288432][T15720] dump_stack_lvl+0x16c/0x1f0 [ 542.293199][T15720] should_fail_ex+0x497/0x5b0 [ 542.298189][T15720] ? fs_reclaim_acquire+0xae/0x150 [ 542.303527][T15720] should_failslab+0xc2/0x120 [ 542.308312][T15720] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 542.313743][T15720] ? create_new_namespaces+0x30/0xad0 [ 542.319168][T15720] create_new_namespaces+0x30/0xad0 [ 542.324425][T15720] ? bpf_lsm_capable+0x9/0x10 [ 542.329146][T15720] ? security_capable+0x7e/0x260 [ 542.334220][T15720] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 542.339901][T15720] ksys_unshare+0x45d/0xa40 [ 542.344447][T15720] ? __pfx_ksys_unshare+0x10/0x10 [ 542.349607][T15720] ? ksys_write+0x1ba/0x250 [ 542.354161][T15720] __x64_sys_unshare+0x31/0x40 [ 542.359074][T15720] do_syscall_64+0xcd/0x250 [ 542.363623][T15720] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 542.369561][T15720] RIP: 0033:0x7fd71ff85d19 [ 542.374014][T15720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 542.394016][T15720] RSP: 002b:00007fd720e28038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 542.403039][T15720] RAX: ffffffffffffffda RBX: 00007fd720175fa0 RCX: 00007fd71ff85d19 [ 542.411047][T15720] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 542.419063][T15720] RBP: 00007fd720e28090 R08: 0000000000000000 R09: 0000000000000000 [ 542.427075][T15720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 542.435810][T15720] R13: 0000000000000001 R14: 00007fd720175fa0 R15: 00007ffec34f5d68 [ 542.443838][T15720] [ 542.858831][T15732] ptrace attach of "./syz-executor exec"[15416] was attempted by ""[15732] [ 545.039537][T15780] FAULT_INJECTION: forcing a failure. [ 545.039537][T15780] name failslab, interval 1, probability 0, space 0, times 0 [ 545.078590][T15780] CPU: 0 UID: 0 PID: 15780 Comm: syz.0.2900 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 545.091033][T15780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 545.102440][T15780] Call Trace: [ 545.106304][T15780] [ 545.109361][T15780] dump_stack_lvl+0x16c/0x1f0 [ 545.114526][T15780] should_fail_ex+0x497/0x5b0 [ 545.120570][T15780] ? fs_reclaim_acquire+0xae/0x150 [ 545.126149][T15780] should_failslab+0xc2/0x120 [ 545.130975][T15780] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 545.137453][T15780] ? mtree_range_walk+0x715/0xbe0 [ 545.143174][T15780] ? __ksm_enter+0x3c/0x630 [ 545.147788][T15780] __ksm_enter+0x3c/0x630 [ 545.152357][T15780] ? mas_prev_setup.constprop.0+0xb4/0x830 [ 545.158225][T15780] ksm_madvise+0x2d0/0x370 [ 545.162697][T15780] madvise_vma_behavior+0x13d/0x1da0 [ 545.168245][T15780] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 545.174142][T15780] ? find_vma_prev+0xdb/0x160 [ 545.178961][T15780] ? __pfx_find_vma_prev+0x10/0x10 [ 545.184134][T15780] ? do_madvise+0x1ff/0x770 [ 545.188703][T15780] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 545.194576][T15780] madvise_walk_vmas+0x1cf/0x2c0 [ 545.199594][T15780] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 545.205115][T15780] do_madvise+0x30e/0x770 [ 545.209858][T15780] ? __pfx_do_madvise+0x10/0x10 [ 545.215076][T15780] ? ksys_write+0x1ba/0x250 [ 545.219646][T15780] ? __pfx_ksys_write+0x10/0x10 [ 545.224562][T15780] __x64_sys_madvise+0xa9/0x110 [ 545.229765][T15780] ? lockdep_hardirqs_on+0x7c/0x110 [ 545.235453][T15780] do_syscall_64+0xcd/0x250 [ 545.240168][T15780] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 545.247335][T15780] RIP: 0033:0x7f1eef585d19 [ 545.251889][T15780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 545.272108][T15780] RSP: 002b:00007f1ef0442038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 545.280675][T15780] RAX: ffffffffffffffda RBX: 00007f1eef775fa0 RCX: 00007f1eef585d19 [ 545.290404][T15780] RDX: 000000000000000c RSI: 7ffffffffffffffc RDI: 0000000000000000 [ 545.298917][T15780] RBP: 00007f1ef0442090 R08: 0000000000000000 R09: 0000000000000000 [ 545.307629][T15780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 545.315729][T15780] R13: 0000000000000000 R14: 00007f1eef775fa0 R15: 00007ffc98122768 [ 545.324586][T15780] [ 547.591955][T15821] FAULT_INJECTION: forcing a failure. [ 547.591955][T15821] name failslab, interval 1, probability 0, space 0, times 0 [ 547.619480][T15821] CPU: 1 UID: 0 PID: 15821 Comm: syz.4.2909 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 547.630384][T15821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 547.630402][T15821] Call Trace: [ 547.630411][T15821] [ 547.630421][T15821] dump_stack_lvl+0x16c/0x1f0 [ 547.630454][T15821] should_fail_ex+0x497/0x5b0 [ 547.630482][T15821] ? fs_reclaim_acquire+0xae/0x150 [ 547.630509][T15821] should_failslab+0xc2/0x120 [ 547.630541][T15821] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 547.630581][T15821] ? create_new_namespaces+0x30/0xad0 [ 547.630615][T15821] create_new_namespaces+0x30/0xad0 [ 547.630642][T15821] ? bpf_lsm_capable+0x9/0x10 [ 547.630669][T15821] ? security_capable+0x7e/0x260 [ 547.630702][T15821] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 547.630734][T15821] ksys_unshare+0x45d/0xa40 [ 547.702321][T15821] ? __pfx_ksys_unshare+0x10/0x10 [ 547.707666][T15821] ? ksys_write+0x1ba/0x250 [ 547.712229][T15821] __x64_sys_unshare+0x31/0x40 [ 547.717147][T15821] do_syscall_64+0xcd/0x250 [ 547.721704][T15821] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 547.727777][T15821] RIP: 0033:0x7fd71ff85d19 [ 547.732297][T15821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 547.752702][T15821] RSP: 002b:00007fd720e28038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 547.761303][T15821] RAX: ffffffffffffffda RBX: 00007fd720175fa0 RCX: 00007fd71ff85d19 [ 547.769313][T15821] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 547.777402][T15821] RBP: 00007fd720e28090 R08: 0000000000000000 R09: 0000000000000000 [ 547.786507][T15821] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 547.795021][T15821] R13: 0000000000000000 R14: 00007fd720175fa0 R15: 00007ffec34f5d68 [ 547.803031][T15821] [ 549.498355][T15848] ptrace attach of "./syz-executor exec"[10890] was attempted by ""[15848] [ 550.107213][T15854] FAULT_INJECTION: forcing a failure. [ 550.107213][T15854] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 550.159525][T15854] CPU: 0 UID: 0 PID: 15854 Comm: syz.6.2916 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 550.170904][T15854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 550.180995][T15854] Call Trace: [ 550.184290][T15854] [ 550.187329][T15854] dump_stack_lvl+0x16c/0x1f0 [ 550.192041][T15854] should_fail_ex+0x497/0x5b0 [ 550.196755][T15854] _copy_from_user+0x2e/0xd0 [ 550.201430][T15854] copy_msghdr_from_user+0x99/0x160 [ 550.206949][T15854] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 550.212907][T15854] ___sys_sendmsg+0xff/0x1e0 [ 550.217557][T15854] ? __pfx____sys_sendmsg+0x10/0x10 [ 550.222901][T15854] ? __pfx_lock_release+0x10/0x10 [ 550.227978][T15854] ? trace_lock_acquire+0x14e/0x1f0 [ 550.233238][T15854] ? __fget_files+0x206/0x3a0 [ 550.237962][T15854] __sys_sendmsg+0x16e/0x220 [ 550.242613][T15854] ? __pfx___sys_sendmsg+0x10/0x10 [ 550.247789][T15854] do_syscall_64+0xcd/0x250 [ 550.252339][T15854] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 550.258366][T15854] RIP: 0033:0x7f5ecef85d19 [ 550.262809][T15854] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 550.283155][T15854] RSP: 002b:00007f5ecfe56038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 550.291612][T15854] RAX: ffffffffffffffda RBX: 00007f5ecf175fa0 RCX: 00007f5ecef85d19 [ 550.299980][T15854] RDX: 0000000000000010 RSI: 00000000200003c0 RDI: 0000000000000003 [ 550.308424][T15854] RBP: 00007f5ecfe56090 R08: 0000000000000000 R09: 0000000000000000 [ 550.316539][T15854] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 550.324547][T15854] R13: 0000000000000000 R14: 00007f5ecf175fa0 R15: 00007ffee458c518 [ 550.332580][T15854] [ 551.522314][T15884] ptrace attach of "./syz-executor exec"[13615] was attempted by ""[15884] [ 553.402711][T15917] ptrace attach of "./syz-executor exec"[14296] was attempted by ""[15917] [ 553.959317][T15941] FAULT_INJECTION: forcing a failure. [ 553.959317][T15941] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 553.977716][T15941] CPU: 0 UID: 0 PID: 15941 Comm: syz.0.2943 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 553.988529][T15941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 553.998597][T15941] Call Trace: [ 554.001882][T15941] [ 554.004821][T15941] dump_stack_lvl+0x16c/0x1f0 [ 554.009518][T15941] should_fail_ex+0x497/0x5b0 [ 554.014218][T15941] _copy_to_user+0x32/0xd0 [ 554.018658][T15941] simple_read_from_buffer+0xd0/0x160 [ 554.024070][T15941] proc_fail_nth_read+0x198/0x270 [ 554.029126][T15941] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 554.034792][T15941] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 554.040359][T15941] vfs_read+0x1df/0xbe0 [ 554.044530][T15941] ? __fget_files+0x1fc/0x3a0 [ 554.049222][T15941] ? __pfx___mutex_lock+0x10/0x10 [ 554.054271][T15941] ? __pfx_vfs_read+0x10/0x10 [ 554.058977][T15941] ? __fget_files+0x206/0x3a0 [ 554.063677][T15941] ksys_read+0x12b/0x250 [ 554.068020][T15941] ? __pfx_ksys_read+0x10/0x10 [ 554.072852][T15941] do_syscall_64+0xcd/0x250 [ 554.077388][T15941] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 554.083312][T15941] RIP: 0033:0x7f1eef58472c [ 554.087736][T15941] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 554.107708][T15941] RSP: 002b:00007f1ef0442030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 554.116247][T15941] RAX: ffffffffffffffda RBX: 00007f1eef775fa0 RCX: 00007f1eef58472c [ 554.124350][T15941] RDX: 000000000000000f RSI: 00007f1ef04420a0 RDI: 0000000000000004 [ 554.132337][T15941] RBP: 00007f1ef0442090 R08: 0000000000000000 R09: 0000000000000000 [ 554.140430][T15941] R10: 00000000ffffffff R11: 0000000000000246 R12: 0000000000000001 [ 554.148414][T15941] R13: 0000000000000000 R14: 00007f1eef775fa0 R15: 00007ffc98122768 [ 554.156427][T15941] [ 554.746813][T15958] Process accounting resumed [ 554.777270][T15958] bridge0: port 3(team0) entered blocking state [ 554.804109][T15958] bridge0: port 3(team0) entered disabled state [ 554.819749][T15958] team0: entered allmulticast mode [ 554.833305][T15958] team_slave_0: entered allmulticast mode [ 554.854125][T15958] team_slave_1: entered allmulticast mode [ 554.873965][T15958] team0: entered promiscuous mode [ 554.886106][T15958] team_slave_0: entered promiscuous mode [ 554.899744][T15958] team_slave_1: entered promiscuous mode [ 554.914134][T15958] bridge0: port 3(team0) entered blocking state [ 554.920612][T15958] bridge0: port 3(team0) entered forwarding state [ 558.584055][T16048] Process accounting resumed [ 558.619555][T16048] bridge0: port 4(team0) entered blocking state [ 558.625933][T16048] bridge0: port 4(team0) entered disabled state [ 558.648348][T16048] team0: entered allmulticast mode [ 558.653760][T16048] team_slave_0: entered allmulticast mode [ 558.659773][T16048] team_slave_1: entered allmulticast mode [ 558.667097][T16048] team0: entered promiscuous mode [ 558.672432][T16048] team_slave_0: entered promiscuous mode [ 558.678247][T16048] team_slave_1: entered promiscuous mode [ 558.684753][T16048] bridge0: port 4(team0) entered blocking state [ 558.691185][T16048] bridge0: port 4(team0) entered forwarding state [ 559.656098][T16061] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2980'. [ 559.850470][T16066] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2983'. [ 559.888472][T16066] ipvlan1: entered promiscuous mode [ 560.485095][T16075] FAULT_INJECTION: forcing a failure. [ 