last executing test programs: 37.6591489s ago: executing program 2 (id=962): r0 = io_uring_setup$auto(0x6, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ipv6_route\x00', 0x101000, 0x0) sendmsg$auto_NL80211_CMD_STOP_AP(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0xc}, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000240)="19a2e7043678647db7c591d291ee828e14ad6f9c7c4a3cac2d17fda85e952be219714105d238247916300237fd1397ca18f45d9d33a41c8bd66c7c3d07cadec7b33ae1e737a28bb987465e75e46139a2d6") ioctl$auto(r1, 0xffffffff, 0xffffffffffffffff) syz_genetlink_get_family_id$auto_nbd(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xfffffe09, &(0x7f0000000100)={&(0x7f0000000500)=ANY=[], 0x30}}, 0x40008800) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x40000, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) read$auto(0xffffffffffffffff, 0x0, 0x20) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) madvise$auto(0x1ffff000, 0x7, 0x100000000) mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000) r3 = fsopen$auto(0x0, 0x1) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r4 = clone$auto(0x6db, 0x1, 0x0, 0x0, 0x7) migrate_pages$auto(r4, 0x4, 0x0, &(0x7f0000000180)=0x2) madvise$auto(0x101, 0x62a, 0x6) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/machinecheck/machinecheck0/bank3\x00', 0x0, 0x0) read$auto(r5, 0x0, 0x20) r6 = socket(0x22, 0x2, 0x2) getsockname$auto(r6, 0x0, 0x0) pread64$auto(r1, 0x0, 0x8, 0xffff) syz_genetlink_get_family_id$auto_nfc(&(0x7f00000002c0), r2) sendmsg$auto_NFC_CMD_STOP_POLL(r6, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000340)={&(0x7f0000000440)=ANY=[@ANYRESHEX=r3, @ANYRESDEC=r2, @ANYRES16=r0], 0x24}, 0x1, 0x0, 0x0, 0x44095}, 0x4000000) msync$auto(0x1ffff000, 0x18000000003ffff, 0x400000004) 36.685458507s ago: executing program 2 (id=966): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000840), r0) sendmsg$auto_OVS_CT_LIMIT_CMD_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000006400)={0x2e20, r1, 0x1, 0x51bd2e, 0x25dfcbfb, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x2e07}]}, 0x2e20}, 0x1, 0xfcffffffffffffff, 0x0, 0x2000c040}, 0x4) 36.346303446s ago: executing program 2 (id=968): r0 = openat$auto_cpu_latency_qos_fops_qos(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0) writev$auto(r0, &(0x7f0000000080)={&(0x7f0000000140)="61e35d7d", 0x4}, 0x1) close_range$auto(0x2, 0x8, 0x0) 36.175942699s ago: executing program 2 (id=969): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) r1 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x20) read$auto(r1, 0x0, 0x1) ioctl$auto_IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, 0x6) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) adjtimex$auto(0x0) ioctl$auto_IOCTL_VMCI_QUEUEPAIR_ALLOC(r0, 0x7a8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_tracing_err_log_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/error_log\x00', 0xb01, 0x0) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) r2 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0) write$auto(r2, 0x0, 0xe) 35.367717777s ago: executing program 2 (id=972): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x8, 0x801, 0x84) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_trace_dev_match\x00', 0x20080, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) socket(0xa, 0x2, 0x3a) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000280)=""/175, 0xaf) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) adjtimex$auto(&(0x7f00000005c0)={0xf33296e, 0x0, 0x0, 0x5, 0xd4, 0x3, 0x4, 0x0, 0x200000000000001, 0x368e, 0x2, {0x100000000, 0x4}, 0xff, 0x6, 0xfffffffffffffffb, 0x1008000, 0x0, 0x8000000c, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x808}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) ustat$auto(0x801, 0x0) sendmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0) sysfs$auto(0x2, 0x23, 0x0) r3 = socket(0x11, 0xa, 0x300) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'vxcan1\x00', 0x0}) bpf$auto(0x0, &(0x7f0000000100)=@query={@target_ifindex=r4, 0x0, 0x8, 0x9, 0x0, @prog_cnt, 0x0, 0x3, 0x5a3522aa, 0xffffffff, 0x9}, 0x6f4) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x200) listmount$auto(0x0, &(0x7f0000000140)=0x10000, 0xf, 0x5) ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, &(0x7f00000000c0)) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x3eb9c2, 0x0) write$auto(r5, &(0x7f0000000300)='*o\xd3\xa49\xaf\xa9\xe4\xe17\x12\xb3Z\x17I\x82\xdc\xbeiw\xc1\xd1\x8d\x9b\r\x9aR\xe7\x9f\xd8\xab\x16`f\nT\xaa\xfap \xe6\xdaV\xdeD\x8dR5\xd2\xe58\n\xff\x19+\xeb\xb3+\xf6\xc6\a\x00\x00\x00\xf1A\xa5\x95\x1fk\x1f\xff\x99gP\x9e\x88\x97]\x93\xf4\xdd<\xe7p\x0e\xd4C\xdc\x84\v\xafz\xfd\x81\xa3\xb2\xbb\xa4\xd9\xf2P\xa8\xe9\x8f\x13\xa7\x98\x85\xf8\v\aB\xfc\xfa\x14E\xb8y\x884<\xa7\xffyb\x8a\b\xbb\x1b\x13W\xe3\xf7\xd8\x83\xc9\xd7\x8c', 0x6) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000580)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r7, @ANYBLOB="01032cb5700afbdbdf250a0000000600010017000000"], 0x1c}, 0x1, 0x0, 0x0, 0x400c01d}, 0x0) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), r6) socket(0x2, 0x1, 0x0) 33.9613801s ago: executing program 2 (id=977): r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'ipvlan1\x00'}) r1 = socket(0x2, 0xa, 0xa) futex$auto(0x0, 0x7, 0x6, 0x0, 0x0, 0x20000001) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/vkms/graphics/fb0/blank\x00', 0xa001, 0x0) write$auto(r2, &(0x7f0000000140)='7\x00\xb1\x9a\xc0\xf9\xc0e\xd2T\xbe\xb6I\x9d\xd9\x18\xf5\x91\xbfq\xfe\xf2\x9a\x02\x9fC0xb\xccW(\xc1n+\n|5\xa5\x9c=^\xf1\x11H\x1c\xf73\x16\xd2\a\xfaw\xcc\xf1\xff7\xab\xa1\xeaF\x04\x17\x99\xd3\xd1\x83\xccG^\xbbdC\x8a\n\x88\xbcW@+\xafD\xd1\x8a\xc13W\xf66\x86\xe5\xee\xa7\x1d\x0f\x90\x00\xcf\xdb\xf5\xbf\xd4\xc8\x84\xb3\xeeb\xb0\xc7kN\x80\x93\xfd\x89\xe1\xc9tp\xd4jm\x7f\xf0a\xc3\x02\x14\xcf\xcf\\e!\a\x82\t,\xa7\x00\xbd&\xcax\xf8P\xc1\x8f\x87\x83\x0f\x93z', 0x81) write$auto(r2, &(0x7f0000000100)='%\x00', 0x38f) sendmmsg$auto(r1, &(0x7f0000000300)={{&(0x7f0000000140), 0x12, &(0x7f0000000280)={0x0, 0x4e}, 0x7, 0x0, 0x3, 0x1}, 0x7}, 0x8, 0x7fff) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(r0, 0x400454ca, 0x38) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/kernel/kexec_crash_size\x00', 0x102, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) statx$auto(0x2, 0x0, 0x1000, 0xbdfa, 0x0) socket(0x26, 0x80805, 0x0) clone$auto(0x1ff, 0x2, 0x0, 0x0, 0x2) bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r5, r4, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92) bpf$auto(0x1, &(0x7f00000001c0)=@raw_tracepoint={0x5, r3, 0x0, 0x6}, 0xc) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7ffff004) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) select$auto(0xe, 0x0, 0x0, &(0x7f0000000200)={[0x8, 0xffffffffffffff49, 0x5, 0x1823, 0x800000000004, 0x1, 0x5, 0x19, 0x10, 0x5, 0x2dde, 0x8, 0xfffffffffffffffa, 0xab, 0x0, 0x1]}, &(0x7f0000000040)={0x0, 0x7}) 18.407667776s ago: executing program 32 (id=977): r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'ipvlan1\x00'}) r1 = socket(0x2, 0xa, 0xa) futex$auto(0x0, 0x7, 0x6, 0x0, 0x0, 0x20000001) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/vkms/graphics/fb0/blank\x00', 0xa001, 0x0) write$auto(r2, &(0x7f0000000140)='7\x00\xb1\x9a\xc0\xf9\xc0e\xd2T\xbe\xb6I\x9d\xd9\x18\xf5\x91\xbfq\xfe\xf2\x9a\x02\x9fC0xb\xccW(\xc1n+\n|5\xa5\x9c=^\xf1\x11H\x1c\xf73\x16\xd2\a\xfaw\xcc\xf1\xff7\xab\xa1\xeaF\x04\x17\x99\xd3\xd1\x83\xccG^\xbbdC\x8a\n\x88\xbcW@+\xafD\xd1\x8a\xc13W\xf66\x86\xe5\xee\xa7\x1d\x0f\x90\x00\xcf\xdb\xf5\xbf\xd4\xc8\x84\xb3\xeeb\xb0\xc7kN\x80\x93\xfd\x89\xe1\xc9tp\xd4jm\x7f\xf0a\xc3\x02\x14\xcf\xcf\\e!\a\x82\t,\xa7\x00\xbd&\xcax\xf8P\xc1\x8f\x87\x83\x0f\x93z', 0x81) write$auto(r2, &(0x7f0000000100)='%\x00', 0x38f) sendmmsg$auto(r1, &(0x7f0000000300)={{&(0x7f0000000140), 0x12, &(0x7f0000000280)={0x0, 0x4e}, 0x7, 0x0, 0x3, 0x1}, 0x7}, 0x8, 0x7fff) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(r0, 0x400454ca, 0x38) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/kernel/kexec_crash_size\x00', 0x102, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) statx$auto(0x2, 0x0, 0x1000, 0xbdfa, 0x0) socket(0x26, 0x80805, 0x0) clone$auto(0x1ff, 0x2, 0x0, 0x0, 0x2) bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r5, r4, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92) bpf$auto(0x1, &(0x7f00000001c0)=@raw_tracepoint={0x5, r3, 0x0, 0x6}, 0xc) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7ffff004) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) select$auto(0xe, 0x0, 0x0, &(0x7f0000000200)={[0x8, 0xffffffffffffff49, 0x5, 0x1823, 0x800000000004, 0x1, 0x5, 0x19, 0x10, 0x5, 0x2dde, 0x8, 0xfffffffffffffffa, 0xab, 0x0, 0x1]}, &(0x7f0000000040)={0x0, 0x7}) 5.686622969s ago: executing program 1 (id=1080): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = io_uring_setup$auto(0x6, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/card1/pcm0c/sub0/status\x00', 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000280)=""/65, 0x41) r2 = socket(0x2, 0x5, 0x0) close_range$auto(0x2, r0, 0x0) socket(0x2, 0x80002, 0x73) socket(0x2, 0x1, 0x84) init_module$auto(&(0x7f0000000180)="08846dfe67e8749fbdf803fda47e6221dbe0df53e196d2578e62ca93a9f739942c776b51de09a4c570605baa65e8792ccd2421e3819885d31c988d6aa1c22fe1937e7a9f3082e4729a5a86f10c22938b295c4d21d375c4378f631a2666e4d27acffb727af5252ffcab3fa8cc51b831478607bca9326853c07e8bff7e20817e7b23b010dc655b43aca98acbd52d6c422ce24c8830a095154a55a1cbb2e605fa89eebdaf60ed589cb2f8042591a22d11d2581949a3fbc13e753f1fa4c423a2c38264205fac5002f1", 0x28, &(0x7f0000000000)='/proc/asound/card1/pcm0c/sub0/status\x00') openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000280)='/dev/cuse\x00', 0x62041, 0x0) close_range$auto(0x2, 0x8, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x1c, &(0x7f00000000c0)={0x0, 0x1a004}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) setsockopt$auto(0x3, 0x84, 0x17, 0x0, 0x27) setsockopt$auto(r0, 0x10000000084, 0x26, 0x0, 0x8) 5.553515367s ago: executing program 1 (id=1081): r0 = io_uring_setup$auto(0x6, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ipv6_route\x00', 0x101000, 0x0) sendmsg$auto_NL80211_CMD_STOP_AP(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0xc}, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000240)="19a2e7043678647db7c591d291ee828e14ad6f9c7c4a3cac2d17fda85e952be219714105d238247916300237fd1397ca18f45d9d33a41c8bd66c7c3d07cadec7b33ae1e737a28bb987465e75e46139a2d63c") ioctl$auto(r1, 0xffffffff, 0xffffffffffffffff) syz_genetlink_get_family_id$auto_nbd(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000100)={0x0, 0x30}}, 0x40008800) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x40000, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) read$auto(0xffffffffffffffff, 0x0, 0x20) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) madvise$auto(0x1ffff000, 0x7, 0x100000000) mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000) r3 = fsopen$auto(0x0, 0x1) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r4 = clone$auto(0x6db, 0x1, 0x0, 0x0, 0x7) migrate_pages$auto(r4, 0x4, 0x0, &(0x7f0000000180)=0x2) madvise$auto(0x101, 0x62a, 0x6) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/machinecheck/machinecheck0/bank3\x00', 0x0, 0x0) read$auto(r5, 0x0, 0x20) r6 = socket(0x22, 0x2, 0x2) getsockname$auto(r6, 0x0, 0x0) pread64$auto(r1, 0x0, 0x8, 0xffff) syz_genetlink_get_family_id$auto_nfc(&(0x7f00000002c0), r2) sendmsg$auto_NFC_CMD_STOP_POLL(r6, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000340)={&(0x7f0000000440)=ANY=[@ANYRESHEX=r3, @ANYRESDEC=r2, @ANYRES16=r0], 0x24}, 0x1, 0x0, 0x0, 0x44095}, 0x4000000) msync$auto(0x1ffff000, 0x18000000003ffff, 0x400000004) 4.475699619s ago: executing program 1 (id=1083): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x8, 0x801, 0x84) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_trace_dev_match\x00', 0x20080, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) socket(0xa, 0x2, 0x3a) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000280)=""/175, 0xaf) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) adjtimex$auto(&(0x7f00000005c0)={0xf33296e, 0x0, 0x0, 0x5, 0xd4, 0x3, 0x4, 0x0, 0x200000000000001, 0x368e, 0x2, {0x100000000, 0x4}, 0xff, 0x6, 0xfffffffffffffffb, 0x1008000, 0x0, 0x8000000c, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x808}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) ustat$auto(0x801, 0x0) sendmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0) sysfs$auto(0x2, 0x23, 0x0) r3 = socket(0x11, 0xa, 0x300) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'vxcan1\x00', 0x0}) bpf$auto(0x0, &(0x7f0000000100)=@query={@target_ifindex=r4, 0x0, 0x8, 0x9, 0x0, @prog_cnt, 0x0, 0x3, 0x5a3522aa, 0xffffffff, 0x9}, 0x6f4) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x200) listmount$auto(&(0x7f0000000040)={0x200, @inferred=r0, 0x7f, 0x81, 0x400}, &(0x7f0000000140)=0x10000, 0xf, 0x5) ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, &(0x7f00000000c0)) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x3eb9c2, 0x0) write$auto(r5, 0x0, 0x6) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000580)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r7, @ANYBLOB="01032cb5700afbdbdf250a0000000600010017000000"], 0x1c}, 0x1, 0x0, 0x0, 0x400c01d}, 0x0) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), r6) socket(0x2, 0x1, 0x0) 4.473470526s ago: executing program 4 (id=1084): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0) write$auto_tty_fops_tty_io(r0, &(0x7f00000001c0)="976f09bd689a850edbe36136c8535f593331280bb0b4ba0edd7932ab185cca064833", 0x22) 3.808051638s ago: executing program 4 (id=1085): madvise$auto(0x0, 0x7fffffffffffffff, 0xa) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/all/disable_policy\x00', 0x202, 0x0) bpf$auto(0x1, &(0x7f00000001c0)=@task_fd_query={0x2, 0x4, 0x3, 0x4, 0x8, 0xc, 0xffffffffffffffff, 0x400000000a, 0x100}, 0x6f4) sendfile$auto(r1, r0, 0x0, 0x48) 3.489065953s ago: executing program 1 (id=1087): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ioctl$auto(0x4000000000000c8, 0x800454cf, 0x3) r0 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r0, 0x107, 0x12, 0x0, 0x4) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x29, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_XFS_IOC_ALLOCSP(0xffffffffffffffff, 0x4030580a, &(0x7f0000000000)={0x8001, 0xb, 0x8, 0x371, 0x8, 0x0}) ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000080)={"2f5cb9348f01b9ec4510e98bea656021f56bb962f1700efb67a1ff8d6895640e", 0x4, 0x4, 0x5, 0x3, 0x6, 0xffffffffffffffff}) rt_tgsigqueueinfo$auto(r3, r4, 0x2, &(0x7f0000000100)={@_si_pad}) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0xffffffffffff0005, 0x19) sethostname$auto(0x0, 0x7) ioctl$auto(0x3, 0x89e2, 0x91) sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(r2, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000dc0)={0x4c, r1, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@ETHTOOL_A_MODULE_EEPROM_I2C_ADDRESS={0x5, 0x6, 0x9}, @ETHTOOL_A_MODULE_EEPROM_LENGTH={0x8, 0x3, 0x7}, @ETHTOOL_A_MODULE_EEPROM_LENGTH={0x8, 0x3, 0x158100}, @ETHTOOL_A_MODULE_EEPROM_OFFSET={0x8, 0x2, 0xff}, @ETHTOOL_A_MODULE_EEPROM_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp1\x00'}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4004084}, 0x82) 3.388970486s ago: executing program 4 (id=1089): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x48000, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, 0xffffffffffffffff, 0x0) r1 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0) ioctl$auto_UBI_IOCATT(r1, 0x40186f40, &(0x7f0000000080)={0xffffffff, 0x0, 0xf7d, 0x4, 0x1}) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x20000800}, 0x80) bpf$auto(0xd, 0x0, 0x6f5) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_VPORT_CMD_NEW(r3, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000080)={0x2c, r4, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@OVS_VPORT_ATTR_OPTIONS={0x4}, @OVS_VPORT_ATTR_NAME={0x6, 0x3, '*\x00'}, @OVS_VPORT_ATTR_UPCALL_PID={0x4}, @OVS_VPORT_ATTR_TYPE={0x8, 0x2, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4040010}, 0x800) init_module$auto(0x0, 0xffff9, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x6a3, 0x15) madvise$auto(0x0, 0x2000000080000001, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x80, 0x0) init_module$auto(&(0x7f0000000300)="9b21d0af03e23283a6c0648cda96faec8b18518d82e9bac6f8858883edf61443f8a9cab9e85659eb9d1014a342a8a85f91c5cec8036215fdb37b583fa0ef5615b324afcce9188ec8d8cb9e2f7786e4c5cee9a3055523e4dda48b14e46efa8872bdd61aa2906b1e903524e2a6228f9a1819c377fd35065eb0d35edfa028badaefca8c4a3a489f92bb473648329443aa70b20055fc6e4463504d417397afd7edaee8100d7a86c45de50be1a7b115c1ea921f6371c1cfa434bcaee38f3ff29578431389e4831a8f13880d3b71d5133cdddf88ac53e90147e8aee100bf14fd5a8a7729f3de45b8714c31478a67b85e7731ed0f414b8e", 0x10001, &(0x7f0000000280)='-$-\x00') mmap$auto(0x0, 0x200003, 0x4000000000df, 0x40eb2, 0x402, 0x2) ioctl$auto_SOUND_MIXER_READ_RECSRC2(r0, 0x80044dff, 0x0) ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, &(0x7f00000002c0)="7e7e51bbf90fbafb5a30b52990c2f68602f08941d94f65eaa5dafadcedb6d76eb50f78b4d6e00a258d6584efa6ccae33ae8bbd70014300cefd48ebb6") r5 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x151640, 0x0) dup2$auto(0x5, 0x4) vmsplice$auto(0x4, &(0x7f0000000040)={0x0, 0x80000000002}, 0x3, 0x4) ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, &(0x7f0000000400)="d4750d78bf51229179c8b58b5944abf4cb83d9f88e5dd99d05e2b0aa68396cc0143d88bf0f608673fe7ccf02628ef4479581f44bb2d0aa1a09e665a9b890903f498327b3460888c8143f75bdf34ff87507f1f9c428e294b89b5c2b0d50558a26") sendmmsg$auto(r5, &(0x7f0000000240)={{&(0x7f0000000080)="4a67946bafd3e0ffd0bdf2845843ce248d512334d7b726b85afecf8bbc803b113e4e034bdc849559d9d55740aaa051e2eab4e50a52f7d12543157d27d1f8e05aeb93308f9f137b3d7a4c2dfcda", 0x8, &(0x7f00000001c0)={&(0x7f0000000100)="96999f5c67fef7371236fac71a3ae3bdd35b819adcf084f5d15b0d4e801eebd171ee52082e73c4544cb4303e731de1e164d657c360c1307f6f70305d4b581f357875667ebdb6561b3a49c6553afdc1a4636dac62a5f712", 0x5}, 0x21400, &(0x7f0000000200)="44f2d1cef7ab88907b2ecb08dc9506b26e87c9", 0x7fffffffffffffff}, 0x2}, 0x2, 0x8) 3.107044464s ago: executing program 0 (id=1090): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = io_uring_setup$auto(0x6, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/card1/pcm0c/sub0/status\x00', 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000280)=""/65, 0x41) r2 = socket(0x2, 0x5, 0x0) close_range$auto(0x2, r0, 0x0) socket(0x2, 0x80002, 0x73) socket(0x2, 0x1, 0x84) init_module$auto(&(0x7f0000000180)="08846dfe67e8749fbdf803fda47e6221dbe0df53e196d2578e62ca93a9f739942c776b51de09a4c570605baa65e8792ccd2421e3819885d31c988d6aa1c22fe1937e7a9f3082e4729a5a86f10c22938b295c4d21d375c4378f631a2666e4d27acffb727af5252ffcab3fa8cc51b831478607bca9326853c07e8bff7e20817e7b23b010dc655b43aca98acbd52d6c422ce24c8830a095154a55a1cbb2e605fa89eebdaf60ed589cb2f8042591a22d11d2581949a3fbc13e753f1fa4c423a2c38264205fac5002f1", 0x28, &(0x7f0000000000)='/proc/asound/card1/pcm0c/sub0/status\x00') openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000280)='/dev/cuse\x00', 0x62041, 0x0) close_range$auto(0x2, 0x8, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x1c, &(0x7f00000000c0)={0x0, 0x1a004}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) setsockopt$auto(0x3, 0x84, 0x17, 0x0, 0x27) setsockopt$auto(r0, 0x10000000084, 0x26, 0x0, 0x8) 2.864622937s ago: executing program 3 (id=1091): r0 = io_uring_setup$auto(0x6, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ipv6_route\x00', 0x101000, 0x0) sendmsg$auto_NL80211_CMD_STOP_AP(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0xc}, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000240)="19a2e7043678647db7c591d291ee828e14ad6f9c7c4a3cac2d17fda85e952be219714105d238247916300237fd1397ca18f45d9d33a41c8bd66c7c3d07cadec7b33ae1e737a28bb987465e75e46139a2d63c") ioctl$auto(r1, 0xffffffff, 0xffffffffffffffff) syz_genetlink_get_family_id$auto_nbd(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000100)={0x0, 0x30}}, 0x40008800) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x40000, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) read$auto(0xffffffffffffffff, 0x0, 0x20) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) madvise$auto(0x1ffff000, 0x7, 0x100000000) mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000) r3 = fsopen$auto(0x0, 0x1) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r4 = clone$auto(0x6db, 0x1, 0x0, 0x0, 0x7) migrate_pages$auto(r4, 0x4, 0x0, &(0x7f0000000180)=0x2) madvise$auto(0x101, 0x62a, 0x6) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/machinecheck/machinecheck0/bank3\x00', 0x0, 0x0) read$auto(r5, 0x0, 0x20) r6 = socket(0x22, 0x2, 0x2) getsockname$auto(r6, 0x0, 0x0) pread64$auto(r1, 0x0, 0x8, 0xffff) syz_genetlink_get_family_id$auto_nfc(&(0x7f00000002c0), r2) sendmsg$auto_NFC_CMD_STOP_POLL(r6, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000340)={&(0x7f0000000440)=ANY=[@ANYRESHEX=r3, @ANYRESDEC=r2, @ANYRES16=r0], 0x24}, 0x1, 0x0, 0x0, 0x44095}, 0x4000000) msync$auto(0x1ffff000, 0x18000000003ffff, 0x400000004) 2.685566244s ago: executing program 4 (id=1092): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) socket(0x11, 0x2, 0x5) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/i8042/serio1/power/wakeup_count\x00', 0x40, 0x0) preadv2$auto(r1, &(0x7f0000000280)={0x0, 0x1}, 0x9, 0x3, 0x5, 0x3) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/dma\x00', 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x8}, 0x8) socket(0x23, 0x80805, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/midiC2D1\x00', 0x42141, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f0000000000)) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0) write$auto_tty_fops_tty_io(r2, &(0x7f00000001c0)="976f09bd689a850edbe36136c8535f593331280bb0b4ba0edd7932ab185cca064833fda24d0f81d1b16c3cca5b2611827c2f1ca88bb01e672131ac62d346b5601f538ccf285e7a197166480ef899794cab4b61107cdae019c6139ce8761b3d", 0x5f) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/1:2/max_ratio_fine\x00', 0xa001, 0x0) r3 = openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000000), 0x8002, 0x0) write$auto(r3, &(0x7f00000000c0)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x96l\x9ao\xcf\xeeZBl\xadD\xd4\xc3|]\xcb\x96\x9c\xd06J~$\n\xef\xa7\"\x83\xab\'r\xf7m\x83\xcc\xe3\xeb\xc0\x9b\xc7z\x10\xe1\x19\x7ff\'\xbe7R\xd8\x1bl\x12\xc0]\x06\xd7.