last executing test programs: 54.923411488s ago: executing program 2 (id=389): socket$nl_generic(0x10, 0x3, 0x10) select$auto(0x40, &(0x7f0000000000)={[0x9, 0x0, 0x5, 0x4, 0x8, 0x101, 0x1, 0x3, 0x7fffffff, 0x1000, 0x0, 0x8, 0xba7, 0x5, 0x4]}, &(0x7f0000000080)={[0x4a, 0x8, 0x0, 0x0, 0xfffffffffffffffa, 0x32, 0x64e1, 0xb, 0x2, 0xa, 0xff, 0x8, 0x1000000000000000, 0x4, 0x10, 0x7]}, &(0x7f0000000380)={[0x4, 0x3, 0x7f, 0x2, 0x6, 0x8, 0x6, 0x7fff, 0x800, 0xa5, 0x0, 0xfffffffffffffffe, 0xa07d, 0x1, 0x9, 0x3]}, &(0x7f0000000140)={0x3ff, 0x3}) syz_open_procfs$namespace(0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x9a, 0x4, 0xeb1, 0x401, 0x8000) openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, 0x0, 0x4c2801, 0x0) lsm_set_self_attr$auto(0x3, 0xfffffffffffffffc, 0x1f, 0x8000000000000000) syz_genetlink_get_family_id$auto_batadv(&(0x7f00000002c0), 0xffffffffffffffff) write$auto(0xffffffffffffffff, 0x0, 0x8) r0 = pipe$auto(0x0) socket(0xa, 0x5, 0xfffffffd) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x1f, 0x940, 0x1ffde, 0x3, 0x6, 0x8000003, 0x9, 0x5, 0x0, 0x4, 0xb0, 0x7, 0x2, 0x3, 0x205, 0x7, 0x0, 0x0, 0x0, 0x3, 0x0, 0x9, [0x0, 0x0, 0x0, 0x243efbdf, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x3, 0x0, 0x8, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x200000000000000, 0x4, 0x0, 0x0, 0xffffffffffffffff, 0x80, 0x0, 0x0, 0x9, 0x20000000, 0xfffffffffffffffc, 0x0, 0xfffffffffffffffc, 0x4, 0x0, 0xffffffffffffffff, 0xfffffffffffffffd, 0x7, 0x0, 0xffffffffffffffff, 0x6, 0xfffffffffffffffe, 0xe6e, 0x1000800]}, 0x7, 0x81) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) r1 = socket(0x10, 0x2, 0x0) read$auto_proc_single_file_operations_base(r0, &(0x7f0000000400)=""/235, 0xeb) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 52.887602907s ago: executing program 2 (id=394): recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000f80)={{0x0, 0x9, 0x0, 0x5, 0x0, 0x1, 0x80}, 0x8}, 0x10000, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x2, 0x801, 0x100) listen$auto(0x3, 0x81) poll$auto(&(0x7f0000000180)={r1, 0x8, 0xc}, 0x9, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) futex_requeue$auto(0x0, 0x9, 0x5, 0x0) listen$auto(r2, 0x1004) mmap$auto(0x0, 0xdb33, 0xffffffffffffffff, 0xeb1, r0, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) write$auto(0xffffffffffffffff, 0x0, 0xffe) r3 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f00000028c0), 0x100, 0x0) ioctl$auto_USB_RAW_IOCTL_EP_ENABLE(r3, 0x40095505, 0x0) mmap$auto(0x0, 0x1ff, 0xdf, 0x200000810, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0x200007, 0x19) madvise$auto(0x0, 0x2003f0, 0x15) madvise$auto(0x0, 0x200007, 0x19) 50.914803269s ago: executing program 2 (id=399): socket(0x2, 0x2, 0x88) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) socket(0x2b, 0x1, 0x1) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/trace_pipe\x00', 0x2000, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x14}}, 0x4000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/midiC2D3\x00', 0x2001, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan1\x00'}) select$auto(0xe, 0x0, 0x0, &(0x7f0000000180)={[0x1ff, 0xd5b, 0xc, 0x37, 0x948a, 0x2, 0x15f4da0a, 0x1, 0x3, 0x300000000000600, 0x40080000001, 0x7, 0x6d3c, 0x5, 0x9]}, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/input/event1\x00', 0x24c802, 0x0) socket(0x2, 0x3, 0xa) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) 49.985352455s ago: executing program 2 (id=403): mmap$auto(0x0, 0x400008, 0x9, 0x9b72, 0xffffffffffffffff, 0x8000) r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dri/card1\x00', 0xb80, 0x0) ioctl$auto(r0, 0x64c2, 0x1e2) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8000, 0x0) r1 = socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000280)={'dummy0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r3, r2, 0x4, 0x1ff, r1, @relative_id=0x13, 0xe600}, 0xf) bpf$auto(0x1, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x7}, 0xc) r4 = socket(0x0, 0x6, 0x3ff) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/i8042/serio0/set\x00', 0x103a00, 0x0) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$auto_KVM_CREATE_VM(r5, 0x4048aecb, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x8814}, 0x2004c0c4) sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x1, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 48.606358359s ago: executing program 2 (id=405): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x2, 0x1, 0x0) socket(0x2, 0x6, 0x0) (async) r1 = socket(0x2, 0x6, 0x0) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000400), r1) sendmsg$auto_NL80211_CMD_DISCONNECT(r0, &(0x7f0000000600)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4010000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="00000006", @ANYRES16=r2, @ANYBLOB="00042cbd7000fedbdf253000000008003f00010400001c00e7004122d769ecad66aa5b55cd8fa470d035d0393027d2e5648d1d0025011cf0559d82fa22f860cdd25f3e698f354b6269d0c3abe54202000000240026800800020005000000080001000000010008000100000000000800020009000000e900ac00f67c70a7e9e2f7303c72bd906a72554365b9f57f3e5ac85cfd6ec47b646b768ea442d29bd9ce020143d11eb9023ae758f51250c8ea8876f0f46cf583299c071393a2b7f670bf4c9cf3f31013221d50d768c82065d13047896a2a8b6ce683549753fb4e885eaeb2bf82565727a02a6bb291f6695debf2d1c8dce83562b0b439efad5cdfc9e84e86aa6210d197f4025c3becc543a8d7a6e4735f7f55aa13bee1b9f2523f8d3d907517f16bc1db340f6b2934897d7b3c35b8fb36abe79560cf92ea197a0635c81eb19e5affb59b25541fbcb685c4b359fb7aea0b9cb03dffeb0584792e24407e000000"], 0x168}, 0x1, 0x0, 0x0, 0x4000004}, 0x20008040) sysfs$auto(0x2, 0x0, 0x0) epoll_create$auto(0x4) (async) r3 = epoll_create$auto(0x4) clock_gettime$auto(0x8, &(0x7f0000000000)={0xffffffff, 0xa9c4}) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r3) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000340)={&(0x7f0000000880)=ANY=[@ANYRES8=r4, @ANYRES16=r4, @ANYBLOB="360328bd7000fddbdf251f0000007d0017008b6bd0e1dd99b0c3f9cf83894fd11d6574fbdc872ebc0e29a003a77762c24208eb5f47c6ef94cfedd150d17419b18231a2bed91b3e6f1523bc84a809179ba1213152712070ff3d634554efb337d1c1c4a2ca92d685460ec23c1a371e14f173a60374f57f5f69b18c76a5cae40d1adc7040a497a89a6b39de0f000e00c400c700cd36b025754c50b9ac8c92f79f684a26bf088c3d4c5641d2fdc89b0549f15c0f413a765ceb3fba1a446780782222f7fb88fb81d8e22a86436bde1f06408f7b24f5b3050dbc9c55e33dfc005460cc118d996e74e463e4405cc3e8001d3513c38ec0915fbd24bb74801c83156e3552570491c97bda14fefda6bc96cab31955db8a346661afbcd900022465556c0f57885c6a5f660beb5041af98ce4852cb9ccf1492d9622ea70676c42aff59b9f2a820d13a9cc608006200ff0f000004003c00040008010500a200fa0000000400bf0004008300a8004f00613a009482186839d84f865b42d5162e6cd36574b7c3bac39c475de3d942f9d18648a0ee12dc66c9206e826b5ecf541da0c28cc241c0e66bbb2f1b28073e2d8bbc8c099b437134d60b36cef19d7aa4fb8a57f7e32406e6bdb3514400366206c2971a1d219c97d926fedfd50fa29cf5c174548b3162e116a7cc51e772f23f095ac1cdc27fcc148e92d8a6c7917a67f9ea1ca1ff15c4a7b483b0b5e04427a640ee025786c86d9a6cc808000a8a11a05c06d50ceeef63d7cafd010104000017bac866129b4cf52806167942378dd199cbc8dd8ad0ca2376c23a1a2845563e3e3641bc8e7d1efcdd9e091c11db0dae11db00a8834d43e027da0112e72e6cfc5f5759ace33d2c8168bccdb8b75566d8ed29569c94a9520bc3a5d4681bf67e7dd838cdfbd964fb03c3091df1a132fa20218fb90e0a193b240e8ce80e526183957ff592f6c7b8e97d7090149c1c3cf07446d6c48fe9c40dfca056299fc7aa06228754c4a237c7a98a0a99e56fb6258325e2671932476698c5231d6c3b0841ef47ee4be52800"/762], 0x228}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8002, 0x0, 0x6) (async) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8002, 0x0, 0x6) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) setsockopt$auto(0xffffffffffffffff, 0x29, 0x21, 0x0, 0x18000113) (async) setsockopt$auto(0xffffffffffffffff, 0x29, 0x21, 0x0, 0x18000113) open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x72) (async) r5 = open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x72) close_range$auto(r1, 0xffffffffffffffff, 0x9) (async) close_range$auto(r1, 0xffffffffffffffff, 0x9) ioperm$auto(0xd44, 0x6, 0x8) tkill$auto(0x80000000000001, 0x7) socket(0x2, 0x1, 0x0) socket(0x1e, 0x1, 0x0) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf94f) socket(0xf, 0x6, 0x0) (async) socket(0xf, 0x6, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) getsockopt$auto_SO_DOMAIN(r5, 0x2, 0x27, 0x0, 0x0) (async) getsockopt$auto_SO_DOMAIN(r5, 0x2, 0x27, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) io_uring_setup$auto(0x6, 0x0) 46.026442241s ago: executing program 2 (id=410): mmap$auto(0x6, 0xe983, 0x800000000de, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x848000000015, 0x805, 0x0) bind$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x0, @local}, 0x68) mmap$auto(0x7fff, 0x400008, 0xda, 0x9b72, 0x2, 0x480000000008001) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) mbind$auto(0xfff, 0x2091d2, 0x4, 0x0, 0x6, 0x93) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) mknod$auto(&(0x7f0000000040)='.\x00', 0xc7, 0xc8) write$auto(0x3, 0x0, 0xfffffdef) write$auto(0x3, 0x0, 0xfffffdef) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) fstat$auto(r0, &(0x7f0000000200)={0x1, 0x1a0000000000, 0x7f, 0x77d508f7, 0x0, 0xee01, 0x0, 0x8, 0x5, 0x8, 0x100000000, 0x7, 0x7fffffff, 0x10, 0x9, 0x4, 0xd}) semctl$auto_SETALL(0x2, 0x6, 0x11, 0xb1c) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x2001, 0x0) mmap$auto(0x0, 0x2, 0xdf, 0x18, r1, 0x8000) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x101000, 0x0) mseal$auto(0xfffffffffffffffd, 0x7, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffefffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x8001, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x3, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x9}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x8000, 0x0) r3 = socket(0x2, 0x801, 0x100) poll$auto(&(0x7f0000000180)={r3, 0x6, 0x6}, 0x6, 0x8) listen$auto(r4, 0x1004) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) msgsnd$auto(0x3, 0x0, 0x81, 0x400) 45.319444985s ago: executing program 32 (id=410): mmap$auto(0x6, 0xe983, 0x800000000de, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x848000000015, 0x805, 0x0) bind$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x0, @local}, 0x68) mmap$auto(0x7fff, 0x400008, 0xda, 0x9b72, 0x2, 0x480000000008001) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) mbind$auto(0xfff, 0x2091d2, 0x4, 0x0, 0x6, 0x93) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) mknod$auto(&(0x7f0000000040)='.\x00', 0xc7, 0xc8) write$auto(0x3, 0x0, 0xfffffdef) write$auto(0x3, 0x0, 0xfffffdef) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) fstat$auto(r0, &(0x7f0000000200)={0x1, 0x1a0000000000, 0x7f, 0x77d508f7, 0x0, 0xee01, 0x0, 0x8, 0x5, 0x8, 0x100000000, 0x7, 0x7fffffff, 0x10, 0x9, 0x4, 0xd}) semctl$auto_SETALL(0x2, 0x6, 0x11, 0xb1c) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x2001, 0x0) mmap$auto(0x0, 0x2, 0xdf, 0x18, r1, 0x8000) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x101000, 0x0) mseal$auto(0xfffffffffffffffd, 0x7, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffefffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x8001, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x3, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x9}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x8000, 0x0) r3 = socket(0x2, 0x801, 0x100) poll$auto(&(0x7f0000000180)={r3, 0x6, 0x6}, 0x6, 0x8) listen$auto(r4, 0x1004) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) msgsnd$auto(0x3, 0x0, 0x81, 0x400) 12.307609166s ago: executing program 1 (id=501): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r0, 0x0, 0x5, 0x20000000) r1 = eventfd$auto(0x10001) readv$auto(r1, &(0x7f0000000380)={0x0, 0x8}, 0x4) setsockopt$auto(0x3, 0x1, 0x2f, 0x0, 0x9) write$auto(0x3, 0x0, 0x100082) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) close_range$auto(0x2, 0x8, 0x0) 11.341324645s ago: executing program 1 (id=504): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/conf/wlan0/send_redirects\x00', 0xa0900, 0x0) ioctl$auto_XFS_IOC_ERROR_INJECTION(0xffffffffffffffff, 0x40085874, &(0x7f0000000240)={r0, 0x1}) openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x8402, 0x0) openat$auto_tracing_thresh_fops_trace(0xffffffffffffff9c, 0x0, 0x183440, 0x0) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) set_mempolicy$auto(0x2, 0x0, 0x4) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x24c802, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x103000, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) r3 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000440), 0x880, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r4, 0x0, 0x20) r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r5, &(0x7f0000000200)={0x0, 0x7}, 0x3) read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, 0x0, 0x0) openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, 0x0, 0x60, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000140), r6) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x14, r7, 0x1, 0x70bd2a, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x24044090}, 0x40000c0) ioctl$auto_LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) ioctl$auto(r3, 0x1, r4) ioctl$auto_KVM_CREATE_VM(r1, 0xae80, 0x0) unshare$auto(0x40000080) r8 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x40302, 0x0) time$auto(0xffffffffffffffff) ioctl$auto_PROCMAP_QUERY(r8, 0xc0686611, &(0x7f0000000080)={0x101, 0xed, 0x7fff, 0x5, 0x80000000009, 0x1, 0x9, 0x101, 0x5, 0x7f93, 0xfffffffe, 0x7ffffffd, 0x7ff, 0x8001, 0x9}) 9.343654609s ago: executing program 4 (id=508): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) r1 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) mmap$auto(0x0, 0x5, 0x4000000000df, 0xeb1, 0x401, 0xe0) write$auto(r1, 0x0, 0x8d) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) setns(0xffffffffffffffff, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0) keyctl$auto(0x20000000000001c, 0xffffffffffffffff, 0x363, 0xa, 0x8000000000000007) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000140)='/dev/usbmon5\x00', 0x2080, 0x0) ioctl$auto_PPPIOCSPASS(0xffffffffffffffff, 0x40107447, &(0x7f0000000180)={0x1, 0x0}) ioctl$auto_PPPIOCSPASS(r2, 0x40107447, &(0x7f0000000040)={0xb, &(0x7f00000000c0)={0x33, 0xf1, 0xb0, @inferred=r0}}) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=ANY=[@ANYBLOB="ea12e528ded30ff1309c8b1613007984cb"], 0x14}}, 0x4000080) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x0, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/hid_cougar/parameters/g6_is_space\x00', 0x129102, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000002c00), 0xffffffffffffffff) sendmsg$auto_OVS_CT_LIMIT_CMD_GET(r4, &(0x7f0000004480)={0x0, 0x0, &(0x7f0000004440)={&(0x7f0000003dc0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010027a57000fddbdf250300000004f2ac8f01800c1ae2da901750336bd8"], 0x24}, 0x1, 0x0, 0x0, 0x20000840}, 0x840) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) fanotify_init$auto(0x8, 0x401) mmap$auto(0x0, 0x5810, 0xffb, 0x8000000008011, 0x3, 0x0) mmap$auto(0x0, 0x400000000004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000004) socket(0x11, 0x80003, 0x300) ioctl$auto(0x3, 0x8918, 0x91) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) 7.775680322s ago: executing program 4 (id=511): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) statmount$auto(0x0, &(0x7f0000000380)={0x8, 0x1, 0x1ff, 0x7, 0x3f, 0x1000004909b6f8, 0x1ffe0, 0x7, 0x3, 0x2, 0xd, 0x3, 0x6, 0x4, 0x8b4, 0x9, 0x6, 0x10003, 0x7, 0x4, 0x0, 0x7, 0x2000, 0x200, 0x0, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x2, 0x2000, 0x0, 0xa, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0x0, 0x400, 0x0, 0x3, 0x5, 0xfffffefffffdfffd, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x4, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x400000000005b8, 0xc, 0x3d0, 0x0, 0x0, 0x2b19, 0xffffffffffffffff, 0x88e, 0x8000000000008, 0xfffffffffffffffc, 0x9, 0xa38, 0x7fd, 0x3, 0xfffffffffffffffc, 0x2, 0x6, 0x6, 0x4, 0x4]}, 0x8, 0xd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000001e80)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000540)=ANY=[@ANYBLOB="0c190000", @ANYRES16, @ANYBLOB="08002abd7000fbdbdf2511000000f401028008002200", @ANYRES32=0x0, @ANYBLOB="0c00b900766300000000000008003500", @ANYRES32=0x0, @ANYBLOB='\b\x00'], 0x190c}, 0x1, 0x0, 0x0, 0x41}, 0x4004840) r0 = socket(0x10, 0x2, 0x4) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="f0020000", @ANYRES16=r1, @ANYBLOB="01002dbd7000fedbdf2505000000da0203800800c000e000000204002a000400110008002e00", @ANYRES32, @ANYBLOB="d152e64e22695352dd73864415aa8a78c65e6ab752fb4d469a47a092ae7d5061cdd9690cac4138553ecfbb1b32dd7c33b14cc842bc1e2a5da4203e64ceaa9db5223aa655b6313c011b3e73a75f1aa1f7b2ea43344b15bd494886e355cf6d92c8fe670a42bc677830013e9c4aa4fa30c3e6630bf0ed13206d5a18f6813c6fb03466112aedf5d67bb5b99fe96a6dcd279916b0bce029925b63c48d41ca8a76e46c6014100005800c00c50003000000000000000c02368008027a8087010c800800e800", @ANYRES32=r0, @ANYBLOB="0800fb"], 0x2f0}, 0x1, 0x0, 0x0, 0x40000}, 0x50) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) socket(0x10, 0x3, 0x6) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x3, 0x0, 0x0, 0x8}, 0x7}, 0x3, 0x0) socket(0xa, 0x2, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, 0x0, 0x10004010) r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto(r2, 0x40025504, 0xea3) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x20000800) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x20008841) sendmmsg$auto(0xffffffffffffffff, 0x0, 0xfffffff0, 0x80000007) r3 = epoll_create$auto(0x2) epoll_pwait2$auto(r3, 0x0, 0x8, &(0x7f0000002780)={0x0, 0x6}, 0x0, 0x8) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x0, 0x8000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r4, &(0x7f0000000400)='\'\xc3\x16\x18\xa9audio1\x00', 0x80000008) 7.133578144s ago: executing program 1 (id=513): memfd_secret$auto(0x0) (async) memfd_secret$auto(0x0) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) ftruncate$auto(0x3, 0x700) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000540), 0xa0980, 0x0) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0) (async) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/ext4/sda1/options\x00', 0x800, 0x0) socket(0x28, 0x1, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) write$auto(r0, &(0x7f00000001c0)='/dev/audio1\x00JR\xe7\xae\xd27M0xffffffffffffffff, [0xb795, 0x7], {0xffff8001, 0x7, 0x1000, 0x6, 0x8, 0x70, 0x8, 0xc723, 0xffffffffffffffff}, {0x4, 0x81, 0x4, 0x8001, 0x7, 0x8, 0x9, 0x3, 0x4}}) sendmsg$auto_NL802154_CMD_GET_SEC_KEY(r0, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x44, 0x0, 0x2, 0x70bd26, 0x25dfdbfb, {}, [@NL802154_ATTR_IFTYPE={0x8, 0x5, 0x3}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0xfffffff5}, @NL802154_ATTR_IFTYPE={0x8, 0x5, 0x6}, @NL802154_ATTR_CCA_OPT={0x8, 0xd, 0x8}, @NL802154_ATTR_SEC_FRAME_COUNTER={0x8, 0x2c, 0x1}, @NL802154_ATTR_SUPPORTED_CHANNEL={0x8, 0x16, 0x1}]}, 0x44}, 0x1, 0x0, 0x0, 0x40014}, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) write$auto(0x800000000000c8, 0x0, 0x1a) mmap$auto(0xffb3, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) bind$auto(r1, &(0x7f0000000000)=@ax25={0x3, @bcast, 0x7}, 0x7) set_tid_address$auto(0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) io_uring_setup$auto(0xfffffff5, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) sysfs$auto(0x20, 0x10000, 0xa) r4 = fsopen$auto(0x0, 0x1) fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0) open(0x0, 0x22240, 0x155) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) clone$auto(0x5, 0x2, 0x0, 0x0, 0x2) io_uring_register$auto(0x2, 0x14, 0x0, 0x1) 4.08628053s ago: executing program 3 (id=521): unshare$auto(0x40000080) r0 = socket(0x10, 0x2, 0x7fffffff) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) socket(0x28, 0x1, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0) ioctl$auto_TIOCGDEV2(r1, 0x5453, 0x0) ioctl$auto_TIOCMSET2(r1, 0x5418, &(0x7f0000000140)) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB="2f212abd"], 0x14}}, 0x4000000) r2 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$auto_FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f00000000c0)="58fcb282bcbc38bfaef257e019406e8ec445cd4f7f7662ac0f8834baa918d5b3cea133243c4f2b9a39e536b67f5a1a2bfdf589da2b1c980e9ce53883444996d1721d7f3ae627c6c68118e15b5a753fd37910fbc02d898cfc8254c80582fc6184113a38c8937e") openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/pcmC0D0p\x00', 0x410c00, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/cgroup.max.depth\x00', 0x0, 0x0) r4 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000012c0)={&(0x7f0000001300)={0xf4, r4, 0x1, 0x70bd29, 0x25dfdc02, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0xdb, 0x1, 0x0, 0x1, [@generic="d52ce2ad1360a6dac108bb4ed2e59fd5a5c56804477e00be29d835dfa2ffd30bd0ae6987df3e6d2895d6a5ef47821c3a982fba775c0b92782555c396f0459a459835ac01d022440051e0da4d98557a01f6f6ba4469620d1cd78cc72026e60202e8292f4d12ec957cebbce2c4fa841079dd414a9a28341d8e2192a947f8041b69c676665dfdd6a68adb0b74b5b9000044cfa1c2ab5e7b1d0efe6571acdd2410bddad03823ab256326196314ea1c767b0ee90a7165fb81c62470ec688e4684870a1afc00b2490326bf235fc8e47e96801be963572b211df0"]}]}, 0xf4}, 0x1, 0x0, 0x0, 0x20040074}, 0x800) fcntl$auto_F_GETOWN_EX(r0, 0x10, 0x0) mmap$auto(0xf0, 0x40009, 0xdf, 0x2000009b7f, r3, 0xfffffffffffffffe) lsm_list_modules$auto(0x0, 0x0, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) r6 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x80100, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0xa0c0, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r6, 0x40146f2c, 0x0) close_range$auto(0x2, 0xa, 0x0) 3.78243435s ago: executing program 0 (id=522): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x2, 0x88) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x101000, 0x0) close_range$auto(0x2, r0, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0) r2 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) sendmmsg$auto(r2, &(0x7f00000001c0)={{&(0x7f0000000000), 0x1aa, &(0x7f0000000100)={&(0x7f0000000040)='Jg', 0x49}, 0x5, &(0x7f0000000180), 0x5}, 0x1}, 0x2, 0x3) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_CREATE_VM(r0, 0x4008ae9c, 0x0) 3.433886886s ago: executing program 3 (id=523): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) statmount$auto(0x0, &(0x7f0000000380)={0x8, 0x1, 0x1ff, 0x7, 0x3f, 0x1000004909b6f8, 0x1ffe0, 0x7, 0x3, 0x2, 0xd, 0x3, 0x6, 0x4, 0x8b4, 0x9, 0x6, 0x10003, 0x7, 0x4, 0x0, 0x7, 0x2000, 0x200, 0x0, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x2, 0x2000, 0x0, 0xa, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0x0, 0x400, 0x0, 0x3, 0x5, 0xfffffefffffdfffd, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x4, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x400000000005b8, 0xc, 0x3d0, 0x0, 0x0, 0x2b19, 0xffffffffffffffff, 0x88e, 0x8000000000008, 0xfffffffffffffffc, 0x9, 0xa38, 0x7fd, 0x3, 0xfffffffffffffffc, 