560.485095][T16075] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 560.519477][T16075] CPU: 1 UID: 0 PID: 16075 Comm: syz.6.2985 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 560.530396][T16075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 560.540481][T16075] Call Trace: [ 560.543800][T16075] [ 560.546758][T16075] dump_stack_lvl+0x16c/0x1f0 [ 560.551474][T16075] should_fail_ex+0x497/0x5b0 [ 560.556200][T16075] _copy_from_user+0x2e/0xd0 [ 560.560827][T16075] copy_msghdr_from_user+0x99/0x160 [ 560.566089][T16075] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 560.571932][T16075] ? __lock_acquire+0xcc5/0x3c40 [ 560.577010][T16075] ___sys_sendmsg+0xff/0x1e0 [ 560.581675][T16075] ? __pfx____sys_sendmsg+0x10/0x10 [ 560.586944][T16075] ? trace_lock_acquire+0x14e/0x1f0 [ 560.592213][T16075] __sys_sendmmsg+0x201/0x420 [ 560.596954][T16075] ? __pfx___sys_sendmmsg+0x10/0x10 [ 560.602203][T16075] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 560.608232][T16075] ? native_tss_update_io_bitmap+0x2ec/0x610 [ 560.614255][T16075] ? __pfx_native_tss_update_io_bitmap+0x10/0x10 [ 560.620614][T16075] ? ksys_write+0x1ba/0x250 [ 560.625152][T16075] ? __pfx_ksys_write+0x10/0x10 [ 560.630045][T16075] __x64_sys_sendmmsg+0x9c/0x100 [ 560.635022][T16075] ? lockdep_hardirqs_on+0x7c/0x110 [ 560.640254][T16075] do_syscall_64+0xcd/0x250 [ 560.644795][T16075] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 560.650724][T16075] RIP: 0033:0x7f5ecef85d19 [ 560.655265][T16075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 560.674912][T16075] RSP: 002b:00007f5ecfe56038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 560.683367][T16075] RAX: ffffffffffffffda RBX: 00007f5ecf175fa0 RCX: 00007f5ecef85d19 [ 560.691408][T16075] RDX: 0000000000000007 RSI: 0000000020000200 RDI: 0000000000000003 [ 560.699411][T16075] RBP: 00007f5ecfe56090 R08: 0000000000000000 R09: 0000000000000000 [ 560.707845][T16075] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 560.715842][T16075] R13: 0000000000000000 R14: 00007f5ecf175fa0 R15: 00007ffee458c518 [ 560.724210][T16075] [ 561.251065][T16081] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2987'. [ 561.498623][T16089] delete_channel: no stack [ 561.768542][T16093] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2988'. [ 563.235241][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.249611][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 563.935800][T16148] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3004'. [ 563.959707][T16148] ipvlan1: entered promiscuous mode [ 565.953006][T16176] FAULT_INJECTION: forcing a failure. [ 565.953006][T16176] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 565.995842][T16176] CPU: 0 UID: 0 PID: 16176 Comm: syz.0.3017 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 566.007119][T16176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 566.017213][T16176] Call Trace: [ 566.020530][T16176] [ 566.023487][T16176] dump_stack_lvl+0x16c/0x1f0 [ 566.028247][T16176] should_fail_ex+0x497/0x5b0 [ 566.032970][T16176] _copy_to_user+0x32/0xd0 [ 566.037444][T16176] simple_read_from_buffer+0xd0/0x160 [ 566.042956][T16176] proc_fail_nth_read+0x198/0x270 [ 566.048022][T16176] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 566.053621][T16176] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 566.059218][T16176] vfs_read+0x1df/0xbe0 [ 566.063411][T16176] ? __fget_files+0x1fc/0x3a0 [ 566.068135][T16176] ? __pfx___mutex_lock+0x10/0x10 [ 566.073266][T16176] ? __pfx_vfs_read+0x10/0x10 [ 566.078115][T16176] ? __fget_files+0x206/0x3a0 [ 566.082852][T16176] ksys_read+0x12b/0x250 [ 566.087140][T16176] ? __pfx_ksys_read+0x10/0x10 [ 566.091967][T16176] do_syscall_64+0xcd/0x250 [ 566.096607][T16176] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 566.102550][T16176] RIP: 0033:0x7f1eef58472c [ 566.107494][T16180] FAULT_INJECTION: forcing a failure. [ 566.107494][T16180] name failslab, interval 1, probability 0, space 0, times 0 [ 566.120853][T16176] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 566.140624][T16176] RSP: 002b:00007f1ef0442030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 566.149262][T16176] RAX: ffffffffffffffda RBX: 00007f1eef775fa0 RCX: 00007f1eef58472c [ 566.157293][T16176] RDX: 000000000000000f RSI: 00007f1ef04420a0 RDI: 0000000000000004 [ 566.165303][T16176] RBP: 00007f1ef0442090 R08: 0000000000000000 R09: 0000000000000000 [ 566.173401][T16176] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 566.181416][T16176] R13: 0000000000000000 R14: 00007f1eef775fa0 R15: 00007ffc98122768 [ 566.189447][T16176] [ 566.192497][T16180] CPU: 1 UID: 0 PID: 16180 Comm: syz.4.3019 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 566.203311][T16180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 566.213391][T16180] Call Trace: [ 566.216692][T16180] [ 566.219717][T16180] dump_stack_lvl+0x16c/0x1f0 [ 566.224417][T16180] should_fail_ex+0x497/0x5b0 [ 566.229126][T16180] ? fs_reclaim_acquire+0xae/0x150 [ 566.234434][T16180] should_failslab+0xc2/0x120 [ 566.239128][T16180] __kmalloc_noprof+0xce/0x4f0 [ 566.243990][T16180] ? d_absolute_path+0x137/0x1b0 [ 566.248944][T16180] ? tomoyo_encode2+0x100/0x3e0 [ 566.254357][T16180] tomoyo_encode2+0x100/0x3e0 [ 566.259078][T16180] tomoyo_realpath_from_path+0x1a7/0x710 [ 566.265083][T16180] tomoyo_path_number_perm+0x248/0x5b0 [ 566.270674][T16180] ? tomoyo_path_number_perm+0x235/0x5b0 [ 566.276334][T16180] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 566.282885][T16180] ? __pfx_lock_release+0x10/0x10 [ 566.287955][T16180] ? trace_lock_acquire+0x14e/0x1f0 [ 566.293470][T16180] ? lock_acquire+0x2f/0xb0 [ 566.297992][T16180] ? __fget_files+0x40/0x3a0 [ 566.302619][T16180] ? __fget_files+0x206/0x3a0 [ 566.307332][T16180] security_file_ioctl+0x9b/0x240 [ 566.312466][T16180] __x64_sys_ioctl+0xb7/0x200 [ 566.317172][T16180] do_syscall_64+0xcd/0x250 [ 566.321708][T16180] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 566.327809][T16180] RIP: 0033:0x7fd71ff85d19 [ 566.332325][T16180] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 566.351985][T16180] RSP: 002b:00007fd720e28038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 566.360410][T16180] RAX: ffffffffffffffda RBX: 00007fd720175fa0 RCX: 00007fd71ff85d19 [ 566.368384][T16180] RDX: 0000000000000038 RSI: 000000000000890b RDI: 0000000000000003 [ 566.376360][T16180] RBP: 00007fd720e28090 R08: 0000000000000000 R09: 0000000000000000 [ 566.384425][T16180] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 566.392403][T16180] R13: 0000000000000000 R14: 00007fd720175fa0 R15: 00007ffec34f5d68 [ 566.400394][T16180] [ 566.819309][T16180] ERROR: Out of memory at tomoyo_realpath_from_path. [ 570.170776][T16224] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3033'. [ 576.098333][T16289] FAULT_INJECTION: forcing a failure. [ 576.098333][T16289] name fail_futex, interval 1, probability 0, space 0, times 1 [ 576.119723][T16289] CPU: 0 UID: 0 PID: 16289 Comm: syz.0.3063 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 576.130662][T16289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 576.140765][T16289] Call Trace: [ 576.144256][T16289] [ 576.147571][T16289] dump_stack_lvl+0x16c/0x1f0 [ 576.152564][T16289] should_fail_ex+0x497/0x5b0 [ 576.157454][T16289] get_futex_key+0x4a3/0x1000 [ 576.162445][T16289] ? __pfx_get_futex_key+0x10/0x10 [ 576.167634][T16289] futex_requeue+0x1e5/0x1eb0 [ 576.172881][T16289] ? trace_lock_acquire+0x14e/0x1f0 [ 576.178315][T16289] ? __pfx_futex_requeue+0x10/0x10 [ 576.183482][T16289] ? ksys_write+0x12b/0x250 [ 576.188649][T16289] ? find_held_lock+0x2d/0x110 [ 576.193837][T16289] ? ksys_write+0x191/0x250 [ 576.198400][T16289] ? __pfx_lock_release+0x10/0x10 [ 576.203931][T16289] ? vfs_write+0x306/0x1150 [ 576.208748][T16289] do_futex+0x1af/0x350 [ 576.214004][T16289] ? __pfx_do_futex+0x10/0x10 [ 576.218923][T16289] __x64_sys_futex+0x1e1/0x4c0 [ 576.224186][T16289] ? fput+0x67/0x440 [ 576.228220][T16289] ? __pfx___x64_sys_futex+0x10/0x10 [ 576.233652][T16289] ? ksys_write+0x1ba/0x250 [ 576.238292][T16289] ? __pfx_ksys_write+0x10/0x10 [ 576.243204][T16289] do_syscall_64+0xcd/0x250 [ 576.247763][T16289] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 576.253708][T16289] RIP: 0033:0x7f1eef585d19 [ 576.258164][T16289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 576.277989][T16289] RSP: 002b:00007f1ef0442038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 576.288110][T16289] RAX: ffffffffffffffda RBX: 00007f1eef775fa0 RCX: 00007f1eef585d19 [ 576.296737][T16289] RDX: 0000000000008243 RSI: 0000000000000003 RDI: 0000000000000000 [ 576.304749][T16289] RBP: 00007f1ef0442090 R08: 0000000000000000 R09: 0000000000000004 [ 576.312907][T16289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 576.320921][T16289] R13: 0000000000000000 R14: 00007f1eef775fa0 R15: 00007ffc98122768 [ 576.329393][T16289] [ 577.799066][T16322] netlink: 338 bytes leftover after parsing attributes in process `syz.6.3068'. [ 578.178654][T16330] netlink: 266 bytes leftover after parsing attributes in process `syz.1.3071'. [ 578.209264][T16330] IPv6: NLM_F_CREATE should be specified when creating new route [ 578.798028][T16354] Process accounting resumed [ 578.826476][T16354] kernel write not supported for file bus/pci/00/01.3 (pid: 16354 comm: syz.6.3080) [ 578.996426][T16354] netlink: 22 bytes leftover after parsing attributes in process `syz.6.3080'. [ 579.256581][T16353] Process accounting resumed [ 579.273085][T16353] kernel write not supported for file bus/pci/00/01.3 (pid: 16353 comm: syz.6.3080) [ 579.401946][T16367] FAULT_INJECTION: forcing a failure. [ 579.401946][T16367] name failslab, interval 1, probability 0, space 0, times 0 [ 579.488398][T16367] CPU: 0 UID: 0 PID: 16367 Comm: syz.0.3085 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 579.499595][T16367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 579.509778][T16367] Call Trace: [ 579.513178][T16367] [ 579.516145][T16367] dump_stack_lvl+0x16c/0x1f0 [ 579.520868][T16367] should_fail_ex+0x497/0x5b0 [ 579.525583][T16367] ? fs_reclaim_acquire+0xae/0x150 [ 579.530741][T16367] should_failslab+0xc2/0x120 [ 579.535913][T16367] __kmalloc_noprof+0xce/0x4f0 [ 579.540724][T16367] ? d_absolute_path+0x137/0x1b0 [ 579.546295][T16367] ? tomoyo_encode2+0x100/0x3e0 [ 579.552107][T16367] tomoyo_encode2+0x100/0x3e0 [ 579.556840][T16367] tomoyo_realpath_from_path+0x1a7/0x710 [ 579.562620][T16367] tomoyo_path_number_perm+0x248/0x5b0 [ 579.568286][T16367] ? tomoyo_path_number_perm+0x235/0x5b0 [ 579.573981][T16367] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 579.580643][T16367] ? __pfx_lock_release+0x10/0x10 [ 579.585828][T16367] ? trace_lock_acquire+0x14e/0x1f0 [ 579.591451][T16367] ? lock_acquire+0x2f/0xb0 [ 579.596970][T16367] ? __fget_files+0x40/0x3a0 [ 579.601887][T16367] ? __fget_files+0x206/0x3a0 [ 579.606968][T16367] security_file_ioctl+0x9b/0x240 [ 579.612405][T16367] __x64_sys_ioctl+0xb7/0x200 [ 579.617414][T16367] do_syscall_64+0xcd/0x250 [ 579.623121][T16367] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 579.629073][T16367] RIP: 0033:0x7f1eef585d19 [ 579.633798][T16367] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 579.653452][T16367] RSP: 002b:00007f1ef0442038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 579.661924][T16367] RAX: ffffffffffffffda RBX: 00007f1eef775fa0 RCX: 00007f1eef585d19 [ 579.670028][T16367] RDX: 0000000000000000 RSI: 0000000000004605 RDI: 0000000000000003 [ 579.678040][T16367] RBP: 00007f1ef0442090 R08: 0000000000000000 R09: 0000000000000000 [ 579.686141][T16367] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 