\xc2\xcf\xf6f\xc1\xfak1o\x8a\xb3\x1c1\x12kh\xcfb\xf7\xe3\xee\x18\x1d^\x17i\x02\f\'\xa0&\x82\xcf\xc5\x80\xf4GA\x9e\x1fD\xd5\xfd\xf6\x9aB\x865\x9c3\xe4\x94\f\xd9\xdfaG\xa5Q\x19\xd4 \xff\xe6\xa1\x94{kR9\xd5\x8e\xa7-\\\x94M\xf4\xf2\xab\xed\xd7\x00\xd3h\anidA4\xf2[r\xb5\xd4z\x03E\x13\x8d7,f\xcbg\x86+LL0x0}) bpf$auto(0x0, &(0x7f0000000100)=@query={@target_ifindex=r4, 0x0, 0x8, 0x9, 0x0, @prog_cnt, 0x0, 0x3, 0x5a3522aa, 0xffffffff, 0x9}, 0x6f4) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x200) listmount$auto(&(0x7f0000000040)={0x200, @inferred=r0, 0x7f, 0x81, 0x400}, &(0x7f0000000140)=0x10000, 0xf, 0x5) ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, &(0x7f00000000c0)) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x3eb9c2, 0x0) write$auto(r5, &(0x7f0000000300)='*o\xd3\xa49\xaf\xa9\xe4\xe17\x12\xb3Z\x17I\x82\xdc\xbeiw\xc1\xd1\x8d\x9b\r\x9aR\xe7\x9f\xd8\xab\x16`f\nT\xaa\xfap \xe6\xdaV\xdeD\x8dR5\xd2\xe58\n\xff\x19+\xeb\xb3+\xf6\xc6\a\x00\x00\x00\xf1A\xa5\x95\x1fk\x1f\xff\x99gP\x9e\x88\x97]\x93\xf4\xdd<\xe7p\x0e\xd4C\xdc\x84\v\xafz\xfd\x81\xa3\xb2\xbb\xa4\xd9\xf2P\xa8\xe9\x8f\x13\xa7\x98\x85\xf8\v\aB\xfc\xfa\x14E\xb8y\x884<\xa7\xffyb\x8a\b\xbb\x1b\x13W\xe3\xf7\xd8\x83\xc9\xd7\x8c', 0x6) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_nlctrl(0x0, 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000580)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r7, @ANYBLOB="01032cb5700afbdbdf250a0000000600010017000000"], 0x1c}, 0x1, 0x0, 0x0, 0x400c01d}, 0x0) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), r6) socket(0x2, 0x1, 0x0) 1.33574192s ago: executing program 4 (id=1097): openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, 0x0, 0x2a0400, 0x0) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r0 = openat$auto_tracing_saved_cmdlines_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/saved_cmdlines_size\x00', 0x20040, 0x0) signalfd4$auto(r0, &(0x7f0000000040)={0x40}, 0x79, 0xfffffff9) mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xfffffffffffeffff, 0x15) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x0, 0x0) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, &(0x7f0000000580)={{@raw=0xfffffff8, 0x8, 0x20009, 0x3, "4941aa833e2fc65b6b3cf7cec76d6778ad8eac3cda353764c03643eeb0dc59c8dd3500f11581916caa0d3053", @raw=0x81}, 0x4, 0x866, 0xf, @raw=0x7, @integer={0x92, 0x2, 0x548}, "6cc1888a63a4f1b4285854c5368de438f8cc142ef6df1259b073a1183bedbd31b642b4051bc7955610c61c329794e5311121c760cb8211c78e6947a99807bcc1"}) close_range$auto(0x2, 0x8, 0x0) 1.011646033s ago: executing program 3 (id=1098): madvise$auto(0x0, 0x7fffffffffffffff, 0xa) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/all/disable_policy\x00', 0x202, 0x0) bpf$auto(0x1, &(0x7f00000001c0)=@task_fd_query={0x2, 0x4, 0x3, 0x4, 0x8, 0xc, 0xffffffffffffffff, 0x400000000a, 0x100}, 0x6f4) sendfile$auto(r1, r0, 0x0, 0x48) 681.458185ms ago: executing program 0 (id=1099): r0 = socket(0x2, 0x1, 0x0) r1 = fcntl$auto(0x3, 0x4, 0xa553) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @dev={0xac, 0x14, 0x14, 0xd}}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x101, 0x0, 0x5, 0x9ad}, 0x5}, 0x5, 0x20000000) openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000003c0), 0x80040, 0x0) (async) openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000003c0), 0x80040, 0x0) socket(0x21, 0x2, 0x2) (async) socket(0x21, 0x2, 0x2) sendto$auto(0x3, 0x0, 0x18, 0x101, 0x0, 0x1c) socket(0x2, 0x80002, 0x73) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/bluetooth/hci7/hci7:201\x00', 0x48140, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) socket(0x18, 0x5, 0x0) r2 = socket(0xa, 0x2, 0x73) socket(0x2, 0x80002, 0x73) bind$auto(r2, &(0x7f0000000080)=@hci={0x1f, 0x2, 0x1}, 0x2c7) (async) bind$auto(r2, &(0x7f0000000080)=@hci={0x1f, 0x2, 0x1}, 0x2c7) syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff) (async) syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x801, 0x100) socket(0x11, 0x3, 0x2) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2201, 0x0) (async) r3 = openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2201, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) keyctl$auto(0x2000000000000016, 0x0, 0xfffffffe, 0x400040, 0xa8) write$auto_uhid_fops_uhid(r3, 0x0, 0xfccd) (async) write$auto_uhid_fops_uhid(r3, 0x0, 0xfccd) open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) mount$auto(&(0x7f0000000000), &(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='hfs\x00', 0x9, 0x0) r4 = getpgid$auto(0x0) shmctl$auto_IPC_RMID(0x6, 0x0, &(0x7f0000000240)={{0x1, 0x0, 0x0, 0x1, 0x1, 0xfdc, 0x1}, 0x6, 0x3ff, 0xdf4, 0x6, @inferred, @inferred, 0x8cf3, 0x0, &(0x7f00000000c0)="a532f8adb77ccc02b17efafe303576a9a9441cff2cb8e102cf65ff3bd838b138de4c6ac4d02080b1366560fa32722d347d08b0258da6d6b0dfcfeb6abe7613921b56ce63dfab0b81815950ce2224c6bae392e93f46706d", &(0x7f0000000180)="5dcfe523b56a6f22d62e1b0495ac71294da0e3d7c483a6eafde5df180be89f7ee9137ba8316acd982bb1ae1be0efd48ff6112c628cc89e06508a848309ea72eb372bbd803863e62eec41daee275607e8dbadc078b233e476d1043e2ecb7088205fbd05dd7d9cf86420e424c7d97a0f2fb1d737ecbd328082a9b60ff546d7287229f7fc7d7859e7fa24e87a361690f4258b630354bdf0b1f5473638fa31e97a52bc43041aae4a8f945c401e65b07d62e30db7"}) (async) shmctl$auto_IPC_RMID(0x6, 0x0, &(0x7f0000000240)={{0x1, 0x0, 0x0, 0x1, 0x1, 0xfdc, 0x1}, 0x6, 0x3ff, 0xdf4, 0x6, @inferred, @inferred, 0x8cf3, 0x0, &(0x7f00000000c0)="a532f8adb77ccc02b17efafe303576a9a9441cff2cb8e102cf65ff3bd838b138de4c6ac4d02080b1366560fa32722d347d08b0258da6d6b0dfcfeb6abe7613921b56ce63dfab0b81815950ce2224c6bae392e93f46706d", &(0x7f0000000180)="5dcfe523b56a6f22d62e1b0495ac71294da0e3d7c483a6eafde5df180be89f7ee9137ba8316acd982bb1ae1be0efd48ff6112c628cc89e06508a848309ea72eb372bbd803863e62eec41daee275607e8dbadc078b233e476d1043e2ecb7088205fbd05dd7d9cf86420e424c7d97a0f2fb1d737ecbd328082a9b60ff546d7287229f7fc7d7859e7fa24e87a361690f4258b630354bdf0b1f5473638fa31e97a52bc43041aae4a8f945c401e65b07d62e30db7"}) waitid$auto(0x6, r1, &(0x7f00000002c0)={@siginfo_0_0={0x200000, 0x4, 0xe, @_sigchld={r4, r5, 0x6, 0x3, 0x8}}}, 0x4, &(0x7f0000000440)={{0x3, 0xec}, {0x1, 0x8c0}, 0x58e4, 0x1000000000, 0x3, 0x1b21ab21, 0x100, 0x2, 0x2, 0x6, 0x1, 0x7fffffff, 0x1, 0x1ff, 0x6, 0x9}) (async) waitid$auto(0x6, r1, &(0x7f00000002c0)={@siginfo_0_0={0x200000, 0x4, 0xe, @_sigchld={r4, r5, 0x6, 0x3, 0x8}}}, 0x4, &(0x7f0000000440)={{0x3, 0xec}, {0x1, 0x8c0}, 0x58e4, 0x1000000000, 0x3, 0x1b21ab21, 0x100, 0x2, 0x2, 0x6, 0x1, 0x7fffffff, 0x1, 0x1ff, 0x6, 0x9}) getsockopt$auto(0x6, 0x107, 0x15, 0x0, 0x0) 680.064718ms ago: executing program 3 (id=1100): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_MACSEC_CMD_UPD_RXSA(r0, &(0x7f0000006200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)={0x38, r1, 0x23, 0x70bd27, 0x25dfdbfc, {}, [@MACSEC_ATTR_SA_CONFIG={0x18, 0x3, 0x0, 0x1, [@nested={0x5, 0x1, 0x0, 0x1, [@generic="03"]}, @typed={0xc, 0x4, 0x0, 0x0, @u64=0xfffffffffffffffe}]}, @MACSEC_ATTR_RXSC_CONFIG={0x4}, @MACSEC_ATTR_IFINDEX={0x8}]}, 0x38}, 0x1, 0x0, 0x6000000, 0x4008000}, 0x0) 448.733213ms ago: executing program 4 (id=1101): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x48000, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, 0xffffffffffffffff, 0x0) r1 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0) ioctl$auto_UBI_IOCATT(r1, 0x40186f40, &(0x7f0000000080)={0xffffffff, 0x0, 0xf7d, 0x4, 0x1}) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x20000800}, 0x80) bpf$auto(0xd, 0x0, 0x6f5) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_VPORT_CMD_NEW(r3, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000080)={0x2c, r4, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@OVS_VPORT_ATTR_OPTIONS={0x4}, @OVS_VPORT_ATTR_NAME={0x6, 0x3, '*\x00'}, @OVS_VPORT_ATTR_UPCALL_PID={0x4}, @OVS_VPORT_ATTR_TYPE={0x8, 0x2, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4040010}, 0x800) init_module$auto(0x0, 0xffff9, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x6a3, 0x15) madvise$auto(0x0, 0x2000000080000001, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x80, 0x0) init_module$auto(&(0x7f0000000300)="9b21d0af03e23283a6c0648cda96faec8b18518d82e9bac6f8858883edf61443f8a9cab9e85659eb9d1014a342a8a85f91c5cec8036215fdb37b583fa0ef5615b324afcce9188ec8d8cb9e2f7786e4c5cee9a3055523e4dda48b14e46efa8872bdd61aa2906b1e903524e2a6228f9a1819c377fd35065eb0d35edfa028badaefca8c4a3a489f92bb473648329443aa70b20055fc6e4463504d417397afd7edaee8100d7a86c45de50be1a7b115c1ea921f6371c1cfa434bcaee38f3ff29578431389e4831a8f13880d3b71d5133cdddf88ac53e90147e8aee100bf14fd5a8a7729f3de45b8714c31478a67b85e7731ed0f414b8e", 0x10001, &(0x7f0000000280)='-$-\x00') mmap$auto(0x0, 0x200003, 0x4000000000df, 0x40eb2, 0x402, 0x2) ioctl$auto_SOUND_MIXER_READ_RECSRC2(r0, 0x80044dff, 0x0) ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, &(0x7f00000002c0)="7e7e51bbf90fbafb5a30b52990c2f68602f08941d94f65eaa5dafadcedb6d76eb50f78b4d6e00a258d6584efa6ccae33ae8bbd70014300cefd48ebb6") r5 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x151640, 0x0) dup2$auto(0x5, 0x4) vmsplice$auto(0x4, &(0x7f0000000040)={0x0, 0x80000000002}, 0x3, 0x4) ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, &(0x7f0000000400)="d4750d78bf51229179c8b58b5944abf4cb83d9f88e5dd99d05e2b0aa68396cc0143d88bf0f608673fe7ccf02628ef4479581f44bb2d0aa1a09e665a9b890903f498327b3460888c8143f75bdf34ff87507f1f9c428e294b89b5c2b0d50558a26") sendmmsg$auto(r5, &(0x7f0000000240)={{&(0x7f0000000080)="4a67946bafd3e0ffd0bdf2845843ce248d512334d7b726b85afecf8bbc803b113e4e034bdc849559d9d55740aaa051e2eab4e50a52f7d12543157d27d1f8e05aeb93308f9f137b3d7a4c2dfcda", 0x8, &(0x7f00000001c0)={&(0x7f0000000100)="96999f5c67fef7371236fac71a3ae3bdd35b819adcf084f5d15b0d4e801eebd171ee52082e73c4544cb4303e731de1e164d657c360c1307f6f70305d4b581f357875667ebdb6561b3a49c6553afdc1a4636dac62a5f712", 0x5}, 0x21400, &(0x7f0000000200)="44f2d1cef7ab88907b2ecb08dc9506b26e87c9", 0x7fffffffffffffff}, 0x2}, 0x2, 0x8) 448.352389ms ago: executing program 3 (id=1102): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = io_uring_setup$auto(0x6, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/card1/pcm0c/sub0/status\x00', 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000280)=""/65, 0x41) r2 = socket(0x2, 0x5, 0x0) close_range$auto(0x2, r0, 0x0) socket(0x2, 0x80002, 0x73) socket(0x2, 0x1, 0x84) init_module$auto(&(0x7f0000000180)="08846dfe67e8749fbdf803fda47e6221dbe0df53e196d2578e62ca93a9f739942c776b51de09a4c570605baa65e8792ccd2421e3819885d31c988d6aa1c22fe1937e7a9f3082e4729a5a86f10c22938b295c4d21d375c4378f631a2666e4d27acffb727af5252ffcab3fa8cc51b831478607bca9326853c07e8bff7e20817e7b23b010dc655b43aca98acbd52d6c422ce24c8830a095154a55a1cbb2e605fa89eebdaf60ed589cb2f8042591a22d11d2581949a3fbc13e753f1fa4c423a2c38264205fac5002f1", 0x28, &(0x7f0000000000)='/proc/asound/card1/pcm0c/sub0/status\x00') openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000280)='/dev/cuse\x00', 0x62041, 0x0) close_range$auto(0x2, 0x8, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x1c, &(0x7f00000000c0)={0x0, 0x1a004}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) setsockopt$auto(0x3, 0x84, 0x17, 0x0, 0x27) setsockopt$auto(r0, 0x10000000084, 0x26, 0x0, 0x8) 275.44362ms ago: executing program 0 (id=1103): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0) write$auto_tty_fops_tty_io(r0, &(0x7f00000001c0)="976f09bd689a850edbe36136c8535f593331280bb0b4ba0edd7932ab185cca064833fd9b", 0x24) 247.35552ms ago: executing program 1 (id=1104): openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mkdir$auto(&(0x7f00000001c0)='}[,&*}\x00', 0x2) mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x10001, 0x0) chdir$auto(&(0x7f0000000040)='}[,&*}\x00') r0 = getpid() r1 = pidfd_open$auto(r0, 0x0) process_madvise$auto_MADV_COLD(r1, &(0x7f0000000100)={0x0, 0x37e}, 0x1, 0x14, 0x0) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) write$auto_seq_oss_f_ops_seq_oss(r1, &(0x7f0000000340)="78445661c6d6a250922d4c92ff6a84b3848adfc6b803077f37ae4f10a97f68f0b8bfadadef4f68cb46949252422d58c510bce8f70b7c507dcb47d8d9d137a33cfb8cbced63a2a1e9b9a28dc2f7673314175b0e62de411c6710a17a4b740ad8ab7f7f16bdb3bda6c1558b1df97301570f303cb80bb1f78a6786c5458f788b5a239ef73e81e155690f1143770db7876b713ee5806b354ec7a50813e57b3259940bd58d7102da8ee8610216ec53f62373b48f2bd3ac18f2e3ead45a60d08c15483bc111afc90d105d30", 0xc8) clone$auto(0x3fff, 0xad3, 0x0, 0x0, 0x8000002) r2 = socket(0x11, 0x3, 0x2) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x167) execve$auto(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) mount$auto(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) mount$auto(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)='nfsd\x00', 0x13, 0x0) socket(0x2, 0x3, 0x100) r3 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0) ioctl$auto_CEC_S_MODE(r3, 0x40046109, &(0x7f0000002c40)=0xf0) socket(0x1d, 0x2, 0x7) r4 = socket(0x2, 0xa, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r5}, 0x6a) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xffcc}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8953, 0x0) msgctl$auto_IPC_SET(0x200, 0x1, 0x0) newfstatat$auto(0xffffffffffffffff, &(0x7f0000000440)='}[,&*}\x00', &(0x7f0000000480)={0xd81d, 0x80000001, 0x4, 0x1, 0xffffffffffffffff, 0xee00, 0x0, 0x401, 0xffffffffffffff47, 0xbb, 0x7, 0x2, 0xffffffffffffffc5, 0x8, 0x7f, 0x50b7, 0x1ff}, 0x2) mmap$auto(0x8, 0x1, 0xfffffffffffff4e7, 0x8010, r4, 0x7fffffffffffffff) 177.754863ms ago: executing program 3 (id=1105): r0 = io_uring_setup$auto(0x6, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ipv6_route\x00', 0x101000, 0x0) sendmsg$auto_NL80211_CMD_STOP_AP(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0xc}, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000240)="19a2e7043678647db7c591d291ee828e14ad6f9c7c4a3cac2d17fda85e952be219714105d238247916300237fd1397ca18f45d9d33a41c8bd66c7c3d07cadec7b33ae1e737a28bb987465e75e46139a2d63c") ioctl$auto(r1, 0xffffffff, 0xffffffffffffffff) syz_genetlink_get_family_id$auto_nbd(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000100)={0x0, 0x30}}, 0x40008800) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x40000, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) read$auto(0xffffffffffffffff, 0x0, 0x20) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) madvise$auto(0x1ffff000, 0x7, 0x100000000) mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000) r3 = fsopen$auto(0x0, 0x1) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r4 = clone$auto(0x6db, 0x1, 0x0, 0x0, 0x7) migrate_pages$auto(r4, 0x4, 0x0, &(0x7f0000000180)=0x2) madvise$auto(0x101, 0x62a, 0x6) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/machinecheck/machinecheck0/bank3\x00', 0x0, 0x0) read$auto(r5, 0x0, 0x20) r6 = socket(0x22, 0x2, 0x2) getsockname$auto(r6, 0x0, 0x0) pread64$auto(r1, 0x0, 0x8, 0xffff) syz_genetlink_get_family_id$auto_nfc(&(0x7f00000002c0), r2) sendmsg$auto_NFC_CMD_STOP_POLL(r6, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000340)={&(0x7f0000000440)=ANY=[@ANYRESHEX=r3, @ANYRESDEC=r2, @ANYRES16=r0], 0x24}, 0x1, 0x0, 0x0, 0x44095}, 0x4000000) msync$auto(0x1ffff000, 0x18000000003ffff, 0x400000004) 0s ago: executing program 0 (id=1106): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket(0x10, 0x2, 0x0) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20000800) lgetxattr$auto(0xfffffffffffffffd, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x8) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="01002cbd7000fbdbdf250a"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="19"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f0000000000)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x1}, 0x2, 0x0) kernel console output (not intermixed with test programs): : scanning is finished [ 161.219654][ T6818] ubi0: empty MTD device detected [ 161.229504][ T6818] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 161.482849][ T6823] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 162.090685][ T6818] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 162.144270][ T6826] Invalid ELF header magic: != ELF [ 162.663429][ T6826] Invalid ELF header magic: != ELF [ 163.100523][ T6851] qrtr: Invalid version 0 [ 163.189215][ T6851] netlink: 28 bytes leftover after parsing attributes in process `syz.1.219'. [ 166.007062][ T6892] ubi0: attaching mtd0 [ 166.013253][ T6892] ubi0: scanning is finished [ 166.040817][ T6892] ubi0: empty MTD device detected [ 166.165093][ T6892] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 166.334507][ T6895] Invalid ELF header magic: != ELF [ 166.597009][ T6892] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 167.212238][ T6895] Invalid ELF header magic: != ELF [ 167.903695][ T6921] ubi0: attaching mtd0 [ 168.202919][ T6921] ubi0: scanning is finished [ 168.207793][ T30] audit: type=1800 audit(6039636320.986:2): pid=6919 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.234" name="trace_pipe" dev="tracefs" ino=99 res=0 errno=0 [ 168.228524][ T6924] Invalid ELF header magic: != ELF [ 168.244100][ T6921] ubi0: empty MTD device detected [ 168.249528][ T6921] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 168.333316][ T6924] Invalid ELF header magic: != ELF [ 168.456041][ T6921] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 172.310590][ T6977] ubi0: attaching mtd0 [ 172.317350][ T6977] ubi0: scanning is finished [ 172.322006][ T6977] ubi0: empty MTD device detected [ 172.337794][ T6977] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 172.558228][ T6979] Invalid ELF header magic: != ELF [ 172.578255][ T6977] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 173.218181][ T6979] Invalid ELF header magic: != ELF [ 174.944695][ T7021] ubi0: attaching mtd0 [ 174.990323][ T7021] ubi0: scanning is finished [ 174.995084][ T7021] ubi0: empty MTD device detected [ 175.168991][ T7021] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 175.367366][ T7024] Invalid ELF header magic: != ELF [ 175.556672][ T7021] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 175.805253][ T7021] Invalid ELF header magic: != ELF [ 178.679147][ T7066] blktrace: Concurrent blktraces are not allowed on loop5 [ 179.203443][ T7072] ubi0: attaching mtd0 [ 179.209672][ T7072] ubi0: scanning is finished [ 179.259263][ T7072] ubi0: empty MTD device detected [ 179.285034][ T7072] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 179.658409][ T7078] Invalid ELF header magic: != ELF [ 179.894850][ T7072] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 179.944895][ T7078] Invalid ELF header magic: != ELF [ 180.268942][ T7092] blktrace: Concurrent blktraces are not allowed on loop5 [ 181.930079][ T7118] FAULT_INJECTION: forcing a failure. [ 181.930079][ T7118] name failslab, interval 1, probability 0, space 0, times 0 [ 181.961040][ T7118] CPU: 0 UID: 0 PID: 7118 Comm: syz.2.277 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 181.961087][ T7118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 181.961107][ T7118] Call Trace: [ 181.961119][ T7118] [ 181.961131][ T7118] dump_stack_lvl+0x16c/0x1f0 [ 181.961185][ T7118] should_fail_ex+0x512/0x640 [ 181.961222][ T7118] ? __kvmalloc_node_noprof+0x122/0x600 [ 181.961276][ T7118] should_failslab+0xc2/0x120 [ 181.961307][ T7118] __kvmalloc_node_noprof+0x135/0x600 [ 181.961356][ T7118] ? trace_kmalloc+0x2b/0xd0 [ 181.961387][ T7118] ? __kvmalloc_node_noprof+0x296/0x600 [ 181.961432][ T7118] ? io_alloc_cache_init+0x33/0x170 [ 181.961496][ T7118] ? io_alloc_cache_init+0x33/0x170 [ 181.961539][ T7118] io_alloc_cache_init+0x33/0x170 [ 181.961599][ T7118] io_rsrc_cache_init+0x26/0x50 [ 181.961636][ T7118] io_uring_setup+0x68b/0x2090 [ 181.961670][ T7118] ? __pfx_io_uring_setup+0x10/0x10 [ 181.961699][ T7118] ? do_futex+0x122/0x350 [ 181.961764][ T7118] ? __pfx_do_futex+0x10/0x10 [ 181.961806][ T7118] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 181.961880][ T7118] ? rcu_is_watching+0x12/0xc0 [ 181.961930][ T7118] __x64_sys_io_uring_setup+0xc2/0x170 [ 181.961965][ T7118] do_syscall_64+0xcd/0x260 [ 181.962018][ T7118] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 181.962051][ T7118] RIP: 0033:0x7f3b1118d169 [ 181.962076][ T7118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 181.962108][ T7118] RSP: 002b:00007f3b11fb5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 181.962139][ T7118] RAX: ffffffffffffffda RBX: 00007f3b113a6160 RCX: 00007f3b1118d169 [ 181.962160][ T7118] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000004011 [ 181.962178][ T7118] RBP: 00007f3b1120e990 R08: 0000000000000000 R09: 0000000000000000 [ 181.962197][ T7118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 181.962215][ T7118] R13: 0000000000000000 R14: 00007f3b113a6160 R15: 00007ffd5176c458 [ 181.962254][ T7118] [ 182.166804][ C0] vkms_vblank_simulate: vblank timer overrun [ 182.671000][ T7126] 0x000200000001-0xa29656a63616329 : "" [ 182.698852][ T7126] mtd: partition "" is out of reach -- disabled [ 182.864105][ T7126] ftl_cs: FTL header not found. [ 185.693195][ T7156] ubi0: attaching mtd0 [ 185.736070][ T7156] ubi0: scanning is finished [ 185.740809][ T7156] ubi0: empty MTD device detected [ 185.797656][ T7156] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 185.861247][ T7157] Invalid ELF header magic: != ELF [ 186.105176][ T7162] Invalid ELF header magic: != ELF [ 186.259846][ T7166] blktrace: Concurrent blktraces are not allowed on loop5 [ 186.281889][ T7156] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 186.824361][ T7174] 0x000200000001-0xa29656a63616329 : "" [ 186.828248][ T7176] ubi0: attaching mtd0 [ 186.829966][ T7174] mtd: partition "" is out of reach -- disabled [ 186.887481][ T7176] ubi0: scanning is finished [ 186.892162][ T7176] ubi0: empty MTD device detected [ 186.931617][ T7176] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 186.944915][ T7174] ftl_cs: FTL header not found. [ 187.476500][ T7179] Invalid ELF header magic: != ELF [ 188.041364][ T7176] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 188.064488][ T7192] Invalid ELF header magic: != ELF [ 190.255003][ T7212] FAULT_INJECTION: forcing a failure. [ 190.255003][ T7212] name failslab, interval 1, probability 0, space 0, times 0 [ 190.268519][ T7212] CPU: 1 UID: 0 PID: 7212 Comm: syz.0.297 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 190.268563][ T7212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 190.268583][ T7212] Call Trace: [ 190.268594][ T7212] [ 190.268606][ T7212] dump_stack_lvl+0x16c/0x1f0 [ 190.268661][ T7212] should_fail_ex+0x512/0x640 [ 190.268697][ T7212] ? __kvmalloc_node_noprof+0x122/0x600 [ 190.268749][ T7212] should_failslab+0xc2/0x120 [ 190.268781][ T7212] __kvmalloc_node_noprof+0x135/0x600 [ 190.268828][ T7212] ? trace_kmalloc+0x2b/0xd0 [ 190.268859][ T7212] ? __kvmalloc_node_noprof+0x296/0x600 [ 190.268903][ T7212] ? io_alloc_cache_init+0x33/0x170 [ 190.268955][ T7212] ? io_alloc_cache_init+0x33/0x170 [ 190.268999][ T7212] io_alloc_cache_init+0x33/0x170 [ 190.269047][ T7212] io_rsrc_cache_init+0x26/0x50 [ 190.269086][ T7212] io_uring_setup+0x68b/0x2090 [ 190.269129][ T7212] ? __pfx_io_uring_setup+0x10/0x10 [ 190.269160][ T7212] ? do_futex+0x122/0x350 [ 190.269208][ T7212] ? __pfx_do_futex+0x10/0x10 [ 190.269251][ T7212] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 190.269327][ T7212] ? rcu_is_watching+0x12/0xc0 [ 190.269375][ T7212] __x64_sys_io_uring_setup+0xc2/0x170 [ 190.269410][ T7212] do_syscall_64+0xcd/0x260 [ 190.269461][ T7212] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 190.269493][ T7212] RIP: 0033:0x7f68f6b8d169 [ 190.269518][ T7212] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 190.269548][ T7212] RSP: 002b:00007f68f799a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 190.269577][ T7212] RAX: ffffffffffffffda RBX: 00007f68f6da6080 RCX: 00007f68f6b8d169 [ 190.269597][ T7212] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000004011 [ 190.269615][ T7212] RBP: 00007f68f6c0e990 R08: 0000000000000000 R09: 0000000000000000 [ 190.269633][ T7212] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 190.269650][ T7212] R13: 0000000000000000 R14: 00007f68f6da6080 R15: 00007fff7aa990a8 [ 190.269690][ T7212] [ 190.480840][ C1] vkms_vblank_simulate: vblank timer overrun [ 195.125082][ T7266] ubi0: attaching mtd0 [ 195.140455][ T7266] ubi0: scanning is finished [ 195.155368][ T7266] ubi0: empty MTD device detected [ 195.165546][ T7266] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 195.542684][ T7267] Invalid ELF header magic: != ELF [ 195.770995][ T7266] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 196.029344][ T7266] Invalid ELF header magic: != ELF [ 197.710564][ T7297] ubi0: attaching mtd0 [ 197.716765][ T7297] ubi0: scanning is finished [ 197.779690][ T7297] ubi0: empty MTD device detected [ 197.802109][ T7297] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 197.929788][ T7300] Invalid ELF header magic: != ELF [ 198.398784][ T7297] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 199.153466][ T7297] Invalid ELF header magic: != ELF [ 199.454572][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.461103][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 201.217314][ T7336] ubi0: attaching mtd0 [ 201.323659][ T7336] ubi0: scanning is finished [ 201.447970][ T7336] ubi0: empty MTD device detected [ 201.511555][ T7336] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 201.616906][ T7337] Invalid ELF header magic: != ELF [ 202.000582][ T7342] Invalid ELF header magic: != ELF [ 202.051430][ T7336] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 202.118225][ T7344] Invalid ELF header magic: != ELF [ 202.218151][ T7341] ubi0: attaching mtd0 [ 202.273841][ T7341] ubi0: scanning is finished [ 202.278506][ T7341] ubi0: empty MTD device detected [ 202.412582][ T7341] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 202.569020][ T7344] Invalid ELF header magic: != ELF [ 202.695695][ T7341] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 205.208430][ T7380] qrtr: Invalid version 0 [ 205.220041][ T7380] netlink: 28 bytes leftover after parsing attributes in process `syz.3.331'. [ 215.823720][ T7536] blktrace: Concurrent blktraces are not allowed on loop5 [ 217.239966][ T7551] netlink: 8 bytes leftover after parsing attributes in process `syz.2.364'. [ 218.408326][ T7579] ubi0: attaching mtd0 [ 218.421024][ T7579] ubi0: scanning is finished [ 218.432780][ T7579] ubi0: empty MTD device detected [ 218.850221][ T7579] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 219.200452][ T7583] Invalid ELF header magic: != ELF [ 219.296631][ T7579] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 219.851674][ T7579] Invalid ELF header magic: != ELF [ 220.164997][ T7600] ubi0: attaching mtd0 [ 220.178008][ T7600] ubi0: scanning is finished [ 220.207775][ T7600] ubi0: empty MTD device detected [ 220.345717][ T7600] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 220.609317][ T7606] Invalid ELF header magic: != ELF [ 221.466549][ T7600] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 221.686459][ T7617] blktrace: Concurrent blktraces are not allowed on loop5 [ 221.745652][ T7600] Invalid ELF header magic: != ELF [ 222.023789][ T55] Bluetooth: hci3: command 0x0406 tx timeout [ 222.030416][ T55] Bluetooth: hci0: command 0x0406 tx timeout [ 222.036558][ T5841] Bluetooth: hci1: command 0x0406 tx timeout [ 222.042766][ T5841] Bluetooth: hci2: command 0x0406 tx timeout [ 223.930284][ T7643] netlink: 4 bytes leftover after parsing attributes in process `syz.0.387'. [ 223.966705][ T7643] netlink: 8 bytes leftover after parsing attributes in process `syz.0.387'. [ 224.711571][ T7661] ubi0: attaching mtd0 [ 224.730916][ T7661] ubi0: scanning is finished [ 224.742166][ T7661] ubi0: empty MTD device detected [ 224.748692][ T7661] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 224.954748][ T7662] Invalid ELF header magic: != ELF [ 225.024489][ T7661] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 225.124961][ T7671] ubi0: attaching mtd0 [ 225.128054][ T7661] Invalid ELF header magic: != ELF [ 225.141305][ T7671] ubi0: scanning is finished [ 225.159765][ T7671] ubi0: empty MTD device detected [ 225.173377][ T7671] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 225.450644][ T7672] Invalid ELF header magic: != ELF [ 225.557579][ T7671] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 226.112527][ T7671] Invalid ELF header magic: != ELF [ 226.536822][ T7696] netlink: 4 bytes leftover after parsing attributes in process `syz.2.401'. [ 226.557126][ T7696] netlink: 8 bytes leftover after parsing attributes in process `syz.2.401'. [ 226.725020][ T7691] vhci_hcd: invalid port number 242 [ 226.752113][ T7691] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 226.875048][ T7691] openvswitch: netlink: push_nsh: missing base or metadata attributes [ 227.728308][ T7711] ubi0: attaching mtd0 [ 227.738735][ T7711] ubi0: scanning is finished [ 227.743382][ T7711] ubi0: empty MTD device detected [ 227.748961][ T7711] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 227.940144][ T7712] Invalid ELF header magic: != ELF [ 228.086149][ T7711] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 228.136054][ T7723] blktrace: Concurrent blktraces are not allowed on loop5 [ 228.157996][ T7711] Invalid ELF header magic: != ELF [ 231.383162][ T7766] ubi0: attaching mtd0 [ 231.389753][ T7766] ubi0: scanning is finished [ 231.394392][ T7766] ubi0: empty MTD device detected [ 231.400566][ T7766] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 231.699165][ T7769] Invalid ELF header magic: != ELF [ 231.740792][ T7766] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 231.907277][ T7766] Invalid ELF header magic: != ELF [ 232.461500][ T7782] blktrace: Concurrent blktraces are not allowed on loop5 [ 232.632162][ T7789] blktrace: Concurrent blktraces are not allowed on loop5 [ 234.904373][ T7823] ubi0: attaching mtd0 [ 234.911301][ T7823] ubi0: scanning is finished [ 234.915948][ T7823] ubi0: empty MTD device detected [ 234.939474][ T7823] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 235.121808][ T7824] Invalid ELF header magic: != ELF [ 235.149692][ T7823] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 235.498322][ T7823] Invalid ELF header magic: != ELF [ 236.080063][ T7841] blktrace: Concurrent blktraces are not allowed on loop5 [ 238.459877][ T7877] blktrace: Concurrent blktraces are not allowed on loop5 [ 238.892022][ T7879] ubi0: attaching mtd0 [ 238.898104][ T7879] ubi0: scanning is finished [ 238.910379][ T7879] ubi0: empty MTD device detected [ 238.927830][ T7879] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 239.523352][ T7884] Invalid ELF header magic: != ELF [ 239.803549][ T7879] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 239.911207][ T7897] ubi0: attaching mtd0 [ 239.926092][ T7897] ubi0: scanning is finished [ 239.959229][ T7879] Invalid ELF header magic: != ELF [ 239.969672][ T7897] ubi0: empty MTD device detected [ 239.980821][ T7897] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 240.328863][ T7898] Invalid ELF header magic: != ELF [ 240.773369][ T7897] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 241.287737][ T7897] Invalid ELF header magic: != ELF [ 244.337424][ T7955] ubi0: attaching mtd0 [ 244.353457][ T7955] ubi0: scanning is finished [ 244.366014][ T7955] ubi0: empty MTD device detected [ 244.379842][ T7955] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 244.496433][ T7958] Invalid ELF header magic: != ELF [ 244.937299][ T7955] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 245.026921][ T7958] Invalid ELF header magic: != ELF [ 248.625256][ T8029] ubi0: attaching mtd0 [ 248.641312][ T8029] ubi0: scanning is finished [ 248.665099][ T8029] ubi0: empty MTD device detected [ 248.680859][ T8029] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 248.791733][ T8030] Invalid ELF header magic: != ELF [ 248.898903][ T8032] blktrace: Concurrent blktraces are not allowed on loop5 [ 248.934293][ T8030] Invalid ELF header magic: != ELF [ 249.061733][ T8029] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 249.968833][ T8049] ubi0: attaching mtd0 [ 249.981504][ T8049] ubi0: scanning is finished [ 249.986922][ T8049] ubi0: empty MTD device detected [ 249.992152][ T8049] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 250.355477][ T8049] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 250.367306][ T8052] Invalid ELF header magic: != ELF [ 250.460995][ T8049] Invalid ELF header magic: != ELF [ 250.670112][ T8062] blktrace: Concurrent blktraces are not allowed on loop5 [ 251.740672][ T8074] ubi0: attaching mtd0 [ 251.757047][ T8074] ubi0: scanning is finished [ 251.761813][ T8074] ubi0: empty MTD device detected [ 251.775369][ T8074] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 251.991371][ T8079] Invalid ELF header magic: != ELF [ 252.017585][ T8074] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 252.384291][ T8091] ubi0: attaching mtd0 [ 252.397018][ T8091] ubi0: scanning is finished [ 252.410604][ T8091] ubi0: empty MTD device detected [ 252.423785][ T8091] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 252.468494][ T8074] Invalid ELF header magic: != ELF [ 252.600486][ T8092] Invalid ELF header magic: != ELF [ 252.760739][ T8092] Invalid ELF header magic: != ELF [ 252.772709][ T8091] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 255.351953][ T8136] ubi0: attaching mtd0 [ 255.384014][ T8136] ubi0: scanning is finished [ 255.470551][ T8136] ubi0: empty MTD device detected [ 255.549547][ T8136] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 255.947619][ T8140] Invalid ELF header magic: != ELF [ 256.009043][ T8151] Invalid ELF header magic: != ELF [ 256.077571][ T8136] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 256.084128][ T8151] Invalid ELF header magic: != ELF [ 256.117242][ T8147] ubi0: attaching mtd0 [ 256.136012][ T8147] ubi0: scanning is finished [ 256.153502][ T8147] ubi0: empty MTD device detected [ 256.164327][ T8147] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 256.178057][ T8136] Invalid ELF header magic: != ELF [ 256.298590][ T8147] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 256.317189][ T8155] ubi0: attaching mtd0 [ 256.324243][ T8155] ubi0: scanning is finished [ 256.332767][ T8155] ubi0: empty MTD device detected [ 256.338305][ T8155] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 256.446486][ T8156] Invalid ELF header magic: != ELF [ 256.554283][ T8155] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 256.598258][ T8160] blktrace: Concurrent blktraces are not allowed on loop5 [ 256.696457][ T8155] Invalid ELF header magic: != ELF [ 257.114623][ T8175] ubi0: attaching mtd0 [ 257.146538][ T8175] ubi0: scanning is finished [ 257.176019][ T8175] ubi0: empty MTD device detected [ 257.213568][ T8175] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 257.433313][ T8175] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 257.499470][ T8177] Invalid ELF header magic: != ELF [ 257.608916][ T8175] Invalid ELF header magic: != ELF [ 258.580175][ T8199] ubi0: attaching mtd0 [ 258.609193][ T8199] ubi0: scanning is finished [ 258.635864][ T8199] ubi0: empty MTD device detected [ 258.644993][ T8199] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 258.677868][ T8200] Invalid ELF header magic: != ELF [ 258.999077][ T8199] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 259.306936][ T8199] Invalid ELF header magic: != ELF [ 260.724259][ T8230] blktrace: Concurrent blktraces are not allowed on loop5 [ 260.933943][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 260.940480][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 264.424922][ T8276] ubi0: attaching mtd0 [ 264.443641][ T8276] ubi0: scanning is finished [ 264.448301][ T8276] ubi0: empty MTD device detected [ 264.460336][ T8276] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 264.559350][ T8280] Invalid ELF header magic: != ELF [ 264.649389][ T8276] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 264.676126][ T8283] blktrace: Concurrent blktraces are not allowed on loop5 [ 264.992268][ T8276] Invalid ELF header magic: != ELF [ 268.949993][ T8359] ubi0: attaching mtd0 [ 268.970084][ T8359] ubi0: scanning is finished [ 269.016310][ T8359] ubi0: empty MTD device detected [ 269.042136][ T8359] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 269.396682][ T8359] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 269.410588][ T8361] Invalid ELF header magic: != ELF [ 269.440358][ T8359] Invalid ELF header magic: != ELF [ 272.746256][ T8424] ubi0: attaching mtd0 [ 272.754933][ T8424] ubi0: scanning is finished [ 272.760754][ T8424] ubi0: empty MTD device detected [ 272.796481][ T8424] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 273.185326][ T8426] Invalid ELF header magic: != ELF [ 273.254721][ T8424] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 273.449193][ T8424] Invalid ELF header magic: != ELF [ 276.186639][ T8475] ubi0: attaching mtd0 [ 276.305706][ T8475] ubi0: scanning is finished [ 276.310526][ T8475] ubi0: empty MTD device detected [ 276.315800][ T8475] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 276.537326][ T8476] Invalid ELF header magic: != ELF [ 276.735064][ T8475] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 277.036285][ T8475] Invalid ELF header magic: != ELF [ 277.815263][ T8503] ubi0: attaching mtd0 [ 277.820985][ T8503] ubi0: scanning is finished [ 277.827988][ T8503] ubi0: empty MTD device detected [ 277.837471][ T8503] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 278.102501][ T8508] Invalid ELF header magic: != ELF [ 278.278494][ T8503] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 278.303111][ T8506] Invalid ELF header magic: != ELF [ 279.347200][ T8514] blktrace: Concurrent blktraces are not allowed on loop5 [ 281.629115][ T8555] ubi0: attaching mtd0 [ 281.635040][ T8555] ubi0: scanning is finished [ 281.640484][ T8555] ubi0: empty MTD device detected [ 281.661978][ T8555] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 281.843331][ T8558] Invalid ELF header magic: != ELF [ 281.989640][ T8555] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 282.299059][ T8558] Invalid ELF header magic: != ELF [ 283.380059][ T8582] ubi0: attaching mtd0 [ 283.401785][ T8582] ubi0: scanning is finished [ 283.458615][ T8582] ubi0: empty MTD device detected [ 283.464125][ T8582] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 284.197249][ T8582] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 284.245578][ T8586] Invalid ELF header magic: != ELF [ 284.476053][ T8582] Invalid ELF header magic: != ELF [ 285.507503][ T8613] ubi0: attaching mtd0 [ 285.611488][ T8613] ubi0: scanning is finished [ 285.723634][ T8613] ubi0: empty MTD device detected [ 285.728790][ T8613] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 285.905525][ T8615] Invalid ELF header magic: != ELF [ 