0x2, 0x6, 0x6, 0x4, 0x4]}, 0x8, 0xd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000001e80)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000540)=ANY=[@ANYBLOB="0c190000", @ANYRES16, @ANYBLOB="08002abd7000fbdbdf2511000000f401028008002200", @ANYRES32=0x0, @ANYBLOB="0c00b900766300000000000008003500", @ANYRES32=0x0, @ANYBLOB='\b\x00'], 0x190c}, 0x1, 0x0, 0x0, 0x41}, 0x4004840) r0 = socket(0x10, 0x2, 0x4) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="f0020000", @ANYRES16=r1, @ANYBLOB="01002dbd7000fedbdf2505000000da0203800800c000e000000204002a000400110008002e00", @ANYRES32, @ANYBLOB="d152e64e22695352dd73864415aa8a78c65e6ab752fb4d469a47a092ae7d5061cdd9690cac4138553ecfbb1b32dd7c33b14cc842bc1e2a5da4203e64ceaa9db5223aa655b6313c011b3e73a75f1aa1f7b2ea43344b15bd494886e355cf6d92c8fe670a42bc677830013e9c4aa4fa30c3e6630bf0ed13206d5a18f6813c6fb03466112aedf5d67bb5b99fe96a6dcd279916b0bce029925b63c48d41ca8a76e46c6014100005800c00c50003000000000000000c02368008027a8087010c800800e800", @ANYRES32=r0, @ANYBLOB="0800fb"], 0x2f0}, 0x1, 0x0, 0x0, 0x40000}, 0x50) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) socket(0x10, 0x3, 0x6) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x3, 0x0, 0x0, 0x8}, 0x7}, 0x3, 0x0) socket(0xa, 0x2, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, 0x0, 0x10004010) r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto(r2, 0x40025504, 0xea3) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x20000800) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x20008841) sendmmsg$auto(0xffffffffffffffff, 0x0, 0xfffffff0, 0x80000007) r3 = epoll_create$auto(0x2) epoll_pwait2$auto(r3, 0x0, 0x8, &(0x7f0000002780)={0x0, 0x6}, 0x0, 0x8) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x0, 0x8000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r4, &(0x7f0000000400)='\'\xc3\x16\x18\xa9audio1\x00', 0x80000008) 3.24523048s ago: executing program 0 (id=524): r0 = openat2$auto(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x6, 0xc53, 0x1}, 0x0) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0xb, 0xa505}, 0x800}, 0x40007, 0x4008) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) ppoll$auto(0x0, 0xc, 0x0, &(0x7f0000000140)={0xc7}, 0x8) unshare$auto(0x40000080) mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000) r3 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) socket(0x2, 0x3, 0x1) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1d, 0x3, 0x1) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d) sendfile$auto(r3, r2, 0x0, 0x200fffffdec) io_uring_setup$auto(0x2, 0x0) r4 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r4, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r4, 0x7a0, 0x6) ioctl$auto_IOCTL_VMCI_QUEUEPAIR_ALLOC(r4, 0x7a8, 0x0) 2.355119966s ago: executing program 3 (id=525): mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0x6, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0001, 0x0) ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0) shmctl$auto_SHM_INFO(0x7, 0xe, &(0x7f0000001080)={{0x5, 0x0, 0x0, 0xfffffff6, 0x2, 0x5, 0x6}, 0x400, 0x4, 0x1000, 0x1800000000000000, @raw=0x80, @raw=0x28e, 0x6, 0x0, &(0x7f0000000000)="fbfc5ab80473a07faab0aa0f45773e1aa1d2cb0584d814e78cefbf8c87e1a81785f0da9e2ff2f6e8a1274272b0edf384f85984942bc3da3bcbbcc2dba59e94bffbe6d6b4a47e77e95e83d430ab", 0x0}) ioctl$auto_SNDRV_TIMER_IOCTL_GINFO(0xffffffffffffffff, 0xc0f85403, &(0x7f00000000c0)={{0xfffffe01, 0x4, 0x7ff, 0x8, 0x8}, 0x800, 0x7441, "a02bfe35ba6087bc480b90d57b7be01547e2f1feac58f5ff1bdca283c2c826c291dc1d3e2eab1a14871a412539f0b16207c63190ce7a584b2a30945f6855d5dc", "9b456206640515c0b1f05632d19bb46c8190424bc99edb2bf4edd623f82a5f2c18d69fc5217e986b74e5a67c4ca684e3cf59d66ff242ee026c1331d9e43ee7e73ebff3274823d2786ac9f41fe59bf180", 0x100000001, 0x10001, 0xffffffffffffff59, 0x1, 0x4, "ab00bf495f1c90ffb61dad41c6d290399f4ba524c10ef287dc6c294d4f0d98d1"}) epoll_create$auto(0x2) socket(0xa, 0x6, 0x0) socket(0x2b, 0x1, 0x1) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) ioctl$auto_SG_GET_TIMEOUT2(0xffffffffffffffff, 0x2202, &(0x7f0000000740)="a0fbdc0851") r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) syz_open_procfs$namespace(0x0, 0x0) ioperm$auto(0x7, 0x6, 0x2) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) open(&(0x7f00000000c0)='./cgroup\x00', 0x0, 0xb5d1af1605322df2) select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0xd, 0x1, 0x9, 0x4, 0x15f4da0b, 0x3, 0x5, 0xc, 0x80400001, 0x4, 0x6d3f, 0x9, 0x2, 0x4000000000000d]}, 0x0) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0x2, 0x0) r1 = socket(0x1e, 0x2, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r2 = socket(0x18, 0x4, 0x1) ioctl$sock_SIOCGIFINDEX(r2, 0x40047452, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0xac, r4, 0xa0c, 0x70bd2a, 0x25dfdbfd, {}, [@NL80211_ATTR_PREV_BSSID={0x96, 0x4f, "7ca5a1c19fee763fbc786b59ebe88cbc44a331e07f22f049c4c4daae161889bec0e1f20fdb515a75a30c2e127d021975c6ea6fdf3a74a7241236ec27deaf5185598af039984f9933f9b5e247badfdca7103a94e5d9dd52539a97d068cc610ee412b00872732c6f6ef959ebb6aa1ec7c999492ecb825b25a5365fc7bb4d62f8e5c4db11a973a2def4a81f9c2cc664d807b008"}]}, 0xac}, 0x1, 0x0, 0x0, 0x15}, 0x20048004) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) socket(0x2, 0x1, 0x0) 2.351576974s ago: executing program 1 (id=526): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop6\x00', 0x8080, 0x0) r1 = accept$auto(0x3, 0x0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_INTERFACE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000700)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010b27bd7000fcdbdf25055c040008007f26", @ANYRES32=0x0, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x4000001}, 0x4000084) sendmsg$auto_NL80211_CMD_SET_CHANNEL(r1, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000f00)=ANY=[@ANYBLOB='H\t\x00\x00', @ANYRES16=r3, @ANYBLOB="080026bd7000fedbdf254100000024093880840200800400d1003a000d01029afe6127f3305c177f94e1dbab44fbe815b539e7b1fbcc5bac01d1c25dabbed075433fa6a7c3f72a47f903b1f92693b70465664a6500000400930005003e000200000004004a011402a6801400e600fc00000000000000000000000000000108007600", @ANYRES32=r0, @ANYBLOB="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"], 0x948}, 0x1, 0x0, 0x0, 0x4041}, 0x1) mmap$auto(0x8000000, 0x8, 0x1000000016, 0x12, 0x3, 0x180000000) mmap$auto(0x0, 0x8, 0xc00000472, 0x8b70, 0x1000000002, 0x8001) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/net/ip_vs_conn\x00', 0xf00, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dri/card1\x00', 0x6082, 0x0) r5 = socket(0xa, 0x2, 0x0) r6 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000180), 0x80080, 0x0) ioctl$auto_LOOP_CTL_ADD(r6, 0x4c80, &(0x7f00000001c0)) setsockopt$auto(r5, 0x29, 0xb, 0x0, 0xca6) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) write$auto(r7, &(0x7f0000000440)='Y\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) r8 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r9 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r9, @ANYBLOB="01002bbd7000fcdbdf2504"], 0x1c}}, 0x4044820) readv$auto(0x3, 0x0, 0x6) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x8, 0x4000000000df, 0x44eb1, 0x6, 0x300000000000) openat$auto_fault_around_bytes_fops_(0xffffffffffffff9c, &(0x7f0000000100), 0x2282, 0x0) close_range$auto(0x2, 0x8, 0x0) r10 = bpf$auto(0x20, &(0x7f0000000140)=@bpf_attr_11={0xffff, 0x6, 0x7, 0x800, 0x4000ffff, 0x3c09, 0xffffffff, 0xffffffffffffffff}, 0x81) madvise$auto(0x0, 0x20000a, 0x4) pread64$auto(r4, 0x0, 0x594c, 0x7) ioctl$auto_FS_IOC_FSSETXATTR(r11, 0x401c5820, r10) unshare$auto(0x40000080) 1.758510379s ago: executing program 4 (id=527): mmap$auto(0x1ff, 0x40009, 0xdf, 0x9b74, 0xffffffffffffffff, 0x2) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda1\x00', 0xa4e00, 0x0) ioctl$auto_BLKSECDISCARD(r1, 0x127d, 0x0) mbind$auto(0x2001, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x80800, 0x0) read$auto(r2, 0x0, 0x39b8) capset$auto(0x0, 0x0) capget$auto(0x0, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x1a9901, 0x0) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/dev_mcast\x00', 0x101000, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x101000, 0x0) r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/mnt\x00') ioctl$auto_MON_IOCX_GETX(r4, 0x4018920a, &(0x7f0000000140)={&(0x7f0000000080)={0xfff, 0x9d, 0x0, 0xd, 0xc6, 0x8, 0x0, 0xe3, 0x100000001, 0x4, 0x4d, 0x9, 0x2, @setup="2b78ebc2c94e21d3", 0x9, 0xffffff81, 0x2, 0x6}, &(0x7f0000000180)="af6137feb4a816345b588822f37a151cf2b1671d8887b101d406f68c08a49cebe7649be3b0f38922bfde099a4b3069184210ac9d966abc4e690cf57500000000000000000000000000000000c7b38966301e51bf9e75fdd8249713b58523e280d91420774fa7edb9ed8e3ecb4bd56b8942d3b061f997ca8ac807f6e9661080740cfe582de7dc109b90af9d1ddbd2cf7875582dbf11e8495b3a96a61bf7e56baa980ed5f7f1091dc19050df6299326981f05d5df0a455c21fe8a0271b83ae2bc7f01a336d7afe1540d7737b1e7b5e3d5879e78c8b60fed546e63c9c8bc59dea23aa53657dc017abae1fb67bf9", 0xfff}) openat$auto_rb_simple_fops_trace(0xffffffffffffff9c, 0x0, 0x40001, 0x0) socket(0x15, 0x5, 0x0) sendmsg$auto_NL80211_CMD_STOP_AP(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0}}, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r3, &(0x7f0000000100)='/dev/au\x00\x00o1\x00', 0xa3d6) sendfile$auto(0x1, 0x3, 0x0, 0xc01) r5 = socket(0x10, 0x2, 0x6) r6 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="ee7568fa8e3a61e7b9dcb0", @ANYRES16=r6, @ANYBLOB="010028bd7000fddbdf251100fc00"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x8044) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) write$auto(0x3, 0x0, 0x100082) link$auto(&(0x7f0000003240)='./file0\x00', &(0x7f0000003280)='./file2\x00') 1.657954969s ago: executing program 0 (id=528): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000100)='/proc/kpageflags\x00', 0x2, 0x0) read$auto(0x3, 0x0, 0x80) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x0) mmap$auto(0x0, 0x8020009, 0xe2, 0xcb1, 0x401, 0x8040001008000) socket(0x2, 0x80002, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @dev={0xac, 0x14, 0x14, 0xd}}, 0x6a) connect$auto(0x3, 0x0, 0x55) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = semctl$auto_GETVAL(0x48efe38c, 0x9, 0xc, 0x0) process_vm_readv$auto(r1, &(0x7f0000000000)={&(0x7f0000000080)="34d6d094d6d50f91bb2821ecd760068383cfb22b325e137f7dd63f43e8cbd8477406afa336b071bc071e367902f58fcdd70004c1f5a62b64d6070beb406d60a0ce430d8241906a8cb40c9e14fdcb11fa36427d55adc4bd7e726971042290a1f75cd3fb53", 0x101}, 0x1, &(0x7f0000000240)={&(0x7f0000000140)="0b04a68b0400e470270adc4b051a60825ec08d69c982c697376b3c2cb801fd8fb992c1c1944de7c4576cacdc43e352796db8efb7f2930e24054269bf60258c81a93bc60df78039ac1e8ade30be35ae37eb6a0bf1cc56f5c6363f6509bd4cc0618b91ef51913f427fe303bea64cf734a6c111a2fe6483c690b0e3523f3b1ca7b1c5dd5438dbb0d3a0e2e8bd4655baa98adb757c9c7b6ad9e89c9e27fb5d433b076f5cfa7eb9943ca83db4ac324f874c2ac59ec3b2721e1f9d0a4ed166e64920283cfb0d3cfc3c4bc394ebcacaae00ce13849e62283fd634c703cd8a9e6ea7b9699c8fa9c89c8899bb59860c7c", 0x5}, 0x0, 0xffffffffffffffcc) ioctl$auto(0x3, 0x40a0ae49, 0x38) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) 1.295114722s ago: executing program 0 (id=529): mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0x6, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0001, 0x0) ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0) shmctl$auto_SHM_INFO(0x7, 0xe, &(0x7f0000001080)={{0x5, 0x0, 0x0, 0xfffffff6, 0x2, 0x5, 0x6}, 0x400, 0x4, 0x1000, 0x1800000000000000, @raw=0x80, @raw=0x28e, 0x6, 0x0, &(0x7f0000000000)="fbfc5ab80473a07faab0aa0f45773e1aa1d2cb0584d814e78cefbf8c87e1a81785f0da9e2ff2f6e8a1274272b0edf384f85984942bc3da3bcbbcc2dba59e94bffbe6d6b4a47e77e95e83d430ab", 0x0}) ioctl$auto_SNDRV_TIMER_IOCTL_GINFO(0xffffffffffffffff, 0xc0f85403, &(0x7f00000000c0)={{0xfffffe01, 0x4, 0x7ff, 0x8, 0x8}, 0x800, 0x7441, "a02bfe35ba6087bc480b90d57b7be01547e2f1feac58f5ff1bdca283c2c826c291dc1d3e2eab1a14871a412539f0b16207c63190ce7a584b2a30945f6855d5dc", "9b456206640515c0b1f05632d19bb46c8190424bc99edb2bf4edd623f82a5f2c18d69fc5217e986b74e5a67c4ca684e3cf59d66ff242ee026c1331d9e43ee7e73ebff3274823d2786ac9f41fe59bf180", 0x100000001, 0x10001, 0xffffffffffffff59, 0x1, 0x4, "ab00bf495f1c90ffb61dad41c6d290399f4ba524c10ef287dc6c294d4f0d98d1"}) epoll_create$auto(0x2) socket(0xa, 0x6, 0x0) socket(0x2b, 0x1, 0x1) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) ioctl$auto_SG_GET_TIMEOUT2(0xffffffffffffffff, 0x2202, &(0x7f0000000740)="a0fbdc0851") r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x802, 0x1) bind$auto(0x3, 0x0, 0x69) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) syz_open_procfs$namespace(0x0, 0x0) ioperm$auto(0x7, 0x6, 0x2) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) open(&(0x7f00000000c0)='./cgroup\x00', 0x0, 0xb5d1af1605322df2) select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0xd, 0x2, 0xffffffff, 0x4, 0x15f4da0b, 0xd, 0x5, 0xc, 0x80400001, 0x4, 0x6d3f, 0x6, 0x2, 0x4000000000000d]}, 0x0) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0x2, 0x0) socket(0x1e, 0x2, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r1 = socket(0x18, 0x4, 0x1) ioctl$sock_SIOCGIFINDEX(r1, 0x40047452, 0x0) 1.279370495s ago: executing program 3 (id=530): r0 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/irq/8/actions\x00', 0x60000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000080)=""/58, 0x3a) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto(0x3, 0x0, 0x100082) chmod$auto(&(0x7f00000000c0)='./file0\x00', 0xf4ba) r2 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer2\x00', 0x200000, 0x0) ioctl$auto_SOUND_MIXER_READ_RECMASK(r2, 0x80044dfd, &(0x7f0000000100)="90631428984bf991286be7ed8802be8aa74dc9d8463a171247b63ef0346be9e46493bfcf7d356b60a9bd8b663d6722f9") getrandom$auto(0x0, 0xe, 0xae0f) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_TIPC_NL_BEARER_SET(r3, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000240)={0x18, 0x0, 0x10, 0x70bd2b, 0x25dfdbff, {}, [@TIPC_NLA_BEARER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x44}, 0x80000) r4 = gettid() process_vm_writev$auto(r4, 0x0, 0x3, 0x0, 0x4, 0x0) sendmsg$auto_TIPC_NL_BEARER_ADD(r0, &(0x7f0000000780)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000740)={&(0x7f0000000140)=ANY=[@ANYBLOB="ec070000", @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=r4, @ANYBLOB="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"], 0x5ec}, 0x1, 0x0, 0x0, 0x2000c041}, 0x4008811) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/sys/vm/nr_overcommit_hugepages\x00', 0x80001, 0x0) write$auto(0x3, 0x0, 0xfdef) stat$auto(0x0, 0x0) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r5 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0x4, 0x8000000000001, 0xffff}, 0x9, 0x0) landlock_restrict_self$auto(r5, 0x0) sendmsg$auto_TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000003e80)={0x0, 0x0, &(0x7f0000003e40)={0x0}}, 0x8040) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_SMC_PNETID_GET(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000840)=ANY=[@ANYBLOB="1cf5ff067e47c5cb57e89cb51532869bac91edb46a35c67b0ffa6d124e3955724826922b9961295a", @ANYRES16=r7, @ANYBLOB="01002dbd7000fddbdf25010000000600010064000000"], 0x1c}}, 0x40000) r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000800), r5) sendmsg$auto_NL80211_CMD_AUTHENTICATE(r6, &(0x7f00000008c0)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000880)={&(0x7f0000000900)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="040029bd7000fbdbdf252500000005d3be0238a18427e5548c2c12002900090000000500130104000000"], 0x24}, 0x1, 0x0, 0x0, 0x40001}, 0x4040004) 825.066666ms ago: executing program 0 (id=531): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x401, 0x0) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000) write$auto(0x3, 0x0, 0x100082) ioctl$auto_SNDCTL_DSP_RESET(r0, 0x5000, 0x0) close_range$auto(0x2, 0x8, 0x0) pipe$auto(&(0x7f0000001480)=0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) epoll_create$auto(0x800004) ioperm$auto(0x3, 0x38c, 0x9) epoll_pwait$auto(0x3, 0x0, 0x20002, 0x3, 0x0, 0x8) vmsplice$auto(r1, &(0x7f0000000000)={0x0, 0x7}, 0x5, 0x1) mmap$auto(0x0, 0x7, 0xdf, 0x9b72, 0x2, 0x8) mmap$auto(0x0, 0x2, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r2 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) sendmmsg$auto(r2, &(0x7f0000000640)={{&(0x7f0000000000), 0x5ae, &(0x7f0000000100)={&(0x7f0000000780)="4c1200030000000000a3677337f9ecba075f6bba441b1b", 0x49}, 0x5, 0x0, 0x5, 0x1}, 0x1}, 0x1a000, 0x100) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r3 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) r4 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/dynamic_events\x00', 0x2002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) writev$auto(r4, &(0x7f0000000140)={0x0, 0x8000}, 0x25) r5 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) ioctl$auto(r3, 0x5609, r5) close_range$auto(0x2, 0x8, 0x0) 508.307662ms ago: executing program 3 (id=532): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/conf/wlan0/send_redirects\x00', 0xa0900, 0x0) ioctl$auto_XFS_IOC_ERROR_INJECTION(0xffffffffffffffff, 0x40085874, &(0x7f0000000240)={r0, 0x1}) openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x8402, 0x0) openat$auto_tracing_thresh_fops_trace(0xffffffffffffff9c, 0x0, 0x183440, 0x0) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) set_mempolicy$auto(0x2, 0x0, 0x4) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x24c802, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x103000, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) r3 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000440), 0x880, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r4, 0x0, 0x20) r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r5, &(0x7f0000000200)={0x0, 0x7}, 0x3) read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, 0x0, 0x0) openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, 0x0, 0x60, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000140), r6) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x14, r7, 0x1, 0x70bd26, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x44004811}, 0x40000c0) (fail_nth: 9) ioctl$auto_LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) ioctl$auto(r3, 0x1, r4) ioctl$auto_KVM_CREATE_VM(r1, 0xae80, 0x0) unshare$auto(0x40000080) r8 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x40302, 0x0) time$auto(0xffffffffffffffff) ioctl$auto_PROCMAP_QUERY(r8, 0xc0686611, &(0x7f0000000080)={0x101, 0xed, 0x7fff, 0x5, 0x80000000009, 0x1, 0x9, 0x101, 0x5, 0x7f93, 0xfffffffe, 0x7ffffffd, 0x7ff, 0x8001, 0x9}) 248.557894ms ago: executing program 0 (id=533): openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000002640)='/sys/kernel/debug/tracing/set_event_pid\x00', 0x2002, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000011c0)='./cgroup.cpu/hugetlb.1GB.rsvd.failcnt\x00', 0x0, 0x0) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/softnet_stat\x00', 0x40102, 0x0) pread64$auto(r1, 0x0, 0x100000001, 0x100) read$auto(r0, 0x0, 0x20) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/usb/drivers/usb_serial_simple/bind\x00', 0x8702, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'veth1_macvtap\x00'}) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0xc76, 0x8000) shmdt$auto(0x0) r2 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x121441, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f0000000200)={{@inferred, 0x1, 0x1, 0x8, "3112d585005a614d19e22af9ffb683dbede3d0bf828bbfba40f035f4be6b7fe5e2f94bd90484b0755015e48d"}, 0x2, 0x5, 0x4, @inferred, @integer={0x7, 0x5, 0x5}, "7a9fc199a16a2311eacf2fc7ae1da978dc3e8090334fdd73340238d212b6debe0eda71bdd70925450e24e87212f0bcab84a16f7ce8cbce0bb32777702b8d7c2d"}) rt_sigqueueinfo$auto(0x0, 0x4, &(0x7f0000000000)={@siginfo_0_0={0xf9, 0x14, 0x7e73, @_timer={0x0, 0x80000001, @sival_ptr=0x0, 0x5}}}) r3 = socket(0x11, 0x3, 0x9) sendmmsg$auto(r3, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={&(0x7f0000000200)='M', 0x21}, 0x5, &(0x7f0000000180), 0x5, 0xe}, 0x5}, 0x2, 0x100) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ioctl$auto(r2, 0x900064b5, 0xc14) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) msync$auto(0x54a6, 0xffffffffffffffff, 0x2) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) write$auto(r4, 0x0, 0xfffffdef) 86.921531ms ago: executing program 4 (id=534): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) statmount$auto(0x0, &(0x7f0000000380)={0x8, 0x1, 0x1ff, 0x7, 0x3f, 0x1000004909b6f8, 0x1ffe0, 0x7, 0x3, 0x2, 0xd, 0x3, 0x6, 0x4, 0x8b4, 0x9, 0x6, 0x10003, 0x7, 0x4, 0x0, 0x7, 0x2000, 0x200, 0x0, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x2, 0x2000, 0x0, 0xa, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0x0, 0x400, 0x0, 0x3, 0x5, 0xfffffefffffdfffd, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x4, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x400000000005b8, 0xc, 0x3d0, 0x0, 0x0, 0x2b19, 0xffffffffffffffff, 0x88e, 0x8000000000008, 0xfffffffffffffffc, 0x9, 0xa38, 0x7fd, 0x3, 0xfffffffffffffffc, 0x2, 0x6, 0x6, 0x4, 0x4]}, 0x8, 0xd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000001e80)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000540)=ANY=[@ANYBLOB="0c190000", @ANYRES16, @ANYBLOB="08002abd7000fbdbdf2511000000f401028008002200", @ANYRES32=0x0, @ANYBLOB="0c00b900766300000000000008003500", @ANYRES32=0x0, @ANYBLOB='\b\x00'], 0x190c}, 0x1, 0x0, 0x0, 0x41}, 0x4004840) r0 = socket(0x10, 0x2, 0x4) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="f0020000", @ANYRES16=r1, @ANYBLOB="01002dbd7000fedbdf2505000000da0203800800c000e000000204002a000400110008002e00", @ANYRES32, @ANYBLOB="d152e64e22695352dd73864415aa8a78c65e6ab752fb4d469a47a092ae7d5061cdd9690cac4138553ecfbb1b32dd7c33b14cc842bc1e2a5da4203e64ceaa9db5223aa655b6313c011b3e73a75f1aa1f7b2ea43344b15bd494886e355cf6d92c8fe670a42bc677830013e9c4aa4fa30c3e6630bf0ed13206d5a18f6813c6fb03466112aedf5d67bb5b99fe96a6dcd279916b0bce029925b63c48d41ca8a76e46c6014100005800c00c50003000000000000000c02368008027a8087010c800800e800", @ANYRES32=r0, @ANYBLOB="0800fb"], 0x2f0}, 0x1, 0x0, 0x0, 0x40000}, 0x50) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) socket(0x10, 0x3, 0x6) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x3, 0x0, 0x0, 0x8}, 0x7}, 0x3, 0x0) socket(0xa, 0x2, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, 0x0, 0x10004010) r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto(r2, 0x40025504, 0xea3) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x20000800) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x20008841) sendmmsg$auto(0xffffffffffffffff, 0x0, 0xfffffff0, 0x80000007) r3 = epoll_create$auto(0x2) epoll_pwait2$auto(r3, 0x0, 0x8, &(0x7f0000002780)={0x0, 0x6}, 0x0, 0x8) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x0, 0x8000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r4, &(0x7f0000000400)='\'\xc3\x16\x18\xa9audio1\x00', 0x80000008) 0s ago: executing program 1 (id=535): socket(0x2, 0x801, 0x100) setresuid$auto(0x6, 