last executing test programs: 8m40.250009158s ago: executing program 0 (id=359): mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) r0 = socket(0xa, 0x4, 0x84) close_range$auto(0x0, 0x5, 0x0) r1 = io_uring_setup$auto(0x1, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000002c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(r0, 0xc040aed4, r2) close_range$auto(0x2, 0xa, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), r1) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB=' \x00', @ANYRES16=r5, @ANYBLOB="13002ebd7000fbdbdf250a00000008000300", @ANYRES32=r7], 0x20}, 0x1, 0x0, 0x0, 0x4c0d4}, 0x20040894) sendmsg$auto_ETHTOOL_MSG_PHY_GET(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="3c00000080ff", @ANYRES16=r4, @ANYBLOB="000129bd7000fbdbdf252d00000028000180140002006e657464657673696d30000000000000080003000100000008000100", @ANYRES32=r7, @ANYBLOB], 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x10) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) mbind$auto(0x9, 0x84, 0x4, 0x0, 0x80000000, 0x7f) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) shutdown$auto(0x200000003, 0x2) mlockall$auto(0x7) modify_ldt$auto(0x1, 0x0, 0x10) r8 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) read$auto(r8, 0x0, 0x3) 8m38.952445968s ago: executing program 0 (id=362): r0 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000080), 0xffffffffffffffff) r1 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0) mq_notify$auto(r1, &(0x7f0000000180)={@sival_ptr=0x0, @raw=0x1, 0x1, @_sigev_thread={0x0, 0x0}}) read$auto_proc_page_owner_operations_page_owner(r1, 0x0, 0x0) r2 = setfsuid$auto(0xee00) setresuid$auto(r2, 0x0, r2) ioctl$auto_XFS_IOC_ALLOCSP64(0xffffffffffffffff, 0x40305824, &(0x7f00000000c0)={0x7, 0x4080, 0xe985, 0x4, 0xc, 0x0}) r4 = getpgrp(0xffffffffffffffff) bpf$auto_BPF_LINK_CREATE(0x1c, &(0x7f0000000100)=@task_fd_query={0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0x9, 0x2, 0x2, 0xffffffffffffffff, 0x1000, 0x8000000000000000}, 0x0) r6 = getuid() sendmsg$auto_TIPC_NL_KEY_SET(0xffffffffffffffff, &(0x7f0000001ac0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000001c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="cc160000", @ANYRES16=r0, @ANYBLOB="02002abd7000fedbdf2517000000e011088008003500", @ANYRES32, @ANYBLOB="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", @ANYRES32=r3, @ANYBLOB="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", @ANYRES32=0xee00, @ANYBLOB="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", @ANYRES32, @ANYBLOB="00e40001800400e600da00c6800c0033000180000000000000f656221d8cb73b1e067335300b2927ddc7075dd9d0e1c90233ce825df787ad2a0aab6d7daa0e7d3a0c5feeafd58f2379910911d454dd96c8108b3e27dbd7e8d2da91574138904bad46557d43384e376c24d0322ed5e2a7b8d0ef624f0a4c4f4be4bd2ee42b75f6004307663ac5a699630c78f684b7a0e0c5275345f643e6cb53f490d4ff13eabdeb18d7d27a04659584fc898f89826f1b7cf76905b49698711daf7bef42da1b0a7d551b9a241b7a1a75bd5f5ae4113f688c42a32fdfa453aa1ef783048689279be734e20000c400028008003200", @ANYRES32=r4, @ANYBLOB="a100938015df0e8590a2a64c52cf499cfb93d41a585dff010000000000f233b9b2f8779eed14d7b91182043866c54b64b82a0000000000ae4654515cd0905382a7374cb45e062f79f0922f18c5a6f182853a1c804dafe1f39bd62ff29f3d51e30855997c628afebe3dfba6b3d8bbf2f9b6bcddad4fd5d224f98c73eafa3031ef2cd5fddee6840b41e88fe8fe5c618a225ffb08002e0000000000000000", @ANYRES32=r5, @ANYBLOB='\b\x00O\x00', @ANYRES32=r6, @ANYBLOB="04003b8008001c0004000000000000"], 0x16cc}, 0x1, 0x0, 0x0, 0x2000c044}, 0x8044) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x15, 0x5, 0x0) io_uring_setup$auto(0x7, 0x0) clone$auto(0x1ff00, 0x0, 0x0, 0x0, 0x9) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x22d02, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7ffffffc, 0x8, 0x3000, 0x6, 0x7, 0x0, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x80, 0x104, 0x6, 0xffffffffffff7cfb}, {0x100, 0x1, 0x101, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}}) r8 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x60100, 0x0) read$auto_vhci_fops_hci_vhci(r8, &(0x7f0000000d40)=""/16, 0x10) mmap$auto(0x0, 0x8000000000020006, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) unshare$auto(0x40000080) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) fsconfig$auto_SHMEM_HUGE_WITHIN_SIZE(r7, 0xffffffff, &(0x7f0000000040)='\x00', &(0x7f0000000100)="3d70aa42ea72d62d7d2fe39f29603dff8f97c1b1b50e7e992be3959f9d7ee99631dcfa2436c0c16d6b7ce4ee4ec8cf2014a1b7042667e1556a1e592d73cb9181caa36be823fa68b77e63ca01d8a165e47bc42917", 0x2) execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/swradio12\x00', 0x0, 0x0) ioctl$auto_CEC_ADAP_S_LOG_ADDRS(0xffffffffffffffff, 0xc05c6104, &(0x7f0000000100)={"fda256c4", 0xffff, 0x6, 0x4, 0x9b4, 0x9, "0800aafc241cd010c7543bfbca2ce1", "00ff00", "01000002", "2ff43123", ['\x00', "f8ffffffffffffff00000001", "0004154db00b0004000400", "5fe10eedab2c4b353c392a92"]}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0) 8m37.49820797s ago: executing program 0 (id=369): openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_nlbl_unlbl(0x0, r1) sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r1, 0x0, 0x40040) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r2 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(r2, 0xc0603d06, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000023, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) ioctl$auto(r1, 0x57, r0) openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0) close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x801, 0x84) setsockopt$auto(0x3, 0x10000000084, 0x85, 0x0, 0x90) fsopen$auto(0x0, 0x1) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cec18\x00', 0x900, 0x0) prctl$auto(0x1000000001c, 0x5, 0x0, 0x400000000009, 0x101) setreuid$auto(0x0, 0x5) fcntl$auto(0xffffffffffffffff, 0x400, 0x1) 8m36.190684169s ago: executing program 0 (id=373): io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7ffffffc, 0xd, 0x3000, 0x200006, 0x7, 0xa357, 0xffffffffffffffff, [0x7], {0x6, 0x6, 0x8c48, 0x29b, 0x9, 0x7f, 0x104, 0x6, 0x3}, {0xfc, 0x1, 0x2052, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}}) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/pcm0p/oss\x00', 0xaa102, 0x0) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82040, 0x0) ioperm$auto(0x7, 0x800, 0x0) modify_ldt$auto(0x1, 0x0, 0x10) pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) socketpair$auto(0x1f, 0x5, 0x8000000000000000, 0x0) open(0x0, 0x22240, 0x155) socket(0x2, 0x1, 0x0) getsockopt$auto(0x3, 0x6, 0x1, 0x0, 0x0) r0 = socket(0x2, 0x1, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x7, 0x0, 0x0, 0x0, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0x0, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0xa, 0xd, 0x1, 0x948d, 0x6, 0x15f4da0a, 0x3, 0x3, 0x33c, 0x8000001d, 0x20000007, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) ioctl$auto(r0, 0x400454cb, 0x5) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x202, 0x0) sendfile$auto(r2, r2, 0x0, 0x0) mmap$auto(0xc, 0x20009, 0x5, 0x14, r2, 0x4) unshare$auto(0x40000080) mmap$auto(0x7, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x763, 0xffffffffffff0004, 0x19) madvise$auto(0x0, 0x200007, 0x19) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x50b41, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) close_range$auto(0x0, 0xfffffffffffff000, 0x0) 8m34.031951474s ago: executing program 0 (id=379): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff) r0 = openat$auto_virtual_ncidev_fops_virtual_ncidev(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0xecc6, 0x0, 0x7352, 0x2d, 0x200000000045f, 0x6, 0x7, 0x3, 0x2, 0x9, 0x36e, 0x6, 0x2, 0x3000, 0x9, 0x8, 0x10003, 0x80, 0x1, 0x0, 0x5, 0x1ffb, 0x203, 0x400, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x100000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xfffffffffffffff3]}, 0x9, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYRESDEC=r0], 0x1ac}}, 0x40000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r1 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) memfd_create$auto(&(0x7f00000002c0)='IPVS\x00', 0x7) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x6) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) request_key$auto(0x0, 0x0, 0x0, 0x9) getsockopt$auto(0x7, 0x29, 0x41, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, 0x0, 0x10003, 0x0) read$auto_mISDN_fops_timerdev(r2, 0x0, 0x0) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) prctl$auto(0x10000000024, 0x2, 0x2008, 0x4000000c, 0x80001) io_uring_setup$auto(0x2, 0x0) close_range$auto(0x2, 0x8000, 0x0) r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) ioctl$auto_USBDEVFS_CONTROL(r3, 0xc0185500, &(0x7f0000001040)={0x80, 0x6, 0x302, 0xe8, 0x7, 0x6, &(0x7f0000000040)}) madvise$auto(0x0, 0x200007, 0x19) 8m33.523164379s ago: executing program 0 (id=381): mmap$auto(0x2, 0x80000000, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) socket(0xa, 0x3, 0x3b) ustat$auto(0x801, 0x0) r0 = socket(0x2, 0x1, 0x0) setsockopt$auto_SO_LINGER(r0, 0x6, 0xd, &(0x7f0000000000)='/dev/input/event0\x00', 0x10001) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = socket(0x2, 0x2, 0x0) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1, 0xb}, 0x800009}, 0x5, 0x20000000) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0xa) read$auto(0x3, 0x0, 0x80) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = socket(0x2000000000000021, 0x2, 0x10000000000002) setsockopt$auto(r2, 0x110, 0x4, 0x0, 0x4) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/dummy_hcd.7/usb8/ltm_capable\x00', 0x181800, 0x0) pread64$auto(r3, 0x0, 0xedd, 0x4) inotify_add_watch$auto(r3, &(0x7f00000002c0)='./file0\x00', 0x5) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x0, 0x0) ioctl$auto_SNDCTL_DSP_SETSYNCRO(r4, 0x5015, 0x0) ioctl$auto_OSS_GETVERSION2(r4, 0x80044d76, &(0x7f0000000080)="bdf609c672ff9c806345801ffd7a5ec74b053e936c64fb139db569d5716741159e05f3ce3dda964b156e8cdb8721a3408ad980aab1d147579d0703fcbd78bdaa2a81e2630890b48c58bda184517d50f5de8c6af0c6a287da027a3cd5135fef5a1b57e231b0931c0baebf5dd7f63b42cab64e2ae306993c09cee3446ff7fa181a2edb141fa04a2207dd554839cb8c26bcbe18bc873ca9986599ae1b55fc7b1326eda6ac29f9f8ad59a858f2b67b34923d33467f2ffa720202dcf0c2af5efe6bf35f1643d909fba6775f2300a85b45729d3c085eca552b3eff29b5") ioctl$auto_SOUND_MIXER_WRITE_RECSRC2(r4, 0xc0044dff, &(0x7f0000000040)="83f613e951d15d836808") openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto(0x3, 0x400454ca, 0x38) capset$auto(0x0, 0x0) write$auto(0x3, 0x0, 0xfdef) 8m18.398861938s ago: executing program 32 (id=381): mmap$auto(0x2, 0x80000000, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) socket(0xa, 0x3, 0x3b) ustat$auto(0x801, 0x0) r0 = socket(0x2, 0x1, 0x0) setsockopt$auto_SO_LINGER(r0, 0x6, 0xd, &(0x7f0000000000)='/dev/input/event0\x00', 0x10001) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = socket(0x2, 0x2, 0x0) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1, 0xb}, 0x800009}, 0x5, 0x20000000) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0xa) read$auto(0x3, 0x0, 0x80) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = socket(0x2000000000000021, 0x2, 0x10000000000002) setsockopt$auto(r2, 0x110, 0x4, 0x0, 0x4) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/dummy_hcd.7/usb8/ltm_capable\x00', 0x181800, 0x0) pread64$auto(r3, 0x0, 0xedd, 0x4) inotify_add_watch$auto(r3, &(0x7f00000002c0)='./file0\x00', 0x5) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x0, 0x0) ioctl$auto_SNDCTL_DSP_SETSYNCRO(r4, 0x5015, 0x0) ioctl$auto_OSS_GETVERSION2(r4, 0x80044d76, &(0x7f0000000080)="bdf609c672ff9c806345801ffd7a5ec74b053e936c64fb139db569d5716741159e05f3ce3dda964b156e8cdb8721a3408ad980aab1d147579d0703fcbd78bdaa2a81e2630890b48c58bda184517d50f5de8c6af0c6a287da027a3cd5135fef5a1b57e231b0931c0baebf5dd7f63b42cab64e2ae306993c09cee3446ff7fa181a2edb141fa04a2207dd554839cb8c26bcbe18bc873ca9986599ae1b55fc7b1326eda6ac29f9f8ad59a858f2b67b34923d33467f2ffa720202dcf0c2af5efe6bf35f1643d909fba6775f2300a85b45729d3c085eca552b3eff29b5") ioctl$auto_SOUND_MIXER_WRITE_RECSRC2(r4, 0xc0044dff, &(0x7f0000000040)="83f613e951d15d836808") openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto(0x3, 0x400454ca, 0x38) capset$auto(0x0, 0x0) write$auto(0x3, 0x0, 0xfdef) 7.999218519s ago: executing program 2 (id=2218): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x40080, 0x0) ioctl$auto_UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000400)={{0x5, 0x22, 0x8672, 0x80}, "66ac010005000000000068d590eb0d4a4cada7272464294b9183349eef4c1f028fdcc8ecc66fdd02316f064ebd81dcdbd3b2683e95b822f66eb624ad63110d61771552c03de65800"}) ioctl$auto_UI_DEV_CREATE(r0, 0x5501, 0x0) io_uring_setup$auto(0x401, 0x0) read$auto(0x3, 0x0, 0x1a) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume\x00', 0x189002, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) adjtimex$auto(&(0x7f00000005c0)={0xf332b6e, 0x0, 0x0, 0x8, 0xd4, 0x7, 0x9, 0x0, 0x10001, 0xfffffffffffffffe, 0x2, {0x8, 0x10000}, 0x2dd, 0x6, 0xfffffffffffffffd, 0x203, 0x0, 0x80000001, 0x83, 0xffffffffffff628e, 0x8, 0x0, 0x1800}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x2, 0x0) clock_adjtime$auto(0xb, &(0x7f00000000c0)={0xfffffff9, 0x0, 0x0, 0xc, 0x8001, 0x1, 0x5, 0x0, 0xef08, 0x3, 0x9, {0x0, 0xe6}, 0x9406, 0x3, 0x6, 0x4, 0x0, 0x1ff, 0x1, 0x2, 0x40, 0xa5dd, 0xfffffffd}) read$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffffff, 0x0, 0xffffffffffffff86) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x12, 0x0, 0x3, 0x0, 0x23, 0xb}, 0x800009}, 0x5, 0x20000000) mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000) ioctl$auto(0x3, 0x894b, 0x38) semget$auto(0x0, 0x13c, 0x1ff) semtimedop$auto(0x0, &(0x7f00000000c0)={0xa, 0x81, 0x70}, 0x1f4, 0x0) semtimedop$auto(0x0, &(0x7f0000000000)={0x7, 0x8000, 0x36ec}, 0x1, 0x0) semctl$auto(0x0, 0x9, 0x0, 0x2) move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) 7.181340341s ago: executing program 4 (id=2230): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x163340, 0x6a) socket(0x2, 0x80802, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x4, @multicast2}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) (fail_nth: 26) io_uring_setup$auto(0x9e6, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f00000002c0), 0xffffffffffffffff) 6.583240637s ago: executing program 2 (id=2223): socket$nl_generic(0x10, 0x3, 0x10) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7fff) ioctl$auto(0xffffffffffffffff, 0x4008550d, 0xffffffffffffffff) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-9/xps_rxqs\x00', 0x1a1842, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) munmap$auto(0xfffffffffffff34b, 0x8592) mkdir$auto(0x0, 0x9) socket(0x25, 0x805, 0x3) mmap$auto(0x0, 0x20009, 0x9c2e, 0xeb1, 0xffffffffffffffff, 0x0) r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC0D0p\x00', 0x0, 0x0) ioctl$auto_PPPIOCSPASS(r3, 0x40107447, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv6/conf/netdevsim3/disable_ipv6\x00', 0x8b42, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x3, 0x3, 0xeb1, 0x7, 0x8000) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x4, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0xe0, 0x968b, 0x100, 0x15f4da07, 0x3, 0x3, 0x200000000fff, 0x8002001f, 0x1, 0x80080000002, 0x7, 0x2, 0x8]}, 0x0) shutdown$auto(0x200000003, 0x2) write$auto(r0, &(0x7f0000000000)=',\x00d1L\xff\x15\xba\xa17=(\xc1\xf8\xff\xff\v\xb5^\xa1/[', 0x8) 5.102877463s ago: executing program 2 (id=2231): mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) r0 = socket(0xa, 0x4, 0x84) close_range$auto(0x0, 0x5, 0x0) r1 = io_uring_setup$auto(0x1, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000002c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(r0, 0xc040aed4, r2) close_range$auto(0x2, 0xa, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), r1) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="13002ebd7000fbdbdf250a00000008000300", @ANYRES32=r6], 0x20}, 0x1, 0x0, 0x0, 0x4c0d4}, 0x20040894) sendmsg$auto_ETHTOOL_MSG_PHY_GET(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="3c00000080ff", @ANYBLOB="000129bd7000fbdbdf252d00000028000180140002006e657464657673696d30000000000000080003000100", @ANYRES32=r6, @ANYBLOB], 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x10) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) mbind$auto(0x9, 0x84, 0x4, 0x0, 0x80000000, 0x7f) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) shutdown$auto(0x200000003, 0x2) mlockall$auto(0x7) modify_ldt$auto(0x1, 0x0, 0x10) r7 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) read$auto(r7, 0x0, 0x3) 3.987928388s ago: executing program 3 (id=2235): openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x129800, 0x0) r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002340)='/dev/binderfs/binder0\x00', 0x0, 0x0) ioctl$auto_BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000002380)) sendmsg$auto_IOAM6_CMD_ADD_NAMESPACE(0xffffffffffffffff, &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc4}, 0x24004054) r1 = socketpair$auto(0x0, 0x203, 0xc7, &(0x7f0000001140)=0xff) mmap$auto(0x0, 0xb991, 0x5, 0x19, 0xffffffffffffffff, 0x2) r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000200), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_HWSIM_CMD_DEL_RADIO(r3, &(0x7f0000003bc0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000003c00)={0x1c, r2, 0x5, 0x74bd26, 0x25dfdbfd, {}, [@HWSIM_ATTR_PMSR_RESULT={0x8, 0x1c, 0x0, 0x1, [@NL80211_PMSR_ATTR_PEERS={0x4}]}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/jfs/loglevel\x00', 0x1a9701, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0) ioctl$auto_SG_SET_RESERVED_SIZE2(r4, 0x2275, &(0x7f0000000040)="d93ca7") write$auto(r0, &(0x7f0000001100)='\'.@o\xcf::}%/.