last executing test programs: 9.767194684s ago: executing program 2 (id=547): r0 = socket$nl_generic(0x10, 0x3, 0x10) (async) r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000180), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0) ioctl$auto_SG_SET_RESERVED_SIZE2(r3, 0x2275, &(0x7f0000000240)="6880ffcf") (async) sendmsg$auto_TIPC_NL_MON_PEER_GET(r2, &(0x7f0000006140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000700)={0x14, r1, 0x711, 0x70b52c, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4405}, 0x2004c848) (async) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001540)={'netdevsim0\x00'}) sendmsg$auto_NET_SHAPER_CMD_GROUP(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={0x0}, 0x1, 0x0, 0x0, 0x4c000}, 0x14) (async) r4 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace_options\x00', 0x2, 0x0) r5 = pipe$auto(&(0x7f0000000140)=r4) futimesat$auto(0xffffffffffffffff, 0x0, 0x0) write$auto_def_blk_fops_fs(r5, &(0x7f0000000100)="06a4db327516fb11e3ca850989ca82e68a86740e49cfd2abcd668655f247ccde", 0x20) r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) bpf$auto_BPF_MAP_LOOKUP_ELEM(0x1, &(0x7f00000002c0)=@info={r5, 0x10001, 0x2}, 0xffffffff) (async) ioctl$auto_BLKTRACESETUP(r6, 0xc0481273, 0x0) (async) write$auto(r5, &(0x7f0000000480)='0[.[\x00\xf8?~\xbc\x06\x0f\x81Iq=B\vr6\x19\xd3\xd4\xd6\xab\xd0\nl\x8cb\xe7@\xbb\x0f\xe43\xe2R\x91V\xc1N\xae\xd3B\xb8,\xd0\"W\x1c\x14\xda\xf3>\xe5]\x98\xd6KLyY\x02\xbdD\a\x06\x93\x9d\x0f\xb9\x0f\x8e\xb4*\x8a\xb9\xebo+\xa6\x15\x9b\x8f\xbd\xaf\xc4\x9aW+\xc5\x82\xe1\x95\xa1A\xe4\xca\xb1~H\x91\x1d\x95\xe5\xf7ZN\xb1\xaa:a\xf6\x1ed:\v}\xdd\xc4\xb0\xb2\x11\x81<|J\xce\xf7pU03#w\xcaZbj\xa1*4\xac\x8e\xcc\xb8=\xe3\x88\xffj\xde\xca\x1fk\x97\xefU\x92\x911\xd6v!Y@\xa3\x89\xc4s\x8a\x1aRz6[\x903\x8ck\a\xc6\xe4\xb7\xa7i\\\xa9i\x002*M\xb4$|\xe1,\xa7\x93y\x12\x15\xe9F9\xeaL\x98\xe9b\xbc\xd6^\x03\xda\x8e\xbbP12\xc1\xa8\xeeh\"\xc6D\xc2\xdcoP\xbe\xe7F\xaem\xb6\x12\xd9\t\xf4L4\x03u\xb7\xde\xc2F\xf0\xca\xb8[\xa1\xdcO\xa6\xc5\n\xb3\xd5|\x89\xb4g,L\x12\x1aK\xcc\xa6\xa9\x0e\xb3\xe4#:\xf6\xdf#\x11\f\xd93\xe3\xe0\xf3\x86\x06\xbd(\xbdb\x91e\xdb\x17#\xf0\x0f}\x99\xfd\xa0\x84w\xc0\xfbX\xb9c\xf6x\xc3Q\xdd\x83a\xacy\x1e\xab\x84X\xc1\xf7R\xa2\xee%\x0eLI\x93\x9a9ht\xa3\xd3(\x97\xd9\xdc:\xacR\xb0mp\xc1\xe9\xa8\x91A\x95\xba\\8\n>x\x8dx\x1d\xe8\xc2\xdc\x13\xf1\xd3C\\\x01\xf4\x90\xc4}Z4\x04\x04}\xbc\xdb\xf7\xa3\v\xc6\xfb\x87\xf2\xd2\xa7?r&\xf9C\x7f\xa2\xfd\xf6\xf5\x1f\xc0\x00-\xadl\xd4lK#\x1b\xab\x96\"\x06\x1eE\x11\xba3\a\xd0\xee\x87\'\x8a\a\xd0\xfe\x11}.\xef\xc0\xacG\xd2\xb7\x8at\xe7\xf4_', 0x109) (async) unshare$auto(0x40000080) (async) socket(0x11, 0x2, 0x2) read$auto_tracing_iter_fops_trace(r4, &(0x7f00000001c0)=""/215, 0xd7) syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000000100), 0xffffffffffffffff) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async) unshare$auto(0x40000080) (async) r7 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r7, 0x4, 0x7ff) (async) wait4$auto(r7, 0x0, 0x0, &(0x7f0000000040)={{0x7, 0xffffffffffffffff}, {0x6, 0xffffffffffffffaf}, 0x7, 0x10, 0x3, 0xa585, 0x6, 0x1, 0x1, 0xce, 0x3ff, 0xa, 0x1, 0x0, 0x5, 0x8000000000000001}) getpgrp(r7) 7.142670543s ago: executing program 2 (id=555): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_IOAM6_CMD_DUMP_NAMESPACES(r0, 0x0, 0x2) socket(0x29, 0x2, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8800}, 0x880) recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ILA_CMD_ADD(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x1c}}, 0x40000) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'veth0\x00'}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000380)={'veth0_to_bond\x00', 0x0}) sendmsg$auto_ILA_CMD_ADD(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000003c0)={0x40, r4, 0x20, 0x70bd27, 0x25dfdbfb, {}, [@ILA_ATTR_IDENT_TYPE={0x5, 0x8, 0xa}, @ILA_ATTR_IDENT_TYPE={0x5, 0x8, 0x81}, @ILA_ATTR_IFINDEX={0x8, 0x4, r5}, @ILA_ATTR_IDENT_TYPE={0x5, 0x8, 0x8}, @ILA_ATTR_LOCATOR_MATCH={0xc, 0x3, 0xafa9}]}, 0x40}, 0x1, 0x0, 0x0, 0xc4}, 0x4) r6 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/43:288/max_ratio_fine\x00', 0x10b142, 0x0) sendfile$auto(r6, r7, 0x0, 0x1000200) fanotify_init$auto(0x5, 0x2000000000002) fanotify_mark$auto(0xffffffffffffffff, 0x201, 0x9, 0x4, 0x0) 6.16261815s ago: executing program 2 (id=559): openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/arch_status\x00', 0x120682, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0C0F:00/status\x00', 0xa140, 0x0) mmap$auto(0x0, 0x202000c, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x40400, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'virt_wifi0\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32=r1, @ANYBLOB="0a0005000180c200000e00000a07000000000000000e00000a000100000000000000000008000200", @ANYRES32=r1, @ANYRES8=r0], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4008810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x89}, 0x7}, 0x3, 0x0) 5.971945393s ago: executing program 2 (id=560): openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_SNDCTL_DSP_GETODELAY(r0, 0x80045017, &(0x7f0000000c00)) openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000080), 0x800, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x40000008000) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800) kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x800c000}, 0x4) read$auto(0xffffffffffffffff, 0x0, 0x6) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) process_vm_readv$auto(0x0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) ioctl$auto(0x3, 0x80000541b, 0x38) 5.820560982s ago: executing program 1 (id=562): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x18, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xb5, 0xeb1, r0, 0x167c) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) epoll_create$auto(0x4) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) r1 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/1/msr\x00', 0xf82, 0x0) readv$auto(r1, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) setsockopt$auto_SO_OOBINLINE(0xffffffffffffffff, 0x3, 0xa, &(0x7f0000000080)='nlctrl\x00', 0x2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0xa, 0x0) getsockopt$auto_SO_BROADCAST(0xffffffffffffffff, 0xf7f, 0x6, &(0x7f0000000000)='!.##\x00', &(0x7f0000000180)) ioctl$auto_BTRFS_IOC_FORGET_DEV(0xffffffffffffffff, 0x50009405, &(0x7f00000001c0)={@raw=0xbe, "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"}) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) close_range$auto(0x2, 0x8, 0x0) 5.17116795s ago: executing program 0 (id=563): socket(0xa, 0x2, 0x0) sendto$auto(0x3, 0x0, 0x13, 0xfffffff9, 0x0, 0x22) r0 = socket(0x18, 0x5, 0x1) connect$auto(r0, 0x0, 0x3a) ioperm$auto(0x7, 0x6, 0x2) write$auto_v4l2_fops_v4l2_dev(0xffffffffffffffff, &(0x7f00000000c0), 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/default/forwarding\x00', 0x141241, 0x0) pwrite64$auto(r1, &(0x7f0000000000)='./cgroup/memory.pressure\x00', 0x6bc, 0x5) (fail_nth: 1) 4.627021878s ago: executing program 0 (id=564): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_IOAM6_CMD_DUMP_NAMESPACES(r0, 0x0, 0x2) socket(0x29, 0x2, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8800}, 0x880) recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ILA_CMD_ADD(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x1c}}, 0x40000) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'veth0\x00'}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000380)={'veth0_to_bond\x00', 0x0}) sendmsg$auto_ILA_CMD_ADD(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000003c0)={0x40, r4, 0x20, 0x70bd27, 0x25dfdbfb, {}, [@ILA_ATTR_IDENT_TYPE={0x5, 0x8, 0xa}, @ILA_ATTR_IDENT_TYPE={0x5, 0x8, 0x81}, @ILA_ATTR_IFINDEX={0x8, 0x4, r5}, @ILA_ATTR_IDENT_TYPE={0x5, 0x8, 0x8}, @ILA_ATTR_LOCATOR_MATCH={0xc, 0x3, 0xafa9}]}, 0x40}, 0x1, 0x0, 0x0, 0xc4}, 0x4) r6 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/43:288/max_ratio_fine\x00', 0x10b142, 0x0) sendfile$auto(r6, r7, 0x0, 0x1000200) fanotify_init$auto(0x5, 0x2000000000002) fanotify_mark$auto(0xffffffffffffffff, 0x201, 0x9, 0x4, 0x0) 4.626866612s ago: executing program 3 (id=565): openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/tty53\x00', 0x200, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000002, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x9, 0x81, 0xdfffffffffff628e, 0x6, 0xdeb1, 0x808}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) madvise$auto(0x0, 0x20499d, 0x9) kill$auto(0x0, 0x12) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40008d0}, 0x4831) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8000) open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x10a) r1 = socket(0xa, 0x1, 0x0) getsockopt$auto(r1, 0x6, 0x3, &(0x7f00000002c0)='$\xfe\x88\xc8\x91\x8bo\xc6#\x00\x00\x00\xfd\xb1\x00\xdb\xc0\x80\xd6\xdb>f\x8c\xf7\xb6G\xe0\xb0Z\x89\xf7i\xb8\xb0,\x86\x00\x9c~\xca\xcdi\xa6\x91R\x7f\x00B\x93H9\x19\xb4x\xe6\xb7\xd3\xe4\x00\x00\x00T@\xf0\x8b\xd4XE\x17\xaa\b', &(0x7f0000000180)=0xad) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff) r2 = socket(0xa, 0x5, 0x84) sendto$auto(r2, 0x0, 0x401, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe80fffefec03f00"}, 0x1c) 4.366134068s ago: executing program 3 (id=566): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) capget$auto(&(0x7f0000000000)={0x19980330}, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000002500), 0xffffffffffffffff) mmap$auto(0x0, 0x3, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0x2000040080000004, 0xe) epoll_ctl$auto(0x5, 0x1, 0xffffffffffffffff, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x2c, r3, 0x1, 0x2070bd26, 0x25dfdbff, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x8, 0x1, 'HfR\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}]}, 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x80) r4 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_DP_CMD_DEL(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000200)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002abd7000fedbdf2502"], 0x38}, 0x1, 0x0, 0x0, 0x20040011}, 0x20000000) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000500)={'gretap0\x00', 0x0}) socket(0xa, 0x23af690fef30229, 0x9) sendmsg$auto_BATADV_CMD_SET_MESH(0xffffffffffffffff, 0x0, 0x140080e4) ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44f, 0x807, 0x5, 0x7181, 0x1ffde, 0x7, 0x3, 0x8, 0x9, 0x80003, 0x4, 0x200000000001, 0x384, 0x9, 0x8, 0x10006, 0x400007f, 0x7, 0x0, 0xe, 0x22000, 0x200, 0x0, 0x84}, 0x1fa, 0xd) r8 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000000c0), 0x2802, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r8, 0x2, &(0x7f0000000380)="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") ioctl$auto__ctl_fops_dm_ioctl(r8, 0xfffffff7effffd05, &(0x7f00000001c0)) sendmsg$auto_OVS_DP_CMD_GET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, r1, 0x5, 0x70bd29, 0x25dfdbfc, {}, [@OVS_DP_ATTR_IFINDEX={0x8, 0x9, r7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000c000}, 0x4000024) madvise$auto(0x0, 0xffffffffffff0001, 0x15) write$auto(0x3, 0x0, 0x100082) 4.365096958s ago: executing program 1 (id=574): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x18, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xb5, 0xeb1, r0, 0x167c) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) epoll_create$auto(0x4) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) r1 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/1/msr\x00', 0xf82, 0x0) readv$auto(r1, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) setsockopt$auto_SO_OOBINLINE(0xffffffffffffffff, 0x3, 0xa, &(0x7f0000000080)='nlctrl\x00', 0x2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0xa, 0x0) getsockopt$auto_SO_BROADCAST(0xffffffffffffffff, 0xf7f, 0x6, &(0x7f0000000000)='!.##\x00', &(0x7f0000000180)) ioctl$auto_BTRFS_IOC_FORGET_DEV(0xffffffffffffffff, 0x50009405, &(0x7f00000001c0)={@raw=0xbe, "147f624b05a2b22a62eb108f57b62c1a128c0f4a188dab9dc484db51686adb5a70d52b7f2f66145c31facd1cbb574c587628bd4cd6107b246f8f98fc23c6a864a492955d4c9350848a1d376d48008c8245ef620306a514c0e2f4dccf4932b8161402a453d31f6a2849bd701d53c73b5c87638db257f5ee75b4b2f3050dcd85bdda18e5f6c8f07bcbafc93b528f48baacd00dff67c662817347d58f7e2540061f146deeeb8a8fbea98e59c0ed49ac5898827aaa13b42a504dc9de98747915c70a39df9e7ad1373109c541923589e6364976cd3168fe3d0f085186627bde1577bbf260387eb8ecb5ad8d705de9f1e9b3d50ce454db9cbecf236dffbd3b274b5a7a63d3be027f04c7111ed622df2830ad588ef1d8b6c480b0f0772b5e7f621f8afa59a92859c296e01a7fa3f30f0d0d4337652988adb2b9d680d2c4f9896e1139548670c3598f33ba0f43def8ca1044626e75ca4d2b886f6db26ebb438a587407e59cf70e6cedf804044a4ccbccdcdcfd3e18152f5ac92af75d4deb491679de72f1b13ad5478ed08bb7acfc503580dae5c23583d01fdfecc9207f9e276540cf2328ba7a585937fd6acbda9a3a770277729be4f41177789decd4e0854b9861c08504c89215d7e8ce3473a0ad98f25d1d9e5fe2054a4ba9d3e0a67718ac00f384b74f5c8b24097e30e63af0c374c78f21d0af94486933450a311f8194051592e9e37607542244627393d338575c5a0a51815a01bd5ecf313cadddbb3c6bd4941a5c636b0c884ea266740b25c397ff3ea626070602d43ffbbebc0bddfdc47602432ecedce3bb6b0aba196f0eb714251d210bc979b4518005e41b5b6b0fc0ba793a8e77edd81553ce3a99cf9e7f4a9a41858e1971ac4127fa9995c888259e3436b7366e1344955ec1dd8628581a07056ec537e8196f87ab570af4fb4744f874fb283f8a54cae01cb32f70543eb60b6f65cc5269171d7e5fff4cbe4cc0b76983aaba8d869d8848e496e2c5359251a39e5f9d1c0c6756456dcdd744e82594b2a6bfe3db7877c7fc123c259f8f70b36b3c48ae31875d5cf3eb6b00a32e107f419a079641e51c8233f4c304b4bf7942814ec1eb8166f0b168d76fb3c05cb1d0ccd66fd15cbb399f3730076246721f4d71f5bbcb63d2309c74878bb16ec592873f7514b66118673f808c2cb16b4a7b3be7b560b5183bb231be5829d9de866ecbf23c70779c6f9d37b7d185cdf53a328eeee8ea27931c68c68edad37f2a10fbfcffacbacb80e8c39a0504bddab3156c7c35ab417aee9c979bf14718975e59ec51a37516a71abd59ddc916de121937da400f09b85e96b554a1f5688b20e2df0f814163e46db2ef60268a6c57035008998b834560a7f9a69bcde2110f8d401321db671c7cd28fce473d9dd43d598ef1e576c93281a5a510fb48e7dbfe06451e2e9718ab0b6cd6ec02b6b62ae9d6cc7ec94af64311793125d92ef9ac91b0d99445c4dae30f46ef49f8068950a6a32661094ac22af30e313fc183ebe103e709be8bcb4e657a731ac05e55a5f3b772ec5f89074fce97e565f560d172c6975dd1edde80507a9e442b208fd57520cbbcac16ddcb26fc8ef1d19d2cfb07e80d32aab1769e628303478aff29f0143140478b50d392fb3e53e0d386ea97d901c27ae5911330f337ef7048cb7f5307fb0231066c100177c09722719372aa5dcffbfa6e84469bfa884446d5848d6af5c4a324f0805e5a1c82e97387239ba24e8406edccd92d37c0bafd97160cea312ba3ef96b6982d28e0d5e2b3bba83dcee9f5de3155d635deebc55bc030f9dadc659a0b6f5a84d539077e785ed5ed098115b576a7238c3532cea0fe9f00cfad2112908e57e66be5e86339812b5257a03e735727ea8c4cf5bcf0820dcf87a906bd962806a2767971f6079613acfb781d514111f35ba1fcdecaa15764d9ca817794c536cb4b1d4a2f60cf116520aa1cd2f7ade5d38c195ee6aaa196ceeaad0a3d642b0e4b54a5c9ffe8941e4f661aba9b9d77a0e2af0d1dd8120810f4b4f93bc56a2405b32ec460ccfae654ed07abfbfc3dab30d5e0b77538033ee73833910ecb297be29cf034a1133583e5afd7633e4a1b44c844cd34eb7d5e07d74e695b4abea1a70b5eb902385563e30134ec33ada8dc78433b4eefa2ead19df77dfc71148607e5c708f7692f1645e7a323f175849bd045f0bbed4f6a06169deceb2a4d361493ee6db8c7b0bd18b9782f48f7459c9d9033221dcf6a07464c04df0b11f99a943e12b1b0b6dc71c3bfef7128b2df83f1ee99952e4cc0a51189a21302e998fd2ed37b2ae8bfd96a47d50eb3d196fea3af714157e6a4e0630e0944de57556aa3225b485388faed23a9a9d595a5ff296e8e29452ef5541230954d4d0f916a27781041902f13cf0e962527e1a0f659a95a0c3831bb62841ba3e01c74859818283ad0725e76ed82f695405fffccd90ad1be0ad211891546a2ab3f75b9872c3ad68c2f5f4d8510cf1e087e789c5ab821ef46e197a36986434b1569499ad2717db7b200afd77b7542ba00a46192341aee8fe3bfe3d6e0c2767cafca11ce2beaf97602ef9095e815ab6eaec42399865f724ee9d96217f45a84a0def5d87375c65e0430cdc83422b8d367982f2722e793c6ba37687d34f0e2068c114fae854a3158abba5f5689a40488d095de19071a71d8d7a17f4389f2d20c4c0f9c16760d52d166acc5c201cfaecc0fc54b7143c60aaaac0ae196b36f3e1447e3e0992be2642ca8302b24514bd06cce84279ce361bb8ce245ca5152848ab4cced61c67e4579c0db21efd26efc0780cf4a04b02ddaa54335fa327d57320307e0dc3fe1f6cdb686150e2235e05ddeba10a193d49408ee47f57229a6ff30351dedf61b8789900eb15db5b0069c57984ba31710509d88da1d78b3eface0ad5b2cb7f303e248cb68abfd5a0c3ac672d1f6178fe54ef67e034d38c01e3458d9b64a97eb0cccfae7efbbbc0c8b806e75ae5dbdf641d8daa862f90cac0d460c6f70a7765169cd1e9fe305db403e4e453ce84c35a3573751a93ca7dd478ba547449254f3d7ac7b05f345bf0eec346db042b982c964c81545bf05986d033df8e41e9e19d3561250514ed703444048f44763261a860aa3cf0b539544af9a1fc4ba7f989111e00dcab0e64b538a1019467c3b43641e13c2707a4fdc78648b92302a54a0e7e3de53488e852f0fe658557ad1df2cf12a898515769bcde0f4a3386764d5b2f0eba5eee1e3257215c005b3bad612ff43b4121efc277fe9b80c69eee2c1ffdcb3ef843485d636a0025848254e22cd2f51c1f85202ae22d53969072c1ec4dbb973a157059ed523b8dad9671f6bba68a9d4521564a826b208df019ea32eeaf5b8f973263fdcab4c2519ac0d5ce4c181b12ba71bb3fc02388e72e89a24152e07b264fb00b425633ca2b2aaccd7208d5df00002b7fa4502656593a8e84e4b620bc65a60bf3d3c8b0c1d0ac93bcc711b9cf206b1037d3437e515913badbd7ce52a69b32cd5b828193dac41fe0ff1a869bf086927eff915e422be23f40a54a2384e478f74bb2a397ecd214224294d9300d921afad2f50960e9830dc1ac8ee08ea0ff474d40a23b1f7dbc7761120c889b3354281751342d2429eb2555a8a57063f61c6cb3115d99d41a040c4d9fb3c5ddec980abfef33562607b7ad6fc8ac67c8026d50f2e01d949d065a8ea488b3d0d7ba296c914352b99a6c36aad4c030d1f9bef8696cb6d9dee3835646695b2a43f8682405c118477dd6486699dcd9cb93d911dae691fabfdfcc76ae48bcdf5d5ea87fffdcaf4e14faaa36689da73c9012ff943a787ec0e83f52cf221219f3468bdc010698450a19717e4ed062ab7d682d9e18c4469581bd09cd31aeaf1d17afb02b9cd769f56830d0ad155e4898889b438edfb13fb40d46bfe082ae1cd0f287805e4f2d011f43cd070f883668f45612132b19ff2f406bf80a1e5e69c741c63bc366c102a7a7e78d92e058d1f771031e582094bc7536182ddf2b88ef13d6573d0d34183c5e4dff48654ec1d18a44f6b2c67b17eb06489523bc3e7908b612e5204985cad17ff99b41650e49e469d8d80f3a2e32e93826e02160fbf19d92ab300bee4319b333aa9e96ac46d22ed71cf8394663f62362fe145094d140588c2e6f3eadc0bc16f6f6172aeac1e9ca44d93fa1399c641729e21f97f25ce5b4163419235bb98a218fa9d50b7aaa835d122c0436352b27909dcab907e43630907b23713bb445b93b8ec840b17d3d4618dd38bf58f2a0a6c3272a00aa8704774078f565faa4195ddfc15b33b196e646ebd8ab55e74da11ab4c30d031785c7c168d30ca12d23dcfa4a5a4f883f3b887fb77d822dae0a161d6c3565037a1f36bb1cf1d8601d94e4111b4ee435a98c21577b1e647ba160921881339a00a2d04210e603dcd9dfe2c40d32e5d93d9e94a5c176ca6291d5befa75121ec0abd660e2bac1458bd5609a6d725af0895b0d559ad726f34b50a06fd45f86764508386ab65ade7c76d0ce07330bf0d342216a769c98edb854cad6f6b02e0d09e713bbb7e12c786edd9d1078f3c5d0a87d34d9326e938098d674fb2d1ab1e39e3683a3ef0e00d9b66d56582e9d5f2d61a60226ee2c9cda7d44ef0504d6109fcd7978207df3eb9ed5ac860e0172907362654efb54cd6d04f7a58578fa3853d65e9243730466085905cbf1e1b34ea7a2f9dd268495d49824045074debb4c9140dfdbfc81fc6d371ec49521ddd996fd8761ada5d427348503a57a73a3ac74a540df4c2af59a1ecf644c00ebfbffafbf2990776717a2687889da69fefd0b0cb33c8351d147bcf31f98c8909e554c7ffd2cc9f64e4eb6b9c4b232489a2d912f19f79108b73a38de79fafd4a885de47810bdc4658d6d773c97e523732997392f1e02396875eda8ff955ef0ad75145cc1819df6a53878b9f1c5964146dcd73eabed0df798aea5c533fc263bc8d2533e36cde59e2cdd2ffac12cd7e6bea69ccc14b0b22b7606a6f82e8528f8dc739cd5c0ed0795d49452f257be2068055dcfaa7589ca65820d31583a81834910d8d1327469e370339dce1d87c31a750a02270cdaef457da2d50abac6651357858c391464781009209d79cf4286045773fe247e705a14b162583cd89e850df91b7517bd0a4476ac02fdc1dbd0faa81fa1e829ad0a548236939efcdf63c15b868b8712ca05571d7c0b810cc02cba9d1ae63e987b59ec3281cd706d7571d6b69a92663f11a24a68dbc6b2436b8049986f78fbe8effcf94457d5085dbf8812abb1fd431c6b465203eb67070a936a665fb19273240ed1e3905ea27b996b74b31b1216a77734b106dd9752a5f430ac5aef718c6942379dbd342aa66537e655afa95ec78cadcfc80584045cd07d43911c4d7dc3a37a4cf3cdf6eea9904c441ec02cfe0515c6c360463237aa6b3fafebcb1a59be1bf5ebe4680819f3e78ccc1e517987db6220b45bf840fb8fc9b33757a0e258468a911f2504358981410b6daad15bb0ed81ff971ef3cc89f06dacfa45a37cb37e946f5010d0a308ff760227d439f07401839b7844bd4e5f5d1824c17797c5abfb5a326f6b4626f9789d8d7a074b7f223cc4183f68e14de037a197920a858c310e3602a3c6f319b506bc4c523af495a95b74eb88af2699cbbeecbab62811ed05a0ea5e292e72e565ccbeb3fda2f32ee05ff7bfa40bfead96ace132532026e553bc4438a65ea897d64e9cdec2baa75839f9ea4dba584b81a9b813dc648e3ac31c885ec5dcedda3efc7a3a7"}) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) close_range$auto(0x2, 0x8, 0x0) 3.657673396s ago: executing program 0 (id=567): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x100000000000007, 0x0) r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000440), 0x40080, 0x0) ioctl$auto_UI_DEV_SETUP(r2, 0x405c5503, 0x0) sendmsg$auto_OVS_DP_CMD_DEL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)=ANY=[@ANYBLOB="24010000", @ANYRES16=0x0, @ANYBLOB="00042abd7000fddbdf250200000008000200", @ANYRES32=0x0, @ANYRES8=r2, @ANYRES32=0x0, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x8040}, 0xa014) ioctl$auto_UI_DEV_CREATE(r2, 0x5501, 0x0) r3 = io_uring_setup$auto(0xffffffaf, 0x0) r4 = socket(0x2, 0x1, 0x106) r5 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000080), r4) sendmsg$auto_OVS_VPORT_CMD_DEL(r3, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="200026bd7000fcdbf52502000000466394eaf3d3ee2a24"], 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x880) mmap$auto(0x0, 