0x9, 0xfc4d) syslog$auto_SYSLOG_ACTION_READ_CLEAR(0x4, 0x0, 0xffffffff) listen$auto(0x3, 0x81) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/block/ram12/discard_alignment\x00', 0x8000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000080)=""/150, 0x96) ioctl$auto(0x3, 0x541b, 0x38) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/rnbd-client/ctl/map_device\x00', 0x60442, 0x0) pwrite64$auto(r1, &(0x7f0000000280)='(\x00', 0x5, 0x8000) close_range$auto(0x2, 0x8, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = open$dir(&(0x7f0000000640)='./file0\x00', 0x40000, 0x122) fanotify_mark$auto(r2, 0x10, 0x5, r3, &(0x7f0000000680)='./file0\x00') read$auto(r2, &(0x7f00000001c0)='\\\x00', 0x8000) r4 = socket(0x10, 0x2, 0x0) r5 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r2) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) r6 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/set_event\x00', 0x8c80, 0x0) read$auto_ftrace_set_event_fops_trace_events(r6, &(0x7f0000000040)=""/132, 0x84) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010040eae834982aceee622739fc9cef8102547d87e82060fed5bf7225e3af78aa6905d2c4d6d58d6d3b04717192417e27477104000000ad108876edae678e646481f7ce0221ef24ff7658bff90c5b5303adc4ab9aefe4f6081946c4d04dcb2c7d6771a4814fbe83b5fd6b0485b5c307d54a70cc117f1c92b0e7aa3cec7a315d5a8ec8d6437c6b42f31e0538f06f86112300"/158, @ANYBLOB="1000af", @ANYRESHEX, @ANYRESOCT=r4, @ANYRES32, @ANYRESOCT=r5], 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r7 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000140), r4) r8 = openat$auto_page_owner_stack_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000180), 0x20040, 0x0) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(r2, &(0x7f0000000600)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20044102}, 0xc, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB="c4010000", @ANYRES16=r7, @ANYBLOB="08002cbd7000ffdbdf251b000000af01028037005c80e3e9584467c2b4a690247c40823a22f430a471ede6cb67f69bf4db5498627df507dfa9f990378da90f5225ed70e442962911a800c71279d9629e6afdb5d17293164a1cd7bc9ac1d83e9e68c5b7a2a7403d3a0b39539ced3f9d13fb2f1abc03e960b08c593361bdea4b4c2b236048f041907a197be9f2a243d1feaafd31d0f12d3df854ecb6f77682c88bf559142444cd035a0dce319e3353584aa2219a29771f1a8259ce85fc2cf203ad88faa3c9628a2bc68fa8b6b3b31308d41113645c36584d304d4af8d0e36d93f7fa5f78ccb37751dc48693998c2e5af9f3a954432ef9a875b621d28dea8d985e212f9f77a62d0defe22fd3d57f8dd7addca9c8500872a00f280040081800800210001800000cbf00400818004003a800400d5800800d500", @ANYRES32=0x0, @ANYBLOB="0400bd8000005af2f20a807bd20b1fe1e9d83ce8bfdef0f7087db17db3698c3df62ee03115bd91bfef23efd8e79a823ee3b4520100719167f1e7e8a49c82f4fe4fd4bbafa700198c7f588d8dd8ef085cb935cf45c3f07e4effdf8d94c9dcf9238e753c2560b2fc3350e752c40100d19308007b00"/126, @ANYRES32=r8, @ANYBLOB='\x00'], 0x1c4}, 0x1, 0x0, 0x0, 0x400c024}, 0x40) kernel console output (not intermixed with test programs): dded mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 344.134682][ T5862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 344.146802][ T5862] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 344.168426][ T5862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 344.179325][ T5862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 344.195550][ T5862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 344.206448][ T5862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 344.217661][ T5862] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 344.229467][ T5862] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 344.239116][ T5862] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 344.248299][ T5862] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 344.257252][ T5862] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 344.289014][ T5869] veth0_macvtap: entered promiscuous mode [ 344.327777][ T5869] veth1_macvtap: entered promiscuous mode [ 344.373126][ T5869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 344.383887][ T5869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 344.395142][ T5869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 344.406345][ T5869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 344.418701][ T5869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 344.430080][ T5869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 344.441325][ T5869] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 344.478779][ T5881] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 344.492793][ T5881] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 344.543479][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 344.555179][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 344.566696][ T5869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 344.581466][ T5869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 344.592141][ T5869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 344.602675][ T5869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 344.612733][ T5869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 344.623797][ T5869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 344.635725][ T5869] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 344.664359][ T5869] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 344.673427][ T5869] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 344.682981][ T5869] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 344.692892][ T5869] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 344.712397][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 344.720421][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 344.788163][ T5887] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 344.800394][ T5887] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 344.872413][ T5881] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 344.892457][ T5881] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 344.938317][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 344.972905][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 344.989740][ T5858] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 345.027726][ T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 345.056234][ T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 345.176029][ T5881] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 345.198503][ T5881] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 345.460737][ T5936] netlink: 244 bytes leftover after parsing attributes in process `syz.3.4'. [ 345.515840][ T5936] Zero length message leads to an empty skb [ 345.741821][ T5866] Bluetooth: hci2: command tx timeout [ 345.761596][ T5866] Bluetooth: hci0: command tx timeout [ 345.831951][ T5866] Bluetooth: hci3: command tx timeout [ 345.831961][ T55] Bluetooth: hci1: command tx timeout [ 346.862551][ T5952] netlink: 'syz.0.5': attribute type 11 has an invalid length. [ 346.912227][ T5955] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 347.082632][ T5952] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5'. [ 347.249033][ T5957] FAULT_INJECTION: forcing a failure. [ 347.249033][ T5957] name failslab, interval 1, probability 0, space 0, times 1 [ 347.291965][ T5957] CPU: 0 UID: 0 PID: 5957 Comm: syz.2.7 Not tainted 6.14.0-syzkaller #0 [ 347.292009][ T5957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 347.292033][ T5957] Call Trace: [ 347.292047][ T5957] [ 347.292060][ T5957] dump_stack_lvl+0x16c/0x1f0 [ 347.292119][ T5957] should_fail_ex+0x50a/0x650 [ 347.292150][ T5957] ? fs_reclaim_acquire+0xae/0x150 [ 347.292197][ T5957] should_failslab+0xc2/0x120 [ 347.292229][ T5957] __kmalloc_cache_node_noprof+0x6e/0x420 [ 347.292281][ T5957] ? __alloc_workqueue+0x506/0x1810 [ 347.292326][ T5957] __alloc_workqueue+0x506/0x1810 [ 347.292377][ T5957] alloc_workqueue+0xd3/0x200 [ 347.292412][ T5957] ? __pfx_alloc_workqueue+0x10/0x10 [ 347.292455][ T5957] ? rcu_is_watching+0x12/0xc0 [ 347.292491][ T5957] ? trace_kmalloc+0x2d/0xd0 [ 347.292526][ T5957] ? __kmalloc_noprof+0x23b/0x510 [ 347.292572][ T5957] ? __pfx_lock_release+0x10/0x10 [ 347.292617][ T5957] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 347.292686][ T5957] ieee80211_register_hw+0x1e3b/0x4060 [ 347.292762][ T5957] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 347.292814][ T5957] ? net_generic+0xea/0x2a0 [ 347.292858][ T5957] ? lockdep_init_map_type+0x16d/0x7d0 [ 347.292912][ T5957] ? __asan_memset+0x23/0x50 [ 347.292955][ T5957] ? __hrtimer_init+0x106/0x2c0 [ 347.293012][ T5957] mac80211_hwsim_new_radio+0x304e/0x54e0 [ 347.293089][ T5957] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 347.293156][ T5957] hwsim_new_radio_nl+0xb42/0x12b0 [ 347.293212][ T5957] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 347.293277][ T5957] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 347.293316][ T5957] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 347.293363][ T5957] genl_family_rcv_msg_doit+0x202/0x2f0 [ 347.293402][ T5957] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 347.293439][ T5957] ? trace_cap_capable+0x1a2/0x210 [ 347.293486][ T5957] ? bpf_lsm_capable+0x9/0x10 [ 347.293520][ T5957] ? security_capable+0x7e/0x260 [ 347.293557][ T5957] ? ns_capable+0xd7/0x110 [ 347.293609][ T5957] genl_rcv_msg+0x565/0x800 [ 347.293659][ T5957] ? __pfx_genl_rcv_msg+0x10/0x10 [ 347.293697][ T5957] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 347.293765][ T5957] netlink_rcv_skb+0x16b/0x440 [ 347.293816][ T5957] ? __pfx_genl_rcv_msg+0x10/0x10 [ 347.293853][ T5957] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 347.293924][ T5957] ? down_read+0xc9/0x330 [ 347.293978][ T5957] ? __pfx_down_read+0x10/0x10 [ 347.294033][ T5957] ? netlink_deliver_tap+0x1ae/0xd30 [ 347.294090][ T5957] genl_rcv+0x28/0x40 [ 347.294118][ T5957] netlink_unicast+0x53c/0x7f0 [ 347.294174][ T5957] ? __pfx_netlink_unicast+0x10/0x10 [ 347.294229][ T5957] ? __phys_addr_symbol+0x30/0x80 [ 347.294263][ T5957] ? __check_object_size+0x488/0x710 [ 347.294302][ T5957] netlink_sendmsg+0x8b8/0xd70 [ 347.294362][ T5957] ? __pfx_netlink_sendmsg+0x10/0x10 [ 347.294430][ T5957] ____sys_sendmsg+0xaaf/0xc90 [ 347.294473][ T5957] ? copy_msghdr_from_user+0x10b/0x160 [ 347.294528][ T5957] ? __pfx_____sys_sendmsg+0x10/0x10 [ 347.294589][ T5957] ___sys_sendmsg+0x135/0x1e0 [ 347.294646][ T5957] ? __pfx____sys_sendmsg+0x10/0x10 [ 347.294728][ T5957] ? __pfx_lock_release+0x10/0x10 [ 347.294776][ T5957] ? trace_lock_acquire+0x14e/0x1f0 [ 347.294830][ T5957] ? __fget_files+0x206/0x3a0 [ 347.294890][ T5957] __sys_sendmsg+0x16e/0x220 [ 347.294923][ T5957] ? __pfx___sys_sendmsg+0x10/0x10 [ 347.294953][ T5957] ? __x64_sys_futex+0x1e1/0x4c0 [ 347.295021][ T5957] do_syscall_64+0xcd/0x250 [ 347.295074][ T5957] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 347.295121][ T5957] RIP: 0033:0x7f141638d169 [ 347.295148][ T5957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 347.295187][ T5957] RSP: 002b:00007f1417280038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 347.295218][ T5957] RAX: ffffffffffffffda RBX: 00007f14165a5fa0 RCX: 00007f141638d169 [ 347.295239][ T5957] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000005 [ 347.295258][ T5957] RBP: 00007f141640e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 347.295275][ T5957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 347.295293][ T5957] R13: 0000000000000000 R14: 00007f14165a5fa0 R15: 00007ffc34767758 [ 347.295333][ T5957] [ 347.822356][ T5866] Bluetooth: hci0: command tx timeout [ 347.827863][ T5866] Bluetooth: hci2: command tx timeout [ 347.872113][ T5951] ima: policy update failed [ 347.880040][ T30] audit: type=1802 audit(1742853314.084:2): pid=5951 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.5" res=0 errno=0 [ 347.919824][ T55] Bluetooth: hci1: command tx timeout [ 347.925483][ T5866] Bluetooth: hci3: command tx timeout [ 348.394697][ T5967] input: jJǸ-¶š9ã%vø“û¨lÐQ  J86Ö‘ as /devices/virtual/input/input6 [ 349.445336][ T5967] zswap: compressor ×ë÷¡un¿‰×@•€êùÛ[sy"•&IK not available [ 349.761483][ T5987] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 350.566005][ T5990] netlink: 252 bytes leftover after parsing attributes in process `syz.2.13'. [ 352.391946][ T6006] netlink: 252 bytes leftover after parsing attributes in process `syz.2.17'. [ 355.114055][ T6023] FAULT_INJECTION: forcing a failure. [ 355.114055][ T6023] name failslab, interval 1, probability 0, space 0, times 0 [ 355.192445][ T6023] CPU: 0 UID: 0 PID: 6023 Comm: syz.2.21 Not tainted 6.14.0-syzkaller #0 [ 355.192490][ T6023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 355.192510][ T6023] Call Trace: [ 355.192519][ T6023] [ 355.192532][ T6023] dump_stack_lvl+0x16c/0x1f0 [ 355.192587][ T6023] should_fail_ex+0x50a/0x650 [ 355.192620][ T6023] ? fs_reclaim_acquire+0xae/0x150 [ 355.192668][ T6023] should_failslab+0xc2/0x120 [ 355.192700][ T6023] __kmalloc_cache_node_noprof+0x6e/0x420 [ 355.192749][ T6023] ? lockdep_init_map_type+0x16d/0x7d0 [ 355.192799][ T6023] ? __raw_spin_lock_init+0x3a/0x110 [ 355.192829][ T6023] ? __alloc_workqueue+0x506/0x1810 [ 355.192874][ T6023] __alloc_workqueue+0x506/0x1810 [ 355.192925][ T6023] alloc_workqueue+0xd3/0x200 [ 355.192969][ T6023] ? __pfx_alloc_workqueue+0x10/0x10 [ 355.193013][ T6023] ? rcu_is_watching+0x12/0xc0 [ 355.193049][ T6023] ? trace_kmalloc+0x2d/0xd0 [ 355.193087][ T6023] ? __kmalloc_noprof+0x23b/0x510 [ 355.193136][ T6023] ? __pfx_lock_release+0x10/0x10 [ 355.193181][ T6023] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 355.193243][ T6023] ieee80211_register_hw+0x1e3b/0x4060 [ 355.193313][ T6023] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 355.193364][ T6023] ? net_generic+0xea/0x2a0 [ 355.193412][ T6023] ? lockdep_init_map_type+0x16d/0x7d0 [ 355.193467][ T6023] ? __asan_memset+0x23/0x50 [ 355.193512][ T6023] ? __hrtimer_init+0x106/0x2c0 [ 355.193569][ T6023] mac80211_hwsim_new_radio+0x304e/0x54e0 [ 355.193648][ T6023] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 355.193716][ T6023] hwsim_new_radio_nl+0xb42/0x12b0 [ 355.193774][ T6023] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 355.193841][ T6023] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 355.193880][ T6023] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 355.193934][ T6023] genl_family_rcv_msg_doit+0x202/0x2f0 [ 355.193974][ T6023] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 355.194009][ T6023] ? trace_cap_capable+0x1a2/0x210 [ 355.194057][ T6023] ? bpf_lsm_capable+0x9/0x10 [ 355.194092][ T6023] ? security_capable+0x7e/0x260 [ 355.194128][ T6023] ? ns_capable+0xd7/0x110 [ 355.194180][ T6023] genl_rcv_msg+0x565/0x800 [ 355.194219][ T6023] ? __pfx_genl_rcv_msg+0x10/0x10 [ 355.194256][ T6023] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 355.194324][ T6023] netlink_rcv_skb+0x16b/0x440 [ 355.194376][ T6023] ? __pfx_genl_rcv_msg+0x10/0x10 [ 355.194413][ T6023] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 355.194484][ T6023] ? down_read+0xc9/0x330 [ 355.194537][ T6023] ? __pfx_down_read+0x10/0x10 [ 355.194593][ T6023] ? netlink_deliver_tap+0x1ae/0xd30 [ 355.194651][ T6023] genl_rcv+0x28/0x40 [ 355.194680][ T6023] netlink_unicast+0x53c/0x7f0 [ 355.194738][ T6023] ? __pfx_netlink_unicast+0x10/0x10 [ 355.194793][ T6023] ? __phys_addr_symbol+0x30/0x80 [ 355.194827][ T6023] ? __check_object_size+0x488/0x710 [ 355.194867][ T6023] netlink_sendmsg+0x8b8/0xd70 [ 355.194931][ T6023] ? __pfx_netlink_sendmsg+0x10/0x10 [ 355.195001][ T6023] ____sys_sendmsg+0xaaf/0xc90 [ 355.195044][ T6023] ? copy_msghdr_from_user+0x10b/0x160 [ 355.195098][ T6023] ? __pfx_____sys_sendmsg+0x10/0x10 [ 355.195159][ T6023] ___sys_sendmsg+0x135/0x1e0 [ 355.195217][ T6023] ? __pfx____sys_sendmsg+0x10/0x10 [ 355.195289][ T6023] ? __pfx_lock_release+0x10/0x10 [ 355.195336][ T6023] ? trace_lock_acquire+0x14e/0x1f0 [ 355.195391][ T6023] ? __fget_files+0x206/0x3a0 [ 355.195451][ T6023] __sys_sendmsg+0x16e/0x220 [ 355.195484][ T6023] ? __pfx___sys_sendmsg+0x10/0x10 [ 355.195515][ T6023] ? __x64_sys_futex+0x1e1/0x4c0 [ 355.195582][ T6023] do_syscall_64+0xcd/0x250 [ 355.195637][ T6023] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 355.195685][ T6023] RIP: 0033:0x7f141638d169 [ 355.195711][ T6023] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 355.195743][ T6023] RSP: 002b:00007f1417280038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 355.195774][ T6023] RAX: ffffffffffffffda RBX: 00007f14165a5fa0 RCX: 00007f141638d169 [ 355.195795][ T6023] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000006 [ 355.195816][ T6023] RBP: 00007f141640e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 355.195836][ T6023] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 355.195855][ T6023] R13: 0000000000000000 R14: 00007f14165a5fa0 R15: 00007ffc34767758 [ 355.195898][ T6023] [ 358.069197][ T6046] netlink: 244 bytes leftover after parsing attributes in process `syz.2.26'. [ 358.814022][ T6057] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 364.103567][ T6120] netlink: 244 bytes leftover after parsing attributes in process `syz.1.44'. [ 364.511449][ T6121] process 'syz.3.45' launched '/dev/fd/5' with NULL argv: empty string added [ 367.372112][ T6176] netlink: 244 bytes leftover after parsing attributes in process `syz.3.58'. [ 370.071196][ T6206] openvswitch: netlink: IP tunnel TTL not specified. [ 370.093179][ T6206] ubi4: attaching mtd0 [ 370.623999][ T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!! [ 371.058375][ T6221] netlink: 244 bytes leftover after parsing attributes in process `syz.2.70'. [ 374.064186][ T6261] syz.2.83 uses obsolete (PF_INET,SOCK_PACKET) [ 375.308304][ T6289] mmap: syz.0.90 (6289) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 376.881968][ T6311] netlink: 4 bytes leftover after parsing attributes in process `syz.1.96'. [ 381.231971][ T6372] bridge0: port 3(syz_tun) entered blocking state [ 381.238606][ T6372] bridge0: port 3(syz_tun) entered disabled state [ 381.269637][ T6376] FAULT_INJECTION: forcing a failure. [ 381.269637][ T6376] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 381.283242][ T6372] syz_tun: entered allmulticast mode [ 381.289942][ T6372] syz_tun: entered promiscuous mode [ 381.305334][ T6376] CPU: 0 UID: 0 PID: 6376 Comm: syz.1.111 Not tainted 6.14.0-syzkaller #0 [ 381.305372][ T6376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 381.305389][ T6376] Call Trace: [ 381.305398][ T6376] [ 381.305409][ T6376] dump_stack_lvl+0x16c/0x1f0 [ 381.305467][ T6376] should_fail_ex+0x50a/0x650 [ 381.305504][ T6376] _copy_from_user+0x2e/0xd0 [ 381.305541][ T6376] do_sock_getsockopt+0x5f6/0x800 [ 381.305579][ T6376] ? trace_lock_acquire+0x80/0x1f0 [ 381.305618][ T6376] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 381.305656][ T6376] ? lock_acquire+0x2f/0xb0 [ 381.305698][ T6376] ? __fget_files+0x40/0x3a0 [ 381.305744][ T6376] ? 0xffffffffff600000 [ 381.305777][ T6376] ? __fget_files+0x206/0x3a0 [ 381.305833][ T6376] __sys_getsockopt+0x12f/0x260 [ 381.305882][ T6376] ? 0xffffffffff600000 [ 381.305911][ T6376] __x64_sys_getsockopt+0xbd/0x160 [ 381.305961][ T6376] ? do_syscall_64+0x91/0x250 [ 381.306009][ T6376] ? lockdep_hardirqs_on+0x7c/0x110 [ 381.306061][ T6376] do_syscall_64+0xcd/0x250 [ 381.306112][ T6376] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 381.306155][ T6376] RIP: 0033:0x7f7264d8d169 [ 381.306178][ T6376] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 381.306205][ T6376] RSP: 002b:00007f7265c94038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 381.306234][ T6376] RAX: ffffffffffffffda RBX: 00007f7264fa5fa0 RCX: 00007f7264d8d169 [ 381.306253][ T6376] RDX: 0000000000002715 RSI: 0000000000000114 RDI: 0000000000000004 [ 381.306270][ T6376] RBP: 00007f7265c94090 R08: 0000000000000000 R09: 0000000000000000 [ 381.306287][ T6376] R10: ffffffffff600000 R11: 0000000000000246 R12: 0000000000000001 [ 381.306312][ T6376] R13: 0000000000000000 R14: 00007f7264fa5fa0 R15: 00007ffdad28f678 [ 381.306338][ T6376] ? 0xffffffffff600000 [ 381.306370][ T6376] [ 381.498898][ T6372] bridge0: port 3(syz_tun) entered blocking state [ 381.505729][ T6372] bridge0: port 3(syz_tun) entered forwarding state [ 382.656515][ T6367] ima: policy update failed [ 382.668333][ T30] audit: type=1802 audit(6037820655.866:3): pid=6367 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.110" res=0 errno=0 [ 384.092348][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 384.099002][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 385.228337][ T6426] netlink: 244 bytes leftover after parsing attributes in process `syz.0.125'. [ 387.552394][ T6479] CIFS: VFS: Unsupported security flags: 0x200 [ 388.183177][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 388.259027][ T6491] FAULT_INJECTION: forcing a failure. [ 388.259027][ T6491] name failslab, interval 1, probability 0, space 0, times 0 [ 388.277813][ T6491] CPU: 1 UID: 0 PID: 6491 Comm: syz.1.136 Not tainted 6.14.0-syzkaller #0 [ 388.277855][ T6491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 388.277873][ T6491] Call Trace: [ 388.277882][ T6491] [ 388.277894][ T6491] dump_stack_lvl+0x16c/0x1f0 [ 388.277946][ T6491] should_fail_ex+0x50a/0x650 [ 388.277977][ T6491] ? fs_reclaim_acquire+0xae/0x150 [ 388.278021][ T6491] should_failslab+0xc2/0x120 [ 388.278052][ T6491] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 388.278104][ T6491] ? __pmd_alloc+0xc3/0x870 [ 388.278152][ T6491] __pmd_alloc+0xc3/0x870 [ 388.278198][ T6491] __handle_mm_fault+0x94a/0x2a40 [ 388.278262][ T6491] ? __pfx___handle_mm_fault+0x10/0x10 [ 388.278309][ T6491] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 388.278381][ T6491] ? find_vma+0xc0/0x140 [ 388.278420][ T6491] ? __pfx_find_vma+0x10/0x10 [ 388.278465][ T6491] handle_mm_fault+0x3fa/0xaa0 [ 388.278521][ T6491] do_user_addr_fault+0x7a3/0x13f0 [ 388.278576][ T6491] exc_page_fault+0x5c/0xc0 [ 388.278620][ T6491] asm_exc_page_fault+0x26/0x30 [ 388.278665][ T6491] RIP: 0010:rep_movs_alternative+0x13/0x70 [ 388.278701][ T6491] Code: cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 83 f9 40 73 40 83 f9 08 73 21 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f [ 388.278729][ T6491] RSP: 0018:ffffc9000f117d60 EFLAGS: 00050202 [ 388.278753][ T6491] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000004 [ 388.278770][ T6491] RDX: fffff52001e22fbc RSI: 0000000000000000 RDI: ffffc9000f117de0 [ 388.278790][ T6491] RBP: 0000000000000004 R08: 0000000000000001 R09: fffff52001e22fbc [ 388.278808][ T6491] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000 [ 388.278825][ T6491] R13: ffffc9000f117de0 R14: 0000000000000000 R15: 0000000000000114 [ 388.278869][ T6491] _copy_from_user+0x98/0xd0 [ 388.278907][ T6491] do_sock_getsockopt+0x5f6/0x800 [ 388.278943][ T6491] ? trace_lock_acquire+0x80/0x1f0 [ 388.278984][ T6491] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 388.279021][ T6491] ? lock_acquire+0x2f/0xb0 [ 388.279063][ T6491] ? __fget_files+0x40/0x3a0 [ 388.279111][ T6491] ? 