579.694155][T16367] R13: 0000000000000000 R14: 00007f1eef775fa0 R15: 00007ffc98122768 [ 579.702186][T16367] [ 579.919184][T16367] ERROR: Out of memory at tomoyo_realpath_from_path. [ 580.070599][T16376] kernel write not supported for file bus/pci/00/01.3 (pid: 16376 comm: syz.6.3088) [ 580.352007][T16380] kernel write not supported for file bus/pci/00/01.3 (pid: 16380 comm: syz.6.3089) [ 580.573626][T16386] kernel write not supported for file bus/pci/00/01.3 (pid: 16386 comm: syz.6.3092) [ 580.839810][T16387] kernel write not supported for file bus/pci/00/01.3 (pid: 16387 comm: syz.6.3093) [ 581.857161][T16405] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3097'. [ 581.884247][T16405] veth1_macvtap: left promiscuous mode [ 582.458448][T16392] kernel write not supported for file bus/pci/00/01.3 (pid: 16392 comm: syz.6.3094) [ 582.685269][T16421] kernel write not supported for file bus/pci/00/01.3 (pid: 16421 comm: syz.6.3100) [ 582.933173][T16430] kernel write not supported for file bus/pci/00/01.3 (pid: 16430 comm: syz.6.3102) [ 584.176592][T16439] kernel write not supported for file bus/pci/00/01.3 (pid: 16439 comm: syz.6.3103) [ 584.502987][T16454] kernel write not supported for file bus/pci/00/01.3 (pid: 16454 comm: syz.6.3108) [ 584.727297][T16464] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3111'. [ 584.770320][T16464] veth1_macvtap: left promiscuous mode [ 585.004244][T16461] kernel write not supported for file bus/pci/00/01.3 (pid: 16461 comm: syz.6.3111) [ 585.307252][T16471] kernel write not supported for file bus/pci/00/01.3 (pid: 16471 comm: syz.6.3115) [ 585.739910][T16478] kernel write not supported for file bus/pci/00/01.3 (pid: 16478 comm: syz.6.3117) [ 585.997779][T16485] kernel write not supported for file bus/pci/00/01.3 (pid: 16485 comm: syz.6.3117) [ 586.338655][T16494] kernel write not supported for file bus/pci/00/01.3 (pid: 16494 comm: syz.6.3121) [ 587.558442][T16519] FAULT_INJECTION: forcing a failure. [ 587.558442][T16519] name failslab, interval 1, probability 0, space 0, times 0 [ 587.571923][T16519] CPU: 0 UID: 0 PID: 16519 Comm: syz.0.3131 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 587.577296][T16510] kernel write not supported for file bus/pci/00/01.3 (pid: 16510 comm: syz.6.3125) [ 587.584811][T16519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 587.584832][T16519] Call Trace: [ 587.584842][T16519] [ 587.584854][T16519] dump_stack_lvl+0x16c/0x1f0 [ 587.584885][T16519] should_fail_ex+0x497/0x5b0 [ 587.584912][T16519] ? fs_reclaim_acquire+0xae/0x150 [ 587.584939][T16519] should_failslab+0xc2/0x120 [ 587.584970][T16519] __kmalloc_noprof+0xce/0x4f0 [ 587.584997][T16519] ? d_absolute_path+0x137/0x1b0 [ 587.585029][T16519] ? tomoyo_encode2+0x100/0x3e0 [ 587.585063][T16519] tomoyo_encode2+0x100/0x3e0 [ 587.585095][T16519] tomoyo_realpath_from_path+0x1a7/0x710 [ 587.585131][T16519] tomoyo_path_number_perm+0x248/0x5b0 [ 587.585165][T16519] ? tomoyo_path_number_perm+0x235/0x5b0 [ 587.585207][T16519] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 587.585280][T16519] ? __pfx_lock_release+0x10/0x10 [ 587.585317][T16519] ? trace_lock_acquire+0x14e/0x1f0 [ 587.585352][T16519] ? lock_acquire+0x2f/0xb0 [ 587.585373][T16519] ? __fget_files+0x40/0x3a0 [ 587.695229][T16519] ? __fget_files+0x206/0x3a0 [ 587.699938][T16519] security_file_ioctl+0x9b/0x240 [ 587.704971][T16519] __x64_sys_ioctl+0xb7/0x200 [ 587.709664][T16519] do_syscall_64+0xcd/0x250 [ 587.714178][T16519] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 587.720088][T16519] RIP: 0033:0x7f1eef585d19 [ 587.724508][T16519] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 587.744223][T16519] RSP: 002b:00007f1ef0442038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 587.752744][T16519] RAX: ffffffffffffffda RBX: 00007f1eef775fa0 RCX: 00007f1eef585d19 [ 587.760809][T16519] RDX: 0000000020000040 RSI: 000000008008af00 RDI: 0000000000000003 [ 587.768809][T16519] RBP: 00007f1ef0442090 R08: 0000000000000000 R09: 0000000000000000 [ 587.776789][T16519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 587.785312][T16519] R13: 0000000000000000 R14: 00007f1eef775fa0 R15: 00007ffc98122768 [ 587.793669][T16519] [ 587.979520][T16519] ERROR: Out of memory at tomoyo_realpath_from_path. [ 588.627628][T16525] kernel write not supported for file bus/pci/00/01.3 (pid: 16525 comm: syz.6.3140) [ 590.269087][T16534] kernel write not supported for file bus/pci/00/01.3 (pid: 16534 comm: syz.6.3136) [ 590.593251][T16544] kernel write not supported for file bus/pci/00/01.3 (pid: 16544 comm: syz.6.3138) [ 590.788844][ T29] audit: type=1800 audit(4294967299.100:32): pid=16546 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.3139" name="discovery_nqn" dev="configfs" ino=49116 res=0 errno=0 [ 590.916695][T16546] kernel write not supported for file bus/pci/00/01.3 (pid: 16546 comm: syz.6.3139) [ 592.015114][T16547] kernel write not supported for file bus/pci/00/01.3 (pid: 16547 comm: syz.6.3141) [ 593.103997][T16481] kernel write not supported for file bus/pci/00/01.3 (pid: 16481 comm: syz.6.3117) [ 594.803397][T16556] kernel write not supported for file bus/pci/00/01.3 (pid: 16556 comm: syz.6.3143) [ 595.670674][T16598] kernel write not supported for file bus/pci/00/01.3 (pid: 16598 comm: syz.6.3154) [ 597.039679][T16620] CIFS mount error: No usable UNC path provided in device string! [ 597.039679][T16620] [ 597.069891][T16620] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 597.465547][T16607] kernel write not supported for file bus/pci/00/01.3 (pid: 16607 comm: syz.6.3157) [ 597.713820][T16646] FAULT_INJECTION: forcing a failure. [ 597.713820][T16646] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 597.751893][T16646] CPU: 1 UID: 0 PID: 16646 Comm: syz.6.3166 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 597.762732][T16646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 597.772828][T16646] Call Trace: [ 597.776139][T16646] [ 597.779100][T16646] dump_stack_lvl+0x16c/0x1f0 [ 597.783829][T16646] should_fail_ex+0x497/0x5b0 [ 597.788644][T16646] _copy_to_iter+0x29b/0x1400 [ 597.793374][T16646] ? trace_lock_acquire+0x14e/0x1f0 [ 597.798716][T16646] ? __pfx__copy_to_iter+0x10/0x10 [ 597.803871][T16646] ? __virt_addr_valid+0x1a4/0x590 [ 597.809035][T16646] ? __virt_addr_valid+0x5e/0x590 [ 597.814102][T16646] ? __phys_addr_symbol+0x30/0x80 [ 597.819147][T16646] ? __check_object_size+0x488/0x710 [ 597.824467][T16646] seq_read_iter+0xd00/0x12b0 [ 597.829164][T16646] vfs_read+0x87f/0xbe0 [ 597.833432][T16646] ? __pfx_vfs_read+0x10/0x10 [ 597.838239][T16646] ksys_read+0x12b/0x250 [ 597.842590][T16646] ? __pfx_ksys_read+0x10/0x10 [ 597.847486][T16646] do_syscall_64+0xcd/0x250 [ 597.852009][T16646] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 597.858008][T16646] RIP: 0033:0x7f5ecef85d19 [ 597.862976][T16646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 597.883011][T16646] RSP: 002b:00007f5ecfe56038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 597.891480][T16646] RAX: ffffffffffffffda RBX: 00007f5ecf175fa0 RCX: 00007f5ecef85d19 [ 597.899545][T16646] RDX: 00000000000000e5 RSI: 0000000020000080 RDI: 0000000000000003 [ 597.907519][T16646] RBP: 00007f5ecfe56090 R08: 0000000000000000 R09: 0000000000000000 [ 597.915844][T16646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 597.924271][T16646] R13: 0000000000000000 R14: 00007f5ecf175fa0 R15: 00007ffee458c518 [ 597.932317][T16646] [ 598.068876][T16646] kernel write not supported for file bus/pci/00/01.3 (pid: 16646 comm: syz.6.3166) [ 598.540940][T16647] kernel write not supported for file bus/pci/00/01.3 (pid: 16647 comm: syz.6.3167) [ 598.699198][T16662] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3171'. [ 598.874571][T16662] kernel write not supported for file bus/pci/00/01.3 (pid: 16662 comm: syz.6.3171) [ 599.401263][T16672] CIFS mount error: No usable UNC path provided in device string! [ 599.401263][T16672] [ 599.449871][T16672] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 599.601941][T16671] kernel write not supported for file bus/pci/00/01.3 (pid: 16671 comm: syz.6.3173) [ 599.854854][T16688] kernel write not supported for file bus/pci/00/01.3 (pid: 16688 comm: syz.6.3179) [ 599.956301][T16685] kernel write not supported for file bus/pci/00/01.3 (pid: 16685 comm: syz.6.3179) [ 600.968562][T16696] delete_channel: no stack [ 601.008782][T16692] kernel write not supported for file bus/pci/00/01.3 (pid: 16692 comm: syz.6.3180) [ 601.436347][T16706] kernel write not supported for file bus/pci/00/01.3 (pid: 16706 comm: syz.6.3185) [ 601.695523][T16709] kernel write not supported for file bus/pci/00/01.3 (pid: 16709 comm: syz.6.3187) [ 602.493714][T16721] misc userio: The device must be registered before sending interrupts [ 604.650386][T16716] kernel write not supported for file bus/pci/00/01.3 (pid: 16716 comm: syz.6.3188) [ 605.025948][T16738] kernel write not supported for file bus/pci/00/01.3 (pid: 16738 comm: syz.6.3195) [ 605.279161][T16748] kernel write not supported for file bus/pci/00/01.3 (pid: 16748 comm: syz.6.3196) [ 605.441105][T16754] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3197'. [ 605.478416][T16754] macsec0: entered allmulticast mode [ 605.494141][T16754] veth1_macvtap: entered allmulticast mode [ 605.620982][T16758] kernel write not supported for file bus/pci/00/01.3 (pid: 16758 comm: syz.6.3198) [ 605.766332][T16765] kernel write not supported for file bus/pci/00/01.3 (pid: 16765 comm: syz.6.3198) [ 605.903140][T16755] kernel write not supported for file bus/pci/00/01.3 (pid: 16755 comm: syz.6.3198) [ 611.002548][T16808] FAULT_INJECTION: forcing a failure. [ 611.002548][T16808] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 611.046350][T16808] CPU: 0 UID: 0 PID: 16808 Comm: syz.0.3215 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 611.057193][T16808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 611.067289][T16808] Call Trace: [ 611.070589][T16808] [ 611.073541][T16808] dump_stack_lvl+0x16c/0x1f0 [ 611.078253][T16808] should_fail_ex+0x497/0x5b0 [ 611.083068][T16808] _copy_from_user+0x2e/0xd0 [ 611.087878][T16808] restore_altstack+0x94/0x170 [ 611.092754][T16808] ? __pfx_restore_altstack+0x10/0x10 [ 611.098176][T16808] ? _raw_spin_unlock_irq+0x23/0x50 [ 611.103439][T16808] ? lockdep_hardirqs_on+0x7c/0x110 [ 611.108676][T16808] ? _raw_spin_unlock_irq+0x2e/0x50 [ 611.114012][T16808] ? set_current_blocked+0xdd/0x120 [ 611.119238][T16808] __do_sys_rt_sigreturn+0x13d/0x240 [ 611.124561][T16808] ? __pfx___do_sys_rt_sigreturn+0x10/0x10 [ 611.130416][T16808] do_syscall_64+0xcd/0x250 [ 611.134966][T16808] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 611.140908][T16808] RIP: 0033:0x7f1eef521f29 [ 611.145360][T16808] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25 [ 611.165003][T16808] RSP: 002b:00007f1ef0420a80 EFLAGS: 00000246 ORIG_RAX: 000000000000000f [ 611.173460][T16808] RAX: ffffffffffffffda RBX: 00007f1eef776080 RCX: 00007f1eef521f29 [ 611.181455][T16808] RDX: 00007f1ef0420a80 RSI: 00007f1ef0420bb0 RDI: 0000000000000011 [ 611.189431][T16808] RBP: 00007f1ef0421090 R08: 0000000000000009 R09: 0000000000000000 [ 611.197400][T16808] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 611.205373][T16808] R13: 0000000000000000 R14: 00007f1eef776080 R15: 00007ffc98122768 [ 611.213358][T16808] [ 612.062489][T16841] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3221'. [ 612.218345][T16841] veth1_macvtap: left promiscuous mode [ 612.571907][T16856] FAULT_INJECTION: forcing a failure. [ 612.571907][T16856] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 