0x202000a, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) socket(0x10, 0x2, 0x0) openat$auto_nsim_udp_tunnels_info_reset_fops_udp_tunnels(0xffffffffffffff9c, 0x0, 0x410642, 0x0) socket(0xa, 0x2, 0x3a) socket(0x2, 0x80002, 0x73) mmap$auto(0x0, 0x40008, 0xdb, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x0, 0xfffffffc, 0x0) r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0xc7f16bff2a10ba01, 0x0) ioctl$auto_TIOCSETD2(r6, 0x5423, 0x0) socketpair$auto(0x4, 0x1, 0x20000, 0x0) r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101400, 0x0) ioctl$auto_TIOCSETD2(r7, 0x5423, 0x0) ioctl$auto_TIOCVHANGUP2(r6, 0x5437, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wlan0\x00'}) 3.37733774s ago: executing program 3 (id=568): read$auto(0xffffffffffffffff, 0x0, 0x1400) r0 = open(0x0, 0x22240, 0x155) r1 = socket(0x15, 0x5, 0x0) r2 = socket(0xa, 0x6, 0x0) r3 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, 0x0, 0x180, 0x0) ioctl$auto_OSS_ALSAEMULVER(r3, 0x80044df9, 0x0) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, 0x38) close_range$auto(r2, r1, 0x3c7) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) socket$nl_generic(0x10, 0x3, 0x10) r4 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0) ioctl$auto_EVIOCGMASK(r4, 0x80104592, &(0x7f0000000000)={0x2000, 0x800004, 0x105}) ioctl$auto(0x3, 0x80004509, 0x10000000000402) ioctl$auto(0x3, 0x800005411, 0x38) r5 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) read$auto_posix_clock_file_operations_posix_clock(r5, 0x0, 0x0) mmap$auto(0x0, 0xa, 0xdf, 0x9b72, 0x2, 0x3) getsockopt$auto(0x6, 0x40000000029, 0x12, 0xfffffffffffffffe, 0x0) socket(0x3, 0x5, 0x0) connect$auto(0x3, 0x0, 0x55) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000000)={0x8, "ade9c88ceb4ed0f291199d2f903565dfb1b47f9ae853fd693f7914a58b4d2dca", @raw=0x4}) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x401, 0x1) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio1\x00', 0x0, 0x0) close_range$auto(0x0, 0xffffffffffffffff, 0x2) fanotify_init$auto(0x7, 0x2000000000002) open(&(0x7f0000000000)='./file1\x00', 0x1652c2, 0xe1d2b27bdc14aa98) 3.08114866s ago: executing program 1 (id=569): openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/tty53\x00', 0x200, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0) r1 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00082dbd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100aaaaaaaaaa35000008000200", @ANYRES32, @ANYBLOB="060006000500000008002e"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x13}, 0x4000040) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) select$auto(0x7, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x0, 0x1, 0x2, 0x3, 0x95f4da0a, 0xefffffffffffffff, 0x3, 0x62, 0x80000001, 0x10000000000004, 0x6d40, 0x1, 0x2, 0xfffffffffffffffe]}, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) ioperm$auto(0x7, 0x6, 0x10) rename$auto(0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) getxattrat$auto(0xffffffffffffffff, 0x0, 0x1c, 0x0, 0x0, 0x3) setsockopt$auto(0xffffffffffffffff, 0x0, 0x1, 0x0, 0x1e) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x7, 0xc45d, 0x80, 0x6, 0x3, 0x2, 0x3, 0x3, 0x62, 0x80000022, 0x7, 0x6d3e, 0x2000000004000009, 0x2, 0x6]}, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000) ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto(r3, 0x5522, 0xf15) ioctl$auto(r3, 0x5523, r3) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0x0, 0x0) writev$auto(r2, &(0x7f0000000100)={0x0, 0x7110}, 0x8) socket(0xa, 0x5, 0x94) 2.869425055s ago: executing program 0 (id=570): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/oom_adj\x00', 0x6e401, 0x0) read$auto(r0, 0x0, 0x1f40) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0) sendmsg$auto_NLBL_UNLABEL_C_STATICREMOVEDEF(0xffffffffffffffff, 0x0, 0x2f1f31acb9aa6917) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000031c0)='/sys/devices/pci0000:00/0000:00:03.0/virtio0/vendor\x00', 0x101000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000003200)=""/64, 0x40) syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0xc0000, 0x0) socket(0x1e, 0x1, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ptyxb\x00', 0x20000, 0x0) ioctl$auto_TIOCGDEV2(r4, 0x542f, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x2, 0x1, 0x948b, 0x1, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x5]}, 0x0) writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x7}, 0x3) ioperm$auto(0x5, 0x1, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x2, 0x9) close_range$auto(0x2, 0x8000, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x2, 0x6, 0x5, 0x8, 0xffffffffffffffff, [], {0x7, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000001}}) io_uring_enter$auto(r5, 0x9, 0x820e, 0x9, 0x0, 0x18) connect$auto(r0, &(0x7f0000000040)=@xdp={0x2c, 0x0, 0x0, 0x17}, 0x5) openat2$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_virtual_ncidev_fops_virtual_ncidev(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) fallocate$auto(r3, 0x0, 0xe, 0x6) 2.41388284s ago: executing program 2 (id=571): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x18, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xb5, 0xeb1, r0, 0x167c) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) epoll_create$auto(0x4) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) r1 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/1/msr\x00', 0xf82, 0x0) readv$auto(r1, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) setsockopt$auto_SO_OOBINLINE(0xffffffffffffffff, 0x3, 0xa, &(0x7f0000000080)='nlctrl\x00', 0x2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0xa, 0x0) getsockopt$auto_SO_BROADCAST(0xffffffffffffffff, 0xf7f, 0x6, &(0x7f0000000000)='!.##\x00', &(0x7f0000000180)) ioctl$auto_BTRFS_IOC_FORGET_DEV(0xffffffffffffffff, 0x50009405, &(0x7f00000001c0)={@raw=0xbe, "147f624b05a2b22a62eb108f57b62c1a128c0f4a188dab9dc484db51686adb5a70d52b7f2f66145c31facd1cbb574c587628bd4cd6107b246f8f98fc23c6a864a492955d4c9350848a1d376d48008c8245ef620306a514c0e2f4dccf4932b8161402a453d31f6a2849bd701d53c73b5c87638db257f5ee75b4b2f3050dcd85bdda18e5f6c8f07bcbafc93b528f48baacd00dff67c662817347d58f7e2540061f146deeeb8a8fbea98e59c0ed49ac5898827aaa13b42a504dc9de98747915c70a39df9e7ad1373109c541923589e6364976cd3168fe3d0f085186627bde1577bbf260387eb8ecb5ad8d705de9f1e9b3d50ce454db9cbecf236dffbd3b274b5a7a63d3be027f04c7111ed622df2830ad588ef1d8b6c480b0f0772b5e7f621f8afa59a92859c296e01a7fa3f30f0d0d4337652988adb2b9d680d2c4f9896e1139548670c3598f33ba0f43def8ca1044626e75ca4d2b886f6db26ebb438a587407e59cf70e6cedf804044a4ccbccdcdcfd3e18152f5ac92af75d4deb491679de72f1b13ad5478ed08bb7acfc503580dae5c23583d01fdfecc9207f9e276540cf2328ba7a585937fd6acbda9a3a770277729be4f41177789decd4e0854b9861c08504c89215d7e8ce3473a0ad98f25d1d9e5fe2054a4ba9d3e0a67718ac00f384b74f5c8b24097e30e63af0c374c78f21d0af94486933450a311f8194051592e9e37607542244627393d338575c5a0a51815a01bd5ecf313cadddbb3c6bd4941a5c636b0c884ea266740b25c397ff3ea626070602d43ffbbebc0bddfdc47602432ecedce3bb6b0aba196f0eb714251d210bc979b4518005e41b5b6b0fc0ba793a8e77edd81553ce3a99cf9e7f4a9a41858e1971ac4127fa9995c888259e3436b7366e1344955ec1dd8628581a07056ec537e8196f87ab570af4fb4744f874fb283f8a54cae01cb32f70543eb60b6f65cc5269171d7e5fff4cbe4cc0b76983aaba8d869d8848e496e2c5359251a39e5f9d1c0c6756456dcdd744e82594b2a6bfe3db7877c7fc123c259f8f70b36b3c48ae31875d5cf3eb6b00a32e107f419a079641e51c8233f4c304b4bf7942814ec1eb8166f0b168d76fb3c05cb1d0ccd66fd15cbb399f3730076246721f4d71f5bbcb63d2309c74878bb16ec592873f7514b66118673f808c2cb16b4a7b3be7b560b5183bb231be5829d9de866ecbf23c70779c6f9d37b7d185cdf53a328eeee8ea27931c68c68edad37f2a10fbfcffacbacb80e8c39a0504bddab3156c7c35ab417aee9c979bf14718975e59ec51a37516a71abd59ddc916de121937da400f09b85e96b554a1f5688b20e2df0f814163e46db2ef60268a6c57035008998b834560a7f9a69bcde2110f8d401321db671c7cd28fce473d9dd43d598ef1e576c93281a5a510fb48e7dbfe06451e2e9718ab0b6cd6ec02b6b62ae9d6cc7ec94af64311793125d92ef9ac91b0d99445c4dae30f46ef49f8068950a6a32661094ac22af30e313fc183ebe103e709be8bcb4e657a731ac05e55a5f3b772ec5f89074fce97e565f560d172c6975dd1edde80507a9e442b208fd57520cbbcac16ddcb26fc8ef1d19d2cfb07e80d32aab1769e628303478aff29f0143140478b50d392fb3e53e0d386ea97d901c27ae5911330f337ef7048cb7f5307fb0231066c100177c09722719372aa5dcffbfa6e84469bfa884446d5848d6af5c4a324f0805e5a1c82e97387239ba24e8406edccd92d37c0bafd97160cea312ba3ef96b6982d28e0d5e2b3bba83dcee9f5de3155d635deebc55bc030f9dadc659a0b6f5a84d539077e785ed5ed098115b576a7238c3532cea0fe9f00cfad2112908e57e66be5e86339812b5257a03e735727ea8c4cf5bcf0820dcf87a906bd962806a2767971f6079613acfb781d514111f35ba1fcdecaa15764d9ca817794c536cb4b1d4a2f60cf116520aa1cd2f7ade5d38c195ee6aaa196ceeaad0a3d642b0e4b54a5c9ffe8941e4f661aba9b9d77a0e2af0d1dd8120810f4b4f93bc56a2405b32ec460ccfae654ed07abfbfc3dab30d5e0b77538033ee73833910ecb297be29cf034a1133583e5afd7633e4a1b44c844cd34eb7d5e07d74e695b4abea1a70b5eb902385563e30134ec33ada8dc78433b4eefa2ead19df77dfc71148607e5c708f7692f1645e7a323f175849bd045f0bbed4f6a06169deceb2a4d361493ee6db8c7b0bd18b9782f48f7459c9d9033221dcf6a07464c04df0b11f99a943e12b1b0b6dc71c3bfef7128b2df83f1ee99952e4cc0a51189a21302e998fd2ed37b2ae8bfd96a47d50eb3d196fea3af714157e6a4e0630e0944de57556aa3225b485388faed23a9a9d595a5ff296e8e29452ef5541230954d4d0f916a27781041902f13cf0e962527e1a0f659a95a0c3831bb62841ba3e01c74859818283ad0725e76ed82f695405fffccd90ad1be0ad211891546a2ab3f75b9872c3ad68c2f5f4d8510cf1e087e789c5ab821ef46e197a36986434b1569499ad2717db7b200afd77b7542ba00a46192341aee8fe3bfe3d6e0c2767cafca11ce2beaf97602ef9095e815ab6eaec42399865f724ee9d96217f45a84a0def5d87375c65e0430cdc83422b8d367982f2722e793c6ba37687d34f0e2068c114fae854a3158abba5f5689a40488d095de19071a71d8d7a17f4389f2d20c4c0f9c16760d52d166acc5c201cfaecc0fc54b7143c60aaaac0ae196b36f3e1447e3e0992be2642ca8302b24514bd06cce84279ce361bb8ce245ca5152848ab4cced61c67e4579c0db21efd26efc0780cf4a04b02ddaa54335fa327d57320307e0dc3fe1f6cdb686150e2235e05ddeba10a193d49408ee47f57229a6ff30351dedf61b8789900eb15db5b0069c57984ba31710509d88da1d78b3eface0ad5b2cb7f303e248cb68abfd5a0c3ac672d1f6178fe54ef67e034d38c01e3458d9b64a97eb0cccfae7efbbbc0c8b806e75ae5dbdf641d8daa862f90cac0d460c6f70a7765169cd1e9fe305db403e4e453ce84c35a3573751a93ca7dd478ba547449254f3d7ac7b05f345bf0eec346db042b982c964c81545bf05986d033df8e41e9e19d3561250514ed703444048f44763261a860aa3cf0b539544af9a1fc4ba7f989111e00dcab0e64b538a1019467c3b43641e13c2707a4fdc78648b92302a54a0e7e3de53488e852f0fe658557ad1df2cf12a898515769bcde0f4a3386764d5b2f0eba5eee1e3257215c005b3bad612ff43b4121efc277fe9b80c69eee2c1ffdcb3ef843485d636a0025848254e22cd2f51c1f85202ae22d53969072c1ec4dbb973a157059ed523b8dad9671f6bba68a9d4521564a826b208df019ea32eeaf5b8f973263fdcab4c2519ac0d5ce4c181b12ba71bb3fc02388e72e89a24152e07b264fb00b425633ca2b2aaccd7208d5df00002b7fa4502656593a8e84e4b620bc65a60bf3d3c8b0c1d0ac93bcc711b9cf206b1037d3437e515913badbd7ce52a69b32cd5b828193dac41fe0ff1a869bf086927eff915e422be23f40a54a2384e478f74bb2a397ecd214224294d9300d921afad2f50960e9830dc1ac8ee08ea0ff474d40a23b1f7dbc7761120c889b3354281751342d2429eb2555a8a57063f61c6cb3115d99d41a040c4d9fb3c5ddec980abfef33562607b7ad6fc8ac67c8026d50f2e01d949d065a8ea488b3d0d7ba296c914352b99a6c36aad4c030d1f9bef8696cb6d9dee3835646695b2a43f8682405c118477dd6486699dcd9cb93d911dae691fabfdfcc76ae48bcdf5d5ea87fffdcaf4e14faaa36689da73c9012ff943a787ec0e83f52cf221219f3468bdc010698450a19717e4ed062ab7d682d9e18c4469581bd09cd31aeaf1d17afb02b9cd769f56830d0ad155e4898889b438edfb13fb40d46bfe082ae1cd0f287805e4f2d011f43cd070f883668f45612132b19ff2f406bf80a1e5e69c741c63bc366c102a7a7e78d92e058d1f771031e582094bc7536182ddf2b88ef13d6573d0d34183c5e4dff48654ec1d18a44f6b2c67b17eb06489523bc3e7908b612e5204985cad17ff99b41650e49e469d8d80f3a2e32e93826e02160fbf19d92ab300bee4319b333aa9e96ac46d22ed71cf8394663f62362fe145094d140588c2e6f3eadc0bc16f6f6172aeac1e9ca44d93fa1399c641729e21f97f25ce5b4163419235bb98a218fa9d50b7aaa835d122c0436352b27909dcab907e43630907b23713bb445b93b8ec840b17d3d4618dd38bf58f2a0a6c3272a00aa8704774078f565faa4195ddfc15b33b196e646ebd8ab55e74da11ab4c30d031785c7c168d30ca12d23dcfa4a5a4f883f3b887fb77d822dae0a161d6c3565037a1f36bb1cf1d8601d94e4111b4ee435a98c21577b1e647ba160921881339a00a2d04210e603dcd9dfe2c40d32e5d93d9e94a5c176ca6291d5befa75121ec0abd660e2bac1458bd5609a6d725af0895b0d559ad726f34b50a06fd45f86764508386ab65ade7c76d0ce07330bf0d342216a769c98edb854cad6f6b02e0d09e713bbb7e12c786edd9d1078f3c5d0a87d34d9326e938098d674fb2d1ab1e39e3683a3ef0e00d9b66d56582e9d5f2d61a60226ee2c9cda7d44ef0504d6109fcd7978207df3eb9ed5ac860e0172907362654efb54cd6d04f7a58578fa3853d65e9243730466085905cbf1e1b34ea7a2f9dd268495d49824045074debb4c9140dfdbfc81fc6d371ec49521ddd996fd8761ada5d427348503a57a73a3ac74a540df4c2af59a1ecf644c00ebfbffafbf2990776717a2687889da69fefd0b0cb33c8351d147bcf31f98c8909e554c7ffd2cc9f64e4eb6b9c4b232489a2d912f19f79108b73a38de79fafd4a885de47810bdc4658d6d773c97e523732997392f1e02396875eda8ff955ef0ad75145cc1819df6a53878b9f1c5964146dcd73eabed0df798aea5c533fc263bc8d2533e36cde59e2cdd2ffac12cd7e6bea69ccc14b0b22b7606a6f82e8528f8dc739cd5c0ed0795d49452f257be2068055dcfaa7589ca65820d31583a81834910d8d1327469e370339dce1d87c31a750a02270cdaef457da2d50abac6651357858c391464781009209d79cf4286045773fe247e705a14b162583cd89e850df91b7517bd0a4476ac02fdc1dbd0faa81fa1e829ad0a548236939efcdf63c15b868b8712ca05571d7c0b810cc02cba9d1ae63e987b59ec3281cd706d7571d6b69a92663f11a24a68dbc6b2436b8049986f78fbe8effcf94457d5085dbf8812abb1fd431c6b465203eb67070a936a665fb19273240ed1e3905ea27b996b74b31b1216a77734b106dd9752a5f430ac5aef718c6942379dbd342aa66537e655afa95ec78cadcfc80584045cd07d43911c4d7dc3a37a4cf3cdf6eea9904c441ec02cfe0515c6c360463237aa6b3fafebcb1a59be1bf5ebe4680819f3e78ccc1e517987db6220b45bf840fb8fc9b33757a0e258468a911f2504358981410b6daad15bb0ed81ff971ef3cc89f06dacfa45a37cb37e946f5010d0a308ff760227d439f07401839b7844bd4e5f5d1824c17797c5abfb5a326f6b4626f9789d8d7a074b7f223cc4183f68e14de037a197920a858c310e3602a3c6f319b506bc4c523af495a95b74eb88af2699cbbeecbab62811ed05a0ea5e292e72e565ccbeb3fda2f32ee05ff7bfa40bfead96ace132532026e553bc4438a65ea897d64e9cdec2baa75839f9ea4dba584b81a9b813dc648e3ac31c885ec5dcedda3efc7a3a7"}) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) close_range$auto(0x2, 0x8, 0x0) 2.100647539s ago: executing program 3 (id=572): socket(0xa, 0x2, 0x0) sendto$auto(0x3, 0x0, 0x13, 0xfffffff9, 0x0, 0x22) r0 = socket(0x18, 0x5, 0x1) connect$auto(r0, 0x0, 0x3a) ioperm$auto(0x7, 0x6, 0x2) write$auto_v4l2_fops_v4l2_dev(0xffffffffffffffff, &(0x7f00000000c0), 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/default/forwarding\x00', 0x141241, 0x0) pwrite64$auto(r1, &(0x7f0000000000)='./cgroup/memory.pressure\x00', 0x6bc, 0x5) (fail_nth: 2) 1.646224377s ago: executing program 1 (id=573): openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x2002, 0x0) r0 = socket(0x2c, 0x80003, 0x0) r1 = openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/per_cpu/cpu1/buffer_size_kb\x00', 0x80, 0x0) mmap$auto(0x0, 0x15f, 0x3, 0xeb1, r1, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/transparent_hugepage/khugepaged/max_ptes_swap\x00', 0x100042, 0x0) execveat$auto(r0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000180)=&(0x7f0000000140)='/sys/kernel/mm/transparent_hugepage/khugepaged/max_ptes_swap\x00', &(0x7f0000000200)=&(0x7f00000001c0)=',%\x00', 0x6) write$auto(r3, 0x0, 0x4) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/bonding/ad_actor_sys_prio\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000008c0)=""/61, 0x3d) capget$auto(0x0, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x801, 0x0) connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2711}, 0x51) shutdown$auto(0x200000003, 0x2) connect$auto(0x3, 0x0, 0x54) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) unshare$auto(0x9) 1.395275912s ago: executing program 0 (id=575): openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/tty53\x00', 0x200, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000002, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x9, 0x81, 0xdfffffffffff628e, 0x6, 0xdeb1, 0x808}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) madvise$auto(0x0, 0x20499d, 0x9) kill$auto(0x0, 0x12) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40008d0}, 0x4831) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8000) open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x10a) r1 = socket(0xa, 0x1, 0x0) getsockopt$auto(r1, 0x6, 0x3, &(0x7f00000002c0)='$\xfe\x88\xc8\x91\x8bo\xc6#\x00\x00\x00\xfd\xb1\x00\xdb\xc0\x80\xd6\xdb>f\x8c\xf7\xb6G\xe0\xb0Z\x89\xf7i\xb8\xb0,\x86\x00\x9c~\xca\xcdi\xa6\x91R\x7f\x00B\x93H9\x19\xb4x\xe6\xb7\xd3\xe4\x00\x00\x00T@\xf0\x8b\xd4XE\x17\xaa\b', &(0x7f0000000180)=0xad) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff) r2 = socket(0xa, 0x5, 0x84) sendto$auto(r2, 0x0, 0x401, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe80fffefec03f00"}, 0x1c) 1.371240664s ago: executing program 3 (id=576): r0 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000000), 0x80001, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyv3\x00', 0x0, 0x0) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r0, 0x3b72, 0x0) acct$auto(&(0x7f0000000100)='/dev/pty\x00\x0e\x00\xea\xef\x16\n\xee\xd2\xb7\x02m\xc3V\xbcOMe\xb3\x11g\x9a:\x98\xadOT\x9f\x18$\xd8%\x8b\x8c?`r@\xd4\xb68qt\xe4\x18\x8a\b\x19\x0e@\t\xa1UGG\xea\xad\xfd\xb4\xed\xa8\x12\x9a\x93\x03\x81}b\x05p\nW\x02\xe9\xaf\x1c\x96\xf32\x97c&\xa3C\xa7\x8b-W\xae_\x00\xee\x1a\n0x0, 0x0, 0x3, 0x8, 0xfffffffffffffff8, 0x5, 0xb, 0xfffffffffffffffc, 0x80000001, 0x9, 0x8, 0x2}) unshare$auto(0x20000) keyctl$auto_KEY_REQKEY_DEFL_PROCESS_KEYRING(0xa, 0x2, 0x0, r4, 0x42) r5 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) ppoll$auto(&(0x7f0000000000)={r5, 0x40}, 0x2, 0x0, 0x0, 0x8) r6 = open_by_handle_at$auto(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x1b}, 0x403) socket(0x11, 0x3, 0x9) write$auto_ocfs2_control_fops_stack_user(r6, &(0x7f0000000280)="0a045ad48ab9a8e0882f3d6cfdb0e72edb40a5c6a4a2f7feb632f24548d587093465ba792a3107a88e4bacb72b7e5b5d2615177550ca5a192c7beae2f0ee42a0f079aac03fe1030da1410e9c1af7ba0118821f0256f8", 0x56) kernel console output (not intermixed with test programs): 0x5a0 [ 168.799233][ T6749] device_add+0x288/0x1a70 [ 168.799299][ T6749] ? __pfx_device_add+0x10/0x10 [ 168.799339][ T6749] ? kfree+0x252/0x4d0 [ 168.799417][ T6749] device_create_groups_vargs+0x1f8/0x270 [ 168.799467][ T6749] device_create+0xed/0x130 [ 168.799509][ T6749] ? __pfx_device_create+0x10/0x10 [ 168.799555][ T6749] ? do_init_timer+0xc9/0x110 [ 168.799608][ T6749] ? ieee80211_roc_setup+0x136/0x270 [ 168.799650][ T6749] ? ieee80211_alloc_hw_nm+0x231/0x2260 [ 168.799707][ T6749] mac80211_hwsim_new_radio+0x369/0x54d0 [ 168.799777][ T6749] ? __asan_memset+0x23/0x50 [ 168.799831][ T6749] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 168.799894][ T6749] hwsim_new_radio_nl+0xb51/0x12c0 [ 168.799947][ T6749] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 168.800009][ T6749] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 168.800058][ T6749] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 168.800114][ T6749] genl_family_rcv_msg_doit+0x206/0x2f0 [ 168.800170][ T6749] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 168.800216][ T6749] ? trace_cap_capable+0x18d/0x200 [ 168.800259][ T6749] ? bpf_lsm_capable+0x9/0x10 [ 168.800292][ T6749] ? security_capable+0x7e/0x260 [ 168.800347][ T6749] ? ns_capable+0xd7/0x110 [ 168.800385][ T6749] genl_rcv_msg+0x55c/0x800 [ 168.800434][ T6749] ? __pfx_genl_rcv_msg+0x10/0x10 [ 168.800476][ T6749] ? __pfx___dev_queue_xmit+0x10/0x10 [ 168.800527][ T6749] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 168.800579][ T6749] ? __lock_acquire+0xaa4/0x1ba0 [ 168.800628][ T6749] netlink_rcv_skb+0x16a/0x440 [ 168.800665][ T6749] ? __pfx_genl_rcv_msg+0x10/0x10 [ 168.800712][ T6749] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 168.800771][ T6749] ? __pfx_down_read+0x10/0x10 [ 168.800821][ T6749] ? netlink_deliver_tap+0x1ae/0xd30 [ 168.800864][ T6749] genl_rcv+0x28/0x40 [ 168.800903][ T6749] netlink_unicast+0x53a/0x7f0 [ 168.800947][ T6749] ? __pfx_netlink_unicast+0x10/0x10 [ 168.800982][ T6749] ? __lock_acquire+0xaa4/0x1ba0 [ 168.801035][ T6749] netlink_sendmsg+0x8d1/0xdd0 [ 168.801080][ T6749] ? __pfx_netlink_sendmsg+0x10/0x10 [ 168.801146][ T6749] ____sys_sendmsg+0xa95/0xc70 [ 168.801198][ T6749] ? copy_msghdr_from_user+0x10a/0x160 [ 168.801233][ T6749] ? __pfx_____sys_sendmsg+0x10/0x10 [ 168.801288][ T6749] ? try_to_wake_up+0xa2f/0x1680 [ 168.801326][ T6749] ___sys_sendmsg+0x134/0x1d0 [ 168.801365][ T6749] ? __pfx____sys_sendmsg+0x10/0x10 [ 168.801455][ T6749] __sys_sendmsg+0x16d/0x220 [ 168.801492][ T6749] ? __pfx___sys_sendmsg+0x10/0x10 [ 168.801526][ T6749] ? __x64_sys_futex+0x1e0/0x4c0 [ 168.801572][ T6749] ? rcu_is_watching+0x12/0xc0 [ 168.801615][ T6749] do_syscall_64+0xcd/0x230 [ 168.801662][ T6749] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 168.801695][ T6749] RIP: 0033:0x7f87e958e969 [ 168.801721][ T6749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 168.801753][ T6749] RSP: 002b:00007f87ea4c2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 168.801784][ T6749] RAX: ffffffffffffffda RBX: 00007f87e97b5fa0 RCX: 