0xffffffffff600000 [ 388.279138][ T6491] ? __fget_files+0x206/0x3a0 [ 388.279193][ T6491] __sys_getsockopt+0x12f/0x260 [ 388.279245][ T6491] ? 0xffffffffff600000 [ 388.279274][ T6491] __x64_sys_getsockopt+0xbd/0x160 [ 388.279322][ T6491] ? do_syscall_64+0x91/0x250 [ 388.279369][ T6491] ? lockdep_hardirqs_on+0x7c/0x110 [ 388.279432][ T6491] do_syscall_64+0xcd/0x250 [ 388.279481][ T6491] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 388.279525][ T6491] RIP: 0033:0x7f7264d8d169 [ 388.279548][ T6491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 388.279576][ T6491] RSP: 002b:00007f7265c94038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 388.279603][ T6491] RAX: ffffffffffffffda RBX: 00007f7264fa5fa0 RCX: 00007f7264d8d169 [ 388.279623][ T6491] RDX: 0000000000002715 RSI: 0000000000000114 RDI: 0000000000000004 [ 388.279640][ T6491] RBP: 00007f7265c94090 R08: 0000000000000000 R09: 0000000000000000 [ 388.279658][ T6491] R10: ffffffffff600000 R11: 0000000000000246 R12: 0000000000000001 [ 388.279676][ T6491] R13: 0000000000000000 R14: 00007f7264fa5fa0 R15: 00007ffdad28f678 [ 388.279702][ T6491] ? 0xffffffffff600000 [ 388.279736][ T6491] [ 388.607765][ C1] vkms_vblank_simulate: vblank timer overrun [ 388.847165][ T6498] netlink: 'syz.3.140': attribute type 1 has an invalid length. [ 388.855069][ T6498] netlink: 32 bytes leftover after parsing attributes in process `syz.3.140'. [ 389.841806][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 389.850394][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 390.733971][ T6532] netlink: 186 bytes leftover after parsing attributes in process `syz.0.146'. [ 391.492425][ T6552] FAULT_INJECTION: forcing a failure. [ 391.492425][ T6552] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 391.541678][ T6552] CPU: 1 UID: 0 PID: 6552 Comm: syz.0.150 Not tainted 6.14.0-syzkaller #0 [ 391.541717][ T6552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 391.541734][ T6552] Call Trace: [ 391.541743][ T6552] [ 391.541754][ T6552] dump_stack_lvl+0x16c/0x1f0 [ 391.541807][ T6552] should_fail_ex+0x50a/0x650 [ 391.541835][ T6552] ? __pfx___might_resched+0x10/0x10 [ 391.541898][ T6552] should_fail_alloc_page+0xe7/0x130 [ 391.541932][ T6552] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 391.541975][ T6552] ? hlock_class+0x4e/0x130 [ 391.542014][ T6552] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 391.542069][ T6552] ? __pfx_mark_lock+0x10/0x10 [ 391.542113][ T6552] ? __pfx_stack_trace_save+0x10/0x10 [ 391.542148][ T6552] ? __memcg_kmem_charge_page+0x1b0/0x2b0 [ 391.542201][ T6552] ? stack_depot_save_flags+0x28/0x9c0 [ 391.542233][ T6552] ? rcu_is_watching+0x12/0xc0 [ 391.542274][ T6552] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 391.542334][ T6552] ? hlock_class+0x4e/0x130 [ 391.542383][ T6552] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 391.542436][ T6552] ? policy_nodemask+0xea/0x4e0 [ 391.542470][ T6552] alloc_pages_mpol+0x1fc/0x540 [ 391.542502][ T6552] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 391.542545][ T6552] alloc_pages_noprof+0x131/0x390 [ 391.542578][ T6552] pte_alloc_one+0x20/0x390 [ 391.542635][ T6552] do_pte_missing+0x1aff/0x3e10 [ 391.542686][ T6552] ? do_raw_spin_unlock+0x172/0x230 [ 391.542720][ T6552] ? __pmd_alloc+0x3c2/0x870 [ 391.542766][ T6552] __handle_mm_fault+0x103c/0x2a40 [ 391.542827][ T6552] ? __pfx___handle_mm_fault+0x10/0x10 [ 391.542875][ T6552] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 391.542945][ T6552] ? find_vma+0xc0/0x140 [ 391.542984][ T6552] ? __pfx_find_vma+0x10/0x10 [ 391.543029][ T6552] handle_mm_fault+0x3fa/0xaa0 [ 391.543085][ T6552] do_user_addr_fault+0x7a3/0x13f0 [ 391.543139][ T6552] exc_page_fault+0x5c/0xc0 [ 391.543186][ T6552] asm_exc_page_fault+0x26/0x30 [ 391.543230][ T6552] RIP: 0010:rep_movs_alternative+0x13/0x70 [ 391.543267][ T6552] Code: cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 83 f9 40 73 40 83 f9 08 73 21 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f [ 391.543297][ T6552] RSP: 0018:ffffc90010547d60 EFLAGS: 00050202 [ 391.543322][ T6552] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000004 [ 391.543339][ T6552] RDX: fffff520020a8fbc RSI: 0000000000000000 RDI: ffffc90010547de0 [ 391.543358][ T6552] RBP: 0000000000000004 R08: 0000000000000001 R09: fffff520020a8fbc [ 391.543375][ T6552] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000 [ 391.543391][ T6552] R13: ffffc90010547de0 R14: 0000000000000000 R15: 0000000000000114 [ 391.543429][ T6552] _copy_from_user+0x98/0xd0 [ 391.543467][ T6552] do_sock_getsockopt+0x5f6/0x800 [ 391.543503][ T6552] ? trace_lock_acquire+0x80/0x1f0 [ 391.543540][ T6552] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 391.543577][ T6552] ? lock_acquire+0x2f/0xb0 [ 391.543625][ T6552] ? __fget_files+0x40/0x3a0 [ 391.543669][ T6552] ? 0xffffffffff600000 [ 391.543696][ T6552] ? __fget_files+0x206/0x3a0 [ 391.543751][ T6552] __sys_getsockopt+0x12f/0x260 [ 391.543800][ T6552] ? 0xffffffffff600000 [ 391.543828][ T6552] __x64_sys_getsockopt+0xbd/0x160 [ 391.543878][ T6552] ? do_syscall_64+0x91/0x250 [ 391.543925][ T6552] ? lockdep_hardirqs_on+0x7c/0x110 [ 391.543971][ T6552] do_syscall_64+0xcd/0x250 [ 391.544023][ T6552] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 391.544069][ T6552] RIP: 0033:0x7f37ec78d169 [ 391.544092][ T6552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 391.544122][ T6552] RSP: 002b:00007f37ea5f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 391.544149][ T6552] RAX: ffffffffffffffda RBX: 00007f37ec9a5fa0 RCX: 00007f37ec78d169 [ 391.544169][ T6552] RDX: 0000000000002715 RSI: 0000000000000114 RDI: 0000000000000004 [ 391.544186][ T6552] RBP: 00007f37ea5f6090 R08: 0000000000000000 R09: 0000000000000000 [ 391.544203][ T6552] R10: ffffffffff600000 R11: 0000000000000246 R12: 0000000000000001 [ 391.544221][ T6552] R13: 0000000000000000 R14: 00007f37ec9a5fa0 R15: 00007ffdc1c801b8 [ 391.544246][ T6552] ? 0xffffffffff600000 [ 391.544281][ T6552] [ 391.962893][ C1] vkms_vblank_simulate: vblank timer overrun [ 392.025013][ T6555] FAULT_INJECTION: forcing a failure. [ 392.025013][ T6555] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 392.039008][ T6555] CPU: 1 UID: 0 PID: 6555 Comm: syz.3.151 Not tainted 6.14.0-syzkaller #0 [ 392.039048][ T6555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 392.039068][ T6555] Call Trace: [ 392.039077][ T6555] [ 392.039089][ T6555] dump_stack_lvl+0x16c/0x1f0 [ 392.039147][ T6555] should_fail_ex+0x50a/0x650 [ 392.039177][ T6555] ? __pfx___might_resched+0x10/0x10 [ 392.039236][ T6555] should_fail_alloc_page+0xe7/0x130 [ 392.039272][ T6555] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 392.039324][ T6555] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 392.039383][ T6555] ? hlock_class+0x4e/0x130 [ 392.039417][ T6555] ? mark_lock+0xb5/0xc60 [ 392.039468][ T6555] ? __pfx_mark_lock+0x10/0x10 [ 392.039517][ T6555] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 392.039576][ T6555] ? hlock_class+0x4e/0x130 [ 392.039611][ T6555] ? mark_lock+0xb5/0xc60 [ 392.039660][ T6555] ? __pfx_mark_lock+0x10/0x10 [ 392.039709][ T6555] ? hlock_class+0x4e/0x130 [ 392.039743][ T6555] ? __lock_acquire+0xcc5/0x3c40 [ 392.039793][ T6555] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 392.039860][ T6555] ? policy_nodemask+0xea/0x4e0 [ 392.039897][ T6555] alloc_pages_mpol+0x1fc/0x540 [ 392.039931][ T6555] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 392.039964][ T6555] ? hlock_class+0x4e/0x130 [ 392.040009][ T6555] folio_alloc_mpol_noprof+0x36/0x2f0 [ 392.040051][ T6555] vma_alloc_folio_noprof+0xee/0x1b0 [ 392.040090][ T6555] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 392.040131][ T6555] ? find_held_lock+0x2d/0x110 [ 392.040176][ T6555] do_pte_missing+0x202f/0x3e10 [ 392.040240][ T6555] __handle_mm_fault+0x103c/0x2a40 [ 392.040304][ T6555] ? __pfx___handle_mm_fault+0x10/0x10 [ 392.040354][ T6555] ? follow_page_pte+0x3ac/0x1490 [ 392.040401][ T6555] ? __pfx_lock_release+0x10/0x10 [ 392.040478][ T6555] handle_mm_fault+0x3fa/0xaa0 [ 392.040538][ T6555] __get_user_pages+0x773/0x36f0 [ 392.040597][ T6555] ? __pfx_mt_find+0x10/0x10 [ 392.040649][ T6555] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 392.040700][ T6555] ? __pfx___get_user_pages+0x10/0x10 [ 392.040754][ T6555] ? __mm_populate+0x21d/0x380 [ 392.040821][ T6555] populate_vma_page_range+0x27f/0x3a0 [ 392.040877][ T6555] ? __pfx_populate_vma_page_range+0x10/0x10 [ 392.040929][ T6555] ? __pfx_find_vma_intersection+0x10/0x10 [ 392.040976][ T6555] ? vm_mmap_pgoff+0x31a/0x440 [ 392.041029][ T6555] __mm_populate+0x1d6/0x380 [ 392.041082][ T6555] ? __pfx___mm_populate+0x10/0x10 [ 392.041137][ T6555] ? up_write+0x1b2/0x520 [ 392.041194][ T6555] vm_mmap_pgoff+0x352/0x440 [ 392.041246][ T6555] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 392.041303][ T6555] ? __x64_sys_futex+0x1e1/0x4c0 [ 392.041343][ T6555] ? __x64_sys_futex+0x1ea/0x4c0 [ 392.041391][ T6555] ksys_mmap_pgoff+0x7d/0x5c0 [ 392.041434][ T6555] ? rcu_is_watching+0x12/0xc0 [ 392.041475][ T6555] __x64_sys_mmap+0x125/0x190 [ 392.041532][ T6555] do_syscall_64+0xcd/0x250 [ 392.041584][ T6555] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 392.041627][ T6555] RIP: 0033:0x7f38cc58d169 [ 392.041652][ T6555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 392.041682][ T6555] RSP: 002b:00007f38cd331038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 392.041712][ T6555] RAX: ffffffffffffffda RBX: 00007f38cc7a5fa0 RCX: 00007f38cc58d169 [ 392.041732][ T6555] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 392.041749][ T6555] RBP: 00007f38cc60e2a0 R08: 0000000000000002 R09: 0000000000008000 [ 392.041766][ T6555] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 392.041783][ T6555] R13: 0000000000000000 R14: 00007f38cc7a5fa0 R15: 00007ffd88ba1dd8 [ 392.041827][ T6555] [ 392.399626][ C1] vkms_vblank_simulate: vblank timer overrun [ 394.591904][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 394.731925][ T0] NOHZ tick-stop error: local softirq work is pending, handler #1c2!!! [ 395.773159][ T6621] netlink: 244 bytes leftover after parsing attributes in process `syz.0.168'. [ 396.551843][ T6626] FAULT_INJECTION: forcing a failure. [ 396.551843][ T6626] name failslab, interval 1, probability 0, space 0, times 0 [ 396.598657][ T6626] CPU: 0 UID: 0 PID: 6626 Comm: syz.3.169 Not tainted 6.14.0-syzkaller #0 [ 396.598697][ T6626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 396.598715][ T6626] Call Trace: [ 396.598724][ T6626] [ 396.598736][ T6626] dump_stack_lvl+0x16c/0x1f0 [ 396.598792][ T6626] should_fail_ex+0x50a/0x650 [ 396.598823][ T6626] ? fs_reclaim_acquire+0xae/0x150 [ 396.598867][ T6626] should_failslab+0xc2/0x120 [ 396.598897][ T6626] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 396.598949][ T6626] ? kcm_create+0x11e/0x690 [ 396.598995][ T6626] kcm_create+0x11e/0x690 [ 396.599041][ T6626] __sock_create+0x335/0x8d0 [ 396.599092][ T6626] __sys_socket+0x14f/0x260 [ 396.599132][ T6626] ? __pfx___sys_socket+0x10/0x10 [ 396.599173][ T6626] ? rcu_is_watching+0x12/0xc0 [ 396.599214][ T6626] __x64_sys_socket+0x72/0xb0 [ 396.599256][ T6626] ? lockdep_hardirqs_on+0x7c/0x110 [ 396.599303][ T6626] do_syscall_64+0xcd/0x250 [ 396.599356][ T6626] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 396.599417][ T6626] RIP: 0033:0x7f38cc58d169 [ 396.599443][ T6626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 396.599473][ T6626] RSP: 002b:00007f38cd331038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 396.599502][ T6626] RAX: ffffffffffffffda RBX: 00007f38cc7a5fa0 RCX: 00007f38cc58d169 [ 396.599522][ T6626] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000029 [ 396.599539][ T6626] RBP: 00007f38cc60e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 396.599557][ T6626] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 396.599574][ T6626] R13: 0000000000000000 R14: 00007f38cc7a5fa0 R15: 00007ffd88ba1dd8 [ 396.599610][ T6626] [ 396.774591][ C0] vkms_vblank_simulate: vblank timer overrun [ 397.646165][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 397.745825][ T6648] netlink: 214 bytes leftover after parsing attributes in process `syz.1.175'. [ 401.735077][ T6700] netlink: 8 bytes leftover after parsing attributes in process `syz.1.186'. [ 403.270280][ T6728] FAULT_INJECTION: forcing a failure. [ 403.270280][ T6728] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 403.358708][ T6728] CPU: 0 UID: 0 PID: 6728 Comm: syz.3.197 Not tainted 6.14.0-syzkaller #0 [ 403.358749][ T6728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 403.358766][ T6728] Call Trace: [ 403.358776][ T6728] [ 403.358787][ T6728] dump_stack_lvl+0x16c/0x1f0 [ 403.358848][ T6728] should_fail_ex+0x50a/0x650 [ 403.358886][ T6728] _copy_to_user+0x32/0xd0 [ 403.358929][ T6728] simple_read_from_buffer+0xd0/0x160 [ 403.358976][ T6728] proc_fail_nth_read+0x198/0x270 [ 403.359017][ T6728] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 403.359061][ T6728] ? rw_verify_area+0xcf/0x680 [ 403.359110][ T6728] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 403.359151][ T6728] vfs_read+0x1df/0xbf0 [ 403.359196][ T6728] ? __fget_files+0x1fc/0x3a0 [ 403.359245][ T6728] ? __pfx___mutex_lock+0x10/0x10 [ 403.359294][ T6728] ? __pfx_vfs_read+0x10/0x10 [ 403.359350][ T6728] ? __fget_files+0x206/0x3a0 [ 403.359410][ T6728] ksys_read+0x12b/0x250 [ 403.359454][ T6728] ? __pfx_ksys_read+0x10/0x10 [ 403.359511][ T6728] do_syscall_64+0xcd/0x250 [ 403.359564][ T6728] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 403.359610][ T6728] RIP: 0033:0x7f38cc58bb7c [ 403.359634][ T6728] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 403.359662][ T6728] RSP: 002b:00007f38cd331030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 403.359691][ T6728] RAX: ffffffffffffffda RBX: 00007f38cc7a5fa0 RCX: 00007f38cc58bb7c [ 403.359710][ T6728] RDX: 000000000000000f RSI: 00007f38cd3310a0 RDI: 0000000000000005 [ 403.359728][ T6728] RBP: 00007f38cd331090 R08: 0000000000000000 R09: 0000000000000000 [ 403.359745][ T6728] R10: ffffffffff600000 R11: 0000000000000246 R12: 0000000000000001 [ 403.359763][ T6728] R13: 0000000000000000 R14: 00007f38cc7a5fa0 R15: 00007ffd88ba1dd8 [ 403.359789][ T6728] ? 0xffffffffff600000 [ 403.359829][ T6728] [ 405.875954][ T6780] aoe: invalid device specification [ 406.346304][ C0] vcan0: j1939_tp_rxtimer: 0xffff8880292d9c00: rx timeout, send abort [ 406.855826][ C0] vcan0: j1939_tp_rxtimer: 0xffff8880292d9c00: abort rx timeout. Force session deactivation [ 410.739321][ T6849] FAULT_INJECTION: forcing a failure. [ 410.739321][ T6849] name failslab, interval 1, probability 0, space 0, times 0 [ 410.825672][ T6849] CPU: 1 UID: 0 PID: 6849 Comm: syz.2.228 Not tainted 6.14.0-syzkaller #0 [ 410.825715][ T6849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 410.825733][ T6849] Call Trace: [ 410.825742][ T6849] [ 410.825755][ T6849] dump_stack_lvl+0x16c/0x1f0 [ 410.825810][ T6849] should_fail_ex+0x50a/0x650 [ 410.825843][ T6849] ? fs_reclaim_acquire+0xae/0x150 [ 410.825889][ T6849] ? lsm_blob_alloc+0x68/0x90 [ 410.825942][ T6849] should_failslab+0xc2/0x120 [ 410.825975][ T6849] __kmalloc_noprof+0xcb/0x510 [ 410.826035][ T6849] lsm_blob_alloc+0x68/0x90 [ 410.826094][ T6849] security_sk_alloc+0x30/0x270 [ 410.826134][ T6849] sk_prot_alloc+0x1c7/0x2a0 [ 410.826184][ T6849] sk_alloc+0x36/0xc20 [ 410.826239][ T6849] __netlink_create+0x5e/0x2c0 [ 410.826285][ T6849] __netlink_kernel_create+0xee/0x750 [ 410.826340][ T6849] ? __pfx___netlink_kernel_create+0x10/0x10 [ 410.826405][ T6849] uevent_net_init+0xf9/0x360 [ 410.826441][ T6849] ? __pfx_uevent_net_init+0x10/0x10 [ 410.826477][ T6849] ? __pfx_uevent_net_rcv+0x10/0x10 [ 410.826524][ T6849] ? __pfx_uevent_net_init+0x10/0x10 [ 410.826559][ T6849] ops_init+0x1df/0x5f0 [ 410.826597][ T6849] setup_net+0x21f/0x860 [ 410.826633][ T6849] ? __pfx_setup_net+0x10/0x10 [ 410.826665][ T6849] ? down_read_killable+0xcc/0x380 [ 410.826697][ T6849] ? __pfx_down_read_killable+0x10/0x10 [ 410.826728][ T6849] ? __raw_spin_lock_init+0x3a/0x110 [ 410.826762][ T6849] ? debug_mutex_init+0x37/0x70 [ 410.826803][ T6849] copy_net_ns+0x2a6/0x5f0 [ 410.826846][ T6849] create_new_namespaces+0x3ea/0xad0 [ 410.826911][ T6849] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 410.826977][ T6849] ksys_unshare+0x45d/0xa40 [ 410.827013][ T6849] ? __pfx_ksys_unshare+0x10/0x10 [ 410.827046][ T6849] ? xfd_validate_state+0x5d/0x180 [ 410.827108][ T6849] __x64_sys_unshare+0x31/0x40 [ 410.827142][ T6849] do_syscall_64+0xcd/0x250 [ 410.827203][ T6849] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 410.827251][ T6849] RIP: 0033:0x7f141638d169 [ 410.827277][ T6849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 410.827308][ T6849] RSP: 002b:00007f1417280038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 410.827338][ T6849] RAX: ffffffffffffffda RBX: 00007f14165a5fa0 RCX: 00007f141638d169 [ 410.827359][ T6849] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 410.827377][ T6849] RBP: 00007f141640e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 410.827396][ T6849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 410.827414][ T6849] R13: 0000000000000000 R14: 00007f14165a5fa0 R15: 00007ffc34767758 [ 410.827455][ T6849] [ 411.100363][ T6849] kobject_uevent: unable to create netlink socket! [ 411.841605][ T6875] netlink: 36 bytes leftover after parsing attributes in process `syz.2.236'. [ 413.775138][ T6900] FAULT_INJECTION: forcing a failure. [ 413.775138][ T6900] name failslab, interval 1, probability 0, space 0, times 0 [ 413.788939][ T6900] CPU: 0 UID: 0 PID: 6900 Comm: syz.3.242 Not tainted 6.14.0-syzkaller #0 [ 413.788980][ T6900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 413.789000][ T6900] Call Trace: [ 413.789009][ T6900] [ 413.789022][ T6900] dump_stack_lvl+0x16c/0x1f0 [ 413.789078][ T6900] should_fail_ex+0x50a/0x650 [ 413.789109][ T6900] ? fs_reclaim_acquire+0xae/0x150 [ 413.789156][ T6900] should_failslab+0xc2/0x120 [ 413.789188][ T6900] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 413.789240][ T6900] ? __xlate_proc_name+0x173/0x210 [ 413.789292][ T6900] ? __proc_create+0x2c0/0x8b0 [ 413.789352][ T6900] __proc_create+0x2c0/0x8b0 [ 413.789408][ T6900] ? __pfx___proc_create+0x10/0x10 [ 413.789471][ T6900] ? _raw_write_unlock+0x28/0x50 [ 413.789520][ T6900] proc_create_reg+0x7d/0x180 [ 413.789556][ T6900] proc_create_net_data+0x8f/0x1b0 [ 413.789588][ T6900] ? __pfx_proc_create_net_data+0x10/0x10 [ 413.789620][ T6900] ? __pfx_uevent_net_rcv+0x10/0x10 [ 413.789658][ T6900] ? __pfx_dev_proc_net_init+0x10/0x10 [ 413.789700][ T6900] dev_proc_net_init+0x5a/0x220 [ 413.789739][ T6900] ops_init+0x1df/0x5f0 [ 413.789776][ T6900] setup_net+0x21f/0x860 [ 413.789814][ T6900] ? __pfx_setup_net+0x10/0x10 [ 413.789845][ T6900] ? down_read_killable+0xcc/0x380 [ 413.789888][ T6900] ? __pfx_down_read_killable+0x10/0x10 [ 413.789919][ T6900] ? __raw_spin_lock_init+0x3a/0x110 [ 413.789954][ T6900] ? debug_mutex_init+0x37/0x70 [ 413.789995][ T6900] copy_net_ns+0x2a6/0x5f0 [ 413.790037][ T6900] create_new_namespaces+0x3ea/0xad0 [ 413.790101][ T6900] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 413.790159][ T6900] ksys_unshare+0x45d/0xa40 [ 413.790195][ T6900] ? __pfx_ksys_unshare+0x10/0x10 [ 413.790228][ T6900] ? xfd_validate_state+0x5d/0x180 [ 413.790288][ T6900] __x64_sys_unshare+0x31/0x40 [ 413.790321][ T6900] do_syscall_64+0xcd/0x250 [ 413.790364][ T6900] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 413.790402][ T6900] RIP: 0033:0x7f38cc58d169 [ 413.790423][ T6900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 413.790448][ T6900] RSP: 002b:00007f38cd331038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 413.790473][ T6900] RAX: ffffffffffffffda RBX: 00007f38cc7a5fa0 RCX: 00007f38cc58d169 [ 413.790489][ T6900] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 413.790504][ T6900] RBP: 00007f38cc60e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 413.790519][ T6900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 413.790534][ T6900] R13: 0000000000000000 R14: 00007f38cc7a5fa0 R15: 00007ffd88ba1dd8 [ 413.790565][ T6900] [ 414.668090][ T6915] bridge0: port 3(ipvlan0) entered blocking state [ 414.688326][ T6915] bridge0: port 3(ipvlan0) entered disabled state [ 414.733256][ T6915] ipvlan0: entered allmulticast mode [ 414.738642][ T6915] veth0_vlan: entered allmulticast mode [ 414.791981][ T6915] ipvlan0: left allmulticast mode [ 414.831792][ T6915] veth0_vlan: left allmulticast mode [ 419.595058][ T6959] kexec: Could not allocate control_code_buffer [ 420.262840][ T7004] FAULT_INJECTION: forcing a failure. [ 420.262840][ T7004] name failslab, interval 1, probability 0, space 0, times 0 [ 420.314955][ T7004] CPU: 0 UID: 0 PID: 7004 Comm: syz.3.270 Not tainted 6.14.0-syzkaller #0 [ 420.314996][ T7004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 420.315015][ T7004] Call Trace: [ 420.315025][ T7004] [ 420.315037][ T7004] dump_stack_lvl+0x16c/0x1f0 [ 420.315093][ T7004] should_fail_ex+0x50a/0x650 [ 420.315133][ T7004] ? fs_reclaim_acquire+0xae/0x150 [ 420.315180][ T7004] ? __netlink_kernel_create+0x180/0x750 [ 420.315231][ T7004] should_failslab+0xc2/0x120 [ 420.315269][ T7004] __kmalloc_noprof+0xcb/0x510 [ 420.315321][ T7004] ? __netlink_create+0x208/0x2c0 [ 420.315367][ T7004] __netlink_kernel_create+0x180/0x750 [ 420.315421][ T7004] ? __pfx___netlink_kernel_create+0x10/0x10 [ 420.315486][ T7004] uevent_net_init+0xf9/0x360 [ 420.315521][ T7004] ? __pfx_uevent_net_init+0x10/0x10 [ 420.315558][ T7004] ? __pfx_uevent_net_rcv+0x10/0x10 [ 420.315605][ T7004] ? __pfx_uevent_net_init+0x10/0x10 [ 420.315637][ T7004] ops_init+0x1df/0x5f0 [ 420.315674][ T7004] setup_net+0x21f/0x860 [ 420.315709][ T7004] ? __pfx_setup_net+0x10/0x10 [ 420.315740][ T7004] ? down_read_killable+0xcc/0x380 [ 420.315772][ T7004] ? __pfx_down_read_killable+0x10/0x10 [ 420.315803][ T7004] ? __raw_spin_lock_init+0x3a/0x110 [ 420.315837][ T7004] ? debug_mutex_init+0x37/0x70 [ 420.315877][ T7004] copy_net_ns+0x2a6/0x5f0 [ 420.315919][ T7004] create_new_namespaces+0x3ea/0xad0 [ 420.315984][ T7004] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 420.316045][ T7004] ksys_unshare+0x45d/0xa40 [ 420.316080][ T7004] ? __pfx_ksys_unshare+0x10/0x10 [ 420.316124][ T7004] ? xfd_validate_state+0x5d/0x180 [ 420.316185][ T7004] __x64_sys_unshare+0x31/0x40 [ 420.316220][ T7004] do_syscall_64+0xcd/0x250 [ 420.316274][ T7004] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 420.316323][ T7004] RIP: 0033:0x7f38cc58d169 [ 420.316349][ T7004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 420.316381][ T7004] RSP: 002b:00007f38cd331038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 420.316412][ T7004] RAX: ffffffffffffffda RBX: 00007f38cc7a5fa0 RCX: 00007f38cc58d169 [ 420.316433][ T7004] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 420.316453][ T7004] RBP: 00007f38cc60e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 