612.586545][T16856] CPU: 0 UID: 0 PID: 16856 Comm: syz.0.3227 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 612.597448][T16856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 612.607538][T16856] Call Trace: [ 612.610841][T16856] [ 612.613801][T16856] dump_stack_lvl+0x16c/0x1f0 [ 612.618523][T16856] should_fail_ex+0x497/0x5b0 [ 612.619658][T16858] netlink: 'syz.1.3225': attribute type 2 has an invalid length. [ 612.623495][T16856] _copy_to_user+0x32/0xd0 [ 612.623572][T16856] cgroup_bpf_prog_query+0x72a/0x12b0 [ 612.623612][T16856] ? __pfx_cgroup_bpf_prog_query+0x10/0x10 [ 612.623645][T16856] ? bpf_lsm_capable+0x9/0x10 [ 612.623676][T16856] ? security_capable+0x7e/0x260 [ 612.623712][T16856] __sys_bpf+0x209d/0x57a0 [ 612.623736][T16856] ? __pfx_lock_release+0x10/0x10 [ 612.623773][T16856] ? __pfx___sys_bpf+0x10/0x10 [ 612.623797][T16856] ? vfs_write+0x306/0x1150 [ 612.623828][T16856] ? __mutex_unlock_slowpath+0x164/0x690 [ 612.682539][T16856] ? fput+0x67/0x440 [ 612.686485][T16856] ? ksys_write+0x1ba/0x250 [ 612.691031][T16856] ? __pfx_ksys_write+0x10/0x10 [ 612.695931][T16856] __x64_sys_bpf+0x78/0xc0 [ 612.700395][T16856] ? lockdep_hardirqs_on+0x7c/0x110 [ 612.705638][T16856] do_syscall_64+0xcd/0x250 [ 612.710191][T16856] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 612.716206][T16856] RIP: 0033:0x7f1eef585d19 [ 612.720658][T16856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 612.740404][T16856] RSP: 002b:00007f1ef0442038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 612.748858][T16856] RAX: ffffffffffffffda RBX: 00007f1eef775fa0 RCX: 00007f1eef585d19 [ 612.756874][T16856] RDX: 0000000000000008 RSI: 00000000200000c0 RDI: 0000000000000010 [ 612.764965][T16856] RBP: 00007f1ef0442090 R08: 0000000000000000 R09: 0000000000000000 [ 612.772990][T16856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 612.781002][T16856] R13: 0000000000000000 R14: 00007f1eef775fa0 R15: 00007ffc98122768 [ 612.789026][T16856] [ 612.829688][T16772] Process accounting paused [ 613.140281][T16871] FAULT_INJECTION: forcing a failure. [ 613.140281][T16871] name failslab, interval 1, probability 0, space 0, times 0 [ 613.186702][T16873] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3235'. [ 613.210256][T16871] CPU: 0 UID: 0 PID: 16871 Comm: syz.0.3233 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 613.221233][T16871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 613.231321][T16871] Call Trace: [ 613.234625][T16871] [ 613.237591][T16871] dump_stack_lvl+0x16c/0x1f0 [ 613.242308][T16871] should_fail_ex+0x497/0x5b0 [ 613.247028][T16871] ? fs_reclaim_acquire+0xae/0x150 [ 613.252203][T16871] should_failslab+0xc2/0x120 [ 613.256930][T16871] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 613.262785][T16871] ? __alloc_skb+0x2b3/0x380 [ 613.267417][T16871] __alloc_skb+0x2b3/0x380 [ 613.271893][T16871] ? __pfx___alloc_skb+0x10/0x10 [ 613.276879][T16871] ? lock_acquire+0x2f/0xb0 [ 613.281556][T16871] netlink_alloc_large_skb+0x69/0x130 [ 613.287047][T16871] netlink_sendmsg+0x689/0xd70 [ 613.291841][T16871] ? __pfx_netlink_sendmsg+0x10/0x10 [ 613.297184][T16871] ____sys_sendmsg+0x9ae/0xb40 [ 613.301981][T16871] ? copy_msghdr_from_user+0x10b/0x160 [ 613.307476][T16871] ? __pfx_____sys_sendmsg+0x10/0x10 [ 613.312815][T16871] ___sys_sendmsg+0x135/0x1e0 [ 613.317535][T16871] ? __pfx____sys_sendmsg+0x10/0x10 [ 613.322792][T16871] ? __pfx_lock_release+0x10/0x10 [ 613.327872][T16871] ? trace_lock_acquire+0x14e/0x1f0 [ 613.333118][T16871] ? __fget_files+0x206/0x3a0 [ 613.337834][T16871] __sys_sendmsg+0x16e/0x220 [ 613.342471][T16871] ? __pfx___sys_sendmsg+0x10/0x10 [ 613.347650][T16871] do_syscall_64+0xcd/0x250 [ 613.352202][T16871] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 613.358128][T16871] RIP: 0033:0x7f1eef585d19 [ 613.362571][T16871] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 613.382305][T16871] RSP: 002b:00007f1ef0442038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 613.390754][T16871] RAX: ffffffffffffffda RBX: 00007f1eef775fa0 RCX: 00007f1eef585d19 [ 613.398749][T16871] RDX: 0000000004004040 RSI: 0000000020000180 RDI: 0000000000000003 [ 613.406754][T16871] RBP: 00007f1ef0442090 R08: 0000000000000000 R09: 0000000000000000 [ 613.414766][T16871] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 613.422778][T16871] R13: 0000000000000000 R14: 00007f1eef775fa0 R15: 00007ffc98122768 [ 613.430799][T16871] [ 613.915197][T16878] netlink: 'syz.6.3236': attribute type 2 has an invalid length. [ 615.022546][T16892] Invalid ELF header magic: != ELF [ 615.541578][T16913] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3249'. [ 615.591385][T16907] netlink: 'syz.0.3247': attribute type 2 has an invalid length. [ 616.815786][T16938] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3259'. [ 618.936970][T16973] Invalid ELF header magic: != ELF [ 619.791353][T17009] FAULT_INJECTION: forcing a failure. [ 619.791353][T17009] name failslab, interval 1, probability 0, space 0, times 0 [ 619.823872][T17009] CPU: 1 UID: 0 PID: 17009 Comm: syz.4.3281 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 619.834704][T17009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 619.844802][T17009] Call Trace: [ 619.848102][T17009] [ 619.851061][T17009] dump_stack_lvl+0x16c/0x1f0 [ 619.855780][T17009] should_fail_ex+0x497/0x5b0 [ 619.860490][T17009] ? fs_reclaim_acquire+0xae/0x150 [ 619.865625][T17009] should_failslab+0xc2/0x120 [ 619.870327][T17009] __kmalloc_noprof+0xce/0x4f0 [ 619.875104][T17009] ? d_absolute_path+0x137/0x1b0 [ 619.880059][T17009] ? tomoyo_encode2+0x100/0x3e0 [ 619.884926][T17009] tomoyo_encode2+0x100/0x3e0 [ 619.889615][T17009] tomoyo_realpath_from_path+0x1a7/0x710 [ 619.895264][T17009] tomoyo_path_number_perm+0x248/0x5b0 [ 619.900733][T17009] ? tomoyo_path_number_perm+0x235/0x5b0 [ 619.906382][T17009] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 619.912488][T17009] ? __pfx_lock_release+0x10/0x10 [ 619.917533][T17009] ? trace_lock_acquire+0x14e/0x1f0 [ 619.922750][T17009] ? lock_acquire+0x2f/0xb0 [ 619.927261][T17009] ? __fget_files+0x40/0x3a0 [ 619.931866][T17009] ? __fget_files+0x206/0x3a0 [ 619.936556][T17009] security_file_ioctl+0x9b/0x240 [ 619.941596][T17009] __x64_sys_ioctl+0xb7/0x200 [ 619.946303][T17009] do_syscall_64+0xcd/0x250 [ 619.950823][T17009] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 619.956726][T17009] RIP: 0033:0x7fd71ff85d19 [ 619.961151][T17009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 619.980777][T17009] RSP: 002b:00007fd720e28038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 619.989380][T17009] RAX: ffffffffffffffda RBX: 00007fd720175fa0 RCX: 00007fd71ff85d19 [ 619.997359][T17009] RDX: 0000000000000000 RSI: 0000000080045017 RDI: 0000000000000003 [ 620.005354][T17009] RBP: 00007fd720e28090 R08: 0000000000000000 R09: 0000000000000000 [ 620.013326][T17009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 620.021303][T17009] R13: 0000000000000000 R14: 00007fd720175fa0 R15: 00007ffec34f5d68 [ 620.029300][T17009] [ 620.185508][T17009] ERROR: Out of memory at tomoyo_realpath_from_path. [ 621.361433][T17041] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3290'. [ 621.393035][T17041] veth1_macvtap: left allmulticast mode [ 621.399038][T17041] veth1_macvtap: left promiscuous mode [ 621.815675][T17045] FAULT_INJECTION: forcing a failure. [ 621.815675][T17045] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 621.858640][T17045] CPU: 1 UID: 0 PID: 17045 Comm: syz.4.3292 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 621.869483][T17045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 621.879569][T17045] Call Trace: [ 621.882871][T17045] [ 621.885823][T17045] dump_stack_lvl+0x16c/0x1f0 [ 621.890558][T17045] should_fail_ex+0x497/0x5b0 [ 621.895274][T17045] _copy_from_user+0x2e/0xd0 [ 621.899898][T17045] copy_msghdr_from_user+0x99/0x160 [ 621.905132][T17045] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 621.910990][T17045] ___sys_sendmsg+0xff/0x1e0 [ 621.915619][T17045] ? __pfx____sys_sendmsg+0x10/0x10 [ 621.920867][T17045] ? __pfx_lock_release+0x10/0x10 [ 621.925931][T17045] ? trace_lock_acquire+0x14e/0x1f0 [ 621.931177][T17045] ? __fget_files+0x206/0x3a0 [ 621.935894][T17045] __sys_sendmsg+0x16e/0x220 [ 621.940521][T17045] ? __pfx___sys_sendmsg+0x10/0x10 [ 621.945684][T17045] do_syscall_64+0xcd/0x250 [ 621.950224][T17045] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 621.956150][T17045] RIP: 0033:0x7fd71ff85d19 [ 621.960591][T17045] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 621.980234][T17045] RSP: 002b:00007fd720e28038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 621.988686][T17045] RAX: ffffffffffffffda RBX: 00007fd720175fa0 RCX: 00007fd71ff85d19 [ 621.996702][T17045] RDX: 0000000004004040 RSI: 0000000020000180 RDI: 0000000000000003 [ 622.004709][T17045] RBP: 00007fd720e28090 R08: 0000000000000000 R09: 0000000000000000 [ 622.012714][T17045] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 622.020735][T17045] R13: 0000000000000000 R14: 00007fd720175fa0 R15: 00007ffec34f5d68 [ 622.028767][T17045] [ 624.679928][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.686525][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 626.117101][T17096] FAULT_INJECTION: forcing a failure. [ 626.117101][T17096] name failslab, interval 1, probability 0, space 0, times 0 [ 626.143834][T17096] CPU: 1 UID: 0 PID: 17096 Comm: syz.4.3309 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 626.154674][T17096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 626.164765][T17096] Call Trace: [ 626.168064][T17096] [ 626.171018][T17096] dump_stack_lvl+0x16c/0x1f0 [ 626.175737][T17096] should_fail_ex+0x497/0x5b0 [ 626.180469][T17096] ? fs_reclaim_acquire+0xae/0x150 [ 626.185633][T17096] should_failslab+0xc2/0x120 [ 626.190349][T17096] __kmalloc_noprof+0xce/0x4f0 [ 626.195146][T17096] ? d_absolute_path+0x137/0x1b0 [ 626.200123][T17096] ? tomoyo_encode2+0x100/0x3e0 [ 626.205012][T17096] tomoyo_encode2+0x100/0x3e0 [ 626.209730][T17096] tomoyo_realpath_from_path+0x1a7/0x710 [ 626.215408][T17096] tomoyo_path_number_perm+0x248/0x5b0 [ 626.220920][T17096] ? tomoyo_path_number_perm+0x235/0x5b0 [ 626.226611][T17096] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 626.232687][T17096] ? __pfx_lock_release+0x10/0x10 [ 626.237775][T17096] ? trace_lock_acquire+0x14e/0x1f0 [ 626.243203][T17096] ? lock_acquire+0x2f/0xb0 [ 626.247740][T17096] ? __fget_files+0x40/0x3a0 [ 626.252376][T17096] ? __fget_files+0x206/0x3a0 [ 626.257083][T17096] security_file_ioctl+0x9b/0x240 [ 626.262121][T17096] __x64_sys_ioctl+0xb7/0x200 [ 626.266824][T17096] do_syscall_64+0xcd/0x250 [ 626.271347][T17096] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 626.277254][T17096] RIP: 0033:0x7fd71ff85d19 [ 626.281676][T17096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 626.301289][T17096] RSP: 002b:00007fd720e28038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 626.309707][T17096] RAX: ffffffffffffffda RBX: 00007fd720175fa0 RCX: 00007fd71ff85d19 [ 626.317779][T17096] RDX: 00000000200000c0 RSI: 00000000810c5701 RDI: 0000000000000003 [ 626.325937][T17096] RBP: 00007fd720e28090 R08: 0000000000000000 R09: 0000000000000000 [ 626.333918][T17096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 626.341897][T17096] R13: 0000000000000000 R14: 00007fd720175fa0 R15: 00007ffec34f5d68 [ 626.349886][T17096] [ 626.401820][T17096] ERROR: Out of memory at tomoyo_realpath_from_path. [ 627.075541][T17118] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3314'. [ 628.534567][T17152] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3325'. [ 