00007f87e958e969 [ 168.801806][ T6749] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000007 [ 168.801826][ T6749] RBP: 00007f87e9610ab1 R08: 0000000000000000 R09: 0000000000000000 [ 168.801846][ T6749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 168.801864][ T6749] R13: 0000000000000000 R14: 00007f87e97b5fa0 R15: 00007ffd66acc568 [ 168.801907][ T6749] [ 169.285636][ C1] vkms_vblank_simulate: vblank timer overrun [ 169.376467][ T6749] kobject: kobject_add_internal failed for hwsim20 (error: -12 parent: mac80211_hwsim) [ 172.552482][ T6803] FAULT_INJECTION: forcing a failure. [ 172.552482][ T6803] name failslab, interval 1, probability 0, space 0, times 0 [ 172.609338][ T6803] CPU: 0 UID: 0 PID: 6803 Comm: syz.3.192 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 172.609393][ T6803] Tainted: [U]=USER [ 172.609404][ T6803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 172.609422][ T6803] Call Trace: [ 172.609433][ T6803] [ 172.609445][ T6803] dump_stack_lvl+0x16c/0x1f0 [ 172.609493][ T6803] should_fail_ex+0x512/0x640 [ 172.609537][ T6803] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 172.609581][ T6803] should_failslab+0xc2/0x120 [ 172.609621][ T6803] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 172.609662][ T6803] ? kasprintf+0xc7/0x100 [ 172.609717][ T6803] kvasprintf+0xbc/0x160 [ 172.609764][ T6803] ? __pfx_kvasprintf+0x10/0x10 [ 172.609816][ T6803] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 172.609854][ T6803] ? lockdep_hardirqs_on+0x7c/0x110 [ 172.609894][ T6803] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 172.609938][ T6803] kasprintf+0xc7/0x100 [ 172.609991][ T6803] ? __pfx_kasprintf+0x10/0x10 [ 172.610051][ T6803] ? __pfx_sta_info_cleanup+0x10/0x10 [ 172.610100][ T6803] ieee80211_alloc_led_names+0x11b/0x420 [ 172.610151][ T6803] ieee80211_alloc_hw_nm+0x1941/0x2260 [ 172.610210][ T6803] mac80211_hwsim_new_radio+0x1d4/0x54d0 [ 172.610276][ T6803] ? __asan_memset+0x23/0x50 [ 172.610328][ T6803] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 172.610389][ T6803] hwsim_new_radio_nl+0xb51/0x12c0 [ 172.610459][ T6803] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 172.610521][ T6803] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 172.610569][ T6803] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 172.610627][ T6803] genl_family_rcv_msg_doit+0x206/0x2f0 [ 172.610675][ T6803] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 172.610721][ T6803] ? trace_cap_capable+0x18d/0x200 [ 172.610764][ T6803] ? bpf_lsm_capable+0x9/0x10 [ 172.610797][ T6803] ? security_capable+0x7e/0x260 [ 172.610851][ T6803] ? ns_capable+0xd7/0x110 [ 172.610890][ T6803] genl_rcv_msg+0x55c/0x800 [ 172.610940][ T6803] ? __pfx_genl_rcv_msg+0x10/0x10 [ 172.610982][ T6803] ? __pfx___dev_queue_xmit+0x10/0x10 [ 172.611038][ T6803] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 172.611090][ T6803] ? __lock_acquire+0xaa4/0x1ba0 [ 172.611139][ T6803] netlink_rcv_skb+0x16a/0x440 [ 172.611176][ T6803] ? __pfx_genl_rcv_msg+0x10/0x10 [ 172.611223][ T6803] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 172.611285][ T6803] ? __pfx_down_read+0x10/0x10 [ 172.611335][ T6803] ? netlink_deliver_tap+0x1ae/0xd30 [ 172.611378][ T6803] genl_rcv+0x28/0x40 [ 172.611417][ T6803] netlink_unicast+0x53a/0x7f0 [ 172.611462][ T6803] ? __pfx_netlink_unicast+0x10/0x10 [ 172.611498][ T6803] ? __lock_acquire+0xaa4/0x1ba0 [ 172.611551][ T6803] netlink_sendmsg+0x8d1/0xdd0 [ 172.611597][ T6803] ? __pfx_netlink_sendmsg+0x10/0x10 [ 172.611652][ T6803] ____sys_sendmsg+0xa95/0xc70 [ 172.611697][ T6803] ? copy_msghdr_from_user+0x10a/0x160 [ 172.611745][ T6803] ? __pfx_____sys_sendmsg+0x10/0x10 [ 172.611828][ T6803] ___sys_sendmsg+0x134/0x1d0 [ 172.611866][ T6803] ? __pfx____sys_sendmsg+0x10/0x10 [ 172.611956][ T6803] __sys_sendmsg+0x16d/0x220 [ 172.611999][ T6803] ? __pfx___sys_sendmsg+0x10/0x10 [ 172.612033][ T6803] ? __x64_sys_futex+0x1e0/0x4c0 [ 172.612088][ T6803] ? rcu_is_watching+0x12/0xc0 [ 172.612130][ T6803] do_syscall_64+0xcd/0x230 [ 172.612178][ T6803] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 172.612211][ T6803] RIP: 0033:0x7f2656b8e969 [ 172.612237][ T6803] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 172.612269][ T6803] RSP: 002b:00007f26579c0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 172.612300][ T6803] RAX: ffffffffffffffda RBX: 00007f2656db5fa0 RCX: 00007f2656b8e969 [ 172.612322][ T6803] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000007 [ 172.612342][ T6803] RBP: 00007f2656c10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 172.612362][ T6803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 172.612382][ T6803] R13: 0000000000000000 R14: 00007f2656db5fa0 R15: 00007ffd85635348 [ 172.612425][ T6803] [ 175.625637][ T6841] netlink: zone id is out of range [ 175.634356][ T6841] netlink: zone id is out of range [ 175.642025][ T6841] netlink: zone id is out of range [ 175.650393][ T6841] netlink: zone id is out of range [ 175.673712][ T6841] netlink: zone id is out of range [ 175.733445][ T6841] netlink: zone id is out of range [ 175.738861][ T6841] netlink: zone id is out of range [ 175.744011][ T6841] netlink: zone id is out of range [ 175.749229][ T6841] netlink: zone id is out of range [ 175.754366][ T6841] netlink: zone id is out of range [ 175.821113][ T5832] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 181.179255][ T6941] input: jJǸ-¶š9ã%vø“û¨lÐQ  J86Ö‘ as /devices/virtual/input/input5 [ 181.204463][ T6940] binder: 6939:6940 ioctl 41045508 1 returned -22 [ 181.795846][ T6958] size and base must be multiples of 4 kiB [ 181.812851][ T6958] CPU: 1 UID: 0 PID: 6958 Comm: syz.3.224 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 181.812906][ T6958] Tainted: [U]=USER [ 181.812917][ T6958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 181.812934][ T6958] Call Trace: [ 181.812944][ T6958] [ 181.812956][ T6958] dump_stack_lvl+0x16c/0x1f0 [ 181.813003][ T6958] mtrr_add+0xdf/0x110 [ 181.813053][ T6958] mtrr_ioctl+0x7ef/0xcf0 [ 181.813112][ T6958] ? __pfx_mtrr_ioctl+0x10/0x10 [ 181.813169][ T6958] ? find_held_lock+0x2b/0x80 [ 181.813209][ T6958] ? __fget_files+0x20e/0x3c0 [ 181.813262][ T6958] ? __pfx_mtrr_ioctl+0x10/0x10 [ 181.813311][ T6958] proc_reg_unlocked_ioctl+0x226/0x320 [ 181.813344][ T6958] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 181.813382][ T6958] __x64_sys_ioctl+0x190/0x200 [ 181.813430][ T6958] do_syscall_64+0xcd/0x230 [ 181.813478][ T6958] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 181.813510][ T6958] RIP: 0033:0x7f2656b8e969 [ 181.813535][ T6958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 181.813566][ T6958] RSP: 002b:00007f26579c0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 181.813603][ T6958] RAX: ffffffffffffffda RBX: 00007f2656db5fa0 RCX: 00007f2656b8e969 [ 181.813625][ T6958] RDX: 0000000000000003 RSI: 00000000400c4d01 RDI: 0000000000000003 [ 181.813645][ T6958] RBP: 00007f2656c10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 181.813665][ T6958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 181.813684][ T6958] R13: 0000000000000000 R14: 00007f2656db5fa0 R15: 00007ffd85635348 [ 181.813725][ T6958] [ 182.929506][ T6972] ======================================================= [ 182.929506][ T6972] WARNING: The mand mount option has been deprecated and [ 182.929506][ T6972] and is ignored by this kernel. Remove the mand [ 182.929506][ T6972] option from the mount to silence this warning. [ 182.929506][ T6972] ======================================================= [ 183.464272][ T6982] FAULT_INJECTION: forcing a failure. [ 183.464272][ T6982] name failslab, interval 1, probability 0, space 0, times 0 [ 183.519960][ T6982] CPU: 0 UID: 0 PID: 6982 Comm: syz.0.233 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 183.520013][ T6982] Tainted: [U]=USER [ 183.520023][ T6982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 183.520042][ T6982] Call Trace: [ 183.520052][ T6982] [ 183.520064][ T6982] dump_stack_lvl+0x16c/0x1f0 [ 183.520110][ T6982] should_fail_ex+0x512/0x640 [ 183.520155][ T6982] ? __kvmalloc_node_noprof+0x122/0x600 [ 183.520192][ T6982] should_failslab+0xc2/0x120 [ 183.520232][ T6982] __kvmalloc_node_noprof+0x135/0x600 [ 183.520266][ T6982] ? bucket_table_alloc.isra.0+0x83/0x460 [ 183.520318][ T6982] ? bucket_table_alloc.isra.0+0x83/0x460 [ 183.520358][ T6982] bucket_table_alloc.isra.0+0x83/0x460 [ 183.520406][ T6982] rhashtable_init_noprof+0x41a/0x7e0 [ 183.520446][ T6982] ? __init_waitqueue_head+0xca/0x150 [ 183.520502][ T6982] rhltable_init_noprof+0x20/0x60 [ 183.520546][ T6982] sta_info_init+0x5f/0x160 [ 183.520592][ T6982] ieee80211_alloc_hw_nm+0x840/0x2260 [ 183.520668][ T6982] ? __local_bh_enable_ip+0xa4/0x120 [ 183.520710][ T6982] mac80211_hwsim_new_radio+0x1d4/0x54d0 [ 183.520776][ T6982] ? __asan_memset+0x23/0x50 [ 183.520826][ T6982] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 183.520885][ T6982] hwsim_new_radio_nl+0xb51/0x12c0 [ 183.520935][ T6982] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 183.520991][ T6982] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 183.521036][ T6982] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 183.521090][ T6982] genl_family_rcv_msg_doit+0x206/0x2f0 [ 183.521137][ T6982] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 183.521179][ T6982] ? trace_cap_capable+0x18d/0x200 [ 183.521220][ T6982] ? bpf_lsm_capable+0x9/0x10 [ 183.521250][ T6982] ? security_capable+0x7e/0x260 [ 183.521303][ T6982] ? ns_capable+0xd7/0x110 [ 183.521338][ T6982] genl_rcv_msg+0x55c/0x800 [ 183.521386][ T6982] ? __pfx_genl_rcv_msg+0x10/0x10 [ 183.521425][ T6982] ? __pfx___dev_queue_xmit+0x10/0x10 [ 183.521472][ T6982] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 183.521547][ T6982] ? __lock_acquire+0xaa4/0x1ba0 [ 183.521594][ T6982] netlink_rcv_skb+0x16a/0x440 [ 183.521631][ T6982] ? __pfx_genl_rcv_msg+0x10/0x10 [ 183.521684][ T6982] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 183.521742][ T6982] ? __pfx_down_read+0x10/0x10 [ 183.521791][ T6982] ? netlink_deliver_tap+0x1ae/0xd30 [ 183.521832][ T6982] genl_rcv+0x28/0x40 [ 183.521870][ T6982] netlink_unicast+0x53a/0x7f0 [ 183.521912][ T6982] ? __pfx_netlink_unicast+0x10/0x10 [ 183.521945][ T6982] ? __lock_acquire+0xaa4/0x1ba0 [ 183.521993][ T6982] netlink_sendmsg+0x8d1/0xdd0 [ 183.522037][ T6982] ? __pfx_netlink_sendmsg+0x10/0x10 [ 183.522090][ T6982] ____sys_sendmsg+0xa95/0xc70 [ 183.522133][ T6982] ? copy_msghdr_from_user+0x10a/0x160 [ 183.522167][ T6982] ? __pfx_____sys_sendmsg+0x10/0x10 [ 183.522229][ T6982] ___sys_sendmsg+0x134/0x1d0 [ 183.522264][ T6982] ? __pfx____sys_sendmsg+0x10/0x10 [ 183.522349][ T6982] __sys_sendmsg+0x16d/0x220 [ 183.522382][ T6982] ? __pfx___sys_sendmsg+0x10/0x10 [ 183.522414][ T6982] ? __x64_sys_futex+0x1e0/0x4c0 [ 183.522460][ T6982] ? rcu_is_watching+0x12/0xc0 [ 183.522500][ T6982] do_syscall_64+0xcd/0x230 [ 183.522545][ T6982] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 183.522576][ T6982] RIP: 0033:0x7fcdc8b8e969 [ 183.522601][ T6982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 183.522631][ T6982] RSP: 002b:00007fcdc99e5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 183.522670][ T6982] RAX: ffffffffffffffda RBX: 00007fcdc8db5fa0 RCX: 00007fcdc8b8e969 [ 183.522690][ T6982] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000007 [ 183.522710][ T6982] RBP: 00007fcdc8c10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 183.522728][ T6982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 183.522746][ T6982] R13: 0000000000000000 R14: 00007fcdc8db5fa0 R15: 00007ffc13a1cc68 [ 183.522786][ T6982] [ 184.938214][ T7000] svc: failed to register nfsdv3 RPC service (errno 111). [ 184.982792][ T7000] svc: failed to register nfsaclv3 RPC service (errno 111). [ 185.219335][ T6989] random: crng reseeded on system resumption [ 185.604194][ T7019] binder: 7018:7019 ioctl c0306201 200000002380 returned -14 [ 186.899394][ T7042] netlink: 4 bytes leftover after parsing attributes in process `syz.3.244'. [ 187.601486][ T7054] FAULT_INJECTION: forcing a failure. [ 187.601486][ T7054] name failslab, interval 1, probability 0, space 0, times 0 [ 187.615858][ T7054] CPU: 1 UID: 0 PID: 7054 Comm: syz.1.247 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 187.615897][ T7054] Tainted: [U]=USER [ 187.615905][ T7054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 187.615919][ T7054] Call Trace: [ 187.615926][ T7054] [ 187.615935][ T7054] dump_stack_lvl+0x16c/0x1f0 [ 187.615970][ T7054] should_fail_ex+0x512/0x640 [ 187.616004][ T7054] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 187.616037][ T7054] should_failslab+0xc2/0x120 [ 187.616066][ T7054] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 187.616096][ T7054] ? find_held_lock+0x2b/0x80 [ 187.616116][ T7054] ? kstrdup_const+0x63/0x80 [ 187.616182][ T7054] kstrdup+0x53/0x100 [ 187.616223][ T7054] kstrdup_const+0x63/0x80 [ 187.616261][ T7054] __kernfs_new_node+0x9b/0x8a0 [ 187.616314][ T7054] ? __pfx___kernfs_new_node+0x10/0x10 [ 187.616379][ T7054] ? find_held_lock+0x2b/0x80 [ 187.616411][ T7054] ? kernfs_root+0xee/0x2a0 [ 187.616447][ T7054] kernfs_new_node+0x13c/0x1e0 [ 187.616479][ T7054] ? __mutex_trylock_common+0xe9/0x250 [ 187.616525][ T7054] kernfs_create_dir_ns+0x4c/0x1a0 [ 187.616574][ T7054] sysfs_create_dir_ns+0x13a/0x2b0 [ 187.616624][ T7054] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 187.616660][ T7054] ? find_held_lock+0x2b/0x80 [ 187.616686][ T7054] ? class_dir_child_ns_type+0xd/0x60 [ 187.616732][ T7054] kobject_add_internal+0x2c4/0x9b0 [ 187.616772][ T7054] kobject_add+0x16e/0x240 [ 187.616805][ T7054] ? __pfx_kobject_add+0x10/0x10 [ 187.616841][ T7054] ? get_device_parent+0x1c5/0x4e0 [ 187.616868][ T7054] ? kobject_put+0xab/0x5a0 [ 187.616908][ T7054] device_add+0x288/0x1a70 [ 187.616941][ T7054] ? __pfx_device_add+0x10/0x10 [ 187.616968][ T7054] ? kfree+0x252/0x4d0 [ 187.617013][ T7054] device_create_groups_vargs+0x1f8/0x270 [ 187.617049][ T7054] device_create+0xed/0x130 [ 187.617081][ T7054] ? __pfx_device_create+0x10/0x10 [ 187.617113][ T7054] ? do_init_timer+0xc9/0x110 [ 187.617138][ T7054] ? ieee80211_roc_setup+0x136/0x270 [ 187.617167][ T7054] ? ieee80211_alloc_hw_nm+0x231/0x2260 [ 187.617208][ T7054] mac80211_hwsim_new_radio+0x369/0x54d0 [ 187.617256][ T7054] ? __asan_memset+0x23/0x50 [ 187.617294][ T7054] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 187.617344][ T7054] hwsim_new_radio_nl+0xb51/0x12c0 [ 187.617382][ T7054] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 187.617425][ T7054] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 187.617460][ T7054] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 187.617501][ T7054] genl_family_rcv_msg_doit+0x206/0x2f0 [ 187.617535][ T7054] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 187.617573][ T7054] ? trace_cap_capable+0x18d/0x200 [ 187.617602][ T7054] ? bpf_lsm_capable+0x9/0x10 [ 187.617626][ T7054] ? security_capable+0x7e/0x260 [ 187.617665][ T7054] ? ns_capable+0xd7/0x110 [ 187.617710][ T7054] genl_rcv_msg+0x55c/0x800 [ 187.617745][ T7054] ? __pfx_genl_rcv_msg+0x10/0x10 [ 187.617789][ T7054] ? __pfx___dev_queue_xmit+0x10/0x10 [ 187.617826][ T7054] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 187.617864][ T7054] ? __lock_acquire+0xaa4/0x1ba0 [ 187.617899][ T7054] netlink_rcv_skb+0x16a/0x440 [ 187.617927][ T7054] ? __pfx_genl_rcv_msg+0x10/0x10 [ 187.617961][ T7054] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 187.618003][ T7054] ? __pfx_down_read+0x10/0x10 [ 187.618040][ T7054] ? netlink_deliver_tap+0x1ae/0xd30 [ 187.618070][ T7054] genl_rcv+0x28/0x40 [ 187.618110][ T7054] netlink_unicast+0x53a/0x7f0 [ 187.618141][ T7054] ? __pfx_netlink_unicast+0x10/0x10 [ 187.618165][ T7054] ? __lock_acquire+0xaa4/0x1ba0 [ 187.618222][ T7054] netlink_sendmsg+0x8d1/0xdd0 [ 187.618255][ T7054] ? __pfx_netlink_sendmsg+0x10/0x10 [ 187.618294][ T7054] ____sys_sendmsg+0xa95/0xc70 [ 187.618328][ T7054] ? copy_msghdr_from_user+0x10a/0x160 [ 187.618352][ T7054] ? __pfx_____sys_sendmsg+0x10/0x10 [ 187.618391][ T7054] ? try_to_wake_up+0xa2f/0x1680 [ 187.618418][ T7054] ___sys_sendmsg+0x134/0x1d0 [ 187.618445][ T7054] ? __pfx____sys_sendmsg+0x10/0x10 [ 187.618507][ T7054] __sys_sendmsg+0x16d/0x220 [ 187.618532][ T7054] ? __pfx___sys_sendmsg+0x10/0x10 [ 187.618561][ T7054] ? __x64_sys_futex+0x1e0/0x4c0 [ 187.618594][ T7054] ? rcu_is_watching+0x12/0xc0 [ 187.618637][ T7054] do_syscall_64+0xcd/0x230 [ 187.618670][ T7054] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.618694][ T7054] RIP: 0033:0x7f87e958e969 [ 187.618712][ T7054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 187.618734][ T7054] RSP: 002b:00007f87ea4c2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 187.618755][ T7054] RAX: ffffffffffffffda RBX: 00007f87e97b5fa0 RCX: 00007f87e958e969 [ 187.618770][ T7054] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000007 [ 187.618783][ T7054] RBP: 00007f87e9610ab1 R08: 0000000000000000 R09: 0000000000000000 [ 187.618797][ T7054] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 187.618810][ T7054] R13: 0000000000000000 R14: 00007f87e97b5fa0 R15: 00007ffd66acc568 [ 187.618839][ T7054] [ 188.137825][ T7054] kobject: kobject_add_internal failed for hwsim23 (error: -12 parent: mac80211_hwsim) [ 189.184281][ T7084] net_ratelimit: 23 callbacks suppressed [ 189.184299][ T7084] netlink: set zone limit has 8 unknown bytes [ 191.355401][ T7120] netlink: 'syz.1.260': attribute type 11 has an invalid length. [ 191.387416][ T7120] netlink: 'syz.1.260': attribute type 11 has an invalid length. [ 191.406810][ T7120] netlink: 4 bytes leftover after parsing attributes in process `syz.1.260'. [ 191.433605][ T7120] netlink: 'syz.1.260': attribute type 11 has an invalid length. [ 191.442688][ T7120] netlink: 20 bytes leftover after parsing attributes in process `syz.1.260'. [ 191.458117][ T7120] netlink: 200 bytes leftover after parsing attributes in process `syz.1.260'. [ 193.037456][ T7147] FAULT_INJECTION: forcing a failure. [ 193.037456][ T7147] name failslab, interval 1, probability 0, space 0, times 0 [ 193.081745][ T7147] CPU: 0 UID: 0 PID: 7147 Comm: syz.0.263 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 193.081797][ T7147] Tainted: [U]=USER [ 193.081807][ T7147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 193.081824][ T7147] Call Trace: [ 193.081834][ T7147] [ 193.081845][ T7147] dump_stack_lvl+0x16c/0x1f0 [ 193.081889][ T7147] should_fail_ex+0x512/0x640 [ 193.081933][ T7147] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 193.081977][ T7147] should_failslab+0xc2/0x120 [ 193.082013][ T7147] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 193.082055][ T7147] ? kasprintf+0xc7/0x100 [ 193.082110][ T7147] kvasprintf+0xbc/0x160 [ 193.082159][ T7147] ? __pfx_kvasprintf+0x10/0x10 [ 193.082211][ T7147] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 193.082247][ T7147] ? lockdep_hardirqs_on+0x7c/0x110 [ 193.082286][ T7147] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 193.082329][ T7147] kasprintf+0xc7/0x100 [ 193.082376][ T7147] ? __pfx_kasprintf+0x10/0x10 [ 193.082437][ T7147] ? debug_check_no_locks_freed+0x14b/0x170 [ 193.082482][ T7147] ieee80211_alloc_led_names+0x11b/0x420 [ 193.082532][ T7147] ieee80211_alloc_hw_nm+0x1941/0x2260 [ 193.082588][ T7147] mac80211_hwsim_new_radio+0x1d4/0x54d0 [ 193.082656][ T7147] ? __asan_memset+0x23/0x50 [ 193.082708][ T7147] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 193.082776][ T7147] hwsim_new_radio_nl+0xb51/0x12c0 [ 193.082827][ T7147] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 193.082892][ T7147] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 193.082937][ T7147] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 193.082992][ T7147] genl_family_rcv_msg_doit+0x206/0x2f0 [ 193.083039][ T7147] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 193.083083][ T7147] ? trace_cap_capable+0x18d/0x200 [ 193.083123][ T7147] ? bpf_lsm_capable+0x9/0x10 [ 193.083155][ T7147] ? security_capable+0x7e/0x260 [ 193.083205][ T7147] ? ns_capable+0xd7/0x110 [ 193.083240][ T7147] genl_rcv_msg+0x55c/0x800 [ 193.083287][ T7147] ? __pfx_genl_rcv_msg+0x10/0x10 [ 193.083328][ T7147] ? __pfx___dev_queue_xmit+0x10/0x10 [ 193.083376][ T7147] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 193.083424][ T7147] ? __lock_acquire+0xaa4/0x1ba0 [ 193.083472][ T7147] netlink_rcv_skb+0x16a/0x440 [ 193.083509][ T7147] ? __pfx_genl_rcv_msg+0x10/0x10 [ 193.083553][ T7147] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 193.083611][ T7147] ? __pfx_down_read+0x10/0x10 [ 193.083657][ T7147] ? netlink_deliver_tap+0x1ae/0xd30 [ 193.083698][ T7147] genl_rcv+0x28/0x40 [ 193.083741][ T7147] netlink_unicast+0x53a/0x7f0 [ 193.083784][ T7147] ? __pfx_netlink_unicast+0x10/0x10 [ 193.083819][ T7147] ? __lock_acquire+0xaa4/0x1ba0 [ 193.083870][ T7147] netlink_sendmsg+0x8d1/0xdd0 [ 193.083914][ T7147] ? __pfx_netlink_sendmsg+0x10/0x10 [ 193.083968][ T7147] ____sys_sendmsg+0xa95/0xc70 [ 193.084015][ T7147] ? copy_msghdr_from_user+0x10a/0x160 [ 193.084048][ T7147] ? __pfx_____sys_sendmsg+0x10/0x10 [ 193.084112][ T7147] ___sys_sendmsg+0x134/0x1d0 [ 193.084147][ T7147] ? __pfx____sys_sendmsg+0x10/0x10 [ 193.084234][ T7147] __sys_sendmsg+0x16d/0x220 [ 193.084268][ T7147] ? __pfx___sys_sendmsg+0x10/0x10 [ 193.084301][ T7147] ? __x64_sys_futex+0x1e0/0x4c0 [ 193.084345][ T7147] ? rcu_is_watching+0x12/0xc0 [ 193.084386][ T7147] do_syscall_64+0xcd/0x230 [ 193.084431][ T7147] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 193.084462][ T7147] RIP: 0033:0x7fcdc8b8e969 [ 193.084486][ T7147] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 193.084516][ T7147] RSP: 002b:00007fcdc99e5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 193.084544][ T7147] RAX: ffffffffffffffda RBX: 00007fcdc8db5fa0 RCX: 00007fcdc8b8e969 [ 193.084564][ T7147] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000007 [ 193.084584][ T7147] RBP: 00007fcdc8c10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 193.084603][ T7147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 193.084622][ T7147] R13: 0000000000000000 R14: 00007fcdc8db5fa0 R15: 00007ffc13a1cc68 [ 193.084664][ T7147] [ 194.055784][ T7158] ucma_write: process 297 (syz.3.270) changed security contexts after opening file descriptor, this is not allowed. [ 194.288224][ T7162] ima: policy update failed [ 194.297329][ T7162] netlink: 25 bytes leftover after parsing attributes in process `syz.0.271'. [ 194.310724][ T30] audit: type=1802 audit(6041054075.475:2): pid=7162 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.271" res=0 errno=0 [ 195.632776][ T7196] FAULT_INJECTION: forcing a failure. [ 195.632776][ T7196] name failslab, interval 1, probability 0, space 0, times 0 [ 195.730935][ T7200] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size [ 195.783492][ T7196] CPU: 1 UID: 0 PID: 7196 Comm: syz.2.279 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 195.783557][ T7196] Tainted: [U]=USER [ 195.783568][ T7196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 195.783586][ T7196] Call Trace: [ 195.783596][ T7196] [ 195.783607][ T7196] dump_stack_lvl+0x16c/0x1f0 [ 195.783654][ T7196] should_fail_ex+0x512/0x640 [ 195.783697][ T7196] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 195.783741][ T7196] should_failslab+0xc2/0x120 [ 195.783778][ T7196] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 195.783819][ T7196] ? kasprintf+0xc7/0x100 [ 195.783873][ T7196] kvasprintf+0xbc/0x160 [ 195.783920][ T7196] ? __pfx_kvasprintf+0x10/0x10 [ 195.783971][ T7196] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 195.784009][ T7196] ? lockdep_hardirqs_on+0x7c/0x110 [ 195.784061][ T7196] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 195.784103][ T7196] kasprintf+0xc7/0x100 [ 195.784168][ T7196] ? __pfx_kasprintf+0x10/0x10 [ 195.784223][ T7196] ? __pfx_sta_info_cleanup+0x10/0x10 [ 195.784272][ T7196] ieee80211_alloc_led_names+0x243/0x420 [ 195.784322][ T7196] ieee80211_alloc_hw_nm+0x1941/0x2260 [ 195.784378][ T7196] mac80211_hwsim_new_radio+0x1d4/0x54d0 [ 195.784456][ T7196] ? __asan_memset+0x23/0x50 [ 195.784512][ T7196] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 195.784575][ T7196] hwsim_new_radio_nl+0xb51/0x12c0 [ 195.784627][ T7196] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 195.784685][ T7196] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 195.784733][ T7196] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 195.784790][ T7196] genl_family_rcv_msg_doit+0x206/0x2f0 [ 195.784837][ T7196] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 195.784881][ T7196] ? trace_cap_capable+0x18d/0x200 [ 195.784923][ T7196] ? bpf_lsm_capable+0x9/0x10 [ 195.784954][ T7196] ? security_capable+0x7e/0x260 [ 195.785008][ T7196] ? ns_capable+0xd7/0x110 [ 195.785046][ T7196] genl_rcv_msg+0x55c/0x800 [ 195.785095][ T7196] ? __pfx_genl_rcv_msg+0x10/0x10 [ 195.785134][ T7196] ? __pfx___dev_queue_xmit+0x10/0x10 [ 195.785183][ T7196] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 195.785234][ T7196] ? __lock_acquire+0xaa4/0x1ba0 [ 195.785283][ T7196] netlink_rcv_skb+0x16a/0x440 [ 195.785321][ T7196] ? __pfx_genl_rcv_msg+0x10/0x10 [ 195.785366][ T7196] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 195.785424][ T7196] ? __pfx_down_read+0x10/0x10 [ 195.785488][ T7196] ? netlink_deliver_tap+0x1ae/0xd30 [ 195.785532][ T7196] genl_rcv+0x28/0x40 [ 195.785571][ T7196] netlink_unicast+0x53a/0x7f0 [ 195.785614][ T7196] ? __pfx_netlink_unicast+0x10/0x10 [ 195.785648][ T7196] ? __lock_acquire+0xaa4/0x1ba0 [ 195.785701][ T7196] netlink_sendmsg+0x8d1/0xdd0 [ 195.785746][ T7196] ? __pfx_netlink_sendmsg+0x10/0x10 [ 195.785802][ T7196] ____sys_sendmsg+0xa95/0xc70 [ 195.785848][ T7196] ? copy_msghdr_from_user+0x10a/0x160 [ 195.785882][ T7196] ? __pfx_____sys_sendmsg+0x10/0x10 [ 195.785934][ T7196] ? try_to_wake_up+0xa2f/0x1680 [ 195.785972][ T7196] ___sys_sendmsg+0x134/0x1d0 [ 195.786008][ T7196] ? __pfx____sys_sendmsg+0x10/0x10 [ 195.786098][ T7196] __sys_sendmsg+0x16d/0x220 [ 195.786139][ T7196] ? __pfx___sys_sendmsg+0x10/0x10 [ 195.786172][ T7196] ? __x64_sys_futex+0x1e0/0x4c0 [ 195.786216][ T7196] ? rcu_is_watching+0x12/0xc0 [ 195.786255][ T7196] do_syscall_64+0xcd/0x230 [ 195.786300][ T7196] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 195.786330][ T7196] RIP: 0033:0x7f3d9b38e969 [ 195.786354][ T7196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 195.786384][ T7196] RSP: 002b:00007f3d9c1d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 195.786412][ T7196] RAX: ffffffffffffffda RBX: 00007f3d9b5b5fa0 RCX: 00007f3d9b38e969 [ 195.786440][ T7196] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000007 [ 195.786459][ T7196] RBP: 00007f3d9b410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 195.786477][ T7196] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 195.786495][ T7196] R13: 0000000000000000 R14: 00007f3d9b5b5fa0 R15: 00007ffc42790d18 [ 195.786535][ T7196] [ 197.159998][ T7222] random: crng reseeded on system resumption [ 197.884351][ T7232] netlink: 8 bytes leftover after parsing attributes in process `syz.3.285'. [ 198.781433][ T7250] program syz.2.289 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 199.251923][ T7250] netlink: 12 bytes leftover after parsing attributes in process `syz.2.289'. [ 199.378749][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.385370][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 201.437050][ T7287] random: crng reseeded on system resumption [ 201.655036][ T7291] netlink: 8 bytes leftover after parsing attributes in process `syz.1.296'. [ 201.806035][ T7305] Setting dangerous option i915.mitigations - tainting kernel [ 202.752882][ T7316] FAULT_INJECTION: forcing a failure. [ 202.752882][ T7316] name failslab, interval 1, probability 0, space 0, times 0 [ 202.771081][ T7316] CPU: 1 UID: 0 PID: 7316 Comm: syz.2.302 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 202.771135][ T7316] Tainted: [U]=USER [ 202.771147][ T7316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 202.771166][ T7316] Call Trace: [ 202.771177][ T7316] [ 202.771189][ T7316] dump_stack_lvl+0x16c/0x1f0 [ 202.771241][ T7316] should_fail_ex+0x512/0x640 [ 202.771285][ T7316] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 202.771330][ T7316] should_failslab+0xc2/0x120 [ 202.771368][ T7316] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 202.771410][ T7316] ? kasprintf+0xc7/0x100 [ 202.771467][ T7316] kvasprintf+0xbc/0x160 [ 202.771516][ T7316] ? __pfx_kvasprintf+0x10/0x10 [ 202.771569][ T7316] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 202.771607][ T7316] ? lockdep_hardirqs_on+0x7c/0x110 [ 202.771648][ T7316] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 202.771691][ T7316] kasprintf+0xc7/0x100 [ 202.771740][ T7316] ? __pfx_kasprintf+0x10/0x10 [ 202.771798][ T7316] ? __pfx_sta_info_cleanup+0x10/0x10 [ 202.771849][ T7316] ieee80211_alloc_led_names+0x1b0/0x420 [ 202.771901][ T7316] ieee80211_alloc_hw_nm+0x1941/0x2260 [ 202.771960][ T7316] mac80211_hwsim_new_radio+0x1d4/0x54d0 [ 202.772036][ T7316] ? __asan_memset+0x23/0x50 [ 202.772091][ T7316] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 202.772153][ T7316] hwsim_new_radio_nl+0xb51/0x12c0 [ 202.772207][ T7316] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 202.772280][ T7316] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 202.772326][ T7316] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 202.772381][ T7316] genl_family_rcv_msg_doit+0x206/0x2f0 [ 202.772428][ T7316] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 202.772471][ T7316] ? trace_cap_capable+0x18d/0x200 [ 202.772511][ T7316] ? bpf_lsm_capable+0x9/0x10 [ 202.772543][ T7316] ? security_capable+0x7e/0x260 [ 202.772595][ T7316] ? ns_capable+0xd7/0x110 [ 202.772631][ T7316] genl_rcv_msg+0x55c/0x800 [ 202.772698][ T7316] ? __pfx_genl_rcv_msg+0x10/0x10 [ 202.772741][ T7316] ? __pfx___dev_queue_xmit+0x10/0x10 [ 202.772792][ T7316] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 202.772843][ T7316] ? __lock_acquire+0xaa4/0x1ba0 [ 202.772894][ T7316] netlink_rcv_skb+0x16a/0x440 [ 202.772931][ T7316] ? __pfx_genl_rcv_msg+0x10/0x10 [ 202.772985][ T7316] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 202.773044][ T7316] ? __pfx_down_read+0x10/0x10 [ 202.773095][ T7316] ? netlink_deliver_tap+0x1ae/0xd30 [ 202.773138][ T7316] genl_rcv+0x28/0x40 [ 202.773193][ T7316] netlink_unicast+0x53a/0x7f0 [ 202.773238][ T7316] ? __pfx_netlink_unicast+0x10/0x10 [ 202.773273][ T7316] ? __lock_acquire+0xaa4/0x1ba0 [ 202.773326][ T7316] netlink_sendmsg+0x8d1/0xdd0 [ 202.773374][ T7316] ? __pfx_netlink_sendmsg+0x10/0x10 [ 202.773430][ T7316] ____sys_sendmsg+0xa95/0xc70 [ 202.773476][ T7316] ? copy_msghdr_from_user+0x10a/0x160 [ 202.773510][ T7316] ? __pfx_____sys_sendmsg+0x10/0x10 [ 202.773562][ T7316] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 202.773614][ T7316] ___sys_sendmsg+0x134/0x1d0 [ 202.773653][ T7316] ? __pfx____sys_sendmsg+0x10/0x10 [ 202.773743][ T7316] __sys_sendmsg+0x16d/0x220 [ 202.773780][ T7316] ? __pfx___sys_sendmsg+0x10/0x10 [ 202.773814][ T7316] ? __x64_sys_futex+0x1e0/0x4c0 [ 202.773860][ T7316] ? rcu_is_watching+0x12/0xc0 [ 202.773904][ T7316] do_syscall_64+0xcd/0x230 [ 202.773951][ T7316] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.773990][ T7316] RIP: 0033:0x7f3d9b38e969 [ 202.774017][ T7316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 202.774050][ T7316] RSP: 002b:00007f3d9c1d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 202.774082][ T7316] RAX: ffffffffffffffda RBX: 00007f3d9b5b5fa0 RCX: 00007f3d9b38e969 [ 202.774104][ T7316] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000007 [ 202.774126][ T7316] RBP: 00007f3d9b410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 202.774146][ T7316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 202.774166][ T7316] R13: 0000000000000000 R14: 00007f3d9b5b5fa0 R15: 00007ffc42790d18 [ 202.774209][ T7316] [ 203.680173][ T7328] netlink: 'syz.1.303': attribute type 2 has an invalid length. [ 205.447286][ T7358] netlink: 8 bytes leftover after parsing attributes in process `syz.3.309'. [ 206.029885][ T7371] program syz.0.311 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 206.308926][ T7371] netlink: 12 bytes leftover after parsing attributes in process `syz.0.311'. [ 206.849743][ T7392] FAULT_INJECTION: forcing a failure. [ 206.849743][ T7392] name failslab, interval 1, probability 0, space 0, times 0 [ 206.926363][ T7392] CPU: 0 UID: 0 PID: 7392 Comm: syz.3.316 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 206.926404][ T7392] Tainted: [U]=USER [ 206.926412][ T7392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 206.926426][ T7392] Call Trace: [ 206.926434][ T7392] [ 206.926443][ T7392] dump_stack_lvl+0x16c/0x1f0 [ 206.926479][ T7392] should_fail_ex+0x512/0x640 [ 206.926511][ T7392] ? __kmalloc_noprof+0xbf/0x510 [ 206.926539][ T7392] ? rfkill_alloc+0xac/0x330 [ 206.926575][ T7392] should_failslab+0xc2/0x120 [ 206.926610][ T7392] __kmalloc_noprof+0xd2/0x510 [ 206.926642][ T7392] rfkill_alloc+0xac/0x330 [ 206.926684][ T7392] wiphy_new_nm+0x136a/0x2160 [ 206.926722][ T7392] ? __pfx_ieee80211_emulate_add_chanctx+0x10/0x10 [ 206.926762][ T7392] ? __pfx_ieee80211_emulate_remove_chanctx+0x10/0x10 [ 206.926801][ T7392] ieee80211_alloc_hw_nm+0x1b7a/0x2260 [ 206.926838][ T7392] ? __local_bh_enable_ip+0xa4/0x120 [ 206.926869][ T7392] mac80211_hwsim_new_radio+0x1d4/0x54d0 [ 206.926919][ T7392] ? __asan_memset+0x23/0x50 [ 206.926958][ T7392] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 206.927004][ T7392] hwsim_new_radio_nl+0xb51/0x12c0 [ 206.927042][ T7392] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 206.927086][ T7392] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 206.927122][ T7392] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 206.927163][ T7392] genl_family_rcv_msg_doit+0x206/0x2f0 [ 206.927199][ T7392] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 206.927232][ T7392] ? trace_cap_capable+0x18d/0x200 [ 206.927262][ T7392] ? bpf_lsm_capable+0x9/0x10 [ 206.927286][ T7392] ? security_capable+0x7e/0x260 [ 206.927326][ T7392] ? ns_capable+0xd7/0x110 [ 206.927353][ T7392] genl_rcv_msg+0x55c/0x800 [ 206.927390][ T7392] ? __pfx_genl_rcv_msg+0x10/0x10 [ 206.927421][ T7392] ? __pfx___dev_queue_xmit+0x10/0x10 [ 206.927458][ T7392] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 206.927496][ T7392] ? __lock_acquire+0xaa4/0x1ba0 [ 206.927532][ T7392] netlink_rcv_skb+0x16a/0x440 [ 206.927560][ T7392] ? __pfx_genl_rcv_msg+0x10/0x10 [ 206.927594][ T7392] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 206.927643][ T7392] ? __pfx_down_read+0x10/0x10 [ 206.927681][ T7392] ? netlink_deliver_tap+0x1ae/0xd30 [ 206.927711][ T7392] genl_rcv+0x28/0x40 [ 206.927739][ T7392] netlink_unicast+0x53a/0x7f0 [ 206.927771][ T7392] ? __pfx_netlink_unicast+0x10/0x10 [ 206.927797][ T7392] ? __lock_acquire+0xaa4/0x1ba0 [ 206.927834][ T7392] netlink_sendmsg+0x8d1/0xdd0 [ 206.927867][ T7392] ? __pfx_netlink_sendmsg+0x10/0x10 [ 206.927906][ T7392] ____sys_sendmsg+0xa95/0xc70 [ 206.927941][ T7392] ? copy_msghdr_from_user+0x10a/0x160 [ 206.927965][ T7392] ? __pfx_____sys_sendmsg+0x10/0x10 [ 206.928003][ T7392] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 206.928039][ T7392] ___sys_sendmsg+0x134/0x1d0 [ 206.928066][ T7392] ? __pfx____sys_sendmsg+0x10/0x10 [ 206.928129][ T7392] __sys_sendmsg+0x16d/0x220 [ 206.928154][ T7392] ? __pfx___sys_sendmsg+0x10/0x10 [ 206.928178][ T7392] ? __x64_sys_futex+0x1e0/0x4c0 [ 206.928211][ T7392] ? rcu_is_watching+0x12/0xc0 [ 206.928242][ T7392] do_syscall_64+0xcd/0x230 [ 206.928276][ T7392] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 206.928318][ T7392] RIP: 0033:0x7f2656b8e969 [ 206.928336][ T7392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 206.928360][ T7392] RSP: 002b:00007f26579c0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 206.928382][ T7392] RAX: ffffffffffffffda RBX: 00007f2656db5fa0 RCX: 00007f2656b8e969 [ 206.928397][ T7392] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000007 [ 206.928412][ T7392] RBP: 00007f2656c10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 206.928426][ T7392] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 206.928440][ T7392] R13: 0000000000000000 R14: 00007f2656db5fa0 R15: 00007ffd85635348 [ 206.928470][ T7392] [ 209.293178][ T7420] MTRR 1 not used [ 210.609353][ T7439] size and base must be multiples of 4 kiB [ 210.615330][ T7439] CPU: 0 UID: 0 PID: 7439 Comm: syz.0.326 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 210.615381][ T7439] Tainted: [U]=USER [ 210.615391][ T7439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 210.615410][ T7439] Call Trace: [ 210.615419][ T7439] [ 210.615431][ T7439] dump_stack_lvl+0x16c/0x1f0 [ 210.615477][ T7439] mtrr_add+0xdf/0x110 [ 210.615541][ T7439] mtrr_ioctl+0x7ef/0xcf0 [ 210.615591][ T7439] ? __pfx_mtrr_ioctl+0x10/0x10 [ 210.615647][ T7439] ? find_held_lock+0x2b/0x80 [ 210.615688][ T7439] ? __fget_files+0x20e/0x3c0 [ 210.615739][ T7439] ? __pfx_mtrr_ioctl+0x10/0x10 [ 210.615788][ T7439] proc_reg_unlocked_ioctl+0x226/0x320 [ 210.615821][ T7439] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 210.615859][ T7439] __x64_sys_ioctl+0x190/0x200 [ 210.615907][ T7439] do_syscall_64+0xcd/0x230 [ 210.615953][ T7439] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 210.615994][ T7439] RIP: 0033:0x7fcdc8b8e969 [ 210.616018][ T7439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 210.616052][ T7439] RSP: 002b:00007fcdc99e5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 210.616082][ T7439] RAX: ffffffffffffffda RBX: 00007fcdc8db5fa0 RCX: 00007fcdc8b8e969 [ 210.616104][ T7439] RDX: 0000000000000003 RSI: 00000000400c4d01 RDI: 0000000000000003 [ 210.616128][ T7439] RBP: 00007fcdc8c10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 210.616148][ T7439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 210.616167][ T7439] R13: 0000000000000000 R14: 00007fcdc8db5fa0 R15: 00007ffc13a1cc68 [ 210.616205][ T7439] [ 214.166998][ T7487] netlink: 8 bytes leftover after parsing attributes in process `syz.1.344'. [ 215.146561][ T7505] FAULT_INJECTION: forcing a failure. [ 215.146561][ T7505] name failslab, interval 1, probability 0, space 0, times 0 [ 215.179703][ T7505] CPU: 1 UID: 0 PID: 7505 Comm: syz.3.339 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 215.179757][ T7505] Tainted: [U]=USER [ 215.179768][ T7505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 215.179786][ T7505] Call Trace: [ 215.179797][ T7505] [ 215.179809][ T7505] dump_stack_lvl+0x16c/0x1f0 [ 215.179856][ T7505] should_fail_ex+0x512/0x640 [ 215.179899][ T7505] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 215.179943][ T7505] should_failslab+0xc2/0x120 [ 215.179981][ T7505] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 215.180021][ T7505] ? kasprintf+0xc7/0x100 [ 215.180093][ T7505] kvasprintf+0xbc/0x160 [ 215.180143][ T7505] ? __pfx_kvasprintf+0x10/0x10 [ 215.180209][ T7505] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 215.180246][ T7505] ? lockdep_hardirqs_on+0x7c/0x110 [ 215.180285][ T7505] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 215.180329][ T7505] kasprintf+0xc7/0x100 [ 215.180376][ T7505] ? __pfx_kasprintf+0x10/0x10 [ 215.180432][ T7505] ? __pfx_sta_info_cleanup+0x10/0x10 [ 215.180490][ T7505] ieee80211_alloc_led_names+0x1b0/0x420 [ 215.180540][ T7505] ieee80211_alloc_hw_nm+0x1941/0x2260 [ 215.180599][ T7505] mac80211_hwsim_new_radio+0x1d4/0x54d0 [ 215.180666][ T7505] ? __asan_memset+0x23/0x50 [ 215.180718][ T7505] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 215.180780][ T7505] hwsim_new_radio_nl+0xb51/0x12c0 [ 215.180830][ T7505] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 215.180890][ T7505] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 215.180935][ T7505] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 215.181008][ T7505] genl_family_rcv_msg_doit+0x206/0x2f0 [ 215.181055][ T7505] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 215.181100][ T7505] ? trace_cap_capable+0x18d/0x200 [ 215.181142][ T7505] ? bpf_lsm_capable+0x9/0x10 [ 215.181174][ T7505] ? security_capable+0x7e/0x260 [ 215.181227][ T7505] ? ns_capable+0xd7/0x110 [ 215.181274][ T7505] genl_rcv_msg+0x55c/0x800 [ 215.181321][ T7505] ? __pfx_genl_rcv_msg+0x10/0x10 [ 215.181362][ T7505] ? __pfx___dev_queue_xmit+0x10/0x10 [ 215.181410][ T7505] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 215.181459][ T7505] ? __lock_acquire+0xaa4/0x1ba0 [ 215.181513][ T7505] netlink_rcv_skb+0x16a/0x440 [ 215.181550][ T7505] ? __pfx_genl_rcv_msg+0x10/0x10 [ 215.181594][ T7505] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 215.181653][ T7505] ? __pfx_down_read+0x10/0x10 [ 215.181699][ T7505] ? netlink_deliver_tap+0x1ae/0xd30 [ 215.181740][ T7505] genl_rcv+0x28/0x40 [ 215.181777][ T7505] netlink_unicast+0x53a/0x7f0 [ 215.181819][ T7505] ? __pfx_netlink_unicast+0x10/0x10 [ 215.181852][ T7505] ? __lock_acquire+0xaa4/0x1ba0 [ 215.181903][ T7505] netlink_sendmsg+0x8d1/0xdd0 [ 215.181947][ T7505] ? __pfx_netlink_sendmsg+0x10/0x10 [ 215.182002][ T7505] ____sys_sendmsg+0xa95/0xc70 [ 215.182047][ T7505] ? copy_msghdr_from_user+0x10a/0x160 [ 215.182081][ T7505] ? __pfx_____sys_sendmsg+0x10/0x10 [ 215.182145][ T7505] ___sys_sendmsg+0x134/0x1d0 [ 215.182182][ T7505] ? __pfx____sys_sendmsg+0x10/0x10 [ 215.182270][ T7505] __sys_sendmsg+0x16d/0x220 [ 215.182304][ T7505] ? __pfx___sys_sendmsg+0x10/0x10 [ 215.182337][ T7505] ? __x64_sys_futex+0x1e0/0x4c0 [ 215.182383][ T7505] ? rcu_is_watching+0x12/0xc0 [ 215.182425][ T7505] do_syscall_64+0xcd/0x230 [ 215.182470][ T7505] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 215.182508][ T7505] RIP: 0033:0x7f2656b8e969 [ 215.182533][ T7505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 215.182563][ T7505] RSP: 002b:00007f26579c0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 215.182592][ T7505] RAX: ffffffffffffffda RBX: 00007f2656db5fa0 RCX: 00007f2656b8e969 [ 215.182612][ T7505] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000007 [ 215.182632][ T7505] RBP: 00007f2656c10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 