420.316473][ T7004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 420.316492][ T7004] R13: 0000000000000000 R14: 00007f38cc7a5fa0 R15: 00007ffd88ba1dd8 [ 420.316533][ T7004] [ 420.572272][ T7004] kobject_uevent: unable to create netlink socket! [ 420.923535][ T7018] netlink: 252 bytes leftover after parsing attributes in process `syz.3.276'. [ 421.026707][ T7023] Invalid ELF header magic: != ELF [ 422.933872][ T7020] zram: Added device: zram1 [ 424.388941][ T7066] input: jJǸ-¶š9ã%vø“û¨lÐQ  J86Ö‘ as /devices/virtual/input/input25 [ 424.692707][ T7073] netlink: 252 bytes leftover after parsing attributes in process `syz.3.287'. [ 426.619218][ T7081] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 428.943599][ T30] audit: type=1800 audit(6037820702.156:4): pid=7109 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.294" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 432.878399][ T7163] netlink: 252 bytes leftover after parsing attributes in process `syz.0.308'. [ 434.572334][ T7180] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 434.790335][ T7200] netlink: 252 bytes leftover after parsing attributes in process `syz.2.315'. [ 434.953342][ T7203] netlink: 252 bytes leftover after parsing attributes in process `syz.0.316'. [ 436.418444][ T7219] can0: slcan on ttyS2. [ 436.491112][ T7219] FAULT_INJECTION: forcing a failure. [ 436.491112][ T7219] name failslab, interval 1, probability 0, space 0, times 0 [ 436.531634][ T7219] CPU: 1 UID: 0 PID: 7219 Comm: syz.3.322 Not tainted 6.14.0-syzkaller #0 [ 436.531677][ T7219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 436.531696][ T7219] Call Trace: [ 436.531706][ T7219] [ 436.531717][ T7219] dump_stack_lvl+0x16c/0x1f0 [ 436.531773][ T7219] should_fail_ex+0x50a/0x650 [ 436.531807][ T7219] ? fs_reclaim_acquire+0xae/0x150 [ 436.531854][ T7219] should_failslab+0xc2/0x120 [ 436.531887][ T7219] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 436.531949][ T7219] ? getname_flags.part.0+0x4c/0x550 [ 436.531996][ T7219] getname_flags.part.0+0x4c/0x550 [ 436.532040][ T7219] getname+0x8d/0xe0 [ 436.532085][ T7219] do_sys_openat2+0x104/0x1e0 [ 436.532121][ T7219] ? __pfx_do_sys_openat2+0x10/0x10 [ 436.532160][ T7219] ? ksys_semctl.constprop.0+0x150/0x2e0 [ 436.532208][ T7219] __x64_sys_openat+0x175/0x210 [ 436.532245][ T7219] ? __pfx___x64_sys_openat+0x10/0x10 [ 436.532297][ T7219] do_syscall_64+0xcd/0x250 [ 436.532351][ T7219] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 436.532399][ T7219] RIP: 0033:0x7f38cc58bad0 [ 436.532426][ T7219] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 436.532457][ T7219] RSP: 002b:00007f38cd330f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 436.532488][ T7219] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f38cc58bad0 [ 436.532508][ T7219] RDX: 0000000000000002 RSI: 00007f38cd330fa0 RDI: 00000000ffffff9c [ 436.532529][ T7219] RBP: 00007f38cd330fa0 R08: 0000000000000000 R09: 0000000000000000 [ 436.532549][ T7219] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 436.532568][ T7219] R13: 0000000000000000 R14: 00007f38cc7a5fa0 R15: 00007ffd88ba1dd8 [ 436.532607][ T7219] [ 436.982513][ T7219] can0 (unregistered): slcan off ttyS2. [ 437.347770][ T7224] openvswitch: netlink: Message has 149 unknown bytes. [ 437.959650][ T7256] netlink: 252 bytes leftover after parsing attributes in process `syz.0.329'. [ 438.988788][ T7263] sp0: Synchronizing with TNC [ 439.150307][ T7274] FAULT_INJECTION: forcing a failure. [ 439.150307][ T7274] name failslab, interval 1, probability 0, space 0, times 0 [ 439.164933][ T7274] CPU: 1 UID: 0 PID: 7274 Comm: syz.2.333 Not tainted 6.14.0-syzkaller #0 [ 439.164972][ T7274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 439.164990][ T7274] Call Trace: [ 439.164998][ T7274] [ 439.165010][ T7274] dump_stack_lvl+0x16c/0x1f0 [ 439.165065][ T7274] should_fail_ex+0x50a/0x650 [ 439.165097][ T7274] ? fs_reclaim_acquire+0xae/0x150 [ 439.165142][ T7274] should_failslab+0xc2/0x120 [ 439.165174][ T7274] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 439.165227][ T7274] ? __xlate_proc_name+0x173/0x210 [ 439.165279][ T7274] ? __proc_create+0x2c0/0x8b0 [ 439.165338][ T7274] __proc_create+0x2c0/0x8b0 [ 439.165394][ T7274] ? __pfx___proc_create+0x10/0x10 [ 439.165452][ T7274] ? __pfx___netlink_kernel_create+0x10/0x10 [ 439.165514][ T7274] proc_create_reg+0x7d/0x180 [ 439.165550][ T7274] proc_create_net_data+0x8f/0x1b0 [ 439.165584][ T7274] ? __pfx_proc_create_net_data+0x10/0x10 [ 439.165615][ T7274] ? __pfx_uevent_net_rcv+0x10/0x10 [ 439.165658][ T7274] ? __pfx_proto_init_net+0x10/0x10 [ 439.165715][ T7274] proto_init_net+0x53/0x70 [ 439.165754][ T7274] ops_init+0x1df/0x5f0 [ 439.165792][ T7274] setup_net+0x21f/0x860 [ 439.165828][ T7274] ? __pfx_setup_net+0x10/0x10 [ 439.165860][ T7274] ? down_read_killable+0xcc/0x380 [ 439.165891][ T7274] ? __pfx_down_read_killable+0x10/0x10 [ 439.165922][ T7274] ? __raw_spin_lock_init+0x3a/0x110 [ 439.165961][ T7274] ? debug_mutex_init+0x37/0x70 [ 439.166001][ T7274] copy_net_ns+0x2a6/0x5f0 [ 439.166044][ T7274] create_new_namespaces+0x3ea/0xad0 [ 439.166110][ T7274] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 439.166176][ T7274] ksys_unshare+0x45d/0xa40 [ 439.166213][ T7274] ? __pfx_ksys_unshare+0x10/0x10 [ 439.166246][ T7274] ? xfd_validate_state+0x5d/0x180 [ 439.166308][ T7274] __x64_sys_unshare+0x31/0x40 [ 439.166343][ T7274] do_syscall_64+0xcd/0x250 [ 439.166397][ T7274] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 439.166444][ T7274] RIP: 0033:0x7f141638d169 [ 439.166470][ T7274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 439.166500][ T7274] RSP: 002b:00007f1417280038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 439.166529][ T7274] RAX: ffffffffffffffda RBX: 00007f14165a5fa0 RCX: 00007f141638d169 [ 439.166550][ T7274] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 439.166568][ T7274] RBP: 00007f141640e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 439.166587][ T7274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 439.166604][ T7274] R13: 0000000000000000 R14: 00007f14165a5fa0 R15: 00007ffc34767758 [ 439.166644][ T7274] [ 440.341111][ T7306] Process accounting resumed [ 442.043658][ T7335] netlink: 252 bytes leftover after parsing attributes in process `syz.0.349'. [ 444.133758][ T7359] netlink: 12 bytes leftover after parsing attributes in process `syz.3.355'. [ 445.184545][ T7380] netlink: 252 bytes leftover after parsing attributes in process `syz.2.361'. [ 445.505630][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.512103][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 447.041022][ T7395] ovs_: entered promiscuous mode [ 447.562690][ T7396] tty tty46: ldisc open failed (-12), clearing slot 45 [ 447.673470][ T7397] tty tty46: ldisc open failed (-12), clearing slot 45 [ 448.254444][ T7412] netlink: 8 bytes leftover after parsing attributes in process `syz.3.368'. [ 450.193749][ T7442] FAULT_INJECTION: forcing a failure. [ 450.193749][ T7442] name failslab, interval 1, probability 0, space 0, times 0 [ 450.215902][ T7442] CPU: 1 UID: 0 PID: 7442 Comm: syz.1.376 Not tainted 6.14.0-syzkaller #0 [ 450.215944][ T7442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 450.215961][ T7442] Call Trace: [ 450.215970][ T7442] [ 450.215982][ T7442] dump_stack_lvl+0x16c/0x1f0 [ 450.216037][ T7442] should_fail_ex+0x50a/0x650 [ 450.216073][ T7442] ? fs_reclaim_acquire+0xae/0x150 [ 450.216119][ T7442] ? sctp_auth_shkey_create+0x87/0x1f0 [ 450.216167][ T7442] should_failslab+0xc2/0x120 [ 450.216199][ T7442] __kmalloc_cache_noprof+0x68/0x410 [ 450.216250][ T7442] ? lockdep_init_map_type+0x16d/0x7d0 [ 450.216303][ T7442] sctp_auth_shkey_create+0x87/0x1f0 [ 450.216356][ T7442] sctp_endpoint_new+0x54a/0xc90 [ 450.216409][ T7442] sctp_init_sock+0xe2c/0x1330 [ 450.216452][ T7442] ? sock_init_data_uid+0x7f6/0xa00 [ 450.216498][ T7442] ? __pfx_sctp_init_sock+0x10/0x10 [ 450.216549][ T7442] inet_create+0x94a/0x10a0 [ 450.216585][ T7442] ? inet_create+0x90/0x10a0 [ 450.216623][ T7442] __sock_create+0x335/0x8d0 [ 450.216672][ T7442] __sys_socket+0x14f/0x260 [ 450.216717][ T7442] ? __pfx___sys_socket+0x10/0x10 [ 450.216760][ T7442] ? rcu_is_watching+0x12/0xc0 [ 450.216800][ T7442] __x64_sys_socket+0x72/0xb0 [ 450.216839][ T7442] ? lockdep_hardirqs_on+0x7c/0x110 [ 450.216887][ T7442] do_syscall_64+0xcd/0x250 [ 450.216938][ T7442] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 450.216985][ T7442] RIP: 0033:0x7f7264d8d169 [ 450.217009][ T7442] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 450.217039][ T7442] RSP: 002b:00007f7265c94038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 450.217068][ T7442] RAX: ffffffffffffffda RBX: 00007f7264fa5fa0 RCX: 00007f7264d8d169 [ 450.217088][ T7442] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000002 [ 450.217105][ T7442] RBP: 00007f7264e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 450.217123][ T7442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 450.217141][ T7442] R13: 0000000000000000 R14: 00007f7264fa5fa0 R15: 00007ffdad28f678 [ 450.217178][ T7442] [ 451.173112][ T7451] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 451.182905][ T7451] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 452.508762][ T7477] random: crng reseeded on system resumption [ 453.718860][ T7481] FAULT_INJECTION: forcing a failure. [ 453.718860][ T7481] name failslab, interval 1, probability 0, space 0, times 0 [ 453.927109][ T7481] CPU: 0 UID: 0 PID: 7481 Comm: syz.2.382 Not tainted 6.14.0-syzkaller #0 [ 453.927153][ T7481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 453.927172][ T7481] Call Trace: [ 453.927181][ T7481] [ 453.927194][ T7481] dump_stack_lvl+0x16c/0x1f0 [ 453.927251][ T7481] should_fail_ex+0x50a/0x650 [ 453.927283][ T7481] ? fs_reclaim_acquire+0xae/0x150 [ 453.927330][ T7481] should_failslab+0xc2/0x120 [ 453.927363][ T7481] kmem_cache_alloc_node_noprof+0x72/0x3c0 [ 453.927417][ T7481] ? alloc_unbound_pwq+0x3ff/0xe10 [ 453.927488][ T7481] alloc_unbound_pwq+0x3ff/0xe10 [ 453.927554][ T7481] apply_wqattrs_prepare+0x3af/0xbd0 [ 453.927626][ T7481] apply_workqueue_attrs_locked+0x64/0xe0 [ 453.927684][ T7481] __alloc_workqueue+0xf34/0x1810 [ 453.927737][ T7481] alloc_workqueue+0xd3/0x200 [ 453.927773][ T7481] ? __pfx_alloc_workqueue+0x10/0x10 [ 453.927817][ T7481] ? rcu_is_watching+0x12/0xc0 [ 453.927853][ T7481] ? trace_kmalloc+0x2d/0xd0 [ 453.927889][ T7481] ? __kmalloc_noprof+0x23b/0x510 [ 453.927936][ T7481] ? __pfx_lock_release+0x10/0x10 [ 453.927981][ T7481] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 453.928042][ T7481] ieee80211_register_hw+0x1e3b/0x4060 [ 453.928114][ T7481] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 453.928167][ T7481] ? net_generic+0xea/0x2a0 [ 453.928212][ T7481] ? lockdep_init_map_type+0x16d/0x7d0 [ 453.928268][ T7481] ? __asan_memset+0x23/0x50 [ 453.928313][ T7481] ? __hrtimer_init+0x106/0x2c0 [ 453.928371][ T7481] mac80211_hwsim_new_radio+0x304e/0x54e0 [ 453.928457][ T7481] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 453.928526][ T7481] hwsim_new_radio_nl+0xb42/0x12b0 [ 453.928585][ T7481] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 453.928651][ T7481] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 453.928691][ T7481] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 453.928739][ T7481] genl_family_rcv_msg_doit+0x202/0x2f0 [ 453.928779][ T7481] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 453.928815][ T7481] ? trace_cap_capable+0x1a2/0x210 [ 453.928862][ T7481] ? bpf_lsm_capable+0x9/0x10 [ 453.928897][ T7481] ? security_capable+0x7e/0x260 [ 453.928933][ T7481] ? ns_capable+0xd7/0x110 [ 453.928985][ T7481] genl_rcv_msg+0x565/0x800 [ 453.929040][ T7481] ? __pfx_genl_rcv_msg+0x10/0x10 [ 453.929084][ T7481] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 453.929154][ T7481] netlink_rcv_skb+0x16b/0x440 [ 453.929207][ T7481] ? __pfx_genl_rcv_msg+0x10/0x10 [ 453.929245][ T7481] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 453.929316][ T7481] ? down_read+0xc9/0x330 [ 453.929371][ T7481] ? __pfx_down_read+0x10/0x10 [ 453.929426][ T7481] ? netlink_deliver_tap+0x1ae/0xd30 [ 453.929490][ T7481] genl_rcv+0x28/0x40 [ 453.929519][ T7481] netlink_unicast+0x53c/0x7f0 [ 453.929575][ T7481] ? __pfx_netlink_unicast+0x10/0x10 [ 453.929631][ T7481] ? __phys_addr_symbol+0x30/0x80 [ 453.929665][ T7481] ? __check_object_size+0x488/0x710 [ 453.929704][ T7481] netlink_sendmsg+0x8b8/0xd70 [ 453.929764][ T7481] ? __pfx_netlink_sendmsg+0x10/0x10 [ 453.929835][ T7481] ____sys_sendmsg+0xaaf/0xc90 [ 453.929879][ T7481] ? copy_msghdr_from_user+0x10b/0x160 [ 453.929934][ T7481] ? __pfx_____sys_sendmsg+0x10/0x10 [ 453.929998][ T7481] ___sys_sendmsg+0x135/0x1e0 [ 453.930057][ T7481] ? __pfx____sys_sendmsg+0x10/0x10 [ 453.930129][ T7481] ? __pfx_lock_release+0x10/0x10 [ 453.930175][ T7481] ? trace_lock_acquire+0x14e/0x1f0 [ 453.930230][ T7481] ? __fget_files+0x206/0x3a0 [ 453.930290][ T7481] __sys_sendmsg+0x16e/0x220 [ 453.930323][ T7481] ? __pfx___sys_sendmsg+0x10/0x10 [ 453.930354][ T7481] ? __x64_sys_futex+0x1e1/0x4c0 [ 453.930422][ T7481] do_syscall_64+0xcd/0x250 [ 453.930486][ T7481] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 453.930546][ T7481] RIP: 0033:0x7f141638d169 [ 453.930574][ T7481] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 453.930604][ T7481] RSP: 002b:00007f141725f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 453.930635][ T7481] RAX: ffffffffffffffda RBX: 00007f14165a6080 RCX: 00007f141638d169 [ 453.930655][ T7481] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000006 [ 453.930675][ T7481] RBP: 00007f141640e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 453.930693][ T7481] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 453.930711][ T7481] R13: 0000000000000000 R14: 00007f14165a6080 R15: 00007ffc34767758 [ 453.930752][ T7481] [ 455.113060][ T7490] ptrace attach of "./syz-executor exec"[5869] was attempted by ""[7490] [ 455.762618][ T7509] netlink: 28 bytes leftover after parsing attributes in process `syz.2.389'. [ 455.772151][ T7509] bridge0: port 2(bridge_slave_1) entered disabled state [ 455.831836][ T7512] netlink: 252 bytes leftover after parsing attributes in process `syz.3.390'. [ 456.903223][ T7509] bridge_slave_1 (unregistering): left allmulticast mode [ 456.903302][ T7509] bridge_slave_1 (unregistering): left promiscuous mode [ 456.904853][ T7509] bridge0: port 2(bridge_slave_1) entered disabled state [ 458.694020][ T7536] nbd: must specify an index to disconnect [ 462.661709][ T7597] netlink: 252 bytes leftover after parsing attributes in process `syz.0.406'. [ 462.952699][ T5147] Bluetooth: hci1: command 0x0406 tx timeout [ 462.952725][ T5861] Bluetooth: hci3: command 0x0406 tx timeout [ 462.958774][ T5147] Bluetooth: hci2: command 0x0406 tx timeout [ 462.958822][ T5147] Bluetooth: hci0: command 0x0406 tx timeout [ 465.115265][ T7616] netlink: 8 bytes leftover after parsing attributes in process `syz.0.411'. [ 465.276586][ T5911] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 465.313197][ T7613] netlink: 28 bytes leftover after parsing attributes in process `syz.0.411'. [ 465.354875][ T7613] veth1_macvtap: left promiscuous mode [ 465.360523][ T7613] macsec0: entered allmulticast mode [ 466.216379][ T5911] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 466.463732][ T5911] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 466.713539][ T5911] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 466.755231][ T5866] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 466.769754][ T5866] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 466.778660][ T5866] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 466.792977][ T5866] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 466.803855][ T5866] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 466.816188][ T5866] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 467.165240][ T5911] bridge_slave_0: left allmulticast mode [ 467.171368][ T5911] bridge_slave_0: left promiscuous mode [ 467.198245][ T5911] bridge0: port 1(bridge_slave_0) entered disabled state [ 468.758380][ T7655] FAULT_INJECTION: forcing a failure. [ 468.758380][ T7655] name failslab, interval 1, probability 0, space 0, times 0 [ 468.777986][ T7655] CPU: 1 UID: 0 PID: 7655 Comm: syz.0.418 Not tainted 6.14.0-syzkaller #0 [ 468.778025][ T7655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 468.778041][ T7655] Call Trace: [ 468.778050][ T7655] [ 468.778062][ T7655] dump_stack_lvl+0x16c/0x1f0 [ 468.778114][ T7655] should_fail_ex+0x50a/0x650 [ 468.778144][ T7655] ? fs_reclaim_acquire+0xae/0x150 [ 468.778186][ T7655] ? ieee80211_txq_setup_flows+0x200/0xad0 [ 468.778236][ T7655] should_failslab+0xc2/0x120 [ 468.778265][ T7655] __kmalloc_noprof+0xcb/0x510 [ 468.778321][ T7655] ieee80211_txq_setup_flows+0x200/0xad0 [ 468.778382][ T7655] ieee80211_register_hw+0x2085/0x4060 [ 468.778444][ T7655] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 468.778491][ T7655] ? net_generic+0xea/0x2a0 [ 468.778534][ T7655] ? lockdep_init_map_type+0x16d/0x7d0 [ 468.778586][ T7655] ? __asan_memset+0x23/0x50 [ 468.778629][ T7655] ? __hrtimer_init+0x106/0x2c0 [ 468.778683][ T7655] mac80211_hwsim_new_radio+0x304e/0x54e0 [ 468.778755][ T7655] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 468.778817][ T7655] hwsim_new_radio_nl+0xb42/0x12b0 [ 468.778867][ T7655] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 468.778939][ T7655] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 468.778975][ T7655] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 468.779017][ T7655] genl_family_rcv_msg_doit+0x202/0x2f0 [ 468.779053][ T7655] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 468.779085][ T7655] ? trace_cap_capable+0x1a2/0x210 [ 468.779130][ T7655] ? bpf_lsm_capable+0x9/0x10 [ 468.779163][ T7655] ? security_capable+0x7e/0x260 [ 468.779197][ T7655] ? ns_capable+0xd7/0x110 [ 468.779245][ T7655] genl_rcv_msg+0x565/0x800 [ 468.779284][ T7655] ? __pfx_genl_rcv_msg+0x10/0x10 [ 468.779318][ T7655] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 468.779381][ T7655] netlink_rcv_skb+0x16b/0x440 [ 468.779428][ T7655] ? __pfx_genl_rcv_msg+0x10/0x10 [ 468.779463][ T7655] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 468.779529][ T7655] ? down_read+0xc9/0x330 [ 468.779578][ T7655] ? __pfx_down_read+0x10/0x10 [ 468.779627][ T7655] ? netlink_deliver_tap+0x1ae/0xd30 [ 468.779678][ T7655] genl_rcv+0x28/0x40 [ 468.779703][ T7655] netlink_unicast+0x53c/0x7f0 [ 468.779780][ T7655] ? __pfx_netlink_unicast+0x10/0x10 [ 468.779830][ T7655] ? __phys_addr_symbol+0x30/0x80 [ 468.779862][ T7655] ? __check_object_size+0x488/0x710 [ 468.779906][ T7655] netlink_sendmsg+0x8b8/0xd70 [ 468.779960][ T7655] ? __pfx_netlink_sendmsg+0x10/0x10 [ 468.780024][ T7655] ____sys_sendmsg+0xaaf/0xc90 [ 468.780064][ T7655] ? copy_msghdr_from_user+0x10b/0x160 [ 468.780117][ T7655] ? __pfx_____sys_sendmsg+0x10/0x10 [ 468.780176][ T7655] ___sys_sendmsg+0x135/0x1e0 [ 468.780228][ T7655] ? __pfx____sys_sendmsg+0x10/0x10 [ 468.780295][ T7655] ? __pfx_lock_release+0x10/0x10 [ 468.780337][ T7655] ? trace_lock_acquire+0x14e/0x1f0 [ 468.780388][ T7655] ? __fget_files+0x206/0x3a0 [ 468.780446][ T7655] __sys_sendmsg+0x16e/0x220 [ 468.780478][ T7655] ? __pfx___sys_sendmsg+0x10/0x10 [ 468.780507][ T7655] ? __x64_sys_futex+0x1e1/0x4c0 [ 468.780572][ T7655] do_syscall_64+0xcd/0x250 [ 468.780626][ T7655] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 468.780671][ T7655] RIP: 0033:0x7f37ec78d169 [ 468.780696][ T7655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 468.780727][ T7655] RSP: 002b:00007f37ea5f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 468.780757][ T7655] RAX: ffffffffffffffda RBX: 00007f37ec9a5fa0 RCX: 00007f37ec78d169 [ 468.780777][ T7655] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000006 [ 468.780797][ T7655] RBP: 00007f37ec80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 468.780817][ T7655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 468.780836][ T7655] R13: 0000000000000000 R14: 00007f37ec9a5fa0 R15: 00007ffdc1c801b8 [ 468.780876][ T7655] [ 469.168575][ T5866] Bluetooth: hci0: command tx timeout [ 469.309784][ T5911] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 469.336613][ T5911] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 469.359597][ T5911] bond0 (unregistering): Released all slaves [ 470.016540][ T7629] chnl_net:caif_netlink_parms(): no params data found [ 470.457005][ T7656] Process accounting paused [ 470.558831][ T7629] bridge0: port 1(bridge_slave_0) entered blocking state [ 470.591722][ T7629] bridge0: port 1(bridge_slave_0) entered disabled state [ 470.599028][ T7629] bridge_slave_0: entered allmulticast mode [ 470.639348][ T7629] bridge_slave_0: entered promiscuous mode [ 470.672617][ T7629] bridge0: port 2(bridge_slave_1) entered blocking state [ 470.690164][ T7629] bridge0: port 2(bridge_slave_1) entered disabled state [ 470.721011][ T7629] bridge_slave_1: entered allmulticast mode [ 470.739120][ T7629] bridge_slave_1: entered promiscuous mode [ 470.852648][ T5911] hsr_slave_0: left promiscuous mode [ 470.858769][ T5911] hsr_slave_1: left promiscuous mode [ 470.880660][ T5911] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 470.893664][ T5911] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 470.934418][ T5911] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 470.968278][ T5911] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 471.145195][ T5911] veth1_macvtap: left promiscuous mode [ 471.169744][ T5911] veth0_macvtap: left promiscuous mode [ 471.182193][ T5866] Bluetooth: hci0: command tx timeout [ 471.202462][ T5911] veth1_vlan: left promiscuous mode [ 471.229555][ T5911] veth0_vlan: left promiscuous mode [ 471.902746][ T7697] netlink: 252 bytes leftover after parsing attributes in process `syz.0.425'. [ 472.874297][ T7700] netlink: 252 bytes leftover after parsing attributes in process `syz.1.426'. [ 472.923470][ T5911] team0 (unregistering): Port device team_slave_1 removed [ 472.983555][ T5911] team0 (unregistering): Port device team_slave_0 removed [ 473.261680][ T5866] Bluetooth: hci0: command tx timeout [ 474.097280][ T7629] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 474.152235][ T7629] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 474.266253][ T7629] team0: Port device team_slave_0 added [ 474.276257][ T7629] team0: Port device team_slave_1 added [ 474.324573][ T7629] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 474.332548][ T7629] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 474.360506][ T7629] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 474.375910][ T7629] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 474.389619][ T7629] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 474.416733][ T7629] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 474.560088][ T7629] hsr_slave_0: entered promiscuous