628.555179][T17152] bridge0: port 3(batadv0) entered disabled state [ 628.622477][T17152] batadv0 (unregistering): left allmulticast mode [ 628.629947][T17152] batadv0 (unregistering): left promiscuous mode [ 628.638057][T17152] bridge0: port 3(batadv0) entered disabled state [ 628.751122][T17154] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3326'. [ 629.221300][T17164] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 629.239571][T17164] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 630.322161][T17182] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3333'. [ 630.398339][T17185] FAULT_INJECTION: forcing a failure. [ 630.398339][T17185] name failslab, interval 1, probability 0, space 0, times 0 [ 630.423935][T17185] CPU: 0 UID: 0 PID: 17185 Comm: syz.0.3333 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 630.434785][T17185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 630.444892][T17185] Call Trace: [ 630.448194][T17185] [ 630.451150][T17185] dump_stack_lvl+0x16c/0x1f0 [ 630.455877][T17185] should_fail_ex+0x497/0x5b0 [ 630.460597][T17185] ? fs_reclaim_acquire+0xae/0x150 [ 630.465746][T17185] should_failslab+0xc2/0x120 [ 630.470467][T17185] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 630.476318][T17185] ? __alloc_skb+0x2b3/0x380 [ 630.480953][T17185] __alloc_skb+0x2b3/0x380 [ 630.485422][T17185] ? __pfx___alloc_skb+0x10/0x10 [ 630.490400][T17185] ? lock_acquire+0x2f/0xb0 [ 630.494959][T17185] netlink_alloc_large_skb+0x69/0x130 [ 630.500801][T17185] netlink_sendmsg+0x689/0xd70 [ 630.505608][T17185] ? __pfx_netlink_sendmsg+0x10/0x10 [ 630.510938][T17185] ____sys_sendmsg+0x9ae/0xb40 [ 630.515735][T17185] ? copy_msghdr_from_user+0x10b/0x160 [ 630.521234][T17185] ? __pfx_____sys_sendmsg+0x10/0x10 [ 630.526665][T17185] ___sys_sendmsg+0x135/0x1e0 [ 630.531385][T17185] ? __pfx____sys_sendmsg+0x10/0x10 [ 630.536634][T17185] ? __pfx_lock_release+0x10/0x10 [ 630.541702][T17185] ? trace_lock_acquire+0x14e/0x1f0 [ 630.546947][T17185] ? __fget_files+0x206/0x3a0 [ 630.551665][T17185] __sys_sendmsg+0x16e/0x220 [ 630.556291][T17185] ? __pfx___sys_sendmsg+0x10/0x10 [ 630.561459][T17185] do_syscall_64+0xcd/0x250 [ 630.566008][T17185] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 630.571943][T17185] RIP: 0033:0x7f1eef585d19 [ 630.576382][T17185] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 630.596034][T17185] RSP: 002b:00007f1ef0421038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 630.604489][T17185] RAX: ffffffffffffffda RBX: 00007f1eef776080 RCX: 00007f1eef585d19 [ 630.612496][T17185] RDX: 00000000140000e4 RSI: 0000000020000380 RDI: 0000000000000004 [ 630.620495][T17185] RBP: 00007f1ef0421090 R08: 0000000000000000 R09: 0000000000000000 [ 630.628497][T17185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 630.636501][T17185] R13: 0000000000000001 R14: 00007f1eef776080 R15: 00007ffc98122768 [ 630.644525][T17185] [ 633.588152][T17240] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 634.770783][T17258] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3354'. [ 635.120062][T17263] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3355'. [ 635.182642][T17263] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 635.279559][T17263] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 635.345438][T17263] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 635.489458][T17263] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 639.226526][T17327] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3372'. [ 640.788474][T17361] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3382'. [ 641.288342][T17370] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3384'. [ 641.881830][T17388] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3394'. [ 641.902137][T17391] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3393'. [ 641.941609][T17391] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 641.965913][T17391] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 642.713285][T17402] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 642.806815][T17404] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 642.994023][T17412] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3400'. [ 644.769034][T17435] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3406'. [ 644.817288][T17349] Process accounting resumed [ 644.830997][T17349] kernel write not supported for file bus/pci/00/01.3 (pid: 17349 comm: syz.6.3379) [ 644.864893][T17391] kernel write not supported for file bus/pci/00/01.3 (pid: 17391 comm: syz.6.3393) [ 645.335652][T17447] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3411'. [ 645.440597][T17449] FAULT_INJECTION: forcing a failure. [ 645.440597][T17449] name failslab, interval 1, probability 0, space 0, times 0 [ 645.459156][T17439] kernel write not supported for file bus/pci/00/01.3 (pid: 17439 comm: syz.6.3408) [ 645.474643][T17449] CPU: 1 UID: 0 PID: 17449 Comm: syz.4.3412 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 645.485556][T17449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 645.495641][T17449] Call Trace: [ 645.498944][T17449] [ 645.501895][T17449] dump_stack_lvl+0x16c/0x1f0 [ 645.506608][T17449] should_fail_ex+0x497/0x5b0 [ 645.511318][T17449] ? fs_reclaim_acquire+0xae/0x150 [ 645.516461][T17449] should_failslab+0xc2/0x120 [ 645.521175][T17449] __kmalloc_noprof+0xce/0x4f0 [ 645.525991][T17449] ? d_absolute_path+0x137/0x1b0 [ 645.530983][T17449] ? tomoyo_encode2+0x100/0x3e0 [ 645.535879][T17449] tomoyo_encode2+0x100/0x3e0 [ 645.540599][T17449] tomoyo_realpath_from_path+0x1a7/0x710 [ 645.546293][T17449] tomoyo_path_number_perm+0x248/0x5b0 [ 645.551798][T17449] ? tomoyo_path_number_perm+0x235/0x5b0 [ 645.557524][T17449] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 645.563588][T17449] ? __pfx_lock_release+0x10/0x10 [ 645.568652][T17449] ? trace_lock_acquire+0x14e/0x1f0 [ 645.573998][T17449] ? lock_acquire+0x2f/0xb0 [ 645.578532][T17449] ? __fget_files+0x40/0x3a0 [ 645.583168][T17449] ? __fget_files+0x206/0x3a0 [ 645.587892][T17449] security_file_ioctl+0x9b/0x240 [ 645.592960][T17449] __x64_sys_ioctl+0xb7/0x200 [ 645.597694][T17449] do_syscall_64+0xcd/0x250 [ 645.602252][T17449] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 645.608191][T17449] RIP: 0033:0x7fd71ff85d19 [ 645.612655][T17449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 645.632561][T17449] RSP: 002b:00007fd720e28038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 645.641021][T17449] RAX: ffffffffffffffda RBX: 00007fd720175fa0 RCX: 00007fd71ff85d19 [ 645.649032][T17449] RDX: 0000000020000100 RSI: 00000000c05c6104 RDI: 0000000000000003 [ 645.657044][T17449] RBP: 00007fd720e28090 R08: 0000000000000000 R09: 0000000000000000 [ 645.665048][T17449] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 645.673052][T17449] R13: 0000000000000000 R14: 00007fd720175fa0 R15: 00007ffec34f5d68 [ 645.681080][T17449] [ 645.692841][T17449] ERROR: Out of memory at tomoyo_realpath_from_path. [ 646.360799][T17472] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3418'. [ 646.379427][T17472] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 646.399716][T17472] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 646.410561][T17472] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 646.420762][T17472] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 648.405297][T17515] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3437'. [ 650.004056][T17548] netlink: 334 bytes leftover after parsing attributes in process `syz.0.3439'. [ 650.261493][T17563] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3442'. [ 652.402086][T17564] Bluetooth: hci1: command 0x0406 tx timeout [ 652.703154][T17455] kernel write not supported for file bus/pci/00/01.3 (pid: 17455 comm: syz.6.3414) [ 653.373716][T17596] kernel write not supported for file bus/pci/00/01.3 (pid: 17596 comm: syz.6.3447) [ 653.539255][T17603] netlink: 172 bytes leftover after parsing attributes in process `syz.6.3449'. [ 653.596986][T17603] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock [ 653.743180][ T29] audit: type=1800 audit(4294967372.722:33): pid=17611 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3453" name="discovery_nqn" dev="configfs" ino=55353 res=0 errno=0 [ 653.794182][T17603] kernel write not supported for file bus/pci/00/01.3 (pid: 17603 comm: syz.6.3449) [ 653.984389][T17614] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3454'. [ 654.167321][T17625] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3456'. [ 656.286534][T17670] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3466'. [ 656.929088][T17689] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3472'. [ 656.942212][T17685] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3470'. [ 657.355929][T17694] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3473'. [ 658.025828][T17710] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3476'. [ 658.649763][T17716] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3478'. [ 658.875990][T17721] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3480'. [ 659.149768][T17730] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3484'. [ 659.243436][T17733] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3482'. [ 659.599997][T17623] kernel write not supported for file bus/pci/00/01.3 (pid: 17623 comm: syz.6.3455) [ 661.367958][T17755] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3491'. [ 661.928856][T17759] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3492'. [ 663.006811][T17741] kernel write not supported for file bus/pci/00/01.3 (pid: 17741 comm: syz.6.3486) [ 663.512365][T17780] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3500'. [ 663.763336][T17785] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3501'. [ 664.886337][T17795] FAULT_INJECTION: forcing a failure. [ 664.886337][T17795] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 664.913845][T17795] CPU: 0 UID: 0 PID: 17795 Comm: syz.0.3503 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 664.924685][T17795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 664.934778][T17795] Call Trace: [ 664.938083][T17795] [ 664.941040][T17795] dump_stack_lvl+0x16c/0x1f0 [ 664.945760][T17795] should_fail_ex+0x497/0x5b0 [ 664.950473][T17795] _copy_from_user+0x2e/0xd0 [ 664.955114][T17795] copy_from_sockptr_offset.constprop.0+0x106/0x190 [ 664.961768][T17795] ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10 [ 664.968924][T17795] ? __local_bh_enable_ip+0xa4/0x120 [ 664.974243][T17795] ? lockdep_hardirqs_on+0x7c/0x110 [ 664.979479][T17795] do_ipv6_setsockopt+0x28c2/0x4660 [ 664.984719][T17795] ? __pfx_do_ipv6_setsockopt+0x10/0x10 [ 664.990304][T17795] ? __lock_acquire+0xcc5/0x3c40 [ 664.995300][T17795] ? hlock_class+0x4e/0x130 [ 665.000013][T17795] ? mark_lock+0xb5/0xc60 [ 665.004379][T17795] ? aa_label_sk_perm+0x19d/0x5a0 [ 665.009486][T17795] ? __pfx_mark_lock+0x10/0x10 [ 665.014296][T17795] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 665.019746][T17795] ? ipv6_setsockopt+0xcb/0x170 [ 665.024634][T17795] ipv6_setsockopt+0xcb/0x170 [ 665.029350][T17795] rawv6_setsockopt+0xdc/0x700 [ 665.034327][T17795] ? __pfx_rawv6_setsockopt+0x10/0x10 [ 665.040004][T17795] ? sock_common_setsockopt+0x2e/0xf0 [ 665.045422][T17795] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 665.051378][T17795] do_sock_setsockopt+0x222/0x480 [ 665.056441][T17795] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 665.062027][T17795] ? lock_acquire+0x2f/0xb0 [ 665.066571][T17795] __sys_setsockopt+0x1a0/0x230 [ 665.071480][T17795] __x64_sys_setsockopt+0xbd/0x160 [ 665.076738][T17795] ? do_syscall_64+0x91/0x250 [ 665.081460][T17795] ? lockdep_hardirqs_on+0x7c/0x110 [ 665.086711][T17795] do_syscall_64+0xcd/0x250 [ 665.091252][T17795] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 665.097174][T17795] RIP: 0033:0x7f1eef585d19 [ 665.101631][T17795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 665.121460][T17795] RSP: 002b:00007f1ef0442038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 665.130023][T17795] RAX: ffffffffffffffda RBX: 00007f1eef775fa0 RCX: 00007f1eef585d19 [ 665.138037][T17795] RDX: 000000000000001c RSI: 0000000000000029 RDI: 0400000000000003 [ 665.146043][T17795] RBP: 00007f1ef0442090 R08: 000000000000056b R09: 0000000000000000 [ 665.154042][T17795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 665.162049][T17795] R13: 0000000000000000 R14: 00007f1eef775fa0 R15: 00007ffc98122768 [ 665.170075][T17795] [ 665.858805][T17778] kernel write not supported for file bus/pci/00/01.3 (pid: 17778 comm: syz.6.3499) [ 666.136903][T17801] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3504'. [ 666.232914][T17801] kernel write not supported for file bus/pci/00/01.3 (pid: 17801 comm: syz.6.3504) [ 667.357713][T17827] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3513'. [ 668.185423][T17808] kernel write not supported for file bus/pci/00/01.3 (pid: 17808 comm: syz.6.3507) [ 668.534309][T17834] kernel write not supported for file bus/pci/00/01.3 (pid: 17834 comm: syz.6.3515) [ 668.892904][T17835] kernel write not supported for file bus/pci/00/01.3 (pid: 17835 comm: syz.6.3517) [ 669.039708][ T29] audit: type=1800 audit(4294967310.129:34): pid=17841 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.3518" name="discovery_nqn" dev="configfs" ino=55757 res=0 errno=0 [ 669.421746][T17840] kernel write not supported for file bus/pci/00/01.3 (pid: 17840 comm: syz.6.3518) [ 669.611382][T17857] kernel write not supported for file bus/pci/00/01.3 (pid: 17857 comm: syz.6.3522) [ 669.627274][ T29] audit: type=1800 audit(4294967310.719:35): pid=17859 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3523" name="discovery_nqn" dev="configfs" ino=55197 res=0 errno=0 [ 670.580501][T17872] kernel write not supported for file bus/pci/00/01.3 (pid: 17872 comm: syz.6.3525) [ 670.712540][T17892] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3532'. [ 671.642100][T17905] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3533'. [ 672.644346][T17892] kernel write not supported for file bus/pci/00/01.3 (pid: 17892 comm: syz.6.3532) [ 672.986598][T17919] kernel write not supported for file bus/pci/00/01.3 (pid: 17919 comm: syz.6.3538) [ 673.412651][T17927] kernel write not supported for file bus/pci/00/01.3 (pid: 17927 comm: syz.6.3539) [ 673.478992][T17942] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3544'. [ 674.227287][T17956] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3548'. [ 674.327883][T17954] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3555'. [ 674.522904][T17962] FAULT_INJECTION: forcing a failure. [ 674.522904][T17962] name failslab, interval 1, probability 0, space 0, times 0 [ 674.555270][T17962] CPU: 0 UID: 0 PID: 17962 Comm: syz.0.3549 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 674.566106][T17962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 674.576206][T17962] Call Trace: [ 674.579516][T17962] [ 674.582481][T17962] dump_stack_lvl+0x16c/0x1f0 [ 674.587297][T17962] should_fail_ex+0x497/0x5b0 [ 674.592018][T17962] ? fs_reclaim_acquire+0xae/0x150 [ 674.597183][T17962] should_failslab+0xc2/0x120 [ 674.601916][T17962] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 674.607870][T17962] ? __alloc_skb+0x2b3/0x380 [ 674.612517][T17962] __alloc_skb+0x2b3/0x380 [ 674.616986][T17962] ? __pfx___alloc_skb+0x10/0x10 [ 674.621981][T17962] netlink_alloc_large_skb+0x69/0x130 [ 674.627395][T17962] netlink_sendmsg+0x689/0xd70 [ 674.632205][T17962] ? __pfx_netlink_sendmsg+0x10/0x10 [ 674.637541][T17962] ____sys_sendmsg+0x9ae/0xb40 [ 674.642356][T17962] ? copy_msghdr_from_user+0x10b/0x160 [ 674.647870][T17962] ? __pfx_____sys_sendmsg+0x10/0x10 [ 674.653221][T17962] ___sys_sendmsg+0x135/0x1e0 [ 674.657960][T17962] ? __pfx____sys_sendmsg+0x10/0x10 [ 674.663220][T17962] ? __pfx_lock_release+0x10/0x10 [ 674.668302][T17962] ? trace_lock_acquire+0x14e/0x1f0 [ 674.673651][T17962] ? __fget_files+0x206/0x3a0 [ 674.678430][T17962] __sys_sendmsg+0x16e/0x220 [ 674.683077][T17962] ? __pfx___sys_sendmsg+0x10/0x10 [ 674.688269][T17962] do_syscall_64+0xcd/0x250 [ 674.692822][T17962] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 674.698757][T17962] RIP: 0033:0x7f1eef585d19 [ 674.703210][T17962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 674.722950][T17962] RSP: 002b:00007f1ef0442038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 674.731451][T17962] RAX: ffffffffffffffda RBX: 00007f1eef775fa0 RCX: 00007f1eef585d19 [ 674.739469][T17962] RDX: 0000000020000000 RSI: 0000000020000200 RDI: 0000000000000003 [ 674.747478][T17962] RBP: 00007f1ef0442090 R08: 0000000000000000 R09: 0000000000000000 [ 674.755488][T17962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 674.763503][T17962] R13: 0000000000000000 R14: 00007f1eef775fa0 R15: 00007ffc98122768 [ 674.771535][T17962] [ 675.662584][T17974] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3553'. [ 675.721784][T17942] Process accounting paused [ 675.879545][ T29] audit: type=1800 audit(4294967316.949:36): pid=17980 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.3554" name="discovery_nqn" dev="configfs" ino=56575 res=0 errno=0 [ 677.416368][T18018] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3563'. [ 678.510683][ T29] audit: type=1800 audit(4294967319.599:37): pid=18038 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.3568" name="discovery_nqn" dev="configfs" ino=56151 res=0 errno=0 [ 678.854847][T18036] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3567'. [ 679.066637][T18054] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3572'. [ 680.116180][T18071] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3576'. [ 682.168258][T18095] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3582'. [ 682.570328][T18097] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3583'. [ 683.630379][T18112] block nbd21: Unsupported socket: shutdown callout must be supported. [ 684.723920][T18119] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3589'. [ 686.113067][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 686.120822][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 687.133536][T18155] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3596'. [ 687.530398][T18149] block nbd22: Unsupported socket: shutdown callout must be supported. [ 688.225067][T18175] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3603'. [ 689.398993][T18188] FAULT_INJECTION: forcing a failure. [ 689.398993][T18188] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 689.438346][T18188] CPU: 0 UID: 0 PID: 18188 Comm: syz.6.3607 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 689.449176][T18188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 689.459261][T18188] Call Trace: [ 689.462569][T18188] [ 689.465526][T18188] dump_stack_lvl+0x16c/0x1f0 [ 689.470249][T18188] should_fail_ex+0x497/0x5b0 [ 689.474962][T18188] strncpy_from_user+0x3b/0x2d0 [ 689.479932][T18188] getname_flags.part.0+0x8f/0x550 [ 689.485086][T18188] getname+0x8d/0xe0 [ 689.489026][T18188] do_sys_openat2+0x104/0x1e0 [ 689.493843][T18188] ? __pfx_do_sys_openat2+0x10/0x10 [ 689.499092][T18188] ? __fget_files+0x206/0x3a0 [ 689.503816][T18188] __x64_sys_openat+0x175/0x210 [ 689.508718][T18188] ? __pfx___x64_sys_openat+0x10/0x10 [ 689.514217][T18188] ? ksys_write+0x1ba/0x250 [ 689.518763][T18188] do_syscall_64+0xcd/0x250 [ 689.523302][T18188] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 689.529230][T18188] RIP: 0033:0x7f5ecef85d19 [ 689.533669][T18188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 689.553314][T18188] RSP: 002b:00007f5ecfe56038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 689.561760][T18188] RAX: ffffffffffffffda RBX: 00007f5ecf175fa0 RCX: 00007f5ecef85d19 [ 689.569761][T18188] RDX: 0000000000000001 RSI: 0000000020000100 RDI: ffffffffffffff9c [ 689.578109][T18188] RBP: 00007f5ecfe56090 R08: 0000000000000000 R09: 0000000000000000 [ 689.586193][T18188] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 689.594289][T18188] R13: 0000000000000001 R14: 00007f5ecf175fa0 R15: 00007ffee458c518 [ 689.602461][T18188] [ 691.437293][T18241] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3620'. [ 692.158317][ T29] audit: type=1800 audit(4294967333.249:38): pid=18255 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3623" name="discovery_nqn" dev="configfs" ino=58463 res=0 errno=0 [ 693.435653][T18281] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3633'. [ 694.840750][T18321] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3643'. [ 694.842759][T18322] netlink: 138 bytes leftover after parsing attributes in process `syz.0.3641'. [ 695.676986][ T29] audit: type=1800 audit(4294967336.769:39): pid=18332 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3645" name="discovery_nqn" dev="configfs" ino=57761 res=0 errno=0 [ 696.598662][T18350] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3651'. [ 696.666507][ T29] audit: type=1800 audit(4294967337.759:40): pid=18354 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.3653" name="discovery_nqn" dev="configfs" ino=57842 res=0 errno=0 [ 696.965998][T18362] netlink: 138 bytes leftover after parsing attributes in process `syz.1.3654'. [ 698.602368][T18377] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3660'. [ 700.178425][T18407] netlink: 138 bytes leftover after parsing attributes in process `syz.4.3667'. [ 700.396903][T18411] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3668'. [ 701.437303][T18425] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3671'. [ 705.934194][T18489] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3685'. [ 706.500737][T18509] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3691'. [ 706.536073][T18478] Process accounting resumed [ 706.553792][T18478] kernel write not supported for file bus/pci/00/01.3 (pid: 18478 comm: syz.6.3683) [ 706.765161][T18513] kernel write not supported for file bus/pci/00/01.3 (pid: 18513 comm: syz.6.3695) [ 706.898327][ T29] audit: type=1800 audit(4294967347.989:41): pid=18516 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.3696" name="discovery_nqn" dev="configfs" ino=59321 res=0 errno=0 [ 706.995268][T18515] kernel write not supported for file bus/pci/00/01.3 (pid: 18515 comm: syz.6.3696) [ 708.034539][T18519] kernel write not supported for file bus/pci/00/01.3 (pid: 18519 comm: syz.6.3697) [ 711.302204][T18553] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3708'. [ 711.494779][ T29] audit: type=1800 audit(4294967352.589:42): pid=18557 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3710" name="discovery_nqn" dev="configfs" ino=58177 res=0 errno=0 [ 712.327117][T18544] kernel write not supported for file bus/pci/00/01.3 (pid: 18544 comm: syz.6.3699) [ 712.528248][T18577] kernel write not supported for file bus/pci/00/01.3 (pid: 18577 comm: syz.6.3717) [ 712.761984][T18579] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3718'. [ 712.886365][T18577] team0: entered allmulticast mode [ 712.901253][T18577] team_slave_0: entered allmulticast mode [ 712.917647][T18577] team_slave_1: entered allmulticast mode [ 713.157002][T18576] Process accounting resumed [ 714.845693][T18602] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3725'. [ 