&+-\x00', 0x1) write$auto(r4, 0x0, 0xffd8) r5 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0) write$auto_fuse_dev_operations_fuse_i(r5, &(0x7f0000000000)="1100000000000000001000000000000000", 0x11) ioctl$auto_VHOST_SET_VRING_CALL(r1, 0x4008af21, &(0x7f0000001040)={0x4, r5}) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x0, 0x0) openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r6 = socket(0x2, 0x1, 0x0) openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) sendmmsg$auto(r6, &(0x7f0000000140)={{&(0x7f0000000080), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) socket(0x1d, 0x2, 0x6) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) 3.695061972s ago: executing program 4 (id=2236): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) bpf$auto(0x8, &(0x7f00000001c0)=@bpf_attr_0={0x7, 0xb5, 0x10, 0x4, 0x53400000, 0xffffffffffffffff, 0x9, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x2, 0x7, 0x7, 0x6}, 0x10) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/038/001\x00', 0xa821, 0x0) ioctl$auto_USBDEVFS_SUBMITURB32(r0, 0x802c550a, &(0x7f00000001c0)=ANY=[@ANYBLOB="028006a1000000a305"]) 3.352521175s ago: executing program 1 (id=2238): r0 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/block/nbd3/sched/owned_by_driver\x00', 0x0, 0x0) ioperm$auto(0x7, 0x6, 0x2) sysfs$auto(0x9, 0x3, 0xfffffffffffffffc) socket(0x29, 0x5, 0x9) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) getsockopt$auto(0x8, 0x6, 0x4, 0xfffffffffffffffd, 0xffffffffffffffff) setreuid$auto(0x4, 0x8) setreuid$auto(0x3, 0x7) pivot_root$auto(0x0, 0xfffffffffffffffe) move_pages$auto(0x0, 0x1, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x2) read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r0, &(0x7f0000000040)=""/163, 0xa3) 3.243010333s ago: executing program 1 (id=2239): socket$nl_generic(0x10, 0x3, 0x10) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7fff) ioctl$auto(0xffffffffffffffff, 0x4008550d, 0xffffffffffffffff) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-9/xps_rxqs\x00', 0x1a1842, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) munmap$auto(0xfffffffffffff34b, 0x8592) mkdir$auto(0x0, 0x9) socket(0x25, 0x805, 0x3) mmap$auto(0x0, 0x20009, 0x9c2e, 0xeb1, 0xffffffffffffffff, 0x0) r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC0D0p\x00', 0x0, 0x0) ioctl$auto_PPPIOCSPASS(r3, 0x40107447, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv6/conf/netdevsim3/disable_ipv6\x00', 0x8b42, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x3, 0x3, 0xeb1, 0x7, 0x8000) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x4, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0xe0, 0x968b, 0x100, 0x15f4da07, 0x3, 0x3, 0x200000000fff, 0x8002001f, 0x1, 0x80080000002, 0x7, 0x2, 0x8]}, 0x0) shutdown$auto(0x200000003, 0x2) write$auto(r0, &(0x7f0000000000)=',\x00d1L\xff\x15\xba\xa17=(\xc1\xf8\xff\xff\v\xb5^\xa1/[', 0x8) 3.232969903s ago: executing program 4 (id=2240): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/usb/drivers/hackrf/remove_id\x00', 0x149100, 0x0) read$auto(r0, 0x0, 0x20) mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x1272, 0x8000) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0xa, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x101001, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x28184, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000500)='/dev/ptyp2\x00', 0x2200, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0) socket(0x2b, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup.cpu/memory.kmem.tcp.limit_in_bytes\x00', 0xc2481, 0x0) openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_score_adj\x00', 0xc0401, 0x0) socket(0x2, 0x5, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) semctl$auto(0x204, 0xfffffffe, 0x3, 0x4) r1 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0) write$auto(r1, 0x0, 0xc3) statmount$auto(0x0, 0x0, 0x1fe, 0x82) remap_file_pages$auto(0xfa8, 0x200000000000002, 0x0, 0x9, 0x5) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x2000000, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd15\x00', 0x5010c0, 0x0) mount$auto(&(0x7f0000000000), &(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='jfs\x00', 0x8000009, 0x0) openat$auto_u32_array_fops_file(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/netdevsim/netdevsim5/ports/0/udp_ports_table0\x00', 0x4a00, 0x0) mmap$auto(0x0, 0x7, 0x5, 0x10, 0x401, 0x8003) 3.192949131s ago: executing program 3 (id=2241): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), r0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x2eb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) r1 = open(&(0x7f0000000800)='./file0\x00', 0xa2240, 0x154) fcntl$auto(r1, 0x400, 0x1) execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) socket(0xa, 0x2, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ip6_mr_vif\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000140)=""/12, 0xc) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd3/queue/iosched/write_expire\x00', 0x20681, 0x0) r3 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) r4 = openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/buffer_percent\x00', 0x10b301, 0x0) writev$auto(r4, 0x0, 0x9) fcntl$auto(r3, 0xfffffffd, 0x0) r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x101a02, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r5, 0xc1105517, &(0x7f00000001c0)={{@raw=0xfff, 0x100110d, 0xfffd, 0x6, "e927783f468fa2e92fe8ec7a46cbb766439daa1ee1aa0000000000040000660e0701000000000000008000"}, 0x6, 0x0, 0x4, @raw=0x404, @enumerated={0x55d3, 0x7, "bf154d70dcfcea02faacb07c4222db1f207fdb681dc9b0bf2c6c9ce16d51ebc73df6a7aa16659cd5e4dc8374caf945548e604179f1f87c3bd8701d3d5c3d998c", 0xffffffffffffffff, 0x91e0}, "a4699d30a05edbe0d28473c399a7dc920b153e9b1675451d7de94b4123f970bedd3460c667373fcc59b584d81592f6ab606c276852295e00af49e6de6e768034"}) execve$auto(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f00000000c0)='-7', 0x2) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/vkms/graphics/fb0/blank\x00', 0xa001, 0x0) write$auto(r6, &(0x7f0000000140)='7\x00\xb1\x9a\xc0\xf9\xc0e\xd2T\xbe\xb6I\x9d\xd9\x18\xf5\x91\xbfq\xfe\xf2\x9a\x02\x9fC0xb\xccW(\xc1n+\n|5\xa5\x9c=^\xf1\x11H\x1c\xf73\x16\xd2\a\xfaw\xcc\xf1\xff7\xab\xa1\xeaF\x04\x17\x99\xd3\xd1\x83\xccG^\xbbdC\x8a\n\x88\xbcW@+\xafD\xd1\x8a\xc13W\xf66\x86\xe5\xee\xa7\x1d\x0f\x90\x00\xcf\xdb\xf5\xbf\xd4\xc8\x84\xb3\xeeb\xb0\xc7kN\x80\x93\xfd\x89\xe1\xc9tp\xd4jm\x7f\xf0a\xc3\x02\x14\xcf\xcf\\e!\a\x82\t,\xa7\x00\xbd&\xcax\xf8P\xc1\x8f\x87\x83\x0f\x93z', 0x1) 2.462606149s ago: executing program 2 (id=2242): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400) mmap$auto(0x0, 0x400408, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) ppoll$auto(0x0, 0x2f9638f3, &(0x7f0000000080)={0x66e2, 0x512d}, &(0x7f0000000100)={0x3ff}, 0x8) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) socket(0xa, 0x1, 0x100) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) socket(0x1a, 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x3, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) ioctl$auto_SNDRV_RAWMIDI_IOCTL_INFO(r1, 0x810c5701, &(0x7f0000000340)={0x3, 0x1, 0x200, 0x10000, 0x2, "748987108c83c529e6e0e17d26156a70e2ae0200fe62d001c338115fef2fbd8b976aa4fbce454ad4063328e150b0abc105c79352189449ed57bb590643e87a9b", "c35d68b707f12e350124ce3c56384271520fe78cbd7cb2f5587ebbe76f0069619790130fd5b9b9cc3d10fce15d823e8e57d245b1bf025ba127790e258cecdc081b38425936a306e206bf69ccdc6b9978", "dee0c06ea301f4ecca5d8d48eca013e7a853234160c3d8d65d185c1bd6f8fbce", 0x1, 0x75a3, 0x200000, "096e8465a8a3029f90cbf3e37d2bafa231150560322e6642c9d0dd7f29c51d775c494d9b7d6dc7efc90faaed56664139afbbeb0bc6e486d0ae2b0b41"}) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xa, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0xc, 0x2, 0x6]}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x8800) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) msync$auto(0xff, 0x800, 0x10) ioctl$auto(0x3, 0x2287, 0xffffffffffffffff) r2 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0) write$auto_proc_mem_operations_base(r2, &(0x7f0000001680)="a7", 0x80000) madvise$auto(0x3d000000, 0x20200, 0x15) 2.214329593s ago: executing program 1 (id=2243): r0 = socket(0x23, 0x80805, 0x0) poll$auto(&(0x7f0000000040)={r0, 0x7, 0x8}, 0x80, 0x400400) setsockopt$auto(r1, 0x113, 0x1, 0x0, 0x81) keyctl$auto_KEYCTL_INSTANTIATE(0xc, 0x9, 0x5, 0x90000000, 0xfffffffffffffff7) 2.079408951s ago: executing program 3 (id=2244): r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000100), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'wg2\x00'}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'batadv0\x00'}) sendmsg$auto_OVS_VPORT_CMD_DEL(r1, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x4004}, 0x2040) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/fail-nth\x00', 0x16f802, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x1fe, 0x0) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0) mmap$auto(0x0, 0xffffffff00000000, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socket(0xa, 0x3, 0x6) fsopen$auto(&(0x7f0000000380)='/dev/ppp\x00', 0x80000001) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x5, 0x21, 0x940, 0x1ffde, 0x3, 0x6, 0x8000003, 0x9, 0x5, 0x0, 0x4, 0xb0, 0x7, 0x2, 0x5, 0x205, 0x7, 0x0, 0x3ffff, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, [0x0, 0x0, 0x0, 0x8, 0x0, 0x8000004, 0x0, 0x0, 0xfffffffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x80000, 0x0, 0x100000000, 0x0, 0x8000000000000001, 0x0, 0x0, 0x0, 0x0, 0x20, 0x4, 0x0, 0x0, 0x2000000000000000]}, 0x1ff, 0x7d) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) r2 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x20, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 2.06519156s ago: executing program 1 (id=2245): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/fail-nth\x00', 0x28a02, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x3) io_uring_setup$auto(0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/tty53\x00', 0x200, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x7, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x0, 0x1a1a, 0x2, 0x3, 0x95f4da0a, 0x7f, 0x20000003, 0x62, 0x80000001, 0x10000000000004, 0x6d40, 0x1, 0x2, 0xfffffffffffffffe]}, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r3 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000000), 0x88600, 0x0) ioctl$auto_UBI_IOCATT(r3, 0x40186f40, 0x0) r4 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r4, 0x0, 0x1, 0x0, 0x1e) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r5 = socket(0xa, 0x802, 0x3a) setsockopt$auto(r5, 0x29, 0x21, 0x0, 0x18000113) select$auto(0x12, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x7, 0xc45d, 0x80, 0xfb, 0x3, 0x202, 0x3, 0x3, 0x62, 0x80000022, 0x7, 0x6d3e, 0x2000000004000009, 0x2, 0x3964]}, 0x0) openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x582, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) io_uring_setup$auto(0x6, 0x0) select$auto(0xd, 0x0, 0x0, 0x0, 0x0) 1.872166031s ago: executing program 3 (id=2246): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x40080, 0x0) ioctl$auto_UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000400)={{0x5, 0x22, 0x8672, 0x80}, "66ac010005000000000068d590eb0d4a4cada7272464294b9183349eef4c1f028fdcc8ecc66fdd02316f064ebd81dcdbd3b2683e95b822f66eb624ad63110d61771552c03de65800"}) ioctl$auto_UI_DEV_CREATE(r0, 0x5501, 0x0) io_uring_setup$auto(0x401, 0x0) read$auto(0x3, 0x0, 0x1a) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) adjtimex$auto(&(0x7f00000005c0)={0xf332b6e, 0x0, 0x0, 0x8, 0xd4, 0x7, 0x9, 0x0, 0x10001, 0xfffffffffffffffe, 0x2, {0x8, 0x10000}, 0x2dd, 0x6, 0xfffffffffffffffd, 0x203, 0x0, 0x80000001, 0x83, 0xffffffffffff628e, 0x8, 0x0, 0x1800}) clock_adjtime$auto(0xb, &(0x7f00000000c0)={0xfffffff9, 0x0, 0x0, 0xc, 0x8001, 0x1, 0x5, 0x0, 0xef08, 0x3, 0x9, {0x0, 0xe6}, 0x9406, 0x3, 0x6, 0x4, 0x0, 0x1ff, 0x1, 0x2, 0x40, 0xa5dd, 0xfffffffd}) read$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffffff, 0x0, 0xffffffffffffff86) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) bind$auto(0x3, 0x0, 0x6a) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x12, 0x0, 0x3, 0x0, 0x23, 0xb}, 0x800009}, 0x5, 0x20000000) mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000) socket(0xa, 0x1, 0x0) ioctl$auto(0x3, 0x894b, 0x38) semget$auto(0x0, 0x13c, 0x1ff) semtimedop$auto(0x0, &(0x7f00000000c0)={0xa, 0x81, 0x70}, 0x1f4, 0x0) semtimedop$auto(0x0, &(0x7f0000000000)={0x7, 0x8000, 0x36ec}, 0x1, 0x0) semctl$auto(0x0, 0x9, 0x0, 0x2) move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) 1.171169772s ago: executing program 4 (id=2247): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x1115, 0x82020009, 0x1, 0xeb1, 0xfffffffffffffffa, 0x8004) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/module/virtio_snd/parameters/pcm_period_ms_min\x00', 0x8304, 0x0) r0 = socket(0x10, 0x2, 0x4) sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c7"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) socket(0x2, 0x1, 0x0) r1 = socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r1, @ANYBLOB="01"], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x80) write$auto(r0, &(0x7f0000000000)='-\x00', 0xfdef) 1.035137023s ago: executing program 2 (id=2248): mmap$auto(0x0, 0x40000a, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) write$auto(r0, 0x0, 0xfffffde9) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) r1 = open(&(0x7f0000000100)='.\x00', 0x591002, 0x408) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_GET_MSRS(r1, 0x4090ae82, &(0x7f0000001380)={0x2, 0x0, [{0x1d9, 0x400, 0x2}]}) 770.998044ms ago: executing program 3 (id=2249): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) write$auto(0xffffffffffffffff, &(0x7f0000000000)='\'\x00', 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x400000000000, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x40000028000) r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$auto_FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000440)="853b33beb09cc9805808ebf7d285df51d3f93f524861b48f927d619dcf98b1d448352bb6b73362a140591191f29db12efc6bd5fb3a4a65bd1223fc536a894f0a72a1a5b23fc6aeadcb1e1611d62ac3f5ddbceb50b715") close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x1e, 0x5, 0x0) sendto$auto(0x3, 0x0, 0x5, 0xfffffff8, &(0x7f0000000440)=@tipc=@name={0x1e, 0x2, 0x3, {{0x1, 0x1}}}, 0x20) readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x8}, 0x8) fcntl$auto_F_SETSIG(r1, 0xa, 0x101) preadv2$auto(0x3, &(0x7f0000001000)={0x0, 0x80000000}, 0x5, 0xffffffffffffffff, 0x7, 0x2e) close_range$auto(0x2, 0x8, 0x0) r2 = socket(0x18, 0x2, 0x88) setsockopt$auto(r2, 0x88, 0xb, &(0x7f0000000000)='\xba\xba\xd3\xc8[&P\x9c\xe7AJz\'\x91\xce=B}v+7n\xa2r0\x92\xc3\x0eE\x96\xf63\xec\xe0\xb2\f\xa86v\xeb\xf1\xcb\xd4\xa9\v\xe1\xcc\x18', 0xc22) sysfs$auto(0x2, 0x100000000000027, 0x0) r3 = fsopen$auto(0x0, 0x1) preadv2$auto(r3, &(0x7f0000000480)={&(0x7f0000000800), 0x2766}, 0x2, 0x6, 0xfffffffffffff371, 0x4) socket(0x10, 0x2, 0x0) r4 = socket(0xa, 0x3, 0x3a) setsockopt$auto(0x400000000000003, 0x29, 0xc8, 0x0, 0x567) pwrite64$auto(r4, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\xfc\x00/\x00\x06\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\xff\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8/\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/221, 0xfdef, 0x7) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x3, 0x8, 0xd, 0x5, 0x81, 0xffffffff, 0x2002000000000002, 0x0, 0x9, 0x1, 0x2, 0x80000001, 0xb0, 0x7fffffffffffffff, 0x20000800001, 0xffffffff, 0x5, 0x7, 0x6, 0x7, 0x0, 0xffffffee, 0x2a17, 0x0, 0x0, 0x0, 0x0, 0x7d, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2b9, 0x2, 0x8000000000, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa4, 0x1000000000000000, 0x0, 0x0, 0xfffffffffffffff7, 0x40000000000000, 0x0, 0xfffffffffffff002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5311]}, 0x5, 0x81) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0xc090) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4044810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x8}, 0x0) 687.253276ms ago: executing program 4 (id=2250): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80302, 0x0) sendfile$auto(r0, r0, 0x0, 0xffffffff) 517.501031ms ago: executing program 4 (id=2251): unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0) write$auto_proc_sys_file_operations_proc_sysctl(r0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x1d, 0x2, 0x7) r1 = bpf$auto(0xd, 0x0, 0x6f5) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = openat$auto_bm_register_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000640), 0x401, 0x0) write$auto(r2, 0x0, 0xff) read$auto(0x3, 0x0, 0xf34) r3 = openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000001680)='/sys/kernel/debug/tracing/uprobe_events\x00', 0x2, 0x0) write$auto_uprobe_events_ops_trace_uprobe(r3, &(0x7f0000000000)="706f3a82d9e5cc7c2ceda8d50bfc94be9fe6c22ffaf8493a38", 0x19) socket(0x10, 0x100807, 0x2) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0xd29, 0x53, 0x0) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/fs/cifs/dfscache\x00', 0x101a41, 0x0) write$auto(r4, 0x0, 0x6) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000002500), 0xffffffffffffffff) sendmsg$auto_OVS_FLOW_CMD_SET(r5, &(0x7f00000025c0)={0x0, 0x0, &(0x7f0000002580)={&(0x7f00000001c0)={0x20, r6, 0x1, 0x70bd28, 0x25cfdbfe, {}, [@OVS_FLOW_ATTR_CLEAR={0x4}, @OVS_FLOW_ATTR_KEY={0x4}, @OVS_FLOW_ATTR_PROBE={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x4}, 0x0) msgctl$auto_IPC_RMID(0x8, 0x0, &(0x7f0000000180)={{0x9, 0xee01, 0xee01, 0xc74, 0x10000, 0x7f, 0x7fff}, &(0x7f0000000100)=0x80, &(0x7f0000000140)=0x1, 0x8000000000000000, 0x9, 0xd, 0x1, 0x400, 0xf, 0x5adb, 0x4, @inferred, @inferred=0xffffffffffffffff}) r8 = ioctl$auto_TUNSETFILTEREBPF(r1, 0x800454e1, &(0x7f0000000200)=0x2000a) ioctl$auto_XFS_IOC_SWAPEXT(r1, 0xc0c0586d, &(0x7f0000000240)={0x1, @inferred=r4, @raw=0x56, 0x9, 0x2, '\x00', {0x1de4, 0x343, 0xa, 0xee01, 0xee00, 0x80, 0x9, 0x1, {0x6d45, 0x9}, {0x78, 0x5}, {0x3, 0x3}, 0x3, 0x100, 0x3, 0x10001, 0x4, 0xfff8, 0x7fff, 0x7, 0xf, 0x5, '\x00', 0x401, 0x9, 0x3, 0x80}}) sendmsg$auto_OVS_FLOW_CMD_GET(r1, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000300)={&(0x7f00000016c0)={0x25ec, r6, 0x800, 0x70bd27, 0x25dfdbff, {}, [@OVS_FLOW_ATTR_MASK={0x22cf, 0x7, 0x0, 0x1, [@generic="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", @nested={0x213, 0xcd, 0x0, 0x1, [@typed={0xdd, 0x101, 0x0, 0x0, @binary="b96273325f8176e0cd6cb96a6ce0ea9ad82a46f6aba3d696ab881a95981f7cbd761b78df82873c13f85b80fadf78a71f150589db0937ab4548abe20bf1e8ef70fcfa795e7f33e61c9bd70dc7521f14fdf7f3cfeecac263dd626c5fa30589cc533f791f065759eda9702417684bd28334f68e91a6f18db66ce64f9401906189a268796838d884af0e6ff059c7586bc0f108876a3781e9bdd0494308629915adfce4ad6c53c657022eec21c512d7ea43a510d8fcd1b8ecf617a9e969c2c2c3978b728c6f38fe8e4996e0a47c83d9198657a4458a0fa7c760e1c8"}, @generic="9bf4822ac3e6da048938b58c18318c7dfe0bf27bead56362f3c2d92640deb67bd1cc5830f4188b55296cb1cb04a6b8e7f56c9584a72a0eccdd9eb0fc1fe713529fd7ed1f9c1b3b834c74f1cdc5f07140fa9f7a80a68e0445c60e3b3c696dec34c27b2419a217f7d8fbff7b7ab611bfa4fab1ae345f504228270e98b5f6d083a8ba3911cb402c32731019bf29a67319f6249697ee417c481a0a3870f15d99901d414770758a35d982822ac96df60968", @nested={0x4, 0x68}, @generic="92d1584e1629055a323b42367b402abf80d17850438f064d96d41160b219deed9576aa39ddddc0bff7f0826de8b675c2a3e1437460c4db4c2a9e02754bac30f32e589793434d3d889ecd372b42bca84458094aeecf80f36c315bd8822d7ddb4eab5e0e529a0ab3aa637b6b77746316479ca671e2024579e6", @nested={0x4, 0x6}]}, @nested={0x105f, 0x4a, 0x0, 0x1, [@typed={0x8, 0x141, 0x0, 0x0, @uid=r7}, @typed={0x8, 0x95, 0x0, 0x0, @pid}, @nested={0x4, 0x10e}, @generic, @generic="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", @nested={0x4, 0x9}, @generic="f3f606c86127f0aa0a057f4907f3eb288ad14df4e1e96eceffb4af2e0b8f3d960f100bb30a971b2f9d2164ab20ddc55649d00dee180a58f4016a74", @nested={0x4, 0xb9}, @nested={0x4, 0x12}]}, @typed={0x8, 0x126, 0x0, 0x0, @fd=r8}, @generic="238f3c25defdafe696d998a9c6b7c58dcff16f8b7cf79e3e7e97ab25d7ac37f0ef4d6fc9c81dfb244271347490201eb458f47bc664e14321a9b28cabb151093399c597ed2a7c153ef8e7d2829d5b28"]}, @OVS_FLOW_ATTR_UFID={0x5, 0x9, 0x5}, @OVS_FLOW_ATTR_CLEAR={0x4}, @OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x2ee, 0x1, 0x0, 0x1, [@nested={0xce, 0x8d, 0x0, 