mode [ 474.568324][ T7629] hsr_slave_1: entered promiscuous mode [ 475.054630][ T7629] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 475.105809][ T7629] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 475.179317][ T7629] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 475.223039][ T7629] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 475.352401][ T5866] Bluetooth: hci0: command tx timeout [ 475.475839][ T7629] 8021q: adding VLAN 0 to HW filter on device bond0 [ 475.530002][ T7629] 8021q: adding VLAN 0 to HW filter on device team0 [ 475.602612][ T7578] bridge0: port 1(bridge_slave_0) entered blocking state [ 475.609841][ T7578] bridge0: port 1(bridge_slave_0) entered forwarding state [ 475.679444][ T7567] bridge0: port 2(bridge_slave_1) entered blocking state [ 475.686668][ T7567] bridge0: port 2(bridge_slave_1) entered forwarding state [ 476.765157][ T7629] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 477.800010][ T7629] veth0_vlan: entered promiscuous mode [ 477.869736][ T7629] veth1_vlan: entered promiscuous mode [ 477.919531][ T7629] veth0_macvtap: entered promiscuous mode [ 477.955008][ T7629] veth1_macvtap: entered promiscuous mode [ 477.986191][ T7629] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 478.002489][ T7629] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 478.021559][ T7629] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 478.041552][ T7629] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 478.051439][ T7629] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 478.077699][ T7629] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 478.090068][ T7629] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 478.116250][ T7629] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 478.148821][ T7629] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 478.171571][ T7629] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 478.191555][ T7629] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 478.222025][ T7629] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 478.226941][ T7777] netlink: 252 bytes leftover after parsing attributes in process `syz.3.437'. [ 478.249445][ T7629] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 478.297076][ T7629] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 478.575082][ T7629] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 478.616275][ T7629] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 478.655228][ T7629] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 478.698553][ T7629] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 479.372562][ T7788] FAULT_INJECTION: forcing a failure. [ 479.372562][ T7788] name failslab, interval 1, probability 0, space 0, times 0 [ 479.408169][ T7788] CPU: 1 UID: 0 PID: 7788 Comm: syz.1.440 Not tainted 6.14.0-syzkaller #0 [ 479.408220][ T7788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 479.408240][ T7788] Call Trace: [ 479.408250][ T7788] [ 479.408263][ T7788] dump_stack_lvl+0x16c/0x1f0 [ 479.408326][ T7788] should_fail_ex+0x50a/0x650 [ 479.408359][ T7788] ? fs_reclaim_acquire+0xae/0x150 [ 479.408407][ T7788] ? apply_wqattrs_prepare+0x130/0xbd0 [ 479.408462][ T7788] should_failslab+0xc2/0x120 [ 479.408495][ T7788] __kmalloc_cache_noprof+0x68/0x410 [ 479.408554][ T7788] apply_wqattrs_prepare+0x130/0xbd0 [ 479.408610][ T7788] ? __alloc_workqueue+0x87c/0x1810 [ 479.408662][ T7788] apply_workqueue_attrs_locked+0x64/0xe0 [ 479.408722][ T7788] __alloc_workqueue+0xf34/0x1810 [ 479.408775][ T7788] alloc_workqueue+0xd3/0x200 [ 479.408814][ T7788] ? __pfx_alloc_workqueue+0x10/0x10 [ 479.408859][ T7788] ? rcu_is_watching+0x12/0xc0 [ 479.408895][ T7788] ? trace_kmalloc+0x2d/0xd0 [ 479.408932][ T7788] ? __kmalloc_noprof+0x23b/0x510 [ 479.408981][ T7788] ? __pfx_lock_release+0x10/0x10 [ 479.409027][ T7788] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 479.409091][ T7788] ieee80211_register_hw+0x1e3b/0x4060 [ 479.409163][ T7788] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 479.409228][ T7788] ? net_generic+0xea/0x2a0 [ 479.409279][ T7788] ? lockdep_init_map_type+0x16d/0x7d0 [ 479.409336][ T7788] ? __asan_memset+0x23/0x50 [ 479.409383][ T7788] ? __hrtimer_init+0x106/0x2c0 [ 479.409442][ T7788] mac80211_hwsim_new_radio+0x304e/0x54e0 [ 479.409522][ T7788] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 479.409591][ T7788] hwsim_new_radio_nl+0xb42/0x12b0 [ 479.409650][ T7788] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 479.409719][ T7788] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 479.409759][ T7788] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 479.409808][ T7788] genl_family_rcv_msg_doit+0x202/0x2f0 [ 479.409849][ T7788] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 479.409886][ T7788] ? trace_cap_capable+0x1a2/0x210 [ 479.409935][ T7788] ? bpf_lsm_capable+0x9/0x10 [ 479.409970][ T7788] ? security_capable+0x7e/0x260 [ 479.410007][ T7788] ? ns_capable+0xd7/0x110 [ 479.410063][ T7788] genl_rcv_msg+0x565/0x800 [ 479.410103][ T7788] ? __pfx_genl_rcv_msg+0x10/0x10 [ 479.410140][ T7788] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 479.410217][ T7788] netlink_rcv_skb+0x16b/0x440 [ 479.410274][ T7788] ? __pfx_genl_rcv_msg+0x10/0x10 [ 479.410313][ T7788] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 479.410386][ T7788] ? down_read+0xc9/0x330 [ 479.410441][ T7788] ? __pfx_down_read+0x10/0x10 [ 479.410498][ T7788] ? netlink_deliver_tap+0x1ae/0xd30 [ 479.410556][ T7788] genl_rcv+0x28/0x40 [ 479.410586][ T7788] netlink_unicast+0x53c/0x7f0 [ 479.410645][ T7788] ? __pfx_netlink_unicast+0x10/0x10 [ 479.410701][ T7788] ? __phys_addr_symbol+0x30/0x80 [ 479.410736][ T7788] ? __check_object_size+0x488/0x710 [ 479.410776][ T7788] netlink_sendmsg+0x8b8/0xd70 [ 479.410838][ T7788] ? __pfx_netlink_sendmsg+0x10/0x10 [ 479.410910][ T7788] ____sys_sendmsg+0xaaf/0xc90 [ 479.410954][ T7788] ? copy_msghdr_from_user+0x10b/0x160 [ 479.411014][ T7788] ? __pfx_____sys_sendmsg+0x10/0x10 [ 479.411079][ T7788] ___sys_sendmsg+0x135/0x1e0 [ 479.411138][ T7788] ? __pfx____sys_sendmsg+0x10/0x10 [ 479.411226][ T7788] ? __pfx_lock_release+0x10/0x10 [ 479.411272][ T7788] ? trace_lock_acquire+0x14e/0x1f0 [ 479.411323][ T7788] ? __fget_files+0x206/0x3a0 [ 479.411386][ T7788] __sys_sendmsg+0x16e/0x220 [ 479.411418][ T7788] ? __pfx___sys_sendmsg+0x10/0x10 [ 479.411450][ T7788] ? __x64_sys_futex+0x1e1/0x4c0 [ 479.411515][ T7788] do_syscall_64+0xcd/0x250 [ 479.411571][ T7788] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 479.411619][ T7788] RIP: 0033:0x7f7264d8d169 [ 479.411646][ T7788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 479.411677][ T7788] RSP: 002b:00007f7265c94038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 479.411707][ T7788] RAX: ffffffffffffffda RBX: 00007f7264fa5fa0 RCX: 00007f7264d8d169 [ 479.411727][ T7788] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000006 [ 479.411745][ T7788] RBP: 00007f7264e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 479.411763][ T7788] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 479.411780][ T7788] R13: 0000000000000000 R14: 00007f7264fa5fa0 R15: 00007ffdad28f678 [ 479.411820][ T7788] [ 480.264458][ T7567] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 480.290788][ T7567] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 480.577350][ T5911] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 480.599851][ T5911] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 480.796098][ T7815] FAULT_INJECTION: forcing a failure. [ 480.796098][ T7815] name failslab, interval 1, probability 0, space 0, times 0 [ 480.841665][ T7815] CPU: 0 UID: 0 PID: 7815 Comm: syz.3.442 Not tainted 6.14.0-syzkaller #0 [ 480.841708][ T7815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 480.841727][ T7815] Call Trace: [ 480.841737][ T7815] [ 480.841749][ T7815] dump_stack_lvl+0x16c/0x1f0 [ 480.841806][ T7815] should_fail_ex+0x50a/0x650 [ 480.841838][ T7815] ? fs_reclaim_acquire+0xae/0x150 [ 480.841886][ T7815] should_failslab+0xc2/0x120 [ 480.841918][ T7815] kmem_cache_alloc_lru_noprof+0x73/0x3d0 [ 480.841972][ T7815] ? sock_alloc_inode+0x25/0x1c0 [ 480.842015][ T7815] ? __pfx_sock_alloc_inode+0x10/0x10 [ 480.842052][ T7815] sock_alloc_inode+0x25/0x1c0 [ 480.842089][ T7815] alloc_inode+0x5d/0x230 [ 480.842131][ T7815] sock_alloc+0x40/0x280 [ 480.842166][ T7815] sock_create_lite+0x82/0x120 [ 480.842207][ T7815] __netlink_kernel_create+0xbe/0x750 [ 480.842262][ T7815] ? __pfx___netlink_kernel_create+0x10/0x10 [ 480.842326][ T7815] uevent_net_init+0xf9/0x360 [ 480.842361][ T7815] ? __pfx_uevent_net_init+0x10/0x10 [ 480.842398][ T7815] ? __pfx_uevent_net_rcv+0x10/0x10 [ 480.842446][ T7815] ? __pfx_uevent_net_init+0x10/0x10 [ 480.842479][ T7815] ops_init+0x1df/0x5f0 [ 480.842516][ T7815] setup_net+0x21f/0x860 [ 480.842553][ T7815] ? __pfx_setup_net+0x10/0x10 [ 480.842584][ T7815] ? down_read_killable+0xcc/0x380 [ 480.842616][ T7815] ? __pfx_down_read_killable+0x10/0x10 [ 480.842646][ T7815] ? __raw_spin_lock_init+0x3a/0x110 [ 480.842681][ T7815] ? debug_mutex_init+0x37/0x70 [ 480.842720][ T7815] copy_net_ns+0x2a6/0x5f0 [ 480.842763][ T7815] create_new_namespaces+0x3ea/0xad0 [ 480.842827][ T7815] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 480.842889][ T7815] ksys_unshare+0x45d/0xa40 [ 480.842925][ T7815] ? __pfx_ksys_unshare+0x10/0x10 [ 480.842976][ T7815] __x64_sys_unshare+0x31/0x40 [ 480.843010][ T7815] do_syscall_64+0xcd/0x250 [ 480.843063][ T7815] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 480.843116][ T7815] RIP: 0033:0x7f38cc58d169 [ 480.843142][ T7815] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 480.843174][ T7815] RSP: 002b:00007f38cd331038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 480.843205][ T7815] RAX: ffffffffffffffda RBX: 00007f38cc7a5fa0 RCX: 00007f38cc58d169 [ 480.843225][ T7815] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 480.843243][ T7815] RBP: 00007f38cc60e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 480.843261][ T7815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 480.843279][ T7815] R13: 0000000000000000 R14: 00007f38cc7a5fa0 R15: 00007ffd88ba1dd8 [ 480.843318][ T7815] [ 480.843332][ T7815] kobject_uevent: unable to create netlink socket! [ 481.515145][ T7823] FAULT_INJECTION: forcing a failure. [ 481.515145][ T7823] name failslab, interval 1, probability 0, space 0, times 0 [ 481.579480][ T7823] CPU: 0 UID: 0 PID: 7823 Comm: syz.1.443 Not tainted 6.14.0-syzkaller #0 [ 481.579519][ T7823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 481.579537][ T7823] Call Trace: [ 481.579546][ T7823] [ 481.579558][ T7823] dump_stack_lvl+0x16c/0x1f0 [ 481.579609][ T7823] should_fail_ex+0x50a/0x650 [ 481.579640][ T7823] ? fs_reclaim_acquire+0xae/0x150 [ 481.579686][ T7823] should_failslab+0xc2/0x120 [ 481.579716][ T7823] kmem_cache_alloc_node_noprof+0x72/0x3c0 [ 481.579767][ T7823] ? __alloc_skb+0x2b1/0x380 [ 481.579823][ T7823] __alloc_skb+0x2b1/0x380 [ 481.579873][ T7823] ? __pfx___alloc_skb+0x10/0x10 [ 481.579937][ T7823] netlink_alloc_large_skb+0x69/0x130 [ 481.579992][ T7823] netlink_sendmsg+0x689/0xd70 [ 481.580048][ T7823] ? __pfx_netlink_sendmsg+0x10/0x10 [ 481.580121][ T7823] ____sys_sendmsg+0xaaf/0xc90 [ 481.580162][ T7823] ? copy_msghdr_from_user+0x10b/0x160 [ 481.580216][ T7823] ? __pfx_____sys_sendmsg+0x10/0x10 [ 481.580275][ T7823] ___sys_sendmsg+0x135/0x1e0 [ 481.580330][ T7823] ? __pfx____sys_sendmsg+0x10/0x10 [ 481.580399][ T7823] ? __pfx_lock_release+0x10/0x10 [ 481.580445][ T7823] ? trace_lock_acquire+0x14e/0x1f0 [ 481.580497][ T7823] ? __fget_files+0x206/0x3a0 [ 481.580554][ T7823] __sys_sendmsg+0x16e/0x220 [ 481.580585][ T7823] ? __pfx___sys_sendmsg+0x10/0x10 [ 481.580641][ T7823] do_syscall_64+0xcd/0x250 [ 481.580693][ T7823] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 481.580739][ T7823] RIP: 0033:0x7f7264d8d169 [ 481.580763][ T7823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 481.580794][ T7823] RSP: 002b:00007f7265c94038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 481.580822][ T7823] RAX: ffffffffffffffda RBX: 00007f7264fa5fa0 RCX: 00007f7264d8d169 [ 481.580842][ T7823] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000006 [ 481.580857][ T7823] RBP: 00007f7265c94090 R08: 0000000000000000 R09: 0000000000000000 [ 481.580871][ T7823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 481.580889][ T7823] R13: 0000000000000000 R14: 00007f7264fa5fa0 R15: 00007ffdad28f678 [ 481.580927][ T7823] [ 481.857508][ T7827] FAULT_INJECTION: forcing a failure. [ 481.857508][ T7827] name failslab, interval 1, probability 0, space 0, times 0 [ 481.870493][ T7827] CPU: 0 UID: 0 PID: 7827 Comm: syz.1.443 Not tainted 6.14.0-syzkaller #0 [ 481.870530][ T7827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 481.870547][ T7827] Call Trace: [ 481.870557][ T7827] [ 481.870569][ T7827] dump_stack_lvl+0x16c/0x1f0 [ 481.870623][ T7827] should_fail_ex+0x50a/0x650 [ 481.870654][ T7827] ? fs_reclaim_acquire+0xae/0x150 [ 481.870698][ T7827] ? __register_sysctl_table+0xeaf/0x1910 [ 481.870751][ T7827] should_failslab+0xc2/0x120 [ 481.870782][ T7827] __kmalloc_noprof+0xcb/0x510 [ 481.870841][ T7827] __register_sysctl_table+0xeaf/0x1910 [ 481.870904][ T7827] ? __pfx___register_sysctl_table+0x10/0x10 [ 481.870956][ T7827] ? is_module_address+0x2a/0x50 [ 481.871003][ T7827] ? register_net_sysctl_sz+0x228/0x3e0 [ 481.871068][ T7827] __devinet_sysctl_register+0x1b5/0x360 [ 481.871128][ T7827] ? __pfx___devinet_sysctl_register+0x10/0x10 [ 481.871179][ T7827] ? trace_kmalloc+0x2d/0xd0 [ 481.871218][ T7827] ? devinet_init_net+0xeb/0x900 [ 481.871270][ T7827] ? __asan_memcpy+0x3c/0x60 [ 481.871316][ T7827] ? __pfx_devinet_init_net+0x10/0x10 [ 481.871367][ T7827] devinet_init_net+0x347/0x900 [ 481.871419][ T7827] ? __pfx_devinet_init_net+0x10/0x10 [ 481.871475][ T7827] ops_init+0x1df/0x5f0 [ 481.871512][ T7827] setup_net+0x21f/0x860 [ 481.871546][ T7827] ? __pfx_setup_net+0x10/0x10 [ 481.871576][ T7827] ? down_read_killable+0xcc/0x380 [ 481.871608][ T7827] ? __pfx_down_read_killable+0x10/0x10 [ 481.871638][ T7827] ? __raw_spin_lock_init+0x3a/0x110 [ 481.871671][ T7827] ? debug_mutex_init+0x37/0x70 [ 481.871711][ T7827] copy_net_ns+0x2a6/0x5f0 [ 481.871753][ T7827] create_new_namespaces+0x3ea/0xad0 [ 481.871817][ T7827] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 481.871876][ T7827] ksys_unshare+0x45d/0xa40 [ 481.871910][ T7827] ? __pfx_ksys_unshare+0x10/0x10 [ 481.871941][ T7827] ? xfd_validate_state+0x5d/0x180 [ 481.872002][ T7827] __x64_sys_unshare+0x31/0x40 [ 481.872036][ T7827] do_syscall_64+0xcd/0x250 [ 481.872095][ T7827] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 481.872141][ T7827] RIP: 0033:0x7f7264d8d169 [ 481.872165][ T7827] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 481.872194][ T7827] RSP: 002b:00007f7265c73038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 481.872223][ T7827] RAX: ffffffffffffffda RBX: 00007f7264fa6080 RCX: 00007f7264d8d169 [ 481.872244][ T7827] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 481.872262][ T7827] RBP: 00007f7264e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 481.872280][ T7827] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 481.872298][ T7827] R13: 0000000000000000 R14: 00007f7264fa6080 R15: 00007ffdad28f678 [ 481.872336][ T7827] [ 482.258865][ T7827] sysctl could not get directory: /net/ipv4/conf/default -12 [ 483.936558][ T7868] FAULT_INJECTION: forcing a failure. [ 483.936558][ T7868] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 483.936640][ T7868] CPU: 1 UID: 0 PID: 7868 Comm: syz.3.449 Not tainted 6.14.0-syzkaller #0 [ 483.936676][ T7868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 483.936695][ T7868] Call Trace: [ 483.936704][ T7868] [ 483.936716][ T7868] dump_stack_lvl+0x16c/0x1f0 [ 483.936772][ T7868] should_fail_ex+0x50a/0x650 [ 483.936802][ T7868] ? __pfx___might_resched+0x10/0x10 [ 483.936859][ T7868] should_fail_alloc_page+0xe7/0x130 [ 483.936897][ T7868] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 483.936956][ T7868] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 483.937020][ T7868] ? hlock_class+0x4e/0x130 [ 483.937058][ T7868] ? mark_lock+0xb5/0xc60 [ 483.937105][ T7868] ? __pfx___lock_acquire+0x10/0x10 [ 483.937159][ T7868] ? __pfx_mark_lock+0x10/0x10 [ 483.937211][ T7868] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 483.937274][ T7868] ? find_held_lock+0x2d/0x110 [ 483.937309][ T7868] ? fb_var_to_videomode+0x4c9/0x690 [ 483.937368][ T7868] ? __pfx_fb_match_mode+0x10/0x10 [ 483.937424][ T7868] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 483.937467][ T7868] ? lockdep_hardirqs_on+0x7c/0x110 [ 483.937517][ T7868] ? vc_allocate+0x48a/0x880 [ 483.937557][ T7868] __alloc_pages_noprof+0xb/0x1b0 [ 483.937617][ T7868] ___kmalloc_large_node+0x84/0x1b0 [ 483.937656][ T7868] ? con_is_visible+0x65/0x150 [ 483.937694][ T7868] __kmalloc_large_node_noprof+0x1c/0x70 [ 483.937740][ T7868] __kmalloc_noprof.cold+0xc/0x61 [ 483.937785][ T7868] vc_allocate+0x48a/0x880 [ 483.937828][ T7868] ? __pfx_vc_allocate+0x10/0x10 [ 483.937871][ T7868] ? lock_acquire+0x2f/0xb0 [ 483.937915][ T7868] ? con_install+0x9a/0x600 [ 483.937963][ T7868] con_install+0xa2/0x600 [ 483.938008][ T7868] ? __pfx_con_install+0x10/0x10 [ 483.938058][ T7868] ? __pfx_con_install+0x10/0x10 [ 483.938104][ T7868] tty_init_dev.part.0+0x99/0x660 [ 483.938155][ T7868] tty_open+0xac1/0xf80 [ 483.938200][ T7868] ? chrdev_open+0x596/0x6a0 [ 483.938255][ T7868] ? __pfx_tty_open+0x10/0x10 [ 483.938297][ T7868] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 483.938333][ T7868] ? lock_acquire+0x2f/0xb0 [ 483.938377][ T7868] ? chrdev_open+0x36b/0x6a0 [ 483.938458][ T7868] ? __pfx_tty_open+0x10/0x10 [ 483.938506][ T7868] chrdev_open+0x237/0x6a0 [ 483.938560][ T7868] ? __pfx_chrdev_open+0x10/0x10 [ 483.938620][ T7868] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 483.938671][ T7868] do_dentry_open+0x735/0x1c40 [ 483.938718][ T7868] ? __pfx_chrdev_open+0x10/0x10 [ 483.938777][ T7868] vfs_open+0x82/0x3f0 [ 483.938807][ T7868] ? may_open+0x1f2/0x400 [ 483.938848][ T7868] path_openat+0x1e88/0x2d80 [ 483.938913][ T7868] ? __pfx_path_openat+0x10/0x10 [ 483.938962][ T7868] ? __pfx___lock_acquire+0x10/0x10 [ 483.939003][ T7868] ? lock_acquire.part.0+0x11b/0x380 [ 483.939048][ T7868] ? find_held_lock+0x2d/0x110 [ 483.939086][ T7868] do_filp_open+0x20c/0x470 [ 483.939134][ T7868] ? __pfx_do_filp_open+0x10/0x10 [ 483.939180][ T7868] ? find_held_lock+0x2d/0x110 [ 483.939245][ T7868] ? alloc_fd+0x41f/0x760 [ 483.939304][ T7868] do_sys_openat2+0x17a/0x1e0 [ 483.939338][ T7868] ? __pfx_do_sys_openat2+0x10/0x10 [ 483.939390][ T7868] __x64_sys_openat+0x175/0x210 [ 483.939426][ T7868] ? __pfx___x64_sys_openat+0x10/0x10 [ 483.939480][ T7868] do_syscall_64+0xcd/0x250 [ 483.939534][ T7868] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 483.939580][ T7868] RIP: 0033:0x7f38cc58d169 [ 483.939616][ T7868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 483.939648][ T7868] RSP: 002b:00007f38cd331038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 483.939678][ T7868] RAX: ffffffffffffffda RBX: 00007f38cc7a5fa0 RCX: 00007f38cc58d169 [ 483.939700][ T7868] RDX: 0000000000040000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 483.939721][ T7868] RBP: 00007f38cc60e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 483.939741][ T7868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 483.939759][ T7868] R13: 0000000000000000 R14: 00007f38cc7a5fa0 R15: 00007ffd88ba1dd8 [ 483.939801][ T7868] [ 484.827032][ T7877] CIFS: VFS: Unsupported security flags: 0x200 [ 485.341236][ T7875] FAULT_INJECTION: forcing a failure. [ 485.341236][ T7875] name failslab, interval 1, probability 0, space 0, times 0 [ 485.341358][ T7875] CPU: 1 UID: 0 PID: 7875 Comm: syz.4.451 Not tainted 6.14.0-syzkaller #0 [ 485.341397][ T7875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 485.341416][ T7875] Call Trace: [ 485.341425][ T7875] [ 485.341438][ T7875] dump_stack_lvl+0x16c/0x1f0 [ 485.341500][ T7875] should_fail_ex+0x50a/0x650 [ 485.341532][ T7875] ? fs_reclaim_acquire+0xae/0x150 [ 485.341590][ T7875] ? apply_wqattrs_prepare+0x130/0xbd0 [ 485.341645][ T7875] should_failslab+0xc2/0x120 [ 485.341677][ T7875] __kmalloc_cache_noprof+0x68/0x410 [ 485.341733][ T7875] apply_wqattrs_prepare+0x130/0xbd0 [ 485.341788][ T7875] ? __alloc_workqueue+0x87c/0x1810 [ 485.341837][ T7875] apply_workqueue_attrs_locked+0x64/0xe0 [ 485.341893][ T7875] __alloc_workqueue+0xf34/0x1810 [ 485.341944][ T7875] alloc_workqueue+0xd3/0x200 [ 485.341982][ T7875] ? __pfx_alloc_workqueue+0x10/0x10 [ 485.342025][ T7875] ? rcu_is_watching+0x12/0xc0 [ 485.342062][ T7875] ? trace_kmalloc+0x2d/0xd0 [ 485.342100][ T7875] ? __kmalloc_noprof+0x23b/0x510 [ 485.342150][ T7875] ? __pfx_lock_release+0x10/0x10 [ 485.342195][ T7875] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 485.342259][ T7875] ieee80211_register_hw+0x1e3b/0x4060 [ 485.342331][ T7875] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 485.342385][ T7875] ? net_generic+0xea/0x2a0 [ 485.342434][ T7875] ? lockdep_init_map_type+0x16d/0x7d0 [ 485.342491][ T7875] ? __asan_memset+0x23/0x50 [ 485.342549][ T7875] ? __hrtimer_init+0x106/0x2c0 [ 485.342611][ T7875] mac80211_hwsim_new_radio+0x304e/0x54e0 [ 485.342694][ T7875] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 485.342764][ T7875] hwsim_new_radio_nl+0xb42/0x12b0 [ 485.342823][ T7875] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 485.342893][ T7875] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 485.342934][ T7875] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 485.342983][ T7875] genl_family_rcv_msg_doit+0x202/0x2f0 [ 485.343023][ T7875] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 485.343060][ T7875] ? trace_cap_capable+0x1a2/0x210 [ 485.343109][ T7875] ? bpf_lsm_capable+0x9/0x10 [ 485.343145][ T7875] ? security_capable+0x7e/0x260 [ 485.343182][ T7875] ? ns_capable+0xd7/0x110 [ 485.343236][ T7875] genl_rcv_msg+0x565/0x800 [ 485.343278][ T7875] ? __pfx_genl_rcv_msg+0x10/0x10 [ 485.343315][ T7875] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 485.343385][ T7875] netlink_rcv_skb+0x16b/0x440 [ 485.343440][ T7875] ? __pfx_genl_rcv_msg+0x10/0x10 [ 485.343479][ T7875] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 485.343560][ T7875] ? down_read+0xc9/0x330 [ 485.343618][ T7875] ? __pfx_down_read+0x10/0x10 [ 485.343677][ T7875] ? netlink_deliver_tap+0x1ae/0xd30 [ 485.343735][ T7875] genl_rcv+0x28/0x40 [ 485.343765][ T7875] netlink_unicast+0x53c/0x7f0 [ 485.343825][ T7875] ? __pfx_netlink_unicast+0x10/0x10 [ 485.343882][ T7875] ? __phys_addr_symbol+0x30/0x80 [ 485.343917][ T7875] ? __check_object_size+0x488/0x710 [ 485.343958][ T7875] netlink_sendmsg+0x8b8/0xd70 [ 485.344020][ T7875] ? __pfx_netlink_sendmsg+0x10/0x10 [ 485.344092][ T7875] ____sys_sendmsg+0xaaf/0xc90 [ 485.344134][ T7875] ? copy_msghdr_from_user+0x10b/0x160 [ 485.344190][ T7875] ? __pfx_____sys_sendmsg+0x10/0x10 [ 485.344255][ T7875] ___sys_sendmsg+0x135/0x1e0 [ 485.344315][ T7875] ? __pfx____sys_sendmsg+0x10/0x10 [ 485.344390][ T7875] ? __pfx_lock_release+0x10/0x10 [ 485.344440][ T7875] ? trace_lock_acquire+0x14e/0x1f0 [ 485.344495][ T7875] ? __fget_files+0x206/0x3a0 [ 485.344568][ T7875] __sys_sendmsg+0x16e/0x220 [ 485.344604][ T7875] ? __pfx___sys_sendmsg+0x10/0x10 [ 485.344639][ T7875] ? __x64_sys_futex+0x1e1/0x4c0 [ 485.344710][ T7875] do_syscall_64+0xcd/0x250 [ 485.344766][ T7875] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 485.344816][ T7875] RIP: 0033:0x7f3611f8d169 [ 485.344844][ T7875] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 485.344876][ T7875] RSP: 002b:00007f3612d5e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 485.344908][ T7875] RAX: ffffffffffffffda RBX: 00007f36121a5fa0 RCX: 00007f3611f8d169 [ 485.344929][ T7875] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000006 [ 485.344950][ T7875] RBP: 00007f361200e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 485.344969][ T7875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 485.344988][ T7875] R13: 0000000000000000 R14: 00007f36121a5fa0 R15: 00007fff5ede9818 [ 485.345029][ T7875] [ 486.711368][ T7916] dyndbg: bad flag-op /, at start of /proc/dyn [ 486.711398][ T7916] dyndbg: flags parse failed [ 486.829482][ T7916] FAULT_INJECTION: forcing a failure. [ 486.829482][ T7916] name failslab, interval 1, probability 0, space 0, times 0 [ 486.851798][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 486.852128][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 486.869657][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 486.910938][ T7916] CPU: 1 UID: 0 PID: 7916 Comm: syz.4.455 Not tainted 6.14.0-syzkaller #0 [ 486.910979][ T7916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 486.910997][ T7916] Call Trace: [ 486.911007][ T7916] [ 486.911019][ T7916] dump_stack_lvl+0x16c/0x1f0 [ 486.911084][ T7916] should_fail_ex+0x50a/0x650 [ 486.911116][ T7916] ? fs_reclaim_acquire+0xae/0x150 [ 486.911163][ T7916] should_failslab+0xc2/0x120 [ 486.911195][ T7916] __kmalloc_node_track_caller_noprof+0xcf/0x510 [ 486.911251][ T7916] ? fib_rules_register+0x30/0x500 [ 486.911307][ T7916] ? __pfx_ipmr_net_init+0x10/0x10 [ 486.911355][ T7916] kmemdup_noprof+0x29/0x60 [ 486.911398][ T7916] fib_rules_register+0x30/0x500 [ 486.911446][ T7916] ? fib_notifier_ops_register+0x123/0x270 [ 486.911502][ T7916] ? __pfx_ipmr_net_init+0x10/0x10 [ 486.911545][ T7916] ipmr_net_init+0xb8/0x4e0 [ 486.911590][ T7916] ? __pfx_ipmr_net_init+0x10/0x10 [ 486.911633][ T7916] ops_init+0x1df/0x5f0 [ 486.911672][ T7916] setup_net+0x21f/0x860 [ 486.911709][ T7916] ? __pfx_setup_net+0x10/0x10 [ 486.911741][ T7916] ? down_read_killable+0xcc/0x380 [ 486.911773][ T7916] ? __pfx_down_read_killable+0x10/0x10 [ 486.911804][ T7916] ? __raw_spin_lock_init+0x3a/0x110 [ 486.911839][ T7916] ? debug_mutex_init+0x37/0x70 [ 486.911879][ T7916] copy_net_ns+0x2a6/0x5f0 [ 486.911922][ T7916] create_new_namespaces+0x3ea/0xad0 [ 486.911987][ T7916] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 486.912047][ T7916] ksys_unshare+0x45d/0xa40 [ 486.912082][ T7916] ? __pfx_ksys_unshare+0x10/0x10 [ 486.912114][ T7916] ? xfd_validate_state+0x5d/0x180 [ 486.912174][ T7916] __x64_sys_unshare+0x31/0x40 [ 486.912210][ T7916] do_syscall_64+0xcd/0x250 [ 486.912264][ T7916] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 486.912380][ T7916] RIP: 0033:0x7f3611f8d169 [ 486.912407][ T7916] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 486.912438][ T7916] RSP: 002b:00007f3612d5e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 486.912469][ T7916] RAX: ffffffffffffffda RBX: 00007f36121a5fa0 RCX: 00007f3611f8d169 [ 486.912490][ T7916] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 486.912509][ T7916] RBP: 00007f361200e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 486.912528][ T7916] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 486.912546][ T7916] R13: 0000000000000000 R14: 00007f36121a5fa0 R15: 00007fff5ede9818 [ 486.912584][ T7916] [ 487.980123][ T7944] netlink: 8 bytes leftover after parsing attributes in process `syz.4.460'. [ 488.586705][ T7959] FAULT_INJECTION: forcing a failure. [ 488.586705][ T7959] name failslab, interval 1, probability 0, space 0, times 0 [ 488.636324][ T7959] CPU: 1 UID: 0 PID: 7959 Comm: syz.3.462 Not tainted 6.14.0-syzkaller #0 [ 488.636366][ T7959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 488.636384][ T7959] Call Trace: [ 488.636394][ T7959] [ 488.636407][ T7959] dump_stack_lvl+0x16c/0x1f0 [ 488.636472][ T7959] should_fail_ex+0x50a/0x650 [ 488.636504][ T7959] ? fs_reclaim_acquire+0xae/0x150 [ 488.636549][ T7959] ? xfrm_hash_alloc+0xd1/0x100 [ 488.636581][ T7959] should_failslab+0xc2/0x120 [ 488.636613][ T7959] __kmalloc_noprof+0xcb/0x510 [ 488.636664][ T7959] ? xfrm_nat_keepalive_net_fini+0x21/0x30 [ 488.636717][ T7959] xfrm_hash_alloc+0xd1/0x100 [ 488.636749][ T7959] xfrm_state_init+0x160/0x630 [ 488.636788][ T7959] ? __pfx_xfrm_net_init+0x10/0x10 [ 488.636823][ T7959] xfrm_net_init+0x211/0xcb0 [ 488.636866][ T7959] ? __pfx_xfrm_net_init+0x10/0x10 [ 488.636901][ T7959] ops_init+0x1df/0x5f0 [ 488.636940][ T7959] setup_net+0x21f/0x860 [ 488.636977][ T7959] ? __pfx_setup_net+0x10/0x10 [ 488.637008][ T7959] ? down_read_killable+0xcc/0x380 [ 488.637040][ T7959] ? __pfx_down_read_killable+0x10/0x10 [ 488.637070][ T7959] ? __raw_spin_lock_init+0x3a/0x110 [ 488.637104][ T7959] ? debug_mutex_init+0x37/0x70 [ 488.637144][ T7959] copy_net_ns+0x2a6/0x5f0 [ 488.637187][ T7959] create_new_namespaces+0x3ea/0xad0 [ 488.637252][ T7959] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 488.637311][ T7959] ksys_unshare+0x45d/0xa40 [ 488.637347][ T7959] ? __pfx_ksys_unshare+0x10/0x10 [ 488.637380][ T7959] ? xfd_validate_state+0x5d/0x180 [ 488.637441][ T7959] __x64_sys_unshare+0x31/0x40 [ 488.637481][ T7959] do_syscall_64+0xcd/0x250 [ 488.637533][ T7959] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 488.637580][ T7959] RIP: 0033:0x7f38cc58d169 [ 488.637605][ T7959] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 488.637635][ T7959] RSP: 002b:00007f38cd331038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 488.637666][ T7959] RAX: ffffffffffffffda RBX: 00007f38cc7a5fa0 RCX: 00007f38cc58d169 [ 488.637688][ T7959] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 488.637707][ T7959] RBP: 00007f38cc60e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 488.637726][ T7959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 488.637744][ T7959] R13: 0000000000000000 R14: 00007f38cc7a5fa0 R15: 00007ffd88ba1dd8 [ 488.637785][ T7959] [ 488.993296][ T7966] FAULT_INJECTION: forcing a failure. [ 488.993296][ T7966] name failslab, interval 1, probability 0, space 0, times 0 [ 488.993343][ T7966] CPU: 1 UID: 0 PID: 7966 Comm: syz.0.465 Not tainted 6.14.0-syzkaller #0 [ 488.993377][ T7966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 488.993396][ T7966] Call Trace: [ 488.993406][ T7966] [ 488.993417][ T7966] dump_stack_lvl+0x16c/0x1f0 [ 488.993471][ T7966] should_fail_ex+0x50a/0x650 [ 488.993504][ T7966] ? fs_reclaim_acquire+0xae/0x150 [ 488.993551][ T7966] ? vc_allocate+0x16d/0x880 [ 488.993594][ T7966] should_failslab+0xc2/0x120 [ 488.993626][ T7966] __kmalloc_cache_noprof+0x68/0x410 [ 488.993678][ T7966] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 488.993731][ T7966] vc_allocate+0x16d/0x880 [ 488.993775][ T7966] ? __pfx_vc_allocate+0x10/0x10 [ 488.993819][ T7966] ? lock_acquire+0x2f/0xb0 [ 488.993862][ T7966] ? con_install+0x9a/0x600 [ 488.993910][ T7966] con_install+0xa2/0x600 [ 488.993957][ T7966] ? __pfx_con_install+0x10/0x10 [ 488.994009][ T7966] ? __pfx_con_install+0x10/0x10 [ 488.994053][ T7966] tty_init_dev.part.0+0x99/0x660 [ 488.994104][ T7966] tty_open+0xac1/0xf80 [ 488.994150][ T7966] ? chrdev_open+0x10e/0x6a0 [ 488.994214][ T7966] ? __pfx_tty_open+0x10/0x10 [ 488.994259][ T7966] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 488.994291][ T7966] ? lock_acquire+0x2f/0xb0 [ 488.994334][ T7966] ? chrdev_open+0x80/0x6a0 [ 488.994390][ T7966] ? __pfx_tty_open+0x10/0x10 [ 488.994435][ T7966] chrdev_open+0x237/0x6a0 [ 488.994485][ T7966] ? __pfx_apparmor_file_open+0x10/0x10 [ 488.994530][ T7966] ? __pfx_chrdev_open+0x10/0x10 [ 488.994585][ T7966] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 488.994637][ T7966] do_dentry_open+0x735/0x1c40 [ 488.994685][ T7966] ? __pfx_chrdev_open+0x10/0x10 [ 488.994747][ T7966] vfs_open+0x82/0x3f0 [ 488.994778][ T7966] ? may_open+0x1f2/0x400 [ 488.994820][ T7966] path_openat+0x1e88/0x2d80 [ 488.994886][ T7966] ? __pfx_path_openat+0x10/0x10 [ 488.994935][ T7966] ? __pfx___lock_acquire+0x10/0x10 [ 488.994980][ T7966] ? lock_acquire.part.0+0x11b/0x380 [ 488.995027][ T7966] ? find_held_lock+0x2d/0x110 [ 488.995069][ T7966] do_filp_open+0x20c/0x470 [ 488.995118][ T7966] ? __pfx_do_filp_open+0x10/0x10 [ 488.995165][ T7966] ? find_held_lock+0x2d/0x110 [ 488.995236][ T7966] ? alloc_fd+0x41f/0x760 [ 488.995298][ T7966] do_sys_openat2+0x17a/0x1e0 [ 488.995333][ T7966] ? __pfx_do_sys_openat2+0x10/0x10 [ 488.995384][ T7966] __x64_sys_openat+0x175/0x210 [ 488.995422][ T7966] ? __pfx___x64_sys_openat+0x10/0x10 [ 488.995475][ T7966] do_syscall_64+0xcd/0x250 [ 488.995527][ T7966] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 488.995572][ T7966] RIP: 0033:0x7f37ec78d169 [ 488.995596][ T7966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 488.995625][ T7966] RSP: 002b:00007f37ea5f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 488.995654][ T7966] RAX: ffffffffffffffda RBX: 00007f37ec9a5fa0 RCX: 00007f37ec78d169 [ 488.995675][ T7966] RDX: 0000000000040000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 488.995695][ T7966] RBP: 00007f37ec80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 488.995713][ T7966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 488.995731][ T7966] R13: 0000000000000000 R14: 00007f37ec9a5fa0 R15: 00007ffdc1c801b8 [ 488.995769][ T7966] [ 489.172288][ T7963] netlink: 28 bytes leftover after parsing attributes in process `syz.1.464'. [ 489.500235][ T7963] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 489.529211][ T7963] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 489.568913][ T7963] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 489.597236][ T7963] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 492.880958][ T8061] random: crng reseeded on system resumption [ 494.503507][ T8093] netlink: 12 bytes leftover after parsing attributes in process `syz.1.487'. [ 494.743393][ T5866] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18 [ 494.765133][ T30] audit: type=1800 audit(6037820783.955:5): pid=8100 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.489" name="dbroot" dev="configfs" ino=18718 res=0 errno=0 [ 495.235780][ T5866] Bluetooth: hci1: unexpected subevent 0x01 length: 4 < 18 [ 495.444897][ T30] audit: type=1800 audit(6037820792.565:6): pid=8112 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.492" name="dbroot" dev="configfs" ino=18741 res=0 errno=0 [ 497.343355][ T8139] netlink: 252 bytes leftover after parsing attributes in process `syz.4.497'. [ 499.703006][ T8170] FAULT_INJECTION: forcing a failure. [ 499.703006][ T8170] name failslab, interval 1, probability 0, space 0, times 0 [ 499.756647][ T8170] CPU: 0 UID: 0 PID: 8170 Comm: syz.1.504 Not tainted 6.14.0-syzkaller #0 [ 499.756690][ T8170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 499.756709][ T8170] Call Trace: [ 499.756719][ T8170] [ 499.756732][ T8170] dump_stack_lvl+0x16c/0x1f0 [ 499.756788][ T8170] should_fail_ex+0x50a/0x650 [ 499.756821][ T8170] ? fs_reclaim_acquire+0xae/0x150 [ 499.756867][ T8170] should_failslab+0xc2/0x120 [ 499.756901][ T8170] __kmalloc_node_track_caller_noprof+0xcf/0x510 [ 499.756957][ T8170] ? __mutex_lock+0x1cc/0xb10 [ 499.757004][ T8170] ? kasprintf+0xc8/0x100 [ 499.757048][ T8170] kvasprintf+0xbd/0x160 [ 499.757112][ T8170] ? __pfx_kvasprintf+0x10/0x10 [ 499.757154][ T8170] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 499.757217][ T8170] kasprintf+0xc8/0x100 [ 499.757255][ T8170] ? __pfx_kasprintf+0x10/0x10 [ 499.757297][ T8170] ? __pfx_lockdep_lock+0x10/0x10 [ 499.757341][ T8170] ? lockdep_unlock+0x11a/0x290 [ 499.757384][ T8170] alloc_workqueue+0x115/0x200 [ 499.757422][ T8170] ? __pfx_alloc_workqueue+0x10/0x10 [ 499.757464][ T8170] ? rcu_is_watching+0x12/0xc0 [ 499.757507][ T8170] ? trace_kmalloc+0x2d/0xd0 [ 499.757542][ T8170] ? __kmalloc_noprof+0x23b/0x510 [ 499.757591][ T8170] ? __pfx_lock_release+0x10/0x10 [ 499.757637][ T8170] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 499.757698][ T8170] ieee80211_register_hw+0x1e3b/0x4060 [ 499.757767][ T8170] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 499.757819][ T8170] ? net_generic+0xea/0x2a0 [ 499.757887][ T8170] ? lockdep_init_map_type+0x16d/0x7d0 [ 499.757941][ T8170] ? __asan_memset+0x23/0x50 [ 499.757986][ T8170] ? __hrtimer_init+0x106/0x2c0 [ 499.758042][ T8170] mac80211_hwsim_new_radio+0x304e/0x54e0 [ 499.758120][ T8170] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 499.758187][ T8170] hwsim_new_radio_nl+0xb42/0x12b0 [ 499.758243][ T8170] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 499.758368][ T8170] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 499.758407][ T8170] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 499.758468][ T8170] genl_family_rcv_msg_doit+0x202/0x2f0 [ 499.758509][ T8170] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 499.758545][ T8170] ? trace_cap_capable+0x1a2/0x210 [ 499.758593][ T8170] ? bpf_lsm_capable+0x9/0x10 [ 499.758629][ T8170] ? security_capable+0x7e/0x260 [ 499.758665][ T8170] ? ns_capable+0xd7/0x110 [ 499.758717][ T8170] genl_rcv_msg+0x565/0x800 [ 499.758757][ T8170] ? __pfx_genl_rcv_msg+0x10/0x10 [ 499.758794][ T8170] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 499.758859][ T8170] netlink_rcv_skb+0x16b/0x440 [ 499.758912][ T8170] ? __pfx_genl_rcv_msg+0x10/0x10 [ 499.758949][ T8170] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 499.759017][ T8170] ? down_read+0xc9/0x330 [ 499.759071][ T8170] ? __pfx_down_read+0x10/0x10 [ 499.759127][ T8170] ? netlink_deliver_tap+0x1ae/0xd30 [ 499.759182][ T8170] genl_rcv+0x28/0x40 [ 499.759208][ T8170] netlink_unicast+0x53c/0x7f0 [ 499.759266][ T8170] ? __pfx_netlink_unicast+0x10/0x10 [ 499.759320][ T8170] ? __phys_addr_symbol+0x30/0x80 [ 499.759354][ T8170] ? __check_object_size+0x488/0x710 [ 499.759394][ T8170] netlink_sendmsg+0x8b8/0xd70 [ 499.759460][ T8170] ? __pfx_netlink_sendmsg+0x10/0x10 [ 499.759527][ T8170] ____sys_sendmsg+0xaaf/0xc90 [ 499.759572][ T8170] ? lockdep_hardirqs_on+0x7c/0x110 [ 499.759620][ T8170] ? __pfx_____sys_sendmsg+0x10/0x10 [ 499.759683][ T8170] ___sys_sendmsg+0x135/0x1e0 [ 499.759744][ T8170] ? __pfx____sys_sendmsg+0x10/0x10 [ 499.759817][ T8170] ? __pfx_lock_release+0x10/0x10 [ 499.759864][ T8170] ? trace_lock_acquire+0x14e/0x1f0 [ 499.759918][ T8170] ? __fget_files+0x206/0x3a0 [ 499.759979][ T8170] __sys_sendmsg+0x16e/0x220 [ 499.760012][ T8170] ? __pfx___sys_sendmsg+0x10/0x10 [ 499.760043][ T8170] ? __x64_sys_futex+0x1e1/0x4c0 [ 499.760110][ T8170] do_syscall_64+0xcd/0x250 [ 499.760164][ T8170] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 499.760211][ T8170] RIP: 0033:0x7f7264d8d169 [ 499.760238][ T8170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 499.760270][ T8170] RSP: 002b:00007f7265c94038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 499.760301][ T8170] RAX: ffffffffffffffda RBX: 00007f7264fa5fa0 RCX: 00007f7264d8d169 [ 499.760323][ T8170] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000006 [ 499.760344][ T8170] RBP: 00007f7264e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 499.760363][ T8170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 499.760383][ T8170] R13: 0000000000000000 R14: 00007f7264fa5fa0 R15: 00007ffdad28f678 [ 499.760425][ T8170] [ 501.250784][ T8197] Process accounting resumed [ 501.798059][ T8201] netlink: 12 bytes leftover after parsing attributes in process `syz.4.508'. [ 502.629770][ T8210] FAULT_INJECTION: forcing a failure. [ 502.629770][ T8210] name failslab, interval 1, probability 0, space 0, times 0 [ 502.629819][ T8210] CPU: 1 UID: 0 PID: 8210 Comm: syz.0.510 Not tainted 6.14.0-syzkaller #0 [ 502.629855][ T8210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 502.629875][ T8210] Call Trace: [ 502.629883][ T8210] [ 502.629895][ T8210] dump_stack_lvl+0x16c/0x1f0 [ 502.629953][ T8210] should_fail_ex+0x50a/0x650 [ 502.629985][ T8210] ? fs_reclaim_acquire+0xae/0x150 [ 502.630032][ T8210] ? device_create_groups_vargs+0x8a/0x270 [ 502.630085][ T8210] should_failslab+0xc2/0x120 [ 502.630117][ T8210] __kmalloc_cache_noprof+0x68/0x410 [ 502.630176][ T8210] device_create_groups_vargs+0x8a/0x270 [ 502.630239][ T8210] device_create+0xe9/0x130 [ 502.630292][ T8210] ? __pfx_device_create+0x10/0x10 [ 502.630341][ T8210] ? __pfx_lock_release+0x10/0x10 [ 502.630393][ T8210] ? is_console_locked+0x9/0x20 [ 502.630436][ T8210] ? con_is_visible+0x65/0x150 [ 502.630470][ T8210] ? csi_J+0x547/0xad0 [ 502.630521][ T8210] vcs_make_sysfs+0x32/0x80 [ 502.630557][ T8210] vc_allocate+0x502/0x880 [ 502.630602][ T8210] ? __pfx_vc_allocate+0x10/0x10 [ 502.630647][ T8210] ? lock_acquire+0x2f/0xb0 [ 502.630691][ T8210] ? con_install+0x9a/0x600 [ 502.630743][ T8210] con_install+0xa2/0x600 [ 502.630790][ T8210] ? __pfx_con_install+0x10/0x10 [ 502.630842][ T8210] ? __pfx_con_install+0x10/0x10 [ 502.630888][ T8210] tty_init_dev.part.0+0x99/0x660 [ 502.630940][ T8210] tty_open+0xac1/0xf80 [ 502.630988][ T8210] ? chrdev_open+0x10e/0x6a0 [ 502.631046][ T8210] ? __pfx_tty_open+0x10/0x10 [ 502.631092][ T8210] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 502.631125][ T8210] ? lock_acquire+0x2f/0xb0 [ 502.631169][ T8210] ? chrdev_open+0x80/0x6a0 [ 502.631231][ T8210] ? __pfx_tty_open+0x10/0x10 [ 502.631278][ T8210] chrdev_open+0x237/0x6a0 [ 502.631330][ T8210] ? __pfx_apparmor_file_open+0x10/0x10 [ 502.631374][ T8210] ? __pfx_chrdev_open+0x10/0x10 [ 502.631430][ T8210] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 502.631486][ T8210] do_dentry_open+0x735/0x1c40 [ 502.631532][ T8210] ? __pfx_chrdev_open+0x10/0x10 [ 502.631590][ T8210] vfs_open+0x82/0x3f0 [ 502.631621][ T8210] ? may_open+0x1f2/0x400 [ 502.631660][ T8210] path_openat+0x1e88/0x2d80 [ 502.631725][ T8210] ? __pfx_path_openat+0x10/0x10 [ 502.631775][ T8210] ? __pfx___lock_acquire+0x10/0x10 [ 502.631818][ T8210] ? lock_acquire.part.0+0x11b/0x380 [ 502.631865][ T8210] ? find_held_lock+0x2d/0x110 [ 502.631907][ T8210] do_filp_open+0x20c/0x470 [ 502.631958][ T8210] ? __pfx_do_filp_open+0x10/0x10 [ 502.632007][ T8210] ? find_held_lock+0x2d/0x110 [ 502.632074][ T8210] ? alloc_fd+0x41f/0x760 [ 502.632135][ T8210] do_sys_openat2+0x17a/0x1e0 [ 502.632170][ T8210] ? __pfx_do_sys_openat2+0x10/0x10 [ 502.632235][ T8210] __x64_sys_openat+0x175/0x210 [ 502.632275][ T8210] ? __pfx___x64_sys_openat+0x10/0x10 [ 502.632331][ T8210] do_syscall_64+0xcd/0x250 [ 502.632387][ T8210] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 502.632433][ T8210] RIP: 0033:0x7f37ec78d169 [ 502.632458][ T8210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 502.632489][ T8210] RSP: 002b:00007f37ea5f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 502.632518][ T8210] RAX: ffffffffffffffda RBX: 00007f37ec9a5fa0 RCX: 00007f37ec78d169 [ 502.632538][ T8210] RDX: 0000000000040000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 502.632557][ T8210] RBP: 00007f37ec80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 502.632575][ T8210] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 502.632592][ T8210] R13: 0000000000000000 R14: 00007f37ec9a5fa0 R15: 00007ffdc1c801b8 [ 502.632633][ T8210] [ 502.895884][ T8215] netlink: 244 bytes leftover after parsing attributes in process `syz.4.511'. [ 505.391850][ T8210] tty tty26: ldisc open failed (-12), clearing slot 25 [ 505.895899][ T8255] Invalid ELF header magic: != ELF [ 506.563290][ T8285] openvswitch: netlink: Message has 215 unknown bytes. [ 506.947110][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 506.958314][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 507.215383][ T8302] netlink: 244 bytes leftover after parsing attributes in process `syz.3.523'. [ 507.279692][ T8306] FAULT_INJECTION: forcing a failure. [ 507.279692][ T8306] name failslab, interval 1, probability 0, space 0, times 0 [ 507.306845][ T8306] CPU: 1 UID: 0 PID: 8306 Comm: syz.0.524 Not tainted 6.14.0-syzkaller #0 [ 507.306886][ T8306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 507.306906][ T8306] Call Trace: [ 507.306915][ T8306] [ 507.306927][ T8306] dump_stack_lvl+0x16c/0x1f0 [ 507.306981][ T8306] should_fail_ex+0x50a/0x650 [ 507.307012][ T8306] ? fs_reclaim_acquire+0xae/0x150 [ 507.307058][ T8306] should_failslab+0xc2/0x120 [ 507.307091][ T8306] __kmalloc_node_noprof+0xd1/0x510 [ 507.307145][ T8306] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 507.307195][ T8306] __kvmalloc_node_noprof+0xad/0x1a0 [ 507.307243][ T8306] alloc_fdtable+0xee/0x2b0 [ 507.307291][ T8306] dup_fd+0x83b/0xb90 [ 507.307344][ T8306] ? apparmor_task_alloc+0x2c2/0x3b0 [ 507.307383][ T8306] copy_process+0x25d3/0x8c50 [ 507.307413][ T8306] ? plist_add+0x458/0x600 [ 507.307452][ T8306] ? lock_acquire+0x2f/0xb0 [ 507.307496][ T8306] ? schedule+0x1fd/0x350 [ 507.307554][ T8306] ? futex_wait_queue+0x40/0x1f0 [ 507.307617][ T8306] ? __pfx_copy_process+0x10/0x10 [ 507.307646][ T8306] ? __pfx___futex_wait+0x10/0x10 [ 507.307694][ T8306] ? try_to_wake_up+0x158/0x1490 [ 507.307741][ T8306] ? __pfx_futex_wake_mark+0x10/0x10 [ 507.307806][ T8306] kernel_clone+0xfd/0x960 [ 507.307838][ T8306] ? __pfx_kernel_clone+0x10/0x10 [ 507.307892][ T8306] __do_sys_clone+0xcf/0x120 [ 507.307923][ T8306] ? __pfx___do_sys_clone+0x10/0x10 [ 507.307973][ T8306] ? rcu_is_watching+0x12/0xc0 [ 507.308019][ T8306] do_syscall_64+0xcd/0x250 [ 507.308070][ T8306] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 507.308113][ T8306] RIP: 0033:0x7f37ec78d169 [ 507.308139][ T8306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 507.308171][ T8306] RSP: 002b:00007f37ea5f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 507.308202][ T8306] RAX: ffffffffffffffda RBX: 00007f37ec9a5fa0 RCX: 00007f37ec78d169 [ 507.308222][ T8306] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46 [ 507.308240][ T8306] RBP: 00007f37ec80e2a0 R08: 0000000000000002 R09: 0000000000000000 [ 507.308256][ T8306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 507.308272][ T8306] R13: 0000000000000000 R14: 00007f37ec9a5fa0 R15: 00007ffdc1c801b8 [ 507.308305][ T8306] [ 507.538240][ C1] vkms_vblank_simulate: vblank timer overrun [ 507.664233][ T8287] FAULT_INJECTION: forcing a failure. [ 507.664233][ T8287] name failslab, interval 1, probability 0, space 0, times 0 [ 507.677722][ T8287] CPU: 1 UID: 0 PID: 8287 Comm: syz.4.520 Not tainted 