714.949519][T18592] kexec: Could not allocate control_code_buffer [ 715.012976][T18605] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3726'. [ 715.711957][ T29] audit: type=1800 audit(4294967356.809:43): pid=18620 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3730" name="discovery_nqn" dev="configfs" ino=59577 res=0 errno=0 [ 715.773443][T18617] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3729'. [ 715.885575][T18623] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3731'. [ 716.473968][T18631] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3733'. [ 717.215101][T18641] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 717.669509][T18655] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3741'. [ 718.012827][T18661] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3743'. [ 718.408493][T18671] FAULT_INJECTION: forcing a failure. [ 718.408493][T18671] name failslab, interval 1, probability 0, space 0, times 0 [ 718.433697][T18671] CPU: 1 UID: 0 PID: 18671 Comm: syz.4.3746 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 718.444534][T18671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 718.454626][T18671] Call Trace: [ 718.457924][T18671] [ 718.460877][T18671] dump_stack_lvl+0x16c/0x1f0 [ 718.465606][T18671] should_fail_ex+0x497/0x5b0 [ 718.470336][T18671] ? fs_reclaim_acquire+0xae/0x150 [ 718.475584][T18671] should_failslab+0xc2/0x120 [ 718.480325][T18671] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 718.486195][T18671] ? __alloc_skb+0x2b3/0x380 [ 718.490833][T18671] __alloc_skb+0x2b3/0x380 [ 718.495293][T18671] ? __pfx___alloc_skb+0x10/0x10 [ 718.500291][T18671] netlink_alloc_large_skb+0x69/0x130 [ 718.505712][T18671] netlink_sendmsg+0x689/0xd70 [ 718.510537][T18671] ? __pfx_netlink_sendmsg+0x10/0x10 [ 718.515865][T18671] ____sys_sendmsg+0x9ae/0xb40 [ 718.520661][T18671] ? copy_msghdr_from_user+0x10b/0x160 [ 718.526162][T18671] ? __pfx_____sys_sendmsg+0x10/0x10 [ 718.531494][T18671] ___sys_sendmsg+0x135/0x1e0 [ 718.536211][T18671] ? __pfx____sys_sendmsg+0x10/0x10 [ 718.541469][T18671] ? __pfx_lock_release+0x10/0x10 [ 718.546604][T18671] ? trace_lock_acquire+0x14e/0x1f0 [ 718.551858][T18671] ? __fget_files+0x206/0x3a0 [ 718.556579][T18671] __sys_sendmsg+0x16e/0x220 [ 718.561215][T18671] ? __pfx___sys_sendmsg+0x10/0x10 [ 718.566391][T18671] do_syscall_64+0xcd/0x250 [ 718.570970][T18671] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 718.576941][T18671] RIP: 0033:0x7fd71ff85d19 [ 718.581392][T18671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 718.601043][T18671] RSP: 002b:00007fd720e28038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 718.609504][T18671] RAX: ffffffffffffffda RBX: 00007fd720175fa0 RCX: 00007fd71ff85d19 [ 718.617506][T18671] RDX: 0000000000000800 RSI: 0000000020002a00 RDI: 0000000000000003 [ 718.625523][T18671] RBP: 00007fd720e28090 R08: 0000000000000000 R09: 0000000000000000 [ 718.633533][T18671] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 718.641537][T18671] R13: 0000000000000000 R14: 00007fd720175fa0 R15: 00007ffec34f5d68 [ 718.649645][T18671] [ 718.664512][T18670] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 718.867938][T18674] openvswitch: netlink: Flow key attr not present in new flow. [ 718.991353][T18676] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3747'. [ 720.142181][T18690] kexec: Could not allocate control_code_buffer [ 720.683403][T18706] netlink: 138 bytes leftover after parsing attributes in process `syz.1.3755'. [ 722.835052][T18712] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3757'. [ 722.835519][T18713] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3765'. [ 723.189451][ T29] audit: type=1800 audit(4294967364.279:44): pid=18729 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3761" name="discovery_nqn" dev="configfs" ino=59931 res=0 errno=0 [ 723.702629][T18740] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3767'. [ 723.857309][T18749] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3770'. [ 724.087177][ T29] audit: type=1800 audit(4294967365.179:45): pid=18751 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.3771" name="discovery_nqn" dev="configfs" ino=60017 res=0 errno=0 [ 724.131411][T18755] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3773'. [ 724.315367][T18758] FAULT_INJECTION: forcing a failure. [ 724.315367][T18758] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 724.346552][T18758] CPU: 0 UID: 0 PID: 18758 Comm: syz.0.3774 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 724.357388][T18758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 724.367567][T18758] Call Trace: [ 724.370958][T18758] [ 724.373918][T18758] dump_stack_lvl+0x16c/0x1f0 [ 724.378639][T18758] should_fail_ex+0x497/0x5b0 [ 724.383360][T18758] _copy_to_user+0x32/0xd0 [ 724.387820][T18758] simple_read_from_buffer+0xd0/0x160 [ 724.393239][T18758] proc_fail_nth_read+0x198/0x270 [ 724.398493][T18758] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 724.404108][T18758] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 724.409710][T18758] vfs_read+0x1df/0xbe0 [ 724.413905][T18758] ? __fget_files+0x1fc/0x3a0 [ 724.418632][T18758] ? __pfx___mutex_lock+0x10/0x10 [ 724.424056][T18758] ? __pfx_vfs_read+0x10/0x10 [ 724.429226][T18758] ? __fget_files+0x206/0x3a0 [ 724.434061][T18758] ksys_read+0x12b/0x250 [ 724.438618][T18758] ? __pfx_ksys_read+0x10/0x10 [ 724.443457][T18758] do_syscall_64+0xcd/0x250 [ 724.448013][T18758] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 724.454173][T18758] RIP: 0033:0x7f1eef58472c [ 724.458638][T18758] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 724.478793][T18758] RSP: 002b:00007f1ef0442030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 724.489330][T18758] RAX: ffffffffffffffda RBX: 00007f1eef775fa0 RCX: 00007f1eef58472c [ 724.497347][T18758] RDX: 000000000000000f RSI: 00007f1ef04420a0 RDI: 0000000000000004 [ 724.505417][T18758] RBP: 00007f1ef0442090 R08: 0000000000000000 R09: 0000000000000000 [ 724.513406][T18758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 724.521387][T18758] R13: 0000000000000000 R14: 00007f1eef775fa0 R15: 00007ffc98122768 [ 724.529401][T18758] [ 724.613397][T18764] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3776'. [ 726.300278][T18768] kexec: Could not allocate control_code_buffer [ 726.767684][T18784] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3781'. [ 727.007740][T18794] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3782'. [ 727.407302][T18802] netlink: 138 bytes leftover after parsing attributes in process `syz.1.3785'. [ 727.519422][ T29] audit: type=1800 audit(4294967368.599:46): pid=18804 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3786" name="discovery_nqn" dev="configfs" ino=60574 res=0 errno=0 [ 728.036406][T18809] capability: warning: `syz.0.3788' uses 32-bit capabilities (legacy support in use) [ 728.505264][T18789] kexec: Could not allocate control_code_buffer [ 728.946996][T18811] kexec: Could not allocate control_code_buffer [ 729.543811][T18829] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3795'. [ 730.484274][T18817] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3791'. [ 732.650259][T18875] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3806'. [ 733.127003][T18863] kexec: Could not allocate control_code_buffer [ 733.344645][T18882] netlink: 138 bytes leftover after parsing attributes in process `syz.6.3809'. [ 733.706247][T18884] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3819'. [ 734.431010][T18898] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3815'. [ 734.770327][T18905] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3816'. [ 734.938458][T18908] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3818'. [ 735.485569][T18919] netlink: 138 bytes leftover after parsing attributes in process `syz.0.3823'. [ 735.686641][T18924] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3825'. [ 736.195468][T18934] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3829'. [ 736.813773][T18950] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3836'. [ 737.547184][T18963] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3849'. [ 737.749460][T18965] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3841'. [ 737.888744][T18972] netlink: 49 bytes leftover after parsing attributes in process `syz.1.3842'. [ 739.033342][T18983] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3846'. [ 740.730594][T18999] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3852'. [ 740.940639][T19008] netlink: 49 bytes leftover after parsing attributes in process `syz.1.3855'. [ 741.229548][T19011] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3857'. [ 741.456260][T19024] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3860'. [ 741.759627][T19033] block nbd26: Unsupported socket: shutdown callout must be supported. [ 742.108604][T19053] FAULT_INJECTION: forcing a failure. [ 742.108604][T19053] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 742.122319][T19053] CPU: 1 UID: 0 PID: 19053 Comm: syz.4.3871 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 742.133135][T19053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 742.143210][T19053] Call Trace: [ 742.146536][T19053] [ 742.149499][T19053] dump_stack_lvl+0x16c/0x1f0 [ 742.154227][T19053] should_fail_ex+0x497/0x5b0 [ 742.158956][T19053] _copy_to_iter+0x4a5/0x1400 [ 742.163688][T19053] ? __pfx__copy_to_iter+0x10/0x10 [ 742.168850][T19053] ? __virt_addr_valid+0x1a4/0x590 [ 742.174091][T19053] ? __virt_addr_valid+0x5e/0x590 [ 742.179150][T19053] ? __phys_addr_symbol+0x30/0x80 [ 742.184203][T19053] ? __check_object_size+0x488/0x710 [ 742.189518][T19053] seq_read_iter+0xd00/0x12b0 [ 742.194219][T19053] seq_read+0x39f/0x4e0 [ 742.198383][T19053] ? __pfx_seq_read+0x10/0x10 [ 742.203095][T19053] full_proxy_read+0xfb/0x1b0 [ 742.207785][T19053] ? __pfx_full_proxy_read+0x10/0x10 [ 742.213079][T19053] vfs_read+0x1df/0xbe0 [ 742.217254][T19053] ? __fget_files+0x1fc/0x3a0 [ 742.221938][T19053] ? __pfx___mutex_lock+0x10/0x10 [ 742.226969][T19053] ? __pfx_vfs_read+0x10/0x10 [ 742.231665][T19053] ? __fget_files+0x206/0x3a0 [ 742.236381][T19053] ksys_read+0x12b/0x250 [ 742.240639][T19053] ? __pfx_ksys_read+0x10/0x10 [ 742.245423][T19053] do_syscall_64+0xcd/0x250 [ 742.249969][T19053] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 742.255870][T19053] RIP: 0033:0x7fd71ff85d19 [ 742.260489][T19053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 742.280102][T19053] RSP: 002b:00007fd720e28038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 742.288539][T19053] RAX: ffffffffffffffda RBX: 00007fd720175fa0 RCX: 00007fd71ff85d19 [ 742.296517][T19053] RDX: 000000000000008a RSI: 0000000020000040 RDI: 0000000000000003 [ 742.304491][T19053] RBP: 00007fd720e28090 R08: 0000000000000000 R09: 0000000000000000 [ 742.312475][T19053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 742.320448][T19053] R13: 0000000000000000 R14: 00007fd720175fa0 R15: 00007ffec34f5d68 [ 742.328444][T19053] [ 742.610034][T19066] block nbd26: Unsupported socket: shutdown callout must be supported. [ 742.943154][T19065] netlink: 49 bytes leftover after parsing attributes in process `syz.4.3873'. [ 743.197452][T19084] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3881'. [ 743.957846][ T29] audit: type=1800 audit(4294967385.039:47): pid=19097 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3885" name="discovery_nqn" dev="configfs" ino=61039 res=0 errno=0 [ 744.098713][T19100] FAULT_INJECTION: forcing a failure. [ 744.098713][T19100] name failslab, interval 