215.182651][ T7505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 215.182671][ T7505] R13: 0000000000000000 R14: 00007f2656db5fa0 R15: 00007ffd85635348 [ 215.182712][ T7505] [ 218.242967][ T7546] netlink: 8 bytes leftover after parsing attributes in process `syz.1.351'. [ 220.441665][ T7576] FAULT_INJECTION: forcing a failure. [ 220.441665][ T7576] name failslab, interval 1, probability 0, space 0, times 0 [ 220.516088][ T7576] CPU: 0 UID: 0 PID: 7576 Comm: syz.0.355 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 220.516149][ T7576] Tainted: [U]=USER [ 220.516159][ T7576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 220.516177][ T7576] Call Trace: [ 220.516188][ T7576] [ 220.516200][ T7576] dump_stack_lvl+0x16c/0x1f0 [ 220.516250][ T7576] should_fail_ex+0x512/0x640 [ 220.516292][ T7576] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 220.516339][ T7576] should_failslab+0xc2/0x120 [ 220.516375][ T7576] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 220.516406][ T7576] ? kasprintf+0xc7/0x100 [ 220.516447][ T7576] kvasprintf+0xbc/0x160 [ 220.516483][ T7576] ? __pfx_kvasprintf+0x10/0x10 [ 220.516522][ T7576] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 220.516551][ T7576] ? lockdep_hardirqs_on+0x7c/0x110 [ 220.516581][ T7576] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 220.516613][ T7576] kasprintf+0xc7/0x100 [ 220.516649][ T7576] ? __pfx_kasprintf+0x10/0x10 [ 220.516692][ T7576] ? __pfx_sta_info_cleanup+0x10/0x10 [ 220.516728][ T7576] ieee80211_alloc_led_names+0x11b/0x420 [ 220.516766][ T7576] ieee80211_alloc_hw_nm+0x1941/0x2260 [ 220.516809][ T7576] mac80211_hwsim_new_radio+0x1d4/0x54d0 [ 220.516860][ T7576] ? __asan_memset+0x23/0x50 [ 220.516899][ T7576] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 220.516951][ T7576] hwsim_new_radio_nl+0xb51/0x12c0 [ 220.516991][ T7576] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 220.517036][ T7576] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 220.517072][ T7576] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 220.517113][ T7576] genl_family_rcv_msg_doit+0x206/0x2f0 [ 220.517149][ T7576] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 220.517182][ T7576] ? trace_cap_capable+0x18d/0x200 [ 220.517212][ T7576] ? bpf_lsm_capable+0x9/0x10 [ 220.517236][ T7576] ? security_capable+0x7e/0x260 [ 220.517277][ T7576] ? ns_capable+0xd7/0x110 [ 220.517304][ T7576] genl_rcv_msg+0x55c/0x800 [ 220.517340][ T7576] ? __pfx_genl_rcv_msg+0x10/0x10 [ 220.517371][ T7576] ? __pfx___dev_queue_xmit+0x10/0x10 [ 220.517409][ T7576] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 220.517446][ T7576] ? __lock_acquire+0xaa4/0x1ba0 [ 220.517482][ T7576] netlink_rcv_skb+0x16a/0x440 [ 220.517510][ T7576] ? __pfx_genl_rcv_msg+0x10/0x10 [ 220.517544][ T7576] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 220.517586][ T7576] ? __pfx_down_read+0x10/0x10 [ 220.517622][ T7576] ? netlink_deliver_tap+0x1ae/0xd30 [ 220.517653][ T7576] genl_rcv+0x28/0x40 [ 220.517681][ T7576] netlink_unicast+0x53a/0x7f0 [ 220.517712][ T7576] ? __pfx_netlink_unicast+0x10/0x10 [ 220.517738][ T7576] ? __lock_acquire+0xaa4/0x1ba0 [ 220.517776][ T7576] netlink_sendmsg+0x8d1/0xdd0 [ 220.517808][ T7576] ? __pfx_netlink_sendmsg+0x10/0x10 [ 220.517848][ T7576] ____sys_sendmsg+0xa95/0xc70 [ 220.517882][ T7576] ? copy_msghdr_from_user+0x10a/0x160 [ 220.517907][ T7576] ? __pfx_____sys_sendmsg+0x10/0x10 [ 220.517960][ T7576] ___sys_sendmsg+0x134/0x1d0 [ 220.517987][ T7576] ? __pfx____sys_sendmsg+0x10/0x10 [ 220.518050][ T7576] __sys_sendmsg+0x16d/0x220 [ 220.518076][ T7576] ? __pfx___sys_sendmsg+0x10/0x10 [ 220.518100][ T7576] ? __x64_sys_futex+0x1e0/0x4c0 [ 220.518134][ T7576] ? rcu_is_watching+0x12/0xc0 [ 220.518164][ T7576] do_syscall_64+0xcd/0x230 [ 220.518199][ T7576] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.518223][ T7576] RIP: 0033:0x7fcdc8b8e969 [ 220.518242][ T7576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 220.518265][ T7576] RSP: 002b:00007fcdc99e5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 220.518288][ T7576] RAX: ffffffffffffffda RBX: 00007fcdc8db5fa0 RCX: 00007fcdc8b8e969 [ 220.518304][ T7576] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000007 [ 220.518319][ T7576] RBP: 00007fcdc8c10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 220.518334][ T7576] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 220.518348][ T7576] R13: 0000000000000000 R14: 00007fcdc8db5fa0 R15: 00007ffc13a1cc68 [ 220.518377][ T7576] [ 224.463026][ T7645] FAULT_INJECTION: forcing a failure. [ 224.463026][ T7645] name failslab, interval 1, probability 0, space 0, times 0 [ 224.489496][ T7645] CPU: 1 UID: 0 PID: 7645 Comm: syz.0.372 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 224.489552][ T7645] Tainted: [U]=USER [ 224.489563][ T7645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 224.489583][ T7645] Call Trace: [ 224.489594][ T7645] [ 224.489611][ T7645] dump_stack_lvl+0x16c/0x1f0 [ 224.489663][ T7645] should_fail_ex+0x512/0x640 [ 224.489708][ T7645] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 224.489755][ T7645] should_failslab+0xc2/0x120 [ 224.489801][ T7645] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 224.489846][ T7645] ? kasprintf+0xc7/0x100 [ 224.489905][ T7645] kvasprintf+0xbc/0x160 [ 224.489954][ T7645] ? __pfx_kvasprintf+0x10/0x10 [ 224.490009][ T7645] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 224.490047][ T7645] ? lockdep_hardirqs_on+0x7c/0x110 [ 224.490088][ T7645] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 224.490132][ T7645] kasprintf+0xc7/0x100 [ 224.490182][ T7645] ? __pfx_kasprintf+0x10/0x10 [ 224.490241][ T7645] ? __pfx_sta_info_cleanup+0x10/0x10 [ 224.490292][ T7645] ieee80211_alloc_led_names+0x11b/0x420 [ 224.490342][ T7645] ieee80211_alloc_hw_nm+0x1941/0x2260 [ 224.490401][ T7645] mac80211_hwsim_new_radio+0x1d4/0x54d0 [ 224.490470][ T7645] ? __asan_memset+0x23/0x50 [ 224.490522][ T7645] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 224.490591][ T7645] hwsim_new_radio_nl+0xb51/0x12c0 [ 224.490645][ T7645] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 224.490707][ T7645] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 224.490757][ T7645] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 224.490822][ T7645] genl_family_rcv_msg_doit+0x206/0x2f0 [ 224.490868][ T7645] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 224.490912][ T7645] ? trace_cap_capable+0x18d/0x200 [ 224.490953][ T7645] ? bpf_lsm_capable+0x9/0x10 [ 224.490985][ T7645] ? security_capable+0x7e/0x260 [ 224.491040][ T7645] ? ns_capable+0xd7/0x110 [ 224.491077][ T7645] genl_rcv_msg+0x55c/0x800 [ 224.491127][ T7645] ? __pfx_genl_rcv_msg+0x10/0x10 [ 224.491167][ T7645] ? __pfx___dev_queue_xmit+0x10/0x10 [ 224.491215][ T7645] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 224.491265][ T7645] ? __lock_acquire+0xaa4/0x1ba0 [ 224.491314][ T7645] netlink_rcv_skb+0x16a/0x440 [ 224.491351][ T7645] ? __pfx_genl_rcv_msg+0x10/0x10 [ 224.491399][ T7645] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 224.491460][ T7645] ? __pfx_down_read+0x10/0x10 [ 224.491511][ T7645] ? netlink_deliver_tap+0x1ae/0xd30 [ 224.491552][ T7645] genl_rcv+0x28/0x40 [ 224.491589][ T7645] netlink_unicast+0x53a/0x7f0 [ 224.491655][ T7645] ? __pfx_netlink_unicast+0x10/0x10 [ 224.491691][ T7645] ? __lock_acquire+0xaa4/0x1ba0 [ 224.491767][ T7645] netlink_sendmsg+0x8d1/0xdd0 [ 224.491822][ T7645] ? __pfx_netlink_sendmsg+0x10/0x10 [ 224.491886][ T7645] ____sys_sendmsg+0xa95/0xc70 [ 224.491932][ T7645] ? copy_msghdr_from_user+0x10a/0x160 [ 224.491968][ T7645] ? __pfx_____sys_sendmsg+0x10/0x10 [ 224.492034][ T7645] ___sys_sendmsg+0x134/0x1d0 [ 224.492078][ T7645] ? __pfx____sys_sendmsg+0x10/0x10 [ 224.492168][ T7645] __sys_sendmsg+0x16d/0x220 [ 224.492204][ T7645] ? __pfx___sys_sendmsg+0x10/0x10 [ 224.492239][ T7645] ? __x64_sys_futex+0x1e0/0x4c0 [ 224.492285][ T7645] ? rcu_is_watching+0x12/0xc0 [ 224.492328][ T7645] do_syscall_64+0xcd/0x230 [ 224.492376][ T7645] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 224.492409][ T7645] RIP: 0033:0x7fcdc8b8e969 [ 224.492434][ T7645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 224.492467][ T7645] RSP: 002b:00007fcdc99e5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 224.492497][ T7645] RAX: ffffffffffffffda RBX: 00007fcdc8db5fa0 RCX: 00007fcdc8b8e969 [ 224.492518][ T7645] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000007 [ 224.492538][ T7645] RBP: 00007fcdc8c10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 224.492557][ T7645] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 224.492576][ T7645] R13: 0000000000000000 R14: 00007fcdc8db5fa0 R15: 00007ffc13a1cc68 [ 224.492620][ T7645] [ 225.885165][ T7656] FAULT_INJECTION: forcing a failure. [ 225.885165][ T7656] name failslab, interval 1, probability 0, space 0, times 0 [ 225.901120][ T7656] CPU: 0 UID: 0 PID: 7656 Comm: syz.2.375 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 225.901174][ T7656] Tainted: [U]=USER [ 225.901184][ T7656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 225.901203][ T7656] Call Trace: [ 225.901214][ T7656] [ 225.901225][ T7656] dump_stack_lvl+0x16c/0x1f0 [ 225.901270][ T7656] should_fail_ex+0x512/0x640 [ 225.901313][ T7656] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 225.901359][ T7656] should_failslab+0xc2/0x120 [ 225.901395][ T7656] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 225.901433][ T7656] ? pcpu_alloc+0x23b/0x350 [ 225.901461][ T7656] ? kasprintf+0xc7/0x100 [ 225.901515][ T7656] kvasprintf+0xbc/0x160 [ 225.901563][ T7656] ? __pfx_kvasprintf+0x10/0x10 [ 225.901613][ T7656] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 225.901650][ T7656] ? lockdep_hardirqs_on+0x7c/0x110 [ 225.901697][ T7656] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 225.901740][ T7656] kasprintf+0xc7/0x100 [ 225.901788][ T7656] ? __pfx_kasprintf+0x10/0x10 [ 225.901846][ T7656] ? __pfx_sta_info_cleanup+0x10/0x10 [ 225.901895][ T7656] ieee80211_alloc_led_names+0x1b0/0x420 [ 225.901944][ T7656] ieee80211_alloc_hw_nm+0x1941/0x2260 [ 225.902000][ T7656] mac80211_hwsim_new_radio+0x1d4/0x54d0 [ 225.902067][ T7656] ? __asan_memset+0x23/0x50 [ 225.902116][ T7656] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 225.902176][ T7656] hwsim_new_radio_nl+0xb51/0x12c0 [ 225.902226][ T7656] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 225.902285][ T7656] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 225.902330][ T7656] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 225.902385][ T7656] genl_family_rcv_msg_doit+0x206/0x2f0 [ 225.902431][ T7656] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 225.902475][ T7656] ? trace_cap_capable+0x18d/0x200 [ 225.902515][ T7656] ? bpf_lsm_capable+0x9/0x10 [ 225.902546][ T7656] ? security_capable+0x7e/0x260 [ 225.902595][ T7656] ? ns_capable+0xd7/0x110 [ 225.902631][ T7656] genl_rcv_msg+0x55c/0x800 [ 225.902676][ T7656] ? __pfx_genl_rcv_msg+0x10/0x10 [ 225.902725][ T7656] ? __pfx___dev_queue_xmit+0x10/0x10 [ 225.902775][ T7656] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 225.902824][ T7656] ? __lock_acquire+0xaa4/0x1ba0 [ 225.902874][ T7656] netlink_rcv_skb+0x16a/0x440 [ 225.902910][ T7656] ? __pfx_genl_rcv_msg+0x10/0x10 [ 225.902956][ T7656] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 225.903014][ T7656] ? __pfx_down_read+0x10/0x10 [ 225.903080][ T7656] ? netlink_deliver_tap+0x1ae/0xd30 [ 225.903122][ T7656] genl_rcv+0x28/0x40 [ 225.903160][ T7656] netlink_unicast+0x53a/0x7f0 [ 225.903203][ T7656] ? __pfx_netlink_unicast+0x10/0x10 [ 225.903238][ T7656] ? __lock_acquire+0xaa4/0x1ba0 [ 225.903291][ T7656] netlink_sendmsg+0x8d1/0xdd0 [ 225.903337][ T7656] ? __pfx_netlink_sendmsg+0x10/0x10 [ 225.903393][ T7656] ____sys_sendmsg+0xa95/0xc70 [ 225.903439][ T7656] ? copy_msghdr_from_user+0x10a/0x160 [ 225.903474][ T7656] ? __pfx_____sys_sendmsg+0x10/0x10 [ 225.903541][ T7656] ___sys_sendmsg+0x134/0x1d0 [ 225.903578][ T7656] ? __pfx____sys_sendmsg+0x10/0x10 [ 225.903669][ T7656] __sys_sendmsg+0x16d/0x220 [ 225.903709][ T7656] ? __pfx___sys_sendmsg+0x10/0x10 [ 225.903741][ T7656] ? __x64_sys_futex+0x1e0/0x4c0 [ 225.903789][ T7656] ? rcu_is_watching+0x12/0xc0 [ 225.903831][ T7656] do_syscall_64+0xcd/0x230 [ 225.903877][ T7656] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 225.903910][ T7656] RIP: 0033:0x7f3d9b38e969 [ 225.903936][ T7656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 225.903968][ T7656] RSP: 002b:00007f3d9c1d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 225.904000][ T7656] RAX: ffffffffffffffda RBX: 00007f3d9b5b5fa0 RCX: 00007f3d9b38e969 [ 225.904022][ T7656] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000007 [ 225.904042][ T7656] RBP: 00007f3d9b410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 225.904062][ T7656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 225.904082][ T7656] R13: 0000000000000000 R14: 00007f3d9b5b5fa0 R15: 00007ffc42790d18 [ 225.904125][ T7656] [ 226.644896][ T7661] netlink: 8 bytes leftover after parsing attributes in process `syz.0.373'. [ 227.065545][ T7664] netlink: 8 bytes leftover after parsing attributes in process `syz.3.376'. [ 227.460067][ T5832] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 230.584680][ T7729] syz.1.390 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 232.260697][ T7760] FAULT_INJECTION: forcing a failure. [ 232.260697][ T7760] name failslab, interval 1, probability 0, space 0, times 0 [ 232.294964][ T7760] CPU: 1 UID: 0 PID: 7760 Comm: syz.2.396 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 232.295003][ T7760] Tainted: [U]=USER [ 232.295011][ T7760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 232.295025][ T7760] Call Trace: [ 232.295033][ T7760] [ 232.295041][ T7760] dump_stack_lvl+0x16c/0x1f0 [ 232.295077][ T7760] should_fail_ex+0x512/0x640 [ 232.295109][ T7760] ? __kmalloc_noprof+0xbf/0x510 [ 232.295135][ T7760] ? rfkill_alloc+0xac/0x330 [ 232.295168][ T7760] should_failslab+0xc2/0x120 [ 232.295215][ T7760] __kmalloc_noprof+0xd2/0x510 [ 232.295249][ T7760] rfkill_alloc+0xac/0x330 [ 232.295290][ T7760] wiphy_new_nm+0x136a/0x2160 [ 232.295328][ T7760] ? __pfx_ieee80211_emulate_add_chanctx+0x10/0x10 [ 232.295368][ T7760] ? __pfx_ieee80211_emulate_remove_chanctx+0x10/0x10 [ 232.295407][ T7760] ieee80211_alloc_hw_nm+0x1b7a/0x2260 [ 232.295444][ T7760] ? __local_bh_enable_ip+0xa4/0x120 [ 232.295477][ T7760] mac80211_hwsim_new_radio+0x1d4/0x54d0 [ 232.295529][ T7760] ? __asan_memset+0x23/0x50 [ 232.295570][ T7760] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 232.295617][ T7760] hwsim_new_radio_nl+0xb51/0x12c0 [ 232.295655][ T7760] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 232.295702][ T7760] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 232.295738][ T7760] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 232.295782][ T7760] genl_family_rcv_msg_doit+0x206/0x2f0 [ 232.295826][ T7760] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 232.295859][ T7760] ? trace_cap_capable+0x18d/0x200 [ 232.295890][ T7760] ? bpf_lsm_capable+0x9/0x10 [ 232.295915][ T7760] ? security_capable+0x7e/0x260 [ 232.295955][ T7760] ? ns_capable+0xd7/0x110 [ 232.295982][ T7760] genl_rcv_msg+0x55c/0x800 [ 232.296019][ T7760] ? __pfx_genl_rcv_msg+0x10/0x10 [ 232.296050][ T7760] ? __pfx___dev_queue_xmit+0x10/0x10 [ 232.296088][ T7760] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 232.296135][ T7760] ? __lock_acquire+0xaa4/0x1ba0 [ 232.296183][ T7760] netlink_rcv_skb+0x16a/0x440 [ 232.296218][ T7760] ? __pfx_genl_rcv_msg+0x10/0x10 [ 232.296252][ T7760] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 232.296296][ T7760] ? __pfx_down_read+0x10/0x10 [ 232.296333][ T7760] ? netlink_deliver_tap+0x1ae/0xd30 [ 232.296363][ T7760] genl_rcv+0x28/0x40 [ 232.296391][ T7760] netlink_unicast+0x53a/0x7f0 [ 232.296422][ T7760] ? __pfx_netlink_unicast+0x10/0x10 [ 232.296448][ T7760] ? __lock_acquire+0xaa4/0x1ba0 [ 232.296486][ T7760] netlink_sendmsg+0x8d1/0xdd0 [ 232.296519][ T7760] ? __pfx_netlink_sendmsg+0x10/0x10 [ 232.296558][ T7760] ____sys_sendmsg+0xa95/0xc70 [ 232.296592][ T7760] ? copy_msghdr_from_user+0x10a/0x160 [ 232.296617][ T7760] ? __pfx_____sys_sendmsg+0x10/0x10 [ 232.296676][ T7760] ___sys_sendmsg+0x134/0x1d0 [ 232.296702][ T7760] ? __pfx____sys_sendmsg+0x10/0x10 [ 232.296762][ T7760] __sys_sendmsg+0x16d/0x220 [ 232.296786][ T7760] ? __pfx___sys_sendmsg+0x10/0x10 [ 232.296819][ T7760] ? __x64_sys_futex+0x1e0/0x4c0 [ 232.296852][ T7760] ? rcu_is_watching+0x12/0xc0 [ 232.296882][ T7760] do_syscall_64+0xcd/0x230 [ 232.296916][ T7760] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 232.296939][ T7760] RIP: 0033:0x7f3d9b38e969 [ 232.296957][ T7760] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 232.296980][ T7760] RSP: 002b:00007f3d9c1d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 232.297002][ T7760] RAX: ffffffffffffffda RBX: 00007f3d9b5b5fa0 RCX: 00007f3d9b38e969 [ 232.297017][ T7760] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000007 [ 232.297032][ T7760] RBP: 00007f3d9b410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 232.297047][ T7760] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 232.297062][ T7760] R13: 0000000000000000 R14: 00007f3d9b5b5fa0 R15: 00007ffc42790d18 [ 232.297091][ T7760] [ 232.723210][ T5832] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 233.288240][ T7773] could not allocate digest TFM handle [ 234.078066][ T7788] netlink: 338 bytes leftover after parsing attributes in process `syz.0.403'. [ 234.323242][ T7794] netlink: 266 bytes leftover after parsing attributes in process `syz.3.404'. [ 234.337016][ T7794] IPv6: NLM_F_CREATE should be specified when creating new route [ 236.544360][ T7818] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 237.057031][ T7842] netlink: 338 bytes leftover after parsing attributes in process `syz.1.416'. [ 238.148926][ T7853] netlink: 8 bytes leftover after parsing attributes in process `syz.1.419'. [ 238.524520][ T7873] FAULT_INJECTION: forcing a failure. [ 238.524520][ T7873] name fail_futex, interval 1, probability 0, space 0, times 1 [ 238.576377][ T7873] CPU: 0 UID: 0 PID: 7873 Comm: syz.3.422 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 238.576441][ T7873] Tainted: [U]=USER [ 238.576454][ T7873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 238.576476][ T7873] Call Trace: [ 238.576487][ T7873] [ 238.576501][ T7873] dump_stack_lvl+0x16c/0x1f0 [ 238.576556][ T7873] should_fail_ex+0x512/0x640 [ 238.576616][ T7873] get_futex_key+0x49e/0x1000 [ 238.576659][ T7873] ? __pfx_get_futex_key+0x10/0x10 [ 238.576726][ T7873] futex_wake+0xe7/0x4e0 [ 238.576775][ T7873] ? __pfx_futex_wake+0x10/0x10 [ 238.576824][ T7873] ? kmem_cache_free+0x2d4/0x4d0 [ 238.576860][ T7873] ? fd_install+0x225/0x750 [ 238.576912][ T7873] ? putname+0x154/0x1a0 [ 238.576958][ T7873] do_futex+0x1e3/0x350 [ 238.576997][ T7873] ? __pfx_do_futex+0x10/0x10 [ 238.577048][ T7873] __x64_sys_futex+0x1e0/0x4c0 [ 238.577089][ T7873] ? __x64_sys_openat+0x174/0x210 [ 238.577137][ T7873] ? __pfx___x64_sys_futex+0x10/0x10 [ 238.577186][ T7873] ? rcu_is_watching+0x12/0xc0 [ 238.577232][ T7873] do_syscall_64+0xcd/0x230 [ 238.577282][ T7873] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 238.577317][ T7873] RIP: 0033:0x7f2656b8e969 [ 238.577344][ T7873] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 238.577380][ T7873] RSP: 002b:00007f265799f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 238.577412][ T7873] RAX: ffffffffffffffda RBX: 00007f2656db6088 RCX: 00007f2656b8e969 [ 238.577435][ T7873] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f2656db608c [ 238.577457][ T7873] RBP: 00007f2656db6080 R08: 00007f26579c1000 R09: 0000000000000000 [ 238.577480][ T7873] R10: 0000000000000008 R11: 0000000000000246 R12: 00007f2656db608c [ 238.577502][ T7873] R13: 0000000000000000 R14: 00007ffd85635260 R15: 00007ffd85635348 [ 238.577549][ T7873] [ 241.931157][ T5838] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 243.619027][ T7939] FAULT_INJECTION: forcing a failure. [ 243.619027][ T7939] name failslab, interval 1, probability 0, space 0, times 0 [ 243.660776][ T7939] CPU: 0 UID: 0 PID: 7939 Comm: syz.1.436 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 243.660827][ T7939] Tainted: [U]=USER [ 243.660838][ T7939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 243.660856][ T7939] Call Trace: [ 243.660866][ T7939] [ 243.660882][ T7939] dump_stack_lvl+0x16c/0x1f0 [ 243.660937][ T7939] should_fail_ex+0x512/0x640 [ 243.660998][ T7939] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 243.661053][ T7939] ? __pfx_dvb_frontend_thread+0x10/0x10 [ 243.661096][ T7939] should_failslab+0xc2/0x120 [ 243.661134][ T7939] __kmalloc_cache_noprof+0x6a/0x3e0 [ 243.661185][ T7939] ? lockdep_init_map_type+0x5c/0x280 [ 243.661227][ T7939] ? __kthread_create_on_node+0xce/0x3f0 [ 243.661274][ T7939] ? __pfx_dvb_frontend_thread+0x10/0x10 [ 243.661316][ T7939] __kthread_create_on_node+0xce/0x3f0 [ 243.661357][ T7939] ? __pfx___mutex_trylock_common+0x10/0x10 [ 