0x1, [@generic="e7d688b478bdc0e30414e3a2575626a739a8b4b5b4e404b1c0cebbd512eb70b21348783ba8658fdbbb3b96a08204081ea9606bd81e3e38d925cb86afd0d60013479fec0eb931974eb44241f6c9967567cb45b99694cbeb4f61522c599c83922b2c5a014e39", @nested={0x4, 0x90}, @nested={0x4, 0x146}, @generic="a4e82599661d6d3a83b1ae5076ddde1d8be2213bdfc8", @generic="7674406cdd6afdc1b02aba28949d7b207289cd046dcc3bcbf5182462719bc082d84498fe0c10cf81e9239e790dd20b8235f520058be24fb6d406cc93bc4efc49", @generic="1d835d", @nested={0x4, 0xe0}]}, @generic="220f53d7d04431058b68fd2c709f8abc45831002a2191a436137401d4c79b81162ff75fede07221f82052dc7e99f72d86cbe802f18d21bfdcffc15d2b9f9908476f36013a3f17b07c915", @typed={0xc, 0xc1, 0x0, 0x0, @u64=0x7}, @typed={0x14, 0x134, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x1a}}, @nested={0xaa, 0x8d, 0x0, 0x1, [@typed={0x8, 0x64, 0x0, 0x0, @fd=r2}, @generic="32a86990edccf1e92dcd3af935daaa8b5d5e249dcaae7f41c8033ed1e5a48f74a6bfadeb0ca3ed7a2fe033438bd403298b539a6ea55eb10e220c49b92026765e82102738bd655f864f57de5bb961267f9c1259ee245eb1902c6f9672f2ec5d29e6469fc84f7a242a5bd0e12dfaf8ef5cdcb52d237ee5cbc48c6fe74258215c3ab6f15921ce4644c61eb4facda964", @nested={0x4, 0x6d}, @typed={0x8, 0xd2, 0x0, 0x0, @u32=0x5}, @nested={0x4, 0x122}]}, @typed={0xfb, 0x24, 0x0, 0x0, @binary="b816b99663f26b24e84711bc68e495d5c19779df3a6693c7635407d5eedd581da7dffdfdff4618881da787f9215d4e1c1d5640c3c4f8bcb6e417ea26b726c57ca10bc0555e3ccb58ad72e39420fd9e2fb4ac71af962c5cc14b0c72d25ba6303b2d3525b1124e6c508234d6209ae6d16b70562353d8e9a611c3ac1e93ec272f8328d72c9ad2b8b35c5b2804cdc33093f6c40a133f37c42e0c995fad77072875932e29fdd649f817ad9aa91a24a13cd307c4632bab71b503f22a7722a46f395b3a47b3efd3a8a0f4592aeb08b5e2ef60a7832c2517e66aa737ba747da6edfd217bf2a4803689403e6869a163de389a6751e1551a98bad53b"}, @typed={0x8, 0x54, 0x0, 0x0, @uid=r9}]}, @OVS_FLOW_ATTR_PROBE={0x4}]}, 0x25ec}, 0x1, 0x0, 0x0, 0x1}, 0x4040090) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r10 = socket(0x2b, 0x1, 0x0) sendmmsg$auto(r10, 0x0, 0x3, 0x20000000) getsockname$auto(0x3, 0x0, 0x0) 415.775687ms ago: executing program 3 (id=2252): socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/006/001\x00', 0xa901, 0x0) ioctl$auto(r0, 0x4008550d, r0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-9/xps_rxqs\x00', 0x1a1842, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) munmap$auto(0xfffffffffffff34b, 0x8592) mkdir$auto(0x0, 0x9) socket(0x25, 0x805, 0x3) mmap$auto(0x0, 0x20009, 0x9c2e, 0xeb1, 0xffffffffffffffff, 0x0) r2 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r2, 0xc0285700, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC0D0p\x00', 0x0, 0x0) ioctl$auto_PPPIOCSPASS(r4, 0x40107447, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv6/conf/netdevsim3/disable_ipv6\x00', 0x8b42, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x3, 0x3, 0xeb1, 0x7, 0x8000) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x4, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0xe0, 0x968b, 0x100, 0x15f4da07, 0x3, 0x3, 0x200000000fff, 0x8002001f, 0x1, 0x80080000002, 0x7, 0x2, 0x8]}, 0x0) shutdown$auto(0x200000003, 0x2) write$auto(r1, &(0x7f0000000000)=',\x00d1L\xff\x15\xba\xa17=(\xc1\xf8\xff\xff\v\xb5^\xa1/[', 0x8) 300.646653ms ago: executing program 2 (id=2253): r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x105500, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000001c0)=0x6) unshare$auto(0x40000080) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) socket(0x1e, 0x1, 0x0) lsm_set_self_attr$auto(0x1, &(0x7f0000000100)={0x68, 0x8, 0x80}, 0x80, 0x0) r1 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0x101500, 0x0) readv$auto(r1, &(0x7f00000000c0)={&(0x7f0000000180), 0x200}, 0x6) mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x101, 0x4) socket(0xa, 0x801, 0x84) r2 = socket(0x2, 0x801, 0x100) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'veth0_to_bridge\x00', 0x0}) sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA(r3, &(0x7f0000000100)={0x0, 0xfffffffffffffeee, 0x0, 0x1, 0x0, 0x0, 0x88c4}, 0x24040014) bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_5={@target_ifindex=r4, r2, 0x9f, 0x0, 0x1, @relative_fd, 0x5}, 0x96) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0xffffffffffffffff, 0x202000d, 0x8000000005, 0xeb1, r0, 0x8003) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) r6 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0) r7 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/conf/vxcan0/medium_id\x00', 0xc8242, 0x0) sendfile$auto(r7, r6, 0x0, 0x48) r8 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)) getdents$auto(r8, 0x0, 0xfff) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/block/loop15/queue/discard_granularity\x00', 0x8000, 0x0) unshare$auto(0x40000080) madvise$auto(0x0, 0xffffffffffff0009, 0x13) madvise$auto(0x0, 0xffffffffffff0001, 0x15) 190.778163ms ago: executing program 1 (id=2254): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001300)={0x2c, r1, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x8, 0x1, '.SR\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}]}, 0x2c}, 0x1, 0x300000000000000, 0x0, 0x20000800}, 0x80) 0s ago: executing program 1 (id=2255): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/devices/virtual/block/loop1/queue/wbt_lat_usec\x00', 0x2062, 0x0) write$auto(r1, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x9) ioctl$auto(r0, 0x400454ca, 0x38) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x80900, 0x0) openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, 0x0, 0x20a01, 0x0) ioctl$auto_BLKFLSBUF(r2, 0x1261, 0x0) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcsa\x00', 0x80, 0x0) mmap$auto(0xb2, 0x20000000014, 0xffb, 0x8000000008015, 0xffffffffffffffff, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) io_uring_setup$auto(0x3501, &(0x7f0000000080)={0x80, 0x1000, 0x8, 0x5, 0x3, 0xfffffff1, 0xffffffffffffffff, [0xbc, 0xffff, 0x40], {0x81, 0x9, 0x0, 0x80000000, 0x3, 0x101, 0xffff, 0x0, 0x6}, {0x7, 0xa, 0xf, 0x7fff, 0x3, 0x0, 0x0, 0xfffffffa, 0xc}}) ioctl$auto_BLKTRACETEARDOWN(r2, 0x1276, 0x0) mmap$auto(0x8000000000002001, 0x20009, 0xdf, 0x15, r3, 0x8000) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x11, 0x0, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty48\x00', 0x880, 0x0) ioctl$auto(r4, 0x5609, 0xffffffffffffffff) madvise$auto(0x0, 0x20499d, 0x9) open_tree$auto(0xffffffffffffffff, 0x0, 0x74ee) ioctl$auto_NS_GET_PID_FROM_PIDNS(r3, 0x8004b706, &(0x7f0000000180)=0x4) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000050}, 0x400c0) kernel console output (not intermixed with test programs):                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                [ 538.531852][T10277] Bluetooth: hci0: unexpected event 0x0f length: 11 > 4 [ 538.588630][T12617] netlink: 'syz.4.1470': attribute type 10 has an invalid length. [ 538.591536][T12617] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1470'. syzkaller syzkaller login: [ 539.609454][T12645] Format for deleting device is "id" (uint). [ 539.768180][T12645] netlink: 'syz.3.1478': attribute type 10 has an invalid length. [ 539.786842][T12645] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1478'. [ 542.408833][T12716] ======================================================= [ 542.408833][T12716] WARNING: The mand mount option has been deprecated and [ 542.408833][T12716] and is ignored by this kernel. Remove the mand [ 542.408833][T12716] option from the mount to silence this warning. [ 542.408833][T12716] ======================================================= [ 542.567097][T10277] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 542.576037][T10277] Bluetooth: hci0: Injecting HCI hardware error event [ 542.585369][T10277] Bluetooth: hci0: hardware error 0x00 [ 542.921821][T12726] FAULT_INJECTION: forcing a failure. [ 542.921821][T12726] name failslab, interval 1, probability 0, space 0, times 0 [ 542.939872][T12726] CPU: 0 UID: 0 PID: 12726 Comm: syz.4.1504 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 542.939928][T12726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 542.939949][T12726] Call Trace: [ 542.939959][T12726] [ 542.939973][T12726] dump_stack_lvl+0x16c/0x1f0 [ 542.940040][T12726] should_fail_ex+0x512/0x640 [ 542.940093][T12726] ? __kmalloc_noprof+0xbf/0x510 [ 542.940143][T12726] ? lsm_blob_alloc+0x68/0x90 [ 542.940194][T12726] should_failslab+0xc2/0x120 [ 542.940227][T12726] __kmalloc_noprof+0xd2/0x510 [ 542.940274][T12726] ? __pfx_perf_event_init_task+0x10/0x10 [ 542.940329][T12726] ? audit_alloc+0xa2/0x7b0 [ 542.940367][T12726] lsm_blob_alloc+0x68/0x90 [ 542.940426][T12726] security_task_alloc+0x2d/0x260 [ 542.940476][T12726] copy_process+0x2205/0x76a0 [ 542.940519][T12726] ? __pfx___futex_wait+0x10/0x10 [ 542.940582][T12726] ? __pfx_copy_process+0x10/0x10 [ 542.940644][T12726] kernel_clone+0xfc/0x960 [ 542.940689][T12726] ? __pfx_kernel_clone+0x10/0x10 [ 542.940754][T12726] __do_sys_clone+0xce/0x120 [ 542.940805][T12726] ? __pfx___do_sys_clone+0x10/0x10 [ 542.940853][T12726] ? __pfx___might_resched+0x10/0x10 [ 542.940905][T12726] ? xfd_validate_state+0x61/0x180 [ 542.940966][T12726] do_syscall_64+0xcd/0x490 [ 542.941002][T12726] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 542.941035][T12726] RIP: 0033:0x7f382d58e929 [ 542.941058][T12726] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 542.941091][T12726] RSP: 002b:00007f382e371038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 542.941124][T12726] RAX: ffffffffffffffda RBX: 00007f382d7b5fa0 RCX: 00007f382d58e929 [ 542.941146][T12726] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46 [ 542.941166][T12726] RBP: 00007f382d610b39 R08: 0000000000000002 R09: 0000000000000000 [ 542.941186][T12726] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 542.941213][T12726] R13: 0000000000000000 R14: 00007f382d7b5fa0 R15: 00007ffe546dfb38 [ 542.941255][T12726] [ 543.155639][ C0] vkms_vblank_simulate: vblank timer overrun [ 543.445742][ T30] audit: type=1107 audit(6044824933.636:28): pid=12731 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 544.564547][T12723] Bluetooth: hci1: unexpected event 0x0f length: 11 > 4 [ 544.625383][T10277] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 545.186071][T12766] FAULT_INJECTION: forcing a failure. [ 545.186071][T12766] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 545.200126][T12766] CPU: 1 UID: 0 PID: 12766 Comm: syz.1.1512 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 545.200173][T12766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 545.200199][T12766] Call Trace: [ 545.200210][T12766] [ 545.200223][T12766] dump_stack_lvl+0x16c/0x1f0 [ 545.200283][T12766] should_fail_ex+0x512/0x640 [ 545.200338][T12766] should_fail_alloc_page+0xe7/0x130 [ 545.200372][T12766] prepare_alloc_pages+0x3c2/0x610 [ 545.200410][T12766] ? rcu_is_watching+0x12/0xc0 [ 545.200447][T12766] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 545.200497][T12766] ? __schedule+0x1181/0x5de0 [ 545.200545][T12766] ? __lock_acquire+0x622/0x1c90 [ 545.200587][T12766] ? css_rstat_updated+0x9d/0xd30 [ 545.200632][T12766] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 545.200679][T12766] ? __lock_acquire+0x622/0x1c90 [ 545.200737][T12766] ? __lock_acquire+0x622/0x1c90 [ 545.200782][T12766] ? __lock_acquire+0x622/0x1c90 [ 545.200822][T12766] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 545.200883][T12766] ? policy_nodemask+0xea/0x4e0 [ 545.200941][T12766] alloc_pages_mpol+0x1fb/0x550 [ 545.200995][T12766] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 545.201059][T12766] folio_alloc_mpol_noprof+0x36/0x2f0 [ 545.201100][T12766] vma_alloc_folio_noprof+0xed/0x1e0 [ 545.201138][T12766] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 545.201174][T12766] ? find_held_lock+0x2b/0x80 [ 545.201207][T12766] ? __handle_mm_fault+0x1092/0x5490 [ 545.201257][T12766] __handle_mm_fault+0x2f21/0x5490 [ 545.201313][T12766] ? __pfx___handle_mm_fault+0x10/0x10 [ 545.201358][T12766] ? __pte_offset_map_lock+0x174/0x310 [ 545.201391][T12766] ? find_held_lock+0x2b/0x80 [ 545.201420][T12766] ? find_held_lock+0x2b/0x80 [ 545.201463][T12766] ? follow_page_pte+0x3af/0x14c0 [ 545.201510][T12766] handle_mm_fault+0x589/0xd10 [ 545.201562][T12766] __get_user_pages+0x589/0x3b80 [ 545.201612][T12766] ? __pfx_mt_find+0x10/0x10 [ 545.201646][T12766] ? __pfx___get_user_pages+0x10/0x10 [ 545.201701][T12766] populate_vma_page_range+0x278/0x3a0 [ 545.201743][T12766] ? __pfx_populate_vma_page_range+0x10/0x10 [ 545.201782][T12766] ? __pfx_find_vma_intersection+0x10/0x10 [ 545.201820][T12766] ? do_mmap+0x69c/0x1210 [ 545.201867][T12766] __mm_populate+0x1d8/0x380 [ 545.201907][T12766] ? __pfx___mm_populate+0x10/0x10 [ 545.201949][T12766] ? up_write+0x1b2/0x520 [ 545.202002][T12766] vm_mmap_pgoff+0x362/0x450 [ 545.202040][T12766] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 545.202085][T12766] ? __x64_sys_futex+0x1e0/0x4c0 [ 545.202122][T12766] ? __x64_sys_futex+0x1e9/0x4c0 [ 545.202168][T12766] ksys_mmap_pgoff+0x7d/0x5c0 [ 545.202200][T12766] ? xfd_validate_state+0x61/0x180 [ 545.202239][T12766] ? do_execveat_common.isra.0+0x4c6/0x610 [ 545.202291][T12766] __x64_sys_mmap+0x125/0x190 [ 545.202341][T12766] do_syscall_64+0xcd/0x490 [ 545.202376][T12766] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 545.202408][T12766] RIP: 0033:0x7f96b3f8e929 [ 545.202434][T12766] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 545.202467][T12766] RSP: 002b:00007f96b4e49038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 545.202500][T12766] RAX: ffffffffffffffda RBX: 00007f96b41b6080 RCX: 00007f96b3f8e929 [ 545.202522][T12766] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 545.202541][T12766] RBP: 00007f96b4010b39 R08: 0000000000000002 R09: 0000000000008000 [ 545.202560][T12766] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 545.202579][T12766] R13: 0000000000000000 R14: 00007f96b41b6080 R15: 00007ffefdfe6198 [ 545.202621][T12766] [ 546.872714][T12774] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 546.892187][T12774] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 548.652282][T10277] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 548.664944][T10277] Bluetooth: hci1: Injecting HCI hardware error event [ 548.675626][T12723] Bluetooth: hci1: hardware error 0x00 [ 548.862226][T12813] FAULT_INJECTION: forcing a failure. [ 548.862226][T12813] name failslab, interval 1, probability 0, space 0, times 0 [ 548.876680][T12813] CPU: 1 UID: 0 PID: 12813 Comm: syz.3.1523 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 548.876729][T12813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 548.876748][T12813] Call Trace: [ 548.876760][T12813] [ 548.876773][T12813] dump_stack_lvl+0x16c/0x1f0 [ 548.876831][T12813] should_fail_ex+0x512/0x640 [ 548.876877][T12813] ? fs_reclaim_acquire+0xae/0x150 [ 548.876919][T12813] should_failslab+0xc2/0x120 [ 548.876950][T12813] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 548.877001][T12813] ? security_inode_alloc+0x3b/0x2b0 [ 548.877043][T12813] security_inode_alloc+0x3b/0x2b0 [ 548.877080][T12813] inode_init_always_gfp+0xce4/0x1030 [ 548.877132][T12813] alloc_inode+0x86/0x240 [ 548.877167][T12813] path_from_stashed+0x2be/0xb00 [ 548.877223][T12813] ? __pfx_path_from_stashed+0x10/0x10 [ 548.877268][T12813] ? find_held_lock+0x2b/0x80 [ 548.877301][T12813] ? alloc_fd+0x471/0x7d0 [ 548.877350][T12813] pidfs_alloc_file+0xf8/0x330 [ 548.877389][T12813] ? __pfx_pidfs_alloc_file+0x10/0x10 [ 548.877441][T12813] pidfd_prepare+0x10c/0x1b0 [ 548.877500][T12813] copy_process+0x46ea/0x76a0 [ 548.877560][T12813] ? __pfx_copy_process+0x10/0x10 [ 548.877598][T12813] ? plist_check_head+0xa3/0x150 [ 548.877651][T12813] ? futex_private_hash_put+0xc7/0x240 [ 548.877695][T12813] kernel_clone+0xfc/0x960 [ 548.877736][T12813] ? __pfx_futex_wake+0x10/0x10 [ 548.877782][T12813] ? __pfx_kernel_clone+0x10/0x10 [ 548.877819][T12813] ? rcu_is_watching+0x12/0xc0 [ 548.877876][T12813] __do_sys_clone+0xce/0x120 [ 548.877917][T12813] ? __pfx___do_sys_clone+0x10/0x10 [ 548.877956][T12813] ? __pfx___might_resched+0x10/0x10 [ 548.878007][T12813] ? xfd_validate_state+0x61/0x180 [ 548.878062][T12813] do_syscall_64+0xcd/0x490 [ 548.878096][T12813] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 548.878130][T12813] RIP: 0033:0x7f6bb698e929 [ 548.878157][T12813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 548.878190][T12813] RSP: 002b:00007f6bb771c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 548.878222][T12813] RAX: ffffffffffffffda RBX: 00007f6bb6bb5fa0 RCX: 00007f6bb698e929 [ 548.878243][T12813] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46 [ 548.878262][T12813] RBP: 00007f6bb6a10b39 R08: 0000000000000002 R09: 0000000000000000 [ 548.878281][T12813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 548.878300][T12813] R13: 0000000000000000 R14: 00007f6bb6bb5fa0 R15: 00007ffd03659ba8 [ 548.878342][T12813] [ 550.513140][T12841] input: f as /devices/virtual/input/input17 [ 550.708623][T12723] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 553.092188][T12886] FAULT_INJECTION: forcing a failure. [ 553.092188][T12886] name failslab, interval 1, probability 0, space 0, times 0 [ 553.206292][T12886] CPU: 1 UID: 0 PID: 12886 Comm: syz.3.1538 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 553.206344][T12886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 553.206361][T12886] Call Trace: [ 553.206370][T12886] [ 553.206382][T12886] dump_stack_lvl+0x16c/0x1f0 [ 553.206436][T12886] should_fail_ex+0x512/0x640 [ 553.206487][T12886] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 553.206540][T12886] should_failslab+0xc2/0x120 [ 553.206567][T12886] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 553.206617][T12886] ? bdev_alloc_inode+0x26/0x90 [ 553.206654][T12886] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 553.206705][T12886] ? __pfx_bdev_alloc_inode+0x10/0x10 [ 553.206738][T12886] bdev_alloc_inode+0x26/0x90 [ 553.206773][T12886] ? __pfx_bdev_alloc_inode+0x10/0x10 [ 553.206806][T12886] alloc_inode+0x61/0x240 [ 553.206839][T12886] new_inode+0x22/0x1c0 [ 553.206873][T12886] bdev_alloc+0x2b/0x420 [ 553.206918][T12886] __alloc_disk_node+0x116/0x630 [ 553.206972][T12886] __blk_mq_alloc_disk+0x89/0x120 [ 553.207021][T12886] loop_add+0x49e/0xb70 [ 553.207057][T12886] ? do_vfs_ioctl+0x523/0x1a60 [ 553.207094][T12886] ? __pfx_loop_add+0x10/0x10 [ 553.207128][T12886] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 553.207191][T12886] ? find_held_lock+0x2b/0x80 [ 553.207221][T12886] loop_control_ioctl+0x13e/0x630 [ 553.207259][T12886] ? __pfx_loop_control_ioctl+0x10/0x10 [ 553.207312][T12886] ? __pfx_loop_control_ioctl+0x10/0x10 [ 553.207353][T12886] __x64_sys_ioctl+0x18e/0x210 [ 553.207392][T12886] do_syscall_64+0xcd/0x490 [ 553.207423][T12886] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 553.207454][T12886] RIP: 0033:0x7f6bb698e929 [ 553.207479][T12886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 553.207509][T12886] RSP: 002b:00007f6bb771c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 553.207538][T12886] RAX: ffffffffffffffda RBX: 00007f6bb6bb5fa0 RCX: 00007f6bb698e929 [ 553.207558][T12886] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000009 [ 553.207577][T12886] RBP: 00007f6bb6a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 553.207594][T12886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 553.207612][T12886] R13: 0000000000000000 R14: 00007f6bb6bb5fa0 R15: 00007ffd03659ba8 [ 553.207651][T12886] [ 555.925303][T12926] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1547'. [ 558.064550][T12956] FAULT_INJECTION: forcing a failure. [ 558.064550][T12956] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 558.200266][T12956] CPU: 1 UID: 0 PID: 12956 Comm: syz.1.1555 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 558.200318][T12956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 558.200338][T12956] Call Trace: [ 558.200349][T12956] [ 558.200362][T12956] dump_stack_lvl+0x16c/0x1f0 [ 558.200424][T12956] should_fail_ex+0x512/0x640 [ 558.200479][T12956] should_fail_alloc_page+0xe7/0x130 [ 558.200515][T12956] prepare_alloc_pages+0x3c2/0x610 [ 558.200555][T12956] ? rcu_is_watching+0x12/0xc0 [ 558.200592][T12956] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 558.200651][T12956] ? mark_held_locks+0x49/0x80 [ 558.200691][T12956] ? css_rstat_updated+0x9d/0xd30 [ 558.200722][T12956] ? finish_task_switch.isra.0+0x221/0xc10 [ 558.200769][T12956] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 558.200819][T12956] ? __lock_acquire+0x622/0x1c90 [ 558.200887][T12956] ? __lock_acquire+0x622/0x1c90 [ 558.200935][T12956] ? __lock_acquire+0x622/0x1c90 [ 558.200977][T12956] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 558.201031][T12956] ? policy_nodemask+0xea/0x4e0 [ 558.201089][T12956] alloc_pages_mpol+0x1fb/0x550 [ 558.201147][T12956] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 558.201216][T12956] folio_alloc_mpol_noprof+0x36/0x2f0 [ 558.201258][T12956] vma_alloc_folio_noprof+0xed/0x1e0 [ 558.201295][T12956] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 558.201330][T12956] ? find_held_lock+0x2b/0x80 [ 558.201362][T12956] ? __handle_mm_fault+0x1092/0x5490 [ 558.201412][T12956] __handle_mm_fault+0x2f21/0x5490 [ 558.201466][T12956] ? __pfx___handle_mm_fault+0x10/0x10 [ 558.201510][T12956] ? __pte_offset_map_lock+0x174/0x310 [ 558.201545][T12956] ? find_held_lock+0x2b/0x80 [ 558.201575][T12956] ? find_held_lock+0x2b/0x80 [ 558.201618][T12956] ? follow_page_pte+0x3af/0x14c0 [ 558.201666][T12956] handle_mm_fault+0x589/0xd10 [ 558.201719][T12956] __get_user_pages+0x589/0x3b80 [ 558.201768][T12956] ? __pfx_mt_find+0x10/0x10 [ 558.201805][T12956] ? __pfx___get_user_pages+0x10/0x10 [ 558.201867][T12956] populate_vma_page_range+0x278/0x3a0 [ 558.201911][T12956] ? __pfx_populate_vma_page_range+0x10/0x10 [ 558.201951][T12956] ? __pfx_find_vma_intersection+0x10/0x10 [ 558.201991][T12956] ? do_mmap+0x69c/0x1210 [ 558.202033][T12956] __mm_populate+0x1d8/0x380 [ 558.202075][T12956] ? __pfx___mm_populate+0x10/0x10 [ 558.202119][T12956] ? up_write+0x1b2/0x520 [ 558.202172][T12956] vm_mmap_pgoff+0x362/0x450 [ 558.202212][T12956] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 558.202254][T12956] ? __x64_sys_futex+0x1e0/0x4c0 [ 558.202293][T12956] ? __x64_sys_futex+0x1e9/0x4c0 [ 558.202341][T12956] ksys_mmap_pgoff+0x7d/0x5c0 [ 558.202375][T12956] ? xfd_validate_state+0x61/0x180 [ 558.202417][T12956] ? do_execveat_common.isra.0+0x4c6/0x610 [ 558.202471][T12956] __x64_sys_mmap+0x125/0x190 [ 558.202523][T12956] do_syscall_64+0xcd/0x490 [ 558.202558][T12956] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 558.202592][T12956] RIP: 0033:0x7f96b3f8e929 [ 558.202635][T12956] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 558.202664][T12956] RSP: 002b:00007f96b4e49038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 558.202695][T12956] RAX: ffffffffffffffda RBX: 00007f96b41b6080 RCX: 00007f96b3f8e929 [ 558.202717][T12956] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 558.202736][T12956] RBP: 00007f96b4010b39 R08: 0000000000000002 R09: 0000000000008000 [ 558.202755][T12956] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 558.202774][T12956] R13: 0000000000000000 R14: 00007f96b41b6080 R15: 00007ffefdfe6198 [ 558.202816][T12956] [ 559.182896][T12969] Format for deleting device is "id" (uint). [ 559.297962][T12971] netlink: 'syz.3.1558': attribute type 10 has an invalid length. [ 559.310521][T12971] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1558'. [ 559.540466][T12976] input: f as /devices/virtual/input/input18 [ 560.417141][T12984] usb usb38: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 560.444942][T12984] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 568.570496][T13083] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1585'. [ 572.106963][T13124] FAULT_INJECTION: forcing a failure. [ 572.106963][T13124] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 572.120591][T13124] CPU: 0 UID: 0 PID: 13124 Comm: syz.1.1595 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 572.120630][T13124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 572.120644][T13124] Call Trace: [ 572.120653][T13124] [ 572.120661][T13124] dump_stack_lvl+0x16c/0x1f0 [ 572.120708][T13124] should_fail_ex+0x512/0x640 [ 572.120747][T13124] _copy_from_user+0x2e/0xd0 [ 572.120785][T13124] generic_map_update_batch+0x380/0x610 [ 572.120832][T13124] ? __pfx_generic_map_update_batch+0x10/0x10 [ 572.120874][T13124] ? __pfx_generic_map_update_batch+0x10/0x10 [ 572.120919][T13124] bpf_map_do_batch+0x5b1/0x680 [ 572.120952][T13124] __sys_bpf+0x15f3/0x4d80 [ 572.120992][T13124] ? __pfx___sys_bpf+0x10/0x10 [ 572.121030][T13124] ? ksys_write+0x190/0x250 [ 572.121067][T13124] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 572.121107][T13124] ? fput+0x70/0xf0 [ 572.121128][T13124] ? ksys_write+0x1ac/0x250 [ 572.121160][T13124] ? __pfx_ksys_write+0x10/0x10 [ 572.121198][T13124] __x64_sys_bpf+0x78/0xc0 [ 572.121219][T13124] ? lockdep_hardirqs_on+0x7c/0x110 [ 572.121255][T13124] do_syscall_64+0xcd/0x490 [ 572.121278][T13124] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 572.121302][T13124] RIP: 0033:0x7f96b3f8e929 [ 572.121321][T13124] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 572.121359][T13124] RSP: 002b:00007f96b4e28038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 572.121382][T13124] RAX: ffffffffffffffda RBX: 00007f96b41b6160 RCX: 00007f96b3f8e929 [ 572.121398][T13124] RDX: 0000000000000081 RSI: 0000200000000380 RDI: 000000000000001a [ 572.121413][T13124] RBP: 00007f96b4e28090 R08: 0000000000000000 R09: 0000000000000000 [ 572.121428][T13124] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 572.121449][T13124] R13: 0000000000000000 R14: 00007f96b41b6160 R15: 00007ffefdfe6198 [ 572.121478][T13124] [ 573.200446][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 573.207267][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 573.316454][ T30] audit: type=1804 audit(6044824987.521:29): pid=13138 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1597" name="/newroot/360/file0" dev="tmpfs" ino=1903 res=1 errno=0 [ 573.339178][ T30] audit: type=1800 audit(6044824987.521:30): pid=13138 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1597" name="file0" dev="tmpfs" ino=1903 res=0 errno=0 [ 574.305838][T13158] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1602'. [ 578.933096][T13225] Format for deleting device is "id" (uint). [ 579.008752][T13228] netlink: 'syz.3.1619': attribute type 10 has an invalid length. [ 579.032388][T13228] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1619'. [ 579.165808][T13232] input: f as /devices/virtual/input/input19 [ 579.695223][T13243] FAULT_INJECTION: forcing a failure. [ 579.695223][T13243] name failslab, interval 1, probability 0, space 0, times 0 [ 579.836888][T13243] CPU: 0 UID: 0 PID: 13243 Comm: syz.3.1623 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 579.836938][T13243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 579.836959][T13243] Call Trace: [ 579.836971][T13243] [ 579.836983][T13243] dump_stack_lvl+0x16c/0x1f0 [ 579.837043][T13243] should_fail_ex+0x512/0x640 [ 579.837094][T13243] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 579.837155][T13243] should_failslab+0xc2/0x120 [ 579.837186][T13243] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 579.837234][T13243] ? trace_cap_capable+0x18d/0x200 [ 579.837266][T13243] ? create_new_namespaces+0x30/0xa90 [ 579.837309][T13243] create_new_namespaces+0x30/0xa90 [ 579.837345][T13243] ? bpf_lsm_capable+0x9/0x10 [ 579.837385][T13243] ? security_capable+0x7e/0x260 [ 579.837423][T13243] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 579.837465][T13243] ksys_unshare+0x45b/0xa40 [ 579.837506][T13243] ? __local_bh_enable+0x7a/0x90 [ 579.837537][T13243] ? __pfx_ksys_unshare+0x10/0x10 [ 579.837589][T13243] ? __pfx_handle_softirqs+0x10/0x10 [ 579.837631][T13243] __x64_sys_unshare+0x31/0x40 [ 579.837680][T13243] do_syscall_64+0xcd/0x490 [ 579.837715][T13243] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 579.837749][T13243] RIP: 0033:0x7f6bb698e929 [ 579.837776][T13243] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 579.837808][T13243] RSP: 002b:00007f6bb47d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 579.837841][T13243] RAX: ffffffffffffffda RBX: 00007f6bb6bb6160 RCX: 00007f6bb698e929 [ 579.837862][T13243] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000400 [ 579.837881][T13243] RBP: 00007f6bb6a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 579.837901][T13243] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 579.837920][T13243] R13: 0000000000000000 R14: 00007f6bb6bb6160 R15: 00007ffd03659ba8 [ 579.837962][T13243] [ 580.466518][ T30] audit: type=1800 audit(6044825010.665:31): pid=13251 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1625" name="members" dev="configfs" ino=39634 res=0 errno=0 [ 580.569748][T13253] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1626'. [ 580.660491][T13253] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1626'. [ 580.674966][T13253] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1626'. [ 580.684357][T13253] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1626'. [ 580.694295][T13253] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1626'. [ 580.704960][T13253] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1626'. [ 580.714296][T13253] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1626'. [ 580.725056][T13253] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1626'. [ 580.746177][T13253] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1626'. [ 580.814312][T13253] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1626'. [ 581.335523][T13261] FAULT_INJECTION: forcing a failure. [ 581.335523][T13261] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 581.359875][T13261] CPU: 1 UID: 0 PID: 13261 Comm: syz.3.1627 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 581.359918][T13261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 581.359936][T13261] Call Trace: [ 581.359946][T13261] [ 581.359958][T13261] dump_stack_lvl+0x16c/0x1f0 [ 581.360015][T13261] should_fail_ex+0x512/0x640 [ 581.360068][T13261] should_fail_alloc_page+0xe7/0x130 [ 581.360102][T13261] prepare_alloc_pages+0x3c2/0x610 [ 581.360141][T13261] ? __lock_acquire+0x622/0x1c90 [ 581.360186][T13261] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 581.360244][T13261] ? lock_acquire+0x179/0x350 [ 581.360290][T13261] ? __lock_acquire+0x622/0x1c90 [ 581.360331][T13261] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 581.360382][T13261] ? __lock_acquire+0x622/0x1c90 [ 581.360422][T13261] ? css_rstat_updated+0x9d/0xd30 [ 581.360459][T13261] ? __lock_acquire+0x622/0x1c90 [ 581.360503][T13261] ? find_held_lock+0x2b/0x80 [ 581.360558][T13261] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 581.360607][T13261] ? policy_nodemask+0xea/0x4e0 [ 581.360658][T13261] alloc_pages_mpol+0x1fb/0x550 [ 581.360711][T13261] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 581.360777][T13261] alloc_pages_noprof+0x131/0x390 [ 581.360827][T13261] pgd_alloc+0x4b/0x650 [ 581.360880][T13261] mm_init+0x73b/0x13c0 [ 581.360908][T13261] ? mm_alloc+0x1c/0xc0 [ 581.360947][T13261] mm_alloc+0x9f/0xc0 [ 581.360979][T13261] alloc_bprm+0x2af/0x6f0 [ 581.361024][T13261] do_execveat_common.isra.0+0x1ce/0x610 [ 581.361077][T13261] __x64_sys_execveat+0xda/0x120 [ 581.361125][T13261] do_syscall_64+0xcd/0x490 [ 581.361158][T13261] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 581.361191][T13261] RIP: 0033:0x7f6bb698e929 [ 581.361217][T13261] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 581.361250][T13261] RSP: 002b:00007f6bb771c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 581.361279][T13261] RAX: ffffffffffffffda RBX: 00007f6bb6bb5fa0 RCX: 00007f6bb698e929 [ 581.361298][T13261] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003 [ 581.361316][T13261] RBP: 00007f6bb771c090 R08: 0000000000011000 R09: 0000000000000000 [ 581.361334][T13261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 581.361351][T13261] R13: 0000000000000000 R14: 00007f6bb6bb5fa0 R15: 00007ffd03659ba8 [ 581.361390][T13261] [ 582.659275][T13276] Format for deleting device is "id" (uint). [ 582.760650][T13280] netlink: 'syz.1.1631': attribute type 10 has an invalid length. [ 583.260318][T13286] input: f as /devices/virtual/input/input20 [ 587.134854][T13337] bond0: option all_slaves_active: invalid value () [ 587.644428][T13356] zram: Cannot change disksize for initialized device [ 587.880208][T13366] program syz.4.1652 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 587.900516][T13366] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 590.617126][T13398] __nla_validate_parse: 38 callbacks suppressed [ 590.617149][T13398] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1666'. [ 593.460820][T13446] Format for deleting device is "id" (uint). [ 593.589662][T13446] netlink: 'syz.3.1671': attribute type 10 has an invalid length. [ 593.604078][T13446] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1671'. [ 594.113806][T13464] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1676'. [ 595.331454][T13486] Format for deleting device is "id" (uint). [ 595.408905][T13486] netlink: 'syz.1.1682': attribute type 10 has an invalid length. [ 595.417064][T13486] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1682'. [ 595.744507][T13490] program syz.1.1683 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 595.775995][T13490] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 596.880418][T13509] program syz.1.1687 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 596.907891][T13509] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 598.218482][T13525] program syz.3.1689 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 598.229389][T13525] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 598.289129][T13526] input: f as /devices/virtual/input/input21 [ 598.841894][T13536] FAULT_INJECTION: forcing a failure. [ 598.841894][T13536] name failslab, interval 1, probability 0, space 0, times 0 [ 598.868583][T13536] CPU: 1 UID: 0 PID: 13536 Comm: syz.4.1692 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 598.868632][T13536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 598.868652][T13536] Call Trace: [ 598.868664][T13536] [ 598.868677][T13536] dump_stack_lvl+0x16c/0x1f0 [ 598.868740][T13536] should_fail_ex+0x512/0x640 [ 598.868788][T13536] ? __kmalloc_noprof+0xbf/0x510 [ 598.868838][T13536] ? ring_buffer_read_prepare+0x171/0x320 [ 598.868876][T13536] should_failslab+0xc2/0x120 [ 598.868906][T13536] __kmalloc_noprof+0xd2/0x510 [ 598.868956][T13536] ? kasan_save_track+0x14/0x30 [ 598.869008][T13536] ring_buffer_read_prepare+0x171/0x320 [ 598.869047][T13536] tracing_open+0xbe8/0xf90 [ 598.869084][T13536] do_dentry_open+0x741/0x1c10 [ 598.869128][T13536] ? __pfx_tracing_open+0x10/0x10 [ 598.869165][T13536] vfs_open+0x82/0x3f0 [ 598.869199][T13536] path_openat+0x1de4/0x2cb0 [ 598.869266][T13536] ? __pfx_path_openat+0x10/0x10 [ 598.869313][T13536] ? __lock_acquire+0xb8a/0x1c90 [ 598.869353][T13536] do_filp_open+0x20b/0x470 [ 598.869395][T13536] ? __pfx_do_filp_open+0x10/0x10 [ 598.869459][T13536] ? alloc_fd+0x471/0x7d0 [ 598.869510][T13536] do_sys_openat2+0x11b/0x1d0 [ 598.869546][T13536] ? __pfx_do_sys_openat2+0x10/0x10 [ 598.869599][T13536] __x64_sys_openat+0x174/0x210 [ 598.869636][T13536] ? __pfx___x64_sys_openat+0x10/0x10 [ 598.869690][T13536] do_syscall_64+0xcd/0x490 [ 598.869722][T13536] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 598.869754][T13536] RIP: 0033:0x7f382d58e929 [ 598.869782][T13536] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 598.869816][T13536] RSP: 002b:00007f382e371038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 598.869848][T13536] RAX: ffffffffffffffda RBX: 00007f382d7b5fa0 RCX: 00007f382d58e929 [ 598.869871][T13536] RDX: 0000000000000002 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 598.869891][T13536] RBP: 00007f382d610b39 R08: 0000000000000000 R09: 0000000000000000 [ 598.869910][T13536] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 598.869929][T13536] R13: 0000000000000000 R14: 00007f382d7b5fa0 R15: 00007ffe546dfb38 [ 598.869972][T13536] [ 600.035998][T13559] program syz.3.1697 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 600.086332][T13564] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1698'. [ 600.146515][T13559] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 600.250463][T13568] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1699'. [ 602.278247][T13584] Format for deleting device is "id" (uint). [ 602.460698][T13584] netlink: 'syz.3.1703': attribute type 10 has an invalid length. [ 602.518256][T13584] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1703'. [ 602.977991][T13590] input: f as /devices/virtual/input/input22 [ 606.604631][T13616] usb usb38: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 606.632975][T13616] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 606.741309][T13613] ubi0: attaching mtd0 [ 606.748372][T13613] ubi0: scanning is finished [ 606.753185][T13613] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 606.894209][T13613] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 607.126076][T13631] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1716'. [ 608.284599][T13638] input: f as /devices/virtual/input/input23 [ 608.295698][T13624] hugetlbfs: syz.2.1715 (13624): Using mlock ulimits for SHM_HUGETLB is obsolete [ 608.728637][T13642] input: f as /devices/virtual/input/input24 [ 609.962787][T13661] input: jJǸ-9%vlQ J8fi as /devices/virtual/input/input25 [ 610.089281][T13666] program syz.4.1723 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 610.110204][T13666] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 612.494533][T13695] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1729'. [ 612.672010][T13706] program syz.1.1732 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 612.748193][T13706] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 614.672261][T13744] input: jJǸ-9%vlQ J8fi as /devices/virtual/input/input26 [ 614.824117][T13748] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1744'. [ 615.439829][T13757] program syz.4.1747 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 615.459109][T13757] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 615.877409][T13770] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1751'. [ 617.119236][T13789] input: jJǸ-9%vlQ J8fi as /devices/virtual/input/input27 [ 617.656081][T13800] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1756'. [ 617.762951][T13803] Format for deleting device is "id" (uint). [ 617.880822][T13807] netlink: 'syz.3.1759': attribute type 10 has an invalid length. [ 617.899082][T13806] input: f as /devices/virtual/input/input28 [ 617.915848][T13807] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1759'. [ 618.107698][T13793] CIFS mount error: No usable UNC path provided in device string! [ 618.107698][T13793] [ 618.208970][T13793] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 619.310115][T13838] program syz.4.1771 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 619.335538][T13838] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 620.380371][T13860] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1768'. [ 621.102279][T13883] delete_channel: no stack [ 621.885970][T13894] Format for deleting device is "id" (uint). [ 622.095640][T13894] netlink: 'syz.4.1779': attribute type 10 has an invalid length. [ 622.118534][T13894] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1779'. [ 624.731279][T13937] CIFS mount error: No usable UNC path provided in device string! [ 624.731279][T13937] [ 624.775961][T13937] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 627.802248][T14008] input: f as /devices/virtual/input/input29 [ 628.412682][T14017] netlink: 25 bytes leftover after parsing attributes in process `syz.2.1807'. [ 629.109600][T14021] FAULT_INJECTION: forcing a failure. [ 629.109600][T14021] name failslab, interval 1, probability 0, space 0, times 0 [ 629.170692][T14021] CPU: 0 UID: 0 PID: 14021 Comm: syz.3.1808 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 629.170738][T14021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 629.170757][T14021] Call Trace: [ 629.170767][T14021] [ 629.170779][T14021] dump_stack_lvl+0x16c/0x1f0 [ 629.170835][T14021] should_fail_ex+0x512/0x640 [ 629.170880][T14021] ? fs_reclaim_acquire+0xae/0x150 [ 629.170919][T14021] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 629.170963][T14021] should_failslab+0xc2/0x120 [ 629.170993][T14021] __kmalloc_noprof+0xd2/0x510 [ 629.171050][T14021] tomoyo_realpath_from_path+0xc2/0x6e0 [ 629.171096][T14021] ? tomoyo_profile+0x47/0x60 [ 629.171149][T14021] tomoyo_path_number_perm+0x245/0x580 [ 629.171185][T14021] ? tomoyo_path_number_perm+0x237/0x580 [ 629.171224][T14021] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 629.171265][T14021] ? find_held_lock+0x2b/0x80 [ 629.171334][T14021] ? find_held_lock+0x2b/0x80 [ 629.171363][T14021] ? hook_file_ioctl_common+0x145/0x410 [ 629.171407][T14021] ? __fget_files+0x20e/0x3c0 [ 629.171457][T14021] security_file_ioctl+0x9b/0x240 [ 629.171508][T14021] __x64_sys_ioctl+0xb7/0x210 [ 629.171549][T14021] do_syscall_64+0xcd/0x490 [ 629.171582][T14021] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 629.171614][T14021] RIP: 0033:0x7f6bb698e929 [ 629.171641][T14021] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 629.171672][T14021] RSP: 002b:00007f6bb771c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 629.171702][T14021] RAX: ffffffffffffffda RBX: 00007f6bb6bb5fa0 RCX: 00007f6bb698e929 [ 629.171722][T14021] RDX: ffffffffffffffff RSI: 000000000000560f RDI: 0000000000000003 [ 629.171740][T14021] RBP: 00007f6bb771c090 R08: 0000000000000000 R09: 0000000000000000 [ 629.171758][T14021] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 629.171775][T14021] R13: 0000000000000000 R14: 00007f6bb6bb5fa0 R15: 00007ffd03659ba8 [ 629.171815][T14021] [ 629.172277][T14021] ERROR: Out of memory at tomoyo_realpath_from_path. [ 629.412767][ T30] audit: type=1800 audit(6044825139.617:32): pid=14022 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1809" name="version" dev="configfs" ino=42848 res=0 errno=0 [ 630.193555][T14045] Format for deleting device is "id" (uint). [ 630.293762][T14046] netlink: 'syz.3.1815': attribute type 10 has an invalid length. [ 630.380821][T14046] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1815'. [ 631.035318][T14059] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1818'. [ 632.520360][T14088] input: f as /devices/virtual/input/input30 [ 633.089518][T14094] Format for deleting device is "id" (uint). [ 633.231799][T14095] netlink: 'syz.4.1824': attribute type 10 has an invalid length. [ 633.270032][T14095] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1824'. [ 634.298667][T14115] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1830'. [ 634.391553][T14117] program syz.3.1828 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 634.420212][T14117] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 634.532743][T14121] input: f as /devices/virtual/input/input31 [ 634.645631][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 634.652028][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 637.541655][T14150] Format for deleting device is "id" (uint). [ 637.662100][T14150] netlink: 'syz.3.1840': attribute type 10 has an invalid length. [ 637.680574][T14150] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1840'. [ 638.939719][T14174] Format for deleting device is "id" (uint). [ 639.063373][T14173] can: request_module (can-proto-0) failed. [ 639.198149][T14181] netlink: 'syz.1.1846': attribute type 10 has an invalid length. [ 639.229999][T14181] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1846'. [ 640.152141][T14192] Format for deleting device is "id" (uint). [ 640.203195][T14190] netlink: 'syz.1.1849': attribute type 10 has an invalid length. [ 640.251137][T14190] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1849'. [ 640.317141][T14195] netlink: 'syz.4.1851': attribute type 10 has an invalid length. [ 640.325192][T14195] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1851'. [ 641.349067][T14218] can: request_module (can-proto-0) failed. [ 642.491984][T14241] program syz.3.1861 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 642.502891][T14241] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 643.336023][T14250] netlink: 'syz.2.1863': attribute type 10 has an invalid length. [ 643.373414][T14250] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1863'. [ 643.469169][T14254] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1862'. [ 643.724471][T14258] program syz.3.1864 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 643.744834][T14258] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 646.123860][T14286] netlink: 'syz.2.1879': attribute type 10 has an invalid length. [ 646.132211][T14286] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1879'. [ 646.560396][T14292] input: f as /devices/virtual/input/input33 [ 648.042739][T14310] input: f as /devices/virtual/input/input34 [ 648.566925][T14314] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1878'. [ 648.645660][T14315] netlink: 25 bytes leftover after parsing attributes in process `syz.1.1878'. [ 650.371766][T14363] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1888'. [ 650.582522][T14366] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1889'. [ 650.613439][T14366] netlink: 25 bytes leftover after parsing attributes in process `syz.1.1889'. [ 651.168938][T14378] input: f as /devices/virtual/input/input35 [ 651.214203][T14377] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1890'. [ 651.253599][T14380] program syz.1.1891 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 651.270257][T14380] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 652.034002][T14391] Format for deleting device is "id" (uint). [ 652.160137][T14394] netlink: 'syz.4.1894': attribute type 10 has an invalid length. [ 652.269786][T14394] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1894'. [ 653.260839][ T30] audit: type=1800 audit(6044825203.443:33): pid=14412 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1899" name="members" dev="configfs" ino=43810 res=0 errno=0 [ 654.563919][T14437] netlink: 'syz.2.1907': attribute type 10 has an invalid length. [ 654.572660][T14437] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1907'. [ 655.666061][T14460] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1911'. [ 656.009921][T14464] ima: policy update failed [ 656.014708][ T30] audit: type=1802 audit(6044825206.213:34): pid=14464 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1914" res=0 errno=0 [ 658.041900][T14485] input: f as /devices/virtual/input/input36 [ 660.899169][T14523] input: f as /devices/virtual/input/input37 [ 662.689582][T14549] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input38 [ 663.230376][T14554] can: request_module (can-proto-0) failed. [ 663.694398][T14563] input: f as /devices/virtual/input/input39 [ 665.098541][T14577] input: f as /devices/virtual/input/input40 [ 666.190770][T12723] Bluetooth: hci3: unexpected event for opcode 0x0000 [ 666.564166][T14597] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1944'. [ 669.062621][T14620] usb usb38: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 669.085366][T14620] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 669.098214][T14626] input: f as /devices/virtual/input/input41 [ 669.204542][T14630] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1952'. [ 670.225130][T12723] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0 [ 670.233662][T12723] Bluetooth: hci3: Injecting HCI hardware error event [ 670.246007][T10277] Bluetooth: hci3: hardware error 0x00 [ 670.727078][T14651] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1956'. [ 672.141800][T14659] usb usb38: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 672.149681][T14659] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 672.315868][T10277] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 673.476844][T14678] input: f as /devices/virtual/input/input42 [ 673.985481][T14683] netlink: 'syz.2.1964': attribute type 10 has an invalid length. [ 673.993657][T14683] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1964'. [ 674.306219][T14691] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1965'. [ 674.884240][T14697] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1968'. [ 675.895200][T14721] program syz.3.1973 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 675.925080][T14721] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 676.185925][T14726] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1974'. [ 676.205143][T14726] : renamed from hsr0 (while UP) [ 677.344369][T14746] program syz.4.1978 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 677.363168][T14746] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 678.425235][T14770] Format for deleting device is "id" (uint). [ 678.560723][T14774] netlink: 'syz.4.1986': attribute type 10 has an invalid length. [ 678.582304][T14774] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1986'. [ 679.376513][T14786] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1989'. [ 680.977637][T14812] input: f as /devices/virtual/input/input45 [ 681.046913][T14814] program syz.1.1995 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 681.063777][T14814] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 682.506570][T14834] FAULT_INJECTION: forcing a failure. [ 682.506570][T14834] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 682.543328][T14834] CPU: 1 UID: 0 PID: 14834 Comm: syz.4.2000 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 682.543374][T14834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 682.543392][T14834] Call Trace: [ 682.543401][T14834] [ 682.543422][T14834] dump_stack_lvl+0x16c/0x1f0 [ 682.543478][T14834] should_fail_ex+0x512/0x640 [ 682.543530][T14834] _copy_from_user+0x2e/0xd0 [ 682.543581][T14834] do_sys_poll+0x1d5/0xdf0 [ 682.543623][T14834] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 682.543669][T14834] ? kernel_text_address+0x8d/0x100 [ 682.543719][T14834] ? __kernel_text_address+0xd/0x40 [ 682.543770][T14834] ? __pfx_do_sys_poll+0x10/0x10 [ 682.543851][T14834] ? find_held_lock+0x2b/0x80 [ 682.543957][T14834] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 682.543994][T14834] ? set_user_sigmask+0x21b/0x2b0 [ 682.544025][T14834] ? __pfx_set_user_sigmask+0x10/0x10 [ 682.544079][T14834] ? __fget_files+0x20e/0x3c0 [ 682.544128][T14834] __x64_sys_ppoll+0x254/0x2d0 [ 682.544172][T14834] ? __pfx___x64_sys_ppoll+0x10/0x10 [ 682.544214][T14834] ? ksys_write+0x1ac/0x250 [ 682.544259][T14834] ? __pfx_ksys_write+0x10/0x10 [ 682.544314][T14834] do_syscall_64+0xcd/0x490 [ 682.544347][T14834] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 682.544379][T14834] RIP: 0033:0x7f382d58e929 [ 682.544405][T14834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 682.544445][T14834] RSP: 002b:00007f382e371038 EFLAGS: 00000246 ORIG_RAX: 000000000000010f [ 682.544475][T14834] RAX: ffffffffffffffda RBX: 00007f382d7b5fa0 RCX: 00007f382d58e929 [ 682.544494][T14834] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000200000000200 [ 682.544513][T14834] RBP: 00007f382e371090 R08: 0000000000000008 R09: 0000000000000000 [ 682.544531][T14834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 682.544547][T14834] R13: 0000000000000000 R14: 00007f382d7b5fa0 R15: 00007ffe546dfb38 [ 682.544584][T14834] [ 684.706967][T14868] program syz.3.2006 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 684.733462][T14868] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 685.665160][ T30] audit: type=1800 audit(6044825299.854:35): pid=14877 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2005" name="members" dev="configfs" ino=46677 res=0 errno=0 [ 686.321357][T14889] FAULT_INJECTION: forcing a failure. [ 686.321357][T14889] name failslab, interval 1, probability 0, space 0, times 0 [ 686.334458][T14889] CPU: 1 UID: 0 PID: 14889 Comm: syz.3.2011 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 686.334503][T14889] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 686.334523][T14889] Call Trace: [ 686.334533][T14889] [ 686.334546][T14889] dump_stack_lvl+0x16c/0x1f0 [ 686.334603][T14889] should_fail_ex+0x512/0x640 [ 686.334650][T14889] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 686.334703][T14889] should_failslab+0xc2/0x120 [ 686.334733][T14889] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 686.334781][T14889] ? __alloc_skb+0x2b2/0x380 [ 686.334837][T14889] __alloc_skb+0x2b2/0x380 [ 686.334884][T14889] ? __pfx___alloc_skb+0x10/0x10 [ 686.334936][T14889] ? finish_task_switch.isra.0+0x221/0xc10 [ 686.334969][T14889] ? lockdep_hardirqs_on+0x10/0x110 [ 686.335018][T14889] ? finish_task_switch.isra.0+0x221/0xc10 [ 686.335060][T14889] ? rcu_is_watching+0x12/0xc0 [ 686.335097][T14889] alloc_skb_with_frags+0xe0/0x860 [ 686.335132][T14889] sock_alloc_send_pskb+0x7fb/0x990 [ 686.335180][T14889] ? __pfx_sock_alloc_send_pskb+0x10/0x10 [ 686.335226][T14889] ? find_held_lock+0x2b/0x80 [ 686.335253][T14889] tun_get_user+0x502/0x3b80 [ 686.335288][T14889] ? __pfx_tun_get_user+0x10/0x10 [ 686.335313][T14889] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 686.335361][T14889] ? find_held_lock+0x2b/0x80 [ 686.335386][T14889] ? tun_get+0x191/0x370 [ 686.335430][T14889] tun_chr_write_iter+0xdc/0x210 [ 686.335456][T14889] vfs_write+0x6c4/0x1150 [ 686.335492][T14889] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 686.335519][T14889] ? __pfx_vfs_write+0x10/0x10 [ 686.335550][T14889] ? find_held_lock+0x2b/0x80 [ 686.335592][T14889] __x64_sys_pwrite64+0x1eb/0x250 [ 686.335629][T14889] ? __pfx___x64_sys_pwrite64+0x10/0x10 [ 686.335676][T14889] do_syscall_64+0xcd/0x490 [ 686.335701][T14889] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 686.335726][T14889] RIP: 0033:0x7f6bb698e929 [ 686.335746][T14889] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 686.335770][T14889] RSP: 002b:00007f6bb771c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 686.335793][T14889] RAX: ffffffffffffffda RBX: 00007f6bb6bb5fa0 RCX: 00007f6bb698e929 [ 686.335810][T14889] RDX: 000000000000fdf3 RSI: 0000200000000000 RDI: 00000000000000c8 [ 686.335825][T14889] RBP: 00007f6bb6a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 686.335841][T14889] R10: 0000000000000039 R11: 0000000000000246 R12: 0000000000000000 [ 686.335857][T14889] R13: 0000000000000000 R14: 00007f6bb6bb5fa0 R15: 00007ffd03659ba8 [ 686.335887][T14889] [ 687.157672][T14897] input: f as /devices/virtual/input/input46 [ 687.428588][T14906] FAULT_INJECTION: forcing a failure. [ 687.428588][T14906] name failslab, interval 1, probability 0, space 0, times 0 [ 687.465296][T14906] CPU: 0 UID: 0 PID: 14906 Comm: syz.4.2015 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 687.465343][T14906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 687.465360][T14906] Call Trace: [ 687.465370][T14906] [ 687.465381][T14906] dump_stack_lvl+0x16c/0x1f0 [ 687.465432][T14906] should_fail_ex+0x512/0x640 [ 687.465472][T14906] ? __kmalloc_noprof+0xbf/0x510 [ 687.465515][T14906] ? kernfs_fop_write_iter+0x237/0x510 [ 687.465542][T14906] should_failslab+0xc2/0x120 [ 687.465568][T14906] __kmalloc_noprof+0xd2/0x510 [ 687.465616][T14906] kernfs_fop_write_iter+0x237/0x510 [ 687.465649][T14906] vfs_write+0x6c4/0x1150 [ 687.465689][T14906] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 687.465720][T14906] ? __pfx___mutex_lock+0x10/0x10 [ 687.465747][T14906] ? __pfx_vfs_write+0x10/0x10 [ 687.465808][T14906] ksys_write+0x12a/0x250 [ 687.465845][T14906] ? __pfx_ksys_write+0x10/0x10 [ 687.465893][T14906] do_syscall_64+0xcd/0x490 [ 687.465921][T14906] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 687.465949][T14906] RIP: 0033:0x7f382d58e929 [ 687.465971][T14906] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 687.466000][T14906] RSP: 002b:00007f382e371038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 687.466026][T14906] RAX: ffffffffffffffda RBX: 00007f382d7b5fa0 RCX: 00007f382d58e929 [ 687.466044][T14906] RDX: 0000000000000004 RSI: 0000200000000440 RDI: 0000000000000003 [ 687.466061][T14906] RBP: 00007f382e371090 R08: 0000000000000000 R09: 0000000000000000 [ 687.466077][T14906] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 687.466093][T14906] R13: 0000000000000000 R14: 00007f382d7b5fa0 R15: 00007ffe546dfb38 [ 687.466128][T14906] [ 687.775905][T14909] Format for deleting device is "id" (uint). [ 687.896821][T14909] netlink: 'syz.3.2016': attribute type 10 has an invalid length. [ 687.907418][T14909] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2016'. [ 688.245994][T14919] FAULT_INJECTION: forcing a failure. [ 688.245994][T14919] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 688.289161][T14919] CPU: 0 UID: 0 PID: 14919 Comm: syz.4.2020 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 