1, probability 0, space 0, times 0 [ 744.139502][T19100] CPU: 0 UID: 0 PID: 19100 Comm: syz.0.3886 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 744.140164][T19104] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3887'. [ 744.150356][T19100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 744.150377][T19100] Call Trace: [ 744.150387][T19100] [ 744.150397][T19100] dump_stack_lvl+0x16c/0x1f0 [ 744.150431][T19100] should_fail_ex+0x497/0x5b0 [ 744.150458][T19100] ? fs_reclaim_acquire+0xae/0x150 [ 744.150485][T19100] should_failslab+0xc2/0x120 [ 744.150515][T19100] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 744.150552][T19100] ? __alloc_skb+0x2b3/0x380 [ 744.150587][T19100] __alloc_skb+0x2b3/0x380 [ 744.150615][T19100] ? __pfx___alloc_skb+0x10/0x10 [ 744.150646][T19100] ? lock_acquire+0x2f/0xb0 [ 744.150677][T19100] netlink_alloc_large_skb+0x69/0x130 [ 744.224837][T19100] netlink_sendmsg+0x689/0xd70 [ 744.229652][T19100] ? __pfx_netlink_sendmsg+0x10/0x10 [ 744.235033][T19100] ____sys_sendmsg+0x9ae/0xb40 [ 744.239844][T19100] ? copy_msghdr_from_user+0x10b/0x160 [ 744.245404][T19100] ? __pfx_____sys_sendmsg+0x10/0x10 [ 744.250748][T19100] ___sys_sendmsg+0x135/0x1e0 [ 744.255480][T19100] ? __pfx____sys_sendmsg+0x10/0x10 [ 744.260769][T19100] ? __pfx_lock_release+0x10/0x10 [ 744.265851][T19100] ? trace_lock_acquire+0x14e/0x1f0 [ 744.271123][T19100] ? __fget_files+0x206/0x3a0 [ 744.275880][T19100] __sys_sendmsg+0x16e/0x220 [ 744.280515][T19100] ? __pfx___sys_sendmsg+0x10/0x10 [ 744.285726][T19100] do_syscall_64+0xcd/0x250 [ 744.290279][T19100] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 744.296230][T19100] RIP: 0033:0x7f1eef585d19 [ 744.300684][T19100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 744.320333][T19100] RSP: 002b:00007f1ef0442038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 744.328790][T19100] RAX: ffffffffffffffda RBX: 00007f1eef775fa0 RCX: 00007f1eef585d19 [ 744.336791][T19100] RDX: 000000000000c800 RSI: 0000000020000000 RDI: 0000000000000003 [ 744.344794][T19100] RBP: 00007f1ef0442090 R08: 0000000000000000 R09: 0000000000000000 [ 744.352808][T19100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 744.360834][T19100] R13: 0000000000000000 R14: 00007f1eef775fa0 R15: 00007ffc98122768 [ 744.368867][T19100] [ 744.462686][T19112] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3891'. [ 744.682151][T19117] netlink: 49 bytes leftover after parsing attributes in process `syz.4.3892'. [ 744.785982][T19119] FAULT_INJECTION: forcing a failure. [ 744.785982][T19119] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 744.799994][T19119] CPU: 0 UID: 0 PID: 19119 Comm: syz.0.3894 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 744.811156][T19119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 744.821243][T19119] Call Trace: [ 744.824548][T19119] [ 744.827507][T19119] dump_stack_lvl+0x16c/0x1f0 [ 744.832314][T19119] should_fail_ex+0x497/0x5b0 [ 744.837030][T19119] _copy_to_iter+0x29b/0x1400 [ 744.841925][T19119] ? trace_lock_acquire+0x14e/0x1f0 [ 744.847607][T19119] ? __pfx__copy_to_iter+0x10/0x10 [ 744.853027][T19119] ? __virt_addr_valid+0x1a4/0x590 [ 744.858282][T19119] ? __virt_addr_valid+0x5e/0x590 [ 744.863348][T19119] ? __phys_addr_symbol+0x30/0x80 [ 744.868418][T19119] ? __check_object_size+0x488/0x710 [ 744.873774][T19119] seq_read_iter+0xd00/0x12b0 [ 744.878513][T19119] proc_reg_read_iter+0x21d/0x310 [ 744.883583][T19119] vfs_read+0x87f/0xbe0 [ 744.887786][T19119] ? __pfx_vfs_read+0x10/0x10 [ 744.892524][T19119] ksys_read+0x12b/0x250 [ 744.896818][T19119] ? __pfx_ksys_read+0x10/0x10 [ 744.901657][T19119] do_syscall_64+0xcd/0x250 [ 744.906224][T19119] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 744.912167][T19119] RIP: 0033:0x7f1eef585d19 [ 744.916628][T19119] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 744.936277][T19119] RSP: 002b:00007f1ef0442038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 744.944913][T19119] RAX: ffffffffffffffda RBX: 00007f1eef775fa0 RCX: 00007f1eef585d19 [ 744.953001][T19119] RDX: 0000000000000861 RSI: 0000000020003a80 RDI: 0000000000000003 [ 744.961103][T19119] RBP: 00007f1ef0442090 R08: 0000000000000000 R09: 0000000000000000 [ 744.969208][T19119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 744.977219][T19119] R13: 0000000000000000 R14: 00007f1eef775fa0 R15: 00007ffc98122768 [ 744.985263][T19119] [ 745.049099][T19123] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3895'. [ 747.085503][T19147] __nla_validate_parse: 2 callbacks suppressed [ 747.085527][T19147] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3901'. [ 747.106698][T19158] netlink: 49 bytes leftover after parsing attributes in process `syz.1.3906'. [ 747.553424][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 747.560970][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 747.964397][T19173] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3913'. [ 748.538459][T19066] Process accounting paused [ 748.778439][T19187] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3917'. [ 748.951670][T19194] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3919'. [ 749.076530][T19191] FAULT_INJECTION: forcing a failure. [ 749.076530][T19191] name failslab, interval 1, probability 0, space 0, times 0 [ 749.086360][T19202] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN PTI [ 749.091196][T19191] CPU: 1 UID: 0 PID: 19191 Comm: syz.6.3916 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 749.101916][T19202] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 749.112642][T19191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 749.121027][T19202] CPU: 0 UID: 0 PID: 19202 Comm: GC for TOMOYO Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0 [ 749.131086][T19191] Call Trace: [ 749.142084][T19202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 749.145343][T19191] [ 749.155368][T19202] RIP: 0010:tomoyo_gc_thread+0x1ab/0x1390 [ 749.158290][T19191] dump_stack_lvl+0x16c/0x1f0 [ 749.163979][T19202] Code: 3b 5c 47 fd c6 45 18 ff 4c 89 ee bf 09 00 00 00 e8 8a f1 ff ff e8 25 5c 47 fd 48 89 d8 48 89 de 49 89 dd 48 c1 e8 03 83 e6 07 <42> 0f b6 0c 20 48 8d 43 07 48 89 c2 48 c1 ea 03 42 0f b6 14 22 40 [ 749.168630][T19191] should_fail_ex+0x497/0x5b0 [ 749.188228][T19202] RSP: 0018:ffffc9000d4afe78 EFLAGS: 00010246 [ 749.194897][T19191] ? fs_reclaim_acquire+0xae/0x150 [ 749.201065][T19202] [ 749.201074][T19202] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff8451e1ab [ 749.206154][T19191] should_failslab+0xc2/0x120 [ 749.208467][T19202] RDX: ffff888033d39e00 RSI: 0000000000000000 RDI: 0000000000000001 [ 749.216428][T19191] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 749.221248][T19202] RBP: ffff888026531100 R08: 0000000000000001 R09: 0000000000000000 [ 749.229196][T19191] ? vm_area_dup+0x21/0x300 [ 749.234543][T19202] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 749.242509][T19191] vm_area_dup+0x21/0x300 [ 749.247003][T19202] R13: 0000000000000000 R14: 0000000000000000 R15: ffff888029b49c80 [ 749.255001][T19191] __split_vma+0x181/0x1210 [ 749.259313][T19202] FS: 0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 749.267287][T19191] ? __pfx___split_vma+0x10/0x10 [ 749.271772][T19202] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 749.280682][T19191] vms_gather_munmap_vmas+0x38b/0x1730 [ 749.285590][T19202] CR2: 0000001b30f17ff8 CR3: 000000006fd9a000 CR4: 00000000003526f0 [ 749.292155][T19191] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 749.297580][T19202] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 749.305524][T19191] ? mas_walk+0x6a6/0x910 [ 749.311404][T19202] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 749.319361][T19191] __mmap_region+0x31d/0x2670 [ 749.323659][T19202] Call Trace: [ 749.323670][T19202] [ 749.331620][T19191] ? __lock_acquire+0x15a9/0x3c40 [ 749.336266][T19202] ? die_addr+0x3b/0xa0 [ 749.339526][T19191] ? __pfx___mmap_region+0x10/0x10 [ 749.342438][T19202] ? exc_general_protection+0x155/0x230 [ 749.347476][T19191] ? __pfx___lock_acquire+0x10/0x10 [ 749.351620][T19202] ? asm_exc_general_protection+0x26/0x30 [ 749.356734][T19191] ? __pfx_mark_lock+0x10/0x10 [ 749.362253][T19202] ? tomoyo_gc_thread+0x17b/0x1390 [ 749.367430][T19191] ? lock_acquire.part.0+0x11b/0x380 [ 749.373120][T19202] ? tomoyo_gc_thread+0x1ab/0x1390 [ 749.378116][T19191] ? find_held_lock+0x2d/0x110 [ 749.383202][T19202] ? tomoyo_gc_thread+0x19b/0x1390 [ 749.388480][T19191] ? cap_mmap_addr+0x53/0x320 [ 749.393547][T19202] ? __kthread_parkme+0x148/0x220 [ 749.398394][T19191] mmap_region+0x127/0x320 [ 749.403610][T19202] ? __pfx_tomoyo_gc_thread+0x10/0x10 [ 749.408279][T19191] do_mmap+0xc00/0xfc0 [ 749.413281][T19202] kthread+0x2c1/0x3a0 [ 749.417681][T19191] vm_mmap_pgoff+0x1ba/0x360 [ 749.423021][T19202] ? _raw_spin_unlock_irq+0x23/0x50 [ 749.427073][T19191] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 749.431122][T19202] ? __pfx_kthread+0x10/0x10 [ 749.435707][T19191] ? __fget_files+0x206/0x3a0 [ 749.440881][T19202] ret_from_fork+0x45/0x80 [ 749.445970][T19191] ksys_mmap_pgoff+0x7d/0x5c0 [ 749.450538][T19202] ? __pfx_kthread+0x10/0x10 [ 749.455201][T19191] ? __pfx_ksys_write+0x10/0x10 [ 749.459590][T19202] ret_from_fork_asm+0x1a/0x30 [ 749.464246][T19191] __x64_sys_mmap+0x125/0x190 [ 749.469362][T19202] [ 749.474181][T19191] do_syscall_64+0xcd/0x250 [ 749.478912][T19202] Modules linked in: [ 749.483562][T19191] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 749.487730][T19202] ---[ end trace 0000000000000000 ]--- [ 749.491041][T19191] RIP: 0033:0x7f5ecef85d19 [ 749.491065][T19191] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 749.491087][T19191] RSP: 002b:00007f5ecfe35038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 749.491109][T19191] RAX: ffffffffffffffda RBX: 00007f5ecf176080 RCX: 00007f5ecef85d19 [ 749.491126][T19191] RDX: 00000000000000db RSI: 000000000000000a RDI: 0000000000000000 [ 749.491141][T19191] RBP: 00007f5ecfe35090 R08: 0000000000000005 R09: 0000000000008000 [ 749.491156][T19191] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000001 [ 749.491170][T19191] R13: 0000000000000000 R14: 00007f5ecf176080 R15: 00007ffee458c518 [ 749.491192][T19191] [ 749.520438][T19203] netlink: 49 bytes leftover after parsing attributes in process `syz.1.3921'. [ 749.546652][T19202] RIP: 0010:tomoyo_gc_thread+0x1ab/0x1390 [ 749.599210][T19202] Code: 3b 5c 47 fd c6 45 18 ff 4c 89 ee bf 09 00 00 00 e8 8a f1 ff ff e8 25 5c 47 fd 48 89 d8 48 89 de 49 89 dd 48 c1 e8 03 83 e6 07 <42> 0f b6 0c 20 48 8d 43 07 48 89 c2 48 c1 ea 03 42 0f b6 14 22 40 [ 749.622751][T19202] RSP: 0018:ffffc9000d4afe78 EFLAGS: 00010246 [ 749.628870][T19202] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff8451e1ab [ 749.654498][T19202] RDX: ffff888033d39e00 RSI: 0000000000000000 RDI: 0000000000000001 [ 749.663627][T19202] RBP: ffff888026531100 R08: 0000000000000001 R09: 0000000000000000 [ 749.671722][T19202] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 749.679831][T19202] R13: 0000000000000000 R14: 0000000000000000 R15: ffff888029b49c80 [ 749.691732][T19202] FS: 0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 749.705075][T19202] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 749.712729][T19202] CR2: 00007f5ecf14a338 CR3: 0000000046770000 CR4: 00000000003526f0 [ 749.721208][T19202] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 749.729338][T19202] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 749.737343][T19202] Kernel panic - not syncing: Fatal exception [ 749.743676][T19202] Kernel Offset: disabled [ 749.747990][T19202] Rebooting in 86400 seconds..