6.14.0-syzkaller #0 [ 507.677762][ T8287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 507.677782][ T8287] Call Trace: [ 507.677793][ T8287] [ 507.677805][ T8287] dump_stack_lvl+0x16c/0x1f0 [ 507.677862][ T8287] should_fail_ex+0x50a/0x650 [ 507.677894][ T8287] ? fs_reclaim_acquire+0xae/0x150 [ 507.677944][ T8287] should_failslab+0xc2/0x120 [ 507.677977][ T8287] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 507.678031][ T8287] ? ptlock_alloc+0x1f/0x70 [ 507.678089][ T8287] ptlock_alloc+0x1f/0x70 [ 507.678138][ T8287] pte_alloc_one+0x74/0x390 [ 507.678193][ T8287] __pte_alloc+0x6e/0x3d0 [ 507.678233][ T8287] ? __pfx___pte_alloc+0x10/0x10 [ 507.678276][ T8287] ? _raw_spin_unlock+0x28/0x50 [ 507.678318][ T8287] ? __pmd_alloc+0x3c2/0x870 [ 507.678368][ T8287] copy_page_range+0x3661/0x55e0 [ 507.678460][ T8287] ? __pfx_copy_page_range+0x10/0x10 [ 507.678512][ T8287] ? mas_store+0x941/0x10d0 [ 507.678596][ T8287] ? __pfx_mas_store+0x10/0x10 [ 507.678626][ T8287] ? lock_acquire+0x2f/0xb0 [ 507.678668][ T8287] ? copy_process+0x79c4/0x8c50 [ 507.678713][ T8287] ? up_write+0x1b2/0x520 [ 507.678780][ T8287] copy_process+0x7ccb/0x8c50 [ 507.678840][ T8287] ? __pfx_copy_process+0x10/0x10 [ 507.678870][ T8287] ? __pfx___futex_wait+0x10/0x10 [ 507.678938][ T8287] ? kasan_save_stack+0x42/0x60 [ 507.679005][ T8287] ? kasan_save_stack+0x33/0x60 [ 507.679053][ T8287] ? kasan_save_track+0x14/0x30 [ 507.679101][ T8287] ? kasan_save_free_info+0x3b/0x60 [ 507.679140][ T8287] ? __kasan_slab_free+0x51/0x70 [ 507.679203][ T8287] kernel_clone+0xfd/0x960 [ 507.679238][ T8287] ? __pfx_kernel_clone+0x10/0x10 [ 507.679296][ T8287] __do_sys_clone+0xcf/0x120 [ 507.679328][ T8287] ? __pfx___do_sys_clone+0x10/0x10 [ 507.679383][ T8287] ? rcu_is_watching+0x12/0xc0 [ 507.679432][ T8287] do_syscall_64+0xcd/0x250 [ 507.679486][ T8287] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 507.679533][ T8287] RIP: 0033:0x7f3611f8d169 [ 507.679569][ T8287] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 507.679602][ T8287] RSP: 002b:00007f3612d3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 507.679634][ T8287] RAX: ffffffffffffffda RBX: 00007f36121a6080 RCX: 00007f3611f8d169 [ 507.679656][ T8287] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000005 [ 507.679676][ T8287] RBP: 00007f361200e2a0 R08: 0000000000000002 R09: 0000000000000000 [ 507.679696][ T8287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 507.679716][ T8287] R13: 0000000000000000 R14: 00007f36121a6080 R15: 00007fff5ede9818 [ 507.679758][ T8287] [ 507.945889][ C1] vkms_vblank_simulate: vblank timer overrun [ 508.567168][ T8325] netlink: 8 bytes leftover after parsing attributes in process `syz.1.526'. [ 509.886228][ T8355] Line length is too long: Should be less than 4094 [ 510.325881][ T8358] FAULT_INJECTION: forcing a failure. [ 510.325881][ T8358] name failslab, interval 1, probability 0, space 0, times 0 [ 510.411651][ T8358] CPU: 0 UID: 0 PID: 8358 Comm: syz.3.532 Not tainted 6.14.0-syzkaller #0 [ 510.411691][ T8358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 510.411707][ T8358] Call Trace: [ 510.411716][ T8358] [ 510.411727][ T8358] dump_stack_lvl+0x16c/0x1f0 [ 510.411779][ T8358] should_fail_ex+0x50a/0x650 [ 510.411807][ T8358] ? fs_reclaim_acquire+0xae/0x150 [ 510.411849][ T8358] ? rfkill_alloc+0xac/0x330 [ 510.411892][ T8358] should_failslab+0xc2/0x120 [ 510.411922][ T8358] __kmalloc_noprof+0xcb/0x510 [ 510.411980][ T8358] rfkill_alloc+0xac/0x330 [ 510.412030][ T8358] wiphy_new_nm+0x1217/0x2160 [ 510.412082][ T8358] ? __pfx_ieee80211_emulate_add_chanctx+0x10/0x10 [ 510.412132][ T8358] ? __pfx_ieee80211_emulate_remove_chanctx+0x10/0x10 [ 510.412182][ T8358] ieee80211_alloc_hw_nm+0x1b7a/0x2260 [ 510.412228][ T8358] ? __local_bh_enable_ip+0xa4/0x120 [ 510.412282][ T8358] mac80211_hwsim_new_radio+0x1d6/0x54e0 [ 510.412361][ T8358] ? __asan_memset+0x23/0x50 [ 510.412407][ T8358] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 510.412471][ T8358] hwsim_new_radio_nl+0xb42/0x12b0 [ 510.412524][ T8358] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 510.412586][ T8358] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 510.412625][ T8358] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 510.412667][ T8358] genl_family_rcv_msg_doit+0x202/0x2f0 [ 510.412704][ T8358] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 510.412736][ T8358] ? trace_cap_capable+0x1a2/0x210 [ 510.412780][ T8358] ? bpf_lsm_capable+0x9/0x10 [ 510.412812][ T8358] ? security_capable+0x7e/0x260 [ 510.412845][ T8358] ? ns_capable+0xd7/0x110 [ 510.412892][ T8358] genl_rcv_msg+0x565/0x800 [ 510.412929][ T8358] ? __pfx_genl_rcv_msg+0x10/0x10 [ 510.412963][ T8358] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 510.413028][ T8358] netlink_rcv_skb+0x16b/0x440 [ 510.413077][ T8358] ? __pfx_genl_rcv_msg+0x10/0x10 [ 510.413113][ T8358] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 510.413181][ T8358] ? down_read+0xc9/0x330 [ 510.413232][ T8358] ? __pfx_down_read+0x10/0x10 [ 510.413285][ T8358] ? netlink_deliver_tap+0x1ae/0xd30 [ 510.413347][ T8358] genl_rcv+0x28/0x40 [ 510.413374][ T8358] netlink_unicast+0x53c/0x7f0 [ 510.413430][ T8358] ? __pfx_netlink_unicast+0x10/0x10 [ 510.413481][ T8358] ? __phys_addr_symbol+0x30/0x80 [ 510.413515][ T8358] ? __check_object_size+0x488/0x710 [ 510.413554][ T8358] netlink_sendmsg+0x8b8/0xd70 [ 510.413611][ T8358] ? __pfx_netlink_sendmsg+0x10/0x10 [ 510.413678][ T8358] ____sys_sendmsg+0xaaf/0xc90 [ 510.413720][ T8358] ? copy_msghdr_from_user+0x10b/0x160 [ 510.413774][ T8358] ? __pfx_____sys_sendmsg+0x10/0x10 [ 510.413836][ T8358] ___sys_sendmsg+0x135/0x1e0 [ 510.413891][ T8358] ? __pfx____sys_sendmsg+0x10/0x10 [ 510.413962][ T8358] ? __pfx_lock_release+0x10/0x10 [ 510.414007][ T8358] ? trace_lock_acquire+0x14e/0x1f0 [ 510.414060][ T8358] ? __fget_files+0x206/0x3a0 [ 510.414120][ T8358] __sys_sendmsg+0x16e/0x220 [ 510.414151][ T8358] ? __pfx___sys_sendmsg+0x10/0x10 [ 510.414210][ T8358] do_syscall_64+0xcd/0x250 [ 510.414261][ T8358] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 510.414314][ T8358] RIP: 0033:0x7f38cc58d169 [ 510.414341][ T8358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 510.414372][ T8358] RSP: 002b:00007f38cd331038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 510.414401][ T8358] RAX: ffffffffffffffda RBX: 00007f38cc7a5fa0 RCX: 00007f38cc58d169 [ 510.414421][ T8358] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000006 [ 510.414440][ T8358] RBP: 00007f38cd331090 R08: 0000000000000000 R09: 0000000000000000 [ 510.414458][ T8358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 510.414475][ T8358] R13: 0000000000000000 R14: 00007f38cc7a5fa0 R15: 00007ffd88ba1dd8 [ 510.414515][ T8358] [ 510.414532][ T8358] INFO: trying to register non-static key. [ 510.793670][ T8358] The code is fine but needs lockdep annotation, or maybe [ 510.800873][ T8358] you didn't initialize this object before use? [ 510.807114][ T8358] turning off the locking correctness validator. [ 510.813447][ T8358] CPU: 0 UID: 0 PID: 8358 Comm: syz.3.532 Not tainted 6.14.0-syzkaller #0 [ 510.813476][ T8358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 510.813491][ T8358] Call Trace: [ 510.813498][ T8358] [ 510.813508][ T8358] dump_stack_lvl+0x116/0x1f0 [ 510.813553][ T8358] register_lock_class+0xc39/0x1240 [ 510.813592][ T8358] ? irq_work_queue+0x2a/0x80 [ 510.813631][ T8358] ? __wake_up_klogd.part.0+0x99/0xf0 [ 510.813671][ T8358] ? vprintk_emit+0x39e/0x6f0 [ 510.813696][ T8358] ? __pfx_register_lock_class+0x10/0x10 [ 510.813738][ T8358] __lock_acquire+0x135/0x3c40 [ 510.813774][ T8358] ? mark_lock+0xb5/0xc60 [ 510.813807][ T8358] ? lock_acquire+0x2f/0xb0 [ 510.813840][ T8358] ? is_bpf_text_address+0x30/0x1a0 [ 510.813875][ T8358] ? __pfx_mark_lock+0x10/0x10 [ 510.813910][ T8358] ? __pfx___lock_acquire+0x10/0x10 [ 510.813947][ T8358] ? show_trace_log_lvl+0x29d/0x3d0 [ 510.813985][ T8358] lock_acquire.part.0+0x11b/0x380 [ 510.814022][ T8358] ? cfg80211_dev_free+0x30/0x3d0 [ 510.814048][ T8358] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 510.814085][ T8358] ? rcu_is_watching+0x12/0xc0 [ 510.814112][ T8358] ? trace_lock_acquire+0x14e/0x1f0 [ 510.814140][ T8358] ? lockdep_hardirqs_on+0x7c/0x110 [ 510.814176][ T8358] ? cfg80211_dev_free+0x30/0x3d0 [ 510.814200][ T8358] ? lock_acquire+0x2f/0xb0 [ 510.814238][ T8358] ? cfg80211_dev_free+0x30/0x3d0 [ 510.814264][ T8358] _raw_spin_lock_irqsave+0x3a/0x60 [ 510.814301][ T8358] ? cfg80211_dev_free+0x30/0x3d0 [ 510.814326][ T8358] cfg80211_dev_free+0x30/0x3d0 [ 510.814351][ T8358] ? __pfx_wiphy_dev_release+0x10/0x10 [ 510.814378][ T8358] device_release+0xa1/0x240 [ 510.814403][ T8358] kobject_put+0x1e4/0x5a0 [ 510.814444][ T8358] put_device+0x1f/0x30 [ 510.814466][ T8358] wiphy_new_nm+0x1c1f/0x2160 [ 510.814505][ T8358] ? __pfx_ieee80211_emulate_add_chanctx+0x10/0x10 [ 510.814549][ T8358] ? __pfx_ieee80211_emulate_remove_chanctx+0x10/0x10 [ 510.814591][ T8358] ieee80211_alloc_hw_nm+0x1b7a/0x2260 [ 510.814629][ T8358] ? __local_bh_enable_ip+0xa4/0x120 [ 510.814671][ T8358] mac80211_hwsim_new_radio+0x1d6/0x54e0 [ 510.814718][ T8358] ? __asan_memset+0x23/0x50 [ 510.814752][ T8358] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 510.814796][ T8358] hwsim_new_radio_nl+0xb42/0x12b0 [ 510.814836][ T8358] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 510.814879][ T8358] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 510.814910][ T8358] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 510.814943][ T8358] genl_family_rcv_msg_doit+0x202/0x2f0 [ 510.814971][ T8358] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 510.814997][ T8358] ? trace_cap_capable+0x1a2/0x210 [ 510.815027][ T8358] ? bpf_lsm_capable+0x9/0x10 [ 510.815054][ T8358] ? security_capable+0x7e/0x260 [ 510.815080][ T8358] ? ns_capable+0xd7/0x110 [ 510.815116][ T8358] genl_rcv_msg+0x565/0x800 [ 510.815143][ T8358] ? __pfx_genl_rcv_msg+0x10/0x10 [ 510.815169][ T8358] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 510.815213][ T8358] netlink_rcv_skb+0x16b/0x440 [ 510.815253][ T8358] ? __pfx_genl_rcv_msg+0x10/0x10 [ 510.815284][ T8358] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 510.815330][ T8358] ? down_read+0xc9/0x330 [ 510.815368][ T8358] ? __pfx_down_read+0x10/0x10 [ 510.815408][ T8358] ? netlink_deliver_tap+0x1ae/0xd30 [ 510.815447][ T8358] genl_rcv+0x28/0x40 [ 510.815468][ T8358] netlink_unicast+0x53c/0x7f0 [ 510.815508][ T8358] ? __pfx_netlink_unicast+0x10/0x10 [ 510.815548][ T8358] ? __phys_addr_symbol+0x30/0x80 [ 510.815574][ T8358] ? __check_object_size+0x488/0x710 [ 510.815600][ T8358] netlink_sendmsg+0x8b8/0xd70 [ 510.815641][ T8358] ? __pfx_netlink_sendmsg+0x10/0x10 [ 510.815686][ T8358] ____sys_sendmsg+0xaaf/0xc90 [ 510.815718][ T8358] ? copy_msghdr_from_user+0x10b/0x160 [ 510.815759][ T8358] ? __pfx_____sys_sendmsg+0x10/0x10 [ 510.815796][ T8358] ___sys_sendmsg+0x135/0x1e0 [ 510.815837][ T8358] ? __pfx____sys_sendmsg+0x10/0x10 [ 510.815883][ T8358] ? __pfx_lock_release+0x10/0x10 [ 510.815918][ T8358] ? trace_lock_acquire+0x14e/0x1f0 [ 510.815951][ T8358] ? __fget_files+0x206/0x3a0 [ 510.815992][ T8358] __sys_sendmsg+0x16e/0x220 [ 510.816016][ T8358] ? __pfx___sys_sendmsg+0x10/0x10 [ 510.816048][ T8358] do_syscall_64+0xcd/0x250 [ 510.816087][ T8358] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 510.816145][ T8358] RIP: 0033:0x7f38cc58d169 [ 510.816165][ T8358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 510.816191][ T8358] RSP: 002b:00007f38cd331038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 510.816215][ T8358] RAX: ffffffffffffffda RBX: 00007f38cc7a5fa0 RCX: 00007f38cc58d169 [ 510.816233][ T8358] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000006 [ 510.816248][ T8358] RBP: 00007f38cd331090 R08: 0000000000000000 R09: 0000000000000000 [ 510.816264][ T8358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 510.816283][ T8358] R13: 0000000000000000 R14: 00007f38cc7a5fa0 R15: 00007ffd88ba1dd8 [ 510.816306][ T8358] [ 510.817436][ T8358] ------------[ cut here ]------------ [ 511.306778][ T8358] WARNING: CPU: 0 PID: 8358 at net/wireless/core.c:1197 cfg80211_dev_free+0x2e7/0x3d0 [ 511.316361][ T8358] Modules linked in: [ 511.320274][ T8358] CPU: 0 UID: 0 PID: 8358 Comm: syz.3.532 Not tainted 6.14.0-syzkaller #0 [ 511.328794][ T8358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 511.338865][ T8358] RIP: 0010:cfg80211_dev_free+0x2e7/0x3d0 [ 511.344616][ T8358] Code: 00 00 49 8b bd e0 08 00 00 e8 d5 a1 6a f7 4c 89 ef 48 83 c4 10 5b 5d 41 5c 41 5d 41 5e 41 5f e9 bf a1 6a f7 e8 0a 17 13 f7 90 <0f> 0b 90 e9 6f fd ff ff 4c 89 f7 e8 99 55 75 f7 e9 aa fe ff ff 4c [ 511.364338][ T8358] RSP: 0018:ffffc90003e7f1b8 EFLAGS: 00010093 [ 511.370432][ T8358] RAX: 0000000000000000 RBX: 0000000000000293 RCX: ffffffff81972ccd [ 511.378428][ T8358] RDX: ffff888031115a00 RSI: ffffffff8aa6d8c6 RDI: ffffc90003e7f128 [ 511.386420][ T8358] RBP: ffff88807a6806a8 R08: 0000000000000001 R09: fffff520007cfe25 [ 511.394412][ T8358] R10: 0000000000000003 R11: 0000000000000001 R12: ffff88807a6806b8 [ 511.402402][ T8358] R13: ffff88807a680000 R14: ffff88801285cf00 R15: 0000000000000000 [ 511.410391][ T8358] FS: 00007f38cd3316c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 511.419348][ T8358] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 511.425951][ T8358] CR2: 00007f63abc565e8 CR3: 000000004367c000 CR4: 00000000003526f0 [ 511.433943][ T8358] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 511.441953][ T8358] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 511.449942][ T8358] Call Trace: [ 511.453233][ T8358] [ 511.456205][ T8358] ? __warn+0xea/0x3c0 [ 511.460312][ T8358] ? cfg80211_dev_free+0x2e7/0x3d0 [ 511.465883][ T8358] ? report_bug+0x3c0/0x580 [ 511.470418][ T8358] ? handle_bug+0x54/0xa0 [ 511.474770][ T8358] ? exc_invalid_op+0x17/0x50 [ 511.479468][ T8358] ? asm_exc_invalid_op+0x1a/0x20 [ 511.484529][ T8358] ? do_raw_spin_lock+0x12d/0x2c0 [ 511.489589][ T8358] ? cfg80211_dev_free+0x2e6/0x3d0 [ 511.494739][ T8358] ? cfg80211_dev_free+0x2e7/0x3d0 [ 511.499883][ T8358] ? cfg80211_dev_free+0x2e6/0x3d0 [ 511.505022][ T8358] ? __pfx_wiphy_dev_release+0x10/0x10 [ 511.510521][ T8358] device_release+0xa1/0x240 [ 511.515138][ T8358] kobject_put+0x1e4/0x5a0 [ 511.519609][ T8358] put_device+0x1f/0x30 [ 511.523788][ T8358] wiphy_new_nm+0x1c1f/0x2160 [ 511.528505][ T8358] ? __pfx_ieee80211_emulate_add_chanctx+0x10/0x10 [ 511.535048][ T8358] ? __pfx_ieee80211_emulate_remove_chanctx+0x10/0x10 [ 511.541935][ T8358] ieee80211_alloc_hw_nm+0x1b7a/0x2260 [ 511.547429][ T8358] ? __local_bh_enable_ip+0xa4/0x120 [ 511.552756][ T8358] mac80211_hwsim_new_radio+0x1d6/0x54e0 [ 511.558462][ T8358] ? __asan_memset+0x23/0x50 [ 511.563094][ T8358] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 511.569275][ T8358] hwsim_new_radio_nl+0xb42/0x12b0 [ 511.574437][ T8358] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 511.580029][ T8358] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 511.587742][ T8358] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 511.595152][ T8358] genl_family_rcv_msg_doit+0x202/0x2f0 [ 511.600726][ T8358] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 511.606820][ T8358] ? trace_cap_capable+0x1a2/0x210 [ 511.611958][ T8358] ? bpf_lsm_capable+0x9/0x10 [ 511.616662][ T8358] ? security_capable+0x7e/0x260 [ 511.621636][ T8358] ? ns_capable+0xd7/0x110 [ 511.626114][ T8358] genl_rcv_msg+0x565/0x800 [ 511.630647][ T8358] ? __pfx_genl_rcv_msg+0x10/0x10 [ 511.637208][ T8358] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 511.642806][ T8358] netlink_rcv_skb+0x16b/0x440 [ 511.647615][ T8358] ? __pfx_genl_rcv_msg+0x10/0x10 [ 511.652695][ T8358] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 511.658023][ T8358] ? down_read+0xc9/0x330 [ 511.662390][ T8358] ? __pfx_down_read+0x10/0x10 [ 511.667203][ T8358] ? netlink_deliver_tap+0x1ae/0xd30 [ 511.672528][ T8358] genl_rcv+0x28/0x40 [ 511.676530][ T8358] netlink_unicast+0x53c/0x7f0 [ 511.681332][ T8358] ? __pfx_netlink_unicast+0x10/0x10 [ 511.686710][ T8358] ? __phys_addr_symbol+0x30/0x80 [ 511.691757][ T8358] ? __check_object_size+0x488/0x710 [ 511.697069][ T8358] netlink_sendmsg+0x8b8/0xd70 [ 511.701892][ T8358] ? __pfx_netlink_sendmsg+0x10/0x10 [ 511.707219][ T8358] ____sys_sendmsg+0xaaf/0xc90 [ 511.712012][ T8358] ? copy_msghdr_from_user+0x10b/0x160 [ 511.717507][ T8358] ? __pfx_____sys_sendmsg+0x10/0x10 [ 511.722836][ T8358] ___sys_sendmsg+0x135/0x1e0 [ 511.727551][ T8358] ? __pfx____sys_sendmsg+0x10/0x10 [ 511.732793][ T8358] ? __pfx_lock_release+0x10/0x10 [ 511.737850][ T8358] ? trace_lock_acquire+0x14e/0x1f0 [ 511.743081][ T8358] ? __fget_files+0x206/0x3a0 [ 511.747794][ T8358] __sys_sendmsg+0x16e/0x220 [ 511.752403][ T8358] ? __pfx___sys_sendmsg+0x10/0x10 [ 511.757552][ T8358] do_syscall_64+0xcd/0x250 [ 511.762113][ T8358] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 511.768039][ T8358] RIP: 0033:0x7f38cc58d169 [ 511.772471][ T8358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 511.792113][ T8358] RSP: 002b:00007f38cd331038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 511.800550][ T8358] RAX: ffffffffffffffda RBX: 00007f38cc7a5fa0 RCX: 00007f38cc58d169 [ 511.808563][ T8358] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000006 [ 511.816556][ T8358] RBP: 00007f38cd331090 R08: 0000000000000000 R09: 0000000000000000 [ 511.824547][ T8358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 511.832538][ T8358] R13: 0000000000000000 R14: 00007f38cc7a5fa0 R15: 00007ffd88ba1dd8 [ 511.840555][ T8358] [ 511.843606][ T8358] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 511.850920][ T8358] CPU: 0 UID: 0 PID: 8358 Comm: syz.3.532 Not tainted 6.14.0-syzkaller #0 [ 511.859458][ T8358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 511.869539][ T8358] Call Trace: [ 511.872841][ T8358] [ 511.875828][ T8358] dump_stack_lvl+0x3d/0x1f0 [ 511.880462][ T8358] panic+0x71d/0x800 [ 511.884391][ T8358] ? __pfx_panic+0x10/0x10 [ 511.888837][ T8358] ? show_trace_log_lvl+0x29d/0x3d0 [ 511.894075][ T8358] ? check_panic_on_warn+0x1f/0xb0 [ 511.899245][ T8358] ? cfg80211_dev_free+0x2e7/0x3d0 [ 511.904388][ T8358] check_panic_on_warn+0xab/0xb0 [ 511.909367][ T8358] __warn+0xf6/0x3c0 [ 511.913296][ T8358] ? cfg80211_dev_free+0x2e7/0x3d0 [ 511.918437][ T8358] report_bug+0x3c0/0x580 [ 511.922802][ T8358] handle_bug+0x54/0xa0 [ 511.927006][ T8358] exc_invalid_op+0x17/0x50 [ 511.931535][ T8358] asm_exc_invalid_op+0x1a/0x20 [ 511.936421][ T8358] RIP: 0010:cfg80211_dev_free+0x2e7/0x3d0 [ 511.942168][ T8358] Code: 00 00 49 8b bd e0 08 00 00 e8 d5 a1 6a f7 4c 89 ef 48 83 c4 10 5b 5d 41 5c 41 5d 41 5e 41 5f e9 bf a1 6a f7 e8 0a 17 13 f7 90 <0f> 0b 90 e9 6f fd ff ff 4c 89 f7 e8 99 55 75 f7 e9 aa fe ff ff 4c [ 511.961811][ T8358] RSP: 0018:ffffc90003e7f1b8 EFLAGS: 00010093 [ 511.967907][ T8358] RAX: 0000000000000000 RBX: 0000000000000293 RCX: ffffffff81972ccd [ 511.975897][ T8358] RDX: ffff888031115a00 RSI: ffffffff8aa6d8c6 RDI: ffffc90003e7f128 [ 511.983892][ T8358] RBP: ffff88807a6806a8 R08: 0000000000000001 R09: fffff520007cfe25 [ 511.991881][ T8358] R10: 0000000000000003 R11: 0000000000000001 R12: ffff88807a6806b8 [ 511.999866][ T8358] R13: ffff88807a680000 R14: ffff88801285cf00 R15: 0000000000000000 [ 512.008033][ T8358] ? do_raw_spin_lock+0x12d/0x2c0 [ 512.013081][ T8358] ? cfg80211_dev_free+0x2e6/0x3d0 [ 512.018217][ T8358] ? cfg80211_dev_free+0x2e6/0x3d0 [ 512.023354][ T8358] ? __pfx_wiphy_dev_release+0x10/0x10 [ 512.028841][ T8358] device_release+0xa1/0x240 [ 512.033455][ T8358] kobject_put+0x1e4/0x5a0 [ 512.037909][ T8358] put_device+0x1f/0x30 [ 512.042082][ T8358] wiphy_new_nm+0x1c1f/0x2160 [ 512.046792][ T8358] ? __pfx_ieee80211_emulate_add_chanctx+0x10/0x10 [ 512.053330][ T8358] ? __pfx_ieee80211_emulate_remove_chanctx+0x10/0x10 [ 512.060137][ T8358] ieee80211_alloc_hw_nm+0x1b7a/0x2260 [ 512.065632][ T8358] ? __local_bh_enable_ip+0xa4/0x120 [ 512.070953][ T8358] mac80211_hwsim_new_radio+0x1d6/0x54e0 [ 512.076629][ T8358] ? __asan_memset+0x23/0x50 [ 512.081260][ T8358] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 512.087368][ T8358] hwsim_new_radio_nl+0xb42/0x12b0 [ 512.092526][ T8358] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 512.098122][ T8358] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 512.105521][ T8358] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 512.112920][ T8358] genl_family_rcv_msg_doit+0x202/0x2f0 [ 512.118489][ T8358] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 512.124585][ T8358] ? trace_cap_capable+0x1a2/0x210 [ 512.129725][ T8358] ? bpf_lsm_capable+0x9/0x10 [ 512.134430][ T8358] ? security_capable+0x7e/0x260 [ 512.139428][ T8358] ? ns_capable+0xd7/0x110 [ 512.143894][ T8358] genl_rcv_msg+0x565/0x800 [ 512.148451][ T8358] ? __pfx_genl_rcv_msg+0x10/0x10 [ 512.153506][ T8358] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 512.159109][ T8358] netlink_rcv_skb+0x16b/0x440 [ 512.163909][ T8358] ? __pfx_genl_rcv_msg+0x10/0x10 [ 512.168969][ T8358] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 512.174313][ T8358] ? down_read+0xc9/0x330 [ 512.178696][ T8358] ? __pfx_down_read+0x10/0x10 [ 512.183499][ T8358] ? netlink_deliver_tap+0x1ae/0xd30 [ 512.188822][ T8358] genl_rcv+0x28/0x40 [ 512.192822][ T8358] netlink_unicast+0x53c/0x7f0 [ 512.197644][ T8358] ? __pfx_netlink_unicast+0x10/0x10 [ 512.202974][ T8358] ? __phys_addr_symbol+0x30/0x80 [ 512.208040][ T8358] ? __check_object_size+0x488/0x710 [ 512.213356][ T8358] netlink_sendmsg+0x8b8/0xd70 [ 512.218167][ T8358] ? __pfx_netlink_sendmsg+0x10/0x10 [ 512.223499][ T8358] ____sys_sendmsg+0xaaf/0xc90 [ 512.228296][ T8358] ? copy_msghdr_from_user+0x10b/0x160 [ 512.233797][ T8358] ? __pfx_____sys_sendmsg+0x10/0x10 [ 512.239131][ T8358] ___sys_sendmsg+0x135/0x1e0 [ 512.243855][ T8358] ? __pfx____sys_sendmsg+0x10/0x10 [ 512.249098][ T8358] ? __pfx_lock_release+0x10/0x10 [ 512.254172][ T8358] ? trace_lock_acquire+0x14e/0x1f0 [ 512.259407][ T8358] ? __fget_files+0x206/0x3a0 [ 512.264134][ T8358] __sys_sendmsg+0x16e/0x220 [ 512.268755][ T8358] ? __pfx___sys_sendmsg+0x10/0x10 [ 512.273904][ T8358] do_syscall_64+0xcd/0x250 [ 512.278445][ T8358] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 512.284389][ T8358] RIP: 0033:0x7f38cc58d169 [ 512.288823][ T8358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 512.308473][ T8358] RSP: 002b:00007f38cd331038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 512.316931][ T8358] RAX: ffffffffffffffda RBX: 00007f38cc7a5fa0 RCX: 00007f38cc58d169 [ 512.324925][ T8358] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000006 [ 512.332918][ T8358] RBP: 00007f38cd331090 R08: 0000000000000000 R09: 0000000000000000 [ 512.340913][ T8358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 512.348920][ T8358] R13: 0000000000000000 R14: 00007f38cc7a5fa0 R15: 00007ffd88ba1dd8 [ 512.356934][ T8358] [ 512.360279][ T8358] Kernel Offset: disabled [ 512.364635][ T8358] Rebooting in 86400 seconds..