243.661401][ T7939] ? __pfx___kthread_create_on_node+0x10/0x10 [ 243.661463][ T7939] ? __pfx_dvb_frontend_thread+0x10/0x10 [ 243.661508][ T7939] kthread_create_on_node+0xc7/0x100 [ 243.661549][ T7939] ? __pfx_kthread_create_on_node+0x10/0x10 [ 243.661600][ T7939] ? mark_held_locks+0x49/0x80 [ 243.661638][ T7939] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 243.661676][ T7939] ? lockdep_hardirqs_on+0x7c/0x110 [ 243.661723][ T7939] dvb_frontend_open+0xf47/0x1730 [ 243.661775][ T7939] ? __pfx_dvb_frontend_open+0x10/0x10 [ 243.661825][ T7939] dvb_device_open+0x26d/0x3b0 [ 243.661869][ T7939] ? __pfx_dvb_device_open+0x10/0x10 [ 243.661911][ T7939] chrdev_open+0x231/0x6a0 [ 243.661956][ T7939] ? __pfx_apparmor_file_open+0x10/0x10 [ 243.661998][ T7939] ? __pfx_chrdev_open+0x10/0x10 [ 243.662035][ T7939] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 243.662091][ T7939] do_dentry_open+0x741/0x1c10 [ 243.662124][ T7939] ? __pfx_chrdev_open+0x10/0x10 [ 243.662167][ T7939] vfs_open+0x82/0x3f0 [ 243.662213][ T7939] path_openat+0x1e5e/0x2d40 [ 243.662258][ T7939] ? __pfx_path_openat+0x10/0x10 [ 243.662299][ T7939] do_filp_open+0x20b/0x470 [ 243.662331][ T7939] ? __pfx_do_filp_open+0x10/0x10 [ 243.662391][ T7939] ? alloc_fd+0x471/0x7d0 [ 243.662451][ T7939] do_sys_openat2+0x11b/0x1d0 [ 243.662492][ T7939] ? __pfx_do_sys_openat2+0x10/0x10 [ 243.662537][ T7939] ? __pfx___might_resched+0x10/0x10 [ 243.662583][ T7939] __x64_sys_openat+0x174/0x210 [ 243.662626][ T7939] ? __pfx___x64_sys_openat+0x10/0x10 [ 243.662672][ T7939] ? rcu_is_watching+0x12/0xc0 [ 243.662713][ T7939] do_syscall_64+0xcd/0x230 [ 243.662760][ T7939] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 243.662792][ T7939] RIP: 0033:0x7f87e958e969 [ 243.662818][ T7939] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 243.662851][ T7939] RSP: 002b:00007f87ea4c2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 243.662880][ T7939] RAX: ffffffffffffffda RBX: 00007f87e97b5fa0 RCX: 00007f87e958e969 [ 243.662902][ T7939] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 243.662928][ T7939] RBP: 00007f87e9610ab1 R08: 0000000000000000 R09: 0000000000000000 [ 243.662948][ T7939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 243.662967][ T7939] R13: 0000000000000000 R14: 00007f87e97b5fa0 R15: 00007ffd66acc568 [ 243.663009][ T7939] [ 244.003336][ T7939] i2c i2c-0: dvb_frontend_start: failed to start kthread (-12) [ 244.596738][ T7943] FAULT_INJECTION: forcing a failure. [ 244.596738][ T7943] name failslab, interval 1, probability 0, space 0, times 0 [ 244.626181][ T7943] CPU: 0 UID: 0 PID: 7943 Comm: syz.1.439 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 244.626235][ T7943] Tainted: [U]=USER [ 244.626246][ T7943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 244.626267][ T7943] Call Trace: [ 244.626278][ T7943] [ 244.626291][ T7943] dump_stack_lvl+0x16c/0x1f0 [ 244.626340][ T7943] should_fail_ex+0x512/0x640 [ 244.626379][ T7943] ? __kvmalloc_node_noprof+0x122/0x600 [ 244.626411][ T7943] should_failslab+0xc2/0x120 [ 244.626444][ T7943] __kvmalloc_node_noprof+0x135/0x600 [ 244.626475][ T7943] ? bucket_table_alloc.isra.0+0x83/0x460 [ 244.626519][ T7943] ? bucket_table_alloc.isra.0+0x83/0x460 [ 244.626553][ T7943] bucket_table_alloc.isra.0+0x83/0x460 [ 244.626622][ T7943] rhashtable_init_noprof+0x41a/0x7e0 [ 244.626658][ T7943] ? __init_waitqueue_head+0xca/0x150 [ 244.626707][ T7943] rhltable_init_noprof+0x20/0x60 [ 244.626746][ T7943] sta_info_init+0x5f/0x160 [ 244.626784][ T7943] ieee80211_alloc_hw_nm+0x840/0x2260 [ 244.626826][ T7943] ? __local_bh_enable_ip+0xa4/0x120 [ 244.626861][ T7943] mac80211_hwsim_new_radio+0x1d4/0x54d0 [ 244.626917][ T7943] ? __asan_memset+0x23/0x50 [ 244.626960][ T7943] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 244.627010][ T7943] hwsim_new_radio_nl+0xb51/0x12c0 [ 244.627052][ T7943] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 244.627102][ T7943] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 244.627141][ T7943] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 244.627187][ T7943] genl_family_rcv_msg_doit+0x206/0x2f0 [ 244.627225][ T7943] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 244.627262][ T7943] ? trace_cap_capable+0x18d/0x200 [ 244.627295][ T7943] ? bpf_lsm_capable+0x9/0x10 [ 244.627321][ T7943] ? security_capable+0x7e/0x260 [ 244.627366][ T7943] ? ns_capable+0xd7/0x110 [ 244.627396][ T7943] genl_rcv_msg+0x55c/0x800 [ 244.627435][ T7943] ? __pfx_genl_rcv_msg+0x10/0x10 [ 244.627469][ T7943] ? __pfx___dev_queue_xmit+0x10/0x10 [ 244.627510][ T7943] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 244.627552][ T7943] ? __lock_acquire+0xaa4/0x1ba0 [ 244.627600][ T7943] netlink_rcv_skb+0x16a/0x440 [ 244.627632][ T7943] ? __pfx_genl_rcv_msg+0x10/0x10 [ 244.627670][ T7943] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 244.627720][ T7943] ? __pfx_down_read+0x10/0x10 [ 244.627761][ T7943] ? netlink_deliver_tap+0x1ae/0xd30 [ 244.627795][ T7943] genl_rcv+0x28/0x40 [ 244.627827][ T7943] netlink_unicast+0x53a/0x7f0 [ 244.627863][ T7943] ? __pfx_netlink_unicast+0x10/0x10 [ 244.627891][ T7943] ? __lock_acquire+0xaa4/0x1ba0 [ 244.627934][ T7943] netlink_sendmsg+0x8d1/0xdd0 [ 244.627971][ T7943] ? __pfx_netlink_sendmsg+0x10/0x10 [ 244.628016][ T7943] ____sys_sendmsg+0xa95/0xc70 [ 244.628054][ T7943] ? copy_msghdr_from_user+0x10a/0x160 [ 244.628081][ T7943] ? __pfx_____sys_sendmsg+0x10/0x10 [ 244.628133][ T7943] ___sys_sendmsg+0x134/0x1d0 [ 244.628164][ T7943] ? __pfx____sys_sendmsg+0x10/0x10 [ 244.628234][ T7943] __sys_sendmsg+0x16d/0x220 [ 244.628263][ T7943] ? __pfx___sys_sendmsg+0x10/0x10 [ 244.628290][ T7943] ? __x64_sys_futex+0x1e0/0x4c0 [ 244.628327][ T7943] ? rcu_is_watching+0x12/0xc0 [ 244.628360][ T7943] do_syscall_64+0xcd/0x230 [ 244.628399][ T7943] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.628425][ T7943] RIP: 0033:0x7f87e958e969 [ 244.628447][ T7943] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 244.628474][ T7943] RSP: 002b:00007f87ea4c2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 244.628499][ T7943] RAX: ffffffffffffffda RBX: 00007f87e97b5fa0 RCX: 00007f87e958e969 [ 244.628517][ T7943] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000007 [ 244.628534][ T7943] RBP: 00007f87e9610ab1 R08: 0000000000000000 R09: 0000000000000000 [ 244.628550][ T7943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 244.628571][ T7943] R13: 0000000000000000 R14: 00007f87e97b5fa0 R15: 00007ffd66acc568 [ 244.628605][ T7943] [ 246.798490][ T5838] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 247.277750][ T7974] mkiss: ax0: crc mode is auto. [ 248.648669][ T7994] netlink: 8 bytes leftover after parsing attributes in process `syz.2.450'. [ 253.808709][ T5838] Bluetooth: hci3: unexpected subevent 0x01 length: 122 > 18 [ 253.941237][ T12] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 254.709660][ T12] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 254.786755][ T5832] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 254.795918][ T5832] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 254.811892][ T5832] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 254.822117][ T5832] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 254.830705][ T5832] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 255.369182][ T12] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 255.467298][ T8069] netlink: 28 bytes leftover after parsing attributes in process `syz.1.466'. [ 255.512753][ T8069] ipvlan1: entered allmulticast mode [ 255.518360][ T8069] veth0_vlan: entered allmulticast mode [ 255.621391][ T12] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 256.085629][ T8062] chnl_net:caif_netlink_parms(): no params data found [ 256.191193][ T12] bridge_slave_1: left allmulticast mode [ 256.200702][ T12] bridge_slave_1: left promiscuous mode [ 256.216491][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 256.274029][ T12] bridge_slave_0: left allmulticast mode [ 256.286842][ T12] bridge_slave_0: left promiscuous mode [ 256.293215][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 256.886476][ T5832] Bluetooth: hci2: command tx timeout [ 258.189372][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 258.213560][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 258.231736][ T12] bond0 (unregistering): Released all slaves [ 258.915814][ T8062] bridge0: port 1(bridge_slave_0) entered blocking state [ 258.943693][ T8062] bridge0: port 1(bridge_slave_0) entered disabled state [ 258.952800][ T8062] bridge_slave_0: entered allmulticast mode [ 258.967927][ T8062] bridge_slave_0: entered promiscuous mode [ 258.981999][ T5832] Bluetooth: hci2: command tx timeout [ 259.052571][ T8062] bridge0: port 2(bridge_slave_1) entered blocking state [ 259.085518][ T8062] bridge0: port 2(bridge_slave_1) entered disabled state [ 259.105575][ T8062] bridge_slave_1: entered allmulticast mode [ 259.133471][ T8062] bridge_slave_1: entered promiscuous mode [ 259.610489][ T8062] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 259.809734][ T8062] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 260.110565][ T8062] team0: Port device team_slave_0 added [ 260.131518][ T8062] team0: Port device team_slave_1 added [ 260.307418][ T8027] syz.3.458 (8027) used greatest stack depth: 21032 bytes left [ 260.479408][ T8062] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 260.515660][ T8062] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 260.596897][ T8062] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 260.662167][ T8062] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 260.682959][ T8062] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 260.796424][ T8062] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 260.824930][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 260.836776][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 261.056458][ T5832] Bluetooth: hci2: command tx timeout [ 261.545768][ T30] audit: type=1800 audit(6041054142.725:3): pid=8124 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.475" name="members" dev="configfs" ino=17582 res=0 errno=0 [ 261.810436][ T8062] hsr_slave_0: entered promiscuous mode [ 261.825334][ T8062] hsr_slave_1: entered promiscuous mode [ 261.849799][ T8062] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 261.859051][ T8062] Cannot create hsr debugfs directory [ 262.036062][ T8136] FAULT_INJECTION: forcing a failure. [ 262.036062][ T8136] name failslab, interval 1, probability 0, space 0, times 0 [ 262.070656][ T8136] CPU: 0 UID: 0 PID: 8136 Comm: syz.0.477 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 262.070711][ T8136] Tainted: [U]=USER [ 262.070723][ T8136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 262.070743][ T8136] Call Trace: [ 262.070754][ T8136] [ 262.070766][ T8136] dump_stack_lvl+0x16c/0x1f0 [ 262.070813][ T8136] should_fail_ex+0x512/0x640 [ 262.070859][ T8136] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 262.070906][ T8136] should_failslab+0xc2/0x120 [ 262.070946][ T8136] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 262.071002][ T8136] ? kasprintf+0xc7/0x100 [ 262.071054][ T8136] kvasprintf+0xbc/0x160 [ 262.071109][ T8136] ? __pfx_kvasprintf+0x10/0x10 [ 262.071161][ T8136] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 262.071200][ T8136] ? lockdep_hardirqs_on+0x7c/0x110 [ 262.071242][ T8136] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 262.071284][ T8136] kasprintf+0xc7/0x100 [ 262.071332][ T8136] ? __pfx_kasprintf+0x10/0x10 [ 262.071390][ T8136] ? __pfx_sta_info_cleanup+0x10/0x10 [ 262.071439][ T8136] ieee80211_alloc_led_names+0x86/0x420 [ 262.071510][ T8136] ieee80211_alloc_hw_nm+0x1941/0x2260 [ 262.071571][ T8136] mac80211_hwsim_new_radio+0x1d4/0x54d0 [ 262.071643][ T8136] ? __asan_memset+0x23/0x50 [ 262.071698][ T8136] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 262.071762][ T8136] hwsim_new_radio_nl+0xb51/0x12c0 [ 262.071816][ T8136] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 262.071878][ T8136] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 262.071928][ T8136] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 262.071985][ T8136] genl_family_rcv_msg_doit+0x206/0x2f0 [ 262.072032][ T8136] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 262.072078][ T8136] ? trace_cap_capable+0x18d/0x200 [ 262.072128][ T8136] ? bpf_lsm_capable+0x9/0x10 [ 262.072162][ T8136] ? security_capable+0x7e/0x260 [ 262.072218][ T8136] ? ns_capable+0xd7/0x110 [ 262.072256][ T8136] genl_rcv_msg+0x55c/0x800 [ 262.072306][ T8136] ? __pfx_genl_rcv_msg+0x10/0x10 [ 262.072349][ T8136] ? __pfx___dev_queue_xmit+0x10/0x10 [ 262.072400][ T8136] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 262.072453][ T8136] ? __lock_acquire+0xaa4/0x1ba0 [ 262.072502][ T8136] netlink_rcv_skb+0x16a/0x440 [ 262.072543][ T8136] ? __pfx_genl_rcv_msg+0x10/0x10 [ 262.072590][ T8136] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 262.072660][ T8136] ? __pfx_down_read+0x10/0x10 [ 262.072712][ T8136] ? netlink_deliver_tap+0x1ae/0xd30 [ 262.072757][ T8136] genl_rcv+0x28/0x40 [ 262.072797][ T8136] netlink_unicast+0x53a/0x7f0 [ 262.072851][ T8136] ? __pfx_netlink_unicast+0x10/0x10 [ 262.072886][ T8136] ? __lock_acquire+0xaa4/0x1ba0 [ 262.072937][ T8136] netlink_sendmsg+0x8d1/0xdd0 [ 262.072983][ T8136] ? __pfx_netlink_sendmsg+0x10/0x10 [ 262.073037][ T8136] ____sys_sendmsg+0xa95/0xc70 [ 262.073080][ T8136] ? copy_msghdr_from_user+0x10a/0x160 [ 262.073124][ T8136] ? __pfx_____sys_sendmsg+0x10/0x10 [ 262.073190][ T8136] ___sys_sendmsg+0x134/0x1d0 [ 262.073227][ T8136] ? __pfx____sys_sendmsg+0x10/0x10 [ 262.073315][ T8136] __sys_sendmsg+0x16d/0x220 [ 262.073351][ T8136] ? __pfx___sys_sendmsg+0x10/0x10 [ 262.073384][ T8136] ? __x64_sys_futex+0x1e0/0x4c0 [ 262.073429][ T8136] ? rcu_is_watching+0x12/0xc0 [ 262.073469][ T8136] do_syscall_64+0xcd/0x230 [ 262.073514][ T8136] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 262.073546][ T8136] RIP: 0033:0x7fcdc8b8e969 [ 262.073571][ T8136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 262.073602][ T8136] RSP: 002b:00007fcdc99e5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 262.073633][ T8136] RAX: ffffffffffffffda RBX: 00007fcdc8db5fa0 RCX: 00007fcdc8b8e969 [ 262.073654][ T8136] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000007 [ 262.073675][ T8136] RBP: 00007fcdc8c10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 262.073693][ T8136] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 262.073712][ T8136] R13: 0000000000000000 R14: 00007fcdc8db5fa0 R15: 00007ffc13a1cc68 [ 262.073754][ T8136] [ 263.126256][ T5832] Bluetooth: hci2: command tx timeout [ 263.598938][ T8153] netlink: 330 bytes leftover after parsing attributes in process `syz.0.479'. [ 263.830089][ T12] hsr_slave_0: left promiscuous mode [ 263.875918][ T12] hsr_slave_1: left promiscuous mode [ 263.894888][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 263.922448][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 263.992159][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 263.999821][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 264.214877][ T12] veth1_macvtap: left promiscuous mode [ 264.229900][ T12] veth0_macvtap: left promiscuous mode [ 264.242629][ T12] veth1_vlan: left promiscuous mode [ 264.260610][ T12] veth0_vlan: left promiscuous mode [ 266.746082][ T7908] syz.3.427 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 266.836802][ T7908] CPU: 1 UID: 0 PID: 7908 Comm: syz.3.427 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 266.836862][ T7908] Tainted: [U]=USER [ 266.836872][ T7908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 266.836890][ T7908] Call Trace: [ 266.836900][ T7908] [ 266.836911][ T7908] dump_stack_lvl+0x16c/0x1f0 [ 266.836955][ T7908] dump_header+0x101/0x930 [ 266.836999][ T7908] oom_kill_process+0x270/0xa60 [ 266.837044][ T7908] out_of_memory+0x350/0x1700 [ 266.837092][ T7908] ? __pfx_out_of_memory+0x10/0x10 [ 266.837143][ T7908] mem_cgroup_out_of_memory+0x205/0x270 [ 266.837188][ T7908] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 266.837244][ T7908] ? do_raw_spin_unlock+0x172/0x230 [ 266.837291][ T7908] try_charge_memcg+0xa07/0x10c0 [ 266.837357][ T7908] ? __pfx_try_charge_memcg+0x10/0x10 [ 266.837389][ T7908] ? __print_lock_name+0xc1/0xe0 [ 266.837415][ T7908] ? rcu_read_unlock+0x17/0x60 [ 266.837457][ T7908] charge_memcg+0x8a/0x230 [ 266.837488][ T7908] __mem_cgroup_charge+0x2b/0x1e0 [ 266.837525][ T7908] shmem_alloc_and_add_folio+0x514/0xc20 [ 266.837564][ T7908] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 266.837600][ T7908] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 266.837637][ T7908] shmem_get_folio_gfp+0x687/0x1530 [ 266.837672][ T7908] ? __lock_acquire+0xaa4/0x1ba0 [ 266.837704][ T7908] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 266.837737][ T7908] ? __pte_offset_map_lock+0x155/0x2f0 [ 266.837779][ T7908] shmem_write_begin+0x160/0x300 [ 266.837813][ T7908] ? __pfx_shmem_write_begin+0x10/0x10 [ 266.837846][ T7908] ? balance_dirty_pages_ratelimited_flags+0x92/0x1260 [ 266.837889][ T7908] ? __pfx_timestamp_truncate+0x10/0x10 [ 266.837920][ T7908] generic_perform_write+0x3cd/0x930 [ 266.837961][ T7908] ? __pfx_generic_perform_write+0x10/0x10 [ 266.837993][ T7908] ? inode_needs_update_time.part.0+0x191/0x270 [ 266.838030][ T7908] shmem_file_write_iter+0x10e/0x140 [ 266.838069][ T7908] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 266.838116][ T7908] __kernel_write_iter+0x317/0xa90 [ 266.838143][ T7908] ? __pfx___kernel_write_iter+0x10/0x10 [ 266.838184][ T7908] ? __up_read+0x1f8/0x750 [ 266.838226][ T7908] ? dump_user_range+0x73d/0xb30 [ 266.838260][ T7908] ? copy_mc_enhanced_fast_string+0x6/0xf [ 266.838293][ T7908] dump_user_range+0x418/0xb30 [ 266.838343][ T7908] ? __pfx_dump_user_range+0x10/0x10 [ 266.838381][ T7908] ? elf_coredump_extra_notes_write+0xbd/0x430 [ 266.838414][ T7908] ? __pfx_writenote+0x10/0x10 [ 266.838460][ T7908] elf_core_dump+0x288a/0x3a90 [ 266.838516][ T7908] ? __pfx_elf_core_dump+0x10/0x10 [ 266.838553][ T7908] ? kasan_save_stack+0x42/0x60 [ 266.838580][ T7908] ? kasan_save_stack+0x33/0x60 [ 266.838605][ T7908] ? kasan_save_track+0x14/0x30 [ 266.838628][ T7908] ? __kasan_kmalloc+0xaa/0xb0 [ 266.838653][ T7908] ? do_coredump+0x17aa/0x4480 [ 266.838684][ T7908] ? get_signal+0x22e3/0x26d0 [ 266.838711][ T7908] ? arch_do_signal_or_restart+0x8f/0x7a0 [ 266.838754][ T7908] ? 