688.289203][T14919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 688.289219][T14919] Call Trace: [ 688.289228][T14919] [ 688.289236][T14919] dump_stack_lvl+0x16c/0x1f0 [ 688.289280][T14919] should_fail_ex+0x512/0x640 [ 688.289319][T14919] _copy_from_iter+0x29f/0x16f0 [ 688.289364][T14919] ? __pfx__copy_from_iter+0x10/0x10 [ 688.289403][T14919] ? rcu_is_watching+0x12/0xc0 [ 688.289426][T14919] ? trace_kmalloc+0x2b/0xd0 [ 688.289448][T14919] ? __kmalloc_noprof+0x242/0x510 [ 688.289489][T14919] kernfs_fop_write_iter+0x19a/0x510 [ 688.289519][T14919] vfs_write+0x6c4/0x1150 [ 688.289552][T14919] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 688.289578][T14919] ? __pfx___mutex_lock+0x10/0x10 [ 688.289600][T14919] ? __pfx_vfs_write+0x10/0x10 [ 688.289652][T14919] ksys_write+0x12a/0x250 [ 688.289684][T14919] ? __pfx_ksys_write+0x10/0x10 [ 688.289726][T14919] do_syscall_64+0xcd/0x490 [ 688.289750][T14919] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 688.289774][T14919] RIP: 0033:0x7f382d58e929 [ 688.289792][T14919] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 688.289814][T14919] RSP: 002b:00007f382e371038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 688.289835][T14919] RAX: ffffffffffffffda RBX: 00007f382d7b5fa0 RCX: 00007f382d58e929 [ 688.289851][T14919] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000004 [ 688.289864][T14919] RBP: 00007f382e371090 R08: 0000000000000000 R09: 0000000000000000 [ 688.289878][T14919] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 688.289891][T14919] R13: 0000000000000000 R14: 00007f382d7b5fa0 R15: 00007ffe546dfb38 [ 688.289930][T14919] [ 688.846722][T14937] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2023'. [ 688.864571][T14939] Format for deleting device is "id" (uint). [ 688.937015][T14939] netlink: 'syz.3.2025': attribute type 10 has an invalid length. [ 688.985416][T14939] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2025'. [ 689.419144][T14946] sp0: Synchronizing with TNC [ 689.519966][T14946] sp0: Synchronizing with TNC [ 690.201654][T14975] input: f as /devices/virtual/input/input47 [ 690.641964][T14981] input: f as /devices/virtual/input/input48 [ 691.029253][T14987] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2035'. [ 691.169762][ T30] audit: type=1800 audit(6044825329.379:36): pid=14988 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2034" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0 [ 691.328395][T14991] Format for deleting device is "id" (uint). [ 691.470588][T14991] netlink: 'syz.3.2036': attribute type 10 has an invalid length. [ 691.478626][T14991] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2036'. [ 691.901842][T15005] program syz.1.2038 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 691.913462][T15005] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 692.715737][T15015] mmap: syz.1.2041 (15015): VmData 39563264 exceed data ulimit 3. Update limits or use boot option ignore_rlimit_data. [ 692.753995][T15016] input: f as /devices/virtual/input/input49 [ 692.779952][T15018] input: f as /devices/virtual/input/input50 [ 692.934703][T15022] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2044'. [ 693.119540][T15026] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock [ 693.319384][T15029] FAULT_INJECTION: forcing a failure. [ 693.319384][T15029] name failslab, interval 1, probability 0, space 0, times 0 [ 693.333264][T15029] CPU: 0 UID: 0 PID: 15029 Comm: syz.4.2047 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 693.333308][T15029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 693.333326][T15029] Call Trace: [ 693.333337][T15029] [ 693.333349][T15029] dump_stack_lvl+0x16c/0x1f0 [ 693.333402][T15029] should_fail_ex+0x512/0x640 [ 693.333456][T15029] should_failslab+0xc2/0x120 [ 693.333487][T15029] __kmalloc_cache_noprof+0x6a/0x3e0 [ 693.333531][T15029] ? sctp_add_bind_addr+0xae/0x3f0 [ 693.333585][T15029] sctp_add_bind_addr+0xae/0x3f0 [ 693.333649][T15029] sctp_copy_local_addr_list+0x39d/0x5a0 [ 693.333692][T15029] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 693.333741][T15029] ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360 [ 693.333785][T15029] ? sctp_bind_addr_copy+0xe0/0x530 [ 693.333814][T15029] sctp_bind_addr_copy+0xe0/0x530 [ 693.333853][T15029] sctp_connect_new_asoc+0x1d7/0x790 [ 693.333908][T15029] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 693.333963][T15029] ? bpf_lsm_sctp_bind_connect+0x9/0x10 [ 693.334003][T15029] sctp_sendmsg+0x15f9/0x1ee0 [ 693.334044][T15029] ? __pfx___up_read+0x10/0x10 [ 693.334102][T15029] ? __pfx_sctp_sendmsg+0x10/0x10 [ 693.334148][T15029] ? __pfx___might_resched+0x10/0x10 [ 693.334201][T15029] ? __pfx_aa_sk_perm+0x10/0x10 [ 693.334245][T15029] ? __pfx_sctp_sendmsg+0x10/0x10 [ 693.334290][T15029] inet_sendmsg+0x11c/0x140 [ 693.334340][T15029] ____sys_sendmsg+0x973/0xc70 [ 693.334385][T15029] ? __pfx_____sys_sendmsg+0x10/0x10 [ 693.334433][T15029] ? __pfx__kstrtoull+0x10/0x10 [ 693.334482][T15029] ___sys_sendmsg+0x134/0x1d0 [ 693.334538][T15029] ? __pfx____sys_sendmsg+0x10/0x10 [ 693.334611][T15029] ? find_held_lock+0x2b/0x80 [ 693.334676][T15029] __sys_sendmmsg+0x200/0x420 [ 693.334713][T15029] ? __pfx___sys_sendmmsg+0x10/0x10 [ 693.334759][T15029] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 693.334808][T15029] ? fput+0x70/0xf0 [ 693.334838][T15029] ? ksys_write+0x1ac/0x250 [ 693.334881][T15029] ? __pfx_ksys_write+0x10/0x10 [ 693.334939][T15029] __x64_sys_sendmmsg+0x9c/0x100 [ 693.334967][T15029] ? lockdep_hardirqs_on+0x7c/0x110 [ 693.335022][T15029] do_syscall_64+0xcd/0x490 [ 693.335054][T15029] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 693.335085][T15029] RIP: 0033:0x7f382d58e929 [ 693.335114][T15029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 693.335150][T15029] RSP: 002b:00007f382e371038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 693.335185][T15029] RAX: ffffffffffffffda RBX: 00007f382d7b5fa0 RCX: 00007f382d58e929 [ 693.335210][T15029] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000002 [ 693.335234][T15029] RBP: 00007f382e371090 R08: 0000000000000000 R09: 0000000000000000 [ 693.335255][T15029] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000002 [ 693.335275][T15029] R13: 0000000000000000 R14: 00007f382d7b5fa0 R15: 00007ffe546dfb38 [ 693.335322][T15029] [ 694.430477][T15055] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2054'. [ 695.204838][ T30] audit: type=1800 audit(6044825349.408:37): pid=15074 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2059" name="members" dev="configfs" ino=47325 res=0 errno=0 [ 696.070890][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 696.077417][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 697.317726][T15113] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2068'. [ 697.508577][T15119] program syz.3.2069 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 697.519800][T15119] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 698.175494][T15125] input: f as /devices/virtual/input/input51 [ 698.514002][T15129] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock [ 699.131083][T15139] [U] [ 699.134398][T15139] [U] [ 699.137793][T15139] [U] [ 699.140573][T15139] [U] [ 699.144238][T15139] [U] [ 699.147283][T15139] [U] [ 699.150321][T15139] [U] [ 699.153200][T15139] [U] [ 699.212808][T15139] [U] [ 699.215639][T15139] [U] [ 699.218415][T15139] [U] [ 699.221649][T15139] [U] [ 699.284481][T15139] [U] [ 699.287424][T15139] [U] [ 699.290213][T15139] [U] [ 699.292989][T15139] [U] [ 699.339932][T15139] [U] [ 699.342781][T15139] [U] [ 699.345566][T15139] [U] [ 699.349139][T15139] [U] [ 699.432245][T15139] [U] [ 699.435461][T15144] Format for deleting device is "id" (uint). [ 699.436099][T15139] [U] [ 699.446582][T15139] [U] [ 699.451221][T15139] [U] [ 699.468195][T15142] input: f as /devices/virtual/input/input52 [ 699.553415][T15139] [U] [ 699.556363][T15139] [U] [ 699.559144][T15139] [U] [ 699.561944][T15139] [U] [ 699.572518][T15144] netlink: 'syz.3.2075': attribute type 10 has an invalid length. [ 699.602880][T15139] [U] [ 699.605706][T15139] [U] [ 699.609209][T15139] [U] [ 699.611986][T15139] [U] [ 699.616814][T15144] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2075'. [ 699.695218][T15139] [U] [ 699.698138][T15139] [U] [ 699.700970][T15139] [U] [ 699.704010][T15139] [U] [ 699.707579][T15139] [U] [ 699.710789][T15139] [U] [ 699.713577][T15139] [U] [ 699.716318][T15139] [U] [ 699.740198][T15139] [U] [ 699.743417][T15139] [U] [ 699.746213][T15139] [U] [ 699.748993][T15139] [U] [ 699.798639][T15139] [U] [ 699.801637][T15139] [U] [ 699.804855][T15139] [U] [ 699.807639][T15139] [U] [ 699.837912][T15139] [U] [ 699.840746][T15139] [U] [ 699.843607][T15139] [U] [ 699.846386][T15139] [U] [ 699.887955][T15149] FAULT_INJECTION: forcing a failure. [ 699.887955][T15149] name failslab, interval 1, probability 0, space 0, times 0 [ 699.902683][T15139] [U] [ 699.905490][T15139] [U] [ 699.908537][T15139] [U] [ 699.911281][T15139] [U] [ 699.945174][T15139] [U] [ 699.948006][T15139] [U] [ 699.950762][T15139] [U] [ 699.953531][T15139] [U] [ 699.957768][T15149] CPU: 1 UID: 0 PID: 15149 Comm: syz.3.2076 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 699.957811][T15149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 699.957829][T15149] Call Trace: [ 699.957877][T15149] [ 699.957888][T15149] dump_stack_lvl+0x16c/0x1f0 [ 699.957943][T15149] should_fail_ex+0x512/0x640 [ 699.957994][T15149] should_failslab+0xc2/0x120 [ 699.958024][T15149] __kmalloc_cache_noprof+0x6a/0x3e0 [ 699.958068][T15149] ? __sctp_v6_cmp_addr+0x206/0x530 [ 699.958102][T15149] ? sctp_add_bind_addr+0xae/0x3f0 [ 699.958157][T15149] sctp_add_bind_addr+0xae/0x3f0 [ 699.958214][T15149] sctp_copy_local_addr_list+0x39d/0x5a0 [ 699.958257][T15149] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 699.958300][T15149] ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360 [ 699.958345][T15149] ? sctp_bind_addr_copy+0xe0/0x530 [ 699.958373][T15149] sctp_bind_addr_copy+0xe0/0x530 [ 699.958413][T15149] sctp_connect_new_asoc+0x1d7/0x790 [ 699.958459][T15149] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 699.958499][T15149] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 699.958537][T15149] __sctp_connect+0x3f3/0xc60 [ 699.958572][T15149] ? do_raw_spin_lock+0x12c/0x2b0 [ 699.958612][T15149] ? __pfx___sctp_connect+0x10/0x10 [ 699.958646][T15149] ? __pfx_sctp_inet_connect+0x10/0x10 [ 699.958680][T15149] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 699.958719][T15149] ? __pfx_sctp_inet_connect+0x10/0x10 [ 699.958750][T15149] sctp_inet_connect+0x15f/0x200 [ 699.958784][T15149] __sys_connect_file+0x141/0x1a0 [ 699.958822][T15149] __sys_connect+0x13b/0x160 [ 699.958862][T15149] ? __pfx___sys_connect+0x10/0x10 [ 699.958908][T15149] ? __pfx_ksys_write+0x10/0x10 [ 699.958949][T15149] __x64_sys_connect+0x72/0xb0 [ 699.958982][T15149] ? lockdep_hardirqs_on+0x7c/0x110 [ 699.959019][T15149] do_syscall_64+0xcd/0x490 [ 699.959048][T15149] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 699.959072][T15149] RIP: 0033:0x7f6bb698e929 [ 699.959093][T15149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 699.959118][T15149] RSP: 002b:00007f6bb771c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 699.959141][T15149] RAX: ffffffffffffffda RBX: 00007f6bb6bb5fa0 RCX: 00007f6bb698e929 [ 699.959157][T15149] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 699.959172][T15149] RBP: 00007f6bb771c090 R08: 0000000000000000 R09: 0000000000000000 [ 699.959186][T15149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 699.959201][T15149] R13: 0000000000000000 R14: 00007f6bb6bb5fa0 R15: 00007ffd03659ba8 [ 699.959232][T15149] [ 700.402050][T15139] [U] [ 700.404892][T15139] [U] [ 700.407658][T15139] [U] [ 700.410513][T15139] [U] [ 700.414379][T15139] [U] [ 700.417207][T15139] [U] [ 700.419984][T15139] [U] [ 700.422851][T15139] [U] [ 700.425928][T15139] [U] [ 700.428705][T15139] [U] [ 700.431473][T15139] [U] [ 700.434235][T15139] [U] [ 700.437926][T15139] [U] [ 700.441327][T15139] [U] [ 700.444107][T15139] [U] [ 700.447408][T15139] [U] [ 700.450414][T15139] [U] [ 700.453201][T15139] [U] [ 700.455971][T15139] [U] [ 700.459079][T15139] [U] [ 700.462007][T15139] [U] [ 700.464772][T15139] [U] [ 700.468247][T15139] [U] [ 700.471018][T15139] [U] [ 700.484398][T15139] [U] [ 701.610359][T15170] input: f as /devices/virtual/input/input53 [ 703.348204][T15192] FAULT_INJECTION: forcing a failure. [ 703.348204][T15192] name failslab, interval 1, probability 0, space 0, times 0 [ 703.361004][T15192] CPU: 0 UID: 0 PID: 15192 Comm: syz.1.2090 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 703.361047][T15192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 703.361065][T15192] Call Trace: [ 703.361076][T15192] [ 703.361087][T15192] dump_stack_lvl+0x16c/0x1f0 [ 703.361141][T15192] should_fail_ex+0x512/0x640 [ 703.361188][T15192] ? fs_reclaim_acquire+0xae/0x150 [ 703.361226][T15192] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 703.361272][T15192] should_failslab+0xc2/0x120 [ 703.361300][T15192] __kmalloc_noprof+0xd2/0x510 [ 703.361356][T15192] tomoyo_realpath_from_path+0xc2/0x6e0 [ 703.361406][T15192] ? tomoyo_profile+0x47/0x60 [ 703.361460][T15192] tomoyo_path_perm+0x274/0x460 [ 703.361494][T15192] ? tomoyo_path_perm+0x260/0x460 [ 703.361540][T15192] ? __pfx_tomoyo_path_perm+0x10/0x10 [ 703.361621][T15192] ? __pfx_vfs_write+0x10/0x10 [ 703.361663][T15192] ? hook_file_truncate+0xc7/0x250 [ 703.361697][T15192] ? do_sys_openat2+0x157/0x1d0 [ 703.361731][T15192] ? __pfx_do_sys_openat2+0x10/0x10 [ 703.361771][T15192] security_file_truncate+0x84/0x1e0 [ 703.361814][T15192] do_ftruncate+0x218/0x970 [ 703.361866][T15192] ? __pfx_do_ftruncate+0x10/0x10 [ 703.361915][T15192] ? ksys_write+0x1ac/0x250 [ 703.361957][T15192] ? __pfx_ksys_write+0x10/0x10 [ 703.362005][T15192] do_sys_ftruncate+0x61/0xb0 [ 703.362052][T15192] __x64_sys_ftruncate+0x58/0x80 [ 703.362101][T15192] do_syscall_64+0xcd/0x490 [ 703.362134][T15192] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 703.362165][T15192] RIP: 0033:0x7f96b3f8e929 [ 703.362191][T15192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 703.362222][T15192] RSP: 002b:00007f96b4e6a038 EFLAGS: 00000246 ORIG_RAX: 000000000000004d [ 703.362250][T15192] RAX: ffffffffffffffda RBX: 00007f96b41b5fa0 RCX: 00007f96b3f8e929 [ 703.362270][T15192] RDX: 0000000000000000 RSI: 0000000008800000 RDI: 0000000000000000 [ 703.362287][T15192] RBP: 00007f96b4e6a090 R08: 0000000000000000 R09: 0000000000000000 [ 703.362304][T15192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 703.362321][T15192] R13: 0000000000000000 R14: 00007f96b41b5fa0 R15: 00007ffefdfe6198 [ 703.362361][T15192] [ 703.362372][T15192] ERROR: Out of memory at tomoyo_realpath_from_path. [ 704.003113][T15202] bond0: option all_slaves_active: invalid value () [ 704.926900][T15225] input: f as /devices/virtual/input/input54 [ 705.391867][T15231] program syz.1.2097 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 705.432190][T15231] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 705.981303][T15240] FAULT_INJECTION: forcing a failure. [ 705.981303][T15240] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 705.997412][T15240] CPU: 0 UID: 0 PID: 15240 Comm: syz.3.2099 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 705.997454][T15240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 705.997472][T15240] Call Trace: [ 705.997482][T15240] [ 705.997495][T15240] dump_stack_lvl+0x16c/0x1f0 [ 705.997548][T15240] should_fail_ex+0x512/0x640 [ 705.997612][T15240] _copy_from_user+0x2e/0xd0 [ 705.997664][T15240] copy_msghdr_from_user+0x98/0x160 [ 705.997716][T15240] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 705.997774][T15240] ? kfree+0x24f/0x4d0 [ 705.997810][T15240] ? __pfx__kstrtoull+0x10/0x10 [ 705.997854][T15240] ___sys_sendmsg+0xfe/0x1d0 [ 705.997891][T15240] ? __pfx____sys_sendmsg+0x10/0x10 [ 705.997953][T15240] ? __pfx___might_resched+0x10/0x10 [ 705.997983][T15240] __sys_sendmmsg+0x200/0x420 [ 705.998007][T15240] ? __pfx___sys_sendmmsg+0x10/0x10 [ 705.998037][T15240] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 705.998070][T15240] ? fput+0x70/0xf0 [ 705.998090][T15240] ? ksys_write+0x1ac/0x250 [ 705.998119][T15240] ? __pfx_ksys_write+0x10/0x10 [ 705.998159][T15240] __x64_sys_sendmmsg+0x9c/0x100 [ 705.998181][T15240] ? lockdep_hardirqs_on+0x7c/0x110 [ 705.998218][T15240] do_syscall_64+0xcd/0x490 [ 705.998242][T15240] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 705.998268][T15240] RIP: 0033:0x7f6bb698e929 [ 705.998286][T15240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 705.998310][T15240] RSP: 002b:00007f6bb771c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 705.998332][T15240] RAX: ffffffffffffffda RBX: 00007f6bb6bb5fa0 RCX: 00007f6bb698e929 [ 705.998348][T15240] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 705.998363][T15240] RBP: 00007f6bb771c090 R08: 0000000000000000 R09: 0000000000000000 [ 705.998378][T15240] R10: 0000000007fffffe R11: 0000000000000246 R12: 0000000000000002 [ 705.998392][T15240] R13: 0000000000000000 R14: 00007f6bb6bb5fa0 R15: 00007ffd03659ba8 [ 705.998422][T15240] [ 708.166459][T15266] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2103'. [ 709.252254][T15279] input: f as /devices/virtual/input/input55 [ 711.050638][T15304] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2113'. [ 711.569095][T15309] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2111'. [ 712.321242][T15317] Format for deleting device is "id" (uint). [ 712.425805][T15320] netlink: 'syz.1.2116': attribute type 10 has an invalid length. [ 712.442744][T15320] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2116'. [ 713.795581][T15342] input: f as /devices/virtual/input/input57 [ 714.420449][T15356] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2123'. [ 714.594783][T15357] bond0: option all_slaves_active: invalid value () [ 715.348731][T15368] input: f as /devices/virtual/input/input58 [ 717.259361][T15381] input: f as /devices/virtual/input/input59 [ 717.627184][T15387] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2132'. [ 718.801057][T15399] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC:0 is already present [ 719.979711][T15439] Format for deleting device is "id" (uint). [ 720.020042][T15440] FAULT_INJECTION: forcing a failure. [ 720.020042][T15440] name failslab, interval 1, probability 0, space 0, times 0 [ 720.082462][T15440] CPU: 0 UID: 0 PID: 15440 Comm: syz.4.2140 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 720.082506][T15440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 720.082524][T15440] Call Trace: [ 720.082535][T15440] [ 720.082547][T15440] dump_stack_lvl+0x16c/0x1f0 [ 720.082602][T15440] should_fail_ex+0x512/0x640 [ 720.082648][T15440] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 720.082695][T15440] should_failslab+0xc2/0x120 [ 720.082724][T15440] __kmalloc_cache_noprof+0x6a/0x3e0 [ 720.082768][T15440] ? __vb2_init_fileio+0x253/0x1100 [ 720.082810][T15440] __vb2_init_fileio+0x253/0x1100 [ 