286.091426][ T8613] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 286.494294][ T8613] Invalid ELF header magic: != ELF [ 287.154519][ T8638] ubi0: attaching mtd0 [ 287.162648][ T8638] ubi0: scanning is finished [ 287.210409][ T8638] ubi0: empty MTD device detected [ 287.247445][ T8638] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 287.748095][ T8642] Invalid ELF header magic: != ELF [ 287.816461][ T8638] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 287.912680][ T8642] Invalid ELF header magic: != ELF [ 288.530092][ T8660] blktrace: Concurrent blktraces are not allowed on loop5 [ 291.282418][ T8701] ubi0: attaching mtd0 [ 291.298881][ T8701] ubi0: scanning is finished [ 291.329917][ T8701] ubi0: empty MTD device detected [ 291.357399][ T8701] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 291.430927][ T8704] Invalid ELF header magic: != ELF [ 292.036822][ T8701] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 292.708045][ T8701] Invalid ELF header magic: != ELF [ 292.933654][ T8720] ubi0: attaching mtd0 [ 292.942206][ T8720] ubi0: scanning is finished [ 292.946957][ T8720] ubi0: empty MTD device detected [ 292.955156][ T8720] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 293.038413][ T8722] Invalid ELF header magic: != ELF [ 293.043065][ T8720] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 293.358298][ T8720] Invalid ELF header magic: != ELF [ 296.239979][ T8782] blktrace: Concurrent blktraces are not allowed on loop5 [ 298.499048][ T8809] ubi0: attaching mtd0 [ 298.505363][ T8809] ubi0: scanning is finished [ 298.513642][ T8809] ubi0: empty MTD device detected [ 298.522665][ T8809] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 298.711401][ T8809] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 298.815196][ T8811] Invalid ELF header magic: != ELF [ 298.961073][ T8811] Invalid ELF header magic: != ELF [ 299.967365][ T8832] ubi0: attaching mtd0 [ 300.004003][ T8832] ubi0: scanning is finished [ 300.044826][ T8832] ubi0: empty MTD device detected [ 300.049995][ T8832] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 300.122257][ T8836] Invalid ELF header magic: != ELF [ 300.192764][ T8836] Invalid ELF header magic: != ELF [ 300.292622][ T8832] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 302.608328][ T8876] ubi0: attaching mtd0 [ 302.675053][ T8876] ubi0: scanning is finished [ 302.770388][ T8876] ubi0: empty MTD device detected [ 302.809308][ T8876] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 302.891416][ T8879] Invalid ELF header magic: != ELF [ 303.258272][ T8876] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 303.682709][ T8879] Invalid ELF header magic: != ELF [ 308.681799][ T8966] ubi0: attaching mtd0 [ 308.687835][ T8966] ubi0: scanning is finished [ 308.692655][ T8966] ubi0: empty MTD device detected [ 308.699873][ T8966] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 309.475691][ T8966] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 309.526957][ T8968] Invalid ELF header magic: != ELF [ 310.077671][ T8968] Invalid ELF header magic: != ELF [ 310.185600][ T8985] ubi0: attaching mtd0 [ 310.219947][ T8985] ubi0: scanning is finished [ 310.264386][ T8985] ubi0: empty MTD device detected [ 310.276519][ T8985] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 310.510397][ T8986] Invalid ELF header magic: != ELF [ 310.663248][ T8985] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 311.185711][ T8985] Invalid ELF header magic: != ELF [ 314.154333][ T9040] ubi0: attaching mtd0 [ 314.165940][ T9040] ubi0: scanning is finished [ 314.186379][ T9040] ubi0: empty MTD device detected [ 314.372667][ T9040] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 314.547324][ T9047] Invalid ELF header magic: != ELF [ 314.665082][ T9040] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 314.843582][ T9040] Invalid ELF header magic: != ELF [ 316.415489][ T9080] ubi0: attaching mtd0 [ 316.426574][ T9080] ubi0: scanning is finished [ 316.432807][ T9080] ubi0: empty MTD device detected [ 316.438413][ T9080] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 316.539924][ T9084] Invalid ELF header magic: != ELF [ 316.595981][ T9080] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 317.027731][ T9084] Invalid ELF header magic: != ELF [ 317.368616][ T9100] ubi0: attaching mtd0 [ 317.375106][ T9100] ubi0: scanning is finished [ 317.381084][ T9100] ubi0: empty MTD device detected [ 317.386234][ T9100] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 317.481971][ T9101] Invalid ELF header magic: != ELF [ 317.755224][ T9100] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 317.782973][ T9102] Invalid ELF header magic: != ELF [ 318.240390][ T9118] syz.0.673: vmalloc error: size 8003584, failed to allocated page array size 15632, mode:0x400cc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 318.259633][ T9118] CPU: 1 UID: 0 PID: 9118 Comm: syz.0.673 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 318.259676][ T9118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 318.259697][ T9118] Call Trace: [ 318.259707][ T9118] [ 318.259722][ T9118] dump_stack_lvl+0x16c/0x1f0 [ 318.259771][ T9118] warn_alloc+0x248/0x3a0 [ 318.259818][ T9118] ? __pfx_warn_alloc+0x10/0x10 [ 318.259877][ T9118] ? __get_vm_area_node+0x1b9/0x300 [ 318.259912][ T9118] ? __get_vm_area_node+0x1e5/0x300 [ 318.259961][ T9118] __vmalloc_node_range_noprof+0x1110/0x1540 [ 318.260014][ T9118] ? __do_sys_listmount+0x1c2/0xed0 [ 318.260065][ T9118] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 318.260123][ T9118] __kvmalloc_node_noprof+0x2ff/0x600 [ 318.260170][ T9118] ? __do_sys_listmount+0x1c2/0xed0 [ 318.260221][ T9118] ? __do_sys_listmount+0x1c2/0xed0 [ 318.260271][ T9118] ? __do_sys_listmount+0x1c2/0xed0 [ 318.260312][ T9118] __do_sys_listmount+0x1c2/0xed0 [ 318.260354][ T9118] ? __pfx___might_resched+0x10/0x10 [ 318.260405][ T9118] ? __x64_sys_futex+0x1e0/0x4c0 [ 318.260449][ T9118] ? __x64_sys_futex+0x1e9/0x4c0 [ 318.260495][ T9118] ? __pfx___do_sys_listmount+0x10/0x10 [ 318.260539][ T9118] ? xfd_validate_state+0x5d/0x180 [ 318.260590][ T9118] do_syscall_64+0xcd/0x260 [ 318.260641][ T9118] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 318.260673][ T9118] RIP: 0033:0x7f68f6b8d169 [ 318.260698][ T9118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 318.260728][ T9118] RSP: 002b:00007f68f79bb038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 318.260756][ T9118] RAX: ffffffffffffffda RBX: 00007f68f6da5fa0 RCX: 00007f68f6b8d169 [ 318.260776][ T9118] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100 [ 318.260794][ T9118] RBP: 00007f68f6c0e990 R08: 0000000000000000 R09: 0000000000000000 [ 318.260812][ T9118] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 318.260829][ T9118] R13: 0000000000000000 R14: 00007f68f6da5fa0 R15: 00007fff7aa990a8 [ 318.260868][ T9118] [ 318.261598][ T9118] Mem-Info: [ 318.331909][ T9124] FAULT_INJECTION: forcing a failure. [ 318.331909][ T9124] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 318.389596][ T9118] active_anon:6393 inactive_anon:0 isolated_anon:0 [ 318.389596][ T9118] active_file:17894 inactive_file:39129 isolated_file:0 [ 318.389596][ T9118] unevictable:768 dirty:506 writeback:0 [ 318.389596][ T9118] slab_reclaimable:9640 slab_unreclaimable:96373 [ 318.389596][ T9118] mapped:23891 shmem:1441 pagetables:701 [ 318.389596][ T9118] sec_pagetables:0 bounce:0 [ 318.389596][ T9118] kernel_misc_reclaimable:0 [ 318.389596][ T9118] free:1328477 free_pcp:5324 free_cma:0 [ 318.391441][ T9124] CPU: 0 UID: 0 PID: 9124 Comm: syz.2.674 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 318.391486][ T9124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 318.391505][ T9124] Call Trace: [ 318.391516][ T9124] [ 318.391528][ T9124] dump_stack_lvl+0x16c/0x1f0 [ 318.391584][ T9124] should_fail_ex+0x512/0x640 [ 318.391632][ T9124] _copy_to_user+0x32/0xd0 [ 318.391679][ T9124] simple_read_from_buffer+0xcb/0x170 [ 318.391729][ T9124] proc_fail_nth_read+0x197/0x270 [ 318.391777][ T9124] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 318.391826][ T9124] ? rw_verify_area+0xcf/0x680 [ 318.391865][ T9124] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 318.391911][ T9124] vfs_read+0x1de/0xc70 [ 318.391962][ T9124] ? __pfx___mutex_lock+0x10/0x10 [ 318.392012][ T9124] ? __pfx_vfs_read+0x10/0x10 [ 318.392076][ T9124] ? __fget_files+0x20e/0x3c0 [ 318.392147][ T9124] ksys_read+0x12a/0x240 [ 318.392192][ T9124] ? __pfx_ksys_read+0x10/0x10 [ 318.392251][ T9124] do_syscall_64+0xcd/0x260 [ 318.392305][ T9124] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 318.392338][ T9124] RIP: 0033:0x7f3b1118bb7c [ 318.392368][ T9124] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 318.392399][ T9124] RSP: 002b:00007f3b11ff7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 318.392430][ T9124] RAX: ffffffffffffffda RBX: 00007f3b113a5fa0 RCX: 00007f3b1118bb7c [ 318.392450][ T9124] RDX: 000000000000000f RSI: 00007f3b11ff70a0 RDI: 0000000000000004 [ 318.392470][ T9124] RBP: 00007f3b11ff7090 R08: 0000000000000000 R09: 0000000000000000 [ 318.392491][ T9124] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 318.392509][ T9124] R13: 0000000000000000 R14: 00007f3b113a5fa0 R15: 00007ffd5176c458 [ 318.392552][ T9124] [ 318.720543][ T9118] Node 0 active_anon:27972kB inactive_anon:0kB active_file:62144kB inactive_file:156432kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:104908kB dirty:1888kB writeback:0kB shmem:6328kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10848kB pagetables:3304kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 318.821808][ T9118] Node 1 active_anon:0kB inactive_anon:0kB active_file:9432kB inactive_file:84kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:356kB dirty:136kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 318.939545][ T9118] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 319.040500][ T9138] FAULT_INJECTION: forcing a failure. [ 319.040500][ T9138] name failslab, interval 1, probability 0, space 0, times 0 [ 319.065216][ T9118] lowmem_reserve[]: 0 2482 2483 2483 2483 [ 319.079506][ T9138] CPU: 1 UID: 0 PID: 9138 Comm: syz.2.677 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 319.079547][ T9138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 319.079565][ T9138] Call Trace: [ 319.079575][ T9138] [ 319.079585][ T9138] dump_stack_lvl+0x16c/0x1f0 [ 319.079635][ T9138] should_fail_ex+0x512/0x640 [ 319.079669][ T9138] ? fs_reclaim_acquire+0xae/0x150 [ 319.079708][ T9138] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 319.079750][ T9138] should_failslab+0xc2/0x120 [ 319.079779][ T9138] __kmalloc_noprof+0xd2/0x510 [ 319.079834][ T9138] tomoyo_realpath_from_path+0xc2/0x6e0 [ 319.079880][ T9138] ? tomoyo_profile+0x47/0x60 [ 319.079932][ T9138] tomoyo_path_number_perm+0x245/0x580 [ 319.079972][ T9138] ? tomoyo_path_number_perm+0x237/0x580 [ 319.080011][ T9138] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 319.080050][ T9138] ? find_held_lock+0x2b/0x80 [ 319.080125][ T9138] ? fd_install+0x244/0x750 [ 319.080175][ T9138] ? hook_file_ioctl_common+0x145/0x410 [ 319.080228][ T9138] security_file_ioctl+0x9b/0x240 [ 319.080269][ T9138] __x64_sys_ioctl+0xb7/0x200 [ 319.080310][ T9138] do_syscall_64+0xcd/0x260 [ 319.080359][ T9138] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 319.080390][ T9138] RIP: 0033:0x7f3b1118d169 [ 319.080414][ T9138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 319.080442][ T9138] RSP: 002b:00007f3b11ff7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 319.080469][ T9138] RAX: ffffffffffffffda RBX: 00007f3b113a5fa0 RCX: 00007f3b1118d169 [ 319.080489][ T9138] RDX: 0000000000000000 RSI: 0000000000004b72 RDI: 0000000000000000 [ 319.080506][ T9138] RBP: 00007f3b11ff7090 R08: 0000000000000000 R09: 0000000000000000 [ 319.080522][ T9138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 319.080539][ T9138] R13: 0000000000000000 R14: 00007f3b113a5fa0 R15: 00007ffd5176c458 [ 319.080578][ T9138] [ 319.080588][ T9138] ERROR: Out of memory at tomoyo_realpath_from_path. [ 319.319255][ T9118] Node 0 DMA32 free:1401612kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB active_anon:35236kB inactive_anon:0kB active_file:62232kB inactive_file:154860kB unevictable:1536kB writepending:1952kB present:3129332kB managed:2541672kB mlocked:0kB bounce:0kB free_pcp:12460kB local_pcp:11632kB free_cma:0kB [ 319.379841][ T9118] lowmem_reserve[]: 0 0 1 1 1 [ 319.384678][ T9118] Node 0 Normal free:12kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1580kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB [ 319.511065][ T9118] lowmem_reserve[]: 0 0 0 0 0 [ 319.558716][ T9118] Node 1 Normal free:3898760kB boost:0kB min:55784kB low:69728kB high:83672kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:9432kB inactive_file:84kB unevictable:1536kB writepending:140kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:3572kB local_pcp:3572kB free_cma:0kB [ 319.602017][ T9150] ubi0: attaching mtd0 [ 319.617198][ T9150] ubi0: scanning is finished [ 319.632848][ T9150] ubi0: empty MTD device detected [ 319.642665][ T9150] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 319.679496][ T9118] lowmem_reserve[]: 0 0 0 0 0 [ 319.684326][ T9118] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 319.749841][ T9118] Node 0 DMA32: 2*4kB (UE) 90*8kB (U) 80*16kB (UME) 431*32kB (UME) 494*64kB (UME) 150*128kB (UME) 130*256kB (UME) 82*512kB (UME) 42*1024kB (UME) 24*2048kB (UME) 286*4096kB (UM) = 1405496kB [ 319.772325][ T9153] Invalid ELF header magic: != ELF [ 319.843425][ T9118] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB [ 319.870739][ T9150] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 319.889790][ T9118] Node 1 Normal: 230*4kB (UME) 178*8kB (UME) 92*16kB (UME) 279*32kB (UME) 175*64kB (UME) 36*128kB (UME) 26*256kB (UME) 12*512kB (UME) 11*1024kB (UME) 6*2048kB (UME) 936*4096kB (M) = 3898760kB [ 319.936108][ T9150] Invalid ELF header magic: != ELF [ 319.970668][ T9157] Device name cannot be null; rc = [-22] [ 319.986727][ T9118] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 320.010407][ T9157] netlink: 4 bytes leftover after parsing attributes in process `syz.3.682'. [ 320.011191][ T9118] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 320.059539][ T9118] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 320.079600][ T9118] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 320.089044][ T9118] 63131 total pagecache pages [ 320.130717][ T9118] 0 pages in swap cache [ 320.135000][ T9118] Free swap = 124996kB [ 320.139258][ T9118] Total swap = 124996kB [ 320.143592][ T9118] 2097051 pages RAM [ 320.147481][ T9118] 0 pages HighMem/MovableOnly [ 320.152322][ T9118] 429591 pages reserved [ 320.156562][ T9118] 0 pages cma reserved [ 320.342359][ T9163] FAULT_INJECTION: forcing a failure. [ 320.342359][ T9163] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 320.362611][ T9163] CPU: 1 UID: 0 PID: 9163 Comm: syz.2.683 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 320.362655][ T9163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 320.362673][ T9163] Call Trace: [ 320.362684][ T9163] [ 320.362715][ T9163] dump_stack_lvl+0x16c/0x1f0 [ 320.362767][ T9163] should_fail_ex+0x512/0x640 [ 320.362811][ T9163] _copy_from_user+0x2e/0xd0 [ 320.362852][ T9163] kstrtouint_from_user+0xd6/0x1d0 [ 320.362910][ T9163] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 320.362959][ T9163] ? __lock_acquire+0xaa4/0x1ba0 [ 320.363038][ T9163] proc_fail_nth_write+0x83/0x250 [ 320.363085][ T9163] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 320.363141][ T9163] vfs_write+0x25c/0x1180 [ 320.363187][ T9163] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 320.363237][ T9163] ? __pfx___mutex_lock+0x10/0x10 [ 320.363285][ T9163] ? __pfx_vfs_write+0x10/0x10 [ 320.363341][ T9163] ? __fget_files+0x20e/0x3c0 [ 320.363400][ T9163] ksys_write+0x12a/0x240 [ 320.363444][ T9163] ? __pfx_ksys_write+0x10/0x10 [ 320.363523][ T9163] do_syscall_64+0xcd/0x260 [ 320.363581][ T9163] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 320.363613][ T9163] RIP: 0033:0x7f3b1118bc1f [ 320.363638][ T9163] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 320.363668][ T9163] RSP: 002b:00007f3b11fb5030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 320.363696][ T9163] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f3b1118bc1f [ 320.363716][ T9163] RDX: 0000000000000001 RSI: 00007f3b11fb50a0 RDI: 0000000000000007 [ 320.363734][ T9163] RBP: 00007f3b11fb5090 R08: 0000000000000000 R09: 0000000000000000 [ 320.363753][ T9163] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 320.363771][ T9163] R13: 0000000000000001 R14: 00007f3b113a6160 R15: 00007ffd5176c458 [ 320.363812][ T9163] [ 320.733554][ T9156] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 320.766366][ T9169] netlink: 342 bytes leftover after parsing attributes in process `syz.0.685'. [ 320.804377][ T9156] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 320.947308][ T9156] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 321.028615][ T9156] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 321.073168][ T9156] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 321.111283][ T9156] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 321.151178][ T9156] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 321.193013][ T9156] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 321.443653][ T9177] FAULT_INJECTION: forcing a failure. [ 321.443653][ T9177] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 321.513401][ T9177] CPU: 1 UID: 0 PID: 9177 Comm: syz.0.689 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 321.513445][ T9177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 321.513463][ T9177] Call Trace: [ 321.513473][ T9177] [ 321.513485][ T9177] dump_stack_lvl+0x16c/0x1f0 [ 321.513536][ T9177] should_fail_ex+0x512/0x640 [ 321.513579][ T9177] should_fail_alloc_page+0xe7/0x130 [ 321.513613][ T9177] prepare_alloc_pages+0x3c2/0x610 [ 321.513660][ T9177] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 321.513713][ T9177] ? stack_trace_save+0x8e/0xc0 [ 321.513754][ T9177] ? __pfx_stack_trace_save+0x10/0x10 [ 321.513797][ T9177] ? stack_depot_save_flags+0x28/0xa50 [ 321.513839][ T9177] ? __alloc_frozen_pages_noprof+0x298/0x23a0 [ 321.513895][ T9177] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 321.513950][ T9177] ? __kasan_slab_alloc+0x89/0x90 [ 321.513999][ T9177] ? __pmd_alloc+0xc3/0x870 [ 321.514035][ T9177] ? handle_mm_fault+0x3fe/0xad0 [ 321.514075][ T9177] ? do_user_addr_fault+0x7a6/0x1370 [ 321.514110][ T9177] ? exc_page_fault+0x5c/0xc0 [ 321.514151][ T9177] ? asm_exc_page_fault+0x26/0x30 [ 321.514180][ T9177] ? __get_user_4+0x14/0x20 [ 321.514214][ T9177] ? ctrl_cdev_ioctl+0x1c0/0x3d0 [ 321.514241][ T9177] ? __x64_sys_ioctl+0x190/0x200 [ 321.514295][ T9177] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 321.514332][ T9177] ? policy_nodemask+0xea/0x4e0 [ 321.514387][ T9177] alloc_pages_mpol+0x1fb/0x550 [ 321.514424][ T9177] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 321.514455][ T9177] ? cgroup_rstat_updated+0x2a/0xb20 [ 321.514504][ T9177] alloc_pages_noprof+0x131/0x390 [ 321.514536][ T9177] pte_alloc_one+0x19/0x380 [ 321.514577][ T9177] do_pte_missing+0x1c0b/0x3fb0 [ 321.514623][ T9177] ? do_raw_spin_unlock+0x172/0x230 [ 321.514663][ T9177] ? __pmd_alloc+0x3c2/0x870 [ 321.514697][ T9177] ? find_held_lock+0x2b/0x80 [ 321.514741][ T9177] __handle_mm_fault+0x103d/0x2a40 [ 321.514798][ T9177] ? __pfx___handle_mm_fault+0x10/0x10 [ 321.514868][ T9177] ? find_vma+0xbf/0x140 [ 321.514919][ T9177] ? __pfx_find_vma+0x10/0x10 [ 321.514960][ T9177] handle_mm_fault+0x3fe/0xad0 [ 321.515011][ T9177] do_user_addr_fault+0x7a6/0x1370 [ 321.515053][ T9177] ? rcu_is_watching+0x12/0xc0 [ 321.515118][ T9177] exc_page_fault+0x5c/0xc0 [ 321.515183][ T9177] asm_exc_page_fault+0x26/0x30 [ 321.515232][ T9177] RIP: 0010:__get_user_4+0x14/0x20 [ 321.515276][ T9177] Code: 00 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 ba 00 f0 ff ff ff 7f 00 00 48 39 d0 48 0f 47 c2 0f 01 cb <8b> 10 31 c0 0f 01 ca c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 [ 321.515315][ T9177] RSP: 0018:ffffc9000b65fe38 EFLAGS: 00050287 [ 321.515340][ T9177] RAX: 0000000000000000 RBX: 0000000040046f41 RCX: ffffc9000b65fddc [ 321.515365][ T9177] RDX: 00007ffffffff000 RSI: ffffffff865e6ac8 RDI: ffffffff8bf45100 [ 321.515390][ T9177] RBP: 1ffff920016cbfc8 R08: a23edf14cf8df726 R09: 0000000000000001 [ 321.515426][ T9177] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 321.515450][ T9177] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000004 [ 321.515490][ T9177] ? ctrl_cdev_ioctl+0x1b8/0x3d0 [ 321.515536][ T9177] ctrl_cdev_ioctl+0x1c0/0x3d0 [ 321.515570][ T9177] ? __pfx_ctrl_cdev_ioctl+0x10/0x10 [ 321.515612][ T9177] ? __fget_files+0x20e/0x3c0 [ 321.515684][ T9177] ? __pfx_ctrl_cdev_ioctl+0x10/0x10 [ 321.515729][ T9177] __x64_sys_ioctl+0x190/0x200 [ 321.515778][ T9177] do_syscall_64+0xcd/0x260 [ 321.515839][ T9177] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 321.515879][ T9177] RIP: 0033:0x7f68f6b8d169 [ 321.515908][ T9177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 321.515958][ T9177] RSP: 002b:00007f68f79bb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 321.515991][ T9177] RAX: ffffffffffffffda RBX: 00007f68f6da5fa0 RCX: 00007f68f6b8d169 [ 321.516017][ T9177] RDX: 0000000000000000 RSI: 0000000040046f41 RDI: 0000000000000004 [ 321.516039][ T9177] RBP: 00007f68f79bb090 R08: 0000000000000000 R09: 0000000000000000 [ 321.516058][ T9177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 321.516077][ T9177] R13: 0000000000000000 R14: 00007f68f6da5fa0 R15: 00007fff7aa990a8 [ 321.516118][ T9177] [ 321.586159][ T9181] netlink: set zone limit has 8 unknown bytes [ 322.069607][ T5855] Bluetooth: hci1: command 0x0406 tx timeout [ 322.394246][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 322.400750][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 322.950884][ T5855] Bluetooth: hci0: command 0x0406 tx timeout [ 323.059577][ T9215] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 323.111666][ T5855] Bluetooth: hci2: command 0x0406 tx timeout [ 323.189558][ T5855] Bluetooth: hci3: command 0x0406 tx timeout [ 323.228430][ T9214] netlink: 338 bytes leftover after parsing attributes in process `syz.2.702'. [ 323.265332][ T9214] netlink: 338 bytes leftover after parsing attributes in process `syz.2.702'. [ 323.277686][ T9214] netlink: 290 bytes leftover after parsing attributes in process `syz.2.702'. [ 323.287276][ T9214] veth0_macvtap: left promiscuous mode [ 323.848728][ T9238] 0x000200000001-0xa29656a63616329 : "" [ 323.884363][ T9238] mtd: partition "" is out of reach -- disabled [ 323.928564][ T9238] ftl_cs: FTL header not found. [ 324.156753][ T5855] Bluetooth: hci1: command 0x0406 tx timeout [ 324.990551][ T9261] FAULT_INJECTION: forcing a failure. [ 324.990551][ T9261] name fail_futex, interval 1, probability 0, space 0, times 1 [ 325.034289][ T5855] Bluetooth: hci0: command 0x0406 tx timeout [ 325.069894][ T9261] CPU: 0 UID: 0 PID: 9261 Comm: syz.1.717 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 325.069936][ T9261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 325.069959][ T9261] Call Trace: [ 325.069969][ T9261] [ 325.069980][ T9261] dump_stack_lvl+0x16c/0x1f0 [ 325.070049][ T9261] should_fail_ex+0x512/0x640 [ 325.070092][ T9261] get_futex_key+0x1c2/0x1000 [ 325.070140][ T9261] ? __pfx_get_futex_key+0x10/0x10 [ 325.070198][ T9261] futex_wake+0xe7/0x4e0 [ 325.070226][ T9261] ? rcu_is_watching+0x12/0xc0 [ 325.070270][ T9261] ? __pfx_futex_wake+0x10/0x10 [ 325.070318][ T9261] do_futex+0x1e3/0x350 [ 325.070364][ T9261] ? __pfx_do_futex+0x10/0x10 [ 325.070407][ T9261] ? __might_fault+0xe3/0x190 [ 325.070474][ T9261] mm_release+0x24e/0x300 [ 325.070517][ T9261] do_exit+0x898/0x2c30 [ 325.070563][ T9261] ? __pfx_futex_wake_mark+0x10/0x10 [ 325.070601][ T9261] ? __pfx_do_exit+0x10/0x10 [ 325.070650][ T9261] ? do_raw_spin_lock+0x12c/0x2b0 [ 325.070685][ T9261] ? find_held_lock+0x2b/0x80 [ 325.070732][ T9261] do_group_exit+0xd3/0x2a0 [ 325.070763][ T9261] get_signal+0x2673/0x26d0 [ 325.070810][ T9261] ? kmem_cache_free+0x2d4/0x4d0 [ 325.070854][ T9261] ? fd_install+0x225/0x750 [ 325.070905][ T9261] ? __pfx_get_signal+0x10/0x10 [ 325.070947][ T9261] ? do_futex+0x122/0x350 [ 325.070992][ T9261] ? __pfx_do_futex+0x10/0x10 [ 325.071041][ T9261] arch_do_signal_or_restart+0x8f/0x7d0 [ 325.071093][ T9261] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 325.071154][ T9261] ? rcu_is_watching+0x12/0xc0 [ 325.071212][ T9261] syscall_exit_to_user_mode+0x150/0x2a0 [ 325.071260][ T9261] do_syscall_64+0xda/0x260 [ 325.071308][ T9261] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 325.071338][ T9261] RIP: 0033:0x7f6a3558d169 [ 325.071362][ T9261] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 325.071390][ T9261] RSP: 002b:00007f6a3638a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 325.071418][ T9261] RAX: fffffffffffffe00 RBX: 00007f6a357a5fa8 RCX: 00007f6a3558d169 [ 325.071443][ T9261] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6a357a5fa8 [ 325.071461][ T9261] RBP: 00007f6a357a5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 325.071478][ T9261] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6a357a5fac [ 325.071496][ T9261] R13: 0000000000000000 R14: 00007fff1fb87300 R15: 00007fff1fb873e8 [ 325.071533][ T9261] [ 325.346867][ T9265] netlink: 4 bytes leftover after parsing attributes in process `syz.0.718'. [ 325.363219][ T9265] FAULT_INJECTION: forcing a failure. [ 325.363219][ T9265] name failslab, interval 1, probability 0, space 0, times 0 [ 325.375978][ T9265] CPU: 0 UID: 0 PID: 9265 Comm: syz.0.718 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 325.376018][ T9265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 325.376036][ T9265] Call Trace: [ 325.376046][ T9265] [ 325.376057][ T9265] dump_stack_lvl+0x16c/0x1f0 [ 325.376110][ T9265] should_fail_ex+0x512/0x640 [ 325.376146][ T9265] ? fs_reclaim_acquire+0xae/0x150 [ 325.376188][ T9265] ? tomoyo_encode2+0x100/0x3e0 [ 325.376230][ T9265] should_failslab+0xc2/0x120 [ 325.376260][ T9265] __kmalloc_noprof+0xd2/0x510 [ 325.376308][ T9265] ? d_absolute_path+0x136/0x1a0 [ 325.376351][ T9265] tomoyo_encode2+0x100/0x3e0 [ 325.376401][ T9265] tomoyo_encode+0x29/0x50 [ 325.376451][ T9265] tomoyo_realpath_from_path+0x18f/0x6e0 [ 325.376509][ T9265] tomoyo_path_number_perm+0x245/0x580 [ 325.376546][ T9265] ? tomoyo_path_number_perm+0x237/0x580 [ 325.376587][ T9265] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 325.376628][ T9265] ? find_held_lock+0x2b/0x80 [ 325.376702][ T9265] ? __pfx_do_sys_openat2+0x10/0x10 [ 325.376741][ T9265] ? hook_file_ioctl_common+0x145/0x410 [ 325.376780][ T9265] ? native_tss_update_io_bitmap+0x3ca/0x720 [ 325.376821][ T9265] ? __pfx_native_tss_update_io_bitmap+0x10/0x10 [ 325.376870][ T9265] security_file_ioctl+0x9b/0x240 [ 325.376913][ T9265] __x64_sys_ioctl+0xb7/0x200 [ 325.376954][ T9265] do_syscall_64+0xcd/0x260 [ 325.377005][ T9265] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 325.377037][ T9265] RIP: 0033:0x7f68f6b8d169 [ 325.377061][ T9265] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 325.377091][ T9265] RSP: 002b:00007f68f79bb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 325.377120][ T9265] RAX: ffffffffffffffda RBX: 00007f68f6da5fa0 RCX: 00007f68f6b8d169 [ 325.377139][ T9265] RDX: 0000000000000004 RSI: 00000000c10c5541 RDI: 0000000000000005 [ 325.377157][ T9265] RBP: 00007f68f79bb090 R08: 0000000000000000 R09: 0000000000000000 [ 325.377175][ T9265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 325.377192][ T9265] R13: 0000000000000000 R14: 00007f68f6da5fa0 R15: 00007fff7aa990a8 [ 325.377232][ T9265] [ 325.377260][ T9265] ERROR: Out of memory at tomoyo_realpath_from_path. [ 325.483672][ T5855] Bluetooth: hci2: command 0x0406 tx timeout [ 325.483743][ T5855] Bluetooth: hci3: command 0x0406 tx timeout [ 325.685375][ T9268] netlink: 4 bytes leftover after parsing attributes in process `syz.1.719'. [ 325.896538][ T9272] FAULT_INJECTION: forcing a failure. [ 325.896538][ T9272] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 325.973704][ T9272] CPU: 0 UID: 0 PID: 9272 Comm: syz.1.721 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 325.973748][ T9272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 325.973766][ T9272] Call Trace: [ 325.973776][ T9272] [ 325.973787][ T9272] dump_stack_lvl+0x16c/0x1f0 [ 325.973839][ T9272] should_fail_ex+0x512/0x640 [ 325.973882][ T9272] _copy_from_user+0x2e/0xd0 [ 325.973923][ T9272] cpu_latency_qos_write+0x140/0x180 [ 325.973963][ T9272] ? apparmor_file_permission+0x251/0x400 [ 325.974011][ T9272] ? __pfx_cpu_latency_qos_write+0x10/0x10 [ 325.974048][ T9272] ? bpf_lsm_file_permission+0x9/0x10 [ 325.974091][ T9272] ? rw_verify_area+0xcf/0x680 [ 325.974132][ T9272] ? __pfx_cpu_latency_qos_write+0x10/0x10 [ 325.974170][ T9272] vfs_writev+0x6c4/0xdc0 [ 325.974220][ T9272] ? __pfx_vfs_writev+0x10/0x10 [ 325.974288][ T9272] ? __fget_files+0x20e/0x3c0 [ 325.974330][ T9272] ? __fget_files+0x150/0x3c0 [ 325.974382][ T9272] ? do_writev+0x132/0x330 [ 325.974425][ T9272] do_writev+0x132/0x330 [ 325.974464][ T9272] ? __pfx_do_writev+0x10/0x10 [ 325.974515][ T9272] do_syscall_64+0xcd/0x260 [ 325.974583][ T9272] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 325.974615][ T9272] RIP: 0033:0x7f6a3558d169 [ 325.974639][ T9272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 325.974680][ T9272] RSP: 002b:00007f6a3638a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 325.974708][ T9272] RAX: ffffffffffffffda RBX: 00007f6a357a5fa0 RCX: 00007f6a3558d169 [ 325.974727][ T9272] RDX: 0000000000000001 RSI: 0000200000000080 RDI: 0000000000000003 [ 325.974744][ T9272] RBP: 00007f6a3638a090 R08: 0000000000000000 R09: 0000000000000000 [ 325.974761][ T9272] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 325.974778][ T9272] R13: 0000000000000000 R14: 00007f6a357a5fa0 R15: 00007fff1fb873e8 [ 325.974815][ T9272] [ 327.753665][ T9300] FAULT_INJECTION: forcing a failure. [ 327.753665][ T9300] name failslab, interval 1, probability 0, space 0, times 0 [ 327.785692][ T9300] CPU: 0 UID: 0 PID: 9300 Comm: syz.1.727 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 327.785737][ T9300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 327.785757][ T9300] Call Trace: [ 327.785768][ T9300] [ 327.785781][ T9300] dump_stack_lvl+0x16c/0x1f0 [ 327.785835][ T9300] should_fail_ex+0x512/0x640 [ 327.785872][ T9300] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 327.785929][ T9300] should_failslab+0xc2/0x120 [ 327.785960][ T9300] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 327.786009][ T9300] ? d_instantiate+0x77/0x90 [ 327.786040][ T9300] ? alloc_empty_file+0x55/0x1e0 [ 327.786081][ T9300] alloc_empty_file+0x55/0x1e0 [ 327.786117][ T9300] alloc_file_pseudo+0x13a/0x230 [ 327.786155][ T9300] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 327.786192][ T9300] ? alloc_fd+0x471/0x7d0 [ 327.786245][ T9300] sock_alloc_file+0x50/0x210 [ 327.786295][ T9300] __sys_socket+0x1c0/0x260 [ 327.786328][ T9300] ? __pfx___sys_socket+0x10/0x10 [ 327.786363][ T9300] ? rcu_is_watching+0x12/0xc0 [ 327.786413][ T9300] __x64_sys_socket+0x72/0xb0 [ 327.786444][ T9300] ? lockdep_hardirqs_on+0x7c/0x110 [ 327.786495][ T9300] do_syscall_64+0xcd/0x260 [ 327.786548][ T9300] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 327.786580][ T9300] RIP: 0033:0x7f6a3558d169 [ 327.786607][ T9300] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 327.786638][ T9300] RSP: 002b:00007f6a3638a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 327.786674][ T9300] RAX: ffffffffffffffda RBX: 00007f6a357a5fa0 RCX: 00007f6a3558d169 [ 327.786694][ T9300] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000002 [ 327.786712][ T9300] RBP: 00007f6a3560e990 R08: 0000000000000000 R09: 0000000000000000 [ 327.786731][ T9300] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 327.786749][ T9300] R13: 0000000000000000 R14: 00007f6a357a5fa0 R15: 00007fff1fb873e8 [ 327.786790][ T9300] [ 327.998273][ T9303] FAULT_INJECTION: forcing a failure. [ 327.998273][ T9303] name failslab, interval 1, probability 0, space 0, times 0 [ 328.109336][ T9303] CPU: 0 UID: 0 PID: 9303 Comm: syz.0.725 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 328.109382][ T9303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 328.109399][ T9303] Call Trace: [ 328.109409][ T9303] [ 328.109420][ T9303] dump_stack_lvl+0x16c/0x1f0 [ 328.109472][ T9303] should_fail_ex+0x512/0x640 [ 328.109515][ T9303] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 328.109566][ T9303] should_failslab+0xc2/0x120 [ 328.109595][ T9303] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 328.109642][ T9303] ? getname_flags.part.0+0x4c/0x550 [ 328.109683][ T9303] getname_flags.part.0+0x4c/0x550 [ 328.109720][ T9303] getname_flags+0x93/0xf0 [ 328.109763][ T9303] do_sys_openat2+0xb8/0x1d0 [ 328.109795][ T9303] ? __pfx_do_sys_openat2+0x10/0x10 [ 328.109831][ T9303] ? __fget_files+0x20e/0x3c0 [ 328.109885][ T9303] __x64_sys_openat+0x174/0x210 [ 328.109918][ T9303] ? __pfx___x64_sys_openat+0x10/0x10 [ 328.109951][ T9303] ? ksys_write+0x1b9/0x240 [ 328.110000][ T9303] ? rcu_is_watching+0x12/0xc0 [ 328.110050][ T9303] do_syscall_64+0xcd/0x260 [ 328.110099][ T9303] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 328.110131][ T9303] RIP: 0033:0x7f68f6b8d169 [ 328.110156][ T9303] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 328.110184][ T9303] RSP: 002b:00007f68f799a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 328.110213][ T9303] RAX: ffffffffffffffda RBX: 00007f68f6da6080 RCX: 00007f68f6b8d169 [ 328.110232][ T9303] RDX: 00000000003eb9c2 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 328.110251][ T9303] RBP: 00007f68f799a090 R08: 0000000000000000 R09: 0000000000000000 [ 328.110269][ T9303] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 328.110287][ T9303] R13: 0000000000000000 R14: 00007f68f6da6080 R15: 00007fff7aa990a8 [ 328.110325][ T9303] [ 329.044017][ T9308] FAULT_INJECTION: forcing a failure. [ 329.044017][ T9308] name failslab, interval 1, probability 0, space 0, times 0 [ 329.074094][ T9308] CPU: 0 UID: 0 PID: 9308 Comm: syz.2.728 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 329.074136][ T9308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 329.074155][ T9308] Call Trace: [ 329.074165][ T9308] [ 329.074183][ T9308] dump_stack_lvl+0x16c/0x1f0 [ 329.074234][ T9308] should_fail_ex+0x512/0x640 [ 329.074269][ T9308] ? __kvmalloc_node_noprof+0x122/0x600 [ 329.074321][ T9308] should_failslab+0xc2/0x120 [ 329.074350][ T9308] __kvmalloc_node_noprof+0x135/0x600 [ 329.074395][ T9308] ? find_held_lock+0x2b/0x80 [ 329.074436][ T9308] ? seq_read_iter+0x826/0x12c0 [ 329.074487][ T9308] ? seq_read_iter+0x826/0x12c0 [ 329.074525][ T9308] ? aa_file_perm+0x4d6/0xfb0 [ 329.074565][ T9308] seq_read_iter+0x826/0x12c0 [ 329.074608][ T9308] ? register_lock_class+0x41/0x4c0 [ 329.074652][ T9308] seq_read+0x39e/0x4e0 [ 329.074693][ T9308] ? __pfx_seq_read+0x10/0x10 [ 329.074734][ T9308] ? get_pid_task+0xfc/0x250 [ 329.074768][ T9308] ? __mutex_trylock_common+0xe9/0x250 [ 329.074812][ T9308] ? rw_verify_area+0xcf/0x680 [ 329.074848][ T9308] ? __pfx_seq_read+0x10/0x10 [ 329.074890][ T9308] vfs_read+0x1de/0xc70 [ 329.074939][ T9308] ? __pfx___mutex_lock+0x10/0x10 [ 329.074986][ T9308] ? __pfx_vfs_read+0x10/0x10 [ 329.075041][ T9308] ? __fget_files+0x20e/0x3c0 [ 329.075100][ T9308] ksys_read+0x12a/0x240 [ 329.075142][ T9308] ? __pfx_ksys_read+0x10/0x10 [ 329.075188][ T9308] ? syscall_user_dispatch+0x78/0x140 [ 329.075237][ T9308] do_syscall_64+0xcd/0x260 [ 329.075288][ T9308] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 329.075319][ T9308] RIP: 0033:0x7f3b1118d169 [ 329.075344][ T9308] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 329.075373][ T9308] RSP: 002b:00007f3b11ff7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 329.075402][ T9308] RAX: ffffffffffffffda RBX: 00007f3b113a5fa0 RCX: 00007f3b1118d169 [ 329.075421][ T9308] RDX: 0000000000000002 RSI: 0000200000003580 RDI: 0000000000000008 [ 329.075440][ T9308] RBP: 00007f3b11ff7090 R08: 0000000000000000 R09: 0000000000000000 [ 329.075457][ T9308] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 329.075473][ T9308] R13: 0000000000000000 R14: 00007f3b113a5fa0 R15: 00007ffd5176c458 [ 329.075511][ T9308] [ 331.345899][ T9342] blktrace: Concurrent blktraces are not allowed on loop5 [ 332.286493][ T9359] i2c i2c-0: new_device: Instantiated device card: at 0x01 [ 332.342650][ T9363] ubi0: attaching mtd0 [ 332.348812][ T9363] ubi0: scanning is finished [ 332.349965][ T9357] blktrace: Concurrent blktraces are not allowed on loop5 [ 332.374774][ T9363] ubi0: empty MTD device detected [ 332.404036][ T9363] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 333.095028][ T9363] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 333.116957][ T9372] Invalid ELF header magic: != ELF [ 333.134824][ T9365] Invalid ELF header magic: != ELF [ 333.423264][ T9376] FAULT_INJECTION: forcing a failure. [ 333.423264][ T9376] name failslab, interval 1, probability 0, space 0, times 0 [ 333.494220][ T9376] CPU: 1 UID: 0 PID: 9376 Comm: syz.0.744 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 333.494262][ T9376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 333.494280][ T9376] Call Trace: [ 333.494291][ T9376] [ 333.494302][ T9376] dump_stack_lvl+0x16c/0x1f0 [ 333.494355][ T9376] should_fail_ex+0x512/0x640 [ 333.494390][ T9376] ? __kmalloc_noprof+0xbf/0x510 [ 333.494441][ T9376] ? kernfs_fop_write_iter+0x237/0x510 [ 333.494479][ T9376] should_failslab+0xc2/0x120 [ 333.494509][ T9376] __kmalloc_noprof+0xd2/0x510 [ 333.494567][ T9376] kernfs_fop_write_iter+0x237/0x510 [ 333.494613][ T9376] vfs_write+0x5ba/0x1180 [ 333.494659][ T9376] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 333.494701][ T9376] ? __pfx___mutex_lock+0x10/0x10 [ 333.494749][ T9376] ? __pfx_vfs_write+0x10/0x10 [ 333.494820][ T9376] ksys_write+0x12a/0x240 [ 333.494875][ T9376] ? __pfx_ksys_write+0x10/0x10 [ 333.494917][ T9376] ? rcu_is_watching+0x12/0xc0 [ 333.494969][ T9376] do_syscall_64+0xcd/0x260 [ 333.495021][ T9376] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 333.495053][ T9376] RIP: 0033:0x7f68f6b8d169 [ 333.495079][ T9376] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 333.495108][ T9376] RSP: 002b:00007f68f79bb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 333.495137][ T9376] RAX: ffffffffffffffda RBX: 00007f68f6da5fa0 RCX: 00007f68f6b8d169 [ 333.495157][ T9376] RDX: 0000000000010001 RSI: 0000000000000000 RDI: 0000000000000003 [ 333.495174][ T9376] RBP: 00007f68f79bb090 R08: 0000000000000000 R09: 0000000000000000 [ 333.495192][ T9376] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 333.495209][ T9376] R13: 0000000000000000 R14: 00007f68f6da5fa0 R15: 00007fff7aa990a8 [ 333.495250][ T9376] [ 333.681938][ C1] vkms_vblank_simulate: vblank timer overrun [ 334.133185][ T9400] FAULT_INJECTION: forcing a failure. [ 334.133185][ T9400] name failslab, interval 1, probability 0, space 0, times 0 [ 334.182222][ T9400] CPU: 0 UID: 0 PID: 9400 Comm: syz.0.748 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 334.182264][ T9400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 334.182281][ T9400] Call Trace: [ 334.182291][ T9400] [ 334.182303][ T9400] dump_stack_lvl+0x16c/0x1f0 [ 334.182352][ T9400] should_fail_ex+0x512/0x640 [ 334.182387][ T9400] ? fs_reclaim_acquire+0xae/0x150 [ 334.182428][ T9400] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 334.182473][ T9400] should_failslab+0xc2/0x120 [ 334.182503][ T9400] __kmalloc_noprof+0xd2/0x510 [ 334.182559][ T9400] tomoyo_realpath_from_path+0xc2/0x6e0 [ 334.182607][ T9400] ? tomoyo_profile+0x47/0x60 [ 334.182659][ T9400] tomoyo_path_number_perm+0x245/0x580 [ 334.182694][ T9400] ? tomoyo_path_number_perm+0x237/0x580 [ 334.182735][ T9400] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 334.182775][ T9400] ? find_held_lock+0x2b/0x80 [ 334.182852][ T9400] ? find_held_lock+0x2b/0x80 [ 334.182890][ T9400] ? hook_file_ioctl_common+0x145/0x410 [ 334.182934][ T9400] ? __fget_files+0x20e/0x3c0 [ 334.182987][ T9400] security_file_ioctl+0x9b/0x240 [ 334.183035][ T9400] __x64_sys_ioctl+0xb7/0x200 [ 334.183076][ T9400] do_syscall_64+0xcd/0x260 [ 334.183130][ T9400] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 334.183162][ T9400] RIP: 0033:0x7f68f6b8d169 [ 334.183186][ T9400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 334.183215][ T9400] RSP: 002b:00007f68f79bb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 334.183244][ T9400] RAX: ffffffffffffffda RBX: 00007f68f6da5fa0 RCX: 00007f68f6b8d169 [ 334.183264][ T9400] RDX: 0000000000000000 RSI: 