0xffffffffff600000 [ 266.838832][ T7908] ? do_coredump+0x3183/0x4480 [ 266.838864][ T7908] do_coredump+0x3183/0x4480 [ 266.838911][ T7908] ? __pfx_do_coredump+0x10/0x10 [ 266.838948][ T7908] ? stack_trace_save+0x8e/0xc0 [ 266.838974][ T7908] ? __pfx_stack_trace_save+0x10/0x10 [ 266.838999][ T7908] ? stack_depot_save_flags+0x28/0xa50 [ 266.839038][ T7908] ? __lock_acquire+0xaa4/0x1ba0 [ 266.839078][ T7908] ? __kasan_slab_free+0x51/0x70 [ 266.839104][ T7908] ? kmem_cache_free+0x2d4/0x4d0 [ 266.839129][ T7908] ? __sigqueue_free+0xba/0x2a0 [ 266.839163][ T7908] ? get_signal+0xcba/0x26d0 [ 266.839189][ T7908] ? arch_do_signal_or_restart+0x8f/0x7a0 [ 266.839271][ T7908] ? proc_coredump_connector+0x2d1/0x4f0 [ 266.839310][ T7908] ? __pfx_proc_coredump_connector+0x10/0x10 [ 266.839362][ T7908] ? rcu_is_watching+0x12/0xc0 [ 266.839390][ T7908] get_signal+0x22e3/0x26d0 [ 266.839427][ T7908] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 266.839461][ T7908] ? __pfx_get_signal+0x10/0x10 [ 266.839500][ T7908] arch_do_signal_or_restart+0x8f/0x7a0 [ 266.839537][ T7908] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 266.839583][ T7908] ? exc_general_protection+0x1ba/0x230 [ 266.839634][ T7908] irqentry_exit_to_user_mode+0x13f/0x280 [ 266.839671][ T7908] asm_exc_general_protection+0x26/0x30 [ 266.839697][ T7908] RIP: 0033:0x7f2656b8e971 [ 266.839716][ T7908] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 266.839741][ T7908] RSP: 002b:0000200000000050 EFLAGS: 00010217 [ 266.839762][ T7908] RAX: 0000000000000000 RBX: 00007f2656db6160 RCX: 00007f2656b8e969 [ 266.839778][ T7908] RDX: 0000200000000100 RSI: 0000200000000050 RDI: 0000000000000000 [ 266.839794][ T7908] RBP: 00007f2656c10ab1 R08: 0000200000000180 R09: 0000200000000180 [ 266.839811][ T7908] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000000 [ 266.839826][ T7908] R13: 0000000000000000 R14: 00007f2656db6160 R15: 00007ffd85635348 [ 266.839860][ T7908] [ 266.839874][ T7908] memory: usage 307200kB, limit 307200kB, failcnt 18674 [ 267.500347][ T7908] memory+swap: usage 431848kB, limit 9007199254740988kB, failcnt 0 [ 267.511717][ T7908] kmem: usage 4664kB, limit 9007199254740988kB, failcnt 0 [ 267.538016][ T7908] Memory cgroup stats for /syz3: [ 267.538487][ T7908] cache 309366784 [ 267.591018][ T7908] rss 155648 [ 267.594256][ T7908] rss_huge 0 [ 267.626275][ T7908] shmem 309362688 [ 267.631808][ T7908] mapped_file 25337856 [ 267.635924][ T7908] dirty 0 [ 267.650090][ T12] team0 (unregistering): Port device team_slave_1 removed [ 267.680183][ T7908] writeback 0 [ 267.683641][ T7908] workingset_refault_anon 3116 [ 267.701464][ T7908] workingset_refault_file 68 [ 267.711841][ T7908] swap 127639552 [ 267.715550][ T7908] swapcached 274432 [ 267.721922][ T7908] pgpgin 212112 [ 267.722931][ T12] team0 (unregistering): Port device team_slave_0 removed [ 267.732862][ T7908] pgpgout 136989 [ 267.736762][ T7908] pgfault 219074 [ 267.740347][ T7908] pgmajfault 574 [ 267.743926][ T7908] inactive_anon 250494976 [ 267.756882][ T7908] active_anon 59297792 [ 267.761070][ T7908] inactive_file 4096 [ 267.764997][ T7908] active_file 0 [ 267.786224][ T7908] unevictable 0 [ 267.789864][ T7908] hierarchical_memory_limit 314572800 [ 267.795346][ T7908] hierarchical_memsw_limit 9223372036854771712 [ 267.813241][ T7908] total_cache 309366784 [ 267.825828][ T7908] total_rss 155648 [ 267.844185][ T7908] total_rss_huge 0 [ 267.850547][ T7908] total_shmem 309362688 [ 267.854743][ T7908] total_mapped_file 25337856 [ 267.863982][ T7908] total_dirty 0 [ 267.867887][ T7908] total_writeback 0 [ 267.871763][ T7908] total_workingset_refault_anon 3116 [ 267.883918][ T7908] total_workingset_refault_file 68 [ 267.889430][ T7908] total_swap 127639552 [ 267.893565][ T7908] total_swapcached 274432 [ 267.903011][ T7908] total_pgpgin 212112 [ 267.907658][ T7908] total_pgpgout 136989 [ 267.911767][ T7908] total_pgfault 219074 [ 267.915861][ T7908] total_pgmajfault 574 [ 267.925043][ T7908] total_inactive_anon 95272960 [ 267.934220][ T7908] total_active_anon 214519808 [ 267.943887][ T7908] total_inactive_file 4096 [ 267.948429][ T7908] total_active_file 0 [ 267.953516][ T7908] total_unevictable 0 [ 267.959354][ T7908] anon_cost 0 [ 267.962688][ T7908] file_cost 0 [ 267.966005][ T7908] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.427,pid=7904,uid=0 [ 267.989348][ T7908] Memory cgroup out of memory: Killed process 7904 (syz.3.427) total-vm:131136kB, anon-rss:952kB, file-rss:50756kB, shmem-rss:24832kB, UID:0 pgtables:244kB oom_score_adj:1000 [ 268.908166][ T7911] syz.3.427 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 268.944135][ T7911] CPU: 0 UID: 0 PID: 7911 Comm: syz.3.427 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 268.944187][ T7911] Tainted: [U]=USER [ 268.944197][ T7911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 268.944216][ T7911] Call Trace: [ 268.944226][ T7911] [ 268.944238][ T7911] dump_stack_lvl+0x16c/0x1f0 [ 268.944283][ T7911] dump_header+0x101/0x930 [ 268.944330][ T7911] oom_kill_process+0x270/0xa60 [ 268.944377][ T7911] out_of_memory+0x350/0x1700 [ 268.944429][ T7911] ? __pfx_out_of_memory+0x10/0x10 [ 268.944483][ T7911] mem_cgroup_out_of_memory+0x205/0x270 [ 268.944532][ T7911] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 268.944592][ T7911] ? do_raw_spin_unlock+0x172/0x230 [ 268.944648][ T7911] try_charge_memcg+0xa07/0x10c0 [ 268.944695][ T7911] ? __pfx_try_charge_memcg+0x10/0x10 [ 268.944735][ T7911] ? __print_lock_name+0xc1/0xe0 [ 268.944767][ T7911] ? rcu_read_unlock+0x17/0x60 [ 268.944818][ T7911] charge_memcg+0x8a/0x230 [ 268.944857][ T7911] __mem_cgroup_charge+0x2b/0x1e0 [ 268.944902][ T7911] shmem_alloc_and_add_folio+0x514/0xc20 [ 268.944951][ T7911] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 268.944995][ T7911] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 268.945042][ T7911] shmem_get_folio_gfp+0x687/0x1530 [ 268.945086][ T7911] ? __lock_acquire+0xaa4/0x1ba0 [ 268.945136][ T7911] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 268.945177][ T7911] ? __pte_offset_map_lock+0x155/0x2f0 [ 268.945228][ T7911] shmem_write_begin+0x160/0x300 [ 268.945271][ T7911] ? __pfx_shmem_write_begin+0x10/0x10 [ 268.945313][ T7911] ? balance_dirty_pages_ratelimited_flags+0x92/0x1260 [ 268.945364][ T7911] ? __pfx_timestamp_truncate+0x10/0x10 [ 268.945402][ T7911] generic_perform_write+0x3cd/0x930 [ 268.945453][ T7911] ? __pfx_generic_perform_write+0x10/0x10 [ 268.945493][ T7911] ? inode_needs_update_time.part.0+0x191/0x270 [ 268.945540][ T7911] shmem_file_write_iter+0x10e/0x140 [ 268.945589][ T7911] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 268.945632][ T7911] __kernel_write_iter+0x317/0xa90 [ 268.945666][ T7911] ? __pfx___kernel_write_iter+0x10/0x10 [ 268.945695][ T7911] ? __up_read+0x1f8/0x750 [ 268.945746][ T7911] ? dump_user_range+0x73d/0xb30 [ 268.945799][ T7911] dump_user_range+0x418/0xb30 [ 268.945854][ T7911] ? __pfx_dump_user_range+0x10/0x10 [ 268.945898][ T7911] ? elf_coredump_extra_notes_write+0xbd/0x430 [ 268.945939][ T7911] ? __pfx_writenote+0x10/0x10 [ 268.945996][ T7911] elf_core_dump+0x288a/0x3a90 [ 268.946068][ T7911] ? __pfx_elf_core_dump+0x10/0x10 [ 268.946122][ T7911] ? kasan_save_stack+0x42/0x60 [ 268.946155][ T7911] ? kasan_save_stack+0x33/0x60 [ 268.946185][ T7911] ? kasan_save_track+0x14/0x30 [ 268.946216][ T7911] ? __kasan_kmalloc+0xaa/0xb0 [ 268.946247][ T7911] ? do_coredump+0x17aa/0x4480 [ 268.946286][ T7911] ? get_signal+0x22e3/0x26d0 [ 268.946318][ T7911] ? arch_do_signal_or_restart+0x8f/0x7a0 [ 268.946372][ T7911] ? 0xffffffffff600000 [ 268.946471][ T7911] ? do_coredump+0x3183/0x4480 [ 268.946510][ T7911] do_coredump+0x3183/0x4480 [ 268.946570][ T7911] ? __pfx_do_coredump+0x10/0x10 [ 268.946617][ T7911] ? stack_trace_save+0x8e/0xc0 [ 268.946649][ T7911] ? __pfx_stack_trace_save+0x10/0x10 [ 268.946680][ T7911] ? stack_depot_save_flags+0x28/0xa50 [ 268.946727][ T7911] ? __lock_acquire+0xaa4/0x1ba0 [ 268.946777][ T7911] ? __kasan_slab_free+0x51/0x70 [ 268.946810][ T7911] ? kmem_cache_free+0x2d4/0x4d0 [ 268.946840][ T7911] ? __sigqueue_free+0xba/0x2a0 [ 268.946882][ T7911] ? get_signal+0xcba/0x26d0 [ 268.946914][ T7911] ? arch_do_signal_or_restart+0x8f/0x7a0 [ 268.947018][ T7911] ? proc_coredump_connector+0x2d1/0x4f0 [ 268.947067][ T7911] ? __pfx_proc_coredump_connector+0x10/0x10 [ 268.947133][ T7911] ? rcu_is_watching+0x12/0xc0 [ 268.947170][ T7911] get_signal+0x22e3/0x26d0 [ 268.947216][ T7911] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 268.947259][ T7911] ? __pfx_get_signal+0x10/0x10 [ 268.947308][ T7911] arch_do_signal_or_restart+0x8f/0x7a0 [ 268.947355][ T7911] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 268.947413][ T7911] ? exc_general_protection+0x1ba/0x230 [ 268.947475][ T7911] irqentry_exit_to_user_mode+0x13f/0x280 [ 268.947519][ T7911] asm_exc_general_protection+0x26/0x30 [ 268.947551][ T7911] RIP: 0033:0x7f2656b8e971 [ 268.947576][ T7911] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 268.947606][ T7911] RSP: 002b:0000200000000050 EFLAGS: 00010217 [ 268.947630][ T7911] RAX: 0000000000000000 RBX: 00007f2656db6160 RCX: 00007f2656b8e969 [ 268.947651][ T7911] RDX: 0000200000000100 RSI: 0000200000000050 RDI: 0000000000000000 [ 268.947670][ T7911] RBP: 00007f2656c10ab1 R08: 0000200000000180 R09: 0000200000000180 [ 268.947691][ T7911] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000000 [ 268.947711][ T7911] R13: 0000000000000000 R14: 00007f2656db6160 R15: 00007ffd85635348 [ 268.947753][ T7911] [ 269.444998][ T7911] memory: usage 306860kB, limit 307200kB, failcnt 19470 [ 269.452125][ T7911] memory+swap: usage 428152kB, limit 9007199254740988kB, failcnt 0 [ 269.460723][ T7911] kmem: usage 4648kB, limit 9007199254740988kB, failcnt 0 [ 269.468263][ T7911] Memory cgroup stats for /syz3: [ 269.468482][ T7911] cache 308973568 [ 269.477574][ T7911] rss 155648 [ 269.480808][ T7911] rss_huge 0 [ 269.484035][ T7911] shmem 308969472 [ 269.488208][ T7911] mapped_file 25337856 [ 269.492286][ T7911] dirty 0 [ 269.495224][ T7911] writeback 0 [ 269.498957][ T7911] workingset_refault_anon 3116 [ 269.503729][ T7911] workingset_refault_file 68 [ 269.508649][ T7911] swap 122884096 [ 269.512209][ T7911] swapcached 266240 [ 269.517090][ T7911] pgpgin 212444 [ 269.520569][ T7911] pgpgout 137419 [ 269.524117][ T7911] pgfault 219406 [ 269.527772][ T7911] pgmajfault 574 [ 269.531334][ T7911] inactive_anon 58503168 [ 269.535578][ T7911] active_anon 250720256 [ 269.539999][ T7911] inactive_file 0 [ 269.543654][ T7911] active_file 4096 [ 269.547445][ T7911] unevictable 0 [ 269.550922][ T7911] hierarchical_memory_limit 314572800 [ 269.556346][ T7911] hierarchical_memsw_limit 9223372036854771712 [ 269.562516][ T7911] total_cache 308973568 [ 269.566698][ T7911] total_rss 155648 [ 269.570438][ T7911] total_rss_huge 0 [ 269.574162][ T7911] total_shmem 308969472 [ 269.578349][ T7911] total_mapped_file 25337856 [ 269.582937][ T7911] total_dirty 0 [ 269.586558][ T7911] total_writeback 0 [ 269.590372][ T7911] total_workingset_refault_anon 3116 [ 269.595666][ T7911] total_workingset_refault_file 68 [ 269.600820][ T7911] total_swap 122884096 [ 269.604892][ T7911] total_swapcached 266240 [ 269.609254][ T7911] total_pgpgin 212444 [ 269.613236][ T7911] total_pgpgout 137419 [ 269.617333][ T7911] total_pgfault 219406 [ 269.622248][ T7911] total_pgmajfault 574 [ 269.626362][ T7911] total_inactive_anon 58503168 [ 269.631126][ T7911] total_active_anon 250720256 [ 269.635798][ T7911] total_inactive_file 0 [ 269.639990][ T7911] total_active_file 4096 [ 269.644231][ T7911] total_unevictable 0 [ 269.648360][ T7911] anon_cost 0 [ 269.651646][ T7911] file_cost 0 [ 269.654938][ T7911] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.427,pid=7909,uid=0 [ 269.669707][ T7911] Memory cgroup out of memory: Killed process 7909 (syz.3.427) total-vm:131136kB, anon-rss:952kB, file-rss:46720kB, shmem-rss:24832kB, UID:0 pgtables:236kB oom_score_adj:1000 [ 271.138549][ T8163] syz.3.480 (8163) used greatest stack depth: 20472 bytes left [ 273.575857][ T5838] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 273.585085][ T5838] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 273.593420][ T5838] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 273.605967][ T5838] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 273.615467][ T5838] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 274.504678][ T7909] syz.3.427 (7909) used greatest stack depth: 19640 bytes left [ 275.686773][ T5832] Bluetooth: hci3: command tx timeout [ 276.418746][ T12] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 dev/[ 277.538720][ T12] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 277.776429][ T5832] Bluetooth: hci3: command tx timeout [ 277.906220][ T8062] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 277.944516][ T8062] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 278.270654][ T8062] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 278.324925][ T8062] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 278.542367][ T12] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 278.814499][ T12] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 279.005485][ T8209] chnl_net:caif_netlink_parms(): no params data found [ 279.846494][ T5832] Bluetooth: hci3: command tx timeout [ 280.630948][ T8209] bridge0: port 1(bridge_slave_0) entered blocking state [ 280.640761][ T8209] bridge0: port 1(bridge_slave_0) entered disabled state [ 280.668618][ T8209] bridge_slave_0: entered allmulticast mode [ 280.690190][ T8209] bridge_slave_0: entered promiscuous mode [ 280.721169][ T8209] bridge0: port 2(bridge_slave_1) entered blocking state [ 280.748781][ T8209] bridge0: port 2(bridge_slave_1) entered disabled state [ 280.782867][ T8209] bridge_slave_1: entered allmulticast mode [ 280.802231][ T8209] bridge_slave_1: entered promiscuous mode [ 281.065200][ T8209] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 281.117516][ T8062] 8021q: adding VLAN 0 to HW filter on device bond0 [ 281.125329][ T12] bridge_slave_1: left allmulticast mode [ 281.131784][ T12] bridge_slave_1: left promiscuous mode [ 281.153057][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 281.367456][ T12] bridge_slave_0: left allmulticast mode [ 281.373170][ T12] bridge_slave_0: left promiscuous mode [ 281.388754][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 281.946222][ T5832] Bluetooth: hci3: command tx timeout [ 282.603187][ T7907] syz.3.427 (7907) used greatest stack depth: 18952 bytes left [ 283.115822][ T8331] netlink: 8 bytes leftover after parsing attributes in process `syz.3.500'. [ 283.176839][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 283.217976][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 283.242414][ T12] bond0 (unregistering): Released all slaves [ 283.290752][ T8209] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 283.845514][ T8209] team0: Port device team_slave_0 added [ 283.966892][ T8209] team0: Port device team_slave_1 added [ 284.298913][ T8062] 8021q: adding VLAN 0 to HW filter on device team0 [ 284.420733][ T8209] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 284.440626][ T8209] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 284.506447][ T8209] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 284.632213][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 284.639496][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 284.691749][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 284.699008][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 284.764628][ T8209] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 284.795895][ T8209] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 284.865755][ T8209] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 285.292796][ T8209] hsr_slave_0: entered promiscuous mode [ 285.328237][ T8209] hsr_slave_1: entered promiscuous mode [ 285.344968][ T8209] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 285.364805][ T8209] Cannot create hsr debugfs directory [ 285.924870][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 285.945685][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 285.955845][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 285.973098][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 286.012175][ T12] veth1_macvtap: left promiscuous mode [ 286.021632][ T12] veth0_macvtap: left promiscuous mode [ 286.032003][ T12] veth1_vlan: left promiscuous mode [ 286.037981][ T12] veth0_vlan: left promiscuous mode [ 286.508010][ T8373] netlink: 28 bytes leftover after parsing attributes in process `syz.0.505'. [ 287.300495][ T12] team0 (unregistering): Port device team_slave_1 removed [ 287.369647][ T12] team0 (unregistering): Port device team_slave_0 removed [ 287.946365][ T8373] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 287.985157][ T8373] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 288.000013][ T8373] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 288.010971][ T8373] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 289.226868][ T8062] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 289.364395][ T8062] veth0_vlan: entered promiscuous mode [ 289.560547][ T8062] veth1_vlan: entered promiscuous mode [ 289.846023][ T8209] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 289.866943][ T8209] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 289.884782][ T8209] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 289.909714][ T8062] veth0_macvtap: entered promiscuous mode [ 289.918425][ T8209] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 289.961966][ T8062] veth1_macvtap: entered promiscuous mode [ 290.073872][ T8062] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 290.085802][ T8062] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 290.105731][ T8062] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 290.124630][ T8062] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 290.135661][ T8062] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 290.151230][ T8062] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 290.186040][ T8062] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 290.196290][ T8062] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 290.205898][ T8062] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 290.216401][ T8062] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 290.521191][ T3498] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 290.541448][ T3498] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 290.783402][ T8209] 8021q: adding VLAN 0 to HW filter on device bond0 [ 291.507506][ T4391] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 291.515400][ T4391] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 291.532739][ T8209] 8021q: adding VLAN 0 to HW filter on device team0 [ 291.661595][ T4391] bridge0: port 1(bridge_slave_0) entered blocking state [ 291.668843][ T4391] bridge0: port 1(bridge_slave_0) entered forwarding state [ 291.757907][ T4410] bridge0: port 2(bridge_slave_1) entered blocking state [ 291.765202][ T4410] bridge0: port 2(bridge_slave_1) entered forwarding state [ 293.054021][ T8209] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 293.455616][ T8209] veth0_vlan: entered promiscuous mode [ 293.755494][ T8209] veth1_vlan: entered promiscuous mode [ 293.961509][ T8209] veth0_macvtap: entered promiscuous mode [ 294.098983][ T8209] veth1_macvtap: entered promiscuous mode [ 294.162396][ T8209] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 294.195192][ T8209] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 294.206071][ T8209] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 294.217040][ T8209] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 294.218267][ T8481] netlink: 8 bytes leftover after parsing attributes in process `syz.2.519'. [ 294.229242][ T8209] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 294.284469][ T8209] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 294.327686][ T8209] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 294.340439][ T8209] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 294.353361][ T8209] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 294.370084][ T8209] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 294.495514][ T8488] netlink: 28 bytes leftover after parsing attributes in process `syz.3.520'. [ 294.503992][ T8487] netlink: 338 bytes leftover after parsing attributes in process `syz.0.529'. [ 294.562642][ T8488] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 294.571061][ T8488] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 294.586888][ T8488] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 294.594490][ T8488] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 294.630196][ T8209] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 294.654483][ T8209] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 294.675820][ T8209] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 294.685937][ T8209] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 295.084936][ T3498] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 295.125155][ T3498] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 295.219474][ T989] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 295.247091][ T989] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 295.543213][ T8514] FAULT_INJECTION: forcing a failure. [ 295.543213][ T8514] name failslab, interval 1, probability 0, space 0, times 0 [ 295.557901][ T8514] CPU: 1 UID: 0 PID: 8514 Comm: syz.1.487 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 295.557950][ T8514] Tainted: [U]=USER [ 295.557961][ T8514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 295.557978][ T8514] Call Trace: [ 295.557987][ T8514] [ 295.557999][ T8514] dump_stack_lvl+0x16c/0x1f0 [ 295.558046][ T8514] should_fail_ex+0x512/0x640 [ 295.558090][ T8514] ? __kvmalloc_node_noprof+0x122/0x600 [ 295.558128][ T8514] should_failslab+0xc2/0x120 [ 295.558166][ T8514] __kvmalloc_node_noprof+0x135/0x600 [ 295.558196][ T8514] ? __pfx___debug_object_init+0x10/0x10 [ 295.558228][ T8514] ? bucket_table_alloc.isra.0+0x83/0x460 [ 295.558279][ T8514] ? bucket_table_alloc.isra.0+0x83/0x460 [ 295.558318][ T8514] bucket_table_alloc.isra.0+0x83/0x460 [ 295.558365][ T8514] rhashtable_init_noprof+0x41a/0x7e0 [ 295.558406][ T8514] ? __init_waitqueue_head+0xca/0x150 [ 295.558461][ T8514] rhltable_init_noprof+0x20/0x60 [ 295.558517][ T8514] sta_info_init+0x27/0x160 [ 295.558562][ T8514] ieee80211_alloc_hw_nm+0x840/0x2260 [ 295.558608][ T8514] ? __local_bh_enable_ip+0xa4/0x120 [ 295.558649][ T8514] mac80211_hwsim_new_radio+0x1d4/0x54d0 [ 295.558716][ T8514] ? __asan_memset+0x23/0x50 [ 295.558767][ T8514] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 295.558826][ T8514] hwsim_new_radio_nl+0xb51/0x12c0 [ 295.558872][ T8514] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 295.558919][ T8514] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 295.558958][ T8514] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 295.559001][ T8514] genl_family_rcv_msg_doit+0x206/0x2f0 [ 295.559037][ T8514] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 295.559075][ T8514] ? trace_cap_capable+0x18d/0x200 [ 295.559108][ T8514] ? bpf_lsm_capable+0x9/0x10 [ 295.559133][ T8514] ? security_capable+0x7e/0x260 [ 295.559177][ T8514] ? ns_capable+0xd7/0x110 [ 295.559207][ T8514] genl_rcv_msg+0x55c/0x800 [ 295.559247][ T8514] ? __pfx_genl_rcv_msg+0x10/0x10 [ 295.559284][ T8514] ? __pfx___dev_queue_xmit+0x10/0x10 [ 295.559324][ T8514] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 295.559362][ T8514] ? __lock_acquire+0xaa4/0x1ba0 [ 295.559404][ T8514] netlink_rcv_skb+0x16a/0x440 [ 295.559435][ T8514] ? __pfx_genl_rcv_msg+0x10/0x10 [ 295.559520][ T8514] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 295.559573][ T8514] ? __pfx_down_read+0x10/0x10 [ 295.559618][ T8514] ? netlink_deliver_tap+0x1ae/0xd30 [ 295.559660][ T8514] genl_rcv+0x28/0x40 [ 295.559700][ T8514] netlink_unicast+0x53a/0x7f0 [ 295.559744][ T8514] ? __pfx_netlink_unicast+0x10/0x10 [ 295.559780][ T8514] ? __lock_acquire+0xaa4/0x1ba0 [ 295.559832][ T8514] netlink_sendmsg+0x8d1/0xdd0 [ 295.559878][ T8514] ? __pfx_netlink_sendmsg+0x10/0x10 [ 295.559935][ T8514] ____sys_sendmsg+0xa95/0xc70 [ 295.559982][ T8514] ? copy_msghdr_from_user+0x10a/0x160 [ 295.560017][ T8514] ? __pfx_____sys_sendmsg+0x10/0x10 [ 295.560083][ T8514] ___sys_sendmsg+0x134/0x1d0 [ 295.560119][ T8514] ? __pfx____sys_sendmsg+0x10/0x10 [ 295.560210][ T8514] __sys_sendmsg+0x16d/0x220 [ 295.560245][ T8514] ? __pfx___sys_sendmsg+0x10/0x10 [ 295.560278][ T8514] ? __x64_sys_futex+0x1e0/0x4c0 [ 295.560325][ T8514] ? rcu_is_watching+0x12/0xc0 [ 295.560368][ T8514] do_syscall_64+0xcd/0x230 [ 295.560415][ T8514] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 295.560448][ T8514] RIP: 0033:0x7f0235d8e969 [ 295.560482][ T8514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 295.560513][ T8514] RSP: 002b:00007f0236c02038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 295.560543][ T8514] RAX: ffffffffffffffda RBX: 00007f0235fb5fa0 RCX: 00007f0235d8e969 [ 295.560564][ T8514] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000007 [ 295.560585][ T8514] RBP: 00007f0235e10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 295.560604][ T8514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 295.560624][ T8514] R13: 0000000000000000 R14: 00007f0235fb5fa0 R15: 00007ffcb5e1ff98 [ 295.560666][ T8514] [ 296.881971][ T8502] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 296.889289][ T8502] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 296.948159][ T8502] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 296.955300][ T30] audit: type=1800 audit(6041054178.135:4): pid=8525 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.527" name="lu_gp_id" dev="configfs" ino=19842 res=0 errno=0 [ 296.957858][ T8525] kstrtoul() returned -22 for lu_gp_id [ 296.976623][ T8502] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 297.030206][ T8502] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 297.062760][ T8502] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 297.097579][ T8502] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 297.103985][ T8502] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 297.137117][ T8502] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 297.161116][ T8530] netlink: 'syz.1.530': attribute type 22 has an invalid length. [ 297.172011][ T8530] netlink: 334 bytes leftover after parsing attributes in process `syz.1.530'. [ 297.323205][ T8531] lo: entered allmulticast mode [ 297.373657][ T8528] lo: left allmulticast mode [ 297.511087][ T8541] netlink: 8 bytes leftover after parsing attributes in process `syz.3.532'. [ 298.300100][ T8564] netlink: 342 bytes leftover after parsing attributes in process `syz.0.535'. [ 298.312204][ T8565] netlink: 342 bytes leftover after parsing attributes in process `syz.0.535'. [ 298.346824][ T8565] netlink: 342 bytes leftover after parsing attributes in process `syz.0.535'. [ 298.726877][ T5832] Bluetooth: hci0: command 0x0c1a tx timeout [ 298.966367][ T5832] Bluetooth: hci1: command 0x0c1a tx timeout [ 299.046735][ T5832] Bluetooth: hci2: command 0x0c1a tx timeout [ 299.100470][ T8586] netlink: 12 bytes leftover after parsing attributes in process `syz.1.538'. [ 299.127946][ T5832] Bluetooth: hci3: command 0x0c1a tx timeout [ 299.280467][ T8589] device-mapper: ioctl: Unable to rename non-existent device,  to „ [ 299.361019][ T8582] HfR: entered promiscuous mode [ 299.399417][ T8586] HfR: left promiscuous mode [ 300.807281][ T5832] Bluetooth: hci0: command 0x0c1a tx timeout [ 301.055844][ T8621] program syz.1.546 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 301.129854][ T5832] Bluetooth: hci2: command 0x0c1a tx timeout [ 301.206405][ T5832] Bluetooth: hci3: command 0x0c1a tx timeout [ 301.328894][ T8631] netlink: 338 bytes leftover after parsing attributes in process `syz.0.548'. [ 303.206821][ T5832] Bluetooth: hci2: command 0x0c1a tx timeout [ 303.287188][ T5832] Bluetooth: hci3: command 0x0c1a tx timeout [ 304.855350][ T8678] netlink: 338 bytes leftover after parsing attributes in process `syz.2.559'. [ 305.016635][ T8682] random: crng reseeded on system resumption [ 305.439297][ T8688] warning: `syz.3.561' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 305.760150][ T8701] FAULT_INJECTION: forcing a failure. [ 305.760150][ T8701] name failslab, interval 1, probability 0, space 0, times 0 [ 305.859741][ T8701] CPU: 0 UID: 0 PID: 8701 Comm: syz.0.563 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 305.859793][ T8701] Tainted: [U]=USER [ 305.859804][ T8701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 305.859834][ T8701] Call Trace: [ 305.859844][ T8701] [ 305.859855][ T8701] dump_stack_lvl+0x16c/0x1f0 [ 305.859902][ T8701] should_fail_ex+0x512/0x640 [ 305.859944][ T8701] ? __kvmalloc_node_noprof+0x122/0x600 [ 305.859981][ T8701] should_failslab+0xc2/0x120 [ 305.860019][ T8701] __kvmalloc_node_noprof+0x135/0x600 [ 305.860062][ T8701] ? __pfx_net_ctl_permissions+0x10/0x10 [ 305.860107][ T8701] ? proc_sys_call_handler+0x2a6/0x5c0 [ 305.860138][ T8701] ? ns_capable_noaudit+0xda/0x110 [ 305.860179][ T8701] ? proc_sys_call_handler+0x2a6/0x5c0 [ 305.860212][ T8701] proc_sys_call_handler+0x2a6/0x5c0 [ 305.860250][ T8701] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 305.860300][ T8701] vfs_write+0x5ba/0x1180 [ 305.860332][ T8701] ? __pfx_proc_sys_write+0x10/0x10 [ 305.860369][ T8701] ? __pfx_vfs_write+0x10/0x10 [ 305.860395][ T8701] ? find_held_lock+0x2b/0x80 [ 305.860451][ T8701] __x64_sys_pwrite64+0x1f4/0x250 [ 305.860486][ T8701] ? __pfx___x64_sys_pwrite64+0x10/0x10 [ 305.860528][ T8701] do_syscall_64+0xcd/0x230 [ 305.860570][ T8701] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 305.860601][ T8701] RIP: 0033:0x7fcdc8b8e969 [ 305.860625][ T8701] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 305.860656][ T8701] RSP: 002b:00007fcdc99e5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 305.860684][ T8701] RAX: ffffffffffffffda RBX: 00007fcdc8db5fa0 RCX: 00007fcdc8b8e969 [ 305.860706][ T8701] RDX: 00000000000006bc RSI: 0000200000000000 RDI: 0000000000000005 [ 305.860732][ T8701] RBP: 00007fcdc99e5090 R08: 0000000000000000 R09: 0000000000000000 [ 305.860751][ T8701] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001 [ 305.860770][ T8701] R13: 0000000000000000 R14: 00007fcdc8db5fa0 R15: 00007ffc13a1cc68 [ 305.860811][ T8701] [ 306.734115][ T8715] HfR: entered promiscuous mode [ 306.766870][ T8715] netlink: 12 bytes leftover after parsing attributes in process `syz.3.566'. [ 306.798579][ T8715] HfR: left promiscuous mode [ 306.824866][ T8719] device-mapper: ioctl: Unable to rename non-existent device,  to „ [ 307.322364][ T8722] input: isc as /devices/virtual/input/input6 [ 307.467236][ T8721] FAULT_INJECTION: forcing a failure. [ 307.467236][ T8721] name fail_futex, interval 1, probability 0, space 0, times 0 [ 307.504451][ T8721] CPU: 1 UID: 0 PID: 8721 Comm: syz.0.567 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 307.504505][ T8721] Tainted: [U]=USER [ 307.504515][ T8721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 307.504534][ T8721] Call Trace: [ 307.504544][ T8721] [ 307.504555][ T8721] dump_stack_lvl+0x16c/0x1f0 [ 307.504600][ T8721] should_fail_ex+0x512/0x640 [ 307.504642][ T8721] ? __pfx_sigprocmask+0x10/0x10 [ 307.504693][ T8721] should_fail_futex+0x4c/0x60 [ 307.504726][ T8721] __x64_sys_futex+0x25e/0x4c0 [ 307.504762][ T8721] ? __x64_sys_rt_sigprocmask+0x1fd/0x290 [ 307.504795][ T8721] ? __pfx___x64_sys_futex+0x10/0x10 [ 307.504830][ T8721] ? rcu_is_watching+0x12/0xc0 [ 307.504871][ T8721] do_syscall_64+0xcd/0x230 [ 307.504918][ T8721] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 307.504949][ T8721] RIP: 0033:0x7fcdc8b8e969 [ 307.504974][ T8721] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 307.505005][ T8721] RSP: 002b:00007ffc13a1cdc8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 307.505034][ T8721] RAX: ffffffffffffffda RBX: 000000000004b0f1 RCX: 00007fcdc8b8e969 [ 307.505055][ T8721] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fcdc8db608c [ 307.505074][ T8721] RBP: 0000000000000032 R08: 00007fcdc99e6000 R09: 0000001713a1d0bf [ 307.505094][ T8721] R10: 00007ffc13a1cec0 R11: 0000000000000246 R12: 00007fcdc8db608c [ 307.505114][ T8721] R13: 00007ffc13a1cec0 R14: 000000000004b123 R15: 00007ffc13a1cee0 [ 307.505154][ T8721] [ 307.665414][ C1] vkms_vblank_simulate: vblank timer overrun [ 308.860481][ T8749] FAULT_INJECTION: forcing a failure. [ 308.860481][ T8749] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 308.956404][ T8749] CPU: 0 UID: 0 PID: 8749 Comm: syz.3.572 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 308.956442][ T8749] Tainted: [U]=USER [ 308.956449][ T8749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 308.956462][ T8749] Call Trace: [ 308.956471][ T8749] [ 308.956479][ T8749] dump_stack_lvl+0x16c/0x1f0 [ 308.956514][ T8749] should_fail_ex+0x512/0x640 [ 308.956549][ T8749] _copy_from_iter+0x2a4/0x15b0 [ 308.956589][ T8749] ? __pfx__copy_from_iter+0x10/0x10 [ 308.956620][ T8749] ? rcu_is_watching+0x12/0xc0 [ 308.956640][ T8749] ? trace_kmalloc+0x2b/0xd0 [ 308.956667][ T8749] ? __kvmalloc_node_noprof+0x296/0x600 [ 308.956695][ T8749] ? register_net_sysctl_sz+0x321/0x3e0 [ 308.956739][ T8749] ? proc_sys_call_handler+0x2a6/0x5c0 [ 308.956769][ T8749] ? ns_capable_noaudit+0xda/0x110 [ 308.956800][ T8749] proc_sys_call_handler+0x317/0x5c0 [ 308.956827][ T8749] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 308.956864][ T8749] vfs_write+0x5ba/0x1180 [ 308.956887][ T8749] ? __pfx_proc_sys_write+0x10/0x10 [ 308.956914][ T8749] ? __pfx_vfs_write+0x10/0x10 [ 308.956938][ T8749] ? find_held_lock+0x2b/0x80 [ 308.956995][ T8749] __x64_sys_pwrite64+0x1f4/0x250 [ 308.957020][ T8749] ? __pfx___x64_sys_pwrite64+0x10/0x10 [ 308.957053][ T8749] do_syscall_64+0xcd/0x230 [ 308.957087][ T8749] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 308.957108][ T8749] RIP: 0033:0x7f2656b8e969 [ 308.957125][ T8749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 308.957146][ T8749] RSP: 002b:00007f26579c0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 308.957166][ T8749] RAX: ffffffffffffffda RBX: 00007f2656db5fa0 RCX: 00007f2656b8e969 [ 308.957180][ T8749] RDX: 00000000000006bc RSI: 0000200000000000 RDI: 0000000000000005 [ 308.957194][ T8749] RBP: 00007f26579c0090 R08: 0000000000000000 R09: 0000000000000000 [ 308.957208][ T8749] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001 [ 308.957227][ T8749] R13: 0000000000000000 R14: 00007f2656db5fa0 R15: 00007ffd85635348 [ 308.957255][ T8749] [ 310.974660][ T8773] ================================================================== [ 310.982902][ T8773] BUG: KASAN: slab-use-after-free in dvb_device_open+0x36a/0x3b0 [ 310.990712][ T8773] Read of size 8 at addr ffff888141abce18 by task syz.2.580/8773 [ 310.998494][ T8773] [ 311.000876][ T8773] CPU: 1 UID: 0 PID: 8773 Comm: syz.2.580 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 311.000926][ T8773] Tainted: [U]=USER [ 311.000938][ T8773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 311.000957][ T8773] Call Trace: [ 311.000968][ T8773] [ 311.000979][ T8773] dump_stack_lvl+0x116/0x1f0 [ 311.001027][ T8773] print_report+0xc3/0x670 [ 311.001063][ T8773] ? __virt_addr_valid+0x5e/0x590 [ 311.001104][ T8773] ? __phys_addr+0xc6/0x150 [ 311.001144][ T8773] ? dvb_device_open+0x36a/0x3b0 [ 311.001186][ T8773] kasan_report+0xe0/0x110 [ 311.001232][ T8773] ? dvb_device_open+0x36a/0x3b0 [ 311.001279][ T8773] ? __pfx_dvb_device_open+0x10/0x10 [ 311.001323][ T8773] dvb_device_open+0x36a/0x3b0 [ 311.001367][ T8773] ? __pfx_dvb_device_open+0x10/0x10 [ 311.001411][ T8773] chrdev_open+0x231/0x6a0 [ 311.001443][ T8773] ? __pfx_apparmor_file_open+0x10/0x10 [ 311.001483][ T8773] ? __pfx_chrdev_open+0x10/0x10 [ 311.001517][ T8773] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 311.001570][ T8773] do_dentry_open+0x741/0x1c10 [ 311.001602][ T8773] ? __pfx_chrdev_open+0x10/0x10 [ 311.001639][ T8773] vfs_open+0x82/0x3f0 [ 311.001681][ T8773] path_openat+0x1e5e/0x2d40 [ 311.001717][ T8773] ? __pfx_path_openat+0x10/0x10 [ 311.001752][ T8773] do_filp_open+0x20b/0x470 [ 311.001780][ T8773] ? __pfx_do_filp_open+0x10/0x10 [ 311.001824][ T8773] ? alloc_fd+0x471/0x7d0 [ 311.001877][ T8773] do_sys_openat2+0x11b/0x1d0 [ 311.001918][ T8773] ? __pfx_do_sys_openat2+0x10/0x10 [ 311.001960][ T8773] ? __pfx_do_sys_openat2+0x10/0x10 [ 311.002010][ T8773] __x64_sys_openat+0x174/0x210 [ 311.002053][ T8773] ? __pfx___x64_sys_openat+0x10/0x10 [ 311.002098][ T8773] ? rcu_is_watching+0x12/0xc0 [ 311.002134][ T8773] do_syscall_64+0xcd/0x230 [ 311.002178][ T8773] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 311.002219][ T8773] RIP: 0033:0x7f609f58e969 [ 311.002245][ T8773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 311.002278][ T8773] RSP: 002b:00007f60a048b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 311.002306][ T8773] RAX: ffffffffffffffda RBX: 00007f609f7b5fa0 RCX: 00007f609f58e969 [ 311.002326][ T8773] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 311.002346][ T8773] RBP: 00007f609f610ab1 R08: 0000000000000000 R09: 0000000000000000 [ 311.002365][ T8773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 311.002384][ T8773] R13: 0000000000000000 R14: 00007f609f7b5fa0 R15: 00007fffde7dfd98 [ 311.002414][ T8773] [ 311.002424][ T8773] [ 311.262570][ T8773] Allocated by task 8708: [ 311.266946][ T8773] kasan_save_stack+0x33/0x60 [ 311.271675][ T8773] kasan_save_track+0x14/0x30 [ 311.276375][ T8773] __kasan_kmalloc+0xaa/0xb0 [ 311.280997][ T8773] __kmalloc_noprof+0x223/0x510 [ 311.285879][ T8773] iter_file_splice_write+0x1cc/0x1150 [ 311.291579][ T8773] direct_splice_actor+0x18f/0x6c0 [ 311.296753][ T8773] splice_direct_to_actor+0x342/0xa30 [ 311.302258][ T8773] do_splice_direct+0x174/0x240 [ 311.307213][ T8773] do_sendfile+0xafd/0xe50 [ 311.311771][ T8773] __x64_sys_sendfile64+0x1d8/0x220 [ 311.317089][ T8773] do_syscall_64+0xcd/0x230 [ 311.321638][ T8773] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 311.327564][ T8773] [ 311.329898][ T8773] Freed by task 8708: [ 311.333893][ T8773] kasan_save_stack+0x33/0x60 [ 311.338589][ T8773] kasan_save_track+0x14/0x30 [ 311.343292][ T8773] kasan_save_free_info+0x3b/0x60 [ 311.348367][ T8773] __kasan_slab_free+0x51/0x70 [ 311.353156][ T8773] kfree+0x2b6/0x4d0 [ 311.357084][ T8773] iter_file_splice_write+0x678/0x1150 [ 311.362587][ T8773] direct_splice_actor+0x18f/0x6c0 [ 311.367731][ T8773] splice_direct_to_actor+0x342/0xa30 [ 311.373138][ T8773] do_splice_direct+0x174/0x240 [ 311.378026][ T8773] do_sendfile+0xafd/0xe50 [ 311.382478][ T8773] __x64_sys_sendfile64+0x1d8/0x220 [ 311.387698][ T8773] do_syscall_64+0xcd/0x230 [ 311.392229][ T8773] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 311.398228][ T8773] [ 311.400663][ T8773] The buggy address belongs to the object at ffff888141abce00 [ 311.400663][ T8773] which belongs to the cache kmalloc-256 of size 256 [ 311.414844][ T8773] The buggy address is located 24 bytes inside of [ 311.414844][ T8773] freed 256-byte region [ffff888141abce00, ffff888141abcf00) [ 311.428750][ T8773] [ 311.431084][ T8773] The buggy address belongs to the physical page: [ 311.437534][ T8773] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x141abc [ 311.446407][ T8773] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 311.454930][ T8773] flags: 0x57ff00000000040(head|node=1|zone=2|lastcpupid=0x7ff) [ 311.462580][ T8773] page_type: f5(slab) [ 311.466598][ T8773] raw: 057ff00000000040 ffff88801b441b40 dead000000000100 dead000000000122 [ 311.475224][ T8773] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 311.483946][ T8773] head: 057ff00000000040 ffff88801b441b40 dead000000000100 dead000000000122 [ 311.492649][ T8773] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 311.501344][ T8773] head: 057ff00000000001 ffffea000506af01 00000000ffffffff 00000000ffffffff [ 311.510039][ T8773] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 311.518723][ T8773] page dumped because: kasan: bad access detected [ 311.525143][ T8773] page_owner tracks the page as allocated [ 311.530873][ T8773] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 24980921098, free_ts 0 [ 311.550711][ T8773] post_alloc_hook+0x181/0x1b0 [ 311.555502][ T8773] get_page_from_freelist+0x135c/0x3920 [ 311.561075][ T8773] __alloc_frozen_pages_noprof+0x263/0x23a0 [ 311.567000][ T8773] alloc_pages_mpol+0x1fb/0x550 [ 311.571873][ T8773] new_slab+0x244/0x340 [ 311.576065][ T8773] ___slab_alloc+0xd9c/0x1940 [ 311.580780][ T8773] __slab_alloc.constprop.0+0x56/0xb0 [ 311.586188][ T8773] __kmalloc_cache_noprof+0xfb/0x3e0 [ 311.591504][ T8773] bus_add_driver+0x92/0x690 [ 311.596117][ T8773] driver_register+0x15c/0x4b0 [ 311.600904][ T8773] usb_register_driver+0x216/0x4d0 [ 311.606061][ T8773] do_one_initcall+0x120/0x6e0 [ 311.610866][ T8773] kernel_init_freeable+0x5c2/0x900 [ 311.616098][ T8773] kernel_init+0x1c/0x2b0 [ 311.620469][ T8773] ret_from_fork+0x45/0x80 [ 311.624934][ T8773] ret_from_fork_asm+0x1a/0x30 [ 311.629745][ T8773] page_owner free stack trace missing [ 311.635124][ T8773] [ 311.637464][ T8773] Memory state around the buggy address: [ 311.643137][ T8773] ffff888141abcd00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 311.651222][ T8773] ffff888141abcd80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 311.659303][ T8773] >ffff888141abce00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 311.667376][ T8773] ^ [ 311.672237][ T8773] ffff888141abce80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 311.680313][ T8773] ffff888141abcf00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 311.688392][ T8773] ================================================================== [ 311.753509][ T8773] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 311.760776][ T8773] CPU: 1 UID: 0 PID: 8773 Comm: syz.2.580 Tainted: G U 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) [ 311.774300][ T8773] Tainted: [U]=USER [ 311.778224][ T8773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 311.788318][ T8773] Call Trace: [ 311.791628][ T8773] [ 311.794600][ T8773] dump_stack_lvl+0x3d/0x1f0 [ 311.799350][ T8773] panic+0x71c/0x800 [ 311.803320][ T8773] ? __pfx_panic+0x10/0x10 [ 311.807802][ T8773] ? mark_held_locks+0x49/0x80 [ 311.812717][ T8773] ? preempt_schedule_thunk+0x16/0x30 [ 311.818173][ T8773] ? dvb_device_open+0x36a/0x3b0 [ 311.823182][ T8773] ? preempt_schedule_common+0x44/0xc0 [ 311.828702][ T8773] ? dvb_device_open+0x36a/0x3b0 [ 311.833694][ T8773] check_panic_on_warn+0xab/0xb0 [ 311.838703][ T8773] end_report+0x107/0x170 [ 311.843097][ T8773] kasan_report+0xee/0x110 [ 311.847569][ T8773] ? dvb_device_open+0x36a/0x3b0 [ 311.852571][ T8773] ? __pfx_dvb_device_open+0x10/0x10 [ 311.857923][ T8773] dvb_device_open+0x36a/0x3b0 [ 311.863039][ T8773] ? __pfx_dvb_device_open+0x10/0x10 [ 311.868384][ T8773] chrdev_open+0x231/0x6a0 [ 311.872835][ T8773] ? __pfx_apparmor_file_open+0x10/0x10 [ 311.878432][ T8773] ? __pfx_chrdev_open+0x10/0x10 [ 311.883404][ T8773] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 311.890206][ T8773] do_dentry_open+0x741/0x1c10 [ 311.894999][ T8773] ? __pfx_chrdev_open+0x10/0x10 [ 311.899963][ T8773] vfs_open+0x82/0x3f0 [ 311.904061][ T8773] path_openat+0x1e5e/0x2d40 [ 311.908677][ T8773] ? __pfx_path_openat+0x10/0x10 [ 311.913639][ T8773] do_filp_open+0x20b/0x470 [ 311.918165][ T8773] ? __pfx_do_filp_open+0x10/0x10 [ 311.923223][ T8773] ? alloc_fd+0x471/0x7d0 [ 311.927598][ T8773] do_sys_openat2+0x11b/0x1d0 [ 311.932316][ T8773] ? __pfx_do_sys_openat2+0x10/0x10 [ 311.937544][ T8773] ? __pfx_do_sys_openat2+0x10/0x10 [ 311.942788][ T8773] __x64_sys_openat+0x174/0x210 [ 311.947671][ T8773] ? __pfx___x64_sys_openat+0x10/0x10 [ 311.953075][ T8773] ? rcu_is_watching+0x12/0xc0 [ 311.957960][ T8773] do_syscall_64+0xcd/0x230 [ 311.962510][ T8773] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 311.968427][ T8773] RIP: 0033:0x7f609f58e969 [ 311.972861][ T8773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 311.992502][ T8773] RSP: 002b:00007f60a048b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 312.000958][ T8773] RAX: ffffffffffffffda RBX: 00007f609f7b5fa0 RCX: 00007f609f58e969 [ 312.008951][ T8773] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 312.016943][ T8773] RBP: 00007f609f610ab1 R08: 0000000000000000 R09: 0000000000000000 [ 312.024932][ T8773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 312.032923][ T8773] R13: 0000000000000000 R14: 00007f609f7b5fa0 R15: 00007fffde7dfd98 [ 312.040924][ T8773] [ 312.044104][ T8773] Kernel Offset: disabled [ 312.048435][ T8773] Rebooting in 86400 seconds..