720.082845][T15440] ? lockdep_hardirqs_on+0x7c/0x110 [ 720.082893][T15440] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 720.082943][T15440] ? __pollwait+0x271/0x490 [ 720.082989][T15440] vb2_core_poll+0x486/0x700 [ 720.083028][T15440] vb2_poll+0x33/0x150 [ 720.083061][T15440] vb2_fop_poll+0x10f/0x2c0 [ 720.083096][T15440] ? __pfx_vb2_fop_poll+0x10/0x10 [ 720.083126][T15440] v4l2_poll+0x160/0x320 [ 720.083173][T15440] ? __pfx_v4l2_poll+0x10/0x10 [ 720.083214][T15440] do_sys_poll+0x559/0xdf0 [ 720.083272][T15440] ? __pfx_do_sys_poll+0x10/0x10 [ 720.083366][T15440] ? find_held_lock+0x2b/0x80 [ 720.083397][T15440] ? __pfx___pollwait+0x10/0x10 [ 720.083444][T15440] ? __pfx_pollwake+0x10/0x10 [ 720.083554][T15440] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 720.083590][T15440] ? set_user_sigmask+0x21b/0x2b0 [ 720.083621][T15440] ? __pfx_set_user_sigmask+0x10/0x10 [ 720.083675][T15440] ? __fget_files+0x20e/0x3c0 [ 720.083724][T15440] __x64_sys_ppoll+0x254/0x2d0 [ 720.083770][T15440] ? __pfx___x64_sys_ppoll+0x10/0x10 [ 720.083889][T15440] ? ksys_write+0x1ac/0x250 [ 720.083934][T15440] ? __pfx_ksys_write+0x10/0x10 [ 720.084024][T15440] do_syscall_64+0xcd/0x490 [ 720.084056][T15440] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 720.084089][T15440] RIP: 0033:0x7f382d58e929 [ 720.084114][T15440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 720.084145][T15440] RSP: 002b:00007f382e371038 EFLAGS: 00000246 ORIG_RAX: 000000000000010f [ 720.084179][T15440] RAX: ffffffffffffffda RBX: 00007f382d7b5fa0 RCX: 00007f382d58e929 [ 720.084199][T15440] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000200000000200 [ 720.084217][T15440] RBP: 00007f382e371090 R08: 0000000000000008 R09: 0000000000000000 [ 720.084234][T15440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 720.084252][T15440] R13: 0000000000000000 R14: 00007f382d7b5fa0 R15: 00007ffe546dfb38 [ 720.084299][T15440] [ 720.094223][T15439] netlink: 'syz.3.2141': attribute type 10 has an invalid length. [ 720.382190][T15439] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2141'. [ 721.812651][T15468] FAULT_INJECTION: forcing a failure. [ 721.812651][T15468] name failslab, interval 1, probability 0, space 0, times 0 [ 721.868102][T15468] CPU: 1 UID: 0 PID: 15468 Comm: syz.1.2147 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 721.868148][T15468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 721.868167][T15468] Call Trace: [ 721.868177][T15468] [ 721.868190][T15468] dump_stack_lvl+0x16c/0x1f0 [ 721.868249][T15468] should_fail_ex+0x512/0x640 [ 721.868298][T15468] ? fs_reclaim_acquire+0xae/0x150 [ 721.868340][T15468] ? tomoyo_encode2+0x100/0x3e0 [ 721.868382][T15468] should_failslab+0xc2/0x120 [ 721.868412][T15468] __kmalloc_noprof+0xd2/0x510 [ 721.868459][T15468] ? d_absolute_path+0x136/0x1a0 [ 721.868498][T15468] tomoyo_encode2+0x100/0x3e0 [ 721.868550][T15468] tomoyo_encode+0x29/0x50 [ 721.868591][T15468] tomoyo_realpath_from_path+0x18f/0x6e0 [ 721.868651][T15468] tomoyo_path_number_perm+0x245/0x580 [ 721.868689][T15468] ? tomoyo_path_number_perm+0x237/0x580 [ 721.868733][T15468] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 721.868817][T15468] ? find_held_lock+0x2b/0x80 [ 721.868857][T15468] ? hook_file_ioctl_common+0x145/0x410 [ 721.868903][T15468] ? __fget_files+0x20e/0x3c0 [ 721.868956][T15468] security_file_ioctl+0x9b/0x240 [ 721.869001][T15468] __x64_sys_ioctl+0xb7/0x210 [ 721.869041][T15468] do_syscall_64+0xcd/0x490 [ 721.869074][T15468] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 721.869108][T15468] RIP: 0033:0x7f96b3f8e929 [ 721.869133][T15468] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 721.869166][T15468] RSP: 002b:00007f96b4e6a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 721.869197][T15468] RAX: ffffffffffffffda RBX: 00007f96b41b5fa0 RCX: 00007f96b3f8e929 [ 721.869219][T15468] RDX: 0000000000000000 RSI: 000000000000125f RDI: 0000000000000005 [ 721.869238][T15468] RBP: 00007f96b4010b39 R08: 0000000000000000 R09: 0000000000000000 [ 721.869257][T15468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 721.869276][T15468] R13: 0000000000000000 R14: 00007f96b41b5fa0 R15: 00007ffefdfe6198 [ 721.869318][T15468] [ 721.869344][T15468] ERROR: Out of memory at tomoyo_realpath_from_path. [ 722.185387][T15476] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2150'. [ 722.491252][T15483] Format for deleting device is "id" (uint). [ 722.566681][T15483] netlink: 'syz.3.2151': attribute type 10 has an invalid length. [ 722.576919][T15486] input: f as /devices/virtual/input/input60 [ 722.603861][T15483] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2151'. [ 722.800635][T15492] input: f as /devices/virtual/input/input61 [ 724.880231][T15529] FAULT_INJECTION: forcing a failure. [ 724.880231][T15529] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 724.915316][T15529] CPU: 1 UID: 0 PID: 15529 Comm: syz.1.2162 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 724.915361][T15529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 724.915379][T15529] Call Trace: [ 724.915389][T15529] [ 724.915401][T15529] dump_stack_lvl+0x16c/0x1f0 [ 724.915457][T15529] should_fail_ex+0x512/0x640 [ 724.915512][T15529] _copy_from_iter+0x29f/0x16f0 [ 724.915575][T15529] ? __pfx__copy_from_iter+0x10/0x10 [ 724.915628][T15529] ? rcu_is_watching+0x12/0xc0 [ 724.915662][T15529] ? trace_kmalloc+0x2b/0xd0 [ 724.915693][T15529] ? __kmalloc_noprof+0x242/0x510 [ 724.915748][T15529] kernfs_fop_write_iter+0x19a/0x510 [ 724.915791][T15529] vfs_write+0x6c4/0x1150 [ 724.915847][T15529] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 724.915884][T15529] ? __pfx___mutex_lock+0x10/0x10 [ 724.915915][T15529] ? __pfx_vfs_write+0x10/0x10 [ 724.915994][T15529] ksys_write+0x12a/0x250 [ 724.916037][T15529] ? __pfx_ksys_write+0x10/0x10 [ 724.916095][T15529] do_syscall_64+0xcd/0x490 [ 724.916128][T15529] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 724.916161][T15529] RIP: 0033:0x7f96b3f8e929 [ 724.916187][T15529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 724.916218][T15529] RSP: 002b:00007f96b4e6a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 724.916247][T15529] RAX: ffffffffffffffda RBX: 00007f96b41b5fa0 RCX: 00007f96b3f8e929 [ 724.916268][T15529] RDX: 0000000000000004 RSI: 0000200000000440 RDI: 0000000000000003 [ 724.916288][T15529] RBP: 00007f96b4e6a090 R08: 0000000000000000 R09: 0000000000000000 [ 724.916312][T15529] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 724.916330][T15529] R13: 0000000000000000 R14: 00007f96b41b5fa0 R15: 00007ffefdfe6198 [ 724.916372][T15529] [ 725.197603][T12723] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 725.280807][T15532] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC:0 is already present [ 725.292830][T12723] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 725.303022][T12723] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 725.328697][T12723] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 725.341848][T12723] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 725.489778][T15537] Format for deleting device is "id" (uint). [ 725.600004][T15537] netlink: 'syz.1.2163': attribute type 10 has an invalid length. [ 725.635304][T15537] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2163'. [ 726.260413][T15530] chnl_net:caif_netlink_parms(): no params data found [ 726.434383][T15530] bridge0: port 1(bridge_slave_0) entered blocking state [ 726.441920][T15530] bridge0: port 1(bridge_slave_0) entered disabled state [ 726.451183][T15530] bridge_slave_0: entered allmulticast mode [ 726.460075][T15530] bridge_slave_0: entered promiscuous mode [ 726.469812][T15560] FAULT_INJECTION: forcing a failure. [ 726.469812][T15560] name failslab, interval 1, probability 0, space 0, times 0 [ 726.484455][T15560] CPU: 1 UID: 0 PID: 15560 Comm: syz.1.2168 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 726.484500][T15560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 726.484519][T15560] Call Trace: [ 726.484529][T15560] [ 726.484541][T15560] dump_stack_lvl+0x16c/0x1f0 [ 726.484598][T15560] should_fail_ex+0x512/0x640 [ 726.484646][T15560] ? __kmalloc_noprof+0xbf/0x510 [ 726.484703][T15560] ? netif_set_alias+0x5f/0x250 [ 726.484739][T15560] should_failslab+0xc2/0x120 [ 726.484770][T15560] __kmalloc_noprof+0xd2/0x510 [ 726.484828][T15560] netif_set_alias+0x5f/0x250 [ 726.484869][T15560] dev_set_alias+0xba/0x250 [ 726.484913][T15560] ifalias_store+0x15a/0x1c0 [ 726.484953][T15560] ? sysfs_file_kobj+0x80/0x290 [ 726.484990][T15560] ? __pfx_ifalias_store+0x10/0x10 [ 726.485032][T15560] dev_attr_store+0x58/0x80 [ 726.485062][T15560] ? __pfx_dev_attr_store+0x10/0x10 [ 726.485092][T15560] sysfs_kf_write+0xf2/0x150 [ 726.485133][T15560] kernfs_fop_write_iter+0x351/0x510 [ 726.485166][T15560] ? __pfx_sysfs_kf_write+0x10/0x10 [ 726.485208][T15560] vfs_write+0x6c4/0x1150 [ 726.485249][T15560] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 726.485280][T15560] ? __pfx___mutex_lock+0x10/0x10 [ 726.485305][T15560] ? __pfx_vfs_write+0x10/0x10 [ 726.485366][T15560] ksys_write+0x12a/0x250 [ 726.485403][T15560] ? __pfx_ksys_write+0x10/0x10 [ 726.485453][T15560] do_syscall_64+0xcd/0x490 [ 726.485481][T15560] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 726.485508][T15560] RIP: 0033:0x7f96b3f8e929 [ 726.485529][T15560] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 726.485556][T15560] RSP: 002b:00007f96b4e6a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 726.485581][T15560] RAX: ffffffffffffffda RBX: 00007f96b41b5fa0 RCX: 00007f96b3f8e929 [ 726.485599][T15560] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000004 [ 726.485615][T15560] RBP: 00007f96b4e6a090 R08: 0000000000000000 R09: 0000000000000000 [ 726.485632][T15560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 726.485648][T15560] R13: 0000000000000000 R14: 00007f96b41b5fa0 R15: 00007ffefdfe6198 [ 726.485691][T15560] [ 726.750165][T15530] bridge0: port 2(bridge_slave_1) entered blocking state [ 726.757495][T15530] bridge0: port 2(bridge_slave_1) entered disabled state [ 726.764801][T15530] bridge_slave_1: entered allmulticast mode [ 726.773368][T15530] bridge_slave_1: entered promiscuous mode [ 726.879596][T15566] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 726.894357][T15530] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 726.908333][T15530] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 726.993650][T15530] team0: Port device team_slave_0 added [ 727.007207][T15530] team0: Port device team_slave_1 added [ 727.098924][T15530] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 727.110316][T15530] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 727.195615][T15530] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 727.217464][T15530] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 727.224501][T15530] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 727.252326][T15530] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 727.389099][T15576] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2171'. [ 727.425168][T10277] Bluetooth: hci2: command tx timeout [ 727.511187][T15530] hsr_slave_0: entered promiscuous mode [ 727.572142][T15530] hsr_slave_1: entered promiscuous mode [ 727.584307][T15530] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 727.593851][T15530] Cannot create hsr debugfs directory [ 728.189299][T15530] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 728.438343][T15530] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 728.578028][T15530] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 728.719357][T15530] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 729.507149][T10277] Bluetooth: hci2: command tx timeout [ 729.680672][T15530] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 729.703408][T15530] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 729.726040][T15610] FAULT_INJECTION: forcing a failure. [ 729.726040][T15610] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 729.744215][T15610] CPU: 1 UID: 0 PID: 15610 Comm: syz.4.2180 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 729.744263][T15610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 729.744281][T15610] Call Trace: [ 729.744292][T15610] [ 729.744303][T15610] dump_stack_lvl+0x16c/0x1f0 [ 729.744355][T15610] should_fail_ex+0x512/0x640 [ 729.744408][T15610] should_fail_alloc_page+0xe7/0x130 [ 729.744442][T15610] prepare_alloc_pages+0x3c2/0x610 [ 729.744486][T15610] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 729.744541][T15610] ? find_held_lock+0x2b/0x80 [ 729.744573][T15610] ? is_bpf_text_address+0x8a/0x1a0 [ 729.744616][T15610] ? bpf_ksym_find+0x124/0x1c0 [ 729.744650][T15610] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 729.744689][T15610] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 729.744731][T15610] ? __kernel_text_address+0xd/0x40 [ 729.744784][T15610] ? unwind_get_return_address+0x59/0xa0 [ 729.744832][T15610] ? arch_stack_walk+0xa6/0x100 [ 729.744909][T15610] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 729.744958][T15610] ? policy_nodemask+0xea/0x4e0 [ 729.745013][T15610] alloc_pages_mpol+0x1fb/0x550 [ 729.745067][T15610] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 729.745137][T15610] alloc_pages_noprof+0x131/0x390 [ 729.745192][T15610] __pud_alloc+0x3b/0x750 [ 729.745230][T15610] __handle_mm_fault+0xc87/0x5490 [ 729.745284][T15610] ? __pfx___handle_mm_fault+0x10/0x10 [ 729.745363][T15610] handle_mm_fault+0x589/0xd10 [ 729.745412][T15610] __get_user_pages+0x589/0x3b80 [ 729.745464][T15610] ? __pfx___get_user_pages+0x10/0x10 [ 729.745518][T15610] get_user_pages_remote+0x258/0xb20 [ 729.745563][T15610] ? __pfx_get_user_pages_remote+0x10/0x10 [ 729.745596][T15610] ? __pfx_vma_link+0x10/0x10 [ 729.745655][T15610] get_arg_page+0xf4/0x310 [ 729.745695][T15610] ? __pfx_get_arg_page+0x10/0x10 [ 729.745736][T15610] ? up_write+0x1b2/0x520 [ 729.745791][T15610] copy_string_kernel+0x180/0x510 [ 729.745843][T15610] do_execveat_common.isra.0+0x2ed/0x610 [ 729.745894][T15610] __x64_sys_execveat+0xda/0x120 [ 729.745940][T15610] do_syscall_64+0xcd/0x490 [ 729.745972][T15610] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 729.746003][T15610] RIP: 0033:0x7f382d58e929 [ 729.746029][T15610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 729.746057][T15610] RSP: 002b:00007f382e371038 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 729.746082][T15610] RAX: ffffffffffffffda RBX: 00007f382d7b5fa0 RCX: 00007f382d58e929 [ 729.746099][T15610] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003 [ 729.746115][T15610] RBP: 00007f382e371090 R08: 0000000000011000 R09: 0000000000000000 [ 729.746144][T15610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 729.746163][T15610] R13: 0000000000000000 R14: 00007f382d7b5fa0 R15: 00007ffe546dfb38 [ 729.746202][T15610] [ 730.067221][T15530] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 730.161318][T15530] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 730.181910][T15615] input: f as /devices/virtual/input/input62 [ 730.830359][T15530] 8021q: adding VLAN 0 to HW filter on device bond0 [ 731.075348][T15631] input: f as /devices/virtual/input/input63 [ 731.175556][T15635] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2183'. [ 731.221400][T15530] 8021q: adding VLAN 0 to HW filter on device team0 [ 731.274446][T15414] bridge0: port 1(bridge_slave_0) entered blocking state [ 731.281738][T15414] bridge0: port 1(bridge_slave_0) entered forwarding state [ 731.338432][T15414] bridge0: port 2(bridge_slave_1) entered blocking state [ 731.345707][T15414] bridge0: port 2(bridge_slave_1) entered forwarding state [ 731.450914][T15639] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 731.585854][T10277] Bluetooth: hci2: command tx timeout [ 732.091206][T15530] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 732.462850][T15530] veth0_vlan: entered promiscuous mode [ 732.502979][T15530] veth1_vlan: entered promiscuous mode [ 732.616241][T15530] veth0_macvtap: entered promiscuous mode [ 732.664160][T15530] veth1_macvtap: entered promiscuous mode [ 732.702545][T15530] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 732.873984][T15530] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 732.910585][T15530] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 732.921244][T15530] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 732.935098][T15530] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 732.943891][T15530] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 733.335105][T15414] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 733.343018][T15414] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 733.388057][T15662] sd 0:0:1:0: PR command failed: 1026 [ 733.393588][T15662] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 733.449506][T15662] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 733.498678][T15414] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 733.517853][T15414] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 733.665350][T10277] Bluetooth: hci2: command tx timeout [ 733.681525][T15667] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2159'. [ 733.902510][T15672] input: f as /devices/virtual/input/input64 [ 733.999135][T15676] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC:0 is already present [ 735.154232][T15695] program syz.2.2193 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 735.171516][T15695] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 735.347652][T15703] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC:0 is already present [ 736.256359][T15723] : Can't lookup blockdev [ 736.690516][T15722] FAULT_INJECTION: forcing a failure. [ 736.690516][T15722] name failslab, interval 1, probability 0, space 0, times 0 [ 736.707182][T15722] CPU: 0 UID: 0 PID: 15722 Comm: syz.2.2200 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 736.707229][T15722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 736.707248][T15722] Call Trace: [ 736.707260][T15722] [ 736.707272][T15722] dump_stack_lvl+0x16c/0x1f0 [ 736.707330][T15722] should_fail_ex+0x512/0x640 [ 736.707378][T15722] ? __kmalloc_noprof+0xbf/0x510 [ 736.707429][T15722] ? devlink_fmsg_put_value+0xaa/0x2d0 [ 736.707468][T15722] should_failslab+0xc2/0x120 [ 736.707498][T15722] __kmalloc_noprof+0xd2/0x510 [ 736.707556][T15722] devlink_fmsg_put_value+0xaa/0x2d0 [ 736.707602][T15722] devlink_fmsg_bool_pair_put+0x19c/0x2f0 [ 736.707645][T15722] ? __pfx_devlink_fmsg_bool_pair_put+0x10/0x10 [ 736.707689][T15722] ? __kasan_kmalloc+0xa0/0xb0 [ 736.707744][T15722] ? devlink_fmsg_nest_common.part.0+0xcd/0x1e0 [ 736.707792][T15722] nsim_dev_dummy_fmsg_put+0xe7/0x1e0 [ 736.707832][T15722] devlink_health_do_dump+0x243/0x620 [ 736.707881][T15722] devlink_health_report+0x3c9/0x9c0 [ 736.707932][T15722] ? __pfx_devlink_health_report+0x10/0x10 [ 736.707978][T15722] ? _copy_from_user+0x59/0xd0 [ 736.708039][T15722] nsim_dev_health_break_write+0x166/0x210 [ 736.708079][T15722] ? __pfx_nsim_dev_health_break_write+0x10/0x10 [ 736.708130][T15722] full_proxy_write+0x13f/0x200 [ 736.708165][T15722] ? __pfx_full_proxy_write+0x10/0x10 [ 736.708195][T15722] vfs_write+0x2a0/0x1150 [ 736.708247][T15722] ? __pfx___mutex_lock+0x10/0x10 [ 736.708280][T15722] ? __pfx_vfs_write+0x10/0x10 [ 736.708339][T15722] ? __fget_files+0x20e/0x3c0 [ 736.708398][T15722] ksys_write+0x12a/0x250 [ 736.708444][T15722] ? __pfx_ksys_write+0x10/0x10 [ 736.708505][T15722] do_syscall_64+0xcd/0x490 [ 736.708539][T15722] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 736.708573][T15722] RIP: 0033:0x7fecc578e929 [ 736.708600][T15722] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 736.708632][T15722] RSP: 002b:00007fecc6562038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 736.708664][T15722] RAX: ffffffffffffffda RBX: 00007fecc59b5fa0 RCX: 00007fecc578e929 [ 736.708685][T15722] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 0000000000000005 [ 736.708705][T15722] RBP: 00007fecc5810b39 R08: 0000000000000000 R09: 0000000000000000 [ 736.708733][T15722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 736.708753][T15722] R13: 0000000000000000 R14: 00007fecc59b5fa0 R15: 00007fff8053c1d8 [ 736.708798][T15722] [ 738.913782][T15764] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2215'. [ 739.107578][T15767] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC:0 is already present [ 741.264646][T15800] input: f as /devices/virtual/input/input65 [ 741.330482][T15798] FAULT_INJECTION: forcing a failure. [ 741.330482][T15798] name failslab, interval 1, probability 0, space 0, times 0 [ 741.343509][T15798] CPU: 1 UID: 0 PID: 15798 Comm: syz.4.2217 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 741.343551][T15798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 741.343570][T15798] Call Trace: [ 741.343580][T15798] [ 741.343592][T15798] dump_stack_lvl+0x16c/0x1f0 [ 741.343648][T15798] should_fail_ex+0x512/0x640 [ 741.343693][T15798] ? fs_reclaim_acquire+0xae/0x150 [ 741.343733][T15798] ? tomoyo_encode2+0x100/0x3e0 [ 741.343774][T15798] should_failslab+0xc2/0x120 [ 741.343803][T15798] __kmalloc_noprof+0xd2/0x510 [ 741.343863][T15798] tomoyo_encode2+0x100/0x3e0 [ 741.343910][T15798] tomoyo_encode+0x29/0x50 [ 741.343944][T15798] tomoyo_realpath_from_path+0x18f/0x6e0 [ 741.343985][T15798] ? tomoyo_profile+0x47/0x60 [ 741.344030][T15798] tomoyo_path_perm+0x274/0x460 [ 741.344058][T15798] ? tomoyo_path_perm+0x260/0x460 [ 741.344097][T15798] ? __pfx_tomoyo_path_perm+0x10/0x10 [ 741.344164][T15798] ? __pfx_vfs_write+0x10/0x10 [ 741.344199][T15798] ? hook_file_truncate+0xc7/0x250 [ 741.344228][T15798] ? do_sys_openat2+0x157/0x1d0 [ 741.344256][T15798] ? __pfx_do_sys_openat2+0x10/0x10 [ 741.344290][T15798] security_file_truncate+0x84/0x1e0 [ 741.344327][T15798] do_ftruncate+0x218/0x970 [ 741.344369][T15798] ? __pfx_do_ftruncate+0x10/0x10 [ 741.344418][T15798] ? ksys_write+0x1ac/0x250 [ 741.344454][T15798] ? __pfx_ksys_write+0x10/0x10 [ 741.344495][T15798] do_sys_ftruncate+0x61/0xb0 [ 741.344536][T15798] __x64_sys_ftruncate+0x58/0x80 [ 741.344578][T15798] do_syscall_64+0xcd/0x490 [ 741.344605][T15798] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 741.344633][T15798] RIP: 0033:0x7f382d58e929 [ 741.344654][T15798] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 741.344681][T15798] RSP: 002b:00007f382e371038 EFLAGS: 00000246 ORIG_RAX: 000000000000004d [ 741.344706][T15798] RAX: ffffffffffffffda RBX: 00007f382d7b5fa0 RCX: 00007f382d58e929 [ 741.344725][T15798] RDX: 0000000000000000 RSI: 0000000008800000 RDI: 0000000000000000 [ 741.344741][T15798] RBP: 00007f382e371090 R08: 0000000000000000 R09: 0000000000000000 [ 741.344758][T15798] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 741.344774][T15798] R13: 0000000000000000 R14: 00007f382d7b5fa0 R15: 00007ffe546dfb38 [ 741.344809][T15798] [ 741.344839][T15798] ERROR: Out of memory at tomoyo_realpath_from_path. [ 742.009904][T15814] FAULT_INJECTION: forcing a failure. [ 742.009904][T15814] name failslab, interval 1, probability 0, space 0, times 0 [ 742.059510][T15816] input: f as /devices/virtual/input/input66 [ 742.085103][T15814] CPU: 1 UID: 0 PID: 15814 Comm: syz.4.2230 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 742.085148][T15814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 742.085167][T15814] Call Trace: [ 742.085177][T15814] [ 742.085190][T15814] dump_stack_lvl+0x16c/0x1f0 [ 742.085246][T15814] should_fail_ex+0x512/0x640 [ 742.085309][T15814] should_failslab+0xc2/0x120 [ 742.085342][T15814] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 742.085391][T15814] ? __lock_acquire+0x622/0x1c90 [ 742.085430][T15814] ? dst_alloc+0x99/0x1a0 [ 742.085483][T15814] dst_alloc+0x99/0x1a0 [ 742.085534][T15814] rt_dst_alloc+0x35/0x3a0 [ 742.085578][T15814] ip_route_output_key_hash_rcu+0x87a/0x28f0 [ 742.085644][T15814] ip_route_output_key_hash+0x137/0x2e0 [ 742.085695][T15814] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 742.085760][T15814] ? find_held_lock+0x2b/0x80 [ 742.085797][T15814] ip_route_output_flow+0x27/0x150 [ 742.085850][T15814] udp_sendmsg+0x1bdd/0x29f0 [ 742.085894][T15814] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 742.085940][T15814] ? __pfx_udp_sendmsg+0x10/0x10 [ 742.086029][T15814] ? __lock_acquire+0xb8a/0x1c90 [ 742.086071][T15814] ? __pfx___might_resched+0x10/0x10 [ 742.086105][T15814] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 742.086160][T15814] ? aa_sk_perm+0x2f4/0xb10 [ 742.086212][T15814] ? __import_iovec+0x1dd/0x650 [ 742.086255][T15814] ? __might_fault+0xe3/0x190 [ 742.086336][T15814] ? __might_fault+0x13b/0x190 [ 742.086384][T15814] ? __pfx_udp_sendmsg+0x10/0x10 [ 742.086441][T15814] inet_sendmsg+0x105/0x140 [ 742.086490][T15814] ____sys_sendmsg+0x973/0xc70 [ 742.086534][T15814] ? copy_msghdr_from_user+0x10a/0x160 [ 742.086588][T15814] ? __pfx_____sys_sendmsg+0x10/0x10 [ 742.086635][T15814] ? kfree+0x24f/0x4d0 [ 742.086671][T15814] ? __pfx__kstrtoull+0x10/0x10 [ 742.086719][T15814] ___sys_sendmsg+0x134/0x1d0 [ 742.086775][T15814] ? __pfx____sys_sendmsg+0x10/0x10 [ 742.086870][T15814] ? __pfx___might_resched+0x10/0x10 [ 742.086913][T15814] __sys_sendmmsg+0x200/0x420 [ 742.086950][T15814] ? __pfx___sys_sendmmsg+0x10/0x10 [ 742.086997][T15814] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 742.087048][T15814] ? fput+0x70/0xf0 [ 742.087084][T15814] ? ksys_write+0x1ac/0x250 [ 742.087129][T15814] ? __pfx_ksys_write+0x10/0x10 [ 742.087184][T15814] __x64_sys_sendmmsg+0x9c/0x100 [ 742.087213][T15814] ? lockdep_hardirqs_on+0x7c/0x110 [ 742.087260][T15814] do_syscall_64+0xcd/0x490 [ 742.087295][T15814] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 742.087343][T15814] RIP: 0033:0x7f382d58e929 [ 742.087373][T15814] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 742.087417][T15814] RSP: 002b:00007f382e371038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 742.087445][T15814] RAX: ffffffffffffffda RBX: 00007f382d7b5fa0 RCX: 00007f382d58e929 [ 742.087464][T15814] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 742.087482][T15814] RBP: 00007f382e371090 R08: 0000000000000000 R09: 0000000000000000 [ 742.087499][T15814] R10: 0000000007fffffe R11: 0000000000000246 R12: 0000000000000002 [ 742.087517][T15814] R13: 0000000000000000 R14: 00007f382d7b5fa0 R15: 00007ffe546dfb38 [ 742.087566][T15814] [ 742.874510][T15822] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2224'. [ 742.966364][T15822] veth0_macvtap: left promiscuous mode [ 743.394154][T15828] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2225'. [ 744.300659][T15841] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2231'. [ 744.502409][T15849] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC:0 is already present [ 744.759079][T15854] input: f as /devices/virtual/input/input67 [ 745.643351][T15862] usb usb38: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 745.674640][T15862] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 745.699104][T15866] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2237'. [ 746.248533][T15879] : Can't lookup blockdev [ 746.493056][T15881] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC:0 is already present [ 747.136607][T15892] FAULT_INJECTION: forcing a failure. [ 747.136607][T15892] name failslab, interval 1, probability 0, space 0, times 0 [ 747.165763][T15892] CPU: 1 UID: 0 PID: 15892 Comm: syz.1.2245 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 747.165811][T15892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 747.165830][T15892] Call Trace: [ 747.165840][T15892] [ 747.165852][T15892] dump_stack_lvl+0x16c/0x1f0 [ 747.165911][T15892] should_fail_ex+0x512/0x640 [ 747.165959][T15892] ? __kvmalloc_node_noprof+0x124/0x620 [ 747.166007][T15892] should_failslab+0xc2/0x120 [ 747.166039][T15892] __kvmalloc_node_noprof+0x137/0x620 [ 747.166088][T15892] ? io_alloc_cache_init+0x33/0x170 [ 747.166147][T15892] ? io_alloc_cache_init+0x33/0x170 [ 747.166192][T15892] io_alloc_cache_init+0x33/0x170 [ 747.166246][T15892] io_uring_setup+0x63b/0x2080 [ 747.166295][T15892] ? __pfx_io_uring_setup+0x10/0x10 [ 747.166337][T15892] ? do_futex+0x122/0x350 [ 747.166379][T15892] ? __pfx_do_futex+0x10/0x10 [ 747.166416][T15892] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 747.166475][T15892] ? xfd_validate_state+0x61/0x180 [ 747.166517][T15892] ? __pfx_do_writev+0x10/0x10 [ 747.166577][T15892] __x64_sys_io_uring_setup+0xc2/0x170 [ 747.166625][T15892] do_syscall_64+0xcd/0x490 [ 747.166660][T15892] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 747.166694][T15892] RIP: 0033:0x7f96b3f8e929 [ 747.166720][T15892] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 747.166750][T15892] RSP: 002b:00007f96b4e6a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 747.166779][T15892] RAX: ffffffffffffffda RBX: 00007f96b41b5fa0 RCX: 00007f96b3f8e929 [ 747.166801][T15892] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 747.166819][T15892] RBP: 00007f96b4010b39 R08: 0000000000000000 R09: 0000000000000000 [ 747.166838][T15892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 747.166857][T15892] R13: 0000000000000000 R14: 00007f96b41b5fa0 R15: 00007ffefdfe6198 [ 747.166897][T15892] [ 747.422035][T15894] input: f as /devices/virtual/input/input68 [ 747.797437][T15901] ubi0: attaching mtd0 [ 747.859198][T15901] ubi0: scanning is finished [ 747.872707][T15901] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 748.159322][T15901] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 748.187408][T15905] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2247'. [ 748.957707][T15924] openvswitch: .SR: Dropping previously announced user features [ 749.615927][T15935] [ 749.618341][T15935] ====================================================== [ 749.625425][T15935] WARNING: possible circular locking dependency detected [ 749.632489][T15935] 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 Not tainted [ 749.639643][T15935] ------------------------------------------------------ [ 749.646705][T15935] syz.1.2255/15935 is trying to acquire lock: [ 749.652822][T15935] ffffffff8e52ea68 (pcpu_alloc_mutex){+.+.}-{4:4}, at: pcpu_alloc_noprof+0xb4c/0x1470 [ 749.662506][T15935] [ 749.662506][T15935] but task is already holding lock: [ 749.669899][T15935] ffff888142bc27c8 (&q->q_usage_counter(io)#18){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20 [ 749.681301][T15935] [ 749.681301][T15935] which lock already depends on the new lock. [ 749.681301][T15935] [ 749.691738][T15935] [ 749.691738][T15935] the existing dependency chain (in reverse order) is: [ 749.700782][T15935] [ 749.700782][T15935] -> #2 (&q->q_usage_counter(io)#18){++++}-{0:0}: [ 749.709449][T15935] blk_alloc_queue+0x619/0x760 [ 749.714865][T15935] blk_mq_alloc_queue+0x175/0x290 [ 749.720466][T15935] __blk_mq_alloc_disk+0x29/0x120 [ 749.726059][T15935] loop_add+0x49e/0xb70 [ 749.730772][T15935] loop_init+0x164/0x270 [ 749.735582][T15935] do_one_initcall+0x120/0x6e0 [ 749.740895][T15935] kernel_init_freeable+0x5c2/0x900 [ 749.746653][T15935] kernel_init+0x1c/0x2b0 [ 749.751557][T15935] ret_from_fork+0x5d4/0x6f0 [ 749.756725][T15935] ret_from_fork_asm+0x1a/0x30 [ 749.762049][T15935] [ 749.762049][T15935] -> #1 (fs_reclaim){+.+.}-{0:0}: [ 749.769310][T15935] fs_reclaim_acquire+0x102/0x150 [ 749.774893][T15935] prepare_alloc_pages+0x162/0x610 [ 749.780563][T15935] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 749.787036][T15935] __alloc_pages_noprof+0xb/0x1b0 [ 749.792627][T15935] pcpu_populate_chunk+0x110/0xb00 [ 749.798303][T15935] pcpu_alloc_noprof+0x86a/0x1470 [ 749.803890][T15935] xt_percpu_counter_alloc+0x13e/0x1b0 [ 749.809921][T15935] find_check_entry.constprop.0+0xbc/0x9b0 [ 749.816305][T15935] translate_table+0xc98/0x1720 [ 749.821720][T15935] ipt_register_table+0x102/0x430 [ 749.827306][T15935] iptable_security_table_init+0x40/0x60 [ 749.833508][T15935] xt_find_table_lock+0x2e1/0x520 [ 749.839096][T15935] xt_request_find_table_lock+0x28/0xf0 [ 749.845202][T15935] get_info+0x190/0x610 [ 749.849958][T15935] do_ipt_get_ctl+0x169/0xa10 [ 749.855197][T15935] nf_getsockopt+0x7c/0xe0 [ 749.860180][T15935] ip_getsockopt+0x18c/0x1e0 [ 749.865348][T15935] tcp_getsockopt+0x9e/0x100 [ 749.870501][T15935] do_sock_getsockopt+0x3ff/0x800 [ 749.876092][T15935] __sys_getsockopt+0x123/0x1b0 [ 749.881554][T15935] __x64_sys_getsockopt+0xbd/0x160 [ 749.887265][T15935] do_syscall_64+0xcd/0x490 [ 749.892320][T15935] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 749.898774][T15935] [ 749.898774][T15935] -> #0 (pcpu_alloc_mutex){+.+.}-{4:4}: [ 749.906561][T15935] __lock_acquire+0x126f/0x1c90 [ 749.911976][T15935] lock_acquire+0x179/0x350 [ 749.917037][T15935] __mutex_lock+0x199/0xb90 [ 749.922089][T15935] pcpu_alloc_noprof+0xb4c/0x1470 [ 749.927674][T15935] blk_stat_alloc_callback+0xc8/0x280 [ 749.933597][T15935] wbt_init+0xac/0x540 [ 749.938214][T15935] queue_wb_lat_store+0x354/0x3d0 [ 749.943805][T15935] queue_attr_store+0x276/0x320 [ 749.949237][T15935] sysfs_kf_write+0xf2/0x150 [ 749.954383][T15935] kernfs_fop_write_iter+0x351/0x510 [ 749.960217][T15935] vfs_write+0x6c4/0x1150 [ 749.965112][T15935] ksys_write+0x12a/0x250 [ 749.970003][T15935] do_syscall_64+0xcd/0x490 [ 749.975051][T15935] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 749.981494][T15935] [ 749.981494][T15935] other info that might help us debug this: [ 749.981494][T15935] [ 749.991748][T15935] Chain exists of: [ 749.991748][T15935] pcpu_alloc_mutex --> fs_reclaim --> &q->q_usage_counter(io)#18 [ 749.991748][T15935] [ 750.005562][T15935] Possible unsafe locking scenario: [ 750.005562][T15935] [ 750.013035][T15935] CPU0 CPU1 [ 750.018433][T15935] ---- ---- [ 750.023817][T15935] lock(&q->q_usage_counter(io)#18); [ 750.029239][T15935] lock(fs_reclaim); [ 750.035772][T15935] lock(&q->q_usage_counter(io)#18); [ 750.043724][T15935] lock(pcpu_alloc_mutex); [ 750.048253][T15935] [ 750.048253][T15935] *** DEADLOCK *** [ 750.048253][T15935] [ 750.056425][T15935] 6 locks held by syz.1.2255/15935: [ 750.061640][T15935] #0: ffff88807846a2b8 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370 [ 750.070791][T15935] #1: ffff888035fc2428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 750.079836][T15935] #2: ffff888060faa088 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510 [ 750.089639][T15935] #3: ffff888025e734b8 (kn->active#108){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510 [ 750.099801][T15935] #4: ffff888142bc27c8 (&q->q_usage_counter(io)#18){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20 [ 750.111547][T15935] #5: ffff888142bc2800 (&q->q_usage_counter(queue)#21){+.+.}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20 [ 750.123622][T15935] [ 750.123622][T15935] stack backtrace: [ 750.129533][T15935] CPU: 1 UID: 0 PID: 15935 Comm: syz.1.2255 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 750.129573][T15935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 750.129589][T15935] Call Trace: [ 750.129598][T15935] [ 750.129608][T15935] dump_stack_lvl+0x116/0x1f0 [ 750.129653][T15935] print_circular_bug+0x275/0x350 [ 750.129687][T15935] check_noncircular+0x14c/0x170 [ 750.129723][T15935] __lock_acquire+0x126f/0x1c90 [ 750.129763][T15935] lock_acquire+0x179/0x350 [ 750.129794][T15935] ? pcpu_alloc_noprof+0xb4c/0x1470 [ 750.129832][T15935] ? __pfx___might_resched+0x10/0x10 [ 750.129858][T15935] ? ksys_write+0x12a/0x250 [ 750.129892][T15935] ? do_syscall_64+0xcd/0x490 [ 750.129915][T15935] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 750.129943][T15935] __mutex_lock+0x199/0xb90 [ 750.129966][T15935] ? pcpu_alloc_noprof+0xb4c/0x1470 [ 750.130002][T15935] ? pcpu_alloc_noprof+0xb4c/0x1470 [ 750.130038][T15935] ? __pfx___mutex_lock+0x10/0x10 [ 750.130070][T15935] ? pcpu_alloc_noprof+0xb4c/0x1470 [ 750.130104][T15935] pcpu_alloc_noprof+0xb4c/0x1470 [ 750.130145][T15935] ? __pfx_wbt_data_dir+0x10/0x10 [ 750.130182][T15935] ? __pfx_wb_timer_fn+0x10/0x10 [ 750.130206][T15935] blk_stat_alloc_callback+0xc8/0x280 [ 750.130250][T15935] ? kasan_save_track+0x14/0x30 [ 750.130291][T15935] wbt_init+0xac/0x540 [ 750.130320][T15935] queue_wb_lat_store+0x354/0x3d0 [ 750.130363][T15935] ? __pfx_queue_wb_lat_store+0x10/0x10 [ 750.130406][T15935] ? __mutex_trylock_common+0xe9/0x250 [ 750.130444][T15935] ? __pfx_queue_wb_lat_store+0x10/0x10 [ 750.130486][T15935] queue_attr_store+0x276/0x320 [ 750.130529][T15935] ? __pfx_queue_attr_store+0x10/0x10 [ 750.130575][T15935] ? __lock_acquire+0x622/0x1c90 [ 750.130617][T15935] ? find_held_lock+0x2b/0x80 [ 750.130641][T15935] ? sysfs_file_kobj+0xe4/0x290 [ 750.130675][T15935] ? __pfx_queue_attr_store+0x10/0x10 [ 750.130716][T15935] sysfs_kf_write+0xf2/0x150 [ 750.130748][T15935] kernfs_fop_write_iter+0x351/0x510 [ 750.130775][T15935] ? __pfx_sysfs_kf_write+0x10/0x10 [ 750.130807][T15935] vfs_write+0x6c4/0x1150 [ 750.130845][T15935] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 750.130874][T15935] ? __pfx___mutex_lock+0x10/0x10 [ 750.130898][T15935] ? __pfx_vfs_write+0x10/0x10 [ 750.130944][T15935] ksys_write+0x12a/0x250 [ 750.130981][T15935] ? __pfx_ksys_write+0x10/0x10 [ 750.131019][T15935] ? trace_irq_enable.constprop.0+0x2f/0x120 [ 750.131064][T15935] do_syscall_64+0xcd/0x490 [ 750.131089][T15935] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 750.131116][T15935] RIP: 0033:0x7f96b3f8e929 [ 750.131137][T15935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 750.131164][T15935] RSP: 002b:00007f96b4e28038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 750.131188][T15935] RAX: ffffffffffffffda RBX: 00007f96b41b6160 RCX: 00007f96b3f8e929 [ 750.131206][T15935] RDX: 0000000000000009 RSI: 00002000000001c0 RDI: 0000000000000004 [ 750.131223][T15935] RBP: 00007f96b4010b39 R08: 0000000000000000 R09: 0000000000000000 [ 750.131240][T15935] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 750.131256][T15935] R13: 0000000000000000 R14: 00007f96b41b6160 R15: 00007ffefdfe6198 [ 750.131281][T15935] [ 750.474677][T15919] caif:caif_disconnect_client(): nothing to disconnect [ 757.507457][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 757.513998][ T1305] ieee802154 phy1 wpan1: encryption failed: -22