00000000c0481273 RDI: 0000000000000003 [ 334.183282][ T9400] RBP: 00007f68f79bb090 R08: 0000000000000000 R09: 0000000000000000 [ 334.183299][ T9400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 334.183317][ T9400] R13: 0000000000000000 R14: 00007f68f6da5fa0 R15: 00007fff7aa990a8 [ 334.183357][ T9400] [ 334.185552][ T9400] ERROR: Out of memory at tomoyo_realpath_from_path. [ 335.930791][ T9426] FAULT_INJECTION: forcing a failure. [ 335.930791][ T9426] name failslab, interval 1, probability 0, space 0, times 0 [ 336.356340][ T9426] CPU: 1 UID: 0 PID: 9426 Comm: syz.1.753 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 336.356400][ T9426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 336.356432][ T9426] Call Trace: [ 336.356441][ T9426] [ 336.356453][ T9426] dump_stack_lvl+0x16c/0x1f0 [ 336.356508][ T9426] should_fail_ex+0x512/0x640 [ 336.356543][ T9426] ? fs_reclaim_acquire+0xae/0x150 [ 336.356584][ T9426] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 336.356633][ T9426] should_failslab+0xc2/0x120 [ 336.356663][ T9426] __kmalloc_noprof+0xd2/0x510 [ 336.356706][ T9426] ? kernel_text_address+0x8d/0x100 [ 336.356754][ T9426] tomoyo_realpath_from_path+0xc2/0x6e0 [ 336.356803][ T9426] ? tomoyo_profile+0x47/0x60 [ 336.356855][ T9426] tomoyo_path_number_perm+0x245/0x580 [ 336.356891][ T9426] ? tomoyo_path_number_perm+0x237/0x580 [ 336.356932][ T9426] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 336.356972][ T9426] ? __pfx__kstrtoull+0x10/0x10 [ 336.357029][ T9426] ? find_held_lock+0x2b/0x80 [ 336.357105][ T9426] ? from_kuid+0x8d/0xd0 [ 336.357137][ T9426] ? __pfx_from_kuid+0x10/0x10 [ 336.357180][ T9426] tomoyo_path_chown+0x173/0x1b0 [ 336.357229][ T9426] ? __pfx_tomoyo_path_chown+0x10/0x10 [ 336.357280][ T9426] ? from_vfsuid+0xea/0x140 [ 336.357314][ T9426] ? __pfx_from_vfsuid+0x10/0x10 [ 336.357346][ T9426] ? __lock_acquire+0x5ca/0x1ba0 [ 336.357400][ T9426] security_path_chown+0x12a/0x2e0 [ 336.357438][ T9426] chown_common+0x3bb/0x670 [ 336.357476][ T9426] ? __pfx_chown_common+0x10/0x10 [ 336.357535][ T9426] ksys_fchown+0x11f/0x170 [ 336.357568][ T9426] __x64_sys_fchown+0x72/0xb0 [ 336.357621][ T9426] ? lockdep_hardirqs_on+0x7c/0x110 [ 336.357667][ T9426] do_syscall_64+0xcd/0x260 [ 336.357719][ T9426] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 336.357751][ T9426] RIP: 0033:0x7f6a3558d169 [ 336.357775][ T9426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 336.357805][ T9426] RSP: 002b:00007f6a36348038 EFLAGS: 00000246 ORIG_RAX: 000000000000005d [ 336.357834][ T9426] RAX: ffffffffffffffda RBX: 00007f6a357a6160 RCX: 00007f6a3558d169 [ 336.357854][ T9426] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 336.357871][ T9426] RBP: 00007f6a36348090 R08: 0000000000000000 R09: 0000000000000000 [ 336.357890][ T9426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 336.357909][ T9426] R13: 0000000000000000 R14: 00007f6a357a6160 R15: 00007fff1fb873e8 [ 336.357951][ T9426] [ 336.608013][ C1] vkms_vblank_simulate: vblank timer overrun [ 336.669808][ T9426] ERROR: Out of memory at tomoyo_realpath_from_path. [ 337.049933][ T30] audit: type=1800 audit(4294968334.534:3): pid=9436 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.755" name="discovery_nqn" dev="configfs" ino=18492 res=0 errno=0 [ 337.501342][ T9447] FAULT_INJECTION: forcing a failure. [ 337.501342][ T9447] name failslab, interval 1, probability 0, space 0, times 0 [ 337.617330][ T9447] CPU: 1 UID: 0 PID: 9447 Comm: syz.2.759 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 337.617371][ T9447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 337.617389][ T9447] Call Trace: [ 337.617399][ T9447] [ 337.617411][ T9447] dump_stack_lvl+0x16c/0x1f0 [ 337.617462][ T9447] should_fail_ex+0x512/0x640 [ 337.617498][ T9447] ? fs_reclaim_acquire+0xae/0x150 [ 337.617540][ T9447] ? tomoyo_encode2+0x100/0x3e0 [ 337.617606][ T9447] should_failslab+0xc2/0x120 [ 337.617635][ T9447] __kmalloc_noprof+0xd2/0x510 [ 337.617683][ T9447] ? d_absolute_path+0x136/0x1a0 [ 337.617725][ T9447] tomoyo_encode2+0x100/0x3e0 [ 337.617774][ T9447] tomoyo_encode+0x29/0x50 [ 337.617815][ T9447] tomoyo_realpath_from_path+0x18f/0x6e0 [ 337.617872][ T9447] tomoyo_path_number_perm+0x245/0x580 [ 337.617908][ T9447] ? tomoyo_path_number_perm+0x237/0x580 [ 337.617949][ T9447] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 337.617990][ T9447] ? find_held_lock+0x2b/0x80 [ 337.618068][ T9447] ? fd_install+0x244/0x750 [ 337.618113][ T9447] ? hook_file_ioctl_common+0x145/0x410 [ 337.618168][ T9447] security_file_ioctl+0x9b/0x240 [ 337.618210][ T9447] __x64_sys_ioctl+0xb7/0x200 [ 337.618252][ T9447] do_syscall_64+0xcd/0x260 [ 337.618303][ T9447] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 337.618335][ T9447] RIP: 0033:0x7f3b1118d169 [ 337.618359][ T9447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 337.618388][ T9447] RSP: 002b:00007f3b11ff7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 337.618417][ T9447] RAX: ffffffffffffffda RBX: 00007f3b113a5fa0 RCX: 00007f3b1118d169 [ 337.618436][ T9447] RDX: 0000000000000000 RSI: 0000000000004b72 RDI: 0000000000000000 [ 337.618454][ T9447] RBP: 00007f3b11ff7090 R08: 0000000000000000 R09: 0000000000000000 [ 337.618471][ T9447] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 337.618488][ T9447] R13: 0000000000000000 R14: 00007f3b113a5fa0 R15: 00007ffd5176c458 [ 337.618528][ T9447] [ 337.618560][ T9447] ERROR: Out of memory at tomoyo_realpath_from_path. [ 338.604136][ T9463] netlink: 342 bytes leftover after parsing attributes in process `syz.2.763'. [ 339.647270][ T9478] FAULT_INJECTION: forcing a failure. [ 339.647270][ T9478] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 339.695334][ T9478] CPU: 1 UID: 0 PID: 9478 Comm: syz.1.767 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 339.695377][ T9478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 339.695395][ T9478] Call Trace: [ 339.695405][ T9478] [ 339.695417][ T9478] dump_stack_lvl+0x16c/0x1f0 [ 339.695476][ T9478] should_fail_ex+0x512/0x640 [ 339.695519][ T9478] should_fail_alloc_page+0xe7/0x130 [ 339.695552][ T9478] prepare_alloc_pages+0x3c2/0x610 [ 339.695598][ T9478] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 339.695657][ T9478] ? __lock_acquire+0x5ca/0x1ba0 [ 339.695718][ T9478] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 339.695793][ T9478] ? find_held_lock+0x2b/0x80 [ 339.695833][ T9478] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 339.695870][ T9478] ? policy_nodemask+0xea/0x4e0 [ 339.695926][ T9478] alloc_pages_mpol+0x1fb/0x550 [ 339.695958][ T9478] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 339.696000][ T9478] folio_alloc_mpol_noprof+0x36/0x2f0 [ 339.696040][ T9478] shmem_alloc_folio+0x135/0x160 [ 339.696086][ T9478] shmem_alloc_and_add_folio+0x499/0xc20 [ 339.696145][ T9478] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 339.696200][ T9478] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 339.696259][ T9478] shmem_get_folio_gfp+0x687/0x1530 [ 339.696320][ T9478] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 339.696375][ T9478] ? filemap_map_pages+0xf6c/0x1680 [ 339.696411][ T9478] shmem_fault+0x1fe/0xa30 [ 339.696471][ T9478] ? __pfx_shmem_fault+0x10/0x10 [ 339.696528][ T9478] ? __pfx_filemap_map_pages+0x10/0x10 [ 339.696572][ T9478] __do_fault+0x10a/0x490 [ 339.696606][ T9478] do_pte_missing+0x1031/0x3fb0 [ 339.696650][ T9478] ? do_raw_spin_unlock+0x172/0x230 [ 339.696688][ T9478] ? __pmd_alloc+0x3c2/0x870 [ 339.696723][ T9478] ? find_held_lock+0x2b/0x80 [ 339.696767][ T9478] __handle_mm_fault+0x103d/0x2a40 [ 339.696824][ T9478] ? __pfx___handle_mm_fault+0x10/0x10 [ 339.696905][ T9478] ? find_vma+0xbf/0x140 [ 339.696937][ T9478] ? __pfx_find_vma+0x10/0x10 [ 339.696975][ T9478] handle_mm_fault+0x3fe/0xad0 [ 339.697026][ T9478] do_user_addr_fault+0x7a6/0x1370 [ 339.697068][ T9478] ? rcu_is_watching+0x12/0xc0 [ 339.697110][ T9478] exc_page_fault+0x5c/0xc0 [ 339.697154][ T9478] asm_exc_page_fault+0x26/0x30 [ 339.697182][ T9478] RIP: 0010:__get_user_4+0x14/0x20 [ 339.697217][ T9478] Code: 00 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 ba 00 f0 ff ff ff 7f 00 00 48 39 d0 48 0f 47 c2 0f 01 cb <8b> 10 31 c0 0f 01 ca c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 [ 339.697245][ T9478] RSP: 0018:ffffc9000b03fe38 EFLAGS: 00050287 [ 339.697269][ T9478] RAX: 0000000000000000 RBX: 0000000040046f41 RCX: ffffc9000b03fddc [ 339.697288][ T9478] RDX: 00007ffffffff000 RSI: ffffffff865e6ac8 RDI: ffffffff8bf45100 [ 339.697308][ T9478] RBP: 1ffff92001607fc8 R08: a23edf14cf8df726 R09: 0000000000000001 [ 339.697328][ T9478] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 339.697345][ T9478] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000004 [ 339.697375][ T9478] ? ctrl_cdev_ioctl+0x1b8/0x3d0 [ 339.697407][ T9478] ctrl_cdev_ioctl+0x1c0/0x3d0 [ 339.697460][ T9478] ? __pfx_ctrl_cdev_ioctl+0x10/0x10 [ 339.697487][ T9478] ? __fget_files+0x20e/0x3c0 [ 339.697538][ T9478] ? __pfx_ctrl_cdev_ioctl+0x10/0x10 [ 339.697569][ T9478] __x64_sys_ioctl+0x190/0x200 [ 339.697611][ T9478] do_syscall_64+0xcd/0x260 [ 339.697662][ T9478] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 339.697693][ T9478] RIP: 0033:0x7f6a3558d169 [ 339.697717][ T9478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 339.697746][ T9478] RSP: 002b:00007f6a3638a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 339.697774][ T9478] RAX: ffffffffffffffda RBX: 00007f6a357a5fa0 RCX: 00007f6a3558d169 [ 339.697793][ T9478] RDX: 0000000000000000 RSI: 0000000040046f41 RDI: 0000000000000004 [ 339.697811][ T9478] RBP: 00007f6a3638a090 R08: 0000000000000000 R09: 0000000000000000 [ 339.697828][ T9478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 339.697845][ T9478] R13: 0000000000000000 R14: 00007f6a357a5fa0 R15: 00007fff1fb873e8 [ 339.697885][ T9478] [ 339.698010][ T9479] bdi 43:96: the stable_pages_required attribute has been removed. Use the stable_writes queue attribute instead. [ 340.395482][ T9487] netlink: set zone limit has 8 unknown bytes [ 340.894675][ T9513] netlink: 342 bytes leftover after parsing attributes in process `syz.2.773'. [ 343.527442][ T9557] netlink: set zone limit has 8 unknown bytes [ 344.021268][ T9579] netlink: 4 bytes leftover after parsing attributes in process `syz.0.790'. [ 344.170261][ T9584] netlink: 4 bytes leftover after parsing attributes in process `syz.2.791'. [ 344.193265][ T9584] FAULT_INJECTION: forcing a failure. [ 344.193265][ T9584] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 344.295044][ T9584] CPU: 1 UID: 0 PID: 9584 Comm: syz.2.791 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 344.295102][ T9584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 344.295121][ T9584] Call Trace: [ 344.295131][ T9584] [ 344.295142][ T9584] dump_stack_lvl+0x16c/0x1f0 [ 344.295195][ T9584] should_fail_ex+0x512/0x640 [ 344.295237][ T9584] _copy_to_user+0x32/0xd0 [ 344.295280][ T9584] snd_rawmidi_info_select_user+0x16b/0x1e0 [ 344.295318][ T9584] ? __pfx_snd_rawmidi_info_select_user+0x10/0x10 [ 344.295394][ T9584] ? down_read+0x13d/0x480 [ 344.295424][ T9584] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 344.295466][ T9584] snd_rawmidi_control_ioctl+0x187/0x1e0 [ 344.295506][ T9584] snd_ctl_ioctl+0xa15/0x1320 [ 344.295549][ T9584] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 344.295593][ T9584] ? __pfx_do_sys_openat2+0x10/0x10 [ 344.295631][ T9584] ? hook_file_ioctl_common+0x145/0x410 [ 344.295674][ T9584] ? __pfx_native_tss_update_io_bitmap+0x10/0x10 [ 344.295722][ T9584] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 344.295767][ T9584] __x64_sys_ioctl+0x190/0x200 [ 344.295810][ T9584] do_syscall_64+0xcd/0x260 [ 344.295860][ T9584] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 344.295891][ T9584] RIP: 0033:0x7f3b1118d169 [ 344.295915][ T9584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 344.295945][ T9584] RSP: 002b:00007f3b11ff7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 344.295974][ T9584] RAX: ffffffffffffffda RBX: 00007f3b113a5fa0 RCX: 00007f3b1118d169 [ 344.295995][ T9584] RDX: 0000000000000004 RSI: 00000000c10c5541 RDI: 0000000000000005 [ 344.296013][ T9584] RBP: 00007f3b11ff7090 R08: 0000000000000000 R09: 0000000000000000 [ 344.296032][ T9584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 344.296051][ T9584] R13: 0000000000000000 R14: 00007f3b113a5fa0 R15: 00007ffd5176c458 [ 344.296098][ T9584] [ 344.512960][ T9592] 0x000200000001-0xa29656a63616329 : "" [ 344.518589][ T9592] mtd: partition "" is out of reach -- disabled [ 344.538062][ T9592] ftl_cs: FTL header not found. [ 345.957113][ T9612] FAULT_INJECTION: forcing a failure. [ 345.957113][ T9612] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 345.983651][ T9612] CPU: 0 UID: 0 PID: 9612 Comm: syz.1.796 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 345.983692][ T9612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 345.983711][ T9612] Call Trace: [ 345.983722][ T9612] [ 345.983734][ T9612] dump_stack_lvl+0x16c/0x1f0 [ 345.983785][ T9612] should_fail_ex+0x512/0x640 [ 345.983825][ T9612] core_sys_select+0x4b2/0xbe0 [ 345.983878][ T9612] ? __pfx_core_sys_select+0x10/0x10 [ 345.983931][ T9612] ? proc_fail_nth_write+0x9f/0x250 [ 345.984010][ T9612] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 345.984068][ T9612] kern_select+0x15d/0x1e0 [ 345.984112][ T9612] ? __pfx_kern_select+0x10/0x10 [ 345.984162][ T9612] ? __pfx_ksys_write+0x10/0x10 [ 345.984213][ T9612] __x64_sys_select+0xbd/0x160 [ 345.984263][ T9612] ? do_syscall_64+0x91/0x260 [ 345.984311][ T9612] ? lockdep_hardirqs_on+0x7c/0x110 [ 345.984356][ T9612] do_syscall_64+0xcd/0x260 [ 345.984406][ T9612] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 345.984439][ T9612] RIP: 0033:0x7f6a3558d169 [ 345.984463][ T9612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 345.984493][ T9612] RSP: 002b:00007f6a36348038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 345.984520][ T9612] RAX: ffffffffffffffda RBX: 00007f6a357a6160 RCX: 00007f6a3558d169 [ 345.984540][ T9612] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 345.984557][ T9612] RBP: 00007f6a36348090 R08: 0000000000000000 R09: 0000000000000000 [ 345.984575][ T9612] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001 [ 345.984593][ T9612] R13: 0000000000000001 R14: 00007f6a357a6160 R15: 00007fff1fb873e8 [ 345.984632][ T9612] [ 349.671822][ T9647] FAULT_INJECTION: forcing a failure. [ 349.671822][ T9647] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 349.689477][ T9647] CPU: 1 UID: 0 PID: 9647 Comm: syz.1.802 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 349.689521][ T9647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 349.689539][ T9647] Call Trace: [ 349.689549][ T9647] [ 349.689560][ T9647] dump_stack_lvl+0x16c/0x1f0 [ 349.689612][ T9647] should_fail_ex+0x512/0x640 [ 349.689655][ T9647] _copy_from_user+0x2e/0xd0 [ 349.689697][ T9647] kstrtouint_from_user+0xd6/0x1d0 [ 349.689757][ T9647] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 349.689805][ T9647] ? __lock_acquire+0xaa4/0x1ba0 [ 349.689875][ T9647] proc_fail_nth_write+0x83/0x250 [ 349.689922][ T9647] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 349.689986][ T9647] vfs_write+0x25c/0x1180 [ 349.690028][ T9647] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 349.690078][ T9647] ? __pfx___mutex_lock+0x10/0x10 [ 349.690126][ T9647] ? __pfx_vfs_write+0x10/0x10 [ 349.690181][ T9647] ? __fget_files+0x20e/0x3c0 [ 349.690240][ T9647] ksys_write+0x12a/0x240 [ 349.690284][ T9647] ? __pfx_ksys_write+0x10/0x10 [ 349.690341][ T9647] do_syscall_64+0xcd/0x260 [ 349.690398][ T9647] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 349.690430][ T9647] RIP: 0033:0x7f6a3558bc1f [ 349.690454][ T9647] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 349.690483][ T9647] RSP: 002b:00007f6a36369030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 349.690511][ T9647] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f6a3558bc1f [ 349.690530][ T9647] RDX: 0000000000000001 RSI: 00007f6a363690a0 RDI: 0000000000000009 [ 349.690548][ T9647] RBP: 00007f6a36369090 R08: 0000000000000000 R09: 0000000000000000 [ 349.690566][ T9647] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 349.690583][ T9647] R13: 0000000000000000 R14: 00007f6a357a6080 R15: 00007fff1fb873e8 [ 349.690623][ T9647] [ 352.839595][ T9702] ubi0: attaching mtd0 [ 352.940263][ T9702] ubi0: scanning is finished [ 352.944936][ T9702] ubi0: empty MTD device detected [ 352.950323][ T9702] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 353.255379][ T9705] Invalid ELF header magic: != ELF [ 353.623329][ T9708] Invalid ELF header magic: != ELF [ 353.850870][ T9702] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 356.242674][ T9729] mmap: syz.0.818 (9729) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 356.600338][ T9743] ubi0: attaching mtd0 [ 356.625471][ T9743] ubi0: scanning is finished [ 356.669780][ T9743] ubi0: empty MTD device detected [ 356.679581][ T9743] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 357.002042][ T9743] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 357.106133][ T9745] Invalid ELF header magic: != ELF [ 357.740784][ T9745] Invalid ELF header magic: != ELF [ 359.265515][ T9781] netlink: 342 bytes leftover after parsing attributes in process `syz.1.829'. [ 361.572725][ T9813] 0x000200000001-0xa29656a63616329 : "" [ 361.578356][ T9813] mtd: partition "" is out of reach -- disabled [ 361.642323][ T9813] ftl_cs: FTL header not found. [ 363.787039][ T9837] netlink: 342 bytes leftover after parsing attributes in process `syz.1.839'. [ 367.899978][ T9883] Invalid ELF header magic: != ELF [ 367.942794][ T9880] Invalid ELF header magic: != ELF [ 369.298950][ T9907] ubi0: attaching mtd0 [ 369.322770][ T9907] ubi0: scanning is finished [ 369.327443][ T9907] ubi0: empty MTD device detected [ 369.349554][ T9907] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 369.540072][ T9908] Invalid ELF header magic: != ELF [ 369.938093][ T9907] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 370.065023][ T9914] ubi0: attaching mtd0 [ 370.074843][ T9914] ubi0: scanning is finished [ 370.119804][ T9920] Invalid ELF header magic: != ELF [ 370.146420][ T9914] ubi0: empty MTD device detected [ 370.308719][ T9908] Invalid ELF header magic: != ELF [ 370.315674][ T9914] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 370.765879][ T9925] Invalid ELF header magic: != ELF [ 371.320991][ T9914] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 372.090450][ T9949] ubi0: attaching mtd0 [ 372.109033][ T9949] ubi0: scanning is finished [ 372.253696][ T9949] ubi0: empty MTD device detected [ 372.258941][ T9949] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 372.390002][ T9951] Invalid ELF header magic: != ELF [ 372.540476][ T9952] Invalid ELF header magic: != ELF [ 372.620568][ T9953] Invalid ELF header magic: != ELF [ 372.681969][ T9949] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 372.725687][ T9950] ubi0: attaching mtd0 [ 372.734546][ T9950] ubi0: scanning is finished [ 372.740474][ T9950] ubi0: empty MTD device detected [ 372.747100][ T9950] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 372.812079][ T9950] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 372.934495][ T9949] Invalid ELF header magic: != ELF [ 372.990630][ T9965] ubi0: attaching mtd0 [ 372.996818][ T9965] ubi0: scanning is finished [ 373.001647][ T9965] ubi0: empty MTD device detected [ 373.006757][ T9965] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 373.279587][ T9967] Invalid ELF header magic: != ELF [ 373.658654][ T9965] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 373.752084][ T9973] ubi0: attaching mtd0 [ 373.758242][ T9973] ubi0: scanning is finished [ 373.916649][ T9973] ubi0: empty MTD device detected [ 374.072831][ T9967] Invalid ELF header magic: != ELF [ 374.109607][ T9979] Invalid ELF header magic: != ELF [ 374.205310][ T9973] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 374.587238][ T9978] Invalid ELF header magic: != ELF [ 375.099098][ T9988] Invalid ELF header magic: != ELF [ 375.620359][ T9973] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 375.778351][ T9711] syz.3.809 (9711) used greatest stack depth: 19000 bytes left [ 375.784052][ T9977] ubi0: attaching mtd0 [ 375.792603][ T9977] ubi0: scanning is finished [ 375.797250][ T9977] ubi0: empty MTD device detected [ 375.809458][ T9977] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 375.861567][ T9978] Invalid ELF header magic: != ELF [ 375.977250][ T9977] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 376.290163][T10009] ubi0: attaching mtd0 [ 376.316420][T10009] ubi0: scanning is finished [ 376.384443][T10009] ubi0: empty MTD device detected [ 376.474850][T10009] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 376.656366][T10013] Invalid ELF header magic: != ELF [ 376.994660][T10015] Invalid ELF header magic: != ELF [ 377.044290][T10009] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 380.870390][T10068] ubi0: attaching mtd0 [ 380.887986][T10068] ubi0: scanning is finished [ 380.895724][T10068] ubi0: empty MTD device detected [ 380.909549][T10068] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 381.409053][T10072] Invalid ELF header magic: != ELF [ 381.640997][T10068] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 382.073510][T10068] Invalid ELF header magic: != ELF [ 382.357799][T10092] ubi0: attaching mtd0 [ 382.421917][T10092] ubi0: scanning is finished [ 382.439640][T10092] ubi0: empty MTD device detected [ 382.481682][T10092] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 382.569930][T10093] Invalid ELF header magic: != ELF [ 382.737106][T10092] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 383.387597][T10093] Invalid ELF header magic: != ELF [ 383.836233][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 383.842747][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 388.024014][T10187] ubi0: attaching mtd0 [ 388.183070][T10187] ubi0: scanning is finished [ 388.187782][T10187] ubi0: empty MTD device detected [ 388.259996][T10187] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 388.399624][T10188] Invalid ELF header magic: != ELF [ 388.820726][T10188] Invalid ELF header magic: != ELF [ 388.914614][T10187] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 392.861482][T10263] ubi0: attaching mtd0 [ 392.867355][T10263] ubi0: scanning is finished [ 392.872240][T10263] ubi0: empty MTD device detected [ 392.877765][T10263] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 393.425267][T10263] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 393.810648][T10263] Invalid ELF header magic: != ELF [ 393.821756][T10264] Invalid ELF header magic: != ELF [ 395.018797][T10287] ubi0: attaching mtd0 [ 395.045457][T10287] ubi0: scanning is finished [ 395.079526][T10287] ubi0: empty MTD device detected [ 395.107041][T10287] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 395.181965][T10288] Invalid ELF header magic: != ELF [ 395.305873][T10287] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 395.690695][T10287] Invalid ELF header magic: != ELF [ 398.811068][T10333] ubi0: attaching mtd0 [ 398.817440][T10333] ubi0: scanning is finished [ 398.823011][T10333] ubi0: empty MTD device detected [ 398.836908][T10333] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 399.226482][T10335] Invalid ELF header magic: != ELF [ 399.435363][T10333] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 400.200901][T10333] Invalid ELF header magic: != ELF [ 403.074972][T10392] ubi0: attaching mtd0 [ 403.174164][T10392] ubi0: scanning is finished [ 403.178831][T10392] ubi0: empty MTD device detected [ 403.267660][T10392] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 403.291184][T10393] Invalid ELF header magic: != ELF [ 403.354869][T10393] Invalid ELF header magic: != ELF [ 403.555115][T10392] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 404.689324][T10416] ======================================================= [ 404.689324][T10416] WARNING: The mand mount option has been deprecated and [ 404.689324][T10416] and is ignored by this kernel. Remove the mand [ 404.689324][T10416] option from the mount to silence this warning. [ 404.689324][T10416] ======================================================= [ 406.474891][T10453] ubi0: attaching mtd0 [ 406.496726][T10453] ubi0: scanning is finished [ 406.508744][T10453] ubi0: empty MTD device detected [ 406.514028][T10453] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 406.678292][T10454] Invalid ELF header magic: != ELF [ 406.922212][T10457] Invalid ELF header magic: != ELF [ 407.022958][T10453] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 407.762886][T10482] netlink: set zone limit has 8 unknown bytes [ 408.946751][T10501] ubi0: attaching mtd0 [ 408.965177][T10501] ubi0: scanning is finished [ 408.991751][T10501] ubi0: empty MTD device detected [ 408.996964][T10501] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 409.328793][T10504] Invalid ELF header magic: != ELF [ 409.912803][T10501] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 410.131328][T10501] Invalid ELF header magic: != ELF [ 410.688392][T10532] netlink: set zone limit has 8 unknown bytes [ 410.922164][T10541] FAULT_INJECTION: forcing a failure. [ 410.922164][T10541] name failslab, interval 1, probability 0, space 0, times 0 [ 410.979548][T10541] CPU: 1 UID: 0 PID: 10541 Comm: syz.3.983 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 410.979596][T10541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 410.979616][T10541] Call Trace: [ 410.979627][T10541] [ 410.979646][T10541] dump_stack_lvl+0x16c/0x1f0 [ 410.979702][T10541] should_fail_ex+0x512/0x640 [ 410.979739][T10541] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 410.979796][T10541] should_failslab+0xc2/0x120 [ 410.979826][T10541] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 410.979879][T10541] ? alloc_inode+0x61/0x240 [ 410.979916][T10541] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 410.979958][T10541] ? __pfx_rpc_alloc_inode+0x10/0x10 [ 410.980004][T10541] alloc_inode+0x61/0x240 [ 410.980040][T10541] new_inode+0x22/0x1c0 [ 410.980081][T10541] __rpc_create_common+0x57/0x2f0 [ 410.980139][T10541] rpc_populate.constprop.0+0x153/0x5d0 [ 410.980206][T10541] rpc_fill_super+0x2bc/0x840 [ 410.980237][T10541] ? sget_fc+0x808/0xc20 [ 410.980282][T10541] ? __pfx_set_anon_super_fc+0x10/0x10 [ 410.980325][T10541] ? __pfx_rpc_fill_super+0x10/0x10 [ 410.980355][T10541] get_tree_keyed+0x10b/0x1d0 [ 410.980403][T10541] vfs_get_tree+0x8b/0x340 [ 410.980445][T10541] vfs_cmd_create+0xd7/0x2a0 [ 410.980484][T10541] __do_sys_fsconfig+0x7b8/0xbe0 [ 410.980524][T10541] ? __pfx___do_sys_fsconfig+0x10/0x10 [ 410.980581][T10541] do_syscall_64+0xcd/0x260 [ 410.980640][T10541] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 410.980673][T10541] RIP: 0033:0x7f64d5f8d169 [ 410.980701][T10541] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 410.980733][T10541] RSP: 002b:00007f64d6ec5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af [ 410.980764][T10541] RAX: ffffffffffffffda RBX: 00007f64d61a5fa0 RCX: 00007f64d5f8d169 [ 410.980785][T10541] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000006 [ 410.980804][T10541] RBP: 00007f64d600e990 R08: 0000000000000000 R09: 0000000000000000 [ 410.980823][T10541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 410.980842][T10541] R13: 0000000000000000 R14: 00007f64d61a5fa0 R15: 00007fff3b1c3be8 [ 410.980884][T10541] [ 410.980897][T10541] net/sunrpc/rpc_pipe.c: __rpc_create_common failed to allocate inode for dentry gssd [ 411.222510][T10541] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory / [ 413.194235][T10567] program syz.3.990 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 413.366031][T10577] netlink: 4 bytes leftover after parsing attributes in process `syz.1.992'. [ 413.404766][T10577] FAULT_INJECTION: forcing a failure. [ 413.404766][T10577] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 413.439012][T10577] CPU: 1 UID: 0 PID: 10577 Comm: syz.1.992 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 413.439061][T10577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 413.439080][T10577] Call Trace: [ 413.439091][T10577] [ 413.439102][T10577] dump_stack_lvl+0x16c/0x1f0 [ 413.439154][T10577] should_fail_ex+0x512/0x640 [ 413.439196][T10577] _copy_to_user+0x32/0xd0 [ 413.439240][T10577] simple_read_from_buffer+0xcb/0x170 [ 413.439287][T10577] proc_fail_nth_read+0x197/0x270 [ 413.439332][T10577] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 413.439377][T10577] ? rw_verify_area+0xcf/0x680 [ 413.439413][T10577] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 413.439466][T10577] vfs_read+0x1de/0xc70 [ 413.439517][T10577] ? __pfx_vfs_read+0x10/0x10 [ 413.439559][T10577] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 413.439606][T10577] ? __pfx_do_sys_openat2+0x10/0x10 [ 413.439645][T10577] ? hook_file_ioctl_common+0x145/0x410 [ 413.439682][T10577] ? native_tss_update_io_bitmap+0x3ca/0x720 [ 413.439727][T10577] ksys_read+0x12a/0x240 [ 413.439768][T10577] ? __pfx_ksys_read+0x10/0x10 [ 413.439823][T10577] do_syscall_64+0xcd/0x260 [ 413.439872][T10577] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 413.439912][T10577] RIP: 0033:0x7f6a3558bb7c [ 413.439937][T10577] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 413.439968][T10577] RSP: 002b:00007f6a3638a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 413.439996][T10577] RAX: ffffffffffffffda RBX: 00007f6a357a5fa0 RCX: 00007f6a3558bb7c [ 413.440017][T10577] RDX: 000000000000000f RSI: 00007f6a3638a0a0 RDI: 0000000000000006 [ 413.440045][T10577] RBP: 00007f6a3638a090 R08: 0000000000000000 R09: 0000000000000000 [ 413.440067][T10577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 413.440086][T10577] R13: 0000000000000000 R14: 00007f6a357a5fa0 R15: 00007fff1fb873e8 [ 413.440126][T10577] [ 413.687241][T10576] netlink: 28 bytes leftover after parsing attributes in process `syz.3.993'. [ 413.920654][T10576] geneve1: entered allmulticast mode [ 415.547603][T10599] FAULT_INJECTION: forcing a failure. [ 415.547603][T10599] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 415.571627][T10599] CPU: 0 UID: 0 PID: 10599 Comm: syz.3.998 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 415.571670][T10599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 415.571688][T10599] Call Trace: [ 415.571698][T10599] [ 415.571709][T10599] dump_stack_lvl+0x16c/0x1f0 [ 415.571760][T10599] should_fail_ex+0x512/0x640 [ 415.571801][T10599] strncpy_from_user+0x3b/0x2e0 [ 415.571838][T10599] getname_flags.part.0+0x8f/0x550 [ 415.571879][T10599] getname_flags+0x93/0xf0 [ 415.571922][T10599] do_sys_openat2+0xb8/0x1d0 [ 415.571955][T10599] ? __pfx_do_sys_openat2+0x10/0x10 [ 415.571993][T10599] ? __fget_files+0x20e/0x3c0 [ 415.572045][T10599] __x64_sys_openat+0x174/0x210 [ 415.572080][T10599] ? __pfx___x64_sys_openat+0x10/0x10 [ 415.572111][T10599] ? ksys_write+0x1b9/0x240 [ 415.572158][T10599] ? rcu_is_watching+0x12/0xc0 [ 415.572208][T10599] do_syscall_64+0xcd/0x260 [ 415.572258][T10599] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 415.572296][T10599] RIP: 0033:0x7f64d5f8d169 [ 415.572320][T10599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 415.572348][T10599] RSP: 002b:00007f64d6ea4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 415.572376][T10599] RAX: ffffffffffffffda RBX: 00007f64d61a6080 RCX: 00007f64d5f8d169 [ 415.572394][T10599] RDX: 00000000003eb9c2 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 415.572413][T10599] RBP: 00007f64d6ea4090 R08: 0000000000000000 R09: 0000000000000000 [ 415.572430][T10599] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 415.572447][T10599] R13: 0000000000000000 R14: 00007f64d61a6080 R15: 00007fff3b1c3be8 [ 415.572485][T10599] [ 415.751215][ C0] vkms_vblank_simulate: vblank timer overrun [ 416.894229][T10616] ubi0: attaching mtd0 [ 416.941032][T10616] ubi0: scanning is finished [ 416.945751][T10616] ubi0: empty MTD device detected [ 416.984232][T10616] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 417.087444][T10619] Invalid ELF header magic: != ELF [ 417.545749][T10620] Invalid ELF header magic: != ELF [ 417.584838][T10616] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 417.587405][T10622] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1003'. [ 418.186948][T10634] blktrace: Concurrent blktraces are not allowed on loop5 [ 418.957183][T10643] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1011'. [ 418.990689][T10643] net veth1_virt_wifi ›: renamed from virt_wifi0 [ 420.292022][T10666] FAULT_INJECTION: forcing a failure. [ 420.292022][T10666] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 420.349823][T10666] CPU: 0 UID: 0 PID: 10666 Comm: syz.3.1018 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 420.349868][T10666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 420.349887][T10666] Call Trace: [ 420.349897][T10666] [ 420.349909][T10666] dump_stack_lvl+0x16c/0x1f0 [ 420.349970][T10666] should_fail_ex+0x512/0x640 [ 420.350017][T10666] should_fail_alloc_page+0xe7/0x130 [ 420.350050][T10666] prepare_alloc_pages+0x3c2/0x610 [ 420.350089][T10666] ? look_up_lock_class+0x59/0x150 [ 420.350139][T10666] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 420.350198][T10666] ? __lock_acquire+0xaa4/0x1ba0 [ 420.350260][T10666] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 420.350328][T10666] ? find_held_lock+0x2b/0x80 [ 420.350370][T10666] ? process_measurement+0x51f/0x2360 [ 420.350416][T10666] ? down_write+0x14d/0x200 [ 420.350443][T10666] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 420.350480][T10666] ? policy_nodemask+0xea/0x4e0 [ 420.350536][T10666] alloc_pages_mpol+0x1fb/0x550 [ 420.350568][T10666] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 420.350611][T10666] alloc_pages_noprof+0x131/0x390 [ 420.350642][T10666] __pmd_alloc+0x3f/0x870 [ 420.350677][T10666] ? find_held_lock+0x2b/0x80 [ 420.350720][T10666] __handle_mm_fault+0x948/0x2a40 [ 420.350778][T10666] ? __pfx___handle_mm_fault+0x10/0x10 [ 420.350852][T10666] ? find_vma+0xbf/0x140 [ 420.350886][T10666] ? __pfx_find_vma+0x10/0x10 [ 420.350926][T10666] handle_mm_fault+0x3fe/0xad0 [ 420.350984][T10666] do_user_addr_fault+0x7a6/0x1370 [ 420.351026][T10666] ? rcu_is_watching+0x12/0xc0 [ 420.351069][T10666] exc_page_fault+0x5c/0xc0 [ 420.351114][T10666] asm_exc_page_fault+0x26/0x30 [ 420.351144][T10666] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 420.351181][T10666] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 420.351211][T10666] RSP: 0018:ffffc90019befbb0 EFLAGS: 00050206 [ 420.351237][T10666] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000001000 [ 420.351256][T10666] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8880798fc000 [ 420.351275][T10666] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100f31f9ff [ 420.351294][T10666] R10: ffff8880798fcfff R11: 0000000000000000 R12: 0000000000000000 [ 420.351313][T10666] R13: ffffc90019befda0 R14: 0000000000001000 R15: ffff8880798fc000 [ 420.351356][T10666] _copy_from_iter+0x391/0x15b0 [ 420.351406][T10666] ? __pfx__copy_from_iter+0x10/0x10 [ 420.351448][T10666] ? rcu_is_watching+0x12/0xc0 [ 420.351487][T10666] ? trace_kmalloc+0x2b/0xd0 [ 420.351517][T10666] ? __kmalloc_noprof+0x242/0x510 [ 420.351575][T10666] kernfs_fop_write_iter+0x19a/0x510 [ 420.351623][T10666] vfs_write+0x5ba/0x1180 [ 420.351668][T10666] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 420.351710][T10666] ? __pfx___mutex_lock+0x10/0x10 [ 420.351758][T10666] ? __pfx_vfs_write+0x10/0x10 [ 420.351831][T10666] ksys_write+0x12a/0x240 [ 420.351874][T10666] ? __pfx_ksys_write+0x10/0x10 [ 420.351916][T10666] ? rcu_is_watching+0x12/0xc0 [ 420.351973][T10666] do_syscall_64+0xcd/0x260 [ 420.352024][T10666] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 420.352055][T10666] RIP: 0033:0x7f64d5f8d169 [ 420.352078][T10666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 420.352107][T10666] RSP: 002b:00007f64d6ec5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 420.352135][T10666] RAX: ffffffffffffffda RBX: 00007f64d61a5fa0 RCX: 00007f64d5f8d169 [ 420.352156][T10666] RDX: 0000000000010001 RSI: 0000000000000000 RDI: 0000000000000003 [ 420.352174][T10666] RBP: 00007f64d6ec5090 R08: 0000000000000000 R09: 0000000000000000 [ 420.352193][T10666] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 420.352211][T10666] R13: 0000000000000000 R14: 00007f64d61a5fa0 R15: 00007fff3b1c3be8 [ 420.352253][T10666] [ 421.160182][T10677] sctp: Changing rto_alpha or rto_beta may lead to suboptimal rtt/srtt estimations! [ 421.188404][T10677] blktrace: Concurrent blktraces are not allowed on loop5 [ 421.887302][T10689] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1024'. [ 421.953797][T10689] geneve1: entered allmulticast mode [ 422.890806][T10708] FAULT_INJECTION: forcing a failure. [ 422.890806][T10708] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 422.929685][T10708] CPU: 1 UID: 0 PID: 10708 Comm: syz.3.1030 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 422.929729][T10708] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 422.929748][T10708] Call Trace: [ 422.929759][T10708] [ 422.929790][T10708] dump_stack_lvl+0x16c/0x1f0 [ 422.929840][T10708] should_fail_ex+0x512/0x640 [ 422.929880][T10708] _copy_from_user+0x2e/0xd0 [ 422.929921][T10708] blk_trace_setup+0xab/0x1b0 [ 422.929963][T10708] ? __pfx_blk_trace_setup+0x10/0x10 [ 422.930003][T10708] ? __pfx_snprintf+0x10/0x10 [ 422.930083][T10708] blk_trace_ioctl+0x146/0x280 [ 422.930128][T10708] ? __pfx_blk_trace_ioctl+0x10/0x10 [ 422.930177][T10708] ? find_held_lock+0x2b/0x80 [ 422.930216][T10708] ? hook_file_ioctl_common+0x145/0x410 [ 422.930256][T10708] blkdev_ioctl+0x108/0x6d0 [ 422.930307][T10708] ? __pfx_blkdev_ioctl+0x10/0x10 [ 422.930362][T10708] ? __pfx_blkdev_ioctl+0x10/0x10 [ 422.930414][T10708] __x64_sys_ioctl+0x190/0x200 [ 422.930457][T10708] do_syscall_64+0xcd/0x260 [ 422.930507][T10708] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 422.930539][T10708] RIP: 0033:0x7f64d5f8d169 [ 422.930564][T10708] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 422.930594][T10708] RSP: 002b:00007f64d6ec5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 422.930623][T10708] RAX: ffffffffffffffda RBX: 00007f64d61a5fa0 RCX: 00007f64d5f8d169 [ 422.930644][T10708] RDX: 0000000000000000 RSI: 00000000c0481273 RDI: 0000000000000003 [ 422.930662][T10708] RBP: 00007f64d6ec5090 R08: 0000000000000000 R09: 0000000000000000 [ 422.930681][T10708] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 422.930699][T10708] R13: 0000000000000000 R14: 00007f64d61a5fa0 R15: 00007fff3b1c3be8 [ 422.930738][T10708] [ 423.121929][ C1] vkms_vblank_simulate: vblank timer overrun [ 425.093043][T10728] Invalid ELF header magic: != ELF [ 426.821540][ T5855] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 426.833156][ T5855] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 426.843142][ T5855] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 426.859100][ T5855] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 426.867684][ T5855] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 427.576076][T10749] chnl_net:caif_netlink_parms(): no params data found [ 428.644063][T10749] bridge0: port 1(bridge_slave_0) entered blocking state [ 428.663622][T10749] bridge0: port 1(bridge_slave_0) entered disabled state [ 428.678908][T10784] FAULT_INJECTION: forcing a failure. [ 428.678908][T10784] name failslab, interval 1, probability 0, space 0, times 0 [ 428.684810][T10749] bridge_slave_0: entered allmulticast mode [ 428.711490][T10749] bridge_slave_0: entered promiscuous mode [ 428.728223][T10749] bridge0: port 2(bridge_slave_1) entered blocking state [ 428.737936][T10784] CPU: 0 UID: 0 PID: 10784 Comm: syz.0.1048 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 428.737984][T10784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 428.738004][T10784] Call Trace: [ 428.738015][T10784] [ 428.738027][T10784] dump_stack_lvl+0x16c/0x1f0 [ 428.738083][T10784] should_fail_ex+0x512/0x640 [ 428.738121][T10784] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 428.738176][T10784] should_failslab+0xc2/0x120 [ 428.738208][T10784] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 428.738260][T10784] ? alloc_inode+0x61/0x240 [ 428.738296][T10784] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 428.738345][T10784] ? __pfx_rpc_alloc_inode+0x10/0x10 [ 428.738391][T10784] alloc_inode+0x61/0x240 [ 428.738428][T10784] new_inode+0x22/0x1c0 [ 428.738469][T10784] __rpc_create_common+0x57/0x2f0 [ 428.738528][T10784] rpc_populate.constprop.0+0x153/0x5d0 [ 428.738593][T10784] rpc_fill_super+0x2bc/0x840 [ 428.738624][T10784] ? sget_fc+0x808/0xc20 [ 428.738668][T10784] ? __pfx_set_anon_super_fc+0x10/0x10 [ 428.738711][T10784] ? __pfx_rpc_fill_super+0x10/0x10 [ 428.738742][T10784] get_tree_keyed+0x10b/0x1d0 [ 428.738790][T10784] vfs_get_tree+0x8b/0x340 [ 428.738828][T10784] vfs_cmd_create+0xd7/0x2a0 [ 428.738864][T10784] __do_sys_fsconfig+0x7b8/0xbe0 [ 428.738902][T10784] ? __pfx___do_sys_fsconfig+0x10/0x10 [ 428.738937][T10784] ? xfd_validate_state+0x5d/0x180 [ 428.738982][T10784] ? rcu_is_watching+0x12/0xc0 [ 428.739036][T10784] do_syscall_64+0xcd/0x260 [ 428.739088][T10784] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 428.739121][T10784] RIP: 0033:0x7f68f6b8d169 [ 428.739147][T10784] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 428.739180][T10784] RSP: 002b:00007f68f79bb038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af [ 428.739212][T10784] RAX: ffffffffffffffda RBX: 00007f68f6da5fa0 RCX: 00007f68f6b8d169 [ 428.739233][T10784] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000006 [ 428.739252][T10784] RBP: 00007f68f6c0e990 R08: 0000000000000000 R09: 0000000000000000 [ 428.739272][T10784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 428.739290][T10784] R13: 0000000000000000 R14: 00007f68f6da5fa0 R15: 00007fff7aa990a8 [ 428.739331][T10784] [ 428.968134][ T5851] Bluetooth: hci4: command tx timeout [ 428.976427][T10749] bridge0: port 2(bridge_slave_1) entered disabled state [ 428.983866][T10749] bridge_slave_1: entered allmulticast mode [ 428.993273][T10749] bridge_slave_1: entered promiscuous mode [ 429.090199][T10784] net/sunrpc/rpc_pipe.c: __rpc_create_common failed to allocate inode for dentry nfsd [ 429.112381][T10784] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory / [ 429.635171][T10749] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 429.782852][T10749] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 429.859907][T10793] FAULT_INJECTION: forcing a failure. [ 429.859907][T10793] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 429.877290][T10793] CPU: 0 UID: 0 PID: 10793 Comm: syz.3.1051 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 429.877332][T10793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 429.877350][T10793] Call Trace: [ 429.877361][T10793] [ 429.877373][T10793] dump_stack_lvl+0x16c/0x1f0 [ 429.877425][T10793] should_fail_ex+0x512/0x640 [ 429.877467][T10793] _copy_from_user+0x2e/0xd0 [ 429.877509][T10793] blk_trace_setup+0xab/0x1b0 [ 429.877552][T10793] ? __pfx_blk_trace_setup+0x10/0x10 [ 429.877594][T10793] ? __pfx_snprintf+0x10/0x10 [ 429.877658][T10793] blk_trace_ioctl+0x146/0x280 [ 429.877702][T10793] ? __pfx_blk_trace_ioctl+0x10/0x10 [ 429.877753][T10793] ? find_held_lock+0x2b/0x80 [ 429.877792][T10793] ? hook_file_ioctl_common+0x145/0x410 [ 429.877833][T10793] blkdev_ioctl+0x108/0x6d0 [ 429.877883][T10793] ? __pfx_blkdev_ioctl+0x10/0x10 [ 429.877939][T10793] ? __pfx_blkdev_ioctl+0x10/0x10 [ 429.877992][T10793] __x64_sys_ioctl+0x190/0x200 [ 429.878034][T10793] do_syscall_64+0xcd/0x260 [ 429.878085][T10793] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 429.878117][T10793] RIP: 0033:0x7f64d5f8d169 [ 429.878143][T10793] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 429.878174][T10793] RSP: 002b:00007f64d6ec5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 429.878202][T10793] RAX: ffffffffffffffda RBX: 00007f64d61a5fa0 RCX: 00007f64d5f8d169 [ 429.878222][T10793] RDX: 0000200000001040 RSI: 00000000c0481273 RDI: 0000000000000004 [ 429.878241][T10793] RBP: 00007f64d6ec5090 R08: 0000000000000000 R09: 0000000000000000 [ 429.878267][T10793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 429.878285][T10793] R13: 0000000000000000 R14: 00007f64d61a5fa0 R15: 00007fff3b1c3be8 [ 429.878325][T10793] [ 430.427413][T10749] team0: Port device team_slave_0 added [ 430.523195][T10749] team0: Port device team_slave_1 added [ 430.706440][T10749] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 430.719483][T10749] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 430.779556][T10749] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 430.794470][T10749] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 430.837471][T10749] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 430.863507][ C1] vkms_vblank_simulate: vblank timer overrun [ 430.913855][T10749] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 431.030099][ T5851] Bluetooth: hci4: command tx timeout [ 431.680233][T10749] hsr_slave_0: entered promiscuous mode [ 431.713743][T10749] hsr_slave_1: entered promiscuous mode [ 431.733888][T10749] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 431.767166][T10749] Cannot create hsr debugfs directory [ 432.855409][T10749] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 432.903517][T10749] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 432.946596][T10749] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 433.096125][T10749] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 433.109548][ T5851] Bluetooth: hci4: command tx timeout [ 433.486742][T10749] 8021q: adding VLAN 0 to HW filter on device bond0 [ 433.606435][T10749] 8021q: adding VLAN 0 to HW filter on device team0 [ 434.066425][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 434.073660][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 434.181327][ T62] bridge0: port 2(bridge_slave_1) entered blocking state [ 434.188622][ T62] bridge0: port 2(bridge_slave_1) entered forwarding state [ 434.664012][T10855] netlink: set zone limit has 8 unknown bytes [ 435.056368][T10749] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 435.190030][ T5851] Bluetooth: hci4: command tx timeout [ 436.428146][T10749] veth0_vlan: entered promiscuous mode [ 436.466738][T10749] veth1_vlan: entered promiscuous mode [ 436.592351][T10749] veth0_macvtap: entered promiscuous mode [ 436.635146][T10749] veth1_macvtap: entered promiscuous mode [ 436.709059][T10749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 436.763178][T10749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 436.809488][T10749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 436.860636][T10749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 436.939370][T10749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 436.986795][T10749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 436.996953][T10749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 437.007688][T10749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 437.051319][T10749] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 437.119535][T10920] FAULT_INJECTION: forcing a failure. [ 437.119535][T10920] name failslab, interval 1, probability 0, space 0, times 0 [ 437.191956][T10749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 437.211905][T10749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 437.223017][T10749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 437.237105][T10749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 437.248084][T10749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 437.263195][T10749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 437.273217][T10749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 437.289083][T10749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 437.301281][T10749] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 437.324844][T10749] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 437.334737][T10749] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 437.344898][T10749] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 437.400010][T10749] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 437.437514][T10920] CPU: 1 UID: 0 PID: 10920 Comm: syz.0.1075 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 437.437557][T10920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 437.437574][T10920] Call Trace: [ 437.437584][T10920] [ 437.437596][T10920] dump_stack_lvl+0x16c/0x1f0 [ 437.437647][T10920] should_fail_ex+0x512/0x640 [ 437.437681][T10920] ? __kmalloc_noprof+0xbf/0x510 [ 437.437742][T10920] ? lsm_blob_alloc+0x68/0x90 [ 437.437787][T10920] should_failslab+0xc2/0x120 [ 437.437816][T10920] __kmalloc_noprof+0xd2/0x510 [ 437.437871][T10920] lsm_blob_alloc+0x68/0x90 [ 437.437936][T10920] security_prepare_creds+0x30/0x270 [ 437.437984][T10920] prepare_creds+0x56f/0x7d0 [ 437.438022][T10920] copy_creds+0xa7/0xa50 [ 437.438062][T10920] copy_process+0x10b1/0x91a0 [ 437.438107][T10920] ? _kstrtoull+0x145/0x200 [ 437.438155][T10920] ? __pfx__kstrtoull+0x10/0x10 [ 437.438224][T10920] ? __pfx_copy_process+0x10/0x10 [ 437.438295][T10920] ? find_held_lock+0x2b/0x80 [ 437.438352][T10920] kernel_clone+0xfc/0x960 [ 437.438400][T10920] ? __pfx_kernel_clone+0x10/0x10 [ 437.438460][T10920] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 437.438524][T10920] __do_sys_clone+0xce/0x120 [ 437.438569][T10920] ? __pfx___do_sys_clone+0x10/0x10 [ 437.438648][T10920] ? ksys_write+0x1b9/0x240 [ 437.438692][T10920] ? __pfx_ksys_write+0x10/0x10 [ 437.438734][T10920] ? xfd_validate_state+0x5d/0x180 [ 437.438782][T10920] do_syscall_64+0xcd/0x260 [ 437.438834][T10920] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 437.438866][T10920] RIP: 0033:0x7f68f6b8d169 [ 437.438892][T10920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 437.438923][T10920] RSP: 002b:00007f68f7958038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 437.438952][T10920] RAX: ffffffffffffffda RBX: 00007f68f6da6240 RCX: 00007f68f6b8d169 [ 437.438972][T10920] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 00000000000006db [ 437.438990][T10920] RBP: 00007f68f7958090 R08: 0000000000000007 R09: 0000000000000000 [ 437.439008][T10920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 437.439026][T10920] R13: 0000000000000001 R14: 00007f68f6da6240 R15: 00007fff7aa990a8 [ 437.439065][T10920] [ 437.862818][T10929] ubi0: attaching mtd0 [ 437.906427][T10929] ubi0: scanning is finished [ 437.950467][T10929] ubi0: empty MTD device detected [ 437.955624][T10929] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 437.976985][T10872] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 437.994942][T10872] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 438.167199][ T1146] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 438.177698][ T1146] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 438.316967][T10935] Invalid ELF header magic: != ELF [ 438.354602][T10929] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 438.370361][T10930] Invalid ELF header magic: != ELF [ 441.002965][T10977] ubi0: attaching mtd0 [ 441.009116][T10977] ubi0: scanning is finished [ 441.039403][T10977] ubi0: empty MTD device detected [ 441.044552][T10977] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 441.209430][T10979] Invalid ELF header magic: != ELF [ 441.353380][T10979] Invalid ELF header magic: != ELF [ 441.370826][T10977] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 443.723271][T11022] : Can't lookup blockdev [ 443.949034][T11028] ubi0: attaching mtd0 [ 443.972991][T11028] ubi0: scanning is finished [ 444.004109][T11028] ubi0: empty MTD device detected [ 444.009255][T11028] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 444.196148][T10528] ------------[ cut here ]------------ [ 444.201705][T10528] ODEBUG: free active (active state 0) object: ffff88807c07d248 object type: timer_list hint: hci_devcd_timeout+0x0/0x2e0 [ 444.227578][T11031] Invalid ELF header magic: != ELF [ 444.264380][T10528] WARNING: CPU: 0 PID: 10528 at lib/debugobjects.c:612 debug_print_object+0x1a2/0x2b0 [ 444.274423][T10528] Modules linked in: [ 444.278368][T10528] CPU: 0 UID: 0 PID: 10528 Comm: syz.2.977 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 444.290668][T10528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 444.300829][T10528] RIP: 0010:debug_print_object+0x1a2/0x2b0 [ 444.306695][T10528] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd e0 61 f4 8b 4c 89 e6 48 c7 c7 60 56 f4 8b e8 ff 19 a8 fc 90 <0f> 0b 90 90 58 83 05 36 fb b3 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d [ 444.326568][T10528] RSP: 0018:ffffc9001a3af768 EFLAGS: 00010286 [ 444.332749][T10528] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817acff8 [ 444.340801][T10528] RDX: ffff888030929e00 RSI: ffffffff817ad005 RDI: 0000000000000001 [ 444.349860][T10528] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000 [ 444.357885][T10528] R10: 0000000000000001 R11: 0000000000000001 R12: ffffffff8bf45d00 [ 444.366631][T10528] R13: ffffffff8b8fc8c0 R14: ffffffff8a783040 R15: ffffc9001a3af868 [ 444.374978][T10528] FS: 0000000000000000(0000) GS:ffff8881249b7000(0000) knlGS:0000000000000000 [ 444.384251][T10528] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 444.386732][T11031] Invalid ELF header magic: != ELF [ 444.390930][T10528] CR2: 00007f68f78d56c0 CR3: 0000000012de8000 CR4: 00000000003526f0 [ 444.390956][T10528] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 444.390984][T10528] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 444.391006][T10528] Call Trace: [ 444.391018][T10528] [ 444.391030][T10528] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 444.391084][T10528] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 444.391135][T10528] debug_check_no_obj_freed+0x4b7/0x600 [ 444.391198][T10528] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 444.391248][T10528] ? rcu_is_watching+0x12/0xc0 [ 444.391299][T10528] ? kmem_cache_free+0x2d4/0x4d0 [ 444.461865][T10528] kfree+0x291/0x4d0 [ 444.465820][T10528] ? hci_release_dev+0x4d8/0x600 [ 444.470860][T10528] hci_release_dev+0x4d8/0x600 [ 444.476038][T10528] ? __pfx_hci_release_dev+0x10/0x10 [ 444.481626][T10528] ? rcu_is_watching+0x12/0xc0 [ 444.486447][T10528] ? kfree+0x252/0x4d0 [ 444.490763][T10528] bt_host_release+0x6a/0xb0 [ 444.495407][T10528] ? __pfx_bt_host_release+0x10/0x10 [ 444.501308][T10528] device_release+0xa1/0x240 [ 444.505950][T10528] kobject_put+0x1e4/0x5a0 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 444.510942][T10528] ? __pfx_vhci_release+0x10/0x10 [ 444.516042][T10528] put_device+0x1f/0x30 [ 444.522725][T10528] vhci_release+0x81/0xf0 [ 444.527134][T10528] __fput+0x3ff/0xb70 [ 444.531796][T10528] task_work_run+0x14d/0x240 [ 444.536455][T10528] ? __pfx_task_work_run+0x10/0x10 [ 444.542054][T10528] do_exit+0xafb/0x2c30 [ 444.546277][T10528] ? __pfx___might_resched+0x10/0x10 [ 444.552711][T10528] ? __pfx_do_exit+0x10/0x10 [ 444.557376][T10528] ? do_raw_spin_lock+0x12c/0x2b0 [ 444.562910][T10528] ? find_held_lock+0x2b/0x80 [ 444.567665][T10528] do_group_exit+0xd3/0x2a0 [ 444.572261][T10528] get_signal+0x2673/0x26d0 [ 444.577100][T10528] ? mmput+0x62/0x70 [ 444.581334][T10528] ? __pfx_get_signal+0x10/0x10 [ 444.586342][T10528] ? __pfx_do_futex+0x10/0x10 [ 444.591130][T10528] arch_do_signal_or_restart+0x8f/0x7d0 [ 444.596748][T10528] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 444.603073][T10528] ? rcu_is_watching+0x12/0xc0 [ 444.607909][T10528] syscall_exit_to_user_mode+0x150/0x2a0 [ 444.613711][T10528] do_syscall_64+0xda/0x260 [ 444.618292][T10528] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 444.624373][T10528] RIP: 0033:0x7f3b1118d169 [ 444.628833][T10528] Code: Unable to access opcode bytes at 0x7f3b1118d13f. [ 444.636838][T10528] RSP: 002b:00007f3b11ff7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000117 [ 444.645361][T10528] RAX: fffffffffffffff2 RBX: 00007f3b113a5fa0 RCX: 00007f3b1118d169 [ 444.654392][T10528] RDX: 0000000000000000 RSI: 0002000000000003 RDI: 0000000000000001 [ 444.662985][T10528] RBP: 00007f3b1120e990 R08: 0000000000000000 R09: 8000400000000000 [ 444.671184][T10528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 444.679486][T10528] R13: 0000000000000000 R14: 00007f3b113a5fa0 R15: 00007ffd5176c458 [ 444.687625][T10528] [ 444.691010][T10528] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 444.698333][T10528] CPU: 0 UID: 0 PID: 10528 Comm: syz.2.977 Not tainted 6.15.0-rc2-syzkaller-00037-g834a4a689699 #0 PREEMPT(full) [ 444.710367][T10528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 444.720462][T10528] Call Trace: [ 444.723771][T10528] [ 444.726732][T10528] dump_stack_lvl+0x3d/0x1f0 [ 444.731394][T10528] panic+0x71c/0x800 [ 444.735329][T10528] ? __pfx_panic+0x10/0x10 [ 444.739773][T10528] ? show_trace_log_lvl+0x29b/0x3e0 [ 444.745015][T10528] ? check_panic_on_warn+0x1f/0xb0 [ 444.750421][T10528] ? debug_print_object+0x1a2/0x2b0 [ 444.755655][T10528] check_panic_on_warn+0xab/0xb0 [ 444.760620][T10528] __warn+0xf6/0x3c0 [ 444.764553][T10528] ? debug_print_object+0x1a2/0x2b0 [ 444.769792][T10528] report_bug+0x3c3/0x580 [ 444.774158][T10528] ? debug_print_object+0x1a2/0x2b0 [ 444.779392][T10528] handle_bug+0x184/0x210 [ 444.783750][T10528] exc_invalid_op+0x17/0x50 [ 444.788362][T10528] asm_exc_invalid_op+0x1a/0x20 [ 444.793236][T10528] RIP: 0010:debug_print_object+0x1a2/0x2b0 [ 444.799083][T10528] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd e0 61 f4 8b 4c 89 e6 48 c7 c7 60 56 f4 8b e8 ff 19 a8 fc 90 <0f> 0b 90 90 58 83 05 36 fb b3 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d [ 444.818717][T10528] RSP: 0018:ffffc9001a3af768 EFLAGS: 00010286 [ 444.824807][T10528] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817acff8 [ 444.832796][T10528] RDX: ffff888030929e00 RSI: ffffffff817ad005 RDI: 0000000000000001 [ 444.841058][T10528] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000 [ 444.849052][T10528] R10: 0000000000000001 R11: 0000000000000001 R12: ffffffff8bf45d00 [ 444.857054][T10528] R13: ffffffff8b8fc8c0 R14: ffffffff8a783040 R15: ffffc9001a3af868 [ 444.865056][T10528] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 444.870564][T10528] ? __warn_printk+0x198/0x350 [ 444.875350][T10528] ? __warn_printk+0x1a5/0x350 [ 444.880163][T10528] ? debug_print_object+0x1a1/0x2b0 [ 444.885399][T10528] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 444.890898][T10528] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 444.896745][T10528] debug_check_no_obj_freed+0x4b7/0x600 [ 444.902339][T10528] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 444.908441][T10528] ? rcu_is_watching+0x12/0xc0 [ 444.913243][T10528] ? kmem_cache_free+0x2d4/0x4d0 [ 444.918221][T10528] kfree+0x291/0x4d0 [ 444.922181][T10528] ? hci_release_dev+0x4d8/0x600 [ 444.927146][T10528] hci_release_dev+0x4d8/0x600 [ 444.931938][T10528] ? __pfx_hci_release_dev+0x10/0x10 [ 444.937268][T10528] ? rcu_is_watching+0x12/0xc0 [ 444.942069][T10528] ? kfree+0x252/0x4d0 [ 444.946170][T10528] bt_host_release+0x6a/0xb0 [ 444.950795][T10528] ? __pfx_bt_host_release+0x10/0x10 [ 444.956112][T10528] device_release+0xa1/0x240 [ 444.960731][T10528] kobject_put+0x1e4/0x5a0 [ 444.965189][T10528] ? __pfx_vhci_release+0x10/0x10 [ 444.970274][T10528] put_device+0x1f/0x30 [ 444.974457][T10528] vhci_release+0x81/0xf0 [ 444.978825][T10528] __fput+0x3ff/0xb70 [ 444.982860][T10528] task_work_run+0x14d/0x240 [ 444.987509][T10528] ? __pfx_task_work_run+0x10/0x10 [ 444.992660][T10528] do_exit+0xafb/0x2c30 [ 444.996851][T10528] ? __pfx___might_resched+0x10/0x10 [ 445.002171][T10528] ? __pfx_do_exit+0x10/0x10 [ 445.006799][T10528] ? do_raw_spin_lock+0x12c/0x2b0 [ 445.011850][T10528] ? find_held_lock+0x2b/0x80 [ 445.016561][T10528] do_group_exit+0xd3/0x2a0 [ 445.021085][T10528] get_signal+0x2673/0x26d0 [ 445.025627][T10528] ? mmput+0x62/0x70 [ 445.029555][T10528] ? __pfx_get_signal+0x10/0x10 [ 445.034526][T10528] ? __pfx_do_futex+0x10/0x10 [ 445.039240][T10528] arch_do_signal_or_restart+0x8f/0x7d0 [ 445.044826][T10528] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 445.051204][T10528] ? rcu_is_watching+0x12/0xc0 [ 445.056010][T10528] syscall_exit_to_user_mode+0x150/0x2a0 [ 445.061696][T10528] do_syscall_64+0xda/0x260 [ 445.066246][T10528] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 445.072163][T10528] RIP: 0033:0x7f3b1118d169 [ 445.076599][T10528] Code: Unable to access opcode bytes at 0x7f3b1118d13f. [ 445.083652][T10528] RSP: 002b:00007f3b11ff7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000117 [ 445.092093][T10528] RAX: fffffffffffffff2 RBX: 00007f3b113a5fa0 RCX: 00007f3b1118d169 [ 445.100086][T10528] RDX: 0000000000000000 RSI: 0002000000000003 RDI: 0000000000000001 [ 445.108076][T10528] RBP: 00007f3b1120e990 R08: 0000000000000000 R09: 8000400000000000 [ 445.116067][T10528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 445.124165][T10528] R13: 0000000000000000 R14: 00007f3b113a5fa0 R15: 00007ffd5176c458 [ 445.132170][T10528] [ 445.135553][T10528] Kernel Offset: disabled [ 445.139900][T10528] Rebooting in 86400 seconds..